Some users have reported with the Atrix 4G that they have no data connection (Im looking at you, Dennis!)
I found a URL where someone had experienced a similar issue and found the resolution.
Note: This requires root access.
You need to locate the following file and add your username and password -
/system/etc/ppp/peers/pppd-ril.options
Code:
usepeerdns
connect-delay 1000
# Don't remove the user/password lines. They are required to make PPPD authenticate itself with
# the BP when doing Simple IP (SIP). The BP will replace the user/password strings with the correct
# values when authenticating to the network-side PPP peer.
user [email protected]
password NotUsed
crtscts
lcp-echo-failure 0
lcp-echo-interval 0
ipcp-max-configure 30
ipcp-max-failure 30
ipcp-max-terminate 10
novj
linkname ril
There are several methods to access this, rootexplorer, adb shell, sshd, etc and are covered in other parts of the forums.
You are aswsome for finding this.....Like I said in IRC, never would have thought to look in a settings file deep in the system to fix a data issue (should have been updated from APNs or something as I have never had this problem on any other android device)
how come they made this file??
is there a way to bypass the file? because my provider is using different usernames and passwords for each APN (they have several..)
How to get maximum out of this smartphone
Sleep and wake without using power button
Because Double Tap functions are disabled FOR NOW and because unlocking bootloader in order to root will be registered by Huawei/Honor and will make you pay more in case of assistance, here is a way to ease the use of power button and have a WANNABE sleep&wake double tap function on this phone.
First you must enable and register Fingerprint ID from Setting. Then go to Fingerprint management, insert PIN (if any) then activate Unlock screen. This way you'll have the unlock screen option by finger print.
In order to put to sleep you must install a Fingerprint gesture app, like this one
https://play.google.com/store/apps/details?id=com.ztc1997.fingerprint2sleep
From this app enable the Single tap action to Sleep. Thus you'll have the Sleep option by fingerprint.
Why not installing a Double Tap or Screen on/off application? Because I haven't found any that works. Most of them apply a dark filter over the screen thus consuming more battery.
Please let me know your ways of putting to sleep and waking up the phone.
Hello
I also tried to search for a method, but I did not succeed.
I went to built.prop, to modify and activate as for emui 5.0.1.
this in phone settings, worked it is written but does not work.
if I put the phone in sleep and I tap tap, it does not wake up, it bug the screen remains frozen on the lock screen.
I must force the restart.
I continue the search.
Chisetdel31260 said:
Hello
I also tried to search for a method, but I did not succeed.
I went to built.prop, to modify and activate as for emui 5.0.1.
this in phone settings, worked it is written but does not work.
if I put the phone in sleep and I tap tap, it does not wake up, it bug the screen remains frozen on the lock screen.
I must force the restart.
I continue the search.
Click to expand...
Click to collapse
What's the modify you've made?
As far as I've read this is a two steps procedure. The first one is to root and SuperSU and modify build.prop and the second part is to activate it from the settings, where a new option will appear and you modify build.prop and rebooted phone.
Will put link later.
BigBadSheep said:
What's the modify you've made?
As far as I've read this is a two steps procedure. The first one is to root and SuperSU and modify build.prop and the second part is to activate it from the settings, where a new option will appear and you modify build.prop and rebooted phone.
Will put link later.
Click to expand...
Click to collapse
Hello
I tested that. but did not work. (bug on the start screen.)
et oui mon téléphone est root. sr5-supersu
et j'utilise root browser+buxybox,
Go to system / build.prop
Add this line: ro.config.hw_easywakeup = true
Go to product / etc / prop / local.prop
Find ro.config.hw_easywakeup = false and change it to true
Go to system / emui / base / xml
Find hw_easywakeupmotion_config.xml
Find this line: EasyWakeupMotion name = "Double_Touch" support = "1" value = "0" flag = "0" keycode = "131" "
Change to value = "1"
Chisetdel31260 said:
Hello
I tested that. but did not work. (bug on the start screen.)
et oui mon téléphone est root. sr5-supersu
et j'utilise root browser+buxybox,
Go to system / build.prop
Add this line: ro.config.hw_easywakeup = true
Go to product / etc / prop / local.prop
Find ro.config.hw_easywakeup = false and change it to true
Go to system / emui / base / xml
Find hw_easywakeupmotion_config.xml
Find this line: EasyWakeupMotion name = "Double_Touch" support = "1" value = "0" flag = "0" keycode = "131" "
Change to value = "1"
Click to expand...
