Known issues
Known issues listed on this page and tagged with the latest official release version are valid for the current state of development. Use the drop-down filter to see known issues for previous releases and check if they are still valid.
A known issue can list one or both of the following entries:
Affected platforms:
If a known issue does not have any specific platforms listed, it is valid for all hardware platforms.
Workaround:
Some known issues have a workaround. Sometimes, they are discovered later and added over time.
Protocols
The issues in this section are related to Protocols.
Amazon Sidewalk
- KRKNWK-17860: Fatal DFU error in the Sidewalk application mode
A fatal error occurs when attempting to perform DFU in the Sidewalk application mode instead of the DFU mode. The error involves an assertion in the QSPI, which is in the deep sleep mode to save energy.
Workaround: The DFU service must be used only when the device is in the DFU mode.
- KRKNWK-18465: BUS fault on FSK during the FACTORY_RESET call
The Bluetooth LE link is deinitialized. However, a race condition might occur where an event added by the Bluetooth® LE link is not removed. Acting on the event without a valid Bluetooth LE handle leads to dereference of
NULL
. To avoid the error, you need to check forNULL
before the event is processed in the event queue. The issue requires a fix in the Sidewalk stack.Workaround: Perform a factory reset as the error is recoverable.
- KRKNWK-18511: Advertising fails to start (
err -12
) upon registration The Sidewalk end device is trying to restart advertising, for example, on time sync lost. This happens even when the device is connected through Bluetooth LE, leading to an error. The Bluetooth LE connection management requires a fix in the Sidewalk stack.
Workaround: The issue fixes upon automatic restart of the Bluetooth LE advertising.
- KRKNWK-17860: QSPI assert occurs when performing DFU in the Sidewalk application mode
The DFU must be performed only in the DFU mode. The DFU Bluetooth service can be used in the Sidewalk mode, however, using it leads to assertion failure, resulting in a Zephyr fatal error.
- KRKNWK-17800: After reconnecting to the network, the end device cannot find the route to its host
After the device disconnects from Sidewalk servers, the sensor monitoring app over Bluetooth LE shows an error
-38 (SID_ERROR_NO_ROUTE_AVAILABLE)
.Workaround: The device needs to be reset manually.
- KRKNWK-17750: Error occurs when sending multiple messages in a short period of time
When sending multiple Sidewalk messages in a short period of time, the internal queues might become full, showing misleading error messages, such as
-12 (SID_ERROR_INCOMPATIBLE_PARAMS)
.Workaround: The message must be resent after the protocol empties the queues.
- KRKNWK-17244: CMake warnings when building the Sidewalk samples
CMake warnings (
No SOURCES given to Zephyr library
) show up in the build log of a Sidewalk application. The application builds successfully, but the error might obfuscate other important warnings.
- KRKNWK-17374: Sporadic Zephyr fatal error after disconnecting on FSK
After disconnecting on FSK, Zephyr fatal error occurs due to assertion in the semaphore module. The error reproduces rarely (once per a few days). The device resets automatically in the release mode, however, in the debug mode it needs to be reset manually. Currently, this issue occurs for Sidewalk v1.14 libraries, and it will be fixed in a future version.
- KRKNWK-17035: Sensor monitor uplink messages are lost when the notification period is longer than 30 seconds
If the notification period is set to longer than 30 seconds, sensor monitor uplink messages are lost.
Workaround: The notification period is set to 15 seconds by default.
- KRKNWK-14583: Bus fault after flash, before the
Nordic_MFG.hex
data flash For sub-GHz samples, when the
Nordic_MFG.hex
file is missing, the device throws a hard fault during initializing the Sidewalk stack. Proper error handling will be implemented, but the temporary solution is to write a manufacturing hexadecimal code to the device and reset it.
- KRKNWK-14299: NRPA MAC address cannot be set in Zephyr
The non-resolvable private address (NRPA) cannot be set in the connectable mode for Bluetooth LE. Currently, there is no workaround for this issue.
Bluetooth LE
The issues in this section are related to Controller.
- DRGN-22930 The SoftDevice Controller may de-reference a
NULL
pointer This can occur when using the vendor-specific HCI command Zephyr Write TX Power Level for a connection.
Workaround: Enable support for the LE Power Control feature (
CONFIG_BT_CTLR_LE_POWER_CONTROL
).
- NCSDK-28239 On nRF54H20, a Bluetooth LE disconnect event is not generated once the central device (i.e. mobile phone) moves out of range while data is being transferred (i.e. during DFU)
This will prevent the device from establishing new BLE connections.
Affected platforms: nRF54H20
Workaround: Restart the device.
- NCSDK-19865: GATT Robust Caching issues for bonded peers
The Client Supported Features value written by a bonded peer may not be stored in the non-volatile memory. Change awareness of the bonded peer is lost on reboot. After reboot, each bonded peer is initially marked as change-unaware.
Workaround: Disable the GATT Caching feature (
CONFIG_BT_GATT_CACHING
). Make sure that Bluetooth bonds are removed together with disabling GATT Caching if the functionality is disabled during a firmware upgrade.
- DRGN-17695: The BT RX thread stack might overflow if the
CONFIG_BT_SMP
is enabled When performing SMP pairing MPU FAULTs might be triggered because the stack is not large enough.
Workaround: Increase the stack size manually in the project configuration file (
prj.conf
) usingCONFIG_BT_RX_STACK_SIZE
.
- NCSDK-13459: Uninitialized size in hids_boot_kb_outp_report_read
When reading from the boot keyboard output report characteristic, the GATT Human Interface Device (HID) Service calls the registered callback with uninitialized report size.
Workaround: Manually cherry-pick and apply commit with fix from main (commit hash:
f18250dad6cbd9778de7af4b8a774b58e55fe720
).
- NCSDK-9106: Bluetooth ECC thread stack size too small
The Bluetooth ECC thread used during the pairing procedure with LE Secure Connections might overflow when an interrupt is triggered when the stack usage is at its maximum.
Workaround: Increase the ECC stack size by setting
CONFIG_BT_HCI_ECC_STACK_SIZE
to1140
.
- DRGN-15435: GATT notifications and Writes Without Response might be sent out of order
GATT notifications and Writes Without Response might be sent out of order when not using a complete callback.
Workaround: Always set a callback for notifications and Writes Without Response.
- DRGN-15448: Incomplete bond overwrite during pairing procedure when peer is not using the IRK stored in the bond
When pairing with a peer that has deleted its bond information and is using a new IRK to establish the connection, the existing bond is not overwritten during the pairing procedure. This can lead to MIC errors during reconnection if the old LTK is used instead.
- NCSDK-8224: Callbacks for “security changed” and “pairing failed” are not always called
The pairing failed and security changed callbacks are not called when the connection is disconnected during the pairing procedure or the required security is not met.
Workaround: Application should use the disconnected callback to handle pairing failed.
- NCSDK-8223: GATT requests might deadlock RX thread
GATT requests might deadlock the RX thread when all TX buffers are taken by GATT requests and the RX thread tries to allocate a TX buffer for a response. This causes a deadlock because only the RX thread releases the TX buffers for the GATT requests. The deadlock is resolved by a 30 second timeout, but the ATT bearer cannot transmit without reconnecting.
Workaround: Set
CONFIG_BT_L2CAP_TX_BUF_COUNT
>=CONFIG_BT_ATT_TX_MAX
+ 2.
- NCSDK-6845: Pairing failure with simultaneous pairing on multiple connections
When using LE Secure Connections pairing, the pairing fails with simultaneous pairing on multiple connections. The failure reason is unspecified.
Workaround: Retry the pairing on the connections that failed one by one after the pairing procedure has finished.
- NCSDK-6844: Security procedure failure can terminate GATT client request
A security procedure terminates the GATT client request that is currently in progress, unless the request was the reason to initiate the security procedure. If a new GATT client request is queued at this time, this might potentially cause a GATT transaction violation and fail as well.
Workaround: Do not initiate a security procedure in parallel with GATT client requests.
- NCSDK-5711: High-throughput transmission can deadlock the receive thread
High-throughput transmission can deadlock the receive thread if the connection is suddenly disconnected.
- Only secure applications can use Bluetooth LE
Bluetooth LE cannot be used in a non-secure application, for example, an application built for the
nrf5340_dk_nrf5340_cpuappns
board target.Affected platforms: nRF5340
Workaround: Use the
nrf5340_dk_nrf5340_cpuapp
board target instead.
CONFIG_BT_SMP
alignment requirementWhen running the Bluetooth: Central SMP Client sample, the
CONFIG_BT_SMP
configuration must be aligned between this sample and the Zephyr counterpart (SMP server). However, security is not enabled by default in the Zephyr sample.
- DRGN-21390: The disconnected callback might not get called on nRF5340
The Bluetooth host running on the nRF5340 application core might deadlock on disconnection. This is due to a recent bugfix in the SoftDevice Controller triggering a bug in the ATT queuing layer.
Workaround: Either disable host flow control (
CONFIG_BT_HCI_ACL_FLOW_CONTROL
) or cherry-pick commits from the upstream: Zephyr PR #65272.
Bluetooth Mesh
The issues in this section are related to the Bluetooth Mesh protocol.
- NCSDK-28052: Large Composition Data Server and Private Beacon Server model do not extend Configuration Server model
The Private Beacon Server model and Large Composition Data Server model do not extend Configuration Server model. As a result, Composition Data Page 1 will have incorrect model relationship representations for these models.
- NCSDK-21625: Advertisements of Bluetooth Mesh GATT services are not stopped by
bt_mesh_suspend()
and not resumed bybt_mesh_resume()
Functions
bt_mesh_suspend()
andbt_mesh_resume()
do not work together with functionsbt_disable()
andbt_enable()
.Workaround: To disable node identity advertisement, use
bt_mesh_subnet_node_id_set
instead.
- NCSDK-23087: Unsolicited Time Status messages rewrite periodic publishing TTL to zero forever
The Time models specification mandates publishing unsolicited Time Status messages with TTL field value set to
0
. The implementation rewrites the TTL field to0
, but does not write the initial value back, resulting in losing the initial value.Workaround: Configure the initial TTL value after an unsolicited Time Status message is sent.
- NCSDK-23220: The Heartbeat Publication Status message may be malformed after provisioning
After provisioning and obtaining the Composition Data, reading the Heartbeat Publication and the Heartbeat Publication Status will contain garbage in the NetKeyIndex field. The reason for this is that the field was not initially cleared.
- NCSDK-23308: Setting storage causes the device to reboot in the event of a clean operation
For non-secure builds, whenever a flash erase while setting storage happens, it causes the device to reboot. The same issue can be seen where stored model data is large enough and changes cause defragging or cleaning. The EMDS partition is not affected by this.
- NCSDK-16800: RPL is not cleared on IV index recovery
After recovering the IV index, a node doesn’t clear the replay protection list, which leads to incorrect triggering of the replay attack protection mechanism.
Workaround: Call
bt_mesh_rpl_reset
twice after the IV index recovery is done.
- NCSDK-16798: Friend Subscription List might have duplicate entries
If a Low Power node loses a Friend Subscription List Add Confirm message, it repeats the request. The Friend does not check both the transaction number and the presence of the addresses in the subscription list. This causes a situation where the Friend fills the subscription list with duplicate addresses.
- NCSDK-16782: The extended advertiser might not work with Bluetooth Mesh
Using the extended advertiser instead of the legacy advertiser can lead to getting composition data while provisioning to fail. This problem might manifest in the sample Bluetooth Mesh: Coexistence with other LE services, as it is using the extended advertiser.
- NCSDK-16579: Advertising Node Identity and Network ID might not work with the extended advertiser
Advertising Node Identity and Network ID do not work with the extended advertising API when the
CONFIG_BT_MESH_ADV_EXT_GATT_SEPARATE
option is enabled.Workaround: Do not enable the
CONFIG_BT_MESH_ADV_EXT_GATT_SEPARATE
option.
- NCSDK-21780: Sensor types with floating point representation lose precision
Sensor types with floating point representation lose precision when converted to
sensor_value
in the sensor API callbacks.
- NCSDK-14399: Legacy advertiser can occasionally do more message retransmissions than requested
When using the legacy advertiser, the stack sleeps for at least 50 ms after starting advertising a message, which might result in more messages to be advertised than requested.
- NCSDK-16061: IV update procedure fails on the device
Bluetooth Mesh device does not undergo IV update and fails to participate in the procedure initiated by any other node unless it is rebooted after the provisioning.
Workaround: Reboot the device after provisioning.
- NCSDK-10200: The device stops sending Secure Network Beacons after re-provisioning
Bluetooth Mesh stops sending Secure Network Beacons if the device is re-provisioned after reset through Config Node Reset message or
bt_mesh_reset()
call.Workaround: Reboot the device after re-provisioning.
- NCSDK-5580: nRF5340 only supports SoftDevice Controller
On nRF5340, only the SoftDevice Controller is supported for Bluetooth Mesh.
Affected platforms: nRF5340
Enhanced ShockBurst (ESB)
The issues in this section are related to the Enhanced ShockBurst (ESB) protocol.
- NCSDK-20092: ESB does not send packet longer than 63 bytes
ESB does not support sending packets longer than 63 bytes, but has no such hardware limitation.
Matter
The issues in this section are related to the Matter protocol.
- KRKNWK-19443: The device commissioning window can be opened for longer than 900 seconds, which violates the Matter specification.
A device using the Extended Announcement feature is allowed to open the commissioning window for longer than 900 s only if it is uncommissioned. However, the implementation with Extended Announcement enabled allows the device to open the commissioning window for longer than 900 s even when the device is commissioned as well. This leads to the TC-CADMIN-1.21 and TC-CADMIN-1.22 certification test cases failure.
Workaround: Manually cherry-pick and apply the commit with the fix to
sdk-connectedhomeip
(commit hash:ba9faf2b1e321f009f8bf27f5800627c9e4826ea
from the upstream Matter SDK repo).
- NCSDK-29228: DFU over Bluetooth LE SMP can lead to an application crash.
Performing the DFU over SMP using a large application image with a specific size can lead to an MPU fault and application crash. The issue is not reproducible for all images above a certain file size, but rather it seems to occur only for some specific sizes. The reproduction rate is small and the specific conditions to trigger it are not well known. The exact root cause is not known, but is probably related to problems with communication between the QSPI and external flash chip.
Affected platforms: nRF52840
Workaround: There are two alternative solutions that seem to fix this issue:
Set the
CONFIG_NORDIC_QSPI_NOR_TIMEOUT_MS
Kconfig option to3500
in the applicationprj.conf
file.Manually cherry-pick and apply the commit with the fix to
sdk-zephyr
(commit hash:d1abe40fb0af5d6219a0bcd824c4ea93ab90877a
from the upstream Zephyr repo).
- KRKNWK-19300: The Matter weather station application has NVS size inconsistent with the settings partition size.
The settings partition size for Matter weather station is configured to the value of 64 kB. However, the application cannot use all 64 kB of the settings space, because it depends on the NVS size that is limited by the
CONFIG_SETTINGS_NVS_SECTOR_COUNT
Kconfig option to 32 kB.Affected platforms: Thingy53
Workaround: Set the
CONFIG_SETTINGS_NVS_SECTOR_COUNT
Kconfig option to16
in the applicationprj.conf
file.Caution
The workaround can be applied only to a newly programmed or factory reset device. Changing the NVS sectors count for a device that is in-field and already has some data stored in settings may lead to the data corruption and undefined behavior.
- KRKNWK-19199: Matter Lock and Matter Template samples cannot be built in the release configuration for the nRF54H20 platform.
In the DTS overlay file for the
nrf54h20dk/nrf54h20/cpuapp
target, the watchdog configuration is missing, whereas in the release configuration, theCONFIG_NCS_SAMPLE_MATTER_WATCHDOG
Kconfig option is set toy
. Building samples with FILE_SUFFIX variable set torelease
will fail for thenrf54h20dk/nrf54h20/cpuapp
target.Affected platforms: nRF54H20
Workaround: While building the Matter Lock or Matter Template sample with the FILE_SUFFIX variable set to
release
, set theCONFIG_NCS_SAMPLE_MATTER_WATCHDOG
Kconfig option ton
.
- NCSDK-27972: No Bluetooth advertising after a software reset
The software reset fails to properly reboot the nRF54H20 device, resulting in malfunction of Bluetooth LE advertising. This issue affects the factory reset functionality of the Matter device.
Affected platforms: nRF54H20
Workaround: Press the RESET button on the nRF54H20 DK after performing a factory or software reset of the device.
- KRKNWK-18965: Malformed group messages can cause memory leak
Matter accessories utilizing group communication may experience memory leaks if the secure group message is malformed.
Workaround: Manually cherry-pick and apply the commit with the fix to
sdk-connectedhomeip
(commit hash:bdf3e6e183cba3d13bc5103bf014b47841a14de1
from the upstream Matter SDK repo).
- KRKNWK-18966: Malformed messages may cause crash of device
Matter accessories may use already freed memory or perform a double free operation when a malformed message is received while waiting for a response to an ongoing exchange.
Workaround: Manually cherry-pick and apply the commit with the fix to
sdk-connectedhomeip
:For nRF Connect SDK v2.6.1 and v2.6.0, commit hash
a836887c9f8ac277ed02a184c8fe82f8365f5353
from the upstream Matter SDK repo.For nRF Connect SDK v2.5.3, v2.5.2, v2.5.1, and v2.5.0, commit hash
3c808ab05f1fe9c2452ac285c2cad559c060b8f6
from the upstream Matter SDK repo.
- KRKNWK-18916: Issues related to the
CONFIG_CHIP_LAST_FABRIC_REMOVED_ERASE_AND_PAIRING_START
Kconfig option When the Kconfig option is selected, there are two issues:
An assert may occur after removing the last fabric because the OpenThread interface is still active despite the Thread stack being disabled.
The device cannot be commissioned to the Matter network because the device’s IEEE 802.15.4 Extended address is the same as the one saved in the SRP server.
Workaround: Add the following lines to the
fabric_table_delegate
file:After Line 54 (After the
DoFactoryReset()
function) to provide a workaround for potential assert:chip::DeviceLayer::ThreadStackMgrImpl().LockThreadStack(); otIp6SetEnabled(chip::DeviceLayer::ThreadStackMgrImpl().OTInstance(), false); chip::DeviceLayer::ThreadStackMgrImpl().UnlockThreadStack();
After Line 56 (After the
ErasePersistentInfo()
function) to generate the new IEEE 802.15.4 Extended address and set it to avoid duplication:otExtAddress newOtAddr = {}; chip::Crypto::DRBG_get_bytes(reinterpret_cast<uint8_t*>(&newOtAddr), sizeof(newOtAddr)); otLinkSetExtendedAddress(chip::DeviceLayer::ThreadStackMgrImpl().OTInstance(), &newOtAddr);
Note
For nRF Connect SDK versions v2.5.3, v2.5.2, v2.5.1, and v2.5.0, the
fabric_table_delegate.h
file is located in thesamples/matter/common/src/
directory, whereas for nRF Connect SDK versions v2.6.1 and v2.6.0, the file is located in thesamples/matter/common/src/app
directory.
- KRKNWK-18673: Bridged Light Bulb device type reports a failure when reading or writing specific
onoff
cluster attributes The Bridge has defined ZAP clusters properly for a bridged Light Bulb, but handling of specific
onoff
cluster attributes has not been implemented.Workaround: Manually cherry-pick and apply the commit with the fix to
sdk-nrf
(commit hash:79f3a901dd0787df9327640cb3bb889ccb023005
).
