dandreye's profile - activity

Thanks for your comment. Further research revealed that when used on Windows it writes 0D0A instead of every 0A, causing

Thanks for your comment. Further research revealed that when used on Windows it writes 0D0A instead of every 0A, causing

No AVDTP in Bluetooth HCI trace with LDAC audio Hi All, Is it normal not to see any AVDTP packets in a Bluetooth HCI t

No AVDTP in Bluetooth HCI trace with LDAC audio Hi All, Is it normal not to see any AVDTP packets in a Bluetooth HCI t

No AVDTP in Bluetooth HCI trace with LDAC audio Hi All, Is it normal not to see any AVDTP packets in a Bluetooth HCI tr

No AVDTP in Bluetooth HCI trace with LDAC audio Hi All, Is it normal not to see any AVDTP packets in a Bluetooth HCI tr

Apparently that python script btsnooz.py is implied for use with Linux: just verified it on Ubuntu with python v2.7 and

Error parsing BT HCI trace created with btsnooz.py Hi All, I've just used these instructions and python script btsnooz.

Error parsing BT HCI trace created with btsnooz.py Hi All, I've just used these instructions and python script btsnooz.

Error parsing BT HCI trace created with btsnooz.py Hi All, I've just used these instructions and python script btsnooz.

Error parsing BT HCI trace created with btsnooz.py Hi All, I've just used these instructions and python script btsnooz.

Error parsing BT HCI trace created with btsnooz.py Hi All, I've just used these instructions and python script btsnooz.

Thank you! Will do. Btw same problem with Winpcap 4.1.3.

Hi All,

Are there any known issues capturing Bluetooth traffic with Wireshark? My system is Lenovo ThinkPad X1 Gen6 running W10x64 build 10.0.18363.1256 with Bluetooth v4.2 provided by Intel Dual Band Wireless-AC 8265 combo WiFi+BT card (specs here: https://ark.intel.com/content/www/us/...) and Wireshark 3.4.0 captures no Bluetooth traffic on it whatsoever while there's plenty. Just tried upgrading to 3.4.2 build with the details below and still no difference. In the very first Wireshark screen that opens upon launch Bluetooth is among several other interfaces showing no traffic (straight line) - only WiFi and Loopback interfaces do show some. Are there any peculiarities to make Bluetooth traffic capturing work?

Many thanks in anticipation!

3.4.2 (v3.4.2-0-ga889cf1b1bf9)

Compiled (64-bit) with Qt 5.15.1, with libpcap, with GLib 2.52.3, with zlib
1.2.11, with SMI 0.4.8, with c-ares 1.15.0, with Lua 5.2.4, with GnuTLS 3.6.3
and PKCS #11 support, with Gcrypt 1.8.3, with MIT Kerberos, with MaxMind DB
resolver, with nghttp2 1.39.2, with brotli, with LZ4, with Zstandard, with
Snappy, with libxml2 2.9.9, with QtMultimedia, with automatic updates using
WinSparkle 0.5.7, with AirPcap, with SpeexDSP (using bundled resampler).

Running on 64-bit Windows 10 (1909), build 18363, with Intel(R) Core(TM)
i7-8650U CPU @ 1.90GHz (with SSE4.2), with 16258 MB of physical memory, with
locale English_United Kingdom.utf8, with light display mode, without HiDPI, with
Npcap version 1.00, based on libpcap version 1.9.1, with GnuTLS 3.6.3, with
Gcrypt 1.8.3, with brotli 1.0.2, without AirPcap, binary plugins supported (21
loaded).

Built using Microsoft Visual Studio 2019 (VC++ 14.28, build 29335).

Thank you! Will do.

No Bluetooth traffic is seen by Wireshark Hi All, Are there any known issues capturing Bluetooth traffic with Wireshark

No Bluetooth traffic is seen by Wireshark Hi All, Are there any known issues capturing Bluetooth traffic with Wireshark

No Bluetooth traffic is seen by Wireshark Hi All, Are there any known issues capturing Bluetooth traffic with Wireshark

No Bluetooth traffic is seen by Wireshark Hi All, Are there any known issues capturing Bluetooth traffic with Wireshark

No Bluetooth traffic is seen by Wireshark Hi All, Are there any known issues capturing Bluetooth traffic with Wireshark

No Bluetooth traffic is seen by Wireshark Hi All, Are there any known issues capturing Bluetooth traffic with Wireshark

Bluetooth traffic not seen by Wireshark Hi All, Are there any known issues capturing Bluetooth traffic with Wireshark?

