Fix event loop one-event delay from ISR and add Honeywell 5834-4 SubGhz (fixes #4336)

Event loop fix:
- Use xTimerPendFunctionCallFromISR so event group bits are set in the
  timer daemon before notifying the event loop (fixes callbacks seeing
  flag one event late when set from interrupt context).
- Document event flag and event loop ISR behavior in API headers.
- Add furi_hal_interrupt_trigger_pending for software-pending interrupt tests.
- Add regression test test_furi_event_loop_event_flag_from_isr.
- Add Issue 4336 review doc, README unit tests section, UnitTests.md example,
  FuriHalInterrupt.md, and js_event_loop note.

SubGhz Honeywell 5834-4:
- Add Honeywell 5834-4 protocol (decoder/encoder, 345 MHz, 48-bit).
- Register protocol; add Honeywell5834_345 preset to Set Type menu.
- Add unit tests for decoder and encoder.
- Add SubGhz_Honeywell_5834_Optimizations.md documenting resource optimizations.

Author: herbenderbler

ReadMe.md

@@ -90,6 +90,22 @@ Make sure your Flipper is on, and your firmware is functioning. Connect your Fli
 ./fbt flash_usb
 ```
 
+## Running unit tests
+
+Unit tests run on the device. Build firmware with tests enabled, flash it (and copy resources from `build/latest/resources` to the SD card), then in a CLI session run:
+
+```shell
+unit_tests
+```
+
+To run only the Furi tests (e.g. after changing event loop or event flag code):
+
+```shell
+unit_tests test_furi
+```
+
+See [Unit Tests](/documentation/UnitTests.md) for details and how to add tests.
+
 ## Documentation
 
 - [Flipper Build Tool](/documentation/fbt.md) - building, flashing, and debugging Flipper software

applications/debug/unit_tests/tests/furi/furi_event_loop_test.c

@@ -495,6 +495,82 @@ void test_furi_event_loop_self_unsubscribe(void) {
     furi_event_loop_free(event_loop);
 }
 
+/*
+ * Regression test for issue #4336: event loop must receive the correct flag
+ * value when furi_event_flag_set() is called from ISR (no one-event delay).
+ * Uses a software-pending LPTIM2 interrupt to run the ISR path.
+ */
+#define EVENT_FLAG_ISR_TEST_BITS 3U
+#define EVENT_FLAG_ISR_TEST_MASK ((1U << EVENT_FLAG_ISR_TEST_BITS) - 1U)
+
+typedef struct {
+    FuriEventFlag* flag;
+    uint32_t bits_to_set;
+} EventFlagIsrTestIsrContext;
+
+typedef struct {
+    uint32_t bits_received;
+    FuriSemaphore* sync;
+} EventFlagIsrTestCallbackContext;
+
+static void event_flag_isr_test_isr(void* context) {
+    EventFlagIsrTestIsrContext* ctx = context;
+    furi_event_flag_set(ctx->flag, ctx->bits_to_set);
+}
+
+static void event_flag_isr_test_callback(FuriEventLoopObject* object, void* context) {
+    EventFlagIsrTestCallbackContext* ctx = context;
+    ctx->bits_received =
+        furi_event_flag_wait((FuriEventFlag*)object, EVENT_FLAG_ISR_TEST_MASK, FuriFlagWaitAny, 0);
+    furi_semaphore_release(ctx->sync);
+}
+
+static int32_t event_flag_isr_test_loop_thread(void* arg) {
+    FuriEventLoop* loop = arg;
+    furi_event_loop_run(loop);
+    return 0;
+}
+
+void test_furi_event_loop_event_flag_from_isr(void) {
+    FuriEventFlag* flag = furi_event_flag_alloc();
+    FuriEventLoop* loop = furi_event_loop_alloc();
+    FuriSemaphore* sync = furi_semaphore_alloc(1, 0);
