OpenWrt Forum Archive

Topic: No monitor mode on WRT54GL

The content of this topic has been archived on 13 Apr 2018. There are no obvious gaps in this topic, but there may still be some posts missing at the end.

8.09 rc1 and 8.09 rc2, 2.4 kernels won't go into monitor mode.  Wireless is enabled, not configured and not bridged.

ifconfig wl0 down
iwconfig wl0 mode monitor

gives this error:

Error for wireless request "Set Mode" (8B06) :
    SET failed on device wl0 ; Invalid argument.

ifconfig wl0 down
wlc monitor 1
iwconfig

causes a reboot.

I've tried many combinations of ifconfig wl0 down/up, ifdown/ifup prism0, etc.  The 2.6 kernel works with the above commands, but I like the wireless features and stability in 2.4.

(Last edited by Belfry on 26 Jan 2009, 02:13)

Guess I'll fill out a ticket.

Florian answered my ticket, but his suggestion of adding "option mode monitor" to /etc/config/wireless isn't working for me:

config wifi-device  wl0
    option type        broadcom
    option disabled        0

config wifi-iface
    option device        wl0
    option mode        monitor

No monitoring tools work, there is no prism0 interface (even after "ifconfig wl0 up" and "wlc monitor 1") and iwconfig reboots the machine. If I run "iwconfig wl0" the output indicates managed mode.

Has anyone been able to get the broadcom driver in monitor mode under 8.09 with the 2.4 kernel?

Just calling out.

Just another bump.

I have also been fighting with this... Found no solution. I'm having the exactly same problem: it reboots when you do iwconfig after "wlc monitor 1"

I would appreciate if someone had answer for this :S

No solution yet, either from my experiments or from ticket #4523.

Some things I've tried:

1) Builds from 8.09 rc2 source and snapshots --exactly the same symptoms.   I thought I'd just try this based on some unrelated "load_nls" problems I've resolved through doing builds.  However, there doesn't seem to be any build options which would resolve this problem.

2) Uninstall the standard broadcom driver and replace with the MIMO version--functional wireless but exactly the same symptoms.

3) Swap /lib/wifi/broadcom.sh from Kamikaze 7.09--multiple errors on "wifi up", no functional wireless.

4) And the problem is still there with the newly released 8.09. 

Kamikaze 8.09 (Broadcom 2.4) is otherwise superior to 7.09, especially in multiple ssid throughput and CPU usage--a really great distribution with just a few minor issues.

(Last edited by Belfry on 24 Feb 2009, 19:14)

Hello Belfry,
I got stuck too with 8.09 and Monitor mode not available on WRT54GL for this version.
Yeah I could get back to whiterussian or 7.09 but I couldn't install aircrack 1.0 on them..

If you find a way to work it out I am really interested.
Hope it will be soon..

Doesn't work with a WRT54G v3.1, which is based on the BCM4712.  The WRT54GL is based on the BCM5352.

Just thought I'd give it a try.

Not working in 8.09.1 sad
Same symptoms:
wlc monitor 1 + iwconfig = reboot. 
iwconfig wl0 mode monitor = "Error for wireless request "Set Mode" (8B06) : SET failed on device wl0 ; Invalid argument."

Hi,
Similar here, unable to set wlan0 as AP (master mode) tried both option mode=master and option mode=ap in /etc/config/wireless

wlan0     IEEE 802.11bg  ESSID:"" 
          Mode:Managed  Frequency:2.412 GHz  Access Point: Not-Associated   
          Tx-Power=0 dBm   
          Retry min limit:7   RTS thr:off   Fragment thr=2352 B   
          Encryption key:off
          Power Management:off
          Link Quality:0  Signal level:0  Noise level:0
          Rx invalid nwid:0  Rx invalid crypt:0  Rx invalid frag:0
          Tx excessive retries:0  Invalid misc:0   Missed beacon:0

root@OpenWrt:~# iwconfig wlan0 mode master
Error for wireless request "Set Mode" (8B06) :
    SET failed on device wlan0 ; Invalid argument.

Was this ever resolved?
Linksys wrt54grv11, running kamikaze RDC 321x [2.6], AirLink101 AR525W profile

(Last edited by TomasD on 24 Oct 2009, 23:58)

Hi, i`ve same symptos, is there any solution??
Maybe we have to uninstall 8.09???
Thanks

bump! has anyone solved this issue?

