espressif/esp-idf
1
0
Fork 0
mirror of https://github.com/espressif/esp-idf.git synced 2026-04-27 19:13:21 +00:00
Code Issues Packages Projects Releases Wiki Activity
38,480 Commits 24 Branches 183 Tags
ff49f989a74e6b747fc0dd44327c5d4d2fbc84fd
Commit Graph

38480 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Zhi Wei Jian ff49f989a7 fix(ble/bluedroid): Align config, controller indent and init error paths 
- bt_target: remove/align obsolete macros with Kconfig
- device/controller: fix start_up() Secure Connections indent,
  get_ble_resolving_list_max_size return type
- controller.h: align type/interface declarations with implementation
- bte_init: remove unused/redundant code
- bte_main: return -1 on osi_init failure, null check in bte_main_hci_send

(cherry picked from commit b83647f5ea)

Co-authored-by: zhiweijian <zhiweijian@espressif.com>
 2026-03-30 16:45:03 +08:00
Zhi Wei Jian c89b01c3e5 fix(ble/bluedroid): BLE credit, reject when p_rcb NULL, timeout and leak fixes 
- l2c_int: align struct/constant types with l2c_ble/l2c_main
- l2c_api: null/state checks in L2CA_SendFixedChnlData
- l2c_ble: reject when p_rcb==NULL, add L2CAP_CMD_BLE_FLOW_CTRL_CREDIT;
  l2cble_init_direct_conn int64_t timeout and link_timeout==0 fix
- l2c_link: null/state checks and cleanup in hci_disc_comp/timeout/send_to_lower
- l2c_main: free p_msg on FCR non-Basic and COC branches; fix LE credit handling;
  process_l2cap_cmd bounds
- l2c_utils: credit/queue cleanup and null checks in l2cu_disconnect_chnl


(cherry picked from commit 16d523e9bf)

Co-authored-by: zhiweijian <zhiweijian@espressif.com>
 2026-03-30 16:45:03 +08:00
Zhi Wei Jian 5399361622 fix(ble/bluedroid): Fix double-free, exec write, bounds and HCI param checks 
- gap_ble: add length/attribute checks in gap_proc_write_req
- gatt_cl: set p_cmd->p_cmd=NULL before memset to avoid double-free;
  pending_cl_req %= GATT_CL_MAX_LCB
- gatt_sr: fix exec write zeroed_attrs and offset/len bounds, OOM cleanup
- gatt_sr_hash: null checks for p_attr->p_next, p_data+=2, len==0 in
  gatts_calculate_datebase_hash, gatts_show_local_database
- gatt_utils: explicit return NULL, indent, idx<GATT_MAX_APPS checks,
  len>GATT_MAX_ATTR_LEN, gatt_cleanup_upon_disc dealloc branch
- hciblecmds: length/handle validation in BLE ext adv/BIG sync HCI commands


(cherry picked from commit 1d31286f1a)

Co-authored-by: zhiweijian <zhiweijian@espressif.com>
 2026-03-30 16:45:03 +08:00
Zhi Wei Jian 890cbb1d54 fix(ble/bluedroid): Event length checks and timer/alarm error handling 
- btu_hcif: validate p_msg->len and hci_evt_len in process_event; pass evt_len to
  sub-handlers; fix cs_subevt num_steps_reported==0 malloc; bounds in
  command_complete and role_change_evt
- btu_task: handle osi_alarm_new/hash_map_set failure in btu_start_timer,
  btu_start_quick_timer, btu_start_timer_oneshot


(cherry picked from commit 537661fb2e)

Co-authored-by: zhiweijian <zhiweijian@espressif.com>
 2026-03-30 16:45:03 +08:00
Zhi Wei Jian 6e56940435 fix(ble/bluedroid): BLE GAP/ACL/ISO/SCO null checks, evt_len and resource handling 
- btm_acl: malloc/list_append failure handling, remove/memset order in btm_acl_removed
- btm_ble: remove incorrect sec_flags in SMP_OOB/NC/SC_OOB fall-through
- btm_ble_5_gap: btm_ble_hci_status_to_str unreachable return,
  BTM_BleSetExtendedAdvParams/BleStartExtAdv leak and bounds
- btm_ble_addr: fix indent in btm_find_dev_by_identity_addr
- btm_ble_gap: null check p_service_data, pass evt_len to btm_ble_process_adv_pkt,
  bounds in process_adv_pkt
- btm_ble_iso: align param types with declaration
- btm_ble_privacy: handle BTM_BLE_IRK_LIST_INVALID_INDEX in update_resolving_list,
  comment fixes
- btm_devctl: fix btm_vsc_complete param order/type
- btm_sco: add evt_len to btm_sco_process_num_completed_pkts for bounds check
- btm_ble_int.h/btm_int.h: add evt_len to process_adv_pkt and
  process_num_completed_pkts declarations


