闲鱼买的流云投屏器研究

memory · 2025-02-20 17:30:54

memory · 2025-02-20 17:32:22

用 hcidump --raw -i hci0命令抓微信小程序蓝牙配网包：

root@TinaLinux:/#
root@TinaLinux:/#
root@TinaLinux:/# hcidump --raw -i hci0
HCI sniffer - Bluetooth packet analyzer ver 5.54
device: hci0 snap_len: 1500 filter: 0xffffffff
> 04 3E 1F 0A 00 06 00 01 01 FC A4 9D F0 93 63 00 00 00 00 00
  00 00 00 00 00 00 00 27 00 00 00 F4 01 01
> 02 06 20 0B 00 07 00 04 00 10 01 00 FF FF 00 28
< 02 06 00 0C 00 08 00 04 00 11 06 01 00 0A 00 01 FF
> 04 13 05 01 06 00 01 00
> 02 06 20 0B 00 07 00 04 00 10 0B 00 FF FF 00 28
< 02 06 00 09 00 05 00 04 00 01 10 0B 00 0A
> 04 13 05 01 06 00 01 00
> 02 06 20 0B 00 07 00 04 00 08 01 00 0A 00 02 28
< 02 06 00 09 00 05 00 04 00 01 08 01 00 0A
> 04 13 05 01 06 00 01 00
> 04 3E 0A 03 00 06 00 06 00 00 00 F4 01
> 02 06 20 0B 00 07 00 04 00 08 01 00 0A 00 03 28
< 02 06 00 14 00 10 00 04 00 09 07 02 00 4A 03 00 02 FF 04 00
  3A 05 00 03 FF
> 04 13 05 01 06 00 01 00
> 02 06 20 0B 00 07 00 04 00 08 05 00 0A 00 03 28
< 02 06 00 09 00 05 00 04 00 01 08 05 00 0A
> 04 13 05 01 06 00 01 00
> 02 06 20 09 00 05 00 04 00 04 06 00 0A 00
< 02 06 00 0A 00 06 00 04 00 05 01 06 00 02 29
> 04 13 05 01 06 00 01 00
> 02 06 20 09 00 05 00 04 00 04 07 00 0A 00
< 02 06 00 09 00 05 00 04 00 01 04 07 00 0A
> 04 13 05 01 06 00 01 00
> 02 06 20 07 00 03 00 04 00 02 05 02
< 02 06 00 07 00 03 00 04 00 03 05 02
> 04 13 05 01 06 00 01 00
> 04 3E 0A 03 00 06 00 27 00 00 00 F4 01
> 02 06 20 09 00 05 00 04 00 12 06 00 02 00
< 02 06 00 05 00 01 00 04 00 13
> 04 13 05 01 06 00 01 00
> 02 06 20 18 00 1A 00 04 00 12 05 00 31 31 31 31 33 38 30 30
  31 33 38 30 30 30 77 68 79