- KRKNWK-18769: Matter bridge application does not print the hyperlink for displaying the setup QR code in the log
This happens, because the log module that displays this log entry has been disabled.
Workaround: Remove the following line from the
src/chip_project_config.h
header file:#define CHIP_CONFIG_LOG_MODULE_AppServer_PROGRESS 0
- KRKNWK-18556: While creating multiple subscriptions, the persistent subscriptions resumption feature works only for the first created subscriptions
This happens when multiple subscriptions are created by multiple Matter controllers. The persistent subscriptions feature will be replaced by the Check In protocol from the Intermittently Connected Devices (ICD) Cluster.
- KRKNWK-18316: When the
CONFIG_PRINTK_SYNC
Kconfig option is enabled in a Matter over Thread application, the IEEE 802.15.4 radio driver may calculate invalid IEEE 802.15.4 radio frame timestamps This is caused by the implementation of synchronous
printk
in Zephyr usingspinlock
synchronization primitive, which can block Real Time Clock interrupts that are needed by the radio driver to calculate precise timestamps.Workaround: If it is enabled, disable the
CONFIG_PRINTK_SYNC
Kconfig option in your application.
- KRKNWK-18495: The Color Control server’s
RemainingTime
attribute change may be reported every 100 ms, even though the color temperature value handled by the Color Control server is not modified This can result in the Thread network being spammed with unnecessary network traffic when controlling the brightness or color of the Matter: Light bulb sample.
Workaround: Manually cherry-pick and apply the commit with the fix to
sdk-connectedhomeip
(commit hash:3da44025b18d17adacf0a4abf0456c5735399dbd
).
- KRKNWK-18371: The GlobalSceneControl attribute from the OnOff cluster does not change in a way compatible with the Matter specification
The GlobalSceneControl attribute from the OnOff cluster is not set to
false
after receiving theOffWithEffect
command. This behavior is not compatible with the Matter specification.Workaround: Manually cherry-pick and apply the commit with the fix to
sdk-connectedhomeip
(commit hash:836390ed636ca36126dbcbe763d0f127626cba8d
).
- KRKNWK-18315: SPAKE2+ Verifier is not regenerated when using non-default passcode
When building factory data with a non-default passcode, the SPAKE2+ Verifier is not generated based on the selected passcode value, but uses the default passcode value (
20202021
).Workaround: Enable the
CONFIG_CHIP_FACTORY_DATA_GENERATE_SPAKE2_VERIFIER
Kconfig option to generate the SPAKE2+ Verifier based on the provided passcode.
- KRKNWK-18256: The Matter over Thread device may crash during the processing of the DNS resolve response
The Matter core implementation handles DNS resolve responses for the Thread platform in a wrong way. If the DNS resolve response contains a TXT record with data size equal to 0 (either it is not present or its Time-To-Live (TTL) is equal to 0), the Matter device’s application crashes. The application behavior for the responses containing a TXT record with data size not equal to 0 is correct.
Workaround: Manually cherry-pick and apply the commit with the fix to
sdk-connectedhomeip
(commit hash:4997cd70ed53735e302186e7eda1bb28a216199a
).
- KRKNWK-18221: Memory leak in the deferred attribute persister
The
DeferredAttributePersister
helper class is used to limit the flash wear for applications that include fast-changing, persistent cluster attributes. This class leaks a small heap memory buffer for each deferred attribute write, which can eventually lead to running out of heap memory until the device is rebooted.Workaround: Manually cherry-pick and apply the commit with the fix to
sdk-connectedhomeip
(commit hash:e79b0cf44c86ce35dabcf69b50903ac706c67465
).
- KRKNWK-17360: Groupcast communication does not work for multiple endpoints that are part of the same group on a single Matter node
The Matter core implementation handles commands status in a wrong way for those targeted to a group. This issue is only visible when adding multiple endpoints that exist on the same Matter node to the same group, and results in an application crash after receiving a group command. When adding multiple Matter nodes with a single endpoint each to the same group, the communication works correctly.
Workaround: Manually cherry-pick and apply the commit with the fix to
sdk-connectedhomeip
(commit hash:99f80de289491ad24a13dda9178a7a24c85324a7
).
- KRKNWK-17864: When using Wi-Fi® low power mode, the communication with the device might not work after it re-connects to the newly respawned Wi-Fi network
The communication with Matter over a Wi-Fi device sometimes does not work after it re-connects to the Wi-Fi network. The issue is only visible in cases of re-connection to the newly respawned Wi-Fi network that are triggered by rebooting the Wi-Fi access point. The root cause of the issue is not known but can be related to the usage of Wi-Fi in low power mode. After the application reboot, the device is always able to re-connect to the Wi-Fi network and operate normally.
Affected platforms: nRF7002
Workaround: Disable Wi-Fi low power mode for your application by setting
CONFIG_NRF_WIFI_LOW_POWER
ton
in the applicationprj.conf
.
- KRKNWK-17925: The nRF Toolbox application for iOS devices cannot control Matter: Door lock using NUS
The nRF Toolbox application sends one additional character in all NUS commands, so they are not correctly parsed by the Matter: Door lock. The issue was observed only on the nRF Toolbox 5.0.9 version of the iOS system.
Workaround: Use nRF Toolbox for iOS versions other than 5.0.9 or any version of nRF Toolbox for Android.
- KRKNWK-17914: The links to Kconfig options from
Kconfig.features
do not work in the nRF Connect SDK documentation The links to all Kconfig options defined in the
modules/lib/matter/config/nrfconnect/Kconfig.features
file do not work in the documentation.
- KRKNWK-17718: Failure at TC-DGSW-1.1 Matter Certification test
The issue happens due to a wrong Software Diagnostic cluster feature map with features enabled by default.
Workaround: Set the default value of the Software Diagnostic cluster feature map to 0 using the ZAP Tool and regenerate files, and manually cherry-pick and apply the commit with the fix to
sdk-connectedhomeip
(commit hash:70dd449ff943159365466ad5125f42a5bdcbfc0b
).
- KRKNWK-17699: Failure at TC-BINFO-1.1 Matter Certification test for the lock sample
The issue happens due to a noncompliant Basic Information cluster revision for Matter 1.1.0 in the lock sample.
Workaround: Set the default value of the Basic Information cluster revision to 1 in
samples/matter/lock/src/lock.zap
using the ZAP Tool and regenerate files.
- KRKNWK-17594: Application does not always respond when forcing fail-safe cleanup
This can happen because of the Thread interface being unnecessarily reset and can result in the TC-CNET-4.10 Matter Certification test failing.
Workaround: Manually cherry-pick and apply the commit with the fix to
sdk-connectedhomeip
(commit hash:3b2d8e1367d9055a78d72365323cfbf60e054975
).
- KRKNWK-17535: The application core can crash on nRF5340 after the OTA firmware update finishes if the factory data module is enabled
In the initialization method of the factory data module, the factory data partition and a part of the application image is restricted by Fprotect, which makes it impossible to confirm the new image in the Matter thread. Instead, the confirmation must be performed before the factory data module is initialized.
Affected platforms: nRF5340
Workaround: Complete the following steps:
Manually cherry-pick and apply the commit with the fix to
sdk-connectedhomeip
(commit hash:eeb7280620fff1e16a75cfa41338186fd952c432
).Add the following lines to the
samples/matter/common/src/ota_util.cpp
:#include <platform/CHIPDeviceLayer.h> #include <zephyr/dfu/mcuboot.h> #ifndef CONFIG_SOC_SERIES_NRF53X VerifyOrReturn(mcuboot_swap_type() == BOOT_SWAP_TYPE_REVERT); #endif OTAImageProcessorImpl &imageProcessor = GetOTAImageProcessor(); if(!boot_is_img_confirmed()){ CHIP_ERROR err = System::MapErrorZephyr(boot_write_img_confirmed()); if (CHIP_NO_ERROR == err) { imageProcessor.SetImageConfirmed(); ChipLogProgress(SoftwareUpdate, "New firmware image confirmed"); } else { ChipLogError(SoftwareUpdate, "Failed to confirm firmware image, it will be reverted on the next boot"); } }
Add the following line to the
samples/matter/common/src/ota_util.h
:void OtaConfirmNewImage();
Add the following lines to the
AppTask::Init()
method in theapp_task.cpp
file located in a sample directory before initialization of the factory data module (mFactoryDataProvider.Init()
):#ifdef CONFIG_CHIP_OTA_REQUESTOR /* OTA image confirmation must be done before the factory data init. */ OtaConfirmNewImage(); #endif
- KRKNWK-17151: Application core can crash on nRF5340 when there is a high load on Zephyr’s main thread
The priority of Zephyr’s main thread is set to the same value as the IPC thread’s priority (
0
). Because of this setting, when Zephyr’s main thread is working for a long time, an interrupt related to the IEEE 802.15.4 radio driver can occur and the application core can crash due to a lack of communication with the network core. To avoid blocking the communication between cores, the main thread priority should have a lower priority than the IPC priority.Affected platforms: nRF5340
Workaround: Add an additional Kconfig option
CONFIG_MAIN_THREAD_PRIORITY
set to1
to the build configuration.
- KRKNWK-17064: Incorrect links in the Matter documentation
The following links to Matter SDK documentation point to the
master
version of the Matter SDK module instead of the commit SHA used for the nRF Connect SDK v2.4.0: other controller setups, CHIP Certificate Tool source files, and Bluetooth LE Arbiter’s header file.Workaround: Change
master
to the9e6386c
commit SHA in the page URLs to see the content valid for the nRF Connect SDK v2.4.0 release.
- KRKNWK-16728: Sleepy device may consume much power when commissioned to a commercial ecosystem
The controllers in the commercial ecosystem fabric establish a subscription to a Matter device’s attributes. The controller requests using some subscription intervals, and the Matter device may negotiate other values, but by default it just accepts the requested ones. In some cases, the selected intervals can be small, and the Matter device will have to report status very often, which results in high power consumption.
Workaround: Implement
OnSubscriptionRequested
method in your application to set values of subscription report intervals that are appropriate for your use case. Additionally, register your class implementation to makeInteractionModelEngine
use it. This is an example of how your implementation could look:#include <app/ReadHandler.h> class SubscriptionApplicationCallback : public chip::app::ReadHandler::ApplicationCallback { CHIP_ERROR OnSubscriptionRequested(chip::app::ReadHandler & aReadHandler, chip::Transport::SecureSession & aSecureSession) override; }; CHIP_ERROR SubscriptionApplicationCallback::OnSubscriptionRequested(chip::app::ReadHandler & aReadHandler, chip::Transport::SecureSession & aSecureSession) { /* Set the interval in seconds appropriate for your application use case, e.g. 60 seconds. */ uint32_t exampleMaxInterval = 60; return aReadHandler.SetReportingIntervals(exampleMaxInterval); }
The class implementation can be registered in your application code the following way:
#include <app/InteractionModelEngine.h> SubscriptionApplicationCallback myClassInstance; chip::app::InteractionModelEngine::GetInstance()->RegisterReadHandlerAppCallback(&myClassInstance);
You can use the
ICDUtil
module implementation that was introduced in the nRF Connect SDK v2.4.0 as a reference. It is located in thesamples/matter/common/src/icd_util.cpp
file in thenrf
directory.
- KRKNWK-16575: Applications with factory data support do not boot up properly on nRF5340
When the Matter sample is built for
nrf5340dk_nrf5340_cpuapp
board target with theCONFIG_CHIP_FACTORY_DATA
Kconfig option set toy
, the application returns prematurely the error code200016
because the factory data partition is not aligned with theCONFIG_FPROTECT_BLOCK_SIZE
Kconfig option.Affected platforms: nRF5340
Workaround: Manually cherry-pick and apply commit from the main branch (commit hash:
ec9ad82637b0383ebf91eb1155813450ad9fcffb
).
- KRKNWK-16783: Accessory may become unresponsive after several hours
A Matter accessory may stop sending Report Data messages due to an internal bug in the Matter stack v1.0.0.0 and thus become unresponsive for Matter controllers.
Workaround: Manually cherry-pick and apply commit from the dedicated Matter fork (commit hash:
23f08242f92973a7a3308b4d62a82c59cf6cf6b3
).
- KRKNWK-15846: Android CHIP Tool crashes when subscribing in the LIGHT ON/OFF & LEVEL CLUSTER
The Android CHIP Tool crashes when attempting to start the subscription after typing minimum and maximum subscription interval values. Also, the Subscription window in the LIGHT ON/OFF & LEVEL CLUSTER contains faulty GUI layout (overlapping captions) used when passing minimum and maximum subscription interval values. This affects the Android CHIP Tool revision used for the nRF Connect SDK v2.2.0, v2.1.1, and v2.1.2 releases.
Note
The support for the Android CHIP Tool is removed as of the nRF Connect SDK v2.3.0 for Matter in the nRF Connect SDK. Use CHIP Tool for Linux or macOS instead, as described in Testing Matter in the nRF Connect SDK.
- KRKNWK-15913: Factory data set parsing issues
The
user
field in the factory data set is not properly parsed. The field should be of theMAP
type instead of theBSTR
type.Workaround: Manually cherry-pick and apply commit with fix to
sdk-connectedhomeip
(commit hash:3875c6f78c77212a3f62a5c825ff9b4e5054bbb4
).
- KRKNWK-15749: Invalid ZAP Tool revision used
The ZAP Tool revision used for the nRF Connect SDK v2.1.1 and v2.1.2 releases is not compatible with the
zap
files that define the Data Model in nRF Connect SDK Matter samples. This results in the ZAP Tool not being able to parsezap
files from Matter samples.Workaround: Check out the proper ZAP Tool revision with the following commands, where <NCS_root_directory> is the path to your nRF Connect SDK installation:
cd <NCS_root_directory>/modules/lib/matter/ git -C third_party/zap/repo/ checkout -f 2ae226 git add third_party/zap/repo/
- KRKNWK-14473: Unreliable communication with the window covering sample
The window covering sample might rarely become unresponsive for a couple of seconds after commissioning to the Matter network.
Workaround: Switch from SSED to SED role.
- KRKNWK-15088: Android CHIP Tool shuts down on changing the sensor type
When you change the current sensor type after activating the monitoring of another sensor type, the application shuts down.
Workaround: Restart the application and select the desired sensor type again.
Note
The support for the Android CHIP Tool is removed as of the nRF Connect SDK v2.3.0 for Matter in the nRF Connect SDK. Use CHIP Tool for Linux or macOS instead, as described in Testing Matter in the nRF Connect SDK.
- KRKNWK-14748: Matter command times out when a Matter device becomes a Thread router
When a Full Thread Device becomes a router, it will ignore incoming packets for a short period of time, typically between 1-2 seconds. This might disrupt the communication over Matter and lead to transaction timeouts.
In more recent versions of Matter, this problem has been eliminated by enhancing Matter’s Message Reliability Protocol. This fix will be included in the future versions of the nRF Connect SDK.
- KRKNWK-14206: CHIP Tool for Android might crash when using Cluster Interactive Tool screen
Cluster Interaction Tool screen crashes when trying to send a command that takes an optional argument.
- KRKNWK-14180: The QSPI sleep mode is not handled efficiently in Matter samples on the nRF53 SoC
QSPI is active during every Bluetooth LE connection in the Matter samples that are programmed on the nRF53 SoC. This results in higher power consumption, for example during commissioning into the Matter network.
Affected platforms: nRF5340
- KRKNWK-11225: CHIP Tool for Android cannot communicate with a Matter device after the device reboots
CHIP Tool for Android does not implement any mechanism to recover a secure session to a Matter device after the device has rebooted and lost the session. As a result, the device can no longer decrypt and process messages sent by CHIP Tool for Android as the controller keeps using stale cryptographic keys.
Workaround: Do not reboot the device after commissioning it with CHIP Tool for Android.
Note
The support for the Android CHIP Tool is removed as of the nRF Connect SDK v2.3.0 for Matter in the nRF Connect SDK. Use CHIP Tool for Linux or macOS instead, as described in Testing Matter in the nRF Connect SDK.
- KRKNWK-10589: CHIP Tool for Android crashes when commissioning a Matter device
In random circumstances, CHIP Tool for Android crashes when trying to connect to a Matter device over Bluetooth LE.
Workaround: Restart the application and try to commission the Matter device again. If the problem persists, clear the application data and try again.
- KRKNWK-12950: CHIP Tool for Android opens the commissioning window using an incorrect PIN code
CHIP Tool for Android uses a random code instead of a user-provided PIN code to open the commissioning window on a Matter device.
- KRKNWK-10387: Matter service is needlessly advertised over Bluetooth LE during DFU
The Matter samples can be configured to include the support for Device Firmware Upgrade (DFU) over Bluetooth LE. When the DFU procedure is started, the Matter Bluetooth LE service is needlessly advertised, revealing the device identifiers such as Vendor and Product IDs. The service is meant to be advertised only during the device commissioning.
- KRKNWK-9214: Pigweed submodule might not be accessible from some regions
The
west update
command might generate log notifications about the failure to access the pigweed submodule. As a result, the Matter samples will not build.Workaround: Execute the following commands in the root folder:
git -C modules/lib/matter submodule set-url third_party/pigweed/repo https://github.com/google/pigweed.git git -C modules/lib/matter submodule sync third_party/pigweed/repo west update
Thread
The issues in this section are related to the Thread protocol.
- KRKNWK-19376: OpenThread CLI sample does not work on the nRF52840 Dongle
The sample should not use Partition Manager. To avoid a failure, the main function should have a check for whether the USB is already enabled.
Affected platforms: nRF52840 Dongle
Workaround: Manually cherry-pick and apply commit with fix from
main
(commit hash:f7b59d26db4cc55c6936a0a88f3daa7e0b7b2085
).
- KRKNWK-19036: High power consumption after parent loss
After a parent loss, an SED would keep the radio on between reattach attempts.
Workaround: Manually cherry-pick and apply commit with fix to
sdk-zephyr
(commit hash:6c602a1bbd3b3f7811082bce391c6943663a2c64
).
- KRKNWK-18612: nRF5340 sometimes fails to send a Child Update Response to an SSED child
After performing an MLE Child Update Request by an SSED child, an nRF5340 parent sometimes does not respond with a Child Update Response. This is caused by the CSL transmit request being issued to the nRF 802.15.4 Radio Driver so late that it cannot be handled on time. On second attempt, the MLE Child Update Request and Response exchange works correctly.
Affected platforms: nRF5340
- CVE-2023-2626: OpenThread KeyID Mode 2 Security Vulnerability
This vulnerability impacts all Thread devices using OpenThread and allows an attacker in physical proximity to compromise non-router-capable devices and the entire Thread network in the case of router-capable devices. The vulnerability allows an attacker in physical proximity to inject arbitrary IPv6 packets into the Thread network via IEEE 802.15.4 frame transmissions. Because the Thread Management Framework (TMF) protocol does not have any additional layer of security, the attacker could exploit this vulnerability to update the Thread Network Key and gain full access to the Thread network. There is no known exploitation of vulnerability.
Due to this issue, the Thread certifications for OpenThread libraries in all nRF Connect SDK releases up to v2.4.0 are deprecated. OpenThread libraries for selected nRF Connect SDK releases were patched with the OpenThread KeyID Mode 2 Security Vulnerability fix and re-certified by inheritance. The libraries are available through a DevZone request.
- KRKNWK-14231: Device stops receiving after switching from SSED to MED
Trying to switch to the MED mode after working as CSL Receiver makes the device stop receiving frames.
