baseband-devel

baseband-devel@lists.osmocom.org

1981 discussions

by Sylvain Munaut

Hi, Anyone interested in some osmocom-bb / phone related hw ? I got some compal phone in pieces (but all pieces should be there to rebuild 4 phones, I had just extracted the motherboards to make a more compact 4-phone setup but never got to it). I also have sci-phone g2 (it's open with jtag soldered) and another phone (mobitel el570) that I don't remember the state of ... All to give away as a complete lot, I'd just ask you to pay shipping from Belgium to wherever you are. Cheers, Sylvain

2 months

Looking for BS11 mounting plates

by Alexander Huemer

Hi! I am in possession of a pair of Siemens BS11 mounting plates and am looking for a second pair. A photo of the plates is attached. Since - I believe - most people who play with such basestations do not mount them to a wall or pole, my hope is that some unused ones are floating around somewhere. Thanks, -Alex^Wblackbit

6 months

phones to donate

by bill-auger

i have some phones that i could donate, if any are interesting to the project - they all have a similar SOC: Mediatek 6739, 6762, and 6765 (4 and 8 core A53)

7 months, 2 weeks

Engagetted !

by Sébastien Lorquet

http://www.engadget.com/2010/12/29/researchers-eavesdrop-on-encrypted-gsm-c… Congrats!

