Update NetworkMgr

Author: endurodave

docs/DETAILS.md

@@ -22,6 +22,7 @@ The DelegateMQ C++ library enables function invocations on any callable, either
     - [CMake](#cmake)
     - [Generic (Make/IDE)](#generic-makeide)
 - [Porting Guide](#porting-guide)
+  - [Embedded Systems](#embedded-systems)
 - [Quick Start](#quick-start)
   - [Basic Examples](#basic-examples)
   - [Publish/Subscribe Example](#publishsubscribe-example)
@@ -275,6 +276,22 @@ Numerous predefined platforms are already supported such as Windows, Linux, Free
     * Example: `DMQ_ALLOCATOR` to switch between standard Heap (new/delete) and the deterministic Fixed Block Allocator.
 7.  **Implement Fault Handling**: Customize `Fault.cpp` to route errors to your system's logger or crash handler. 
 
+## Embedded Systems
+
+Running C++ messaging on embedded targets (like STM32) requires specific attention to resources.
+
+1. **Stack Usage & Debug Mode:**
+
+    **Issue:** In Debug mode (-O0), C++ templates generate deep call stacks, possibly causing stack overflows.  
+    **Fix:** Increase task stack (e.g. 8KB) or in Release mode (-O2), stacks shrink significantly.
+
+2. **Transport Implementation (if using remote delegates):**
+
+    **Issue:** Blocking UART calls (e.g., `HAL_UART_Receive`) starve high-priority tasks.  
+    **Fix:** Use an Interrupt-Driven Ring Buffer. The ISR captures data immediately, and the Receive Task sleeps on a Semaphore until data exists.
+
+See the `stm32-freertos` example `README.md` for a complete implementation of static stacks, interrupt-driven UART, and correct FreeRTOS configuration.
+
 # Quick Start
 
 Simple delegate examples showing basic functionality. See [Sample Projects](#sample-projects) for more sample code.

example/sample-projects/system-architecture-no-deps/common/NetworkMgr.cpp

@@ -14,16 +14,16 @@ NetworkMgr::NetworkMgr()
 int NetworkMgr::Create()
 {
     // Bind signals
-    m_alarmMsgDel.Bind(OnAlarm.get(), &SignalSafe<void(AlarmMsg&, AlarmNote&)>::operator(), ids::ALARM_MSG_ID);
-    m_dataMsgDel.Bind(OnData.get(), &SignalSafe<void(DataMsg&)>::operator(), ids::DATA_MSG_ID);
-    m_commandMsgDel.Bind(OnCommand.get(), &SignalSafe<void(CommandMsg&)>::operator(), ids::COMMAND_MSG_ID);
-    m_actuatorMsgDel.Bind(OnActuator.get(), &SignalSafe<void(ActuatorMsg&)>::operator(), ids::ACTUATOR_MSG_ID);
-
-    // Register for error callbacks
-    m_alarmMsgDel.OnError += MakeDelegate(this, &NetworkMgr::OnError);
-    m_dataMsgDel.OnError += MakeDelegate(this, &NetworkMgr::OnError);
-    m_commandMsgDel.OnError += MakeDelegate(this, &NetworkMgr::OnError);
-    m_actuatorMsgDel.OnError += MakeDelegate(this, &NetworkMgr::OnError);
+    m_alarmMsgDel.Bind(this, &NetworkMgr::ForwardAlarm, ids::ALARM_MSG_ID);
+    m_dataMsgDel.Bind(this, &NetworkMgr::ForwardData, ids::DATA_MSG_ID);
+    m_commandMsgDel.Bind(this, &NetworkMgr::ForwardCommand, ids::COMMAND_MSG_ID);
+    m_actuatorMsgDel.Bind(this, &NetworkMgr::ForwardActuator, ids::ACTUATOR_MSG_ID);
+
+    // Register for error callbacks using single assignment (=)
+    m_alarmMsgDel.OnError = MakeDelegate(this, &NetworkMgr::OnError);
+    m_dataMsgDel.OnError = MakeDelegate(this, &NetworkMgr::OnError);
+    m_commandMsgDel.OnError = MakeDelegate(this, &NetworkMgr::OnError);
+    m_actuatorMsgDel.OnError = MakeDelegate(this, &NetworkMgr::OnError);
 
     // Register endpoints with the Base Engine (So Incoming() can find them)
     RegisterEndpoint(ids::ALARM_MSG_ID, &m_alarmMsgDel);

example/sample-projects/system-architecture-no-deps/common/NetworkMgr.h

@@ -83,11 +83,22 @@ class NetworkMgr : public NetworkEngine
     NetworkMgr();
     ~NetworkMgr() = default;
 