Workaround: Before invoking
otThreadSetLinkMode()
to change the device mode, make sure to set the CSL Period to0
withotLinkCslSetPeriod()
.
- KRKNWK-9094: Possible deadlock in shell subsystem
Issuing OpenThread commands too fast might cause a deadlock in the shell subsystem.
Workaround: If possible, avoid invoking a new command before execution of the previous one has completed.
- KRKNWK-6848: Reduced throughput
Performance testing for the Thread: Co-processor sample shows a decrease of throughput of around 10-20% compared with the standard OpenThread.
- KRKNWK-13059: Wrong MAC frame counter is reported sometimes
The reporting of the wrong MAC frame counter causes the neighbor to drop subsequent frames from the device due to security checks. This issue only affects to Thread 1.2 builds.
Workaround: To fix the issue, update the sdk-zephyr repository by cherry-picking the commit with the hash
1ab6be252335ceec5a966b36fbc79883ebd1c4d1
.
- KRKNWK-11555: Devices lose connection after a long time running
Connection is sometimes lost after Key Sequence update.
Note
Due to this issue, nRF Connect SDK v1.7.0 will not undergo the certification process, and is not intended to be used in final Thread products.
- KRKNWK-11264: Some boards assert during high traffic
The issue appears when traffic is high during a corner case, and has been observed after running stress tests for a few hours.
Note
Due to this issue, nRF Connect SDK v1.7.0 will not undergo the certification process, and is not intended to be used in final Thread products.
- Zephyr systems with OpenThread become unresponsive after some time
Systems become unresponsive after running around 49.7 days.
Workaround: Rebooting the system regularly avoids the issue. To fix the error, cherry-pick commits from the upstream Zephyr issue #39704.
- KRKNWK-10633: Incorrect data when using ACK-based Probing with Link Metrics
When using the ACK-based Probing enhanced with Link Metrics, the Thread Information Element contains fixed data instead of the correct Link Metrics data for the acknowledged frame.
- KRKNWK-10467: Security issues for retransmitted frames with Thread 1.2
The Thread 1.2 current implementation does not guarantee that all retransmitted frames will be secured when using the transmission security capabilities of the radio driver. For this reason, OpenThread retransmissions are disabled by default when the
CONFIG_NRF_802154_ENCRYPTION
Kconfig option is enabled. You can enable the retransmissions at your own risk.
- KRKNWK-11037:
Udp::GetEphemeralPort
can cause infinite loop Using
Udp::GetEphemeralPort
in OpenThread can potentially cause an infinite loop.Workaround: Avoid using
Udp::GetEphemeralPort
.
- KRKNWK-9461 / KRKNWK-9596Multiprotocol sample crashes with some smartphones
With some smartphones, the multiprotocol sample crashes on the nRF5340 due to timer timeout inside the 802.15.4 radio driver logic.
Affected platforms: nRF5340
- KRKNWK-7885: Throughput is lower when using CC310 nrf_security backend
A decrease of throughput of around 5-10% has been observed for the CC310 nrf_security backend when compared with nrf_oberon or the standard Mbed TLS backend. CC310 nrf_security backend is used by default for nRF52840 boards. The source of throughput decrease is coupled to the cost of RTOS mutex locking when using the CC310 nrf_security backend when the APIs are called with shorter inputs.
Affected platforms: nRF52840
Workaround: Use AES-CCM ciphers from the nrf_oberon backend by setting the following options:
CONFIG_OBERON_MBEDTLS_AES_C
toy
CONFIG_OBERON_MBEDTLS_CCM_C
toy
CONFIG_CC3XX_MBEDTLS_AES_C
ton
- KRKNWK-7721: MAC counter updating issue
The
RxDestAddrFiltered
MAC counter is not being updated. This is because thePENDING_EVENT_RX_FAILED
event is not implemented in Zephyr.Workaround: To fix the error, cherry-pick commits from the upstream Zephyr PR #29226.
- KRKNWK-7962: Logging interferes with shell output
CONFIG_LOG_MODE_MINIMAL
is configured by default for most OpenThread samples. It accesses the UART independently from the shell backend, which sometimes leads to malformed output.Workaround: Disable logging or enable a more advanced logging option.
- KRKNWK-7803: Automatically generated libraries are missing otPlatLog for NCP
When building OpenThread libraries using a different sample than the Thread: Co-processor sample, the
ncp_base.cpp
is not compiled with theotPlatLog()
function. This results in a linking failure when building the NCP with these libraries.Workaround: Use the Thread: Co-processor sample to create OpenThread libraries.
- NCSDK-5014: Building with SES not possible
It is not possible to build Thread samples using SEGGER Embedded Studio (SES). SES does not support
.cpp
files in nRF Connect SDK projects.
- KRKNWK-6358: CoAP client sample provisioning issues
It is not possible to provision the Thread: CoAP Client sample to servers that it cannot directly communicate with. This is because Link Local Address is used for communication.
- KRKNWK-6408:
diag
command not supported The
diag
command is not yet supported by Thread in the nRF Connect SDK.
Wi-Fi
The issues in this section are related to the Wi-Fi protocol.
- SHEL-2878: WPA3 security mode not working
WPA3 security mode is not working for nRF54L15 PDK and nRF7002 EB.
Affected platforms: nRF7002, nRF54L15
- SHEL:2372: A new initialization sequence causes QSPI to not get initialized
There is an
RDSR -16
error, and QSPI initialization failed. After a hardware reset, it fails again.Affected platforms: nRF7002
Zigbee
The issues in this section are related to the Zigbee protocol.
- NCSISB-1204: Corrupted ZBOSS NVRAM causes an infinite boot loop
NVRAM writing operations are not reset (for example, due to FOTA) and are power-down resistant. In such scenarios, the ongoing NVRAM record-writing operation will not be completed correctly. That means a corrupted NVRAM record. During boot, the ZBOSS stack reads NVRAM content, and in the event of detecting an NVRAM record, it generates a fatal error and leads to the device reset itself. From this point, the device boots, reads NVRAM, and detects corrupted records, which leads to a device reset. If such behavior is constantly repeated, the device will brick.
Workaround: Request fixing patch from Nordic’s DevZone.
- NCSIDB-1246: Typos in Zigbee power configuration command macro causes battery alarms to not work
A typo in the stack would prevent the
BatteryVoltageThreshold1-3
attributes from being properly configured, resulting in battery alarms not working.
- KRKNWK-19026: Wrong RSSI values reported
The Zephyr API to get the RSSI value from the radio driver was modified and adaptation is needed in the Zigbee integration.
Workaround: Manually cherry-pick and apply commit with fix from
main
(commit hash:7ca42b219d1333b911d7671cf2a714bd93cbac45
).
- NCSIDB-1213: Subsequent Zigbee FOTA updates fail
Once a Zigbee FOTA update is interrupted for any reason, the subsequent updates will fail until a device reboot. This is because DFU target resources are not freed.
Workaround: Manually cherry-pick and apply commit with fix from
main
(commit hash:cef8a4b0e5afaed08627bcccbe2ac7b4b600978f
).
- KRKNWK-18572: Bus fault when resetting the Zigbee light switch sample
Usage of
CONFIG_RAM_POWER_DOWN_LIBRARY
leads to a bus fault at reset.Workaround: Choose
CONFIG_MINIMAL_LIBC
asCONFIG_LIBC_IMPLEMENTATION
.
- KRKNWK-16705: Router device is not fully operational in the distributed network
The router node asserts in distributed network when a new device is being associated through the router.
Workaround: Add a call to the
zb_enable_distributed()
function in your application after setting Zigbee Router role for the device.
- KRKNWK-14024: Fatal error when the network coordinator factory resets in the Identify mode
A fatal error occurs when the Zigbee network coordinator triggers factory reset in the Identify mode.
Workaround: Modify your application, so that the factory reset is requested only after the Identify mode ends.
- KRKNWK-12937: Activation of Sleepy End Device must be done at the very first commissioning procedure for Zigbee light switch sample
After programming the Zigbee light switch sample and its first commissioning, Zigbee End Device joins the Zigbee network as a normal End Device. Pressing Button 3 does not switch the device to the Sleepy End Device configuration.
Workaround: Keep Button 3 pressed during the first commissioning procedure.
- KRKNWK-12615: Get Group Membership Command returns all groups the node is assigned to
Get Group Membership Command returns all groups the node is assigned to regardless of the destination endpoint.
- KRKNWK-12115: Simultaneous commissioning of many devices can cause the Coordinator device to assert
The Zigbee Coordinator device can assert when multiple devices are being commissioned simultaneously. In some cases, the device can end up in the low memory state as the result.
Workaround: To lower the likelihood of the Coordinator device asserting, increase its scheduler queue and buffer pool by completing the following steps:
Create your own custom memory configuration file by creating an empty header file for your application, similar to
include/zb_mem_config_custom.h
header file in the Zigbee light switch sample.Copy the contents of
zb_mem_config_max.h
memory configuration file to the memory configuration header file you have just created. The Zigbee Network Coordinator sample uses the contents of the memory configuration file by default.In your custom memory configuration file, locate the following code:
/* Now if you REALLY know what you do, you can study zb_mem_config_common.h and redefine some configuration parameters, like: #undef ZB_CONFIG_SCHEDULER_Q_SIZE #define ZB_CONFIG_SCHEDULER_Q_SIZE 56 */
Replace the code you have just located with the following code:
/* Increase Scheduler queue size. */ undef ZB_CONFIG_SCHEDULER_Q_SIZE define ZB_CONFIG_SCHEDULER_Q_SIZE XYZ /* Increase buffer pool size. */ undef ZB_CONFIG_IOBUF_POOL_SIZE define ZB_CONFIG_IOBUF_POOL_SIZE XYZ
To increase the scheduler queue size, replace
XYZ
next toZB_CONFIG_SCHEDULER_Q_SIZE
with the value of your choice, ranging from48U
to256U
.To increase the buffer pool size, replace
XYZ
next toZB_CONFIG_IOBUF_POOL_SIZE
with the value of your choice, ranging from48U
to127U
.
- KRKNWK-11826: Zigbee Router does not accept new child devices if the maximum number of children is reached
Once the maximum number of children devices on a Zigbee Router is reached and one of them leaves the network, the Zigbee Router does not update the flags inside beacon frames to indicate that it cannot accept new devices.
Workaround: If the maximum number of child devices has been reached, call
bdb_start_top_level_commissioning(ZB_BDB_NETWORK_STEERING)
on the parent router from theZB_ZDO_SIGNAL_LEAVE_INDICATION
signal handler.
- KRKNWK-11704: NCP communication gets stuck
The communication between the SoC and the NCP Host sometimes stops on the SoC side. The device neither sends nor accepts incoming packets. Currently, there is no workaround for this issue.
- KRKNWK-12522: Incorrect Read Attributes Response on reading multiple attributes when the first attribute is unsupported
When reading multiple attributes at once and the first one is not supported, the Read Attributes Response contains two records for the first supported attribute. The first one record has the Status field filled with Unsupported Attribute whereas the second record contains actual data.
- KRKNWK-12017: Zigbee End Device does not recover from broken rejoin procedure
If the Device Announcement packet is not acknowledged by the End Device’s parent, joiner logic is stopped and the device does not recover.
Workaround: Complete the following steps to detect when the rejoin procedure breaks and reset the device:
Introduce helper variable
joining_signal_received
.Extend
zigbee_default_signal_handler()
by completing the following steps:Set
joining_signal_received
totrue
in the following signals:ZB_BDB_SIGNAL_DEVICE_FIRST_START
,ZB_BDB_SIGNAL_DEVICE_REBOOT
,ZB_BDB_SIGNAL_STEERING
.If
leave_type
is set toZB_NWK_LEAVE_TYPE_REJOIN
, setjoining_signal_received
tofalse
in theZB_ZDO_SIGNAL_LEAVE
signal.Handle the
ZB_NLME_STATUS_INDICATION
signal to detect when End Device failed to transmit packet to its parent, reported by signal’s statusZB_NWK_COMMAND_STATUS_PARENT_LINK_FAILURE
.
See the following snippet for an example:
/* Add helper variable that will be used for detecting broken rejoin procedure. */ /* Flag indicating if joining signal has been received since restart or leave with rejoin. */ bool joining_signal_received = false; /* Extend the zigbee_default_signal_handler() function. */ case ZB_BDB_SIGNAL_DEVICE_FIRST_START: ... joining_signal_received = true; break; case ZB_BDB_SIGNAL_DEVICE_REBOOT: ... joining_signal_received = true; break; case ZB_BDB_SIGNAL_STEERING: ... joining_signal_received = true; break; case ZB_ZDO_SIGNAL_LEAVE: if (status == RET_OK) { zb_zdo_signal_leave_params_t *leave_params = ZB_ZDO_SIGNAL_GET_PARAMS(sig_hndler, zb_zdo_signal_leave_params_t); LOG_INF("Network left (leave type: %d)", leave_params->leave_type); /* Set joining_signal_received to false so broken rejoin procedure can be detected correctly. */ if (leave_params->leave_type == ZB_NWK_LEAVE_TYPE_REJOIN) { joining_signal_received = false; } ... break; case ZB_NLME_STATUS_INDICATION: { zb_zdo_signal_nlme_status_indication_params_t *nlme_status_ind = ZB_ZDO_SIGNAL_GET_PARAMS(sig_hndler, zb_zdo_signal_nlme_status_indication_params_t); if (nlme_status_ind->nlme_status.status == ZB_NWK_COMMAND_STATUS_PARENT_LINK_FAILURE) { /* Check for broken rejoin procedure and restart the device to recover. */ if (stack_initialised && !joining_signal_received) { zb_reset(0); } } break; }
- KRKNWK-11465: OTA Client issues in the Image Block Request
OTA Client cannot send Image Block Request with
MinimumBlockPeriod
attribute value set to0
.Workaround: Complete the following steps to mitigate this issue:
Restore the default
MinimumBlockPeriod
attribute value by adding the following snippet inzigbee_fota.c
file to thezigbee_fota_abort()
function and to thezigbee_fota_zcl_cb
function in the case where theZB_ZCL_OTA_UPGRADE_STATUS_FINISH
status is handled:/* Variable that store new value for MinimumBlockPeriod attribute. */ zb_uint16_t minimum_block_period_new_value = NEW_VALUE; /* Set attribute value. */ zb_uint8_t status = zb_zcl_set_attr_val( CONFIG_ZIGBEE_FOTA_ENDPOINT, ZB_ZCL_CLUSTER_ID_OTA_UPGRADE, ZB_ZCL_CLUSTER_CLIENT_ROLE, ZB_ZCL_ATTR_OTA_UPGRADE_MIN_BLOCK_REQUE_ID, (zb_uint8_t*)&minimum_block_period_new_value, ZB_FALSE); /* Check if new value was set correctly. */ if (status != ZB_ZCL_STATUS_SUCCESS) { LOG_ERR("Failed to update Minimum Block Period attribute"); }
In
zboss/src/zcl/zcl_ota_upgrade_commands.c
file in thenrfxlib
directory, change the penultimate argument of the 360ZB_ZCL_OTA_UPGRADE_SEND_IMAGE_BLOCK_REQ
macro todelay
inzb_zcl_ota_upgrade_send_block_requset()
andresend_buffer()
functions.
- KRKNWK-11602: Zigbee device becomes not operable after receiving malformed packet
When any Zigbee device receives a malformed packet that does not match the Zigbee packet structure, the ZBOSS stack asserts. In the nRF Connect SDK versions before the v1.9.0 release, the device is not automatically restarted.
Workaround: Depends on your version of the nRF Connect SDK:
Before the nRF Connect SDK v1.9.0: Power-cycle the Zigbee device.
After and including the nRF Connect SDK v1.9.0: Wait for the device to restart automatically.
Given these two options, we recommend to upgrade your nRF Connect SDK version to the latest available one.
- KRKNWK-7723: OTA upgrade process restarting after client reset
After the reset of OTA Upgrade Client, the client will start the OTA upgrade process from the beginning instead of continuing the previous process.
- KRKNWK-8211: Leave signal generated twice
The
ZB_ZDO_SIGNAL_LEAVE
signal is generated twice during Zigbee Coordinator factory reset.
- KRKNWK-9714: Device association fails if the Request Key packet is retransmitted
If the Request Key packet for the TCLK is retransmitted and the coordinator sends two new keys that are different, a joiner logic error happens that leads to unsuccessful key verification.
- KRKNWK-9743 Timer cannot be stopped in Zigbee routers and coordinators
The call to the
zb_timer_enable_stop()
API has no effect on the timer logic in Zigbee routers and coordinators.
- KRKNWK-10490: Deadlock in the NCP frame fragmentation logic
If the last piece of a fragmented NCP command is not delivered, the receiving side becomes unresponsive to further commands.
- KRKNWK-8478: NCP host application crash on exceeding
TX_BUFFERS_POOL_SIZE
If the NCP host application exceeds the
TX_BUFFERS_POOL_SIZE
pending requests, the application will crash on an assertion.Workaround: Increase the value of
TX_BUFFERS_POOL_SIZE
or define shorter polling interval (NCP_TRANSPORT_REFRESH_TIME
).
- KRKNWK-8200: Sleepy End Device halts during the commissioning
If the turbo poll is disabled in the
ZB_BDB_SIGNAL_DEVICE_FIRST_START
signal, SED halts during the commissioning.Workaround: Use the development libraries link or use
ZB_BDB_SIGNAL_STEERING
signal with successful status to disable turbo poll. See the following snippet for an example:/* Workaround for KRKNWK-8200 (turbo poll) */ switch(sig) { case ZB_BDB_SIGNAL_DEVICE_REBOOT: case ZB_BDB_SIGNAL_STEERING: if (status == RET_OK) { zb_zdo_pim_permit_turbo_poll(0); zb_zdo_pim_set_long_poll_interval(2000); } break; }
- KRKNWK-8200: Successful signal on commissioning fail
A successful steering signal is generated if the commissioning fails during TCLK exchange.
Workaround: Use the development libraries link or check for Extended PAN ID in the steering signal handler. If it is equal to zero, handle the signal as if it had unsuccessful status. See the following snippet for an example:
/* Workaround for KRKNWK-8200 (signal status) */ switch(sig) { case ZB_BDB_SIGNAL_STEERING: if (status == RET_OK) { zb_ext_pan_id_t extended_pan_id; zb_get_extended_pan_id(extended_pan_id); if (!(ZB_IEEE_ADDR_IS_VALID(extended_pan_id))) { zb_buf_set_status(bufid, -1); status = -1; } } break; }
- KRKNWK-9461 / KRKNWK-9596: Multiprotocol sample crashes with some smartphones
With some smartphones, the multiprotocol sample crashes on the nRF5340 due to timer timeout inside the 802.15.4 radio driver logic.
Affected platforms: nRF5340
- KRKNWK-6348: ZCL Occupancy Sensing cluster is not complete
The ZBOSS stack provides only definitions of constants and an abstract cluster definition (sensing cluster without sensors).
Workaround: To use the sensing cluster with physical sensor, copy the implementation and extend it with the selected sensor logic and properties. For more information, see the declaring custom cluster guide.
- KRKNWK-6336: OTA transfer might be aborted after the MAC-level packet retransmission
If the device receives the APS ACK for a packet that was not successfully acknowledged on the MAC level, the OTA client cluster implementation stops the image transfer.
Workaround: Add a watchdog timer that will restart the OTA image transfer.
- KRKNWK-7831: Factory reset broken on coordinator with Zigbee shell
A coordinator with the Zigbee shell component enabled could assert after executing the
bdb factory_reset
command.Workaround: Call the
bdb_reset_via_local_action
function twice to remove all the network information.
