wolfSSL
diff --git a/‎src/port/rp2350_cyw43439/.gitignore‎
Lines changed: 11 additions & 0 deletions b/‎src/port/rp2350_cyw43439/.gitignore‎
Lines changed: 11 additions & 0 deletions
diff --git a/‎src/port/rp2350_cyw43439/Makefile‎
Lines changed: 117 additions & 0 deletions b/‎src/port/rp2350_cyw43439/Makefile‎
Lines changed: 117 additions & 0 deletions
diff --git a/‎src/port/rp2350_cyw43439/README.md‎
Lines changed: 105 additions & 0 deletions b/‎src/port/rp2350_cyw43439/README.md‎
Lines changed: 105 additions & 0 deletions
diff --git a/‎src/port/rp2350_cyw43439/board.h‎
Lines changed: 56 additions & 0 deletions b/‎src/port/rp2350_cyw43439/board.h‎
Lines changed: 56 additions & 0 deletions
diff --git a/‎src/port/rp2350_cyw43439/config.h‎
Lines changed: 78 additions & 0 deletions b/‎src/port/rp2350_cyw43439/config.h‎
Lines changed: 78 additions & 0 deletions
@@ -0,0 +1,11 @@
+# CYW43439 firmware blob - third-party license (Broadcom/Infineon +
+# George Robotics/Raspberry Pi, RP-silicon only). NOT distributed with
+# wolfIP. Obtain from the pico-sdk cyw43-driver firmware/ directory and
+# place the vendor headers + cyw43_fw_blob.c here for local builds.
+fw_local/
+
+# Build artifacts
+*.o
+*.elf
+*.bin
+*.uf2
@@ -0,0 +1,117 @@
+# Pi Pico 2 W (RP2350 + CYW43439) port Makefile
+#
+# Build: make CORE=m33      (default - Cortex-M33)
+#        make CORE=hazard3  (Hazard3 RISC-V variant)
+#
+# Optional:
+#   WIFI_SSID, WIFI_PSK : compile-time Wi-Fi credentials
+#                         (override config.h defaults)
+#
+# Output: app.elf + app.uf2 (UF2 via picotool, if available on PATH).
+#         picotool load app.uf2  flashes via BOOTSEL.
+
+CORE ?= m33
+
+# The CORE switch forces the toolchain unconditionally. To use a
+# different cross compiler (e.g. a vendored toolchain), pass it on the
+# command line: `make CORE=m33 CC=/opt/arm/bin/arm-none-eabi-gcc`.
+ifeq ($(CORE),m33)
+CROSS_PREFIX ?= arm-none-eabi-
+ARCH_CFLAGS  := -mcpu=cortex-m33+nodsp -mthumb -mfloat-abi=soft
+ARCH_LDFLAGS := -T target_m33.ld
+STARTUP_SRC  := startup_m33.c
+else ifeq ($(CORE),hazard3)
+# The Debian/Ubuntu cross toolchain ships as riscv64-unknown-elf-* and
+# selects rv32 via -march/-mabi. Override CROSS_PREFIX if you have a
+# native riscv32-unknown-elf-* build (e.g. from SiFive or upstream).
+CROSS_PREFIX ?= riscv64-unknown-elf-
+ARCH_CFLAGS  := -march=rv32imac -mabi=ilp32
+ARCH_LDFLAGS := -T target_hazard3.ld
+STARTUP_SRC  := startup_hazard3.c
+else
+$(error CORE must be m33 or hazard3 (got '$(CORE)'))
+endif
+
+CC      := $(CROSS_PREFIX)gcc
+OBJCOPY := $(CROSS_PREFIX)objcopy
+SIZE    := $(CROSS_PREFIX)size
+
+ROOT := ../../..
+
+CFLAGS := $(ARCH_CFLAGS) -Os -ffreestanding
+CFLAGS += -fdata-sections -ffunction-sections
+CFLAGS += -g -ggdb -Wall -Wextra -Werror
+CFLAGS += -I. -I$(ROOT) -I$(ROOT)/src
+CFLAGS += $(EXTRA_CFLAGS)
+
+ifdef WIFI_SSID
+CFLAGS += -DWOLFIP_WIFI_SSID="\"$(WIFI_SSID)\""
+endif
+ifdef WIFI_PSK
+CFLAGS += -DWOLFIP_WIFI_PSK="\"$(WIFI_PSK)\""
+endif
+
+LDFLAGS := -nostdlib $(ARCH_LDFLAGS) -Wl,-gc-sections
+
+APP_SRCS := $(STARTUP_SRC) syscalls.c main.c rp2350_uart.c \
+            rp2350_clocks.c rp2350_spi.c rp2350_pio.c \
+            cyw43439_driver.c cyw43439_wifi.c
+
+# CYW43439 firmware blob (NOT in the repo - third-party license, RP
+# silicon only). When fw_local/cyw43_fw_blob.c is present it is compiled
+# in and the firmware download runs; otherwise the weak accessors return
+# NULL and bring-up stops cleanly after the backplane/ALP stage.
