Lineage Updater on private server stopped working after upgrading to 16. - LineageOS Questions & Answers

I run a private OTA server using https://github.com/julianxhokaxhiu/LineageOTA. It worked fine for 14 and 15.1. However, I've upgraded to UNOFFICIAL 16 for LG G5. Now I get "The upgrade check failed...." I took a look at the source, and changes, but I'm not all that good at that stuff, and couldn't find anything. Have there been any major changes to the Updater app? For example, the default lineage URL is https (ssl) and my server isn't using ssl, so if ssl is now required, that might be it. Or, has the structure of the response changed (not that I could see, but I could have missed something)?
Best wishes,
Bob
PS Looking at logcat, it seems it is the lack of SSL.
04-13 16:53:06.041 4124 4170 E HttpURLConnectionClient: Error downloading file
04-13 16:53:06.041 4124 4170 E HttpURLConnectionClient: java.io.IOException: Cleartext HTTP traffic to 192.168.1.89 not permitted
I leave this here in case anyone else has a similar problem
RLF

Related

[Q] Energy WM6.5 ROM links broken

All the links to Energy WM ROMs no longer work
R [WWE|GER|FRA|ITA|NLD] |July 4| Energy™-.¸¸.·´¯ 6.5|21916 / 6.5.X|29022 * Sense 2021
Anyone know how to access these?
http://www.slingfile.com/folder/5x1.html
Works for me? (I'm downloading "Energy.RHODIUM.21916.Sense2.5.Cookie.2.0.Jul.04.7z" right now...)
Hmm... Tried again using IE9 and OK, Still broken with Chrome or Firefox. Get following message.
The website encountered an error while retrieving http://forum.xda-developers.com/showthread.php?t=562773. It may be down for maintenance or configured incorrectly.
Here are some suggestions:
Reload this webpage later.
HTTP Error 500 (Internal Server Error): An unexpected condition was encountered while the server was attempting to fulfill the request.
Thanks for your help. Now running NAND CM7.2 and works amazingly well on the 2.6.27 kernel. 3.3.6 not much chop as no backlight.

[Q] Problems with ORBOT on cyanogenmode: cm-10.2.1-flo.zip

Hi dear XDA community,
I have got some issues while try to hardening my ASUS Google Nexus 7 (2013) WiFi following the how to guide on https://blog.torproject.org/blog/mission-impossible-hardening-android-security-and-privacy
Below you will find some key facts of my configuration:
I flashed the device with the last stable CM build: cm-10.2.1-flo.zip.
I followed the above how to guide up to chapter: Installation and Setup: Tor and Firewall configuration
Firewall Rules are set up and FW is enabled
When I try to surf the web (doens't matter if I use orweb or the build in browser) I get the following error message:
error 5: authentication via the proxy server was unsuccessfull
The funny thing is that I am able to connect to the FDroid market to download and install apps.
I double checked my browser settings - everything looks good
Ideas for furher investigation like log file analysis are pretty welcome

Compile current openvpn binary for Lollipop

I have some problems with Android 5.1 and Openvpn on my Nexus. Initially with the binary from the PlayStore, I got the error
error: only position independent executables (PIE) are supported.
I fixed this with the binary from here
http://forum.xda-developers.com/spr...ollipop-s5-t3086672/post64696367#post64696367
It now works with some self-built iproute-wrapper-script but only when I do not redirect the gateway because openvpn does not correctly detect the current gateway ("unable to redirect default gateway -- Cannot read current default gateway from system"). There has been a fix for that in Openvpn:
http://article.gmane.org/gmane.network.openvpn.devel/10111
but I did not find a current version that includes this fix. Can someone please compile this?
Hate to bump this, but I need this too
Me three...
need this so badly too (
Me too. Had anyone idea where to start?

why is SMS app accessing internet (Lineage 15)

Hi,
I was surprised today to see that my android firewall (afwall+) blocked several communications from the SMS/MMS application (ID 10068).
The following IP address were blocked, all on port 443
216.58.213.142
216.58.215.46
172.217.19.238
172.217.18.206
These IP belongs to google hosting, have self-signed certificate (and redirect to google.com if blindly via https://[theip] ).
Does anybody have clue about this?
Thank you
Kriss
PS: my phone runs lineage os 15, updated on Sept 4th. It is rooted, runs microg, fdroid and xposed, and has very few apps on it.