8 months, 1 week

Osmocom bb mobile station cannot register to YateBTS basestation

by nish079858＠gmail.com

I am having trouble connecting my osmocom bb setup to a conventional basestation setup using the mobile application, and would really appreciate any help in this matter. My basestation is a YateBTS setup setup on radio band DCS1800 with ARFCN 555, and PLMN 001 01 (test network). I am using sysmocom SIMs with PLMN 999 70. I have verified operation of YateBTS by connecting two other phones and am able to get service on them and even do phone calls. For my osmocom bb setup, I have a motorola c115 device in which I load the e88 layer1.highram.bin firmware. The firmware loads correctly and am able to detect the basestation when I run cell_log application. However when I run the mobile application, I seem to be stuck in RR connection pending. Mobile application does see the cell connection and MM connection seems to be active, and is able to read the SIM card correctly also, just doesn't seem to complete the registration. Here are the logs, and config file I used. Really appreciate any help with this. Thanks in advance!! ---------------------------------------osmocon logs------------------------------------------ Synchronize_TDMA =>FB @ FNR 378464 fn_offset=189241 qbits=4920 LOST 1907! L1CTL_NEIGH_PM_REQ new list with 0 entries BAT-ADC: 621 5 0 0 1023 440 0 0 Charger at 43 mV. Battery at 4245 mV. Charging at 0 mA. Battery capacity is 100%. Battery range is 3199..3999 mV. Battery full at 468 LSB .. full at 585 LSB Charging at 239 LSB (204 mA). BCICTL2=0x3ff battery-info.flags=0x00000000 bat_compal_e88_chg_state=0 BAT-ADC: 622 5 0 0 1023 440 0 0 Charger at 43 mV. Battery at 4252 mV. Charging at 0 mA. Battery capacity is 100%. Battery range is 3199..3999 mV. Battery full at 468 LSB .. full at 585 LSB Charging at 239 LSB (204 mA). BCICTL2=0x3ff battery-info.flags=0x00000000 bat_compal_e88_chg_state=0 BAT-ADC: 622 5 0 0 1023 453 0 0 Charger at 43 mV. Battery at 4252 mV. Charging at 0 mA. Battery capacity is 100%. Battery range is 3199..3999 mV. Battery full at 468 LSB .. full at 585 LSB Charging at 239 LSB (204 mA). BCICTL2=0x3ff battery-info.flags=0x00000000 bat_compal_e88_chg_state=0 TOA AVG is not 16 qbits, correcting (got 13) L1CTL_RESET_REQ: FULL!L1CTL_FBSB_REQ (arfcn=555, flags=0x7) Starting FCCH RecognitionFB0 (192454:2): TOA= 1296, Power= -53dBm, Angle=19720Hz FB0 (192464:8): TOA= 8784, Power= -51dBm, Angle= -598Hz FB1 (192475:9): TOA=10007, Power= -51dBm, Angle= 47Hz fn_offset=192473 (fn=192475 + attempt=9 + ntdma = 7) delay=8 (fn_offset=192473 + 11 - fn=192475 - 1 scheduling next FB/SB detection task with delay 8 =>FB @ FNR 192473 fn_offset=192473 qbits=4844 Synchronize_TDMA LOST 3720! SB1 (384952:1): TOA= 24, Power= -50dBm, Angle= 114Hz => SB 0x019c4808: BSIC=2 fn=192485(145/ 7/11) qbits=4 Synchronize_TDMA =>FB @ FNR 384951 fn_offset=192485 qbits=4912 LOST 1904! L1CTL_PARAM_REQ (ta=0, tx_power=0) L1CTL_RACH_REQ (ra=0x0a, offset=26, combined=1, uic=0xff) L1CTL_PARAM_REQ (ta=0, tx_power=0) L1CTL_RACH_REQ (ra=0x07, offset=143, combined=1, uic=0xff) L1CTL_PARAM_REQ (ta=0, tx_power=0) L1CTL_RACH_REQ (ra=0x0d, offset=118, combined=1, uic=0xff) BAT-ADC: 622 5 0 0 1023 440 0 0 Charger at 43 mV. Battery at 4252 mV. Charging at 0 mA. Battery capacity is 100%. Battery range is 3199..3999 mV. Battery full at 468 LSB .. full at 585 LSB Charging at 239 LSB (204 mA). BCICTL2=0x3ff battery-info.flags=0x00000000 bat_compal_e88_chg_state=0 TOA AVG is not 16 qbits, correcting (got 17) L1CTL_DM_REL_REQL1CTL_RESET_REQ: FULL!L1CTL_RESET_REQ: FULL!L1CTL_FBSB_REQ (arfcn=555, flags=0x7) Starting FCCH RecognitionFB0 (194158:8): TOA= 8784, Power= -52dBm, Angle=19720Hz FB0 (194168:8): TOA= 8784, Power= -50dBm, Angle= -530Hz FB1 (194178:8): TOA= 8755, Power= -50dBm, Angle= 6Hz fn_offset=194176 (fn=194178 + attempt=8 + ntdma = 6) delay=8 (fn_offset=194176 + 11 - fn=194178 - 1 scheduling next FB/SB detection task with delay 8 =>FB @ FNR 194176 fn_offset=194176 qbits=4836 Synchronize_TDMA LOST 3716! SB1 (388359:1): TOA= 26, Power= -50dBm, Angle= 77Hz => SB 0x01514908: BSIC=2 fn=194188(146/20/31) qbits=12 Synchronize_TDMA =>FB @ FNR 388358 fn_offset=194188 qbits=4920 LOST 1908! L1CTL_NEIGH_PM_REQ new list with 0 entries ---------------------------------------mobile application logs------------------------------------------ Copyright (C) 2010-2015 Andreas Eversberg, Sylvain Munaut, Holger Freyther, Harald Welte Contributions by Alex Badea, Pablo Neira, Steve Markgraf and others License GPLv2+: GNU GPL version 2 or later <http://gnu.org/licenses/gpl.html> This is free software: you are free to change and redistribute it. There is NO WARRANTY, to the extent permitted by law. <0013> app_mobile.c:305 Mobile '1' initialized, please start phone now! <001d> telnet_interface.c:88 Available via telnet 127.0.0.1 4247 <0011> sim.c:1091 selected file (len 10) <0011> sim.c:1091 selected file (len 9) <0011> sim.c:1091 selected file (len 11) <0011> sim.c:1091 selected file (len 14) <0011> sim.c:1091 selected file (len 9) <0011> sim.c:1091 selected file (len 60) <0011> sim.c:1091 selected file (len 1) <0011> sim.c:1091 selected file (len 