(cherry picked from commit 65b2cb2728)

Co-authored-by: zhiweijian <zhiweijian@espressif.com>
 2026-03-30 16:45:03 +08:00
Zhi Wei Jian 852c3b210e fix(ble/bluedroid): Add length/pointer checks and fix error paths 
- hci_hal_h4: validate packet length and pointers in hci_packet_complete,
  hdl_rx_adv_rpt, callbacks
- hci_layer: align hci_start_up error path and return; validate packet len in
  filter_incoming_event
- hci_packet_factory: ensure BT_HDR length/offset initialized in make_command_no_params
- packet_fragmenter: validate length before fragment_and_dispatch


(cherry picked from commit 778dd2ab5e)

Co-authored-by: zhiweijian <zhiweijian@espressif.com>
 2026-03-30 16:45:02 +08:00
Zhi Wei Jian 80414d0012 fix(ble/bluedroid): Fix init failure handling, storage/config and GATT leaks 
- btc_main: handle bte_main_boot_entry failure with cleanup and future_ready(FUTURE_FAIL)
- btc_ble_storage: fix key/length validation in _btc_storage_get_ble_bonding_key
- btc_config: align return/error contract with callers
- btc_dm: use safe BTA_SERVICE_ID_TO_SERVICE_MASK, fix sec_cb_handler type
- btc_gatt_util: fix btc_to_bta_response/set_read_value length and bounds
- btc_gatts: future_free on early return, max_nb_attr uint16_t, fail cleanup,
  handle bounds
- btc_ble_cte/btc_iso_ble: fix callback type/param consistency with BTA


(cherry picked from commit 6f5d9e3440)

Co-authored-by: zhiweijian <zhiweijian@espressif.com>
 2026-03-30 16:45:02 +08:00
Zhi Wei Jian f964d8dc50 fix(ble/bluedroid): Add null/range checks and fix resource handling in BTA layer 
- bta_dm_int: fix BTA_SERVICE_ID_TO_SERVICE_MASK undefined behavior (1<<id when id>=32)
- bta_gattc_main: add event bounds check before state table lookup
- bta_gattc_utils: null checks for remote_bda/p_rcb, fix list_free in clcb_dealloc,
  bta_to_btif_uuid fixes
- bta_gatts_act: fix formatting/indent in send_service_change_indication
- bta_gatts_api: validate attr_val/len, add error logs on alloc failure
- bta_sys_main: null/range checks in sm_execute, alarm/hash_map error handling in
  bta_alarm_cb


(cherry picked from commit f4cec2ac4e)

Co-authored-by: zhiweijian <zhiweijian@espressif.com>
 2026-03-30 16:45:02 +08:00
Zhi Wei Jian 4813de3e89 fix(ble/bluedroid): fix bugs in BLE 5.0 bluedroid examples 
- Fix callback function usage and parameter errors
- Fix spelling: BROCASTER to BROADCASTER in examples
- Update examples to match API changes



(cherry picked from commit 8f4dd7824e)

Co-authored-by: zhiweijian <zhiweijian@espressif.com>
 2026-03-30 16:45:02 +08:00
Zhi Wei Jian 8d7b046b81 fix(ble/bluedroid): fix ISO HCI layer and update Kconfig 
- Fix ISO HCI functions and remove unused code
- Fix spelling: BROCASTER to BROADCASTER in Kconfig and headers
- Update common config headers for consistency



(cherry picked from commit 611eef480a)

Co-authored-by: zhiweijian <zhiweijian@espressif.com>
 2026-03-30 16:45:02 +08:00
Zhi Wei Jian 22b75a0a05 fix(ble/bluedroid): fix L2CAP, SMP and HCI command issues 
- Fix active_count check in l2cu_ble_plcb_active_count
- Restore previous state if connection command fails
- Fix HCI cmd buffer size off-by-one errors
- Fix connect handle length errors
- Fix channel sounding event status handling
- Fix SMP param_len check in smp_rand_back
- Fix spelling: BROCASTER to BROADCASTER in definitions



