I am starting this thread because i found that after all this long time of waiting an improvement from Android guys from Google regarding a complete UI for connecting to the miscellaneous WiFi configurations nothing comes out.
I consider my thread android development related, but if the mods want to move it please do it.
I am not a developer but I'm a user which wants all the cake not just a bite.
I am referring to special type of WiFi connections which wpa_supplicant is capable like:
"
EAP-TLS
EAP-PEAP/MSCHAPv2 (both PEAPv0 and PEAPv1)
EAP-PEAP/TLS (both PEAPv0 and PEAPv1)
EAP-PEAP/GTC (both PEAPv0 and PEAPv1)
EAP-PEAP/OTP (both PEAPv0 and PEAPv1)
EAP-PEAP/MD5-Challenge (both PEAPv0 and PEAPv1)
EAP-TTLS/EAP-MD5-Challenge
EAP-TTLS/EAP-GTC
EAP-TTLS/EAP-OTP
EAP-TTLS/EAP-MSCHAPv2
EAP-TTLS/EAP-TLS
EAP-TTLS/MSCHAPv2
EAP-TTLS/MSCHAP
EAP-TTLS/PAP
EAP-TTLS/CHAP
EAP-SIM
EAP-AKA
EAP-AKA'
EAP-PSK
EAP-FAST
EAP-PAX
EAP-SAKE
EAP-IKEv2
EAP-GPSK
LEAP (note: requires special support from the driver)"
This is copied from here http://hostap.epitest.fi/wpa_supplicant/
Seems that we have the gun and the bullets but we don't have the trigger.
This idea come to me when i was struggling connecting to my work WiFi and never succeeded, phones like Symbian or Windows based laughed into my phone's face (and i think that is not correct, considering it frustrating).
My proposal to all the devs from XDA is to build a new app and wpa_supplicant with all drivers and stuff which will be able to help us connecting very easy to all kind of WiFi methods.
PS: My work network configuration for windows is like this:
SSID, CKIP LEAP, username, domain, password.
Hidden WiFi: http://code.google.com/p/android/issues/detail?id=1041
LEAP WiFi: http://code.google.com/p/android/issues/detail?id=1871 ; http://code.google.com/p/android/issues/detail?id=1386
Ad-Hoc WiFi: http://code.google.com/p/android/issues/detail?id=82
Devices that are capable to connect on my work WiFi network:
Symbian V3 (Nokia N8)
Windows Mobile 6.5 (HTC Diamond)
Devices that are not capable to connect on my work WiFi network:
Android (HTC Desire HD and Samsung Galaxy S I)
iOS 4 (iPhone 3Gs)
iOS 5 (iPod)
Blackbery (Curve 8900)
============================================================
Update: 29/11/2011
After a 2-3 weeks of Google-ing I think that i found the gap with LEAP:
How you can see above LEAP - requires special support from the driver and i found a Linux driver which says like this:
2086 // CCX 1 spec v1.13, A01.1 CKIP Negotiation (page23):
2087 // "A Cisco access point advertises support for CKIP in beacon and probe response packets,
2088 // by adding an Aironet element and setting one or both of the CKIP negotiation bits."
2089 if( (info_element->data[IE_CISCO_FLAG_POSITION]&SUPPORT_CKIP_MIC) ||
2090 (info_element->data[IE_CISCO_FLAG_POSITION]&SUPPORT_CKIP_PK) )
Source:http://lxr.free-electrons.com/source/drivers/staging/rtl8192e/ieee80211/ieee80211_rx.c
My work WiFi require CKIP Encryption so this is root cause for me to not be able to connect to LEAP.
Currently broadcom support: 802.1x; WEP, WEP2, WPA, WPA2 (Personal) TKIP and AES hardware acceleration 802.11i. When "broadcom" will release compatible drivers, we will be able to connect. Until then, all users that are in my situation will better get an alternative.
http://pdf.eccn.com/pdfs/Datasheets/Broadcom/BCM4329.pdf
http://os1a.cs.columbia.edu/lxr/source/drivers/net/wireless/bcm4329/wl_iw.c
So next remaining thing will be a "Complete UI" release for android which offers all type of connections.
