All Activity

@usual user The USB and Ethernet ports are exposed, but how would that work exactly? I don't know how to make the software boot from USB or Ethernet and even if I did I don't know what to boot into that can write an image file to the emmc chip. I can find no info on this on radxa or armbian sources.

@bushw ok this is what i saw in my setup running as an ap (I used netplan and NetworkManager - but I do not use its AP (wifi hotspot) features ) > sudo iptables -L Chain INPUT (policy ACCEPT) target prot opt source destination Chain FORWARD (policy ACCEPT) target prot opt source destination Chain OUTPUT (policy ACCEPT) target prot opt source destination ^ empty sudo nft list ruleset ^ empty my setup is documented here: https://gist.github.com/ag88/de02933ba65500376d1ff48e504b1bf3 I'm running and using hostapd for AP, for one thing hostapd produce logs for every client that connects to the wifi AP, that is far better than the 'built-in' 'easy' AP say with NetworkManager. Now I'd try to explain why you observe what you observe: --------- Network Manager could be using DNSmasq https://en.wikipedia.org/wiki/Dnsmasq https://thekelleys.org.uk/dnsmasq/doc.html when it setup the AP, it creates a NAT so that the wifi-subnet can access the upstream network https://tldp.org/HOWTO/html_single/Masquerading-Simple-HOWTO/ in addition,, DNSmasq also provides a dhcp server (to distribute ip addresses to the connecting wifi clients) and ipv6 router advertisement. that is what makes it 'simple'. don't like that? install and setup hostapd https://w1.fi/hostapd/ install and setup a dhcp server if you need it https://www.isc.org/dhcp/ install and setup radvd if you need ipv6 https://github.com/radvd-project/radvd those 3 above can normally be installed via apt next configure and setup the network interfaces and hostapd like what I did: key is (*unmanage* the WiFi interface and use hostapd to manage it, manual configure it) https://gist.github.com/ag88/de02933ba65500376d1ff48e504b1bf3 then you can choose to setup a network bridge or routing as you deemed fit. or even NAT - via ip tables or nftables https://wiki.nftables.org/wiki-nftables/index.php/Main_Page ^ if you do this, then that is what dnsmasq (probably called by NetworkManager) tries to do for you to make it 'easy' but in this way you can configure everything yourself, no interference from Netplan, NetworkManager , dnsmasq, doesn't touch your iptables or nftables --- this mode: AP for wifi interface is a *feature* that you used in NetworkManager (dnsmasq) this is different from saying that Netplan and/or NetworkManager * *maliciously* change firewall configs for all possible combinations of network interfaces and configurations* don't like that AP feature / implementation in NetworkManager? you could probably take it up with RedHat https://docs.redhat.com/en/documentation/red_hat_enterprise_linux/7/html/networking_guide/getting_started_with_networkmanager I'm not sure what other ways are there to configure the AP in NetworkManager so that it doesn't do NAT you would need to experiment if you are using the mode: AP feature in NetworkManager, there are likely various config options https://docs.redhat.com/en/documentation/red_hat_enterprise_linux/8/html/configuring_and_managing_networking/proc_configuring-rhel-as-a-wpa2-or-wpa3-personal-access-point_configuring-and-managing-networking https://www.baeldung.com/linux/nmcli-wap-sharing-internet doing everything manually for WiFi AP using hostapd land individual tools, lets you control every single aspects of the network configs, I prefer this myself over the 'simple' approach e.g. that offered by NetworkManager, this include your firewall rules iptables, nftables etc, it is in part because the 'simple' AP offered by NetworkManager does so using NAT which is basically firewall rulesets i.e. iptables, nftables, if you don't want it to 'touch' that, then you would need to setup things manually.

Forum moderatores are there to provide guidance in discussion and take action if things get out of control. Having a wide varity of knowledge in various areas is desireable but not mandatory. As for myself I did not know about that either.

i didn't found any axp chip in my device, but only a controller, it's very small and that's all i found. Is it ok to dump the boot.img from the android (i have usb to usb cable)

To be honest, I'm shocked that I need to provide evidence. I assumed this was common knowledge — at the very least among the forum moderators — and that we'd be discussing how it's even possible for the recommended package to behave this way. How to reproduce it? Just implement "mode: ap" in netplan config and check your iptables chains.