> 02 06 10 06 00 63 61 6E 32 32 32
< 02 06 00 05 00 01 00 04 00 13
> 04 13 05 01 06 00 01 00
[   33.342063] usb 3-1 wlan1: AP Stopped
[   40.085939] need cfm ethertype:    8e88,user_idx=1, skb=f3b6ca47
[   40.093438] aicwf_usb_host_tx_cfm_handler enter
[   40.100209] need cfm ethertype:    8e88,user_idx=2, skb=d289fb56
[   40.107618] aicwf_usb_host_tx_cfm_handler enter
[   40.461464] DHCP disc/req
[   40.482601] reord_init_sta:94:3b:85:dc:95:e9
[   40.487565] DHCP offset/ack
[   40.541471] DHCP disc/req
[   40.557980] DHCP offset/ack
[   40.561848] paired=fac04, should=fac04
< 02 06 00 2B 00 27 00 04 00 1D 05 00 7B 22 73 73 69 64 22 3A
  22 77 68 79 63 61 6E 32 32 32 22 2C 22 77 69 66 69 5F 73 74
  61 74 75 73 22 3A 31 7D
> 04 13 05 01 06 00 01 00
> 02 06 20 05 00 01 00 04 00 1E
[   44.491380] DHCP disc/req
[   44.505200] DHCP offset/ack
[   44.571415] DHCP disc/req
[   44.585322] DHCP offset/ack
[   44.588490] paired=fac04, should=fac04
> 02 06 20 0B 00 07 00 04 00 10 01 00 FF FF 00 28
< 02 06 00 0C 00 08 00 04 00 11 06 01 00 0A 00 01 FF
> 04 13 05 01 06 00 01 00
> 04 3E 0A 03 00 06 00 06 00 00 00 F4 01
> 04 3E 0A 03 00 06 00 27 00 00 00 F4 01
> 04 05 04 00 06 00 13
< 01 0A 20 01 00
> 04 0E 04 05 0A 20 0C
< 01 1A 0C 01 00
> 04 0E 04 05 1A 0C 00
< 01 05 20 06 03 BE 9F 6F A4 D0
> 04 0E 04 05 05 20 00
< 01 06 20 0F 20 00 E0 01 00 01 00 00 00 00 00 00 00 07 00
> 04 0E 04 05 06 20 00
< 01 05 20 06 37 69 D7 20 E8 10
> 04 0E 04 05 05 20 00
< 01 08 20 20 18 02 01 1A 10 09 43 49 54 49 66 75 74 75 72 65
  2D 39 35 45 39 03 03 01 FF 00 00 00 00 00 00 00
> 04 0E 04 05 08 20 00
< 01 0A 20 01 01
> 04 0E 04 05 0A 20 00

