fixeria
/
pycrate
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
pycrate/pycrate_mobile/GSMTAP.py

308 lines
8.3 KiB
Python
Raw Blame History

# -*- coding: UTF-8 -*-
#/**
# * Software Name : pycrate
# * Version : 0.4
# *
# * Copyright 2016. Benoit Michau. ANSSI.
# * Copyright 2018. Benoit Michau. P1sec.
# *
# * This library is free software; you can redistribute it and/or
# * modify it under the terms of the GNU Lesser General Public
# * License as published by the Free Software Foundation; either
# * version 2.1 of the License, or (at your option) any later version.
# *
# * This library is distributed in the hope that it will be useful,
# * but WITHOUT ANY WARRANTY; without even the implied warranty of
# * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
# * Lesser General Public License for more details.
# *
# * You should have received a copy of the GNU Lesser General Public
# * License along with this library; if not, write to the Free Software
# * Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston,
# * MA 02110-1301 USA
# *
# *--------------------------------------------------------
# * File Name : pycrate_mobile/GSMTAP.py
# * Created : 2016-04-28
# * Authors : Benoit Michau
# *--------------------------------------------------------
#*/
from pycrate_core.elt import Envelope, REPR_RAW, REPR_HEX, REPR_BIN
from pycrate_core.base import *
from pycrate_core.repr import *
# GSMTAP header format:
# see osmocom project:
# http://cgit.osmocom.org/libosmocore/tree/include/osmocom/core/gsmtap.h
# https://cgit.osmocom.org/libosmocore/tree/src/gsmtap_util.c
# and wireshark project:
# https://github.com/wireshark/wireshark/blob/master/epan/dissectors/packet-gsmtap.h
# https://github.com/wireshark/wireshark/blob/master/epan/dissectors/packet-gsmtap.c
#
#/* GSMTAP is a generic header format for cellular protocol captures,
# * it uses the IANA-assigned UDP port number 4729 and carries
# * payload in various formats of GSM / WCDMA / LTE interfaces such as Um MAC
# * blocks, Um bursts, RRC or NAS messages.
# *
# * Example programs generating GSMTAP data are airprobe
# * (http://airprobe.org/) or OsmocomBB (http://bb.osmocom.org/)
# */
Type_dict = {
0x01 : "UM",
0x02 : "ABIS",
0x03 : "UM_BURST",
0x04 : "SIM",
0x05 : "TETRA_I1",
0x06 : "TETRA_I1_BURST",
0x07 : "WIMAX_BURST",
0x08 : "GPRS_GB_LLC",
0x09 : "GPRS_GB_SNDCP",
0x0a : "GMR1_UM",
0x0b : "UMTS_RLC_MAC",
0x0c : "UMTS_RRC",
0x0d : "LTE_RRC",
0x0e : "LTE_MAC",
0x0f : "LTE_MAC_FRAMED",
0x10 : "OSMOCORE_LOG",
0x11 : "QUALCOMM_DIAG",
0x12 : "LTE_NAS",
}
TypeUMBurst_dict = {
0x00 : "UNKNOWN",
0x01 : "FCCH",
0x02 : "PARTIAL_SCH",
0x03 : "SCH",
0x04 : "CTS_SCH",
0x05 : "COMPACT_SCH",
0x06 : "NORMAL",
0x07 : "DUMMY",
0x08 : "ACCESS",
0x09 : "NONE"
}
TypeWiMAXBurst_dict = {
0x10 : "CDMA_CODE",
0x11 : "FCH",
0x12 : "FFB",
0x13 : "PDU",
0x14 : "HACK",
0x15 : "PHY_ATTRIBUTES"
}
TypeUM_dict = {
0x00 : "UNKNOWN",
0x01 : "BCCH",
0x02 : "CCCH",
0x03 : "RACH",
0x04 : "AGCH",
0x05 : "PCH",
0x06 : "SDCCH",
0x07 : "SDCCH4",
0x08 : "SDCCH8",
0x09 : "TCH_F",
0x0a : "TCH_H",
0x0b : "PACCH",
0x0c : "CBCH52",
0x0d : "PDCH",
0x0e : "PTCCH",
0x0f : "CBCH51",
0x20 : "GPRS_CS_BASE",
0x21 : "GPRS_CS_1",
0x22 : "GPRS_CS_2",
0x23 : "GPRS_CS_3",
0x24 : "GPRS_CS_4",
0x30 : "EGPRS_MCS_BASE",
0x31 : "EGPRS_MCS_1",
0x32 : "EGPRS_MCS_2",
0x33 : "EGPRS_MCS_3",
0x34 : "EGPRS_MCS_4",
0x35 : "EGPRS_MCS_5",
0x36 : "EGPRS_MCS_6",
0x37 : "EGPRS_MCS_7",
0x38 : "EGPRS_MCS_8",
0x39 : "EGPRS_MCS_9",
0x80 : "ACCH"
}
TypeTETRA_dict = {
0x01 : "BSCH",
0x02 : "AACH",
0x03 : "SCH_HU",
0x04 : "SCH_HD",
0x05 : "SCH_F",
0x06 : "BNCH",
0x07 : "STCH",
0x08 : "TCH_F"
}
TypeGMR_dict = {
0x00 : "UNKNOWN",
0x01 : "BCCH",
0x02 : "CCCH",
0x03 : "PCH",
0x04 : "AGCH",
0x05 : "BACH",
0x06 : "RACH",
0x07 : "CBCH",
0x08 : "SDCCH",
0x09 : "TACCH",
0x0a : "GBCH",
