OpenCyphal
diff --git a/‎tests/CMakeLists.txt‎
Lines changed: 4 additions & 0 deletions b/‎tests/CMakeLists.txt‎
Lines changed: 4 additions & 0 deletions
diff --git a/‎tests/src/test_api_lifecycle.cpp‎
Lines changed: 893 additions & 0 deletions b/‎tests/src/test_api_lifecycle.cpp‎
Lines changed: 893 additions & 0 deletions
diff --git a/‎tests/src/test_api_roundtrip.cpp‎
Lines changed: 1041 additions & 0 deletions b/‎tests/src/test_api_roundtrip.cpp‎
Lines changed: 1041 additions & 0 deletions
diff --git a/‎tests/src/test_api_rx_edge.cpp‎
Lines changed: 1267 additions & 0 deletions b/‎tests/src/test_api_rx_edge.cpp‎
Lines changed: 1267 additions & 0 deletions
diff --git a/‎tests/src/test_api_tx_queue.cpp‎
Lines changed: 697 additions & 0 deletions b/‎tests/src/test_api_tx_queue.cpp‎
Lines changed: 697 additions & 0 deletions
diff --git a/‎tests/src/test_intrusive_misc.c‎
Lines changed: 62 additions & 0 deletions b/‎tests/src/test_intrusive_misc.c‎
Lines changed: 62 additions & 0 deletions
diff --git a/‎tests/src/test_intrusive_rx.c‎
Lines changed: 203 additions & 0 deletions b/‎tests/src/test_intrusive_rx.c‎
Lines changed: 203 additions & 0 deletions
@@ -107,6 +107,10 @@ gen_test_matrix(test_intrusive_misc "src/test_intrusive_misc.c")
 # API tests.
 gen_test_single(test_api_tx "${library_dir}/canard.c;src/test_api_tx.cpp")
 gen_test_single(test_api_rx "${library_dir}/canard.c;src/test_api_rx.cpp")
+gen_test_single(test_api_roundtrip "${library_dir}/canard.c;src/test_api_roundtrip.cpp")
+gen_test_single(test_api_tx_queue "${library_dir}/canard.c;src/test_api_tx_queue.cpp")
+gen_test_single(test_api_rx_edge "${library_dir}/canard.c;src/test_api_rx_edge.cpp")
+gen_test_single(test_api_lifecycle "${library_dir}/canard.c;src/test_api_lifecycle.cpp")
 
 # Coverage targets. Usage:
 #   cmake -DENABLE_COVERAGE=ON -DNO_STATIC_ANALYSIS=ON ..
 
@@ -577,6 +577,65 @@ static void test_collision_never_picks_occupied(void)
     }
 }
 
+// =====================================================================================================================
+// Group 7: Nearly-Full Bitmap and Purge Reset
+// =====================================================================================================================
+
+static void test_occupancy_bitmap_nearly_full(void)
+{
+    // Fill the bitmap so that only positions 50 and 100 are free (126 of 128 bits set).
+    // On collision, the new node-ID must be one of the two free slots.
+    const size_t except[] = { 50, 100 };
+    // zc = 128 - 126 = 2. pc = 126 > 64, so chance IS called.
+    // Try both outcomes: random=0 -> pick first free (50), random=1 -> pick second free (100).
+    {
+        const uint64_t seed = find_seed_dense(2, false, 0);
+        TEST_ASSERT_NOT_EQUAL_UINT64(UINT64_MAX, seed);
+        canard_t self = make_canard(seed, 10);
+        fill_bitmap_except(&self, except, 2);
+        node_id_occupancy_update(&self, 10);
+        TEST_ASSERT_EQUAL_UINT64(1, self.err.collision);
+        TEST_ASSERT_EQUAL_UINT8(50, self.node_id);
+    }
+    {
+        const uint64_t seed = find_seed_dense(2, false, 1);
+        TEST_ASSERT_NOT_EQUAL_UINT64(UINT64_MAX, seed);
+        canard_t self = make_canard(seed, 10);
+        fill_bitmap_except(&self, except, 2);
+        node_id_occupancy_update(&self, 10);
+        TEST_ASSERT_EQUAL_UINT64(1, self.err.collision);
+        TEST_ASSERT_EQUAL_UINT8(100, self.node_id);
+    }
+}
+
+static void test_collision_purge_resets_bitmap(void)
+{
+    // When pc > 64, a probabilistic purge may fire. After purge, the bitmap should contain only
+    // bit 0 and the src node-ID bit.