Internet problem : certificate error

Hello everyone,
As there is no more manga apps that's working on my Nook simple touch (1.2.1 firmware), I try to use the Internet web browser to download manga files.
I tried with Opera mini, classic but I've got a popup appearing each time about a certificate problem ... I tried the solution mentionned here (TLS 1.2 activated from Opera classic 12.1) but still getting this error.
Any way to bypass those annoying screens ?
Thanks
alucard_xs said:
Hello everyone,
As there is no more manga apps that's working on my Nook simple touch (1.2.1 firmware), I try to use the Internet web browser to download manga files.
I tried with Opera mini, classic but I've got a popup appearing each time about a certificate problem ... I tried the solution mentionned here (TLS 1.2 activated from Opera classic 12.1) but still getting this error.
Any way to bypass those annoying screens ?
Thanks
Click to expand...
Click to collapse
Can you post the URL where you get the errors?
Sure, I tried with these :
can't reach the website :
Scan VF, Lecture En Ligne Scan Naruto, Scan En Ligne One Piece (scan-fr.cc)
Popup with certificate error :
Scantrad France - Scans de mangas en lecture en ligne !
alucard_xs said:
Sure, I tried with these :
can't reach the website :
Scan VF, Lecture En Ligne Scan Naruto, Scan En Ligne One Piece (scan-fr.cc)
Popup with certificate error :
Scantrad France - Scans de mangas en lecture en ligne !
Click to expand...
Click to collapse
I get a 404 error with the first link.
The second one presents no problem for me with Opera Mobile, although there are issues with display, but no certificate warnings. It's possible your cacerts.bks file either lacks a DST Root CA X3 certificate or has an expired one (if this is a new issue for you). I'm using the file posted here: https://forum.xda-developers.com/t/nst-g-how-to-managing-cacerts-bks.4197451/
I did not try downloading any files from the second site. That may pose additional problems.
Is that first site perhaps scan-vf.net?
Edit: OK, that's weird. I can access the first url on my tablet just fine. I wonder why my laptop gave a 404... Shut down for the day but I'll try again tomorrow to check the certificate.
O.K.
I examined both sites for the certificates in use. The only missing certificate in the cacerts.bks file I use is a Cloudflare Inc ECC CA-3. I exported this and added it to the cacerts.bks file. Then I tried that file with a unit running FW 1.2.1 and another running FW 1.2.2. There was no apparent difference in the behavior.
As I said in the previous post, I had no problem accessing scantrad.net with either Opera Mobile or Opera Mini. There are a lot of missing images with Opera Mobile so I suspect navigating and interacting with the site would be better with Opera Mini. Again I did not try downloading any files. That could be a deal breaker.
As for scan-fr.cc, I was not able to reach it at all. Opera Mobile throws up a more-or-less generic gripe about security and gives the fatal error 40. Sometimes websites which do this can be coaxed into loading by clearing the Opera cache. Not this one. Opera Mini gives a error box which says the server could not be contacted and the option to retry or cancel. No dice there.
There are posts about Opera 12 (although I think that's the Windows version) wherin Cloudflare is demonized and it is clear that Opera (of that vintage) is not able to deal with it.
I got exactly the same results before and after adding the Cloudflare certificate to cacerts.bks, so the server rejection of the connection is more fundamental than that. Logcat doesn't even seem to know that Opera is running, so no help there.
That's all I could find out.
I should probably post this in a thread nmishkin wrote but this thread was new so I decided to write here anyway. I also have certificate problem with B&N store. At first it stopped allowing me to download without any errors or reports about why is that happening. Recently when I tried it splashed out a screen about failing to confirm some certificate. Now that is bad practice if B&N is unable to renew its own certificate. And maybe it is not their fault alone if it is related to the things written in this article https://arstechnica.com/gadgets/202...h-workaround-for-abandonware-android-devices/ .It is another matter if they refuse to update certificate for old device but that is more than bad support IMHO. Is it possible to put new certificate inside for example latest upgrade zip file and load it on the device as such? Anyway if you read an article I mentioned you will see it will sort of "work" until 2024 but not further.
Is this about trying to purchase books from B&N? Is the device rooted? Is the firmware updated to 1.2.2?
I don't think cacerts.bks even comes into play in communicating with B&N. As far as I could determine the same file was included with both 1.2.1 and 1.2.2.
In any case, if B&N were pushing silent security updates they would likely fail on a rooted device.
Not rooted. Stock NST with updated firmware 1.2.2. Nothing added or changed at least not by me.
SJT75 said:
Not rooted. Stock NST with updated firmware 1.2.2. Nothing added or changed at least not by me.
Click to expand...
Click to collapse
OK, so I think you are outside the US? I ask with a suspicion, but we really need more input from others who are also trying to interface with B&N from outside the US. As Aesop observed, one swallow does not a summer make
So it could be that. Even with my heavily modified NSTs I can still interface with B&N to the extent of at least "purchasing" free books from the Shop app. I've never bought a book from B&N, so I can't go so far as to say that would work for me also, but I think it probably would.
If there were a way to connect via a VPN in the US, that might answer the question, but other than making the change to a VPN at the router level, I don't think there is any way to get the NST to do that on it's own.
A logcat of an attempted transaction with B&N might be revealing, but without root, that's not happening.
Yes. I am in Europe. Thanks for a valid question and proposal for a solution that I am aware of but never thought of as I couldn't get where the problem is. When I do something about it I will reply here for sure.

Categories

Resources