← Back to team overview

desktop-packages team mailing list archive

  1. desktop-packages team
  2. Mailing list archive
  3. Message #70665

[Bug 1369929] [NEW] WiFi passwords and keychain [Eduroam]

  Thread PreviousDate PreviousThread Next 
Public bug reported:

nm-applet (from network-manager-gnome_0.9.8.8-0ubuntu4.3) uses the
connection UUID instead of the user-visible connection ID to identify
the WiFi connection password in secret storage (keychain). Some
utilities or NetworkManager seem to modify the UUID in some situations
-- I've not managed to track down exactly when --, so that nm-applet can
no longer obtain the connection password from the keyring, causing nm-
applet to always pop up a connection password dialog. (Also, previous
connection passwords tend to aggregate in the keyring, as they're not
automatically removed.)

The particular situation I can semi-reliably reproduce this is with
Eduroam connection scripts. (In fact, many scripts fall back to storing
the password in cleartext in /etc/NetworkManager/system-connections/,
the directory and files being read-only by root.)

My suggestion/fix is to use the user-visible connection ID to identify
the WiFi connection in secret storage/keychain. That way the password in
the keychain is attached to the NetworkManager connection, as long as
the connection ID stays unchanged.

I've submitted this enhancement request upstream as
    https://bugzilla.gnome.org/show_bug.cgi?id=736724
and attached here the simple patch against network-manager-gnome_0.9.8.8-0ubuntu4.3.

** Affects: network-manager-applet (Ubuntu)
     Importance: Undecided
         Status: New

** Patch added: "Use ID instead of UUID in nm-applet secrets"
   https://bugs.launchpad.net/bugs/1369929/+attachment/4205049/+files/uuid-to-id.patch

-- 
You received this bug notification because you are a member of Desktop
Packages, which is subscribed to network-manager-applet in Ubuntu.
https://bugs.launchpad.net/bugs/1369929

Title:
  WiFi passwords and keychain [Eduroam]

Status in “network-manager-applet” package in Ubuntu:
  New

Bug description:
  nm-applet (from network-manager-gnome_0.9.8.8-0ubuntu4.3) uses the
  connection UUID instead of the user-visible connection ID to identify
  the WiFi connection password in secret storage (keychain). Some
  utilities or NetworkManager seem to modify the UUID in some situations
  -- I've not managed to track down exactly when --, so that nm-applet
  can no longer obtain the connection password from the keyring, causing
  nm-applet to always pop up a connection password dialog. (Also,
  previous connection passwords tend to aggregate in the keyring, as
  they're not automatically removed.)

  The particular situation I can semi-reliably reproduce this is with
  Eduroam connection scripts. (In fact, many scripts fall back to
  storing the password in cleartext in /etc/NetworkManager/system-
  connections/, the directory and files being read-only by root.)

  My suggestion/fix is to use the user-visible connection ID to identify
  the WiFi connection in secret storage/keychain. That way the password
  in the keychain is attached to the NetworkManager connection, as long
  as the connection ID stays unchanged.

  I've submitted this enhancement request upstream as
      https://bugzilla.gnome.org/show_bug.cgi?id=736724
  and attached here the simple patch against network-manager-gnome_0.9.8.8-0ubuntu4.3.

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/network-manager-applet/+bug/1369929/+subscriptions

Follow ups

References

  Thread PreviousDate PreviousThread Next