├── 移动基带安全研究系列之系统篇.pdf
├── image-20210308164203970.png
├── image-20210322162235900.png
├── image-20210325161755813.png
├── Qualcomm_BaseBand_Messaging_and_State_Machine.md
└── sm.svg


/移动基带安全研究系列之系统篇.pdf:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/vessial/baseband/HEAD/移动基带安全研究系列之系统篇.pdf


--------------------------------------------------------------------------------
/image-20210308164203970.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/vessial/baseband/HEAD/image-20210308164203970.png


--------------------------------------------------------------------------------
/image-20210322162235900.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/vessial/baseband/HEAD/image-20210322162235900.png


--------------------------------------------------------------------------------
/image-20210325161755813.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/vessial/baseband/HEAD/image-20210325161755813.png


--------------------------------------------------------------------------------
/Qualcomm_BaseBand_Messaging_and_State_Machine.md:
--------------------------------------------------------------------------------
  1 | # 深度揭密高通4/5G移动基带消息系统和状态机
  2 | 
  3 | ## 背景
  4 | 
  5 | 本技术分析文章通过对高通的4/5G移动基带系统进行深入逆向工程提示其内部消息通信机制以及核心架构设计逻辑，本文的研究基于高通的4G基带MDM9707以及5G基带模块sdx55的固件之上分析完成，高通基带系统现在都是基于高通主流的hexagon DSP指令架构来实现，该架构非常适合应用于音视频编解码，计算机视觉等，软件无线电等应用中的浮点和向量计算，在高通骁龙处理器的子系统中大量使用，大多应用于手机，汽车，可穿戴设备以及移动通信设备中，Hexagon DSP相关信息可以从[这里](https://developer.qualcomm.com/software/hexagon-dsp-sdk/dsp-processor)获取，运行在Hexagon DSP芯片上的操作系统QuRT是由高通设计的实时操作系统，高通基带系统所有的上层业务将会运行在该操作系统之上，阅读该技术分析文章之前，假定你已经对操作系统的原理有所了解，例如CPU调度，IPC(进程间通信)，以及基本的数据队列enqueue/dequeue的操作。
  6 | 
  7 | ## 消息机制简介
  8 | 
  9 | 一个系统里面运行着不同的任务，不同任务在不同的运行状态在处理相应的业务逻辑时可能需要与其它任务交换数据或者同步信息，这里面就需要操作系统的底层IPC机制来完成了，3GPP组织定义了不同移动通信技术从物理层/链路层/逻辑处理层等各种标准，例如（5GNR/4GLTE/3G WCDMA/TD-SCDMA/CDMA2000/2G /GSM等通信技术），这些技术标准在基带系统里面实现会被划分成不同的任务来维护不同的状态，处理不同的消息信令，以及维护不同通信技术的切换等操作，比如现在的大部分智能手机基带系统基本上都支持2/3/4G通信相关的技术，这些基带系统根据移动运营商支持的移动通信技术和国家区域支持的标准的不同会使用相应的移动通信技术，比如中国在3G时代中国移动使用的TD-SCDMA，而中国联通使用的是WCDMA技术，为了保证移动设备的一些基本功能的可用性（语音通信和sms短信息），比如某些地方部署了4G基站，你可以在那里使用4G LTE的（Voice-over-IP/SMS-over-IP）通信技术，在一些偏远的地区可能只部署了2G基站，这时基带系统根据环境切换到GSM的协议栈，这些功能的维护与切换从基带系统层面来讲都需要系统消息机制来配合完成。
 10 | 
 11 | 高通基带系统的消息机制建立在运行的实时操作系统QuRT之上，之前我有一篇[文章](https://www.freebuf.com/articles/terminal/213807.html)有简单介绍过底层IPC机制，今天我将详细介绍上层业务逻辑相关的消息传递机制与数据结构。我们把运行在基带系统上的业务逻辑实体的最小单位定义为线程（thread），根据线程生命周期的不同分为以下两大类：
 12 | 
 13 | * 短生命周期线程
 14 |   * 驱动/任务初始化线程（Driver initiator/Services Launcher)
 15 |   * 中断服务例程（IST)
 16 | * 长生命周期线程
 17 |   * 阻塞型消息接受线程
 18 | 
 19 | ![image-20210308164203970](https://github.com/vessial/baseband/blob/master/image-20210308164203970.png)
 20 | 
 21 | 消息通信底层API封装简介：
 22 | 
 23 | ```
 24 | //信号发送
 25 | int rex_send_sigs(utcb *dst_task_obj,unsigned int signal_id);
 26 | //第一个参数为向目标任务发送消息的结构定义，第二个参数为要发送的信号id
 27 | int rex_wait_sigs(unsigned int recv_sigs_masks);
 28 | //第一个参数为可以允许接受信号id的掩码，每个任务最多可以设置可接受信号id个数为32个，每个任务可以接受多个信号id时，通过信号id的或操作来得到该任务可以接受信号的掩码，返回值为接受到的信号id
 29 | 
 30 | //如果是带数据的信号发送，封装底层API，类似如下
 31 | int send_sigs_with_dat(utcb *dst_task_obj,unsigned int signal_id,data_queue *send_data_queue);
 32 | int recv_sigs_with_dat(unsigned int recv_sigs_masks,data_queue *recv_data_queue);
 33 | ```
 34 | 
 35 | 而根据任务线程的业务功能的不同划分成以下几大类：
 36 | 
 37 | * 系统功能任务
 38 | * 通信技术协议栈分层任务
 39 |   * GSM/WCDMA/TDSCDMA/LTE L1/L2/L3相关的协议栈的任务等
 40 | * 上层应用任务
 41 |   * IMS volte/ecall/数据服务/包服务等
 42 | * 外设相关的任务
 43 |   * UIM/SIO/A2等
 44 | 
 45 | 我在[这里](https://github.com/vessial/baseband/blob/master/dump_task.svg)记录了高通MDM9607基带系统一次实时运行的任务快照列表。
 46 | 
 47 | ## 高通基带系统消息机制
 48 | 
 49 | ### 消息通信核心架构设计逻辑
 50 | 
 51 | * 兼容性
 52 |   * 在新的基带芯片上面开发新的移动通信技术单元的同时，保证老的功能模块能够正常使用，例如在开发5G功能的同时，以往的4G/3G/2G功能都能够正常使用和切换。
 53 | * 可扩展性
 54 |   * 在已有的功能模块上增加新的功能，具备灵活的扩展性，而不需要作太大的软件和硬件改动。
 55 | * 低耦合性
 56 |   * 新增的功能模块与已有系统上功能模块的耦合度低，接口少，减少引入问题的接口点和测试成本。
 57 | 
 58 | 基于以上的设计理念，高通设计一套灵活的消息通信系统，一直到现在5GNR的基带系统也在用，接下来我将详细介绍该消息系统的架构，相关的算法和数据结构。
 59 | 
 60 | ### 消息通信架构
 61 | 
 62 | 为了区分不同任务所接受到的消息以及任务所能处理相应消息的原语操作权限，通过接受到的消息来区分消息来源以及接受到相应消息后的相应的处理动作，高通的消息系统引入了任务消息接受体（msgr_client）和UMID（Unique Message ID）的机制，任务消息接受体由相应的任务创建生成，并通过初始注册可接受消息UMID来设置任务相应原语操作的权限，每个任务可以创建一个或者多个msgr_client，每一个UMID消息也可以注册给多个msgr_client，每一个UMID消息标示着一次相应的原语操作，在MDM9607里面定义的UMID数量多达1万多个，而在最新高通的5G基带里面可使用的UMID高达2万多，每个UMID背后都对应着相应的原语操作，UMID的值与相应的命名规则如下。
 63 | 
 64 | #### UMID由32位组成，结构如下表
 65 | 
 66 | | Name       | offset and length | Comment                                                      |
 67 | | ---------- | ----------------- | ------------------------------------------------------------ |
 68 | | tech_id    | 24~31 8bits       | eg, LTE->0x04, IMS->0x15, MDM9607 0x1b, SDX55 0x20           |
 69 | | mod_id     | 16~23 8bits       | eg, 0xd -> RRC 0xf -> MAC 0x11-> RLC DL                      |
 70 | | type_id    | 8~15  8bits       | type <= 0x09) \|\| (type >= 0x11 && type <= 0x17,totally 0x11 type_ids |
 71 | | op_type_id | 4~8    4bits      | Op entity ,eg IRAT_FROM_LTE_TO_G                             |
 72 | | op_id      | 0~3    4bits      | Opcode seq, eg abort/search/startup/deinit/init/cfg etc      |
 73 | 
 74 | 注：if type_id>9 ,type_id=type_id-6
 75 | offset bit 8~15 8bits type_id list
 76 | 
 77 | | Type_name | value | Comment             |
 78 | | --------- | ----- | ------------------- |
 79 | | CMD       | 1     | Command primitive   |
 80 | | REQ       | 2     | request             |
 81 | | RSP       | 3     | response            |
 82 | | IND       | 4     | indication          |
 83 | | DLM       | 7     | downlink message    |
 84 | | CNF       | 8     | confirm             |
 85 | | TMR       | 9     | timer               |
 86 | | REQI      | 0x12  | request Internal    |
 87 | | RSPI      | 0x13  | Response internal   |
 88 | | INDI      | 0x14  | indication internal |
 89 | | CNFI      | 0x15  | confirm internal    |
 90 | | TMRI      | 0x16  | timer internal      |
 91 | 
 92 | 举个例子UMID 0x40D120E 对应的描述原语是LTE_RRC_IRAT_FROM_LTE_TO_G_RESEL_REQI，拆分结果如下:
 93 | 
 94 | | name               | value |
 95 | | ------------------ | ----- |
 96 | | LTE                | 0x04  |
 97 | | RRC                | 0x0d  |
 98 | | REQI               | 0x12  |
 99 | | RESEL              | 0x0   |
100 | | IRAT_FROM_LTE_TO_G | 0x0e  |
101 | 
102 | 注：这种UMID值的解析方法在某些定义里面并不适用，比如LTE_ML1_DLM_TST_SKIP_RACH_REQ的值为6，就没法用上面的方法解析，有些值并不严格遵循这种解析算法，可能是由于历史原因，定义UMID值的规则不一样。
103 | 
104 | 基带系统把任务标示为多个不同的技术大类，来标示和模块化相应的子功能，以MDM9607为例：
105 | 
106 | | tech_id | Tech_name                                                    |
107 | | ------- | ------------------------------------------------------------ |
108 | | 0       | MCS(Modem Common Service)                                    |
109 | | 2       | MM_CM(0x201) UI(0x20a) (Unnumbered Information) MM_DOM(0x202),MM_MMOC(0x251) |
110 | | 4       | LTE                                                          |
111 | | 5       | FTM                                                          |
112 | | 6       | rfa_tech （0x600 rf_fwrsp,0x603 rfgsm, 0x604 rf_1x ,0x601 0x605 rf_hdr ,0x606 rfgsm_ftm,0x607 rf_lte,0x608 rf_lte_ftm,0x60b rf_qmi, 0x60c rf_meas,0x40f/0x1a04 rf_lte ,0x120f rf_tdscdma） |
113 | | 7       | cdma                                                         |
114 | | 8       | hdr                                                          |
115 | | 9       | gsm                                                          |
116 | | 0x0a    | location(gps/gnss)                                           |
117 | | 0x0b    | wcdma                                                        |
118 | | 0x0c    | ds(data service)                                             |
119 | | 0x0d    | 1x(csfb)                                                     |
120 | | 0x0f    | nas(0xf19 mm, 0xf1c esm)                                     |
121 | | 0x10    | gstk(Generic SIM Application Toolkit)                        |
122 | | 0x12    | tdscdma                                                      |
123 | | 0x13    | wms                                                          |
124 | | 0x15    | ims                                                          |
125 | | 0x16    | qmi                                                          |
126 | | 0x17    | ecall  0x1701 ecall_app ,0x1702 ecall_ivs                    |
127 | | 0x18    | policyman                                                    |
128 | | 0x1a    | rflm                                                         |
129 | 
130 | #### 模块ID
131 | 
132 | 下图是MDM9607 LTE的部分子模块ID的对应关系
133 | 
134 | | tech_id+mod_id | name             |
135 | | -------------- | ---------------- |
136 | | 0x401          | ML1 MGR          |
137 | | 0x407          | LL1_SRCH         |
138 | | 0x408          | LL1_DL           |
139 | | 0x409          | LL1_UL           |
140 | | 0x40a          | LL1_SYS          |
141 | | 0x40b          | LL1_Async        |
142 | | 0x40d          | RRC              |
143 | | 0x40f          | MAC              |
144 | | 0x411          | RLC DL           |
145 | | 0x412          | RLC UL           |
146 | | 0x413          | PDCP DL          |
147 | | 0x414          | PDCP UL          |
148 | | 0x41b          | ML1_GM           |
149 | | 0x41e          | SW.app           |
150 | | 0x420          | ML1_GM_SCHDLR    |
151 | | 0x427          | TLB(Test Loop )  |
152 | | 0x42b          | ML1_GM_Sleep     |
153 | | 0x434          | ML1_AFC          |
154 | | 0x43b          | PDCP offload     |
155 | | 0x43e          | ML1 offload      |
156 | | 0x43f          | ML1 Co-existence |
157 | | 0x441          | ML1 GM MSMGR     |
158 | | 0x442          | PDCPCOMP         |
159 | | 0x445          | ML1 SM FSCAN     |
160 | 
161 | 关键消息发送API:
162 | 
163 | ```
164 | msgr_send(umsg *buf,uint32 buf_size);
165 | struct umsg{
166 |        struct msgr_hdr_struct_type{	
167 | 				uint32  dest_umid;  //offset 0      ，要发送的UMID号
168 | 				uint16  src_tech_mod_id; //offset 4，发送源tech_mod_id的标识 
169 |                 uint8    num_attach;// offset 7
170 |             	uint8    tail_flag ;// offset 8 ，头部结尾标志0x7f
171 | 				uint8    inst_id;// offset 9，
172 | 	}
173 |          uint8 send_dsm_flag;//offset 0x10 ,置1表示发送数据通过dsm结构承载的标志
174 |          dsm *dsm_obj;//offset 0x14 , 发送数据dsm结构指针
175 | 
176 |  }
177 | msgrq_wait(void *msgr_client_ptr,void *msg_recv_buf,uint32 msg_recv_buf_size,uint32 *msg_recvd_size_ptr);//接受消息的函数
178 | msgr_register(uint16 mod_id,void *msgr_client_ptr,void *mailbox_obj,uint32 umid);//msgr_client注册umid的消息路由
179 | ```
180 | 
181 | 
182 | 
183 | #### 消息路由
184 | 
185 | 我们已经了解到UMID所对应原语操作的含义，如果需要执行相应的原语操作，只需要向注册过UMID的模块发送umid消息即可，接下来我们需要了解umid消息是如何路由到相应模块(tech_mod_id)的消息接收器(msgr_client)的，下面会详细介绍相应的算法和数据结构，我整理了几张表来描述。
186 | 
187 | | map_name         | map_size                      | key                                    | value                                 | value_size | Memory Attribution |
188 | | ---------------- | ----------------------------- | -------------------------------------- | ------------------------------------- | ---------- | ------------------ |
189 | | techs_map        | techs * 8                     | tech_id                                | module_counts, modules_map            | 8 bytes    | Read Only          |
190 | | modules_map      | module_counts * 0x11 * 2      | (mod_id * 0x11+type_id) * 2            | types_map_id                          | 2 bytes    | Read Only          |
191 | | types_map        | types_map_ids * 0x20          | types_map_id * 0x20 +(op_type_id&0x1e) | tech_mod_type_seq                     | 2 bytes    | Read/Write         |
192 | | umids_map        | umid_seq_id * 0x8             | 8 * (tech_mod_type_seq+op_id)          | umid, next_umid_seq_id,msgr_client_id | 8 bytes    | Read/Write         |
193 | | msgr_clients_map | 0x34*total_msgr_client_counts | msgr_client_seq_id                     | msgr_client_desc                      | 0x34       | Read/Write         |
194 | 
195 | ```
196 | struct msgr_client_desc{ //全局msgr_client结构描述
197 |     uint32 umids_registered;
198 |     uint16 msgr_client_reg_type;//1 ->msgrq_sig type,2-> rexq_sig
199 |     uint16 tech_mod_id;//
200 |     union *msg_sig_p{ //offset 0x10
201 |         struct msgrq_sig *msgq_p;//msgr reg type 1,4G及以后使用的mailbox消息传递系统
202 |         struct rexq_sig *rexq_p;//msgr reg type 2,兼容2G/3G时代使用的Rex IPC消息传递系统
203 |     }
204 |     struct msgrq *msgrq_p;//offset 0x14 ,if reg type 1    
205 |     struct msgr_client_obj *msgr_client_obj_ptr;//offset 0x30
206 |     
207 | }
208 | 
209 | struct msgr_client_obj{//msgr_client结构体
210 |      unsigned int msgr_client_reg_type;//1-> msgrq aka mailbox,2->rex_q,接受消息的方式
211 |      unsigned int register_umid_counts;//offset 8 ,消息接受器注册的umid的总数
212 |      unsigned int total_reged_recv_signal_counts;//offset 0x0c,注册的接受消息的signal的个数
213 |      union sig_recv_obj{
214 |        msgrq_sig  *msgrq_signal_obj;// offset 0x10 msgrq_sig type,4/5G未来的主流类型
215 |        rexq_sig *rex_signal_obj;//offset 0x10  rexq_sig type ,这个主要是为了兼容之前2/3G的系统的数据结构
216 |      }     
217 |      unsigned int task_recv_signal_set_mask;//offset 0x14 ,注册的接受消息的signal号的掩码
218 |      uint32 err_counts;//offset 0x18
219 |      unsigned int recvd_signal_id;//offset 0x1c,当前接受到的signal id,msgr_client_reg_type为1
220 |      struct msgrq *recvd_msgrq_ptr;//offset 0x20,当前接受消息承载的msgrq对象,msgr_client_reg_type为1
221 |      struct msgrq *msgrq_first_entry;// offset 0x24,接受msgrq消息链表结构指针,msgr_client_reg_type为1
222 |      unsigned int total_msgrq_counts;//offset 0x28, 可以接受msgrq消息的总数,通过可以task_recv_signal_set_mask来确定,msgr_client_reg_type为1
223 |  }
224 |  
225 |  struct msgrq_sig{
226 |     uint32 sig_ready_flag;//must be 1
227 |     struct sig_def{
228 |         uint32 signal_id_for_recv;//offset 8
229 |         uint32 signal_reged_wait_mask;//offset 0xc
230 |         void * kernel_msg_queue;
231 |         unsigned int attribute;
232 |     };
233 |     
234 |     
235 |  }
236 |  struct rexq_sig{ //size 0x1c, 兼容2/3G系统的数据结构
237 |      utcb *msgr_client_utcb_ptr;//offset 0  任务接受消息使用的utcb标识
238 |      uint32 msgr_client_signal_id;//offset 4 接受消息使用的signal id
239 |      msg_queue *msgr_out_msg_q;//offset 0x8
240 |      msg_queue *rex_msg_in_q;//offset 0xc
241 |      uint16 msg_data_q_used_size;//offset 0x10
242 |      uint16 rexq_id;//offset 0x12
243 |      uint16 msg_data_q_size;//offset 0x14
244 |  }
245 |   struct msg_data_q{
246 |          struct msg_data_q *prev_q;
247 |          struct msg_data_q *next_q;
248 |          char data[msg_data_q_size-8];
249 |      }
250 |  struct msg_queue{
251 |     struct msg_data_q *headp;
252 |     struct msg_data_q *tailp;
253 |     uint32 total_q_counts;
254 |  }
255 |  
256 |  struct msgrq{
257 |  	void *msg_recv_buf_header;//offset 0
258 |  	void *msg_recv_end_buf;//offset 4
259 |     char msgrq_name[16];//offset 0x10
260 |     int msgrq_recvd_seq;//ofset 0x18
261 |     unsigned int reged_recv_signal_id_mask;//offset 0x1c,可供接受消息signal的掩码
262 |     void *msgr_buf_remain_ptr;//offset 0x20,可供接受消息的剩余空间起始地址
263 |     void *msgr_recv_buf;//offset 0x24,当前接受到消息的buf地址
264 |     uint32 msgr_buf_remain_size;//offset 0x28
265 |     unsigned int total_msg_recv_buf_size;//offset 0x30
266 |     int8 is_buf_in_use;//offset 0x70 ,0-> in use, 1-> not in use
267 |     uint32 recvd_msg_blocks;//offset 0x58 ,收到的消息次数总和
268 |     struct msgrq *next_msgrq;//offset 0x74
269 |  }
270 | ```
271 | 
272 | 为了更方便的理解上述的数据结构的关系与操作算法，画了一张简单的图来加深该消息系统的理解。
273 | 通过以上算法和数据结构，可以很方便的完成UMID与tech_mod_id的消息路由的注册，消息发送等操作。
274 | 
275 | ![image-20210322162235900](https://github.com/vessial/baseband/blob/master/image-20210322162235900.png)
276 | 
277 | 需要说明的一点就是一个tech_mod_id可能会关联多个msgr_client，所以msgr_client_id就成了消息传递的唯一标识，通过msgr_client_id得到全局的msgr_client_desc的结构定义，该结构体里面包含接受消息的任务utcb和接受消息的signal id，这里通过tech_mod_id 0xf19对应的MM（Mobility Management）任务进行举例。
278 | 
279 | ![image-20210325161755813](https://github.com/vessial/baseband/blob/master/image-20210325161755813.png)
280 | 
281 | 我在一个实时运行的MDM9607系统上面，描绘出所有UMID和tech_mod_id之间的消息路由情况，由于实在太大，
282 | 可以在https://github.com/vessial/baseband/blob/master/umid_pro.svg 进行查看。
283 | 
284 | ### 消息状态机（State Machine）
285 | 
286 | 高通基带系统里面的消息状态机，是实现3GPP定义功能最重要的组成部分，消息状态机在移动通信系统里面扮演着非常重要的角色，也是多模移动通信系统的核心，3GPP在定义的多个移动通信技术的分层协议栈时，不同的通信技术模式之间切换，会通过状态机来维护相应的分层逻辑的状态和可操作功能，接下来将重要介绍高通基带系统使用的状态机数据结构以及相关算法，本文将研究主要流4G LTE和5G NR系统上使用的第二代状态机消息系统，老的第一代状态机系统不在这里介绍了。
287 | 
288 | ```
289 | struct sm_state_instance{ //eg ,size 0x1c
290 | 	struct sm_obj *sm;//状态机对象定义
291 | 	unsigned int current_state_id;//状态机当前所处的状态id
292 |     unsigned int recvd_umid_in_sm_entity_seq;//offset 8, 状态机当前收到的umid所在状态机umid列表中的序列号
293 |     unsigned int instance_id;// 状态机实例编号
294 | 	uint8 sm_state_lock;//offset 0x11 0->state unlock,1-> state lock 状态机锁的状态
295 | 	void *stm_idle_buf;//offset 0x14 状态机操作可能需要的buf空间
296 | 	unsigned int debug_code;//offset 0x18 状态机调试码
297 | 
298 | }
299 | struct sm_obj{ //状态机的定义结构
300 | 	struct msgr_stm_obj *stm;
301 | 	unsigned char *stm_obj_name; //状态机的名称，例如LTE_RRC_SIB_SM
302 | 	unsigned int stm_obj_name_hash; //状态机名称的hash值
303 | 	unsigned int stm_inst_id;//stm instance id ，状态机的实例编号，状态机可能存在多个实例，通过这个编号来区别不同的状态机实体
304 | }
305 | struct msgr_stm_obj {
306 | 	int instance_counts; //该状态机支持的实例个数
307 | 	int state_cnts; //该状态机的状态数量
308 | 	struct state_status_def *state_def;//状态机每个不同状态的定义的数据结构,size state_cnts*0x10
309 | 	int umid_cnts;//状态机注册的可接受umid总数
310 | 	struct umid_msg_list *umid_msg_def;//存储umid和umid描述信息的指针,size umid_cnts*8
311 | 	
312 | 	struct umid_msg_states_func_cb_list *umid_in_state_cb;//存储着所有umid对应每个状态的回调操作函数
313 | 	void *cb_func1;// stm enter //offset 0x18 ,进入该状态机的回调函数
314 | 	void *cb_func2;// stm exit  //offset 0x1c ,退出该状态机的回调函数
315 | 	void *cb_func3;// stm error //offset 0x20 ,状态机出错的回调函数
316 | 	void *cb_func4; //stm debug //offset  0x24 ,状态机调试的回调函数
317 | 	unsigned int  init_state_id; // default 0 ,状态机初始默认状态id
318 | 
319 | }
320 | struct umid_msg_states_func_cb_list {//状态机在接受到相应的umid后的原语操作回调函数
321 | 	    void *umid_msg_in_states_1_cb_list[umid_cnts];
322 | 	    void *umid_msg_in_states_2_cb_list[umid_cnts];
323 | 	    void *umid_msg_in_states_3_cb_list[umid_cnts];
324 | 	    ...
