No packets, no ARPs...

So I have problem with Aircrack-ng...

I'm using Aircrack-ng 1.0 rc4 r1623 on Kubuntu Karmic with kernel 2.6.31.14.
Wireless card is Atheros, driver in use ath5k.

From Aircrack-ng website i found out that I will need those patches:
ath5k-injection-2.6.27-rc2.patch
mac80211_2.6.28-rc4-wl_frag+ack_v3.patch
mac80211-2.6.29-fix-tx-ctl-no-ack-retry-count.patch
Now, I have to state that I'm just getting familiar with Linux. So I got
'compat-wireless-2009-10-21' and applied patches to it. Of coure i did have to
modify patches slightly to point to right files in compat-wireless instead of
kernel.

Attempt in using mac80211_2.6.28-rc4-wl_frag+ack_v3.patch gave me:

patching file net/mac80211/tx.c
Hunk #1 FAILED at 611.
1 out of 1 hunk FAILED -- saving rejects to file net/mac80211/tx.c.rej

and the content of tx.c.rej:

*************** ieee80211_tx_h_sequence(struct ieee80211_tx_data *tx)
*** 611,621 ****

   /*
    * Packet injection may want to control the sequence
-     * number, if we have no matching interface then we
-     * neither assign one ourselves nor ask the driver to.
    */
-    if (unlikely(!info->control.vif))
      return TX_CONTINUE;

   if (unlikely(ieee80211_is_ctl(hdr->frame_control)))
      return TX_CONTINUE;
--- 611,629 ----

   /*
    * Packet injection may want to control the sequence
+     * number, so if an injected packet is found, skip
+     * renumbering it. Also make the packet NO_ACK to avoid
+     * excessive retries (ACKing and retrying should be
+     * handled by the injecting application).
+     * FIXME This may break hostapd and some other injectors.
+     * This should be done using a radiotap flag.
    */
+    if (unlikely((info->flags & IEEE80211_TX_CTL_INJECTED) &&
+      !(tx->sdata->u.mntr_flags & MONITOR_FLAG_COOK_FRAMES))) {
+       if (!ieee80211_has_morefrags(hdr->frame_control))
+          info->flags |= IEEE80211_TX_CTL_NO_ACK;
      return TX_CONTINUE;
+    }

   if (unlikely(ieee80211_is_ctl(hdr->frame_control)))
      return TX_CONTINUE;

Patch mac80211-2.6.29-fix-tx-ctl-no-ack-retry-count.patch did applied correctly.
Same goes for ath5k-injection-2.6.27-rc2.patch.
Next step was make / make install / reboot.

After reboot I followed steps from 'Tutorial: Simple WEP Crack' and...
nothing...
Output of 'sudo airodump-ng -c 1 --bssid XX:XX:XX:XX:XX:XX -w output mon0'

BSSID PWR RXQ Beacons #Data, #/s CH MB ENC CIPHER AUTH
ESSID
XX:XX:XX:XX:XX:XX -76 96 10331 0 0 1 63e. WEP WEP OPN
XXXX
BSSID STATION PWR Rate Lost Packets Probes
XX:XX:XX:XX:XX:XX XX:XX:XX:XX:XX:X 0 0 - 1 0 220

Next command was 'sudo aireplay-ng -1 6000 -o 1 -q 10 -e XXXXX -a
XX:XX:XX:XX:XX:XX -h XX:XX:XX:XX:XX:XX mon'
and the output:
Sending Authentication Request (Open System)
Sending Authentication Request (Open System)
Sending Authentication Request (Open System) [ACK]
Authentication successful
Sending Association Request [ACK]
Association successful :-) (AID: 1)
Sending keep-alive packet [ACK]
[...]
Sending keep-alive packet [ACK]

And the last command 'sudo aireplay-ng -3 -b XX:XX:XX:XX:XX:XX -h
XX:XX:XX:XX:XX:XX mon0
output being:
Waiting for beacon frame (BSSID: XX:XX:XX:XX:XX) on channel 1
Saving ARP requests in replay_arp-1022-011844.cap
You should also start airodump-ng to capture replies.
Read 20004 packets (got 0 ARP requests and 118 ACKs), sent 0 packets...(0 pps)

My guess is that i messed up patching part. As well, when I'm putting card in
monitor mode i got those interfering processes:
NetworkManager
wpa_supplicant
avahi-daemon
avahi-daemon
which I cant kill. I tried 'airmon-ng check kill' and 'kill -9' but none of them
seems to be doing the trick....

Can anyone point me in the right direction? Please?

And yes, I tested injection and its working....