(cherry picked from commit e118d053b3)

Co-authored-by: zhiweijian <zhiweijian@espressif.com>
 2026-03-30 16:45:02 +08:00
Zhi Wei Jian 9501b978b2 fix(ble/bluedroid): fix GAP, advertising and security issues in BTM layer 
- Fix adv state restore and reset if start/stop failed
- Fix periodic adv v2 event without PAWR feature enabled
- Fix periodic adv sync establish skip handling
- Fix resolving list max_size validation
- Fix RPA addr_type update after host-side resolution
- Fix pairing_state reset if p_dev_rec alloc failed
- Fix ISO cis_cnt limit and ext adv parameter check
- Try to delete smp keys even if not in device list



(cherry picked from commit e0ccc644a8)

Co-authored-by: zhiweijian <zhiweijian@espressif.com>
 2026-03-30 16:45:02 +08:00
Zhi Wei Jian 9025560b11 fix(ble/bluedroid): fix GATT protocol and database operation issues 
- Fix GATTC read by type length error and rsp pdu format check
- Fix p_cur_handle update in gatts_db_read_attr_value_by_type
- Fix len calculation error in calculate_database_info_size
- Replace gatt_find_the_connected_bda with p_tcb_list iteration
- Send cmd reject if cid is invalid
- Fix param_len check in smp_rand_back
- Remove duplicate uuid compare functions



(cherry picked from commit 6242e0244c)

Co-authored-by: zhiweijian <zhiweijian@espressif.com>
 2026-03-30 16:45:02 +08:00
Zhi Wei Jian 90f5b74002 fix(ble/bluedroid): fix parameter handling and deep copy in BTC layer 
- Fix CS and CTE callback deep copy errors in btc_gap_ble
- Fix incorrect parameter check in btc_gattc_prepare_write_char_descr
- Fix conn_handle length error and malloc failure handling
- Fix memcpy error and reset params if malloc failed
- Fix spelling: BROCASTER to BROADCASTER
- Delete unused ISO functions in btc_iso_ble



(cherry picked from commit 1fea299dc9)

Co-authored-by: zhiweijian <zhiweijian@espressif.com>
 2026-03-30 16:45:02 +08:00
Zhi Wei Jian 5c85f0b237 fix(ble/bluedroid): fix state management and security issues in BTA DM layer 
- Fix out-of-bounds read and peer_device cleanup in bta_dm_acl_change
- Fix adv state restore and BTM status usage in bta_dm_ble_advstop
- Fix remove security device failed due to invalid transport
- Rename tBTA_DM_API_BLE_OBSERVE to tBTA_DM_API_BLE_ADVACTION
- Remove unused btm_sec_find_bonded_dev()



(cherry picked from commit c7931bedf5)

Co-authored-by: zhiweijian <zhiweijian@espressif.com>
 2026-03-30 16:45:02 +08:00
Zhi Wei Jian 91436f5d3e fix(ble/bluedroid): fix memory safety and state issues in BTA GATT layer 
- Fix use-after-free and double-free in bta_gattc_update_include_service
- Fix heap buffer overflow in GATT database operations
- Fix GATTC cache load attr length check and NVS handle leak
- Fix parameter validation in bta_gattc_uuid_compare
- Ensure all CLCBs are cleaned up on deregister
- Remove unused bta_gattc_open_error
- Unify GATT db count/fill by declaration handle range
- Fix return status in gatts_set_attribute_value



(cherry picked from commit d4f3517da4)

Co-authored-by: zhiweijian <zhiweijian@espressif.com>
 2026-03-30 16:45:02 +08:00
Zhi Wei Jian a7c296254a fix(ble/bluedroid): fix parameter validation and cleanup in ISO and CTE APIs 
- Add parameter validation in esp_ble_iso_api and esp_ble_cte_api
- Delete unused ISO functions and incorrect parameter checks
- Add host status check in esp_ble_iso_get_callback()
- Fix CTE parameter handling when enable value is 0



(cherry picked from commit 562cd2eae5)

Co-authored-by: zhiweijian <zhiweijian@espressif.com>
 2026-03-30 16:45:02 +08:00
Zhi Wei Jian 033eba6d6d fix(ble/bluedroid): fix parameter validation and initialization in BLE APIs 
- Add parameter validation in esp_gap_ble_api, esp_gattc_api, esp_gatts_api
- Initialize API args to prevent undefined behavior
- Add host status checks in API functions
- Fix memory leak if bluedroid init failed