17) <0005> subscriber.c:1194 SIM reading failed, file invalid <0011> sim.c:1091 selected file (len 2) <0011> sim.c:1091 selected file (len 12) <0011> sim.c:1086 selected record (len 34 structure 1) <0011> sim.c:1086 selected record (len 52 structure 1) <0001> gsm48_rr.c:2796 Changing CCCH_MODE to 2 <0001> sysinfo.c:848 Now updating previously received SYSTEM INFORMATION 4 ---------------------------------------``VTY interface``------------------------------------------ Trying 127.0.0.1... Connected to 127.0.0.1. Escape character is '^]'. Welcome to the OsmocomBB(mobile) VTY interface OsmocomBB(mobile)> % (MS 1) % Trying to register with network Test, Test... OsmocomBB(mobile)> show ms 1 MS '1' is up, MM connection active IMEI: 355609009915009 IMEISV: 3556090099150090 IMEI generation: fixed automatic network selection state: A1 trying RPLMN MCC=001 MNC=01 (Test, Test) cell selection state: connected mode 1 ARFCN=555(DCS) CGI=001-01-1000-10 (Test, Test) radio resource layer state: connection pending mobility management layer state: wait for RR connection (location updating) OsmocomBB(mobile)> % (MS 1) % Trying to register with network Test, Test... OsmocomBB(mobile)> show subs 1 Mobile Subscriber of MS '1': IMSI: 999700000085749 ICCID: 8988211000000857493 SMS Service Center Address: 3548900076 Status: U1_UPDATED IMSI detached TMSI 0x007b0009 LAI: 001-01-1000 (Test, Test) GPRS Status: GU2_NOT_UPDATED IMSI detached PTMSI-sig 0xffffff RAI: invalid Registered PLMN: MCC-MNC 001-01 (Test, Test) Access barred cells: no Access classes: C9 List of preferred PLMNs: MCC |MNC -------+------- 000 |00 (Marshall Islands, 00) OsmocomBB(mobile)> % (MS 1) % Trying to register with network Test, Test... OsmocomBB(mobile)> show cell 1 ARFCN |MCC |MNC |LAC |cell ID|forb.LA|prio |min-db |max-pwr|rx-lev -------+-------+-------+-------+-------+-------+-------+-------+-------+------- 555DCS|001 |01 |0x03e8 |0x000a |no |normal |-110 | 0 |-54 OsmocomBB(mobile)> % (MS 1) % Trying to register with network Test, Test... % (MS 1) % Trying to register with network Test, Test... % (MS 1) % Trying to register with network Test, Test... % (MS 1) % Trying to register with network Test, Test... ---------------------------------------``config file``------------------------------------------ ! ! OsmocomBB(mobile) (0.0.0) configuration saved from vty !! ! log stderr blocking-io logging filter all 1 logging color 1 logging print category-hex 1 logging print category 0 logging print thread-id 0 logging timestamp 0 logging print file 1 logging level rsl notice logging level rr notice logging level plmn notice logging level cs notice logging level nb notice logging level mm notice logging level cc notice logging level gcc notice logging level bcc notice logging level ss notice logging level sms notice logging level mncc notice logging level meas notice logging level pag notice logging level l1c notice logging level sap notice logging level sum notice logging level sim notice logging level gps notice logging level mob notice logging level prim notice logging level lua debug logging level gapk debug logging level tun notice logging level rlcmac notice logging level llc notice logging level sndcp notice logging level gmm notice logging level sm notice logging level lglobal notice logging level llapd notice logging level linp notice logging level lmux notice logging level lmi notice logging level lmib notice logging level lsms notice logging level lctrl notice logging level lgtp notice logging level lstats notice logging level lgsup notice logging level loap notice logging level lss7 notice logging level lsccp notice logging level lsua notice logging level lm3ua notice logging level lmgcp notice logging level ljibuf notice logging level lrspro notice logging level lns notice logging level lbssgp notice logging level lnsdata notice logging level lnssignal notice logging level liuup notice logging level lpfcp notice logging level lcsn1 notice logging level lio notice ! stats interval 5 ! line vty no login ! gps device /dev/ttyACM0 gps baudrate default no gps enable ! no hide-default ! ms 1 layer2-socket /tmp/osmocom_l2 imei 355609009915009 0 imei-fixed sim reader test-sim imsi 999700000085749 ki comp128 12 34 56 78 9a bc de f0 12 34 56 78 9a bc de f0 no barred-access no rplmn hplmn-search foreign-country no locigprs sap-socket /tmp/osmocom_sap mncc-socket /tmp/ms_mncc_1 mncc-handler internal network-selection-mode auto no emergency-imsi no sms-service-center no call-waiting no auto-answer no force-rekey no clip no clir tx-power auto no simulated-delay no stick location-updating neighbour-measurement codec full-speed prefer codec half-speed no abbrev support sms a5/1 a5/2 p-gsm e-gsm r-gsm gsm-850 dcs no pcs class-900 4 class-850 4 class-dcs 1 class-pcs 1 channel-capability sdcch+tchf+tchh full-speech-v1 full-speech-v2 half-speech-v1 full-data-14400 full-data-9600 full-data-4800 half-data-4800 full-data-2400 half-data-2400 min-rxlev -106 dsc-max 90 no skip-max-per-band vgcs vbs c7-any-timeout 30 uplink-release-local no asci-allow-any tch-voice io-handler none tch-data io-handler none io-tch-format osmo no shutdown ! gsmtap no remote-host no local-host

