From: Dobrica Pavlinusic Date: Fri, 27 Jan 2012 19:13:21 +0000 (+0100) Subject: chat in Qualcomm DM protocol X-Git-Url: http://git.rot13.org/?p=huawei.git;a=commitdiff_plain;h=efc6575dcc3f28790bb01344b795753776bcbd47;hp=3c408f1d9f5bff868b8e47636532e90da4ba7343 chat in Qualcomm DM protocol --- diff --git a/qcdm.pl b/qcdm.pl new file mode 100755 index 0000000..472e4b1 --- /dev/null +++ b/qcdm.pl @@ -0,0 +1,158 @@ +#!/usr/bin/perl +use warnings; +use strict; + +# http://blogs.gnome.org/dcbw/2010/04/15/mobile-broadband-and-qualcomm-proprietary-protocols/ +# http://cgit.freedesktop.org/ModemManager/ModemManager/tree/libqcdm/src/utils.c + +use Device::SerialPort; +use Data::Dump qw(dump); + +my @crc_table = ( + 0x0000, 0x1189, 0x2312, 0x329b, 0x4624, 0x57ad, 0x6536, 0x74bf, + 0x8c48, 0x9dc1, 0xaf5a, 0xbed3, 0xca6c, 0xdbe5, 0xe97e, 0xf8f7, + 0x1081, 0x0108, 0x3393, 0x221a, 0x56a5, 0x472c, 0x75b7, 0x643e, + 0x9cc9, 0x8d40, 0xbfdb, 0xae52, 0xdaed, 0xcb64, 0xf9ff, 0xe876, + 0x2102, 0x308b, 0x0210, 0x1399, 0x6726, 0x76af, 0x4434, 0x55bd, + 0xad4a, 0xbcc3, 0x8e58, 0x9fd1, 0xeb6e, 0xfae7, 0xc87c, 0xd9f5, + 0x3183, 0x200a, 0x1291, 0x0318, 0x77a7, 0x662e, 0x54b5, 0x453c, + 0xbdcb, 0xac42, 0x9ed9, 0x8f50, 0xfbef, 0xea66, 0xd8fd, 0xc974, + 0x4204, 0x538d, 0x6116, 0x709f, 0x0420, 0x15a9, 0x2732, 0x36bb, + 0xce4c, 0xdfc5, 0xed5e, 0xfcd7, 0x8868, 0x99e1, 0xab7a, 0xbaf3, + 0x5285, 0x430c, 0x7197, 0x601e, 0x14a1, 0x0528, 0x37b3, 0x263a, + 0xdecd, 0xcf44, 0xfddf, 0xec56, 0x98e9, 0x8960, 0xbbfb, 0xaa72, + 0x6306, 0x728f, 0x4014, 0x519d, 0x2522, 0x34ab, 0x0630, 0x17b9, + 0xef4e, 0xfec7, 0xcc5c, 0xddd5, 0xa96a, 0xb8e3, 0x8a78, 0x9bf1, + 0x7387, 0x620e, 0x5095, 0x411c, 0x35a3, 0x242a, 0x16b1, 0x0738, + 0xffcf, 0xee46, 0xdcdd, 0xcd54, 0xb9eb, 0xa862, 0x9af9, 0x8b70, + 0x8408, 0x9581, 0xa71a, 0xb693, 0xc22c, 0xd3a5, 0xe13e, 0xf0b7, + 0x0840, 0x19c9, 0x2b52, 0x3adb, 0x4e64, 0x5fed, 0x6d76, 0x7cff, + 0x9489, 0x8500, 0xb79b, 0xa612, 0xd2ad, 0xc324, 0xf1bf, 0xe036, + 0x18c1, 0x0948, 0x3bd3, 0x2a5a, 0x5ee5, 0x4f6c, 0x7df7, 0x6c7e, + 0xa50a, 0xb483, 0x8618, 0x9791, 0xe32e, 0xf2a7, 0xc03c, 0xd1b5, + 0x2942, 0x38cb, 0x0a50, 0x1bd9, 0x6f66, 0x7eef, 0x4c74, 0x5dfd, + 0xb58b, 0xa402, 0x9699, 0x8710, 0xf3af, 0xe226, 0xd0bd, 0xc134, + 0x39c3, 0x284a, 0x1ad1, 0x0b58, 0x7fe7, 0x6e6e, 0x5cf5, 0x4d7c, + 0xc60c, 0xd785, 0xe51e, 0xf497, 0x8028, 0x91a1, 0xa33a, 0xb2b3, + 0x4a44, 0x5bcd, 0x6956, 0x78df, 0x0c60, 0x1de9, 0x2f72, 0x3efb, + 0xd68d, 0xc704, 0xf59f, 0xe416, 0x90a9, 0x8120, 0xb3bb, 0xa232, + 0x5ac5, 0x4b4c, 0x79d7, 0x685e, 0x1ce1, 0x0d68, 0x3ff3, 0x2e7a, + 0xe70e, 0xf687, 0xc41c, 0xd595, 0xa12a, 0xb0a3, 0x8238, 0x93b1, + 0x6b46, 