(cherry picked from commit d439a3fcce)

Co-authored-by: zhiweijian <zhiweijian@espressif.com>
 2026-03-30 16:45:02 +08:00
morris bc1cfe018c Merge branch 'ci/ease_restrictions_of_legacy_adc_test_v5.2' into 'release/v5.2' 
ci(legacy_adc_dac): ease ADC read restriction (v5.2)

See merge request espressif/esp-idf!47118
 2026-03-30 10:39:39 +08:00
morris 333e0baf22 Merge branch 'fix/usb_security_backport_v5.2' into 'release/v5.2' 
fix(usb): USB security fixes from esp-usb (backport v5.2)

See merge request espressif/esp-idf!47101
 2026-03-30 10:30:51 +08:00
laokaiyao 858f3602bd ci(legacy_adc_dac): ease ADC read restriction 2026-03-30 10:18:50 +08:00
Tomas Rezucha b698de8890 fix(usb): USB security fixes from esp-usb 
Combination of the following commits:
- https://github.com/espressif/esp-usb/commit/c546816048e449f11c57ca9a1e0541e592d04c07
- https://github.com/espressif/esp-usb/commit/749af3b938aeb95e1c5b4926f2e28eb2fe65f381
- https://github.com/espressif/esp-usb/commit/234ed4e9d404590011ef61826220f403fc52bb54
- https://github.com/espressif/esp-usb/commit/8f7fe7308d39ec69d3d8822691d74f43e71da331
 2026-03-27 13:56:27 +01:00
Jiang Jiang Jian 0f83b52a00 Merge branch 'ci/update_github_permission_v5.2' into 'release/v5.2' 
ci(github): update workflow permission (v5.2)

See merge request espressif/esp-idf!46932
 2026-03-26 17:54:38 +08:00
Jiang Jiang Jian 4eb56dd65f Merge branch 'bugfix/fix_ble_controller_emi_assert_v5.2' into 'release/v5.2' 
fix(ble): Fixed BLE assert in "emi.c" when low memory (5.2)

See merge request espressif/esp-idf!46911
 2026-03-26 17:54:19 +08:00
Jiang Jiang Jian b4f69efd64 Merge branch 'fix/use_apb_max_state_for_ble_events_v5.2' into 'release/v5.2' 
fix(ble): use apb max state for bt and enable should skip (v5.2)

See merge request espressif/esp-idf!46330
 2026-03-26 17:53:56 +08:00
Jiang Jiang Jian cb66025dbb Merge branch 'fix/set_config_modification_v5.2' into 'release/v5.2' 
Add some changes in get_config api(v5.2)

See merge request espressif/esp-idf!46737
 2026-03-26 11:41:40 +08:00
Rahul Tank 8f3b533370 Merge branch 'bugfix/send_conn_cancel_simul_v5.2' into 'release/v5.2' 
fix(nimble): Issue connect cancel in case of outstanding master connection (v5.2)

See merge request espressif/esp-idf!46694
 2026-03-25 13:06:28 +05:30
Shu Chen d579e442e8 Merge branch 'feat/use_ot_cmakelists_v5.2' into 'release/v5.2' 
feat(openthread): use upstream CMakeLists.txt for radio build (v5.2)

See merge request espressif/esp-idf!46596
 2026-03-25 04:16:59 +00:00
Island bb34f1d258 Merge branch 'feat/add_bluedroid_cancel_open_api_v5.2' into 'release/v5.2' 
feat(ble/bluedroid): Added cancel open function for bluedroid (5.2)

See merge request espressif/esp-idf!46898
 2026-03-25 10:33:04 +08:00
Island 2e04956868 Merge branch 'fix/fix_bluedroid_gattc_gatts_coex_example_params_error_v5.2' into 'release/v5.2' 
fix(ble/bluedroid): Fixed Incorrect use of event parameters in gattc_gatts_coex (5.2)

See merge request espressif/esp-idf!46903
 2026-03-25 10:32:39 +08:00
Roland Dobai 389ee4fcfd Merge branch 'ci/test_unlocked_espdocs' into 'release/v5.2' 
fix(docs): Updated documentation to unlock esp-docs package constraint

See merge request espressif/esp-idf!46661
 2026-03-24 13:57:19 +01:00
Wang Meng Yang a38108906b Merge branch 'bugfix/idfci-8990_v5.2' into 'release/v5.2' 
fix(bt): Fix crash due to functions not placed in IRAM(v5.2)

