- Posts: 2631
Furibee F36 protocol attempt
21 Feb 2017 03:36 #59391
by goebish
Replied by goebish on topic Furibee F36 protocol attempt
I've got one on order 
Please Log in or Create an account to join the conversation.
21 Feb 2017 06:44 #59399
by bikemike
Great. I'm sure you'll be able to figure out a lot more using SDR. I'm having my doubts that it can be emulated with an NRF24L01+.
I've found 256kbps and address 4B AB 4B AB 4B to give the best information but I can't see a definite start/end of the packet and it seems to be larger than 32 bytes (meaning I don't see noise at the end) and other addresses seem to give more data before what this address shows.
Replied by bikemike on topic Furibee F36 protocol attempt
goebish wrote: I've got one on order
Great. I'm sure you'll be able to figure out a lot more using SDR. I'm having my doubts that it can be emulated with an NRF24L01+.
I've found 256kbps and address 4B AB 4B AB 4B to give the best information but I can't see a definite start/end of the packet and it seems to be larger than 32 bytes (meaning I don't see noise at the end) and other addresses seem to give more data before what this address shows.
Please Log in or Create an account to join the conversation.
24 Feb 2017 13:17 - 24 Feb 2017 13:45 #59559
by goebish
Congratz to your gf
Can you give the binary sequence ?
As I'm working at the bit level with the SDR, that should be easy to dump complete aligned packets once I receive mine.
My guess is that it's using Manchester encoding and/or FEC.
Replied by goebish on topic Furibee F36 protocol attempt
xxx wrote: It repeats a number of bytes (4 - 8 ) but it's at a non-8 offset.
Congratz to your gf
Can you give the binary sequence ?
As I'm working at the bit level with the SDR, that should be easy to dump complete aligned packets once I receive mine.
My guess is that it's using Manchester encoding and/or FEC.
Please Log in or Create an account to join the conversation.
04 Mar 2017 14:45 - 05 Mar 2017 16:36 #59839
by goebish
Replied by goebish on topic Furibee F36 protocol attempt
Just got mine
First observations:
- it does not transmit continuously, each packet lasts ~2.6 ms,at 1 Mbps that's roughly 32 bytes of data, so maybe it can be emulated with a nrf24l01 (37 bytes max).
- packet interval: ~23 ms (start of packet to start of next packet on same frequency) must be divided by 4 as you previously found it was hopping on 4 freqs
- seems I get some packets at 1 Mbps with 0x555555 as preamble but I'm not sure because I don't see much bits change while I move the sticks. (edit: I think I see them actually, but far away from the preamble ...)
It could be a LT8910 or LT8900 RF core ( packet format ) ... I'll extract 0s and 1s and try to reassemble the messages, though I'm not 100% sure of the bitrate ...
I'm pretty much a newbie at SDR, so any suggestion is welcome
Also, I see there are a lot of test points on the quad's pcb, has anyone already tried to connect a logic analyzer to the Tx pad ? Perhaps that could give us some clues if they have "forgotten" to remove debug information. --> edit: nothing on this pad, always HIGH.
First observations:
- it does not transmit continuously, each packet lasts ~2.6 ms,
- packet interval: ~23 ms (start of packet to start of next packet on same frequency) must be divided by 4 as you previously found it was hopping on 4 freqs
- seems I get some packets at 1 Mbps with 0x555555 as preamble but I'm not sure because I don't see much bits change while I move the sticks. (edit: I think I see them actually, but far away from the preamble ...)
It could be a LT8910 or LT8900 RF core ( packet format ) ... I'll extract 0s and 1s and try to reassemble the messages, though I'm not 100% sure of the bitrate ...
I'm pretty much a newbie at SDR, so any suggestion is welcome
Also, I see there are a lot of test points on the quad's pcb, has anyone already tried to connect a logic analyzer to the Tx pad ? Perhaps that could give us some clues if they have "forgotten" to remove debug information. --> edit: nothing on this pad, always HIGH.
Please Log in or Create an account to join the conversation.
04 Mar 2017 21:18 - 04 Mar 2017 21:19 #59851
by xxx
silverxxx
Replied by xxx on topic Furibee F36 protocol attempt
Certainly strange, makes me look bad 
The pads don't do much that I have noticed, connecting ST-link comes up with an error, so I could not get anything. On the other 2 pads one is led and the other seems to do nothing
If you can find a preamble and address maybe I can find something of use with my tx.
The pads don't do much that I have noticed, connecting ST-link comes up with an error, so I could not get anything. On the other 2 pads one is led and the other seems to do nothing
If you can find a preamble and address maybe I can find something of use with my tx.
silverxxx
Please Log in or Create an account to join the conversation.
04 Mar 2017 21:38 - 04 Mar 2017 21:39 #59852
by goebish
Replied by goebish on topic Furibee F36 protocol attempt
try with this address, however it might be tx id dependent:
uint8_t addr[] = {0xb6, 0x44, 0x50, 0xeb, 0x14};
preamble is 0x555555
I receive packets if I set a nrf24l01 to this address, but the payload I receive is always the same ... nothing changes when I move the sticks
27 86 5d 30 63 f8 aa 55 91 49 48 d4 af 84 06 0e 3b 8b 27 13 cc 0c 12 97 b3 55 72 8b 87 d0 0a 90
uint8_t addr[] = {0xb6, 0x44, 0x50, 0xeb, 0x14};
preamble is 0x555555
I receive packets if I set a nrf24l01 to this address, but the payload I receive is always the same ... nothing changes when I move the sticks
27 86 5d 30 63 f8 aa 55 91 49 48 d4 af 84 06 0e 3b 8b 27 13 cc 0c 12 97 b3 55 72 8b 87 d0 0a 90
Please Log in or Create an account to join the conversation.
Time to create page: 0.074 seconds
-
Home
-
Forum
-
Development
-
Protocol Development
- Furibee F36 protocol attempt