Skip to content

rdkcentral/hotspot

BranchesTags

Repository files navigation

Hotspot Component

The Hotspot component is a critical middleware service in the RDK-B stack that manages GRE (Generic Routing Encapsulation) tunnels for Xfinity Hotspot functionality. This component enables service providers to offer secure guest WiFi access on customer premises equipment (CPE) by establishing and maintaining encrypted tunnels to remote hotspot endpoints.

The Hotspot component provides three primary services to the RDK-B device: GRE Tunnel Management - creates, configures, and maintains GRE tunnels with primary and secondary remote endpoints for redundancy; Endpoint Health Monitoring - implements intelligent ICMP keep-alive mechanisms with automatic failover between primary and secondary endpoints when connectivity issues are detected; VLAN and Client Management - manages VLAN configurations for hotspot SSIDs across multiple frequency bands (2.4GHz, 5GHz, 6GHz) and provides DHCP snooping capabilities for tracking connected client devices.

At the module level, the component consists of multiple cooperating processes: the main hotspot daemon (CcspHotspot) handles tunnel lifecycle and endpoint monitoring, the HotspotApi library provides a programmatic interface for configuration and WebConfig integration, the hotspot_arpd process manages ARP/NDP traffic using netfilter queue mechanisms, the DHCP snooper tracks client connections and generates telemetry events, and the tunnel test agent validates connectivity. These modules work together through R-BUS, sysevent, and shared memory mechanisms to provide a robust hotspot service infrastructure.

graph LR
    subgraph "External Systems"
        RemoteMgmt["Remote Management"]
        XfinityHS["Xfinity Hotspot Infrastructure"]
    end

    subgraph "RDK-B Platform"
        subgraph "Remote Management Agents"
            ProtocolAgents["Protocol Agents<br>( TR-069, WebPA, etc.)"]
        end

        PNM["CCSP P&M"]
        PSM["CCSP PSM"]
        Hotspot["Hotspot"]
        WiFi["WiFi Manager"]
        LMLite["LM-Lite"]

        subgraph "Platform Layer"
            HAL["Platform HAL"]
            Linux["Linux"]
        end
    end

    %% External connections
    RemoteMgmt -->|TR-069/WebPA| ProtocolAgents
    XfinityHS <-->|GRE/ICMP| Linux

    %% Upper layer to Hotspot
    ProtocolAgents -->|IPC| Hotspot

    %% Hotspot to Other RDK-B Components
    Hotspot -->|IPC| PNM
    Hotspot -->|IPC| PSM
    Hotspot -->|IPC| WiFi
    Hotspot -->|IPC| LMLite

    %% Interface Managers to HAL
    Hotspot <-->|System APIs| HAL

    %% System integration
    HAL <-->|Driver Interfaces| Linux
    Hotspot <-->|System Events| Linux

    classDef external fill:#fff3e0,stroke:#ef6c00,stroke-width:2px;
    classDef hotspotComponent fill:#e3f2fd,stroke:#1976d2,stroke-width:3px;
    classDef rdkbComponent fill:#e8f5e8,stroke:#2e7d32,stroke-width:2px;
    classDef system fill:#fce4ec,stroke:#c2185b,stroke-width:2px;

    class RemoteMgmt,XfinityHS external;
    class Hotspot hotspotComponent;
    class ProtocolAgents,PNM,PSM,WiFi,LMLite rdkbComponent;
    class HAL,Linux system;
Loading

Key Features & Responsibilities:

  • GRE Tunnel Management: Creates and maintains GRE tunnels (gretap0) to Xfinity hotspot infrastructure with configurable primary and secondary remote endpoints, supporting both IPv4 and IPv6 addressing with automatic failover capabilities
  • Endpoint Health Monitoring: Implements sophisticated ICMP keep-alive mechanism with configurable intervals (default 60s), threshold-based failover (default 5 failures), and automatic switchback to primary endpoint after recovery
  • VLAN Configuration: Manages VLAN tagging for multiple hotspot SSIDs across 2.4GHz, 5GHz, and 6GHz bands, coordinating with WiFi manager and Linux bridge subsystem for proper traffic isolation
  • DHCP Client Tracking: Provides DHCP snooping functionality to monitor client connections, generate presence notifications, and support Circuit ID and Remote ID options for subscriber identification
  • WebConfig Integration: Supports RFC-based configuration through WebConfig framework, enabling cloud-managed tunnel and VLAN provisioning with transactional rollback capabilities
  • ARP/NDP Processing: Handles ARP solicitation for IPv4 and Neighbor Discovery Protocol (NDP) for IPv6 using netfilter queue mechanisms, with MAPT/NAT46 translation support
  • Telemetry and Diagnostics: Publishes operational metrics including tunnel status, endpoint switches, keep-alive statistics, and client activity events through RDK Telemetry framework

Design

The CCSP Hotspot component is designed as a multi-process architecture with clear separation of concerns. The core design centers around the main daemon (CcspHotspot/hotspotfd) that acts as the control plane for tunnel lifecycle management and health monitoring, while specialized helper processes handle traffic plane functions. The component integrates tightly with the RDK-B middleware stack through multiple IPC mechanisms - R-BUS for data model registration and event publication, sysevent for platform-level event coordination, and PSM for persistent configuration storage. This distributed design allows the component to operate efficiently with minimal resource consumption while maintaining high availability for the hotspot service.

The design emphasizes operational resilience through several key mechanisms: dual endpoint support with automatic failover ensures continuous service even when the primary tunnel endpoint becomes unreachable; shared memory segments provide lock-free statistics sharing between the main daemon and monitoring tools; and transactional configuration updates through WebConfig allow atomic changes with automatic rollback on validation failures. The component follows the CCSP plugin architecture, registering its data model namespace (Device.X_COMCAST-COM_GRE.Hotspot) with the system and responding to both synchronous parameter queries and asynchronous configuration events.

For northbound interactions, the component exposes a TR-181 compliant data model accessible via R-BUS/D-Bus, allowing management entities (Web UI, TR-069 ACS, SNMP) to configure tunnel endpoints, keep-alive parameters, and enable/disable the hotspot service. The WebConfig integration provides an alternative configuration path optimized for cloud-managed deployments, using JSON documents validated against schemas and applied transactionally. Southbound interactions occur primarily through system calls to the Linux network stack for GRE interface creation, VLAN configuration, and bridge management, while netfilter queue integration enables packet-level processing for ARP/NDP handling.

IPC mechanisms are carefully selected based on use case requirements: R-BUS provides the primary data model and event bus with support for method calls, parameter get/set, and publish/subscribe patterns; sysevent handles asynchronous system-wide events like WAN status changes and interface state transitions; PSM stores persistent configuration that survives reboots; and shared memory segments provide high-performance statistics access without IPC overhead. Thread safety is ensured through mutex protection for shared data structures, particularly in the DHCP snooper module where client lists are accessed concurrently.

Data persistence and storage are managed through multiple mechanisms: PSM stores critical configuration parameters like tunnel endpoints, VLAN IDs, and enable flags that survive reboots; JSON files in /nvram cache WebConfig documents for rollback and WAN failover scenarios; and temporary files in /tmp hold runtime state such as current WAN IP addresses and tunnel status. The component also maintains shared memory segments for keep-alive statistics that need to be accessed by external monitoring tools without involving the main process.

graph TD
    subgraph "Container: CCSP Hotspot (C, Autotools)"
        subgraph "Main Daemon (CcspHotspot)"
            DM["Data Model Handler<br/>(cosa_hotspot_dml.c)"]
            TM["Tunnel Manager<br/>(hotspotfd.c)"]
            KA["Keep-Alive Engine<br/>(hotspotfd.c)"]
            MB["R-BUS<br/>Interface<br/>(ssp_messagebus_interface.c)"]
        end

        subgraph "API Library (libHotspotApi.so)"
            API["Public API<br/>(HotspotApi.c)"]
            WC["WebConfig Handler<br/>(HotspotJansson.c)"]
            TL["Tunnel Logic<br/>(HotspotLib.c)"]
        end

        subgraph "Helper Processes"
            ARPD["ARP/NDP Daemon<br/>(hotspot_arpd)"]
            DHCP["DHCP Snooper<br/>(dhcpsnooper.c)"]
        end
    end

    subgraph "External Components"
        RBus[("R-BUS")]
        SysEvt[("Sysevent")]
        PSM[("PSM")]
        NFQ[("Netfilter<br/>Queue")]
        NetSys[("Network<br/>Stack")]
    end