Oh man, I'm on the same boat guys, this is the only thread about this problem.

Ended up installing Kamikaze 7.07, works a charm \o/

(Last edited by iriki on 21 Feb 2011, 22:22)

Any solution for this yet? I have a wrt350n v1, running Backfire (10.03.1, r29597) and hit exactly the same problem.
wl/wlc creates prism0, but when I try to use iwconfig/monitor tools, it page faults:

BusyBox v1.15.3 (2011-12-27 18:06:27 EET) built-in shell (ash)
Enter 'help' for a list of built-in commands.

  _______                     ________        __
 |       |.-----.-----.-----.|  |  |  |.----.|  |_
 |   -   ||  _  |  -__|     ||  |  |  ||   _||   _|
 |_______||   __|_____|__|__||________||__|  |____|
          |__| W I R E L E S S   F R E E D O M
 Backfire (10.03.1, r29597) ------------------------
  * 1/3 shot Kahlua    In a shot glass, layer Kahlua 
  * 1/3 shot Bailey's  on the bottom, then Bailey's, 
  * 1/3 shot Vodka     then Vodka.
 ---------------------------------------------------
root@metrou:/# 
root@metrou:/# 
root@metrou:/# wl monitor 1
root@metrou:/# iwconfig
lo        no wireless extensions.

eth0      no wUnable to handle kernel paging request at virtual address 00000010, epc == c01d99ac, ra == c01d9530
ireless extensioOops in fault.c::do_page_fault, line 206:
$0 : 00000000 813a5cb0 00000100 00000001 813a5b78 813a5cb0 00000000 0000000c
$8 : 00000000 813a5b78 0000000c 00000000 45454549 00000001 00000057 32303820
$16: ffffffe6 81bd0c00 813a5cd0 801a0000 00000000 80ea0200 00008b05 00405dbc
$24: 00000000 801145b4                   813a4000 813a5b48 004a092c c01d9530
Hi : 0000000f
Lo : 0001ef45
epc   : c01d99ac    Tainted: P 
Status: 1000fc03
Cause : 00000008
PrId  : 0002901a
Process iwconfig (pid: 1497, stackpage=813a4000)
Stack:    ffffffe6 81bd0c00 ffffffe6 81bd0c00 813a5d08 801a0000 0000001d
 813a5cd0 0000000c 00000000 00000000 00000000 ffffffe9 813a5e20 00000000
 80eb4fb0 00000000 813a5d00 00000106 813a5d08 0000000b 00000000 00000000
 00000000 00000000 813a5e20 813a5bb8 00000001 00000000 1000fc00 ffffffe6
 81bd0c00 813a5d70 801a0000 81bd0e00 813a5e90 00008b2b 00000001 00000040
 c01d99d0 ...
Call Trace:   [<c01d99d0>] [<800090f0>] [<800caca4>] [<800d015c>] [<c01da950>]
 [<c01db2d8>] [<c01daec0>] [<c0188738>] [<8000306d>] [<c01db300>] [<c0189924>]
 [<c01ddb2c>] [<c01db0b0>] [<80017f54>] [<c01d96c4>] [<c01ff1d4>] [<c01fe0f4>]
 [<c01dae48>] [<c01fd0a0>] [<c01fe314>] [<c0198ff8>] [<c0198fc0>] [<80149e38>]
 [<c01daec0>] [<c0192560>] [<80026ea8>] [<80028520>] [<800db1a4>] [<8013e640>]
 [<c019d43c>] [<800d1acc>] [<80002408>] [<80097f94>] [<80097eb8>] [<80049388>]
 [<8013aa44>] [<80008aa0>] [<8005bd8c>]

Code: 8f820004  34420100  af820004 <8e820010> 8e24009c  8fa50018  8fa70020  afa20010  3c02c019 
ns.

sit0     Kernel panic: Aiee, killing interrupt handler!
 no wireless extIn interrupt handler - not syncing
ensions.

eth0 .0    no wireles<0>Rebooting in 3 seconds..s extensions.

eth0.1    no wireless extensions.

br-lan    no wireless extensions.

wl0       IEEE 802.11-DS  ESSID:""  
          Mode:Master  Frequency:2.412 GHz  Access Point: Not-Associated   
          Bit Rate:54 Mb/s   Tx-Power:10 dBm   
          RTS thr:off   Fragment thr:off
          Link Quality:5  Signal level:0  Noise level:171
          Rx invalid nwid:0  Rx invalid crypt:0  Rx invalid frag:0
          Tx excessive retries:0  Invalid misc:1   Missed beacon:0

Please stand by while rebooting the system...