325 | 	    void *umid_msg_in_states_state_cnts_cb_list[umid_cnts];
326 | 	}
327 | struct state_status_def{//每个状态的定义
328 | 	unsigned char *state_name; //状态名称，eg,active/inactive etc
329 | 	void *cb_func1; //state enter //状态机进入该状态的回调函数
330 | 	void *cb_func2; //state exit  //状态机退出该状态的回调函数
331 | 	void *cb_func3; //state debug ?//可能是调试函数
332 | }
333 | 
334 | struct umid_msg_list{//状态机可接受的umid消息定义
335 | 	unsigned char *umid_msg_name; //umid对应的描述名称
336 | 	unsigned int umid;            //umid
337 | }
338 | 
339 | 关键API描述
340 | stm_instance_activate(struct sm_state_instance *sm_st_inst,uint32 inst_id,uint32 initial_state_id);//初始化状态机实例
341 | stm_instance_process_input(uint32 state_id,struct sm_state_instance *sm_st_inst,uint32 sm_inst_id,uint32 umid_input,void *stm_payload_ptr);//对状态机接受到的umid和数据进行原语操作
342 | ```
343 | 
344 | 我从MDM9607固件里面提取的详细的状态机信息可以在https://github.com/vessial/baseband/blob/master/lte_sm.log 进行查看。
345 | 
346 | 3GPP定义的L3层的RRC(Radio Resource Control)的状态机是最为复杂的，高通在实现4G LTE的RRC时使用了大量的状态机进行功能管理。
347 | MDM9607 4G LTE RRC状态机类型如下:
348 | 
349 | state name: LTE_RRC_CSG_ASF_SM  
350 | state name: LTE_RRC_DT_SM       //  
351 | state name: LTE_RRC_IRAT_TO_G_MGR_SM  
352 | state name: LTE_RRC_LLC_SM  
353 | state name: LTE_RRC_CAPABILITIES_SM  
354 | state name: LTE_RRC_IRAT_FROM_1X_MGR_SM  
355 | state name: LTE_RRC_SEC_SM //sim认证和密钥协商管理相关的状态机  
356 | state name: LTE_RRC_CRP_SM  
357 | state name: LTE_RRC_IRAT_FROM_DO_MGR_SM //负责从CDMA-EVDO切换到LTE的管理状态机  
358 | state name: LTE_RRC_IRAT_FROM_TDS_MGR_SM //负责从TDSCDMA切换到LTE的状态机  
359 | state name: LTE_RRC_PAGING_SM //寻呼管理的状态机  
360 | state name: LTE_RRC_CONFIG_SM  
361 | state name: LTE_RRC_MISC_SM  
362 | state name: LTE_RRC_MEAS_SM  
363 | state name: LTE_RRC_CEP_SM  
364 | state name: LTE_RRC_IRAT_TO_1X_MGR_SM  
365 | state name: LTE_RRC_IRAT_FROM_W_MGR_SM  
366 | state name: LTE_RRC_MDT_SM  
367 | state name: LTE_RRC_IRAT_TO_DO_MGR_SM  
368 | state name: LTE_RRC_CONTROLLER_SM  //关键的LTE的控制状态机，控制服务的停止和开启  
369 | state name: LTE_RRC_IRAT_TO_TDS_MGR_SM  
370 | state name: LTE_RRC_IRAT_TO_W_MGR_SM  //从LTE切换到WCDMA的管理状态机  
371 | state name: LTE_RRC_EMP_SM  
372 | state name: LTE_RRC_MH_SM   
373 | state name: LTE_RRC_UEINFO_SM  //UE信息管理的状态机  
374 | state name: LTE_RRC_SIB_SM     //系统信息块的管理状态机  
375 | state name: LTE_RRC_PLMN_SEARCH_SM  //搜索网络使用的状态机  
376 | state name: LTE_RRC_IRAT_FROM_G_MGR_SM  //从GSM切换到LTE的状态机  
377 | state name: LTE_RRC_CSP_SM  //cell search plmn状态机  
378 | state name: LTE_RRC_ESMGR_SM // EMBMS管理状态机  
379 | state name: LTE_RRC_CRE_SM  
380 | 
381 | 我们拿LTE_RRC_PAGING_SM状态机定义作例子与之对应的数据结构作解析
382 | 
383 | ```
384 | LTE_RRC_PAGING_SM addr 0xd10b35e0
385 |      state machine name: LTE_RRC_PAGING_SM inst_cnts 1 total states 3  total umid 10
386 |      state name: INITIAL state enter 0xd0b923a8 state exit 0xd0b923c8 state debug 0x0
387 |      state name: IDLE_CAMPED state enter 0xd0b923e0 state exit 0xd0b92400 state debug 0x0
388 |      state name: CONNECTED state enter 0xd0b92418 state exit 0xd0b92450 state debug 0x0
389 | 0x040d140c   LTE_RRC_CAMPED_INDI
390 | 0x040d0207   LTE_RRC_DRX_INFO_REQ
391 | 0x040d0206   LTE_RRC_SIM_UPDATE_REQ
392 | 0x040d0401   LTE_RRC_SERVICE_IND
393 | 0x040d0710   LTE_RRC_PAGING_DLM
394 | 0x040d1405   LTE_RRC_CONNECTED_INDI
395 | 0x040d022a   LTE_RRC_MTC_CFG_REQ
396 | 0x040d1400   LTE_RRC_STOPPED_INDI
397 | 0x040d140b   LTE_RRC_NOT_CAMPED_INDI
398 | 0x040d1402   LTE_RRC_SIB_UPDATED_INDI
399 | ```
400 | 下图为MDM9607 4G LTE_RRC的状态机图谱
401 | <img src="https://github.com/vessial/baseband/raw/master/sm.svg">
402 | 
403 | #### 状态机操作实例
404 | 
405 | 为了更直观的理解消息状态机的操作过程，我这里提供了一个例子来展示消息传递过程以及状态机的处理过程，这个过程是在基带处于IDLE状态下，没有接入任何移动通信网络，到基带一次接入4G LTE网络到SIM认证的过程，这里只提供RRC的状态机的处理过程。
406 | 
407 | | 发送端            | 接受端  | 接受UMID号 | 处理状态机                   | 描述信息                                   |                                            |
408 | | ----------------- | ------- | ---------- | ---------------------------- | ------------------------------------------ | ------------------------------------------ |
409 | | 0xF19 emm         | LTE_RRC | 0x40d0204  | LTE_RRC_CSP_SM               | LTE_RRC_SERVICE_REQ                        |                                            |
410 | | 0xF19 emm         | LTE_RRC | 0x40d0204  | LTE_RRC_IRAT_FROM_W_MGR_SM   | LTE_RRC_SERVICE_REQ                        |                                            |
411 | | 0xF19 emm         | LTE_RRC | 0x40d0204  | LTE_RRC_IRAT_FROM_G_MGR_SM   | LTE_RRC_SERVICE_REQ                        |                                            |
412 | | 0xF19 emm         | LTE_RRC | 0x40d0204  | LTE_RRC_IRAT_FROM_TDS_MGR_SM | LTE_RRC_SERVICE_REQ                        |                                            |
413 | | 0x40d LTE_RRC     | LTE_RRC | 0x40d1442  | LTE_RRC_MEAS_SM              | LTE_RRC_CLEAR_DEPRI_FREQ_INDI              |                                            |
414 | | 0x40d LTE_RRC     | LTE_RRC | 0x40d120d  | LTE_RRC_CONTROLLER_SM        | LTE_RRC_MODE_CHANGE_REQI                   |                                            |
415 | | 0x40f LTE_MAC     | LTE_RRC | 0x40f0803  | LTE_RRC_CONTROLLER_SM        | LTE_MAC_START_CNF                          |                                            |
416 | | 0x412 LTE_RLCUL   | LTE_RRC | 0x4120801  | LTE_RRC_CONTROLLER_SM        | LTE_RLCUL_START_CNF                        |                                            |
417 | | 0x411 LTE_RLCDL   | LTE_RRC | 0x4110801  | LTE_RRC_CONTROLLER_SM        | LTE_RLCDL_START_CNF                        |                                            |
418 | | 0x413 LTE_PDCPDL  | LTE_RRC | 0x4130806  | LTE_RRC_CONTROLLER_SM        | LTE_PDCPDL_START_CNF                       |                                            |
419 | | 0x414 LTE_PDCPUL  | LTE_RRC | 0x4140807  | LTE_RRC_CONTROLLER_SM        | LTE_PDCPUL_START_CNF                       |                                            |
420 | | 0x40c LTE_ML1_MGR | LTE_RRC | 0x40c0801  | LTE_RRC_CONTROLLER_SM        | LTE_CPHY_START_CNF                         |                                            |
421 | | 0x40d LTE_RRC     | LTE_RRC | 0x40d1513  | LTE_RRC_CSP_SM               | LTE_RRC_MODE_CHANGE_CNFI                   |                                            |
422 | | 0x40d LTE_RRC     | LTE_RRC | 0x40d1206  | LTE_RRC_LLC_SM               | LTE_RRC_CFG_REQI                           |                                            |
423 | | 0x40c LTE_ML1_MGR | LTE_RRC | 0x40c0809  | LTE_RRC_CSP_SM               | LTE_CPHY_SYSTEM_SCAN_CNF                   |                                            |
424 | | 0x40d LTE_RRC     | LTE_RRC | 0x40d1206  | LTE_RRC_LLC_SM               | LTE_RRC_CFG_REQI                           |                                            |
425 | | 0x40c LTE_ML1_MGR | LTE_RRC | 0x40c0800  | LTE_RRC_CSP_SM               | LTE_CPHY_ACQ_CNF                           |                                            |
426 | | 0x40d LTE_RRC     | LTE_RRC | 0x40d1202  | LTE_RRC_SIB_SM               | LTE_RRC_GET_SIBS_REQI                      |                                            |
427 | | 0x403 LTE_ML1_DLM | LTE_RRC | 0x40c0402  | LTE_RRC_SIB_SM               | LTE_CPHY_MIB_IND                           |                                            |
428 | | 0x40F LTE_MAC     | LTE_RRC | 0x40f0406  | LTE_RRC_SIB_SM               | LTE_MAC_RRC_BCCH_DL_DATA_IND               | BCCH DL SCH SIB1                           |
429 | | 0x40c LTE_ML1_MGR | LTE_RRC | 0x40c0823  | LTE_RRC_SIB_SM               | LTE_CPHY_TDD_CFG_CNF                       |                                            |
430 | | 0x40F LTE_MAC     | LTE_RRC | 0x40f0406  | LTE_RRC_SIB_SM               | LTE_MAC_RRC_BCCH_DL_DATA_IND               | BCCH DL SCH SI                             |
431 | | 0x40d LTE_RRC     | LTE_RRC | 0x40d1514  | LTE_RRC_CSP_SM               | LTE_RRC_GET_SIBS_CNFI                      |                                            |
432 | | 0x40F LTE_MAC     | LTE_RRC | 0x40f0406  | LTE_RRC_SIB_SM               | LTE_MAC_RRC_BCCH_DL_DATA_IND               | BCCH DL SCH SIB1                           |
433 | | 0x40c LTE_ML1_MGR | LTE_RRC | 0x40c080a  | LTE_RRC_CSP_SM               | LTE_CPHY_CELL_SELECT_CNF                   |                                            |
434 | | 0x40d LTE_RRC     | LTE_RRC | 0x40d1206  | LTE_RRC_LLC_SM               | LTE_RRC_CFG_REQI                           |                                            |
435 | | 0x40c LTE_ML1_MGR | LTE_RRC | 0x40c0804  | LTE_RRC_LLC_SM               | LTE_CPHY_COMMON_CFG_CNF                    |                                            |
436 | | 0x40c LTE_ML1_MGR | LTE_RRC | 0x40c0805  | LTE_RRC_LLC_SM               | LTE_CPHY_DEDICATED_CFG_CNF                 |                                            |
437 | | 0x40f LTE_MAC     | LTE_RRC | 0x40f0801  | LTE_RRC_LLC_SM               | LTE_MAC_CFG_CNF                            |                                            |
438 | | 0x40d LTE_RRC     | LTE_RRC | 0x40d1516  | LTE_RRC_CSP_SM               | LTE_RRC_CFG_CNFI                           |                                            |
439 | | 0x40d LTE_RRC     | LTE_RRC | 0x40d140c  | LTE_RRC_SIB_SM               | LTE_RRC_CAMPED_INDI                        | inactive                                   |
440 | | 0x40d LTE_RRC     | LTE_RRC | 0x40d140c  | LTE_RRC_SIB_SM               | LTE_RRC_CAMPED_INDI                        | active                                     |
441 | | 0x40d LTE_RRC     | LTE_RRC | 0x40d140c  | LTE_RRC_MEAS_SM              | LTE_RRC_CAMPED_INDI                        |                                            |
442 | | 0x40d LTE_RRC     | LTE_RRC | 0x40d140c  | LTE_RRC_CAPABILITIES_SM      | LTE_RRC_CAMPED_INDI                        |                                            |
443 | | 0x40d LTE_RRC     | LTE_RRC | 0x40d140c  | LTE_RRC_CEP_SM               | LTE_RRC_CAMPED_INDI                        |                                            |
444 | | 0x40d LTE_RRC     | LTE_RRC | 0x40d140c  | LTE_RRC_MISC_SM              | LTE_RRC_CAMPED_INDI                        |                                            |
445 | | 0x40d LTE_RRC     | LTE_RRC | 0x40d1516  | LTE_RRC_CONTROLLER_SM        | LTE_RRC_CFG_CNFI                           |                                            |
446 | | 0x40d LTE_RRC     | LTE_RRC | 0x40d1402  | LTE_RRC_CSP_SM               | LTE_RRC_SIB_UPDATED_INDI                   |                                            |
447 | | 0x40d LTE_RRC     | LTE_RRC | 0x40d1402  | LTE_RRC_CEP_SM               | LTE_RRC_SIB_UPDATED_INDI                   |                                            |
448 | | 0x40d LTE_RRC     | LTE_RRC | 0x40d1402  | LTE_RRC_PAGING_SM            | LTE_RRC_SIB_UPDATED_INDI                   |                                            |
449 | | 0x40d LTE_RRC     | LTE_RRC | 0x40d1402  | LTE_RRC_MEAS_SM              | LTE_RRC_SIB_UPDATED_INDI                   |                                            |
450 | | 0x40d LTE_RRC     | LTE_RRC | 0x40d1402  | LTE_RRC_CSG_ASF_SM           | LTE_RRC_SIB_UPDATED_INDI                   |                                            |
451 | | 0x40d LTE_RRC     | LTE_RRC | 0x40d1402  | LTE_RRC_IRAT_TO_G_MGR_SM     | LTE_RRC_SIB_UPDATED_INDI                   |                                            |
452 | | 0x40d LTE_RRC     | LTE_RRC | 0x40d1402  | LTE_RRC_IRAT_TO_TDS_MGR_SM   | LTE_RRC_SIB_UPDATED_INDI                   |                                            |
453 | | 0x40d LTE_RRC     | LTE_RRC | 0x40D0401  | LTE_RRC_CSG_ASF_SM           | LTE_RRC_SERVICE_IND                        |                                            |
454 | | 0x40d LTE_RRC     | LTE_RRC | 0x40D0401  | LTE_RRC_PAGING_SM            | LTE_RRC_SERVICE_IND                        |                                            |
455 | | 0x40c LTE_ML1_MGR | LTE_RRC | 0x40c0815  | LTE_RRC_MEAS_SM              | LTE_CPHY_IDLE_MEAS_CFG_CNF                 |                                            |
456 | | 0x40d LTE_RRC     | LTE_RRC | 0x40d0225  | LTE_RRC_CSP_SM               | LTE_RRC_AVOIDANCE_REQ                      |                                            |
457 | | 0x40F LTE_MAC     | LTE_RRC | 0x40f0406  | LTE_RRC_SIB_SM               | LTE_MAC_RRC_BCCH_DL_DATA_IND               | SI                                         |
458 | | 0x40d LTE_RRC     | LTE_RRC | 0x40d1437  | LTE_RRC_CSP_SM               | LTE_RRC_INTERFREQ_LIST_UPDATE_INDI         |                                            |
459 | | 0xf19 EMM         | LTE_RRC | 0x40d0200  | LTE_RRC_CEP_SM               | LTE_RRC_CONN_EST_REQ                       | Attach Request NAS msg                     |
460 | | 0x40d LTE_RRC     | LTE_RRC | 0x40D1404  | LTE_RRC_CONTROLLER_SM        | LTE_RRC_CONN_ESTABLISHMENT_STARTED_INDI    | RRC Connection Request                     |
461 | | 0x40d LTE_RRC     | LTE_RRC | 0x40D143d  | LTE_RRC_CONTROLLER_SM        | LTE_RRC_TRM_PRIORITY_CHANGE_INDI           |                                            |
462 | | 0xF19 EMM         | LTE_RRC | 0x40d0206  | LTE_RRC_CONTROLLER_SM        | LTE_RRC_SIM_UPDATE_REQ                     |                                            |
463 | | 0xF19 EMM         | LTE_RRC | 0x40d0206  | LTE_RRC_PAGING_SM            | LTE_RRC_SIM_UPDATE_REQ                     |                                            |
464 | | 0xF19 EMM         | LTE_RRC | 0x40d0206  | LTE_RRC_SEC_SM               | LTE_RRC_SIM_UPDATE_REQ                     | SIM Update Req received from NAS           |
465 | | 0xF19 EMM         | LTE_RRC | 0x40d0206  | LTE_RRC_CAPABILITIES_SM      | LTE_RRC_SIM_UPDATE_REQ                     |                                            |
466 | | 0x404 LTE_ML1_ULM | LTE_RRC | 0x40c0421  | LTE_RRC_CEP_SM               | LTE_CPHY_RACH_MSG1_SCHED_IND               | LTE MAC RACH Attempt                       |
467 | | 0x40f LTE_MAC     | LTE_RRC | 0x40f0800  | LTE_RRC_CEP_SM               | LTE_MAC_ACCESS_CNF                         |                                            |
468 | | 0x40f LTE_MAC     | LTE_RRC | 0x40f0405  | LTE_RRC_MH_SM                | LTE_MAC_RRC_CCCH_DL_DATA_IND               | CCCH RRC Connection Setup                  |
469 | | 0x40d LTE_RRC     | LTE_RRC | 0x40d0703  | LTE_RRC_CEP_SM               | LTE_RRC_RRC_CONNECTION_SETUP_DLM           | CCCH RRC Connection Setup                  |
470 | | 0x40d LTE_RRC     | LTE_RRC | 0x40d1206  | LTE_RRC_LLC_SM               | LTE_RRC_CFG_REQI                           |                                            |
471 | | 0x40d LTE_RRC     | LTE_RRC | 0x40D1408  | LTE_RRC_CSP_SM               | LTE_RRC_PROCEED_WITH_RESEL_INDI            |                                            |
472 | | 0x411 LTE_RLCDL   | LTE_RRC | 0x4110800  | LTE_RRC_LLC_SM               | LTE_RLCDL_CFG_CNF                          |                                            |
473 | | 0x412 LTE_RLCUL   | LTE_RRC | 0x4120800  | LTE_RRC_LLC_SM               | LTE_RLCUL_CFG_CNF                          |                                            |
474 | | 0x413 LTE_PDCPDL  | LTE_RRC | 0x4130800  | LTE_RRC_LLC_SM               | LTE_PDCPDL_CFG_CNF                         |                                            |
475 | | 0x414 LTE_PDCPUL  | LTE_RRC | 0x4140800  | LTE_RRC_LLC_SM               | LTE_PDCPUL_CFG_CNF                         |                                            |
476 | | 0x40d LTE_RRC     | LTE_RRC | 0x40d1516  | LTE_RRC_CEP_SM               | LTE_RRC_CFG_CNFI                           |                                            |
477 | | 0x40d LTE_RRC     | LTE_RRC | 0x40d1200  | LTE_RRC_MH_SM                | LTE_RRC_SEND_UL_MSG_REQI                   |                                            |
478 | | 0x40d LTE_RRC     | LTE_RRC | 0x40d1405  | LTE_RRC_SIB_SM               | LTE_RRC_CONNECTED_INDI                     |                                            |
479 | |                   |         |            |                              |                                            |                                            |
480 | | 0x414 LTE_PDCPUL  | LTE_RRC | 0x4140802  | LTE_RRC_MH_SM                | LTE_PDCPUL_SDU_CNF                         |                                            |
481 | | 0x40d LTE_RRC     | LTE_RRC | 0x40d1504  | LTE_RRC_CEP_SM               | LTE_RRC_RRC_CONNECTION_SETUP_COMPLETE_CNFI | UL_DCCH RRC connection Setup Complete      |
482 | | 0x413 LTE_PDCPDL  | LTE_RRC | 0x4130400  | LTE_RRC_MH_SM                | LTE_PDCPDL_SDU_IND                         | DL_DCCH info Transfer                      |
483 | | 0x40d LTE_RRC     | LTE_RRC | 0x40d0705  | LTE_RRC_DT_SM                | LTE_RRC_DL_INFORMATION_TRANSFER_DLM        | DL_DCCH Auth Request Msg recvd             |
484 | | 0x40d LTE_RRC     | LTE_RRC | 0x40d141f  | LTE_RRC_MH_SM                | LTE_RRC_DLM_PROCESSED_INDI                 |                                            |
485 | | 0xF19 EMM         | LTE_RRC | 0x40d0201  | LTE_RRC_DT_SM                | LTE_RRC_UL_DATA_REQ                        | send Auth Resp data                        |
486 | | 0x40d LTE_RRC     | LTE_RRC | 0x40d1200  | LTE_RRC_MH_SM                | LTE_RRC_SEND_UL_MSG_REQI                   | UL_DCCH ULinfo Transfer send NAS Auth resp |
487 | | 0x414 LTE_PDCPUL  | LTE_RRC | 0x4140802  | LTE_RRC_MH_SM                | LTE_PDCPUL_SDU_CNF                         |                                            |
488 | | 0x40d LTE_RRC     | LTE_RRC | 0x40d1509  | LTE_RRC_DT_SM                | LTE_RRC_UL_INFORMATION_TRANSFER_CNFI       |                                            |
489 | 
490 | 
491 | 
492 | DL_DCCH的Information Transfer字段里面包含了来自MME发送过来的认证请求数据(LTE NAS EMM信令消息id 0x52)，包含有nas key set id, 
493 | 16个字节的认证随机数据auth_param rand，以及16个字节的auth param AUTN数据，SIM卡通过收到的这两个关键信息进行认证，
494 | 并计算生成Auth_resp发送给MME进行比较完成本地端和服务器端的认证，本地端计算如下。  
495 | 
496 | 本地端收到的rand(16bytes)+AUTN(16bytes)  
497 | K为sim卡和MME都持有的sim卡的唯一隐私数据，sim卡端只有sim卡芯片可以读取。  
498 | 
499 | SIM卡端密钥派生认证过程，f1/2/3/4/5为sim卡的计算功能函数  
500 | 
501 | AK=f5(K,rand)  
502 | IK=f4(K,rand)  
503 | CK=f3(K,rand)  
504 | RES=f2(K,rand) //计算给MME进行认证SIM卡的数据  
505 | 
506 | SQN=AUTN^AK  (6bytes)  
507 | AMF=AUTN[6:8]  
508 | 
509 | MAC=f1(K,SQN,rand,AMF)  
510 | 
511 | SIM卡端认证MME端过程  
512 | sim_autn=SQN^AK(6bytes)+AMF(2bytes)+MAC(8bytes)  
513 | 比较MME发过来的AUTN和sim_autn ，相等则认为MME合法。  
514 | 
515 | 基带把sim卡计算得到的RES通过LTE NAS EMM 信令消息号0x53包裹到UL_DCCH的InformationTransfer字段里面发给基站进而到MME进行认证。
516 | 
517 | MME认证SIM卡的过程就比较简单了， 
518 | MME端计算XRES=f2(K,rand)，然后比较收到的RES，相等表示MME认证SIM卡成功，至此认证完成。
519 | 由于上述操作涉及EMM和RRC之间的交互过程比较复杂，这里只是简单提一下，EMM的状态机会在下一篇文章里面单独详细介绍。 
520 | 
521 | ## 结语
522 | 
523 | 由于从全球公开的信息渠道中并不能获取高通基带系统的深入信息，所以花费1年多的时间通过对底层操作系统和上层3GPP实现的业务系统进行深度逆向工程，这篇文章只是系统性的介绍了高通4/5G基带系统的消息机制和消息状态机，我认为这是一个关键的架构设计，梳理清楚其消息架构对于理解3GPP实现的消息原语操作以及对移动通信技术的多模分层设计有非常大的帮助，该消息系统架构设计具有非常好的扩展性，可以很灵活的增加新的功能到该消息框架中去，可以很好的减少系统测试成本，有很多设计理念值得学习和借鉴，由于现今高通5G基带所支持的UMID操作数高达2万多个，所以这里的展示的例子只是揭示了状态机功能操作的冰山一角，后续会持续研究对于状态机安全漏洞的挖掘研究，实现高效的5G安全测试体系，通过对基带系统的深刻认知，可以更好的对基站系统和核心网系统进行安全评估。
524 | 
525 | 最后行文仓促，如有错误，欢迎反馈指正，预告下一章节将会介绍高通基带系统的A2/IPA硬件IP加速功能模块。
526 | 


--------------------------------------------------------------------------------
/sm.svg:
--------------------------------------------------------------------------------
   1 | <?xml version="1.0" encoding="UTF-8" standalone="no"?>
   2 | <!DOCTYPE svg PUBLIC "-//W3C//DTD SVG 1.1//EN"
   3 |  "http://www.w3.org/Graphics/SVG/1.1/DTD/svg11.dtd">
   4 | <!-- Generated by graphviz version 2.38.0 (20140413.2041)
   5 |  -->
   6 | <!-- Title: sm Pages: 1 -->
   7 | <svg width="9044pt" height="11950pt"
   8 |  viewBox="0.00 0.00 9043.61 11950.10" xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink">
   9 | <g id="graph0" class="graph" transform="scale(1 1) rotate(0) translate(4 11946.1)">
  10 | <title>sm</title>
  11 | <polygon fill="white" stroke="none" points="-4,4 -4,-11946.1 9039.61,-11946.1 9039.61,4 -4,4"/>
  12 | <!-- LTE_RRC_CSG_ASF_SM -->
  13 | <g id="node1" class="node"><title>LTE_RRC_CSG_ASF_SM</title>
  14 | <polygon fill="none" stroke="blue" stroke-width="2" points="4924.09,-7839.48 4748.09,-7839.48 4748.09,-7803.48 4924.09,-7803.48 4924.09,-7839.48"/>
  15 | <text text-anchor="middle" x="4836.09" y="-7817.78" font-family="Times New Roman,serif" font-size="14.00">LTE_RRC_CSG_ASF_SM</text>
  16 | </g>
  17 | <!-- n0 -->
  18 | <g id="node3" class="node"><title>n0</title>
  19 | <ellipse fill="none" stroke="black" cx="9005.59" cy="-7821.48" rx="30.0436" ry="18"/>
  20 | <text text-anchor="middle" x="9005.59" y="-7818.98" font-family="Times New Roman,serif" font-size="10.00">INITIAL</text>
  21 | </g>
  22 | <!-- LTE_RRC_CSG_ASF_SM&#45;&gt;n0 -->
  23 | <g id="edge2" class="edge"><title>LTE_RRC_CSG_ASF_SM&#45;&gt;n0</title>
  24 | <path fill="none" stroke="black" d="M4924.14,-7821.48C5487.48,-7821.48 8575.52,-7821.48 8965.17,-7821.48"/>
  25 | <polygon fill="black" stroke="black" points="8965.4,-7824.98 8975.4,-7821.48 8965.4,-7817.98 8965.4,-7824.98"/>
  26 | </g>
  27 | <!-- n1 -->
  28 | <g id="node4" class="node"><title>n1</title>
  29 | <ellipse fill="none" stroke="black" cx="7520.25" cy="-11012.1" rx="70.7794" ry="18"/>
  30 | <text text-anchor="middle" x="7520.25" y="-11009.6" font-family="Times New Roman,serif" font-size="10.00">WT_CSG_SEARCH_CNF</text>
  31 | </g>
  32 | <!-- LTE_RRC_CSG_ASF_SM&#45;&gt;n1 -->
  33 | <g id="edge3" class="edge"><title>LTE_RRC_CSG_ASF_SM&#45;&gt;n1</title>
  34 | <path fill="none" stroke="black" d="M4851.52,-7839.81C5057.3,-8084.42 7256.4,-10698.4 7498.62,-10986.4"/>
  35 | <polygon fill="black" stroke="black" points="7496.1,-10988.8 7505.21,-10994.2 7501.45,-10984.3 7496.1,-10988.8"/>
  36 | </g>
  37 | <!-- n2 -->
  38 | <g id="node5" class="node"><title>n2</title>
  39 | <ellipse fill="none" stroke="black" cx="4092.37" cy="-11924.1" rx="60.7649" ry="18"/>
  40 | <text text-anchor="middle" x="4092.37" y="-11921.6" font-family="Times New Roman,serif" font-size="10.00">WT_CELL_CHANGE</text>
  41 | </g>
  42 | <!-- LTE_RRC_CSG_ASF_SM&#45;&gt;n2 -->
  43 | <g id="edge4" class="edge"><title>LTE_RRC_CSG_ASF_SM&#45;&gt;n2</title>
  44 | <path fill="none" stroke="black" d="M4832.78,-7839.77C4781.84,-8120.76 4160.25,-11549.7 4097.47,-11895.9"/>
  45 | <polygon fill="black" stroke="black" points="4094.01,-11895.5 4095.67,-11905.9 4100.89,-11896.7 4094.01,-11895.5"/>
  46 | </g>
  47 | <!-- n3 -->
  48 | <g id="node6" class="node"><title>n3</title>