    DM <-->|"R-BUS DM"| MB
    MB <-->|"Register/Publish"| RBus
    TM -->|"System Calls"| NetSys
    KA -->|"ICMP Packets"| NetSys

    API <-->|"JSON Config"| WC
    WC -->|"Validate/Apply"| TL
    TL -->|"Call"| TM
    API <-->|"Read/Write"| PSM

    ARPD <-->|"Dequeue/Verdict"| NFQ
    DHCP -->|"Parse/Track"| NetSys
    DHCP -->|"Events"| RBus

    TM <-->|"Get/Set Events"| SysEvt
    TM <-->|"Statistics"| SHMEM["Shared Memory"]

    classDef daemon fill:#e1f5fe,stroke:#0277bd,stroke-width:2px;
    classDef library fill:#f3e5f5,stroke:#7b1fa2,stroke-width:2px;
    classDef helper fill:#fff9c4,stroke:#f57f17,stroke-width:2px;
    classDef external fill:#e8f5e8,stroke:#2e7d32,stroke-width:2px;

    class DM,TM,KA,MB daemon;
    class API,WC,TL library;
    class ARPD,DHCP helper;
    class RBus,SysEvt,PSM,NFQ,NetSys,SHMEM external;
Loading

Prerequisites and Dependencies

The CCSP Hotspot component requires a fully functional RDK-B middleware environment with specific platform capabilities and dependent services. The component is built using the Autotools build system and integrates with the Yocto Project through the ccsp-hotspot.bb recipe in the meta-rdk-broadband layer.

Build-Time Flags and Configuration:

Configure Option DISTRO Feature Build Flag Purpose Default
--enable-unitTestDockerSupport N/A UNIT_TEST_DOCKER_SUPPORT Enable Docker container support for unit testing; compiles test harness (HotspotApiTest, HotspotFdTest) with mocking frameworks for isolated component testing Disabled
--enable-wanfailover WanFailOverSupportEnable WAN_FAILOVER_SUPPORTED Enable WAN failover support for multi-WAN scenarios; subscribes to WAN Manager interface change events and rebinds GRE tunnel to active WAN interface automatically Disabled
--enable-core_net_lib_feature_support core-net-lib CORE_NET_LIB Enable advanced core networking library for enhanced network operations; links against libnet for low-level packet construction and network interface manipulation Disabled
N/A OneWifi RDK_ONEWIFI Enable OneWifi unified WiFi stack integration; when combined with _XB8_PRODUCT_REQ_ or _SCXF11BFL_PRODUCT_REQ_, increases MAX_VAP (in libHotspotApi.h) and SSIDVAL (in hotspotfd.c) from 4 to 6 to support 6GHz band hotspot SSIDs (hotspot_open_6g, hotspot_secure_6g); RDK_ONEWIFI alone does not change MAX_VAP or SSIDVAL if neither product flag is defined Disabled
N/A N/A FEATURE_SUPPORT_MAPT_NAT46 Enable MAP-T (Mapping of Address and Port with Translation) NAT46 support in ARP daemon for IPv4/IPv6 translation in hotspot traffic Disabled
N/A N/A _CBR_PRODUCT_REQ_ Cable Box Router product flag; sets SSIDVAL=5 in hotspotfd.c and MAX_VAP=5 in libHotspotApi.h, adding support for a fifth hotspot VAP (VAP_NAME_10) for the public SSID N/A
N/A N/A _BWG_PRODUCT_REQ_ Business Wireless Gateway product flag; sets SSIDVAL=5 in hotspotfd.c (evaluated together with _CBR_PRODUCT_REQ_); does not affect MAX_VAP in libHotspotApi.h N/A
N/A N/A AMENITIES_NETWORK_ENABLED Enable amenities network support for hospitality/MDU deployments; creates separate bridge interfaces for amenities SSIDs with dedicated DHCP snooping queues Disabled

Configuration Examples:

# Build with WAN failover support
DISTRO_FEATURES += "WanFailOverSupportEnable"
EXTRA_OECONF_append_pn-ccsp-hotspot = " --enable-wanfailover"

# Build with OneWifi 6GHz support
DISTRO_FEATURES += "OneWifi"

# Build with all optional features
DISTRO_FEATURES += "core-net-lib OneWifi WanFailOverSupportEnable"
EXTRA_OECONF_append_pn-ccsp-hotspot = " --enable-wanfailover --enable-core_net_lib_feature_support"

# Build with unit test support
EXTRA_OECONF_append_pn-ccsp-hotspot = " --enable-unitTestDockerSupport"

Flag Impact on Code Behavior:

  • RDK_ONEWIFI: When combined with _XB8_PRODUCT_REQ_ or _SCXF11BFL_PRODUCT_REQ_, changes MAX_VAP in libHotspotApi.h and SSIDVAL in hotspotfd.c from 4 to 6, adds support for VAP_NAME_11 (hotspot_open_6g) and VAP_NAME_12 (hotspot_secure_6g), and includes additional VLAN-to-bridge entries in HotspotLib.c; RDK_ONEWIFI alone does not change MAX_VAP or SSIDVAL if neither _XB8_PRODUCT_REQ_ nor _SCXF11BFL_PRODUCT_REQ_ is defined
  • WAN_FAILOVER_SUPPORTED: Enables R-BUS subscription thread for Device.X_RDK_WanManager.CurrentActiveInterface events, adds WAN interface rebinding logic, includes failover JSON configuration handling
  • CORE_NET_LIB: Uses libnet library calls for network operations instead of system() calls, provides more efficient packet construction and interface manipulation
  • AMENITIES_NETWORK_ENABLED: Expands DHCP snooper to handle additional netfilter queues for amenities networks, creates separate bridge interfaces and VLAN configurations for hospitality SSIDs
  • FEATURE_SUPPORT_MAPT_NAT46: Enables IPv4/IPv6 address translation in ARP daemon, reads MAP-T configuration from sysevent, performs address mapping for dual-stack hotspot deployments

RDK-B Platform and Integration Requirements:

  • DISTRO Features: Configure options and DISTRO features are detailed in the Build-Time Flags table above. Key features include:

    • core-net-lib - Optional, provides enhanced networking capabilities via libnet
    • OneWifi - Required for 6GHz hotspot SSID support on compatible platforms
    • WanFailOverSupportEnable - Required for multi-WAN deployments with automatic failover

  • Build Dependencies: Required Yocto packages and libraries that must be present at build time:

    • ccsp-common-library - CCSP framework and base utilities
    • dbus - D-Bus R-BUS library
    • libnetfilter-queue - Netfilter queue library for packet processing
    • utopia - System configuration and event framework
    • ccsp-lm-lite - LAN Manager Lite for client tracking integration
    • telemetry - RDK Telemetry framework for metrics reporting
    • libunpriv - Privilege management library
    • safec - Safe C library for bounds-checked operations
    • breakpadwrapper - Crash reporting framework
    • webconfig-framework - WebConfig RFC support
    • jansson - JSON parsing library
    • core-net-lib (conditional) - Core networking library

  • RDK-B Components: The following middleware components must be running before hotspot starts:

    • CR (Component Registry) - Component registry and discovery service
    • PSM (Persistent Storage Manager) - Configuration persistence layer
    • PAM (Protocol Address Management) - WAN interface management
    • WiFi Manager - WiFi configuration and control (for SSID enable/disable queries)
    • Sysevent daemon - System event coordination

  • HAL Dependencies: The component does not directly depend on HAL APIs but requires:

    • Linux kernel with GRE tunnel support (ip_gre, gre kernel modules)
    • VLAN support in kernel (8021q module)
    • Bridge support (bridge module)
    • Netfilter support with QUEUE target

  • Systemd Services: The hotspot systemd service unit typically depends on:

    • ccsp-cr.service - Component Registry must be active
    • ccsp-psm.service - PSM must be initialized
    • syseventd.service - Sysevent daemon must be running
    • Network prerequisite services (varies by platform)

  • R-BUS: R-BUS configuration requirements:

    • R-BUS daemon must be running
    • Component registers namespace: Device.X_COMCAST-COM_GRE.Hotspot
    • Must have permissions to publish events and register data model elements
    • Requires CCSP D-Bus configuration file: /etc/ccsp_msg.cfg (or platform-specific path)

  • Configuration Files: Mandatory configuration files and expected locations:

    • /etc/ccsp_msg.cfg - R-BUS configuration
    • /etc/debug.ini - Debug and logging configuration
    • /nvram/syscfg.db - System configuration database (managed by syscfg)
    • /nvram/hotspot.json - Hotspot configuration cache (created at runtime)
    • PSM database must contain hotspot configuration namespace

  • Startup Order: Components that must initialize before hotspot:

    1. System logging (syslog)
    2. Sysevent daemon (syseventd)
    3. PSM (CcspPsm)
    4. Component Registry
    5. PAM (CcspPandM) - for WAN status monitoring
    6. WiFi Manager - for SSID state queries

Threading Model

The CCSP Hotspot component uses a multi-threaded architecture designed to handle concurrent tunnel management, health monitoring, event processing, and client tracking without blocking critical operations.