9 months

mobile.cfg

by daniollama＠gmail.com

I use a mobile configuration but it seems not working. the mobile.cfg shown below ! ! OsmocomBB example configuration for mobile application !! ! line vty no login ! gps device /dev/ttyACM0 gps baudrate default no gps enable ! no hide-default ! ms 1 layer2-socket /tmp/osmocom_l2 sap-socket /tmp/osmocom_sap stick 1 sim none network-selection-mode auto imei 000000000000000 0 imei-fixed no emergency-imsi no sms-service-center no call-waiting no auto-answer no force-rekey no clip no clir tx-power auto no simulated-delay location-updating neighbour-measurement codec full-speed prefer codec half-speed no abbrev support sms a5/1 a5/2 p-gsm e-gsm r-gsm gsm-850 dcs no pcs class-900 4 class-850 4 class-dcs 1 class-pcs 1 channel-capability sdcch+tchf+tchh full-speech-v1 full-speech-v2 half-speech-v1 min-rxlev -110 dsc-max 90 no skip-max-per-band test-sim imsi 001010402698197 ki comp128 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 no barred-access rplmn 001 01 ! io-format ti no shutdown can you give me a config that working. thank you

10 months, 2 weeks

how to run osmocom-bb with grgsm in usrp b210 to connect openBTS?

by hellowangfang＠gmail.com

I used osmocom-bb and grgsm with usrp b210 to connect openBTS, but failed. The command is "./mobile -c /home/oi/wf/osmocom-bb/doc/examples/mobile/default.cfg","./trxcon -p 5075 " ,"grgsm_trx -p 5075" . When i used “./cell_log -A 1 ”， it could find plmn 1-1 with arfcn 1 which is same with openBTS. DSUM INFO cell_log.c:344 Sync ARFCN 1 (rxlev -105, 1 syncs left) DSUM INFO cell_log.c:372 Measure from 1 to 1 DSUM INFO l1ctl.c:1177 start_pm L1CTL_PM_CONF DSUM INFO cell_log.c:400 start_pm S_L1CTL_PM_DONE DSUM INFO cell_log.c:363 Measurement done DSUM INFO cell_log.c:372 Measure from 1 to 1 DSUM INFO l1ctl.c:1177 start_pm L1CTL_PM_CONF DSUM INFO cell_log.c:400 start_pm S_L1CTL_PM_DONE DSUM INFO cell_log.c:363 Measurement done DSUM INFO cell_log.c:372 Measure from 1 to 1 DSUM INFO l1ctl.c:1177 start_pm L1CTL_PM_CONF DSUM INFO cell_log.c:400 start_pm S_L1CTL_PM_DONE DSUM INFO cell_log.c:363 Measurement done DSUM INFO cell_log.c:372 Measure from 1 to 1 DSUM INFO l1ctl.c:1177 start_pm L1CTL_PM_CONF DSUM INFO cell_log.c:400 start_pm S_L1CTL_PM_DONE DSUM INFO cell_log.c:363 Measurement done DSUM INFO cell_log.c:372 Measure from 1 to 1 DSUM INFO l1ctl.c:1177 start_pm L1CTL_PM_CONF DSUM INFO cell_log.c:400 start_pm S_L1CTL_PM_DONE DSUM INFO cell_log.c:363 Measurement done DSUM INFO cell_log.c:344 Sync ARFCN 1 (rxlev -105, 1 syncs left) DSUM INFO cell_log.c:190 Cell: ARFCN=1 MCC-MNC=001-01 (Test, Test) But when test with sim testcard 1, it failed to find the 1-1 cell. Could anyone give any suggestion about this? Thanks a lot! 6.5.0-25-generic #25~22.04.1-Ubuntu osmocom-bb: commit 0d1ab4c8d2cbe0ba72662d5b466fb6c60cb8b45f (HEAD -> master, origin/master, origin/HEAD) grgsm: https://github.com/bkerler/gr-gsm.git origin/maint-3.10_with_multiarfcn