  49 | <ellipse fill="none" stroke="black" cx="1190.12" cy="-9844.24" rx="96.5815" ry="18"/>
  50 | <text text-anchor="middle" x="1190.12" y="-9841.74" font-family="Times New Roman,serif" font-size="10.00">WT_CONNECTED_CELL_CHANGE</text>
  51 | </g>
  52 | <!-- LTE_RRC_CSG_ASF_SM&#45;&gt;n3 -->
  53 | <g id="edge5" class="edge"><title>LTE_RRC_CSG_ASF_SM&#45;&gt;n3</title>
  54 | <path fill="none" stroke="black" d="M4803.46,-7839.58C4465.09,-8027.31 1601.8,-9615.84 1229.88,-9822.18"/>
  55 | <polygon fill="black" stroke="black" points="1228.12,-9819.16 1221.07,-9827.07 1231.51,-9825.28 1228.12,-9819.16"/>
  56 | </g>
  57 | <!-- LTE_RRC -->
  58 | <g id="node2" class="node"><title>LTE_RRC</title>
  59 | <ellipse fill="none" stroke="black" cx="3823.62" cy="-3776.78" rx="51.1914" ry="18"/>
  60 | <text text-anchor="middle" x="3823.62" y="-3773.08" font-family="Times New Roman,serif" font-size="14.00">LTE_RRC</text>
  61 | </g>
  62 | <!-- LTE_RRC&#45;&gt;LTE_RRC_CSG_ASF_SM -->
  63 | <g id="edge1" class="edge"><title>LTE_RRC&#45;&gt;LTE_RRC_CSG_ASF_SM</title>
  64 | <path fill="none" stroke="black" d="M3828.13,-3794.81C3897.44,-4071.69 4742.83,-7448.88 4829.01,-7793.19"/>
  65 | <polygon fill="black" stroke="black" points="4825.68,-7794.27 4831.5,-7803.12 4832.47,-7792.57 4825.68,-7794.27"/>
  66 | </g>
  67 | <!-- LTE_RRC_DT_SM -->
  68 | <g id="node7" class="node"><title>LTE_RRC_DT_SM</title>
  69 | <polygon fill="none" stroke="blue" stroke-width="2" points="4447.27,-7214.87 4314.27,-7214.87 4314.27,-7178.87 4447.27,-7178.87 4447.27,-7214.87"/>
  70 | <text text-anchor="middle" x="4380.77" y="-7193.17" font-family="Times New Roman,serif" font-size="14.00">LTE_RRC_DT_SM</text>
  71 | </g>
  72 | <!-- LTE_RRC&#45;&gt;LTE_RRC_DT_SM -->
  73 | <g id="edge6" class="edge"><title>LTE_RRC&#45;&gt;LTE_RRC_DT_SM</title>
  74 | <path fill="none" stroke="black" d="M3826.55,-3794.77C3867.53,-4046.36 4325.38,-6856.87 4376.2,-7168.79"/>
  75 | <polygon fill="black" stroke="black" points="4372.77,-7169.52 4377.83,-7178.83 4379.68,-7168.39 4372.77,-7169.52"/>
  76 | </g>
  77 | <!-- LTE_RRC_IRAT_TO_G_MGR_SM -->
  78 | <g id="node10" class="node"><title>LTE_RRC_IRAT_TO_G_MGR_SM</title>
  79 | <polygon fill="none" stroke="blue" stroke-width="2" points="3675.18,-7249.85 3443.18,-7249.85 3443.18,-7213.85 3675.18,-7213.85 3675.18,-7249.85"/>
  80 | <text text-anchor="middle" x="3559.18" y="-7228.15" font-family="Times New Roman,serif" font-size="14.00">LTE_RRC_IRAT_TO_G_MGR_SM</text>
  81 | </g>
  82 | <!-- LTE_RRC&#45;&gt;LTE_RRC_IRAT_TO_G_MGR_SM -->
  83 | <g id="edge9" class="edge"><title>LTE_RRC&#45;&gt;LTE_RRC_IRAT_TO_G_MGR_SM</title>
  84 | <path fill="none" stroke="black" d="M3822.23,-3794.96C3802.77,-4049.12 3585.47,-6888.37 3561.35,-7203.48"/>
  85 | <polygon fill="black" stroke="black" points="3557.85,-7203.38 3560.57,-7213.62 3564.83,-7203.92 3557.85,-7203.38"/>
  86 | </g>
  87 | <!-- LTE_RRC_LLC_SM -->
  88 | <g id="node23" class="node"><title>LTE_RRC_LLC_SM</title>
  89 | <polygon fill="none" stroke="blue" stroke-width="2" points="2727.8,-7057.96 2587.8,-7057.96 2587.8,-7021.96 2727.8,-7021.96 2727.8,-7057.96"/>
  90 | <text text-anchor="middle" x="2657.8" y="-7036.26" font-family="Times New Roman,serif" font-size="14.00">LTE_RRC_LLC_SM</text>
  91 | </g>
  92 | <!-- LTE_RRC&#45;&gt;LTE_RRC_LLC_SM -->
  93 | <g id="edge22" class="edge"><title>LTE_RRC&#45;&gt;LTE_RRC_LLC_SM</title>
  94 | <path fill="none" stroke="black" d="M3817.2,-3794.73C3729.79,-4039.42 2776.4,-6707.99 2667.85,-7011.83"/>
  95 | <polygon fill="black" stroke="black" points="2664.41,-7011.04 2664.34,-7021.64 2671,-7013.4 2664.41,-7011.04"/>
  96 | </g>
  97 | <!-- LTE_RRC_CAPABILITIES_SM -->
  98 | <g id="node29" class="node"><title>LTE_RRC_CAPABILITIES_SM</title>
  99 | <polygon fill="none" stroke="blue" stroke-width="2" points="2149.25,-6768.81 1941.25,-6768.81 1941.25,-6732.81 2149.25,-6732.81 2149.25,-6768.81"/>
 100 | <text text-anchor="middle" x="2045.25" y="-6747.11" font-family="Times New Roman,serif" font-size="14.00">LTE_RRC_CAPABILITIES_SM</text>
 101 | </g>
 102 | <!-- LTE_RRC&#45;&gt;LTE_RRC_CAPABILITIES_SM -->
 103 | <g id="edge28" class="edge"><title>LTE_RRC&#45;&gt;LTE_RRC_CAPABILITIES_SM</title>
 104 | <path fill="none" stroke="black" d="M3812.95,-3794.62C3674.39,-4026.34 2229.95,-6441.94 2061.29,-6723.98"/>
 105 | <polygon fill="black" stroke="black" points="2058.17,-6722.38 2056.04,-6732.76 2064.18,-6725.98 2058.17,-6722.38"/>
 106 | </g>
 107 | <!-- LTE_RRC_IRAT_FROM_1X_MGR_SM -->
 108 | <g id="node32" class="node"><title>LTE_RRC_IRAT_FROM_1X_MGR_SM</title>
 109 | <polygon fill="none" stroke="blue" stroke-width="2" points="1552.17,-6293.36 1293.17,-6293.36 1293.17,-6257.36 1552.17,-6257.36 1552.17,-6293.36"/>
 110 | <text text-anchor="middle" x="1422.67" y="-6271.66" font-family="Times New Roman,serif" font-size="14.00">LTE_RRC_IRAT_FROM_1X_MGR_SM</text>
 111 | </g>
 112 | <!-- LTE_RRC&#45;&gt;LTE_RRC_IRAT_FROM_1X_MGR_SM -->
 113 | <g id="edge31" class="edge"><title>LTE_RRC&#45;&gt;LTE_RRC_IRAT_FROM_1X_MGR_SM</title>
 114 | <path fill="none" stroke="black" d="M3807,-3794.07C3608.22,-4000.94 1688.22,-5999.01 1447.44,-6249.59"/>
 115 | <polygon fill="black" stroke="black" points="1444.6,-6247.5 1440.19,-6257.13 1449.64,-6252.35 1444.6,-6247.5"/>
 116 | </g>
 117 | <!-- LTE_RRC_SEC_SM -->
 118 | <g id="node40" class="node"><title>LTE_RRC_SEC_SM</title>
 119 | <polygon fill="none" stroke="blue" stroke-width="2" points="1028.64,-5743.98 888.644,-5743.98 888.644,-5707.98 1028.64,-5707.98 1028.64,-5743.98"/>
 120 | <text text-anchor="middle" x="958.644" y="-5722.28" font-family="Times New Roman,serif" font-size="14.00">LTE_RRC_SEC_SM</text>
 121 | </g>
 122 | <!-- LTE_RRC&#45;&gt;LTE_RRC_SEC_SM -->
 123 | <g id="edge39" class="edge"><title>LTE_RRC&#45;&gt;LTE_RRC_SEC_SM</title>
 124 | <path fill="none" stroke="black" d="M3799.71,-3793.05C3543.2,-3967.56 1302.92,-5491.75 993.928,-5701.97"/>
 125 | <polygon fill="black" stroke="black" points="991.652,-5699.29 985.353,-5707.81 995.59,-5705.07 991.652,-5699.29"/>
 126 | </g>
 127 | <!-- LTE_RRC_CRP_SM -->
 128 | <g id="node45" class="node"><title>LTE_RRC_CRP_SM</title>
 129 | <polygon fill="none" stroke="blue" stroke-width="2" points="712.607,-5166.73 570.607,-5166.73 570.607,-5130.73 712.607,-5130.73 712.607,-5166.73"/>
 130 | <text text-anchor="middle" x="641.607" y="-5145.03" font-family="Times New Roman,serif" font-size="14.00">LTE_RRC_CRP_SM</text>
 131 | </g>
 132 | <!-- LTE_RRC&#45;&gt;LTE_RRC_CRP_SM -->
 133 | <g id="edge44" class="edge"><title>LTE_RRC&#45;&gt;LTE_RRC_CRP_SM</title>
 134 | <path fill="none" stroke="black" d="M3791.09,-3790.81C3482.61,-3923.81 1075.76,-4961.54 692.868,-5126.63"/>
 135 | <polygon fill="black" stroke="black" points="691.219,-5123.53 683.422,-5130.7 693.991,-5129.96 691.219,-5123.53"/>
 136 | </g>
 137 | <!-- LTE_RRC_IRAT_FROM_DO_MGR_SM -->
 138 | <g id="node50" class="node"><title>LTE_RRC_IRAT_FROM_DO_MGR_SM</title>
 139 | <polygon fill="none" stroke="blue" stroke-width="2" points="536.431,-4360.49 273.431,-4360.49 273.431,-4324.49 536.431,-4324.49 536.431,-4360.49"/>
 140 | <text text-anchor="middle" x="404.931" y="-4338.79" font-family="Times New Roman,serif" font-size="14.00">LTE_RRC_IRAT_FROM_DO_MGR_SM</text>
 141 | </g>
 142 | <!-- LTE_RRC&#45;&gt;LTE_RRC_IRAT_FROM_DO_MGR_SM -->
 143 | <g id="edge49" class="edge"><title>LTE_RRC&#45;&gt;LTE_RRC_IRAT_FROM_DO_MGR_SM</title>
 144 | <path fill="none" stroke="black" d="M3776.91,-3784.51C3416.82,-3844.1 1081.27,-4230.57 524.128,-4322.76"/>
 145 | <polygon fill="black" stroke="black" points="523.36,-4319.34 514.065,-4324.43 524.503,-4326.25 523.36,-4319.34"/>
 146 | </g>
 147 | <!-- LTE_RRC_IRAT_FROM_TDS_MGR_SM -->
 148 | <g id="node58" class="node"><title>LTE_RRC_IRAT_FROM_TDS_MGR_SM</title>
 149 | <polygon fill="none" stroke="blue" stroke-width="2" points="509.603,-3455.38 240.603,-3455.38 240.603,-3419.38 509.603,-3419.38 509.603,-3455.38"/>
 150 | <text text-anchor="middle" x="375.103" y="-3433.68" font-family="Times New Roman,serif" font-size="14.00">LTE_RRC_IRAT_FROM_TDS_MGR_SM</text>
 151 | </g>
 152 | <!-- LTE_RRC&#45;&gt;LTE_RRC_IRAT_FROM_TDS_MGR_SM -->
 153 | <g id="edge57" class="edge"><title>LTE_RRC&#45;&gt;LTE_RRC_IRAT_FROM_TDS_MGR_SM</title>
 154 | <path fill="none" stroke="black" d="M3773.87,-3771.88C3407.19,-3735.8 1120.62,-3510.76 519.658,-3451.61"/>
 155 | <polygon fill="black" stroke="black" points="519.933,-3448.12 509.639,-3450.63 519.248,-3455.09 519.933,-3448.12"/>
 156 | </g>
 157 | <!-- LTE_RRC_PAGING_SM -->
 158 | <g id="node67" class="node"><title>LTE_RRC_PAGING_SM</title>
 159 | <polygon fill="none" stroke="blue" stroke-width="2" points="609.985,-2728.78 442.985,-2728.78 442.985,-2692.78 609.985,-2692.78 609.985,-2728.78"/>
 160 | <text text-anchor="middle" x="526.485" y="-2707.08" font-family="Times New Roman,serif" font-size="14.00">LTE_RRC_PAGING_SM</text>
 161 | </g>
 162 | <!-- LTE_RRC&#45;&gt;LTE_RRC_PAGING_SM -->
 163 | <g id="edge66" class="edge"><title>LTE_RRC&#45;&gt;LTE_RRC_PAGING_SM</title>
 164 | <path fill="none" stroke="black" d="M3785.74,-3764.53C3452.56,-3656.81 1023.86,-2871.58 592.05,-2731.97"/>
 165 | <polygon fill="black" stroke="black" points="592.815,-2728.54 582.224,-2728.8 590.662,-2735.2 592.815,-2728.54"/>
 166 | </g>
 167 | <!-- LTE_RRC_CONFIG_SM -->
 168 | <g id="node71" class="node"><title>LTE_RRC_CONFIG_SM</title>
 169 | <polygon fill="none" stroke="blue" stroke-width="2" points="882.687,-2103.55 715.687,-2103.55 715.687,-2067.55 882.687,-2067.55 882.687,-2103.55"/>
 170 | <text text-anchor="middle" x="799.187" y="-2081.85" font-family="Times New Roman,serif" font-size="14.00">LTE_RRC_CONFIG_SM</text>
 171 | </g>
 172 | <!-- LTE_RRC&#45;&gt;LTE_RRC_CONFIG_SM -->
 173 | <g id="edge70" class="edge"><title>LTE_RRC&#45;&gt;LTE_RRC_CONFIG_SM</title>
 174 | <path fill="none" stroke="black" d="M3796.08,-3761.38C3515.56,-3604.51 1179.33,-2298.12 840.177,-2108.47"/>
 175 | <polygon fill="black" stroke="black" points="841.84,-2105.39 831.404,-2103.56 838.423,-2111.5 841.84,-2105.39"/>
 176 | </g>
 177 | <!-- LTE_RRC_MISC_SM -->
 178 | <g id="node77" class="node"><title>LTE_RRC_MISC_SM</title>
 179 | <polygon fill="none" stroke="blue" stroke-width="2" points="1244.07,-1671.04 1095.07,-1671.04 1095.07,-1635.04 1244.07,-1635.04 1244.07,-1671.04"/>
 180 | <text text-anchor="middle" x="1169.57" y="-1649.34" font-family="Times New Roman,serif" font-size="14.00">LTE_RRC_MISC_SM</text>
 181 | </g>
 182 | <!-- LTE_RRC&#45;&gt;LTE_RRC_MISC_SM -->
 183 | <g id="edge76" class="edge"><title>LTE_RRC&#45;&gt;LTE_RRC_MISC_SM</title>
 184 | <path fill="none" stroke="black" d="M3802.64,-3759.99C3570.18,-3573.98 1478.53,-1900.26 1200.13,-1677.5"/>
 185 | <polygon fill="black" stroke="black" points="1202.06,-1674.56 1192.07,-1671.04 1197.69,-1680.02 1202.06,-1674.56"/>
 186 | </g>
 187 | <!-- LTE_RRC_MEAS_SM -->
 188 | <g id="node79" class="node"><title>LTE_RRC_MEAS_SM</title>
 189 | <polygon fill="none" stroke="blue" stroke-width="2" points="1594.78,-1207.28 1442.78,-1207.28 1442.78,-1171.28 1594.78,-1171.28 1594.78,-1207.28"/>
 190 | <text text-anchor="middle" x="1518.78" y="-1185.58" font-family="Times New Roman,serif" font-size="14.00">LTE_RRC_MEAS_SM</text>
 191 | </g>
 192 | <!-- LTE_RRC&#45;&gt;LTE_RRC_MEAS_SM -->
 193 | <g id="edge78" class="edge"><title>LTE_RRC&#45;&gt;LTE_RRC_MEAS_SM</title>
 194 | <path fill="none" stroke="black" d="M3808.29,-3759.57C3620.7,-3548.98 1770.4,-1471.75 1541.89,-1215.22"/>
 195 | <polygon fill="black" stroke="black" points="1544.29,-1212.65 1535.02,-1207.51 1539.06,-1217.3 1544.29,-1212.65"/>
 196 | </g>
 197 | <!-- LTE_RRC_CEP_SM -->
 198 | <g id="node85" class="node"><title>LTE_RRC_CEP_SM</title>
 199 | <polygon fill="none" stroke="blue" stroke-width="2" points="2162.86,-792.791 2022.86,-792.791 2022.86,-756.791 2162.86,-756.791 2162.86,-792.791"/>
 200 | <text text-anchor="middle" x="2092.86" y="-771.091" font-family="Times New Roman,serif" font-size="14.00">LTE_RRC_CEP_SM</text>
 201 | </g>
 202 | <!-- LTE_RRC&#45;&gt;LTE_RRC_CEP_SM -->
 203 | <g id="edge84" class="edge"><title>LTE_RRC&#45;&gt;LTE_RRC_CEP_SM</title>
 204 | <path fill="none" stroke="black" d="M3813.24,-3758.77C3678.39,-3524.87 2272.62,-1086.57 2108.48,-801.871"/>
 205 | <polygon fill="black" stroke="black" points="2111.39,-799.925 2103.37,-793.01 2105.33,-803.421 2111.39,-799.925"/>
 206 | </g>
 207 | <!-- LTE_RRC_IRAT_TO_1X_MGR_SM -->
 208 | <g id="node91" class="node"><title>LTE_RRC_IRAT_TO_1X_MGR_SM</title>
 209 | <polygon fill="none" stroke="blue" stroke-width="2" points="2883.43,-495.451 2645.43,-495.451 2645.43,-459.451 2883.43,-459.451 2883.43,-495.451"/>
 210 | <text text-anchor="middle" x="2764.43" y="-473.751" font-family="Times New Roman,serif" font-size="14.00">LTE_RRC_IRAT_TO_1X_MGR_SM</text>
 211 | </g>
 212 | <!-- LTE_RRC&#45;&gt;LTE_RRC_IRAT_TO_1X_MGR_SM -->
 213 | <g id="edge90" class="edge"><title>LTE_RRC&#45;&gt;LTE_RRC_IRAT_TO_1X_MGR_SM</title>
 214 | <path fill="none" stroke="black" d="M3817.79,-3758.63C3738.33,-3511.1 2871.3,-810.331 2773.41,-505.414"/>
 215 | <polygon fill="black" stroke="black" points="2776.64,-504.037 2770.25,-495.585 2769.98,-506.177 2776.64,-504.037"/>
 216 | </g>
 217 | <!-- LTE_RRC_IRAT_FROM_W_MGR_SM -->
 218 | <g id="node98" class="node"><title>LTE_RRC_IRAT_FROM_W_MGR_SM</title>
 219 | <polygon fill="none" stroke="blue" stroke-width="2" points="3757.43,-335.048 3501.43,-335.048 3501.43,-299.048 3757.43,-299.048 3757.43,-335.048"/>
 220 | <text text-anchor="middle" x="3629.43" y="-313.348" font-family="Times New Roman,serif" font-size="14.00">LTE_RRC_IRAT_FROM_W_MGR_SM</text>
 221 | </g>
 222 | <!-- LTE_RRC&#45;&gt;LTE_RRC_IRAT_FROM_W_MGR_SM -->
 223 | <g id="edge97" class="edge"><title>LTE_RRC&#45;&gt;LTE_RRC_IRAT_FROM_W_MGR_SM</title>
 224 | <path fill="none" stroke="black" d="M3822.6,-3758.58C3808.31,-3504.07 3648.74,-660.996 3631.03,-345.454"/>
 225 | <polygon fill="black" stroke="black" points="3634.51,-345.092 3630.46,-335.304 3627.52,-345.484 3634.51,-345.092"/>
 226 | </g>
 227 | <!-- LTE_RRC_MDT_SM -->
 228 | <g id="node107" class="node"><title>LTE_RRC_MDT_SM</title>
 229 | <polygon fill="none" stroke="blue" stroke-width="2" points="4400.27,-366.474 4255.27,-366.474 4255.27,-330.474 4400.27,-330.474 4400.27,-366.474"/>
 230 | <text text-anchor="middle" x="4327.77" y="-344.774" font-family="Times New Roman,serif" font-size="14.00">LTE_RRC_MDT_SM</text>
 231 | </g>
 232 | <!-- LTE_RRC&#45;&gt;LTE_RRC_MDT_SM -->
 233 | <g id="edge106" class="edge"><title>LTE_RRC&#45;&gt;LTE_RRC_MDT_SM</title>
 234 | <path fill="none" stroke="black" d="M3826.27,-3758.75C3863.36,-3506.55 4277.65,-689.298 4323.63,-376.621"/>
 235 | <polygon fill="black" stroke="black" points="4327.12,-376.966 4325.11,-366.563 4320.19,-375.948 4327.12,-376.966"/>
 236 | </g>
 237 | <!-- LTE_RRC_IRAT_TO_DO_MGR_SM -->
 238 | <g id="node110" class="node"><title>LTE_RRC_IRAT_TO_DO_MGR_SM</title>
 239 | <polygon fill="none" stroke="blue" stroke-width="2" points="5113.36,-532.65 4871.36,-532.65 4871.36,-496.65 5113.36,-496.65 5113.36,-532.65"/>
 240 | <text text-anchor="middle" x="4992.36" y="-510.95" font-family="Times New Roman,serif" font-size="14.00">LTE_RRC_IRAT_TO_DO_MGR_SM</text>
 241 | </g>
 242 | <!-- LTE_RRC&#45;&gt;LTE_RRC_IRAT_TO_DO_MGR_SM -->
 243 | <g id="edge109" class="edge"><title>LTE_RRC&#45;&gt;LTE_RRC_IRAT_TO_DO_MGR_SM</title>
 244 | <path fill="none" stroke="black" d="M3830.05,-3758.83C3917.69,-3514.22 4873.46,-846.507 4982.29,-542.761"/>
 245 | <polygon fill="black" stroke="black" points="4985.72,-543.556 4985.8,-532.961 4979.13,-541.195 4985.72,-543.556"/>
 246 | </g>
 247 | <!-- LTE_RRC_CONTROLLER_SM -->
 248 | <g id="node118" class="node"><title>LTE_RRC_CONTROLLER_SM</title>
 249 | <polygon fill="none" stroke="blue" stroke-width="2" points="5808.91,-884.762 5600.91,-884.762 5600.91,-848.762 5808.91,-848.762 5808.91,-884.762"/>
 250 | <text text-anchor="middle" x="5704.91" y="-863.062" font-family="Times New Roman,serif" font-size="14.00">LTE_RRC_CONTROLLER_SM</text>
 251 | </g>
 252 | <!-- LTE_RRC&#45;&gt;LTE_RRC_CONTROLLER_SM -->
 253 | <g id="edge117" class="edge"><title>LTE_RRC&#45;&gt;LTE_RRC_CONTROLLER_SM</title>
 254 | <path fill="none" stroke="black" d="M3835.14,-3758.95C3983,-3530.25 5506.59,-1173.53 5687.4,-893.841"/>
 255 | <polygon fill="black" stroke="black" points="5690.55,-895.419 5693.04,-885.121 5684.67,-891.619 5690.55,-895.419"/>
 256 | </g>
 257 | <!-- LTE_RRC_IRAT_TO_TDS_MGR_SM -->
 258 | <g id="node127" class="node"><title>LTE_RRC_IRAT_TO_TDS_MGR_SM</title>
 259 | <polygon fill="none" stroke="blue" stroke-width="2" points="6451.9,-1399.78 6203.9,-1399.78 6203.9,-1363.78 6451.9,-1363.78 6451.9,-1399.78"/>
 260 | <text text-anchor="middle" x="6327.9" y="-1378.08" font-family="Times New Roman,serif" font-size="14.00">LTE_RRC_IRAT_TO_TDS_MGR_SM</text>
 261 | </g>
 262 | <!-- LTE_RRC&#45;&gt;LTE_RRC_IRAT_TO_TDS_MGR_SM -->
 263 | <g id="edge126" class="edge"><title>LTE_RRC&#45;&gt;LTE_RRC_IRAT_TO_TDS_MGR_SM</title>
 264 | <path fill="none" stroke="black" d="M3841.64,-3759.55C4052.57,-3557.82 6049.32,-1648.2 6301.72,-1406.82"/>
 265 | <polygon fill="black" stroke="black" points="6304.19,-1409.3 6308.99,-1399.85 6299.35,-1404.24 6304.19,-1409.3"/>
 266 | </g>
 267 | <!-- LTE_RRC_IRAT_TO_W_MGR_SM -->
 268 | <g id="node136" class="node"><title>LTE_RRC_IRAT_TO_W_MGR_SM</title>
 269 | <polygon fill="none" stroke="blue" stroke-width="2" points="6972.01,-2115.15 6737.01,-2115.15 6737.01,-2079.15 6972.01,-2079.15 6972.01,-2115.15"/>
 270 | <text text-anchor="middle" x="6854.51" y="-2093.45" font-family="Times New Roman,serif" font-size="14.00">LTE_RRC_IRAT_TO_W_MGR_SM</text>
 271 | </g>
 272 | <!-- LTE_RRC&#45;&gt;LTE_RRC_IRAT_TO_W_MGR_SM -->
 273 | <g id="edge135" class="edge"><title>LTE_RRC&#45;&gt;LTE_RRC_IRAT_TO_W_MGR_SM</title>
 274 | <path fill="none" stroke="black" d="M3851.22,-3761.49C4132.19,-3605.78 6471.11,-2309.62 6812.9,-2120.21"/>
 275 | <polygon fill="black" stroke="black" points="6814.69,-2123.22 6821.75,-2115.31 6811.3,-2117.1 6814.69,-2123.22"/>
 276 | </g>
 277 | <!-- LTE_RRC_EMP_SM -->
 278 | <g id="node145" class="node"><title>LTE_RRC_EMP_SM</title>
 279 | <polygon fill="none" stroke="blue" stroke-width="2" points="7209.19,-2782.65 7066.19,-2782.65 7066.19,-2746.65 7209.19,-2746.65 7209.19,-2782.65"/>
 280 | <text text-anchor="middle" x="7137.69" y="-2760.95" font-family="Times New Roman,serif" font-size="14.00">LTE_RRC_EMP_SM</text>
 281 | </g>
 282 | <!-- LTE_RRC&#45;&gt;LTE_RRC_EMP_SM -->
 283 | <g id="edge144" class="edge"><title>LTE_RRC&#45;&gt;LTE_RRC_EMP_SM</title>
 284 | <path fill="none" stroke="black" d="M3862.56,-3764.89C4199.98,-3661.84 6626.75,-2920.69 7068.71,-2785.72"/>
 285 | <polygon fill="black" stroke="black" points="7069.93,-2789 7078.47,-2782.74 7067.89,-2782.31 7069.93,-2789"/>
 286 | </g>
 287 | <!-- LTE_RRC_MH_SM -->
 288 | <g id="node149" class="node"><title>LTE_RRC_MH_SM</title>
 289 | <polygon fill="none" stroke="blue" stroke-width="2" points="7322.66,-3309.62 7186.66,-3309.62 7186.66,-3273.62 7322.66,-3273.62 7322.66,-3309.62"/>
 290 | <text text-anchor="middle" x="7254.66" y="-3287.92" font-family="Times New Roman,serif" font-size="14.00">LTE_RRC_MH_SM</text>
 291 | </g>
 292 | <!-- LTE_RRC&#45;&gt;LTE_RRC_MH_SM -->
 293 | <g id="edge148" class="edge"><title>LTE_RRC&#45;&gt;LTE_RRC_MH_SM</title>
 294 | <path fill="none" stroke="black" d="M3871.47,-3770.01C4245.92,-3717.06 6704.13,-3369.47 7176.3,-3302.7"/>
 295 | <polygon fill="black" stroke="black" points="7177.01,-3306.13 7186.42,-3301.27 7176.03,-3299.2 7177.01,-3306.13"/>
 296 | </g>
 297 | <!-- LTE_RRC_UEINFO_SM -->
 298 | <g id="node152" class="node"><title>LTE_RRC_UEINFO_SM</title>
 299 | <polygon fill="none" stroke="blue" stroke-width="2" points="7370.08,-3886.43 7205.08,-3886.43 7205.08,-3850.43 7370.08,-3850.43 7370.08,-3886.43"/>
 300 | <text text-anchor="middle" x="7287.58" y="-3864.73" font-family="Times New Roman,serif" font-size="14.00">LTE_RRC_UEINFO_SM</text>
 301 | </g>
 302 | <!-- LTE_RRC&#45;&gt;LTE_RRC_UEINFO_SM -->
 303 | <g id="edge151" class="edge"><title>LTE_RRC&#45;&gt;LTE_RRC_UEINFO_SM</title>
 304 | <path fill="none" stroke="black" d="M3874.93,-3778.14C4259.37,-3788.31 6687.79,-3852.56 7194.86,-3865.97"/>
 305 | <polygon fill="black" stroke="black" points="7194.96,-3869.48 7205.05,-3866.24 7195.15,-3862.48 7194.96,-3869.48"/>
 306 | </g>
 307 | <!-- LTE_RRC_SIB_SM -->
 308 | <g id="node156" class="node"><title>LTE_RRC_SIB_SM</title>
 309 | <polygon fill="none" stroke="blue" stroke-width="2" points="7294.01,-4451.44 7158.01,-4451.44 7158.01,-4415.44 7294.01,-4415.44 7294.01,-4451.44"/>
 310 | <text text-anchor="middle" x="7226.01" y="-4429.74" font-family="Times New Roman,serif" font-size="14.00">LTE_RRC_SIB_SM</text>
 311 | </g>
 312 | <!-- LTE_RRC&#45;&gt;LTE_RRC_SIB_SM -->
 313 | <g id="edge155" class="edge"><title>LTE_RRC&#45;&gt;LTE_RRC_SIB_SM</title>
 314 | <path fill="none" stroke="black" d="M3868.83,-3785.51C4232.3,-3855.66 6676.84,-4327.45 7147.64,-4418.32"/>
 315 | <polygon fill="black" stroke="black" points="7147.25,-4421.81 7157.74,-4420.27 7148.58,-4414.93 7147.25,-4421.81"/>
 316 | </g>
 317 | <!-- LTE_RRC_PLMN_SEARCH_SM -->
 318 | <g id="node159" class="node"><title>LTE_RRC_PLMN_SEARCH_SM</title>
 319 | <polygon fill="none" stroke="blue" stroke-width="2" points="7147.77,-5083.42 6932.77,-5083.42 6932.77,-5047.42 7147.77,-5047.42 7147.77,-5083.42"/>
 320 | <text text-anchor="middle" x="7040.27" y="-5061.72" font-family="Times New Roman,serif" font-size="14.00">LTE_RRC_PLMN_SEARCH_SM</text>
 321 | </g>
 322 | <!-- LTE_RRC&#45;&gt;LTE_RRC_PLMN_SEARCH_SM -->
 323 | <g id="edge158" class="edge"><title>LTE_RRC&#45;&gt;LTE_RRC_PLMN_SEARCH_SM</title>
 324 | <path fill="none" stroke="black" d="M3857.57,-3790.38C4173.1,-3916.79 6590.7,-4885.31 6985.76,-5043.58"/>
 325 | <polygon fill="black" stroke="black" points="6984.67,-5046.91 6995.25,-5047.38 6987.27,-5040.42 6984.67,-5046.91"/>
 326 | </g>
 327 | <!-- LTE_RRC_IRAT_FROM_G_MGR_SM -->
 328 | <g id="node168" class="node"><title>LTE_RRC_IRAT_FROM_G_MGR_SM</title>
 329 | <polygon fill="none" stroke="blue" stroke-width="2" points="6751.28,-5834.62 6498.28,-5834.62 6498.28,-5798.62 6751.28,-5798.62 6751.28,-5834.62"/>
 330 | <text text-anchor="middle" x="6624.78" y="-5812.92" font-family="Times New Roman,serif" font-size="14.00">LTE_RRC_IRAT_FROM_G_MGR_SM</text>
 331 | </g>
 332 | <!-- LTE_RRC&#45;&gt;LTE_RRC_IRAT_FROM_G_MGR_SM -->