+    // Setup: 65 bits set (0..64), src=65 (new, not yet set). After adding src: pc=66, zc=62.
+    // Need chance(self, 62) to return true so purge fires.
+    const uint64_t seed = find_seed_chance(62, true);
+    TEST_ASSERT_NOT_EQUAL_UINT64(UINT64_MAX, seed);
+    canard_t self = make_canard(seed, 120);
+    for (byte_t i = 1; i < 65; i++) {
+        bitmap_set(self.node_id_occupancy_bitmap, i);
+    }
+    // pc=65. Add src=65 -> pc=66, zc=62. chance returns true -> purge fires.
+    node_id_occupancy_update(&self, 65);
+    // No collision (node_id=120, src=65).
+    TEST_ASSERT_EQUAL_UINT64(0, self.err.collision);
+    TEST_ASSERT_EQUAL_UINT8(120, self.node_id);
+    // After purge: bitmap = {0, 65}
+    TEST_ASSERT_TRUE(bitmap_test(self.node_id_occupancy_bitmap, 0));
+    TEST_ASSERT_TRUE(bitmap_test(self.node_id_occupancy_bitmap, 65));
+    const byte_t pc = popcount(self.node_id_occupancy_bitmap[0]) + popcount(self.node_id_occupancy_bitmap[1]);
+    TEST_ASSERT_EQUAL_UINT8(2, pc);
+    // Verify that the previously-set bits 1..64 are all cleared.
+    for (byte_t i = 1; i < 65; i++) {
+        TEST_ASSERT_FALSE(bitmap_test(self.node_id_occupancy_bitmap, i));
+    }
+}
+
 // =====================================================================================================================
 // Harness
 // =====================================================================================================================
@@ -615,6 +674,9 @@ int main(void)
     // Group 6: Exhaustive / property tests
     RUN_TEST(test_collision_exhaustive_zc_one);
     RUN_TEST(test_collision_never_picks_occupied);
+    // Group 7: Nearly-full bitmap and purge reset
+    RUN_TEST(test_occupancy_bitmap_nearly_full);
+    RUN_TEST(test_collision_purge_resets_bitmap);
     return UNITY_END();
 }
 
 
@@ -700,6 +700,201 @@ static void test_rx_parse_anonymous_multi_frame_reject(void)
     }
 }
 
+// =====================================================================================================================
+// Test 19: One-byte frame (tail byte only). SOT+EOT single-frame tail 0xE0 → v1 parse, payload.size=0.
+static void test_rx_parse_one_byte_tail_only(void)
+{
+    frame_t v0;
+    frame_t v1;
+    // v1.1 message CAN ID: prio=0, subject=0, src=0, bit7=1. CAN ID = 0x00000080.
+    // Tail byte 0xE0 = SOT|EOT|toggle=1|TID=0 → v1 single-frame.
+    {
+        const byte_t         d[] = { 0xE0 };
+        const canard_bytes_t pl  = { sizeof(d), d };
+        const byte_t         ret = rx_parse(0x00000080UL, pl, &v0, &v1);
+        TEST_ASSERT_EQUAL_UINT8(2, ret); // v1 accepted
+        TEST_ASSERT_EQUAL_INT(canard_kind_1v1_message, v1.kind);
+        TEST_ASSERT_EQUAL_size_t(0, v1.payload.size);
+        TEST_ASSERT_EQUAL_PTR(d, v1.payload.data);
+        TEST_ASSERT_TRUE(v1.start);
+        TEST_ASSERT_TRUE(v1.end);
+        TEST_ASSERT_TRUE(v1.toggle);
+        TEST_ASSERT_EQUAL_UINT8(0, v1.transfer_id);
+    }
+    // v0 single-frame: tail 0xC0 = SOT|EOT|toggle=0|TID=0 → v0 only.
