WiFi does not come up

[AlexTS]

Hello Experts,

I installed Kali Linux on Lenova Ideopad 3 and my wifi interface does not come up.

when I try to run the following command below I get the error

$sudo ip link set wlp2s0 up RTNETLINK answers: Operation not possible due to RF-kill


I googled that the the command below would help but it is not installed in my system

sudo rfkill unblock all

Unfortunately to install it I will need APT which requires working internet and, thus, wifi. Chicken and egg situation.
Could anybody suggest how I can make my wifi working?

 

[Brickwizard]

Welcome to the forums, Are you competent and experienced using Linux, if not then you should not even be trying to install it.

Now how have you installed your Kali [direct to hard drive solo, direct to hard drive multi-boot, or to a VM/WSL]?

my wifi interface does not come up.

Sorry my crystal ball is away for cleaning, Which wi-fi [make and full code number of the chip set]
if you do not know, then see if you can run the terminal command inxi -Nn then copy/paste the report back [you may have to install inxi from the software manager]

 

[z7vl7abxc]

apt show rfkill should show (among other things) the source (on the APT-Sources: line) where you should be able to download a .deb file to install rfkill manually. it should also show what other packages rfkill depends on so you can make sure those are installed as well. most likely those are some version of libc6 and libsmartcols1. you could check if they are installed with apt list <package-name1> <package-name2>

 

[z7vl7abxc]

then see if you can run the terminal command inxi -Nn then copy/paste the report back

i would suggest adding the -z option to filter out the mac address(es).

op could probably get similar info from lspci -knn | grep -iA3 net and ip link. though it sounds like they know the link isn't up from the original post.

 

[Brickwizard]

i would suggest adding the -z option t

Not needed as it's not an F string

 

[AlexTS]

apt show rfkill should show (among other things) the source (on the APT-Sources: line) where you should be able to download a .deb file to install rfkill manually. it should also show what other packages rfkill depends on so you can make sure those are installed as well. most likely those are some version of libc6 and libsmartcols1. you could check if they are installed with apt list <package-name1> <package-name2>

thank you for suggestion! when I run the command the system displays " unable to locate packge" but I was playing around and now when I run sudo ip link set wlp2s0 up the commmand works but still the interface is down according to
iwconfig and ip a commands.

 

[AlexTS]

i would suggest adding the -z option to filter out the mac address(es).

op could probably get similar info from lspci -knn | grep -iA3 net and ip link. though it sounds like they know the link isn't up from the original post.

again, thank you very much for the suggestion!

I got the outputs

spci -kn | grep -A3 net

02:00.0 Network controller [0280]: Realtek Semiconductor Co., Ltd. RTL8822CE 802.11ac PCIe Wireless Network Adapter [10ec:c822]
    Subsystem: Lenovo RTL8822CE 802.11ac PCIe Wireless Network Adapter [17aa:c123]
    Kernel driver in use: rtw_8822ce
    Kernel modules: rtw88_8822ce
03:00.0 VGA compatible controller [0300]: Advanced Micro Devices, Inc. [AMD/ATI] Picasso/Raven 2 [Radeon Vega Series / Radeon Vega Mobile Series] [1002:15d8] (rev c2)

ip a
1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000
    link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00
    inet 127.0.0.1/8 scope host lo
       valid_lft forever preferred_lft forever
    inet6 ::1/128 scope host
       valid_lft forever preferred_lft forever
2: wlp2s0: <NO-CARRIER,BROADCAST,MULTICAST,UP> mtu 1500 qdisc noqueue state DOWN group default qlen 1000
    link/ether 5c:61:99:49:ab:d1 brd ff:ff:ff:ff:ff:ff

do you have any further suggestion?

 

[Brickwizard]

you will need internet connection to download and install the correct driver... https://github.com/rtlwifi-linux/rtk_wifi_driver_rtl8822ce

PLEASE READ THE DOCUMENTATION PAGES ON THE KALI WEBSITE

Kali Docs | Kali Linux Documentation

Home of Kali Linux, an Advanced Penetration Testing Linux distribution used for Penetration Testing, Ethical Hacking and network security assessments.

www.kali.org

 

[AlexTS]

you will need internet connection to download and install the correct driver... https://github.com/rtlwifi-linux/rtk_wifi_driver_rtl8822ce

PLEASE READ THE DOCUMENTATION PAGES ON THE KALI WEBSITE

Kali Docs | Kali Linux Documentation

Home of Kali Linux, an Advanced Penetration Testing Linux distribution used for Penetration Testing, Ethical Hacking and network security assessments.

www.kali.org

but how do I install driver without Internet? The broken WiFi is the only interface on the system ;( chicken and egg

 