Click to collapse
Looks OK. After that have you enabled Double tap from Settings –> Smart Assistance –> Motion Control?
This feature might not be available though on al Huawei/Honor devices, even after root and modification.
OK, I don't think this thread will get any attention, but I want to document it anyway. All this should work on other devices with qcom WiFi drivers.
TL;DR:
Grab iwpriv binary somewhere (i've got my here: https://github.com/kriswebdev/android_wireless_tools/tree/master/bin)
adb push iwpriv /data/local/tmp/
adb shell su -c chmod +x /data/local/tmp/iwpriv
Code:
#!/system/bin/sh
ip link set wlan0 down
sleep 1
echo 4 > /sys/module/wlan/parameters/con_mode
sleep 2
ip link set wlan0 up
/data/local/tmp/iwpriv wlan0 monitor 1
/data/local/tmp/iwpriv wlan0 MonitorModeConf 9 40 1 111 0
And enjoy your airodump output
NO PACKET INJECTION! (stubbed out in driver, removed previously?)
If you don't receive any packets, issue "/data/local/tmp/iwpriv wlan0 monitor 1" again.
How does this all work?
Some time ago I discovered these strings in wlan_hal_msg.h: (they appeared in google):
Code:
...
/* Monitor Mode */
WLAN_HAL_ENABLE_MONITOR_MODE_REQ = 302,
WLAN_HAL_ENABLE_MONITOR_MODE_RSP = 303,
WLAN_HAL_DISABLE_MONITOR_MODE_REQ = 304,
WLAN_HAL_DISABLE_MONITOR_MODE_RSP = 305,
...
Then I unscrambled some indirections:
WLAN_HAL_ENABLE_MONITOR_MODE_REQ to WDI_MON_START_REQ in WDI_2_HAL_REQ_TYPE
WDI_MON_START_REQ sent in WDI_ProcessMonStartReq <— actual message sents here!
Called from "Request Processing Array" in function WDI_MonStartReq
Wrapped in WDA_ProcessMonStartReq, which is called in WDA_McProcessMsg by message WDA_MON_START_REQ
Which message is posted by wlan_hdd_mon_postMsg if (MON_MODE_START == pMonCtx->state)
Which is called in __iw_setint_getnone with sub_cmd = WE_SET_MONITOR_STATE
Which is set by iw_priv cmd "monitor"
And then figured out that driver works in different modes:
(vos_types.h)
Code:
/// Concurrency role. These are generic IDs that identify the various roles
/// in the software system.
typedef enum
{ /*ON linux maintain 1-1 corespondence with device_mode_t in hdd*/
VOS_STA_MODE=0,
VOS_STA_SAP_MODE=1, //to support softAp mode . This is misleading. It means AP MODE only.
//The constant name has historical reason
VOS_P2P_CLIENT_MODE,
VOS_P2P_GO_MODE,
VOS_MONITOR_MODE,
VOS_FTM_MODE = 5,
VOS_IBSS_MODE,
VOS_P2P_DEVICE,
VOS_MAX_NO_OF_MODE
} tVOS_CON_MODE;
Mode can be changed by "con_mode" module parameter.
(idk why they reinvented the wheel and not used the default "iw dev wlan0 set mode monitor")
Combined all this and... got a kernel panic. You may get it too. Main reasons are:
- You have not disabled WiFi before changing the mode
- The sleep time after disabling interface is short
- Driver is old. Yes, you can get crashes on some kernels. If you are, flash AGNi.