  • Threading Architecture: Multi-threaded with main event loop and specialized worker threads for different operational domains
  • Main Thread: Handles R-BUS event loop, R-BUS callbacks, TR-181 parameter get/set operations, tunnel lifecycle management, ICMP keep-alive packet generation and validation, and shared memory management for statistics
  • Worker Threads:
Thread Name Thread Function Purpose Creation Location Synchronization
Sysevent Handler Thread hotspotfd_sysevent_handler() Monitors sysevent notifications for configuration parameter changes (primary/secondary endpoints, keep-alive settings, enable/disable), WAN status transitions, DHCP snooper settings, and WAN failover events. Registers async notifications and processes events in dedicated event loop. hotspotfd.c
pthread_create(&sysevent_tid, NULL, hotspotfd_sysevent_handler, NULL)		 Event-driven with sysevent async notifications, no explicit locks (sysevent handles concurrency)
DHCP Snooper Thread dhcp_snooper_init() Processes DHCP packets from netfilter queues to track client connections on hotspot SSIDs. Parses DHCP ACK/RELEASE messages, maintains dynamic client list, extracts Circuit ID/Remote ID options, and publishes client presence events via R-BUS. hotspotfd.c
pthread_create(&dhcp_snooper_tid, NULL, dhcp_snooper_init, NULL)		 pthread_mutex_t global_stats_mutex protects client list during traversal, insertion, deletion operations
R-BUS WAN Subscriber Thread handle_rbusSubscribe() Subscribes to WAN Manager's current active interface change events (Device.X_RDK_WanManager.CurrentActiveInterface) for WAN failover support. Handles interface switching and tunnel rebinding during WAN failover scenarios. hotspotfd.c
pthread_create(&rbus_tid, NULL, handle_rbusSubscribe, NULL)
(Conditional: WAN_FAILOVER_SUPPORTED)		 R-BUS subscription with retry logic (up to 10 attempts), event-driven callbacks
IPv6 SLAAC Thread checkglobalipv6() Performs IPv6 Stateless Address Autoconfiguration (SLAAC) on GRE tunnel interface during connectivity tests. Monitors for global IPv6 address acquisition with 10-second timeout, verifies Duplicate Address Detection (DAD) completion. Used in XfinityTestAgent tunnel validation. tunnelcheck.c
pthread_create(&slaacthread, NULL, checkglobalipv6, NULL)		 Thread is joined after completion (pthread_join), single-shot operation with timeout mechanism
  • Synchronization Mechanisms:
    • Mutex Protection: pthread_mutex_t global_stats_mutex in dhcpsnooper.c for thread-safe client list access; pthread_mutex_t keep_alive_mutex in hotspotfd.c for protecting keep-alive state shared between the main keep-alive loop and the sysevent handler thread
    • Signal Handlers: SIGTERM and SIGINT handlers in hotspotfd.c for graceful shutdown; signal(SIGKILL, ...) is attempted but always returns SIG_ERR — SIGKILL cannot be caught, blocked, or ignored per POSIX, so it has no effect
    • Lock-free Statistics: Keep-alive statistics in shared memory use single-writer (daemon), multiple-reader pattern without locks
    • Event-driven Coordination: Sysevent async notifications and R-BUS event subscriptions eliminate polling overhead

Helper Process Threading Model:

  • hotspot_arpd: Single-threaded process using select-based event loop to process ARP/NDP packets from netfilter queues synchronously. No internal threading required as packet processing is sequential.

Component State Flow

Initialization to Active State

The CCSP Hotspot component follows a structured initialization sequence that transitions through several states before reaching full operational readiness. The component starts when systemd launches the CcspHotspot daemon, which then performs subsystem initialization in a specific order to ensure all dependencies are satisfied.

sequenceDiagram
    participant Systemd as Systemd
    participant SSP as SSP Main<br/>(ssp_main.c)
    participant MBus as R-BUS Interface
    participant RBus as R-BUS/D-Bus
    participant DM as Data Model<br/>Handler
    participant TM as Tunnel Manager
    participant PSM as PSM
    participant SysEvt as Sysevent
    participant Net as Network Stack

    Systemd->>SSP: Start CcspHotspot
    Note over SSP: State: Initializing<br/>Parse args, setup logging

    SSP->>SSP: daemonize() - Fork to background
    SSP->>SSP: Initialize breakpad crash handler

    SSP->>MBus: ssp_Mbi_MessageBusEngage()
    Note over MBus: State: Connecting to Bus
    MBus->>RBus: CCSP_Message_Bus_Init()
    RBus-->>MBus: Bus Handle

    MBus->>RBus: Register Component<br/>"com.cisco.spvtg.ccsp.hotspot"
    RBus-->>MBus: Registration Success

    SSP->>DM: ssp_create() - Create plugin
    Note over DM: State: Registering Data Model
    DM->>RBus: Register Namespace<br/>"Device.X_COMCAST-COM_GRE.Hotspot"
    DM->>RBus: Register Parameter Callbacks
    RBus-->>DM: DM Registration Complete

    SSP->>SSP: ssp_engage() - Register data model with Component Registry
    SSP->>TM: hotspot_start() (called directly from main() after ssp_engage() returns)
    Note over TM: State: Initializing Tunnel Manager
    TM->>PSM: Read Configuration
    PSM-->>TM: Config: Enable, Endpoints, VLANs

    TM->>SysEvt: gre_sysevent_syscfg_init()
    SysEvt-->>TM: Sysevent Handle

    TM->>TM: hotspotfd_setupSharedMemory()
    Note over TM: Create shared memory segment<br/>for statistics

    alt Hotspot Enabled
        TM->>Net: Validate Primary/Secondary IPs
        TM->>Net: Create GRE Tunnel (gretap0)
        Net-->>TM: Tunnel Created

        TM->>Net: Configure VLANs for Hotspot SSIDs
        Net-->>TM: VLAN Bridges Ready

        TM->>TM: Start Keep-Alive Engine
        Note over TM: Fork/spawn keep-alive loop

        TM->>SysEvt: Set "hotspotfd-tunnelEP" event
        Note over TM: State: Active (Primary Endpoint)
    else Hotspot Disabled
        Note over TM: State: Active (Idle)
    end

    TM-->>SSP: Initialization Complete
    SSP->>SSP: Enter Main Event Loop

    loop Runtime Operations
        Note over SSP,Net: State: Active<br/>Process R-BUS events, keep-alives, sysevent notifications
        RBus->>DM: Parameter Get/Set Requests
        DM->>TM: Execute Operations
        TM->>Net: Apply Network Changes

        TM->>TM: Send ICMP Keep-Alive
        Net-->>TM: ICMP Reply (or timeout)

        alt Keep-Alive Failed (threshold exceeded)
            TM->>TM: Switch to Secondary Endpoint
            TM->>Net: Update GRE Remote IP
            TM->>SysEvt: Publish "hotspotfd-tunnelEP" event
            Note over TM: State: Active (Secondary Endpoint)
        end
    end

    Systemd->>SSP: SIGTERM (Stop Request)
    Note over SSP: State: Shutting Down
    SSP->>TM: ssp_cancel()
    TM->>Net: Cleanup GRE Interface
    TM->>TM: Delete Shared Memory
    TM->>SysEvt: Close Sysevent Handle
    SSP->>RBus: Unregister Component
    SSP->>Systemd: Exit(0) - Shutdown Complete
Loading

Runtime State Changes and Context Switching

During normal operation, the hotspot component undergoes several runtime state changes driven by external events and tunnel health monitoring. These state changes are designed to maintain service continuity in the face of network disruptions or configuration updates.

State Change Triggers:

  • WAN Status Changes: When sysevent wan-status transitions to "started" or "stopped", the component validates tunnel endpoints and may suspend/resume keep-alive monitoring. If WAN is down, keep-alive checks are paused to avoid unnecessary failure detection.