We appreciate idea, but we have to look at the health of the whole ecosystem. Our build framework deals with many boards and non-standard low-level components (e.g., U-Boot), and right now it builds reliably only on Ubuntu Jammy. Even Noble isn’t fully compatible yet; adding Debian (unofficially, to some degree, it already works for many years) at this stage would likely cause regressions. As Ubuntu is more present in embedded world, making Debian recommended would costs a lot more from budget we don't have while bringing nothing in return. Exactly. There are many issues in FOSS and there is little we can do. We didn't develop any of those tools - we provide them. Networking stack is an important part, it has its own diversity and this should be in users domain. I think our logic for providing images is a good compromise - we provide Debian and Ubuntu images, we provide them once with systemd-networkd (minimal) and the rest with NetworkManager. Now to keep some consistency and make it simple for non experts, using NetPlan as a central config point also makes sense - for most of use cases and most of users. Those who needs special handling of net stack, its easy to replace them with something else.

moved to userspace

When you do first login, you need to choose correct locales combination and language in desktop should follow - you still need to install desktop packages ... If you don't have locales support in the system, you won't be able to use it in desktop. I think this is the problem. In my case, when I select my own locales (sl_SI.UTF-8) and install those desktop related packages, I have Gnome with Slovene support.

RPi added some checks in their initramfs post-update script which causes this, found here: /etc/initramfs/post-update.d/z50-raspi-firmware: case $flavour in v8|v8-rt|2712|v6|v7|v7l) ;; *) echo "ERROR: Unsupported initramfs version ($initrd_version)" exit 0 ;; esac However there is also another fine in this folder which was added years ago: https://github.com/armbian/build/pull/6039/files#diff-02b9b6fbb77fcab23278cd4a148b3f2c91d2c1361d05f33a21bdab19182caf21R139-R153 That seems to handle initramfs creation properly. So the error message is purely cosmetical. That would give trouble when updating rpi packages from upstream since there would be changes detected. Better solution might be to add a hint to our code stating that the ERROR can be ignored as long as overall initramfs generation was successful.

@Cancer Why you need to drop ifconfig for ip: https://opensource.com/article/21/1/ifconfig-ip-linux If you’re still using ifconfig, you’re living in the past https://ubuntu.com/blog/if-youre-still-using-ifconfig-youre-living-in-the-past there are certain things in this article that can be done in ip command that takes more than just ifconfig to do the same. Introduction to Linux interfaces for virtual networking https://developers.redhat.com/blog/2018/10/22/introduction-to-linux-interfaces-for-virtual-networking#vlan ^ this matters if you are bothered about containers, docker, virtual machines, virtualbox, vpn, wireguard, vlan, etc etc otherwise, if you don't need any of containers, docker, virtual machines, virtualbox, vpn, wireguard, vlan, etc etc you can live with ifconfig in a certain sense, the availability of this network infrastructure in linux along with ip command as one of the tools accounts for the modern trillion $ cloud services: amazon aws, google cloud, azure, ibm redhat, and practically every other vps, web, any sort of cloud services on Internet that runs on linux today. anyway, to get ifconfig it is simply sudo apt install net-tools https://www.fosslinux.com/121757/how-to-install-missing-ifconfig-command-on-linux.htm

accordingly, one can remove Netplan if one don't like it https://www.baeldung.com/linux/etc-network-interfaces-netplan-switch and that actually even with Netplan one can configure a different renderer, e.g. Network-Manager https://docs.armbian.com/User-Guide_Networking/ or for that matter, I think it is feasible to remove Netplan altogether and just use Network Manager, if one prefers that or even for that matter switch back to the raw lowest level /etc/network/interfaces as described in the 1st link In addition show the detailed sequence of events and provide details that: if you cannot show this in detail, then what is your basis of saying that it happens? Note that normally, there is a sequence of events, the interfaces need to be setup first hand, then that the firewall (e.g. iptables) is configured after that. What you need to proof in addition, is that Netplan or NetworkManager *revoke or change* your iptables / firewall setup if they are configured after Netplan / NetworkManager setup the interfaces. i.e. that it is potentially malicious if all that you mention can be rigiously proven then that perhaps we can file that with mitre and have the world cybersecurity issue a major CVE about it. https://attack.mitre.org/ https://www.cve.org/ i.e. that the whole world and every web server, every vps, anyone any servers running wordpress on linux, any webs running linux, everyone including the whole amazonaws, azure, google cloud, redhat ibm, etc etc running linux follow up and fix *all the servers in the Internet*