[z7vl7abxc]

thank you for suggestion! when I run the command the system displays " unable to locate packge" but I was playing around and now when I run sudo ip link set wlp2s0 up the commmand works but still the interface is down according to
iwconfig and ip a commands.

that makes sense that your system wouldn't be able to locate the packagE if you are offline. i wasn't thinking that far ahead

you could try cat /etc/apt/sources.list to see where you get your packages from.

the following are from a kali purple 2023.2 kali-rolling virtual machine i set up not long ago:

cat /etc/apt/sources.list
# See https://www.kali.org/docs/general-use/kali-linux-sources-list-repositories/
deb http://http.kali.org/kali kali-rolling main contrib non-free non-free-firmware

# Additional line for source packages
# deb-src http://http.kali.org/kali kali-rolling main contrib non-free non-free-firmware

apt show rfkill
...
APT-Sources: http://http.kali.org/kali kali-rolling/main amd64 Packages

since the sources start with https://http.kali.org/kali/, if i go there and select /dists, then /kali-rolling, then /main, then /binary-amd64 i can get the Packages list to show where the rfkill package is stored.

in the case of the setup above it is at Filename: pool/main/u/util-linux/rfkill_2.38.1-5+b1_amd64.deb so i would go back up to kali.org/kali and drill back down into /pool/main... etc until i found the correct package.

 

[z7vl7abxc]

Not needed as it's not an F string

i'm not sure i follow. on mint and mx linux when i run inxi -Nn without the -z option it shows mac addresses. from man inxi on mx linux:

-z, --filter
Adds security filters for IP addresses, serial numbers, MAC...

i can't see how mac addresses would add to the information needed.

 

[Brickwizard]

If there is a problem component that is new [ an un-recognised chipset] the mac tells us which manufacturer/vendor supplied the card, for further investigation

IT is most important when using a F string [inxi - Fnxx, inxi -FnadgX] to use the Z suffix as F will show far too much information otherwise, whereas I wanted info on one component

 

[z7vl7abxc]

i had never heard of mac addresses identifying manufacturer or vendor info. i appreciate the added detail.

 

[z7vl7abxc]

02:00.0 Network controller [0280]: Realtek Semiconductor Co., Ltd. RTL8822CE 802.11ac PCIe Wireless Network Adapter [10ec:c822] Subsystem: Lenovo RTL8822CE 802.11ac PCIe Wireless Network Adapter [17aa:c123] Kernel driver in use: rtw_8822ce Kernel modules: rtw88_8822ce

that looks like it should be the right driver according to:

modinfo rtw88_8822ce
filename: /lib/modules/6.1.0-kali9-amd64/kernel/drivers/net/wireless/realtek/rtw88/rtw88_8822ce.ko
license: Dual BSD/GPL
description: Realtek 802.11ac wireless 8822ce driver
author: Realtek Corporation
alias: pci:v000010ECd0000C82Fsv*sd*bc*sc*i*
alias: pci:v000010ECd0000C822sv*sd*bc*sc*i*

 

[AlexTS]

you will need internet connection to download and install the correct driver... https://github.com/rtlwifi-linux/rtk_wifi_driver_rtl8822ce

PLEASE READ THE DOCUMENTATION PAGES ON THE KALI WEBSITE

Kali Docs | Kali Linux Documentation

Home of Kali Linux, an Advanced Penetration Testing Linux distribution used for Penetration Testing, Ethical Hacking and network security assessments.

www.kali.org

hey, I am very sorry if I am asking easy going questions. I am more network engineer.
but, if you don't mind, could you please suggest what I am doing wronm here?

I downloaded the driver files to problem PC. I remember I install such stuff with ./configure and ./make commands but I do not see them in that folder. I tryed to find the manual how to install the driver but could not find specific one. Could you tell me how I install those drivers once I have them downloaded to the system?

I appreciate you help so much!

 

[Brickwizard]

but how do I install driver without Internet? The broken WiFi is the only interface on the system ;( chicken and egg

The easiest way would be tether a mobile phone with data capabilities

 

[Brickwizard]

@z7vl7abxc
this is the mac address of one of my old Wi-Fi dongles 00:11:3b:14:0e:ce

if you put it in this checker, it will tell you the manufacturer, it doesn't give the chip set, but you can find it via the manufactures files [except in this case they no longer exist as far as I am aware] https://dnschecker.org/mac-lookup.php

 

[z7vl7abxc]

i appreciate the added info again. after reading your previous response, i went web searching and found interesting info about oui's (https://en.wikipedia.org/wiki/Organizationally_unique_identifier) that seemed to be at least part of what you were referencing. i couldn't tell one mac address or oui lookup website from another so i didn't try any of them.

my thought is still that because of the uniquely identifying nature of a mac, i personally would prefer not to post mine and would continue to suggest the same for others. i did note that inxi -Nnxxz provides at least the vendor and device id's.