+    // CAN ID 0x00002A01: message, bit7=0. v0 message src=1 (non-anonymous), type_id=42.
+    {
+        const byte_t         d[] = { 0xC0 };
+        const canard_bytes_t pl  = { sizeof(d), d };
+        const byte_t         ret = rx_parse(0x00002A01UL, pl, &v0, &v1);
+        TEST_ASSERT_EQUAL_UINT8(1, ret); // v0 only
+        TEST_ASSERT_EQUAL_INT(canard_kind_0v1_message, v0.kind);
+        TEST_ASSERT_EQUAL_size_t(0, v0.payload.size);
+        TEST_ASSERT_EQUAL_PTR(d, v0.payload.data);
+        TEST_ASSERT_TRUE(v0.start);
+        TEST_ASSERT_TRUE(v0.end);
+        TEST_ASSERT_FALSE(v0.toggle);
+        TEST_ASSERT_EQUAL_UINT8(0, v0.transfer_id);
+    }
+}
+
+// =====================================================================================================================
+// Test 20: 64-byte CAN FD frame with v1.1 message CAN ID. Tail byte at position 63.
+static void test_rx_parse_max_fd_frame(void)
+{
+    frame_t v0;
+    frame_t v1;
+    // v1.1 message CAN ID: prio=2, subject=5000, src=10, bit7=1. CAN ID = (2<<26)|(5000<<8)|(1<<7)|10 = 0x0813888A.
+    byte_t d[64];
+    memset(d, 0xBB, sizeof(d));
+    d[63]                    = 0xEF; // v1 single-frame tail: SOT|EOT|toggle=1|TID=15
+    const canard_bytes_t pl  = { sizeof(d), d };
+    const byte_t         ret = rx_parse(0x0813888AUL, pl, &v0, &v1);
+    TEST_ASSERT_EQUAL_UINT8(2, ret); // v1 only (toggle=1 excludes v0 on start)
+    TEST_ASSERT_EQUAL_INT(canard_kind_1v1_message, v1.kind);
+    TEST_ASSERT_EQUAL_size_t(63, v1.payload.size);
+    TEST_ASSERT_EQUAL_PTR(d, v1.payload.data);
+    TEST_ASSERT_EQUAL_UINT8(15, v1.transfer_id);
+    TEST_ASSERT_EQUAL_HEX8(10, v1.src);
+    TEST_ASSERT_EQUAL_UINT32(5000, v1.port_id);
+    TEST_ASSERT_EQUAL_INT(canard_prio_fast, v1.priority);
+}
+
+// =====================================================================================================================
+// Test 21: v1.0 service with src==dst (self-addressing). Must be rejected.
+static void test_rx_parse_v1_service_self_addressing(void)
+{
+    frame_t v0;
+    frame_t v1;
+    // v1.0 service request: prio=0, svc_id=1, dst=42, src=42. Self-addressing → rejected.
+    // CAN ID: (0<<26)|(1<<25)|(1<<24)|(1<<14)|(42<<7)|42 = 0x0300552A
+    {
+        const byte_t         d[] = { 0xE0 }; // v1 single-frame tail: SOT|EOT|toggle=1|TID=0
+        const canard_bytes_t pl  = { sizeof(d), d };
+        const byte_t         ret = rx_parse(0x0300552AUL, pl, &v0, &v1);
+        // v1 rejected due to src==dst. v0: SOT=1 toggle=1 → v0 excluded. Return = 0.
