Commit Graph

33553 Commits

Author SHA1 Message Date
Island
2110f6b037 Merge branch 'update/ble_mesh_put_lib_in_submodule_v5.2' into 'release/v5.2'
fix(ble_mesh): Put Mesh 1.1 lib files in submodule (v5.2)

See merge request espressif/esp-idf!27549
2023-12-01 15:17:17 +08:00
mofeifei
1ef33e12a4 docs: update cn trans idf-docker-image 2023-12-01 08:09:05 +01:00
Frantisek Hrbata
720985250b feat(docker): allow to add paths into git's safe.directory
With 8959555cee7e[1] ("setup_git_directory(): add an owner check for the top..")
git added an ownership check of the git directory and refuses to
run any git commands, even parsing the config file, if the git directory
is not owned by the current user. The "fatal: detected dubious ownership in repository"
is reported.

This fixes CVE-2022-24765[2], which allows to compromise user account. On a
multi-user system or e.g. on a shared file system, one user may create a "rogue"
git repository with e.g. core.fsmonitor set to an arbitrary command. Other user
may unwillingly execute this command by running e.g. git-diff or
git-status within the "rogue" git repository, which may be in one of the parent
directories. If e.g. PS1 is set to display information about a git
repository in CWD, as suggested in Git in Bash[3], the user do not need to run
any git command to trigger this, just entering some subdirectory under
this "rogue" git repository is enough, because the git command will be
started transparently through the script used in PS1. The core.fsmonitor
can be set to arbitrary command. It's purpose is to help git to identify changed files
and speed up the scanning for changed files.

rogue
├── .git     # owned by user1
└── dir1     # owned by user2
    ├── dir2 # owned by user2
    └── .git # owned by user2

user1 sets core.fsmonitor for git repository in rogue directory
$ git config --add core.fsmonitor "bash -c 'rm -rf \$HOME'"

user2 enters dir1 and runs e.g. git diff and triggers the core.fsmonitor command.

The ownership check may cause problems when running git commands in
ESP-IDF Docker container. For example user may run the container as
root, but the mounted project may be owned by a particular user.

In this case git will refuse to execute any git command within the
"/project" directory, because it's not owned by root. To overcome this,
git allows to set safe.directories, for which the ownership check is
skipped. The security check may be completely disabled by setting
safe.directories to "*". This solution was proposed in PR 12636[4], but
it would allow make it possible to exploit this vulnerability again.

This fix allows user to specify git's safe.directory in IDF_GIT_SAFE_DIR
environmental variable, which may be set during container startup.

The IDF_GIT_SAFE_DIR has same format as PATH and multiple directories can be
specified by using a ":" separator. To entirely disable this git security check
within the container, user may set IDF_GIT_SAFE_DIR='*'. This might be
heplfull in CI.

Closes https://github.com/espressif/esp-idf/pull/12636

[1] - 8959555cee
[2] - https://nvd.nist.gov/vuln/detail/cve-2022-24765
[3] - https://git-scm.com/book/en/v2/Appendix-A%3A-Git-in-Other-Environments-Git-in-Bash
[4] - https://github.com/espressif/esp-idf/pull/12636

Signed-off-by: Frantisek Hrbata <frantisek.hrbata@espressif.com>
2023-12-01 08:09:05 +01:00
Rahul Tank
dc835a0918 Merge branch 'bugfix/add_legacy_adv_clear_vsc_v5.2' into 'release/v5.2'
fix(nimble): Add support for VSC to clear legacy adv memory (v5.2)

See merge request espressif/esp-idf!27470
2023-12-01 15:03:45 +08:00
Jiang Jiang Jian
264284e0de Merge branch 'doc/change_deepsleep_example_readme_v5.2' into 'release/v5.2'
Doc/change deepsleep example readme v5.2

See merge request espressif/esp-idf!27446
2023-12-01 14:01:07 +08:00
liuning
2482c4a025 feat(coex): apply struct for coex version 2023-12-01 06:00:34 +00:00
liuning
0d0265f6f3 feat(coex): rename coexist sections 2023-12-01 06:00:34 +00:00
Island
eba1baa63d Merge branch 'bugfix/ble_update_lib_20231124_v5.2' into 'release/v5.2'
ble(update):Update c2 lib to 79ed4e8a,Update h2 lib to 9a237426,Update c6 lib to 9a237426