- KRKNWK-6318: Device assert after multiple Leave requests
If a device that rejoins the network receives Leave requests several times in a row, the device could assert.
- KRKNWK-6071: ZBOSS alarms inaccurate
On average, ZBOSS alarms last longer by 6.4 percent than Zephyr alarms.
Workaround: Use Zephyr alarms.
- KRKNWK-5535: Device assert if flooded with multiple Network Address requests
The device could assert if it receives Network Address requests every 0.2 second or more frequently.
- KRKNWK-9119: Zigbee shell does not work with ZBOSS development libraries
Because of changes to the ZBOSS API, the Zigbee shell library cannot be enabled when Zigbee samples are built with the ZBOSS Zigbee stack development libraries.
Workaround: Use only the production version of ZBOSS Zigbee stack when using Zigbee shell.
- KRKNWK-9145: Corrupted payload in commands of the Scenes cluster
When receiving Scenes cluster commands, the payload is corrupted when using the ZBOSS Zigbee stack production libraries.
Workaround: Use the development version of ZBOSS Zigbee stack.
- KRKNWK-7836: Coordinator asserting when flooded with ZDO commands
Executing a high number of ZDO commands can cause assert on the coordinator with the Zigbee shell component enabled.
- KRKNWK-6073: Potential delay during FOTA
There might be a noticeable delay (~220 ms) between calling the ZBOSS API and on-the-air activity.
Applications
The issues in this section are related to Applications.
Asset Tracker v2
The issues in this section are related to the Asset Tracker v2 application.
- CIA-845: The application cannot be built with
overlay-carrier.conf
(carrier library) enabled for Nordic Thingy:91 Building with LwM2M carrier library enabled for Nordic Thingy:91 will result in a
FLASH
overflow and a build error.Affected platforms: Thingy:91
- CIA-463: Wrong network mode parameter reported to cloud
The network mode string present in
deviceInfo
(nRF Cloud) anddev
(Azure IoT Hub and AWS IoT) JSON objects that is reported to cloud might contain wrong network modes. The network mode string contains the network modes that the modem is configured to use, not what the modem actually connects to the LTE network with.Affected platforms: nRF9160
- NCSDK-14235: Timestamps that are sent in cloud messages drift over time
Due to a bug in the Date-Time library, timestamps that are sent to cloud drift because they are calculated incorrectly.
Affected platforms: nRF9160
- CIA-604: ATv2 cannot be built for the
thingy91_nrf9160_ns
board target withSECURE_BOOT
enabled Due to the use of static partitions with the Thingy:91, there is insufficient room in the flash memory to enable both the primary and secondary bootloaders.
Affected platforms: Thingy:91
- CIA-661: Asset Tracker v2 application configured for LwM2M cannot be built for the
nrf9160dk_nrf9160_ns
board target with modem traces or Memfault enabled The Asset Tracker v2 application configured for LwM2M cannot be built for the
nrf9160dk_nrf9160_ns
board target withCONFIG_NRF_MODEM_LIB_TRACE
for modem traces oroverlay-memfault.conf
for Memfault due to memory constraints.Affected platforms: nRF9160
Workaround: Use one of the following workarounds for modem traces:
Use Secure Partition Manager instead of TF-M by setting
CONFIG_SPM
toy
andCONFIG_BUILD_WITH_TFM
ton
.Reduce the value of
CONFIG_NRF_MODEM_LIB_SHMEM_TRACE_SIZE
to 8 Kb, however, this might lead to loss of modem traces.
For Memfault, use Secure Partition Manager instead of TF-M by setting
CONFIG_SPM
toy
andCONFIG_BUILD_WITH_TFM
ton
.
- CIA-890: The application cannot be built with
overlay-debug.conf
andCONFIG_DEBUG_OPTIMIZATIONS
set toy
Due to insufficient flash space for the application when it is not optimized, the Asset Tracker v2 application cannot be built with
overlay-debug.conf
andCONFIG_DEBUG_OPTIMIZATIONS
set toy
.Affected platforms: nRF9160
Workaround: To free up flash space when debugging locally, comment out the following Kconfig options in the
prj.conf
file:This removes the partitions for the MCUboot bootloader, the secondary bootloader, and the secondary application image slot. Any functionality depending on those will not work with this configuration.
Alternatively, disable logging for non-relevant modules or libraries in the
overlay-debug.conf
file until the image fits in flash.
nRF9160: Asset tracker
The issues in this section are related to the nRF9160: Asset tracker application. This application was removed in nRF Connect SDK v1.9.0 and replaced by Asset Tracker v2.
- NCSDK-6898: Setting
CONFIG_SECURE_BOOT
does not work The immutable bootloader is not able to find the required metadata in the MCUboot image. See the related NCSDK-6898 known issue in Build system for more details.
Affected platforms: nRF9160
Workaround: Set
CONFIG_FW_INFO
in MCUboot.
- External antenna performance setting
The preprogrammed Asset Tracker does not come with the best external antenna performance.
Affected platforms: nRF9160
Workaround: If you are using nRF9160 DK v0.15.0 or higher and Thingy:91 v1.4.0 or higher, set
CONFIG_NRF9160_GPS_ANTENNA_EXTERNAL
toy
. Alternatively, for nRF9160 DK v0.15.0, you can set theCONFIG_NRF9160_GPS_COEX0_STRING
option toAT%XCOEX0
when building the preprogrammed Asset Tracker to achieve the best external antenna performance.
- NCSDK-5574: Warnings during FOTA
The nRF9160: Asset Tracker application prints warnings and error messages during successful FOTA.
Affected platforms: nRF9160
- NCSDK-6689: High current consumption in Asset Tracker
The nRF9160: Asset Tracker might show up to 2.5 mA current consumption in idle mode with
CONFIG_POWER_OPTIMIZATION_ENABLE
set toy
.Affected platforms: nRF9160
- Sending data before connecting to nRF Cloud
The nRF9160: Asset Tracker application does not wait for connection to nRF Cloud before trying to send data. This causes the application to crash if the user toggles one of the switches before the kit is connected to the cloud.
Affected platforms: nRF9160
- IRIS-2676: Missing support for FOTA on nRF Cloud
The nRF9160: Asset Tracker application does not support the nRF Cloud FOTA_v2 protocol.
Affected platforms: nRF9160
Workaround: The implementation for supporting the nRF Cloud FOTA_v2 can be found in the following commits:
cef289b559b92186cc54f0257b8c9adc0997f334
156d4cf3a568869adca445d43a786d819ae10250
f520159f0415f011ae66efb816384a8f7bade83d
Serial LTE Modem
The issues in this section are related to the Serial LTE modem application.
- NCSDK-20457: Modem traces captured through UART are corrupted if RTT logs are simultaneously captured
When capturing modem traces through UART with Cellular Monitor app and simultaneously capturing RTT logs, for example, with J-Link RTT Viewer, the modem trace misses packets, and captured packets might have incorrect information.
Affected platforms: nRF9160, nRF9161, nRF9151
Workaround: If you need to capture modem traces and RTT logs at the same time, add the following change to
nrf9160dk_nrf9160_ns.overlay
ornrf9161dk_nrf9161_ns.overlay
, depending on the board you are using. Otherwise, you can choose not to capture RTT logs. Having RTT logs enabled does not cause this issue.&uart1 { hw-flow-control; };
This increases the overall power consumption even when Serial LTE Modem is in sleep mode.
- NCSDK-24135: Serial LTE Modem (SLM) attempts to use UART hardware flow control even though Connectivity bridge does not support it
With Thingy:91, Connectivity bridge in the nRF52840 SoC terminates the USB traffic and sends the traffic through UART to SLM in the nRF9160 SiP. The Connectivity bridge does not enable UART hardware flow control and since both ends need to enable it, SLM should not enable it either. Without hardware flow control, the buffer sizes must be set accordingly for the worst-case scenario. In this case, SLM uses the default buffer size of 3x256 bytes and will drop incoming UART traffic after the buffers are full.
Affected platforms: Thingy:91
Workaround: Set the CONFIG_SLM_UART_RX_BUF_SIZE Kconfig option to
2048
to ensure that there is adequate buffer space to receive traffic from the Connectivity Bridge and disable the hw-flow-control fromboardsthingy91_nrf9160_ns.overlay
. If even larger buffer spaces are required, theCONFIG_BRIDGE_BUF_SIZE
Kconfig option for Connectivity Bridge and the CONFIG_SLM_UART_RX_BUF_SIZE Kconfig option for SLM, must be set accordingly.
- NCSDK-23733: Full modem firmware update issue on the nRF91x1 DKs
Failures of full modem firmware update on the nRF91x1 DK have been observed in certain conditions. If RTT is enabled (
CONFIG_USE_SEGGER_RTT
set toy
) and connected during the activation of the new firmware (when the modem or the device is reset), the update can fail with:XFOTA: 5,1,-116
Affected platforms: nRF9161, nRF9151
Workaround: Make sure that RTT is disconnected when activating the new firmware. It can be disconnected right before triggering the reset and connected back once the update is complete.
- NCSDK-13895: Build failure for target Thingy:91 with secure_bootloader overlay
Building the application for Thingy:91 fails if
secure_bootloader
overlay is included.Affected platforms: Thingy:91, nRF9160
- NCSDK-20047: SLM logging over RTT is not available
There is a conflict with MCUboot RTT logging. In order to save power, SLM configures MCUboot to use RTT instead of UART for logging. SLM itself uses RTT for logging as well. With a recent change, MCUboot exclusively takes control of the RTT logging, which causes the conflict.
Affected platforms: nRF9160
Workaround: Remove
CONFIG_USE_SEGGER_RTT=y
andCONFIG_RTT_CONSOLE=y
fromchild_imagemcuboot.conf
.
- Modem FW reset on debugger connection through SWD
If a debugger (for example, J-Link) is connected through SWD to the nRF9160, the modem firmware will reset. Therefore, the LTE modem cannot be operational during debug sessions.
Affected platforms: nRF9160
nRF Desktop
The issues in this section are related to the nRF Desktop application.
Note
nRF Desktop is also affected by the Bluetooth LE issue NCSDK-19865.
- NCSDK-27983: No Bluetooth advertising after a software reset
The software reset fails to properly reboot the nRF54H20 device, resulting in malfunction of Bluetooth LE advertising.
Affected platforms: nRF54H20
Workaround: Press the RESET button on the nRF54H20 DK after performing a factory or software reset of the device.
- NCSDK-23704: Too small heap size on nRF5340 DK
The heap memory pool size (
CONFIG_HEAP_MEM_POOL_SIZE
) is too small, which may cause an Event Manager out of memory (OOM) error in runtime. Too small heap size might also lead to issues when allocating memory for UUID in GATT Discovery Manager during peer discovery, because the library also uses the heap to allocate internal data.Affected platforms: nRF5340 DK
Workaround: Manually cherry-pick and apply commit with fix from
main
(commit hash:be97ae3074c38b7987d5183b1c09995cf19d61e8
).
- NCSDK-25928: HID state module keeps sending empty HID reports to lower priority subscriber after higher priority subscriber connects
After a higher priority subscriber connects, the HID state module sends empty HID reports to a lower priority subscriber to report release of all pressed buttons. Because of an implementation bug related to invalid handling of empty report data (accessing memory under
NULL
pointer), the empty HID reports are sent to the lower priority subscriber in a never-ending loop (an empty HID report with a given ID is expected to be sent once). The issue replicates if an nRF Desktop peripheral connects to the host over USB while maintaining Bluetooth LE connection.Workaround: Manually cherry-pick and apply the commit with the fix from the
main
branch (commit hash:a87407fc29514b68a7bdaea5554f7b755466a77b
).
- NCSDK-8304: HID configurator issues for peripherals connected over Bluetooth LE to Linux host
Using HID configurator for nRF Desktop for peripherals connected to host directly over Bluetooth LE might result in receiving improper HID feature report ID. In such case, the device will provide HID input reports, but it cannot be configured with the HID configurator.
Workaround: Use BlueZ in version 5.56 or higher.
- NCSDK-22953: A HID output report interrupts scanning in the Bluetooth LE scanning module even if there are no peripherals connected
Connecting a HID dongle over USB to a HID host might lead to submitting a HID output report and stopping Bluetooth LE scanning even if there are no peripherals connected through the dongle. In this case, scanning stop delays establishing a connection with peripherals.
Workaround: Manually cherry-pick and apply the commit with the fix from the
main
branch (commit hash:b4860f7c9475ff8e61a4c3b907968987bb6311bd
).
- NCSDK-22810: Assertion fail when logging
config_event
with an unknown status The
config_event.status
field is set according to data received from the host computer over Configuration channel. Setting it to a value unknown to an nRF Desktop device should not cause assertion failure.Workaround: Manually cherry-pick and apply the commit with the fix from the
main
branch (commit hash:a49008a980dbddcb48c80736f76fedbfda9c03f6
).
- NCSDK-20366: Possible bus fault in Selector module while toggling a hardware selector
The GPIO port index calculation in the GPIO interrupt handling function assumes that GPIO devices in Zephyr are placed in memory next to each other with order matching GPIO port indexes, which might not be true. Using an invalid port index in the function leads to undefined behavior.
Workaround: Manually cherry-pick and apply the commit with the fix from the
main
branch (commit hash:6179413498d1ae1c9c79255aeca2739d108e482d
).
- NCSDK-19970: MCUboot bootloader fails to swap images on nRF52840 DK that uses external flash
The MCUboot bootloader cannot access external flash because the chosen
nordic,pm-ext-flash
is not defined in the MCUboot child image’s devicetree. As a resultnrf52840dk_nrf52840
usingprj_mcuboot_qspi.conf
configuration fails to swap images after a complete image transfer.Affected platforms: nRF52840
Workaround: Manually cherry-pick and apply the commit with the fix from the
main
branch (commit hash:7cea1b7e681a39ce2e2143b6b03132d95b7606ab
). Make sure to also cherry-pick and apply the commit that fixes a build system issue (commit ec23df1fa305e99194ceac87a028f6da206a3ff1 frommain
branch). This is needed to ensure that the introduced DTS overlay will be applied to the MCUboot child image.
- NCSDK-18552: nRF Profiler synchronization module build fails
The build failure is caused by the invalid name of the module’s source file.
Workaround: Manually cherry-pick and apply the commit with the fix from the
main
branch (commit hash:28ff23ac26c079eb966893e9a64a624bf4f50b71
).
- NCSDK-17088: Bluetooth LE Quality of Service module might crash on application start
The Bluetooth LE Quality of Service (QoS) module might trigger an ARM fault on application start. The ARM fault is caused by invalid memory alignment.
Workaround: Manually cherry-pick and apply the commit with the fix from the
main
branch (commit hash:f236a8eff32adbe201d486cd11d4fa8853b90bd7
).
- NCSDK-17706: Failsafe module does not continue an interrupted settings erase operation
The failsafe module does not continue an interrupted settings erase operation on a subsequent boot. Because of that, the application might be booted with only partially erased settings.
Workaround: Manually cherry-pick and apply the commit with the fix from the
main
branch (commit hash:0581d50bab2ba54d78c1cb7ad37397bccf1fec5b
).
- NCSDK-13858: Possible crash at the start of Bluetooth LE advertising when using SW Split Link Layer
The nRF Desktop peripheral can crash at the start of the advertising when using SW Split Link Layer (
CONFIG_BT_LL_SW_SPLIT
). The crash is caused by an issue of the Bluetooth Controller. The size of the resolving list filter is invalid, which causes accessing memory areas that are located out of array.Workaround: Manually cherry-pick and apply commit with fix to
sdk-zephyr
(commit hash:15ebdfafe2b2932533aa8d71afd49d4b03d27ce4
).
- NCSDK-12337: Possible assertion failure at boot of an USB-connected host
During the booting procedure of a host device connected through USB, the HID report subscriptions might be disabled and enabled a few times without disconnecting the USB. This can result in improper subscription handling and assertion failure in the HID state module.
Workaround: Manually cherry-pick and apply commit with fix from main (commit hash:
3dbd4b47752671b61d13a4e5813163e9f8aef840
).
- NCSDK-11626: HID keyboard LEDs are not turned off when host disconnects
The HID keyboard LEDs, indicating among others state of Caps Lock and Num Lock, might not be updated after host disconnection. The problem replicates only if there is no other connected host.
Workaround: Do not use HID keyboard LEDs.
- NCSDK-11378: Empty HID boot report forwarding issue
An empty HID boot report is not forwarded to the host computer by the nRF Desktop dongle upon peripheral disconnection. The host computer might not receive information that key that was previously reported as pressed was released.
Workaround: Do not enable HID boot protocol on the nRF Desktop dongle.
- NCSDK-10907: Potential race condition related to HID input reports
After the protocol mode changes, the USB state module and the HID Service module modules might forward HID input reports related to the previously used protocol.
- DESK-978: Directed advertising issues with SoftDevice Link Layer
Directed advertising (
CONFIG_DESKTOP_BLE_DIRECT_ADV
) should not be used by the nRF Desktop application when the SoftDevice Controller is in use, because that leads to reconnection problems. For more detailed information, see theKnown issues and limitations
section of the SoftDevice Controller’s Changelog.Note
The Kconfig option name changed from
CONFIG_DESKTOP_BLE_DIRECT_ADV
toCONFIG_CAF_BLE_ADV_DIRECT_ADV
beginning with the nRF Connect SDK v1.5.99.Workaround: Directed advertising is disabled by default for nRF Desktop.
- NCSDK-12020: Current consumption for Gaming Mouse increased by 1400 mA
When not in the sleep mode, the Gaming Mouse reference design has current consumption higher by 1400 mA.
Workaround: Change
pwm_pin_set_cycles
topwm_pin_set_usec
in functionled_pwm_set_brightness()
in Zephyr’s driverled_pwm.c
file.
- NCSDK-14117: Build fails for nRF52840DK in the
prj_b0_wwcb
configuration The build failure is caused by outdated Kconfig options in the nRF52840 DK’s
prj_b0_wwcb
configuration. The nRF52840 DK’sprj_b0_wwcb
configuration does not explicitly define static partition map either.Affected platforms: nRF52840
Workaround: Manually cherry-pick and apply commit with fix from
main
(commit hash:cf4c465aceeb00d83a4f50edf67ce8c26427ac52
).
- Reconnection issues on some operating systems
On some operating systems, the nRF Desktop application is unable to reconnect to a Bluetooth host.
nRF5340 Audio
The issues in this section are related to the nRF5340 Audio applications application.
- OCT-2070: Detection issues with USB-C to USB-C connection
Using USB-C to USB-C when connecting an nRF5340 Audio DK to PC is not correctly detected on some Windows systems.
Affected platforms: nRF5340 Audio DK
- OCT-2154: USB audio interface does not work correctly on macOS
The audio stream is intermittent on the headset side after connecting the gateway to a Mac computer and starting the audio stream. This issue occurs sporadically after building the nRF5340 Audio application with the default USB port as the audio source.
Affected platforms: nRF5340 Audio DK
- OCT-2172: The headset volume is not stored persistently
This means the volume will fall back to default level after a reset.
Affected platforms: nRF5340 Audio DK
- OCT-2325: Difficult to remove a failed DFU image
If a problematic DFU image is deployed, causing the image-swap at boot to fail, the device may appear bricked with no obvious way of recovery.
Affected platforms: nRF5340 Audio DK
- OCT-2347: Stream reestablishment issues in CIS
In the CIS mode, if a stream is running and the headset is reset, the gateway cannot reestablish the stream properly.