+ifneq ($(wildcard fw_local/cyw43_fw_blob.c),)
+APP_SRCS += fw_local/cyw43_fw_blob.c
+CFLAGS   += -Ifw_local
+endif
+APP_OBJS := $(APP_SRCS:.c=.o)
+
+WOLFIP_SRC := $(ROOT)/src/wolfip.c
+WOLFIP_OBJ := wolfip.o
+
+ALL_OBJS := $(APP_OBJS) $(WOLFIP_OBJ)
+
+all: app.uf2
+	@echo "Built RP2350+CYW43439 wolfIP port (CORE=$(CORE))"
+	@$(SIZE) app.elf
+
+app.elf: $(ALL_OBJS) target_$(CORE).ld
+	$(CC) $(CFLAGS) $(ALL_OBJS) $(LDFLAGS) \
+	    -Wl,--start-group -lc -lm -lgcc -lnosys -Wl,--end-group -o $@
+
+app.bin: app.elf
+	$(OBJCOPY) -O binary $< $@
+
+# Convert ELF to UF2. Prefers picotool when available; falls back to
+# the bundled tools/elf2uf2.py (~100 lines of Python, no deps) when
+# not. Both produce the same UF2 a BOOTSEL drive will accept.
+ifeq ($(CORE),m33)
+UF2_FAMILY := arm
+else
+UF2_FAMILY := riscv
+endif
+
+app.uf2: app.elf
+	@if command -v picotool >/dev/null 2>&1; then \
+	    picotool uf2 convert $< $@ ; \
+	else \
+	    python3 tools/elf2uf2.py $< $@ --family $(UF2_FAMILY) ; \
+	fi
+
+%.o: %.c
+	$(CC) $(CFLAGS) -c $< -o $@
+
+$(WOLFIP_OBJ): $(WOLFIP_SRC)
+	$(CC) $(CFLAGS) -Wno-unused-variable -Wno-unused-function \
+	    -Wno-unused-parameter -Wno-sign-compare \
+	    -Wno-missing-field-initializers -c $< -o $@
+
+flash: app.uf2
+	picotool load -f app.uf2
+
+clean:
+	rm -f *.o fw_local/*.o app.elf app.bin app.uf2 \
+	    selftest.elf selftest.bin selftest.uf2
+
+.PHONY: all clean flash
@@ -0,0 +1,105 @@
+# wolfIP port: Pi Pico 2 W (RP2350 + CYW43439)
+
+Bare-metal wolfIP port for the [Raspberry Pi Pico 2 W](https://www.raspberrypi.com/products/raspberry-pi-pico-2/) board (RP2350 dual-arch SoC + Infineon CYW43439 Wi-Fi radio).
+
+## Highlights
+
+- **Dual-arch build**. `make CORE=m33` for Cortex-M33, `make CORE=hazard3` for Hazard3 RISC-V. Same wolfIP + supplicant source, different toolchain and entry stub.
+- **Firmware-loader-only CYW43439 driver**. Clean-room gSPI transport + SDPCM/CDC/BDC ioctl shim. No `cyw43-driver`, no WHD source reuse. The Infineon firmware blob is loaded into the radio's RAM at boot and is the only binary artifact carried over.
+- **wolfIP supplicant runs in host RAM**. All of WPA2-PSK 4-way, EAP-TLS (optional), WPA3-SAE (optional, software) is the in-tree `src/supplicant/`. The CYW43439 firmware does 802.11 mgmt (scan, auth-open, assoc) and never sees the PSK.
