/* packet-bthci_vendor.c * Routines for the Bluetooth HCI Vendors Commands/Events * * Copyright 2014, Michal Labedzki for Tieto Corporation * * Wireshark - Network traffic analyzer * By Gerald Combs * Copyright 1998 Gerald Combs * * SPDX-License-Identifier: GPL-2.0-or-later */ #include "config.h" #include #include #include #include "packet-bluetooth.h" #include "packet-bthci_cmd.h" #include "packet-bthci_evt.h" static int proto_bthci_vendor_broadcom = -1; static int hf_broadcom_opcode = -1; static int hf_broadcom_opcode_ogf = -1; static int hf_broadcom_opcode_ocf = -1; static int hf_broadcom_parameter_length = -1; static int hf_broadcom_number_of_allowed_command_packets = -1; static int hf_broadcom_event_code = -1; static int hf_broadcom_le_advertising_filter_subcode = -1; static int hf_broadcom_le_scan_condition = -1; static int hf_broadcom_le_filter_index = -1; static int hf_broadcom_le_number_of_available_filters = -1; static int hf_broadcom_firmware = -1; static int hf_broadcom_firmware_address = -1; static int hf_broadcom_baudrate = -1; static int hf_broadcom_status = -1; static int hf_broadcom_bd_addr = -1; static int hf_broadcom_max_advertising_instance = -1; static int hf_broadcom_resolvable_private_address_offloading = -1; static int hf_broadcom_total_scan_results = -1; static int hf_broadcom_max_irk_list = -1; static int hf_broadcom_filter_support = -1; static int hf_broadcom_max_filter = -1; static int hf_broadcom_energy_support = -1; static int hf_broadcom_connection_handle = -1; static int hf_broadcom_connection_priority = -1; static int hf_broadcom_sleep_mode = -1; static int hf_broadcom_host_stack_idle_threshold = -1; static int hf_broadcom_host_controller_idle_threshold = -1; static int hf_broadcom_wake_polarity = -1; static int hf_broadcom_host_wake_polarity = -1; static int hf_broadcom_allow_host_sleep_during_sco = -1; static int hf_broadcom_combine_sleep_mode_and_lpm = -1; static int hf_broadcom_enable_uart_txd_tri_state = -1; static int hf_broadcom_sleep_guard_time = -1; static int hf_broadcom_wakeup_guard_time = -1; static int hf_broadcom_txd_config = -1; static int hf_broadcom_pulsed_host_wake = -1; static int hf_broadcom_uart_clock = -1; static int hf_broadcom_codec_state = -1; static int hf_broadcom_codec = -1; static int hf_broadcom_sco_pcm_routing = -1; static int hf_broadcom_sco_pcm_interface_clock_rate = -1; static int hf_broadcom_sco_pcm_interface_frame_type = -1; static int hf_broadcom_sco_pcm_interface_sync_mode = -1; static int hf_broadcom_sco_pcm_interface_clock_mode = -1; static int hf_broadcom_pcm_shift_mode = -1; static int hf_broadcom_pcm_fill_bits = -1; static int hf_broadcom_pcm_fill_method = -1; static int hf_broadcom_pcm_fill_number_of_bits = -1; static int hf_broadcom_pcm_justify_mode = -1; static int hf_broadcom_sco_i2s_pcm_interface_mode = -1; static int hf_broadcom_sco_i2s_pcm_interface_role = -1; static int hf_broadcom_sco_i2s_pcm_interface_sample_rate = -1; static int hf_broadcom_sco_i2s_pcm_interface_clock_rate = -1; static int hf_broadcom_le_energy_total_rx_time = -1; static int hf_broadcom_le_energy_total_tx_time = -1; static int hf_broadcom_le_energy_total_idle_time = -1; static int hf_broadcom_le_energy_total_energy_used = -1; static int hf_broadcom_le_batch_scan_subcode = -1; static int hf_broadcom_le_batch_scan_report_format = -1; static int hf_broadcom_le_batch_scan_number_of_records = -1; static int hf_broadcom_le_batch_scan_mode = -1; static int hf_broadcom_le_batch_scan_enable = -1; static int hf_broadcom_le_batch_scan_full_max = -1; static int hf_broadcom_le_batch_scan_truncate_max = -1; static int hf_broadcom_le_batch_scan_notify_threshold = -1; static int hf_broadcom_le_batch_scan_window = -1; static int hf_broadcom_le_batch_scan_interval = -1; static int hf_broadcom_le_batch_scan_address_type = -1; static int hf_broadcom_le_batch_scan_discard_rule = -1; static int hf_broadcom_le_multi_advertising_subcode = -1; static int hf_broadcom_le_multi_advertising_enable = -1; static int hf_broadcom_le_multi_advertising_instance_id = -1; static int hf_broadcom_le_multi_advertising_type = -1; static int hf_broadcom_le_multi_advertising_min_interval = -1; static int hf_broadcom_le_multi_advertising_max_interval = -1; static int hf_broadcom_le_multi_advertising_address_type = -1; static int hf_broadcom_le_multi_advertising_filter_policy = -1; static int hf_broadcom_le_multi_advertising_tx_power = -1; static int hf_broadcom_le_multi_advertising_channel_map = -1; static int hf_broadcom_le_multi_advertising_channel_map_reserved; static int hf_broadcom_le_multi_advertising_channel_map_39 = -1; static int hf_broadcom_le_multi_advertising_channel_map_38 = -1; static int hf_broadcom_le_multi_advertising_channel_map_37 = -1; static int hf_broadcom_hid_emulation_mode = -1; static int hf_broadcom_vid = -1; static int hf_broadcom_pid = -1; static int hf_broadcom_chip_id = -1; static int hf_broadcom_target_id = -1; static int hf_broadcom_build_base = -1; static int hf_broadcom_build_number = -1; static int hf_broadcom_data = -1; static int * const hfx_le_multi_advertising_channel_map[] = { &hf_broadcom_le_multi_advertising_channel_map_reserved, &hf_broadcom_le_multi_advertising_channel_map_39, &hf_broadcom_le_multi_advertising_channel_map_38, &hf_broadcom_le_multi_advertising_channel_map_37, NULL }; static gint ett_broadcom = -1; static gint ett_broadcom_opcode = -1; static gint ett_broadcom_channel_map = -1; static expert_field ei_broadcom_undecoded = EI_INIT; static expert_field ei_broadcom_unexpected_parameter = EI_INIT; static expert_field ei_broadcom_unexpected_data = EI_INIT; static dissector_handle_t bthci_vendor_broadcom_handle; static dissector_handle_t btcommon_ad_handle; #define BROADCOM_OPCODE_VALS(base) \ /* Bluetooth Core 4.0 */ \ { (base) | 0x0001, "Write BD ADDR" }, \ { (base) | 0x0018, "Update Baudrate" }, \ { (base) | 0x001C, "Write SCO PCM INT Parameter" }, \ { (base) | 0x001E, "Write PCM Data Format Parameter" }, \ { (base) | 0x0027, "Write Sleep Mode" }, \ { (base) | 0x002E, "Download MiniDriver" }, \ { (base) | 0x003B, "Enable USB HID Emulation" }, \ { (base) | 0x0045, "Write UART Clock Setting" }, \ { (base) | 0x004C, "Write Firmware" }, /* Unknown name, but it is part of firmware, \ which is set of this command and one \ "Launch RAM" at the end of file. \ Procedure of load firmware seems to be \ initiated by command "Download MiniDriver" */ \ { (base) | 0x004E, "Launch RAM" }, \ { (base) | 0x0057, "Set ACL Priority" }, \ { (base) | 0x005A, "Read VID PID" }, \ { (base) | 0x006D, "Write I2S PCM Interface Parameter" }, \ { (base) | 0x0079, "Read Verbose Config Version Info" }, \ { (base) | 0x007E, "Enable WBS" }, \ { (base) | 0x0102, "Enable WBS Modified" }, \ { (base) | 0x0111, "Set ConnectionLess Broadcast Stream" }, \ { (base) | 0x0112, "Receive ConnectionLess Broadcast Stream" }, \ { (base) | 0x0113, "Write ConnectionLess Broadcast Stream Data" }, \ { (base) | 0x0114, "ConnectionLess Broadcast Stream Flush" }, \ { (base) | 0x0153, "LE Get Vendor Capabilities" }, \ { (base) | 0x0154, "LE Multi Advertising" }, \ { (base) | 0x0156, "LE Batch Scan" }, \ { (base) | 0x0157, "LE Advertising Filter" }, \ { (base) | 0x0158, "LE Tracking Advertising" }, \ { (base) | 0x0159, "LE Energy Info" } static const value_string broadcom_opcode_ocf_vals[] = { BROADCOM_OPCODE_VALS(0x0), { 0, NULL } }; static const value_string broadcom_opcode_vals[] = { BROADCOM_OPCODE_VALS(0x3F << 10), { 0, NULL } }; static const value_string broadcom_le_subcode_advertising_filter_vals[] = { { 0x00, "Enable" }, { 0x01, "Feature Select" }, { 0x02, "BDADDR" }, { 0x03, "UUID" }, { 0x04, "Solicitate UUID" }, { 0x05, "Local Name" }, { 0x06, "Manufacturer Data" }, { 0x07, "Service Data" }, { 0x08, "All" }, { 0, NULL } }; static const value_string broadcom_le_scan_condition_vals[] = { { 0x00, "Add" }, { 0x01, "Delete" }, { 0x02, "Clear" }, { 0, NULL } }; static const value_string broadcom_uart_clock_vals[] = { { 0x01, "48 MHz" }, { 0x02, "24 HHz" }, { 0, NULL } }; static const value_string broadcom_sleep_mode_vals[] = { { 0x01, "disable" }, { 0x02, "UART" }, { 0x09, "H5" }, { 0, NULL } }; static const value_string broadcom_wake_polarity_vals[] = { { 0x00, "Active Low" }, { 0x01, "Active High" }, { 0, NULL } }; static const value_string broadcom_connection_priority_vals[] = { { 0x00, "Normal" }, { 0xFF, "High" }, { 0, NULL } }; static const value_string broadcom_codec_state_vals[] = { { 0x00, "Disable" }, { 0x01, "Enable" }, { 0, NULL } }; static const value_string broadcom_codec_vals[] = { { 0x00, "None" }, { 0x01, "CVSD" }, { 0x02, "mSBC" }, { 0, NULL } }; static const value_string broadcom_sco_pcm_routing_vals[] = { { 0x00, "PCM" }, { 0x01, "Transport" }, { 0x02, "Codec" }, { 0x03, "I2S" }, { 0, NULL } }; static const value_string broadcom_sco_pcm_interface_clock_rate_vals[] = { { 0x00, "128k" }, { 0x01, "256k" }, { 0x02, "512k" }, { 0x03, "1024k" }, { 0x04, "2048k" }, { 0, NULL } }; static const value_string broadcom_sco_pcm_interface_frame_type_vals[] = { { 0x00, "Short" }, { 0x01, "Long" }, { 0, NULL } }; static const value_string broadcom_mode_slave_master_vals[] = { { 0x00, "Slave" }, { 0x01, "Master" }, { 0, NULL } }; static const value_string broadcom_pcm_shift_mode_vals[] = { { 0x00, "MSB" }, { 0x01, "LSB" }, { 0, NULL } }; static const value_string broadcom_pcm_fill_method_vals[] = { { 0x00, "0's" }, { 0x01, "1's" }, { 0x02, "Signed" }, { 0x03, "Programmable" }, { 0, NULL } }; static const value_string broadcom_pcm_justify_mode_vals[] = { { 0x00, "Left" }, { 0x01, "Right" }, { 0, NULL } }; static const value_string broadcom_sco_i2s_pcm_interface_mode_vals[] = { { 0x00, "Disable" }, { 0x01, "Enable" }, { 0, NULL } }; static const value_string broadcom_sco_i2s_pcm_interface_sample_rate_vals[] = { { 0x00, "8k" }, { 0x01, "16k" }, { 0x02, "4k" }, { 0, NULL } }; static const value_string broadcom_sco_i2s_pcm_interface_clock_rate_vals[] = { { 0x00, "128k" }, { 0x01, "256k" }, { 0x02, "512k" }, { 0x03, "1024k" }, { 0x04, "2048k" }, { 0, NULL } }; static const value_string broadcom_le_subcode_batch_scan_vals[] = { { 0x01, "Enable/Disable Customer Feature" }, { 0x02, "Set Storage Parameter" }, { 0x03, "Set Parameter" }, { 0x04, "Read Results" }, { 0, NULL } }; static const value_string broadcom_batch_scan_mode_vals[] = { { 0x00, "Disable" }, { 0x01, "Pass" }, { 0x02, "ACTI" }, { 0x03, "Pass ACTI" }, { 0, NULL } }; static const value_string broadcom_batch_scan_discard_rule_vals[] = { { 0x00, "Old Items" }, { 0x01, "Lower RSSI Items" }, { 0, NULL } }; static const value_string broadcom_disable_enable_vals[] = { { 0x00, "Disable" }, { 0x01, "Enable" }, { 0, NULL } }; static const value_string broadcom_le_subcode_multi_advertising_vals[] = { { 0x01, "Set Parameter" }, { 0x02, "Write Advertising Data" }, { 0x03, "Write Scan Response Data" }, { 0x04, "Set Random Address" }, { 0x05, "MultiAdvertising Enable/Disable Customer Feature" }, { 0, NULL } }; static const value_string broadcom_le_filter_policy_vals[] = { { 0x00, "All Connections" }, { 0x01, "Whitelist Connections All" }, { 0x02, "All Connections Whitelist" }, { 0x03, "Whitelist Connections" }, { 0, NULL } }; static const value_string broadcom_hid_emulation_mode_vals[] = { { 0x00, "Bluetooth" }, { 0x01, "HID" }, { 0, NULL } }; static const value_string broadcom_target_id_vals[] = { { 0xFE, "Invalid" }, { 0xFF, "Undefined" }, { 0, NULL } }; void proto_register_bthci_vendor_broadcom(void); void proto_reg_handoff_bthci_vendor_broadcom(void); static gint dissect_bthci_vendor_broadcom(tvbuff_t *tvb, packet_info *pinfo, proto_tree *tree, void *data) { proto_item *main_item; proto_tree *main_tree; proto_item *opcode_item; proto_tree *opcode_tree; proto_item *sub_item; bluetooth_data_t *bluetooth_data; gint offset = 0; guint16 opcode; guint16 ocf; const gchar *description; guint8 length; guint8 event_code; guint8 bd_addr[6]; guint8 status; guint8 subcode; guint8 condition; guint32 interface_id; guint32 adapter_id; bluetooth_data = (bluetooth_data_t *) data; if (bluetooth_data) { interface_id = bluetooth_data->interface_id; adapter_id = bluetooth_data->adapter_id; } else { interface_id = HCI_INTERFACE_DEFAULT; adapter_id = HCI_ADAPTER_DEFAULT; } main_item = proto_tree_add_item(tree, proto_bthci_vendor_broadcom, tvb, 0, tvb_captured_length(tvb), ENC_NA); main_tree = proto_item_add_subtree(main_item, ett_broadcom); switch (pinfo->p2p_dir) { case P2P_DIR_SENT: col_set_str(pinfo->cinfo, COL_PROTOCOL, "HCI_CMD_BROADCOM"); col_add_fstr(pinfo->cinfo, COL_INFO, "Sent Broadcom "); opcode_item = proto_tree_add_item(main_tree, hf_broadcom_opcode, tvb, offset, 2, ENC_LITTLE_ENDIAN); opcode_tree = proto_item_add_subtree(opcode_item, ett_broadcom_opcode); opcode = tvb_get_letohs(tvb, offset); proto_tree_add_item(opcode_tree, hf_broadcom_opcode_ogf, tvb, offset, 2, ENC_LITTLE_ENDIAN); proto_tree_add_item(opcode_tree, hf_broadcom_opcode_ocf, tvb, offset, 2, ENC_LITTLE_ENDIAN); ocf = opcode & 0x03ff; offset+=2; description = val_to_str_const(ocf, broadcom_opcode_ocf_vals, "unknown"); if (g_strcmp0(description, "unknown") != 0) col_append_str(pinfo->cinfo, COL_INFO, description); else col_append_fstr(pinfo->cinfo, COL_INFO, "Unknown Command 0x%04X (opcode 0x%04X)", ocf, opcode); if (have_tap_listener(bluetooth_hci_summary_tap)) { bluetooth_hci_summary_tap_t *tap_hci_summary; tap_hci_summary = wmem_new(pinfo->pool, bluetooth_hci_summary_tap_t); tap_hci_summary->interface_id = interface_id; tap_hci_summary->adapter_id = adapter_id; tap_hci_summary->type = BLUETOOTH_HCI_SUMMARY_VENDOR_OPCODE; tap_hci_summary->ogf = opcode >> 10; tap_hci_summary->ocf = ocf; if (try_val_to_str(ocf, broadcom_opcode_ocf_vals)) tap_hci_summary->name = description; else tap_hci_summary->name = NULL; tap_queue_packet(bluetooth_hci_summary_tap, pinfo, tap_hci_summary); } proto_tree_add_item(main_tree, hf_broadcom_parameter_length, tvb, offset, 1, ENC_NA); length = tvb_get_guint8(tvb, offset); offset += 1; switch(ocf) { case 0x0001: /* Write BDADDR */ offset = dissect_bd_addr(hf_broadcom_bd_addr, pinfo, main_tree, tvb, offset, TRUE, interface_id, adapter_id, bd_addr); /* TODO: This is command, but in respose (event Command Complete) there is a status for that, so write bdaddr can fail, but we store bdaddr as valid for now... */ if (!pinfo->fd->visited && bluetooth_data) { wmem_tree_key_t key[4]; guint32 frame_number; localhost_bdaddr_entry_t *localhost_bdaddr_entry; frame_number = pinfo->num; key[0].length = 1; key[0].key = &interface_id; key[1].length = 1; key[1].key = &adapter_id; key[2].length = 1; key[2].key = &frame_number; key[3].length = 0; key[3].key = NULL; localhost_bdaddr_entry = (localhost_bdaddr_entry_t *) wmem_new(wmem_file_scope(), localhost_bdaddr_entry_t); localhost_bdaddr_entry->interface_id = interface_id; localhost_bdaddr_entry->adapter_id = adapter_id; memcpy(localhost_bdaddr_entry->bd_addr, bd_addr, 6); wmem_tree_insert32_array(bluetooth_data->localhost_bdaddr, key, localhost_bdaddr_entry); } break; case 0x0018: /* Update Baudrate */ /* TODO: Implement - two unknown parameters... */ sub_item = proto_tree_add_item(main_tree, hf_broadcom_data, tvb, offset, 1, ENC_NA); expert_add_info(pinfo, sub_item, &ei_broadcom_undecoded); offset += 1; sub_item = proto_tree_add_item(main_tree, hf_broadcom_data, tvb, offset, 1, ENC_NA); expert_add_info(pinfo, sub_item, &ei_broadcom_undecoded); offset += 1; proto_tree_add_item(main_tree, hf_broadcom_baudrate, tvb, offset, 4, ENC_LITTLE_ENDIAN); offset += 4; break; case 0x001C: /* Write SCO PCM INT Parameter */ proto_tree_add_item(main_tree, hf_broadcom_sco_pcm_routing, tvb, offset, 1, ENC_NA); offset += 1; proto_tree_add_item(main_tree, hf_broadcom_sco_pcm_interface_clock_rate, tvb, offset, 1, ENC_NA); offset += 1; proto_tree_add_item(main_tree, hf_broadcom_sco_pcm_interface_frame_type, tvb, offset, 1, ENC_NA); offset += 1; proto_tree_add_item(main_tree, hf_broadcom_sco_pcm_interface_sync_mode, tvb, offset, 1, ENC_NA); offset += 1; proto_tree_add_item(main_tree, hf_broadcom_sco_pcm_interface_clock_mode, tvb, offset, 1, ENC_NA); offset += 1; break; case 0x001E: /* Write PCM Data Format Parameter */ proto_tree_add_item(main_tree, hf_broadcom_pcm_shift_mode, tvb, offset, 1, ENC_NA); offset += 1; proto_tree_add_item(main_tree, hf_broadcom_pcm_fill_bits, tvb, offset, 1, ENC_NA); offset += 1; proto_tree_add_item(main_tree, hf_broadcom_pcm_fill_method, tvb, offset, 1, ENC_NA); offset += 1; proto_tree_add_item(main_tree, hf_broadcom_pcm_fill_number_of_bits, tvb, offset, 1, ENC_NA); offset += 1; proto_tree_add_item(main_tree, hf_broadcom_pcm_justify_mode, tvb, offset, 1, ENC_NA); offset += 1; break; case 0x0027: /* Write Sleep Mode */ proto_tree_add_item(main_tree, hf_broadcom_sleep_mode, tvb, offset, 1, ENC_NA); offset += 1; proto_tree_add_item(main_tree, hf_broadcom_host_stack_idle_threshold, tvb, offset, 1, ENC_NA); offset += 1; proto_tree_add_item(main_tree, hf_broadcom_host_controller_idle_threshold, tvb, offset, 1, ENC_NA); offset += 1; proto_tree_add_item(main_tree, hf_broadcom_wake_polarity, tvb, offset, 1, ENC_NA); offset += 1; proto_tree_add_item(main_tree, hf_broadcom_host_wake_polarity, tvb, offset, 1, ENC_NA); offset += 1; proto_tree_add_item(main_tree, hf_broadcom_allow_host_sleep_during_sco, tvb, offset, 1, ENC_NA); offset += 1; proto_tree_add_item(main_tree, hf_broadcom_combine_sleep_mode_and_lpm, tvb, offset, 1, ENC_NA); offset += 1; proto_tree_add_item(main_tree, hf_broadcom_enable_uart_txd_tri_state, tvb, offset, 1, ENC_NA); offset += 1; proto_tree_add_item(main_tree, hf_broadcom_sleep_guard_time, tvb, offset, 1, ENC_NA); offset += 1; proto_tree_add_item(main_tree, hf_broadcom_wakeup_guard_time, tvb, offset, 1, ENC_NA); offset += 1; proto_tree_add_item(main_tree, hf_broadcom_txd_config, tvb, offset, 1, ENC_NA); offset += 1; proto_tree_add_item(main_tree, hf_broadcom_pulsed_host_wake, tvb, offset, 1, ENC_NA); offset += 1; break; case 0x003B: /* Enable USB HID Emulation */ proto_tree_add_item(main_tree, hf_broadcom_hid_emulation_mode, tvb, offset, 1, ENC_NA); offset += 1; break; case 0x0045: /* Write UART Clock Setting */ proto_tree_add_item(main_tree, hf_broadcom_uart_clock, tvb, offset, 1, ENC_NA); offset += 1; break; case 0x004C: /* Write Firmware*/ proto_tree_add_item(main_tree, hf_broadcom_firmware_address, tvb, offset, 4, ENC_LITTLE_ENDIAN); offset += 4; proto_tree_add_item(main_tree, hf_broadcom_firmware, tvb, offset, length - 4, ENC_NA); offset += length - 4; break; case 0x004E: /* Launch RAM */ proto_tree_add_item(main_tree, hf_broadcom_firmware_address, tvb, offset, 4, ENC_LITTLE_ENDIAN); offset += 4; break; case 0x0057: /* Set ACL Priority */ proto_tree_add_item(main_tree, hf_broadcom_connection_handle, tvb, offset, 2, ENC_LITTLE_ENDIAN); offset += 2; proto_tree_add_item(main_tree, hf_broadcom_connection_priority, tvb, offset, 1, ENC_NA); offset += 1; break; case 0x006D: /* Write I2S PCM Interface Parameter */ proto_tree_add_item(main_tree, hf_broadcom_sco_i2s_pcm_interface_mode, tvb, offset, 1, ENC_NA); offset += 1; proto_tree_add_item(main_tree, hf_broadcom_sco_i2s_pcm_interface_role, tvb, offset, 1, ENC_NA); offset += 1; proto_tree_add_item(main_tree, hf_broadcom_sco_i2s_pcm_interface_sample_rate, tvb, offset, 1, ENC_NA); offset += 1; proto_tree_add_item(main_tree, hf_broadcom_sco_i2s_pcm_interface_clock_rate, tvb, offset, 1, ENC_NA); offset += 1; break; case 0x007E: /* Enable WBS */ proto_tree_add_item(main_tree, hf_broadcom_codec_state, tvb, offset, 1, ENC_NA); status = tvb_get_guint8(tvb, offset); offset += 1; if (status == 0x01) { /* Enable */ proto_tree_add_item(main_tree, hf_broadcom_codec, tvb, offset, 2, ENC_LITTLE_ENDIAN); offset += 2; } break; case 0x0154: /* LE Multi Adveritising */ proto_tree_add_item(main_tree, hf_broadcom_le_multi_advertising_subcode, tvb, offset, 1, ENC_NA); subcode = tvb_get_guint8(tvb, offset); offset += 1; switch (subcode) { case 0x01: /* Set Parameter */ proto_tree_add_item(main_tree, hf_broadcom_le_multi_advertising_min_interval, tvb, offset, 2, ENC_LITTLE_ENDIAN); offset += 2; proto_tree_add_item(main_tree, hf_broadcom_le_multi_advertising_max_interval, tvb, offset, 2, ENC_LITTLE_ENDIAN); offset += 2; proto_tree_add_item(main_tree, hf_broadcom_le_multi_advertising_type, tvb, offset, 1, ENC_NA); offset += 1; proto_tree_add_item(main_tree, hf_broadcom_le_multi_advertising_address_type, tvb, offset, 1, ENC_NA); offset += 1; offset = dissect_bd_addr(hf_broadcom_bd_addr, pinfo, main_tree, tvb, offset, FALSE, interface_id, adapter_id, NULL); proto_tree_add_item(main_tree, hf_broadcom_le_multi_advertising_address_type, tvb, offset, 1, ENC_NA); offset += 1; offset = dissect_bd_addr(hf_broadcom_bd_addr, pinfo, main_tree, tvb, offset, FALSE, interface_id, adapter_id, NULL); proto_tree_add_bitmask(main_tree, tvb, offset, hf_broadcom_le_multi_advertising_channel_map, ett_broadcom_channel_map, hfx_le_multi_advertising_channel_map, ENC_NA); offset += 1; proto_tree_add_item(main_tree, hf_broadcom_le_multi_advertising_filter_policy, tvb, offset, 1, ENC_NA); offset += 1; proto_tree_add_item(main_tree, hf_broadcom_le_multi_advertising_instance_id, tvb, offset, 1, ENC_NA); offset += 1; proto_tree_add_item(main_tree, hf_broadcom_le_multi_advertising_tx_power, tvb, offset, 1, ENC_NA); offset += 1; break; case 0x02: /* Write Advertising Data */ case 0x03: /* Write Scan Response Data */ call_dissector_with_data(btcommon_ad_handle, tvb_new_subset_length(tvb, offset, 31), pinfo, tree, bluetooth_data); save_local_device_name_from_eir_ad(tvb, offset, pinfo, 31, bluetooth_data); offset += 31; proto_tree_add_item(main_tree, hf_broadcom_le_multi_advertising_instance_id, tvb, offset, 1, ENC_NA); offset += 1; break; case 0x04: /* Set Random Address */ offset = dissect_bd_addr(hf_broadcom_bd_addr, pinfo, main_tree, tvb, offset, FALSE, interface_id, adapter_id, NULL); proto_tree_add_item(main_tree, hf_broadcom_le_multi_advertising_instance_id, tvb, offset, 1, ENC_NA); offset += 1; break; case 0x05: /* MultiAdvertising Enable/Disable Customer Feature */ proto_tree_add_item(main_tree, hf_broadcom_le_multi_advertising_enable, tvb, offset, 1, ENC_NA); offset += 1; proto_tree_add_item(main_tree, hf_broadcom_le_multi_advertising_instance_id, tvb, offset, 1, ENC_NA); offset += 1; break; } break; case 0x0156: /* LE Batch Scan */ proto_tree_add_item(main_tree, hf_broadcom_le_batch_scan_subcode, tvb, offset, 1, ENC_NA); subcode = tvb_get_guint8(tvb, offset); offset += 1; switch (subcode) { case 0x01: /* Enable/Disable Customer Feature */ proto_tree_add_item(main_tree, hf_broadcom_le_batch_scan_enable, tvb, offset, 1, ENC_NA); offset += 1; break; case 0x02: /* Set Storage Parameter */ proto_tree_add_item(main_tree, hf_broadcom_le_batch_scan_full_max, tvb, offset, 1, ENC_NA); offset += 1; proto_tree_add_item(main_tree, hf_broadcom_le_batch_scan_truncate_max, tvb, offset, 1, ENC_NA); offset += 1; proto_tree_add_item(main_tree, hf_broadcom_le_batch_scan_notify_threshold, tvb, offset, 1, ENC_NA); offset += 1; break; case 0x03: /* Set Parameter */ proto_tree_add_item(main_tree, hf_broadcom_le_batch_scan_mode, tvb, offset, 1, ENC_NA); offset += 1; proto_tree_add_item(main_tree, hf_broadcom_le_batch_scan_window, tvb, offset, 4, ENC_LITTLE_ENDIAN); offset += 4; proto_tree_add_item(main_tree, hf_broadcom_le_batch_scan_interval, tvb, offset, 4, ENC_LITTLE_ENDIAN); offset += 4; proto_tree_add_item(main_tree, hf_broadcom_le_batch_scan_address_type, tvb, offset, 