Merge remote-tracking branch 'upstream/dev' into deep_sleep_fixes

2025-10-03 10:32:21 +01:00 · 2025-09-29 14:39:08 -05:00
parent b11a52fd1e 29db576f79
commit d1e068cdc3
8 changed files with 197 additions and 33 deletions
--- a/esphome/components/api/init.py
+++ b/esphome/components/api/init.py
@@ -224,6 +224,7 @@ async def to_code(config):
        if key := encryption_config.get(CONF_KEY):
            decoded = base64.b64decode(key)
            cg.add(var.set_noise_psk(list(decoded)))
            cg.add_define("USE_API_NOISE_PSK_FROM_YAML")
        else:
            # No key provided, but encryption desired
            # This will allow a plaintext client to provide a noise key,
--- a/esphome/components/api/api_server.cpp
+++ b/esphome/components/api/api_server.cpp
@@ -37,12 +37,14 @@ void APIServer::setup() {
  this->noise_pref_ = global_preferences->make_preference<SavedNoisePsk>(hash, true);
 #ifndef USE_API_NOISE_PSK_FROM_YAML
  // Only load saved PSK if not set from YAML
  SavedNoisePsk noise_pref_saved{};
  if (this->noise_pref_.load(&noise_pref_saved)) {
    ESP_LOGD(TAG, "Loaded saved Noise PSK");
    this->set_noise_psk(noise_pref_saved.psk);
  }
 #endif
 #endif
  // Schedule reboot if no clients connect within timeout
@@ -419,6 +421,12 @@ void APIServer::set_reboot_timeout(uint32_t reboot_timeout) { this->reboot_timeo
 #ifdef USE_API_NOISE
 bool APIServer::save_noise_psk(psk_t psk, bool make_active) {
 #ifdef USE_API_NOISE_PSK_FROM_YAML
  // When PSK is set from YAML, this function should never be called
  // but if it is, reject the change
  ESP_LOGW(TAG, "Key set in YAML");
  return false;
 #else
  auto &old_psk = this->noise_ctx_->get_psk();
  if (std::equal(old_psk.begin(), old_psk.end(), psk.begin())) {
    ESP_LOGW(TAG, "New PSK matches old");
@@ -447,6 +455,7 @@ bool APIServer::save_noise_psk(psk_t psk, bool make_active) {
    });
  }
  return true;
 #endif
 }
 #endif
--- a/esphome/components/sim800l/sim800l.cpp
+++ b/esphome/components/sim800l/sim800l.cpp
@@ -288,11 +288,15 @@ void Sim800LComponent::parse_cmd_(std::string message) {
          if (item == 3) {  // stat
            uint8_t current_call_state = parse_number<uint8_t>(message.substr(start, end - start)).value_or(6);
            if (current_call_state != this->call_state_) {
              if (current_call_state == 4) {
                ESP_LOGV(TAG, "Premature call state '4'. Ignoring, waiting for RING");
              } else {
                this->call_state_ = current_call_state;
                ESP_LOGD(TAG, "Call state is now: %d", current_call_state);
                if (current_call_state == 0)
                  this->call_connected_callback_.call();
              }
-            this->call_state_ = current_call_state;
+            }
            break;
          }
          // item 4 = ""
--- a/esphome/components/usb_host/usb_host.h
+++ b/esphome/components/usb_host/usb_host.h
@@ -9,11 +9,31 @@
 #include <freertos/task.h>
 #include "esphome/core/lock_free_queue.h"
 #include "esphome/core/event_pool.h"
-#include <list>
+#include <atomic>
 namespace esphome {
 namespace usb_host {
 // THREADING MODEL:
 // This component uses a dedicated USB task for event processing to prevent data loss.