CFE version 1.0.37 for BCM947XX (32bit,SP,LE)
Build Date: Mon Oct 30 23:22:44 CST 2006 (root@linux)
Copyright (C) 2000,2001,2002,2003 Broadcom Corporation.
....

The monitor mode works fine as long as you do not try to use wext with it (iwconfig, iwlist, iwpriv).

Hi jow, thanks for your reply! I don't know if it's just me, but I get a similar page fault if I try to use airodump-ng directly:

BusyBox v1.15.3 (2011-12-27 18:06:27 EET) built-in shell (ash)
Enter 'help' for a list of built-in commands.

  _______                     ________        __
 |       |.-----.-----.-----.|  |  |  |.----.|  |_
 |   -   ||  _  |  -__|     ||  |  |  ||   _||   _|
 |_______||   __|_____|__|__||________||__|  |____|
          |__| W I R E L E S S   F R E E D O M
 Backfire (10.03.1, r29597) ------------------------
  * 1/3 shot Kahlua    In a shot glass, layer Kahlua 
  * 1/3 shot Bailey's  on the bottom, then Bailey's, 
  * 1/3 shot Vodka     then Vodka.
 ---------------------------------------------------
root@metrou:/# wl monitor 1
root@metrou:/# ifconfig prism0 up
root@metrou:/# airodump-ng -i prism0
Unable to handle kernel paging request at virtual address 00000010, epc == c01d99ac, ra == c01d9530
Oops in fault.c::do_page_fault, line 206:
$0 : 00000000 80e0bcb0 00000100 00000001 80e0bb78 80e0bcb0 00000000 00000004
$8 : 00000000 80e0bb78 00000004 00000000 00000000 00000000 00000000 00000000
$16: ffffffe6 81b53c00 80e0bcd0 801a0000 00000000 80e90200 00008b07 00456d38
$24: 00000000 801280bc                   80e0a000 80e0bb48 00456dcc c01d9530
Hi : 00000369
Lo : 00001be5
epc   : c01d99ac    Tainted: P 
Status: 1000fc03
Cause : 00000008
PrId  : 0002901a
Process airodump-ng (pid: 1498, stackpage=80e0a000)
Stack:    8001c41c 8001c41c 80e0bc50 80017e90 801f4464 00000001 00000013
 80e0bcd0 00000004 00000000 00000000 00000000 00074090 00000000 80e0bc50
 800ab5d0 80e0bc88 2aabd000 800090f0 80e0a000 81d1d0e0 00000020 800caca4
 80e0bc50 81d1d0e0 81d1d0e0 800d015c 80d2cc60 00000187 00000002 80e0bc10
 81b53c00 801a0000 c01da950 00000000 80d2cc60 00000001 00000000 80e362c0
 00000020 ...
Call Trace:   [<8001c41c>] [<8001c41c>] [<80017e90>] [<800ab5d0>] [<800090f0>]
 [<800caca4>] [<800d015c>] [<c01da950>] [<800caca4>] [<c0188738>] [<c01ff1d4>]
 [<800cae7c>] [<c01fd0a0>] [<c01fe314>] [<c01db418>] [<c01daec0>] [<c0198ff8>]
 [<c0198fc0>] [<8000306d>] [<c01dae48>] [<c01db454>] [<c01ddb2c>] [<80126c80>]
 [<c01da950>] [<c01d96c4>] [<800d00d8>] [<c01ff1d4>] [<800d0548>] [<800d0704>]
 [<80018318>] [<80017f54>] [<80044a24>] [<800027a4>] [<80026ea8>] [<80028520>]
 [<8004ee64>] [<800db1a4>] [<800d1acc>] [<80012580>] [<800123b8>] ...

Code: 8f820004  34420100  af820004 <8e820010> 8e24009c  8fa50018  8fa70020  afa20010  3c02c019 
Kernel panic: Aiee, killing interrupt handler!
In interrupt handler - not syncing
 <0>Rebooting in 3 seconds..Please stand by while rebooting the system...


CFE version 1.0.37 for BCM947XX (32bit,SP,LE)
Build Date: Mon Oct 30 23:22:44 CST 2006 (root@linux)
Copyright (C) 2000,2001,2002,2003 Broadcom Corporation.

The discussion might have continued from here.