+
+    EventFlagIsrTestIsrContext isr_ctx = {.flag = flag, .bits_to_set = 0};
+    EventFlagIsrTestCallbackContext cb_ctx = {.bits_received = 0, .sync = sync};
+
+    furi_event_loop_subscribe_event_flag(
+        loop, flag, FuriEventLoopEventIn, event_flag_isr_test_callback, &cb_ctx);
+
+    FuriThread* loop_thread =
+        furi_thread_alloc_ex("event_flag_isr_loop", 1024, event_flag_isr_test_loop_thread, loop);
+    furi_thread_start(loop_thread);
+
+    furi_delay_ms(10);
+
+    furi_hal_interrupt_set_isr(FuriHalInterruptIdLpTim2, event_flag_isr_test_isr, &isr_ctx);
+
+    const uint32_t test_bits[] = {1U, 2U, 4U};
+    for(size_t i = 0; i < sizeof(test_bits) / sizeof(test_bits[0]); i++) {
+        isr_ctx.bits_to_set = test_bits[i];
+        furi_hal_interrupt_trigger_pending(FuriHalInterruptIdLpTim2);
+        mu_assert(
+            furi_semaphore_acquire(sync, furi_ms_to_ticks(500)) == FuriStatusOk,
+            "timeout waiting for event flag callback");
+        mu_assert_int_eq(cb_ctx.bits_received, test_bits[i]);
+    }
+
+    furi_hal_interrupt_set_isr(FuriHalInterruptIdLpTim2, NULL, NULL);
+    furi_event_loop_stop(loop);
+    furi_thread_join(loop_thread);
+
+    furi_thread_free(loop_thread);
+    furi_event_loop_unsubscribe(loop, flag);
+    furi_semaphore_free(sync);
+    furi_event_loop_free(loop);
+    furi_event_flag_free(flag);
+}
+
 void test_furi_event_loop(void) {
     TestFuriEventLoopData data = {};
 

applications/debug/unit_tests/tests/furi/furi_test.c

@@ -9,6 +9,7 @@ void test_furi_pubsub(void);
 void test_furi_memmgr(void);
 void test_furi_event_loop(void);
 void test_furi_event_loop_self_unsubscribe(void);
+void test_furi_event_loop_event_flag_from_isr(void);
 void test_errno_saving(void);
 void test_furi_primitives(void);
 void test_stdin(void);
@@ -51,6 +52,10 @@ MU_TEST(mu_test_furi_event_loop_self_unsubscribe) {
     test_furi_event_loop_self_unsubscribe();
 }
 
+MU_TEST(mu_test_furi_event_loop_event_flag_from_isr) {
+    test_furi_event_loop_event_flag_from_isr();
+}
+
 MU_TEST(mu_test_errno_saving) {
     test_errno_saving();
 }
@@ -74,6 +79,7 @@ MU_TEST_SUITE(test_suite) {
     MU_RUN_TEST(mu_test_furi_memmgr);
     MU_RUN_TEST(mu_test_furi_event_loop);
     MU_RUN_TEST(mu_test_furi_event_loop_self_unsubscribe);
+    MU_RUN_TEST(mu_test_furi_event_loop_event_flag_from_isr);
     MU_RUN_TEST(mu_test_stdio);
     MU_RUN_TEST(mu_test_errno_saving);
     MU_RUN_TEST(mu_test_furi_primitives);

applications/debug/unit_tests/tests/subghz/subghz_test.c

@@ -585,6 +585,14 @@ MU_TEST(subghz_decoder_honeywell_wdb_test) {
         "Test decoder " SUBGHZ_PROTOCOL_HONEYWELL_WDB_NAME " error\r\n");
 }
 
+MU_TEST(subghz_decoder_honeywell_5834_test) {
+    mu_assert(
+        subghz_decoder_test(
+            EXT_PATH("unit_tests/subghz/honeywell_5834_raw.sub"),
+            SUBGHZ_PROTOCOL_HONEYWELL_5834_NAME),
+        "Test decoder " SUBGHZ_PROTOCOL_HONEYWELL_5834_NAME " error\r\n");
+}
+
 MU_TEST(subghz_decoder_magellan_test) {
     mu_assert(
         subghz_decoder_test(
@@ -837,6 +845,12 @@ MU_TEST(subghz_encoder_honeywell_wdb_test) {
         "Test encoder " SUBGHZ_PROTOCOL_HONEYWELL_WDB_NAME " error\r\n");