Additional Info: The "Current" Kernel I found the equivalent code in the Current kernel. It is a clearly a different version of the file, but it looks like the same error is present. I have not tested it. Snippet Source: ./build/cache/sources/linux-kernel-worktree/6.12__rockchip64__arm64/arch/arm64/boot/dts/rockchip/rk3588-orangepi-5-plus.dts &analog_sound { pinctrl-names = "default"; pinctrl-0 = <&hp_detect>; simple-audio-card,aux-devs = <&speaker_amp>, <&headphone_amp>; simple-audio-card,hp-det-gpios = <&gpio1 RK_PD3 GPIO_ACTIVE_LOW>; // This line here: Change GPIO_ACTIVE_LOW to GPIO_ACTIVE_HIGH simple-audio-card,widgets = "Microphone", "Onboard Microphone", "Microphone", "Microphone Jack", "Speaker", "Speaker", "Headphone", "Headphones"; The "Vendor" Kernel I found the equivalent code in the Vendor kernel's devicetree. It is also a clearly different version of the file from the other two kernel trees. But it looks like this particular coding error (for the audio) is not present here. The headphone detection level is set to GPIO_ACTIVE_HIGH. Source: ./build/cache/sources/linux-kernel-worktree/6.1__rk35xx__arm64/arch/arm64/boot/dts/rockchip/rk3588-orangepi-5-plus.dts However in my experience (tested again just now with version 28.5.1), the Vendor kernel seems a bit crippled: No GPU or video acceleration, and no ES8388 analog audio whatsoever (not even at the ultra-low volume I was getting with the Edge kernel). At least the screen, keyboard, mouse, and ethernet works, but with no video acceleration the video is slow and clumsy (in gnome). I suspect that the best place to look for the audio issue with the Vendor kernel is not to focus on the audio, so much as to focus on what broke on an apparently deeper level.

Thanks, i will tear it down and see what axp chip mine is using

Well that's one thing that confuses me with Linux source code - is having so many different versions of the same file, how to tell which one: location, version type, and especially which repository. Thanks so much for acting right away to get this fix into the Armbian!!

Thank you for having a look and catching my mistake. I have marked the PR as still work-in-progress for now while I look into where to patch this correctly in Armbian itself.

Using included in image armbian-config script as many times for other boards before. I have no idea what was there and I didn't care because Script formats emmc before transfer (with "Warning! All data will be destroyed - proceed?") So there is no chance to leave any trails of anything rested on emmc before

Awesome! Thanks so much!! You're welcome! The kernel.org audio patch by Maud Spierings is as follows: Source: https://patchwork.kernel.org/project/linux-rockchip/patch/20250823-orangepi5-v1-1-ae77dd0e06d7@hotmail.com/ ./arch/arm64/boot/dts/rockchip/rk3588-orangepi-5-plus.dts &analog_sound { pinctrl-names = "default"; pinctrl-0 = <&hp_detect>; simple-audio-card,aux-devs = <&speaker_amp>, <&headphone_amp>; - simple-audio-card,hp-det-gpios = <&gpio1 RK_PD3 GPIO_ACTIVE_LOW>; + simple-audio-card,hp-det-gpios = <&gpio1 RK_PD3 GPIO_ACTIVE_HIGH>; simple-audio-card,widgets = "Microphone", "Onboard Microphone", "Microphone", "Microphone Jack",

How was this transfered? What was on the eMMC before the transfer? Was the eMMC wiped before the transfer? My guess is that your eMMC has Android loaded on it, you didn't wipe it and now you have partitions left over from the Android install.

still on windows , but microsoft suggests 11 so looking for linux 11

I didn't mention, sorry, probably it matters somehow - my bookworm is already transferred to emmc, so system boots and runs from there, not from SD-card

WSL might be easier if you're on windows

" Either of those," i'm one step closer OK, i 'll get Ubunto on vm and will look deeper. Thanks for now

Not joking at all. 1st point Supported Architectures: x86_64, aarch64, riscv64 board is armhf Next 3 points from this readme: System: VM, container, or bare-metal with: ≥ 8GB RAM (less with KERNEL_BTF=no) ~50GB disk space Operating System: Armbian / Ubuntu 24.04 (Noble) for native builds Any Docker-capable Linux for containerized setup Windows: Windows 10/11 with WSL2 running Armbian / Ubuntu 24.04 Are they alternate to each other

Either of those, I personally used Ubuntu running in ESXi VM

Are you joking? Open readme.md in GitHub repo, read it and explore links therein