Fedora 26 server - wget - gnutls/p11-kit/OpenSC - pcsc-lite/pcscd - polkit
Hi!
wget 1.19.1-3.fc26
gnutls 3.5.16-1.fc26
p11-kit 0.23.9-2.fc26
opensc 0.17.0-1.fc26
pcsc-lite 1.8.22-1.fc26
polkit 0.113-8.fc26
Whenever a user is using wget to fetch a webpage via https, I'll get messages like this in /var/log/messages:
2017-09-21T10:54:35+02:00 ninja pcscd[2721]: 03445385 auth.c:137:IsClientAuthorized() Process 48952 (user: 48) is NOT authorized for action: access_pcsc
2017-09-21T10:54:35+02:00 ninja pcscd[2721]: 00000279 winscard_svc.c:335:ContextThread() Rejected unauthorized PC/SC client
This started after upgrading to F26 (or possibly F25 which was installed for a few days). I have no idea why wget (via one of the libraries involved, possibly gnutls) would try to access the smart card reader without the user telling it to. Even though it fails getting access to a reader (which I've currently got none), the https pages are received just fine.
curl is linked with libssh2 and works without triggering these kinds of messages.
References
Fedora forum: https://forums.fedoraforum.org/showthread.php?t=315778
Discussion with pcsc's creator who helped me narrowing the problem down a bit: https://github.com/LudovicRousseau/PCSC/issues/26
Denied bug report in wget: http://lists.gnu.org/archive/html/bug-wget/2017-10/msg00025.html
Denied bug report in polkit: https://bugs.freedesktop.org/show_bug.cgi?id=103483
Best regards, Ted Lyngmo