0x7acf, 0x4854, 0x59dd, 0x2d62, 0x3ceb, 0x0e70, 0x1ff9, + 0xf78f, 0xe606, 0xd49d, 0xc514, 0xb1ab, 0xa022, 0x92b9, 0x8330, + 0x7bc7, 0x6a4e, 0x58d5, 0x495c, 0x3de3, 0x2c6a, 0x1ef1, 0x0f78 +); + +sub crc { + my $crc = 0xffff; + foreach my $byte ( split(//, join('',@_)) ) { + $crc = ($crc >> 8) ^ $crc_table[ ($crc ^ $byte) & 0xff ]; + } + return $crc ^ 0xffff; +} + + + +my $device = $ENV{DEVICE} || '/dev/ttyUSB2'; # last device! control port! + +my $port = Device::SerialPort->new( $device ) || die "$device: $!"; +$port->baudrate(115200) || die "fail $device baudrate"; +$port->parity("none") || die "fail $device parity"; +$port->databits(8) || die "fail $device databits"; +$port->stopbits(1) || die "fail $device stopbits"; +$port->handshake("rts") || die "fail $device handshake"; + +$port->write_settings || die "no $device settings"; + +$port->user_msg(1); +$port->error_msg(1); +$port->debug(1); + +$port->read_char_time(3000); # 5 s char timeout +$port->read_const_time(3000); # 1 s read timeout + +while ( my $drain = $port->input ) { + warn "# drain $drain\n# /drain\n"; +} + +my $diag = { + GET_VERSION => 0, + GET_SERIAL_NUMBER => 1, + READ_VOLATILE_B => 2, + READ_VOLATILE_W => 3, + READ_VOLATILE_D => 4, + WRITE_VOLATILE_B => 5, + WRITE_VOLATILE_W => 6, + WRITE_VOLATILE_D => 7, + GET_STATUS => 12, + LOG_REQUEST => 16, + READ_NON_VOLATILE => 17, + GET_DIAG_VERSION => 28, + TIMESTAMP => 29, + GET_MESSAGE => 31, + CHANGE_MODE => 41, + SWITCH_TO_DL_MODE => 58, + EXTENDED_BUILD_ID => 124, +}; + +warn "## using $device\n"; + +#$port->write('AT$QCDMG'); +#warn "DIAG mode: ", $port->read(2), $port->input; # OK+cr/lf + +sub as_hex { + my @out; + foreach my $str ( @_ ) { + my $hex = uc unpack( 'H*', $str ); + $hex =~ s/(..)/$1 /g if length( $str ) > 2; + $hex =~ s/\s+$//; + push @out, $hex; + } + return join(' | ', @out) . " " . dump(@_); +} + + +sub diag { + my ($cmd,$message) = @_; + die "unknown $cmd" unless exists $diag->{$cmd}; + my $nr = $diag->{$cmd}; + + my $data = chr($nr); + + my $crc = pack('v', crc($data) ); + +# $data =~ s/\x7d/\x7d\x5d/; +# $data =~ s/\x7e/\x7d\x5e/; + + my $out = $data . $crc . "\x7e"; + + print STDERR ">>> $cmd >>> ",as_hex($out),$/; + $port->write($out); +# $port->write_done(1); # flush + $port->write_drain; + + block_read(); + +} + +sub block_read { + + my $ret = $port->read(1); + while ( my $c = $port->input ) { + print STDERR "<<< ",dump($ret . $c), $/; + $ret .= $c; +# last if $c =~ m/^OK\r/; + } + return $ret; +} + +diag 'GET_VERSION'; + +$port->close || die "can't close port $!"; + +while ( block_read() ) { + warn "# more"; +} + +warn "## $device closed\n"; +