  • Keep-Alive Failures: When consecutive ICMP keep-alive failures reach the threshold (default 5), the component switches from the primary endpoint to the secondary endpoint. This state change updates the GRE tunnel's remote endpoint IP and publishes a hotspotfd-tunnelEP sysevent to notify other components.

  • Endpoint Recovery: After switching to the secondary endpoint, the component continues monitoring the primary endpoint. Upon successful primary endpoint recovery detection, it switches back automatically. A configurable "secondary maximum time" parameter can force switchback even if both endpoints respond.

  • Configuration Updates: When WebConfig delivers a new hotspot configuration document, or when parameters change via TR-181 data model, the component validates the changes and applies them transactionally:

    • If GRE enable status changes, tunnels are created or destroyed
    • If endpoint IPs change, the GRE remote address is updated without tunnel recreation
    • If VLANs change, bridge and VLAN configurations are updated incrementally
    • Failed validation triggers automatic rollback to the last known good configuration

  • WAN Failover (if enabled): On platforms supporting WAN failover, when current_wan_ifname sysevent changes, the component re-evaluates the WAN interface used for GRE encapsulation and may rebind the tunnel to the new WAN interface.

  • WiFi SSID State Changes: When hotspot SSIDs are enabled or disabled via WiFi manager, the component queries SSID state and adjusts VLAN bridge memberships accordingly, ensuring traffic isolation is maintained only for active SSIDs.

Context Switching Scenarios:

  • Primary ↔ Secondary Endpoint Switching: The most common runtime context switch occurs during endpoint failover. The component maintains a state machine tracking the active endpoint, failed keep-alive counts, and switchback timers. State transitions are atomic - the GRE remote endpoint is updated via ip link set gretap0 type gre remote <new_ip>, and statistics counters are incremented in shared memory. Recovery involves exponential backoff to avoid flapping between endpoints.

  • WebConfig Transaction Mode: When processing WebConfig documents, the component enters a transactional mode where changes are staged but not committed. Upon validation success, all changes are applied atomically; upon failure, a rollback mechanism restores the previous configuration from cached JSON in /nvram/hotspot.json. This ensures configuration consistency even if the component crashes during update.

  • DHCP Snooper Client Tracking: The DHCP snooper maintains a dynamic client list that changes as devices connect and disconnect. When a client presence event is detected (DHCP ACK packets), the snooper adds the client to its internal list and publishes an R-BUS event to LM-Lite. Clients are aged out after lease expiry or explicit DHCP release.

Call Flow

Initialization Call Flow:

sequenceDiagram
    participant Main as main()<br/>(ssp_main.c)
    participant Eng as ssp_Mbi_MessageBusEngage()
    participant Cre as ssp_create()
    participant EngS as ssp_engage()
    participant HS as hotspot_start()<br/>(hotspotfd.c)
    participant RBus as R-BUS
    participant PSM as PSM
    participant SysEvt as Sysevent

    Main->>Main: Parse command line args
    Main->>Main: daemonize() if not debug mode
    Main->>Main: Setup signal handlers

    Main->>Eng: Connect to R-BUS
    Eng->>RBus: CCSP_Message_Bus_Init()<br/>"com.cisco.spvtg.ccsp.hotspot"
    RBus-->>Eng: bus_handle
    Eng->>RBus: CCSP_Message_Bus_Register_Path()<br/>Register base callbacks
    RBus-->>Eng: Success
    Eng-->>Main: ANSC_STATUS_SUCCESS

    Main->>Cre: Create Component
    Cre->>Cre: Allocate component structures
    Cre->>Cre: Register data model elements
    Cre-->>Main: Component Handle

    Main->>EngS: Engage Component
    EngS->>EngS: RegisterCcspDataModel2()<br/>Register data model with Component Registry
    EngS-->>Main: ANSC_STATUS_SUCCESS

    Main->>HS: hotspot_start() (called directly from main())
    Note over HS: Initialize Hotspot Subsystem

    HS->>SysEvt: sysevent_open()<br/>Initialize sysevent fd and token
    SysEvt-->>HS: Sysevent FD & Token

    HS->>SysEvt: hotspotfd_getStartupParameters()<br/>Read all config params via sysevent<br/>(endpoints, keep-alive interval/threshold, snooper settings)
    Note over HS: Parameters are pre-loaded into sysevent<br/>by HotspotApi library (from PSM) before hotspotfd starts
    SysEvt-->>HS: Startup Parameters

    alt Hotspot Enabled (primary endpoint valid in sysevent)
        HS->>HS: hotspot_sysevent_enable_param()<br/>Validate and cache parameters

        HS->>HS: create_tunnel(primary_endpoint)
        Note over HS: Create GRE interface gretap0<br/>Configure VLAN bridges

        HS->>HS: hotspotfd_setupSharedMemory()
        Note over HS: Create shared mem

        HS->>HS: Start keep-alive monitoring loop
    end

    HS-->>Main: Initialization Complete

    Main->>Main: Enter R-BUS event loop<br/>while (g_bActive)
Loading

Request Processing Call Flow:

The most critical operational flow is the tunnel endpoint health monitoring and automatic failover sequence, which ensures continuous hotspot service availability.

sequenceDiagram
    participant KA as Keep-Alive Engine<br/>(hotspotfd.c)
    participant Net as Network Stack
    participant Stats as Shared Memory<br/>Statistics
    participant SysEvt as Sysevent
    participant RBus as R-BUS
    participant Remote as Remote<br/>Endpoint

    Note over KA: Timer fires every keepAliveInterval (default 60s)

    loop For each keep-alive count (default 1 per interval)
        KA->>KA: Build ICMP Echo Request<br/>Sequence #, Checksum
        KA->>Net: sendto() raw ICMP packet
        Net->>Remote: ICMP Echo Request

        KA->>Net: recvfrom() with timeout<br/>wait for ICMP Echo Reply

        alt Reply Received
            Remote->>Net: ICMP Echo Reply
            Net-->>KA: Reply packet

            KA->>KA: Validate checksum & sequence

            alt Valid Reply
                KA->>Stats: Increment keepAlivesReceived
                KA->>Stats: Reset failure counter = 0
                Note over KA: State: Active Endpoint Healthy
            else Invalid Reply (checksum/seq mismatch)
                KA->>Stats: Increment discarded counters
                Note over KA: Treat as failure
            end

        else Timeout (No Reply)
            Note over KA: Keep-alive failure detected
            KA->>Stats: Increment keepAlivesSent<br/>(no corresponding Received)
            KA->>Stats: Increment failure counter

            alt Failure Counter >= Threshold (default 5)
                Note over KA: Endpoint considered DOWN

                alt Currently on Primary
                    KA->>KA: Check if secondary endpoint valid
                    KA->>Net: ip link set gretap0 type gre<br/>remote <secondary_ip>
                    Net-->>KA: Tunnel updated

                    KA->>Stats: Update primaryIsActive = false<br/>secondaryIsActive = true
                    KA->>Stats: Increment switchedBackToPrimary counter

                    KA->>SysEvt: Set "hotspotfd-tunnelEP"<br/>value = secondary_ip
                    SysEvt->>RBus: Notify subscribers

                    Note over KA: State: Secondary Endpoint Active
                    KA->>KA: Reset failure counter = 0<br/>Start secondary max time timer

                else Currently on Secondary
                    alt Secondary max time exceeded
                        Note over KA: Force switchback to primary
                        KA->>Net: ip link set gretap0 type gre<br/>remote <primary_ip>
                        KA->>Stats: Update primaryIsActive = true<br/>secondaryIsActive = false
                        KA->>SysEvt: Set "hotspotfd-tunnelEP"<br/>value = primary_ip
                        Note over KA: State: Primary Endpoint Active (forced)
                    else Both endpoints down
                        Note over KA: Use dead interval (longer wait)<br/>between retries
                        KA->>Stats: Both primaryIsAlive=false<br/>secondaryIsAlive=false
                    end
                end
            end
        end
    end

    Note over KA: Check for recovery if on secondary
    alt On Secondary Endpoint
        KA->>KA: Test primary endpoint
        KA->>Net: ICMP Echo to primary
        alt Primary responds
            Note over KA: Primary recovered
            KA->>Net: ip link set gretap0 type gre<br/>remote <primary_ip>
            KA->>Stats: Update primaryIsActive = true<br/>secondaryIsActive = false
            KA->>SysEvt: Set "hotspotfd-tunnelEP"<br/>value = primary_ip
            Note over KA: State: Primary Endpoint Active (recovered)
        end
    end
Loading

Internal Modules

The CCSP Hotspot component is organized into several logical modules, each responsible for specific aspects of tunnel management, health monitoring, and client tracking. These modules are compiled into separate executables and libraries that cooperate through IPC mechanisms.

