Make sure relay faults make it to the health packet (#492)

robbederks · web-flow · commit 500370aecdda · 2020-04-09T15:53:46.000-07:00
* Added relay malfunction handling

* Bump version

* Fixed safety test

* set/reset

* fixed test again
diff --git a/VERSION b/VERSION
@@ -1 +1 @@
-v1.7.4
+v1.7.5
diff --git a/board/safety.h b/board/safety.h
@@ -184,6 +184,15 @@ bool addr_safety_check(CAN_FIFOMailBox_TypeDef *to_push,
   return is_msg_valid(rx_checks, index);
 }
 
+void relay_malfunction_set(void) {
+  relay_malfunction = true;
+  fault_occurred(FAULT_RELAY_MALFUNCTION);
+}
+
+void relay_malfunction_reset(void) {
+  relay_malfunction = false;
+  fault_recovered(FAULT_RELAY_MALFUNCTION);
+}
 
 typedef struct {
   uint16_t id;
diff --git a/board/safety/safety_chrysler.h b/board/safety/safety_chrysler.h
@@ -126,7 +126,7 @@ static int chrysler_rx_hook(CAN_FIFOMailBox_TypeDef *to_push) {
 
     // check if stock camera ECU is on bus 0
     if ((safety_mode_cnt > RELAY_TRNS_TIMEOUT) && (addr == 0x292)) {
-      relay_malfunction = true;
+      relay_malfunction_set();
     }
   }
   return valid;
diff --git a/board/safety/safety_defaults.h b/board/safety/safety_defaults.h
@@ -8,7 +8,7 @@ int default_rx_hook(CAN_FIFOMailBox_TypeDef *to_push) {
 static void nooutput_init(int16_t param) {
   UNUSED(param);
   controls_allowed = false;
-  relay_malfunction = false;
+  relay_malfunction_reset();
 }
 
 static int nooutput_tx_hook(CAN_FIFOMailBox_TypeDef *to_send) {
@@ -42,7 +42,7 @@ const safety_hooks nooutput_hooks = {
 static void alloutput_init(int16_t param) {
   UNUSED(param);
   controls_allowed = true;
-  relay_malfunction = false;
+  relay_malfunction_reset();
 }
 
 static int alloutput_tx_hook(CAN_FIFOMailBox_TypeDef *to_send) {
diff --git a/board/safety/safety_ford.h b/board/safety/safety_ford.h
@@ -55,7 +55,7 @@ static int ford_rx_hook(CAN_FIFOMailBox_TypeDef *to_push) {
   }
 
   if ((safety_mode_cnt > RELAY_TRNS_TIMEOUT) && (bus == 0) && (addr == 0x3CA)) {
-    relay_malfunction = true;
+    relay_malfunction_set();
   }
   return 1;
 }
diff --git a/board/safety/safety_gm.h b/board/safety/safety_gm.h
@@ -112,7 +112,7 @@ static int gm_rx_hook(CAN_FIFOMailBox_TypeDef *to_push) {
     // 384 = ASCMLKASteeringCmd
     // 715 = ASCMGasRegenCmd
     if ((safety_mode_cnt > RELAY_TRNS_TIMEOUT) && ((addr == 384) || (addr == 715))) {
-      relay_malfunction = true;
+      relay_malfunction_set();
     }
   }
   return valid;
diff --git a/board/safety/safety_honda.h b/board/safety/safety_honda.h
@@ -165,7 +165,7 @@ static int honda_rx_hook(CAN_FIFOMailBox_TypeDef *to_push) {
     if ((safety_mode_cnt > RELAY_TRNS_TIMEOUT) && ((addr == 0xE4) || (addr == 0x194))) {
       if (((honda_hw != HONDA_N_HW) && (bus == bus_rdr_car)) ||
         ((honda_hw == HONDA_N_HW) && (bus == 0))) {
-        relay_malfunction = true;
+        relay_malfunction_set();
       }
     }
   }
@@ -257,22 +257,22 @@ static int honda_tx_hook(CAN_FIFOMailBox_TypeDef *to_send) {
 static void honda_nidec_init(int16_t param) {
   UNUSED(param);
   controls_allowed = false;
-  relay_malfunction = false;
+  relay_malfunction_reset();
   honda_hw = HONDA_N_HW;
   honda_alt_brake_msg = false;
 }
 
