Add SMBus HAL, dependent on embedded-hal-async::I2c#7
Merged
Conversation
tullom
requested review from
JamesHuard,
RobertZ2011,
jerrysxie and
madeleyneVaca
Cargo Vet Audit Passed
|
RobertZ2011
requested changes
Nov 24, 2025
RobertZ2011
requested changes
Nov 25, 2025
kurtjd
previously approved these changes
Nov 25, 2025
Member
kurtjd
left a comment
kurtjd
left a comment
There was a problem hiding this comment.
I think Robert's comments are a good idea but otherwise looks good.
tullom
force-pushed
the
smbus-hal
branch
2 times, most recently
from
09cc4af to
28fff71
Compare
RobertZ2011
requested changes
Dec 4, 2025
Contributor
|
@tullom This looks fine to me as long as some of Robert's comments are addressed. I would like to see a demonstration of this on one of the charger/fuel gage driver. Put it in action is good way to iron out the kinks. Non-blocking: Another consideration would be to use |
RobertZ2011
previously approved these changes
May 14, 2026
RobertZ2011
left a comment
RobertZ2011
left a comment
There was a problem hiding this comment.
Nothing to add on top of the existing comments.
kurtjd
previously approved these changes
May 14, 2026
Member
kurtjd
left a comment
kurtjd
left a comment
There was a problem hiding this comment.
Looks good (though Copilot suggestions seem like they might be valid).
Contributor
There was a problem hiding this comment.
Pull request overview
Copilot reviewed 6 out of 8 changed files in this pull request and generated 3 comments.
Comments suppressed due to low confidence (7)
embedded-mcu-hal/src/smbus/bus/asynch.rs:22
SMBusErrorandI2cErrorare imported but not referenced anywhere in this module (search only finds them in theuselines). Please remove these unused imports to avoid warnings and keep the module tidy.
use core::hash::Hasher;
use core::marker::PhantomData;
use crate::smbus::bus::Error as SMBusError;
use embedded_hal_async::i2c::{Error as I2cError, I2c, Operation};
embedded-mcu-hal/src/smbus/bus/asynch.rs:78
check_pecclaims to compare only the low byte ofcomputed_pec, but the current implementation compares the fullu64againstreceived_pec. This will reject valid PECs whenever the hasher'sfinish()contains non-zero high bytes; compare against(computed_pec as u8)(orcomputed_pec & 0xFF) instead.
/// Check PEC (Packet Error Code) validity.
///
/// Compares a received PEC byte against a computed PEC value. Only the
/// low byte of `computed_pec` is used.
fn check_pec(received_pec: u8, computed_pec: u64) -> Result<(), <Self as crate::smbus::bus::ErrorType>::Error> {
computed_pec
.eq(&received_pec.into())
.then_some(())
.ok_or_else(|| <Self as crate::smbus::bus::ErrorType>::Error::to_kind(crate::smbus::bus::ErrorKind::Pec))
}
embedded-mcu-hal/src/smbus/bus/asynch.rs:354
finalize_pec_bytecurrently usestry_into()fromu64tou8, which errors if the hasher’sfinish()isn’t already <= 255. The module/docs describe PEC as the truncated low byte offinish(), so this should mask/cast to the low byte rather than failing.
/// Truncate a finished PEC value to its low byte.
fn finalize_pec_byte(pec: u64) -> Result<u8, crate::smbus::bus::ErrorKind> {
pec.try_into().map_err(|_| crate::smbus::bus::ErrorKind::Pec)
}
embedded-mcu-hal/src/smbus/bus/asynch.rs:404
- When
use_pecis true,read_bufseeds the PEC with the write address byte (addr<<1). For pure-read SMBus operations (e.g., Receive Byte), the on-the-wire address byte has the read bit set, so PEC should be seeded withread_address_byte(address)(and, if applicable, include the write address only when there was an actual write phase). As written, this will compute a different PEC than targets expect.
/// Read a buffer of data with optional PEC verification.
