NetworkManager plugin permissions problem

[danielkucera]

Device Information | 设备信息

• SOC:
• Model

Armbian Version | 系统版本

• Kernel Version: Linux armbian 6.1.42-ophub Support VFD #1 SMP Thu Jul 27 11:19:24 EDT 2023 aarch64 aarch64 aarch64 GNU/Linux
• Release: Armbian_23.08.0_amlogic_s905x_lunar_6.1.42_server_2023.08.01.img.gz

Describe the bug | 问题描述

NetworkManager plugins have wrong owner, see the log:

Sep 15 23:33:43 armbian NetworkManager[946]: <warn>  [1694792023.9472] plugin: skip invalid file /usr/lib/aarch64-linux-gnu/NetworkManager/1.42.4/libnm-device-plugin-wifi.so: file has invalid owner (should be r>
Sep 15 23:33:43 armbian NetworkManager[946]: <warn>  [1694792023.9475] plugin: skip invalid file /usr/lib/aarch64-linux-gnu/NetworkManager/1.42.4/libnm-device-plugin-team.so: file has invalid owner (should be r>
Sep 15 23:33:43 armbian NetworkManager[946]: <warn>  [1694792023.9476] plugin: skip invalid file /usr/lib/aarch64-linux-gnu/NetworkManager/1.42.4/libnm-device-plugin-adsl.so: file has invalid owner (should be r>
Sep 15 23:33:43 armbian NetworkManager[946]: <warn>  [1694792023.9479] plugin: skip invalid file /usr/lib/aarch64-linux-gnu/NetworkManager/1.42.4/libnm-device-plugin-wwan.so: file has invalid owner (should be r>
Sep 15 23:33:43 armbian NetworkManager[946]: <warn>  [1694792023.9481] plugin: skip invalid file /usr/lib/aarch64-linux-gnu/NetworkManager/1.42.4/libnm-device-plugin-bluetooth.so: file has invalid owner (should>

as the result, wifi cannot be managed, see missing plugin:

root@armbian:~# nmcli
...

wlan0: unmanaged
        "wlan0"
        wifi (rtl8723bs), A0:B9:4D:01:AF:76, plugin missing, hw, mtu 1500

...

file list:

root@armbian:~# ls -lah /usr/lib/aarch64-linux-gnu/NetworkManager/1.42.4/
total 936K
drwxr-xr-x. 2 1023 1023 4.0K Aug  1 12:50 .
drwxr-xr-x. 3 1023 1023 4.0K Aug  1 12:50 ..
-rw-r--r--. 1 1023 1023  67K Mar 28 21:13 libnm-device-plugin-adsl.so
-rw-r--r--. 1 1023 1023 131K Mar 28 21:13 libnm-device-plugin-bluetooth.so
-rw-r--r--. 1 1023 1023  67K Mar 28 21:13 libnm-device-plugin-team.so
-rw-r--r--. 1 1023 1023 323K Mar 28 21:13 libnm-device-plugin-wifi.so
-rw-r--r--. 1 1023 1023  67K Mar 28 21:13 libnm-device-plugin-wwan.so
-rw-r--r--. 1 1023 1023  67K Mar 28 21:13 libnm-ppp-plugin.so
-rw-r--r--. 1 1023 1023  67K Mar 28 21:13 libnm-settings-plugin-ifupdown.so
-rw-r--r--. 1 1023 1023 131K Mar 28 21:13 libnm-wwan.so

Fixed by:

chown root: /usr/lib/aarch64-linux-gnu/NetworkManager/1.42.4/*
service NetworkManager restart

[danielkucera]

And there are more things owned by 1023:

Setting up udev (252.5-2ubuntu3.1) ...
Detected unsafe path transition / (owned by 1023) → /dev (owned by root) during canonicalization of /dev/snd/timer.
Detected unsafe path transition / (owned by 1023) → /dev (owned by root) during canonicalization of /dev/loop-control.
Detected unsafe path transition / (owned by 1023) → /dev (owned by root) during canonicalization of /dev/fuse.
Detected unsafe path transition / (owned by 1023) → /dev (owned by root) during canonicalization of /dev/kvm.

[danielkucera]

Also this:

root@armbian:~# sudo -u ...
sudo: /etc/sudo.conf is owned by uid 1023, should be 0
sudo: /etc/sudo.conf is owned by uid 1023, should be 0
sudo: /etc/sudoers is owned by uid 1023, should be 0
sudo: no valid sudoers sources found, quitting
sudo: error initializing audit plugin sudoers_audit