 }
 
+MU_TEST(subghz_encoder_honeywell_5834_test) {
+    mu_assert(
+        subghz_encoder_test(EXT_PATH("unit_tests/subghz/honeywell_5834.sub")),
+        "Test encoder " SUBGHZ_PROTOCOL_HONEYWELL_5834_NAME " error\r\n");
+}
+
 MU_TEST(subghz_encoder_magellan_test) {
     mu_assert(
         subghz_encoder_test(EXT_PATH("unit_tests/subghz/magellan.sub")),
@@ -973,6 +987,7 @@ MU_TEST_SUITE(subghz) {
     MU_RUN_TEST(subghz_decoder_doitrand_test);
     MU_RUN_TEST(subghz_decoder_phoenix_v2_test);
     MU_RUN_TEST(subghz_decoder_honeywell_wdb_test);
+    MU_RUN_TEST(subghz_decoder_honeywell_5834_test);
     MU_RUN_TEST(subghz_decoder_magellan_test);
     MU_RUN_TEST(subghz_decoder_intertechno_v3_test);
     MU_RUN_TEST(subghz_decoder_clemsa_test);
@@ -1012,6 +1027,7 @@ MU_TEST_SUITE(subghz) {
     MU_RUN_TEST(subghz_encoder_doitrand_test);
     MU_RUN_TEST(subghz_encoder_phoenix_v2_test);
     MU_RUN_TEST(subghz_encoder_honeywell_wdb_test);
+    MU_RUN_TEST(subghz_encoder_honeywell_5834_test);
     MU_RUN_TEST(subghz_encoder_magellan_test);
     MU_RUN_TEST(subghz_encoder_intertechno_v3_test);
     MU_RUN_TEST(subghz_encoder_clemsa_test);

applications/main/subghz/helpers/subghz_custom_event.h

@@ -22,6 +22,7 @@ typedef enum {
     SubmenuIndexSecPlus_v2_310_00,
     SubmenuIndexSecPlus_v2_315_00,
     SubmenuIndexSecPlus_v2_390_00,
+    SubmenuIndexHoneywell5834_345,
 
     //SubGhzCustomEvent
     SubGhzCustomEventSceneDeleteSuccess = 100,

applications/main/subghz/scenes/subghz_scene_set_type.c

@@ -109,6 +109,12 @@ void subghz_scene_set_type_on_enter(void* context) {
         SubmenuIndexSecPlus_v2_390_00,
         subghz_scene_set_type_submenu_callback,
         subghz);
+    submenu_add_item(
+        subghz->submenu,
+        "Honeywell5834_345",
+        SubmenuIndexHoneywell5834_345,
+        subghz_scene_set_type_submenu_callback,
+        subghz);
 
     submenu_set_selected_item(
         subghz->submenu, scene_manager_get_scene_state(subghz->scene_manager, SubGhzSceneSetType));
@@ -212,6 +218,14 @@ bool subghz_scene_set_type_on_event(void* context, SceneManagerEvent event) {
             generated_protocol = subghz_txrx_gen_secplus_v2_protocol(
                 subghz->txrx, "AM650", 390000000, key, 0x68, 0xE500000);
             break;
+        case SubmenuIndexHoneywell5834_345: {
+            uint64_t serial_20 = (uint64_t)(key & 0xFFFFF) << 28;
+            uint64_t state_bits = (uint64_t)0x40 << 4; /* Arm Away */
+            uint64_t frame = serial_20 | state_bits;
+            frame |= subghz_protocol_blocks_get_parity(frame >> 1, 47);
+            generated_protocol = subghz_txrx_gen_data_protocol(
+                subghz->txrx, "AM650", 345000000, SUBGHZ_PROTOCOL_HONEYWELL_5834_NAME, frame, 48);
+        } break;
         default:
             return false;
             break;

documentation/FuriHalInterrupt.md

@@ -0,0 +1,33 @@
+# Furi HAL Interrupt API {#furi_hal_interrupt}
+
+The interrupt HAL provides a unified way to register and control interrupt service routines (ISRs) for various on-chip peripherals. It is used by the system and by apps that need timer, DMA, UART, or other hardware interrupts.