Affected platforms: nRF5340 Audio DK
- OCT-2401: The HW codec has a variable (0-20 µs) audio interface (I2S) lock variability
This will cause a static offset of the stream, which will cause an undesired extra L-R sync difference.
Affected platforms: nRF5340 Audio DK
- OCT-2470: Discovery of Media Control Service fails
When restarting or resetting the gateway, one or more headsets may run into a condition where the discovery of the Media Control Service fails.
Affected platforms: nRF5340 Audio DK
- OCT-2472: Headset fault upon gateway reset in the bidirectional stream mode
The headset may react with a usage fault when the
CONFIG_STREAM_BIDIRECTIONAL
application Kconfig option is set toy
and the gateway is reset during a stream. This issue is under investigation.Affected platforms: nRF5340 Audio DK
- OCT-2501: Charging over seven hours results in error
Since the nRF5340 Audio DK uses a large battery, the nPM1100 can go into error when charging time surpasses 7 hours. This is because of a protection timeout on the PMIC. The charging is stopped when this error occurs.
Affected platforms: nRF5340 Audio DK
Workaround: To start the charging again, turn the nRF5340 Audio DK off and then on again.
- OCT-2539: Presentation delay may not work as expected under some configurations
The data is not presented at the correct time.
Affected platforms: nRF5340 Audio DK
- OCT-2551: GPIO pin forwarding to the network core is not done for the RGB2 LED pins
This means that the RGB2 LED does not reflect the controller status.
Affected platforms: nRF5340 Audio DK
- OCT-2558: Endpoint in BIS headset not set correctly
This may impact possibility to adjust volume for right headset and may impact broadcast switching.
Affected platforms: nRF5340 Audio DK
- OCT-2569: BIS headset stuck if toggling gateway power quickly
BIS headset may enter an unwanted state if gateway power is toggled quickly or if headset is moved out of radio range.
Affected platforms: nRF5340 Audio DK
Workaround: Reset BIS headset
- OCT-2585: Initial L-R sync may lock with an offset
The left and right headset may lock as intended, but there will be a small static time offset between the two headsets.
Affected platforms: nRF5340 Audio DK
- OCT-2587: A CIS gateway will try to connect to a BIS gateway
Non-connectable advertisement packets on the CIS gateway are not filtered out. Thereby seeing the BIS gateway, recognizing the name and trying to connect. Resulting in an error.
Affected platforms: nRF5340 Audio DK
Workaround: Use different
CONFIG_BT_DEVICE_NAME
for BIS and CIS.
- OCT-2712: Gateway cannot properly handle a connected headset if it continues to advertise
The gateway will try to connect to a headset that is already connected.
Affected platforms: nRF5340 Audio DK
- OCT-2713: Gateway can only read one PAC record from each headset
Some headsets might have several PAC records containing different supported configurations. Then the most optimal configuration might not be used, or the gateway might not be able to configure a headset since it does not know about all supported configurations.
Affected platforms: nRF5340 Audio DK
- OCT-2715: There can be a state mismatch between streaming and media control in certain scenarios
For example, if a stream is in the playing state but media control is in the pause state, it might not be possible to play or pause.
Affected platforms: nRF5340 Audio DK
- OCT-2725: Data can be overwritten when publishing configurations too fast on Zephyr bus (zbus)
When, for example, setting up a bidirectional stream, the configurations for sink and source might be received too fast, resulting in one of the configurations being lost.
Affected platforms: nRF5340 Audio DK
- OCT-2765: BIS headset stack overflow if gateway is periodically reset
A BIS headset might get stack overflow if the BIS source is reset several times with short intervals.
Affected platforms: nRF5340 Audio DK
- OCT-2766: BIS headset might get into an infinite loop
If a BIS headset is paused, the BIS broadcaster is reset, and if the headset is unpaused, it will end up in an infinite loop.
Affected platforms: nRF5340 Audio DK
- OCT-2767: Potential infinite loop for the re-established BIS stream
If the stream is lost and re-established on a broadcast sink, an infinite loop might be triggered.
Affected platforms: nRF5340 Audio DK
- OCT-2897: Interleaved packing issue
Using interleaved packing on the controller may cause the left headset to disconnect.
Affected platforms: nRF5340 Audio DK
- OCT-3006: Setting a custom bitrate using
CONFIG_BT_AUDIO_BITRATE_UNICAST_SINK
will have no effect This is because the application reverts to one of the BAP presets.
Affected platforms: nRF5340 Audio DK
Controller subsystem for nRF5340 Audio
The following known issues apply to the LE Audio subsystem (NET core controller) for nRF5340 used in the nRF5340 Audio application.
- OCX-138: Some conformance tests not passing
Not all Bluetooth conformance tests cases pass.
- OCX-152: OCX-146: 40 ms ACL interval may cause TWS to be unstable
There may be combinations of ACL intervals and other controller settings that cause instabilities to connected or true wireless stereo setups.
Workaround: Use an alternative ACL connection interval.
- OCX-153: Cannot create BIG sync after terminate pending BIG sync
If a pending BIG sync is canceled by sending the LE Broadcast Isochronous Group Sync Established command, it is impossible for the host to create a new BIG sync afterwards.
- OCX-155: Larger timestamps than intended
The timestamps/Service Data Unit references (SDU refs), may occasionally be larger than intended and then duplicated in the next interval.
- OCX-156: PTO is not supported
The controller does not support Pre-Transmission Offset.
- OCX-157: OCX-140: Interleaved broadcasts streaming issues
Interleaved broadcasts cannot stream with certain Quality of Service (QoS) configurations. The controller cannot handle neither broadcasting interleaved BIS ISO packets nor syncing with interleaved BIS ISO packets when the SDU size is more than 100 bytes and retransmission time is 4.
Workaround: Set retransmits (RTN) to
<= 2
and octets per frame to<= 80
for stereo.
- OCX-168: Issues with reestablishing streams
Syncing of broadcast receivers takes longer than in version 3310, especially for high retransmit (RTN) values.
- OCX-178: Transport latency does not affect flush timeout
Setting transport latency higher than 10 ms and higher retransmission time setting do not have an effect on the flush timeout setting. The flush timeout is always 1.
- OCX-183: Feature request control procedure initiated when controller is in progress of creating CIS and CIS is not yet established
The controller might send a feature request to the remote device during CIS creating procedure even if the CIS has not been established. Due to this, the remote device might terminate the connection.
- OCX-184: If 0 dBm TX power is selected, the FEM/PA TX/RX pins do not toggle correctly
For the usage scenario like using other vendor’s FEM or trying to expose radio TX/RX activity on GPIO, setting the max output power and the target output power to 0 dBm does not make FEM module work properly.
Workaround: Set max TX power larger than 0 dBm.
- OCX-188/OCX-227: The controller reserves some pins (0.28 - 0.31), which may collide with FEM/PA features
FEM feature cannot work properly on GPIO pins from P0.28 to P0.31.
Workaround: Use different pins for FEM/PA control.
- OCX-189: When inputting -40 dBm to HCI_OPCODE_VS_SET_CONN_TX_PWR (0x3F6), the actual TX power is changed to -20 dBm
The TX power for a connection cannot be less than -20 dBm. Controller still output -20 dBm if the setting is -40 dBm.
- OCX-208: There is a chance that the scan report only shows legacy-ADV without ADV-EXT
This might happen if a broadcast sink is moved in and out of radio range from the broadcast source or if the broadcast source is being rapidly reset. It will cause a broadcast sink to not be able to finish PA sync.
- OCX-217: The controller can get unresponsive when a broadcast sink tries to sync to some broadcast sources
This is only an issue if a broadcast sink tries to sync to certain broadcast sources made by other vendors.
- OCX-218: The BIG info is not sent from the controller when a broadcast sink tries to sync to some broadcast sources
This is only an issue if a broadcast sink tries to sync to certain broadcast sources made by other vendors.
- OCX-223: The controller asserts on the CIS gateway if two paused headsets reset
If a CIS headset pair is reset simultaneously a few times while remaining paused, the controller on the gateway might get unresponsive.
- OCX-238: The controller rejects CIS Requests with the same
CIG_ID
as a currently configured CIG This will affect the use of the controller in use cases in which it acts as both CIS Central and CIS Peripheral. Any configured CIG with the same
CIG_ID
will need to be removed before the device can act as a CIS Peripheral.
nRF Machine Learning
The issues in this section are related to the nRF Machine Learning application.
- NCSDK-18532: MCUboot bootloader does not swap images after OTA DFU on nRF5340 DK and Thingy:53
The MCUboot bootloader cannot access external flash because the chosen
nordic,pm-ext-flash
is not defined in the MCUboot child image’s devicetree. As a result, MCUboot cannot swap images that are received during the OTA update.Affected platforms: nRF5340, Thingy:53
Workaround: Manually cherry-pick and apply the commit with the fix from the
main
branch (commit hash:f54f6bbd423b12a595e76425e688f034926b8018
) to fix the issue fornrf5340dk_nrf5340_cpuapp
. Similar fix needs to be applied for the Thingy:53 board. Make sure to also cherry-pick and apply the commit that fixes a build system issue (commit ec23df1fa305e99194ceac87a028f6da206a3ff1 frommain
branch). This is needed to ensure that the introduced DTS overlay will be applied to the MCUboot child image.
- NCSDK-13923: Device might crash during Bluetooth bonding
The device programmed with the nRF Machine Learning application might crash during Bluetooth bonding because of insufficient Bluetooth RX thread stack size.
Workaround: Manually cherry-pick and apply the commit with the fix from the
main
branch (commit hash:4870fcd8316bd3a4b53ca0054f0ce35e1a8c567d
).
- NCSDK-16644: nRF Machine Learning does not go to sleep and does not wake up on Thingy:53
nRF Machine learning application on Thingy:53 does not sleep after a period of inactivity and does not wake up after an activity occurs.
Affected platforms: Thingy:53
Workaround: Manually cherry-pick and apply two commits with the fix from the
main
branch (commit hashes:7381bfcb9c23cd6f78e6ef7fd3ff82b700f81b0f
,7e8c23a6632632f0cee885abe955e37a6942911d
).
Samples
The issues in this section are related to Samples.
- NCSDK-18263: nRF Connect SDK samples may fail to boot on Thingy:53
nRF Connect SDK samples and applications that are not listed under Samples and applications for Thingy:53 with FOTA out of the box fail to boot on Nordic Thingy:53. The MCUboot bootloader is not built together with these samples, but the Thingy:53’s static Partition Manager memory map requires it (the application image does not start at the beginning of the internal
FLASH
.)Affected platforms: Thingy:53
Workaround: Revert the
9a8680372fdb6e09f3d6537c8c6751dd5c50bf86
commit in the sdk-zephyr repository and revert the1f9765df5acbb36afff0ce40c94ba65d44d19d70
commit in sdk-nrf. During conflict resolution, make sure to update thewest.yml
file in the sdk-nrf to point to the reverting commit in sdk-zephyr.
Bluetooth samples
- NCSDK-26424: Directed advertising in the Bluetooth: Peripheral HIDS mouse sample does not start after disconnecting from a bonded peer
When the sample disconnects from a peer, after successful pairing and subscription to reports, it cannot re-connect because directed advertising does not start.
- NCSDK-21709: Bluetooth: Peripheral UART sample does not work on nRF52810 and nRF52811 devices
Initialization of the Bluetooth stack fails.
Affected platforms: nRF52810, nRF52811
Workaround: Enable the
CONFIG_BT_SETTINGS
Kconfig option in the project configuration file (prj_minimal.conf
).
- NCSDK-18112: Bluetooth: Central SMP Client sample cannot do discovery on the SMP server
The Bluetooth: Central SMP Client sample cannot perform the GATT discovery on a DK with the SMP server.
Workaround: Enable the legacy LLCP mechanism (
CONFIG_BT_LL_SW_LLCP_LEGACY
).
- NCSDK-19942: HID samples do not work with Android 13
Bluetooth samples and applications that are set up for the HIDS use case and have the Bluetooth Privacy feature enabled (
CONFIG_BT_PRIVACY
) disconnect after a short period or enter a connection-disconnection loop when you try to connect to them from a device that is running Android 13. See the following list of affected samples and applications:Fast Pair configurations of the nRF Desktop application
- NCSDK-26669: Reconnection with HID devices that have privacy enabled may not work on Android 14
If an Android 14 device is disconnected from the HID device without user intervention through the Bluetooth UI from Android settings (for example, due to a connection timeout caused by the HID device rebooting), the device faces issues. If the disconnection occurs in the same session as successful Bluetooth pairing and bonding, the smartphone will not be able to automatically reconnect to the HID device. This limitation affects both background reconnection and explicit user attempts through the Bluetooth settings. See the following list of affected samples and applications:
Fast Pair configurations of the nRF Desktop application
Workaround After successful Bluetooth pairing and bonding, manually disconnect the Android device using the Bluetooth UI from Android settings, and then reconnect to the HID device.
- NCSDK-18518: Cannot build peripheral UART and peripheral LBS samples for the nRF52810 and nRF52811 devices with the Zephyr Bluetooth LE Controller
The Bluetooth: Peripheral UART and Bluetooth: Peripheral LBS samples fail to build for the nRF52810 and nRF52811 devices when the
CONFIG_BT_LL_CHOICE
Kconfig option is set toCONFIG_BT_LL_SW_SPLIT
.Affected platforms: nRF52811, nRF52810
Workaround: Use the SoftDevice Controller: set the
CONFIG_BT_LL_CHOICE
Kconfig option toCONFIG_BT_LL_SOFTDEVICE
.
- NCSDK-20070: The Bluetooth: Direct Test Mode antenna switching does not work on the nRF5340 DK with the nRF21540 EK shield
The antenna select DTM command does not have any effect because the GPIO pin which controls antenna is not forwarded to the nRF5340 DK network core.
Affected platforms: nRF5340, nRF21540
Workaround Add a
<&gpio1 6 0>
entry insamples/bluetooth/direct_test_mode/conf/remote_shell/pin_fwd.dts
.
- NCSDK-19727: Cannot build the Bluetooth: Peripheral HIDS mouse sample with security disabled
Build fails when the
CONFIG_BT_HIDS_SECURITY_ENABLED
Kconfig option is disabled.Workaround: Build the sample with its default configuration, that is, enable the
CONFIG_BT_HIDS_SECURITY_ENABLED
Kconfig option.
- NCSDK-15527: Advertising in the Bluetooth: Peripheral Heart Rate Monitor with Coded PHY sample and scanning in the Bluetooth: Central Heart Rate Monitor with Coded PHY sample cannot be started when using the SW Split Link Layer
The
CONFIG_BT_CTLR_ADV_EXT
option required by these samples is disabled by default in the SW Split Link Layer.Workaround: Enable the
CONFIG_BT_CTLR_ADV_EXT
option in the project configuration file (prj.conf
).
- NCSDK-15229: Incorrect peer’s throughput calculation in the Bluetooth: Throughput sample
The peer’s measured throughput is understated because it includes a delay, during which there is no data transfer.
Workaround: Manually cherry-pick and apply commit with fix from main (commit hash:
05871f9b9c2aebf0a3c188a61b3788baea783180
).
- NCSDK-16060: Bluetooth: Peripheral LBS sample build fails when the
CONFIG_BT_LBS_SECURITY_ENABLED
option is disabled Build failure is caused by the undefined
conn_auth_info_callbacks
structure.Workaround: Manually cherry-pick and apply commit with fix from
main
(commit hash:32c827b20f3c5ab85a359e572d366da310fe2767
).
- NCSDK-15724: Bluetooth’s Peripheral UART sample fails to start on Thingy:53
Enabling USB by the Peripheral UART’s main function ends with error because the USB was already enabled by the Thingy:53-specific code.
Affected platforms: Thingy:53
Workaround: Manually cherry-pick and apply commit with fix from
main
(commit hash:b834ff8860f3a30fe19c99dbf4c0c99b0b017245
).
- NCSDK-9820: Notification mismatch in Bluetooth: Peripheral LBS
When testing the Bluetooth: Peripheral LBS sample, if you press and release Button 1 while holding one of the other buttons, the notification for button release is the same as for the button press.
- NCSDK-12886: Peripheral UART sample building issue with nRF52811
The Bluetooth: Peripheral UART sample built for nRF52811 asserts on the nRF52840 DK in rev. 2.1.0 (board target:
nrf52840dk_nrf52811
).Affected platforms: nRF52840, nRF52811
- NCSDK-8321: NUS shell transport sample does not display the initial shell prompt
NUS shell transport sample does not display the initial shell prompt
uart:~$
on the remote terminal. Also, few logs with sending errors are displayed on the terminal connected directly to the DK. This issue is caused by the shell being enabled before turning on the notifications for the NUS service by the remote peer.Workaround: Enable the shell after turning on the NUS notifications or block it until turning on the notifications.
- Peripheral HIDS keyboard sample cannot be used with nRF Bluetooth LE Controller
The Bluetooth: Peripheral HIDS keyboard sample cannot be used with the SoftDevice Controller because the NFC subsystem does not work with the controller library. The library uses the MPSL Clock driver, which does not provide an API for asynchronous clock operation. NFC requires this API to work correctly.
- Peripheral HIDS mouse sample advertising issues
When the Bluetooth: Peripheral HIDS mouse sample is used with the Zephyr Bluetooth LE Controller, directed advertising does not time out and the regular advertising cannot be started.
- Central HIDS sample issues with directed advertising
The Bluetooth: Central HIDS sample cannot connect to a peripheral that uses directed advertising.
- Unstable samples
Bluetooth Low Energy peripheral samples are unstable in some conditions (when pairing and bonding are performed and then disconnections/re-connections happen).
- Bluetooth: Central UART cannot handle long strings
A too long 212-byte string cannot be handled when entered to the console to send to Bluetooth: Peripheral UART.
- Bluetooth: Central HIDS loses UART connectivity
After programming a HEX file to the
nrf52_pca10040
board, UART connectivity is lost when using the Bluetooth LE Controller. The board must be reset to get UART output.Affected platforms: nRF52832
- Samples crashing on nRF51 when using GPIO
On nRF51 devices, Bluetooth LE samples that use GPIO might crash when buttons are pressed frequently. In such case, the GPIO ISR introduces latency that violates real-time requirements of the Radio ISR. nRF51 is more sensitive to this issue than nRF52 (faster core).
Affected platforms: nRF51 Series, nRF52832
- GATT Discovery Manager missing support
The GATT Discovery Manager is not supported on nRF51 devices.
Affected platforms: nRF51 Series
- Samples do not work with SD Controller v0.1.0
Bluetooth LE samples cannot be built with the SoftDevice Controller v0.1.0.
- Peripheral UART string size issue
Bluetooth: Peripheral UART cannot handle the corner case that a user attempts to send a string of more than 211 bytes.
- LED Button Service reporting issue
Bluetooth: Peripheral LBS does not report the Button 1 state correctly.
- MITM protection missing for central samples
The central samples (Bluetooth: Central UART, Bluetooth: Central HIDS) do not support any pairing methods with MITM protection.
- Reconnection issues after bonding
The peripheral samples (Bluetooth: Peripheral UART, Bluetooth: Peripheral LBS, Bluetooth: Peripheral HIDS mouse) have reconnection issues after performing bonding (LE Secure Connection pairing enable) with nRF Connect for Desktop. These issues result in disconnection.