part of my reasoning for being careful with a mac is (for example) from the macchanger package description (apt show macchanger on debian- or ubuntu-based systems):

Description: utility for manipulating the MAC address of network interfaces
GNU MAC Changer is an utility that makes the maniputation (sic) of MAC addresses of network interfaces easier. MAC addresses are unique identifiers on networks, they only need to be unique, they can be changed on most network hardware. MAC addresses have started to be abused by unscrupulous marketing firms, government agencies, and others to provide an easy way to track a computer across multiple networks. By changing the MAC address regularly, this kind of tracking can be thwarted, or at least made a lot more difficult.

i promise i'm not trying to just be contrary, argumentative or overly paranoid. i just feel like the -z option for inxi filters mac addresses for a legitimate reason.

 

[sphen]

i appreciate the added info again. after reading your previous response, i went web searching and found interesting info about oui's (https://en.wikipedia.org/wiki/Organizationally_unique_identifier) that seemed to be at least part of what you were referencing. i couldn't tell one mac address or oui lookup website from another so i didn't try any of them.

my thought is still that because of the uniquely identifying nature of a mac, i personally would prefer not to post mine and would continue to suggest the same for others. i did note that inxi -Nnxxz provides at least the vendor and device id's.

part of my reasoning for being careful with a mac is (for example) from the macchanger package description (apt show macchanger on debian- or ubuntu-based systems):

i promise i'm not trying to just be contrary, argumentative or overly paranoid. i just feel like the -z option for inxi filters mac addresses for a legitimate reason.

Media Access Control (MAC) addresses are 48 bits long. That's six "octets" (bytes), usually delimited with colons, but I have seen hyphens. The first three octets are assigned to the manufacturer when they request it. No other manufacturer will use it without permission.

TL;DR:
You can freely post the first three octets for any device and you will not lose privacy, other than sharing the manufacturer of a device you bought. The first three octets will be common for everyone who bought that same device. I would not be concerned about doing that.

MAC Addresses Do Not Normally Escape Your Local Network
In general, MAC addresses should not escape the confines of your home network. The MAC addresses are used by the local Ethernet or WiFi (or Bluetooth) network to move packets between computers and routers, but only on the "local link layer", aka "Layer 2" in your home network. Once your packets reach the internet, they will have the MAC address of your router and even that will be lost at the next hop. The IP datagram that was inside your packet moves along the internet towards its destination getting unwrapped and wrapped by each router as it moves towards its destination. (Try the command "traceroute linux.org" to see the route that your packet takes to get to Linux.org, but be aware that the traceroute command may not be installed or on the default PATH for every Linux distro by default.)

MAC Addresses Can Be Changed for Some Devices
In theory, MAC addresses are unique and permanent. In reality, some devices let you change a MAC address for yourself. I change the MAC address on my firewall/router when I want a new IP address from our internet service provider. I am here as a refugee from another forum. If I wanted to peek at that old forum (I don't), I would change the MAC address of my router, and use that to change my public IP address. The forum administrators would not know that I am the same logged-out person who belonged in the past.

Randomized MAC Addresses
Apple and others are randomizing MAC addresses to prevent tracking. Stores monitor your phone's WiFi MAC address as you walk around and used it to track your activity. If you go in another branch or cooperating store that uses the same technology, they will use your phone's MAC address to know that you are the same shopper visiting both stores. Think: Starbucks, etc.

The response to the tracking is randomized MAC addresses. (It drives me nuts, because when I review the logs, I can't tell my partner's iPad from her phone from our young adult's Mac and phone.) I get the value of it, but for me at home, the randomization is a pain and consumes licenses on my firewall router, which counts IP addresses in use. I get the privacy value, but it makes firewall incidents more challenging to figure out.

I learned about randomized MAC addresses and the issues around them after I noticed the change in our network's behavior. By coincidence, there is a detailed article about randomized MAC addresses in the very same journal where I created a thread a few days ago. See page 12 of the journal issue that I described in this thread:

https://www.linux.org/threads/an-unusual-history-of-the-internet-worth-sharing.45672/

MAC Addresses Can Leak
Because they are (in theory) unique to your device, its MAC address can be used to identify and track you and your activity, associated devices, etc. Because it uniquely identifies you and your hardware, MAC addresses may be used or transmitted by third-party products, etc.

SUMMARY:
It is okay to post the first three octets of a six-octet MAC address if you are concerned about privacy. Be aware that your MAC addresses may have leaked out anyway because they can be used for tracking and other less desirable purposes.

(Minor edit 1 hour later: Fixed typos, auto-correct errors, slight re-wording in two places for clarification.)

 

[AlexTS]

The easiest way would be tether a mobile phone with data capabilities

I copied the driver to local HDD of the laptop but I don't see ./configre and ./make there. Could you please advice me on how I can install the driver?