10 months, 2 weeks

problem on registering osmocombb SDR PHY setup to my virtual bts

by daniollama＠gmail.com

I want to implement osmocombb SDR PHY project on USRP N210 in Dragon OS. for this purpose i setup Yate BTS with Blade RF in ARFCN 1. i test this bts by making call with two phone in this network. then i ran grgsm_scanner by USRP N210 and the log is >> Found CCCH arfcn: 1 Dont capture immediate assignments, skip extract SDCCH/8 info and scan... ARFCN: 1, Freq: 935.2M, CID: 10, LAC: 1000, MCC: 432, MNC: 35, Pwr: -27 |---- Configuration: 1 CCCH, combined |---- Cell ARFCNs: 0 |---- Neighbour Cells: 1, 2, 4, 6, 9, 10, 12, 14, 17, 18, 20, 22, 25, 33, 34, 35, 36, 38, 44, 46, 47, 48, 49, 50, 57, 58, 61, 63, 66, 69, 70, 71, 72, 75, 77, 78, 80, 82, 84, 90, 91, 92, 96, 97, 98, 99, 100, 101, 106, 107, 113, 115, 116, 118, 119, 121, 122 then i run grgsm_trx, trxcon and mobile with this configuration shown below ! ! OsmocomBB example configuration for mobile application !! ! line vty no login ! gps device /dev/ttyACM0 gps baudrate default no gps enable ! no hide-default ! ms 1 layer2-socket /tmp/osmocom_l2 sap-socket /tmp/osmocom_sap stick 1 sim none network-selection-mode auto imei 000000000000000 0 imei-fixed no emergency-imsi no sms-service-center no call-waiting no auto-answer no force-rekey no clip no clir tx-power auto no simulated-delay location-updating neighbour-measurement codec full-speed prefer codec half-speed no abbrev support sms a5/1 a5/2 p-gsm e-gsm r-gsm gsm-850 dcs no pcs class-900 4 class-850 4 class-dcs 1 class-pcs 1 channel-capability sdcch+tchf+tchh full-speech-v1 full-speech-v2 half-speech-v1 min-rxlev -60 dsc-max 90 no skip-max-per-band test-sim imsi 001010412345678 ki comp128 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 no barred-access rplmn 001 01 ! io-format ti no shutdown I enter commands OsmocomBB> en OsmocomBB# sim t OsmocomBB# sim testcard 1 in telnet. the log for grgsm_trx is Copyright (C) 2016-2018 by Vadim Yanitskiy <axilirator(a)gmail.com> Copyright (C) 2017-2018 by Piotr Krysik <ptrkrysik(a)gmail.com> License GPLv2+: GNU GPL version 2 or later <http://gnu.org/licenses/gpl.html> This is free software: you are free to change and redistribute it. There is NO WARRANTY, to the extent permitted by law. [i] Init UHD Radio interface (L:0.0.0.0:6702 <-> R:127.0.0.1:6802) [INFO] [UHD] linux; GNU C++ version 11.3.0; Boost_107400; UHD_4.1.0.5-0-unknown [INFO] [USRP2] Opening a USRP2/N-Series device... [INFO] [USRP2] Current recv frame size: 1472 bytes [INFO] [USRP2] Current send frame size: 1472 bytes [i] Init CTRL interface (L:0.0.0.0:6701 <-> R:127.0.0.1:6801) [i] Init complete [i] Recv POWEROFF cmd [i] Resetting transceiver [i] Setting TA value 0 [i] Recv ECHO cmd [i] Recv POWEROFF cmd [i] Resetting transceiver [i] Setting TA value 0 [i] Recv ECHO cmd [i] Recv MEASURE cmd [i] Recv POWEROFF cmd [i] Resetting transceiver [i] Setting TA value 0 [i] Recv ECHO cmd [i] Recv SETSLOT cmd [i] Configure timeslot filter to: tn=0 [i] Recv RXTUNE cmd [i] Recv TXTUNE cmd [i] Recv POWERON CMD [i] Starting transceiver... [i] Recv POWEROFF cmd [i] Stopping transceiver... [i] Recv ECHO cmd [i] Recv SETSLOT cmd [i] Configure timeslot filter to: drop all . . . the log for texcon is 20240812161421520 DL1C NOTICE l1ctl.c:303 FBSB timer fired for ARFCN 1 20240812161421520 DL1C NOTICE l1ctl.c:422 Received reset request (1) 20240812161421520 DSCH NOTICE sched_trx.c:191 Reset scheduler and clock counter 20240812161421520 DSCH NOTICE sched_trx.c:237 Delete TDMA timeslot #0 20240812161421520 DL1C NOTICE l1ctl.c:395 Received power measurement request (GSM900: 1 -> 1) 20240812161421521 DL1C NOTICE l1ctl.c:422 Received reset request (1) 20240812161421521 DSCH NOTICE sched_trx.c:191 Reset scheduler and clock counter 20240812161421521 DL1C NOTICE l1ctl.c:338 Received FBSB request (GSM900 1) 20240812161421521 DSCH NOTICE sched_trx.c:191 Reset scheduler and clock counter 20240812161421521 DSCH NOTICE sched_trx.c:213 Add a new TDMA timeslot #0 20240812161421521 DSCH NOTICE