+        TEST_ASSERT_EQUAL_UINT8(0, ret);
+    }
+    // v1.0 service response: prio=4, svc_id=100, dst=10, src=10.
+    // CAN ID: (4<<26)|(1<<25)|(0<<24)|(100<<14)|(10<<7)|10 = 0x1219050A
+    {
+        const byte_t         d[] = { 0xE3 }; // v1 single, tid=3, SOT|EOT|toggle=1
+        const canard_bytes_t pl  = { sizeof(d), d };
+        const byte_t         ret = rx_parse(0x1219050AUL, pl, &v0, &v1);
+        // v1 rejected (src==dst=10). v0: SOT=1 toggle=1 → excluded. Return=0.
+        TEST_ASSERT_EQUAL_UINT8(0, ret);
+    }
+}
+
+// =====================================================================================================================
+// Test 22: v0 service with src==dst (self-addressing). Must be rejected.
+static void test_rx_parse_v0_service_self_addressing(void)
+{
+    frame_t v0;
+    frame_t v1;
+    // v0 service request: prio=4, type_id=0x37, dst=11, src=11. Self-addressing.
+    // CAN ID: (((4<<2)|3)<<24)|(0x37<<16)|(1<<15)|(11<<8)|(1<<7)|11 = 0x13378B8B
+    {
+        const byte_t         d[] = { 0xC0 }; // v0 single: SOT=1, EOT=1, toggle=0, TID=0
+        const canard_bytes_t pl  = { sizeof(d), d };
+        const byte_t         ret = rx_parse(0x13378B8BUL, pl, &v0, &v1);
+        // v0 rejected (src==dst). v1: SOT=1 toggle=0 → v1 excluded. Return=0.
+        TEST_ASSERT_EQUAL_UINT8(0, ret);
+    }
+}
+
+// =====================================================================================================================
+// Test 23: v0 service with src=0. Must be rejected (node-ID 0 reserved for anonymous).
+static void test_rx_parse_v0_service_zero_src(void)
+{
+    frame_t v0;
+    frame_t v1;
+    // v0 service request: prio=4, type_id=0x37, dst=24, src=0.
+    // CAN ID: (((4<<2)|3)<<24)|(0x37<<16)|(1<<15)|(24<<8)|(1<<7)|0 = 0x13379880
+    {
+        const byte_t         d[] = { 0xC0 }; // v0 single
+        const canard_bytes_t pl  = { sizeof(d), d };
+        const byte_t         ret = rx_parse(0x13379880UL, pl, &v0, &v1);
+        // v0 rejected (src=0). v1: start && !toggle → excluded. Return=0.
+        TEST_ASSERT_EQUAL_UINT8(0, ret);
+    }
+}
+
+// =====================================================================================================================
+// Test 24: v0 service with dst=0. Must be rejected (node-ID 0 reserved for anonymous).
+static void test_rx_parse_v0_service_zero_dst(void)
+{
+    frame_t v0;
+    frame_t v1;
+    // v0 service request: prio=4, type_id=0x37, dst=0, src=11.
+    // CAN ID: (((4<<2)|3)<<24)|(0x37<<16)|(1<<15)|(0<<8)|(1<<7)|11 = 0x1337808B
+    {
+        const byte_t         d[] = { 0xC0 }; // v0 single
+        const canard_bytes_t pl  = { sizeof(d), d };
+        const byte_t         ret = rx_parse(0x1337808BUL, pl, &v0, &v1);
+        // v0 rejected (dst=0). v1: start && !toggle → excluded. Return=0.
+        TEST_ASSERT_EQUAL_UINT8(0, ret);
+    }
+}
+
+// =====================================================================================================================
+// Test 25: Middle frame (SOT=0, EOT=0) with only 1 byte (tail only). Payload=0. Rejected by payload_ok.