See merge request espressif/esp-idf!27394
2023-12-01 13:58:27 +08:00
Xu Si Yu
4f33ef4e11 fix(openthread): add eventfd nums for spi interface 2023-12-01 11:59:48 +08:00
Shu Chen
0d55c89950 fix(openthread): remove invalid configs from ot examples 2023-12-01 11:59:38 +08:00
Liu Linyan
ba7b323c3e fix(ble_mesh): Use submodule for mesh 1.1 lib files 2023-12-01 10:00:37 +08:00
Liu Linyan
e58ed21fbf fix(ble_mesh): Remove the orginal mesh 1.1 lib files 2023-12-01 10:00:30 +08:00
Roland Dobai
026fb6e292 Merge branch 'fix/monitor_print_filter_v5.2' into 'release/v5.2'
fix(tools/monitor): fix PRINT_FILTER env variable usage (v5.2)

See merge request espressif/esp-idf!27417
2023-12-01 00:08:49 +08:00
morris
587b4b32f8 Merge branch 'bugfix/uart_custom_console_v5.2' into 'release/v5.2'
fix(console): enable to select UART1 port for console output (v5.2)

See merge request espressif/esp-idf!27506
2023-11-30 21:46:22 +08:00
Jin Cheng
d28751ee7f fix(bt/bluedroid): Set the alarm_arg to NULL after releasing to avoid double free in L2CAP layer 2023-11-30 19:58:38 +08:00
Jin Cheng
7a335421e1 fix(bt/bluedroid): Set the alarm_arg to NULL after releasing to avoid double free in BTC layer 2023-11-30 19:58:02 +08:00
Shyamal Khachane
9f65fa31e2 fix(esp_wifi): Fix NAN service discovery, datapath and timer bugs
1. Fix crash while cancelling NAN service
2. Avoid possible crash scenarios while forming datapath
3. Modify peer records structure thus fixing issues in datapath establishment
4. Fix timer out of bound issue causing "No timer handle" warning
5. Fix miscellaneous service discovery and datapath issues
2023-11-30 16:34:19 +05:30
Mu Hai Dong
dd295049a9 fix(wifi): free beacon eb when softap destroy 2023-11-30 16:28:37 +05:30
Shu Chen
b807b6ebf3 Merge branch 'fix/ieee802154_sleep_config_v5.2' into 'release/v5.2'
fix(ieee802154): fix ieeee802154 sleep enable configuration dependency issue (backport v5.2)

See merge request espressif/esp-idf!27467
2023-11-30 16:53:12 +08:00
Harshit Malpani
e4ecfc2133
fix(esp_http_client): Fix esp_http_client async mode
Closes https://github.com/espressif/esp-idf/issues/12358
2023-11-30 12:04:31 +05:30
Rahul Tank
99a923fa0f fix(nimble): Add support for VSC to clear legacy adv memory
Legacy adv does not have an API for clear adv memory in controller.
 Added VSC for same.
2023-11-30 09:10:06 +05:30
Rahul Tank
40d48108b1 Merge branch 'bugfix/cts_handle_invalid_year_val_v5.2' into 'release/v5.2'
fix(nimble): Handled invalid write on year value in Current Time Service (v5.2)

See merge request espressif/esp-idf!27461
2023-11-30 11:38:36 +08:00
Song Ruo Jing
55ed548cc6 fix(console): enable to select UART1 port for console output
This feature was only enabled for esp32, esp32s2, esp32s3 previously.
Now, enabling this feature for all targets.
2023-11-30 11:26:09 +08:00
zhanghaipeng
3d2daa08cc fix(bt/bluedroid): Fix bluedroid menuconfig 2023-11-30 10:42:04 +08:00
zhanghaipeng
804f939ed0 docs(bt/bluedroid): Update ble example document 2023-11-30 10:41:48 +08:00
Adam Múdry
d465ed93f6 fix: esp_vfs_fat_sdcard_format workbuf memory leak 2023-11-29 16:16:58 +01:00
Aditya Patwardhan
c90d14c979 Merge branch 'fix/cleanup_deleted_menuconfig_option_entries_v5.2' into 'release/v5.2'
fix(mbedtls): Fix menuconfig option entries (v5.2)