- NCSDK-17883: Cannot build peripheral UART sample with security (
CONFIG_BT_NUS_SECURITY_ENABLED
) disabled The Bluetooth: Peripheral UART sample fails to build when the
BT_NUS_SECURITY_ENABLED
Kconfig option is disabled.Workaround: In
main.c
file, search for the#else
entry of the#if defined(CONFIG_BT_NUS_SECURITY_ENABLED)
item and add an empty declaration of theconn_auth_info_callbacks
structure, just after the similar empty definition ofconn_auth_callbacks
.
- Antenna switching does not work on targets
nrf5340dk_nrf5340_cpuapp
andnrf5340dk_nrf5340__cpuapp_ns
Antenna switching does not work when direction finding sample applications are built for
nrf5340dk_nrf5340_cpuapp
andnrf5340dk_nrf5340_cpuapp_ns
targets. That is caused by GPIO pins that are responsible for access to antenna switches, not being assigned to network core.Affected platforms: nRF5340
Bluetooth Mesh samples
- NCSDK-26844: Bluetooth Mesh: Device Firmware Update (DFU) distributor sample is not able to complete self-update
When attempting to use the Bluetooth Mesh: Device Firmware Update (DFU) distributor sample to perform a self-update, the DFU process is not completed successfully. The new firmware is installed, but the remaining process will not be completed successfully.
Workaround: Use the
mesh models dfu cli target-imgs
shell command to verify that the new firmware is running after the unsuccessful completion of the self-update.
- NCSDK-26388: Compilation of Mesh Light sample can create an image without MCUboot
This can happen when compiled with the point-to-point DFU overlay and
--sysbuild
option.Workaround: To get a correct image with MCUboot, build the firmware without sysbuild using the
--no-sysbuild
option.
- NCSDK-26403: Point-to-point DFU procedure Test and Confirm with erasing application area does not succeed in the Device Manager app on IOs for the Mesh Light sample
After uploading the image and resetting the device, the mobile application cannot receive a confirmation back and the whole procedure fails.
Workaround: Use the DFU procedures Test and Confirm separately.
- NCSDK-21590: Bluetooth Mesh: Sensor observer sample does not compile for nRF52832
Adding mesh shell support for the Bluetooth Mesh: Sensor observer sample increases the need for RAM. The Bluetooth Mesh: Sensor observer sample cannot compile because of RAM shortage.
Affected platforms: nRF52832
Workaround: Disable the mesh shell support in the
prj.conf
file for the sensor client sample.
Cellular samples
- IRIS-8456: Wi-Fi builds of the Cellular: nRF Cloud multi-service sample crash and reboot
This happens if no Wi-Fi APs are visible for more than a few minutes.
- IRIS-8465: CoAP builds of the Cellular: nRF Cloud multi-service sample stall if connectivity is lost
If PDN detaches for too long while the sample is connected, the sample cannot reconnect to nRF Cloud after PDN returns.
- IRIS-7398: The Cellular: nRF Cloud multi-service sample does not support using the MCUboot secondary partition in external flash fails on the nRF9161 DK
The sample can be built for the nRF9161 DK with the
overlay_mcuboot_ext_flash.conf
overlay enabled, but the resultant application will not boot.Affected platforms: nRF9161
- IRIS-7381: Cellular: nRF Cloud REST cellular location sample might attempt to take a neighbor cell measurement when a measurement is already in progress
If cell information changes during a neighbor cell measurement, the sample will attempt to start a new measurement, resulting in warning and error log messages.
Affected platforms: nRF9160, nRF9161
Workaround: Ignore the error log message indicating that the neighbor cell measurement failed to start, error code
-119
. The sample will send the location request to nRF Cloud when the active measurement completes.
- NCSDK-5666: LTE Sensor Gateway
The Cellular: LTE Sensor Gateway sample crashes when Thingy:52 is flipped.
Affected platforms: nRF9160, Thingy:52
- GPS sockets and SUPL client library stops working
The nRF9160: GPS with SUPL client library sample stops working if SUPL client and SUPL client OS integration support is enabled, but the SUPL host name cannot be resolved.
Affected platforms: nRF9160
Workaround: Insert a delay (
k_sleep()
) of a few seconds after theprintf
on line 294 inmain.c
.
- NCSDK-9441: The Cellular: Full modem firmware update using SMP Server sample is unstable with the newest J-Link version
Full modem serial update does not work on development kit with debugger chip version delivered with J-Link software > 6.88a
Affected platforms: nRF9160
Workaround: Downgrade the debugger chip to the firmware released with J-Link 6.88a or use another way of transferring serial data to the chip.
- NCSDK-11033: Dial-up usage not working
Dial-up usage with MoSh PPP does not work and causes the nRF9160 DK to crash when it is connected to a PC.
Affected platforms: nRF9160
Workaround: Manually pick the fix available in Zephyr to the Zephyr issue #38516.
Matter samples
The issues in this section are related to Matter samples.
- KRKNWK-19480: Lock sample does not allow for clearing the door lock user when using the schedules feature
If the lock application is built with the
CONFIG_LOCK_SCHEDULES
Kconfig option and lock credentials are programmed by the controller, clearing of the user always fails.Workaround: Manually cherry-pick and apply commit with fix from main (commit hash:
b60eb4900e62bb7c771397adb152552849052b18
).
- KRKNWK-18242: Thermostat sample does support the AUTO system mode
AUTO system mode is supported in a thermostat device but it is not reflected in the data model and the feature map indicates that AUTO system mode is not supported.
Workaround: Set the feature map to
0x23
in thethermostat.zap
file and regenerate the data model, so that it indicates that the AUTO mode is supported by a thermostat device.
NFC samples
The issues in this section are related to NFC samples.
- NCSDK-19168: The Bluetooth: NFC pairing and Bluetooth: Central NFC pairing samples cannot pair using OOB data
The Parser for Connection Handover records library parses AC records in an invalid way. As a result, the samples cannot parse OOB data for pairing.
Workaround: Revert the
subsys/nfc/ndef/ch_record_parser.c
file to the state from the nRF Connect SDK v2.1.0 Release Notes.cd <NCS_root_directory> git checkout v2.1.0 -- subsys/nfc/ndef/ch_record_parser.c
- NCSDK-19347: NFC Reader samples return false errors with value
1
The
nfc_t4t_isodep_transmit()
function of the ISO-DEP protocol library can return1
as error code even if a delayed operation has been scheduled correctly and should return0
. This happens when the ISO-DEP frame is sent for the first time. In samples, this error is propagated from the higher levelnfc_t4t_hl_procedure_ndef_tag_app_select()
function. The TNEP for polling device library operations can call the application error callback with error code1
, meaning that a delayed operation has been scheduled successfully.Workaround: Ignore the TNEP for polling device error callback with error value
1
. Treat the return value1
of the functionsnfc_t4t_isodep_transmit()
andnfc_t4t_hl_procedure_ndef_tag_app_select()
as success.
- Sample incompatibility with the nRF5340 PDK
The NFC: TNEP poller and NFC: Tag reader samples cannot be run on the nRF5340 PDK. There is an incorrect number of pins defined in the MDK files, and the pins required for NFC Reader ST25R3911B cannot be configured properly.
Affected platforms: nRF5340
- Unstable NFC tag samples
NFC tag samples are unstable when exhaustively tested (performing many repeated read and/or write operations). NFC tag data might be corrupted.
nRF5340 samples
- NCSDK-20967: The nRF5340: nRF RPC Entropy sample does not work on the network core
The network core will not work due a hard fault.
Affected platforms: nRF5340
Other samples
- NCSDK-20046: IPC service sample does not work with
nrf5340dk_nrf5340_cpuapp
The IPC service sample does not work with the
nrf5340dk_nrf5340_cpuapp
board target due to a misconfiguration. The application core does not log anything, while the network core seems to work and bond, but cannot transfer data. When using UART, there is no output visible.Affected platforms: nRF5340
- NCSDK-16856: Increased power consumption observed for the Low Power UART sample on nRF5340 DK
The power consumption of the Low Power UART sample measured using the nRF5340 DK v2.0.0 is about 200 uA higher than expected.
Affected platforms: nRF5340
Workaround: Disconnect flow control lines for VCOM2 with the SW7 DIP switch on the board.
- NCSDK-18847: Radio test (short-range) sample does not build with support for Skyworks front-end module
When building a sample with support for a front-end module different from nRF21540, the sample uses a non-existing configuration to initialize TX power data. This causes a compilation error because the source file containing code for a generic front-end module is not included in the build.
Workaround: Do not use the
CONFIG_RADIO_TEST_POWER_CONTROL_AUTOMATIC
Kconfig option and replaceCONFIG_GENERIC_FEM
withCONFIG_MPSL_FEM_SIMPLE_GPIO
in theCMakeLists.txt
file of the sample.
- NCSDK-19858: AT monitor library and Cellular: nRF Cloud multi-service sample heap overrun
Occasionally, the AT monitor library heap becomes overrun, presumably due to one of the registered AT event listeners becoming stalled. This has only been observed with the Cellular: nRF Cloud multi-service sample.
- NCSDK-20095: Build warning in the RF test samples when the minimal pinout generic/Skyworks FEM is used
The Radio test (short-range) and Bluetooth: Direct Test Mode samples build with a warning about generic/Skyworks FEM in minimal pinout configuration.
- NCSDK-16338: Setting gain for nRF21540 Front-end module does not work in the Radio test (short-range) sample
Setting FEM gain for nRF21540 Front-end module does not work in the Radio test (short-range) sample with the nRF5340 SoC.
Affected platforms: nRF5340, nRF21540
Workaround: Enable the SPI 0 instance in the nRF5340 network core DTS overlay file.
- NCSDK-13925: Build warning in the RF test samples when the nRF21540 EK support is enabled
Radio test (short-range) and Bluetooth: Direct Test Mode build with warnings for nRF5340 with the Developing with the nRF21540 EK support.
Affected platforms: nRF5340, nRF21540
Workaround: Change the parameter type in the
nrf21540_tx_gain_set()
function inncs/nrf/samples/bluetooth/direct_test_mode/src/fem/nrf21540.c
fromuint8_t
touint32_t
.
- NCSDK-7173: nRF5340 network core bootloader cannot be built stand-alone
The nRF5340: Network core bootloader sample does not compile when built stand-alone. It compiles without problems when included as a child image.
Affected platforms: nRF5340
Workaround: Include the nRF5340: Network core bootloader sample as child image instead of compiling it stand-alone.
Libraries
The issues in this section are related to Libraries.
Binary libraries
- NCSDK-26682: In the Verizon network, the LwM2M carrier library fails to complete bootstrap process unless the same device has previously completed a bootstrap
This is because one of the required pre-shared keys is not generated unless there is a pre-existing one in the modem.
Affected platforms: nRF9161
Workaround: Complete the following steps:
Program any application that uses an earlier nRF Connect SDK version of the LwM2M carrier library, for example LwM2M carrier sample for v2.5.2.
Wait till the application receives the
LWM2M_CARRIER_EVENT_BOOTSTRAPPED
event as described on the LwM2M carrier sample description page.Program your application for nRF Connect SDK v2.6.0 .
- TNSW-46156: The LwM2M carrier library can in some cases trigger a modem bug related to PDN deactivation (AT+CGACT) in NB-IoT mode
This causes excessive network signaling which can make interactions with the modem (AT commands or Modem library functions) hang for several minutes.
Affected platforms: nRF9160
Workaround: Add a small delay before PDN deactivation as shown in Pull Request #10379.
- NCSDK-18746: The LwM2M carrier library fails to complete non-secure bootstrap when using a custom URI and the default security tag
If the LwM2M carrier library is operating in generic mode (not connecting to any of the predefined supported carriers), and the
CONFIG_LWM2M_CARRIER_CUSTOM_URI
is set to connect to a non-secure server, the library attempts to retrieve a PSK fromCONFIG_LWM2M_CARRIER_SERVER_SEC_TAG
even though a PSK is not needed for the non-secure bootstrap. The PSK in thissec_tag
is not used, but reading thesec_tag
causes the bootstrap to fail if theCONFIG_LWM2M_CARRIER_SERVER_SEC_TAG
is set to the default value (0
).Affected platforms: nRF9160
Workaround: Assign any non-zero value to
CONFIG_LWM2M_CARRIER_SERVER_SEC_TAG
.
- NCSDK-12912: The LwM2M carrier library does not recover if initial network connection fails
When the device is switched on, if
lte_lc_connect()
returns an error at timeout, it will causelwm2m_carrier_init()
to fail. Thus, the device will fail to connect to carrier device management servers.Affected platforms: nRF9160
Workaround: Increase
CONFIG_LTE_NETWORK_TIMEOUT
to allow LTE link control more time to successfully connect.
- NCSDK-12913: The LwM2M carrier library will fail to initialize if phone number is not present in SIM
The SIM phone number is needed during the LwM2M carrier library start-up. For new SIM cards, it might take some time before the phone number is received by the network. The LwM2M carrier library does not wait for this to happen. Thus, the device can fail to connect to the carrier’s device management servers.
Affected platforms: nRF9160
Workaround: Use one of the following workarounds:
Reboot or power-cycle the device after the SIM has received a phone number from the network.
Apply the following commits, depending on your nRF Connect SDK version:
- NCSDK-13106: When replacing a Verizon SIM card, the LwM2M carrier library does not reconnect to the device management servers
When a Verizon SIM card is replaced with a new Verizon SIM card, the library fails to fetch the correct PSK for the bootstrap server. Thus, the device fails to connect to the carrier’s device management servers.
Affected platforms: nRF9160
Workaround: Use one of the following workarounds:
Use the
CONFIG_LWM2M_CARRIER_USE_CUSTOM_PSK
andCONFIG_LWM2M_CARRIER_CUSTOM_PSK
configuration options to set the appropriate PSK needed for Verizon test or live servers. This PSK can be obtain from the carrier.After inserting a new SIM card, reboot the device again.
Common Application Framework (CAF)
The issues in this section are related to Common Application Framework.
- NCSDK-13247: Sensor manager dereferences NULL pointer on wake up for sensors without trigger
CAF: Sensor manager module dereferences NULL pointer while handling a
wake_up_event
if a configured sensor does not use trigger. This leads to undefined behavior.Workaround: Manually cherry-pick and apply commit with fix from main (commit hash:
3db6da76206d379c223afe2de646218e60e4f339
).
- NCSDK-13058: Directed advertising does not work
The directed advertising feature enabled with the
CONFIG_CAF_BLE_ADV_DIRECT_ADV
option does not work as intended. Using directed advertising towards peers that enable privacy might result in connection establishing problems.Workaround: Manually cherry-pick and apply commit with fix from main (commit hash:
c61c677872943bcf7905ddeec8b24b07ae50752e
).
- NCSDK-18587: CAF: Bluetooth LE advertising module leaves off state on peer disconnection
If Bluetooth peer disconnects while the module is in the off state, the Bluetooth LE advertising module enters the ready state. The module must remain in the off state until
wake_up_event
is received.Workaround: Manually cherry-pick and apply commit with fix from main (commit hash:
d5f1390f724b08ebe6bc72d0ff7ba2296a6f4acd
).
- NCSDK-15675: Possible advertising start failure and module state error in CAF: Bluetooth LE advertising module
If a new peer is selected twice in a quick succession, the second peer selection might cause an advertising start failure and a module state error reported by the CAF: Bluetooth LE advertising module. See the commit with fix mentioned in the workaround for details.
Workaround: Manually cherry-pick and apply commit with fix from main (commit hash:
934a25ac23125758e350b64bca23885486682109
).
- NCSDK-15707: Visual glitches when updating an RGB LED’s color in CAF: LEDs module
Due to changes in the default DTS of the boards, the default PWM period has been increased. The first LED channel is updated one PWM period before other channels. This causes visual glitches for LEDs with more than one color channel when the LED color is being updated. A shorter LED PWM period mitigates the observed issue. See CAF: LEDs module for more information.
Workaround: Make sure your application includes the devicetree overlay file in which PWM period is decreased. For example, include the following commit to solve the issue for the nRF Machine Learning application for Nordic Thingy:53:
fa2b57cddbaacf393c77def5d0302e1a45138d21
.
- NCSDK-16644: CAF: Sensor manager module macro incorrectly converts float to sensor value
CAF: Sensor manager module macro
FLOAT_TO_SENSOR_VALUE
might convert float to sensor value incorrectly, because of missing brackets around macro argument.Workaround: Manually cherry-pick and apply the commit with the fix from the
main
branch (commit hash:7e8c23a6632632f0cee885abe955e37a6942911d
).
- NCSIDB-925: Event subscribers in the Application Event Manager may overlap when using a non-default naming convention
In order to locate the event subscribers start and stop address ranges, sections have to be sorted by the name with added postfixes. Hence, using a non-default event naming scheme may break the expected subscribers sorting. In this situation, one of the event subscribers arrays might be placed inside the other. So, when the event related to the outer subscribers is processed, the event subscribers that are inside are also executed. To resolve this issue, a new implementation was introduced that uses a section naming that cannot be used as event name (invalid variable identifier).
Workaround: Use the default event names, ensuring that each event name ends with the
_event
postfix. Make sure that the event name does not start the same way as another event. For example, creating the following events:rx_event
andrx_event_error_event
would still cause the issue.
Modem libraries
- CIA-857: LTE Link Controller spurious events
When using the LTE link control library, a memory comparison is done between padded structs that may result in comparing bytes that have undefined initialization values. This may cause spurious
LTE_LC_EVT_CELL_UPDATE
andLTE_LC_EVT_PSM_UPDATE
events even though the information contained in the event has not changed since last update event.Affected platforms: nRF9160
- NCSDK-15512: Modem traces retrieval incompatible with TF-M
Enabling modem traces with
CONFIG_UART_NRF_MODEM_LIB_TRACE_BACKEND_UART
set toy
will disable TF-M logging from secure processing environment (usingCONFIG_TFM_LOG_LEVEL_SILENCE
set toy
) including output from hardware fault handlers. You can either use UART1 for TF-M output or for modem traces, but not for both.Affected platforms: nRF9160
Libraries for networking
- NCSDK-28046: LwM2M firmware update cannot resume push mode delta update
When LwM2M firmware update is used with modem delta image by writing image in CoAP block-wise transfer, previously failed or time-out transfer is not cleared out properly, and the FOTA process cannot resume.
Affected platforms: nRF9160, nRF9161, nRF9151
Workaround: Apply the fix from sdk-nrf PR #15892.
- NCSDK-26534: When LwM2M client utils is used for downloading FOTA updates, ongoing updates cannot be cancelled by writing an empty URI
This happens when downloading FOTA updates using LwM2M.
Workaround: Apply the fix from sdk-nrf PR #14474.
- NCSDK-28192: Hardfault in coap_codec_agnss_encode
When using the nRF Cloud CoAP library, if the
net_info
field of the request parameter provided to thecoap_codec_agnss_encode()
isNULL
, a hardfault will occur.Affected platforms: nRF9160, nRF9161, nRF9151
** Workaround:** Apply the fix from sdk-nrf PR #16242.
- CIA-351: Connectivity issues with Azure IoT Hub
If a
device-bound
message is sent to the device while it is in the LTE Power Saving Mode (PSM), the TCP connection will most likely be terminated by the server. Known symptoms of this are frequent reconnections to cloud, messages sent to Azure IoT Hub never arriving, and FOTA images being downloaded twice.Affected platforms: nRF9160
Workaround: Avoid using LTE Power Saving Mode (PSM) and extended DRX intervals longer than approximately 30 seconds. This will reduce the risk of the issue occurring, at the cost of increased power consumption.
