ace-gateway 0.2.1

DoIP Gateway, ISO-TP bridge node, and DoIP Tester
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269

// EcuNode - the ECU-side ISO-TP + UDS application layer.
//
// In a real vehicle the ECU contains:
//   - A CAN transceiver receiving raw CAN frames
//   - An ISO-TP stack reassembling multi-frame requests and segmenting responses
//   - A UDS application layer (UdsServer) processing the reassembled requests
//
// EcuNode models exactly this. The gateway puts ISO-TP CAN frames onto the
// CAN bus addressed to request_can_id. EcuNode reassembles them, feeds the
// UDS bytes to UdsServer, and segments the response back into ISO-TP CAN
// frames addressed to response_can_id. The gateway's resp_reassembler then
// picks those up from the CAN bus and wraps them in DoIP for the tester.
//
// Flow control is exchanged naturally via the CAN bus:
//   Gateway req_segmenter sends FF → EcuNode req_reassembler sends FC back
//   EcuNode resp_segmenter sends FF → Gateway resp_reassembler sends FC back

use ace_can::{
    IsoTpAddressingMode, ReassembleResult, Reassembler, ReassemblerConfig, SegmentResult,
    Segmenter, SegmenterConfig,
};
use ace_client::{SIM_MAX_FRAME, SIM_MAX_OUTBOX};
use ace_server::{
    handler::ServerHandler,
    security_provider::SecurityProvider,
    server::{ServerError, UdsServer},
    NrcError,
};
use ace_sim::{clock::Instant, io::NodeAddress};
use heapless::Vec;

// region: Capacity constants

/// Max ISO-TP CAN frame payload - 8 bytes classic CAN, 64 bytes CAN FD.
pub const ECU_CAN_FRAME: usize = 8;
/// Max CAN outbox depth - multi-frame responses produce many frames.
pub const ECU_CAN_OUT: usize = 128;
/// Max UDS payload size.
pub const ECU_UDS_FRAME: usize = 4096;

// endregion: Capacity constants

// region: EcuNodeError

#[derive(Debug)]
pub enum EcuNodeError<SE: NrcError> {
    IsoTp(ace_can::IsoTpError),
    CanOutboxFull,
    Server(ServerError<SE>),
}

// endregion: EcuNodeError

// region: EcuNode

/// ECU-side ISO-TP + UDS application node.
///
/// Sits on the CAN simulation bus. Receives ISO-TP CAN frames from the
/// gateway, reassembles them into UDS requests, processes them with
/// `UdsServer`, then segments the responses back into ISO-TP CAN frames
/// for the gateway to pick up and wrap in DoIP.
pub struct EcuNode<H, S>
where
    H: ServerHandler,
    S: SecurityProvider,
{
    /// DoIP logical address of this ECU.
    pub logical_address: u16,

    /// CAN ID the gateway sends requests to.
    pub request_can_id: u32,

    /// CAN ID the gateway listens on for responses.
    pub response_can_id: u32,

    /// Reassembles incoming ISO-TP CAN request frames → UDS bytes.
    req_reassembler: Reassembler<ECU_UDS_FRAME>,

    /// Segments outgoing UDS response bytes → ISO-TP CAN frames.
    resp_segmenter: Segmenter<ECU_UDS_FRAME>,
    pub server: UdsServer<H, S>,

    /// Outbound ISO-TP CAN frames for the CAN bus.
    /// Contains both FC frames (responding to gateway segmenter) and
    /// segmented response frames.
    can_outbox: Vec<(NodeAddress, Vec<u8, ECU_CAN_FRAME>), ECU_CAN_OUT>,
}

impl<H, S> EcuNode<H, S>
where
    H: ServerHandler,
    S: SecurityProvider,
{
    pub fn new(
        logical_address: u16,
        request_can_id: u32,
        response_can_id: u32,
        mode: IsoTpAddressingMode,
        server: UdsServer<H, S>,
    ) -> Self {
        Self {
            logical_address,
            request_can_id,
            response_can_id,
            req_reassembler: Reassembler::new(ReassemblerConfig::new(mode.clone())),
            resp_segmenter: Segmenter::new(SegmenterConfig::classic(mode)),
            server,
            can_outbox: Vec::new(),
        }
    }

