generator/C: Don't parse messages outside CRC_EXTRA

[julianoes]

I have been wondering for a while why I sometimes see MAVLink components "appear" with random sysid/compid when I leave a system running for some time.

Today I finally caught the bytes of such a case, the offending bytes were:
{253, 0, 1, 0, 0, 3, 1, 1, 42, 0, 185, 186, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0};

This is msgid 10753 from sysid 3, compid 1 with payload len 0. It's presumably signed, hence the trailing zeros.

It turns out the msgid is way out of the CRC_EXTRA table and hence the mavlink_get_msg_entry(msgid) function returns NULL. In that case 0 is ignored and we carry on parsing.

My suggestion is to reset parsing when we don't know the CRC_EXTRA of the message to avoid flagging noise as a valid message.

[julianoes]

Any comment @peterbarker?

FYI @auturgy

[hamishwillee]

@peterbarker Is probably at the conference and @auturgy is away this week. So probably they won't get back to you this week.

[julianoes]

Bumping this. I would appreciate a comment @tridge or @peterbarker.

[khancyr]

I put a message to get a review on next call next week

[tridge]

@julianoes we need to test that this is OK with a router that wants to pass through unknown messages. That is an important use case

[tridge]

you also need to set rxmsg->ck[0] to the byte from the packet (c) so that this code works correctly for forwarding the message:

	if (status->msg_received == MAVLINK_FRAMING_BAD_CRC) {
		/*
		  the CRC came out wrong. We now need to overwrite the
		  msg CRC with the one on the wire so that if the
		  caller decides to forward the message anyway that
		  mavlink_msg_to_send_buffer() won't overwrite the
		  checksum
		 */
            if (r_message != NULL) {
                r_message->checksum = rxmsg->ck[0] | (rxmsg->ck[1]<<8);
            }
	}

[julianoes]

I see, so you can still forward even if you can't fully parse a message. Do you have an example of such an implementation?

[tpwrules]

https://github.com/ArduPilot/ardupilot/blob/7d426f4741c7f77b03c26b98899e5d3d89503e8f/libraries/GCS_MAVLink/GCS_Common.cpp#L1889 is one related implementation

[julianoes]

Got it, thanks. That's interesting.

I will update as suggested to fix that case.

[julianoes]

Fix pushed.

[julianoes]

@tridge thanks for the review!

@julianoes we need to test that this is OK with a router that wants to pass through unknown messages. That is an important use case

I think a router generally should not parse a message. If it did try to parse every message, it wouldn't forward unknown messages as it doesn't have the correct CRC_EXTRA. So the way to forward messages is to just look for a correct looking header.

[tpwrules]

@tridge thanks for the review!

@julianoes we need to test that this is OK with a router that wants to pass through unknown messages. That is an important use case

I think a router generally should not parse a message. If it did try to parse every message, it wouldn't forward unknown messages as it doesn't have the correct CRC_EXTRA. So the way to forward messages is to just look for a correct looking header.

A router could choose to forward a message that has a "bad CRC" and use the MAVLink library as a convenient way to decode the framing.

[tpwrules]

Please rebase on master then squash to one commit and we will merge!

I checked and it looks like the sample data (thanks for sharing) did get through because the CRC happened to be correct if CRC_EXTRA was 0. I think it makes sense to flag a message we know we can't prove the CRC is correct as having a bad CRC, then let the consumer deal with it.

It looks like this might not interact correctly with signing so a forwarder might have trouble there but that's a separate pre-existing problem and not in scope for this PR.

[julianoes]

Thanks @tpwrules and @tridge!