 333 | <g id="edge167" class="edge"><title>LTE_RRC&#45;&gt;LTE_RRC_IRAT_FROM_G_MGR_SM</title>
 334 | <path fill="none" stroke="black" d="M3846.17,-3793.2C4093.29,-3973.16 6294.34,-5575.99 6591.61,-5792.47"/>
 335 | <polygon fill="black" stroke="black" points="6589.7,-5795.41 6599.85,-5798.47 6593.83,-5789.75 6589.7,-5795.41"/>
 336 | </g>
 337 | <!-- LTE_RRC_CSP_SM -->
 338 | <g id="node176" class="node"><title>LTE_RRC_CSP_SM</title>
 339 | <polygon fill="none" stroke="blue" stroke-width="2" points="6136.96,-6435.78 5996.96,-6435.78 5996.96,-6399.78 6136.96,-6399.78 6136.96,-6435.78"/>
 340 | <text text-anchor="middle" x="6066.96" y="-6414.08" font-family="Times New Roman,serif" font-size="14.00">LTE_RRC_CSP_SM</text>
 341 | </g>
 342 | <!-- LTE_RRC&#45;&gt;LTE_RRC_CSP_SM -->
 343 | <g id="edge175" class="edge"><title>LTE_RRC&#45;&gt;LTE_RRC_CSP_SM</title>
 344 | <path fill="none" stroke="black" d="M3838.54,-3794.34C4021.21,-4009.4 5823.91,-6131.64 6044.81,-6391.7"/>
 345 | <polygon fill="black" stroke="black" points="6042.3,-6394.15 6051.45,-6399.51 6047.64,-6389.62 6042.3,-6394.15"/>
 346 | </g>
 347 | <!-- LTE_RRC_ESMGR_SM -->
 348 | <g id="node186" class="node"><title>LTE_RRC_ESMGR_SM</title>
 349 | <polygon fill="none" stroke="blue" stroke-width="2" points="5600.32,-6816.99 5437.32,-6816.99 5437.32,-6780.99 5600.32,-6780.99 5600.32,-6816.99"/>
 350 | <text text-anchor="middle" x="5518.82" y="-6795.29" font-family="Times New Roman,serif" font-size="14.00">LTE_RRC_ESMGR_SM</text>
 351 | </g>
 352 | <!-- LTE_RRC&#45;&gt;LTE_RRC_ESMGR_SM -->
 353 | <g id="edge185" class="edge"><title>LTE_RRC&#45;&gt;LTE_RRC_ESMGR_SM</title>
 354 | <path fill="none" stroke="black" d="M3833.57,-3794.53C3964.37,-4027.71 5342.59,-6484.8 5503.52,-6771.7"/>
 355 | <polygon fill="black" stroke="black" points="5500.58,-6773.62 5508.53,-6780.63 5506.69,-6770.19 5500.58,-6773.62"/>
 356 | </g>
 357 | <!-- LTE_RRC_CRE_SM -->
 358 | <g id="node190" class="node"><title>LTE_RRC_CRE_SM</title>
 359 | <polygon fill="none" stroke="blue" stroke-width="2" points="5014.45,-7074.02 4872.45,-7074.02 4872.45,-7038.02 5014.45,-7038.02 5014.45,-7074.02"/>
 360 | <text text-anchor="middle" x="4943.45" y="-7052.32" font-family="Times New Roman,serif" font-size="14.00">LTE_RRC_CRE_SM</text>
 361 | </g>
 362 | <!-- LTE_RRC&#45;&gt;LTE_RRC_CRE_SM -->
 363 | <g id="edge189" class="edge"><title>LTE_RRC&#45;&gt;LTE_RRC_CRE_SM</title>
 364 | <path fill="none" stroke="black" d="M3829.78,-3794.82C3913.79,-4040.84 4830.47,-6725.17 4933.96,-7028.23"/>
 365 | <polygon fill="black" stroke="black" points="4930.76,-7029.66 4937.3,-7038 4937.38,-7027.4 4930.76,-7029.66"/>
 366 | </g>
 367 | <!-- n4 -->
 368 | <g id="node8" class="node"><title>n4</title>
 369 | <ellipse fill="none" stroke="black" cx="4551.75" cy="-7169.02" rx="28.0137" ry="18"/>
 370 | <text text-anchor="middle" x="4551.75" y="-7166.52" font-family="Times New Roman,serif" font-size="10.00">READY</text>
 371 | </g>
 372 | <!-- LTE_RRC_DT_SM&#45;&gt;n4 -->
 373 | <g id="edge7" class="edge"><title>LTE_RRC_DT_SM&#45;&gt;n4</title>
 374 | <path fill="none" stroke="black" d="M4447.36,-7186.02C4470.1,-7182.32 4494.7,-7178.31 4514.31,-7175.12"/>
 375 | <polygon fill="black" stroke="black" points="4515.06,-7178.54 4524.36,-7173.48 4513.93,-7171.63 4515.06,-7178.54"/>
 376 | </g>
 377 | <!-- n5 -->
 378 | <g id="node9" class="node"><title>n5</title>
 379 | <ellipse fill="none" stroke="black" cx="4209.79" cy="-7224.73" rx="34.9638" ry="18"/>
 380 | <text text-anchor="middle" x="4209.79" y="-7222.23" font-family="Times New Roman,serif" font-size="10.00">BLOCKED</text>
 381 | </g>
 382 | <!-- LTE_RRC_DT_SM&#45;&gt;n5 -->
 383 | <g id="edge8" class="edge"><title>LTE_RRC_DT_SM&#45;&gt;n5</title>
 384 | <path fill="none" stroke="black" d="M4314.18,-7207.72C4293.61,-7211.07 4271.5,-7214.67 4252.95,-7217.69"/>
 385 | <polygon fill="black" stroke="black" points="4252.35,-7214.25 4243.05,-7219.31 4253.48,-7221.16 4252.35,-7214.25"/>
 386 | </g>
 387 | <!-- n6 -->
 388 | <g id="node11" class="node"><title>n6</title>
 389 | <ellipse fill="none" stroke="black" cx="3695.34" cy="-6817.66" rx="30.0436" ry="18"/>
 390 | <text text-anchor="middle" x="3695.34" y="-6815.16" font-family="Times New Roman,serif" font-size="10.00">INITIAL</text>
 391 | </g>
 392 | <!-- LTE_RRC_IRAT_TO_G_MGR_SM&#45;&gt;n6 -->
 393 | <g id="edge10" class="edge"><title>LTE_RRC_IRAT_TO_G_MGR_SM&#45;&gt;n6</title>
 394 | <path fill="none" stroke="black" d="M3565.12,-7213.79C3586.62,-7148.37 3660.52,-6923.58 3686.34,-6845.02"/>
 395 | <polygon fill="black" stroke="black" points="3689.72,-6845.94 3689.52,-6835.35 3683.07,-6843.76 3689.72,-6845.94"/>
 396 | </g>
 397 | <!-- n7 -->
 398 | <g id="node12" class="node"><title>n7</title>
 399 | <ellipse fill="none" stroke="black" cx="3846.79" cy="-6904.17" rx="73.6658" ry="18"/>
 400 | <text text-anchor="middle" x="3846.79" y="-6901.67" font-family="Times New Roman,serif" font-size="10.00">WT_FOR_SUSPEND_CNF</text>
 401 | </g>
 402 | <!-- LTE_RRC_IRAT_TO_G_MGR_SM&#45;&gt;n7 -->
 403 | <g id="edge11" class="edge"><title>LTE_RRC_IRAT_TO_G_MGR_SM&#45;&gt;n7</title>
 404 | <path fill="none" stroke="black" d="M3575.05,-7213.77C3623.39,-7158.7 3768.86,-6992.96 3824.66,-6929.38"/>
 405 | <polygon fill="black" stroke="black" points="3827.35,-6931.62 3831.32,-6921.8 3822.09,-6927 3827.35,-6931.62"/>
 406 | </g>
 407 | <!-- n8 -->
 408 | <g id="node13" class="node"><title>n8</title>
 409 | <ellipse fill="none" stroke="black" cx="3965.99" cy="-7074.99" rx="64.5068" ry="18"/>
 410 | <text text-anchor="middle" x="3965.99" y="-7072.49" font-family="Times New Roman,serif" font-size="10.00">WT_FOR_GSM_KEYS</text>
 411 | </g>
 412 | <!-- LTE_RRC_IRAT_TO_G_MGR_SM&#45;&gt;n8 -->
 413 | <g id="edge12" class="edge"><title>LTE_RRC_IRAT_TO_G_MGR_SM&#45;&gt;n8</title>
 414 | <path fill="none" stroke="black" d="M3606.24,-7213.71C3684.37,-7183.58 3839.97,-7123.58 3918.42,-7093.33"/>
 415 | <polygon fill="black" stroke="black" points="3919.98,-7096.48 3928.05,-7089.62 3917.46,-7089.95 3919.98,-7096.48"/>
 416 | </g>
 417 | <!-- n9 -->
 418 | <g id="node14" class="node"><title>n9</title>
 419 | <ellipse fill="none" stroke="black" cx="3987.99" cy="-7310.73" rx="103.032" ry="18"/>
 420 | <text text-anchor="middle" x="3987.99" y="-7308.23" font-family="Times New Roman,serif" font-size="10.00">WT_TO_ABORT_DURING_SUSPEND</text>
 421 | </g>
 422 | <!-- LTE_RRC_IRAT_TO_G_MGR_SM&#45;&gt;n9 -->
 423 | <g id="edge13" class="edge"><title>LTE_RRC_IRAT_TO_G_MGR_SM&#45;&gt;n9</title>
 424 | <path fill="none" stroke="black" d="M3657.29,-7249.9C3732.69,-7263.77 3835.61,-7282.7 3906.51,-7295.74"/>
 425 | <polygon fill="black" stroke="black" points="3906.26,-7299.25 3916.73,-7297.62 3907.53,-7292.37 3906.26,-7299.25"/>
 426 | </g>
 427 | <!-- n10 -->
 428 | <g id="node15" class="node"><title>n10</title>
 429 | <ellipse fill="none" stroke="black" cx="3878.78" cy="-7528.42" rx="71.6342" ry="18"/>
 430 | <text text-anchor="middle" x="3878.78" y="-7525.92" font-family="Times New Roman,serif" font-size="10.00">WT_FOR_RESUME_CNF</text>
 431 | </g>
 432 | <!-- LTE_RRC_IRAT_TO_G_MGR_SM&#45;&gt;n10 -->
 433 | <g id="edge14" class="edge"><title>LTE_RRC_IRAT_TO_G_MGR_SM&#45;&gt;n10</title>
 434 | <path fill="none" stroke="black" d="M3578.69,-7249.96C3633.67,-7300.97 3789.9,-7445.95 3852.43,-7503.97"/>
 435 | <polygon fill="black" stroke="black" points="3850.22,-7506.69 3859.93,-7510.93 3854.98,-7501.56 3850.22,-7506.69"/>
 436 | </g>
 437 | <!-- n11 -->
 438 | <g id="node16" class="node"><title>n11</title>
 439 | <ellipse fill="none" stroke="black" cx="3672.12" cy="-7652.97" rx="100.823" ry="18"/>
 440 | <text text-anchor="middle" x="3672.12" y="-7650.47" font-family="Times New Roman,serif" font-size="10.00">WT_TO_ABORT_DURING_RESUME</text>
 441 | </g>
 442 | <!-- LTE_RRC_IRAT_TO_G_MGR_SM&#45;&gt;n11 -->
 443 | <g id="edge15" class="edge"><title>LTE_RRC_IRAT_TO_G_MGR_SM&#45;&gt;n11</title>
 444 | <path fill="none" stroke="black" d="M3564.03,-7249.95C3581.77,-7316.09 3643.18,-7545.06 3664.65,-7625.09"/>
 445 | <polygon fill="black" stroke="black" points="3661.32,-7626.19 3667.29,-7634.94 3668.08,-7624.38 3661.32,-7626.19"/>
 446 | </g>
 447 | <!-- n12 -->
 448 | <g id="node17" class="node"><title>n12</title>
 449 | <ellipse fill="none" stroke="black" cx="3424.14" cy="-7646.41" rx="78.7618" ry="18"/>
 450 | <text text-anchor="middle" x="3424.14" y="-7643.91" font-family="Times New Roman,serif" font-size="10.00">IRAT_TO_G_IN_PROGRESS</text>
 451 | </g>
 452 | <!-- LTE_RRC_IRAT_TO_G_MGR_SM&#45;&gt;n12 -->
 453 | <g id="edge16" class="edge"><title>LTE_RRC_IRAT_TO_G_MGR_SM&#45;&gt;n12</title>
 454 | <path fill="none" stroke="black" d="M3553.29,-7249.93C3532.01,-7315.26 3459.01,-7539.37 3433.24,-7618.49"/>
 455 | <polygon fill="black" stroke="black" points="3429.83,-7617.65 3430.06,-7628.24 3436.49,-7619.82 3429.83,-7617.65"/>
 456 | </g>
 457 | <!-- n13 -->
 458 | <g id="node18" class="node"><title>n13</title>
 459 | <ellipse fill="none" stroke="black" cx="3236.33" cy="-7524.88" rx="75.198" ry="18"/>
 460 | <text text-anchor="middle" x="3236.33" y="-7522.38" font-family="Times New Roman,serif" font-size="10.00">WT_FOR_G_ABORT_CNF</text>
 461 | </g>
 462 | <!-- LTE_RRC_IRAT_TO_G_MGR_SM&#45;&gt;n13 -->
 463 | <g id="edge17" class="edge"><title>LTE_RRC_IRAT_TO_G_MGR_SM&#45;&gt;n13</title>
 464 | <path fill="none" stroke="black" d="M3538.98,-7250.18C3483.12,-7300.89 3326.48,-7443.06 3263.28,-7500.42"/>
 465 | <polygon fill="black" stroke="black" points="3260.75,-7497.99 3255.7,-7507.31 3265.46,-7503.18 3260.75,-7497.99"/>
 466 | </g>
 467 | <!-- n14 -->
 468 | <g id="node19" class="node"><title>n14</title>
 469 | <ellipse fill="none" stroke="black" cx="3136.94" cy="-7340.53" rx="64.3289" ry="18"/>
 470 | <text text-anchor="middle" x="3136.94" y="-7338.03" font-family="Times New Roman,serif" font-size="10.00">WT_FOR_CONN_REL</text>
 471 | </g>
 472 | <!-- LTE_RRC_IRAT_TO_G_MGR_SM&#45;&gt;n14 -->
 473 | <g id="edge18" class="edge"><title>LTE_RRC_IRAT_TO_G_MGR_SM&#45;&gt;n14</title>
 474 | <path fill="none" stroke="black" d="M3488.98,-7249.92C3406.39,-7271.18 3270.85,-7306.06 3194.28,-7325.77"/>
 475 | <polygon fill="black" stroke="black" points="3193.15,-7322.44 3184.34,-7328.33 3194.89,-7329.22 3193.15,-7322.44"/>
 476 | </g>
 477 | <!-- n15 -->
 478 | <g id="node20" class="node"><title>n15</title>
 479 | <ellipse fill="none" stroke="black" cx="3137.11" cy="-7122.52" rx="84.358" ry="18"/>
 480 | <text text-anchor="middle" x="3137.11" y="-7120.02" font-family="Times New Roman,serif" font-size="10.00">WT_FOR_DEACTIVATE_CNF</text>
 481 | </g>
 482 | <!-- LTE_RRC_IRAT_TO_G_MGR_SM&#45;&gt;n15 -->
 483 | <g id="edge19" class="edge"><title>LTE_RRC_IRAT_TO_G_MGR_SM&#45;&gt;n15</title>
 484 | <path fill="none" stroke="black" d="M3489.48,-7213.8C3409.26,-7193.02 3278.61,-7159.18 3200.95,-7139.06"/>
 485 | <polygon fill="black" stroke="black" points="3201.38,-7135.55 3190.82,-7136.43 3199.62,-7142.33 3201.38,-7135.55"/>
 486 | </g>
 487 | <!-- n16 -->
 488 | <g id="node21" class="node"><title>n16</title>
 489 | <ellipse fill="none" stroke="black" cx="3256.05" cy="-6918.46" rx="83.003" ry="18"/>
 490 | <text text-anchor="middle" x="3256.05" y="-6915.96" font-family="Times New Roman,serif" font-size="10.00">WT_FOR_ACTIVATION_RSP</text>
 491 | </g>
 492 | <!-- LTE_RRC_IRAT_TO_G_MGR_SM&#45;&gt;n16 -->
 493 | <g id="edge20" class="edge"><title>LTE_RRC_IRAT_TO_G_MGR_SM&#45;&gt;n16</title>
 494 | <path fill="none" stroke="black" d="M3541.57,-7213.65C3490.07,-7160.41 3339.64,-7004.88 3280.42,-6943.65"/>
 495 | <polygon fill="black" stroke="black" points="3282.8,-6941.08 3273.33,-6936.33 3277.77,-6945.95 3282.8,-6941.08"/>
 496 | </g>
 497 | <!-- n17 -->
 498 | <g id="node22" class="node"><title>n17</title>
 499 | <ellipse fill="none" stroke="black" cx="3487.64" cy="-6801.76" rx="108.128" ry="18"/>
 500 | <text text-anchor="middle" x="3487.64" y="-6799.26" font-family="Times New Roman,serif" font-size="10.00">WT_TO_SUSPEND_DURING_SUSPEND</text>
 501 | </g>
 502 | <!-- LTE_RRC_IRAT_TO_G_MGR_SM&#45;&gt;n17 -->
 503 | <g id="edge21" class="edge"><title>LTE_RRC_IRAT_TO_G_MGR_SM&#45;&gt;n17</title>
 504 | <path fill="none" stroke="black" d="M3556.15,-7213.65C3544.98,-7146.47 3506.01,-6912.2 3492.39,-6830.29"/>
 505 | <polygon fill="black" stroke="black" points="3495.8,-6829.5 3490.71,-6820.21 3488.9,-6830.65 3495.8,-6829.5"/>
 506 | </g>
 507 | <!-- n18 -->
 508 | <g id="node24" class="node"><title>n18</title>
 509 | <ellipse fill="none" stroke="black" cx="2834.64" cy="-6900.84" rx="30.0436" ry="18"/>
 510 | <text text-anchor="middle" x="2834.64" y="-6898.34" font-family="Times New Roman,serif" font-size="10.00">INITIAL</text>
 511 | </g>
 512 | <!-- LTE_RRC_LLC_SM&#45;&gt;n18 -->
 513 | <g id="edge23" class="edge"><title>LTE_RRC_LLC_SM&#45;&gt;n18</title>
 514 | <path fill="none" stroke="black" d="M2680.92,-7021.77C2713.71,-6995.97 2773.59,-6948.86 2808.14,-6921.68"/>
 515 | <polygon fill="black" stroke="black" points="2810.65,-6924.16 2816.35,-6915.22 2806.32,-6918.66 2810.65,-6924.16"/>
 516 | </g>
 517 | <!-- n19 -->
 518 | <g id="node25" class="node"><title>n19</title>
 519 | <ellipse fill="none" stroke="black" cx="2859.59" cy="-7139.48" rx="83.003" ry="18"/>
 520 | <text text-anchor="middle" x="2859.59" y="-7136.98" font-family="Times New Roman,serif" font-size="10.00">WAIT_FOR_CPHY_CFG_CNF</text>
 521 | </g>
 522 | <!-- LTE_RRC_LLC_SM&#45;&gt;n19 -->
 523 | <g id="edge24" class="edge"><title>LTE_RRC_LLC_SM&#45;&gt;n19</title>
 524 | <path fill="none" stroke="black" d="M2694.34,-7057.98C2728.75,-7074.95 2780.29,-7100.37 2816.64,-7118.3"/>
 525 | <polygon fill="black" stroke="black" points="2815.49,-7121.63 2826,-7122.91 2818.58,-7115.35 2815.49,-7121.63"/>
 526 | </g>
 527 | <!-- n20 -->
 528 | <g id="node26" class="node"><title>n20</title>
 529 | <ellipse fill="none" stroke="black" cx="2603.22" cy="-7258.24" rx="82.3257" ry="18"/>
 530 | <text text-anchor="middle" x="2603.22" y="-7255.74" font-family="Times New Roman,serif" font-size="10.00">WAIT_FOR_MAC_CFG_CNF</text>
 531 | </g>
 532 | <!-- LTE_RRC_LLC_SM&#45;&gt;n20 -->
 533 | <g id="edge25" class="edge"><title>LTE_RRC_LLC_SM&#45;&gt;n20</title>
 534 | <path fill="none" stroke="black" d="M2653.24,-7058.19C2643.68,-7096.4 2621.51,-7185.09 2610.17,-7230.44"/>
 535 | <polygon fill="black" stroke="black" points="2606.76,-7229.66 2607.73,-7240.21 2613.55,-7231.35 2606.76,-7229.66"/>
 536 | </g>
 537 | <!-- n21 -->
 538 | <g id="node27" class="node"><title>n21</title>
 539 | <ellipse fill="none" stroke="black" cx="2432.82" cy="-7036.91" rx="78.7618" ry="18"/>
 540 | <text text-anchor="middle" x="2432.82" y="-7034.41" font-family="Times New Roman,serif" font-size="10.00">WAIT_FOR_RLC_CFG_CNF</text>
 541 | </g>
 542 | <!-- LTE_RRC_LLC_SM&#45;&gt;n21 -->
 543 | <g id="edge26" class="edge"><title>LTE_RRC_LLC_SM&#45;&gt;n21</title>
 544 | <path fill="none" stroke="black" d="M2587.54,-7039C2566.84,-7038.72 2543.9,-7038.41 2522.17,-7038.12"/>
 545 | <polygon fill="black" stroke="black" points="2522,-7034.62 2511.95,-7037.98 2521.9,-7041.62 2522,-7034.62"/>
 546 | </g>
 547 | <!-- n22 -->
 548 | <g id="node28" class="node"><title>n22</title>
 549 | <ellipse fill="none" stroke="black" cx="2609.15" cy="-6820.28" rx="82.3257" ry="18"/>
 550 | <text text-anchor="middle" x="2609.15" y="-6817.78" font-family="Times New Roman,serif" font-size="10.00">WAIT_FOR_PDCP_CFG_CNF</text>
 551 | </g>
 552 | <!-- LTE_RRC_LLC_SM&#45;&gt;n22 -->
 553 | <g id="edge27" class="edge"><title>LTE_RRC_LLC_SM&#45;&gt;n22</title>
 554 | <path fill="none" stroke="black" d="M2653.73,-7021.6C2645.22,-6983.15 2625.45,-6893.89 2615.34,-6848.25"/>
 555 | <polygon fill="black" stroke="black" points="2618.75,-6847.43 2613.17,-6838.42 2611.91,-6848.94 2618.75,-6847.43"/>
 556 | </g>
 557 | <!-- n23 -->
 558 | <g id="node30" class="node"><title>n23</title>
 559 | <ellipse fill="none" stroke="black" cx="2248.85" cy="-6872.56" rx="30.0436" ry="18"/>
 560 | <text text-anchor="middle" x="2248.85" y="-6870.06" font-family="Times New Roman,serif" font-size="10.00">INITIAL</text>
 561 | </g>
 562 | <!-- LTE_RRC_CAPABILITIES_SM&#45;&gt;n23 -->
 563 | <g id="edge29" class="edge"><title>LTE_RRC_CAPABILITIES_SM&#45;&gt;n23</title>
 564 | <path fill="none" stroke="black" d="M2075.73,-6769.04C2114.35,-6792.13 2180.47,-6831.67 2218.86,-6854.62"/>
 565 | <polygon fill="black" stroke="black" points="2217.14,-6857.68 2227.52,-6859.8 2220.74,-6851.67 2217.14,-6857.68"/>
 566 | </g>
 567 | <!-- n24 -->
 568 | <g id="node31" class="node"><title>n24</title>
 569 | <ellipse fill="none" stroke="black" cx="1841.65" cy="-6629.07" rx="61.4427" ry="18"/>
 570 | <text text-anchor="middle" x="1841.65" y="-6626.57" font-family="Times New Roman,serif" font-size="10.00">WT_RAT_CAP_CNF</text>
 571 | </g>
 572 | <!-- LTE_RRC_CAPABILITIES_SM&#45;&gt;n24 -->
 573 | <g id="edge30" class="edge"><title>LTE_RRC_CAPABILITIES_SM&#45;&gt;n24</title>
 574 | <path fill="none" stroke="black" d="M2014.77,-6732.58C1978.11,-6710.66 1916.64,-6673.91 1877.67,-6650.6"/>
 575 | <polygon fill="black" stroke="black" points="1879.14,-6647.4 1868.76,-6645.27 1875.54,-6653.41 1879.14,-6647.4"/>
 576 | </g>
 577 | <!-- n25 -->
 578 | <g id="node33" class="node"><title>n25</title>
 579 | <ellipse fill="none" stroke="black" cx="1702.12" cy="-6145.74" rx="30.0436" ry="18"/>
 580 | <text text-anchor="middle" x="1702.12" y="-6143.24" font-family="Times New Roman,serif" font-size="10.00">INITIAL</text>
 581 | </g>
 582 | <!-- LTE_RRC_IRAT_FROM_1X_MGR_SM&#45;&gt;n25 -->
 583 | <g id="edge32" class="edge"><title>LTE_RRC_IRAT_FROM_1X_MGR_SM&#45;&gt;n25</title>
 584 | <path fill="none" stroke="black" d="M1461.53,-6257.34C1516.87,-6231.67 1617.42,-6185.02 1669.26,-6160.98"/>
 585 | <polygon fill="black" stroke="black" points="1670.76,-6164.14 1678.36,-6156.76 1667.81,-6157.79 1670.76,-6164.14"/>
 586 | </g>
 587 | <!-- n26 -->
 588 | <g id="node34" class="node"><title>n26</title>
 589 | <ellipse fill="none" stroke="black" cx="1717.99" cy="-6363.02" rx="77.2299" ry="18"/>
 590 | <text text-anchor="middle" x="1717.99" y="-6360.52" font-family="Times New Roman,serif" font-size="10.00">WT_FOR_ACTIVATE_CNF</text>
 591 | </g>
 592 | <!-- LTE_RRC_IRAT_FROM_1X_MGR_SM&#45;&gt;n26 -->
 593 | <g id="edge33" class="edge"><title>LTE_RRC_IRAT_FROM_1X_MGR_SM&#45;&gt;n26</title>
 594 | <path fill="none" stroke="black" d="M1483.5,-6293.42C1535.27,-6308.78 1609.11,-6330.7 1660.03,-6345.82"/>
 595 | <polygon fill="black" stroke="black" points="1659.31,-6349.26 1669.89,-6348.75 1661.3,-6342.55 1659.31,-6349.26"/>
 596 | </g>
 597 | <!-- n27 -->
 598 | <g id="node35" class="node"><title>n27</title>
 599 | <ellipse fill="none" stroke="black" cx="1516.92" cy="-6568.64" rx="106.596" ry="18"/>
 600 | <text text-anchor="middle" x="1516.92" y="-6566.14" font-family="Times New Roman,serif" font-size="10.00">WT_TO_ABORT_DURING_ACTIVATE</text>
 601 | </g>
 602 | <!-- LTE_RRC_IRAT_FROM_1X_MGR_SM&#45;&gt;n27 -->
 603 | <g id="edge34" class="edge"><title>LTE_RRC_IRAT_FROM_1X_MGR_SM&#45;&gt;n27</title>
 604 | <path fill="none" stroke="black" d="M1428.57,-6293.71C1444.54,-6343.39 1488.7,-6480.82 1507.86,-6540.44"/>
 605 | <polygon fill="black" stroke="black" points="1504.64,-6541.85 1511.03,-6550.3 1511.3,-6539.71 1504.64,-6541.85"/>
 606 | </g>
 607 | <!-- n28 -->
 608 | <g id="node36" class="node"><title>n28</title>
 609 | <ellipse fill="none" stroke="black" cx="1228.19" cy="-6514.25" rx="84.358" ry="18"/>
 610 | <text text-anchor="middle" x="1228.19" y="-6511.75" font-family="Times New Roman,serif" font-size="10.00">WT_FOR_DEACTIVATE_CNF</text>
 611 | </g>
 612 | <!-- LTE_RRC_IRAT_FROM_1X_MGR_SM&#45;&gt;n28 -->
 613 | <g id="edge35" class="edge"><title>LTE_RRC_IRAT_FROM_1X_MGR_SM&#45;&gt;n28</title>
 614 | <path fill="none" stroke="black" d="M1407.74,-6293.71C1373.35,-6335.95 1288.51,-6440.16 1249.02,-6488.66"/>
 615 | <polygon fill="black" stroke="black" points="1246.24,-6486.53 1242.64,-6496.49 1251.67,-6490.95 1246.24,-6486.53"/>
 616 | </g>
 617 | <!-- n29 -->
 618 | <g id="node37" class="node"><title>n29</title>
 619 | <ellipse fill="none" stroke="black" cx="1114.95" cy="-6261.32" rx="87.9221" ry="18"/>
 620 | <text text-anchor="middle" x="1114.95" y="-6258.82" font-family="Times New Roman,serif" font-size="10.00">WT_FOR_LTE_TO_COMPLETE</text>
 621 | </g>
 622 | <!-- LTE_RRC_IRAT_FROM_1X_MGR_SM&#45;&gt;n29 -->
 623 | <g id="edge36" class="edge"><title>LTE_RRC_IRAT_FROM_1X_MGR_SM&#45;&gt;n29</title>
 624 | <path fill="none" stroke="black" d="M1293.06,-6269.45C1265.51,-6268.19 1236.89,-6266.89 1210.87,-6265.7"/>
 625 | <polygon fill="black" stroke="black" points="1210.8,-6262.19 1200.65,-6265.23 1210.48,-6269.19 1210.8,-6262.19"/>
 626 | </g>
 627 | <!-- n30 -->
 628 | <g id="node38" class="node"><title>n30</title>
 629 | <ellipse fill="none" stroke="black" cx="1259.64" cy="-6014" rx="94.55" ry="18"/>
 630 | <text text-anchor="middle" x="1259.64" y="-6011.5" font-family="Times New Roman,serif" font-size="10.00">WT_FOR_LTE_RRC_ABORT_CNF</text>
 631 | </g>
 632 | <!-- LTE_RRC_IRAT_FROM_1X_MGR_SM&#45;&gt;n30 -->
 633 | <g id="edge37" class="edge"><title>LTE_RRC_IRAT_FROM_1X_MGR_SM&#45;&gt;n30</title>
 634 | <path fill="none" stroke="black" d="M1411.21,-6256.98C1382.84,-6211.51 1309.28,-6093.58 1276.19,-6040.54"/>
 635 | <polygon fill="black" stroke="black" points="1279.14,-6038.64 1270.87,-6032.01 1273.2,-6042.34 1279.14,-6038.64"/>
 636 | </g>
 637 | <!-- n31 -->
 638 | <g id="node39" class="node"><title>n31</title>
 639 | <ellipse fill="none" stroke="black" cx="1541.06" cy="-5990.97" rx="83.003" ry="18"/>
 640 | <text text-anchor="middle" x="1541.06" y="-5988.47" font-family="Times New Roman,serif" font-size="10.00">WT_FOR_ACTIVATION_RSP</text>
 641 | </g>
 642 | <!-- LTE_RRC_IRAT_FROM_1X_MGR_SM&#45;&gt;n31 -->
 643 | <g id="edge38" class="edge"><title>LTE_RRC_IRAT_FROM_1X_MGR_SM&#45;&gt;n31</title>
 644 | <path fill="none" stroke="black" d="M1430.26,-6257.14C1450.43,-6208.68 1505.5,-6076.41 1529.56,-6018.62"/>
 645 | <polygon fill="black" stroke="black" points="1532.93,-6019.62 1533.54,-6009.04 1526.47,-6016.93 1532.93,-6019.62"/>
 646 | </g>
 647 | <!-- n32 -->
 648 | <g id="node41" class="node"><title>n32</title>
 649 | <ellipse fill="none" stroke="black" cx="1144.24" cy="-5755.44" rx="30.0436" ry="18"/>
 650 | <text text-anchor="middle" x="1144.24" y="-5752.94" font-family="Times New Roman,serif" font-size="10.00">INITIAL</text>
 651 | </g>
 652 | <!-- LTE_RRC_SEC_SM&#45;&gt;n32 -->
 653 | <g id="edge40" class="edge"><title>LTE_RRC_SEC_SM&#45;&gt;n32</title>