sched_trx.c:288 (Re)configure TDMA timeslot #0 as BCCH+CCCH 20240812161421521 DSCH NOTICE sched_trx.c:445 Activating lchan=SCH on ts=0 20240812161421521 DSCH NOTICE sched_trx.c:445 Activating lchan=BCCH on ts=0 20240812161421521 DSCH NOTICE sched_trx.c:445 Activating lchan=RACH on ts=0 20240812161421521 DSCH NOTICE sched_trx.c:445 Activating lchan=CCCH on ts=0 20240812161421606 DSCHD ERROR sched_lchan_xcch.c:99 Received bad BCCH frame (rc=-1, ber=62/456) at fn=369446 20240812161421611 DSCHD NOTICE sched_trx.c:695 Substituting lost TDMA frame 369435 on CCCH 20240812161421611 DSCHD NOTICE sched_trx.c:695 Substituting lost TDMA frame 369436 on CCCH 20240812161421611 DSCHD NOTICE sched_trx.c:695 Substituting lost TDMA frame 369437 on CCCH 20240812161421611 DSCHD NOTICE sched_trx.c:695 Substituting lost TDMA frame 369438 on CCCH 20240812161421611 DSCHD ERROR sched_lchan_xcch.c:99 Received bad CCCH frame (rc=-1, ber=456/456) at fn=369435 20240812161421611 DSCHD NOTICE sched_trx.c:695 Substituting lost TDMA frame 369439 on CCCH 20240812161421611 DSCHD NOTICE sched_trx.c:695 Substituting lost TDMA frame 369440 on CCCH 20240812161421611 DSCHD NOTICE sched_trx.c:695 Substituting lost TDMA frame 369441 on CCCH 20240812161421611 DSCHD NOTICE sched_trx.c:695 Substituting lost TDMA frame 369442 on CCCH 20240812161421611 DSCHD ERROR sched_lchan_xcch.c:99 Received bad CCCH frame (rc=-1, ber=456/456) at fn=369439 20240812161421624 DSCHD ERROR sched_lchan_xcch.c:99 Received bad CCCH frame (rc=-1, ber=59/456) at fn=369450 20240812161421684 DSCHD NOTICE sched_trx.c:695 Substituting lost TDMA frame 369456 on CCCH 20240812161421684 DSCHD NOTICE sched_trx.c:695 Substituting lost TDMA frame 369457 on CCCH 20240812161421684 DSCHD NOTICE sched_trx.c:695 Substituting lost TDMA frame 369458 on CCCH 20240812161421684 DSCHD NOTICE sched_trx.c:695 Substituting lost TDMA frame 369459 on CCCH 20240812161421684 DSCHD ERROR sched_lchan_xcch.c:99 Received bad CCCH frame (rc=-1, ber=456/456) at fn=369456 20240812161421684 DSCHD NOTICE sched_trx.c:695 Substituting lost TDMA frame 369460 on CCCH 20240812161421684 DSCHD NOTICE sched_trx.c:695 Substituting lost TDMA frame 369461 on CCCH 20240812161421684 DSCHD NOTICE sched_trx.c:695 Substituting lost TDMA frame 369462 on CCCH 20240812161421684 DSCHD NOTICE sched_trx.c:695 Substituting lost TDMA frame 369463 on CCCH 20240812161421684 DSCHD ERROR sched_lchan_xcch.c:99 Received bad CCCH frame (rc=-1, ber=456/456) at fn=369460 20240812161421698 DSCHD ERROR sched_lchan_xcch.c:99 Received bad CCCH frame (rc=-1, ber=61/456) at fn=369466 20240812161421717 DSCHD ERROR sched_lchan_xcch.c:99 Received bad CCCH frame (rc=-1, ber=65/456) at fn=369470 20240812161421777 DSCHD NOTICE sched_trx.c:695 Substituting lost TDMA frame 369476 on CCCH 20240812161421777 DSCHD NOTICE sched_trx.c:695 Substituting lost TDMA frame 369477 on CCCH 20240812161421777 DSCHD NOTICE sched_trx.c:695 Substituting lost TDMA frame 369478 on CCCH 20240812161421777 DSCHD NOTICE sched_trx.c:695 Substituting lost TDMA frame 369479 on CCCH 20240812161421777 DSCHD ERROR sched_lchan_xcch.c:99 Received bad CCCH frame (rc=-1, ber=456/456) at fn=369476 20240812161421777 DSCHD NOTICE sched_trx.c:695 Substituting lost TDMA frame 369480 on CCCH 20240812161421777 DSCHD NOTICE sched_trx.c:695 Substituting lost TDMA frame 369481 on CCCH 20240812161421777 DSCHD NOTICE sched_trx.c:695 Substituting lost TDMA frame 369482 on CCCH 20240812161421777 DSCHD NOTICE sched_trx.c:695 Substituting lost TDMA frame 369483 on CCCH 20240812161421777 DSCHD ERROR sched_lchan_xcch.c:99 Received bad CCCH frame (rc=-1, ber=456/456) at fn=369480 20240812161421790 DSCHD ERROR sched_lchan_xcch.c:99 Received bad CCCH frame (rc=-1, ber=56/456) at fn=369486 20240812161421809 DSCHD ERROR sched_lchan_xcch.c:99 Received bad CCCH frame (rc=-1, ber=58/456) at fn=369490 20240812161421874 DSCHD NOTICE sched_trx.c:695 Substituting lost TDMA frame 369501 on CCCH 20240812161421874 DSCHD NOTICE sched_trx.c:695 Substituting lost TDMA frame 369502 on