After successful switching you'll get a working monitor (check this with tcpdump -i wlan0), but with ethernet packets instead of radiotap, so airodump will not work. Luckily, this giant crappy driver can work with radiotap, but you need to configure it. This is done by another iwpriv call:
MonitorModeConf: <channel> <bandwidth> <crccheck> <filter> <conversion_required>
Filter: 3 decimal numbers
least to most: management packets, control packets, data packets
Conversion: 1 - ARPHRD_ETHER (802.3 packets), 0 - ARPHRD_IEEE80211_RADIOTAP (802.11 packets)
(again don't know why they implemented these calls instead of default ioctl's for channel switch, etc. This makes airodump unable to switch channels)
As a result you may get something like on a screenshot
Happy sniffing!
Who said it will not be an interesting , I my self appreciated your effort to bring this up. Kudos to you friend.
Crayvolt said:
Who said it will not be an interesting , I my self appreciated your effort to bring this up. Kudos to you friend.
Click to expand...
Click to collapse
Thanks. I wanted to say that kenzo development is almost dead, we've lost official LOS and keep losing devs.... So it's most likely we'll not see working packet injection (cuz devs who know driver's internals better than me are left), and, possibly, a wrapper library implementing the default ioctl's (like channel switch) used in most programs.
i understand, hopefully we can have new devs. who will continue
This is a perfect news. At least if this device became obsolete, it should still be useful to be a portable linux pen test device, if possible. Anyway, awesome job mate. Very much appreciated
Sent from my Note 3 using XDA Labs
you dont have permission to capture on that device sokect operation not permitted
aldhi said:
This is a perfect news. At least if this device became obsolete, it should still be useful to be a portable linux pen test device, if possible. Anyway, awesome job mate. Very much appreciated
Sent from my Note 3 using XDA Labs
Click to expand...
Click to collapse
Thank you. I forgot to say that monitor mode requiers support from firmware (there's some code in driver that checks for it). Kenzo guys are lucky because we have it enabled . There's also sta+monitor mode (so you can have working wifi connection while sniffing), but it also requiers support from firmware and kenzo's fw compiled without it. I forgot how to enable it, but i think you need to issue "iwpriv wlan0 monitor 1" in default con_mode and check dmesg - there will be a string that says it's not supported (if it is not).
And if someone is interested, our wireless chip is wcn3680b, simmilar one (or same, idk) can be found in nexus 4 (mako)
cerg2010cerg2010 said:
Thank you. I forgot to say that monitor mode requiers support from firmware (there's some code in driver that checks for it). Kenzo guys are lucky because we have it enabled . There's also sta+monitor mode (so you can have working wifi connection while sniffing), but it also requiers support from firmware and kenzo's fw compiled without it. I forgot how to enable it, but i think you need to issue "iwpriv wlan0 monitor 1" in default con_mode and check dmesg - there will be a string that says it's not supported (if it is not).
And if someone is interested, our wireless chip is wcn3680b, simmilar one (or same, idk) can be found in nexus 4 (mako)
Click to expand...
Click to collapse
Can you ziping code and flashable instal on twrp?
Khimin said:
Can you ziping code and flashable instal on twrp?
Click to expand...
Click to collapse
There's nothing to install except iwpriv binary... But OK, I'll try to create a magisk module with enable/disable scripts.
cerg2010cerg2010 said:
There's nothing to install except iwpriv binary... But OK, I'll try to create a magisk module with enable/disable scripts.
Click to expand...
Click to collapse
Thx, im waiting
Khimin said:
Thx, im waiting
Click to expand...
Click to collapse
Ok, I made it quickly!
Source: https://github.com/cerg2010cerg2010/qcmon
There's 2 scripts, run them from shell:
monen - enables monitor mode (you can specify configuration in the parameters, see system/xbin/monen)
mondis - disables monitor mode. You can use your wifi connection again.
cerg2010cerg2010 said:
Ok, I made it quickly!