 654 | <path fill="none" stroke="black" d="M1028.81,-5737.12C1054.51,-5741.2 1082.67,-5745.67 1104.75,-5749.17"/>
 655 | <polygon fill="black" stroke="black" points="1104.32,-5752.65 1114.74,-5750.76 1105.41,-5745.73 1104.32,-5752.65"/>
 656 | </g>
 657 | <!-- n33 -->
 658 | <g id="node42" class="node"><title>n33</title>
 659 | <ellipse fill="none" stroke="black" cx="924.829" cy="-5910.83" rx="45.8316" ry="18"/>
 660 | <text text-anchor="middle" x="924.829" y="-5908.33" font-family="Times New Roman,serif" font-size="10.00">WT_CFG_CNF</text>
 661 | </g>
 662 | <!-- LTE_RRC_SEC_SM&#45;&gt;n33 -->
 663 | <g id="edge41" class="edge"><title>LTE_RRC_SEC_SM&#45;&gt;n33</title>
 664 | <path fill="none" stroke="black" d="M955.34,-5744.04C949.431,-5776.34 937.014,-5844.22 929.978,-5882.68"/>
 665 | <polygon fill="black" stroke="black" points="926.503,-5882.23 928.146,-5892.69 933.389,-5883.48 926.503,-5882.23"/>
 666 | </g>
 667 | <!-- n34 -->
 668 | <g id="node43" class="node"><title>n34</title>
 669 | <ellipse fill="none" stroke="black" cx="776.205" cy="-5680.94" rx="37.1717" ry="18"/>
 670 | <text text-anchor="middle" x="776.205" y="-5678.44" font-family="Times New Roman,serif" font-size="10.00">SMC_FAIL</text>
 671 | </g>
 672 | <!-- LTE_RRC_SEC_SM&#45;&gt;n34 -->
 673 | <g id="edge42" class="edge"><title>LTE_RRC_SEC_SM&#45;&gt;n34</title>
 674 | <path fill="none" stroke="black" d="M888.63,-5708.69C865.314,-5702.94 840.041,-5696.7 819.374,-5691.6"/>
 675 | <polygon fill="black" stroke="black" points="820.174,-5688.19 809.627,-5689.19 818.497,-5694.99 820.174,-5688.19"/>
 676 | </g>
 677 | <!-- n35 -->
 678 | <g id="node44" class="node"><title>n35</title>
 679 | <ellipse fill="none" stroke="black" cx="999.382" cy="-5542.53" rx="30.0436" ry="18"/>
 680 | <text text-anchor="middle" x="999.382" y="-5540.03" font-family="Times New Roman,serif" font-size="10.00">SECURE</text>
 681 | </g>
 682 | <!-- LTE_RRC_SEC_SM&#45;&gt;n35 -->
 683 | <g id="edge43" class="edge"><title>LTE_RRC_SEC_SM&#45;&gt;n35</title>
 684 | <path fill="none" stroke="black" d="M962.699,-5707.72C969.855,-5675.49 984.763,-5608.36 993.205,-5570.34"/>
 685 | <polygon fill="black" stroke="black" points="996.652,-5570.97 995.403,-5560.45 989.818,-5569.45 996.652,-5570.97"/>
 686 | </g>
 687 | <!-- n36 -->
 688 | <g id="node46" class="node"><title>n36</title>
 689 | <ellipse fill="none" stroke="black" cx="872.305" cy="-5240.74" rx="35.1405" ry="18"/>
 690 | <text text-anchor="middle" x="872.305" y="-5238.24" font-family="Times New Roman,serif" font-size="10.00">INACTIVE</text>
 691 | </g>
 692 | <!-- LTE_RRC_CRP_SM&#45;&gt;n36 -->
 693 | <g id="edge45" class="edge"><title>LTE_RRC_CRP_SM&#45;&gt;n36</title>
 694 | <path fill="none" stroke="black" d="M686.91,-5166.8C730.067,-5184.01 794.277,-5209.62 834.686,-5225.74"/>
 695 | <polygon fill="black" stroke="black" points="833.585,-5229.07 844.17,-5229.52 836.179,-5222.57 833.585,-5229.07"/>
 696 | </g>
 697 | <!-- n37 -->
 698 | <g id="node47" class="node"><title>n37</title>
 699 | <ellipse fill="none" stroke="black" cx="592.991" cy="-5392.3" rx="59.4099" ry="18"/>
 700 | <text text-anchor="middle" x="592.991" y="-5389.8" font-family="Times New Roman,serif" font-size="10.00">WAIT_FOR_TIMER</text>
 701 | </g>
 702 | <!-- LTE_RRC_CRP_SM&#45;&gt;n37 -->
 703 | <g id="edge46" class="edge"><title>LTE_RRC_CRP_SM&#45;&gt;n37</title>
 704 | <path fill="none" stroke="black" d="M637.953,-5167.04C629.521,-5209.28 608.659,-5313.8 598.596,-5364.22"/>
 705 | <polygon fill="black" stroke="black" points="595.147,-5363.62 596.622,-5374.11 602.011,-5364.99 595.147,-5363.62"/>
 706 | </g>
 707 | <!-- n38 -->
 708 | <g id="node48" class="node"><title>n38</title>
 709 | <ellipse fill="none" stroke="black" cx="397.926" cy="-5100.69" rx="80.1164" ry="18"/>
 710 | <text text-anchor="middle" x="397.926" y="-5098.19" font-family="Times New Roman,serif" font-size="10.00">WAIT_FOR_LLC_CONFIRM</text>
 711 | </g>
 712 | <!-- LTE_RRC_CRP_SM&#45;&gt;n38 -->
 713 | <g id="edge47" class="edge"><title>LTE_RRC_CRP_SM&#45;&gt;n38</title>
 714 | <path fill="none" stroke="black" d="M570.469,-5134.71C538.399,-5128.39 500.624,-5120.94 468.608,-5114.63"/>
 715 | <polygon fill="black" stroke="black" points="468.918,-5111.12 458.43,-5112.62 467.564,-5117.99 468.918,-5111.12"/>
 716 | </g>
 717 | <!-- n39 -->
 718 | <g id="node49" class="node"><title>n39</title>
 719 | <ellipse fill="none" stroke="black" cx="733.072" cy="-4917.82" rx="105.241" ry="18"/>
 720 | <text text-anchor="middle" x="733.072" y="-4915.32" font-family="Times New Roman,serif" font-size="10.00">WAIT_FOR_IRAT_ABORT_CONFIRM</text>
 721 | </g>
 722 | <!-- LTE_RRC_CRP_SM&#45;&gt;n39 -->
 723 | <g id="edge48" class="edge"><title>LTE_RRC_CRP_SM&#45;&gt;n39</title>
 724 | <path fill="none" stroke="black" d="M648.784,-5130.61C664.747,-5090.31 703.27,-4993.06 722.201,-4945.26"/>
 725 | <polygon fill="black" stroke="black" points="725.5,-4946.44 725.928,-4935.85 718.992,-4943.86 725.5,-4946.44"/>
 726 | </g>
 727 | <!-- n40 -->
 728 | <g id="node51" class="node"><title>n40</title>
 729 | <ellipse fill="none" stroke="black" cx="708.328" cy="-4406.37" rx="30.0436" ry="18"/>
 730 | <text text-anchor="middle" x="708.328" y="-4403.87" font-family="Times New Roman,serif" font-size="10.00">INITIAL</text>
 731 | </g>
 732 | <!-- LTE_RRC_IRAT_FROM_DO_MGR_SM&#45;&gt;n40 -->
 733 | <g id="edge50" class="edge"><title>LTE_RRC_IRAT_FROM_DO_MGR_SM&#45;&gt;n40</title>
 734 | <path fill="none" stroke="black" d="M490.656,-4360.54C549.667,-4372.96 625.222,-4388.87 670.026,-4398.3"/>
 735 | <polygon fill="black" stroke="black" points="669.408,-4401.75 679.914,-4400.38 670.85,-4394.9 669.408,-4401.75"/>
 736 | </g>
 737 | <!-- n41 -->
 738 | <g id="node52" class="node"><title>n41</title>
 739 | <ellipse fill="none" stroke="black" cx="589.91" cy="-4591.31" rx="77.2299" ry="18"/>
 740 | <text text-anchor="middle" x="589.91" y="-4588.81" font-family="Times New Roman,serif" font-size="10.00">WT_FOR_ACTIVATE_CNF</text>
 741 | </g>
 742 | <!-- LTE_RRC_IRAT_FROM_DO_MGR_SM&#45;&gt;n41 -->
 743 | <g id="edge51" class="edge"><title>LTE_RRC_IRAT_FROM_DO_MGR_SM&#45;&gt;n41</title>
 744 | <path fill="none" stroke="black" d="M418.533,-4360.78C450.949,-4404.39 532.853,-4514.56 570.472,-4565.16"/>
 745 | <polygon fill="black" stroke="black" points="567.763,-4567.39 576.538,-4573.32 573.381,-4563.21 567.763,-4567.39"/>
 746 | </g>
 747 | <!-- n42 -->
 748 | <g id="node53" class="node"><title>n42</title>
 749 | <ellipse fill="none" stroke="black" cx="304.007" cy="-4635.65" rx="106.596" ry="18"/>
 750 | <text text-anchor="middle" x="304.007" y="-4633.15" font-family="Times New Roman,serif" font-size="10.00">WT_TO_ABORT_DURING_ACTIVATE</text>
 751 | </g>
 752 | <!-- LTE_RRC_IRAT_FROM_DO_MGR_SM&#45;&gt;n42 -->
 753 | <g id="edge52" class="edge"><title>LTE_RRC_IRAT_FROM_DO_MGR_SM&#45;&gt;n42</title>
 754 | <path fill="none" stroke="black" d="M398.618,-4360.83C381.484,-4410.6 334.031,-4548.44 313.584,-4607.83"/>
 755 | <polygon fill="black" stroke="black" points="310.263,-4606.72 310.318,-4617.32 316.882,-4609 310.263,-4606.72"/>
 756 | </g>
 757 | <!-- n43 -->
 758 | <g id="node54" class="node"><title>n43</title>
 759 | <ellipse fill="none" stroke="black" cx="104.189" cy="-4417.88" rx="84.358" ry="18"/>
 760 | <text text-anchor="middle" x="104.189" y="-4415.38" font-family="Times New Roman,serif" font-size="10.00">WT_FOR_DEACTIVATE_CNF</text>
 761 | </g>
 762 | <!-- LTE_RRC_IRAT_FROM_DO_MGR_SM&#45;&gt;n43 -->
 763 | <g id="edge53" class="edge"><title>LTE_RRC_IRAT_FROM_DO_MGR_SM&#45;&gt;n43</title>
 764 | <path fill="none" stroke="black" d="M332.896,-4360.55C282.986,-4373.06 217.102,-4389.58 168.871,-4401.67"/>
 765 | <polygon fill="black" stroke="black" points="168.014,-4398.27 159.165,-4404.1 169.716,-4405.06 168.014,-4398.27"/>
 766 | </g>
 767 | <!-- n44 -->
 768 | <g id="node55" class="node"><title>n44</title>
 769 | <ellipse fill="none" stroke="black" cx="165.262" cy="-4145.79" rx="87.9221" ry="18"/>
 770 | <text text-anchor="middle" x="165.262" y="-4143.29" font-family="Times New Roman,serif" font-size="10.00">WT_FOR_LTE_TO_COMPLETE</text>
 771 | </g>
 772 | <!-- LTE_RRC_IRAT_FROM_DO_MGR_SM&#45;&gt;n44 -->
 773 | <g id="edge54" class="edge"><title>LTE_RRC_IRAT_FROM_DO_MGR_SM&#45;&gt;n44</title>
 774 | <path fill="none" stroke="black" d="M382.813,-4324.34C339.433,-4288.73 243.191,-4209.75 194.576,-4169.85"/>
 775 | <polygon fill="black" stroke="black" points="196.586,-4166.97 186.636,-4163.34 192.146,-4172.39 196.586,-4166.97"/>
 776 | </g>
 777 | <!-- n45 -->
 778 | <g id="node56" class="node"><title>n45</title>
 779 | <ellipse fill="none" stroke="black" cx="430.779" cy="-4033.52" rx="94.55" ry="18"/>
 780 | <text text-anchor="middle" x="430.779" y="-4031.02" font-family="Times New Roman,serif" font-size="10.00">WT_FOR_LTE_RRC_ABORT_CNF</text>
 781 | </g>
 782 | <!-- LTE_RRC_IRAT_FROM_DO_MGR_SM&#45;&gt;n45 -->
 783 | <g id="edge55" class="edge"><title>LTE_RRC_IRAT_FROM_DO_MGR_SM&#45;&gt;n45</title>
 784 | <path fill="none" stroke="black" d="M406.47,-4324.09C410.807,-4272.25 423.15,-4124.71 428.385,-4062.14"/>
 785 | <polygon fill="black" stroke="black" points="431.902,-4062.08 429.248,-4051.83 424.926,-4061.5 431.902,-4062.08"/>
 786 | </g>
 787 | <!-- n46 -->
 788 | <g id="node57" class="node"><title>n46</title>
 789 | <ellipse fill="none" stroke="black" cx="671.578" cy="-4184.28" rx="83.003" ry="18"/>
 790 | <text text-anchor="middle" x="671.578" y="-4181.78" font-family="Times New Roman,serif" font-size="10.00">WT_FOR_ACTIVATION_RSP</text>
 791 | </g>
 792 | <!-- LTE_RRC_IRAT_FROM_DO_MGR_SM&#45;&gt;n46 -->
 793 | <g id="edge56" class="edge"><title>LTE_RRC_IRAT_FROM_DO_MGR_SM&#45;&gt;n46</title>
 794 | <path fill="none" stroke="black" d="M435.519,-4324.34C484.659,-4295.18 581.044,-4238 634.191,-4206.47"/>
 795 | <polygon fill="black" stroke="black" points="636.149,-4209.37 642.963,-4201.26 632.577,-4203.35 636.149,-4209.37"/>
 796 | </g>
 797 | <!-- n47 -->
 798 | <g id="node59" class="node"><title>n47</title>
 799 | <ellipse fill="none" stroke="black" cx="658.298" cy="-3570.8" rx="30.0436" ry="18"/>
 800 | <text text-anchor="middle" x="658.298" y="-3568.3" font-family="Times New Roman,serif" font-size="10.00">INITIAL</text>
 801 | </g>
 802 | <!-- LTE_RRC_IRAT_FROM_TDS_MGR_SM&#45;&gt;n47 -->
 803 | <g id="edge58" class="edge"><title>LTE_RRC_IRAT_FROM_TDS_MGR_SM&#45;&gt;n47</title>
 804 | <path fill="none" stroke="black" d="M413.59,-3455.52C469.542,-3481.88 572.407,-3530.34 625.171,-3555.19"/>
 805 | <polygon fill="black" stroke="black" points="623.88,-3558.45 634.418,-3559.55 626.863,-3552.12 623.88,-3558.45"/>
 806 | </g>
 807 | <!-- n48 -->
 808 | <g id="node60" class="node"><title>n48</title>
 809 | <ellipse fill="none" stroke="black" cx="525.905" cy="-3711.72" rx="77.2299" ry="18"/>
 810 | <text text-anchor="middle" x="525.905" y="-3709.22" font-family="Times New Roman,serif" font-size="10.00">WT_FOR_ACTIVATE_CNF</text>
 811 | </g>
 812 | <!-- LTE_RRC_IRAT_FROM_TDS_MGR_SM&#45;&gt;n48 -->
 813 | <g id="edge59" class="edge"><title>LTE_RRC_IRAT_FROM_TDS_MGR_SM&#45;&gt;n48</title>
 814 | <path fill="none" stroke="black" d="M385.231,-3455.81C411.264,-3503.17 480.597,-3629.29 511.125,-3684.83"/>
 815 | <polygon fill="black" stroke="black" points="508.133,-3686.65 516.017,-3693.73 514.267,-3683.28 508.133,-3686.65"/>
 816 | </g>
 817 | <!-- n49 -->
 818 | <g id="node61" class="node"><title>n49</title>
 819 | <ellipse fill="none" stroke="black" cx="261.973" cy="-3729.28" rx="106.596" ry="18"/>
 820 | <text text-anchor="middle" x="261.973" y="-3726.78" font-family="Times New Roman,serif" font-size="10.00">WT_TO_ABORT_DURING_ACTIVATE</text>
 821 | </g>
 822 | <!-- LTE_RRC_IRAT_FROM_TDS_MGR_SM&#45;&gt;n49 -->
 823 | <g id="edge60" class="edge"><title>LTE_RRC_IRAT_FROM_TDS_MGR_SM&#45;&gt;n49</title>
 824 | <path fill="none" stroke="black" d="M368.026,-3455.64C348.82,-3505.2 295.629,-3642.44 272.709,-3701.58"/>
 825 | <polygon fill="black" stroke="black" points="269.398,-3700.44 269.047,-3711.02 275.925,-3702.96 269.398,-3700.44"/>
 826 | </g>
 827 | <!-- n50 -->
 828 | <g id="node62" class="node"><title>n50</title>
 829 | <ellipse fill="none" stroke="black" cx="83.8884" cy="-3552.25" rx="62.2967" ry="18"/>
 830 | <text text-anchor="middle" x="83.8884" y="-3549.75" font-family="Times New Roman,serif" font-size="10.00">WT_FOR_LTE_KEYS</text>
 831 | </g>
 832 | <!-- LTE_RRC_IRAT_FROM_TDS_MGR_SM&#45;&gt;n50 -->
 833 | <g id="edge61" class="edge"><title>LTE_RRC_IRAT_FROM_TDS_MGR_SM&#45;&gt;n50</title>
 834 | <path fill="none" stroke="black" d="M329.28,-3455.46C275.034,-3476.85 185.186,-3512.29 130.568,-3533.84"/>
 835 | <polygon fill="black" stroke="black" points="129.145,-3530.63 121.126,-3537.56 131.713,-3537.15 129.145,-3530.63"/>
 836 | </g>
 837 | <!-- n51 -->
 838 | <g id="node63" class="node"><title>n51</title>
 839 | <ellipse fill="none" stroke="black" cx="84.1788" cy="-3321.79" rx="84.358" ry="18"/>
 840 | <text text-anchor="middle" x="84.1788" y="-3319.29" font-family="Times New Roman,serif" font-size="10.00">WT_FOR_DEACTIVATE_CNF</text>
 841 | </g>
 842 | <!-- LTE_RRC_IRAT_FROM_TDS_MGR_SM&#45;&gt;n51 -->
 843 | <g id="edge62" class="edge"><title>LTE_RRC_IRAT_FROM_TDS_MGR_SM&#45;&gt;n51</title>
 844 | <path fill="none" stroke="black" d="M329.646,-3419.32C276.428,-3398.18 188.598,-3363.28 133.692,-3341.46"/>
 845 | <polygon fill="black" stroke="black" points="134.758,-3338.12 124.173,-3337.68 132.174,-3344.63 134.758,-3338.12"/>
 846 | </g>
 847 | <!-- n52 -->
 848 | <g id="node64" class="node"><title>n52</title>
 849 | <ellipse fill="none" stroke="black" cx="265.461" cy="-3144.17" rx="87.9221" ry="18"/>
 850 | <text text-anchor="middle" x="265.461" y="-3141.67" font-family="Times New Roman,serif" font-size="10.00">WT_FOR_LTE_TO_COMPLETE</text>
 851 | </g>
 852 | <!-- LTE_RRC_IRAT_FROM_TDS_MGR_SM&#45;&gt;n52 -->
 853 | <g id="edge63" class="edge"><title>LTE_RRC_IRAT_FROM_TDS_MGR_SM&#45;&gt;n52</title>
 854 | <path fill="none" stroke="black" d="M368.244,-3419.04C349.586,-3369.15 297.833,-3230.74 275.707,-3171.57"/>
 855 | <polygon fill="black" stroke="black" points="278.958,-3170.27 272.177,-3162.13 272.401,-3172.72 278.958,-3170.27"/>
 856 | </g>
 857 | <!-- n53 -->
 858 | <g id="node65" class="node"><title>n53</title>
 859 | <ellipse fill="none" stroke="black" cx="517.762" cy="-3158.73" rx="83.003" ry="18"/>
 860 | <text text-anchor="middle" x="517.762" y="-3156.23" font-family="Times New Roman,serif" font-size="10.00">WT_FOR_ACTIVATION_RSP</text>
 861 | </g>
 862 | <!-- LTE_RRC_IRAT_FROM_TDS_MGR_SM&#45;&gt;n53 -->
 863 | <g id="edge64" class="edge"><title>LTE_RRC_IRAT_FROM_TDS_MGR_SM&#45;&gt;n53</title>
 864 | <path fill="none" stroke="black" d="M384.463,-3419.1C408.957,-3371.26 475.039,-3242.18 503.928,-3185.75"/>
 865 | <polygon fill="black" stroke="black" points="507.111,-3187.22 508.553,-3176.72 500.881,-3184.03 507.111,-3187.22"/>
 866 | </g>
 867 | <!-- n54 -->
 868 | <g id="node66" class="node"><title>n54</title>
 869 | <ellipse fill="none" stroke="black" cx="678.873" cy="-3361.74" rx="94.55" ry="18"/>
 870 | <text text-anchor="middle" x="678.873" y="-3359.24" font-family="Times New Roman,serif" font-size="10.00">WT_FOR_LTE_RRC_ABORT_CNF</text>
 871 | </g>
 872 | <!-- LTE_RRC_IRAT_FROM_TDS_MGR_SM&#45;&gt;n54 -->
 873 | <g id="edge65" class="edge"><title>LTE_RRC_IRAT_FROM_TDS_MGR_SM&#45;&gt;n54</title>
 874 | <path fill="none" stroke="black" d="M447.477,-3419.36C497.223,-3406.97 562.815,-3390.64 611.458,-3378.53"/>
 875 | <polygon fill="black" stroke="black" points="612.402,-3381.9 621.26,-3376.09 610.71,-3375.11 612.402,-3381.9"/>
 876 | </g>
 877 | <!-- n55 -->
 878 | <g id="node68" class="node"><title>n55</title>
 879 | <ellipse fill="none" stroke="black" cx="573.066" cy="-2909.15" rx="30.0436" ry="18"/>
 880 | <text text-anchor="middle" x="573.066" y="-2906.65" font-family="Times New Roman,serif" font-size="10.00">INITIAL</text>
 881 | </g>
 882 | <!-- LTE_RRC_PAGING_SM&#45;&gt;n55 -->
 883 | <g id="edge67" class="edge"><title>LTE_RRC_PAGING_SM&#45;&gt;n55</title>
 884 | <path fill="none" stroke="black" d="M530.784,-2729.08C538.968,-2763.94 556.832,-2840.02 566.515,-2881.25"/>
 885 | <polygon fill="black" stroke="black" points="563.152,-2882.24 568.845,-2891.17 569.967,-2880.64 563.152,-2882.24"/>
 886 | </g>
 887 | <!-- n56 -->
 888 | <g id="node69" class="node"><title>n56</title>
 889 | <ellipse fill="none" stroke="black" cx="330.785" cy="-2654" rx="48.0418" ry="18"/>
 890 | <text text-anchor="middle" x="330.785" y="-2651.5" font-family="Times New Roman,serif" font-size="10.00">IDLE_CAMPED</text>
 891 | </g>
 892 | <!-- LTE_RRC_PAGING_SM&#45;&gt;n56 -->
 893 | <g id="edge68" class="edge"><title>LTE_RRC_PAGING_SM&#45;&gt;n56</title>
 894 | <path fill="none" stroke="black" d="M464.296,-2692.73C436.729,-2684.74 404.787,-2675.47 379.06,-2668"/>
 895 | <polygon fill="black" stroke="black" points="379.747,-2664.56 369.168,-2665.13 377.796,-2671.28 379.747,-2664.56"/>
 896 | </g>
 897 | <!-- n57 -->
 898 | <g id="node70" class="node"><title>n57</title>
 899 | <ellipse fill="none" stroke="black" cx="680.384" cy="-2577.22" rx="42.2678" ry="18"/>
 900 | <text text-anchor="middle" x="680.384" y="-2574.72" font-family="Times New Roman,serif" font-size="10.00">CONNECTED</text>
 901 | </g>
 902 | <!-- LTE_RRC_PAGING_SM&#45;&gt;n57 -->
 903 | <g id="edge69" class="edge"><title>LTE_RRC_PAGING_SM&#45;&gt;n57</title>
 904 | <path fill="none" stroke="black" d="M547.241,-2692.76C574.807,-2668.84 623.527,-2626.56 653.768,-2600.32"/>
 905 | <polygon fill="black" stroke="black" points="656.146,-2602.89 661.405,-2593.69 651.558,-2597.6 656.146,-2602.89"/>
 906 | </g>
 907 | <!-- n58 -->
 908 | <g id="node72" class="node"><title>n58</title>
 909 | <ellipse fill="none" stroke="black" cx="915.97" cy="-2314.86" rx="30.0436" ry="18"/>
 910 | <text text-anchor="middle" x="915.97" y="-2312.36" font-family="Times New Roman,serif" font-size="10.00">INITIAL</text>
 911 | </g>
 912 | <!-- LTE_RRC_CONFIG_SM&#45;&gt;n58 -->
 913 | <g id="edge71" class="edge"><title>LTE_RRC_CONFIG_SM&#45;&gt;n58</title>
 914 | <path fill="none" stroke="black" d="M808.547,-2103.93C829.156,-2144.39 878.524,-2241.33 902.478,-2288.37"/>
 915 | <polygon fill="black" stroke="black" points="899.392,-2290.02 907.049,-2297.34 905.63,-2286.84 899.392,-2290.02"/>
 916 | </g>
 917 | <!-- n59 -->
 918 | <g id="node73" class="node"><title>n59</title>
 919 | <ellipse fill="none" stroke="black" cx="659.007" cy="-2301.36" rx="67.893" ry="18"/>
 920 | <text text-anchor="middle" x="659.007" y="-2298.86" font-family="Times New Roman,serif" font-size="10.00">WAIT_FOR_CFG_CNFI</text>
 921 | </g>
 922 | <!-- LTE_RRC_CONFIG_SM&#45;&gt;n59 -->
 923 | <g id="edge72" class="edge"><title>LTE_RRC_CONFIG_SM&#45;&gt;n59</title>
 924 | <path fill="none" stroke="black" d="M787.477,-2103.58C762.729,-2141.68 705.021,-2230.52 676.127,-2275"/>
 925 | <polygon fill="black" stroke="black" points="673.098,-2273.24 670.586,-2283.53 678.969,-2277.05 673.098,-2273.24"/>
 926 | </g>
 927 | <!-- n60 -->
 928 | <g id="node74" class="node"><title>n60</title>
 929 | <ellipse fill="none" stroke="black" cx="551.308" cy="-2016.42" rx="86.5669" ry="18"/>
 930 | <text text-anchor="middle" x="551.308" y="-2013.92" font-family="Times New Roman,serif" font-size="10.00">WAIT_FOR_MEAS_CFG_CNFI</text>
 931 | </g>
 932 | <!-- LTE_RRC_CONFIG_SM&#45;&gt;n60 -->
 933 | <g id="edge73" class="edge"><title>LTE_RRC_CONFIG_SM&#45;&gt;n60</title>
 934 | <path fill="none" stroke="black" d="M734.384,-2067.48C696.855,-2057.01 649.878,-2043.91 612.907,-2033.6"/>
 935 | <polygon fill="black" stroke="black" points="613.822,-2030.22 603.249,-2030.9 611.942,-2036.96 613.822,-2030.22"/>
 936 | </g>
 937 | <!-- n61 -->
 938 | <g id="node75" class="node"><title>n61</title>
 939 | <ellipse fill="none" stroke="black" cx="816.221" cy="-1828.77" rx="93.0175" ry="18"/>
 940 | <text text-anchor="middle" x="816.221" y="-1826.27" font-family="Times New Roman,serif" font-size="10.00">WAIT_FOR_MAC_ACCESS_CNF</text>
 941 | </g>
 942 | <!-- LTE_RRC_CONFIG_SM&#45;&gt;n61 -->
 943 | <g id="edge74" class="edge"><title>LTE_RRC_CONFIG_SM&#45;&gt;n61</title>
 944 | <path fill="none" stroke="black" d="M800.385,-2067.49C803.311,-2023.38 810.839,-1909.9 814.357,-1856.87"/>
 945 | <polygon fill="black" stroke="black" points="817.855,-1857.02 815.024,-1846.81 810.87,-1856.56 817.855,-1857.02"/>
 946 | </g>
 947 | <!-- n62 -->
 948 | <g id="node76" class="node"><title>n62</title>
 949 | <ellipse fill="none" stroke="black" cx="1055.7" cy="-2064.98" rx="101.678" ry="18"/>
 950 | <text text-anchor="middle" x="1055.7" y="-2062.48" font-family="Times New Roman,serif" font-size="10.00">WAIT_FOR_PS_HO_TO_COMPLETE</text>
 951 | </g>
 952 | <!-- LTE_RRC_CONFIG_SM&#45;&gt;n62 -->
 953 | <g id="edge75" class="edge"><title>LTE_RRC_CONFIG_SM&#45;&gt;n62</title>
 954 | <path fill="none" stroke="black" d="M882.825,-2078.84C905.112,-2077.05 929.453,-2075.1 952.649,-2073.24"/>
 955 | <polygon fill="black" stroke="black" points="953.173,-2076.71 962.862,-2072.42 952.614,-2069.73 953.173,-2076.71"/>
 956 | </g>
 957 | <!-- n63 -->
 958 | <g id="node78" class="node"><title>n63</title>
 959 | <ellipse fill="none" stroke="black" cx="1031.74" cy="-1542.75" rx="30.0436" ry="18"/>
 960 | <text text-anchor="middle" x="1031.74" y="-1540.25" font-family="Times New Roman,serif" font-size="10.00">INITIAL</text>
 961 | </g>
 962 | <!-- LTE_RRC_MISC_SM&#45;&gt;n63 -->
 963 | <g id="edge77" class="edge"><title>LTE_RRC_MISC_SM&#45;&gt;n63</title>
 964 | <path fill="none" stroke="black" d="M1146.81,-1634.83C1122.39,-1615.29 1083.65,-1584.29 1057.96,-1563.74"/>
 965 | <polygon fill="black" stroke="black" points="1060.11,-1560.97 1050.12,-1557.46 1055.74,-1566.44 1060.11,-1560.97"/>
 966 | </g>
 967 | <!-- n64 -->
 968 | <g id="node80" class="node"><title>n64</title>
 969 | <ellipse fill="none" stroke="black" cx="1536.82" cy="-1447.9" rx="35.1405" ry="18"/>
 970 | <text text-anchor="middle" x="1536.82" y="-1445.4" font-family="Times New Roman,serif" font-size="10.00">INACTIVE</text>
 971 | </g>
 972 | <!-- LTE_RRC_MEAS_SM&#45;&gt;n64 -->
 973 | <g id="edge79" class="edge"><title>LTE_RRC_MEAS_SM&#45;&gt;n64</title>
 974 | <path fill="none" stroke="black" d="M1520.05,-1207.46C1523.15,-1251.89 1531.12,-1366.19 1534.84,-1419.61"/>
 975 | <polygon fill="black" stroke="black" points="1531.36,-1420.01 1535.55,-1429.74 1538.35,-1419.52 1531.36,-1420.01"/>
 976 | </g>
 977 | <!-- n65 -->