///
/// When `use_pec` is true, the caller must size `read` to include one
/// extra trailing byte for the PEC byte; it is verified after the read.
async fn read_buf(
&mut self,
address: u8,
use_pec: bool,
read: &mut [u8],
) -> Result<(), crate::smbus::bus::ErrorKind> {
if use_pec {
let mut pec = Self::pec_calc_with_write_addr(address)?;
self.i2c
.read(address, read)
.await
.map_err(|e| crate::smbus::bus::ErrorKind::from(e.kind()))?;
let (pec_byte, rest) = read.split_last().ok_or(crate::smbus::bus::ErrorKind::Pec)?;
pec.write(rest);
<Self as Smbus>::check_pec(*pec_byte, pec.finish())?;
embedded-mcu-hal/src/smbus/bus/asynch.rs:692
block_readreads the reportedmsg_sizebyte but then unconditionally readsdata.len()bytes and computes PEC over the entiredatabuffer. This ignores the SMBus length field and can over-read/under-read the bus (and validate PEC over the wrong byte sequence). Please validatemsg_size[0]against the provided buffer and only read/hash the indicated number of bytes (or return the actual length).
let mut msg_size = [0u8];
if use_pec {
let mut pec_buf = [0u8];
let mut pec = Self::pec_calc_with_write_addr(address)?;
pec.write_u8(register);
pec.write_u8(crate::smbus::bus::read_address_byte(address));
self.i2c
.transaction(
address,
&mut [
Operation::Write(&[register]),
Operation::Read(&mut msg_size),
Operation::Read(data),
Operation::Read(&mut pec_buf),
],
)
.await
.map_err(|e| crate::smbus::bus::ErrorKind::from(e.kind()))?;
pec.write(&msg_size);
pec.write(data);
Self::check_pec(pec_buf[0], pec.finish())?;
} else {
self.i2c
.transaction(
address,
&mut [
Operation::Write(&[register]),
Operation::Read(&mut msg_size),
Operation::Read(data),
],
)
.await
.map_err(|e| crate::smbus::bus::ErrorKind::from(e.kind()))?;
}
Ok(())
embedded-mcu-hal/src/smbus/bus/asynch.rs:745
block_write_block_read_process_callreads the target-providedread_msg_sizebut then always readsread_data.len()bytes and includes the full buffer in PEC. This can desynchronize the transaction if the device reports a different length, and it makes PEC validation incorrect. Please validate and only read/hash the reported number of bytes (or change the API to return the actual length).
if write_data.len() + read_data.len() > crate::smbus::bus::MAX_BLOCK_SIZE {
return Err(crate::smbus::bus::ErrorKind::TooLargeBlockTransaction);
}
let mut read_msg_size = [0u8];
if use_pec {
let mut pec_buf = [0u8];
let mut pec = Self::pec_calc_with_write_addr(address)?;
pec.write_u8(register);
pec.write_u8(write_data.len() as u8);
pec.write(write_data);
pec.write_u8(crate::smbus::bus::read_address_byte(address));
self.i2c
.transaction(
address,
&mut [
Operation::Write(&[register]),
Operation::Write(&[write_data.len() as u8]),
Operation::Write(write_data),
Operation::Read(&mut read_msg_size),
Operation::Read(read_data),
Operation::Read(&mut pec_buf),
],
)
.await
.map_err(|e| crate::smbus::bus::ErrorKind::from(e.kind()))?;
pec.write(&read_msg_size);
pec.write(read_data);
Self::check_pec(pec_buf[0], pec.finish())?;
} else {
self.i2c
.transaction(
address,
&mut [
Operation::Write(&[register]),
Operation::Write(&[write_data.len() as u8]),
Operation::Write(write_data),
Operation::Read(&mut read_msg_size),
Operation::Read(read_data),
],
)
.await
.map_err(|e| crate::smbus::bus::ErrorKind::from(e.kind()))?;
}
embedded-mcu-hal/src/smbus/bus/mod.rs:160
- This section is labeled “I2C error type trait”, but it defines the associated error type for SMBus traits (and even depends on
crate::smbus::bus::ErrorKind). Please rename/reword the doc comments to SMBus here to match the module and avoid confusion.
/// I2C error type trait.