1, ENC_NA); offset += 1; proto_tree_add_item(main_tree, hf_broadcom_le_batch_scan_discard_rule, tvb, offset, 1, ENC_NA); offset += 1; break; case 0x04: /* Read Results */ proto_tree_add_item(main_tree, hf_broadcom_le_batch_scan_mode, tvb, offset, 1, ENC_NA); offset += 1; break; } break; case 0x0157: /* LE Advertising Filter */ proto_tree_add_item(main_tree, hf_broadcom_le_advertising_filter_subcode, tvb, offset, 1, ENC_NA); subcode = tvb_get_guint8(tvb, offset); offset += 1; proto_tree_add_item(main_tree, hf_broadcom_le_scan_condition, tvb, offset, 1, ENC_NA); condition = tvb_get_guint8(tvb, offset); offset += 1; proto_tree_add_item(main_tree, hf_broadcom_le_filter_index, tvb, offset, 1, ENC_NA); offset += 1; if (condition == 0x00) { /* Add */ switch (subcode) { case 0x00: /* Enable */ case 0x01: /* Feature Select */ case 0x02: /* BDADDR */ case 0x03: /* UUID */ case 0x04: /* Solicitate UUID */ case 0x05: /* Local Name */ case 0x06: /* Manufacturer Data */ case 0x07: /* Service Data */ case 0x08: /* All */ /* TODO */ sub_item = proto_tree_add_item(main_tree, hf_broadcom_data, tvb, offset, length - 3, ENC_NA); expert_add_info(pinfo, sub_item, &ei_broadcom_undecoded); offset += length - 3; break; default: sub_item = proto_tree_add_item(main_tree, hf_broadcom_data, tvb, offset, length - 3, ENC_NA); expert_add_info(pinfo, sub_item, &ei_broadcom_unexpected_data); offset += length - 3; } } break; case 0x0102: /* Enable WBS Modified */ case 0x0111: /* Set ConnectionLess Broadcast Stream */ case 0x0112: /* Receive ConnectionLess Broadcast Stream */ case 0x0113: /* Write ConnectionLess Broadcast Stream Data */ case 0x0114: /* ConnectionLess Broadcast Stream Flush */ case 0x0158: /* LE Tracking Advertising */ sub_item = proto_tree_add_item(main_tree, hf_broadcom_data, tvb, offset, length, ENC_NA); expert_add_info(pinfo, sub_item, &ei_broadcom_undecoded); offset += length; break; case 0x002E: /* Download MiniDriver */ case 0x005A: /* Read VID PID */ case 0x0079: /* Read Verbose Config Version Info */ case 0x0153: /* LE Get Vendor Capabilities */ case 0x0159: /* LE Energy Info */ if (tvb_captured_length_remaining(tvb, offset) > 0) { sub_item = proto_tree_add_item(main_tree, hf_broadcom_data, tvb, offset, length, ENC_NA); expert_add_info(pinfo, sub_item, &ei_broadcom_unexpected_parameter); } break; default: if (length > 0) { sub_item = proto_tree_add_item(main_tree, hf_broadcom_data, tvb, offset, length, ENC_NA); expert_add_info(pinfo, sub_item, &ei_broadcom_undecoded); offset += length; } } break; case P2P_DIR_RECV: col_set_str(pinfo->cinfo, COL_PROTOCOL, "HCI_EVT_BROADCOM"); col_add_fstr(pinfo->cinfo, COL_INFO, "Rcvd Broadcom "); event_code = tvb_get_guint8(tvb, offset); description = val_to_str_ext_const(event_code, &bthci_evt_evt_code_vals_ext, "Unknown 0x%08x"); col_append_str(pinfo->cinfo, COL_INFO, description); proto_tree_add_item(main_tree, hf_broadcom_event_code, tvb, offset, 1, ENC_NA); offset += 1; if (have_tap_listener(bluetooth_hci_summary_tap)) { bluetooth_hci_summary_tap_t *tap_hci_summary; tap_hci_summary = wmem_new(pinfo->pool, bluetooth_hci_summary_tap_t); tap_hci_summary->interface_id = interface_id; tap_hci_summary->adapter_id = adapter_id; tap_hci_summary->type = BLUETOOTH_HCI_SUMMARY_VENDOR_EVENT; tap_hci_summary->event = event_code; if (try_val_to_str_ext(event_code, &bthci_evt_evt_code_vals_ext)) tap_hci_summary->name = description; else tap_hci_summary->name = NULL; tap_queue_packet(bluetooth_hci_summary_tap, pinfo, tap_hci_summary); } proto_tree_add_item(main_tree, hf_broadcom_parameter_length, tvb, offset, 1, ENC_NA); length = tvb_get_guint8(tvb, offset); offset += 1; switch (event_code) { case 0x0e: /* Command Complete */ proto_tree_add_item(main_tree, hf_broadcom_number_of_allowed_command_packets, tvb, offset, 1, ENC_NA); offset += 1; opcode_item = proto_tree_add_item(main_tree, hf_broadcom_opcode, tvb, offset, 2, ENC_LITTLE_ENDIAN); opcode_tree = proto_item_add_subtree(opcode_item, ett_broadcom_opcode); opcode = tvb_get_letohs(tvb, offset); proto_tree_add_item(opcode_tree, hf_broadcom_opcode_ogf, tvb, offset, 2, ENC_LITTLE_ENDIAN); proto_tree_add_item(opcode_tree, hf_broadcom_opcode_ocf, tvb, offset, 2, ENC_LITTLE_ENDIAN); ocf = opcode & 0x03ff; offset += 2; description = val_to_str_const(ocf, broadcom_opcode_ocf_vals, "unknown"); if (g_strcmp0(description, "unknown") != 0) col_append_fstr(pinfo->cinfo, COL_INFO, " (%s)", description); else col_append_fstr(pinfo->cinfo, COL_INFO, " (Unknown Command 0x%04X [opcode 0x%04X])", ocf, opcode); if (have_tap_listener(bluetooth_hci_summary_tap)) { bluetooth_hci_summary_tap_t *tap_hci_summary; tap_hci_summary = wmem_new(pinfo->pool, bluetooth_hci_summary_tap_t); tap_hci_summary->interface_id = interface_id; tap_hci_summary->adapter_id = adapter_id; tap_hci_summary->type = BLUETOOTH_HCI_SUMMARY_VENDOR_EVENT_OPCODE; tap_hci_summary->ogf = opcode >> 10; tap_hci_summary->ocf = ocf; if (try_val_to_str(ocf, broadcom_opcode_ocf_vals)) tap_hci_summary->name = description; else tap_hci_summary->name = NULL; tap_queue_packet(bluetooth_hci_summary_tap, pinfo, tap_hci_summary); } proto_tree_add_item(main_tree, hf_broadcom_status, tvb, offset, 1, ENC_NA); status = tvb_get_guint8(tvb, offset); offset += 1; switch (ocf) { case 0x005A: /* Read VID PID */ proto_tree_add_item(main_tree, hf_broadcom_vid, tvb, offset, 2, ENC_LITTLE_ENDIAN); offset += 2; proto_tree_add_item(main_tree, hf_broadcom_pid, tvb, offset, 2, ENC_LITTLE_ENDIAN); offset += 2; break; case 0x0079: /* Read Verbose Config Version Info */ proto_tree_add_item(main_tree, hf_broadcom_chip_id, tvb, offset, 1, ENC_NA); offset += 1; proto_tree_add_item(main_tree, hf_broadcom_target_id, tvb, offset, 1, ENC_NA); offset += 1; proto_tree_add_item(main_tree, hf_broadcom_build_base, tvb, offset, 2, ENC_LITTLE_ENDIAN); offset += 2; proto_tree_add_item(main_tree, hf_broadcom_build_number, tvb, offset, 2, ENC_LITTLE_ENDIAN); offset += 2; break; case 0x0153: /* LE Get Vendor Capabilities */ if (status != STATUS_SUCCESS) break; proto_tree_add_item(main_tree, hf_broadcom_max_advertising_instance, tvb, offset, 1, ENC_NA); offset += 1; proto_tree_add_item(main_tree, hf_broadcom_resolvable_private_address_offloading, tvb, offset, 1, ENC_NA); offset += 1; proto_tree_add_item(main_tree, hf_broadcom_total_scan_results, tvb, offset, 2, ENC_LITTLE_ENDIAN); offset += 2; proto_tree_add_item(main_tree, hf_broadcom_max_irk_list, tvb, offset, 1, ENC_NA); offset += 1; proto_tree_add_item(main_tree, hf_broadcom_filter_support, tvb, offset, 1, ENC_NA); offset += 1; proto_tree_add_item(main_tree, hf_broadcom_max_filter, tvb, offset, 1, ENC_NA); offset += 1; proto_tree_add_item(main_tree, hf_broadcom_energy_support, tvb, offset, 1, ENC_NA); offset += 1; break; case 0x0154: /* LE Multi Adveritising */ proto_tree_add_item(main_tree, hf_broadcom_le_multi_advertising_subcode, tvb, offset, 1, ENC_NA); offset += 1; break; case 0x0156: /* LE Batch Scan */ proto_tree_add_item(main_tree, hf_broadcom_le_batch_scan_subcode, tvb, offset, 1, ENC_NA); subcode = tvb_get_guint8(tvb, offset); offset += 1; if (subcode == 0x04 && status == STATUS_SUCCESS) { /* Read Results*/ proto_tree_add_item(main_tree, hf_broadcom_le_batch_scan_report_format, tvb, offset, 1, ENC_NA); offset += 1; proto_tree_add_item(main_tree, hf_broadcom_le_batch_scan_number_of_records, tvb, offset, 1, ENC_NA); offset += 1; } break; case 0x0157: /* LE Advertising Filter */ proto_tree_add_item(main_tree, hf_broadcom_le_advertising_filter_subcode, tvb, offset, 1, ENC_NA); offset += 1; if (status == STATUS_SUCCESS) { proto_tree_add_item(main_tree, hf_broadcom_le_scan_condition, tvb, offset, 1, ENC_NA); offset += 1; proto_tree_add_item(main_tree, hf_broadcom_le_number_of_available_filters, tvb, offset, 1, ENC_NA); offset += 1; } break; case 0x0159: /* LE Energy Info */ if (status == STATUS_SUCCESS) { proto_tree_add_item(main_tree, hf_broadcom_le_energy_total_rx_time, tvb, offset, 1, ENC_NA); offset += 1; proto_tree_add_item(main_tree, hf_broadcom_le_energy_total_tx_time, tvb, offset, 1, ENC_NA); offset += 1; proto_tree_add_item(main_tree, hf_broadcom_le_energy_total_idle_time, tvb, offset, 1, ENC_NA); offset += 1; proto_tree_add_item(main_tree, hf_broadcom_le_energy_total_energy_used, tvb, offset, 1, ENC_NA); offset += 1; } break; case 0x0102: /* Enable WBS Modified */ case 0x0111: /* Set ConnectionLess Broadcast Stream */ case 0x0112: /* Receive ConnectionLess Broadcast Stream */ case 0x0113: /* Write ConnectionLess Broadcast Stream Data */ case 0x0114: /* ConnectionLess Broadcast Stream Flush */ case 0x0158: /* LE Tracking Advertising */ /* TODO: Implement - parameters not known */ sub_item = proto_tree_add_item(main_tree, hf_broadcom_data, tvb, offset, length, ENC_NA); expert_add_info(pinfo, sub_item, &ei_broadcom_undecoded); offset += length; break; case 0x0001: /* Write BDADDR */ case 0x0018: /* Update Baudrate */ case 0x001C: /* Write SCO PCM INT Parameter */ case 0x001E: /* Write PCM Data Format Parameter */ case 0x0027: /* Write Sleep Mode */ case 0x002E: /* Download MiniDriver */ case 0x003B: /* Enable USB HID Emulation */ case 0x0045: /* Write UART Clock Setting */ case 0x004C: /* Write Firmware*/ case 0x004E: /* Launch RAM */ case 0x0057: /* Set ACL Priority */ case 0x006D: /* Write I2S PCM Interface Parameter */ case 0x007E: /* Enable WBS */ if (tvb_captured_length_remaining(tvb, offset) > 0) { sub_item = proto_tree_add_item(main_tree, hf_broadcom_data, tvb, offset, length, ENC_NA); expert_add_info(pinfo, sub_item, &ei_broadcom_unexpected_parameter); offset += tvb_captured_length_remaining(tvb, offset); } break; default: if (length > 0) { sub_item = proto_tree_add_item(main_tree, hf_broadcom_data, tvb, offset, length, ENC_NA); expert_add_info(pinfo, sub_item, &ei_broadcom_undecoded); offset += length; } } break; default: if (length > 0) { sub_item = proto_tree_add_item(main_tree, hf_broadcom_data, tvb, offset, length, ENC_NA); expert_add_info(pinfo, sub_item, &ei_broadcom_undecoded); offset += length; } } break; case P2P_DIR_UNKNOWN: default: col_set_str(pinfo->cinfo, COL_PROTOCOL, "HCI_BROADCOM"); col_set_str(pinfo->cinfo, COL_INFO, "UnknownDirection Broadcom "); if (tvb_captured_length_remaining(tvb, offset) > 0) { proto_tree_add_item(main_tree, hf_broadcom_data, tvb, offset, tvb_captured_length_remaining(tvb, offset), ENC_NA); offset += tvb_captured_length_remaining(tvb, offset); } break; } if (tvb_captured_length_remaining(tvb, offset) > 0) { sub_item = proto_tree_add_item(main_tree, hf_broadcom_data, tvb, offset, tvb_captured_length_remaining(tvb, offset), ENC_NA); expert_add_info(pinfo, sub_item, &ei_broadcom_unexpected_data); offset += tvb_captured_length_remaining(tvb, offset); } return offset; } void proto_register_bthci_vendor_broadcom(void) { expert_module_t *expert_module; static hf_register_info hf[] = { { &hf_broadcom_opcode, { "Command Opcode", "bthci_vendor.broadcom.opcode", FT_UINT16, BASE_HEX, VALS(broadcom_opcode_vals), 0x0, "HCI Command Opcode", HFILL } }, { &hf_broadcom_opcode_ogf, { "Opcode Group Field", "bthci_vendor.broadcom.opcode.ogf", FT_UINT16, BASE_HEX|BASE_EXT_STRING, &bthci_cmd_ogf_vals_ext, 0xfc00, NULL, HFILL } }, { &hf_broadcom_opcode_ocf, { "Opcode Command Field", "bthci_vendor.broadcom.opcode.ocf", FT_UINT16, BASE_HEX, VALS(broadcom_opcode_ocf_vals), 0x03ff, NULL, HFILL } }, { &hf_broadcom_parameter_length, { "Parameter Total Length", "bthci_vendor.broadcom.parameter_length", FT_UINT8, BASE_DEC, NULL, 0x0, NULL, HFILL } }, { &hf_broadcom_event_code, { "Event Code", "bthci_vendor.broadcom.event_code", FT_UINT8, BASE_HEX | BASE_EXT_STRING, &bthci_evt_evt_code_vals_ext, 0x0, NULL, HFILL } }, { &hf_broadcom_number_of_allowed_command_packets, { "Number of Allowed Command Packets", "bthci_vendor.broadcom.number_of_allowed_command_packets", FT_UINT8, BASE_DEC, NULL, 0x0, NULL, HFILL } }, { &hf_broadcom_le_advertising_filter_subcode, { "Subcode", "bthci_vendor.broadcom.le.advertising_filter.subcode", FT_UINT8, BASE_HEX, VALS(broadcom_le_subcode_advertising_filter_vals), 0x0, NULL, HFILL } }, { &hf_broadcom_le_scan_condition, { "Scan Condition", "bthci_vendor.broadcom.le.scan_condition", FT_UINT8, BASE_HEX, VALS(broadcom_le_scan_condition_vals), 0x0, NULL, HFILL } }, { &hf_broadcom_le_filter_index, { "Filter Index", "bthci_vendor.broadcom.le.filter_index", FT_UINT8, BASE_DEC, NULL, 0x0, NULL, HFILL } }, { &hf_broadcom_le_number_of_available_filters, { "Number of Available Filters", "bthci_vendor.broadcom.le.number_of_available_filters", FT_UINT8, BASE_DEC, NULL, 0x0, NULL, HFILL } }, { &hf_broadcom_firmware_address, { "Address", "bthci_vendor.broadcom.firmware.address", FT_UINT32, BASE_HEX_DEC, NULL, 0x0, NULL, HFILL } }, { &hf_broadcom_firmware, { "Firmware", "bthci_vendor.broadcom.firmware.data", FT_NONE, BASE_NONE, NULL, 0x0, NULL, HFILL } }, { &hf_broadcom_baudrate, { "Baudrate", "bthci_vendor.broadcom.baudrate", FT_UINT32, BASE_DEC, NULL, 0x0, NULL, HFILL } }, { &hf_broadcom_bd_addr, { "BD_ADDR", "bthci_vendor.broadcom.bd_addr", FT_ETHER, BASE_NONE, NULL, 0x0, "Bluetooth Device Address", HFILL} }, { &hf_broadcom_max_advertising_instance, { "Max Advertising Instance", "bthci_vendor.broadcom.max_advertising_instance", FT_UINT8, BASE_DEC, NULL, 0x0, NULL, HFILL } }, { &hf_broadcom_resolvable_private_address_offloading, { "Resolvable Private Address Offloading", "bthci_vendor.broadcom.resolvable_private_address_offloading", FT_UINT8, BASE_DEC, NULL, 0x0, NULL, HFILL } }, { &hf_broadcom_total_scan_results, { "Total Scan Results", "bthci_vendor.broadcom.total_scan_results", FT_UINT16, BASE_DEC, NULL, 0x0, NULL, HFILL } }, { &hf_broadcom_max_irk_list, { "Max IRK List", "bthci_vendor.broadcom.max_irk_list", FT_UINT8, BASE_DEC, NULL, 0x0, NULL, HFILL } }, { &hf_broadcom_filter_support, { "Filter Support", "bthci_vendor.broadcom.filter_support", FT_BOOLEAN, 8, NULL, 0x0, NULL, HFILL } }, { &hf_broadcom_max_filter, { "Max Filter", "bthci_vendor.broadcom.max_filter", FT_UINT8, BASE_DEC, NULL, 0x0, NULL, HFILL } }, { &hf_broadcom_energy_support, { "Energy Support", "bthci_vendor.broadcom.energy_support", FT_BOOLEAN, 8, NULL, 0x0, NULL, HFILL } }, { &hf_broadcom_uart_clock, { "UART Clock", "bthci_vendor.broadcom.uart_clock", FT_UINT8, BASE_HEX, VALS(broadcom_uart_clock_vals), 0x0, NULL, HFILL } }, { &hf_broadcom_connection_handle, { "Connection Handle", "bthci_vendor.broadcom.connection_handle", FT_UINT16, BASE_HEX, NULL, 0x0, NULL, HFILL } }, { &hf_broadcom_connection_priority, { "Connection Priority", "bthci_vendor.broadcom.connection_priority", FT_UINT8, BASE_HEX, VALS(broadcom_connection_priority_vals), 0x0, NULL, HFILL } }, { &hf_broadcom_sleep_mode, { "Sleep Mode", "bthci_vendor.broadcom.sleep_mode", FT_UINT8, BASE_HEX, VALS(broadcom_sleep_mode_vals), 0x0, NULL, HFILL } }, { &hf_broadcom_host_stack_idle_threshold, { "Host Stack Idle Threshold", "bthci_vendor.broadcom.host_stack_idle_threshold", FT_UINT8, BASE_HEX, NULL, 0x0, NULL, HFILL } }, { &hf_broadcom_host_controller_idle_threshold, { "Host Controller Idle Threshold", "bthci_vendor.broadcom.host_controller_idle_threshold", FT_UINT8, BASE_HEX, NULL, 0x0, NULL, HFILL } }, { &hf_broadcom_wake_polarity, { "Wake Polarity", "bthci_vendor.broadcom.wake_polarity", FT_UINT8, BASE_HEX, VALS(broadcom_wake_polarity_vals), 0x0, NULL, HFILL } }, { &hf_broadcom_host_wake_polarity, { "Host Wake Polarity", "bthci_vendor.broadcom.host_wake_polarity", FT_UINT8, BASE_HEX, VALS(broadcom_wake_polarity_vals), 0x0, NULL, HFILL } }, { &hf_broadcom_allow_host_sleep_during_sco, { "Allow Host Sleep During SCO", "bthci_vendor.broadcom.allow_host_sleep_during_sco", FT_UINT8, BASE_HEX, NULL, 0x0, NULL, HFILL } }, { &hf_broadcom_combine_sleep_mode_and_lpm, { "Combine Sleep Mode and LPM", "bthci_vendor.broadcom.combine_sleep_mode_and_lpm", FT_UINT8, BASE_HEX, NULL, 0x0, NULL, HFILL } }, { &hf_broadcom_enable_uart_txd_tri_state, { "Enable UART TXD Tri-state", "bthci_vendor.broadcom.enable_uart_txd_tri_state", FT_UINT8, BASE_HEX, NULL, 0x0, NULL, HFILL } }, { &hf_broadcom_sleep_guard_time, { "Sleep Guard Time", "bthci_vendor.broadcom.sleep_guard_time", FT_UINT8, BASE_HEX, NULL, 0x0, NULL, HFILL } }, { &hf_broadcom_wakeup_guard_time, { "Wakeup Guard Time", "bthci_vendor.broadcom.wakeup_guard_time", FT_UINT8, BASE_HEX, NULL, 0x0, NULL, HFILL } }, { &hf_broadcom_txd_config, { "TXD Config", "bthci_vendor.broadcom.txd_config", FT_UINT8, BASE_HEX, NULL, 0x0, NULL, HFILL } }, { &hf_broadcom_pulsed_host_wake, { "Pulsed Host Wake", "bthci_vendor.broadcom.pulsed_host_wake", FT_UINT8, BASE_HEX, NULL, 0x0, NULL, HFILL } }, { &hf_broadcom_codec_state, { "Codec State", "bthci_vendor.broadcom.codec_state", FT_UINT8, BASE_HEX, VALS(broadcom_codec_state_vals), 0x0, NULL, HFILL } }, { &hf_broadcom_codec, { "Codec", "bthci_vendor.broadcom.codec", FT_UINT16, BASE_HEX, VALS(broadcom_codec_vals), 0x0, NULL, HFILL } }, { &hf_broadcom_status, { "Status", "bthci_vendor.broadcom.status", FT_UINT8, BASE_HEX|BASE_EXT_STRING, &bthci_cmd_status_vals_ext, 0x0, NULL, HFILL } }, { &hf_broadcom_sco_pcm_routing, { "SCO PCM Routing", "bthci_vendor.broadcom.sco.pcm_routing", FT_UINT8, BASE_HEX, VALS(broadcom_sco_pcm_routing_vals), 0x0, NULL, HFILL } }, { &hf_broadcom_sco_pcm_interface_clock_rate, { "SCO PCM Interface Clock Rate", "bthci_vendor.broadcom.sco.interface.clock_rate", FT_UINT8, BASE_HEX, VALS(broadcom_sco_pcm_interface_clock_rate_vals), 0x0, NULL, HFILL } }, { &hf_broadcom_sco_pcm_interface_frame_type, { "SCO PCM Interface Frame Type", "bthci_vendor.broadcom.sco.interface.frame_type", FT_UINT8, BASE_HEX, VALS(broadcom_sco_pcm_interface_frame_type_vals), 0x0, NULL, HFILL } }, { &hf_broadcom_sco_pcm_interface_sync_mode, { "SCO PCM Interface Sync Mode", "bthci_vendor.broadcom.sco.interface.sync_mode", FT_UINT8, BASE_HEX, VALS(broadcom_mode_slave_master_vals), 0x0, NULL, HFILL } }, { &hf_broadcom_sco_pcm_interface_clock_mode, { "SCO PCM Interface Clock Mode", "bthci_vendor.broadcom.sco.interface.clock_mode", FT_UINT8, BASE_HEX, VALS(broadcom_mode_slave_master_vals), 0x0, NULL, HFILL } }, { &hf_broadcom_pcm_shift_mode, { "PCM shift_mode", "bthci_vendor.broadcom.pcm.shift_mode", FT_UINT8, BASE_HEX, VALS(broadcom_pcm_shift_mode_vals), 0x0, NULL, HFILL } }, { &hf_broadcom_pcm_fill_bits, { "PCM Fill Bits", "bthci_vendor.broadcom.pcm.fill_bits", FT_UINT8, BASE_HEX, NULL, 0x0, NULL, HFILL } }, { &hf_broadcom_pcm_fill_method, { "PCM Fill Method", "bthci_vendor.broadcom.pcm.fill_method", FT_UINT8, BASE_HEX, VALS(broadcom_pcm_fill_method_vals), 0x0, NULL, HFILL } }, { &hf_broadcom_pcm_fill_number_of_bits, { "PCM fill_number_of_bits", "bthci_vendor.broadcom.pcm.fill_number_of_bits", FT_UINT8, BASE_DEC, NULL, 0x0, NULL, HFILL } }, { &hf_broadcom_pcm_justify_mode, { "PCM Justify Mode", "bthci_vendor.broadcom.pcm.justify_mode", FT_UINT8, BASE_HEX, VALS(broadcom_pcm_justify_mode_vals), 0x0, NULL, HFILL } }, { &hf_broadcom_sco_i2s_pcm_interface_mode, { "SCO I2S PCM Interface Mode", "bthci_vendor.broadcom.pcm.i2s_pcm_interface.mode", FT_UINT8, BASE_HEX, VALS(broadcom_sco_i2s_pcm_interface_mode_vals), 0x0, NULL, HFILL } }, { &hf_broadcom_sco_i2s_pcm_interface_role, { "SCO I2S PCM Interface Role", "bthci_vendor.broadcom.pcm.i2s_pcm_interface.role", FT_UINT8, BASE_HEX, VALS(broadcom_mode_slave_master_vals), 0x0, NULL, HFILL } }, { &hf_broadcom_sco_i2s_pcm_interface_sample_rate, { "SCO I2S PCM Interface Sample_Rate", "bthci_vendor.broadcom.sco.i2s_pcm_interface.sample_rate", FT_UINT8, BASE_HEX, VALS(broadcom_sco_i2s_pcm_interface_sample_rate_vals), 0x0, NULL, HFILL } }, { &hf_broadcom_sco_i2s_pcm_interface_clock_rate, { "SCO I2S PCM Interface Clock Rate", "bthci_vendor.broadcom.pcm.i2s_pcm_interface.clock_rate", FT_UINT8, BASE_HEX, VALS(broadcom_sco_i2s_pcm_interface_clock_rate_vals), 0x0, NULL, HFILL } }, { &hf_broadcom_le_energy_total_rx_time, { "Total RX Time", "bthci_vendor.broadcom.le.total_rx_time", FT_UINT32, BASE_DEC, NULL, 0x0, NULL, HFILL } }, { &hf_broadcom_le_energy_total_tx_time, { "Total TX Time", "bthci_vendor.broadcom.le.total_tx_time", FT_UINT32, BASE_DEC, NULL, 0x0, NULL, HFILL } }, { &hf_broadcom_le_energy_total_idle_time, { "Total Idle Time", "bthci_vendor.broadcom.le.total_idle_time", FT_UINT32, BASE_DEC, NULL, 0x0, NULL, HFILL } }, { &hf_broadcom_le_energy_total_energy_used, { "Total Energy Used Time", "bthci_vendor.broadcom.le.total_energy_used", FT_UINT32, BASE_DEC, NULL, 0x0, NULL, HFILL } }, { &hf_broadcom_le_batch_scan_subcode, { "Subcode", "bthci_vendor.broadcom.le.batch_scan.subcode", FT_UINT8, BASE_HEX, VALS(broadcom_le_subcode_batch_scan_vals), 0x0, NULL, HFILL } }, { &hf_broadcom_le_batch_scan_report_format, { "Report Format", "bthci_vendor.broadcom.le.batch_scan.report_format", FT_UINT8, BASE_DEC, NULL, 0x0, NULL, HFILL } }, { &hf_broadcom_le_batch_scan_number_of_records, { "Number of Records", "bthci_vendor.broadcom.le.batch_scan.number_of_records", FT_UINT8, BASE_DEC, NULL, 0x0, NULL, HFILL } }, { &hf_broadcom_le_batch_scan_mode, { "Mode", "bthci_vendor.broadcom.le.batch_scan.mode", FT_UINT8, BASE_HEX, VALS(broadcom_batch_scan_mode_vals), 0x0, NULL, HFILL } }, { &hf_broadcom_le_batch_scan_enable, { "Enable", "bthci_vendor.broadcom.le.batch_scan.enable", FT_UINT8, BASE_HEX, VALS(broadcom_disable_enable_vals), 0x0, NULL, HFILL } }, { &hf_broadcom_le_batch_scan_full_max, { "Full Max", "bthci_vendor.broadcom.le.batch_scan.full_max", FT_UINT8, BASE_DEC, NULL, 0x0, NULL, HFILL } }, { &hf_broadcom_le_batch_scan_truncate_max, { "Truncate Max", "bthci_vendor.broadcom.le.batch_scan.truncate_max", FT_UINT8, BASE_DEC, NULL, 0x0, NULL, HFILL } }, { &hf_broadcom_le_batch_scan_notify_threshold, { "notify_threshold", "bthci_vendor.broadcom.le.batch_scan.notify_threshold", FT_UINT8, BASE_DEC, NULL, 0x0, NULL, HFILL } }, { &hf_broadcom_le_batch_scan_window, { "Window", "bthci_vendor.broadcom.le.batch_scan.window", FT_UINT32, BASE_DEC, NULL, 0x0, NULL, HFILL } }, { &hf_broadcom_le_batch_scan_interval, { "Interval", "bthci_vendor.broadcom.le.batch_scan.interval", FT_UINT32, BASE_DEC, NULL, 0x0, NULL, HFILL } }, { &hf_broadcom_le_batch_scan_address_type, { "Address Type", "bthci_vendor.broadcom.le.batch_scan.address_type", FT_UINT8, BASE_HEX, VALS(bluetooth_address_type_vals), 0x0, NULL, HFILL } }, { &hf_broadcom_le_batch_scan_discard_rule, { "Discard Rule", "bthci_vendor.broadcom.le.batch_scan.discard_rule", FT_UINT8, BASE_HEX, VALS(broadcom_batch_scan_discard_rule_vals), 0x0, NULL, HFILL } }, { &hf_broadcom_le_multi_advertising_subcode, { "Subcode", "bthci_vendor.broadcom.le.multi_advertising.subcode", FT_UINT8, BASE_HEX, VALS(broadcom_le_subcode_multi_advertising_vals), 0x0, NULL, HFILL } }, { &hf_broadcom_le_multi_advertising_enable, { "Enable", "bthci_vendor.broadcom.le.multi_advertising.enable", FT_UINT8, BASE_HEX, VALS(broadcom_disable_enable_vals), 0x0, NULL, HFILL } }, { &hf_broadcom_le_multi_advertising_instance_id, { "Full Max", "bthci_vendor.broadcom.le.multi_advertising.instance_id", FT_UINT8, BASE_DEC, NULL, 0x0, NULL, HFILL } }, { &hf_broadcom_le_multi_advertising_min_interval, { "Min Interval", "bthci_vendor.broadcom.le.multi_advertising.min_interval", FT_UINT16, BASE_DEC, NULL, 0x0, NULL, HFILL } }, { &hf_broadcom_le_multi_advertising_max_interval, { "Max Interval", "bthci_vendor.broadcom.le.multi_advertising.max_interval", FT_UINT16, BASE_DEC, NULL, 0x0, NULL, HFILL } }, { &hf_broadcom_le_multi_advertising_address_type, { "Address