Module/Class Description Key Files
SSP Framework Provides the CCSP Single Service Process framework implementation, handling component registration, R-BUS engagement, lifecycle management (initialize/engage/cancel), and signal handling. This module bootstraps the entire component. ssp_main.c, ssp_action.c, ssp_messagebus_interface.c, ssp_global.h, ssp_internal.h
Data Model Handler Implements the TR-181 data model interface for Device.X_COMCAST-COM_GRE.Hotspot namespace. Handles parameter get/set operations, validates input, and bridges R-BUS/D-Bus calls to the tunnel manager logic. Exposes the ClientChange parameter for DHCP snooper integration. cosa_hotspot_dml.c, cosa_hotspot_dml.h, plugin_main.c
Tunnel Manager Core tunnel lifecycle manager responsible for GRE tunnel creation, configuration, and destruction. Maintains tunnel state, coordinates with network stack for interface operations, manages VLAN bridge configurations, and handles sysevent-based coordination with other system components. hotspotfd.c, hotspotfd.h
Keep-Alive Engine Implements ICMP-based endpoint health monitoring with configurable intervals, thresholds, and policies. Manages the primary/secondary endpoint failover state machine, maintains keep-alive statistics in shared memory, and publishes endpoint change events via sysevent. hotspotfd.c (boolean state variables gPrimaryIsAlive, gSecondaryIsAlive; keep-alive loop within hotspot_start())
Hotspot API Library Public library providing programmatic API for hotspot configuration and control. Used by WebConfig framework for RFC-based provisioning, implements configuration validation, comparison, and transactional application with rollback support. HotspotApi.c, libHotspotApi.h, HotspotLib.c, libHotspot.h
WebConfig Handler Processes JSON-based WebConfig documents (subdoc: "hotspot"), performs schema validation using Jansson library, manages configuration persistence to PSM and filesystem, and coordinates with tunnel manager for atomic configuration updates. HotspotJansson.c, HotspotApi.c
DHCP Snooper Monitors DHCP traffic on hotspot SSIDs to track client connections, parses DHCP ACK packets to extract client MAC addresses and lease information, maintains a dynamic client list in memory, supports DHCP Option 82 (Circuit ID / Remote ID) for carrier-grade NAT deployments, and publishes client presence events via R-BUS. Receives DHCP packets from external sources (WiFi manager forwarding). dhcpsnooper.c, dhcpsnooper.h, dhcp.h (DHCP packet structures)
ARP/NDP Daemon Standalone process that handles ARP (IPv4) and Neighbor Discovery Protocol (IPv6) packet processing using netfilter queue mechanism. Receives packets from iptables/ip6tables NFQUEUE targets, validates source addresses, generates ARP replies or NDP neighbor advertisements, and supports MAPT/NAT46 address translation for dual-stack environments. hotspot_arpd.c
Tunnel Test Agent Diagnostic utility for validating tunnel connectivity, performs IPv6 SLAAC on GRE interface, verifies global IPv6 address acquisition, tests reachability to remote endpoints, and generates connectivity reports. Can be executed standalone or invoked by monitoring systems. tunnelcheck.c

Component Interactions

The CCSP Hotspot component interacts extensively with other RDK-B middleware components, platform services, and external systems to deliver comprehensive hotspot functionality. These interactions span multiple IPC mechanisms and involve both synchronous request-response patterns and asynchronous event notifications.

Interaction Matrix

The following table consolidates all component interactions, their purposes, and the specific APIs or endpoints used for communication.

Target Component/Layer Interaction Purpose Key APIs/Endpoints
RDK-B Middleware Components
WiFi Manager (CcspWifiSsp) Query SSID enable/disable status to determine if hotspot VAPs are active, coordinate VLAN configuration changes when SSIDs are enabled/disabled R-BUS method call: getParameterValues("Device.WiFi.SSID.{i}.Enable"), get_ssid_enable(ssidIdx) wrapper function
LM-Lite (CcspLMLite) Notify about hotspot client connections and disconnections for network topology tracking and analytics R-BUS parameter set: Device.X_COMCAST-COM_GRE.Hotspot.ClientChange (format: <add|delete>,<ssid_idx>,<mac_addr>,<rssi>), DM callback: HotspotConnectedDevice_SetParamStringValue()
PAM (CcspPandM) Monitor WAN interface status to pause/resume keep-alive checks during WAN outages, query current WAN IP addresses for local endpoint validation Sysevent subscription: wan-status, current_wan_ipaddr, wan6_ipaddr, Optional: current_wan_ifname (for WAN failover)
PSM (CcspPsm) Persist tunnel configuration (endpoints, VLANs, enable flags) across reboots, read configuration during initialization PSM API calls: PsmGet(), PsmSet() - Namespace: dmsb.hotspot.enable, dmsb.hotspot.tunnel.1.PrimaryRemoteEndpoint, dmsb.hotspot.tunnel.1.SecondaryRemoteEndpoint, dmsb.hotspot.tunnel.1.interface.{i}.VLANID, dmsb.l2net.{i}.Vid (per-SSID VLAN PSM keys)
CR (Component Registry) Register component at startup for discovery by other CCSP components and PAM D-Bus/R-BUS registration: Component name com.cisco.spvtg.ccsp.hotspot, Namespace: Device.X_COMCAST-COM_GRE.Hotspot, Path: /com/cisco/spvtg/ccsp/hotspot
Telemetry (T2) Report operational metrics and events for monitoring and analytics (tunnel status, endpoint switches, keep-alive failures, client counts) T2 API: t2_event_s(), t2_event_d() - T2 markers: SYS_INFO_Create_GRE_Tunnel, XWIFI_Active_Tunnel (hotspotfd.c); WIFI_INFO_Hotspot_client_connected, WIFI_INFO_Hotspot_client_disconnected (cosa_hotspot_dml.c); WIFI_INFO_ClientTransitionToXfininityWifi, SYS_INFO_Hotspot_MaxClients (dhcpsnooper.c); XWIFI_VLANID_6_split, XWIFI_VLANID_10_split, XWIFI_VLANID_19_split, XWIFI_VLANID_21_split (HotspotApi.c)
WebPA / WebConfig Framework Receive RFC-based configuration updates for tunnel parameters via cloud-managed deployment model WebConfig callbacks: setHotspot(void* const network) processes tunneldoc_t* structure; deleteHotspot() triggers rollback on failure. Both declared in libHotspotApi.h and implemented in HotspotApi.c. Registration with the WebConfig framework is handled by the webconfig-framework library, which invokes these callbacks when a hotspot subdoc is received.
System & HAL Layers
Linux Network Stack Create and configure GRE tunnel interface (gretap0), manage VLAN tagging on bridge interfaces, send/receive ICMP packets for keep-alive, configure bridge memberships for hotspot SSIDs System calls: system("ip link add gretap0 type gretap remote <endpoint>"), system("ip link set gretap0 up"), system("bridge vlan add vid <vlan> dev <interface>"), Raw socket APIs: socket(AF_INET, SOCK_RAW, IPPROTO_ICMP), sendto(), recvfrom() for ICMP
Sysevent Framework Subscribe to system-wide events (WAN status, interface changes), publish hotspot-specific events (tunnel endpoint changes) for coordination with firewall and routing Sysevent API: sysevent_open(), sysevent_get(), sysevent_set(), sysevent_set_options(), Events: Get: wan-status, current_wan_ipaddr, Set: hotspotfd-tunnelEP, hotspotfd-enable, hotspotfd-keep-alive
Syscfg Framework Read persistent system configuration during initialization (used less frequently than PSM for hotspot-specific config) Syscfg API: syscfg_init(), syscfg_get(), Used for general system settings, not hotspot-specific configuration
Netfilter Queue Process ARP and NDP packets intercepted by iptables/ip6tables rules, generate replies for hotspot interface IPv4/IPv6 addresses Netfilter queue library: nfq_open(), nfq_bind_pf(), nfq_create_queue(), nfq_set_verdict(), Queue numbers: Configured at runtime (e.g., queue 0-3 for different SSIDs)
Shared Memory Store keep-alive statistics for access by diagnostic tools and monitoring scripts without IPC overhead System V shared memory: shmget(size=sizeof(hotspotfd_statistics_s), IPC_CREAT), shmat(), Structure: hotspotfd_statistics_s with counters and status flags