+
+**Header:** `furi_hal_interrupt.h` (target-specific, e.g. `targets/f7/furi_hal/furi_hal_interrupt.h`)
+
+## Initialization
+
+The interrupt subsystem must be initialized before use. The system does this at startup. User code typically only calls `furi_hal_interrupt_set_isr()` or `furi_hal_interrupt_set_isr_ex()` to register a handler.
+
+## Registering an ISR
+
+- **`furi_hal_interrupt_set_isr(index, isr, context)`** — Set the ISR for the given interrupt ID and enable the interrupt with default priority. Pass `NULL` as `isr` to clear and disable.
+- **`furi_hal_interrupt_set_isr_ex(index, priority, isr, context)`** — Same, but with an explicit priority.
+
+**Warning:** Interrupt flags are not cleared automatically. Ensure your peripheral status flags are cleared in the ISR or before enabling, as required by the hardware.
+
+## Interrupt IDs and priorities
+
+Interrupt IDs are defined in **`FuriHalInterruptId`** (e.g. `FuriHalInterruptIdTIM2`, `FuriHalInterruptIdLpTim2`, `FuriHalInterruptIdDma1Ch1`, `FuriHalInterruptIdUart1`). See the enum in the header for the full list.
+
+Priorities are in **`FuriHalInterruptPriority`**. Use one of the levels that allow ISR-safe OS primitives (e.g. `FuriHalInterruptPriorityNormal`) unless you have a reason to use a higher or lower level. The special level `FuriHalInterruptPriorityKamiSama` must not use any OS primitives; see the header and FreeRTOS `configLIBRARY_MAX_SYSCALL_INTERRUPT_PRIORITY` before using it.
+
+## Software-triggered pending interrupt (for tests)
+
+**`furi_hal_interrupt_trigger_pending(index)`** sets the given interrupt as pending so that the CPU will run the currently registered ISR without hardware firing. This is intended for **unit tests** that need to run code in interrupt context (e.g. to test `furi_event_flag_set()` from ISR). Not for use in production application logic.
+
+Example: the Furi event loop regression test uses `FuriHalInterruptIdLpTim2` and `furi_hal_interrupt_trigger_pending()` to trigger the ISR from software and assert that the event loop callback receives the correct flag values.
+
+## Other functions
+
+- **`furi_hal_interrupt_get_name(exception_number)`** — Return the interrupt name for a given exception number (e.g. from IPSR). Useful for debugging.
+- **`furi_hal_interrupt_get_time_in_isr_total()`** — Return total time (CPU clocks) spent in ISRs. Useful for profiling.

documentation/Issue_4336_EventLoop_EventFlag_ISR_Review.md

@@ -0,0 +1,136 @@
+# Bug Review: Issue #4336 — EventLoop receives callbacks one event late when setting FuriEventFlag from interrupts
+
+**Issue:** [flipperdevices/flipperzero-firmware#4336](https://github.com/flipperdevices/flipperzero-firmware/issues/4336)  
+**Reporter:** @sorgloomer  
+**Demo:** https://github.com/sorgloomer/flipper_eventflag_demo  
+**Status:** Fixed in firmware. The sections below describe the bug, root cause (previous behavior), and the fix.