+static void test_rx_parse_non_start_non_end_empty(void)
+{
+    frame_t v0;
+    frame_t v1;
+    // CAN ID valid for both versions: message, bit7=0. 0x00002A01.
+    // Tail: SOT=0 EOT=0 toggle=0 TID=5 → 0x05. One byte total.
+    {
+        const byte_t         d[] = { 0x05 };
+        const canard_bytes_t pl  = { sizeof(d), d };
+        const byte_t         ret = rx_parse(0x00002A01UL, pl, &v0, &v1);
+        // payload_raw.size=1. payload.size=0.
+        // payload_ok = (end || (1 >= 8)) && ((start && end) || (0 > 0))
+        //            = (false || false) && (false || false)
+        //            = false
+        // Both rejected.
+        TEST_ASSERT_EQUAL_UINT8(0, ret);
+    }
+}
+
+// =====================================================================================================================
+// Test 26: Continuation frame (non-last) with only 6 bytes. Under full MTU (8). Rejected.
+static void test_rx_parse_non_last_short_frame(void)
+{
+    frame_t v0;
+    frame_t v1;
+    // CAN ID valid for both versions: message, bit7=0. 0x00002A01.
+    // Tail: SOT=0 EOT=0 toggle=0 TID=3 → 0x03. 6 bytes total, 5 payload.
+    {
+        const byte_t         d[] = { 0xAA, 0xBB, 0xCC, 0xDD, 0xEE, 0x03 };
+        const canard_bytes_t pl  = { sizeof(d), d };
+        const byte_t         ret = rx_parse(0x00002A01UL, pl, &v0, &v1);
+        // payload_raw.size=6. payload.size=5.
+        // payload_ok = (end || (6 >= 8)) && ((start && end) || (5 > 0))
+        //            = (false || false) && (false || true)
+        //            = false
+        // Both rejected.
+        TEST_ASSERT_EQUAL_UINT8(0, ret);
+    }
+    // Same but with 7 bytes: still under MTU.
+    {
+        const byte_t         d[] = { 0xAA, 0xBB, 0xCC, 0xDD, 0xEE, 0xFF, 0x03 };
+        const canard_bytes_t pl  = { sizeof(d), d };
+        const byte_t         ret = rx_parse(0x00002A01UL, pl, &v0, &v1);
+        // payload_raw.size=7 < 8 → first clause false. Rejected.
+        TEST_ASSERT_EQUAL_UINT8(0, ret);
+    }
+    // With exactly 8 bytes: at MTU. Accepted.
+    {
+        const byte_t         d[] = { 0xAA, 0xBB, 0xCC, 0xDD, 0xEE, 0xFF, 0x11, 0x03 };
+        const canard_bytes_t pl  = { sizeof(d), d };
+        const byte_t         ret = rx_parse(0x00002A01UL, pl, &v0, &v1);
+        // payload_raw.size=8 >= 8 → OK. payload.size=7 > 0 → OK. Both versions attempted.
+        TEST_ASSERT_EQUAL_UINT8(3, ret);
+    }
+}
+
 // =====================================================================================================================
 
 int main(void)
@@ -724,5 +919,13 @@ int main(void)
     RUN_TEST(test_rx_parse_non_first_dual_output);
     RUN_TEST(test_rx_parse_payload_validation);
     RUN_TEST(test_rx_parse_anonymous_multi_frame_reject);
+    RUN_TEST(test_rx_parse_one_byte_tail_only);
+    RUN_TEST(test_rx_parse_max_fd_frame);
+    RUN_TEST(test_rx_parse_v1_service_self_addressing);
+    RUN_TEST(test_rx_parse_v0_service_self_addressing);
+    RUN_TEST(test_rx_parse_v0_service_zero_src);
+    RUN_TEST(test_rx_parse_v0_service_zero_dst);
+    RUN_TEST(test_rx_parse_non_start_non_end_empty);
+    RUN_TEST(test_rx_parse_non_last_short_frame);
     return UNITY_END();
 }