SerialCommHub: several improvements #731
Conversation
mhei
requested review from
Pietfried,
hikinggrass and
corneliusclaussen
as code owners
mhei
force-pushed
the
cb-serialcommhub-improvements
branch
from
5ed073b to
a3e5cb4
Compare
|
@hikinggrass, @corneliusclaussen, @Pietfried |
barsnick
force-pushed
the
cb-serialcommhub-improvements
branch
from
a3e5cb4 to
796450d
Compare
|
|
||
| namespace tiny_modbus { | ||
| std::string FunctionCode_to_string_with_hex(FunctionCode fc) { | ||
| std::stringstream ss; |
There was a problem hiding this comment.
Could probably be written more readable with fmt::format, but just my taste ;-)
| try { | ||
| response = modbus.txrx(device_address, function, first_register_address, register_quantity, | ||
| config.max_packet_size, wait_for_reply, request); | ||
| } catch (tiny_modbus::TinyModbusException& e) { |
|
I have added the fixes. I used four separate commits, for easier review, and so that they can be squashed with their respective commits (and the whole bunch will be squashed anyway later). |
barsnick
force-pushed
the
cb-serialcommhub-improvements
branch
from
e8bb53f to
d686fee
Compare
|
Regarding the uncaught exception: usually this should never trigger, since the if-constructs a few lines above already cover it and in case the exceptions is raised, then the code review process failed. That said, adding Regarding failed write: since this indicates major system trouble, it should be caught on the highest level possible and in turn force a shutdown (as clean as possible in this case) and reboot of the whole system. But according to my understanding, this still requires more infrastructure around and parts are already in progress. Just my 2 cts, back in holiday mode again 🌞. |
|
If it never triggers, we don't need to throw it ;-) The problem that we need to change our minds a bit how to handle errors in modules in general (not just here). If a module cannot perform its work anymore (e.g. because the modbus device disappeared as someone unplugged the USB dongle), it should go into an error mode but it should never kill the process. I think the clean solution here would be what we start using in other modules: Define an error (e.g. CommunicationFault to align with other modules) to indicate to the modules that are using modbus that the connection is not available. All calls will then return with a failure. There are many things that are still functional even if one device cannot be reached on the modbus anymore: E.g. the charger may be configured to still charge for free etc and cloud communication still works and reports that error properly instead of getting stuck in a reboot loop. So I disagree that this always needs to result in a system reboot. |
|
A better way of handling full system reboots could for example be a separate module that observes the errors of all modules and if they do not self recover (which all modules should try as best as they can) e.g. within 24h or so it reboots. This way it could also do this when e.g. no charging session is active and the behaviour could be configured (e.g. to select which errors/modules are uncritical and should be ignored in the actual setup |
This requires somewhat of an infrastructure though, including interfaces like in your PR #724 (why was that closed), and handling in EvseManager, right? I guess this is something which goes beyond this PR right now, even though that is some of the thought behind it. |
Yes, this is not for this PR |
| throw IncompletePacketException("Result data not completely in received message."); | ||
| } | ||
|
|
||
| // check if result is completely in received data |
There was a problem hiding this comment.
This comment is a copy paste error
| } | ||
|
|
||
| TinyModbusRTU::~TinyModbusRTU() { | ||
| if (fd) | ||
| if (fd != -1) |
There was a problem hiding this comment.
there are bunch of cases in this file where we still check if fd <= 0 . can you make them consistent?
barsnick
force-pushed
the
cb-serialcommhub-improvements
branch
2 times, most recently
from
95990bb to
9b7db02
Compare
|
I resolved most comments, squashed the fix-ups with their respective commits, and rebased to current main HEAD. I will look at the byte count tomorrow. |
At the moment, an automatic retry up to 2 times is done in case the Modbus operation fails. With some devices or in same use-cases, this is not desired, so let us make the retry count configurable via manifest. So mimic the current behavior and to retain backwards compatibility, let's use a default value of 2. While at, we slightly change the debug messages and unify the loop counting code. Signed-off-by: Michael Heimpold <[email protected]>
open returns -1 on error, any other value has to be considered a valid fd. So we have to initialize with -1 instead of zero (which is stdin usually). This must also be considered in the destructor to not close stdin by accident. Signed-off-by: Michael Heimpold <[email protected]>
When devices do not respond or some other problems occur, then the the log output might be flooded with messages. To have some more central control over the log output, let's refactor the module: - introduce various exceptions and use then in places where previously the log output was directly created - introduce a common helper function which performs the Modbus function which also increases code sharing between different high-level callbacks - emit only a warning in case the last trial of all configured retries fails finally (so in case the call can be completed successfully within the configure retries, only debug messages are created, but no usual user visible output) Signed-off-by: Michael Heimpold <[email protected]>
Signed-off-by: Michael Heimpold <[email protected]>
For registers, the byte_cnt should always be even. But for coils/inputs, the byte_cnt could be odd, so let's cover this by ensuring that we round upwards. Signed-off-by: Michael Heimpold <[email protected]>
Since Modbus functions which operates on registers (which are defined as 16-bit wide) are expected to return full registers, we can and should check the received response for this. Signed-off-by: Michael Heimpold <[email protected]> Signed-off-by: Moritz Barsnick <[email protected]>
Ignoring the return code of write results in a compiler warning as theoretically the write could return without having written the complete packet. So handle it accordingly. In case of error, we can throw an exception. Signed-off-by: Michael Heimpold <[email protected]>
This is assumed to be fatal and non-recoverable, therefore logging is protected against flooding. A code path for possible recovery is implemented nevertheless. This should be replaced by a proper error reporting and handling solution, yet the error interfaces and handling for this are not in place yet. Signed-off-by: Moritz Barsnick <[email protected]>
When converting a reply with an odd number of bytes of data ("read coils" or
"read discrete inputs"), the byte-to-word conversion was reading beyond the
end of the response message buffer.
This is fixed by checking for the number of remaining bytes, and copying
only what is left.
Signed-off-by: Moritz Barsnick <[email protected]>
barsnick
force-pushed
the
cb-serialcommhub-improvements
branch
from
f831bc1 to
fd2c256
Compare
|
I believe all issues are resolved with my latest commits. |
Describe your changes
This PR accumulates several minor fixes and some improvements:
Issue ticket number and link
This PR is considered a fix for #523, in combination with #730.
Checklist before requesting a review