From 9073f4d960909a8e16a8aead285d5480ca25dbc8 Mon Sep 17 00:00:00 2001 From: Marc Remijn Date: Sun, 15 Sep 2024 18:48:48 +0200 Subject: [PATCH 1/3] Adapted root-toon.sh to debian12. Added sample output from my rooting attempts --- root-toon.sh | 6 +++--- rooting-output.txt | 52 ++++++++++++++++++++++++++++++++++++++++++++++ tcpdump_output.txt | 2 ++ 3 files changed, 57 insertions(+), 3 deletions(-) create mode 100644 rooting-output.txt create mode 100644 tcpdump_output.txt diff --git a/root-toon.sh b/root-toon.sh index a6444d3..88fc5db 100755 --- a/root-toon.sh +++ b/root-toon.sh @@ -38,9 +38,9 @@ fi echo "Blocking all HTTPS (and therefore Toon VPN). Reboot your toon now. And after that press the 'software' button on your Toon." /sbin/iptables -I FORWARD -p tcp --dport 443 -j DROP -OUTPUT=`/usr/sbin/tcpdump -n -i any port 31080 -c 1 2>/dev/null` || exit "tcpdump failed" -TOONIP=`echo $OUTPUT | cut -d\ -f3 | cut -d\. -f1,2,3,4` -IP=`echo $OUTPUT | cut -d\ -f5 | cut -d\. -f1,2,3,4` +OUTPUT=`/usr/bin/tcpdump -n -i any port 31080 -c 1 2>/dev/null` || exit "tcpdump failed" +TOONIP=`echo $OUTPUT | cut -d\ -f5 | cut -d\. -f1,2,3,4` +IP=`echo $OUTPUT | cut -d\ -f7 | cut -d\. -f1,2,3,4` [ -f /tmp/pipe.in ] || /usr/bin/mkfifo /tmp/pipe.in [ -f /tmp/pipe.out ] || /usr/bin/mkfifo /tmp/pipe.out diff --git a/rooting-output.txt b/rooting-output.txt new file mode 100644 index 0000000..47a2504 --- /dev/null +++ b/rooting-output.txt @@ -0,0 +1,52 @@ +Rooting your toon +Patching firewall +Installing dropbear (2014.66-r0) on root. +Upgrading update-alternatives-opkg from 0.1.8+git0+53274f0875-r1 to 0.1.8+git0+53274f0875-r2 on root. +Downloading http://feed.hae.int/feeds/nxt/oe/angelica-1.7.7-master-zgw-7.14/cortexa9hf-vfp-neon/update-alternatives-opkg_0.1.8+git0+53274f0875-r2_cortexa9hf-vfp-neon.ipk. +Collected errors: + * opkg_download: Failed to download http://feed.hae.int/feeds/nxt/oe/angelica-1.7.7-master-zgw-7.14/cortexa9hf-vfp-neon/update-alternatives-opkg_0.1.8+git0+53274f0875-r2_cortexa9hf-vfp-neon.ipk: Couldn't connect to server. + * opkg_install_pkg: Failed to download update-alternatives-opkg. Perhaps you need to run 'opkg update'? + * opkg_install_cmd: Cannot install package dropbear. +Flushing iptables: iptables. +Loading iptables settings: iptables. +=================================================================================================================================================================== +Welcome to the rooted Toon upgrade script. This script will try to upgrade your Toon using your original connection with Eneco. It will start the VPN if necessary. +Please be advised that running this script is at your own risk! + +Version: 4.81 - TheHogNL - 07-08-2024 + +=================================================================================================================================================================== + +Only fixing files. +creating backup of inittab... +creating backup of chrony.conf... +creating backup of hosts... +creating backup of config_happ_scsync.xml... +creating backup of qmf_tenant.xml.save ... +FIXING: Trying to fix Global.qml now to add all the Toonstore installed apps again. +FIXING: Now fixing internet settings app to fake ST_TUNNEL mode. +Modification in InternetSettingsApp.qml is missing. Fixing it now. +FIXING: Now modifying notifications bar to not show any network errors +Modification in NotificationBar.qml is missing. Fixing it now. +EDITING: Time server, removes unnecessary link to Quby +EDITING: Hosts file, removes unnecessary link to Quby +EDITING: Disable add google DNS on top of resolv.conf +EDITING: disable ovpn connection to quby +EDITING: Activating Toon, enabling ElectricityDisplay and GasDisplay +EDITING: removing data gathering by Quby and whitelisting web services +EDITING: add disable power management wifi on Toon2 +EDITING: add autobrightness feature on Toon2 +EDITING: disabling Eneco subscription feature apps which are not working on rooted toons +EDITING: disabling KPI and weather happ as these are not necessary on rooted toons +EDITING: download certificate store pem file +There is a new version of the Mozilla CA pem file. Downloading it! +Download ok! Replacing Mozilla CA pem file! +Updating certificates in /etc/ssl/certs... 