Bluetooth libraries and services
- NCSDK-23315: The Bluetooth LE advertising providers has an incorrect range and default value for the
CONFIG_BT_ADV_PROV_FAST_PAIR_ADV_BUF_SIZE
Kconfig option The buffer size has not been aligned to the new Fast Pair not discoverable advertising data size after size of the salt included in the data was increased from 1 byte to 2 bytes. Too small default buffer size results in an assertion failure when generating an advertising data for the Fast Pair not discoverable advertising with five Account Keys and the Battery Notification enabled. The assertion failure replicates in the Bluetooth Fast Pair: Input device sample.
Workaround: Manually cherry-pick and apply the commit with the fix from the
main
branch (commit hash:a8b668e82837295962348e9e681125c2ae11bb4e
).
- NCSDK-23682: The Fast Pair Seeker might be unable to bond again after losing the bonding information multiple times
If the
CONFIG_BT_SETTINGS_CCC_LAZY_LOADING
Kconfig option is disabled on the Fast Pair Provider side, the Fast Pair Seeker that uses the RPA address to connect with the Provider might be unable to bond again after losing the bonding information multiple times. The issue is because of Zephyr issue #64042.Workaround: Keep the
CONFIG_BT_SETTINGS_CCC_LAZY_LOADING
Kconfig option enabled.
Other libraries
- NCSDK-22908: The NFC Reader ST25R3911B library returns a processing error
The library returns a processing error in case the Rx complete event is received together with the FIFO water level event.
- NCSDK-18398: Build fails if shell is enabled
Enabling the Zephyr’s Shell module together with nRF Profiler results in a build failure because of the bug in the
CMakeLists.txt
file.Workaround: Manually cherry-pick and apply the commit with the fix from the
main
branch (commit hash:fdac428e902ebd96885160dd3ae5d08d21642926
).
- NCSDK-15471: Compilation with SUPL client library fails when TF-M is enabled
Building an application that uses the SUPL client library fails if TF-M is used.
Affected platforms: nRF9160
Workaround: Use one of the following workarounds:
Use Secure Partition Manager instead of TF-M.
Disable the FPU by setting
CONFIG_FPU
ton
.
Subsystems
The issues in this section are related to different subsystems.
Build system
The issues in this section are related to Build and configuration system.
- NCSDK-28495: Sysbuild runs CMake code before processing application
sysbuild.cmake
When using a
sysbuild.cmake
file to set configuration for images that have variants, this extra configuration might end up not being applied to the variant image, causing the images to be incompatible.Workaround: Depending on your configuration:
If applying configuration to the default image and building in the direct XIP mode, also apply the configuration to
mcuboot_secondary_app
.If applying configuration to MCUboot with application secure boot enabled, also apply the configuration to
s1_image
.If applying configuration to the default image with application secure boot enabled and MCUboot disabled, also apply the configuration to
s1_image
.
- NCSDK-28462: MCUboot signing configuration cannot be updated without pristine build
When using Sysbuild, the MCUboot signing configuration cannot be updated in an already configured project.
Workaround: Perform a pristine build to change any of the MCUboot signing configuration. Do not update it using menuconfig, guiconfig or the nRF Kconfig GUI, and instead provide it on the command line when configuring the application if it needs setting manually.
- NCSDK-28461: Sysbuild partition manager file changes cannot be propagated to builds unless they are pristine
When using Sysbuild and a Partition Manager file, the Partition Manager configuration for things such as MCUboot signing will not be updated if the Partition Manager configuration is changed in an already configured project.
Workaround: Perform a pristine build after changing configuration in Partition Manager files.
- NCSDK-28451: Sysbuild silently does not use relative path (relative to application config dir) user-specified (PM_STATIC_YML_FILE) static PM files
When building an application using Sysbuild with a static partition file specified using
PM_STATIC_YML_FILE
with a relative path, the relative path will be relative to the sysbuild folder in Zephyr, not to the application configuration directory, and the file will silently be ignored.Workaround: Use an absolute path when specifying the static partition file and ensure that the output shows the file as being used.
- NCSDK-20567: When building an application for MCUboot, the build system does not check whether the compiled application is too big for being an update image
In this case the update cannot be applied, because the swap algorithm requires some free space in the secondary slot (even if the image fits inside the slot). Check the size requirements in the MCUboot documentation.
- NCSIDB-816: nanopb/protoc not specified correctly by the nRF Connect SDK Toolchain
The nRF Connect SDK Toolchain includes the nanopb/protoc tool when installed, but the path to the tool is not propagated correctly to the nRF Connect SDK build system.
Workaround: Locate the nanopb
generator-bin
directory in your nRF Connect SDK Toolchain and add its path to your system’s global path. This makes the protoc tool executable findable.
- NCSDK-6117: Build configuration issues
The build configuration consisting of nRF Secure Immutable Bootloader, Secure Partition Manager, and application does not work. (The SPM has been deprecated with the nRF Connect SDK v2.1.0.)
Workaround: Either include MCUboot in the build or use MCUboot instead of the immutable bootloader.
- NCSDK-10672:
dfu_application.zip
is not updated during build In the configuration with MCUboot, the
dfu_application.zip
might not be properly updated after code or configuration changes, because of missing dependencies.Workaround: Clear the build if
dfu_application.zip
is going to be released to make sure that it is up to date.
- NCSDK-9786: Wrong FLASH_PAGE_ERASE_MAX_TIME_US for the nRF53 network core
FLASH_PAGE_ERASE_MAX_TIME_US
defines the execution window duration when doing the flash operation synchronously along the radio operations (CONFIG_SOC_FLASH_NRF_PARTIAL_ERASE
not enabled).The
FLASH_PAGE_ERASE_MAX_TIME_US
value of the nRF53 network core is lower than required. For this reason, ifCONFIG_SOC_FLASH_NRF_RADIO_SYNC_MPSL
is set toy
andCONFIG_SOC_FLASH_NRF_PARTIAL_ERASE
is set ton
, a flash erase operation on the nRF5340 network core will result in an MPSL timeslot OVERSTAYED assert.Affected platforms: nRF5340
Workaround: Increase
FLASH_PAGE_ERASE_MAX_TIME_US
(defined inncs/zephyr/soc/arm/nordic_nrf/nrf53/soc.h
) from 44850UL to 89700UL (the same value as for the application core).
- NCSDK-6898: Overriding child images
Adding child image overlay from the
CMakeLists.txt
top-level file located in thesamples
directory overrides the existing child image overlay.Workaround: Apply the configuration from the overlay to the child image manually.
- NCSDK-6777: Project out of date when
CONFIG_SECURE_BOOT
is set The DFU
.zip
file is regenerated even when no changes are made to the files it depends on. As a consequence, SES displays a “Project out of date” message even when the project is not out of date.Workaround: Apply the fix from sdk-nrf PR #3241.
- NCSDK-6848: MCUboot must be built from source when included
The build will fail if either
CONFIG_MCUBOOT_BUILD_STRATEGY_SKIP_BUILD
orCONFIG_MCUBOOT_BUILD_STRATEGY_USE_HEX_FILE
is set.Workaround: Set
CONFIG_MCUBOOT_BUILD_STRATEGY_FROM_SOURCE
instead.
- KRKNWK-7827: Application build system is not aware of the settings partition
The application build system is not aware of partitions, including the settings partition, which can result in application code overlapping with other partitions. As a consequence, writing to overlapping partitions might remove or damage parts of the firmware, which can lead to errors that are difficult to debug.
Workaround: Define and use a code partition to shrink the effective flash memory available for the application. You can use one of the following solutions:
Partition Manager from nRF Connect SDK - see the page for all configuration options. For example, for single image (without bootloader and with the settings partition used), set the
CONFIG_PM_SINGLE_IMAGE
Kconfig option toy
and define the value forCONFIG_PM_PARTITION_SIZE_SETTINGS_STORAGE
to the required settings storage size.Devicetree code partition from Zephyr. Set
CONFIG_USE_DT_CODE_PARTITION
Kconfig option toy
. Make sure that the code partition is defined and chosen correctly (offset
andsize
).
- Flash commands only program one core
west flash
andninja flash
only program one core, even if multiple cores are included in the build.Workaround: Execute the flash command from inside the build directory of the child image that is placed on the other core (for example,
build/hci_rpmsg
).
- NCSDK-11234: Statically defined “pcd_sram” partition might cause ARM usage fault
Inconsistency between SRAM memory partitions in Partition Manager and DTS could lead to improper memory usage. For example, one SRAM region might be used for multiple purposes at the same time.
Workaround: Ensure that partitions defined by DTS and Partition Manager are consistent.
- NCSDK-7234: UART output is not received from the network core
The UART output is not received from the network core if the application core is programmed and running with a non-secure image (using the
nrf5340dk_nrf5340_cpuapp_ns
board target).Affected platforms: nRF5340
- NCSDK-7982: Partition manager: Incorrect partition size linkage from name conflict
The partition manager will incorrectly link a partition’s size to the size of its container if the container partition’s name matches its child image’s name in
CMakeLists.txt
. This can cause the inappropriately-sized partition to overwrite another partition beyond its intended boundary.Workaround: Rename the container partitions in the
pm.yml
andpm_static.yml
files to something that does not match the child images’ names, and rename the child images’ main image partition to its name inCMakeLists.txt
.
- Missing
CMakeLists.txt
The
CMakeLists.txt
file for developing applications that emulate nRF52820 on the nRF52833 DK is missing.Affected platforms: nRF52833, nRF52820
Workaround: Create a
CMakeLists.txt
file in thencs/zephyr/boards/arm/nrf52833dk_nrf52820
folder with the following content:zephyr_compile_definitions(DEVELOP_IN_NRF52833) zephyr_compile_definitions(NRFX_COREDEP_DELAY_US_LOOP_CYCLES=3)
You can download this file from the upstream Zephyr repository. After you add it, the file is automatically included by the build system.
- NCSDK-29124: Cannot set the NSIB signing key using environment or command line value while using child image for a project.
Environment value
SB_SIGNING_KEY_FILE
and command line value passing under-DSB_SIGNING_KEY_FILE=<path_to_pem_file>
are ignored by build system. Instead, an auto-generated key is used for signing.Affected platforms: nRF52 Series, nRF5340, nRF91 Series
Workaround: Always set the
CONFIG_SB_SIGNING_KEY_FILE
value for the B0 child image.
Bootloader
The issues in this section are related to Bootloaders and DFU.
- NCSDK-24203: If fault injection hardening (FIH) is enabled, a bug is observed in the
boot_image_check_hook()
function Due to this, multicore applications cannot be booted for nRF5340 MCUboot builds with simultaneous multimage update enabled.
Affected platforms: nRF5340, Thingy:53
Workaround: Disable fault injection hardening (FIH) or cherry-pick the commit in PR #12846.
- NCSDK-23761: MCUboot fails to boot when both the
CONFIG_MCUBOOT_HW_DOWNGRADE_PREVENTION
andCONFIG_BOOT_FIH_PROFILE_LOW
Kconfig options are enabled The MCUboot downgrade prevention mechanism relies on platform-specific implementation of hardware security counters. The nRF Connect SDK implementation of the hardware security counters is not compatible with the fault injection hardening code (FIH) of MCUboot. In the nRF Connect SDK, the Kconfig option
CONFIG_BOOT_FIH_PROFILE_LOW
of MCUboot is enabled by default for TF-M builds. You can enable the MCUboot Kconfig optionCONFIG_MCUBOOT_HW_DOWNGRADE_PREVENTION
in the nRF Connect SDK using the optionCONFIG_MCUBOOT_HARDWARE_DOWNGRADE_PREVENTION
.Workaround: To fix the issue, disable either the
CONFIG_MCUBOOT_HW_DOWNGRADE_PREVENTION
orCONFIG_BOOT_FIH_PROFILE_LOW
Kconfig option in MCUboot.
- SHEL-1352: Incorrect base address used in the OTP TX trim coefficients
Incorrect base address used for TX trim coefficients in the One-Time Programmable (OTP) memory results in transmit power deviating by +/- 2 dB from the target value.
Affected platforms: nRF7002
- NCSDK-18376: P-GPS in external flash fails to inject first prediction during load sequence
When using external flash with P-GPS, stored predictions cannot be reliably read to satisfy the modem’s need for ephemeris data when actively downloading and storing predictions to the same external flash. Once the download is complete, the predictions can be reliably read.
Affected platforms: nRF9160
- Public keys revocation
Public keys are not revoked when subsequent keys are used.
- Incompatibility with nRF51
The bootloader does not work properly on nRF51.
Affected platforms: nRF51 Series
- Immutable bootloader not supported in SES
Building and programming the immutable bootloader (see Secure bootloader chain) is not supported in SEGGER Embedded Studio.
- Immutable bootloader board restrictions
The immutable bootloader can only be used with the following boards:
nrf52840_pca10056
nrf9160_pca10090
- nRF Secure Immutable Bootloader and netboot can overwrite non-OTP provisioning data
In architectures that do not have OTP regions, b0 and b0n images incorrectly linked to the size of their container can overwrite provisioning partition data from their image sizes. Issue related to NCSDK-7982.
- The combination of nRF Secure Immutable Bootloader and MCUboot fails to upgrade both the application and MCUboot
Due to a change in dependency handling in MCUboot, MCUboot does not read any update as a valid update. Issue related to NCSDK-8681.
- NRF91-989: Unable to bootstrap after changing SIMs
In some cases, swapping the SIM card might trigger the bootstrap pre-shared key (PSK) to be deleted from the device. This can prevent future bootstraps from succeeding.
Affected platforms: nRF9160
DFU and FOTA
The issues in this section are related to MCUboot and NSIB.
- NCSDK-21790: Errors during DFU when using nRF Connect for mobile app
MCUmgr is incorrectly reporting an error when DFU is performed using the nRF Connect for mobile app. The DFU functionality is working as expected.
Affected platforms: nRF5340
- NCSDK-21379: Single slot network core updates on nRF5340 does not work properly
Currently, a bug in the MCUboot code causes network core updates to not be applied when using the nRF5340 in a single slot configuration.
Affected platforms: nRF5340
Workaround: Use one of the following workarounds:
Enable the
CONFIG_BOOT_IMAGE_ACCESS_HOOKS
Kconfig option and copy the routine for updating the network core fromloader.c
in MCUboot ornrf53_hooks.c
.Use the dual-slot configuration of MCUboot.
- CIA-738: FMFU does not use external flash partitions
Full modem FOTA support assumes full control of the external flash; it does not use an external flash partition. It cannot be combined with other usages, such as storing settings or P-GPS data.
Affected platforms: nRF9160
- NCSDK-18357: Serial recovery does not work on nRF5340 network core
If a network core serial recovery is attempted using MCUboot serial recovery, the upload will complete, but the image will not be transferred to the network core and the upgrade will fail.
Affected platforms: nRF5340
- NCSDK-18422: Serial recovery fails to write to slots in QSPI
If a slot resides in an external QSPI storage area and this area is written to in MCUboot’s serial recovery system, the writing will not work due to memory buffer alignment offsets and requirements with the underlying flash driver.
- NCSDK-18108:
s1
variant image configuration mismatch If an image with an
s1
variant is configured and thes0
image configuration is changed using menuconfig, these changes will not be reflected in thes1
configuration, which can lead to a differing build configuration or the build does not upgrade.
- NCSDK-11308: Powering off device immediately after serial recovery of the nRF53 network core firmware results in broken firmware
The network core will not be able to boot if the device is powered off too soon after completing a serial recovery update procedure of the network core firmware. This is because the firmware is being copied from shared RAM to network core flash after mcumgr indicates that the serial recovery procedure has completed.
Affected platforms: nRF5340
Workaround: Use one of the following workarounds:
Wait for 30 seconds before powering off the device after performing serial recovery of the nRF53 network core firmware.
Re-upload the network core firmware with a new serial recovery procedure if the device was powered off too soon in a previous procedure.
- NCSDK-11432: DFU: Erasing secondary slot returns error response
Trying to erase secondary slot results in an error response. Slot is still erased. This issue is only occurring when the application is compiled for multi-image.
Affected platforms: nRF5340
- NCSDK-6238: Socket API calls might hang when using Download client
When using the Download client library with HTTP (without TLS), the application might not process incoming fragments fast enough, which can starve the Modem library buffers and make calls to the Modem library hang. Samples and applications that are affected include those that use Download client to download files through HTTP, or those that use FOTA download with modem updates enabled.
Workaround: Set
CONFIG_DOWNLOAD_CLIENT_RANGE_REQUESTS
.
- Jobs not received after reset
When using AWS FOTA, no new jobs are received on the device if the device is reset during a firmware upgrade or loses the MQTT connection.
Workaround: Delete the stalled in progress job from AWS IoT.
- NCSDK-24305: fota_download library sends FOTA_DOWNLOAD_EVT_FINISHED when unable to connect
The Download client library does not resume a download if the device cannot connect to a target server. This causes the FOTA download library to incorrectly assume that the download has completed.
Workaround: Set the
CONFIG_FOTA_SOCKET_RETRIES
Kconfig option to0
.
- Stalled download
FOTA download does not resume a download if the device loses the connection.
Workaround: Call
fota_download_start()
again with the same arguments when the connection is re-established to resume the download.
- Offset not retained with an MCUboot target
When using the MCUboot target in DFU target, the write/downloaded offset is not retained when the device is reset.
- Download stopped on socket connection timeout
In the nRF9160: AWS FOTA and Cellular: HTTP application update samples, the download is stopped if the socket connection times out before the modem can delete the modem firmware. A fix for this issue is available in commit 38625ba7.
Workaround: Call
fota_download_start()
again with the same arguments.
- Update event triggered by an error event
If the last fragment of a FOTA download is received but is corrupted, or if the last write is unsuccessful, the library emits an error event as expected. However, it also emits an apply/request update event, even though the downloaded data is invalid.
- FW upgrade is broken for multi-image builds
Firmware upgrade using mcumgr or USB DFU is broken for multi-image builds, because the devicetree configuration is not used. Therefore, it is not possible to upload the image.
Workaround: Build MCUboot and the application separately.
Logging
- CIA-892: Assert or crash when printing long strings with the
%s
qualifier When logging a string with the
%s
qualifier, the maximum length of any inserted string is 1022 bytes. If the string is longer, an assert or a crash can occur. Given that the default value of theCONFIG_LOG_PRINTK
Kconfig option has been changed fromn
toy
in the nRF Connect SDK v2.3.0 release, theprintk()
function may also cause this issue, unless the application disables this option.Workaround: To fix the issue, cherry-pick commits from the upstream Zephyr PR #54901.
- Problems with RTT Viewer/Logger
The SEGGER Control Block cannot be found by automatic search by the RTT Viewer/Logger.
Affected platforms: nRF9160
Workaround: Set the RTT Control Block address to 0 and it will try to search from address 0 and upwards. If this does not work, look in the
builddir/zephyr/zephyr.map
file to find the address of the_SEGGER_RTT
symbol in the map file and use that as input to the viewer/logger.
NFC
- NCSDK-22799: Assert when requesting clock from the NFC interrupt context
The NFC interrupt is a low latency interrupt. It calls the Zephyr subsystem API that can rarely cause undefined behavior.
Workaround: To fix the issue, disable the
CONFIG_NFC_ZERO_LATENCY_IRQ
Kconfig option.
MCUboot
The issues in this section are related to MCUboot.
- NCSDK-20567: Partitioning limitation with MCUboot swap move
The swap algorithm in MCUboot (especially the default one - swap_move) requires some extra space to perform the swap move operation, so not entire partition space can be spent for the image. If the incoming image is too large, then the update will be impossible. If the installed image is too large, then undefined behavior might occur.