+    // Helper functions to forward incoming data to the Signals
+    void ForwardAlarm(AlarmMsg& msg, AlarmNote& note) { if (OnAlarm) (*OnAlarm)(msg, note); }
+    void ForwardCommand(CommandMsg& msg) { if (OnCommand) (*OnCommand)(msg); }
+    void ForwardData(DataMsg& msg) { if (OnData) (*OnData)(msg); }
+    void ForwardActuator(ActuatorMsg& msg) { if (OnActuator) (*OnActuator)(msg); }
+
+    // TYPE ALIAS: Unicast, Unsafe, Member Delegate bound to 'NetworkMgr'
+    // This allows exact binding to 'this' in Create()
+    template <typename... Args>
+    using EndpointType = RemoteEndpoint<NetworkMgr, void(Args...)>;
+
     // Specific endpoints
-    RemoteEndpoint<dmq::MulticastDelegateSafe<void(AlarmMsg&, AlarmNote&)>, void(AlarmMsg&, AlarmNote&)> m_alarmMsgDel;
-    RemoteEndpoint<dmq::MulticastDelegateSafe<void(CommandMsg&)>, void(CommandMsg&)> m_commandMsgDel;
-    RemoteEndpoint<dmq::MulticastDelegateSafe<void(DataMsg&)>, void(DataMsg&)> m_dataMsgDel;
-    RemoteEndpoint<dmq::MulticastDelegateSafe<void(ActuatorMsg&)>, void(ActuatorMsg&)> m_actuatorMsgDel;
+    EndpointType<AlarmMsg&, AlarmNote&> m_alarmMsgDel;
+    EndpointType<CommandMsg&>           m_commandMsgDel;
+    EndpointType<DataMsg&>              m_dataMsgDel;
+    EndpointType<ActuatorMsg&>          m_actuatorMsgDel;
 };
 
 #endif

example/sample-projects/system-architecture/common/NetworkMgr.cpp

@@ -14,16 +14,16 @@ NetworkMgr::NetworkMgr()
 int NetworkMgr::Create()
 {
     // Bind signals
-    m_alarmMsgDel.Bind(OnAlarm.get(), &SignalSafe<void(AlarmMsg&, AlarmNote&)>::operator(), ids::ALARM_MSG_ID);
-    m_dataMsgDel.Bind(OnData.get(), &SignalSafe<void(DataMsg&)>::operator(), ids::DATA_MSG_ID);
-    m_commandMsgDel.Bind(OnCommand.get(), &SignalSafe<void(CommandMsg&)>::operator(), ids::COMMAND_MSG_ID);
-    m_actuatorMsgDel.Bind(OnActuator.get(), &SignalSafe<void(ActuatorMsg&)>::operator(), ids::ACTUATOR_MSG_ID);
-
-    // Register for error callbacks
-    m_alarmMsgDel.OnError += MakeDelegate(this, &NetworkMgr::OnError);
-    m_dataMsgDel.OnError += MakeDelegate(this, &NetworkMgr::OnError);
-    m_commandMsgDel.OnError += MakeDelegate(this, &NetworkMgr::OnError);
-    m_actuatorMsgDel.OnError += MakeDelegate(this, &NetworkMgr::OnError);
+    m_alarmMsgDel.Bind(this, &NetworkMgr::ForwardAlarm, ids::ALARM_MSG_ID);
+    m_dataMsgDel.Bind(this, &NetworkMgr::ForwardData, ids::DATA_MSG_ID);
+    m_commandMsgDel.Bind(this, &NetworkMgr::ForwardCommand, ids::COMMAND_MSG_ID);
+    m_actuatorMsgDel.Bind(this, &NetworkMgr::ForwardActuator, ids::ACTUATOR_MSG_ID);
+
+    // Register for error callbacks using single assignment (=)
+    m_alarmMsgDel.OnError = MakeDelegate(this, &NetworkMgr::OnError);
+    m_dataMsgDel.OnError = MakeDelegate(this, &NetworkMgr::OnError);
+    m_commandMsgDel.OnError = MakeDelegate(this, &NetworkMgr::OnError);
+    m_actuatorMsgDel.OnError = MakeDelegate(this, &NetworkMgr::OnError);
 
     // Register endpoints with the Base Engine (So Incoming() can find them)
     RegisterEndpoint(ids::ALARM_MSG_ID, &m_alarmMsgDel);

example/sample-projects/system-architecture/common/NetworkMgr.h

@@ -82,11 +82,22 @@ class NetworkMgr : public NetworkEngine
     NetworkMgr();
     ~NetworkMgr() = default;
 