 978 | <g id="node81" class="node"><title>n65</title>
 979 | <ellipse fill="none" stroke="black" cx="1300.13" cy="-1328.58" rx="48.0418" ry="18"/>
 980 | <text text-anchor="middle" x="1300.13" y="-1326.08" font-family="Times New Roman,serif" font-size="10.00">IDLE_CAMPED</text>
 981 | </g>
 982 | <!-- LTE_RRC_MEAS_SM&#45;&gt;n65 -->
 983 | <g id="edge80" class="edge"><title>LTE_RRC_MEAS_SM&#45;&gt;n65</title>
 984 | <path fill="none" stroke="black" d="M1490.2,-1207.49C1449.78,-1233.24 1376.09,-1280.18 1333.31,-1307.44"/>
 985 | <polygon fill="black" stroke="black" points="1331.23,-1304.61 1324.67,-1312.94 1334.99,-1310.52 1331.23,-1304.61"/>
 986 | </g>
 987 | <!-- n66 -->
 988 | <g id="node82" class="node"><title>n66</title>
 989 | <ellipse fill="none" stroke="black" cx="1323.76" cy="-1018.45" rx="90.8084" ry="18"/>
 990 | <text text-anchor="middle" x="1323.76" y="-1015.95" font-family="Times New Roman,serif" font-size="10.00">WAIT_FOR_IDLE_CONFIG_CNF</text>
 991 | </g>
 992 | <!-- LTE_RRC_MEAS_SM&#45;&gt;n66 -->
 993 | <g id="edge81" class="edge"><title>LTE_RRC_MEAS_SM&#45;&gt;n66</title>
 994 | <path fill="none" stroke="black" d="M1497.91,-1170.99C1462.68,-1140.14 1391.41,-1077.7 1351.84,-1043.04"/>
 995 | <polygon fill="black" stroke="black" points="1353.73,-1040.04 1343.9,-1036.09 1349.11,-1045.31 1353.73,-1040.04"/>
 996 | </g>
 997 | <!-- n67 -->
 998 | <g id="node83" class="node"><title>n67</title>
 999 | <ellipse fill="none" stroke="black" cx="1622.71" cy="-951.762" rx="42.2678" ry="18"/>
1000 | <text text-anchor="middle" x="1622.71" y="-949.262" font-family="Times New Roman,serif" font-size="10.00">CONNECTED</text>
1001 | </g>
1002 | <!-- LTE_RRC_MEAS_SM&#45;&gt;n67 -->
1003 | <g id="edge82" class="edge"><title>LTE_RRC_MEAS_SM&#45;&gt;n67</title>
1004 | <path fill="none" stroke="black" d="M1526.76,-1171.03C1544.91,-1129.57 1589.33,-1028.06 1610.76,-979.08"/>
1005 | <polygon fill="black" stroke="black" points="1614.04,-980.306 1614.84,-969.742 1607.63,-977.5 1614.04,-980.306"/>
1006 | </g>
1007 | <!-- n68 -->
1008 | <g id="node84" class="node"><title>n68</title>
1009 | <ellipse fill="none" stroke="black" cx="1773.61" cy="-1236.98" rx="111.015" ry="18"/>
1010 | <text text-anchor="middle" x="1773.61" y="-1234.48" font-family="Times New Roman,serif" font-size="10.00">WAIT_FOR_CONNECTED_CONFIG_CNF</text>
1011 | </g>
1012 | <!-- LTE_RRC_MEAS_SM&#45;&gt;n68 -->
1013 | <g id="edge83" class="edge"><title>LTE_RRC_MEAS_SM&#45;&gt;n68</title>
1014 | <path fill="none" stroke="black" d="M1594.89,-1203.52C1625.07,-1209.17 1659.85,-1215.68 1690.66,-1221.45"/>
1015 | <polygon fill="black" stroke="black" points="1690.04,-1224.89 1700.52,-1223.29 1691.33,-1218.01 1690.04,-1224.89"/>
1016 | </g>
1017 | <!-- n69 -->
1018 | <g id="node86" class="node"><title>n69</title>
1019 | <ellipse fill="none" stroke="black" cx="2077.35" cy="-978.6" rx="35.1405" ry="18"/>
1020 | <text text-anchor="middle" x="2077.35" y="-976.1" font-family="Times New Roman,serif" font-size="10.00">INACTIVE</text>
1021 | </g>
1022 | <!-- LTE_RRC_CEP_SM&#45;&gt;n69 -->
1023 | <g id="edge85" class="edge"><title>LTE_RRC_CEP_SM&#45;&gt;n69</title>
1024 | <path fill="none" stroke="black" d="M2091.49,-792.877C2088.78,-828.457 2082.74,-907.773 2079.51,-950.329"/>
1025 | <polygon fill="black" stroke="black" points="2076,-950.317 2078.73,-960.554 2082.98,-950.848 2076,-950.317"/>
1026 | </g>
1027 | <!-- n70 -->
1028 | <g id="node87" class="node"><title>n70</title>
1029 | <ellipse fill="none" stroke="black" cx="1894.43" cy="-823.821" rx="53.6367" ry="18"/>
1030 | <text text-anchor="middle" x="1894.43" y="-821.321" font-family="Times New Roman,serif" font-size="10.00">PENDING_RETRY</text>
1031 | </g>
1032 | <!-- LTE_RRC_CEP_SM&#45;&gt;n70 -->
1033 | <g id="edge86" class="edge"><title>LTE_RRC_CEP_SM&#45;&gt;n70</title>
1034 | <path fill="none" stroke="black" d="M2022.63,-792.146C1997.96,-798.241 1970.67,-804.983 1947.63,-810.675"/>
1035 | <polygon fill="black" stroke="black" points="1946.58,-807.331 1937.71,-813.128 1948.26,-814.127 1946.58,-807.331"/>
1036 | </g>
1037 | <!-- n71 -->
1038 | <g id="node88" class="node"><title>n71</title>
1039 | <ellipse fill="none" stroke="black" cx="1980.26" cy="-604.209" rx="30.7213" ry="18"/>
1040 | <text text-anchor="middle" x="1980.26" y="-601.709" font-family="Times New Roman,serif" font-size="10.00">ACCESS</text>
1041 | </g>
1042 | <!-- LTE_RRC_CEP_SM&#45;&gt;n71 -->
1043 | <g id="edge87" class="edge"><title>LTE_RRC_CEP_SM&#45;&gt;n71</title>
1044 | <path fill="none" stroke="black" d="M2080.81,-756.535C2060.71,-726.081 2020.27,-664.822 1997.27,-629.982"/>
1045 | <polygon fill="black" stroke="black" points="1999.98,-627.734 1991.55,-621.316 1994.14,-631.59 1999.98,-627.734"/>
1046 | </g>
1047 | <!-- n72 -->
1048 | <g id="node89" class="node"><title>n72</title>
1049 | <ellipse fill="none" stroke="black" cx="2222.86" cy="-617.058" rx="62.2967" ry="18"/>
1050 | <text text-anchor="middle" x="2222.86" y="-614.558" font-family="Times New Roman,serif" font-size="10.00">CONFIGURING_SRB1</text>
1051 | </g>
1052 | <!-- LTE_RRC_CEP_SM&#45;&gt;n72 -->
1053 | <g id="edge88" class="edge"><title>LTE_RRC_CEP_SM&#45;&gt;n72</title>
1054 | <path fill="none" stroke="black" d="M2107.78,-756.697C2130.8,-728.767 2175.08,-675.034 2201.5,-642.981"/>
1055 | <polygon fill="black" stroke="black" points="2204.46,-644.884 2208.12,-634.941 2199.06,-640.432 2204.46,-644.884"/>
1056 | </g>
1057 | <!-- n73 -->
1058 | <g id="node90" class="node"><title>n73</title>
1059 | <ellipse fill="none" stroke="black" cx="2277.01" cy="-863.488" rx="42.2678" ry="18"/>
1060 | <text text-anchor="middle" x="2277.01" y="-860.988" font-family="Times New Roman,serif" font-size="10.00">CONNECTED</text>
1061 | </g>
1062 | <!-- LTE_RRC_CEP_SM&#45;&gt;n73 -->
1063 | <g id="edge89" class="edge"><title>LTE_RRC_CEP_SM&#45;&gt;n73</title>
1064 | <path fill="none" stroke="black" d="M2130.57,-792.954C2162.42,-808.295 2207.8,-830.149 2239.57,-845.454"/>
1065 | <polygon fill="black" stroke="black" points="2238.44,-848.792 2248.97,-849.978 2241.48,-842.486 2238.44,-848.792"/>
1066 | </g>
1067 | <!-- n74 -->
1068 | <g id="node92" class="node"><title>n74</title>
1069 | <ellipse fill="none" stroke="black" cx="2721.4" cy="-768.301" rx="30.0436" ry="18"/>
1070 | <text text-anchor="middle" x="2721.4" y="-765.801" font-family="Times New Roman,serif" font-size="10.00">INITIAL</text>
1071 | </g>
1072 | <!-- LTE_RRC_IRAT_TO_1X_MGR_SM&#45;&gt;n74 -->
1073 | <g id="edge91" class="edge"><title>LTE_RRC_IRAT_TO_1X_MGR_SM&#45;&gt;n74</title>
1074 | <path fill="none" stroke="black" d="M2761.74,-495.645C2754.46,-544.817 2734.37,-680.646 2725.59,-739.966"/>
1075 | <polygon fill="black" stroke="black" points="2722.09,-739.709 2724.09,-750.114 2729.01,-740.734 2722.09,-739.709"/>
1076 | </g>
1077 | <!-- n75 -->
1078 | <g id="node93" class="node"><title>n75</title>
1079 | <ellipse fill="none" stroke="black" cx="2509.4" cy="-623.762" rx="73.6658" ry="18"/>
1080 | <text text-anchor="middle" x="2509.4" y="-621.262" font-family="Times New Roman,serif" font-size="10.00">WT_FOR_SUSPEND_CNF</text>
1081 | </g>
1082 | <!-- LTE_RRC_IRAT_TO_1X_MGR_SM&#45;&gt;n75 -->
1083 | <g id="edge92" class="edge"><title>LTE_RRC_IRAT_TO_1X_MGR_SM&#45;&gt;n75</title>
1084 | <path fill="none" stroke="black" d="M2732.9,-495.538C2685.98,-522.458 2597.9,-572.989 2547.46,-601.929"/>
1085 | <polygon fill="black" stroke="black" points="2545.43,-599.058 2538.5,-607.07 2548.91,-605.13 2545.43,-599.058"/>
1086 | </g>
1087 | <!-- n76 -->
1088 | <g id="node94" class="node"><title>n76</title>
1089 | <ellipse fill="none" stroke="black" cx="2526.93" cy="-304.127" rx="103.032" ry="18"/>
1090 | <text text-anchor="middle" x="2526.93" y="-301.627" font-family="Times New Roman,serif" font-size="10.00">WT_TO_ABORT_DURING_SUSPEND</text>
1091 | </g>
1092 | <!-- LTE_RRC_IRAT_TO_1X_MGR_SM&#45;&gt;n76 -->
1093 | <g id="edge93" class="edge"><title>LTE_RRC_IRAT_TO_1X_MGR_SM&#45;&gt;n76</title>
1094 | <path fill="none" stroke="black" d="M2739.46,-459.23C2696.21,-427.663 2607.38,-362.834 2559.4,-327.817"/>
1095 | <polygon fill="black" stroke="black" points="2561.35,-324.914 2551.21,-321.846 2557.23,-330.568 2561.35,-324.914"/>
1096 | </g>
1097 | <!-- n77 -->
1098 | <g id="node95" class="node"><title>n77</title>
1099 | <ellipse fill="none" stroke="black" cx="2824.27" cy="-189.589" rx="71.6342" ry="18"/>
1100 | <text text-anchor="middle" x="2824.27" y="-187.089" font-family="Times New Roman,serif" font-size="10.00">WT_FOR_RESUME_CNF</text>
1101 | </g>
1102 | <!-- LTE_RRC_IRAT_TO_1X_MGR_SM&#45;&gt;n77 -->
1103 | <g id="edge94" class="edge"><title>LTE_RRC_IRAT_TO_1X_MGR_SM&#45;&gt;n77</title>
1104 | <path fill="none" stroke="black" d="M2768.17,-459.444C2778.29,-410.777 2806.23,-276.343 2818.44,-217.633"/>
1105 | <polygon fill="black" stroke="black" points="2821.92,-218.092 2820.53,-207.589 2815.06,-216.667 2821.92,-218.092"/>
1106 | </g>
1107 | <!-- n78 -->
1108 | <g id="node96" class="node"><title>n78</title>
1109 | <ellipse fill="none" stroke="black" cx="3046.12" cy="-393.203" rx="82.3257" ry="18"/>
1110 | <text text-anchor="middle" x="3046.12" y="-390.703" font-family="Times New Roman,serif" font-size="10.00">IRAT_TO_1X_IN_PROGRESS</text>
1111 | </g>
1112 | <!-- LTE_RRC_IRAT_TO_1X_MGR_SM&#45;&gt;n78 -->
1113 | <g id="edge95" class="edge"><title>LTE_RRC_IRAT_TO_1X_MGR_SM&#45;&gt;n78</title>
1114 | <path fill="none" stroke="black" d="M2824.86,-459.378C2873,-444.978 2940,-424.941 2987.63,-410.696"/>
1115 | <polygon fill="black" stroke="black" points="2988.91,-413.967 2997.48,-407.748 2986.9,-407.26 2988.91,-413.967"/>
1116 | </g>
1117 | <!-- n79 -->
1118 | <g id="node97" class="node"><title>n79</title>
1119 | <ellipse fill="none" stroke="black" cx="2968.72" cy="-688.903" rx="77.2299" ry="18"/>
1120 | <text text-anchor="middle" x="2968.72" y="-686.403" font-family="Times New Roman,serif" font-size="10.00">WT_FOR_1X_ABORT_RSP</text>
1121 | </g>
1122 | <!-- LTE_RRC_IRAT_TO_1X_MGR_SM&#45;&gt;n79 -->
1123 | <g id="edge96" class="edge"><title>LTE_RRC_IRAT_TO_1X_MGR_SM&#45;&gt;n79</title>
1124 | <path fill="none" stroke="black" d="M2781.85,-495.479C2818.35,-533.26 2902.92,-620.801 2944.61,-663.948"/>
1125 | <polygon fill="black" stroke="black" points="2942.17,-666.459 2951.63,-671.219 2947.2,-661.595 2942.17,-666.459"/>
1126 | </g>
1127 | <!-- n80 -->
1128 | <g id="node99" class="node"><title>n80</title>
1129 | <ellipse fill="none" stroke="black" cx="3543.24" cy="-611.229" rx="30.0436" ry="18"/>
1130 | <text text-anchor="middle" x="3543.24" y="-608.729" font-family="Times New Roman,serif" font-size="10.00">INITIAL</text>
1131 | </g>
1132 | <!-- LTE_RRC_IRAT_FROM_W_MGR_SM&#45;&gt;n80 -->
1133 | <g id="edge98" class="edge"><title>LTE_RRC_IRAT_FROM_W_MGR_SM&#45;&gt;n80</title>
1134 | <path fill="none" stroke="black" d="M3624.04,-335.451C3609.4,-385.408 3568.85,-523.797 3551.4,-583.368"/>
1135 | <polygon fill="black" stroke="black" points="3547.97,-582.628 3548.52,-593.209 3554.69,-584.597 3547.97,-582.628"/>
1136 | </g>
1137 | <!-- n81 -->
1138 | <g id="node100" class="node"><title>n81</title>
1139 | <ellipse fill="none" stroke="black" cx="3387.49" cy="-505.289" rx="77.2299" ry="18"/>
1140 | <text text-anchor="middle" x="3387.49" y="-502.789" font-family="Times New Roman,serif" font-size="10.00">WT_FOR_ACTIVATE_CNF</text>
1141 | </g>
1142 | <!-- LTE_RRC_IRAT_FROM_W_MGR_SM&#45;&gt;n81 -->
1143 | <g id="edge99" class="edge"><title>LTE_RRC_IRAT_FROM_W_MGR_SM&#45;&gt;n81</title>
1144 | <path fill="none" stroke="black" d="M3606.23,-335.098C3562.29,-369.284 3466.95,-443.464 3417.93,-481.6"/>
1145 | <polygon fill="black" stroke="black" points="3415.65,-478.939 3409.91,-487.842 3419.95,-484.464 3415.65,-478.939"/>
1146 | </g>
1147 | <!-- n82 -->
1148 | <g id="node101" class="node"><title>n82</title>
1149 | <ellipse fill="none" stroke="black" cx="3329.81" cy="-252.243" rx="106.596" ry="18"/>
1150 | <text text-anchor="middle" x="3329.81" y="-249.743" font-family="Times New Roman,serif" font-size="10.00">WT_TO_ABORT_DURING_ACTIVATE</text>
1151 | </g>
1152 | <!-- LTE_RRC_IRAT_FROM_W_MGR_SM&#45;&gt;n82 -->
1153 | <g id="edge100" class="edge"><title>LTE_RRC_IRAT_FROM_W_MGR_SM&#45;&gt;n82</title>
1154 | <path fill="none" stroke="black" d="M3545.97,-298.997C3501.96,-289.476 3448.36,-277.885 3405.55,-268.625"/>
1155 | <polygon fill="black" stroke="black" points="3406.27,-265.199 3395.76,-266.506 3404.79,-272.041 3406.27,-265.199"/>
1156 | </g>
1157 | <!-- n83 -->
1158 | <g id="node102" class="node"><title>n83</title>
1159 | <ellipse fill="none" stroke="black" cx="3474.04" cy="-52.802" rx="62.2967" ry="18"/>
1160 | <text text-anchor="middle" x="3474.04" y="-50.302" font-family="Times New Roman,serif" font-size="10.00">WT_FOR_LTE_KEYS</text>
1161 | </g>
1162 | <!-- LTE_RRC_IRAT_FROM_W_MGR_SM&#45;&gt;n83 -->
1163 | <g id="edge101" class="edge"><title>LTE_RRC_IRAT_FROM_W_MGR_SM&#45;&gt;n83</title>
1164 | <path fill="none" stroke="black" d="M3618.75,-298.886C3591.91,-253.236 3521.51,-133.52 3489.86,-79.6947"/>
1165 | <polygon fill="black" stroke="black" points="3492.68,-77.5883 3484.59,-70.7424 3486.65,-81.1366 3492.68,-77.5883"/>
1166 | </g>
1167 | <!-- n84 -->
1168 | <g id="node103" class="node"><title>n84</title>
1169 | <ellipse fill="none" stroke="black" cx="3696.82" cy="-18" rx="84.358" ry="18"/>
1170 | <text text-anchor="middle" x="3696.82" y="-15.5" font-family="Times New Roman,serif" font-size="10.00">WT_FOR_DEACTIVATE_CNF</text>
1171 | </g>
1172 | <!-- LTE_RRC_IRAT_FROM_W_MGR_SM&#45;&gt;n84 -->
1173 | <g id="edge102" class="edge"><title>LTE_RRC_IRAT_FROM_W_MGR_SM&#45;&gt;n84</title>
1174 | <path fill="none" stroke="black" d="M3633.55,-298.792C3644.92,-248.308 3676.86,-106.575 3690.51,-46.0114"/>
1175 | <polygon fill="black" stroke="black" points="3693.98,-46.5425 3692.76,-36.0177 3687.15,-45.0036 3693.98,-46.5425"/>
1176 | </g>
1177 | <!-- n85 -->
1178 | <g id="node104" class="node"><title>n85</title>
1179 | <ellipse fill="none" stroke="black" cx="3896.47" cy="-166.507" rx="87.9221" ry="18"/>
1180 | <text text-anchor="middle" x="3896.47" y="-164.007" font-family="Times New Roman,serif" font-size="10.00">WT_FOR_LTE_TO_COMPLETE</text>
1181 | </g>
1182 | <!-- LTE_RRC_IRAT_FROM_W_MGR_SM&#45;&gt;n85 -->
1183 | <g id="edge103" class="edge"><title>LTE_RRC_IRAT_FROM_W_MGR_SM&#45;&gt;n85</title>
1184 | <path fill="none" stroke="black" d="M3661.38,-299.039C3710.45,-271.373 3804.27,-218.485 3857.35,-188.562"/>
1185 | <polygon fill="black" stroke="black" points="3859.14,-191.569 3866.13,-183.609 3855.7,-185.471 3859.14,-191.569"/>
1186 | </g>
1187 | <!-- n86 -->
1188 | <g id="node105" class="node"><title>n86</title>
1189 | <ellipse fill="none" stroke="black" cx="3920.55" cy="-413.079" rx="83.003" ry="18"/>
1190 | <text text-anchor="middle" x="3920.55" y="-410.579" font-family="Times New Roman,serif" font-size="10.00">WT_FOR_ACTIVATION_RSP</text>
1191 | </g>
1192 | <!-- LTE_RRC_IRAT_FROM_W_MGR_SM&#45;&gt;n86 -->
1193 | <g id="edge104" class="edge"><title>LTE_RRC_IRAT_FROM_W_MGR_SM&#45;&gt;n86</title>
1194 | <path fill="none" stroke="black" d="M3684.19,-335.111C3735.87,-352.159 3812.98,-377.595 3864.94,-394.734"/>
1195 | <polygon fill="black" stroke="black" points="3864.06,-398.131 3874.66,-397.94 3866.26,-391.484 3864.06,-398.131"/>
1196 | </g>
1197 | <!-- n87 -->
1198 | <g id="node106" class="node"><title>n87</title>
1199 | <ellipse fill="none" stroke="black" cx="3748" cy="-599.736" rx="94.55" ry="18"/>
1200 | <text text-anchor="middle" x="3748" y="-597.236" font-family="Times New Roman,serif" font-size="10.00">WT_FOR_LTE_RRC_ABORT_CNF</text>
1201 | </g>
1202 | <!-- LTE_RRC_IRAT_FROM_W_MGR_SM&#45;&gt;n87 -->
1203 | <g id="edge105" class="edge"><title>LTE_RRC_IRAT_FROM_W_MGR_SM&#45;&gt;n87</title>
1204 | <path fill="none" stroke="black" d="M3637.03,-335.162C3657.23,-383.329 3712.38,-514.81 3736.48,-572.26"/>
1205 | <polygon fill="black" stroke="black" points="3733.37,-573.905 3740.47,-581.773 3739.83,-571.198 3733.37,-573.905"/>
1206 | </g>
1207 | <!-- n88 -->
1208 | <g id="node108" class="node"><title>n88</title>
1209 | <ellipse fill="none" stroke="black" cx="4149.86" cy="-322.312" rx="35.1405" ry="18"/>
1210 | <text text-anchor="middle" x="4149.86" y="-319.812" font-family="Times New Roman,serif" font-size="10.00">INACTIVE</text>
1211 | </g>
1212 | <!-- LTE_RRC_MDT_SM&#45;&gt;n88 -->
1213 | <g id="edge107" class="edge"><title>LTE_RRC_MDT_SM&#45;&gt;n88</title>
1214 | <path fill="none" stroke="black" d="M4255.15,-337.795C4234.49,-334.757 4212.62,-331.541 4194.19,-328.831"/>
1215 | <polygon fill="black" stroke="black" points="4194.46,-325.333 4184.06,-327.341 4193.44,-332.258 4194.46,-325.333"/>
1216 | </g>
1217 | <!-- n89 -->
1218 | <g id="node109" class="node"><title>n89</title>
1219 | <ellipse fill="none" stroke="black" cx="4505.68" cy="-374.636" rx="29.3664" ry="18"/>
1220 | <text text-anchor="middle" x="4505.68" y="-372.136" font-family="Times New Roman,serif" font-size="10.00">ACTIVE</text>
1221 | </g>
1222 | <!-- LTE_RRC_MDT_SM&#45;&gt;n89 -->
1223 | <g id="edge108" class="edge"><title>LTE_RRC_MDT_SM&#45;&gt;n89</title>
1224 | <path fill="none" stroke="black" d="M4400.39,-359.153C4423.19,-362.506 4447.48,-366.078 4466.97,-368.945"/>
1225 | <polygon fill="black" stroke="black" points="4466.58,-372.425 4476.98,-370.417 4467.6,-365.499 4466.58,-372.425"/>
1226 | </g>
1227 | <!-- n90 -->
1228 | <g id="node111" class="node"><title>n90</title>
1229 | <ellipse fill="none" stroke="black" cx="4792.64" cy="-733.137" rx="30.0436" ry="18"/>
1230 | <text text-anchor="middle" x="4792.64" y="-730.637" font-family="Times New Roman,serif" font-size="10.00">INITIAL</text>
1231 | </g>
1232 | <!-- LTE_RRC_IRAT_TO_DO_MGR_SM&#45;&gt;n90 -->
1233 | <g id="edge110" class="edge"><title>LTE_RRC_IRAT_TO_DO_MGR_SM&#45;&gt;n90</title>
1234 | <path fill="none" stroke="black" d="M4975.68,-532.902C4939.58,-572.392 4854.26,-665.728 4814.16,-709.59"/>
1235 | <polygon fill="black" stroke="black" points="4811.39,-707.438 4807.23,-717.18 4816.56,-712.161 4811.39,-707.438"/>
1236 | </g>
1237 | <!-- n91 -->
1238 | <g id="node112" class="node"><title>n91</title>
1239 | <ellipse fill="none" stroke="black" cx="4699.1" cy="-554.965" rx="50.0727" ry="18"/>
1240 | <text text-anchor="middle" x="4699.1" y="-552.465" font-family="Times New Roman,serif" font-size="10.00">WT_FOR_SIB_1</text>
1241 | </g>
1242 | <!-- LTE_RRC_IRAT_TO_DO_MGR_SM&#45;&gt;n91 -->
1243 | <g id="edge111" class="edge"><title>LTE_RRC_IRAT_TO_DO_MGR_SM&#45;&gt;n91</title>
1244 | <path fill="none" stroke="black" d="M4870.96,-531.339C4831.29,-536.792 4789.08,-542.595 4756.42,-547.085"/>
1245 | <polygon fill="black" stroke="black" points="4755.6,-543.665 4746.17,-548.495 4756.55,-550.6 4755.6,-543.665"/>
1246 | </g>
1247 | <!-- n92 -->
1248 | <g id="node113" class="node"><title>n92</title>
1249 | <ellipse fill="none" stroke="black" cx="4766.75" cy="-323.011" rx="73.6658" ry="18"/>
1250 | <text text-anchor="middle" x="4766.75" y="-320.511" font-family="Times New Roman,serif" font-size="10.00">WT_FOR_SUSPEND_CNF</text>
1251 | </g>
1252 | <!-- LTE_RRC_IRAT_TO_DO_MGR_SM&#45;&gt;n92 -->
1253 | <g id="edge112" class="edge"><title>LTE_RRC_IRAT_TO_DO_MGR_SM&#45;&gt;n92</title>
1254 | <path fill="none" stroke="black" d="M4971.14,-496.621C4930.36,-461.989 4841.08,-386.147 4795.2,-347.178"/>
1255 | <polygon fill="black" stroke="black" points="4797.32,-344.381 4787.43,-340.575 4792.78,-349.716 4797.32,-344.381"/>
1256 | </g>
1257 | <!-- n93 -->
1258 | <g id="node114" class="node"><title>n93</title>
1259 | <ellipse fill="none" stroke="black" cx="5037.51" cy="-222.097" rx="103.032" ry="18"/>
1260 | <text text-anchor="middle" x="5037.51" y="-219.597" font-family="Times New Roman,serif" font-size="10.00">WT_TO_ABORT_DURING_SUSPEND</text>
1261 | </g>
1262 | <!-- LTE_RRC_IRAT_TO_DO_MGR_SM&#45;&gt;n93 -->
1263 | <g id="edge113" class="edge"><title>LTE_RRC_IRAT_TO_DO_MGR_SM&#45;&gt;n93</title>
1264 | <path fill="none" stroke="black" d="M4995.18,-496.349C5002.82,-446.889 5023.9,-310.265 5033.11,-250.598"/>
1265 | <polygon fill="black" stroke="black" points="5036.62,-250.808 5034.69,-240.391 5029.7,-249.74 5036.62,-250.808"/>
1266 | </g>
1267 | <!-- n94 -->
1268 | <g id="node115" class="node"><title>n94</title>
1269 | <ellipse fill="none" stroke="black" cx="5264.56" cy="-398.317" rx="71.6342" ry="18"/>
1270 | <text text-anchor="middle" x="5264.56" y="-395.817" font-family="Times New Roman,serif" font-size="10.00">WT_FOR_RESUME_CNF</text>
1271 | </g>
1272 | <!-- LTE_RRC_IRAT_TO_DO_MGR_SM&#45;&gt;n94 -->
1273 | <g id="edge114" class="edge"><title>LTE_RRC_IRAT_TO_DO_MGR_SM&#45;&gt;n94</title>
1274 | <path fill="none" stroke="black" d="M5034.59,-496.6C5084.5,-475.272 5167.23,-439.912 5218.68,-417.926"/>
1275 | <polygon fill="black" stroke="black" points="5220.08,-421.131 5227.9,-413.983 5217.33,-414.695 5220.08,-421.131"/>
1276 | </g>
1277 | <!-- n95 -->
1278 | <g id="node116" class="node"><title>n95</title>
1279 | <ellipse fill="none" stroke="black" cx="5245.6" cy="-667.928" rx="83.6804" ry="18"/>
1280 | <text text-anchor="middle" x="5245.6" y="-665.428" font-family="Times New Roman,serif" font-size="10.00">IRAT_TO_DO_IN_PROGRESS</text>
1281 | </g>
1282 | <!-- LTE_RRC_IRAT_TO_DO_MGR_SM&#45;&gt;n95 -->
1283 | <g id="edge115" class="edge"><title>LTE_RRC_IRAT_TO_DO_MGR_SM&#45;&gt;n95</title>
1284 | <path fill="none" stroke="black" d="M5022.4,-532.835C5069,-561.037 5158.56,-615.242 5208.91,-645.718"/>
1285 | <polygon fill="black" stroke="black" points="5207.17,-648.756 5217.54,-650.94 5210.79,-642.767 5207.17,-648.756"/>
1286 | </g>
1287 | <!-- n96 -->
1288 | <g id="node117" class="node"><title>n96</title>
1289 | <ellipse fill="none" stroke="black" cx="5007.89" cy="-810.258" rx="79.439" ry="18"/>
1290 | <text text-anchor="middle" x="5007.89" y="-807.758" font-family="Times New Roman,serif" font-size="10.00">WT_FOR_DO_ABORT_CNF</text>
1291 | </g>
1292 | <!-- LTE_RRC_IRAT_TO_DO_MGR_SM&#45;&gt;n96 -->
1293 | <g id="edge116" class="edge"><title>LTE_RRC_IRAT_TO_DO_MGR_SM&#45;&gt;n96</title>
1294 | <path fill="none" stroke="black" d="M4993.31,-532.696C4995.92,-582.378 5003.23,-721.461 5006.4,-781.767"/>
1295 | <polygon fill="black" stroke="black" points="5002.92,-782.269 5006.94,-792.072 5009.91,-781.902 5002.92,-782.269"/>
1296 | </g>
1297 | <!-- n97 -->
1298 | <g id="node119" class="node"><title>n97</title>
1299 | <ellipse fill="none" stroke="black" cx="5506.62" cy="-1020.26" rx="35.1405" ry="18"/>
1300 | <text text-anchor="middle" x="5506.62" y="-1017.76" font-family="Times New Roman,serif" font-size="10.00">INACTIVE</text>
1301 | </g>