0 added, 0 removed; done. +Running hooks in /etc/ca-certificates/update.d....done. +EDITING: lighttpd so tsc/sensors is viewable via a browser +File /HCBv2/etc/qmf_tenant.xml was modified but result is an empty file! Trying to restore! +Restore of /HCBv2/etc/qmf_tenant.xml is failed! Result is also empty! Please check this file before rebooting! +Finished fixing files! +Cannot stat /root/.ssh/known_hosts: No such file or directory +ssh: connect to host 10.42.0.49 port 22: Connection refused + diff --git a/tcpdump_output.txt b/tcpdump_output.txt new file mode 100644 index 0000000..9b2c7c5 --- /dev/null +++ b/tcpdump_output.txt @@ -0,0 +1,2 @@ +16:10:10.513421 wlan0 In IP 10.42.0.49.45455 > 172.18.16.1.31080: Flags [S], seq 3022936550, win 29200, options [mss 1460,sackOK,TS val 4294945394 ecr 0,nop,wscale 6], length 0 + From 97b2669848258318a630b84b107814a0e0b40935 Mon Sep 17 00:00:00 2001 From: Marc Remijn Date: Mon, 23 Sep 2024 13:00:18 +0200 Subject: [PATCH 2/3] Routing-output: from 2nd succesful attempt --- rooting-output.txt | 21 +++++++++++++-------- 1 file changed, 13 insertions(+), 8 deletions(-) diff --git a/rooting-output.txt b/rooting-output.txt index 47a2504..d39a997 100644 --- a/rooting-output.txt +++ b/rooting-output.txt @@ -1,14 +1,19 @@ Rooting your toon Patching firewall Installing dropbear (2014.66-r0) on root. -Upgrading update-alternatives-opkg from 0.1.8+git0+53274f0875-r1 to 0.1.8+git0+53274f0875-r2 on root. -Downloading http://feed.hae.int/feeds/nxt/oe/angelica-1.7.7-master-zgw-7.14/cortexa9hf-vfp-neon/update-alternatives-opkg_0.1.8+git0+53274f0875-r2_cortexa9hf-vfp-neon.ipk. -Collected errors: - * opkg_download: Failed to download http://feed.hae.int/feeds/nxt/oe/angelica-1.7.7-master-zgw-7.14/cortexa9hf-vfp-neon/update-alternatives-opkg_0.1.8+git0+53274f0875-r2_cortexa9hf-vfp-neon.ipk: Couldn't connect to server. - * opkg_install_pkg: Failed to download update-alternatives-opkg. Perhaps you need to run 'opkg update'? - * opkg_install_cmd: Cannot install package dropbear. + Removing any system startup links for dropbear ... +update-alternatives: Linking /usr/bin/scp to /usr/sbin/dropbearmulti +update-alternatives: Linking /usr/bin/ssh to /usr/sbin/dropbearmulti + Adding system startup for /etc/init.d/dropbear. +Starting Dropbear SSH server: Public key portion is: +ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQCK2w9fKFa80lnrgZA8As7vBb+RkTszwWriHkKLjNxa3Uc80VKr5RTseFQ/vbYqKtkeAif4RIKyQZgv4ODMhYWIT1z9PppiK8acnTAd6ygAZbCeuaG/WrdbKIP2onDSDw6L9nV99LoZwqCwZQ5RMO+pSZC2jnLquMIEnDvHAS69A4W6tQqdShEr7EF5bNc54tQP4NhyBsnv4unakPReyQEY10zK2bM4b5aeMUC6BKY+6yDev7r1+qgNWVc8I+Obe0uOSWh0EnFohnLBuBaf2XUMRcjQVZwIWAvehEgaKaWY4HGWqEN2ydGi+7cVya44KrOEmszELlYzsbiTVTnpu2hv root@qb-659916001601-1929A0FB1F +Fingerprint: md5 82:8e:7d:1c:de:70:1d:bd:74:3d:7d:81:f5:1d:df:0f +dropbear. +Configuring dropbear. Flushing iptables: iptables. Loading iptables settings: iptables. +Starting Dropbear SSH server: /usr/sbin/dropbear is already running +1136 =================================================================================================================================================================== Welcome to the rooted Toon upgrade script. This script will try to upgrade your Toon using your original connection with Eneco. It will start the VPN if necessary. Please be advised that running this script is at your own risk! @@ -48,5 +53,5 @@ File /HCBv2/etc/qmf_tenant.xml was modified but result is an empty file! Trying Restore of /HCBv2/etc/qmf_tenant.xml is failed! Result is also empty! Please check this file before rebooting! Finished fixing files! Cannot stat /root/.ssh/known_hosts: No such file or directory -ssh: connect to host 10.42.0.49 port 22: Connection refused - +Unable to negotiate with 10.42.0.49 port 22: no matching host key type found. Their offer: ssh-rsa +marc@raspberrypi:~/Root-A-Toon $ From