+    // Helper functions to forward incoming data to the Signals
+    void ForwardAlarm(AlarmMsg& msg, AlarmNote& note) { if (OnAlarm) (*OnAlarm)(msg, note); }
+    void ForwardCommand(CommandMsg& msg) { if (OnCommand) (*OnCommand)(msg); }
+    void ForwardData(DataMsg& msg) { if (OnData) (*OnData)(msg); }
+    void ForwardActuator(ActuatorMsg& msg) { if (OnActuator) (*OnActuator)(msg); }
+
+    // TYPE ALIAS: Unicast, Unsafe, Member Delegate bound to 'NetworkMgr'
+    // This allows exact binding to 'this' in Create()
+    template <typename... Args>
+    using EndpointType = RemoteEndpoint<NetworkMgr, void(Args...)>;
+
     // Specific endpoints
-    RemoteEndpoint<dmq::MulticastDelegateSafe<void(AlarmMsg&, AlarmNote&)>, void(AlarmMsg&, AlarmNote&)> m_alarmMsgDel;
-    RemoteEndpoint<dmq::MulticastDelegateSafe<void(CommandMsg&)>, void(CommandMsg&)> m_commandMsgDel;
-    RemoteEndpoint<dmq::MulticastDelegateSafe<void(DataMsg&)>, void(DataMsg&)> m_dataMsgDel;
-    RemoteEndpoint<dmq::MulticastDelegateSafe<void(ActuatorMsg&)>, void(ActuatorMsg&)> m_actuatorMsgDel;
+    EndpointType<AlarmMsg&, AlarmNote&> m_alarmMsgDel;
+    EndpointType<CommandMsg&>           m_commandMsgDel;
+    EndpointType<DataMsg&>              m_dataMsgDel;
+    EndpointType<ActuatorMsg&>          m_actuatorMsgDel;
 };
 
 #endif

src/delegate-mq/predef/util/FreeRTOSConditionVariable.h

@@ -44,7 +44,14 @@ namespace dmq
         {
             if (!m_sem) return;
 
-            // Check if we are in an ISR to use the correct FreeRTOS API
+#if defined(_WIN32) || defined(WIN32)
+            // Windows Port: 
+            // "Interrupts" are simulated threads. The hardware ISR check 
+            // does not exist. Standard API is safe here.
+            xSemaphoreGive(m_sem);
+#else
+            // Embedded (e.g., ARM Cortex-M): 
+            // Must check if running in ISR context to use FromISR API.
             if (xPortIsInsideInterrupt())
             {
                 BaseType_t xHigherPriorityTaskWoken = pdFALSE;
@@ -55,6 +62,7 @@ namespace dmq
             {
                 xSemaphoreGive(m_sem);
             }
+#endif
         }
 
         /// @brief Wait indefinitely until predicate is true

src/delegate-mq/predef/util/NetworkEngine.cpp

@@ -9,6 +9,12 @@ using namespace std;
 const std::chrono::milliseconds NetworkEngine::SEND_TIMEOUT(100);
 const std::chrono::milliseconds NetworkEngine::RECV_TIMEOUT(2000);
 
+// [STM32-FreeRTOS] Define Static Stack for Network Thread
+// Increase size to 2048 words (8KB) to handle Debug mode call depths.
+#if defined(DMQ_TRANSPORT_STM32_UART) && defined(DMQ_THREAD_FREERTOS)
+    static StackType_t g_networkThreadStack[2048];
+#endif
+
 NetworkEngine::NetworkEngine()
     : m_thread("NetworkEngine"),
     m_transportMonitor(RECV_TIMEOUT),
@@ -31,6 +37,11 @@ NetworkEngine::NetworkEngine()
     , m_reliableTransport(m_sendTransport, m_retryMonitor)
 #endif
 {
+#if defined(DMQ_TRANSPORT_STM32_UART) && defined(DMQ_THREAD_FREERTOS)
+    // Apply the static stack buffer to prevent overflow
+    m_thread.SetStackMem(g_networkThreadStack, 2048);
+#endif
+
     m_thread.CreateThread();
 }
 