Source: https://github.com/cerg2010cerg2010/qcmon
There's 2 scripts, run them from shell:
monen - enables monitor mode (you can specify configuration in the parameters, see system/xbin/monen)
mondis - disables monitor mode. You can use your wifi connection again.
Click to expand...
Click to collapse
Thx dude
thank you you are awsome +thumbsup
---------- Post added at 08:49 AM ---------- Previous post was at 08:03 AM ----------
filter expresion syntax error using command tcpdump -i wlan0
help please
---------- Post added at 09:05 AM ---------- Previous post was at 08:49 AM ----------
can you help me?
cerg2010cerg2010 said:
Ok, I made it quickly!
Source: https://github.com/cerg2010cerg2010/qcmon
There's 2 scripts, run them from shell:
monen - enables monitor mode (you can specify configuration in the parameters, see system/xbin/monen)
mondis - disables monitor mode. You can use your wifi connection again.
Click to expand...
Click to collapse
Is it safe to flash with magisk in note 5 pro ?
cerg2010cerg2010 said:
Ok, I made it quickly!
Source: https://github.com/cerg2010cerg2010/qcmon
There's 2 scripts, run them from shell:
monen - enables monitor mode (you can specify configuration in the parameters, see system/xbin/monen)
mondis - disables monitor mode. You can use your wifi connection again.
Click to expand...
Click to collapse
@cerg2010 Tried to flash with magisk in note 5 pro. System apps are not working after disabling the module from magisk it returned to normal. Any solution for this ?
Perinban Parameshwaran said:
@cerg2010 Tried to flash with magisk in note 5 pro. System apps are not working after disabling the module from magisk it returned to normal. Any solution for this ?
Click to expand...
Click to collapse
Please understand that I don't have any "note 5 pro". You can send me logcat and I can try to identify the problem or ask your ROM developer to take a look (if it's not MIUI lol). Anyway, that's just scripts, so you can copy them to /data/local/tmp or /system/bin manually.
Lol I'm a n00b what does this do? Is this a packet sniffer or something?
Op_Flashpoint said:
Lol I'm a n00b what does this do? Is this a packet sniffer or something?
Click to expand...
Click to collapse
Sort of. It makes your sniffer to work - you will be able to capture raw WiFi packets from your device without any dongles.
plis whats rom u use ¿
cerg2010cerg2010 said:
Ok, I made it quickly!
Source: https://github.com/cerg2010cerg2010/qcmon
There's 2 scripts, run them from shell:
monen - enables monitor mode (you can specify configuration in the parameters, see system/xbin/monen)
mondis - disables monitor mode. You can use your wifi connection again.
Click to expand...
Click to collapse
thank you man, monitor mode now working on my poco F1, using its module magisk + aircrack-ng
Hi guys,
My device is cat s60 ,Its on Android 6.0, last week I trying to root this device with magisk very easy and fast , everything is good ,as always Im going to installed root apps and play with aps, I install automate and download some scrips , finally I want to wrote my own script and it's about location and airplane mode , after some on and off airplane mode my Bluetooth share stop working and story was began ,my Bluetooth doesn't work yet and it's stop working , here list of works I do for fixing but no chance:
* Clear data and cache of Bluetooth
*Going to data/misc/bluedroid/ no file is here !!!! Like bt_config.xlm and ...
*Installed some apps that fix Bluetooth but no chance ,
any one have the same issue that can help me ,
I can't clear cache and wipe data ,Im trying to find some ways to fix this.
Thanks ,sry for my bad English
so after some searches i figure out my bt_config.conf , witch located in data/misc/bluedroid/ is gone , so i start to install from beginning my stock rom and then go to root files and see my config , thats the config of bt_config.conf i think when somebody have this problem can find his btMAC address on adb
adb shell settings get secure bluetooth_address
Click to expand...
Click to collapse
and then edit this file and Bluetooth error should gone .