+
+## Status
+
+| Milestone                         | State |
+|-----------------------------------|-------|
+| Scaffolding (linker, startup)     | done  |
+| Boot + clocks + UART console      | done, hardware-proven |
+| gSPI/PIO transport + 32-bit mode  | done, hardware-proven |
+| Backplane + ALP + firmware load   | done, hardware-proven (firmware RUNNING) |
+| SDPCM/CDC ioctl control plane     | done, hardware-proven (WLC_UP + STA MAC read) |
+| Join + event-driven assoc state   | done, hardware-proven (`cyw43_connect` associates to a real AP; `cyw43_poll` decodes `WLC_E_LINK` up/down) |
+| BDC EAPOL/802.3 TX-RX + `set_key`  | **written, not yet validated on silicon** (needs the 4-way to drive them) |
+| `wolfIP_wifi_ops` impl            | done (scan still a stub) |
+| Host supplicant 4-way integration | written behind `WOLFIP_WITH_SUPPLICANT` (needs cross-built wolfSSL) |
+| WPA2-PSK 4-way + UDP echo on real AP | pending wolfSSL-linked build |
+
+The control plane (boot -> firmware -> ioctl) and the **join + event path** are proven on a real Pico 2 W: the radio associates to a WPA2 AP and `cyw43_poll` reports `assoc: UP`/`down` from the decoded events. Still unexercised: the BDC EAPOL data path and `cyw43_set_key`, which only run once the 4-way handshake drives them - that needs the wolfIP supplicant linked in (`WOLFIP_WITH_SUPPLICANT`). See "Open items" below.
+
+Hardware validation runs against a real AP on the desk - hwsim does not validate this port (see `tools/hostapd/README.md` for the FullMAC limitation).
+
+## Build
+
+Requires:
+
+- `arm-none-eabi-gcc` (M33 path) and/or `riscv32-unknown-elf-gcc` (Hazard3 path)
+- `picotool` on PATH (for UF2 conversion + flash)
+- A wolfSSL install with `WOLFSSL_PUBLIC_MP` if you enable SAE
+
+```sh
+# Cortex-M33 build (default)
+make
+
+# Hazard3 RISC-V build
+make CORE=hazard3
+
+# Override the SSID / PSK baked into the binary
+make WIFI_SSID="my-ap" WIFI_PSK="my-passphrase"
+```
+
+## Flash and run
+
+```sh
+# Hold BOOTSEL on the Pico 2 W, plug USB, then:
+make flash
+# or copy app.uf2 to the RPI-RP2 mass-storage drive.
+
+# Watch the UART console (GP0/GP1, 115200 8N1):
+stty -F /dev/ttyACM0 115200 raw -echo
+cat /dev/ttyACM0
+```
+
+A Picoprobe (CMSIS-DAP) attached over SWD gives you live GDB:
+
+```sh
+openocd -f interface/cmsis-dap.cfg -c "transport select swd" \
+        -f target/rp2350.cfg -c "init"
+gdb-multiarch app.elf -ex 'target remote localhost:3333'
+```
+
+## Pin map
+
+| Function          | RP2350 GPIO | Notes                                          |
+|-------------------|------------:|------------------------------------------------|
+| UART0 TX          | GP0         | console out                                    |
+| UART0 RX          | GP1         | console in                                     |
+| CYW43 WL_REG_ON   | GP23        | active high; pulses radio power                |
+| CYW43 SPI DATA    | GP24        | shared MOSI/MISO via 470 ohm series resistor; PIO-driven; also the chip's host-IRQ line when idle |
+| CYW43 SPI CS      | GP25        | active low; CPU-driven                          |
+| CYW43 SPI CLK     | GP29        | PIO side-set clock                             |
+
+## Memory budget
+
+| Region   | Size | Notes                                                   |
+|----------|------|---------------------------------------------------------|
+| Flash    | 4 MB | XIP from QSPI. ~225 KB consumed by CYW43439 blob.       |
+| SRAM     | 520 KB | Generous; wolfIP + supplicant + 8 TCP + driver < 200 KB|
+| Stack    | 16 KB | Reserved at top of SRAM by `target_*.ld`.               |
+
+## Known constraints
+
+- The CYW43439 gSPI bus is single-data-line and shares MOSI/MISO via a 470 ohm series resistor on the Pico 2 W carrier. The clean-room driver in `cyw43439_driver.c` accounts for this (PIO transport in `rp2350_pio.c`).
+- The DATA line (GP24) is owned by the PIO state machine, so the chip's host-IRQ-when-idle signal cannot be read via SIO. `cyw43_poll()` therefore polls `SPI_STATUS` (F2-packet-available) rather than a GPIO; IRQ-driven RX is deferred (RP2350 erratum E9 also makes edge-IRQ GPIO modes risky).
