2 # GoodFET Chipcon Example
4 # (C) 2009 Travis Goodspeed <travis at radiantmachines.com>
6 # This code is being rewritten and refactored. You've been warned!
11 from GoodFETCC import GoodFETCC;
12 from GoodFETConsole import GoodFETConsole;
13 from intelhex import IntelHex;
16 def printpacket(packet):
21 #if i>client.packetlen: break;
22 s="%s %02x" % (s,ord(foo));
26 print "Usage: %s verb [objects]\n" % sys.argv[0];
27 print "%s erase" % sys.argv[0];
28 print "%s flash $foo.hex" % sys.argv[0];
29 print "%s test" % sys.argv[0];
30 print "%s term" % sys.argv[0];
31 print "%s info" % sys.argv[0];
32 print "%s halt" % sys.argv[0];
33 print "%s regs" % sys.argv[0];
34 print "%s dumpcode $foo.hex [0x$start 0x$stop]" % sys.argv[0];
35 print "%s dumpdata $foo.hex [0x$start 0x$stop]" % sys.argv[0];
36 print "%s writedata $foo.hex [0x$start 0x$stop]" % sys.argv[0];
37 print "%s verify $foo.hex [0x$start 0x$stop]" % sys.argv[0];
38 print "%s peekdata 0x$start [0x$stop]" % sys.argv[0];
39 print "%s pokedata 0x$adr 0x$val" % sys.argv[0];
40 print "%s peek 0x$iram" % sys.argv[0];
41 print "%s poke 0x$iram 0x$val" % sys.argv[0];
42 print "%s peekcode 0x$start [0x$stop]" % sys.argv[0];
44 print "%s carrier [freq]\n\tHolds a carrier on [freq] Hz." % sys.argv[0];
45 #print "%s reflex [freq]\n\tJams on [freq] Hz." % sys.argv[0];
46 print "%s sniffsimpliciti [us|eu|lf]\n\tSniffs SimpliciTI packets." % sys.argv[0];
50 #Initailize FET and set baud rate
51 #client=GoodFET.GoodFETCC.GoodFETCC();
61 if(sys.argv[1]=="carrier"):
63 client.RF_setfreq(eval(sys.argv[2]));
66 #print "\nHolding a carrier wave.";
70 if(sys.argv[1]=="reflex"):
71 client.CC1110_crystal();
74 client.config_simpliciti();
75 client.pokebysym("MDMCFG4",0x0c); #ultrawide
76 client.pokebysym("FSCTRL1", 0x12); #IF of 457.031
77 client.pokebysym("FSCTRL0", 0x00);
78 client.pokebysym("FSCAL2", 0x2A); #above mid
79 client.pokebysym("MCSM0" , 0x0) # Main Radio Control State Machine
81 client.pokebysym("FSCAL3" , 0xEA) # Frequency synthesizer calibration.
82 client.pokebysym("FSCAL2" , 0x2A) # Frequency synthesizer calibration.
83 client.pokebysym("FSCAL1" , 0x00) # Frequency synthesizer calibration.
84 client.pokebysym("FSCAL0" , 0x1F) # Frequency synthesizer calibration.
86 client.pokebysym("TEST2" , 0x88) # Various test settings.
87 client.pokebysym("TEST1" , 0x35) # Various test settings.
88 client.pokebysym("TEST0" , 0x09) # Various test settings.
92 client.RF_setfreq(eval(sys.argv[2]));
93 print "Listening on %f MHz." % (client.RF_getfreq()/10**6);
94 print "Jamming if RSSI>=%i" % threshold;
98 client.pokebyte(RFST,0x01); #SCAL
104 client.pokebyte(RFST,0x02); #SRX
105 rssi=client.RF_getrssi();
106 client.pokebyte(RFST,0x04); #idle
110 for foo in range(0,rssi>>2):
111 string=("%s."%string);
112 print "%02x %04i %04i %s" % (rssi,rssi, maxrssi, string);
116 #print "Triggered jamming for 1s.";
119 print "JAMMING JAMMING JAMMING JAMMING";
121 if(sys.argv[1]=="sniffsimpliciti"):
122 #Reversal of transmitter code from nRF_CMD.c of OpenBeacon
123 #TODO remove all poke() calls.
125 client.config_simpliciti("lf");
126 #client.RF_setfreq(2481 * 10**6);
128 #OpenBeacon defines these in little endian as follows.
129 #client.RF_setmaclen(5); # SETUP_AW for 5-byte addresses.
130 #0x01, 0x02, 0x03, 0x02, 0x01
131 #client.RF_setsmac(0x0102030201);
132 #'O', 'C', 'A', 'E', 'B'
133 #client.RF_settmac(0x424541434F);
135 #Set packet length of 16.
136 #client.RF_setpacketlen(16);
139 print "Listening as %010x on %i MHz" % (client.RF_getsmac(),
140 client.RF_getfreq()/10**6);
141 #Now we're ready to get packets.
146 packet=client.RF_rxpacket();
152 if(sys.argv[1]=="explore"):
153 print "Exploring undefined commands."
