Mirrors/esp-idf
1
0
Fork 0
mirror of https://github.com/espressif/esp-idf.git synced 2026-05-30 17:46:32 +03:00
Code Issues Packages Projects Releases Wiki Activity
49,603 Commits 23 Branches 184 Tags
70da170f248ae617297b4e2835254f33bb0238ed
Commit Graph

24 Commits

Author SHA1 Message Date
Ashish Sharma
7093db9f10 fix(esp_http_client): fix incorrect digest calculation for SHA256 auth digest 
According to RFC 7616, nonce-prime and cnonce-prime is used for SHA-256-sess only and not for SHA-256.
This commit updates the check and uses nonce only for "-sess" algorithms.

Regression from 66995965e7
 2026-01-06 17:16:11 +08:00
Ashish Sharma
fdd5ef561d feat: migrates esp_http_client and esp_http_server to PSA APIs 2025-12-30 09:31:49 +05:30
Mahavir Jain
66995965e7 fix(esp_http_client): prevent out-of-bounds read in Digest auth 
Fixed vulnerability where malicious HTTP servers could trigger OOB reads
by sending empty or very short algorithm fields in WWW-Authenticate headers.

Changes:
- Replace unsafe memcmp() with strcasecmp() for algorithm comparison
- Add algorithm NULL validation at function entry point
- Fix duplicate md5-sess check, add missing SHA-256 check
 2025-11-21 16:36:02 +05:30
Ashish Sharma
acf89924c8 feat(esp_http): migrate esp_http to PSA API 2025-10-26 10:13:14 +08:00
Mahavir Jain
70cb9d1a5c fix(esp_http_client): address coverity generated warnings 2025-08-22 19:13:24 +05:30
Harshit Malpani
bc901c0a3a fix(esp_http_client): Fix http digest auth without qop 
Closes https://github.com/espressif/esp-idf/issues/12962
 2024-01-23 12:22:35 +05:30
Harshit Malpani
803ad150cf feat(esp_http_client): SHA256 support in digest auth 
Added support for using SHA256 algorithm while calculating
digest auth in HTTP client connection

Closes https://github.com/espressif/esp-idf/issues/12383
 2023-12-15 11:32:57 +05:30
KonstantinKondrashov
e72061695e all: Removes unnecessary newline character in logs 
Closes https://github.com/espressif/esp-idf/issues/11465
 2023-06-09 03:31:21 +08:00
Harshit Malpani
3152fba654 esp_http_client: fix coverity issue. free auth_str before going out of scope 2023-01-11 16:57:04 +05:30
Harshit Malpani
68ded2c350 esp_http_client: fix -Werror-format compile errors for linux target 2023-01-04 11:17:28 +05:30
Harshit Malpani
1c77e13d35 esp_http_client: Update to support build for linux 2023-01-04 11:17:28 +05:30
David Cermak
5c383d7b73 esp_netif/lwip: Fix deps cycles to "lwip -> esp_netif -> phy-drivers" 
Fix dependency tree so that lwip doesn't depend on any specific network
interface component.
Network interface drivers shall depend on esp_netif.
esp_netif shall depend on lwip (but not on any specific interface
driver) -- it optionally depends on vfs and esp_eth (need ethernet
header for L2/bridge mode)
 2022-07-20 14:59:07 +02:00
Cao Sen Miao
599227a1b6 ESP8684: Add esp8684 target to other repo for passing build 2021-11-06 17:33:45 +08:00
Harshit Malpani
2085e4eb92 esp_http_client: apply generic error check macros 2021-10-20 14:40:32 +05:30
Alex Henrie
b07ad7a08d Fix memory leak on error path in md5_printf 2021-07-23 17:48:45 +05:30
Jan Brudny
967e057906 esp-tls, esp_http_client and esp_http_server: update copyright notice 2021-05-31 20:06:09 +08:00
Shubham Kulkarni
aceb38c326 http_auth.c: Fix crash when opaque field is not present in challenge string 
Closes: https://github.com/espressif/esp-idf/issues/5888
 2020-11-19 14:43:14 +05:30
Aditya Patwardhan
fa42beac97 esp32/esp-tls: remove dependancy of esp_https_client and tcp_transport on mbedtls 2020-10-23 05:16:06 +00:00
morris
ab0537c079 esp_rom: extract common MD5 hash apis into esp_rom_md5.h 2020-07-21 17:01:28 +08:00
David Cermak
b834c99148 examples: modify other examples and tests to use esp_netif instead of tcpip_adapter 2019-11-13 12:36:25 +01:00
morris
c159984264 separate rom from esp32 component to esp_rom 
1. separate rom include files and linkscript to esp_rom
2. modefiy "include rom/xxx.h" to "include esp32/rom/xxx.h"
3. Forward compatible
4. update mqtt
 2019-03-21 18:51:45 +08:00
Tuan PM
6ef558320a esp_http_client: Resolve some bugs from the github community 
- Closes https://github.com/espressif/esp-idf/issues/2135
- Closes https://github.com/espressif/esp-idf/issues/2208
- Closes https://github.com/espressif/esp-idf/issues/2213
 2018-07-23 12:22:19 +07:00
Tuan PM
f2aea4f5b6 Add http status enum & return ESP_FAIL as error code 2018-05-22 10:55:18 +07:00
Tuan PM
ff528d13c7 Add esp_http_client 
Add error handling for http client

set ssid password correct with Example_WIFI test, and clear password before free

Fixed the CI failure due to HTTP errror names
 2018-05-21 09:35:07 +07:00