memory · 2025-02-20 17:47:27

再试一次：

root@TinaLinux:/#
root@TinaLinux:/# hcidump --raw -i hci0
HCI sniffer - Bluetooth packet analyzer ver 5.54
device: hci0 snap_len: 1500 filter: 0xffffffff
> 04 3E 1F 0A 00 06 00 01 01 45 91 4B D9 97 59 00 00 00 00 00
  00 00 00 00 00 00 00 27 00 00 00 F4 01 01
> 02 06 20 0B 00 07 00 04 00 10 01 00 FF FF 00 28
< 02 06 00 0C 00 08 00 04 00 11 06 01 00 0A 00 01 FF
> 04 13 05 01 06 00 01 00
> 02 06 20 0B 00 07 00 04 00 10 0B 00 FF FF 00 28
< 02 06 00 09 00 05 00 04 00 01 10 0B 00 0A
> 04 13 05 01 06 00 01 00
> 02 06 20 0B 00 07 00 04 00 08 01 00 0A 00 02 28
< 02 06 00 09 00 05 00 04 00 01 08 01 00 0A
> 04 13 05 01 06 00 01 00
> 04 3E 0A 03 00 06 00 06 00 00 00 F4 01
> 02 06 20 0B 00 07 00 04 00 08 01 00 0A 00 03 28
< 02 06 00 14 00 10 00 04 00 09 07 02 00 4A 03 00 02 FF 04 00
  3A 05 00 03 FF
> 04 13 05 01 06 00 01 00
> 02 06 20 0B 00 07 00 04 00 08 05 00 0A 00 03 28
< 02 06 00 09 00 05 00 04 00 01 08 05 00 0A
> 04 13 05 01 06 00 01 00
> 02 06 20 09 00 05 00 04 00 04 06 00 0A 00
< 02 06 00 0A 00 06 00 04 00 05 01 06 00 02 29
> 04 13 05 01 06 00 01 00
> 02 06 20 09 00 05 00 04 00 04 07 00 0A 00
< 02 06 00 09 00 05 00 04 00 01 04 07 00 0A
> 04 13 05 01 06 00 01 00
> 02 06 20 07 00 03 00 04 00 02 05 02
< 02 06 00 07 00 03 00 04 00 03 05 02
> 04 13 05 01 06 00 01 00
> 04 3E 0A 03 00 06 00 27 00 00 00 F4 01
> 02 06 20 09 00 05 00 04 00 12 06 00 02 00
< 02 06 00 05 00 01 00 04 00 13
> 04 13 05 01 06 00 01 00
> 02 06 20 18 00 1A 00 04 00 12 05 00 31 31 31 31 33 38 30 30
  31 33 38 30 30 30 77 68 79
> 02 06 10 06 00 63 61 6E 32 32 32
< 02 06 00 05 00 01 00 04 00 13
> 04 13 05 01 06 00 01 00
[   58.920144] usb 3-1 wlan1: AP Stopped
[   65.648675] need cfm ethertype:    8e88,user_idx=1, skb=6547133d
[   65.656030] aicwf_usb_host_tx_cfm_handler enter
[   65.670709] need cfm ethertype:    8e88,user_idx=2, skb=55a95211
[   65.678067] aicwf_usb_host_tx_cfm_handler enter
[   66.039422] DHCP disc/req
[   66.061528] reord_init_sta:94:3b:85:dc:95:e9
[   66.066740] DHCP offset/ack
[   66.119410] DHCP disc/req
[   66.135064] DHCP offset/ack
[   66.139433] paired=fac04, should=fac04
< 02 06 00 2B 00 27 00 04 00 1D 05 00 7B 22 73 73 69 64 22 3A
  22 77 68 79 63 61 6E 32 32 32 22 2C 22 77 69 66 69 5F 73 74
  61 74 75 73 22 3A 31 7D
> 04 13 05 01 06 00 01 00
> 02 06 20 05 00 01 00 04 00 1E
[   70.059296] DHCP disc/req
[   70.074060] DHCP offset/ack
[   70.159302] DHCP disc/req
[   70.171063] DHCP offset/ack
[   70.174283] paired=fac04, should=fac04
> 02 06 20 0B 00 07 00 04 00 10 01 00 FF FF 00 28
< 02 06 00 0C 00 08 00 04 00 11 06 01 00 0A 00 01 FF
> 04 13 05 01 06 00 01 00
> 04 3E 0A 03 00 06 00 06 00 00 00 F4 01
> 04 3E 0A 03 00 06 00 27 00 00 00 F4 01
> 04 05 04 00 06 00 13
< 01 0A 20 01 00
> 04 0E 04 05 0A 20 0C
< 01 1A 0C 01 00
> 04 0E 04 05 1A 0C 00
< 01 05 20 06 03 BE 9F 6F A4 D0
> 04 0E 04 05 05 20 00
< 01 06 20 0F 20 00 E0 01 00 01 00 00 00 00 00 00 00 07 00
> 04 0E 04 05 06 20 00
< 01 05 20 06 8A 50 AD 7B BF 23
> 04 0E 04 05 05 20 00
< 01 08 20 20 18 02 01 1A 10 09 43 49 54 49 66 75 74 75 72 65
  2D 39 35 45 39 03 03 01 FF 00 00 00 00 00 00 00
> 04 0E 04 05 08 20 00
< 01 0A 20 01 01
> 04 0E 04 05 0A 20 00