154 print "Status: %s" %client.status();
156 cmd=0x04; #read status
157 for foo in range(0,0x5):
158 client.CCcmd([(0x0F<<3)|(0x00)|0x03,0x09<<3]);
159 print "Status %02x: %s" % (foo,client.status());
160 for foo in range(0,3):
161 print "PC: %04x" % client.CCgetPC();
162 if(sys.argv[1]=="term"):
163 GoodFETConsole(client).run();
164 if(sys.argv[1]=="test"):
166 if(sys.argv[1]=="deadtest"):
167 for i in range(1,10):
168 print "IDENT as %s" % client.CCidentstr();
169 if(sys.argv[1]=="dumpcode"):
174 start=int(sys.argv[3],16);
176 stop=int(sys.argv[4],16);
178 print "Dumping code from %04x to %04x as %s." % (start,stop,f);
182 h[i]=client.CCpeekcodebyte(i);
184 print "Dumped %04x."%i;
187 if(sys.argv[1]=="dumpdata"):
192 start=int(sys.argv[3],16);
194 stop=int(sys.argv[4],16);
196 print "Dumping data from %04x to %04x as %s." % (start,stop,f);
200 h[i]=client.CCpeekdatabyte(i);
202 print "Dumped %04x."%i;
205 if(sys.argv[1]=="status"):
206 print "Status: %s" %client.status();
207 if(sys.argv[1]=="halt"):
210 if(sys.argv[1]=="info"):
211 print "Ident %s" % client.CCidentstr();
214 print "Freq %10.3f MHz" % (client.RF_getfreq()/10**6);
215 print "RSSI %02x" % client.RF_getrssi();
217 print "Freq, RSSI, etc unknown. Install SmartRF7.";
218 #print "Rate %10i kbps" % (client.RF_getrate()/1000);
219 #print "PacketLen %02i bytes" % client.RF_getpacketlen();
220 #print "SMAC 0x%010x" % client.RF_getsmac();
221 #print "TMAC 0x%010x" % client.RF_gettmac();
223 if(sys.argv[1]=="regs"):
226 if(sys.argv[1]=="erase"):
227 print "Status: %s" % client.status();
228 client.CCchiperase();
229 print "Status: %s" %client.status();
231 if(sys.argv[1]=="peekinfo"):
232 print "Select info flash."
233 client.CCwr_config(1);
234 print "Config is %02x" % client.CCrd_config();
238 start=int(sys.argv[2],16);
241 stop=int(sys.argv[3],16);
242 print "Peeking from %04x to %04x." % (start,stop);
244 print "%04x: %02x" % (start,client.CCpeekcodebyte(start));
246 if(sys.argv[1]=="poke"):
247 client.CCpokeirambyte(int(sys.argv[2],16),
248 int(sys.argv[3],16));
249 if(sys.argv[1]=="randtest"):
251 client.CCpokeirambyte(0xBD,0x01); #RNDH=0x01
252 client.CCpokeirambyte(0xB4,0x04); #ADCCON1=0x04
253 client.CCpokeirambyte(0xBD,0x01); #RNDH=0x01
254 client.CCpokeirambyte(0xB4,0x04); #ADCCON1=0x04
257 for foo in range(1,10):
258 print "%02x" % client.CCpeekirambyte(0xBD); #RNDH
259 client.CCpokeirambyte(0xB4,0x04); #ADCCON1=0x04
260 client.CCreleasecpu();
262 print "%02x" % client.CCpeekdatabyte(0xDF61); #CHIP ID
263 if(sys.argv[1]=="adctest"):
264 # ADCTest 0xDF3A 0xDF3B
265 print "ADC TEST %02x%02x" % (
266 client.CCpeekdatabyte(0xDF3A),
267 client.CCpeekdatabyte(0xDF3B));
268 if(sys.argv[1]=="config"):
269 print "Config is %02x" % client.CCrd_config();
271 if(sys.argv[1]=="flash"):
276 start=int(sys.argv[3],16);
278 stop=int(sys.argv[4],16);
281 if(sys.argv[1]=="lock"):
282 print "Status: %s" %client.status();
284 print "Status: %s" %client.status();
285 if(sys.argv[1]=="flashpage"):
288 target=int(sys.argv[2],16);
289 print "Writing a page of flash from 0xF000 in XDATA"
290 client.CCflashpage(target);
291 if(sys.argv[1]=="erasebuffer"):
292 print "Erasing flash buffer.";
293 client.CCeraseflashbuffer();
295 if(sys.argv[1]=="writedata"):
300 start=int(sys.argv[3],16);
302 stop=int(sys.argv[4],16);
306 for i in h._buf.keys():
307 if(i>=start and i<=stop):
308 client.CCpokedatabyte(i,h[i]);
311 #if(sys.argv[1]=="flashtest"):
312 # client.CCflashtest();
313 if(sys.argv[1]=="peekdata"):
316 start=int(sys.argv[2],16);
319 stop=int(sys.argv[3],16);
320 print "Peeking from %04x to %04x." % (start,stop);
322 print "%04x: %02x" % (start,client.CCpeekdatabyte(start));
324 if(sys.argv[1]=="peek"):
327 start=int(sys.argv[2],16);
330 stop=int(sys.argv[3],16);
331 print "Peeking from %04x to %04x." % (start,stop);
333 print "%04x: %02x" % (start,client.CCpeekirambyte(start));
335 if(sys.argv[1]=="verify"):
340 start=int(sys.argv[3],16);
342 stop=int(sys.argv[4],16);
345 for i in h._buf.keys():
346 if(i>=start and i<stop):
347 peek=client.CCpeekcodebyte(i)
349 print "ERROR at %04x, found %02x not %02x"%(i,peek,h[i]);
352 if(sys.argv[1]=="peekcode"):
355 start=int(sys.argv[2],16);
358 stop=int(sys.argv[3],16);
359 print "Peeking from %04x to %04x." % (start,stop);
361 print "%04x: %02x" % (start,client.CCpeekcodebyte(start));
363 if(sys.argv[1]=="pokedata"):
367 start=int(sys.argv[2],16);
369 val=int(sys.argv[3],16);
370 print "Poking %04x to become %02x." % (start,val);
371 client.CCpokedatabyte(start,val);