ssh: allow setting passphrase cache expriration duration

2018-04-25 00:01:55 +03:00
parent b1bd6cb690
commit 2ca3941cfa
2 changed files with 5 additions and 2 deletions
--- a/libagent/device/trezor.py
+++ b/libagent/device/trezor.py
@@ -47,8 +47,7 @@ class Trezor(interface.Device):

        conn.callback_PinMatrixRequest = new_handler

-    # Remembers the passphrase for an hour.
-    cached_passphrase_ack = util.ExpiringCache(seconds=60*60)
+    cached_passphrase_ack = util.ExpiringCache(seconds=float('inf'))
    cached_state = None

    def _override_passphrase_handler(self, conn):
--- a/libagent/ssh/init.py
+++ b/libagent/ssh/init.py
@@ -89,6 +89,8 @@ def create_agent_parser(device_type):
                   help='Path to PIN entry UI helper.')
    p.add_argument('--passphrase-entry-binary', type=str, default='pinentry',
                   help='Path to passphrase entry UI helper.')
+    p.add_argument('--cache-expiry-seconds', type=float, default=float('inf'),
+                   help='Expire passphrase from cache after this duration.')

    g = p.add_mutually_exclusive_group()
    g.add_argument('-d', '--daemonize', default=False, action='store_true',
@@ -274,6 +276,8 @@ def main(device_type):

    # override default PIN/passphrase entry tools (relevant for TREZOR/Keepkey):
    device_type.ui = device.ui.UI(device_type=device_type, config=vars(args))
+    device_type.cached_passphrase_ack = util.ExpiringCache(
+        args.cache_expiry_seconds)

    conn = JustInTimeConnection(
        conn_factory=lambda: client.Client(device_type()),