1302 | <!-- LTE_RRC_CONTROLLER_SM&#45;&gt;n97 -->
1303 | <g id="edge118" class="edge"><title>LTE_RRC_CONTROLLER_SM&#45;&gt;n97</title>
1304 | <path fill="none" stroke="black" d="M5681.38,-884.974C5644.66,-913.399 5573.88,-968.2 5534.6,-998.607"/>
1305 | <polygon fill="black" stroke="black" points="5532.02,-996.177 5526.25,-1005.07 5536.3,-1001.71 5532.02,-996.177"/>
1306 | </g>
1307 | <!-- n98 -->
1308 | <g id="node120" class="node"><title>n98</title>
1309 | <ellipse fill="none" stroke="black" cx="5456.5" cy="-832.469" rx="62.9739" ry="18"/>
1310 | <text text-anchor="middle" x="5456.5" y="-829.969" font-family="Times New Roman,serif" font-size="10.00">IDLE_NOT_CAMPED</text>
1311 | </g>
1312 | <!-- LTE_RRC_CONTROLLER_SM&#45;&gt;n98 -->
1313 | <g id="edge119" class="edge"><title>LTE_RRC_CONTROLLER_SM&#45;&gt;n98</title>
1314 | <path fill="none" stroke="black" d="M5600.64,-852.368C5574.5,-848.759 5547.15,-844.984 5523.39,-841.703"/>
1315 | <polygon fill="black" stroke="black" points="5523.82,-838.23 5513.44,-840.329 5522.87,-845.164 5523.82,-838.23"/>
1316 | </g>
1317 | <!-- n99 -->
1318 | <g id="node121" class="node"><title>n99</title>
1319 | <ellipse fill="none" stroke="black" cx="5566.23" cy="-657.839" rx="48.0418" ry="18"/>
1320 | <text text-anchor="middle" x="5566.23" y="-655.339" font-family="Times New Roman,serif" font-size="10.00">IDLE_CAMPED</text>
1321 | </g>
1322 | <!-- LTE_RRC_CONTROLLER_SM&#45;&gt;n99 -->
1323 | <g id="edge120" class="edge"><title>LTE_RRC_CONTROLLER_SM&#45;&gt;n99</title>
1324 | <path fill="none" stroke="black" d="M5692.84,-848.587C5668.23,-811.514 5612.17,-727.047 5583.62,-684.043"/>
1325 | <polygon fill="black" stroke="black" points="5586.42,-681.924 5577.97,-675.528 5580.58,-685.795 5586.42,-681.924"/>
1326 | </g>
1327 | <!-- n100 -->
1328 | <g id="node122" class="node"><title>n100</title>
1329 | <ellipse fill="none" stroke="black" cx="5751.98" cy="-620.46" rx="44.978" ry="18"/>
1330 | <text text-anchor="middle" x="5751.98" y="-617.96" font-family="Times New Roman,serif" font-size="10.00">CONNECTING</text>
1331 | </g>
1332 | <!-- LTE_RRC_CONTROLLER_SM&#45;&gt;n100 -->
1333 | <g id="edge121" class="edge"><title>LTE_RRC_CONTROLLER_SM&#45;&gt;n100</title>
1334 | <path fill="none" stroke="black" d="M5708.37,-848.651C5716.5,-806.127 5736.84,-699.646 5746.6,-648.605"/>
1335 | <polygon fill="black" stroke="black" points="5750.07,-649.077 5748.51,-638.597 5743.2,-647.763 5750.07,-649.077"/>
1336 | </g>
1337 | <!-- n101 -->
1338 | <g id="node123" class="node"><title>n101</title>
1339 | <ellipse fill="none" stroke="black" cx="5907.44" cy="-718.906" rx="42.2678" ry="18"/>
1340 | <text text-anchor="middle" x="5907.44" y="-716.406" font-family="Times New Roman,serif" font-size="10.00">CONNECTED</text>
1341 | </g>
1342 | <!-- LTE_RRC_CONTROLLER_SM&#45;&gt;n101 -->
1343 | <g id="edge122" class="edge"><title>LTE_RRC_CONTROLLER_SM&#45;&gt;n101</title>
1344 | <path fill="none" stroke="black" d="M5729.74,-848.632C5767.14,-821.332 5837.78,-769.762 5877.81,-740.538"/>
1345 | <polygon fill="black" stroke="black" points="5880.09,-743.207 5886.1,-734.484 5875.96,-737.554 5880.09,-743.207"/>
1346 | </g>
1347 | <!-- n102 -->
1348 | <g id="node124" class="node"><title>n102</title>
1349 | <ellipse fill="none" stroke="black" cx="5954.24" cy="-893.46" rx="41.4139" ry="18"/>
1350 | <text text-anchor="middle" x="5954.24" y="-890.96" font-family="Times New Roman,serif" font-size="10.00">SUSPENDED</text>
1351 | </g>
1352 | <!-- LTE_RRC_CONTROLLER_SM&#45;&gt;n102 -->
1353 | <g id="edge123" class="edge"><title>LTE_RRC_CONTROLLER_SM&#45;&gt;n102</title>
1354 | <path fill="none" stroke="black" d="M5809.2,-877.93C5841.98,-881.439 5876.69,-885.156 5903.93,-888.073"/>
1355 | <polygon fill="black" stroke="black" points="5903.67,-891.565 5913.99,-889.15 5904.42,-884.605 5903.67,-891.565"/>
1356 | </g>
1357 | <!-- n103 -->
1358 | <g id="node125" class="node"><title>n103</title>
1359 | <ellipse fill="none" stroke="black" cx="5846.03" cy="-1074.04" rx="74.5212" ry="18"/>
1360 | <text text-anchor="middle" x="5846.03" y="-1071.54" font-family="Times New Roman,serif" font-size="10.00">IRAT_TO_LTE_STARTED</text>
1361 | </g>
1362 | <!-- LTE_RRC_CONTROLLER_SM&#45;&gt;n103 -->
1363 | <g id="edge124" class="edge"><title>LTE_RRC_CONTROLLER_SM&#45;&gt;n103</title>
1364 | <path fill="none" stroke="black" d="M5717.18,-884.794C5742.16,-921.485 5799,-1004.96 5828.11,-1047.72"/>
1365 | <polygon fill="black" stroke="black" points="5825.36,-1049.9 5833.88,-1056.2 5831.15,-1045.96 5825.36,-1049.9"/>
1366 | </g>
1367 | <!-- n104 -->
1368 | <g id="node126" class="node"><title>n104</title>
1369 | <ellipse fill="none" stroke="black" cx="5646.33" cy="-1110.58" rx="32.9303" ry="18"/>
1370 | <text text-anchor="middle" x="5646.33" y="-1108.08" font-family="Times New Roman,serif" font-size="10.00">CLOSING</text>
1371 | </g>
1372 | <!-- LTE_RRC_CONTROLLER_SM&#45;&gt;n104 -->
1373 | <g id="edge125" class="edge"><title>LTE_RRC_CONTROLLER_SM&#45;&gt;n104</title>
1374 | <path fill="none" stroke="black" d="M5700.5,-885.089C5690.32,-927.48 5665.08,-1032.52 5652.99,-1082.84"/>
1375 | <polygon fill="black" stroke="black" points="5649.56,-1082.17 5650.62,-1092.71 5656.36,-1083.8 5649.56,-1082.17"/>
1376 | </g>
1377 | <!-- n105 -->
1378 | <g id="node128" class="node"><title>n105</title>
1379 | <ellipse fill="none" stroke="black" cx="6047.45" cy="-1499.91" rx="30.0436" ry="18"/>
1380 | <text text-anchor="middle" x="6047.45" y="-1497.41" font-family="Times New Roman,serif" font-size="10.00">INITIAL</text>
1381 | </g>
1382 | <!-- LTE_RRC_IRAT_TO_TDS_MGR_SM&#45;&gt;n105 -->
1383 | <g id="edge127" class="edge"><title>LTE_RRC_IRAT_TO_TDS_MGR_SM&#45;&gt;n105</title>
1384 | <path fill="none" stroke="black" d="M6285,-1399.85C6229.07,-1423.41 6132.37,-1464.14 6081.31,-1485.65"/>
1385 | <polygon fill="black" stroke="black" points="6079.88,-1482.45 6072.03,-1489.56 6082.6,-1488.91 6079.88,-1482.45"/>
1386 | </g>
1387 | <!-- n106 -->
1388 | <g id="node129" class="node"><title>n106</title>
1389 | <ellipse fill="none" stroke="black" cx="6030.65" cy="-1316.56" rx="73.6658" ry="18"/>
1390 | <text text-anchor="middle" x="6030.65" y="-1314.06" font-family="Times New Roman,serif" font-size="10.00">WT_FOR_SUSPEND_CNF</text>
1391 | </g>
1392 | <!-- LTE_RRC_IRAT_TO_TDS_MGR_SM&#45;&gt;n106 -->
1393 | <g id="edge128" class="edge"><title>LTE_RRC_IRAT_TO_TDS_MGR_SM&#45;&gt;n106</title>
1394 | <path fill="none" stroke="black" d="M6245.49,-1363.7C6198.15,-1353.31 6139.55,-1340.45 6095.51,-1330.79"/>
1395 | <polygon fill="black" stroke="black" points="6096.01,-1327.31 6085.49,-1328.59 6094.51,-1334.15 6096.01,-1327.31"/>
1396 | </g>
1397 | <!-- n107 -->
1398 | <g id="node130" class="node"><title>n107</title>
1399 | <ellipse fill="none" stroke="black" cx="6152.48" cy="-1133.11" rx="68.0705" ry="18"/>
1400 | <text text-anchor="middle" x="6152.48" y="-1130.61" font-family="Times New Roman,serif" font-size="10.00">WT_FOR_UMTS_KEYS</text>
1401 | </g>
1402 | <!-- LTE_RRC_IRAT_TO_TDS_MGR_SM&#45;&gt;n107 -->
1403 | <g id="edge129" class="edge"><title>LTE_RRC_IRAT_TO_TDS_MGR_SM&#45;&gt;n107</title>
1404 | <path fill="none" stroke="black" d="M6315,-1363.49C6284.32,-1320 6206.91,-1210.27 6171.13,-1159.56"/>
1405 | <polygon fill="black" stroke="black" points="6173.78,-1157.24 6165.16,-1151.09 6168.06,-1161.28 6173.78,-1157.24"/>
1406 | </g>
1407 | <!-- n108 -->
1408 | <g id="node131" class="node"><title>n108</title>
1409 | <ellipse fill="none" stroke="black" cx="6395.13" cy="-1084.98" rx="103.032" ry="18"/>
1410 | <text text-anchor="middle" x="6395.13" y="-1082.48" font-family="Times New Roman,serif" font-size="10.00">WT_TO_ABORT_DURING_SUSPEND</text>
1411 | </g>
1412 | <!-- LTE_RRC_IRAT_TO_TDS_MGR_SM&#45;&gt;n108 -->
1413 | <g id="edge130" class="edge"><title>LTE_RRC_IRAT_TO_TDS_MGR_SM&#45;&gt;n108</title>
1414 | <path fill="none" stroke="black" d="M6332,-1363.66C6343.32,-1313.67 6375.07,-1173.56 6388.73,-1113.21"/>
1415 | <polygon fill="black" stroke="black" points="6392.2,-1113.77 6390.99,-1103.24 6385.37,-1112.22 6392.2,-1113.77"/>
1416 | </g>
1417 | <!-- n109 -->
1418 | <g id="node132" class="node"><title>n109</title>
1419 | <ellipse fill="none" stroke="black" cx="6595.06" cy="-1236.07" rx="71.6342" ry="18"/>
1420 | <text text-anchor="middle" x="6595.06" y="-1233.57" font-family="Times New Roman,serif" font-size="10.00">WT_FOR_RESUME_CNF</text>
1421 | </g>
1422 | <!-- LTE_RRC_IRAT_TO_TDS_MGR_SM&#45;&gt;n109 -->
1423 | <g id="edge131" class="edge"><title>LTE_RRC_IRAT_TO_TDS_MGR_SM&#45;&gt;n109</title>
1424 | <path fill="none" stroke="black" d="M6360.92,-1363.76C6410.31,-1336.83 6503.23,-1286.16 6555.95,-1257.41"/>
1425 | <polygon fill="black" stroke="black" points="6557.88,-1260.34 6564.99,-1252.48 6554.53,-1254.19 6557.88,-1260.34"/>
1426 | </g>
1427 | <!-- n110 -->
1428 | <g id="node133" class="node"><title>n110</title>
1429 | <ellipse fill="none" stroke="black" cx="6619.21" cy="-1469.78" rx="85.8896" ry="18"/>
1430 | <text text-anchor="middle" x="6619.21" y="-1467.28" font-family="Times New Roman,serif" font-size="10.00">IRAT_TO_TDS_IN_PROGRESS</text>
1431 | </g>
1432 | <!-- LTE_RRC_IRAT_TO_TDS_MGR_SM&#45;&gt;n110 -->
1433 | <g id="edge132" class="edge"><title>LTE_RRC_IRAT_TO_TDS_MGR_SM&#45;&gt;n110</title>
1434 | <path fill="none" stroke="black" d="M6387.55,-1399.8C6437.96,-1415.03 6509.77,-1436.72 6560.04,-1451.91"/>
1435 | <polygon fill="black" stroke="black" points="6559.21,-1455.31 6569.79,-1454.85 6561.23,-1448.61 6559.21,-1455.31"/>
1436 | </g>
1437 | <!-- n111 -->
1438 | <g id="node134" class="node"><title>n111</title>
1439 | <ellipse fill="none" stroke="black" cx="6461.31" cy="-1655.29" rx="81.4717" ry="18"/>
1440 | <text text-anchor="middle" x="6461.31" y="-1652.79" font-family="Times New Roman,serif" font-size="10.00">WT_FOR_TDS_ABORT_RSP</text>
1441 | </g>
1442 | <!-- LTE_RRC_IRAT_TO_TDS_MGR_SM&#45;&gt;n111 -->
1443 | <g id="edge133" class="edge"><title>LTE_RRC_IRAT_TO_TDS_MGR_SM&#45;&gt;n111</title>
1444 | <path fill="none" stroke="black" d="M6336.86,-1400.15C6359.84,-1447.26 6420.97,-1572.59 6448.06,-1628.14"/>
1445 | <polygon fill="black" stroke="black" points="6445.03,-1629.9 6452.56,-1637.35 6451.32,-1626.83 6445.03,-1629.9"/>
1446 | </g>
1447 | <!-- n112 -->
1448 | <g id="node135" class="node"><title>n112</title>
1449 | <ellipse fill="none" stroke="black" cx="6197.37" cy="-1656.68" rx="108.128" ry="18"/>
1450 | <text text-anchor="middle" x="6197.37" y="-1654.18" font-family="Times New Roman,serif" font-size="10.00">WT_TO_SUSPEND_DURING_SUSPEND</text>
1451 | </g>
1452 | <!-- LTE_RRC_IRAT_TO_TDS_MGR_SM&#45;&gt;n112 -->
1453 | <g id="edge134" class="edge"><title>LTE_RRC_IRAT_TO_TDS_MGR_SM&#45;&gt;n112</title>
1454 | <path fill="none" stroke="black" d="M6319.33,-1399.81C6297.02,-1446.8 6237,-1573.22 6210.39,-1629.27"/>
1455 | <polygon fill="black" stroke="black" points="6207.1,-1628.04 6205.97,-1638.57 6213.42,-1631.04 6207.1,-1628.04"/>
1456 | </g>
1457 | <!-- n113 -->
1458 | <g id="node137" class="node"><title>n113</title>
1459 | <ellipse fill="none" stroke="black" cx="6559.54" cy="-2138.21" rx="30.0436" ry="18"/>
1460 | <text text-anchor="middle" x="6559.54" y="-2135.71" font-family="Times New Roman,serif" font-size="10.00">INITIAL</text>
1461 | </g>
1462 | <!-- LTE_RRC_IRAT_TO_W_MGR_SM&#45;&gt;n113 -->
1463 | <g id="edge136" class="edge"><title>LTE_RRC_IRAT_TO_W_MGR_SM&#45;&gt;n113</title>
1464 | <path fill="none" stroke="black" d="M6736.66,-2113.56C6687.8,-2120.36 6634.41,-2127.79 6599.16,-2132.69"/>
1465 | <polygon fill="black" stroke="black" points="6598.25,-2129.29 6588.83,-2134.13 6599.21,-2136.22 6598.25,-2129.29"/>
1466 | </g>
1467 | <!-- n114 -->
1468 | <g id="node138" class="node"><title>n114</title>
1469 | <ellipse fill="none" stroke="black" cx="6590.43" cy="-1959.48" rx="73.6658" ry="18"/>
1470 | <text text-anchor="middle" x="6590.43" y="-1956.98" font-family="Times New Roman,serif" font-size="10.00">WT_FOR_SUSPEND_CNF</text>
1471 | </g>
1472 | <!-- LTE_RRC_IRAT_TO_W_MGR_SM&#45;&gt;n114 -->
1473 | <g id="edge137" class="edge"><title>LTE_RRC_IRAT_TO_W_MGR_SM&#45;&gt;n114</title>
1474 | <path fill="none" stroke="black" d="M6819.72,-2079.01C6770.96,-2053.6 6682.52,-2007.49 6630.89,-1980.57"/>
1475 | <polygon fill="black" stroke="black" points="6632.49,-1977.46 6622,-1975.94 6629.25,-1983.66 6632.49,-1977.46"/>
1476 | </g>
1477 | <!-- n115 -->
1478 | <g id="node139" class="node"><title>n115</title>
1479 | <ellipse fill="none" stroke="black" cx="6754.39" cy="-1816.68" rx="68.0705" ry="18"/>
1480 | <text text-anchor="middle" x="6754.39" y="-1814.18" font-family="Times New Roman,serif" font-size="10.00">WT_FOR_UMTS_KEYS</text>
1481 | </g>
1482 | <!-- LTE_RRC_IRAT_TO_W_MGR_SM&#45;&gt;n115 -->
1483 | <g id="edge138" class="edge"><title>LTE_RRC_IRAT_TO_W_MGR_SM&#45;&gt;n115</title>
1484 | <path fill="none" stroke="black" d="M6847.94,-2078.75C6830.79,-2030.69 6784.56,-1901.21 6764.22,-1844.23"/>
1485 | <polygon fill="black" stroke="black" points="6767.51,-1843.02 6760.85,-1834.78 6760.92,-1845.38 6767.51,-1843.02"/>
1486 | </g>
1487 | <!-- n116 -->
1488 | <g id="node140" class="node"><title>n116</title>
1489 | <ellipse fill="none" stroke="black" cx="6998.15" cy="-1836.27" rx="103.032" ry="18"/>
1490 | <text text-anchor="middle" x="6998.15" y="-1833.77" font-family="Times New Roman,serif" font-size="10.00">WT_TO_ABORT_DURING_SUSPEND</text>
1491 | </g>
1492 | <!-- LTE_RRC_IRAT_TO_W_MGR_SM&#45;&gt;n116 -->
1493 | <g id="edge139" class="edge"><title>LTE_RRC_IRAT_TO_W_MGR_SM&#45;&gt;n116</title>
1494 | <path fill="none" stroke="black" d="M6864.61,-2078.81C6889.55,-2033.51 6954.15,-1916.2 6983.39,-1863.09"/>
1495 | <polygon fill="black" stroke="black" points="6986.5,-1864.7 6988.25,-1854.25 6980.37,-1861.32 6986.5,-1864.7"/>
1496 | </g>
1497 | <!-- n117 -->
1498 | <g id="node141" class="node"><title>n117</title>
1499 | <ellipse fill="none" stroke="black" cx="7145.82" cy="-2035.23" rx="71.6342" ry="18"/>
1500 | <text text-anchor="middle" x="7145.82" y="-2032.73" font-family="Times New Roman,serif" font-size="10.00">WT_FOR_RESUME_CNF</text>
1501 | </g>
1502 | <!-- LTE_RRC_IRAT_TO_W_MGR_SM&#45;&gt;n117 -->
1503 | <g id="edge140" class="edge"><title>LTE_RRC_IRAT_TO_W_MGR_SM&#45;&gt;n117</title>
1504 | <path fill="none" stroke="black" d="M6939.55,-2079.08C6984.7,-2069.48 7039.3,-2057.87 7080.98,-2049.01"/>
1505 | <polygon fill="black" stroke="black" points="7081.96,-2052.38 7091.02,-2046.88 7080.51,-2045.54 7081.96,-2052.38"/>
1506 | </g>
1507 | <!-- n118 -->
1508 | <g id="node142" class="node"><title>n118</title>
1509 | <ellipse fill="none" stroke="black" cx="7104.36" cy="-2259.23" rx="81.4717" ry="18"/>
1510 | <text text-anchor="middle" x="7104.36" y="-2256.73" font-family="Times New Roman,serif" font-size="10.00">IRAT_TO_W_IN_PROGRESS</text>
1511 | </g>
1512 | <!-- LTE_RRC_IRAT_TO_W_MGR_SM&#45;&gt;n118 -->
1513 | <g id="edge141" class="edge"><title>LTE_RRC_IRAT_TO_W_MGR_SM&#45;&gt;n118</title>
1514 | <path fill="none" stroke="black" d="M6882.69,-2115.43C6928.56,-2145.19 7019.26,-2204.03 7069.26,-2236.46"/>
1515 | <polygon fill="black" stroke="black" points="7067.51,-2239.49 7077.8,-2242 7071.32,-2233.62 7067.51,-2239.49"/>
1516 | </g>
1517 | <!-- n119 -->
1518 | <g id="node143" class="node"><title>n119</title>
1519 | <ellipse fill="none" stroke="black" cx="6912.11" cy="-2389.35" rx="76.5524" ry="18"/>
1520 | <text text-anchor="middle" x="6912.11" y="-2386.85" font-family="Times New Roman,serif" font-size="10.00">WT_FOR_W_ABORT_RSP</text>
1521 | </g>
1522 | <!-- LTE_RRC_IRAT_TO_W_MGR_SM&#45;&gt;n119 -->
1523 | <g id="edge142" class="edge"><title>LTE_RRC_IRAT_TO_W_MGR_SM&#45;&gt;n119</title>
1524 | <path fill="none" stroke="black" d="M6858.11,-2115.43C6867.87,-2164.93 6894.86,-2301.85 6906.57,-2361.25"/>
1525 | <polygon fill="black" stroke="black" points="6903.14,-2361.94 6908.51,-2371.07 6910.01,-2360.59 6903.14,-2361.94"/>
1526 | </g>
1527 | <!-- n120 -->
1528 | <g id="node144" class="node"><title>n120</title>
1529 | <ellipse fill="none" stroke="black" cx="6663.33" cy="-2325.51" rx="108.128" ry="18"/>
1530 | <text text-anchor="middle" x="6663.33" y="-2323.01" font-family="Times New Roman,serif" font-size="10.00">WT_TO_SUSPEND_DURING_SUSPEND</text>
1531 | </g>
1532 | <!-- LTE_RRC_IRAT_TO_W_MGR_SM&#45;&gt;n120 -->
1533 | <g id="edge143" class="edge"><title>LTE_RRC_IRAT_TO_W_MGR_SM&#45;&gt;n120</title>
1534 | <path fill="none" stroke="black" d="M6839.19,-2115.46C6805.34,-2155.89 6724.09,-2252.94 6685.02,-2299.6"/>
1535 | <polygon fill="black" stroke="black" points="6682.2,-2297.52 6678.46,-2307.44 6687.57,-2302.01 6682.2,-2297.52"/>
1536 | </g>
1537 | <!-- n121 -->
1538 | <g id="node146" class="node"><title>n121</title>
1539 | <ellipse fill="none" stroke="black" cx="6997.78" cy="-2627.54" rx="35.1405" ry="18"/>
1540 | <text text-anchor="middle" x="6997.78" y="-2625.04" font-family="Times New Roman,serif" font-size="10.00">INACTIVE</text>
1541 | </g>
1542 | <!-- LTE_RRC_EMP_SM&#45;&gt;n121 -->
1543 | <g id="edge145" class="edge"><title>LTE_RRC_EMP_SM&#45;&gt;n121</title>
1544 | <path fill="none" stroke="black" d="M7119.11,-2746.44C7093.97,-2721.81 7049.1,-2677.84 7021.54,-2650.82"/>
1545 | <polygon fill="black" stroke="black" points="7023.85,-2648.18 7014.26,-2643.68 7018.95,-2653.18 7023.85,-2648.18"/>
1546 | </g>
1547 | <!-- n122 -->
1548 | <g id="node147" class="node"><title>n122</title>
1549 | <ellipse fill="none" stroke="black" cx="7322.37" cy="-2699.33" rx="29.3664" ry="18"/>
1550 | <text text-anchor="middle" x="7322.37" y="-2696.83" font-family="Times New Roman,serif" font-size="10.00">ACTIVE</text>
1551 | </g>
1552 | <!-- LTE_RRC_EMP_SM&#45;&gt;n122 -->
1553 | <g id="edge146" class="edge"><title>LTE_RRC_EMP_SM&#45;&gt;n122</title>
1554 | <path fill="none" stroke="black" d="M7188.64,-2746.63C7219.92,-2735.56 7259.2,-2721.67 7287.07,-2711.81"/>
1555 | <polygon fill="black" stroke="black" points="7288.53,-2715.01 7296.79,-2708.38 7286.19,-2708.41 7288.53,-2715.01"/>
1556 | </g>
1557 | <!-- n123 -->
1558 | <g id="node148" class="node"><title>n123</title>
1559 | <ellipse fill="none" stroke="black" cx="7098.26" cy="-2956.53" rx="52.2822" ry="18"/>
1560 | <text text-anchor="middle" x="7098.26" y="-2954.03" font-family="Times New Roman,serif" font-size="10.00">WAIT_FOR_CNF</text>
1561 | </g>
1562 | <!-- LTE_RRC_EMP_SM&#45;&gt;n123 -->
1563 | <g id="edge147" class="edge"><title>LTE_RRC_EMP_SM&#45;&gt;n123</title>
1564 | <path fill="none" stroke="black" d="M7133.98,-2782.7C7127.08,-2816.27 7112.24,-2888.52 7104.02,-2928.5"/>
1565 | <polygon fill="black" stroke="black" points="7100.57,-2927.89 7101.99,-2938.39 7107.43,-2929.3 7100.57,-2927.89"/>
1566 | </g>
1567 | <!-- n124 -->
1568 | <g id="node150" class="node"><title>n124</title>
1569 | <ellipse fill="none" stroke="black" cx="7229.46" cy="-3113.36" rx="30.0436" ry="18"/>
1570 | <text text-anchor="middle" x="7229.46" y="-3110.86" font-family="Times New Roman,serif" font-size="10.00">INITIAL</text>
1571 | </g>
1572 | <!-- LTE_RRC_MH_SM&#45;&gt;n124 -->
1573 | <g id="edge149" class="edge"><title>LTE_RRC_MH_SM&#45;&gt;n124</title>
1574 | <path fill="none" stroke="black" d="M7252.11,-3273.54C7247.71,-3242.45 7238.68,-3178.61 7233.45,-3141.6"/>
1575 | <polygon fill="black" stroke="black" points="7236.89,-3140.89 7232.02,-3131.48 7229.95,-3141.87 7236.89,-3140.89"/>
1576 | </g>
1577 | <!-- n125 -->
1578 | <g id="node151" class="node"><title>n125</title>
1579 | <ellipse fill="none" stroke="black" cx="7279.87" cy="-3469.87" rx="40.0582" ry="18"/>
1580 | <text text-anchor="middle" x="7279.87" y="-3467.37" font-family="Times New Roman,serif" font-size="10.00">HANDOVER</text>
1581 | </g>
1582 | <!-- LTE_RRC_MH_SM&#45;&gt;n125 -->
1583 | <g id="edge150" class="edge"><title>LTE_RRC_MH_SM&#45;&gt;n125</title>
1584 | <path fill="none" stroke="black" d="M7257.22,-3309.69C7261.62,-3340.79 7270.64,-3404.63 7275.88,-3441.63"/>
1585 | <polygon fill="black" stroke="black" points="7272.44,-3442.34 7277.31,-3451.75 7279.37,-3441.36 7272.44,-3442.34"/>
1586 | </g>
1587 | <!-- n126 -->
1588 | <g id="node153" class="node"><title>n126</title>
1589 | <ellipse fill="none" stroke="black" cx="7188.72" cy="-3671.41" rx="35.1405" ry="18"/>
1590 | <text text-anchor="middle" x="7188.72" y="-3668.91" font-family="Times New Roman,serif" font-size="10.00">INACTIVE</text>
1591 | </g>
1592 | <!-- LTE_RRC_UEINFO_SM&#45;&gt;n126 -->
1593 | <g id="edge152" class="edge"><title>LTE_RRC_UEINFO_SM&#45;&gt;n126</title>
1594 | <path fill="none" stroke="black" d="M7278.46,-3850.24C7260.93,-3815.32 7222.5,-3738.72 7202.08,-3698.03"/>
1595 | <polygon fill="black" stroke="black" points="7205.15,-3696.35 7197.53,-3688.98 7198.89,-3699.49 7205.15,-3696.35"/>
1596 | </g>
1597 | <!-- n127 -->
1598 | <g id="node154" class="node"><title>n127</title>
1599 | <ellipse fill="none" stroke="black" cx="7507.81" cy="-3858.95" rx="29.3664" ry="18"/>
1600 | <text text-anchor="middle" x="7507.81" y="-3856.45" font-family="Times New Roman,serif" font-size="10.00">ACTIVE</text>
1601 | </g>
1602 | <!-- LTE_RRC_UEINFO_SM&#45;&gt;n127 -->
1603 | <g id="edge153" class="edge"><title>LTE_RRC_UEINFO_SM&#45;&gt;n127</title>
1604 | <path fill="none" stroke="black" d="M7370.21,-3864.87C7403.72,-3863.43 7440.86,-3861.83 7468.1,-3860.66"/>
1605 | <polygon fill="black" stroke="black" points="7468.55,-3864.15 7478.39,-3860.22 7468.25,-3857.15 7468.55,-3864.15"/>
1606 | </g>
1607 | <!-- n128 -->
1608 | <g id="node155" class="node"><title>n128</title>
1609 | <ellipse fill="none" stroke="black" cx="7178.44" cy="-4059.94" rx="65.8606" ry="18"/>
1610 | <text text-anchor="middle" x="7178.44" y="-4057.44" font-family="Times New Roman,serif" font-size="10.00">WAIT_FOR_RPT_CNF</text>
1611 | </g>
1612 | <!-- LTE_RRC_UEINFO_SM&#45;&gt;n128 -->
1613 | <g id="edge154" class="edge"><title>LTE_RRC_UEINFO_SM&#45;&gt;n128</title>
1614 | <path fill="none" stroke="black" d="M7277.32,-3886.44C7258.01,-3920.32 7216.21,-3993.66 7193.64,-4033.27"/>
1615 | <polygon fill="black" stroke="black" points="7190.51,-4031.69 7188.6,-4042.11 7196.59,-4035.15 7190.51,-4031.69"/>
1616 | </g>
1617 | <!-- n129 -->
1618 | <g id="node157" class="node"><title>n129</title>
1619 | <ellipse fill="none" stroke="black" cx="7259.23" cy="-4261.3" rx="35.1405" ry="18"/>
1620 | <text text-anchor="middle" x="7259.23" y="-4258.8" font-family="Times New Roman,serif" font-size="10.00">INACTIVE</text>
1621 | </g>
1622 | <!-- LTE_RRC_SIB_SM&#45;&gt;n129 -->
1623 | <g id="edge156" class="edge"><title>LTE_RRC_SIB_SM&#45;&gt;n129</title>
1624 | <path fill="none" stroke="black" d="M7229.5,-4415.34C7235.28,-4385.38 7246.89,-4325.25 7253.76,-4289.62"/>