memory · 2025-02-20 17:50:34

再试一试：

root@TinaLinux:/#
root@TinaLinux:/# hcidump --raw -i hci0
HCI sniffer - Bluetooth packet analyzer ver 5.54
device: hci0 snap_len: 1500 filter: 0xffffffff
> 04 3E 1F 0A 00 06 00 01 01 45 91 4B D9 97 59 00 00 00 00 00
  00 00 00 00 00 00 00 27 00 00 00 F4 01 01
> 02 06 20 0B 00 07 00 04 00 10 01 00 FF FF 00 28
< 02 06 00 0C 00 08 00 04 00 11 06 01 00 0A 00 01 FF
> 04 13 05 01 06 00 01 00
> 02 06 20 0B 00 07 00 04 00 10 0B 00 FF FF 00 28
< 02 06 00 09 00 05 00 04 00 01 10 0B 00 0A
> 04 13 05 01 06 00 01 00
> 02 06 20 0B 00 07 00 04 00 08 01 00 0A 00 02 28
< 02 06 00 09 00 05 00 04 00 01 08 01 00 0A
> 04 13 05 01 06 00 01 00
> 04 3E 0A 03 00 06 00 06 00 00 00 F4 01
> 02 06 20 0B 00 07 00 04 00 08 01 00 0A 00 03 28
< 02 06 00 14 00 10 00 04 00 09 07 02 00 4A 03 00 02 FF 04 00
  3A 05 00 03 FF
> 04 13 05 01 06 00 01 00
> 02 06 20 0B 00 07 00 04 00 08 05 00 0A 00 03 28
< 02 06 00 09 00 05 00 04 00 01 08 05 00 0A
> 04 13 05 01 06 00 01 00
> 02 06 20 09 00 05 00 04 00 04 06 00 0A 00
< 02 06 00 0A 00 06 00 04 00 05 01 06 00 02 29
> 04 13 05 01 06 00 01 00
> 02 06 20 09 00 05 00 04 00 04 07 00 0A 00
< 02 06 00 09 00 05 00 04 00 01 04 07 00 0A
> 04 13 05 01 06 00 01 00
> 02 06 20 07 00 03 00 04 00 02 05 02
< 02 06 00 07 00 03 00 04 00 03 05 02
> 04 13 05 01 06 00 01 00
> 04 3E 0A 03 00 06 00 27 00 00 00 F4 01
> 02 06 20 09 00 05 00 04 00 12 06 00 02 00
< 02 06 00 05 00 01 00 04 00 13
> 04 13 05 01 06 00 01 00
> 02 06 20 18 00 1A 00 04 00 12 05 00 31 31 31 31 33 38 30 30
  31 33 38 30 30 30 77 68 79
> 02 06 10 06 00 63 61 6E 5F 35 47
< 02 06 00 05 00 01 00 04 00 13
> 04 13 05 01 06 00 01 00
[  101.430410] usb 3-1 wlan1: AP Stopped
[  108.869608] need cfm ethertype:    8e88,user_idx=1, skb=64b9f36a
[  108.876985] aicwf_usb_host_tx_cfm_handler enter
[  108.893899] need cfm ethertype:    8e88,user_idx=2, skb=2d2eda91
[  108.901357] aicwf_usb_host_tx_cfm_handler enter
[  109.259383] DHCP disc/req
[  109.324028] DHCP offset/ack
[  109.359368] DHCP disc/req
[  109.528115] DHCP offset/ack
[  109.531354] paired=fac04, should=fac04
[  110.096633] reord_init_sta:94:3b:85:dc:95:e9
< 02 06 00 2B 00 27 00 04 00 1D 05 00 7B 22 73 73 69 64 22 3A
  22 77 68 79 63 61 6E 5F 35 47 22 2C 22 77 69 66 69 5F 73 74
  61 74 75 73 22 3A 31 7D
> 04 13 05 01 06 00 01 00
> 02 06 20 05 00 01 00 04 00 1E
[  113.259264] DHCP disc/req
[  116.879326] DHCP disc/req
[  116.900773] DHCP offset/ack
[  116.939337] DHCP disc/req
[  117.105644] DHCP offset/ack
> 02 06 20 0B 00 07 00 04 00 10 [  117.108994] paired=fac04, should=fac04
01 00 FF FF 00 28
< 02 06 00 0C 00 08 00 04 00 11 06 01 00 0A 00 01 FF
> 04 13 05 01 06 00 01 00
> 04 3E 0A 03 00 06 00 06 00 00 00 F4 01
> 04 3E 0A 03 00 06 00 27 00 00 00 F4 01
> 04 05 04 00 06 00 13
< 01 0A 20 01 00
> 04 0E 04 05 0A 20 0C
< 01 1A 0C 01 00
> 04 0E 04 05 1A 0C 00
< 01 05 20 06 03 BE 9F 6F A4 D0
> 04 0E 04 05 05 20 00
< 01 06 20 0F 20 00 E0 01 00 01 00 00 00 00 00 00 00 07 00
> 04 0E 04 05 06 20 00
< 01 05 20 06 08 C6 7D C1 94 3B
> 04 0E 04 05 05 20 00
< 01 08 20 20 18 02 01 1A 10 09 43 49 54 49 66 75 74 75 72 65
  2D 39 35 45 39 03 03 01 FF 00 00 00 00 00 00 00
> 04 0E 04 05 08 20 00
< 01 0A 20 01 01
> 04 0E 04 05 0A 20 00

