Permissions problem in Dbus/NetworkManager

linux-wireless.vger.kernel.org archive mirror
 help / color / mirror / Atom feed

* Permissions problem in Dbus/NetworkManager
@ 2009-03-24 15:16 Larry Finger
  0 siblings, 0 replies; only message in thread
From: Larry Finger @ 2009-03-24 15:16 UTC (permalink / raw)
  To: wireless, networkmanager-list

Recently openSUSE issued an update for 11.1 to correct the Dbus security
problems descriBed in CVE-2009-0578. After this was done, I could no longer
connect using wifi encryption.

The NetworkManager log shows the following:

Mar 17 16:06:01 larrylap NetworkManager: <info>  Activation (wlan2/wireless):
access point 'lwfdjf_rad' has security, but secrets are required.
Mar 17 16:06:01 larrylap NetworkManager: <info>  (wlan2): device state change:
5 -> 6
Mar 17 16:06:01 larrylap NetworkManager: <info>  Activation (wlan2) Stage 2 of
5 (Device Configure) complete.
Mar 17 16:06:01 larrylap NetworkManager: <WARN>  get_secrets_cb(): Couldn't get
connection secrets: A security policy in place prevents this sender from sending
this message to this recipient, see message bus configuration file (rejected
message had interface "org.freedesktop.NetworkManagerSettings.Connection.Secrets"
member "GetSecrets" error name "(unset)" destination
"org.freedesktop.NetworkManagerUserSettings").

The problem seemed to be random. One reporter had two x86 systems that appeared
to be identical - one worked and one did not.

After going through the usual checks to make sure the contents of
/etc/dbus-1/system.d were correct, one of the openSUSE people discovered that
/var/run/dbus/at_console contained both a directory for the unprivileged user,
and an extra empty directory for root. As soon as the directory for root was
deleted, everything worked as expected. Testing was done with the following command:

dbus-send --system --print-reply \
--dest=org.freedesktop.NetworkManagerUserSettings \
/org/freedesktop/NetworkManagerSettings/Connection/0 \
org.freedesktop.NetworkManagerSettings.Connection.Secrets.GetSecrets

This command returned an error when called as an unprivileged user, and the
expected result when used as root. Before the extraneous directory was deleted,
all users failed.

This problem was covered in the openSUSE Bugzilla #486267. I posted it here for
those openSUSE users that might not be perusing the bug list, and just in case
users of another distro might be affected.

Larry

^ permalink raw reply	[flat|nested] only message in thread

only message in thread, other threads:[~2009-03-24 15:17 UTC | newest]

Thread overview: (only message) (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2009-03-24 15:16 Permissions problem in Dbus/NetworkManager Larry Finger

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).