[Adapter]
Address = your mac address
LE_LOCAL_KEY_IRK = 08a24df17b24b171021247948e3e2980
LE_LOCAL_KEY_IR = df2ca4f10c634bfa312ace86ec588864
LE_LOCAL_KEY_DHK = d234027d21a40e96302b60a1114be78a
LE_LOCAL_KEY_ER = 05502a73411b9d652e16fa6d189b1b9d
ScanMode = 1
DiscoveryTimeout = 120
[AutoPairBlacklist]
AddressBlacklist = 00:02:C7,00:16:FE,00:19:C1,00:1B:FB,00:1E:3D,00:21:4F,00:23:06,00:24:33,00:A0:79,00:0E:6D,00:13:E0,00:21:E8,00:60:57,00:0E:9F,00:12:1C,00:18:91,00:18:96,00:13:04,00:16:FD,00:22:A0,00:0B:4C,00:60:6F,00:23:3D,00:C0:59,00:0A:30,00:1E:AE,00:1C7,00:80:F0,00:12:8A,00:09:93,00:80:37,00:26:7E,00:26:e8
ExactNameBlacklist = Motorola IHF1000,i.TechBlueBAND,X5 Stereo v1.3,KML_CAN
FixedPinZerosKeyboardBlacklist = 00:0F:F6
PartialNameBlacklist = BMW,Audi,Parrot,Car
Click to expand...
Click to collapse
Hi all, hi tim,
I'm new in smartphone world but I am "hacking" lover and want to play with my girlfriend old Core Plus.
I enabled debugger mode, Installed TWRP and lineage-13.0-20170524-UNOFFICIAL-cs02.zip ROM (tim's 3.4.5+, Android 6.0.1).
I tried many ROMs but other have problem at boot ("trebuchet" loops chash).
Maybe it's because data and system were not correctly wiped (error during ROMs deployment, I had to manually delete /data and /system using ADB)...
Is there a way to install new rom without loosing data ?
Using OTA updates ? Currently it does not found any update ("No items available").
My main problem is GPS does not work:
(I want to use it for walking, so without internet location providers)
Code:
[email protected]:/ # settings put secure location_providers_allowed +gps
[email protected]:/ # dumpsys location
Current Location Manager state:
Location Listeners:
Reciever[f571137 listener UpdateRecord[passive android(1000) Request[POWER_NONE passive fastest=0]]]
Reciever[6db46a4 listener UpdateRecord[passive android(1000) Request[POWER_NONE passive fastest=0]]]
Active Records by Provider:
passive:
UpdateRecord[passive android(1000) Request[POWER_NONE passive fastest=0]]
UpdateRecord[passive android(1000) Request[POWER_NONE passive fastest=0]]
Historical Records by Provider:
android: passive: Interval 0 seconds: Duration requested 177 out of the last 177 minutes: Currently active
Last Known Locations:
Last Known Locations Coarse Intervals:
Geofences:
Enabled Providers:
fused
passive
mWhitelist=[] mBlacklist=[]
fudger: offset: -276, 1160 (meters)
passive Internal State:
mReportLocation=true
gps Internal State:
mFixInterval=1000
mDisableGps (battery saver mode)=false
mEngineCapabilities=0x6 (MSB MSA )
fused Internal State (com.android.location.fused):
REMOTE SERVICE name=fused pkg=com.android.location.fused version=0
mEnabled=false null
fused=null
gps Location[ 0,000000,0,000000 acc=340282346638529000000000000000000000000 t=?!? et=?!?]
---
net Location[ 0,000000,0,000000 acc=340282346638529000000000000000000000000 t=?!? et=?!?]
---
It there an hardware problem or a OS problem ? How to check ?
I'am also looking for a tutorial to build Lineage from scratch, for my interest.
Any link welcome.
Last request: I didn't find any reliable FM radio tuner apk. Device have a tuner, it works with samsung ROM.
Have a nice day.
Can You send me this rom?
Because source link is dead.
EDIT: Nevermind, sorry 'bout that.