 static void honda_bosch_giraffe_init(int16_t param) {
   controls_allowed = false;
-  relay_malfunction = false;
+  relay_malfunction_reset();
   honda_hw = HONDA_BG_HW;
   // Checking for alternate brake override from safety parameter
   honda_alt_brake_msg = (param == 1) ? true : false;
 }
 
 static void honda_bosch_harness_init(int16_t param) {
   controls_allowed = false;
-  relay_malfunction = false;
+  relay_malfunction_reset();
   honda_hw = HONDA_BH_HW;
   // Checking for alternate brake override from safety parameter
   honda_alt_brake_msg = (param == 1) ? true : false;
diff --git a/board/safety/safety_hyundai.h b/board/safety/safety_hyundai.h
@@ -81,7 +81,7 @@ static int hyundai_rx_hook(CAN_FIFOMailBox_TypeDef *to_push) {
 
     // check if stock camera ECU is on bus 0
     if ((safety_mode_cnt > RELAY_TRNS_TIMEOUT) && (addr == 832)) {
-      relay_malfunction = true;
+      relay_malfunction_set();
     }
   }
   return valid;
diff --git a/board/safety/safety_mazda.h b/board/safety/safety_mazda.h
@@ -55,7 +55,7 @@ static int mazda_rx_hook(CAN_FIFOMailBox_TypeDef *to_push) {
 
   // if we see wheel speed msgs on MAZDA_CAM bus then relay is closed
   if ((safety_mode_cnt > RELAY_TRNS_TIMEOUT) && (bus == MAZDA_CAM) && (addr == MAZDA_WHEEL_SPEED)) {
-    relay_malfunction = true;
+    relay_malfunction_set();
   }
   return 1;
 }
diff --git a/board/safety/safety_nissan.h b/board/safety/safety_nissan.h
@@ -78,7 +78,7 @@ static int nissan_rx_hook(CAN_FIFOMailBox_TypeDef *to_push) {
 
       // 0x169 is lkas cmd. If it is on bus 0, then relay is unexpectedly closed
       if ((safety_mode_cnt > RELAY_TRNS_TIMEOUT) && (addr == 0x169)) {
-        relay_malfunction = true;
+        relay_malfunction_set();
       }
     }
 
diff --git a/board/safety/safety_subaru.h b/board/safety/safety_subaru.h
@@ -126,7 +126,7 @@ static int subaru_rx_hook(CAN_FIFOMailBox_TypeDef *to_push) {
 
     if ((safety_mode_cnt > RELAY_TRNS_TIMEOUT) &&
         (((addr == 0x122) && subaru_global) || ((addr == 0x164) && !subaru_global))) {
-      relay_malfunction = true;
+      relay_malfunction_set();
     }
   }
   return valid;
@@ -228,14 +228,14 @@ static int subaru_fwd_hook(int bus_num, CAN_FIFOMailBox_TypeDef *to_fwd) {
 static void subaru_init(int16_t param) {
   UNUSED(param);
   controls_allowed = false;
-  relay_malfunction = false;
+  relay_malfunction_reset();
   subaru_global = true;
 }
 
 static void subaru_legacy_init(int16_t param) {
   UNUSED(param);
   controls_allowed = false;
-  relay_malfunction = false;
+  relay_malfunction_reset();
   subaru_global = false;
 }
 
diff --git a/board/safety/safety_toyota.h b/board/safety/safety_toyota.h
@@ -143,7 +143,7 @@ static int toyota_rx_hook(CAN_FIFOMailBox_TypeDef *to_push) {
 