///
/// This just defines the error type, to be used by the other traits.
pub trait ErrorType {
/// Error type
type Error: Error + From<embedded_hal_async::i2c::ErrorKind>;
}
Split the async SMBus surface into an abstract protocol trait and a concrete software implementation. The `Smbus` trait now declares only the SMBus protocol operations plus the PEC associated items (`PecCalc`, `get_pec_calc`, `check_pec`). All default implementations that bit-bang the protocol on top of an I²C bus have moved into a new `SwSmbusI2c<I, P>` wrapper struct that owns an `embedded_hal_async::i2c::I2c` bus and delegates PEC calculator construction to a new `PecProvider` trait via the `P` parameter. HALs with a hardware SMBus peripheral can implement `Smbus` directly without inheriting any I²C-specific machinery. `write_buf`, `read_buf`, and `write_read_buf` are no longer trait methods; they are inherent helpers on `SwSmbusI2c` that the other protocol methods reuse, eliminating duplicated PEC setup and I²C error mapping across the byte/word/block operations. PEC calculator priming with the write-address byte and the truncation of the finished hash to a single byte are likewise factored into private helpers (`pec_calc_with_write_addr`, `finalize_pec_byte`). The blanket `impl<T: Smbus + ?Sized> Smbus for &mut T` forwarding impl is preserved, and `SwSmbusI2c::Error` is `ErrorKind` directly so callers do not need to define a wrapper error type. Tests are reworked to drive `SwSmbusI2c<I2cMock, _>` through small `PecProvider` impls (`TestPec`, `NoPec`). Assisted-by: GitHub Copilot:claude-opus-4.7
- Renamed `to_kind` method to `from_kind` in the `Error` trait for clarity. - Updated the `ErrorKind` enum to include a new variant `BlockSizeMismatch`. - Made API more explicit by breaking out the pec and non pec SMBUS transactions into their own methods.
Contributor
There was a problem hiding this comment.
Pull request overview
Copilot reviewed 6 out of 8 changed files in this pull request and generated 2 comments.
Comments suppressed due to low confidence (3)
embedded-mcu-hal/src/smbus/bus/asynch.rs:22
SMBusErrorandI2cErrorare imported but not used anywhere in this module (only appear in theuselines). Please remove these unused imports to avoid warnings and keep the module tidy.
use core::hash::Hasher;
use core::marker::PhantomData;
use crate::smbus::bus::Error as SMBusError;
use embedded_hal_async::i2c::{Error as I2cError, I2c, Operation};
embedded-mcu-hal/src/smbus/bus/asynch.rs:78
check_pec's doc comment says only the low byte ofcomputed_pecis used, but the implementation currently compares the fullu64againstreceived_pec(after widening). Either update the docs to describe the strict comparison semantics, or change the implementation to explicitly truncate/mask to the low byte so the behavior matches the docs.
/// Check PEC (Packet Error Code) validity.
///
/// Compares a received PEC byte against a computed PEC value. Only the
/// low byte of `computed_pec` is used.
fn check_pec(received_pec: u8, computed_pec: u64) -> Result<(), <Self as crate::smbus::bus::ErrorType>::Error> {
computed_pec
.eq(&received_pec.into())
.then_some(())
.ok_or_else(|| <Self as crate::smbus::bus::ErrorType>::Error::from_kind(crate::smbus::bus::ErrorKind::Pec))
}
embedded-mcu-hal/src/smbus/bus/mod.rs:97
unreachable!()is used here to implementfrom_kindforInfallible. With workspace clippy lints set todeny(panic)anddeny(unreachable), this is likely to fail CI (sinceunreachable!()is a form of panic). Consider using a non-panicking diverging implementation (e.g., an infinite loop withcore::hint::unreachable_unchecked()only if acceptable) or explicitly allow theclippy::paniclint in this exact scope.
fn from_kind(_kind: ErrorKind) -> Self {
// `Infallible` is uninhabited, so this function can never actually
// be called
#[allow(clippy::unreachable)]
{
unreachable!()
}
jerrysxie
requested changes
May 16, 2026
Contributor
jerrysxie
left a comment
jerrysxie
left a comment
There was a problem hiding this comment.
Sorry, it has been a while since I last reviewed this. So this is basically a new review.
felipebalbi
reviewed
May 18, 2026
RobertZ2011
approved these changes
May 26, 2026
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Add SMBus support in the form of a helper trait built on top of an embedded-hal-async I2C implementation.
Based on the SMBus v3,3 spec.