Events Published by CCSP Hotspot:

Event Name Event Topic/Path Trigger Condition Subscriber Components
Tunnel Endpoint Change hotspotfd-tunnelEP (sysevent) When keep-alive failover switches between primary and secondary endpoints, or during switchback to primary. Value contains the new active endpoint IP address. Firewall manager (for NAT rules), Routing (for route updates), TR-069 client (for status reporting), Monitoring/diagnostic scripts
Hotspot Enable/Disable hotspotfd-enable (sysevent) When hotspot service is enabled or disabled via data model or WebConfig. Value: "true" or "false". WiFi manager (to enable/disable hotspot SSIDs), Firewall (to enable/disable hotspot rules), DHCP server (for hotspot subnet management)
Keep-Alive Interval hotspotfd-keep-alive (sysevent) When keep-alive interval is configured or changed. Value: interval in seconds. Monitoring tools (to synchronize polling intervals)
Keep-Alive Threshold hotspotfd-threshold (sysevent) When failure threshold is configured. Value: number of consecutive failures before failover. Diagnostic tools (for threshold reporting)
Client Connection Device.X_COMCAST-COM_GRE.Hotspot.ClientChange (R-BUS parameter) When DHCP ACK is detected for a new client connection. Format: "add,<ssid_idx>,,". LM-Lite (for network topology), Parental Control (for device tracking), Analytics components
Client Disconnection Device.X_COMCAST-COM_GRE.Hotspot.ClientChange (R-BUS parameter) When DHCP release or lease expiry is detected. Format: "delete,<ssid_idx>,,". LM-Lite, Parental Control, Analytics components
WAN Status Subscriber to wan-status (sysevent) Component subscribes to this event; triggers reevaluation of tunnel configuration when WAN transitions between "started" and "stopped". Published by PAM, subscribed by Hotspot

IPC Flow Patterns

Primary IPC Flow - R-BUS Data Model Parameter Set:

sequenceDiagram
    participant WebUI as Web UI / TR-069
    participant RBus as R-BUS
    participant DM as Data Model Handler<br/>(cosa_hotspot_dml.c)
    participant TM as Tunnel Manager<br/>(hotspotfd.c)
    participant PSM as PSM
    participant SysEvt as Sysevent
    participant Net as Network Stack

    WebUI->>RBus: SetParameterValues()<br/>"Device.X_COMCAST-COM_GRE.Hotspot" namespace
    Note over RBus: R-BUS routes to registered handler

    RBus->>DM: Parameter Set Callback<br/>e.g., ClientChange parameter
    Note over DM: Validate request & parameters<br/>Check authentication, bounds

    alt Valid Parameter
        DM->>DM: Parse parameter value<br/>e.g., "add,4,AA:BB:CC:DD:EE:FF,75"
        DM->>TM: Forward to tunnel manager<br/>Update DHCP client list
        TM->>TM: Update internal client tracking

        opt Persist Configuration
            DM->>PSM: PsmSet(parameter, value)
            PSM-->>DM: Success
        end

        opt Trigger Actions
            alt Tunnel endpoint changed
                TM->>Net: Update GRE remote endpoint<br/>ip link set gretap0 type gre remote <new_ip>
                Net-->>TM: Interface updated
                TM->>SysEvt: Publish "hotspotfd-tunnelEP" event
            else VLAN configuration changed
                TM->>Net: Update bridge VLAN membership<br/>bridge vlan add/del
            else Enable status changed
                TM->>Net: Create or destroy tunnel
                TM->>SysEvt: Publish "hotspotfd-enable"
            end
        end

        TM-->>DM: Operation success
        DM-->>RBus: CCSP_SUCCESS
        RBus-->>WebUI: Success Response

    else Invalid Parameter
        DM-->>RBus: CCSP_ERR_INVALID_PARAMETER_VALUE
        RBus-->>WebUI: Error Response
    end
Loading

Event Notification Flow - Client Connection Event:

sequenceDiagram
    participant DHCP as DHCP Snooper<br/>(dhcpsnooper.c)
    participant Net as Network Stack<br/>(Packet Capture)
    participant List as Client List<br/>(Protected by Mutex)
    participant RBus as R-BUS
    participant DM as Data Model Handler
    participant LMLite as LM-Lite

    Net->>DHCP: DHCP ACK packet received<br/>(forwarded from WiFi driver)
    Note over DHCP: Parse DHCP packet<br/>Extract client MAC, IP, lease

    DHCP->>DHCP: Validate packet format<br/>Check message type (ACK)

    alt New Client Connection
        DHCP->>List: pthread_mutex_lock(&global_stats_mutex)
        DHCP->>List: Search for existing client entry<br/>by MAC address

        alt Client not in list
            DHCP->>List: Allocate new client entry<br/>Store MAC, IP, timestamp, SSID index
            DHCP->>List: Insert into linked list
            Note over DHCP: New client detected

            DHCP->>List: pthread_mutex_unlock(&global_stats_mutex)

            DHCP->>DHCP: Build notification string<br/>"add,<ssid_idx>,<mac>,<rssi>"

            DHCP->>RBus: Set parameter<br/>"Device.X_COMCAST-COM_GRE.Hotspot.ClientChange"
            RBus->>DM: Parameter set callback<br/>(passthrough)
            DM->>RBus: Trigger value change event
            RBus->>LMLite: Event notification<br/>subscribed to ClientChange

            LMLite->>LMLite: Update network topology<br/>Add client to hotspot network

        else Client already in list
            DHCP->>List: Update timestamp (lease renewal)
            DHCP->>List: pthread_mutex_unlock(&global_stats_mutex)
            Note over DHCP: Lease renewal, no event
        end

    else DHCP Release/Expire
        DHCP->>List: pthread_mutex_lock(&global_stats_mutex)
        DHCP->>List: Find and remove client entry
        DHCP->>List: pthread_mutex_unlock(&global_stats_mutex)

        DHCP->>DHCP: Build notification string<br/>"delete,<ssid_idx>,<mac>,0"
        DHCP->>RBus: Set parameter ClientChange
        RBus->>LMLite: Event notification
        LMLite->>LMLite: Remove client from topology
    end
Loading

WebConfig Document Update Flow:

sequenceDiagram
    participant Cloud as WebConfig Cloud
    participant Parodus as WebPA/Parodus
    participant WCF as WebConfig Framework
    participant API as HotspotApi<br/>(setHotspot)
    participant Jansson as Validation<br/>(HotspotJansson.c)
    participant TM as Tunnel Manager
    participant PSM as PSM
    participant Net as Network Stack

    Cloud->>Parodus: HTTPS POST<br/>WebConfig Document (multipart)<br/>subdoc: "hotspot"
    Parodus->>WCF: Process document<br/>Identify subdoc handler
    WCF->>API: setHotspot(tunneldoc_t* network)

    Note over API: Transactional processing begins

    API->>Jansson: Parse JSON structure<br/>Extract gre_enable, endpoints, vlans[]
    Jansson->>Jansson: Validate schema<br/>Check required fields exist

    alt Schema Invalid
        Jansson-->>API: Validation Error: Missing field
        API->>API: jansson_rollback_tunnel_info()<br/>Restore from /nvram/hotspot.json
        API-->>WCF: Return ERROR
        WCF-->>Parodus: NACK Response (400)
        Parodus-->>Cloud: Rollback notification
    else Schema Valid
        Jansson->>Jansson: Validate IP addresses<br/>validateIpAddress(), ipAddress_version()
        Jansson->>Jansson: Prevalidate: prevalidateHotspotBlob()

        alt Validation Failed
            Jansson-->>API: Validation Error: Invalid IP
            API->>API: Rollback to previous config
            API-->>WCF: Return ERROR
        else Validation Success
            Jansson-->>API: Valid configuration

            API->>API: compareTunnelConfig()<br/>Compare with current config

            alt Configuration Identical
                API-->>WCF: Return SUCCESS (no changes)
                WCF-->>Parodus: ACK (304 Not Modified)
            else Configuration Changed
                Note over API: Apply new configuration

                API->>PSM: Store configuration<br/>PsmSet() for all parameters
                PSM-->>API: Persistence complete