    // region: CAN frame input

    /// Receives an ISO-TP CAN frame from the CAN bus.
    ///
    /// Called by the tick when a CAN frame is addressed to `request_can_id`.
    /// Feeds into the request reassembler. On complete UDS message, calls
    /// `server.handle`. On flow control needed, emits FC frame to `can_outbox`.
    /// Also handles FC frames arriving from the gateway (responding to our
    /// response segmenter's multi-frame transmissions).
    pub fn handle_can_frame(
        &mut self,
        data: &[u8],
        now: Instant,
    ) -> Result<(), EcuNodeError<H::Error>> {
        // Check if this is a flow control frame for our response segmenter
        // FC frames have upper nibble 0x3 - if we are waiting for FC, feed it
        if let Some(&first) = data.first() {
            if first & 0xF0 == 0x30 {
                // Flow control for our response segmenter
                if let Err(e) = self.resp_segmenter.handle_flow_control(data) {
                    // Non-fatal - segmenter may not be waiting for FC
                    let _ = e;
                } else {
                    // Drain any newly unblocked consecutive frames
                    self.drain_resp_segmenter()?;
                }

                return Ok(());
            }
        }

        // Otherwise feed into request reassembler
        match self
            .req_reassembler
            .feed(data)
            .map_err(EcuNodeError::IsoTp)?
        {
            ReassembleResult::Complete { len } => {
                if let Some(uds_bytes) = self.req_reassembler.message(len) {
                    let mut buf: Vec<u8, ECU_UDS_FRAME> = Vec::new();
                    let _ = buf.extend_from_slice(&uds_bytes[..len.min(ECU_UDS_FRAME)]);
                    self.req_reassembler.reset();

                    // Feed UDS request to server
                    self.server
                        .handle(&NodeAddress(self.request_can_id), &buf, now)
                        .map_err(EcuNodeError::Server)?;
                } else {
                    self.req_reassembler.reset();
                }
            }
            ReassembleResult::FlowControl { frame, len: fc_len } => {
                // Send FC back to gateway's request segmenter
                let mut fc: Vec<u8, ECU_CAN_FRAME> = Vec::new();
                let _ = fc.extend_from_slice(&frame[..fc_len]);

                self.can_outbox
                    .push((NodeAddress(self.request_can_id), fc))
                    .map_err(|_| EcuNodeError::CanOutboxFull)?;
            }
            ReassembleResult::InProgress => {}
            ReassembleResult::SessionAborted {
                flow_control,
                fc_len,
            } => {
                let mut fc: Vec<u8, ECU_CAN_FRAME> = Vec::new();
                let _ = fc.extend_from_slice(&flow_control[..fc_len]);
                let _ = self.can_outbox.push((NodeAddress(self.request_can_id), fc));

                self.req_reassembler.reset();
            }
        }

        Ok(())
    }

    // endregion: CAN frame input

    // region: Tick

    /// Advances server timers and drains server response outbox into
    /// the ISO-TP response segmenter.
    pub fn tick(&mut self, now: Instant) -> Result<(), EcuNodeError<H::Error>> {
        self.server.tick(now).map_err(EcuNodeError::Server)?;

        // Drain server outbox into response segmenter
        let mut srv_out: Vec<(NodeAddress, Vec<u8, SIM_MAX_FRAME>), SIM_MAX_OUTBOX> = Vec::new();
        self.server.drain_outbox(&mut srv_out);

        for (_, uds_data) in &srv_out {
            // Start segmenting the UDS response
            self.resp_segmenter
                .start(uds_data)
                .map_err(EcuNodeError::IsoTp)?;

            // Drain initial frames (SF or FF - subsequent CFs come after FC)
            self.drain_resp_segmenter()?;
        }

        Ok(())
    }

    // endregion: Tick

    // region: CAN outbox

    /// Drains outbound ISO-TP CAN frames.
    pub fn drain_can_outbox(
        &mut self,
        out: &mut Vec<(NodeAddress, Vec<u8, ECU_CAN_FRAME>), ECU_CAN_OUT>,
    ) -> usize {
        let n = self.can_outbox.len();

        for item in self.can_outbox.drain(..) {
            let _ = out.push(item);
        }

        n
    }

    // endregion: CAN outbox

    // region: Internal helpers

    /// Drains the response segmenter into `can_outbox` until it either
    /// completes, runs out of frames, or needs a flow control frame.
    fn drain_resp_segmenter(&mut self) -> Result<(), EcuNodeError<H::Error>> {
        let mut out_buf = [0u8; ECU_CAN_FRAME];

        loop {
            match self
                .resp_segmenter
                .next_frame(&mut out_buf)
                .map_err(EcuNodeError::IsoTp)?
            {
                SegmentResult::Complete => break,
                // Waiting for FC from gateway resp_reassembler - stop here.
                // FC arrives via handle_can_frame next tick.
                SegmentResult::WaitForFlowControl => break,
                SegmentResult::Frame { len } => {
                    let mut frame: Vec<u8, ECU_CAN_FRAME> = Vec::new();
                    let _ = frame.extend_from_slice(&out_buf[..len]);

                    // Frames go to response_can_id - gateway listens there
                    self.can_outbox
                        .push((NodeAddress(self.response_can_id), frame))
                        .map_err(|_| EcuNodeError::CanOutboxFull)?;
                }
            }
        }

        Ok(())
    }

    // endregion: Internal helpers
}

// endregion: EcuNode