Skip to content

lukeart/btsnoop-decoder

BranchesTags
 
 

Repository files navigation

Bluetooth Snoop File streaming decoder

Build Status Download License

Small library to decode Bluetooth Snoop file used to store radio packet records

  • streaming enabled : incoming packet data can be decoded over the fly for the same snoop file
  • non-blocking or blocking process (thread task running)

Note : this library doesnt decode HCI Bluetooth data, only snoop-like format

ChangeLogs can be found here

Documentation

http://bertrandmartel.github.io/btsnoop-decoder

Build

cmake .
make

Library release is under lib directory.

Test

Syntax : ./btsnoop-test <btsnoop_file>

./bin/btsnoop-test ./snoop-files/btsnoop_hci.log

Decode static btsnoop file

To decode one single bt snoop file with no streaming support, use BtSnoopTask with method :

bool BtSnoopTask::decode_file()

Exemple :

#include "btsnoop/btsnooptask.h"

..........
..........


BtSnoopTask decoder("/path/to/your/file");

bool success = decoder.decode_file();

if (success){
	//success
}
else{
	//failure (bad reading / file not found)
}

Decode streaming btsnoop file

  • To decode in streaming mode a bt snoop file, use BtSnoopParser :
#include "btsnoop/btsnoopparser.h"

..........
..........

BtSnoopParser parser;
  • Add a listner to monitor incoming packet data record with void BtSnoopParser::addSnoopListener(IBtSnoopListener* listener):
BtSnoopMonitor monitor;

parser.addSnoopListener(&monitor);
  • BtSnoopMonitor is a class inheriting IBtSnoopListener interface
class BtSnoopMonitor : public IBtSnoopListener
{

public:

	BtSnoopMonitor();

	~BtSnoopMonitor();

	/**
	 * @brief onSnoopPacketReceived
	 *      called when a new packet record has been received
	 * @param fileInfo
	 *      file info object
	 * @param packet
	 *      snoop packet record object
	 */
	void onSnoopPacketReceived(BtSnoopFileInfo fileInfo,BtSnoopPacket packet);

};
  • launch non blocking decoding task with :

bool BtSnoopParser::decode_streaming_file(std::string file_path)

Exemple :

#include "btsnoop/btsnoopparser.h"

..........
..........

BtSnoopParser parser;

BtSnoopMonitor monitor;

parser.addSnoopListener(&monitor);

bool success = parser.decode_streaming_file("/path/to/your/file");

if (success){
	//success
}
else{
	//failure (bad reading / file not found)
}

  • You can block file monitoring process with void BtSnoopParser::join(); method

  • You can start decoding from the last N packet with :

bool BtSnoopParser::decode_streaming_file(std::string file_path,int packet_number)

Exemple :

#include "btsnoop/btsnoopparser.h"

..........
..........

BtSnoopParser parser;

BtSnoopMonitor monitor;

parser.addSnoopListener(&monitor);

// this will decode from the last 10 packets
bool success = parser.decode_streaming_file("/path/to/your/file",10);

if (success){
	//success
}
else{
	//failure (bad reading / file not found)
}

Datamodel description

  • BtSnoopTask description :

| method | type | description |--------------|---------|-----|------------------------| | getFileInfo() | BtSnoopFileInfo | retrieve file information | | getPacketDataRecords() | std::vector<BtSnoopPacket> | retrieve list of packet record |

  • BtSnoopFileInfo description :

| method | type | description |--------------|---------|-----|------------------------| | getIdentificationNumber() | std::string | get identification number | | getVersionNumber() | int | get snoop version number | | getDatalinkNumber() | datalink_type | get datalink enum | | getDatalinkStr() | std::string | get datalink name string |

  • BtSnoopPacket description :

| method | type | description |--------------|---------|-----|------------------------| | getOriginalLength() | int | get length of original packet | | getincludedLength() | int | get packet data field length | | getCumulativeDrops() | int | get number of packet lost between the first record and this record for this file | | getUnixTimestampMicroseconds() | uint64_t | get unix timestamp for this packet record | | is_packet_sent() | bool | define if packet record is sent | | is_packet_received() | bool | define if packet record is received | | is_data() | bool | define if packet record is data record | | is_command_event() | bool | define if packet record is command or event | | getPacketData() | std::vector<char> | get packet data records |

##Android integration

An Android Makefile is provided for easy Android integration. Simply add the git repository as a submodule in your jni directory :

git submodule add git://github.com/bertrandmartel/btsnoop-decoder.git <yourproject/src/main/jni/btsnoop-decoder>

In you Application.mk add gnustl support :

APP_STL := gnustl_static

If you dont use Android NDK rc10 change Android.mk std include with your own path in you android-ndk source :

LOCAL_C_INCLUDES := $NDK/sources/cxx-stl/gnu-libstdc++/4.8/include

##Examples

From test project in main.cpp

##Memory checking

valgrind --tool=memcheck --leak-check=full ./bin/btsnoop-test

##Specifications

snoop format V2 : https://tools.ietf.org/html/rfc1761

About

C++ Bluetooth snoop file streaming decoder

Topics

bluetooth btsnoop

Resources

Readme

License

MIT license
Activity

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

2 tags

Packages

No packages published

Languages

  • C++ 98.0%
  • C 1.5%
  • Other 0.5%