================================================================================================
Update: 07/12/2011
In my craziness to find a solution to my problem regarding connection to work corporate WiFi, I found the missing link (in my opinion) between android and Linux capability to access CKIP encrypted networks: http://o2droid.phj.hu/trac/browser/kern_oII/drivers/staging/rt2860/sta/assoc.c . It is about a special characteristic that allow connections to Aironet access points with CCX (CISCO Compatible Extensions).
================================================================================================
Update: 14/03/2012
I need a port from Dell Streak to HTC DHD
I searched Google again and i found this:
http://forum.xda-developers.com/show...62&postcount=1 here is a file listed "system/etc/wlan/sdio-g-cdc-reclaim-idsup-wme-pktfilter-keepalive-aoe-toe-ccx-wapi.bin" and with a F3 in Total Commander contain this:
"NONE WEP1 TKIP WEP128 AES_CCM AES_OCB_MSDU AES_OCB_MPDU CKIP CKIP_MMH WEP_MMH" and
"ccx_auth_mode"
The file is in the Streaksmi.zip which is miui for dell streak that has bcm4325 chipset.
================================================================================================
Update: 10/07/2013
Working Solution Update: 10/07/2013
Flash [ROM][UNOFFICIAL] CyanogenMod 10.1 Nightlies / M-Series [RC5] and say many thanks to Mustaavalkosta !!! - Tested working build: cm-10.1-20130709-UNOFFICIAL-ace.zip
I too have issues with wifi sometimes, but I found using miui and connecting, inputting the password and then using the individual settings to input a manual IP and all that seems to work.
Sorry if I've misunderstood
Sent from my HTC Desire HD using Tapatalk
Difference between OS's
Joey93 said:
I too have issues with wifi sometimes, but I found using miui and connecting, inputting the password and then using the individual settings to input a manual IP and all that seems to work.
Sorry if I've misunderstood
Sent from my HTC Desire HD using Tapatalk
Click to expand...
Click to collapse
So what is different between MIUI and a usual Android system?
No idea apart from that it keeps the individual settings separately so you don't have to input manually every time you need to change, but it seems to be the only thing that works for all the networks I use.
Sent from my HTC Desire HD using Tapatalk
Compatibility with Ad-Hoc
Joey93 said:
No idea apart from that it keeps the individual settings separately so you don't have to input manually every time you need to change, but it seems to be the only thing that works for all the networks I use.
Sent from my HTC Desire HD using Tapatalk
Click to expand...
Click to collapse
Is it capable to connect with Ad-Hoc type of networks too?
And the answer is "Yes", wpa_supplicant from MIUI is capable to connect to Ad-Hoc networks.
Not sure what your problem connecting might be. At uni, we have EAP-PEAP/MSCHAPv2, and I can connect fine, and connect any android phones that come in fine aswell. We use a program called xpressconnect, but can do it manually too.
whiperhack said:
Is it capable to connect with Ad-Hoc type of networks too?
And the answer is "Yes", wpa_supplicant from MIUI is capable to connect to Ad-Hoc networks.
Click to expand...
Click to collapse
I have an application on my laptop that makes a network from it (like a router) which I've always assumed used ad-hoc and it's always connected fine to that so yeah I assume so =)
Old Leedroid ROMs used to work too if you wanted sense, but they were back in August-ish time
Already tried manual config
rorydaredkign said:
Not sure what your problem connecting might be. At uni, we have EAP-PEAP/MSCHAPv2, and I can connect fine, and connect any android phones that come in fine aswell. We use a program called xpressconnect, but can do it manually too.
Click to expand...
Click to collapse
Before i start this thread i tried several combination of configurations, I buyed even Advanced Leap WiFi from market and nothing. This problem is not from configuration because, like I said windows mobile and symbian is piece of cake to connect.