+
+---
+
+## Summary
+
+When `furi_event_flag_set()` is called from interrupt context (e.g. GPIO interrupt) and the app uses `furi_event_loop_subscribe_event_flag()`, the event loop callback is woken **one event late**: the first interrupt does not trigger the callback, and each later callback sees the **previous** flag value. This matches a **level-triggered vs deferred-set** race caused by FreeRTOS’s design of `xEventGroupSetBitsFromISR()`.
+
+---
+
+## Root cause
+
+### 1. FreeRTOS defers the actual bit set from ISR
+
+From `lib/FreeRTOS-Kernel/include/event_groups.h`:
+
+> Setting bits in an event group is not a deterministic operation … FreeRTOS does not allow nondeterministic operations to be performed in interrupts … **Therefore xEventGroupSetBitsFromISR() sends a message to the timer task** to have the set operation performed in the context of the timer task.
+
+So when you call `xEventGroupSetBitsFromISR()` in an ISR:
+
+- A command is **queued** to the timer daemon.
+- The **bits are not set in the ISR**; they are set when the timer task later processes that command.
+
+### 2. Furi notifies the event loop immediately
+
+Previously in `furi/core/event_flag.c`, `furi_event_flag_set()` used the following ISR path (now fixed):
+
+```c
+uint32_t furi_event_flag_set(FuriEventFlag* instance, uint32_t flags) {
+    // ...
+    if(FURI_IS_IRQ_MODE()) {
+        yield = pdFALSE;
+        if(xEventGroupSetBitsFromISR(hEventGroup, (EventBits_t)flags, &yield) == pdFAIL) {
+            // ...
+        } else {
+            rflags = flags;
+            portYIELD_FROM_ISR(yield);
+        }
+    } else {
+        rflags = xEventGroupSetBits(hEventGroup, (EventBits_t)flags);
+    }
+
+    if(rflags & flags) {
+        furi_event_loop_link_notify(&instance->event_loop_link, FuriEventLoopEventIn);
+    }
+    // ...
+}
+```
+
+So in ISR we:
+
+1. Call `xEventGroupSetBitsFromISR()` → only **schedules** the set in the timer task.
+2. Then call `furi_event_loop_link_notify()` → **wakes the event loop task right away**.
+
+The event loop therefore wakes **before** the timer task has applied the new bits.
+
+### 3. Event loop reads the flag level too early
+
+When the loop runs, it processes the waiting item and (for level-triggered) calls `furi_event_flag_event_loop_get_level()` which uses `furi_event_flag_get()` → `xEventGroupGetBits()`. At that moment the bits from the **current** ISR have not been set yet, so:
+
+- **First interrupt:** Loop wakes, sees no (or old) bits, does not call the callback (or sees previous value). The “current” set is still pending in the timer queue.
+- **Second interrupt:** Another set is queued, loop is woken again. When it runs, the **first** set may have already been applied by the timer task, so the callback sees the **previous** event’s bits. The second set may still be pending.
+
+Result: callbacks are effectively **one event late** and the first interrupt can appear to be “lost.”
+
+---
+
+## Why the first interrupt often doesn’t wake the loop (or shows no bits)
+
+- Loop is idle, waiting in `xTaskNotifyWaitIndexed(..., ticks_to_sleep)`.
+- ISR runs: `xEventGroupSetBitsFromISR()` queues the set; `furi_event_loop_link_notify()` wakes the loop.
+- Loop runs, processes the event-flag item, calls `get_level()` → `furi_event_flag_get()`. The timer task may not have run yet, so bits are still 0 (or old).
+- For level-triggered, `furi_event_loop_process_level_event()` only invokes the callback when `get_level()` is true, so the callback may not run at all for that wakeup.
+- So the first interrupt can be “consumed” (loop woke, processed, found no bits) and the user sees no callback until the **next** interrupt, at which point they see the first interrupt’s bits.