Hi All,

Some of my NAS-5GS messages such as UE response to the Security Mode Cmd that AMF sends right after successful UE authentication, followed by a few more messages before AMF sends ICSReq back to the UE are still displayed as encrypted even though I use 5G-EA0 (alone) at each end of my N2: http://drive.google.com/file/d/1SThy_...

Here's a pcap with that message (amended - was a wrong one before): https://drive.google.com/file/d/1FfUE...

Does Wireshark have any problems decoding NAS-5GS in it assuming it's in a valid 5G-EA0 format? As per 3GPP 24.501 4.4.5 this is "null ciphering algorithm".

I'm seeing it with the current stable WS version 3.4.0 (v3.4.0-0-g9733f173ea5e). Before this one I had 3.2.2, which couldn't decode even the Security Mode Cmd from the AMF immediately preceding the one in question. This 3.4.0 one does decode it but none of the next 4 messages exchanged in NGAP DL/UL NAS Transport (both 3.2.2 and 3.4.0 seem to decode all subsequent messages exhanged afterwards though, starting with ICSReq).

Many thanks in advance!

It does work with that "Try to detect and decrypt EA0" option indeed (thank you!) but... why is such option even needed?

Decoding NAS-5GS with 5G-EA0 Hi All, Some of my NAS-5GS messages such as UE response to the Security Mode Cmd that AMF

Anders: sorry my bad as I inserted the pcap with Security Mode Cmd itself (which 3.4.0 does decode for me too unlike 3.2

Decoding NAS-5GS with 5G-EA0 Hi All, Some of my NAS-5GS messages such as UE response to the Security Mode Cmd that AMF

Decoding NAS-5GS with 5G-EA0 Hi All, Some of my NAS-5GS messages such as UE response to the Security Mode Cmd that AMF

Decoding NAS-5GS with 5G-EA0 Hi All, Some of my NAS-5GS messages such as UE response to the Security Mode Cmd that AMF

Decoding NAS-5GS with 5G-EA0 Hi All, Some of my NAS-5GS messages such as UE response to the Security Mode Cmd that AMF

Decoding NAS-5GS with 5G-EA0 Hi All, Some of my NAS-5GS messages such as UE response to the Security Mode Cmd that AMF

Decoding NAS-5GS with 5G-EA0 Hi All, Some of my NAS-5GS messages such as UE response to the Security Mode Cmd that AMF

Thank you. In fact I don't have either of those devices: I'm using Sanwu SW-HF59 Bluetooth receiver connected to car/hom

Thank you. In fact I don't have either of those devices: I'm using Sanwu SW-HF59 Bluetooth receiver connected to car/hom

Thank you. In fact I don't have either of those devices: I'm using Sanwu SW-HF59 Bluetooth receiver connected to car/hom

Thank you. In fact I don't have either of those devices: I'm using Sanwu SW-HF59 Bluetooth receiver connected to car/hom

Hi Hassan, Just wondering if you've ever managed to figure out the right answer? My own research suggests AptX codec i

Hi Hassan, Just wondering if you've ever managed to figure out the right answer? My own research suggests AptX codec i

Hi Hassan, Just wondering if you've ever managed to figure out the right answer? My own research suggests AptX codec i

Hi All,

Assuming Wireshark already has PFCP dissector by now (seems like it does from a neighbour PFCP thread) do I need to do anything particular to have mine decoded? Getting "malformed" for every single PFCP packet with Wireshark version 2.6.7 for some reason:

Screenshot: https://drive.google.com/open?id=1C6t...

pcapng: https://drive.google.com/open?id=1HwB...

Many thanks in anticipation!..

SYN-bit: I was also thinking how come I'm the first one asking it ) Works perfectly well: thank you!