Type", "bthci_vendor.broadcom.le.multi_advertising.address_type", FT_UINT8, BASE_HEX, VALS(bluetooth_address_type_vals), 0x0, NULL, HFILL } }, { &hf_broadcom_le_multi_advertising_type, { "Type", "bthci_vendor.broadcom.le.multi_advertising.type", FT_UINT8, BASE_HEX | BASE_EXT_STRING, &bthci_cmd_eir_data_type_vals_ext, 0x0, NULL, HFILL } }, { &hf_broadcom_le_multi_advertising_channel_map, { "Channel Map", "bthci_vendor.broadcom.le.multi_advertising.channel_map", FT_UINT8, BASE_HEX, NULL, 0x0, NULL, HFILL } }, { &hf_broadcom_le_multi_advertising_channel_map_reserved, { "Reserved", "bthci_vendor.broadcom.le.multi_advertising.channel_map.reserved", FT_UINT8, BASE_HEX, NULL, 0xF8, NULL, HFILL } }, { &hf_broadcom_le_multi_advertising_channel_map_39, { "Channel 39", "bthci_vendor.broadcom.le.multi_advertising.channel_map.39", FT_UINT8, BASE_HEX, NULL, 0x04, NULL, HFILL } }, { &hf_broadcom_le_multi_advertising_channel_map_38, { "Channel 39", "bthci_vendor.broadcom.le.multi_advertising.channel_map.38", FT_UINT8, BASE_HEX, NULL, 0x02, NULL, HFILL } }, { &hf_broadcom_le_multi_advertising_channel_map_37, { "Channel 39", "bthci_vendor.broadcom.le.multi_advertising.channel_map.37", FT_UINT8, BASE_HEX, NULL, 0x01, NULL, HFILL } }, { &hf_broadcom_le_multi_advertising_filter_policy, { "Filter Policy", "bthci_vendor.broadcom.le.multi_advertising.filter_policy", FT_UINT8, BASE_HEX, VALS(broadcom_le_filter_policy_vals), 0x0, NULL, HFILL } }, { &hf_broadcom_le_multi_advertising_tx_power, { "Tx power", "bthci_vendor.broadcom.le.multi_advertising.tx_power", FT_UINT8, BASE_HEX, NULL, 0x0, NULL, HFILL } }, { &hf_broadcom_hid_emulation_mode, { "Emulation Mode", "bthci_vendor.broadcom.hid_emulation_mode", FT_UINT8, BASE_HEX, VALS(broadcom_hid_emulation_mode_vals), 0x0, NULL, HFILL } }, { &hf_broadcom_vid, { "VID", "bthci_vendor.broadcom.vid", FT_UINT16, BASE_HEX, NULL, 0x0, NULL, HFILL } }, { &hf_broadcom_pid, { "PID", "bthci_vendor.broadcom.pid", FT_UINT16, BASE_HEX, NULL, 0x0, NULL, HFILL } }, { &hf_broadcom_chip_id, { "Chip ID", "bthci_vendor.broadcom.chip_id", FT_UINT8, BASE_HEX, NULL, 0x0, NULL, HFILL } }, { &hf_broadcom_target_id, { "Target ID", "bthci_vendor.broadcom.target_id", FT_UINT8, BASE_HEX, VALS(broadcom_target_id_vals), 0x0, NULL, HFILL } }, { &hf_broadcom_build_base, { "Build Base", "bthci_vendor.broadcom.build_base", FT_UINT16, BASE_DEC_HEX, NULL, 0x0, NULL, HFILL } }, { &hf_broadcom_build_number, { "Build Number", "bthci_vendor.broadcom.build_number", FT_UINT16, BASE_DEC_HEX, NULL, 0x0, NULL, HFILL } }, { &hf_broadcom_data, { "Data", "bthci_vendor.broadcom.data", FT_NONE, BASE_NONE, NULL, 0x0, NULL, HFILL } }, }; static gint *ett[] = { &ett_broadcom, &ett_broadcom_opcode, &ett_broadcom_channel_map }; static ei_register_info ei[] = { { &ei_broadcom_undecoded, { "bthci_vendor.broadcom.undecoded", PI_UNDECODED, PI_NOTE, "Undecoded", EXPFILL }}, { &ei_broadcom_unexpected_parameter, { "bthci_vendor.broadcom.unexpected_parameter", PI_PROTOCOL, PI_WARN, "Unexpected parameter", EXPFILL }}, { &ei_broadcom_unexpected_data, { "bthci_vendor.broadcom.unexpected_data", PI_PROTOCOL, PI_WARN, "Unexpected data", EXPFILL }}, }; proto_bthci_vendor_broadcom = proto_register_protocol("Bluetooth Broadcom HCI", "HCI BROADCOM", "bthci_vendor.broadcom"); bthci_vendor_broadcom_handle = register_dissector("bthci_vendor.broadcom", dissect_bthci_vendor_broadcom, proto_bthci_vendor_broadcom); proto_register_field_array(proto_bthci_vendor_broadcom, hf, array_length(hf)); proto_register_subtree_array(ett, array_length(ett)); expert_module = expert_register_protocol(proto_bthci_vendor_broadcom); expert_register_field_array(expert_module, ei, array_length(ei)); } void proto_reg_handoff_bthci_vendor_broadcom(void) { btcommon_ad_handle = find_dissector_add_dependency("btcommon.eir_ad.ad", proto_bthci_vendor_broadcom); dissector_add_for_decode_as("bthci_cmd.vendor", bthci_vendor_broadcom_handle); dissector_add_uint("bluetooth.vendor", 0x000F, bthci_vendor_broadcom_handle); } static int proto_bthci_vendor_intel = -1; static int hf_intel_opcode = -1; static int hf_intel_opcode_ogf = -1; static int hf_intel_opcode_ocf = -1; static int hf_intel_parameter_length = -1; static int hf_intel_number_of_allowed_command_packets = -1; static int hf_intel_event_code = -1; static int hf_intel_status = -1; static int hf_intel_line = -1; static int hf_intel_module = -1; static int hf_intel_reason = -1; static int hf_intel_zero = -1; static int hf_intel_number_of_packets = -1; static int hf_intel_source = -1; static int hf_intel_reset_type = -1; static int hf_intel_reset_reason = -1; static int hf_intel_ddc_status = -1; static int hf_intel_bd_data_status = -1; static int hf_intel_secure_send_commands_result = -1; static int hf_intel_handle = -1; static int hf_intel_access_address = -1; static int hf_intel_scan_status = -1; static int hf_intel_scan_status_reserved = -1; static int hf_intel_scan_status_page_scan = -1; static int hf_intel_scan_status_inquiry_scan = -1; static int hf_intel_link_pdu_trace_type = -1; static int hf_intel_link_clock = -1; static int hf_intel_link_id = -1; static int hf_intel_link_count = -1; static int hf_intel_bd_addr = -1; static int hf_intel_packet_table = -1; static int hf_intel_exception_type = -1; static int hf_intel_reset_reset_type = -1; static int hf_intel_reset_patch_enable = -1; static int hf_intel_reset_ddc_reload = -1; static int hf_intel_reset_boot_option = -1; static int hf_intel_reset_boot_address = -1; static int hf_intel_hardware_platform = -1; static int hf_intel_hardware_variant = -1; static int hf_intel_hardware_revision = -1; static int hf_intel_firmware_variant = -1; static int hf_intel_firmware_revision = -1; static int hf_intel_firmware_build_version_nn = -1; static int hf_intel_firmware_build_version_cw = -1; static int hf_intel_firmware_build_version_yy = -1; static int hf_intel_firmware_patch = -1; static int hf_intel_identifier = -1; static int hf_intel_secure_send_type = -1; static int hf_intel_manufacturer_mode = -1; static int hf_intel_manufacturer_reset = -1; static int hf_intel_transmit_traces = -1; static int hf_intel_transmit_arq = -1; static int hf_intel_receive_traces = -1; static int hf_intel_stimulated_exception_type = -1; static int hf_intel_mem_address = -1; static int hf_intel_mem_mode = -1; static int hf_intel_mem_length = -1; static int hf_intel_ddc_config_length = -1; static int hf_intel_set_event_mask = -1; static int hf_intel_set_event_mask_reserved_15_63 = -1; static int hf_intel_set_event_mask_firmware_trace_string = -1; static int hf_intel_set_event_mask_le_link_established = -1; static int hf_intel_set_event_mask_reserved_12 = -1; static int hf_intel_set_event_mask_system_exception = -1; static int hf_intel_set_event_mask_fatal_exception = -1; static int hf_intel_set_event_mask_debug_exception = -1; static int hf_intel_set_event_mask_reserved_8 = -1; static int hf_intel_set_event_mask_scan_status = -1; static int hf_intel_set_event_mask_reserved_3_6 = -1; static int hf_intel_set_event_mask_ptt_switch_notification = -1; static int hf_intel_set_event_mask_sco_rejected_via_lmp = -1; static int hf_intel_set_event_mask_bootup = -1; static int hf_intel_data = -1; static int * const hfx_intel_scan_status[] = { &hf_intel_scan_status_reserved, &hf_intel_scan_status_page_scan, &hf_intel_scan_status_inquiry_scan, NULL }; static int * const hfx_intel_set_event_mask[] = { &hf_intel_set_event_mask_reserved_15_63, &hf_intel_set_event_mask_firmware_trace_string, &hf_intel_set_event_mask_le_link_established, &hf_intel_set_event_mask_reserved_12, &hf_intel_set_event_mask_system_exception, &hf_intel_set_event_mask_fatal_exception, &hf_intel_set_event_mask_debug_exception, &hf_intel_set_event_mask_reserved_8, &hf_intel_set_event_mask_scan_status, &hf_intel_set_event_mask_reserved_3_6, &hf_intel_set_event_mask_ptt_switch_notification, &hf_intel_set_event_mask_sco_rejected_via_lmp, &hf_intel_set_event_mask_bootup, NULL }; static dissector_handle_t bthci_vendor_intel_handle; static dissector_handle_t btlmp_handle; static dissector_handle_t btle_handle; static gint ett_intel = -1; static gint ett_intel_opcode = -1; static gint ett_intel_scan_status = -1; static gint ett_intel_set_event_mask = -1; static expert_field ei_intel_undecoded = EI_INIT; static expert_field ei_intel_unexpected_parameter = EI_INIT; static expert_field ei_intel_unexpected_data = EI_INIT; #define INTEL_OPCODE_VALS(base) \ { (base) | 0x0001, "Reset" }, \ { (base) | 0x0002, "No Operation" }, \ { (base) | 0x0005, "Read Version" }, \ { (base) | 0x0006, "Set UART Baudrate" }, \ { (base) | 0x0007, "Enable LPM" }, \ { (base) | 0x0008, "PCM Write Configuration" }, \ { (base) | 0x0009, "Secure Send" }, \ { (base) | 0x000D, "Read Secure Boot Params" }, \ { (base) | 0x000E, "Write Secure Boot Params" }, \ { (base) | 0x000F, "Unlock" }, \ { (base) | 0x0010, "Change UART Baudrate" }, \ { (base) | 0x0011, "Manufacturer Mode" }, \ { (base) | 0x0012, "Read Link RSSI" }, \ { (base) | 0x0022, "Get Exception Info" }, \ { (base) | 0x0024, "Clear Exception Info" }, \ { (base) | 0x002F, "Write BD Data" }, \ { (base) | 0x0030, "Read BD Data" }, \ { (base) | 0x0031, "Write BD Address" }, \ { (base) | 0x0032, "Flow Specification" }, \ { (base) | 0x0034, "Read Secure ID" }, \ { (base) | 0x0038, "Set Synchronous USB Interface Type" }, \ { (base) | 0x0039, "Config Synchronous Interface" }, \ { (base) | 0x003F, "SW RF Kill" }, \ { (base) | 0x0043, "Activate/Deactivate Traces" }, \ { (base) | 0x004D, "Stimulate Exception" }, \ { (base) | 0x0050, "Read HW Version" }, \ { (base) | 0x0052, "Set Event Mask" }, \ { (base) | 0x0053, "Config_Link_Controller" }, \ { (base) | 0x0089, "DDC Write" }, \ { (base) | 0x008A, "DDC Read" }, \ { (base) | 0x008B, "DDC Config Write" }, \ { (base) | 0x008C, "DDC Config Read" }, \ { (base) | 0x008D, "Memory Read" }, \ { (base) | 0x008E, "Memory Write" } static const value_string intel_opcode_ocf_vals[] = { INTEL_OPCODE_VALS(0x0), { 0, NULL } }; static const value_string intel_opcode_vals[] = { INTEL_OPCODE_VALS(0x3F << 10), { 0, NULL } }; static const value_string intel_event_code_vals[] = { { 0x01, "Fatal Exception" }, { 0x02, "Bootup" }, { 0x05, "Default BD Data" }, { 0x06, "Secure Send Commands Result" }, { 0x08, "Debug Exception" }, { 0x0F, "LE Link Established" }, { 0x11, "Scan Status" }, { 0x16, "Activate/Deactivate Traces Complete" }, { 0x17, "Link PDU Trace" }, { 0x19, "Write BD Data Complete" }, { 0x25, "SCO Rejected via LMP" }, { 0x26, "PTT Switch Notification" }, { 0x29, "System Exception" }, { 0x2C, "FW Trace String" }, { 0x2E, "FW Trace Binary" }, { 0, NULL } }; static const value_string intel_module_vals[] = { { 0x01, "BC" }, { 0x02, "HCI" }, { 0x03, "LLC" }, { 0x04, "OS" }, { 0x05, "LM" }, { 0x06, "SC" }, { 0x07, "SP" }, { 0x08, "OSAL" }, { 0x09, "LC" }, { 0x0A, "APP" }, { 0x0B, "TLD" }, { 0xF0, "Debug" }, { 0, NULL } }; static const value_string intel_source_vals[] = { { 0x00, "Bootloader" }, { 0x01, "Operational Firmware" }, { 0x02, "Self Test Firmware" }, { 0, NULL } }; static const value_string intel_reset_type_vals[] = { { 0x00, "Hardware Reset" }, { 0x01, "Soft Watchdog Reset" }, { 0x02, "Soft Software Reset" }, { 0x03, "Hard Watchdog Reset" }, { 0x04, "Hard Software Reset" }, { 0, NULL } }; static const value_string intel_reset_reason_vals[] = { { 0x00, "Power On" }, { 0x01, "Reset Command" }, { 0x02, "Intel Reset Command" }, { 0x03, "Watchdog" }, { 0x04, "Fatal Exception" }, { 0x05, "System Exception" }, { 0xFF, "Unknown" }, { 0, NULL } }; static const value_string intel_ddc_status_vals[] = { { 0x00, "Firmware Default" }, { 0x01, "Firmware Default Plus OTP" }, { 0x02, "Persistent RAM" }, { 0x03, "Not Used" }, { 