Hi,
Lately I have been looking at the GSM traffic through wireshark. In
every packet, wireshark tells me about the frame number.
But a paging message is spread over four frames. (You need to read
four frames to get a single paging message.)
So which among these four frames does the frame number displayed in
wireshark correspond to for the paging message?
Regards,
RM
Hi!
I tried this tutorial to build my osmocomBB enviroment:
http://bb.osmocom.org/trac/wiki/GettingStarted
I downloaded the gnuarm toolchain from here:
http://bb.osmocom.org/trac/wiki/toolchain
I set the Path and i tried make, but it stops at
> arm-elf-ld: ../../shared/libosmocore/build-target/src/.libs/libosmocore.a(msgb.o): Relocations in generic ELF (EM: 3)
> ../../shared/libosmocore/build-target/src/.libs/libosmocore.a: could not read symbols: File in wrong format
> make[1]: *** [board/compal_e88/hello_world.compalram.elf] Fehler 1
I found a similar Thread on the mailing list here:
http://baseband-devel.722152.n3.nabble.com/unknown-error-td2758006.html#a27…
But there is not a solution for the problem
I would be happy if anybody would be able to giv a solution.
MFG Kandanalor
Hi,
I want to understand the RACH channel acess procedure. I tried to
search for it in google. It doesnt lead me to the right GSM spec.
Does any one know which GSM spec details out the RACH link access procedure ?
Regards,
RM
Hi,
I am looking for this video. I found it at the official Deepsec video archives.
But you require to register to the video host site and I am unable to
download it using wget
Does any one know of any bit torrent site that has this video so that
I can download it?
Regards,
RM
Hi,
Ive just setup an OpenBSC + nanoBTS environment to experiment around with
your Osmocom software and a Motorola C123. I tried wo write a little
application similiar to app_ccch scan, which is able of responding to
paging requests by sending a rach request and the following paging response
procedure. The rach access is working fine, but i cant get the paging
response to work properly. The message itself is correct (layer2/layer3
parts) according to the specs. OpenBSC is also working correctly as it is
working with my normal cell phone or your mobile application.
What i'm doing in my code is the following:
1. After getting the immediate assignment i call l1ctl_tx_dm_est_req_h0 in
l1ctl.c (l1ctl_tx_dm_est_req_h0(ms, arfcn, ia->chan_desc.chan_nr,
ia->chan_desc.h0.tsc, GSM48_CMODE_SIGN, 0)) in order to tune to the
assigned channel (or the h1 procedure for hopping).
2. Afterwards i build the paging response (layer2 + layer3), pad the msg
and send it via osmo_send_l1(ms, msg) similiar to l1ctl_tx_data_req in
l1ctl.c
That it is not working can be seen in the OpenBSC abis debug output:
<0004> abis_rsl.c:1318 (bts=0,trx=0,ts=0,ss=0) Activating ARFCN(514) SS(0)
lctype SDCCH r=OTHER ra=0x67 ta=0
<0004> abis_rsl.c:1064 (bts=0,trx=0,ts=0,ss=0) CHANNEL ACTIVATE ACK
<0004> abis_rsl.c:891 (bts=0,trx=0,ts=0,ss=0) CONNECTION FAIL: RELEASING
CAUSE=0x01(Radio Link Failure)
<0004> abis_rsl.c:621 (bts=0,trx=0,ts=0,ss=0) RF Channel Release CMD due
error 1
<0004> abis_rsl.c:658 (bts=0,trx=0,ts=0,ss=0) RF CHANNEL RELEASE ACK
<0004> abis_rsl.c:594 (bts=0,trx=0,ts=0,ss=0) is back in operation.
It should be looking like this:
<0004> abis_rsl.c:1318 (bts=0,trx=0,ts=0,ss=0) Activating ARFCN(514) SS(0)
lctype SDCCH r=OTHER ra=0x10 ta=0
<0004> abis_rsl.c:1064 (bts=0,trx=0,ts=0,ss=0) CHANNEL ACTIVATE ACK
<0000> abis_rsl.c:1490 (bts=0,trx=0,ts=0,ss=0) SAPI=0 ESTABLISH INDICATION
<0003> gsm_04_08.c:1076 PAGING RESPONSE: mi_type=0x04 MI(...)
Has anyone an idea what I'm doing wrong? Thanks in advance for any help!
Best regards,
David
Hi!
Recently we've had the idea of using OsmocomBB with a simple firmware
that synchronizes to an existing GSM networks FCCH and use the resulting
13MHz clock to drive the USRP for airprobe or OpenBTS.
Ideally, we would even use the Calypso-internal PLL (for ARM or DSP) to
multiply it up to the required 52 MHz. However, neither the Openmoko
nor the Compal/Motorola phones expose any of the 3 clock output pads :(
So the only choice is to use something along the lines of the
http://focus.ti.com/docs/prod/folders/print/cdcvf25084.html
as a quad clock multiplier and attach it to the CLK13OUT signal of the
phone.
The chip is available for 9 USD in single quantities at digikey, and
possibly cheaper at other sources. Combined with a sub-20EUR phone it
might be a very cheap but still accurate frequency source for OpenBTS -
at least as long as there are any commercial gsm networks available.
Regards,
Harald
--
- Harald Welte <laforge(a)gnumonks.org> http://laforge.gnumonks.org/
============================================================================
"Privacy in residential applications is a desirable marketing option."
(ETSI EN 300 175-7 Ch. A6)
guys i recently came across mobile-phone-mtk-project.googlecode.com
but it seems to be down.does any one have copy of this one??
also can be create osmocom like project with help of MTK chipsets??
--
Akib Sayyed
Matrix-Shell
akibsayyed(a)gmail.com
akibsayyed(a)matrixshell.com
Mob:- +91-966-514-2243
Dear Srs,
We are working in a project that uses a GSM modem to send a GMSK beacom in
904 MHZ with 2W.
This beacom send a random bits, but we only need to measure the RSSI
Visiting you site, we found a GSM RSSI software working in a phone.
Can we use it in 904 Mhz ? This is the uplink GSM ARFCN channel 70.
It is possible ?
Best Regards
Carlos Cecanecchia Neto
www.mobipower.com.br
55-11-3257.7736
<http://www.mobipower.com.br/> New Picture (2)
> Hi.=0AIs there any place where I can download the TSM30 source code?=A0 Fou=
> nd few torrents but they all seem to be dead.=0ACheers.
It looks like the copy I've sent to Cryptome.org for preservation is
still up:
http://cryptome.org/tsm30/tsm30.7z
HTH,
MS
Hi,
I am looking for the airprobe mailing list. The only thing I get is
the a5/1 mailing list.
Where is the airprobe main mailing list archives kept?
Thanks and Regards,
RM