+
+---
+
+## Conclusion
+
+The behavior is a **firmware-level design limitation**: the event loop is notified in the same critical section as the (deferred) `xEventGroupSetBitsFromISR()`, so the loop consistently sees the flag state **before** the current ISR’s set has been applied. This matches the “one event late” and “first interrupt missing” symptoms.
+
+---
+
+## Workarounds (as in the issue thread)
+
+1. **Use `FuriMessageQueue` for ISR → task**  
+   Post to a message queue from the ISR and subscribe with `furi_event_loop_subscribe_message_queue()`. Queues have ISR-safe enqueue and don’t rely on the timer daemon for the data to be visible.
+
+2. **Use a counting semaphore**  
+   If you only need a wake-up count (no bit pattern), use a semaphore released from ISR and subscribe with `furi_event_loop_subscribe_semaphore()`.
+
+3. **Avoid clearing flags in the callback in a way that assumes “current” set**  
+   Doesn’t fix the lag; at best it only avoids losing bits. The fundamental lag remains because the set is deferred.
+
+---
+
+## Firmware fix (implemented)
+
+**Approach:** Notify the event loop only **after** the bits are set. We use `xTimerPendFunctionCallFromISR()` with a custom callback that runs in the timer daemon: it calls `xEventGroupSetBits()` then `furi_event_loop_link_notify()`. So when the loop runs, the bits are already set. Same timer queue as before; failure when queue is full still returns `FuriFlagErrorResource`. See `furi/core/event_flag.c` (ISR path and `furi_event_flag_set_bits_and_notify_callback`).
+
+**Other options (not chosen):** Documentation-only; or a separate message queue / buffer (would change API or add a parallel path).
+
+**Regression test:** `test_furi_event_loop_event_flag_from_isr()` in `applications/debug/unit_tests/tests/furi/furi_event_loop_test.c` runs `furi_event_flag_set()` from a software-pending LPTIM2 ISR and asserts that the event loop callback receives the correct flag value for each of three triggers (bits 1, 2, 4). If the one-event-late bug returns, the second or third assertion would fail (callback would see the previous bit). Run with `unit_tests test_furi` on device.
+
+---
+
+## Possible firmware fixes (for maintainers) — superseded by fix above
+
+- **Document** that `furi_event_flag_set()` from ISR is deferred by FreeRTOS and can cause one-event lag when used with the event loop; recommend message queue or semaphore for ISR-driven events.
+- **Optionally:** Provide an ISR-safe path that doesn’t rely on the event group for **notification** (e.g. a separate “pending count” or queue of flag values) and have the event loop read from that instead of from the event group immediately after wake. That would require a different contract/link type for “event flag driven from ISR.”
+- **Alternative:** Use a software timer or a task that runs after the timer daemon to set the flag and then notify the event loop, so the set is always visible when the loop runs (adds latency and complexity).
+
+---
+
+## Post-merge: notify the reporter
+
+After the fix is merged, post a short comment on [the issue](https://github.com/flipperdevices/flipperzero-firmware/issues/4336) so the reporter (@sorgloomer) can retest. Suggested text:
+
+> Fixed in [PR #xxxx](link-to-pr). The event loop now receives the correct flag value when `furi_event_flag_set()` is called from interrupt context (no one-event delay). Please retest with the latest firmware; the regression test `unit_tests test_furi` includes `test_furi_event_loop_event_flag_from_isr` which covers this path.
+
+Replace `#xxxx` and `link-to-pr` with the actual PR number and URL once the fix is merged.
+
+---
+
+## References
+
+- Issue: https://github.com/flipperdevices/flipperzero-firmware/issues/4336  
+- FreeRTOS `event_groups.h` (doc for `xEventGroupSetBitsFromISR`)  
+- `furi/core/event_flag.c` — `furi_event_flag_set()`, `furi_event_loop_link_notify()`  
+- `furi/core/event_loop.c` — `furi_event_loop_process_waiting_list()`, `furi_event_loop_process_level_event()`  
+- `furi/core/event_loop_i.h` — level vs edge handling