documentation on the CIP protocol

Question

documentation on the CIP protocol

kimdiego2098 opened this issue a month ago · comments

Diego2098 commented a month ago

Hello, can you provide some documentation on the CIP protocol? I need to understand the message format and try to migrate it to other programming languages. Thank you very much

Benjamin Didur · Answer 1 · Fri Aug 09 2024 22:42:36 GMT+0800 (China Standard Time)

Are you asking this repository to teach you CIP?

dmroeder · Answer 2 · Sun Aug 11 2024 06:07:35 GMT+0800 (China Standard Time)

You have to be an ODVA member in order to get the protocol documentation. Otherwise, you have to do what many of us did and get friendly with Wireshark

Kyle Hayes · Answer 3 · Sun Aug 11 2024 22:22:46 GMT+0800 (China Standard Time)

Note that there are already many libraries out there that "talk" CIP. You can find Go, Rust, C, C++, Python (obviously), Java and more just searching on GitHub.

One large challenge is that the CIP protocol documented by the OVDA is NOT sufficient to talk to any modern CIP-based PLC. Those PLCs all use vendor-specific extensions to CIP and usually those are not documented or at least not fully documented. The CIP documentation is a useful base, but it does not really tell you enough to be usable. It is like learning the grammar for a language but not how people actually speak it.

And then there are all the weird little quirks like the treatment of BOOL arrays (stop threatening me with that knife, Dustin!). Rockwell does things one way, Omron does things another. This is why BOOL arrays in a Rockwell PLC end up being multiples of 32 bits long. But not in Omron PLCs.

Or strings. The usual STRING type used in a Rockwell Logix-class PLC is NOT the CIP string type. It is actually a struct pre-defined in the system. So all the type info you get is pretty much useless and you have to match on the specific structure ID. Yay, Rockwell. If Rockwell ever accidentally (or on purpose) changes the struct ID, almost all the libraries out there will break.

Just because that is not enough, you also need to determine alignment of fields within structures and arrays. Just Omron does it differently between the CJ and NX/NJ models (the first does alignment on 2-byte boundaries and the second does alignment based on the atomic type size more like C does).

As @dmroeder, said, get very friendly with Wireshark. And work through a lot of examples.

Diego2098 · Answer 4 · Mon Aug 12 2024 09:13:22 GMT+0800 (China Standard Time)

Thanks , So I have to gradually improve it through Wireshark , Headache!

And I will close this issue

dmroeder · Answer 5 · Mon Aug 12 2024 09:17:45 GMT+0800 (China Standard Time)

Thanks , So I have to gradually improve it through Wireshark , Headache!

And I will close this issue

Tell me about it! I've spent a silly amount of time with Wireshark. Though none of this has been all that intuitive to me.

Diego2098 · Answer 6 · Mon Aug 12 2024 09:20:35 GMT+0800 (China Standard Time)

What's even sadder is that I don't have the ControlLogix PLC

dmroeder · Answer 7 · Mon Aug 12 2024 09:25:28 GMT+0800 (China Standard Time)

What's even sadder is that I don't have the ControlLogix PLC

CompactLogix is enough if you can get your hands on one. A Micro800 will get you the majority of the way, though there are some notable differences.

Fernando B · Answer 8 · Mon Aug 12 2024 09:34:34 GMT+0800 (China Standard Time)

I have not used an emulator for sometime but I use softlogix for all my development projects. I want to say emulator works on localhost so it should still work for wireshark. As others say try not to reinvent the wheel is a lot already out there.