See merge request espressif/esp-idf!46943
 2026-03-24 19:24:22 +08:00
Rahul Tank 02f36a49a1 fix(nimble): Issue connect cancel in case of outstanding master connection 2026-03-24 12:47:03 +05:30
Jiang Jiang Jian 54462beaad Merge branch 'bugfix/fix_call_spp_start_discovert_twice_crash_v5.2' into 'release/v5.2' 
fix(bt): fix crash when calling esp_spp_start_discovery twice in succession(v5.2)

See merge request espressif/esp-idf!46670
 2026-03-24 14:41:35 +08:00
xiongweichao 94ba5b656c fix(bt): Fix crash due to functions not placed in IRAM 2026-03-24 12:03:34 +08:00
Xiao Xufeng f7291a1c9f ci(github): update workflow permission 2026-03-24 11:34:27 +08:00
Zhang Hai Peng b30b74353f fix(ble): Fixed BLE assert in "emi.c" when low memory 
(cherry picked from commit e3aac6f703)

Co-authored-by: zhanghaipeng <zhanghaipeng@espressif.com>
 2026-03-23 17:53:13 +08:00
Zhi Wei Jian 64b2e02c8f fix(bluedroid): printf EXAMPLE_CI_ID, PIPELINE_ID and CHIP_ID 
(cherry picked from commit 7bb1018948)

Co-authored-by: zhiweijian <zhiweijian@espressif.com>
 2026-03-23 17:23:37 +08:00
Zhi Wei Jian 9968fe22b8 fix(ble/bluedroid): Fixed Incorrect use of event parameters in gattc_gatts_coex 
(cherry picked from commit b218e02b49)

Co-authored-by: zhiweijian <zhiweijian@espressif.com>
 2026-03-23 17:23:37 +08:00
Zhi Wei Jian 8cf5e7e627 feat(ble/bluedroid): Added cancel open function for bluedroid 
(cherry picked from commit a3c09afd85)

Co-authored-by: zhiweijian <zhiweijian@espressif.com>
 2026-03-23 17:23:21 +08:00
Jiang Jiang Jian 4e4b0c1d5b Merge branch 'bugfix/oob_in_avrc_v5.2' into 'release/v5.2' 
backport for fix of bug bounty. (v5.2)

See merge request espressif/esp-idf!46840
 2026-03-23 14:30:17 +08:00
Jin Cheng 5cb29df971 fix(bt/bluedroid): fixed possible use of uninitialized stack variables in bt_hf_client_at.c 2026-03-20 20:04:01 +08:00
Jin Cheng c53d05ae52 fix(bt/bluedroid): fixed possible OOB read in avrc_pars_vendor_cmd 2026-03-20 20:03:58 +08:00
Jakub Kocka b38f271bde fix(docs): Added fatfsgen to the toctree 2026-03-19 10:14:08 +01:00
xiongweichao 8996c79204 fix(bt): fix crash when calling esp_spp_start_discovery twice in succession 2026-03-19 04:10:25 +00:00
tarun.kumar 75d0918da3 fix(wifi) : Add some changes in get_config api 2026-03-18 16:05:18 +05:30
Shu Chen 661f1251b3 Merge branch 'feat/ensure_txpower_index_changes_linearly_v5.2' into 'release/v5.2' 
feat(802.15.4): ensure 154 txpower index changes linearly (v5.2)

See merge request espressif/esp-idf!46144
 2026-03-18 09:53:09 +00:00
Jiang Jiang Jian 4346b856db Merge branch 'bugfix/sae_pwe_method_log_v5.2' into 'release/v5.2' 
fix(esp_wifi): Add a log to print sae_pwe method used by station for wpa3 connection

See merge request espressif/esp-idf!46698
 2026-03-18 16:24:09 +08:00
Wang Meng Yang 49d424d536 Merge branch 'feat/bt_distance_test_v5.2' into 'release/v5.2' 
feat(bt): Add APIs to read ACL real RSSI and read/write tx power of inq/iscan/page/pscan/ACL (v5.2)

See merge request espressif/esp-idf!46650
 2026-03-18 12:21:42 +08:00
Shreyas Sheth 4bdba26000 fix(esp_wifi): Add a log to print sae_pwe method used by station for wpa3 connection 
- Fix crash due to debug log for rssi while scanning
 2026-03-17 12:13:07 +05:30