From nobody Thu Sep  5 08:03:04 2024
X-Original-To: freebsd-security@mlmmj.nyi.freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1])
	by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4WzsL44LXVz5VrCH
	for <freebsd-security@mlmmj.nyi.freebsd.org>; Thu, 05 Sep 2024 08:03:08 +0000 (UTC)
	(envelope-from jbe-mlist@magnetkern.de)
Received: from gaoxing.magnetkern.de (gaoxing.magnetkern.de [167.235.225.147])
	by mx1.freebsd.org (Postfix) with ESMTP id 4WzsL42BVlz4cpK;
	Thu,  5 Sep 2024 08:03:08 +0000 (UTC)
	(envelope-from jbe-mlist@magnetkern.de)
Authentication-Results: mx1.freebsd.org;
	none
Received: from titanium.fritz.box (p200300c26f20ef00264bfefffe54b09c.dip0.t-ipconnect.de [IPv6:2003:c2:6f20:ef00:264b:feff:fe54:b09c])
	by gaoxing.magnetkern.de (Postfix) with ESMTPSA id B4D6C5F749;
	Thu,  5 Sep 2024 10:03:08 +0200 (CEST)
Date: Thu, 5 Sep 2024 10:03:04 +0200
From: Jan Behrens <jbe-mlist@magnetkern.de>
To: Kyle Evans <kevans@FreeBSD.org>
Cc: freebsd-security@freebsd.org
Subject: Re: Privileges using security tokens through PC/SC-daemon
Message-Id: <20240905100304.5c2d6ea478b6887d978250f8@magnetkern.de>
In-Reply-To: <eda5bf90-4ff4-44f7-9579-7c9b5a0f5aa2@FreeBSD.org>
References: <20240904104147.8c1e74632b2c6d4f6a759ee6@magnetkern.de>
	<20240905005823.3f7aa990a66c5f40d4eb4a8b@magnetkern.de>
	<92f328f3-0f74-441a-840b-fdc3ae71fe0b@FreeBSD.org>
	<20240905021750.6716898b6d52e08b0287940b@magnetkern.de>
	<5e49667e-daf5-4c37-bc59-83ad8806c945@FreeBSD.org>
	<eda5bf90-4ff4-44f7-9579-7c9b5a0f5aa2@FreeBSD.org>
X-Mailer: Sylpheed 3.7.0 (GTK+ 2.24.33; amd64-portbld-freebsd14.0)
List-Id: Security issues <freebsd-security.freebsd.org>
List-Archive: https://lists.freebsd.org/archives/freebsd-security
List-Help: <mailto:freebsd-security+help@freebsd.org>
List-Post: <mailto:freebsd-security@freebsd.org>
List-Subscribe: <mailto:freebsd-security+subscribe@freebsd.org>
List-Unsubscribe: <mailto:freebsd-security+unsubscribe@freebsd.org>
X-BeenThere: freebsd-security@freebsd.org
Sender: owner-freebsd-security@FreeBSD.org
Mime-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 7bit
X-Spamd-Bar: ----
X-Rspamd-Pre-Result: action=no action;
	module=replies;
	Message is reply to one we originated
X-Spamd-Result: default: False [-4.00 / 15.00];
	REPLY(-4.00)[];
	ASN(0.00)[asn:24940, ipnet:167.235.0.0/16, country:DE]
X-Rspamd-Queue-Id: 4WzsL42BVlz4cpK

On Wed, 4 Sep 2024 22:32:03 -0500
Kyle Evans <kevans@FreeBSD.org> wrote:

> On 9/4/24 21:58, Kyle Evans wrote:
> > On 9/4/24 19:17, Jan Behrens wrote:
> >> On Wed, 4 Sep 2024 18:14:56 -0500
> >> Kyle Evans <kevans@FreeBSD.org> wrote:
> >>
> >>> On 9/4/24 17:58, Jan Behrens wrote:
> >>>> I think I may have found the problem. If I'm right, it is an issue of
> >>>> pcsc-lite in combination with FreeBSD.
> >>>>
> >>>> Looking into pcsc-lite's file "src/auth.c", we find:
> >>>>
> >>>> #if defined(HAVE_POLKIT) && defined(SO_PEERCRED)
> >>>> ...
> >>>>
> >>>> [...]
> >>> [...]
> > [...]
> 
> I've posted a pull request now:
> 
> https://github.com/LudovicRousseau/PCSC/pull/209
> 

Great! Thanks for the work!

Jan