CCCH 20240812161421874 DSCHD NOTICE sched_trx.c:695 Substituting lost TDMA frame 369503 on CCCH 20240812161421874 DSCHD NOTICE sched_trx.c:695 Substituting lost TDMA frame 369504 on CCCH 20240812161421874 DSCHD ERROR sched_lchan_xcch.c:99 Received bad CCCH frame (rc=-1, ber=456/456) at fn=369501 20240812161421887 DSCHD ERROR sched_lchan_xcch.c:99 Received bad CCCH frame (rc=-1, ber=62/456) at fn=369507 20240812161421906 DSCHD ERROR sched_lchan_xcch.c:99 Received bad CCCH frame (rc=-1, ber=57/456) at fn=369511 20240812161421966 DSCHD NOTICE sched_trx.c:695 Substituting lost TDMA frame 369517 on CCCH 20240812161421966 DSCHD NOTICE sched_trx.c:695 Substituting lost TDMA frame 369518 on CCCH 20240812161421966 DSCHD NOTICE sched_trx.c:695 Substituting lost TDMA frame 369519 on CCCH 20240812161421966 DSCHD NOTICE sched_trx.c:695 Substituting lost TDMA frame 369520 on CCCH 20240812161421966 DSCHD ERROR sched_lchan_xcch.c:99 Received bad CCCH frame (rc=-1, ber=456/456) at fn=369517 20240812161421966 DSCHD NOTICE sched_trx.c:695 Substituting lost TDMA frame 369521 on CCCH 20240812161421966 DSCHD NOTICE sched_trx.c:695 Substituting lost TDMA frame 369522 on CCCH 20240812161421966 DSCHD NOTICE sched_trx.c:695 Substituting lost TDMA frame 369523 on CCCH 20240812161421966 DSCHD NOTICE sched_trx.c:695 Substituting lost TDMA frame 369524 on CCCH 20240812161421966 DSCHD ERROR sched_lchan_xcch.c:99 Received bad CCCH frame (rc=-1, ber=456/456) at fn=369521 20240812161421980 DSCHD ERROR sched_lchan_xcch.c:99 Received bad CCCH frame (rc=-1, ber=62/456) at fn=369527 and the log for mobile is <0003> gsm322.c:2919 Found signal (ARFCN 1 rxlev <=-110 (0)) <0003> gsm322.c:2933 Done with power scanning range. <0003> gsm322.c:2793 Scanning power for sticked cell. <0003> gsm322.c:2845 Found 1 frequencies. <0003> gsm322.c:2260 Scanning frequency 1 (rxlev <=-110). <0003> gsm322.c:479 Sync to ARFCN=1 rxlev=<=-110 (No sysinfo yet, ccch mode NONE) <0003> gsm322.c:2280 30 frequencies left in band 955..124 <000c> l1ctl.c:301 Dropping frame with 200 bit errors <000c> l1ctl.c:301 Dropping frame with 61 bit errors <000c> l1ctl.c:301 Dropping frame with 60 bit errors <000c> l1ctl.c:301 Dropping frame with 200 bit errors <000c> l1ctl.c:301 Dropping frame with 200 bit errors <000c> l1ctl.c:301 Dropping frame with 63 bit errors <000c> l1ctl.c:301 Dropping frame with 59 bit errors <000c> l1ctl.c:301 Dropping frame with 61 bit errors <000c> l1ctl.c:301 Dropping frame with 200 bit errors <000c> l1ctl.c:301 Dropping frame with 200 bit errors <000c> l1ctl.c:301 Dropping frame with 62 bit errors <000c> l1ctl.c:301 Dropping frame with 200 bit errors <000c> l1ctl.c:301 Dropping frame with 200 bit errors <000c> l1ctl.c:301 Dropping frame with 62 bit errors <000c> l1ctl.c:301 Dropping frame with 65 bit errors <000c> l1ctl.c:301 Dropping frame with 200 bit errors <000c> l1ctl.c:301 Dropping frame with 200 bit errors <000c> l1ctl.c:169 FBSB RESP: result=255 <0003> gsm322.c:3014 Channel sync error. <0003> gsm322.c:3019 free sysinfo ARFCN=1 <0003> gsm322.c:2748 Cell selection failed, sync timeout. <0003> gsm322.c:532 ARFCN |MCC |MNC |LAC |cell ID|forb.LA|prio |min-db |max-pwr|rx-lev <0003> gsm322.c:532 -------+-------+-------+-------+-------+-------+-------+-------+-------+------- <0003> gsm322.c:532 <0003> gsm322.c:2136 Cell search finished without result. <0003> gsm322.c:834 new state 'C6 any cell selection' -> 'C0 null' <0002> gsm322.c:3831 (ms 1) Event 'EVENT_NO_CELL_FOUND' for automatic PLMN selection in state 'A4 wait for PLMN to appear' <0003> gsm322.c:4062 (ms 1) Event 'EVENT_NO_CELL_FOUND' for Cell selection in state 'C0 null' <0003> gsm322.c:834 new state 'C0 null' -> 'C6 any cell selection' <0003> gsm322.c:2793 Scanning power for sticked cell. <0003> gsm322.c:2870 Scanning frequencies. (1..1) <0005> gsm48_mm.c:4308 (ms 1) Received 'MM_EVENT_NO_CELL_FOUND' event in state MM IDLE, no cell available <0005> gsm48_mm.c:4321 Message unhandled at this state. what should i do to connect mobile to my virtual bts? thanks.