                API->>API: jansson_store_tunnel_info()<br/>Cache to /nvram/hotspot.json

                API->>TM: Sync callback: tunnelSet_t structure<br/>Pass endpoints, vlans, enable

                TM->>TM: Determine change scope<br/>(GRE_ENABLE_CHANGE | PRIMARY_EP_CHANGED | VLAN_CHANGE_*)

                alt GRE Enable Changed
                    TM->>Net: Create or destroy gretap0
                end

                alt Endpoints Changed
                    TM->>Net: ip link set gretap0 type gre<br/>remote <new_primary_endpoint>
                    TM->>TM: Reset keep-alive state machine
                end

                alt VLANs Changed
                    loop For each SSID VLAN change
                        TM->>Net: bridge vlan add vid <vlan_id> dev <gretap0.vlan>
                        TM->>Net: Update bridge configuration
                    end
                end

                Net-->>TM: Network changes applied
                TM-->>API: Application success

                API-->>WCF: Return SUCCESS
                WCF-->>Parodus: ACK Response (200 OK)
                Parodus-->>Cloud: Success confirmation
            end
        end
    end
Loading

Sysevent-based Coordination Flow - WAN Status Change:

sequenceDiagram
    participant PAM as PAM<br/>(WAN Manager)
    participant SysEvt as Sysevent Daemon
    participant HSFD as Hotspot Daemon<br/>(hotspotfd.c)
    participant KA as Keep-Alive Engine
    participant Net as Network Stack

    Note over PAM: WAN interface transitions<br/>from "stopped" to "started"

    PAM->>SysEvt: sysevent_set("wan-status", "started")
    SysEvt->>HSFD: Event notification<br/>(async callback or polling)

    HSFD->>SysEvt: sysevent_get("wan-status")
    SysEvt-->>HSFD: Value: "started"

    HSFD->>SysEvt: sysevent_get("current_wan_ipaddr")
    SysEvt-->>HSFD: WAN IPv4 address

    HSFD->>SysEvt: sysevent_get("wan6_ipaddr")
    SysEvt-->>HSFD: WAN IPv6 address (if available)

    alt WAN became active
        Note over HSFD: Resume tunnel operations
        HSFD->>HSFD: Validate tunnel endpoints reachable

        HSFD->>Net: Check if gretap0 exists
        alt Tunnel not created
            HSFD->>Net: Create GRE tunnel<br/>ip link add gretap0 type gretap<br/>local <wan_ip> remote <primary_endpoint>
            HSFD->>Net: ip link set gretap0 up
        end

        HSFD->>KA: Resume keep-alive monitoring<br/>(was paused during WAN down)
        KA->>Net: Send ICMP keep-alive to primary endpoint
        Net-->>KA: ICMP reply received

        KA->>KA: Update statistics:<br/>primaryIsAlive = true

    else WAN became inactive
        Note over HSFD: Pause tunnel operations
        HSFD->>KA: Suspend keep-alive monitoring<br/>(avoid false failures during WAN outage)

        HSFD->>HSFD: Mark tunnel as "WAN down" state<br/>(don't destroy tunnel, keep config)
    end

    opt WAN Failover Scenario (if enabled)
        PAM->>SysEvt: sysevent_set("current_wan_ifname", "erouter1")
        SysEvt->>HSFD: Event notification
        HSFD->>HSFD: Detect WAN interface change
        HSFD->>Net: Rebind GRE tunnel to new WAN interface<br/>ip link set gretap0 type gretap local <new_wan_ip>
        HSFD->>KA: Reset keep-alive state, resume monitoring
    end
Loading

Implementation Details

Major HAL APIs Integration

The CCSP Hotspot component does not directly integrate with traditional RDK-B HAL (Hardware Abstraction Layer) APIs. Instead, it operates at the middleware layer and interfaces with the Linux kernel networking stack through system calls and standard Linux APIs. This is because tunnel management, VLAN configuration, and ICMP processing are OS-level functions rather than hardware-specific operations that would require HAL abstraction.

Core System APIs (Linux Kernel Interface):

System API / Interface Purpose Implementation File
system("ip link add/set/del") Create, configure, and delete GRE tunnel interfaces (gretap0); set tunnel parameters like local/remote endpoints, MTU, and operational state HotspotApi.c (create_tunnel(), recreate_tunnel())
system("bridge vlan add/del") Manage VLAN tagging on bridge interfaces for hotspot SSIDs; add/remove VLAN IDs on bridge ports HotspotApi.c (configHotspotBridgeVlan())
socket(AF_INET, SOCK_RAW, IPPROTO_ICMP) Create raw sockets for sending and receiving ICMP Echo Request/Reply packets for keep-alive health monitoring hotspotfd.c (keep-alive loop)
sendto() / recvfrom() Send ICMP keep-alive packets to remote endpoints and receive replies; implements timeout-based failure detection hotspotfd.c (keep-alive monitoring functions)
shmget() / shmat() / shmdt() Create and access System V shared memory segment for keep-alive statistics; allows inter-process communication without message passing overhead hotspotfd.c (hotspotfd_setupSharedMemory(), kKeepAlive_Statistics)
nfq_open() / nfq_create_queue() / nfq_set_verdict() Interface with Linux netfilter_queue for intercepting and processing ARP/NDP packets; receive packets from iptables NFQUEUE target and issue verdicts (ACCEPT/DROP) hotspot_arpd.c (ARP/NDP daemon main loop)
ioctl(SIOCGIFADDR, SIOCGIFINDEX) Query network interface properties (IP addresses, interface index) for validation and configuration hotspot_arpd.c, hotspotfd.c (interface validation)
PSM API: PSM_Get_Record_Value2() / PSM_Set_Record_Value2() Read and write persistent configuration to the PSM database; stores tunnel endpoints, VLAN IDs, enable flags HotspotApi.c (PsmGet(), PsmSet() wrappers)
Sysevent API: sysevent_open() / sysevent_get() / sysevent_set() Subscribe to and publish system-wide events for coordination with other RDK-B components; handles WAN status, interface changes, tunnel endpoint updates hotspotfd.c, HotspotApi.c (gre_sysevent_syscfg_init(), hotspot_sysevent_enable_param())
Syscfg API: syscfg_get() / syscfg_set() Access system configuration database for general platform settings (used less frequently than PSM for hotspot-specific config) HotspotApi.c (configuration initialization)

Key Implementation Logic

The CCSP Hotspot component implements several critical algorithms and mechanisms that ensure robust tunnel management and service availability.

  • Tunnel Lifecycle State Machine: The tunnel manager maintains a finite state machine that tracks the operational status of the GRE tunnel and manages transitions between different operational modes. State transitions are triggered by configuration changes, keep-alive failures, WAN status events, and endpoint recovery.

State Machine States:

State Description Entry Conditions / Triggers
UNINITIALIZED Initial state before first configuration Component startup before configuration is loaded
DISABLED Hotspot service is administratively disabled Hotspot enable flag set to false via configuration or data model
INITIALIZING Creating GRE interface and configuring VLANs Configuration loaded with hotspot enabled; GRE tunnel and VLAN setup in progress
PRIMARY_ACTIVE Operating normally on primary endpoint Tunnel created successfully; primary endpoint responding to keep-alives
SECONDARY_ACTIVE Failed over to secondary endpoint Primary endpoint failed keep-alive threshold; secondary endpoint responding
WAN_DOWN Tunnel paused due to WAN outage WAN interface down; keep-alive monitoring suspended to avoid false failures
ERROR Unrecoverable failure state Critical errors such as tunnel creation failure, both endpoints unreachable

Implementation Details:

  • Main implementation in hotspotfd.c: main keep-alive loop, tunnel creation, state management

  • State transition handlers in hotspotfd.c: endpoint switching logic, WAN status handling

  • Helper functions: create_tunnel(), recreate_tunnel(), hotspot_start(), tunnel parameter validation

  • Keep-Alive Health Monitoring Algorithm: Implements a threshold-based failure detection mechanism with the following logic:

    1. Every keepAliveInterval seconds (default 60), send keepAliveCount (default 1) ICMP Echo Request packets to the active endpoint
    2. Wait for ICMP Echo Reply with matching sequence number and valid checksum
    3. If reply received, reset failure counter; if timeout or invalid reply, increment failure counter
    4. When failure counter reaches keepAliveThreshold (default 5), trigger endpoint failover
    5. During SECONDARY_ACTIVE state, continue monitoring primary endpoint for recovery
    6. If primary responds successfully, switch back to primary (unless secondaryMaxTime exceeded)
    7. If both endpoints fail, enter deadInterval mode with longer polling intervals to reduce overhead

    The algorithm uses raw ICMP sockets to avoid dependency on ping utilities and provides sub-second detection granularity. Sequence numbers are monotonically increasing to detect reply re-ordering or duplication.