 // - USB Task (high priority): Handles USB events, executes transfer callbacks
 // - Main Loop Task: Initiates transfers, processes completion events
 //
 // Thread-safe communication:
 // - Lock-free queues for USB task -> main loop events (SPSC pattern)
 // - Lock-free TransferRequest pool using atomic bitmask (MCSP pattern)
 //
 // TransferRequest pool access pattern:
 // - get_trq_() [allocate]: Called from BOTH USB task and main loop threads
 //   * USB task: via USB UART input callbacks that restart transfers immediately
 //   * Main loop: for output transfers and flow-controlled input restarts
 // - release_trq() [deallocate]: Called from main loop thread only
 //
 // The multi-threaded allocation is intentional for performance:
 // - USB task can immediately restart input transfers without context switching
 // - Main loop controls backpressure by deciding when to restart after consuming data
 // The atomic bitmask ensures thread-safe allocation without mutex blocking.
 static const char *const TAG = "usb_host";
 // Forward declarations
@@ -33,6 +53,7 @@ static const uint8_t USB_DIR_OUT = 0;
 static const size_t SETUP_PACKET_SIZE = 8;
 static const size_t MAX_REQUESTS = 16;  // maximum number of outstanding requests possible.
 static_assert(MAX_REQUESTS <= 16, "MAX_REQUESTS must be <= 16 to fit in uint16_t bitmask");
 static constexpr size_t USB_EVENT_QUEUE_SIZE = 32;   // Size of event queue between USB task and main loop
 static constexpr size_t USB_TASK_STACK_SIZE = 4096;  // Stack size for USB task (same as ESP-IDF USB examples)
 static constexpr UBaseType_t USB_TASK_PRIORITY = 5;  // Higher priority than main loop (tskIDLE_PRIORITY + 5)
@@ -98,13 +119,7 @@ class USBClient : public Component {
  friend class USBHost;
 public:
-  USBClient(uint16_t vid, uint16_t pid) : vid_(vid), pid_(pid) { init_pool(); }
+  USBClient(uint16_t vid, uint16_t pid) : vid_(vid), pid_(pid), trq_in_use_(0) {}
  void init_pool() {
    this->trq_pool_.clear();
    for (size_t i = 0; i != MAX_REQUESTS; i++)
      this->trq_pool_.push_back(&this->requests_[i]);
  }
  void setup() override;
  void loop() override;
  // setup must happen after the host bus has been setup
@@ -126,10 +141,13 @@ class USBClient : public Component {
 protected:
  bool register_();
-  TransferRequest *get_trq_();
+  TransferRequest *get_trq_();  // Lock-free allocation using atomic bitmask (multi-consumer safe)
  virtual void disconnect();
  virtual void on_connected() {}
-  virtual void on_disconnected() { this->init_pool(); }
+  virtual void on_disconnected() {
    // Reset all requests to available (all bits to 0)
    this->trq_in_use_.store(0);
  }
  // USB task management
  static void usb_task_fn(void *arg);
@@ -143,7 +161,12 @@ class USBClient : public Component {
  int state_{USB_CLIENT_INIT};
  uint16_t vid_{};
  uint16_t pid_{};
-  std::list<TransferRequest *> trq_pool_{};
+  // Lock-free pool management using atomic bitmask (no dynamic allocation)
  // Bit i = 1: requests_[i] is in use, Bit i = 0: requests_[i] is available
  // Supports multiple concurrent consumers (both threads can allocate)
  // Single producer for deallocation (main loop only)
  // Limited to 16 slots by uint16_t size (enforced by static_assert)
  std::atomic<uint16_t> trq_in_use_;
  TransferRequest requests_[MAX_REQUESTS]{};
 };
 class USBHost : public Component {
--- a/esphome/components/usb_host/usb_host_client.cpp
+++ b/esphome/components/usb_host/usb_host_client.cpp
@@ -7,6 +7,7 @@
 #include <cinttypes>
 #include <cstring>
 #include <atomic>
 namespace esphome {
 namespace usb_host {
@@ -185,9 +186,11 @@ void USBClient::setup() {
    this->mark_failed();
    return;
  }
-  for (auto *trq : this->trq_pool_) {
+  // Pre-allocate USB transfer buffers for all slots at startup
-    usb_host_transfer_alloc(64, 0, &trq->transfer);
+  // This avoids any dynamic allocation during runtime
-    trq->client = this;
+  for (size_t i = 0; i < MAX_REQUESTS; i++) {
    usb_host_transfer_alloc(64, 0, &this->requests_[i].transfer);
    this->requests_[i].client = this;  // Set once, never changes
  }
  // Create and start USB task
@@ -347,18 +350,45 @@ static void control_callback(const usb_transfer_t *xfer) {
  queue_transfer_cleanup(trq, EVENT_CONTROL_COMPLETE);
 }
 // THREAD CONTEXT: Called from both USB task and main loop threads (multi-consumer)
 // - USB task: USB UART input callbacks restart transfers for immediate data reception
 // - Main loop: Output transfers and flow-controlled input restarts after consuming data
 //
 // THREAD SAFETY: Lock-free using atomic compare-and-swap on bitmask
 // This multi-threaded access is intentional for performance - USB task can
 // immediately restart transfers without waiting for main loop scheduling.