c1f46d52e1a98cd043e67fd46f8e9b309646f81f Mon Sep 17 00:00:00 2001 From: Marc Remijn Date: Mon, 23 Sep 2024 13:31:13 +0200 Subject: [PATCH 3/3] Delete rooting-output.txt --- rooting-output.txt | 57 ---------------------------------------------- 1 file changed, 57 deletions(-) delete mode 100644 rooting-output.txt diff --git a/rooting-output.txt b/rooting-output.txt deleted file mode 100644 index d39a997..0000000 --- a/rooting-output.txt +++ /dev/null @@ -1,57 +0,0 @@ -Rooting your toon -Patching firewall -Installing dropbear (2014.66-r0) on root. - Removing any system startup links for dropbear ... -update-alternatives: Linking /usr/bin/scp to /usr/sbin/dropbearmulti -update-alternatives: Linking /usr/bin/ssh to /usr/sbin/dropbearmulti - Adding system startup for /etc/init.d/dropbear. -Starting Dropbear SSH server: Public key portion is: -ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQCK2w9fKFa80lnrgZA8As7vBb+RkTszwWriHkKLjNxa3Uc80VKr5RTseFQ/vbYqKtkeAif4RIKyQZgv4ODMhYWIT1z9PppiK8acnTAd6ygAZbCeuaG/WrdbKIP2onDSDw6L9nV99LoZwqCwZQ5RMO+pSZC2jnLquMIEnDvHAS69A4W6tQqdShEr7EF5bNc54tQP4NhyBsnv4unakPReyQEY10zK2bM4b5aeMUC6BKY+6yDev7r1+qgNWVc8I+Obe0uOSWh0EnFohnLBuBaf2XUMRcjQVZwIWAvehEgaKaWY4HGWqEN2ydGi+7cVya44KrOEmszELlYzsbiTVTnpu2hv root@qb-659916001601-1929A0FB1F -Fingerprint: md5 82:8e:7d:1c:de:70:1d:bd:74:3d:7d:81:f5:1d:df:0f -dropbear. -Configuring dropbear. -Flushing iptables: iptables. -Loading iptables settings: iptables. -Starting Dropbear SSH server: /usr/sbin/dropbear is already running -1136 -=================================================================================================================================================================== -Welcome to the rooted Toon upgrade script. This script will try to upgrade your Toon using your original connection with Eneco. It will start the VPN if necessary. -Please be advised that running this script is at your own risk! - -Version: 4.81 - TheHogNL - 07-08-2024 - -=================================================================================================================================================================== - -Only fixing files. -creating backup of inittab... -creating backup of chrony.conf... -creating backup of hosts... -creating backup of config_happ_scsync.xml... -creating backup of qmf_tenant.xml.save ... -FIXING: Trying to fix Global.qml now to add all the Toonstore installed apps again. -FIXING: Now fixing internet settings app to fake ST_TUNNEL mode. -Modification in InternetSettingsApp.qml is missing. Fixing it now. -FIXING: Now modifying notifications bar to not show any network errors -Modification in NotificationBar.qml is missing. Fixing it now. -EDITING: Time server, removes unnecessary link to Quby -EDITING: Hosts file, removes unnecessary link to Quby -EDITING: Disable add google DNS on top of resolv.conf -EDITING: disable ovpn connection to quby -EDITING: Activating Toon, enabling ElectricityDisplay and GasDisplay -EDITING: removing data gathering by Quby and whitelisting web services -EDITING: add disable power management wifi on Toon2 -EDITING: add autobrightness feature on Toon2 -EDITING: disabling Eneco subscription feature apps which are not working on rooted toons -EDITING: disabling KPI and weather happ as these are not necessary on rooted toons -EDITING: download certificate store pem file -There is a new version of the Mozilla CA pem file. Downloading it! -Download ok! Replacing Mozilla CA pem file! -Updating certificates in /etc/ssl/certs... 0 added, 0 removed; done. -Running hooks in /etc/ca-certificates/update.d....done. -EDITING: lighttpd so tsc/sensors is viewable via a browser -File /HCBv2/etc/qmf_tenant.xml was modified but result is an empty file! Trying to restore! -Restore of /HCBv2/etc/qmf_tenant.xml is failed! Result is also empty! Please check this file before rebooting! -Finished fixing files! -Cannot stat /root/.ssh/known_hosts: No such file or directory -Unable to negotiate with 10.42.0.49 port 22: no matching host key type found. Their offer: ssh-rsa -marc@raspberrypi:~/Root-A-Toon $