    • Implementation in hotspotfd.c: keep-alive loop and ICMP packet handling functions
    • Checksum validation: hotspotfd_checksum() function

  • Event Processing: Hardware events (in this context, network interface events and DHCP packets) are processed through multiple pathways:

    • Sysevent Notifications: WAN status changes and interface transitions are received via sysevent get/set operations. The main event loop polls sysevent or receives async notifications.
    • DHCP Packet Processing: DHCP snooper receives packets forwarded from the WiFi driver or captured via packet sockets. Packets are parsed to extract client information (MAC, IP, lease time, Option 82) and client lists are updated atomically under mutex protection.
    • Netfilter Queue Processing: ARP/NDP packets are dequeued from netfilter queue, validated, and appropri ate replies are generated. The hotspot_arpd process runs an event loop with nfq_handle_packet() processing each intercepted packet.

    Events trigger state machine transitions, configuration updates, or telemetry publications as appropriate.

  • Error Handling Strategy: The component implements multi-layered error handling and recovery:

    • Configuration Validation: IP addresses are validated using validateIpAddress() and ipAddress_version() before applying. VLAN IDs are range-checked (1-4094). Invalid configurations are rejected with appropriate error codes.
    • Transactional Rollback: WebConfig updates are applied transactionally. If validation fails mid-transaction, jansson_rollback_tunnel_info() restores the previous configuration from /nvram/hotspot.json.
    • Endpoint Failover: Keep-alive failures trigger automatic failover to secondary endpoint. If both endpoints fail, the component logs errors, publishes telemetry events, but maintains the tunnel configuration so service resumes automatically when endpoints recover.
    • Graceful Degradation: If GRE tunnel creation fails (e.g., kernel module not loaded), the component logs the error, disables keep-alive monitoring, and publishes telemetry. It retries tunnel creation on next configuration change or WAN status change.
    • Crash Recovery: The component uses breakpad for crash dump generation. On restart after crash, PSM configuration is re-read and tunnel is recreated from persistent state.
    • Timeout Handling: ICMP keep-alive uses select() with timeout for non-blocking receive. Sysevent operations have implicit timeouts. If timeout occurs, the operation is retried with exponential backoff.
    • Resource Cleanup: Signal handlers (SIGTERM, SIGINT) ensure graceful shutdown: shared memory is deleted (shmctl(IPC_RMID)), sysevent handles are closed, GRE interfaces are deleted, and R-BUS is unregistered.

  • Logging & Debugging: The component uses the CCSP trace framework for hierarchical logging:

    • Log Categories: Initialization, configuration, tunnel management, keep-alive, DHCP snooping, errors
    • Verbosity Levels: ERROR, WARNING, INFO, DEBUG, TRACE - controlled via /etc/debug.ini and runtime DM parameters
    • State Transition Logging: Each state machine transition logs the previous state, trigger event, and new state with timestamps
    • Keep-Alive Diagnostics: Logs include ICMP sequence numbers, checksums, round-trip times, failure counts, and active endpoint
    • Telemetry Integration: Critical events are published via T2 markers: SYS_INFO_Create_GRE_Tunnel and XWIFI_Active_Tunnel (hotspotfd.c); WIFI_INFO_Hotspot_client_connected and WIFI_INFO_Hotspot_client_disconnected (cosa_hotspot_dml.c); WIFI_INFO_ClientTransitionToXfininityWifi and SYS_INFO_Hotspot_MaxClients (dhcpsnooper.c); XWIFI_VLANID_6_split, XWIFI_VLANID_10_split, XWIFI_VLANID_19_split, XWIFI_VLANID_21_split (HotspotApi.c)
    • Debug Hooks:
      • Shared memory statistics can be dumped via cat /proc/<pid>/maps and ipcs -m
      • Sysevent values can be inspected: sysevent get hotspotfd-tunnelEP
      • DHCP client list can be queried via R-BUS (future enhancement)
      • ICMP keep-alive logging verbosity is controlled at runtime via the gKeepAliveLogEnable boolean flag, toggled by setting the hotspotfd-log-enable sysevent variable (e.g., sysevent set hotspotfd-log-enable 1)

Key Configuration Files

Configuration File Purpose Override Mechanisms
PSM Database (dmsb.hotspot.* namespace) Stores persistent hotspot configuration that survives reboots:
- dmsb.hotspot.enable - Master enable/disable flag
- dmsb.hotspot.tunnel.1.PrimaryRemoteEndpoint - Primary tunnel endpoint IP
- dmsb.hotspot.tunnel.1.SecondaryRemoteEndpoint - Secondary tunnel endpoint IP
- dmsb.hotspot.gre.1.DSCPMarkPolicy - DSCP marking for QoS
- dmsb.hotspot.tunnel.1.interface.{i}.VLANID - Per-interface VLAN IDs
- dmsb.l2net.{i}.Vid - VLAN IDs for specific L2 networks (SSIDs)		 TR-181 data model SetParameterValues, WebConfig document updates, Direct PSM API calls
/nvram/hotspot.json JSON cache of the last successfully applied WebConfig document. Used for rollback on validation failures and restoration after reboot if WebConfig server is unreachable. Contains full tunnel configuration in RFC schema format. Overwritten on each successful WebConfig update via jansson_store_tunnel_info(), Restored on rollback via jansson_rollback_tunnel_info()
/tmp/hotspot.json Temporary working copy of WebConfig document during processing and validation. Deleted after successful application or rollback. Created during WebConfig processing, deleted after completion
/tmp/hotspot_wanfailover.json Temporary file storing WAN failover configuration when WAN failover feature is enabled. Contains mapping of WAN interfaces to tunnel configurations. Created/updated by hotspot_wan_failover() function when WAN interface changes
/etc/ccsp_msg.cfg R-BUS configuration file specifying D-Bus/R-BUS connection parameters, component registration paths. System configuration file, typically not overridden at runtime. Can be customized per-platform during image build.
/etc/debug.ini Debug and logging configuration for CCSP components. Controls log level, output destination (console/file/syslog), module-specific verbosity. Modified manually for debugging; may be overridden by DM parameter Device.Logging.X_RDKCENTRAL-COM_LogLevel
Sysevent Variables Runtime configuration and state variables:
- hotspotfd-primary - Primary endpoint IP (sysevent variable)
- hotspotfd-secondary - Secondary endpoint IP
- hotspotfd-keep-alive - Keep-alive interval in seconds
- hotspotfd-threshold - Failure threshold count
- hotspotfd-max-secondary - Max time on secondary in seconds
- hotspotfd-policy - Keep-alive policy (ICMP=2, NONE=0)
- hotspotfd-count - Pings per keep-alive interval
- hotspotfd-dead-interval - Polling interval when both EPs down
- hotspotfd-enable - Runtime enable flag
- hotspotfd-tunnelEP - Currently active endpoint IP (read-only status)		 Set via sysevent set <name> <value>, Can be overridden by scripts, Typically populated from PSM during initialization
/nvram/syscfg.db Syscfg persistent configuration database. Stores general system configuration, may include hotspot-related settings on some platforms. Modified via syscfg set <namespace>.<param> <value>; requires syscfg commit to persist
Shared Memory Segment Read-only statistics structure hotspotfd_statistics_s containing:
- Primary/secondary endpoint status and IPs
- Keep-alive counters (sent, received, failed)
- Active endpoint indicator
- Checksum/sequence discard counters
- Operational parameters (interval, threshold, max secondary time)		 Written exclusively by hotspot daemon, Read by monitoring tools/scripts. Not persistent (recreated on restart).
/var/log/messages or /rdklogs/logs/ System logs containing hotspot component messages via CcspTraceInfo/Error macros, mapped to syslog or RDK log files depending on platform. Log rotation policies, log level filtering via debug.ini

About

RDK-B Repository

Resources

Readme

License

Unknown, Unknown licenses found

Licenses found

Unknown
LICENSE
Unknown
COPYING

Contributing

Contributing

Security policy

Security policy
Activity
Custom properties

Stars

0 stars

Watchers

0 watching

Forks

8 forks
Report repository

Releases 16

2.3.0 Latest
Apr 23, 2026
+ 15 releases

Packages

 
 
 

Contributors

Languages