 TransferRequest *USBClient::get_trq_() {
-  if (this->trq_pool_.empty()) {
+  uint16_t mask = this->trq_in_use_.load(std::memory_order_relaxed);
-    ESP_LOGE(TAG, "Too many requests queued");
+
-    return nullptr;
+  // Find first available slot (bit = 0) and try to claim it atomically
  // We use a while loop to allow retrying the same slot after CAS failure
  size_t i = 0;
  while (i != MAX_REQUESTS) {
    if (mask & (1U << i)) {
      // Slot is in use, move to next slot
      i++;
      continue;
    }
-  auto *trq = this->trq_pool_.front();
+
-  this->trq_pool_.pop_front();
+    // Slot i appears available, try to claim it atomically
-  trq->client = this;
+    uint16_t desired = mask | (1U << i);  // Set bit i to mark as in-use
    if (this->trq_in_use_.compare_exchange_weak(mask, desired, std::memory_order_acquire, std::memory_order_relaxed)) {
      // Successfully claimed slot i - prepare the TransferRequest
      auto *trq = &this->requests_[i];
      trq->transfer->context = trq;
      trq->transfer->device_handle = this->device_handle_;
      return trq;
    }
    // CAS failed - another thread modified the bitmask
    // mask was already updated by compare_exchange_weak with the current value
    // No need to reload - the CAS already did that for us
    i = 0;
  }
  ESP_LOGE(TAG, "All %d transfer slots in use", MAX_REQUESTS);
  return nullptr;
 }
 void USBClient::disconnect() {
  this->on_disconnected();
  auto err = usb_host_device_close(this->handle_, this->device_handle_);
@@ -370,6 +400,8 @@ void USBClient::disconnect() {
  this->device_addr_ = -1;
 }
 // THREAD CONTEXT: Called from main loop thread only
 // - Used for device configuration and control operations
 bool USBClient::control_transfer(uint8_t type, uint8_t request, uint16_t value, uint16_t index,
                                 const transfer_cb_t &callback, const std::vector<uint8_t> &data) {
  auto *trq = this->get_trq_();
@@ -425,6 +457,9 @@ static void transfer_callback(usb_transfer_t *xfer) {
 }
 /**
 * Performs a transfer input operation.
 * THREAD CONTEXT: Called from both USB task and main loop threads!
 * - USB task: USB UART input callbacks call start_input() which calls this
 * - Main loop: Initial setup and other components
 *
 * @param ep_address The endpoint address.
 * @param callback The callback function to be called when the transfer is complete.
@@ -451,6 +486,9 @@ void USBClient::transfer_in(uint8_t ep_address, const transfer_cb_t &callback, u
 /**
 * Performs an output transfer operation.
 * THREAD CONTEXT: Called from main loop thread only
 * - USB UART output uses defer() to ensure main loop context
 * - Modbus and other components call from loop()
 *
 * @param ep_address The endpoint address.
 * @param callback The callback function to be called when the transfer is complete.