src/delegate-mq/predef/util/ThreadXConditionVariable.h

@@ -7,35 +7,40 @@
 namespace dmq
 {
     /// @brief Production-grade wrapper around ThreadX Semaphore to mimic std::condition_variable
+    /// @details 
+    /// - Uses a Counting Semaphore (initialized to 0).
+    /// - ISR-safe notification logic (tx_semaphore_put).
+    /// - Robust tick overflow handling using elapsed time subtraction.
+    /// 
+    /// @note Limitation: Unlike std::cv, a semaphore retains its signal state.
+    /// If notify() occurs before wait(), the wait will effectively "fall through". 
     class ThreadXConditionVariable
     {
     public:
-        ThreadXConditionVariable() 
-        { 
-            // Create a binary semaphore (initially 0)
-            // TX_NO_INHERIT: Priority inheritance not needed for signaling
-            if (tx_semaphore_create(&m_sem, "DMQ_CondVar", 0) != TX_SUCCESS)
+        ThreadXConditionVariable()
+        {
+            // Create a semaphore with initial count 0.
+            // Cast string literal to (CHAR*) to satisfy strict C++ compilers interfacing with C API.
+            if (tx_semaphore_create(&m_sem, (CHAR*)"DMQ_CondVar", 0) != TX_SUCCESS)
             {
-                // In production, handle error or assert
+                // In a real application, handle allocation failure (e.g., trap or assert)
                 // configASSERT(false); 
             }
         }
 
-        ~ThreadXConditionVariable() 
-        { 
+        ~ThreadXConditionVariable()
+        {
             tx_semaphore_delete(&m_sem);
         }
 
         ThreadXConditionVariable(const ThreadXConditionVariable&) = delete;
         ThreadXConditionVariable& operator=(const ThreadXConditionVariable&) = delete;
 
-        /// @brief Wake up one waiting thread
+        /// @brief Wake up one waiting thread (ISR Safe)
         void notify_one() noexcept
         {
-            // ThreadX tx_semaphore_put is generally ISR-safe.
-            // However, ensuring we don't overflow a "binary" concept logic:
-            // We usually don't check for ceiling in CV logic because spurious 
-            // wakes are handled by the predicate loop.
+            // ThreadX tx_semaphore_put is ISR-safe.
+            // It increments the semaphore count.
             tx_semaphore_put(&m_sem);
         }
 
@@ -56,18 +61,24 @@ namespace dmq
         template <typename Lock, typename Predicate>
         bool wait_for(Lock& lock, std::chrono::milliseconds timeout, Predicate pred)
         {
-            // 1. Convert timeout to ticks
-            // ThreadX usually runs at 100Hz or 1000Hz (TX_TIMER_TICKS_PER_SECOND)
+            // 1. Convert timeout to ticks safely
+            // Use unsigned long long to prevent overflow during multiplication (ms * ticks_per_sec)
             const ULONG ticksPerSec = TX_TIMER_TICKS_PER_SECOND;
-            const ULONG timeoutTicks = (static_cast<ULONG>(timeout.count()) * ticksPerSec) / 1000;
-            
+            unsigned long long totalTicks = (static_cast<unsigned long long>(timeout.count()) * ticksPerSec) / 1000ULL;
+
+            // Ensure at least 1 tick if timeout > 0 to avoid immediate timeout
+            if (totalTicks == 0 && timeout.count() > 0) totalTicks = 1;
+
+            // Cap at ThreadX max wait if necessary, though unlikely for ms ranges
+            const ULONG timeoutTicks = (totalTicks > 0xFFFFFFFF) ? 0xFFFFFFFF : (ULONG)totalTicks;
+
             const ULONG startTick = tx_time_get();
 
             while (!pred())
             {
                 ULONG now = tx_time_get();
-                
-                // ThreadX time is ULONG (usually 32-bit), logic same as FreeRTOS
+
+                // Overflow-safe subtraction (works because ULONG is unsigned)
                 ULONG elapsed = now - startTick;
 
                 if (elapsed >= timeoutTicks)
@@ -76,17 +87,23 @@ namespace dmq
                 ULONG remaining = timeoutTicks - elapsed;
 
                 lock.unlock();
-                
+
                 // Wait for the semaphore or timeout
                 UINT res = tx_semaphore_get(&m_sem, remaining);
-                
+
                 lock.lock();
 
                 if (res != TX_SUCCESS)
                 {
-                    // TX_NO_INSTANCE usually means timeout in this context
-                    return pred(); 
+                    // TX_NO_INSTANCE (0x0D) or TX_WAIT_ABORTED means we didn't get the token.
+                    // Timeout occurred or wait aborted.
+                    return pred();
                 }
+
+                // If res == TX_SUCCESS, we consumed a token. 
+                // Loop around and check pred() again. 
+                // If pred() is false, we consumed a signal intended for state that isn't ready,
+                // effectively acting as a "spurious wakeup" handler.
             }
 
             return true;