Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Sync with upstream #62

Draft
wants to merge 236 commits into
base: master
Choose a base branch
from
Draft

Sync with upstream #62

wants to merge 236 commits into from

Conversation

hathach
Copy link
Member

@hathach hathach commented Dec 21, 2023
edited
Loading

sync with upstream, try to keep as close as upstream as possible while reserved as much modification as possible (comparing to upstream arduino/nina-fw@master...adafruit:nina-fw:master). File changes may look a lot (376) but most of them are new file addtion. Also I don't know why PR commit start with initial one (weird).

  • CommandHandler.cpp our setClientCert() is conflicted with upstream's setEnt(). Both is located at command = 0x40 --> use our command, skip upstream.
  • WiFISSLClient.cpp where most our changes is located, minor changes to debug message, move thing around a bit to as close as upstream. Add note for heavy heap usage ssl function, since we have issued with lacking heap here (solved by reduce max sockets)
  • sdkconfig reduce max socket so that ssl can work (otherwise we got malloc failed) and also change setting to match upstream
    • CONFIG_LWIP_MAX_SOCKETS=8 (previously 10), required for ssl socket to work !!!
    • CONFIG_ESP32_DEFAULT_CPU_FREQ_MHZ=160 (previously 80)
    • CONFIG_TCPIP_TASK_STACK_SIZE=2560 (previously 2048)
    • CONFIG_BTDM_CONTROLLER_BLE_MAX_CONN=CONFIG_BTDM_CONTROLLER_BLE_MAX_CONN_EFF=7 (previously 3)
  • Lots of small changes, but we are very close to upstream for. Hopefully that make sync up in the future easier

I only take a few examples from WiFiNINA: WiFiSSLClient, WiFiWebClient. @danh @brentru @ladyada please help to review and test this out. If you have any sophisticated that test most of nina function, please let me know (I am not too familliar with nina). Once merged, we can start another PR to upgrade IDF from v3 to v5

PS: just tested with valid-isrgrootx2.letsencrypt.org (previously fixed by #57) and got -0x2700 (MBEDTLS_ERR_X509_CERT_VERIFY_FAILED). Will try to fix and more revise later.

PS2: ci is updated to also build with debug message ON, uploaded as NINA_W102-*_debug.bin in debug matrix for testing convenience.
image

Me No Dev and others added 30 commits January 7, 2016 16:31
Initial Upload
68ff762
@facchinm
remove libraries
47836f7
@sandeepmistry
Initial port of Wire library from SAMD core, master mode only
8e51386
@sandeepmistry
Correct issues muxing I2C pins
a541a40
@sandeepmistry
Port Wire save receiver functionality
3f4a6e1
@sandeepmistry
Make Wire slave sender example functional
c43365a
@sandeepmistry
Disable I2C interrupts on Wire.end()
d290019
@sandeepmistry
Wire stability improvements
93c6f4e
@sandeepmistry
Remove Wire slave sender support for now
f48ae8f 
Since there is no start condition interrupt
@sandeepmistry
Initial Arduino lib structure
2b14fa4
@sandeepmistry
Import BearSSL 0.5 src and include files
6bae28c
@sandeepmistry
Add BearSSLClient stubs
6221177
@sandeepmistry
Inject fake (stack based entropy) in br_ssl_engine_init_rand on Arduino
2394029
@sandeepmistry
Enable BR_USE_UNIX_TIME on Arduino
11f7112
@sandeepmistry
Fill in initial BearSSLClient methods
3a101ff 
Limitations:
- available only returns 1 or 0
- connect(ip, port) not implemented
- trust anchors hard coded in file
- requires _gettimeofday implementation in sketch
@sandeepmistry
Implement BearSSLClient::connect(ip, port)
c214077
@sandeepmistry
Enable BR_ARMEL_CORTEXM_GCC on Arduino
aaebc17
@sandeepmistry
HACK: make br_sslio_read(ctx, dst, len) return buffered length if dst…
c8e656d 
… is NULL

This let’s us use it in Client::available()
@sandeepmistry
Make available() return values greater than 1
355101b 
By using br_sslio_read(ctx, NULL, len) hack
@sandeepmistry
Update trust anchors to be same as Arduino WINC1500 19.5.2 firmware i…
f9df9dc 
…mage
@sandeepmistry
Add ArduinoBearSSL.onGetTime(callback) API
28f4764 
Used to return _gettimeofday value
@sandeepmistry
Revert "HACK: make br_sslio_read(ctx, dst, len) return buffered lengt…
87f1ac8 
…h if dst is NULL"