@@ -483,7 +521,28 @@ void USBClient::dump_config() {
                "  Product id %04X",
                this->vid_, this->pid_);
 }
-void USBClient::release_trq(TransferRequest *trq) { this->trq_pool_.push_back(trq); }
+// THREAD CONTEXT: Only called from main loop thread (single producer for deallocation)
 // - Via event processing when handling EVENT_TRANSFER_COMPLETE/EVENT_CONTROL_COMPLETE
 // - Directly when transfer submission fails
 //
 // THREAD SAFETY: Lock-free using atomic AND to clear bit
 // Single-producer pattern makes this simpler than allocation
 void USBClient::release_trq(TransferRequest *trq) {
  if (trq == nullptr)
    return;
  // Calculate index from pointer arithmetic
  size_t index = trq - this->requests_;
  if (index >= MAX_REQUESTS) {
    ESP_LOGE(TAG, "Invalid TransferRequest pointer");
    return;
  }
  // Atomically clear bit i to mark slot as available
  // fetch_and with inverted bitmask clears the bit atomically
  uint16_t bit = 1U << index;
  this->trq_in_use_.fetch_and(static_cast<uint16_t>(~bit), std::memory_order_release);
 }
 }  // namespace usb_host
 }  // namespace esphome
--- a/esphome/components/usb_uart/usb_uart.cpp
+++ b/esphome/components/usb_uart/usb_uart.cpp
@@ -216,9 +216,16 @@ void USBUartComponent::dump_config() {
 void USBUartComponent::start_input(USBUartChannel *channel) {
  if (!channel->initialised_.load() || channel->input_started_.load())
    return;
-  // Note: This function is called from both USB task and main loop, so we cannot
+  // THREAD CONTEXT: Called from both USB task and main loop threads
-  // directly check ring buffer space here. Backpressure is handled by the chunk pool:
+  // - USB task: Immediate restart after successful transfer for continuous data flow
-  // when exhausted, USB input stops until chunks are freed by the main loop
+  // - Main loop: Controlled restart after consuming data (backpressure mechanism)
  //
  // This dual-thread access is intentional for performance:
  // - USB task restarts avoid context switch delays for high-speed data
  // - Main loop restarts provide flow control when buffers are full
  //
  // The underlying transfer_in() uses lock-free atomic allocation from the
  // TransferRequest pool, making this multi-threaded access safe
  const auto *ep = channel->cdc_dev_.in_ep;
  // CALLBACK CONTEXT: This lambda is executed in USB task via transfer_callback
  auto callback = [this, channel](const usb_host::TransferStatus &status) {
--- a/tests/integration/fixtures/noise_encryption_key_protection.yaml
+++ b/tests/integration/fixtures/noise_encryption_key_protection.yaml
@@ -0,0 +1,10 @@
 esphome:
  name: noise-key-test
 host:
 api:
  encryption:
    key: "zX9/JHxMKwpP0jUGsF0iESCm1wRvNgR6NkKVOhn7kSs="
 logger:
--- a/tests/integration/test_noise_encryption_key_protection.py
+++ b/tests/integration/test_noise_encryption_key_protection.py
@@ -0,0 +1,51 @@
 """Integration test for noise encryption key protection from YAML."""
 from __future__ import annotations
 import base64
 from aioesphomeapi import InvalidEncryptionKeyAPIError
 import pytest
 from .types import APIClientConnectedFactory, RunCompiledFunction
@pytest.mark.asyncio
 async def test_noise_encryption_key_protection(
    yaml_config: str,
    run_compiled: RunCompiledFunction,
    api_client_connected: APIClientConnectedFactory,
 ) -> None:
    """Test that noise encryption key set in YAML cannot be changed via API."""
    # The key that's set in the YAML fixture
    noise_psk = "zX9/JHxMKwpP0jUGsF0iESCm1wRvNgR6NkKVOhn7kSs="
    # Keep ESPHome process running throughout all tests
    async with run_compiled(yaml_config):
        # First connection - test key change attempt
        async with api_client_connected(noise_psk=noise_psk) as client:
            # Verify connection is established
            device_info = await client.device_info()
            assert device_info is not None
            # Try to set a new encryption key via API
            new_key = base64.b64encode(
                b"x" * 32
            )  # Valid 32-byte key in base64 as bytes
            # This should fail since key was set in YAML
            success = await client.noise_encryption_set_key(new_key)
            assert success is False
        # Reconnect with the original key to verify it still works
        async with api_client_connected(noise_psk=noise_psk) as client:
            # Verify connection is still successful with original key
            device_info = await client.device_info()
            assert device_info is not None
            assert device_info.name == "noise-key-test"
        # Verify that connecting with a wrong key fails
        wrong_key = base64.b64encode(b"y" * 32).decode()  # Different key
        with pytest.raises(InvalidEncryptionKeyAPIError):
            async with api_client_connected(noise_psk=wrong_key) as client:
                await client.device_info()