     // 0x2E4 is lkas cmd. If it is on bus 0, then relay is unexpectedly closed
     if ((safety_mode_cnt > RELAY_TRNS_TIMEOUT) && (addr == 0x2E4)) {
-      relay_malfunction = true;
+      relay_malfunction_set();
     }
   }
   return valid;
@@ -247,7 +247,7 @@ static int toyota_tx_hook(CAN_FIFOMailBox_TypeDef *to_send) {
 
 static void toyota_init(int16_t param) {
   controls_allowed = 0;
-  relay_malfunction = 0;
+  relay_malfunction_reset();
   toyota_dbc_eps_torque_factor = param;
 }
 
diff --git a/board/safety/safety_volkswagen.h b/board/safety/safety_volkswagen.h
@@ -126,7 +126,7 @@ static void volkswagen_mqb_init(int16_t param) {
   UNUSED(param);
 
   controls_allowed = false;
-  relay_malfunction = false;
+  relay_malfunction_reset();
   volkswagen_torque_msg = MSG_HCA_01;
   volkswagen_lane_msg = MSG_LDW_02;
   gen_crc_lookup_table(0x2F, volkswagen_crc8_lut_8h2f);
@@ -136,7 +136,7 @@ static void volkswagen_pq_init(int16_t param) {
   UNUSED(param);
 
   controls_allowed = false;
-  relay_malfunction = false;
+  relay_malfunction_reset();
   volkswagen_torque_msg = MSG_HCA_1;
   volkswagen_lane_msg = MSG_LDW_1;
 }
@@ -201,7 +201,7 @@ static int volkswagen_mqb_rx_hook(CAN_FIFOMailBox_TypeDef *to_push) {
 
     // If there are HCA messages on bus 0 not sent by OP, there's a relay problem
     if ((safety_mode_cnt > RELAY_TRNS_TIMEOUT) && (addr == MSG_HCA_01)) {
-      relay_malfunction = true;
+      relay_malfunction_set();
     }
   }
   return valid;
@@ -268,7 +268,7 @@ static int volkswagen_pq_rx_hook(CAN_FIFOMailBox_TypeDef *to_push) {
 
     // If there are HCA messages on bus 0 not sent by OP, there's a relay problem
     if ((safety_mode_cnt > RELAY_TRNS_TIMEOUT) && (bus == 0) && (addr == MSG_HCA_1)) {
-      relay_malfunction = true;
+      relay_malfunction_set();
     }
   }
   return valid;
diff --git a/board/safety_declarations.h b/board/safety_declarations.h
@@ -61,6 +61,8 @@ bool addr_safety_check(CAN_FIFOMailBox_TypeDef *to_push,
                        uint8_t (*get_checksum)(CAN_FIFOMailBox_TypeDef *to_push),
                        uint8_t (*compute_checksum)(CAN_FIFOMailBox_TypeDef *to_push),
                        uint8_t (*get_counter)(CAN_FIFOMailBox_TypeDef *to_push));
+void relay_malfunction_set(void);
+void relay_malfunction_reset(void);
 
 typedef void (*safety_hook_init)(int16_t param);
 typedef int (*rx_hook)(CAN_FIFOMailBox_TypeDef *to_push);
diff --git a/tests/safety/test.c b/tests/safety/test.c
@@ -62,6 +62,13 @@ uint8_t hw_type = HW_TYPE_UNKNOWN;
  ({ __typeof__ (a) _a = (a);                    \
    (_a > 0) ? _a : (-_a); })
 
+// from faults.h
+#define FAULT_RELAY_MALFUNCTION         (1U << 0)
+void fault_occurred(uint32_t fault) {
+}
+void fault_recovered(uint32_t fault) {
+}
+
 // from llcan.h
 #define GET_BUS(msg) (((msg)->RDTR >> 4) & 0xFF)
 #define GET_LEN(msg) ((msg)->RDTR & 0xf)