This reverts commit 2bd615f380611fc26dd5ecdb916a91f90f9763ae.
@sandeepmistry
Add custom br_sslio_read_available and br_sslio_peek APIs
31db912
@sandeepmistry
Use custom br_sslio_read_available and br_sslio_peek in peek() and av…
ce5a273 
…ailable()
@sandeepmistry
HACK: make br_sslio_read_available and br_sslio_peek non-blocking
387b0f4
@sandeepmistry
Lower buffer size and enable full duplex mode
e3cf838
@sandeepmistry
Enable BR_LOMUL for Arduino
f2510bd
@sandeepmistry
Revert "Enable BR_USE_UNIX_TIME on Arduino"
7da2266 
This reverts commit 30b1db8865ac4cc6c5468f43ba7725378afab4e0.
@sandeepmistry
Use br_x509_minimal_set_time to inject current
3811b04
@sandeepmistry
Revert "Inject fake (stack based entropy) in br_ssl_engine_init_rand …
22494be 
…on Arduino"

This reverts commit 0d353757d75a2c83129d220bf3dc731e08a2669a.
aentinger and others added 19 commits June 18, 2021 09:17
@aentinger
Release v1.4.7
fc6bd42
@giulcioffi
Revert "Revert #50."
e4040df 
This reverts commit 6f82133.
@giulcioffi
Call peek() when there are no available data to make sure socket gets…
e303e39 
… closed when connection ends
@aentinger
Merge pull request arduino#73 from giulcioffi/fix_repeated_status_issue
77ac756 
Fix issue due to repeated status()/connected() call
@aentinger
Release v1.4.8.
63823f9
@JAndrassy
support server.accept() for WiFiNINA library
da5aca8
@iabdalkader
Update README.
90e1715 
* Nano RP2040 also requires the `no_reset` flag.
@iabdalkader
WiFiServer: Return and check error from begin().
495425a
@iabdalkader
CommandHandler: Fix ADC attenuation value.
cca05d5
@iabdalkader
CommandHandler: Add BSD-like sockets API.
e8c3163
@facchinm
Merge pull request arduino#81 from iabdalkader/ninafw_bug_fixes
bdb8b39 
Ninafw bug fixes
@facchinm
Update CHANGELOG
016e71e
@facchinm
Update README with info on combine.py
af252c2
@facchinm
Merge branch 'master' into server_accept
77d4881
@facchinm
Merge pull request arduino#79 from JAndrassy/server_accept
c84aa34 
support server.accept() for WiFiNINA library
@JAndrassy
DNS server IP getter handler
7a5695d
@iabdalkader
Merge pull request arduino#87 from JAndrassy/dns_ip
feca160 
Add a new command to return the DNS IP.
@hathach
Merge remote-tracking branch 'arduino/master' into sync-upstream
338408f 
# Conflicts:
#	CHANGELOG
#	README.md
#	arduino/cores/esp32/wiring_digital.h
#	arduino/libraries/WiFi/src/WiFi.cpp
#	arduino/libraries/WiFi/src/WiFi.h
#	arduino/libraries/WiFi/src/WiFiClient.cpp
#	combine.py
#	data/roots.pem
#	main/CommandHandler.cpp
#	main/sketch.ino.cpp
#	sdkconfig
@hathach
reduce CONFIG_LWIP_MAX_SOCKETS from 10 to 8 to save sram for ssl conn…
88dac12 
…ection
@ladyada
Copy link
Member

ladyada commented Dec 21, 2023

o_O wow OK! nice work
cc @brentru @dhalbert

@dhalbert
Copy link

@hathach I didn't look at this carefully enough. Are you waiting for us to test this? You mentioned it's not working with that Let's Encrypt site. It's using the certs submodule now, right?

@hathach
Copy link
Member Author

hathach commented Apr 26, 2024

@hathach I didn't look at this carefully enough. Are you waiting for us to test this? You mentioned it's not working with that Let's Encrypt site. It's using the certs submodule now, right?

@dhalbert yeah, I was waiting for your feedback on wip port before making more changes to address the encrypted site issue. Then got switched to other works, and kind of forgot about this issue. I will try to put it back for more tests.

@justmobilize
Copy link

@dhalbert so I just tried this on a Matrix Portal M4 and can't get and SSL connect to work (both release and debug):