See merge request espressif/esp-idf!27463
2023-11-29 21:20:55 +08:00
luoxu
afab071f51 bugfix(ble_mesh): Supplementary configuration options that should be enabled. 2023-11-29 19:19:18 +08:00
Liu Linyan
d680a3949b fix(ble_mesh): Support using random adv interval for mesh packets 2023-11-29 19:19:18 +08:00
Marius Vikhammer
faf6bc933e ci(system): fixed and enabled misc system build tests 2023-11-29 16:59:15 +08:00
Martin Vychodil
6fcfe379bc Merge branch 'feature/expose_unload_partitions_v5.2' into 'release/v5.2'
refactor(esp_partition): Expose function for unloading partitions (v5.2)

See merge request espressif/esp-idf!27425
2023-11-29 16:34:26 +08:00
Martin Vychodil
e089cb3d4d Merge branch 'fix/fatfs_formatting_wrong_volume_v5.2' into 'release/v5.2'
Fix: FATFS formatting wrong partition (v5.2)

See merge request espressif/esp-idf!27372
2023-11-29 16:32:24 +08:00
xiaqilin
2555d5cb12 fix(ieee802154): fix ieeee802154 sleep enable configuration dependency issue 2023-11-29 13:44:59 +08:00
Aditya Patwardhan
c1779ff8b7
fix(mbedtls): Removed redundant menuconfig entry 2023-11-29 09:50:12 +05:30
Roshan Bangar
1437d00487 fix(nimble): Handled invalid write on year value in Current Time Service 2023-11-29 09:49:53 +05:30
Jiang Jiang Jian
1a9f3b22f4 Merge branch 'bugfix/fix_wifi_deinit_s_wifi_modem_sleep_lock_v5.2' into 'release/v5.2'
fix(wifi): fix wifi deinit s_wifi_modem_sleep_lock

See merge request espressif/esp-idf!27451
2023-11-29 12:15:59 +08:00
Erhan Kurubas
567bc462f0 feat(coredump): save isr context to coredump elf file 2023-11-28 18:19:03 +01:00
liuning
a9b1a27c9a fix(wifi): fix wifi deinit s_wifi_modem_sleep_lock 2023-11-28 20:57:02 +08:00
Lou Tianhao
09a3d068d9 docs(pm):add uart wakeup description when pd top 2023-11-28 19:39:53 +08:00
Lou Tianhao
70e83a5871 docs(pm):add gpio wakeup description when pd top 2023-11-28 19:39:53 +08:00
Lou Tianhao
e849809f4b docs(pm):change_deepsleep_example_readme 2023-11-28 19:39:53 +08:00
morris
bc38841c11 Merge branch 'bugfix/i80_lcd_tx_param_check_enhancement_v5.2' into 'release/v5.2'
fix(i80_lcd): enhance the check of a valid data phase (v5.2)

See merge request espressif/esp-idf!27427
2023-11-28 18:33:19 +08:00
Rahul Tank
f40318c6c7 Merge branch 'bugfix/fix_duplicate_exception_vsc_5.2' into 'release/v5.2'
fix(nimble): Fix the parameters in duplicate exception list vsc command(v5.2)

See merge request espressif/esp-idf!27405
2023-11-28 15:49:51 +08:00
Rahul Tank
4122499997 Merge branch 'feature/current_time_service_v5.2' into 'release/v5.2'
feat(nimble): Added Example support for Current Time Service (v5.2)

See merge request espressif/esp-idf!26975
2023-11-28 14:00:21 +08:00
Mahavir Jain
ef5acffcbb Merge branch 'fix/memory_leak_in_nvs_flash_v5.2' into 'release/v5.2'
fix(nvs_flash): Fix the memory leak in the nvs_flash test app (v5.2)

See merge request espressif/esp-idf!27422
2023-11-28 13:26:00 +08:00
morris
1f79b5045d fix(i80_lcd): enhance the check of a valid data phase
in case the user passes a (uint8_t){0x00} parameter with the perameter size
set to zero
2023-11-28 09:57:02 +08:00
Adam Múdry
74c0234f72 refactor(esp_partition): Expose function for unloading partitions
Closes https://github.com/espressif/esp-idf/issues/12625
2023-11-27 19:49:59 +01:00
harshal.patil
330f3edf11
fix(nvs_flash): Fix the memory leak in the nvs_flash test app
The leak is now reduced by allocating the AES interrupt and
loading the partitions in the test setup instead of in the tests itself.
2023-11-27 17:25:14 +05:30
Shang Zhou
63ea519cbe docs: Update CN translation for api-guides/tools/idf-monitor.rst 2023-11-27 09:32:41 +01:00
Peter Dragun
c71ee4f78a fix(tools/monitor): fix PRINT_FILTER env variable usage 2023-11-27 09:32:41 +01:00