Original file line number	Diff line number	Diff line change
`@@ -126,7 +126,7 @@ static int chrysler_rx_hook(CAN_FIFOMailBox_TypeDef *to_push) {`
`126`	`126`
`127`	`127`	`// check if stock camera ECU is on bus 0`
`128`	`128`	`if ((safety_mode_cnt > RELAY_TRNS_TIMEOUT) && (addr == 0x292)) {`
`129`		`- relay_malfunction = true;`
	`129`	`+ relay_malfunction_set();`
`130`	`130`	`}`
`131`	`131`	`}`
`132`	`132`	`return valid;`
Original file line number	Diff line number	Diff line change
`@@ -55,7 +55,7 @@ static int ford_rx_hook(CAN_FIFOMailBox_TypeDef *to_push) {`
`55`	`55`	`}`
`56`	`56`
`57`	`57`	`if ((safety_mode_cnt > RELAY_TRNS_TIMEOUT) && (bus == 0) && (addr == 0x3CA)) {`
`58`		`- relay_malfunction = true;`
	`58`	`+ relay_malfunction_set();`
`59`	`59`	`}`
`60`	`60`	`return 1;`
`61`	`61`	`}`
Original file line number	Diff line number	Diff line change
`@@ -112,7 +112,7 @@ static int gm_rx_hook(CAN_FIFOMailBox_TypeDef *to_push) {`
`112`	`112`	`// 384 = ASCMLKASteeringCmd`
`113`	`113`	`// 715 = ASCMGasRegenCmd`
`114`	`114`	`if ((safety_mode_cnt > RELAY_TRNS_TIMEOUT) && ((addr == 384) \|\| (addr == 715))) {`
`115`		`- relay_malfunction = true;`
	`115`	`+ relay_malfunction_set();`
`116`	`116`	`}`
`117`	`117`	`}`
`118`	`118`	`return valid;`
Original file line number	Diff line number	Diff line change
`@@ -81,7 +81,7 @@ static int hyundai_rx_hook(CAN_FIFOMailBox_TypeDef *to_push) {`
`81`	`81`
`82`	`82`	`// check if stock camera ECU is on bus 0`
`83`	`83`	`if ((safety_mode_cnt > RELAY_TRNS_TIMEOUT) && (addr == 832)) {`
`84`		`- relay_malfunction = true;`
	`84`	`+ relay_malfunction_set();`
`85`	`85`	`}`
`86`	`86`	`}`
`87`	`87`	`return valid;`
Original file line number	Diff line number	Diff line change
`@@ -55,7 +55,7 @@ static int mazda_rx_hook(CAN_FIFOMailBox_TypeDef *to_push) {`
`55`	`55`
`56`	`56`	`// if we see wheel speed msgs on MAZDA_CAM bus then relay is closed`
`57`	`57`	`if ((safety_mode_cnt > RELAY_TRNS_TIMEOUT) && (bus == MAZDA_CAM) && (addr == MAZDA_WHEEL_SPEED)) {`
`58`		`- relay_malfunction = true;`
	`58`	`+ relay_malfunction_set();`
`59`	`59`	`}`
`60`	`60`	`return 1;`
`61`	`61`	`}`
Original file line number	Diff line number	Diff line change
`@@ -78,7 +78,7 @@ static int nissan_rx_hook(CAN_FIFOMailBox_TypeDef *to_push) {`
`78`	`78`
`79`	`79`	`// 0x169 is lkas cmd. If it is on bus 0, then relay is unexpectedly closed`
`80`	`80`	`if ((safety_mode_cnt > RELAY_TRNS_TIMEOUT) && (addr == 0x169)) {`
`81`		`- relay_malfunction = true;`
	`81`	`+ relay_malfunction_set();`
`82`	`82`	`}`
`83`	`83`	`}`
`84`	`84`
Original file line number	Diff line number	Diff line change
`@@ -126,7 +126,7 @@ static int subaru_rx_hook(CAN_FIFOMailBox_TypeDef *to_push) {`
`126`	`126`
`127`	`127`	`if ((safety_mode_cnt > RELAY_TRNS_TIMEOUT) &&`
`128`	`128`	`(((addr == 0x122) && subaru_global) \|\| ((addr == 0x164) && !subaru_global))) {`
`129`		`- relay_malfunction = true;`
	`129`	`+ relay_malfunction_set();`
`130`	`130`	`}`
`131`	`131`	`}`
`132`	`132`	`return valid;`