10 months, 3 weeks

Re: osmocombb project does not work with any cable

by Craig Comstock

Hi there, You have to give these things some time. There are some good notes of expected behavior and bytes here: https://osmocom.org/projects/baseband/wiki/CompalRamloader -Craig On July 9, 2024 1:35:27 PM CDT, "حمۆدِيَ M" <jafar.jjjh63(a)gmail.com> wrote: >Hello . Please answer me, I have cp2102, FT232RL, and DSD TECH USB RS232 to >3.5mm Serial Cable with FTDI FT232RL Chip 6FT. >I have a conversion from 2.5mm to 3.5mm, but it does not work at all. But >in the cp2102 and FT232RL it works, but not completely, as it receives data >without sending the firmware download. What is the solution ? This is an >attached file that shows how to connect the phone with the CP2102 and >Ft232RL modules, and another picture showing what results appear to me. >Please reply to get the answer on how to send the firmware download >successfully! >For your information, I have 3 Motorola devices, C118, C115, and C139. They >all have the same result

11 months, 3 weeks

In search of broken Calypso phone

by Alexander Huemer

Hi I am on the hunt for a Calypso phone that isn't functional for whatever reason for the purpose of de-capping and photographing the Calypso/Iota/Rita ICs that a friendly individual would be able to do. This isn't something important, but the pictures would definitely be entertaining to look at. Of course somebody could donate a working phone to the cause, including myself, but a specimen that doesn't serve any other purpose anymore would be ideal. If you are in possession of such a phone, please let me know. Thanks, -Alex^Wblackbit

1 year

Jump to page:

2025

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

baseband-devel