Bug 1926113

Summary: Repeated smart card authentication requests in remote session
Product: [Fedora] Fedora Reporter: Pierre Ossman <ossman>
Component: pcsc-liteAssignee: Red Hat Crypto Team <crypto-team>
Status: CLOSED DUPLICATE QA Contact: Fedora Extras Quality Assurance <extras-qa>
Severity: unspecified Docs Contact:
Priority: unspecified    
Version: 33CC: crypto-team, jjelen, klember, loganjerry, rrelyea
Target Milestone: ---Flags: fedora-admin-xmlrpc: mirror+
Target Release: ---   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: Doc Type: If docs needed, set a value
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2021-07-15 15:54:52 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:

Description Pierre Ossman 2021-02-08 09:23:11 UTC 
This is pretty much bug 1478345, but for pcsc-lite. The whack-a-mole principle of trying to get applications to change clearly isn't working so this needs to be handled in a central component. There's just too many core applications triggering this.

For reference, this is the horribly user experience caused by this issue:

> If I log in to a F26 machine remotely and start a VNC server containing a
GNOME session, then this appears in the centre of the screen:
> 
>  Authentication is required to access the PC/SC daemon
> 
> When cancelled, this just comes back again and again, so the session is
unusable.

Right now the only workaround seems to be to throw out the baby with the bath water and completely disable smart card support:

https://bugzilla.redhat.com/show_bug.cgi?id=1478345#c10
Comment 1 Pierre Ossman 2021-05-21 10:34:51 UTC 
This is apparently a Fedora/Red Hat specific thing that was added by Nikos Mavrogiannopoulos 7 years ago:

https://src.fedoraproject.org/rpms/pcsc-lite/c/5d49035ba2a56853eef21d2c4c905c96eea32632?branch=rawhide

I think enough time has passed that we can safely say that applications are not adapting to this change and things should be reverted back to what upstream does.
Comment 2 Jakub Jelen 2021-07-15 15:54:52 UTC 
I will close this one as the other one is quite a bit more informative. But thanks for raising the issue again.

*** This bug has been marked as a duplicate of bug 1478345 ***