+- Bring-up logging is gated by `DEBUG_BRINGUP` (default 1 in `cyw43439_driver.h`). Build with `EXTRA_CFLAGS=-DDEBUG_BRINGUP=0` to compile out the gSPI/firmware/ioctl progress prints for a production image.
+- The supplicant defaults to WPA2-PSK with `mfp_capable=1`. For WPA3-SAE targets, build with `WOLFIP_ENABLE_SAE=1 WOLFSSL_PUBLIC_MP` and set `cfg.auth_mode=WOLFIP_AUTH_SAE`.
+
+## Open items / not yet validated
+
+Validated on real silicon (a WPA2 AP on the desk): the **join** (`cyw43_connect` -> rc=0, radio associates) and the **event path** (`cyw43_poll` -> `cyw43_handle_event` decodes `WLC_E_LINK` and reports `assoc: UP`/`down`). With no host 4-way linked the link flaps UP/down as the AP times out the missing EAPOL - which also exercises the link-down decode. Note: `cyw43_rsn_ie_wpa2_psk[]` MUST match the supplicant's `own_rsn_ie` (WPA2-PSK/CCMP, MFP off); if MFP is enabled the IE has to be plumbed from the supplicant instead of hard-coded.
+
+Still to validate, in order:
+
+1. **BDC TX/RX**: EAPOL (`cyw43_tx_eapol`) and 802.3 (`cyw43_tx_eth`) framing, and the inbound `data_offset` handling in `cyw43_poll` (only exercised once EAPOL flows).
+2. **Key install** (`cyw43_set_key`): the 160-byte `wl_wsec_key` layout (CCMP algo, primary-key flag, pairwise vs group MAC).
+3. **End-to-end**: link the host supplicant (`WOLFIP_WITH_SUPPLICANT` + cross-built wolfSSL), reach `AUTHENTICATED` (stops the flap), then DHCP + UDP echo on port 7.
+
+Other gaps: `op_scan` is a stub (join-by-known-SSID only); the `supp_now_ms()` time source in `main.c` is a placeholder counter and needs a real RP2350 timer; the PMKSA-cache reuse path (PSK re-init) is exercised only by construction, not by a dedicated unit test; SAE-on-hardware stays software-validated this pass.
@@ -0,0 +1,56 @@
+/* board.h - Pi Pico 2 W (RP2350 + CYW43439) board definitions
+ *
+ * Copyright (C) 2026 wolfSSL Inc.
+ *
+ * This file is part of wolfIP TCP/IP stack.
+ *
+ * wolfIP is free software; you can redistribute it and/or modify
+ * it under the terms of the GNU General Public License as published by
+ * the Free Software Foundation; either version 3 of the License, or
+ * (at your option) any later version.
+ */
+
+#ifndef WOLFIP_RP2350_CYW43439_BOARD_H
+#define WOLFIP_RP2350_CYW43439_BOARD_H
+
+/* RP2350 base addresses (RP2350 datasheet 2.2). */
+#define RP2350_ROM_BASE         0x00000000UL
+#define RP2350_XIP_BASE         0x10000000UL
+#define RP2350_SRAM_BASE        0x20000000UL
+#define RP2350_SRAM_SIZE        0x00082000UL    /* 520 KB                 */
+#define RP2350_APB_BASE         0x40000000UL
+#define RP2350_AHB_BASE         0x50000000UL
+
+/* SIO (single-cycle IO) - GPIO mailbox/atomic regs for both cores. */
+#define RP2350_SIO_BASE         0xD0000000UL
+
+/* Pi Pico W and Pico 2 W carrier: the CYW43439 is attached to RP2350 via
+ * a constrained gSPI bus (1-bit data line, shared MOSI/MISO through a
+ * 470 ohm series resistor). Pin assignment is fixed on the Pico 2 W
+ * carrier - see datasheet "Raspberry Pi Pico 2 W" Schematic v0.4.
+ *
+ *   GP23 = WL_REG_ON       (power enable; active high)
+ *   GP24 = SPI data         (shared MOSI/MISO via 470 R; doubles as the
+ *                            host-wake IRQ from CYW43 when SPI is idle)
+ *   GP25 = SPI CS           (active low)
+ *   GP29 = SPI clock
+ *
+ * The clean-room driver polls GP24 for data-ready; an IRQ path can be
+ * added once the polled bringup proves stable (RP2350 erratum E9: edge
+ * IRQ on some pin modes can deadlock the core, prefer poll first).