#0x01 : "GMR1_SACCH", # to be combined with _TCH{6,9}
#0x02 : "GMR1_FACCH", # to be combines with _TCH{3,6,9}
#0x03 : "GMR1_DKAB", # to be combined with _TCH3
0x10 : "GMR1_TCH3",
0x14 : "GMR1_TCH6",
0x18 : "GMR1_TCH9"
}
TypeUMTSRLC_dict = {
0x01 : "PCCH",
0x02 : "CCCH",
0x03 : "DCCH",
}
TypeUMTSRRC_dict = {
0 : 'DL_DCCH_Message',
1 : 'UL_DCCH_Message',
2 : 'DL_CCCH_Message',
3 : 'UL_CCCH_Message',
4 : 'PCCH_Message',
5 : 'DL_SHCCH_Message',
6 : 'UL_SHCCH_Message',
7 : 'BCCH_FACH_Message',
8 : 'BCCH_BCH_Message',
9 : 'MCCH_Message',
10 : 'MSCH_Message',
11 : 'HandoverToUTRANCommand',
12 : 'InterRATHandoverInfo',
13 : 'SystemInformation_BCH',
14 : 'System_Information_Container',
15 : 'UE_RadioAccessCapabilityInfo',
16 : 'MasterInformationBlock',
17 : 'SysInfoType1',
18 : 'SysInfoType2',
19 : 'SysInfoType3',
20 : 'SysInfoType4',
21 : 'SysInfoType5',
22 : 'SysInfoType5bis',
23 : 'SysInfoType6',
24 : 'SysInfoType7',
25 : 'SysInfoType8',
26 : 'SysInfoType9',
27 : 'SysInfoType10',
28 : 'SysInfoType11',
29 : 'SysInfoType11bis',
30 : 'SysInfoType12',
31 : 'SysInfoType13',
32 : 'SysInfoType13_1',
33 : 'SysInfoType13_2',
34 : 'SysInfoType13_3',
35 : 'SysInfoType13_4',
36 : 'SysInfoType14',
37 : 'SysInfoType15',
38 : 'SysInfoType15bis',
39 : 'SysInfoType15_1',
40 : 'SysInfoType15_1bis',
41 : 'SysInfoType15_2',
42 : 'SysInfoType15_2bis',
43 : 'SysInfoType15_2ter',
44 : 'SysInfoType15_3',
45 : 'SysInfoType15_3bis',
46 : 'SysInfoType15_4',
47 : 'SysInfoType15_5',
48 : 'SysInfoType15_6',
49 : 'SysInfoType15_7',
50 : 'SysInfoType15_8',
51 : 'SysInfoType16',
52 : 'SysInfoType17',
53 : 'SysInfoType18',
54 : 'SysInfoType19',
55 : 'SysInfoType20',
56 : 'SysInfoType21',
57 : 'SysInfoType22',
58 : 'SysInfoTypeSB1',
59 : 'SysInfoTypeSB2',
60 : 'ToTargetRNC_Container',
61 : 'TargetRNC_ToSourceRNC_Container'
}
TypeLTERRC_dict = {
0x00 : "DL_CCCH_Message",
0x01 : "DL_DCCH_Message",
0x02 : "UL_CCCH_Message",
0x03 : "UL_DCCH_Message",
0x04 : "BCCH_BCH_Message",
0x05 : "BCCH_DL_SCH_Message",
0x06 : "PCCH_Message",
0x07 : "MCCH_Message"
}
TypeLTENAS_dict = {
0x00 : "NAS_PLAIN",
0x01 : "NAS_SEC_HEADER",
}
SubTypeDictLU_dict = {
0x01 : TypeUM_dict,
0x03 : TypeUMBurst_dict,
0x05 : TypeTETRA_dict,
0x07 : TypeWiMAXBurst_dict,
0x0a : TypeGMR_dict,
0x0b : TypeUMTSRLC_dict,
0x0c : TypeUMTSRRC_dict,
0x0d : TypeLTERRC_dict,
0x0e : TypeLTENAS_dict
}
"""
Mapping of the osmocom / wireshark gsmtap header structure
/* This is the header as it is used by gsmtap-generating software.
* It is not used by the wireshark dissector and provided for reference only.
struct gsmtap_hdr {
guint8 version; // version, set to 0x01 currently
guint8 hdr_len; // length in number of 32bit words
guint8 type; // see GSMTAP_TYPE_*
guint8 timeslot; // timeslot (0..7 on Um)
guint16 arfcn; // ARFCN (frequency)
gint8 signal_dbm; // signal level in dBm
gint8 snr_db; // signal/noise ratio in dB
guint32 frame_number; // GSM Frame Number (FN)
guint8 sub_type; // Type of burst/channel, see above
guint8 antenna_nr; // Antenna Number
guint8 sub_slot; // sub-slot within timeslot
guint8 res; // reserved for future use (RFU)
}
*/
"""
class gsmtap_hdr(Envelope):
_GEN = (
Uint8('version', val=2),
Uint8('hdr_len', val=4), # header length in 32-bit words
Uint8('type', val=1, dic=Type_dict),
Uint8('timeslot'), # GSM Um timeslot (0..7)
Uint('PCS', bl=1),
Uint('uplink', bl=1),
Uint('arfcn', bl=14),
Int8('signal_dbm'),
Int8('snr_db'),
Uint32('frame_number'), # GSM FN
Uint8('sub_type'), # type of burst / channel
Uint8('antenna_nr'), # antenna number
Uint8('sub_slot'), # sub-slot within timeslot
Uint8('res')
)
def __init__(self, *args, **kwargs):
Envelope.__init__(self, *args, **kwargs)
self['sub_type'].set_dicauto(self._set_subtype_dic)
def _set_subtype_dic(self):
return SubTypeDictLU_dict.get(self[2].get_val(), {})
Reference in New Issue View Git Blame Copy Permalink