memory · 2025-02-20 18:03:50

出现这个就连不上了：

root@TinaLinux:/#
root@TinaLinux:/#
root@TinaLinux:/# hcidump --raw -i hci0
HCI sniffer - Bluetooth packet analyzer ver 5.54
device: hci0 snap_len: 1500 filter: 0xffffffff
> 04 3E 1F 0A 00 06 00 01 01 B7 2C D7 32 89 7F 00 00 00 00 00
  00 00 00 00 00 00 00 27 00 00 00 F4 01 01
> 02 06 20 0B 00 07 00 04 00 10 01 00 FF FF 00 28
< 02 06 00 0C 00 08 00 04 00 11 06 01 00 0A 00 01 FF
> 04 13 05 01 06 00 01 00
> 02 06 20 0B 00 07 00 04 00 10 0B 00 FF FF 00 28
< 02 06 00 09 00 05 00 04 00 01 10 0B 00 0A
> 04 13 05 01 06 00 01 00
> 02 06 20 0B 00 07 00 04 00 08 01 00 0A 00 02 28
< 02 06 00 09 00 05 00 04 00 01 08 01 00 0A
> 04 13 05 01 06 00 01 00
> 04 3E 0A 03 00 06 00 06 00 00 00 F4 01
> 02 06 20 0B 00 07 00 04 00 08 01 00 0A 00 03 28
< 02 06 00 14 00 10 00 04 00 09 07 02 00 4A 03 00 02 FF 04 00
  3A 05 00 03 FF
> 04 13 05 01 06 00 01 00
> 02 06 20 0B 00 07 00 04 00 08 05 00 0A 00 03 28
< 02 06 00 09 00 05 00 04 00 01 08 05 00 0A
> 04 13 05 01 06 00 01 00
> 02 06 20 09 00 05 00 04 00 04 06 00 0A 00
< 02 06 00 0A 00 06 00 04 00 05 01 06 00 02 29
> 04 13 05 01 06 00 01 00
> 02 06 20 09 00 05 00 04 00 04 07 00 0A 00
< 02 06 00 09 00 05 00 04 00 01 04 07 00 0A
> 04 13 05 01 06 00 01 00
> 02 06 20 07 00 03 00 04 00 02 05 02
< 02 06 00 07 00 03 00 04 00 03 05 02
> 04 13 05 01 06 00 01 00
> 02 06 20 09 00 05 00 04 00 12 06 00 02 00
< 02 06 00 05 00 01 00 04 00 13
> 04 3E 0A 03 00 06 00 27 00 00 00 F4 01
> 04 13 05 01 06 00 01 00

DDER · 2025-02-20 20:33:32

粗步分析这是BLE的广播数据包。
< 02 06 00 2B 00 27 00 04 00 1D 05 00 7B 22 73 73 69 64 22 3A
22 77 68 79 63 61 6E 32 32 32 22 2C 22 77 69 66 69 5F 73 74
61 74 75 73 22 3A 31 7D
把这条给AI分析如下，
“05 00”：“05” 表示这部分广播数据的长度为 5 字节，“00” 表示广播数据类型为 “制造商特定数据”。
“7B 22 73 73 69 64 22 3A 22 77 68 79 63 61 6E 32 32 32 22 2C 22 77 69 66 69 5F 73 74 61 74 75 73 22 3A 31 7D”：这部分是制造商特定数据的具体内容，经过解码后，它是一个 JSON 格式的数据：{"ssid":"whycan222","wifi_status":1}。这里可以看出，它似乎包含了设备相关的网络信息，如 “ssid”（可能是设备连接的 Wi - Fi 网络名称）和 “wifi_status”（可能表示 Wi - Fi 连接状态，值为 1，但其具体含义需结合设备文档确定）。

WhyCan Forum(哇酷开发者社区)

楼主 # 2025-02-20 17:30:54 分享评论

闲鱼买的流云投屏器研究

楼主 #2 2025-02-20 17:32:22 分享评论

Re: 闲鱼买的流云投屏器研究

楼主 #3 2025-02-20 17:47:27 分享评论

Re: 闲鱼买的流云投屏器研究

楼主 #4 2025-02-20 17:50:34 分享评论

Re: 闲鱼买的流云投屏器研究

楼主 #5 2025-02-20 18:03:50 分享评论

Re: 闲鱼买的流云投屏器研究

#6 2025-02-20 20:33:32 分享评论

Re: 闲鱼买的流云投屏器研究

页脚