`@@ -228,14 +228,14 @@ static int subaru_fwd_hook(int bus_num, CAN_FIFOMailBox_TypeDef *to_fwd) {`
`228`	`228`	`static void subaru_init(int16_t param) {`
`229`	`229`	`UNUSED(param);`
`230`	`230`	`controls_allowed = false;`
`231`		`- relay_malfunction = false;`
	`231`	`+ relay_malfunction_reset();`
`232`	`232`	`subaru_global = true;`
`233`	`233`	`}`
`234`	`234`
`235`	`235`	`static void subaru_legacy_init(int16_t param) {`
`236`	`236`	`UNUSED(param);`
`237`	`237`	`controls_allowed = false;`
`238`		`- relay_malfunction = false;`
	`238`	`+ relay_malfunction_reset();`
`239`	`239`	`subaru_global = false;`
`240`	`240`	`}`
`241`	`241`
Original file line number	Diff line number	Diff line change
`@@ -143,7 +143,7 @@ static int toyota_rx_hook(CAN_FIFOMailBox_TypeDef *to_push) {`
`143`	`143`
`144`	`144`	`// 0x2E4 is lkas cmd. If it is on bus 0, then relay is unexpectedly closed`
`145`	`145`	`if ((safety_mode_cnt > RELAY_TRNS_TIMEOUT) && (addr == 0x2E4)) {`
`146`		`- relay_malfunction = true;`
	`146`	`+ relay_malfunction_set();`
`147`	`147`	`}`
`148`	`148`	`}`
`149`	`149`	`return valid;`
`@@ -247,7 +247,7 @@ static int toyota_tx_hook(CAN_FIFOMailBox_TypeDef *to_send) {`
`247`	`247`
`248`	`248`	`static void toyota_init(int16_t param) {`
`249`	`249`	`controls_allowed = 0;`
`250`		`- relay_malfunction = 0;`
	`250`	`+ relay_malfunction_reset();`
`251`	`251`	`toyota_dbc_eps_torque_factor = param;`
`252`	`252`	`}`
`253`	`253`
Original file line number	Diff line number	Diff line change
`@@ -126,7 +126,7 @@ static void volkswagen_mqb_init(int16_t param) {`
`126`	`126`	`UNUSED(param);`
`127`	`127`
`128`	`128`	`controls_allowed = false;`
`129`		`- relay_malfunction = false;`
	`129`	`+ relay_malfunction_reset();`
`130`	`130`	`volkswagen_torque_msg = MSG_HCA_01;`
`131`	`131`	`volkswagen_lane_msg = MSG_LDW_02;`
`132`	`132`	`gen_crc_lookup_table(0x2F, volkswagen_crc8_lut_8h2f);`
`@@ -136,7 +136,7 @@ static void volkswagen_pq_init(int16_t param) {`
`136`	`136`	`UNUSED(param);`
`137`	`137`
`138`	`138`	`controls_allowed = false;`
`139`		`- relay_malfunction = false;`
	`139`	`+ relay_malfunction_reset();`
`140`	`140`	`volkswagen_torque_msg = MSG_HCA_1;`
`141`	`141`	`volkswagen_lane_msg = MSG_LDW_1;`
`142`	`142`	`}`
`@@ -201,7 +201,7 @@ static int volkswagen_mqb_rx_hook(CAN_FIFOMailBox_TypeDef *to_push) {`
`201`	`201`
`202`	`202`	`// If there are HCA messages on bus 0 not sent by OP, there's a relay problem`
`203`	`203`	`if ((safety_mode_cnt > RELAY_TRNS_TIMEOUT) && (addr == MSG_HCA_01)) {`
`204`		`- relay_malfunction = true;`
	`204`	`+ relay_malfunction_set();`
`205`	`205`	`}`
`206`	`206`	`}`
`207`	`207`	`return valid;`
`@@ -268,7 +268,7 @@ static int volkswagen_pq_rx_hook(CAN_FIFOMailBox_TypeDef *to_push) {`
`268`	`268`
`269`	`269`	`// If there are HCA messages on bus 0 not sent by OP, there's a relay problem`
`270`	`270`	`if ((safety_mode_cnt > RELAY_TRNS_TIMEOUT) && (bus == 0) && (addr == MSG_HCA_1)) {`
`271`		`- relay_malfunction = true;`
	`271`	`+ relay_malfunction_set();`
`272`	`272`	`}`
`273`	`273`	`}`
`274`	`274`	`return valid;`