1625 | <polygon fill="black" stroke="black" points="7257.28,-4289.89 7255.73,-4279.41 7250.4,-4288.57 7257.28,-4289.89"/>
1626 | </g>
1627 | <!-- n130 -->
1628 | <g id="node158" class="node"><title>n130</title>
1629 | <ellipse fill="none" stroke="black" cx="7192.78" cy="-4605.58" rx="29.3664" ry="18"/>
1630 | <text text-anchor="middle" x="7192.78" y="-4603.08" font-family="Times New Roman,serif" font-size="10.00">ACTIVE</text>
1631 | </g>
1632 | <!-- LTE_RRC_SIB_SM&#45;&gt;n130 -->
1633 | <g id="edge157" class="edge"><title>LTE_RRC_SIB_SM&#45;&gt;n130</title>
1634 | <path fill="none" stroke="black" d="M7222.51,-4451.54C7216.73,-4481.5 7205.13,-4541.63 7198.25,-4577.26"/>
1635 | <polygon fill="black" stroke="black" points="7194.74,-4576.99 7196.28,-4587.47 7201.61,-4578.32 7194.74,-4576.99"/>
1636 | </g>
1637 | <!-- n131 -->
1638 | <g id="node160" class="node"><title>n131</title>
1639 | <ellipse fill="none" stroke="black" cx="6831.39" cy="-4877.29" rx="30.0436" ry="18"/>
1640 | <text text-anchor="middle" x="6831.39" y="-4874.79" font-family="Times New Roman,serif" font-size="10.00">INITIAL</text>
1641 | </g>
1642 | <!-- LTE_RRC_PLMN_SEARCH_SM&#45;&gt;n131 -->
1643 | <g id="edge159" class="edge"><title>LTE_RRC_PLMN_SEARCH_SM&#45;&gt;n131</title>
1644 | <path fill="none" stroke="black" d="M7020.24,-5047.38C6981.68,-5012.65 6897.25,-4936.62 6855.61,-4899.11"/>
1645 | <polygon fill="black" stroke="black" points="6857.88,-4896.45 6848.11,-4892.35 6853.2,-4901.65 6857.88,-4896.45"/>
1646 | </g>
1647 | <!-- n132 -->
1648 | <g id="node161" class="node"><title>n132</title>
1649 | <ellipse fill="none" stroke="black" cx="6984.89" cy="-4789.82" rx="77.9076" ry="18"/>
1650 | <text text-anchor="middle" x="6984.89" y="-4787.32" font-family="Times New Roman,serif" font-size="10.00">WT_MODE_CHANGE_CNF</text>
1651 | </g>
1652 | <!-- LTE_RRC_PLMN_SEARCH_SM&#45;&gt;n132 -->
1653 | <g id="edge160" class="edge"><title>LTE_RRC_PLMN_SEARCH_SM&#45;&gt;n132</title>
1654 | <path fill="none" stroke="black" d="M7036.64,-5047.34C7027.21,-5000.42 7001.92,-4874.54 6990.56,-4818"/>
1655 | <polygon fill="black" stroke="black" points="6993.94,-4817.08 6988.54,-4807.97 6987.08,-4818.46 6993.94,-4817.08"/>
1656 | </g>
1657 | <!-- n133 -->
1658 | <g id="node162" class="node"><title>n133</title>
1659 | <ellipse fill="none" stroke="black" cx="7211.43" cy="-4842.42" rx="90.1309" ry="18"/>
1660 | <text text-anchor="middle" x="7211.43" y="-4839.92" font-family="Times New Roman,serif" font-size="10.00">WT_SIB1S_AND_CELL_SELECT</text>
1661 | </g>
1662 | <!-- LTE_RRC_PLMN_SEARCH_SM&#45;&gt;n133 -->
1663 | <g id="edge161" class="edge"><title>LTE_RRC_PLMN_SEARCH_SM&#45;&gt;n133</title>
1664 | <path fill="none" stroke="black" d="M7054.28,-5047.17C7084.58,-5007.69 7156.31,-4914.23 7191.4,-4868.52"/>
1665 | <polygon fill="black" stroke="black" points="7194.4,-4870.37 7197.71,-4860.3 7188.84,-4866.1 7194.4,-4870.37"/>
1666 | </g>
1667 | <!-- n134 -->
1668 | <g id="node163" class="node"><title>n134</title>
1669 | <ellipse fill="none" stroke="black" cx="7320.58" cy="-5044.14" rx="74.3435" ry="18"/>
1670 | <text text-anchor="middle" x="7320.58" y="-5041.64" font-family="Times New Roman,serif" font-size="10.00">WT_SEARCH_STOP_CNF</text>
1671 | </g>
1672 | <!-- LTE_RRC_PLMN_SEARCH_SM&#45;&gt;n134 -->
1673 | <g id="edge162" class="edge"><title>LTE_RRC_PLMN_SEARCH_SM&#45;&gt;n134</title>
1674 | <path fill="none" stroke="black" d="M7147.84,-5057.25C7178.23,-5054.94 7210.78,-5052.47 7239.34,-5050.3"/>
1675 | <polygon fill="black" stroke="black" points="7239.97,-5053.77 7249.67,-5049.52 7239.44,-5046.79 7239.97,-5053.77"/>
1676 | </g>
1677 | <!-- n135 -->
1678 | <g id="node164" class="node"><title>n135</title>
1679 | <ellipse fill="none" stroke="black" cx="7246.77" cy="-5256.16" rx="84.5356" ry="18"/>
1680 | <text text-anchor="middle" x="7246.77" y="-5253.66" font-family="Times New Roman,serif" font-size="10.00">WT_SEARCH_SUSPEND_CNF</text>
1681 | </g>
1682 | <!-- LTE_RRC_PLMN_SEARCH_SM&#45;&gt;n135 -->
1683 | <g id="edge163" class="edge"><title>LTE_RRC_PLMN_SEARCH_SM&#45;&gt;n135</title>
1684 | <path fill="none" stroke="black" d="M7060.07,-5083.71C7097.42,-5118.21 7178.28,-5192.89 7220.27,-5231.67"/>
1685 | <polygon fill="black" stroke="black" points="7217.91,-5234.27 7227.64,-5238.48 7222.66,-5229.12 7217.91,-5234.27"/>
1686 | </g>
1687 | <!-- n136 -->
1688 | <g id="node165" class="node"><title>n136</title>
1689 | <ellipse fill="none" stroke="black" cx="7046.57" cy="-5346.46" rx="68.7474" ry="18"/>
1690 | <text text-anchor="middle" x="7046.57" y="-5343.96" font-family="Times New Roman,serif" font-size="10.00">WT_TIME_AVAIL_IND</text>
1691 | </g>
1692 | <!-- LTE_RRC_PLMN_SEARCH_SM&#45;&gt;n136 -->
1693 | <g id="edge164" class="edge"><title>LTE_RRC_PLMN_SEARCH_SM&#45;&gt;n136</title>
1694 | <path fill="none" stroke="black" d="M7040.67,-5083.43C7041.74,-5131 7044.64,-5260.33 7045.93,-5318.02"/>
1695 | <polygon fill="black" stroke="black" points="7042.43,-5318.32 7046.16,-5328.24 7049.43,-5318.16 7042.43,-5318.32"/>
1696 | </g>
1697 | <!-- n137 -->
1698 | <g id="node166" class="node"><title>n137</title>
1699 | <ellipse fill="none" stroke="black" cx="6850.62" cy="-5272.92" rx="73.6658" ry="18"/>
1700 | <text text-anchor="middle" x="6850.62" y="-5270.42" font-family="Times New Roman,serif" font-size="10.00">WT_IRAT_SEARCH_CNF</text>
1701 | </g>
1702 | <!-- LTE_RRC_PLMN_SEARCH_SM&#45;&gt;n137 -->
1703 | <g id="edge165" class="edge"><title>LTE_RRC_PLMN_SEARCH_SM&#45;&gt;n137</title>
1704 | <path fill="none" stroke="black" d="M7023.77,-5083.47C6989.84,-5120.6 6912.16,-5205.59 6873.43,-5247.96"/>
1705 | <polygon fill="black" stroke="black" points="6870.84,-5245.61 6866.68,-5255.35 6876.01,-5250.33 6870.84,-5245.61"/>
1706 | </g>
1707 | <!-- n138 -->
1708 | <g id="node167" class="node"><title>n138</title>
1709 | <ellipse fill="none" stroke="black" cx="6759.28" cy="-5057.3" rx="95.9041" ry="18"/>
1710 | <text text-anchor="middle" x="6759.28" y="-5054.8" font-family="Times New Roman,serif" font-size="10.00">WT_IRAT_SEARCH_ABORT_CNF</text>
1711 | </g>
1712 | <!-- LTE_RRC_PLMN_SEARCH_SM&#45;&gt;n138 -->
1713 | <g id="edge166" class="edge"><title>LTE_RRC_PLMN_SEARCH_SM&#45;&gt;n138</title>
1714 | <path fill="none" stroke="black" d="M6932.44,-5062.3C6910.16,-5061.66 6886.72,-5060.98 6864.53,-5060.34"/>
1715 | <polygon fill="black" stroke="black" points="6864.53,-5056.84 6854.43,-5060.05 6864.33,-5063.83 6864.53,-5056.84"/>
1716 | </g>
1717 | <!-- n139 -->
1718 | <g id="node169" class="node"><title>n139</title>
1719 | <ellipse fill="none" stroke="black" cx="6459.87" cy="-5559.99" rx="30.0436" ry="18"/>
1720 | <text text-anchor="middle" x="6459.87" y="-5557.49" font-family="Times New Roman,serif" font-size="10.00">INITIAL</text>
1721 | </g>
1722 | <!-- LTE_RRC_IRAT_FROM_G_MGR_SM&#45;&gt;n139 -->
1723 | <g id="edge168" class="edge"><title>LTE_RRC_IRAT_FROM_G_MGR_SM&#45;&gt;n139</title>
1724 | <path fill="none" stroke="black" d="M6613.18,-5798.58C6584.41,-5753.8 6509.68,-5637.5 6476.34,-5585.62"/>
1725 | <polygon fill="black" stroke="black" points="6479.15,-5583.52 6470.8,-5577 6473.26,-5587.31 6479.15,-5583.52"/>
1726 | </g>
1727 | <!-- n140 -->
1728 | <g id="node170" class="node"><title>n140</title>
1729 | <ellipse fill="none" stroke="black" cx="6670.37" cy="-5515" rx="77.2299" ry="18"/>
1730 | <text text-anchor="middle" x="6670.37" y="-5512.5" font-family="Times New Roman,serif" font-size="10.00">WT_FOR_ACTIVATE_CNF</text>
1731 | </g>
1732 | <!-- LTE_RRC_IRAT_FROM_G_MGR_SM&#45;&gt;n140 -->
1733 | <g id="edge169" class="edge"><title>LTE_RRC_IRAT_FROM_G_MGR_SM&#45;&gt;n140</title>
1734 | <path fill="none" stroke="black" d="M6627.56,-5798.21C6635.26,-5747.29 6656.87,-5604.34 6666.1,-5543.25"/>
1735 | <polygon fill="black" stroke="black" points="6669.59,-5543.58 6667.62,-5533.17 6662.67,-5542.54 6669.59,-5543.58"/>
1736 | </g>
1737 | <!-- n141 -->
1738 | <g id="node171" class="node"><title>n141</title>
1739 | <ellipse fill="none" stroke="black" cx="6899.62" cy="-5684.28" rx="106.596" ry="18"/>
1740 | <text text-anchor="middle" x="6899.62" y="-5681.78" font-family="Times New Roman,serif" font-size="10.00">WT_TO_ABORT_DURING_ACTIVATE</text>
1741 | </g>
1742 | <!-- LTE_RRC_IRAT_FROM_G_MGR_SM&#45;&gt;n141 -->
1743 | <g id="edge170" class="edge"><title>LTE_RRC_IRAT_FROM_G_MGR_SM&#45;&gt;n141</title>
1744 | <path fill="none" stroke="black" d="M6662.42,-5798.5C6712.62,-5774.32 6801.38,-5731.58 6854.93,-5705.8"/>
1745 | <polygon fill="black" stroke="black" points="6856.69,-5708.84 6864.18,-5701.34 6853.65,-5702.53 6856.69,-5708.84"/>
1746 | </g>
1747 | <!-- n142 -->
1748 | <g id="node172" class="node"><title>n142</title>
1749 | <ellipse fill="none" stroke="black" cx="6885.41" cy="-5975.14" rx="84.358" ry="18"/>
1750 | <text text-anchor="middle" x="6885.41" y="-5972.64" font-family="Times New Roman,serif" font-size="10.00">WT_FOR_DEACTIVATE_CNF</text>
1751 | </g>
1752 | <!-- LTE_RRC_IRAT_FROM_G_MGR_SM&#45;&gt;n142 -->
1753 | <g id="edge171" class="edge"><title>LTE_RRC_IRAT_FROM_G_MGR_SM&#45;&gt;n142</title>
1754 | <path fill="none" stroke="black" d="M6654.42,-5834.65C6702.35,-5863.8 6796.73,-5921.2 6848.78,-5952.86"/>
1755 | <polygon fill="black" stroke="black" points="6847.01,-5955.88 6857.37,-5958.09 6850.65,-5949.9 6847.01,-5955.88"/>
1756 | </g>
1757 | <!-- n143 -->
1758 | <g id="node173" class="node"><title>n143</title>
1759 | <ellipse fill="none" stroke="black" cx="6652.48" cy="-6120.41" rx="87.9221" ry="18"/>
1760 | <text text-anchor="middle" x="6652.48" y="-6117.91" font-family="Times New Roman,serif" font-size="10.00">WT_FOR_LTE_TO_COMPLETE</text>
1761 | </g>
1762 | <!-- LTE_RRC_IRAT_FROM_G_MGR_SM&#45;&gt;n143 -->
1763 | <g id="edge172" class="edge"><title>LTE_RRC_IRAT_FROM_G_MGR_SM&#45;&gt;n143</title>
1764 | <path fill="none" stroke="black" d="M6626.43,-5834.71C6631.08,-5885.69 6644.3,-6030.74 6649.91,-6092.27"/>
1765 | <polygon fill="black" stroke="black" points="6646.44,-6092.77 6650.84,-6102.41 6653.41,-6092.13 6646.44,-6092.77"/>
1766 | </g>
1767 | <!-- n144 -->
1768 | <g id="node174" class="node"><title>n144</title>
1769 | <ellipse fill="none" stroke="black" cx="6390.2" cy="-6011.63" rx="94.55" ry="18"/>
1770 | <text text-anchor="middle" x="6390.2" y="-6009.13" font-family="Times New Roman,serif" font-size="10.00">WT_FOR_LTE_RRC_ABORT_CNF</text>
1771 | </g>
1772 | <!-- LTE_RRC_IRAT_FROM_G_MGR_SM&#45;&gt;n144 -->
1773 | <g id="edge173" class="edge"><title>LTE_RRC_IRAT_FROM_G_MGR_SM&#45;&gt;n144</title>
1774 | <path fill="none" stroke="black" d="M6602.71,-5834.97C6560.12,-5870.37 6466.63,-5948.1 6419.13,-5987.58"/>
1775 | <polygon fill="black" stroke="black" points="6416.82,-5984.95 6411.37,-5994.04 6421.29,-5990.34 6416.82,-5984.95"/>
1776 | </g>
1777 | <!-- n145 -->
1778 | <g id="node175" class="node"><title>n145</title>
1779 | <ellipse fill="none" stroke="black" cx="6329.92" cy="-5738.44" rx="83.003" ry="18"/>
1780 | <text text-anchor="middle" x="6329.92" y="-5735.94" font-family="Times New Roman,serif" font-size="10.00">WT_FOR_ACTIVATION_RSP</text>
1781 | </g>
1782 | <!-- LTE_RRC_IRAT_FROM_G_MGR_SM&#45;&gt;n145 -->
1783 | <g id="edge174" class="edge"><title>LTE_RRC_IRAT_FROM_G_MGR_SM&#45;&gt;n145</title>
1784 | <path fill="none" stroke="black" d="M6556.76,-5798.59C6507.28,-5785.47 6440.78,-5767.83 6392.58,-5755.06"/>
1785 | <polygon fill="black" stroke="black" points="6393.46,-5751.67 6382.9,-5752.49 6391.66,-5758.43 6393.46,-5751.67"/>
1786 | </g>
1787 | <!-- n146 -->
1788 | <g id="node177" class="node"><title>n146</title>
1789 | <ellipse fill="none" stroke="black" cx="5954.67" cy="-6182.48" rx="30.0436" ry="18"/>
1790 | <text text-anchor="middle" x="5954.67" y="-6179.98" font-family="Times New Roman,serif" font-size="10.00">INITIAL</text>
1791 | </g>
1792 | <!-- LTE_RRC_CSP_SM&#45;&gt;n146 -->
1793 | <g id="edge176" class="edge"><title>LTE_RRC_CSP_SM&#45;&gt;n146</title>
1794 | <path fill="none" stroke="black" d="M6058.34,-6399.7C6038.69,-6358.53 5990.51,-6257.57 5967.41,-6209.19"/>
1795 | <polygon fill="black" stroke="black" points="5970.48,-6207.49 5963.02,-6199.98 5964.16,-6210.51 5970.48,-6207.49"/>
1796 | </g>
1797 | <!-- n147 -->
1798 | <g id="node178" class="node"><title>n147</title>
1799 | <ellipse fill="none" stroke="black" cx="6129.96" cy="-6164.79" rx="77.9076" ry="18"/>
1800 | <text text-anchor="middle" x="6129.96" y="-6162.29" font-family="Times New Roman,serif" font-size="10.00">WT_MODE_CHANGE_CNF</text>
1801 | </g>
1802 | <!-- LTE_RRC_CSP_SM&#45;&gt;n147 -->
1803 | <g id="edge177" class="edge"><title>LTE_RRC_CSP_SM&#45;&gt;n147</title>
1804 | <path fill="none" stroke="black" d="M6071.49,-6399.58C6082.37,-6355.91 6110.01,-6244.92 6123.01,-6192.73"/>
1805 | <polygon fill="black" stroke="black" points="6126.45,-6193.37 6125.47,-6182.82 6119.66,-6191.67 6126.45,-6193.37"/>
1806 | </g>
1807 | <!-- n148 -->
1808 | <g id="node179" class="node"><title>n148</title>
1809 | <ellipse fill="none" stroke="black" cx="6285.55" cy="-6275.68" rx="45.8316" ry="18"/>
1810 | <text text-anchor="middle" x="6285.55" y="-6273.18" font-family="Times New Roman,serif" font-size="10.00">WT_CFG_CNF</text>
1811 | </g>
1812 | <!-- LTE_RRC_CSP_SM&#45;&gt;n148 -->
1813 | <g id="edge178" class="edge"><title>LTE_RRC_CSP_SM&#45;&gt;n148</title>
1814 | <path fill="none" stroke="black" d="M6095.09,-6399.49C6135.57,-6373.18 6210.07,-6324.75 6252.92,-6296.9"/>
1815 | <polygon fill="black" stroke="black" points="6255.08,-6299.66 6261.55,-6291.28 6251.26,-6293.8 6255.08,-6299.66"/>
1816 | </g>
1817 | <!-- n149 -->
1818 | <g id="node180" class="node"><title>n149</title>
1819 | <ellipse fill="none" stroke="black" cx="6324.14" cy="-6460.56" rx="75.198" ry="18"/>
1820 | <text text-anchor="middle" x="6324.14" y="-6458.06" font-family="Times New Roman,serif" font-size="10.00">WT_SYSTEM_SCAN_CNF</text>
1821 | </g>
1822 | <!-- LTE_RRC_CSP_SM&#45;&gt;n149 -->
1823 | <g id="edge179" class="edge"><title>LTE_RRC_CSP_SM&#45;&gt;n149</title>
1824 | <path fill="none" stroke="black" d="M6137.24,-6429.47C6172.99,-6435.42 6216.37,-6442.63 6252.34,-6448.62"/>
1825 | <polygon fill="black" stroke="black" points="6251.84,-6452.08 6262.28,-6450.27 6252.99,-6445.18 6251.84,-6452.08"/>
1826 | </g>
1827 | <!-- n150 -->
1828 | <g id="node181" class="node"><title>n150</title>
1829 | <ellipse fill="none" stroke="black" cx="6208.11" cy="-6636.98" rx="70.1018" ry="18"/>
1830 | <text text-anchor="middle" x="6208.11" y="-6634.48" font-family="Times New Roman,serif" font-size="10.00">WT_BAND_SCAN_CNF</text>
1831 | </g>
1832 | <!-- LTE_RRC_CSP_SM&#45;&gt;n150 -->
1833 | <g id="edge180" class="edge"><title>LTE_RRC_CSP_SM&#45;&gt;n150</title>
1834 | <path fill="none" stroke="black" d="M6078.75,-6436.09C6103.73,-6474.88 6162.07,-6565.48 6191.09,-6610.55"/>
1835 | <polygon fill="black" stroke="black" points="6188.29,-6612.67 6196.65,-6619.18 6194.18,-6608.88 6188.29,-6612.67"/>
1836 | </g>
1837 | <!-- n151 -->
1838 | <g id="node182" class="node"><title>n151</title>
1839 | <ellipse fill="none" stroke="black" cx="6026.54" cy="-6675.34" rx="47.8641" ry="18"/>
1840 | <text text-anchor="middle" x="6026.54" y="-6672.84" font-family="Times New Roman,serif" font-size="10.00">WT_ACQ_CNF</text>
1841 | </g>
1842 | <!-- LTE_RRC_CSP_SM&#45;&gt;n151 -->
1843 | <g id="edge181" class="edge"><title>LTE_RRC_CSP_SM&#45;&gt;n151</title>
1844 | <path fill="none" stroke="black" d="M6064.12,-6435.89C6057.18,-6480.13 6039.31,-6593.97 6030.97,-6647.16"/>
1845 | <polygon fill="black" stroke="black" points="6027.48,-6646.83 6029.38,-6657.25 6034.39,-6647.91 6027.48,-6646.83"/>
1846 | </g>
1847 | <!-- n152 -->
1848 | <g id="node183" class="node"><title>n152</title>
1849 | <ellipse fill="none" stroke="black" cx="5882.86" cy="-6602.38" rx="44.3" ry="18"/>
1850 | <text text-anchor="middle" x="5882.86" y="-6599.88" font-family="Times New Roman,serif" font-size="10.00">WT_SIB_CNF</text>
1851 | </g>
1852 | <!-- LTE_RRC_CSP_SM&#45;&gt;n152 -->
1853 | <g id="edge182" class="edge"><title>LTE_RRC_CSP_SM&#45;&gt;n152</title>
1854 | <path fill="none" stroke="black" d="M6048.97,-6435.81C6015.69,-6469.18 5944.49,-6540.58 5907.03,-6578.14"/>
1855 | <polygon fill="black" stroke="black" points="5904.16,-6576.06 5899.58,-6585.61 5909.12,-6581 5904.16,-6576.06"/>
1856 | </g>
1857 | <!-- n153 -->
1858 | <g id="node184" class="node"><title>n153</title>
1859 | <ellipse fill="none" stroke="black" cx="5806.85" cy="-6435.5" rx="71.4572" ry="18"/>
1860 | <text text-anchor="middle" x="5806.85" y="-6433" font-family="Times New Roman,serif" font-size="10.00">WT_CELL_SELECT_CNF</text>
1861 | </g>
1862 | <!-- LTE_RRC_CSP_SM&#45;&gt;n153 -->
1863 | <g id="edge183" class="edge"><title>LTE_RRC_CSP_SM&#45;&gt;n153</title>
1864 | <path fill="none" stroke="black" d="M5996.91,-6422.55C5962.68,-6424.88 5921.33,-6427.7 5885.96,-6430.11"/>
1865 | <polygon fill="black" stroke="black" points="5885.41,-6426.64 5875.67,-6430.81 5885.89,-6433.63 5885.41,-6426.64"/>
1866 | </g>
1867 | <!-- n154 -->
1868 | <g id="node185" class="node"><title>n154</title>
1869 | <ellipse fill="none" stroke="black" cx="5852.93" cy="-6268.9" rx="32.9303" ry="18"/>
1870 | <text text-anchor="middle" x="5852.93" y="-6266.4" font-family="Times New Roman,serif" font-size="10.00">CAMPED</text>
1871 | </g>
1872 | <!-- LTE_RRC_CSP_SM&#45;&gt;n154 -->
1873 | <g id="edge184" class="edge"><title>LTE_RRC_CSP_SM&#45;&gt;n154</title>
1874 | <path fill="none" stroke="black" d="M6040.72,-6399.52C6000.39,-6371.47 5923.47,-6317.96 5881.68,-6288.9"/>
1875 | <polygon fill="black" stroke="black" points="5883.53,-6285.92 5873.32,-6283.08 5879.53,-6291.67 5883.53,-6285.92"/>
1876 | </g>
1877 | <!-- n155 -->
1878 | <g id="node187" class="node"><title>n155</title>
1879 | <ellipse fill="none" stroke="black" cx="5626.75" cy="-6623.65" rx="36.4942" ry="18"/>
1880 | <text text-anchor="middle" x="5626.75" y="-6621.15" font-family="Times New Roman,serif" font-size="10.00">DISABLED</text>
1881 | </g>
1882 | <!-- LTE_RRC_ESMGR_SM&#45;&gt;n155 -->
1883 | <g id="edge186" class="edge"><title>LTE_RRC_ESMGR_SM&#45;&gt;n155</title>
1884 | <path fill="none" stroke="black" d="M5529.97,-6780.88C5549.15,-6749.72 5588.48,-6685.82 5610.64,-6649.81"/>
1885 | <polygon fill="black" stroke="black" points="5613.88,-6651.22 5616.14,-6640.87 5607.92,-6647.55 5613.88,-6651.22"/>
1886 | </g>
1887 | <!-- n156 -->
1888 | <g id="node188" class="node"><title>n156</title>
1889 | <ellipse fill="none" stroke="black" cx="5626.4" cy="-6974.54" rx="34.9638" ry="18"/>
1890 | <text text-anchor="middle" x="5626.4" y="-6972.04" font-family="Times New Roman,serif" font-size="10.00">ENABLED</text>
1891 | </g>
1892 | <!-- LTE_RRC_ESMGR_SM&#45;&gt;n156 -->
1893 | <g id="edge187" class="edge"><title>LTE_RRC_ESMGR_SM&#45;&gt;n156</title>
1894 | <path fill="none" stroke="black" d="M5529.93,-6817.11C5549.05,-6848.31 5588.26,-6912.29 5610.35,-6948.34"/>
1895 | <polygon fill="black" stroke="black" points="5607.62,-6950.59 5615.83,-6957.29 5613.59,-6946.93 5607.62,-6950.59"/>
1896 | </g>
1897 | <!-- n157 -->
1898 | <g id="node189" class="node"><title>n157</title>
1899 | <ellipse fill="none" stroke="black" cx="5312.93" cy="-6799.67" rx="52.2822" ry="18"/>
1900 | <text text-anchor="middle" x="5312.93" y="-6797.17" font-family="Times New Roman,serif" font-size="10.00">WAIT_FOR_CNF</text>
1901 | </g>
1902 | <!-- LTE_RRC_ESMGR_SM&#45;&gt;n157 -->
1903 | <g id="edge188" class="edge"><title>LTE_RRC_ESMGR_SM&#45;&gt;n157</title>
1904 | <path fill="none" stroke="black" d="M5437.15,-6799.26C5416.69,-6799.32 5395.06,-6799.4 5375.68,-6799.46"/>
1905 | <polygon fill="black" stroke="black" points="5375.46,-6795.96 5365.47,-6799.49 5375.48,-6802.96 5375.46,-6795.96"/>
1906 | </g>
1907 | <!-- n158 -->
1908 | <g id="node191" class="node"><title>n158</title>
1909 | <ellipse fill="none" stroke="black" cx="5029.98" cy="-6851.71" rx="30.0436" ry="18"/>
1910 | <text text-anchor="middle" x="5029.98" y="-6849.21" font-family="Times New Roman,serif" font-size="10.00">INITIAL</text>
1911 | </g>
1912 | <!-- LTE_RRC_CRE_SM&#45;&gt;n158 -->
1913 | <g id="edge190" class="edge"><title>LTE_RRC_CRE_SM&#45;&gt;n158</title>
1914 | <path fill="none" stroke="black" d="M4951.13,-7037.89C4966.41,-7001.81 5000.69,-6920.88 5018.59,-6878.6"/>
1915 | <polygon fill="black" stroke="black" points="5021.89,-6879.79 5022.57,-6869.22 5015.44,-6877.06 5021.89,-6879.79"/>
1916 | </g>
1917 | <!-- n159 -->
1918 | <g id="node192" class="node"><title>n159</title>
1919 | <ellipse fill="none" stroke="black" cx="5155.95" cy="-7119.86" rx="67.893" ry="18"/>
1920 | <text text-anchor="middle" x="5155.95" y="-7117.36" font-family="Times New Roman,serif" font-size="10.00">WAIT_FOR_CFG_CNFI</text>
1921 | </g>
1922 | <!-- LTE_RRC_CRE_SM&#45;&gt;n159 -->
1923 | <g id="edge191" class="edge"><title>LTE_RRC_CRE_SM&#45;&gt;n159</title>
1924 | <path fill="none" stroke="black" d="M5003.5,-7074.06C5034.15,-7083.27 5071.18,-7094.39 5101.06,-7103.37"/>
1925 | <polygon fill="black" stroke="black" points="5100.32,-7106.8 5110.91,-7106.33 5102.34,-7100.1 5100.32,-7106.8"/>
1926 | </g>
1927 | <!-- n160 -->
1928 | <g id="node193" class="node"><title>n160</title>
1929 | <ellipse fill="none" stroke="black" cx="4856.38" cy="-7260.1" rx="78.7618" ry="18"/>
1930 | <text text-anchor="middle" x="4856.38" y="-7257.6" font-family="Times New Roman,serif" font-size="10.00">WAIT_FOR_UE_TO_CAMP</text>
1931 | </g>
1932 | <!-- LTE_RRC_CRE_SM&#45;&gt;n160 -->
1933 | <g id="edge192" class="edge"><title>LTE_RRC_CRE_SM&#45;&gt;n160</title>
1934 | <path fill="none" stroke="black" d="M4935.73,-7074.13C4920.43,-7109.99 4886.21,-7190.2 4868.12,-7232.6"/>
1935 | <polygon fill="black" stroke="black" points="4864.8,-7231.46 4864.09,-7242.03 4871.24,-7234.21 4864.8,-7231.46"/>
1936 | </g>
1937 | <!-- n161 -->
1938 | <g id="node194" class="node"><title>n161</title>
1939 | <ellipse fill="none" stroke="black" cx="4750.03" cy="-6947.31" rx="67.2153" ry="18"/>
1940 | <text text-anchor="middle" x="4750.03" y="-6944.81" font-family="Times New Roman,serif" font-size="10.00">WAIT_FOR_CONN_RE</text>
1941 | </g>
1942 | <!-- LTE_RRC_CRE_SM&#45;&gt;n161 -->
1943 | <g id="edge193" class="edge"><title>LTE_RRC_CRE_SM&#45;&gt;n161</title>
1944 | <path fill="none" stroke="black" d="M4911.08,-7037.82C4877.07,-7018.71 4823.64,-6988.68 4787.75,-6968.51"/>
1945 | <polygon fill="black" stroke="black" points="4789.46,-6965.46 4779.03,-6963.61 4786.03,-6971.56 4789.46,-6965.46"/>
1946 | </g>
1947 | </g>
1948 | </svg>
1949 | 


--------------------------------------------------------------------------------