My connection is hidden ssid. After I put my credentials configured with leap, another network with same name but with WEP security appears, saying connecting...disconnected.
Update
I just tried MIUI and conclusions are:
1) Ad-Hoc is connectible (but stock android with a modified(patched) wpa_supplicant is capable to connect to Ad-Hoc too).
2) LEAP is still doing Connecting....Disconnected.
3) MIUI has a file named "/system/bin/wpa_cli" which stock didn't have it.
whiperhack said:
I just tried MIUI and conclusions are:
1) Ad-Hoc is connectible (but stock android with a modified(patched) wpa_supplicant is capable to connect to Ad-Hoc too).
2) LEAP is still doing Connecting....Disconnected.
3) MIUI has a file named "/system/bin/wpa_cli" which stock didn't have it.
Click to expand...
Click to collapse
For number 2 try manually inputting a static ip, dns, gateway and netmask =)
Must be something which makes the difference
Joey93 said:
For number 2 try manually inputting a static ip, dns, gateway and netmask =)
Click to expand...
Click to collapse
Thanks for the tip, I will try tomorrow. But what is the catch? What makes WM and Symbian better than Android when is about connecting to a LEAP network?
So you'd like other people to build an app for you?
Learn how to code!
All android comunity will thank to the courageous developer who will create the tweak
ivolol said:
So you'd like other people to build an app for you?
Learn how to code!
Click to expand...
Click to collapse
Why do you say "YOU"? Is not just me, is the whole android community that has lack of what i said in the thread. The work that will be done by a skilled developer from here will be used in the future by all androiders.
All the info and opinions that will be wrote in here will help the "courageous developer" to build the Complete WiFi UI.
My experience with the WiFi will help others to connect on similar networks.
In my opinion this is true development: trying to reach the impossible, or not yet possible, or not yet known.
I think is at last 1 developer in here which knows very good the WiFi protocols and can give us a hint.
For us (the ordinary users) is very difficult to start now learn coding in android and network protocols, because will last at least six months of staying in codes to get the idea of coding.
Compiling in android OS
ivolol said:
Learn how to code!
Click to expand...
Click to collapse
I checked your thread and is says nothing about compiling in Android OS. In my opinion this is the root cause of not fully working WiFi connectivity. With a proper .conf file of latest wpa_supplicant i think that the issue will become history.
Logcat and new tests
Hello again,
I've made some new tests and I found ......... nothing.
The thread with steps that i followed is this: http://code.google.com/p/android/issues/detail?id=8804
Hi, I can see the kernel on my S6 is trying to connect out to various IP addresses (one is a Samsung IP in Germany for example). It seems to do this fairly regularly. I'm running the 5.02 software as delivered but rooted and with most of the Samsung stuff removed. I'm not clever enough to capture the traffic but does anyone else have any ideas what it may be for?
Thanks
Application's NameKernel) - Linux kernel
Total Packets Blocked:287
[TCP]191.237.153.133:443(14)
[TCP]216.58.210.1:443(6)
[TCP]216.58.209.228:443(1)
[TCP]216.58.210.3:443(1)
[TCP]207.244.72.9:80(189)
[TCP]23.235.43.134:80(10)
[TCP]216.58.210.1:80(7)
[TCP]216.58.209.238:443(25)
[TCP]185.31.18.130:80(10)
[TCP]193.155.127.124:443(10)
[TCP]216.58.208.42:443(4)
[TCP]23.235.33.134:80(10)
Hi everyone,
What is this?
This is a DHCPv6 Client for Android.
Motivation
Google doesn't support DHCPv6. See: https://code.google.com/p/android/issues/detail?id=32621
This is an issue for a lot of people especially for corporations and universities because they need control over the IPv6 addresses they distribute.
I did some research and found out that Fairphone already has support for DHCPv6, they achieve this by implementing the wide-dhcpv6 client and added some own scripts around it.
This gave me the idea to play a little with this client. I did so and the result is this app.