0, NULL } }; static const value_string intel_bd_data_status_vals[] = { { 0x02, "Invalid Manufacturing Data" }, { 0, NULL } }; static const value_string intel_secure_send_commands_result_vals[] = { { 0x00, "Success" }, { 0x01, "General Failure" }, { 0x02, "Hardware Failure" }, { 0x03, "Signature Verification Failed" }, { 0x04, "Parsing Error of Command Buffer" }, { 0x05, "Command Execution Failure" }, { 0x06, "Command Parameters Error" }, { 0x07, "Command Missing" }, { 0, NULL } }; static const value_string intel_link_pdu_trace_type_vals[] = { { 0x00, "LMP Rx" }, { 0x01, "LMP Tx" }, { 0x02, "LMP Ack" }, { 0x03, "LL Rx" }, { 0x04, "LL Tx" }, { 0x05, "LL Ack" }, { 0, NULL } }; static const value_string intel_packet_table_vals[] = { { 0x00, "Basic Rate" }, { 0x01, "Enhanced Data Rate" }, { 0, NULL } }; static const value_string intel_exception_type_vals[] = { { 0x00, "No Exception" }, { 0x01, "Undefined Instruction" }, { 0x02, "Prefetch Abort" }, { 0x03, "Data Abort" }, { 0, NULL } }; static const value_string intel_reset_reset_type_vals[] = { { 0x00, "Soft Software Reset" }, { 0x01, "Hard Software Reset" }, { 0, NULL } }; static const value_string intel_reset_patch_enable_vals[] = { { 0x00, "Disabled" }, { 0x01, "Enabled" }, { 0, NULL } }; static const value_string intel_reset_ddc_reload_vals[] = { { 0x00, "Disabled" }, { 0x01, "Reload from OTP" }, { 0, NULL } }; static const value_string intel_secure_send_type_vals[] = { { 0x00, "Init" }, { 0x01, "Data" }, { 0x02, "Sign" }, { 0x03, "PKey" }, { 0, NULL } }; static const value_string intel_manufacturer_mode_vals[] = { { 0x00, "Disabled" }, { 0x01, "Enabled" }, { 0, NULL } }; static const value_string intel_manufacturer_reset_vals[] = { { 0x00, "No Reset" }, { 0x01, "Reset and Deactivate Patches" }, { 0x02, "Reset and Activate Patches" }, { 0, NULL } }; static const value_string intel_stimulated_exception_type_vals[] = { { 0x00, "Fatal Exception" }, { 0x01, "Debug Exception" }, { 0, NULL } }; static const value_string intel_mem_mode_vals[] = { { 0x00, "Byte Access" }, { 0x01, "Half Word Access" }, { 0x02, "Word Access" }, { 0, NULL } }; void proto_register_bthci_vendor_intel(void); void proto_reg_handoff_bthci_vendor_intel(void); static gint dissect_bthci_vendor_intel(tvbuff_t *tvb, packet_info *pinfo, proto_tree *tree, void *data) { proto_item *main_item; proto_tree *main_tree; proto_item *opcode_item; proto_tree *opcode_tree; proto_item *sub_item; bluetooth_data_t *bluetooth_data; gint offset = 0; gint offset_parameters; guint16 opcode; guint16 ocf; const gchar *description; guint8 length; guint8 event_code; guint8 status; guint8 type; guint32 interface_id; guint32 adapter_id; bluetooth_data = (bluetooth_data_t *) data; if (bluetooth_data) { interface_id = bluetooth_data->interface_id; adapter_id = bluetooth_data->adapter_id; } else { interface_id = HCI_INTERFACE_DEFAULT; adapter_id = HCI_ADAPTER_DEFAULT; } main_item = proto_tree_add_item(tree, proto_bthci_vendor_intel, tvb, 0, tvb_captured_length(tvb), ENC_NA); main_tree = proto_item_add_subtree(main_item, ett_intel); switch (pinfo->p2p_dir) { case P2P_DIR_SENT: col_set_str(pinfo->cinfo, COL_PROTOCOL, "HCI_CMD_INTEL"); col_add_fstr(pinfo->cinfo, COL_INFO, "Sent Intel "); opcode_item = proto_tree_add_item(main_tree, hf_intel_opcode, tvb, offset, 2, ENC_LITTLE_ENDIAN); opcode_tree = proto_item_add_subtree(opcode_item, ett_intel_opcode); opcode = tvb_get_letohs(tvb, offset); proto_tree_add_item(opcode_tree, hf_intel_opcode_ogf, tvb, offset, 2, ENC_LITTLE_ENDIAN); proto_tree_add_item(opcode_tree, hf_intel_opcode_ocf, tvb, offset, 2, ENC_LITTLE_ENDIAN); ocf = opcode & 0x03ff; offset+=2; description = val_to_str_const(ocf, intel_opcode_ocf_vals, "unknown"); if (g_strcmp0(description, "unknown") != 0) col_append_str(pinfo->cinfo, COL_INFO, description); else col_append_fstr(pinfo->cinfo, COL_INFO, "Unknown Command 0x%04X (opcode 0x%04X)", ocf, opcode); if (have_tap_listener(bluetooth_hci_summary_tap)) { bluetooth_hci_summary_tap_t *tap_hci_summary; tap_hci_summary = wmem_new(pinfo->pool, bluetooth_hci_summary_tap_t); tap_hci_summary->interface_id = interface_id; tap_hci_summary->adapter_id = adapter_id; tap_hci_summary->type = BLUETOOTH_HCI_SUMMARY_VENDOR_OPCODE; tap_hci_summary->ogf = opcode >> 10; tap_hci_summary->ocf = ocf; if (try_val_to_str(ocf, intel_opcode_ocf_vals)) tap_hci_summary->name = description; else tap_hci_summary->name = NULL; tap_queue_packet(bluetooth_hci_summary_tap, pinfo, tap_hci_summary); } proto_tree_add_item(main_tree, hf_intel_parameter_length, tvb, offset, 1, ENC_NA); length = tvb_get_guint8(tvb, offset); offset += 1; offset_parameters = offset; switch(ocf) { case 0x0001: /* Reset */ proto_tree_add_item(main_tree, hf_intel_reset_reset_type, tvb, offset, 1, ENC_NA); offset += 1; proto_tree_add_item(main_tree, hf_intel_reset_patch_enable, tvb, offset, 1, ENC_NA); offset += 1; proto_tree_add_item(main_tree, hf_intel_reset_ddc_reload, tvb, offset, 1, ENC_NA); offset += 1; proto_tree_add_item(main_tree, hf_intel_reset_ddc_reload, tvb, offset, 1, ENC_NA); offset += 1; proto_tree_add_item(main_tree, hf_intel_reset_boot_option, tvb, offset, 1, ENC_NA); offset += 1; proto_tree_add_item(main_tree, hf_intel_reset_boot_address, tvb, offset, 4, ENC_LITTLE_ENDIAN); offset += 4; break; case 0x0002: /* No Operation */ case 0x0006: /* Set UART Baudrate */ case 0x0007: /* Enable LPM */ case 0x0008: /* PCM Write Configuration */ case 0x000E: /* Write Secure Boot Params */ case 0x000F: /* Unlock */ case 0x0010: /* Change UART Baudrate */ case 0x0012: /* Read Link RSSI */ case 0x0022: /* Get Exception Info */ case 0x0024: /* Clear Exception Info */ case 0x0032: /* Flow Specification */ case 0x0034: /* Read Secure ID */ case 0x0038: /* Set Synchronous USB Interface Type */ case 0x0039: /* Config Synchronous Interface */ case 0x0050: /* Read HW Version */ case 0x0053: /* Config_Link_Controller */ case 0x0089: /* DDC Write */ case 0x008A: /* DDC Read */ case 0x008C: /* DDC Config Read */ case 0x008D: /* Memory Read */ /* unknown */ break; case 0x0005: /* Read Version */ case 0x000D: /* Read Secure Boot Params */ case 0x0030: /* Read BD Data */ case 0x003F: /* SW RF Kill */ /* nop */ break; case 0x0009: /* Secure Send */ proto_tree_add_item(main_tree, hf_intel_secure_send_type, tvb, offset, 1, ENC_NA); offset += 1; if (length - 1 > 0) { sub_item = proto_tree_add_item(main_tree, hf_intel_data, tvb, offset, length, ENC_NA); expert_add_info(pinfo, sub_item, &ei_intel_undecoded); offset += length - 1; } break; case 0x0011: /* Manufacturer Mode */ proto_tree_add_item(main_tree, hf_intel_manufacturer_mode, tvb, offset, 1, ENC_NA); offset += 1; proto_tree_add_item(main_tree, hf_intel_manufacturer_reset, tvb, offset, 1, ENC_NA); offset += 1; break; case 0x002F: /* Write BD Data */ offset = dissect_bd_addr(hf_intel_bd_addr, pinfo, main_tree, tvb, offset, FALSE, interface_id, adapter_id, NULL); sub_item = proto_tree_add_item(main_tree, hf_intel_data, tvb, offset, 6, ENC_NA); expert_add_info(pinfo, sub_item, &ei_intel_undecoded); offset += 6; sub_item = proto_tree_add_item(main_tree, hf_intel_data, tvb, offset, 8, ENC_NA); expert_add_info(pinfo, sub_item, &ei_intel_undecoded); offset += 8; sub_item = proto_tree_add_item(main_tree, hf_intel_data, tvb, offset, 1, ENC_NA); expert_add_info(pinfo, sub_item, &ei_intel_undecoded); offset += 1; if (length - 6 - 8 - 1 > 0) { sub_item = proto_tree_add_item(main_tree, hf_intel_data, tvb, offset, length - 6 - 8 - 1, ENC_NA); expert_add_info(pinfo, sub_item, &ei_intel_undecoded); offset += length - 6 - 8 - 1; } break; case 0x0031: /* Write BD Address */ offset = dissect_bd_addr(hf_intel_bd_addr, pinfo, main_tree, tvb, offset, FALSE, interface_id, adapter_id, NULL); break; case 0x0043: /* Activate/Deactivate Traces */ proto_tree_add_item(main_tree, hf_intel_transmit_traces, tvb, offset, 1, ENC_NA); offset += 1; proto_tree_add_item(main_tree, hf_intel_transmit_arq, tvb, offset, 1, ENC_NA); offset += 1; proto_tree_add_item(main_tree, hf_intel_receive_traces, tvb, offset, 1, ENC_NA); offset += 1; break; case 0x004D: /* Stimulate Exception */ proto_tree_add_item(main_tree, hf_intel_stimulated_exception_type, tvb, offset, 1, ENC_NA); offset += 1; break; case 0x0052: /* Set Event Mask */ proto_tree_add_bitmask(main_tree, tvb, offset, hf_intel_set_event_mask, ett_intel_set_event_mask, hfx_intel_set_event_mask, ENC_LITTLE_ENDIAN); offset += 8; break; case 0x008B: /* DDC Config Write */ while (length > 0) { guint8 ddc_config_length; proto_tree_add_item(main_tree, hf_intel_ddc_config_length, tvb, offset, 1, ENC_NA); ddc_config_length = tvb_get_guint8(tvb, offset); offset += 1; proto_tree_add_item(main_tree, hf_intel_identifier, tvb, offset, 2, ENC_LITTLE_ENDIAN); offset += 2; proto_tree_add_item(main_tree, hf_intel_data, tvb, offset, ddc_config_length, ENC_NA); offset += ddc_config_length; length -= 1 + 3 + ddc_config_length; } break; case 0x008E: /* Memory Write */ proto_tree_add_item(main_tree, hf_intel_mem_address, tvb, offset, 4, ENC_LITTLE_ENDIAN); offset += 4; proto_tree_add_item(main_tree, hf_intel_mem_mode, tvb, offset, 1, ENC_NA); offset += 1; proto_tree_add_item(main_tree, hf_intel_mem_length, tvb, offset, 1, ENC_NA); offset += 1; proto_tree_add_item(main_tree, hf_intel_data, tvb, offset, tvb_get_guint8(tvb, offset - 1), ENC_NA); offset += tvb_get_guint8(tvb, offset - 1); break; default: if (length > 0) { sub_item = proto_tree_add_item(main_tree, hf_intel_data, tvb, offset, length, ENC_NA); expert_add_info(pinfo, sub_item, &ei_intel_undecoded); offset += length; } } if (offset - offset_parameters < length) { sub_item = proto_tree_add_item(main_tree, hf_intel_data, tvb, offset, length - (offset - offset_parameters), ENC_NA); expert_add_info(pinfo, sub_item, &ei_intel_unexpected_parameter); offset += length - (offset - offset_parameters); } break; case P2P_DIR_RECV: col_set_str(pinfo->cinfo, COL_PROTOCOL, "HCI_EVT_INTEL"); col_add_fstr(pinfo->cinfo, COL_INFO, "Rcvd Intel "); event_code = tvb_get_guint8(tvb, offset); if (try_val_to_str(event_code, intel_event_code_vals)) description = val_to_str_const(event_code, intel_event_code_vals, "Unknown 0x%08x"); else description = val_to_str_ext_const(event_code, &bthci_evt_evt_code_vals_ext, "Unknown 0x%08x"); col_append_str(pinfo->cinfo, COL_INFO, description); proto_tree_add_item(main_tree, hf_intel_event_code, tvb, offset, 1, ENC_NA); offset += 1; if (have_tap_listener(bluetooth_hci_summary_tap)) { bluetooth_hci_summary_tap_t *tap_hci_summary; tap_hci_summary = wmem_new(pinfo->pool, bluetooth_hci_summary_tap_t); tap_hci_summary->interface_id = interface_id; tap_hci_summary->adapter_id = adapter_id; tap_hci_summary->type = BLUETOOTH_HCI_SUMMARY_VENDOR_EVENT; tap_hci_summary->event = event_code; if (try_val_to_str_ext(event_code, &bthci_evt_evt_code_vals_ext)) tap_hci_summary->name = description; else tap_hci_summary->name = NULL; tap_queue_packet(bluetooth_hci_summary_tap, pinfo, tap_hci_summary); } proto_tree_add_item(main_tree, hf_intel_parameter_length, tvb, offset, 1, ENC_NA); length = tvb_get_guint8(tvb, offset); offset += 1; offset_parameters = offset; switch (event_code) { case 0x0e: /* Command Complete */ proto_tree_add_item(main_tree, hf_intel_number_of_allowed_command_packets, tvb, offset, 1, ENC_NA); offset += 1; opcode_item = proto_tree_add_item(main_tree, hf_intel_opcode, tvb, offset, 2, ENC_LITTLE_ENDIAN); opcode_tree = proto_item_add_subtree(opcode_item, ett_intel_opcode); opcode = tvb_get_letohs(tvb, offset); proto_tree_add_item(opcode_tree, hf_intel_opcode_ogf, tvb, offset, 2, ENC_LITTLE_ENDIAN); proto_tree_add_item(opcode_tree, hf_intel_opcode_ocf, tvb, offset, 2, ENC_LITTLE_ENDIAN); ocf = opcode & 0x03ff; offset += 2; description = val_to_str_const(ocf, intel_opcode_ocf_vals, "unknown"); if (g_strcmp0(description, "unknown") != 0) col_append_fstr(pinfo->cinfo, COL_INFO, " (%s)", description); else col_append_fstr(pinfo->cinfo, COL_INFO, " (Unknown Command 0x%04X [opcode 0x%04X])", ocf, opcode); if (have_tap_listener(bluetooth_hci_summary_tap)) { bluetooth_hci_summary_tap_t *tap_hci_summary; tap_hci_summary = wmem_new(pinfo->pool, bluetooth_hci_summary_tap_t); tap_hci_summary->interface_id = interface_id; tap_hci_summary->adapter_id = adapter_id; tap_hci_summary->type = BLUETOOTH_HCI_SUMMARY_VENDOR_EVENT_OPCODE; tap_hci_summary->ogf = opcode >> 10; tap_hci_summary->ocf = ocf; if (try_val_to_str(ocf, intel_opcode_ocf_vals)) tap_hci_summary->name = description; else tap_hci_summary->name = NULL; tap_queue_packet(bluetooth_hci_summary_tap, pinfo, tap_hci_summary); } proto_tree_add_item(main_tree, hf_intel_status, tvb, offset, 1, ENC_NA); status = tvb_get_guint8(tvb, offset); offset += 1; switch (ocf) { case 0x0001: /* Reset */ case 0x0009: /* Secure Send */ case 0x0011: /* Manufacturer Mode */ case 0x0031: /* Write BD Address */ case 0x003F: /* SW RF Kill */ case 0x004D: /* Stimulate Exception */ case 0x0052: /* Set Event Mask */ case 0x008E: /* Memory Write */ /* nop */ break; case 0x0002: /* No Operation */ case 0x0006: /* Set UART Baudrate */ case 0x0007: /* Enable LPM */ case 0x0008: /* PCM Write Configuration */ case 0x000D: /* Read Secure Boot Params */ case 0x000E: /* Write Secure Boot Params */ case 0x000F: /* Unlock */ case 0x0010: /* Change UART Baudrate */ case 0x0012: /* Read Link RSSI */ case 0x0022: /* Get Exception Info */ case 0x0024: /* Clear Exception Info */ case 0x002F: /* Write BD Data */ case 0x0032: /* Flow Specification */ case 0x0034: /* Read Secure ID */ case 0x0038: /* Set Synchronous USB Interface Type */ case 0x0039: /* Config Synchronous Interface */ case 0x0043: /* Activate/Deactivate Traces */ case 0x0050: /* Read HW Version */ case 0x0053: /* Config_Link_Controller */ case 0x0089: /* DDC Write */ case 0x008A: /* DDC Read */ case 0x008C: /* DDC Config Read */ case 0x008D: /* Memory Read */ /* unknown */ if (length > 0) { sub_item = proto_tree_add_item(main_tree, hf_intel_data, tvb, offset, length, ENC_NA); if (status == STATUS_SUCCESS) expert_add_info(pinfo, sub_item, &ei_intel_undecoded); else expert_add_info(pinfo, sub_item, &ei_intel_unexpected_parameter); offset += length; } break; case 0x0005: /* Read Version */ proto_tree_add_item(main_tree, hf_intel_hardware_platform, tvb, offset, length, ENC_NA); offset += 1; proto_tree_add_item(main_tree, hf_intel_hardware_variant, tvb, offset, length, ENC_NA); offset += 1; proto_tree_add_item(main_tree, hf_intel_hardware_revision, tvb, offset, length, ENC_NA); offset += 1; proto_tree_add_item(main_tree, hf_intel_firmware_variant, tvb, offset, length, ENC_NA); offset += 1; proto_tree_add_item(main_tree, hf_intel_firmware_revision, tvb, offset, length, ENC_NA); offset += 1; proto_tree_add_item(main_tree, hf_intel_firmware_build_version_nn, tvb, offset, length, ENC_NA); offset += 1; proto_tree_add_item(main_tree, hf_intel_firmware_build_version_cw, tvb, offset, length, ENC_NA); offset += 1; proto_tree_add_item(main_tree, hf_intel_firmware_build_version_yy, tvb, offset, length, ENC_NA); offset += 1; proto_tree_add_item(main_tree, hf_intel_firmware_patch, tvb, offset, length, ENC_NA); offset += 1; break; case 0x0030: /* Read BD Data */ offset = dissect_bd_addr(hf_intel_bd_addr, pinfo, main_tree, tvb, offset, FALSE, interface_id, adapter_id, NULL); break; case 0x008B: /* DDC Config Write */ proto_tree_add_item(main_tree, hf_intel_identifier, tvb, offset, 2, ENC_LITTLE_ENDIAN); offset += 2; break; default: if (length > 0) { sub_item = proto_tree_add_item(main_tree, hf_intel_data, tvb, offset, length, ENC_NA); if (status == STATUS_SUCCESS) expert_add_info(pinfo, sub_item, &ei_intel_undecoded); else expert_add_info(pinfo, sub_item, &ei_intel_unexpected_parameter); offset += length; } break; } break; case 0x01: /* Fatal Exception */ case 0x08: /* Debug Exception */ proto_tree_add_item(main_tree, hf_intel_line, tvb, offset, 2, ENC_LITTLE_ENDIAN); offset += 2; proto_tree_add_item(main_tree, hf_intel_module, tvb, offset, 1, ENC_NA); offset += 1; proto_tree_add_item(main_tree, hf_intel_reason, tvb, offset, 1, ENC_NA); offset += 1; break; case 0x02: /* Bootup */ proto_tree_add_item(main_tree, hf_intel_zero, tvb, offset, 1, ENC_NA); offset += 1; proto_tree_add_item(main_tree, hf_intel_number_of_packets, tvb, offset, 1, ENC_NA); offset += 1; proto_tree_add_item(main_tree, hf_intel_source, tvb, offset, 1, ENC_NA); offset += 1; proto_tree_add_item(main_tree, hf_intel_reset_type, tvb, offset, 1, ENC_NA); offset += 1; proto_tree_add_item(main_tree, hf_intel_reset_reason, tvb, offset, 1, ENC_NA); offset += 1; proto_tree_add_item(main_tree, hf_intel_ddc_status, tvb, offset, 1, ENC_NA); offset += 1; break; case 0x05: /* Default BD Data */ proto_tree_add_item(main_tree, hf_intel_bd_data_status, tvb, offset, 1, ENC_NA); offset += 1; break; case 0x06: /* Secure Send Commands Result */ proto_tree_add_item(main_tree, hf_intel_secure_send_commands_result, tvb, offset, 1, ENC_NA); offset += 1; opcode_item = proto_tree_add_item(main_tree, hf_intel_opcode, tvb, offset, 2, ENC_LITTLE_ENDIAN); opcode_tree = proto_item_add_subtree(opcode_item, ett_intel_opcode); proto_tree_add_item(opcode_tree, hf_intel_opcode_ogf, tvb, offset, 2, ENC_LITTLE_ENDIAN); proto_tree_add_item(opcode_tree, hf_intel_opcode_ocf, tvb, offset, 2, ENC_LITTLE_ENDIAN); offset += 2; proto_tree_add_item(main_tree, hf_intel_status, tvb, offset, 1, ENC_NA); offset += 1; break; case 0x0F: /* LE Link Established */ proto_tree_add_item(main_tree, hf_intel_handle, tvb, offset, 2, ENC_LITTLE_ENDIAN); offset += 2; sub_item = proto_tree_add_item(main_tree, hf_intel_data, tvb, offset, 8, ENC_NA); expert_add_info(pinfo, sub_item, &ei_intel_undecoded); offset += 8; proto_tree_add_item(main_tree, hf_intel_access_address, tvb, offset, 4, ENC_LITTLE_ENDIAN); offset += 4; sub_item = proto_tree_add_item(main_tree, hf_intel_data, tvb, offset, length - 2 - 8 - 4, ENC_NA); expert_add_info(pinfo, sub_item, &ei_intel_undecoded); offset += length - 2 - 8 - 4; break; case 0x11: /* Scan Status */ proto_tree_add_bitmask(main_tree, tvb, offset, hf_intel_scan_status, ett_intel_scan_status, hfx_intel_scan_status, ENC_NA); offset += 1; break; case 0x16: /* Activate/Deactivate Traces Complete */ proto_tree_add_item(main_tree, hf_intel_status, tvb, offset, 1, ENC_NA); offset += 1; break; case 0x17: /* Link PDU Trace */ proto_tree_add_item(main_tree, hf_intel_link_pdu_trace_type, tvb, offset, 1, ENC_NA); type = tvb_get_guint8(tvb, offset); offset += 1; proto_tree_add_item(main_tree, hf_intel_handle, tvb, offset, 2, ENC_LITTLE_ENDIAN); offset += 2; switch (type) { case 0x00: /* LMP Rx*/ sub_item = proto_tree_add_item(main_tree, hf_intel_data, tvb, offset, 1, ENC_NA); expert_add_info(pinfo, sub_item, &ei_intel_undecoded); offset += 1; call_dissector(btlmp_handle, tvb_new_subset_length(tvb, offset, length - 3 - 4), pinfo, tree); offset += length - 3 - 4; proto_tree_add_item(main_tree, hf_intel_link_clock, tvb, offset, 4, ENC_LITTLE_ENDIAN); offset += 4; break; case 0x01: /* LMP Tx*/ sub_item = proto_tree_add_item(main_tree, hf_intel_data, tvb, offset, 1, ENC_NA); expert_add_info(pinfo, sub_item, &ei_intel_undecoded); offset += 1; call_dissector(btlmp_handle, tvb_new_subset_length(tvb, offset, length - 3 - 5), pinfo, tree); offset += length - 3 - 5; proto_tree_add_item(main_tree, hf_intel_link_clock, tvb, offset, 4, ENC_LITTLE_ENDIAN); offset += 4; proto_tree_add_item(main_tree, hf_intel_link_id, tvb, offset, 1, ENC_NA); offset += 1; break; case 0x02: /* LMP Ack */ proto_tree_add_item(main_tree, hf_intel_link_clock, tvb, offset, 4, ENC_LITTLE_ENDIAN); offset += 4; proto_tree_add_item(main_tree, hf_intel_link_id, tvb, offset, 1, ENC_NA); offset += 1; break; case 0x03: /* LL Rx */ case 0x04: /* LL Tx */ proto_tree_add_item(main_tree, hf_intel_link_count, tvb, offset, 2, ENC_LITTLE_ENDIAN); offset += 2; proto_tree_add_item(main_tree, hf_intel_link_id, tvb, offset, 1, ENC_NA); offset += 1; sub_item = proto_tree_add_item(main_tree, hf_intel_data, tvb, offset, 2, ENC_NA); expert_add_info(pinfo, sub_item, &ei_intel_undecoded); offset += 2; call_dissector(btle_handle, tvb_new_subset_length(tvb, offset, length - 3 - 2 - 1 - 2), pinfo, tree); offset += length - 3 - 2 - 1 - 2; break; case 0x05: /* LL Ack */ proto_tree_add_item(main_tree, hf_intel_link_count, tvb, offset, 2, ENC_LITTLE_ENDIAN); offset += 2; proto_tree_add_item(main_tree, hf_intel_link_id, tvb, offset, 1, ENC_NA); offset += 1; break; }; break; case 0x19: /* Write BD Data Complete */ proto_tree_add_item(main_tree, hf_intel_status, tvb, offset, 1, ENC_NA); offset += 1; break; case 0x25: /* SCO Rejected via LMP */ offset = dissect_bd_addr(hf_intel_bd_addr, pinfo, main_tree, tvb, offset, FALSE, interface_id, adapter_id, NULL); proto_tree_add_item(main_tree, hf_intel_reason, tvb, offset, 1, ENC_NA); offset += 1; break; case 0x26: /* PTT Switch Notification */ proto_tree_add_item(main_tree, hf_intel_handle, tvb, offset, 2, ENC_LITTLE_ENDIAN); offset += 2; proto_tree_add_item(main_tree, hf_intel_packet_table, tvb, offset, 1, ENC_NA); offset += 1; break; case 0x29: /* System Exception */ proto_tree_add_item(main_tree, hf_intel_exception_type, tvb, offset, 1, ENC_NA); offset += 1; sub_item = proto_tree_add_item(main_tree, hf_intel_data, tvb, offset, length - 1, ENC_NA); expert_add_info(pinfo, sub_item, &ei_intel_undecoded); offset += length - 1; break; case 0x2C: /* FW Trace String */ case 0x2E: /* FW Trace Binary */ sub_item = proto_tree_add_item(main_tree, hf_intel_data, tvb, offset, length, ENC_NA); expert_add_info(pinfo, sub_item, &ei_intel_undecoded); offset += length; break; default: if (length > 0) { sub_item = proto_tree_add_item(main_tree, hf_intel_data, tvb, offset, length, ENC_NA); expert_add_info(pinfo, sub_item, &ei_intel_undecoded); offset += length; } } if (offset - offset_parameters < length) { sub_item = proto_tree_add_item(main_tree, hf_intel_data, tvb, offset, length - (offset - offset_parameters), ENC_NA); expert_add_info(pinfo, sub_item, &ei_intel_unexpected_parameter); offset += length - (offset - offset_parameters); } break; case P2P_DIR_UNKNOWN: default: col_set_str(pinfo->cinfo, COL_PROTOCOL, "HCI_INTEL"); col_set_str(pinfo->cinfo, COL_INFO, "UnknownDirection Intel "); if (tvb_captured_length_remaining(tvb, offset) > 0) { proto_tree_add_item(main_tree, hf_intel_data, tvb, offset, tvb_captured_length_remaining(tvb, offset), ENC_NA); offset += tvb_captured_length_remaining(tvb, offset); } break; } if (tvb_captured_length_remaining(tvb, offset) > 0) { sub_item = proto_tree_add_item(main_tree, hf_intel_data, tvb, offset, tvb_captured_length_remaining(tvb, offset), ENC_NA); expert_add_info(pinfo, sub_item, &ei_intel_unexpected_data); offset += tvb_captured_length_remaining(tvb, offset); } return offset; } void proto_register_bthci_vendor_intel(void) { expert_module_t *expert_module; static hf_register_info hf[] = { { &hf_intel_opcode, { "Command Opcode", "bthci_vendor.intel.opcode", FT_UINT16, BASE_HEX, VALS(intel_opcode_vals), 0x0, "HCI Command Opcode", HFILL } }, { &hf_intel_opcode_ogf, { "Opcode Group Field", "bthci_vendor.intel.opcode.ogf", FT_UINT16, BASE_HEX|BASE_EXT_STRING, &bthci_cmd_ogf_vals_ext, 0xfc00, NULL, HFILL } }, { &hf_intel_opcode_ocf, { "Opcode Command Field", "bthci_vendor.intel.opcode.ocf", FT_UINT16, BASE_HEX, VALS(intel_opcode_ocf_vals), 0x03ff, NULL, HFILL } }, { &hf_intel_parameter_length, { "Parameter Total Length", "bthci_vendor.intel.parameter_length", FT_UINT8, BASE_DEC, NULL, 