New

Adafruit CircuitPython 9.0.4 on 2024-04-16; Adafruit Matrix Portal M4 with samd51j19
>>>
paste mode; Ctrl-C to cancel, Ctrl-D to finish
=== import board
=== import busio
=== import digitalio
=== import os
=== import adafruit_connection_manager
=== from adafruit_esp32spi.adafruit_esp32spi import ESP_SPIcontrol
===
=== esp32_cs = digitalio.DigitalInOut(board.ESP_CS)
=== esp32_ready = digitalio.DigitalInOut(board.ESP_BUSY)
=== esp32_reset = digitalio.DigitalInOut(board.ESP_RESET)
=== spi_bus = busio.SPI(board.SCK, MOSI=board.MOSI, MISO=board.MISO)
=== radio = ESP_SPIcontrol(spi_bus, esp32_cs, esp32_ready, esp32_reset)
=== print(f"firmware: {radio.firmware_version}")
===
=== radio.connect_AP(os.getenv("CIRCUITPY_WIFI_SSID"), os.getenv("CIRCUITPY_WIFI_PASSWORD"))
===
=== pool = adafruit_connection_manager.get_radio_socketpool(radio)
=== ssl_context = adafruit_connection_manager.get_radio_ssl_context(radio)
=== connection_manager = adafruit_connection_manager.get_connection_manager(pool)
===
=== print("Try http://wifitest.adafruit.com")
=== socket = connection_manager.get_socket("wifitest.adafruit.com", 80, "http:", is_ssl=False, ssl_context=ssl_context, timeout=60)
=== connection_manager.close_socket(socket)
===
=== print("Try https://io.adafruit.com")
=== socket = connection_manager.get_socket("io.adafruit.com", 443, "https:", is_ssl=True, ssl_context=ssl_context, timeout=60)
=== connection_manager.close_socket(socket)
===
firmware: bytearray(b'1.8.0\x00')
3
Try http://wifitest.adafruit.com
Try https://io.adafruit.com
Traceback (most recent call last):
  File "adafruit_connection_manager.py", line 271, in get_socket
  File "adafruit_connection_manager.py", line 63, in connect
  File "adafruit_esp32spi/adafruit_esp32spi_socket.py", line 77, in connect
  File "adafruit_esp32spi/adafruit_esp32spi.py", line 819, in socket_connect
  File "adafruit_esp32spi/adafruit_esp32spi.py", line 715, in socket_open
  File "adafruit_esp32spi/adafruit_esp32spi.py", line 341, in _send_command_get_response
  File "adafruit_esp32spi/adafruit_esp32spi.py", line 297, in _wait_response_cmd
  File "adafruit_esp32spi/adafruit_esp32spi.py", line 206, in _wait_for_ready
TimeoutError: ESP32 not responding

The above exception was the direct cause of the following exception:

Traceback (most recent call last):
  File "<stdin>", line 26, in <module>
  File "adafruit_connection_manager.py", line 282, in get_socket
RuntimeError: Error connecting socket: ESP32 not responding
>>>

Current

Adafruit CircuitPython 9.0.4 on 2024-04-16; Adafruit Matrix Portal M4 with samd51j19
>>>
paste mode; Ctrl-C to cancel, Ctrl-D to finish
=== import board
=== import busio
=== import digitalio
=== import os
=== import adafruit_connection_manager
=== from adafruit_esp32spi.adafruit_esp32spi import ESP_SPIcontrol
===
=== esp32_cs = digitalio.DigitalInOut(board.ESP_CS)
=== esp32_ready = digitalio.DigitalInOut(board.ESP_BUSY)
=== esp32_reset = digitalio.DigitalInOut(board.ESP_RESET)
=== spi_bus = busio.SPI(board.SCK, MOSI=board.MOSI, MISO=board.MISO)
=== radio = ESP_SPIcontrol(spi_bus, esp32_cs, esp32_ready, esp32_reset)
=== print(f"firmware: {radio.firmware_version}")
===
=== radio.connect_AP(os.getenv("CIRCUITPY_WIFI_SSID"), os.getenv("CIRCUITPY_WIFI_PASSWORD"))
===
=== pool = adafruit_connection_manager.get_radio_socketpool(radio)
=== ssl_context = adafruit_connection_manager.get_radio_ssl_context(radio)
=== connection_manager = adafruit_connection_manager.get_connection_manager(pool)
===
=== print("Try http://wifitest.adafruit.com")
=== socket = connection_manager.get_socket("wifitest.adafruit.com", 80, "http:", is_ssl=False, ssl_context=ssl_context, timeout=60)
=== connection_manager.close_socket(socket)
===
=== print("Try https://io.adafruit.com")
=== socket = connection_manager.get_socket("io.adafruit.com", 443, "https:", is_ssl=True, ssl_context=ssl_context, timeout=60)
=== connection_manager.close_socket(socket)
===
firmware: bytearray(b'1.7.7\x00')
3
Try http://wifitest.adafruit.com
Try https://io.adafruit.com
>>>

@dhalbert dhalbert mentioned this pull request May 24, 2024
Open
@3DJat 3DJat mentioned this pull request Sep 28, 2024
Open
@dhalbert dhalbert mentioned this pull request Nov 24, 2024
Open
@terop terop mentioned this pull request Jan 7, 2025
Open
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.