pcscd: allow configuring power-down and exit timeouts #158
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
I've recently started using a yubikey PIV; the device is configured to require the PIN once per session. But since the tool I use it with (
age
) does not keep a long-running connection topcscd
, a "session" only lasts 5 seconds until the device is auto-powered off. Likewise, even if that timeout is bumped, thenpcscd
still auto-exits after 60.The problem is discussed in more detail in str4d/age-plugin-yubikey#144.
Here are two patches to allow the user to bump those two timeouts. I'm using it with on my Debian system by putting
PCSCD_ARGS="--auto-exit=86400 --power-down-timeout=86400"
into my/etc/default/pcscd
file.This certainly solves my problem. I'm not sure what the drawbacks might be, aside from presumably some extra power draw to keep the device powered. That's not a big deal for my use case, but it may mean that it's not a good general solution. Still, it seems like this is just giving users more run-time options (without having to rebuild the daemon themselves), which is probably a good thing.