0x0, NULL, HFILL } }, { &hf_intel_number_of_allowed_command_packets, { "Number of Allowed Command Packets", "bthci_vendor.intel.number_of_allowed_command_packets", FT_UINT8, BASE_DEC, NULL, 0x0, NULL, HFILL } }, { &hf_intel_event_code, { "Event Code", "bthci_vendor.intel.event_code", FT_UINT8, BASE_HEX, VALS(intel_event_code_vals), 0x0, NULL, HFILL } }, { &hf_intel_status, { "Status", "bthci_vendor.intel.status", FT_UINT8, BASE_HEX|BASE_EXT_STRING, &bthci_cmd_status_vals_ext, 0x0, NULL, HFILL } }, { &hf_intel_line, { "Line", "bthci_vendor.intel.line", FT_UINT16, BASE_DEC, NULL, 0x0, NULL, HFILL } }, { &hf_intel_module, { "Module", "bthci_vendor.intel.module", FT_UINT8, BASE_HEX, VALS(intel_module_vals), 0x0, NULL, HFILL } }, { &hf_intel_reason, { "Reason", "bthci_vendor.intel.reason", FT_UINT8, BASE_DEC, NULL, 0x0, NULL, HFILL } }, { &hf_intel_zero, { "Zero", "bthci_vendor.intel.zero", FT_UINT8, BASE_HEX, NULL, 0x0, NULL, HFILL } }, { &hf_intel_number_of_packets, { "Number of Packets", "bthci_vendor.intel.number_of_packets", FT_UINT8, BASE_DEC, NULL, 0x0, NULL, HFILL } }, { &hf_intel_source, { "Source", "bthci_vendor.intel.source", FT_UINT8, BASE_HEX, VALS(intel_source_vals), 0x0, NULL, HFILL } }, { &hf_intel_reset_type, { "Reset Type", "bthci_vendor.intel.reset_type", FT_UINT8, BASE_HEX, VALS(intel_reset_type_vals), 0x0, NULL, HFILL } }, { &hf_intel_reset_reason, { "Reset Reason", "bthci_vendor.intel.reset_reason", FT_UINT8, BASE_HEX, VALS(intel_reset_reason_vals), 0x0, NULL, HFILL } }, { &hf_intel_ddc_status, { "DDC Status", "bthci_vendor.intel.ddc_status", FT_UINT8, BASE_HEX, VALS(intel_ddc_status_vals), 0x0, NULL, HFILL } }, { &hf_intel_bd_data_status, { "BD Data Status", "bthci_vendor.intel.bd_data_status", FT_UINT8, BASE_HEX, VALS(intel_bd_data_status_vals), 0x0, NULL, HFILL } }, { &hf_intel_secure_send_commands_result, { "Secure Send Commands Result", "bthci_vendor.intel.secure_send_commands_result", FT_UINT8, BASE_HEX, VALS(intel_secure_send_commands_result_vals), 0x0, NULL, HFILL } }, { &hf_intel_handle, { "Handle", "bthci_vendor.intel.handle", FT_UINT16, BASE_HEX, NULL, 0x0, NULL, HFILL } }, { &hf_intel_access_address, { "Access Address", "bthci_vendor.intel.access_address", FT_UINT32, BASE_HEX, NULL, 0x0, NULL, HFILL } }, { &hf_intel_scan_status, { "Scan Status", "bthci_vendor.intel.scan_status", FT_UINT8, BASE_HEX, NULL, 0x0, NULL, HFILL } }, { &hf_intel_scan_status_reserved, { "Reserved", "bthci_vendor.intel.scan_status.reserved", FT_UINT8, BASE_HEX, NULL, 0xFC, NULL, HFILL } }, { &hf_intel_scan_status_page_scan, { "Page Scan", "bthci_vendor.intel.scan_status.page_scan", FT_UINT8, BASE_HEX, NULL, 0x2, NULL, HFILL } }, { &hf_intel_scan_status_inquiry_scan, { "Inquiry Scan", "bthci_vendor.intel.scan_status.inquiry_scan", FT_UINT8, BASE_HEX, NULL, 0x1, NULL, HFILL } }, { &hf_intel_link_pdu_trace_type, { "Link PDU Trace Type", "bthci_vendor.intel.link_pdu_trace_type", FT_UINT8, BASE_HEX, VALS(intel_link_pdu_trace_type_vals), 0x0, NULL, HFILL } }, { &hf_intel_link_clock, { "Clock", "bthci_vendor.intel.clock", FT_UINT32, BASE_HEX, NULL, 0x0, NULL, HFILL } }, { &hf_intel_link_id, { "ID", "bthci_vendor.intel.id", FT_UINT8, BASE_HEX, NULL, 0x0, NULL, HFILL } }, { &hf_intel_link_count, { "Count", "bthci_vendor.intel.count", FT_UINT16, BASE_DEC, NULL, 0x0, NULL, HFILL } }, { &hf_intel_bd_addr, { "BD_ADDR", "bthci_vendor.intel.bd_addr", FT_ETHER, BASE_NONE, NULL, 0x0, "Bluetooth Device Address", HFILL} }, { &hf_intel_packet_table, { "Packet Table", "bthci_vendor.intel.packet_table", FT_UINT8, BASE_HEX, VALS(intel_packet_table_vals), 0x0, NULL, HFILL } }, { &hf_intel_exception_type, { "Exception Type", "bthci_vendor.intel.exception_type", FT_UINT8, BASE_HEX, VALS(intel_exception_type_vals), 0x0, NULL, HFILL } }, { &hf_intel_reset_reset_type, { "Type", "bthci_vendor.intel.reset.type", FT_UINT8, BASE_HEX, VALS(intel_reset_reset_type_vals), 0x0, NULL, HFILL } }, { &hf_intel_reset_patch_enable, { "Patch Enable", "bthci_vendor.intel.reset.patch_enable", FT_UINT8, BASE_HEX, VALS(intel_reset_patch_enable_vals), 0x0, NULL, HFILL } }, { &hf_intel_reset_ddc_reload, { "DDC Reload", "bthci_vendor.intel.reset.ddc_reload", FT_UINT8, BASE_HEX, VALS(intel_reset_ddc_reload_vals), 0x0, NULL, HFILL } }, { &hf_intel_reset_boot_option, { "Boot Option", "bthci_vendor.intel.reset.boot.option", FT_UINT8, BASE_HEX, NULL, 0x0, NULL, HFILL } }, { &hf_intel_reset_boot_address, { "Boot Address", "bthci_vendor.intel.reset.boot.address", FT_UINT32, BASE_HEX, NULL, 0x0, NULL, HFILL } }, { &hf_intel_hardware_platform, { "Hardware Platform", "bthci_vendor.intel.hardware.platform", FT_UINT8, BASE_HEX, NULL, 0x0, NULL, HFILL } }, { &hf_intel_hardware_variant, { "Hardware Variant", "bthci_vendor.intel.hardware.variant", FT_UINT8, BASE_HEX, NULL, 0x0, NULL, HFILL } }, { &hf_intel_hardware_revision, { "Hardware Revision", "bthci_vendor.intel.hardware.revision", FT_UINT8, BASE_HEX, NULL, 0x0, NULL, HFILL } }, { &hf_intel_firmware_variant, { "Firmware Variant", "bthci_vendor.intel.firmware.variant", FT_UINT8, BASE_HEX, NULL, 0x0, NULL, HFILL } }, { &hf_intel_firmware_revision, { "Firmware Revision", "bthci_vendor.intel.firmware.revision", FT_UINT8, BASE_HEX, NULL, 0x0, NULL, HFILL } }, { &hf_intel_firmware_build_version_nn, { "Firmware Build Version nn", "bthci_vendor.intel.firmware.build_version.nn", FT_UINT8, BASE_DEC, NULL, 0x0, NULL, HFILL } }, { &hf_intel_firmware_build_version_cw, { "Firmware Build Version cw", "bthci_vendor.intel.firmware.build_version.cw", FT_UINT8, BASE_DEC, NULL, 0x0, NULL, HFILL } }, { &hf_intel_firmware_build_version_yy, { "Firmware Build Version yy", "bthci_vendor.intel.firmware.build_version.yy", FT_UINT8, BASE_DEC, NULL, 0x0, NULL, HFILL } }, { &hf_intel_firmware_patch, { "Firmware Patch", "bthci_vendor.intel.firmware.patch", FT_UINT8, BASE_DEC, NULL, 0x0, NULL, HFILL } }, { &hf_intel_identifier, { "Identifier", "bthci_vendor.intel.identifier", FT_UINT16, BASE_HEX, NULL, 0x0, NULL, HFILL } }, { &hf_intel_secure_send_type, { "Type", "bthci_vendor.intel.secure_send.type", FT_UINT8, BASE_HEX, VALS(intel_secure_send_type_vals), 0x0, NULL, HFILL } }, { &hf_intel_manufacturer_mode, { "Manufacturer Mode", "bthci_vendor.intel.manufacturer.mode", FT_UINT8, BASE_HEX, VALS(intel_manufacturer_mode_vals), 0x0, NULL, HFILL } }, { &hf_intel_manufacturer_reset, { "Manufacturer Reset", "bthci_vendor.intel.manufacturer.reset", FT_UINT8, BASE_HEX, VALS(intel_manufacturer_reset_vals), 0x0, NULL, HFILL } }, { &hf_intel_transmit_traces, { "Transmit Traces", "bthci_vendor.intel.transmit_traces", FT_UINT8, BASE_DEC, NULL, 0x0, NULL, HFILL } }, { &hf_intel_transmit_arq, { "Transmit ARQ", "bthci_vendor.intel.transmit_arq", FT_UINT8, BASE_HEX, NULL, 0x0, NULL, HFILL } }, { &hf_intel_receive_traces, { "Receive Traces", "bthci_vendor.intel.receive_traces", FT_UINT8, BASE_DEC, NULL, 0x0, NULL, HFILL } }, { &hf_intel_stimulated_exception_type, { "Stimulated Exception Type", "bthci_vendor.intel.stimulated_exception_type", FT_UINT8, BASE_HEX, VALS(intel_stimulated_exception_type_vals), 0x0, NULL, HFILL } }, { &hf_intel_mem_address, { "Address", "bthci_vendor.intel.mem.address", FT_UINT32, BASE_HEX, NULL, 0x0, NULL, HFILL } }, { &hf_intel_mem_mode, { "Mode", "bthci_vendor.intel.mem.mode", FT_UINT8, BASE_HEX, VALS(intel_mem_mode_vals), 0x0, NULL, HFILL } }, { &hf_intel_mem_length, { "Length", "bthci_vendor.intel.mem.length", FT_UINT8, BASE_DEC, NULL, 0x0, NULL, HFILL } }, { &hf_intel_ddc_config_length, { "Length", "bthci_vendor.intel.ddc_config.length", FT_UINT8, BASE_DEC, NULL, 0x0, NULL, HFILL } }, { &hf_intel_set_event_mask, { "Event Mask", "bthci_vendor.intel.event_mask", FT_UINT64, BASE_HEX, NULL, 0x0, NULL, HFILL } }, { &hf_intel_set_event_mask_reserved_15_63, { "Reserved", "bthci_vendor.intel.event_mask.reserved.15_63", FT_UINT64, BASE_HEX, NULL, G_GUINT64_CONSTANT(0xFFFFFFFFFFFF8000), NULL, HFILL } }, { &hf_intel_set_event_mask_firmware_trace_string, { "Firmware Trace String", "bthci_vendor.intel.event_mask.firmware_trace_string", FT_BOOLEAN, 64, NULL, 0x0000000000004000, NULL, HFILL } }, { &hf_intel_set_event_mask_le_link_established, { "LE Link_Established", "bthci_vendor.intel.event_mask.le_link_established", FT_BOOLEAN, 64, NULL, 0x0000000000002000, NULL, HFILL } }, { &hf_intel_set_event_mask_reserved_12, { "Reserved", "bthci_vendor.intel.event_mask.reserved.12", FT_UINT64, BASE_HEX, NULL, 0x0000000000001000, NULL, HFILL } }, { &hf_intel_set_event_mask_system_exception, { "System Exception", "bthci_vendor.intel.event_mask.system_exception", FT_BOOLEAN, 64, NULL, 0x0000000000000800, NULL, HFILL } }, { &hf_intel_set_event_mask_fatal_exception, { "Fatal Exception", "bthci_vendor.intel.event_mask.fatal_exception", FT_BOOLEAN, 64, NULL, 0x0000000000000400, NULL, HFILL } }, { &hf_intel_set_event_mask_debug_exception, { "Debug Exception", "bthci_vendor.intel.event_mask.debug_exception", FT_BOOLEAN, 64, NULL, 0x0000000000000200, NULL, HFILL } }, { &hf_intel_set_event_mask_reserved_8, { "Reserved", "bthci_vendor.intel.event_mask.reserved", FT_UINT64, BASE_HEX, NULL, 0x0000000000000100, NULL, HFILL } }, { &hf_intel_set_event_mask_scan_status, { "Scan Status", "bthci_vendor.intel.event_mask.scan_status", FT_BOOLEAN, 64, NULL, 0x0000000000000080, NULL, HFILL } }, { &hf_intel_set_event_mask_reserved_3_6, { "Reserved", "bthci_vendor.intel.event_mask.reserved.3_6", FT_UINT64, BASE_HEX, NULL, 0x0000000000000078, NULL, HFILL } }, { &hf_intel_set_event_mask_ptt_switch_notification, { "PTT Switch Notification", "bthci_vendor.intel.event_mask.ptt_switch_notification", FT_BOOLEAN, 64, NULL, 0x0000000000000004, NULL, HFILL } }, { &hf_intel_set_event_mask_sco_rejected_via_lmp, { "SCO Rejected via LMP", "bthci_vendor.intel.event_mask.sco_rejected_via_lmp", FT_BOOLEAN, 64, NULL, 0x0000000000000002, NULL, HFILL } }, { &hf_intel_set_event_mask_bootup, { "Bootup", "bthci_vendor.intel.event_mask.bootup", FT_BOOLEAN, 64, NULL, 0x0000000000000001, NULL, HFILL } }, { &hf_intel_data, { "Data", "bthci_vendor.intel.data", FT_NONE, BASE_NONE, NULL, 0x0, NULL, HFILL } }, }; static gint *ett[] = { &ett_intel, &ett_intel_opcode, &ett_intel_scan_status, &ett_intel_set_event_mask }; static ei_register_info ei[] = { { &ei_intel_undecoded, { "bthci_vendor.intel.undecoded", PI_UNDECODED, PI_NOTE, "Undecoded", EXPFILL }}, { &ei_intel_unexpected_parameter, { "bthci_vendor.intel.unexpected_parameter", PI_PROTOCOL, PI_WARN, "Unexpected parameter", EXPFILL }}, { &ei_intel_unexpected_data, { "bthci_vendor.intel.unexpected_data", PI_PROTOCOL, PI_WARN, "Unexpected data", EXPFILL }}, }; proto_bthci_vendor_intel = proto_register_protocol("Bluetooth Intel HCI", "HCI Intel", "bthci_vendor.intel"); bthci_vendor_intel_handle = register_dissector("bthci_vendor.intel", dissect_bthci_vendor_intel, proto_bthci_vendor_intel); proto_register_field_array(proto_bthci_vendor_intel, hf, array_length(hf)); proto_register_subtree_array(ett, array_length(ett)); expert_module = expert_register_protocol(proto_bthci_vendor_intel); expert_register_field_array(expert_module, ei, array_length(ei)); } void proto_reg_handoff_bthci_vendor_intel(void) { btlmp_handle = find_dissector_add_dependency("btlmp", proto_bthci_vendor_intel); btle_handle = find_dissector_add_dependency("btle", proto_bthci_vendor_intel); dissector_add_for_decode_as("bthci_cmd.vendor", bthci_vendor_intel_handle); dissector_add_uint("bluetooth.vendor", 0x0002, bthci_vendor_intel_handle); } /* * Editor modelines - https://www.wireshark.org/tools/modelines.html * * Local variables: * c-basic-offset: 4 * tab-width: 8 * indent-tabs-mode: nil * End: * * vi: set shiftwidth=4 tabstop=8 expandtab: * :indentSize=4:tabSize=8:noTabs=true: */