+ * These match the pico-sdk cyw43 pin config (WL_CLOCK=29, WL_DATA=24,
+ * WL_CS=25, WL_REG_ON=23, WL_HOST_WAKE=24).
+ */
+#define CYW43_PIN_WL_REG_ON     23
+#define CYW43_PIN_SPI_DATA      24
+#define CYW43_PIN_SPI_CS        25
+#define CYW43_PIN_SPI_CLK       29
+#define CYW43_PIN_HOST_IRQ      24
+
+/* UART0 for stdout console. Pi Pico 2 W exposes UART0 on GP0/GP1 by
+ * default. The pico-sdk uses these and so do we. */
+#define UART0_PIN_TX            0
+#define UART0_PIN_RX            1
+#define UART0_BAUD              115200
+
+#endif /* WOLFIP_RP2350_CYW43439_BOARD_H */
@@ -0,0 +1,78 @@
+/* config.h - wolfIP configuration for Pi Pico 2 W (RP2350 + CYW43439)
+ *
+ * Copyright (C) 2026 wolfSSL Inc.
+ *
+ * This file is part of wolfIP TCP/IP stack.
+ *
+ * wolfIP is free software; you can redistribute it and/or modify
+ * it under the terms of the GNU General Public License as published by
+ * the Free Software Foundation; either version 3 of the License, or
+ * (at your option) any later version.
+ */
+
+#ifndef WOLF_CONFIG_H
+#define WOLF_CONFIG_H
+
+#ifndef CONFIG_IPFILTER
+#define CONFIG_IPFILTER         0
+#endif
+
+/* 802.11 air MTU is 2304 (CCMP/QoS overhead); after SDPCM + WHD
+ * encapsulation the host sees standard 1500-byte Ethernet frames. Keep
+ * LINK_MTU at 1536 to leave room for VLAN tags. */
+#define ETHERNET
+#define LINK_MTU                1536
+
+/* RP2350 has 520 KB SRAM; we can afford generous socket budgets.
+ *   8 TCP * ~9 KB = ~72 KB
+ *   3 UDP * ~3 KB = ~9 KB  (DHCP + DNS + app)
+ *   1 ICMP        = ~3 KB
+ *   wolfIP core + supplicant + driver = ~80 KB
+ *   CYW43439 firmware blob (XIP, not SRAM) = ~225 KB in flash
+ * Total static SRAM ~170 KB, leaves >300 KB for stack + heap (libc).
+ */
+#define MAX_TCPSOCKETS          8
+#define MAX_UDPSOCKETS          3
+#define MAX_ICMPSOCKETS         1
+#define RXBUF_SIZE              LINK_MTU
+#define TXBUF_SIZE              LINK_MTU
+
+#define MAX_NEIGHBORS           8
+#define WOLFIP_ARP_PENDING_MAX  4
+
+#ifndef WOLFIP_MAX_INTERFACES
+#define WOLFIP_MAX_INTERFACES   1
+#endif
+
+#ifndef WOLFIP_ENABLE_FORWARDING
+#define WOLFIP_ENABLE_FORWARDING 0
+#endif
+
+#ifndef WOLFIP_ENABLE_LOOPBACK
+#define WOLFIP_ENABLE_LOOPBACK  0
+#endif
+
+#ifndef WOLFIP_ENABLE_DHCP
+#define WOLFIP_ENABLE_DHCP      1
+#endif
+
+/* Default Wi-Fi credentials baked into the firmware. Override at build
+ * time via -DWOLFIP_WIFI_SSID=... -DWOLFIP_WIFI_PSK=... or edit. */
+#ifndef WOLFIP_WIFI_SSID
+#define WOLFIP_WIFI_SSID        "wolfIP-test"
+#endif
+#ifndef WOLFIP_WIFI_PSK
+#define WOLFIP_WIFI_PSK         "ThisIsAPassword!"
+#endif
+
+/* Static IP fallback when DHCP is disabled. */
+#define WOLFIP_IP               "192.168.12.11"
+#define WOLFIP_NETMASK          "255.255.255.0"
+#define WOLFIP_GW               "192.168.12.1"
+#define WOLFIP_STATIC_DNS_IP    "8.8.8.8"
+
+#if WOLFIP_ENABLE_DHCP
+#define DHCP
+#endif
+
+#endif /* WOLF_CONFIG_H */