Basically it is an implementation of Fairphone's DHCPv6 solution for every rooted Android phone and not just Fairphone.
Workflow
Broadcast Receiver for CONNECTIVITY_CHANGE (invoked when connectivity is changed)
Check if /system/bin/dhcp6c <interface> is running (this is the master process) if not then invoke it
Sending a signal with /system/bin/dhcp6ctl to the master process to get an IPv6 address (dhcp6ctl -C start interface <interface>)
Why is root required?
Root permissions are required for the DHCPv6 client to work because it binds to port 546.
Permissions
root - see above
access network and wifi state - catching network changes
internet - for checking if internet is available and getting a list of all interfaces available
billing - for donation
Get the app
Simply download it from the app store: Download from Google Play Store
Source Code
DHCPv6 Client for Android on GitHub
-realm_01
hostname/domain name support?
Installed this on my android TV media box, and it now connects to my DHCPv6 server as expected, and a lease is registered, however it does not supply a host name or domain name. The domain name is advertised by my router, and also supplied as option in DHCPv6 scope.
Are these an android problem, or the DHCPv6 client?
Almost working...
Hi !
Thanks for the app. Android really needs this. I'm trying to use it on Motorola XT1058 running Lollipop. I can see in the packet capture of my router (OpenWrt) that the DHCPv6 transaction is working and my router is giving out statefully assigned IPv6 addresses to my phone. Unfortunately, these addresses don't get assigned to wlan0 interface on Android. I'm still seeing only stateless addresses on wlan0. Any help would be appreciated.
Regards,
André
Thank you, as a system administrator it was crazy annoying to not be able to enforce a an IPv6 range for android devices
This app doesn't work until I adb shell into my device and run dhcp6c wlan0 as root manually.
Works on Pixel XL
Works fine on my Pixel XL with Android 7.1.
Thank you!
Hi, great job on this app. Wondering how you were able to override the Android DHCP software from trying to connect to networks and have it use the IPV6 info your client acquired?
Yes, I know, I'll likely be the one working on this having requested it.
Admittedly, there are a lot of usability issues with redirecting outbound DNS queries from the Android resolver to a local resolver. Most problematic are when the DHCP-specified DNS servers are to be trusted (such as on trusted WiFi or trusted VPN that has "private" address information).
Assuming that those could be worked through in some reasonable way (I haven't looked at what M offers for notification and the like, but am not terribly happy with the way that WiFi Privacy prompts when it finds an unknown MAC), I'd like to suggest that "we" look at unbound as it supplies DNSSEC, as well as being arguably more robust and secure than something like dnsmasq.
There has been some good work done on the executable port:
https://unbound.net/pipermail/unbound-users/2015-August/003976.html
https://github.com/smarek/android-unbound-dns
There will likely be additional complexities with Google dropping OpenSSL in favor of BoringSSL.
(The SSL library change will likely impact ssh and rsync on my phone, which I use for backup, so getting both of those to build again under M will be a higher priority for me)
I think the most challenging parts will be the UX on how to control it as well as getting the redirection to play nicely with widely used firewall tools out there such as AFWall.
I'll at least be thinking about that UX part. Without that, it won't have the utility to balance the cost.
Hello everyone, I am a new networking and sys admin grad so would love to know if my thinking is incorrect or I am missing anything.
I am cursed with no high speed access where I live rurally so...I use work/coffee shops to do some downloading on my S10.
I use Tor and AirVPN, forced UDP protocol 443.
I have checked multiple times and cannot find DNS or WebRTC leaks with Air (happy with their service overall)
With a popular port for traffic, checking these leaks, and using Tor/VPN (with killswitch on) my question is:
How secure is my activity? Essentially...since I have no access at home I download shows and movies with the Flud client.
On top of a torrent client would it also be secure to grab it from MEGA/Tezfiles? I see maybe a higher WebRTC risk but am I correct in thinking for what activities I am doing I am pretty much safe? Since activity is piracy and not like dark web or anything for them to truly deep dive.
Thanks for the feedback!!