Workaround: Make sure that the DFU update images are of a specific maximum size. Typically, for the nRF52, nRF53, and nRF91 devices, the size of the application must be less than
mcuboot_primary_size - 80 - (mcuboot_primary_size/ 4096) * 12 -4096
. Some additional margin is suggested.
- NCSIDB-1194: MCUboot not properly disabling UARTE instances
Increased power consumption may be observed (400 µA).
Workaround: Disable all UART instances in MCUboot. If the booted application uses a UARTE instance, this issue might be covered during the application run-time.
- NCSDK-15494: Unable to build with RSA and ECIES-X25519 image encryptions
Building MCUboot with either RSA or ECIES-X25519 image encryptions feature enabled is not possible.
Workaround: To fix the issue, update the
sdk-mcuboot
repository by cherry-picking the upstream commits with the following hashes:7315e424b91503819307d33ebbc3140103470dd8
and0f7db390d3537bff0feee20f900f9720f90f33f9
.
- Recovery with the USB does not work
The MCUboot recovery feature using the USB interface does not work.
nrfxlib
The issues in this section are related to components provided in nrfxlib.
Crypto
The issues in this section are related to Crypto Libraries.
- NSCDK-26412: Updating to TF-M 2.0 using Mbed TLS 3.5.2 introduced a regression in resolving legacy crypto configurations from
PSA_WANT_ALG_XXXX
configurations Wi-Fi samples enabling OpenThread are affected by this bug as well as possible use cases with a dependency on some legacy features while using PSA crypto APIs. Unfortunately, the issue is not caught at build-time. It only appears at runtime.
Workaround: Enable TF-M on TrustZone-enabled devices to circumvent this issue, or manually add missing legacy configurations in the
psa_crypto-config.h.template
andpsa_crypto_want_config.h.template
files.
- NCSDK-25144: Enabling Kconfig option
CONFIG_SECURE_BOOT_CRYPTO
linksnrf_cc310_bl
into the main application Configuring secure boot with Kconfig option
CONFIG_SECURE_BOOT_CRYPTO
links the bootloader librarynrf_cc310_bl
into the main application, which is invalid. This makes crypto operations, such as ECDSA, fail.Workaround: Make sure the Kconfig option
CONFIG_SECURE_BOOT_CRYPTO
is only set when building theb0
image.
- NCSDK-22091: Selecting both
NORDIC_SECURITY_BACKEND
andPSA_CORE_BUILTIN
causes a build failure Selecting both
NORDIC_SECURITY_BACKEND
andPSA_CORE_BUILTIN
results in a build failure due to undefined references to different structs.Workaround: Manually define
PSA_CORE_BUILTIN
in the filenrf_security/configs/legacy_crypto_config.h.template
.
- NCSDK-22593: Selecting
CONFIG_PSA_WANT_ALG_CCM
withoutCONFIG_MBEDTLS_AES_C
causes a build failure Selecting
CONFIG_PSA_WANT_ALG_CCM
withoutCONFIG_MBEDTLS_AES_C
results in a build failure due to unsatisfied dependencies incheck_config.h
.Workaround: Manually define
MBEDTLS_AES_C
in the filenrf_security/configs/nrf-config.h
or enableCONFIG_PSA_WANT_ALG_GCM
.
- NCSDK-21430: For ChaCha20/Poly1305 using nrf_cc3xx, incorrect tag will be produced if plaintext is empty
For encryption, empty plaintext will result in incorrect tag. For decryption, correct tags will not be accepted.
- NCSDK-20688: For AES GCM, calling
psa_aead_update_ad()
multiple times will result in an incorrect tag on CryptoCell It is only supported to feed the additional data for AES GCM once when using CryptoCell.
- NCSDK-20287: Using AES GCM with other nonce sizes than 12 bytes will produce an incorrect tag on CryptoCell
Both PSA Crypto and legacy Mbed TLS APIs are affected.
- NCSDK-8075: Invalid initialization of
mbedtls_entropy_context
mutex type The calls to
mbedtls_entropy_init()
do not zero-initialize the member variablemutex
whennrf_cc3xx
is enabled.Affected platforms: nRF9160
Workaround: Zero-initialize the structure type before using it or make it a static variable to ensure that it is zero-initialized.
- NCSDK-15697: ECDH key generation for Curve25519 is failing with the legacy Mbed TLS APIs for CryptoCell
This only affects the functions
mbedtls_ecdh_make_params_edwards
andmbedtls_ecdh_read_params_edwards
.
- NCSDK-13843: Limited support for MAC in PSA Crypto APIs
The provided message authentication codes (MAC) implementation in the PSA Crypto APIs has limited support in accelerators. Only the CryptoCell accelerator supports MAC operations in PSA Crypto APIs and the supported hash algorithms are SHA-1/SHA-224/SHA-256.
- NCSDK-13843: Limited support for key derivation in PSA Crypto APIs
The provided key derivation implementation in the PSA Crypto APIs has limited support in accelerators. Only the CryptoCell accelerator supports key derivation in PSA Crypto APIs and the supported hash algorithms are the SHA-1/SHA-224/SHA-256.
- NCSDK-13842: Limited ECC support in PSA Crypto APIs
The provided ECDSA implementation in the CryptoCell accelerator does not support 521 bit curves.
- NCSDK-13825: Mbed TLS legacy APIs from Oberon has limited TLS/DTLS support
The legacy Mbed TLS APIs in Oberon for TLS/DTLS do not support the RSA and DHE algorithms.
- NCSDK-13841: Limited support for RSA in PSA Crypto APIs
The provided RSA implementation in the PSA Crypto APIs has limited support in accelerators. Only the CryptoCell accelerator supports RSA in PSA Crypto APIs. Currently, the only supported mode is PKCS1-v1.5. The key size needs to be smaller than 2048 bits and the supported hash functions are SHA-1/SHA-224/SHA-256.
- NCSDK-13844: Limited support for GCM in PSA Crypto APIs in Oberon
The provided GCM implementation of the PSA Crypto APIs in the Oberon accelerator only supports 12 bytes IV.
- NCSDK-13900: Limited AES CBC PKCS7 support in PSA Crypto APIs
The provided implementation in the CryptoCell accelerator for AES CBC with PKCS7 padding does not support multipart APIs.
- NCSDK-11684: Failure loading KMU registers on nRF9160 devices
Certain builds will experience problems loading HUK to KMU due to a bug in nrf_cc3xx_platform library prior to version 0.9.12. The problem arises in certain builds depending on alignment of code. The reason for the issue is improper handling of PAN 7 on nRF9160 devices.
Affected platforms: nRF9160
Workaround: Update to nrf_cc3xx_platform/nrf_cc3xx_mbedcrypto v0.9.12 or newer versions if KMU is needed.
- NCSDK-7856: Faulty indirection on
nrf_cc3xx
memory slab when freeing the platform mutex The
mutex_free_platform()
function has a bug where a call tok_mem_slab_free()
provides wrong indirection on a parameter to free the platform mutex.Affected platforms: nRF9160
Workaround: Write the call to free the mutex in the following way:
k_mem_slab_free(&mutex_slab, &mutex->mutex)
. The change adds&
before the parametermutex->mutex
.
- NCSDK-7914: The
nrf_cc3xx
RSA implementation does not deduce missing parameters The calls to
mbedtls_rsa_complete()
will not deduce all types of missing RSA parameters when usingnrf_cc3xx
v0.9.6 or earlier.Affected platforms: nRF9160
Workaround: Calculate the missing parameters outside of this function or update to
nrf_cc3xx
v0.9.7 or later.
- NCSDK-5883: CMAC behavior issues
CMAC glued with multiple backends might behave incorrectly due to memory allocation issues.
Workaround: Disable glued CMAC and use only one of the enabled backends.
- NCSDK-5546: Oberon missing symbols for HKDF
nRF Oberon v3.0.5 is missing symbols for HKDF using SHA1, which will be fixed in an upcoming version of the library.
Workaround: Use a different backend (for example, vanilla Mbed TLS) for HKDF/HMAC using SHA1.
- Limited support for nRF Security subsystem (previously called Nordic Security Module)
The nRF Security is currently only fully supported on nRF52840 and nRF9160 devices. It gives compile errors on nRF52832, nRF52833, nRF52820, nRF52811, and nRF52810.
Affected platforms: nRF52832, nRF52833, nRF52820, nRF52811, nRF52810
Workaround: To fix the errors, cherry-pick commits in nrfxlib PR #205.
- Glue layer symbol renaming issue
The nRF Security glue layer is broken because symbol renaming is not handled correctly. Therefore, the behavior is undefined when selecting multiple back-ends for the same algorithm (for example, AES).
GNSS sockets
- Cold start and A-GPS data not supported
Forcing a cold start and writing A-GPS data is not yet supported.
- Hard-fault with GPS in running mode
Implementation might hard-fault when GPS is in running mode and messages are not read fast enough.
- NMEA strings might return wrong length
NMEA strings are valid c-strings (0-terminated), but the read function might return wrong length.
- Closing sockets
Sockets can only be closed when GPS is in stopped mode. Moreover, closing a socket does not properly clean up all memory resources. If a socket is opened and closed multiple times, this might starve the system.
Modem library
The issues in this section are related to Modem library.
- NCSDK-10106: Elevated current consumption when using applications without Modem library on nRF9160
When running applications that do not enable Modem library on nRF9160 with build code B1A, current consumption will stay at 3 mA when in sleep.
Affected platforms: nRF9160
Workaround: Enable Modem library.
- NCSDK-14312: The
nrf_recv()
function crashes occasionally During execution, in rare cases, the
nrf_recv()
function crashes because of a race condition.
- NCSDK-13360: The
nrf_recv()
function crashes if closed by another thread while receiving data When calling the
nrf_recv()
function, closing the socket from another thread while it is receiving data causes a crash.
- NCSDK-6073:
nrf_send
is blocking The
nrf_send()
function in the Modem library might be blocking for several minutes, even if the socket is configured for non-blocking operation. The behavior depends on the cellular network connection.Affected platforms: nRF9160
Workaround: For nRF Connect SDK v1.4.0, set the non-blocking mode for a partial workaround for non-blocking operation.
- NRF91-1702: The modem may fail to attach to the network after a modem firmware update if the application core was not rebooted
Performing a modem delta update without rebooting the application core (to reinitialize the modem and run the new firmware) may lead to a UICC initialization failure. The UICC failure can be confirmed by issuing the
AT+CEREG?
AT command to read the current network registration status after attempting a UICC activation. In case of the failure, the returned network registration status is90
.Affected platforms: nRF9160 Affect modem firmware versions: v1.3.4 and v1.3.5
Workaround: Reinitialize the Modem library by calling
nrf_modem_lib_shutdown()
followed bynrf_modem_lib_init()
, or reboot the application core as done in the existing nRF Connect SDK samples and applications.
Multiprotocol Service Layer (MPSL)
The issues in this section are related to Multiprotocol Service Layer.
- DRGN-22314: MPSL can encounter fatal errors and crashes when used without SoftDevice Controller or the nRF 802.15.4 Radio Driver
This happens because of the of the allocation functions in the files
nrfx_ppi.h
andnrfx_dppi.h
can allocate channels reserved by MPSL.
- DRGN-18247: Assertion with
MPSL_CLOCK_HF_LATENCY_BEST
When setting the ramp-up time of the high-frequency crystal oscillator with
MPSL_CLOCK_HF_LATENCY_BEST
, an assert in MPSL occurs.Workaround: Use
MPSL_CLOCK_HF_LATENCY_TYPICAL
instead ofMPSL_CLOCK_HF_LATENCY_BEST
when setting the time it takes for the HFCLK to ramp up.
- DRGN-15979:
CONFIG_CLOCK_CONTROL_NRF_K32SRC_RC_CALIBRATION
must be set whenCONFIG_CLOCK_CONTROL_NRF_K32SRC_RC
is set MPSL requires RC clock calibration to be enabled when the RC clock is used as the Low Frequency clock source.
- DRGN-14153: Radio Notification power performance penalty
The Radio Notification feature has a power performance penalty proportional to the notification distance. This means an additional average current consumption of about 600 µA for the duration of the radio notification.
- KRKNWK-8842: MPSL does not support nRF21540 revision 1 or older
The nRF21540 revision 1 or older is not supported by MPSL. This also applies to kits that contain this device.
Affected platforms: nRF21540
Workaround: Check the Nordic Semiconductor website for the latest information on availability of the product version of nRF21540.
- DRGN-18308: More than one user of the scheduler could cause an assert
Examples of users of the scheduler include Bluetooth LE, IEEE 802.15.4 radio driver, timeslot (for example, flash driver).
- DRGN-18555: Requesting timeslots with type
MPSL_TIMESLOT_REQ_TYPE_EARLIEST
can cause an assert When requesting timeslots with type
MPSL_TIMESLOT_REQ_TYPE_EARLIEST
, an assert could occur in MPSL, indicating that there is already anEARLIEST
request pending.
- DRGN-16642: If radio notifications on ACTIVE are used, MPSL might assert
When radio notifications are used with
MPSL_RADIO_NOTIFICATION_TYPE_INT_ON_ACTIVE
orMPSL_RADIO_NOTIFICATION_TYPE_INT_ON_BOTH
, MPSL might assert.
- DRGN-6362: Do not use the synthesized low frequency clock source
The synthesized low frequency clock source is neither tested nor intended for usage with MPSL.
- NCSIDB-731: MPSL timeslot crashes when calling kernel APIs from zero latency interrupts
Calling kernel APIs is not allowed from zero latency interrupts.
- DRGN-17014: High Frequency Clock staying active
The High Frequency Clock will stay active if it is turned on between timing events. This could occur during Low Frequency Clock calibration when using the RC oscillator as the Low Frequency Clock source.
- DRGN-16506: Higher current consumption between timeslot events made with
MPSL_TIMESLOT_HFCLK_CFG_NO_GUARANTEE
When timeslot requests are made with
MPSL_TIMESLOT_HFCLK_CFG_NO_GUARANTEE
, the current consumption between events is higher than expected.Workaround: Use
MPSL_TIMESLOT_HFCLK_CFG_XTAL_GUARANTEED
instead ofMPSL_TIMESLOT_HFCLK_CFG_NO_GUARANTEE
when requesting a timeslot.
- DRGN-15223:
CONFIG_SYSTEM_CLOCK_NO_WAIT
is not supported for nRF5340 Using
CONFIG_SYSTEM_CLOCK_NO_WAIT
with nRF5340 devices might not work as expected.Affected platforms: nRF5340
- DRGN-15176:
CONFIG_SYSTEM_CLOCK_NO_WAIT
is ignored when Low Frequency Clock is started before initializing MPSL If the application starts the Low Frequency Clock before calling
mpsl_init()
, the clock configuration optionCONFIG_SYSTEM_CLOCK_NO_WAIT
has no effect. MPSL will wait for the Low Frequency Clock to start.Workaround: When
CONFIG_SYSTEM_CLOCK_NO_WAIT
is set, do not start the Low Frequency Clock.
- DRGN-15064: External Full swing and External Low swing not working
Even though the MPSL Clock driver accepts a Low Frequency Clock source configuration for External Full swing and External Low swing, the clock control system is not configured correctly. For this reason, do not use
CLOCK_CONTROL_NRF_K32SRC_EXT_FULL_SWING
andCLOCK_CONTROL_NRF_K32SRC_EXT_LOW_SWING
.
- DRGN-11059: Front-end module API not implemented for SoftDevice Controller
Front-end module API is currently not implemented for SoftDevice Controller. It is only available for 802.15.4.
802.15.4 Radio driver
The issues in this section are related to nRF 802.15.4 Radio Driver. In addition to the known issues listed here, see also 802.15.4 Radio driver limitations for permanent limitations.
- KRKNWK-18589: Timestamps for delayed operations triggering very shortly after a sleep request may be very inaccurate
It was observed that the nRF 802.15.4 Radio Driver reported a too big timestamp by approximately
UINT32_MAX
.
- KRKNWK-18545: The device may enter a livelock state if AES encryption is done in a thread
This can happen when the nRF 802.15.4 Radio Driver’s multiprotocol feature is used together with Bluetooth LE (SoftDevice Controller).
Workaround: When using the nRF 802.15.4 Radio Driver’s multiprotocol feature together with SoftDevice Controller, do not use the
sdc_soc.h
API, select theCONFIG_BT_CTLR_CRYPTO
Kconfig option, or issue theHCI LE Encrypt
command.
- KRKNWK-16976: multiprotocol_rpmsg application on nRF5340 network core occasionally crashes when Matter weather station application is stress tested
The root cause of this issue is not known. When nRF5340 network core crashes it can hang or silently reset (see
CONFIG_RESET_ON_FATAL_ERROR
). The nRF Connect SDK does not provide a feature to allow the nRF5340 application core to detect a reset or failure of the nRF5340 network core and react properly (possibly resetting whole nRF5340 SoC).Affected platforms: nRF5340
Workaround: Implement own mechanism to allow detection on nRF5340 application core a reset or crash of nRF5340 network core and react according to own requirements.
- KRKNWK-14950: MPSL asserts during operation with heavy load
An operation under heavy load can end with a crash, with the MPSL message
ASSERT: 108, 659
. This issue was observed very rarely during stress tests on the devices from the nRF53 and nRF52 Series.Affected platforms: nRF5340, Thingy:53, nRF52832, nRF52833, nRF52840
- KRKNWK-14898: CSMA-CA backoff parameters might not be randomized in a uniform way
The backoff parameters of the CSMA-CA operation are generated by the logic which might not return the uniformly distributed random numbers.
- KRKNWK-11384: Assertion with Bluetooth LE and multiprotocol usage
The device might assert on rare occasions during the use of Bluetooth LE and 802.15.4 multiprotocol.
- KRKNWK-6756: 802.15.4 Service Layer (SL) library support for the nRF53
The binary variant of the 802.15.4 Service Layer (SL) library for the nRF53 does not support such features as synchronization of TIMER with RTC or timestamping of received frames. For this reason, 802.15.4 features like delayed transmission or delayed reception are not available for the nRF53.
Affected platforms: nRF5340
- KRKNWK-8133: CSMA-CA issues
Using CSMA-CA with the open-source variant of the 802.15.4 Service Layer (SL) library causes an assertion fault. CSMA-CA support is currently not available in the open-source SL library.
- KRKNWK-6255: RSSI parameter adjustment is not applied
The RADIO: RSSI parameter adjustment errata (153 for nRF52840, 225 for nRF52833 and nRF52820, 87 for nRF5340) are not applied for RSSI, LQI, Energy Detection, and CCA values used by the 802.15.4 protocol. There is an expected offset up to +/- 6 dB in extreme temperatures of values based on RSSI measurement.
Affected platforms: nRF5340, nRF52840, nRF52833, nRF52820
Workaround: To apply RSSI parameter adjustments, cherry-pick the commits in hal_nordic PR #88, sdk-nrfxlib PR #381, and sdk-zephyr PR #430.
SoftDevice Controller
The issues in this section are related to SoftDevice Controller. In addition to the known issues listed here, see also Limitations for permanent limitations.
- DRGN-22633: The VS Set Connection Event Trigger command does not always trigger the provided task
This happens on platforms with DPPI, if the PPI channel ID provided in the command is even-numbered.
Workaround: On platforms with DPPI, provide a PPI channel ID that is odd-numbered.
- DRGN-22024: The controller might assert when the peripheral receives a connection update indication.
This only occurs when the central uses a wide receive window for the connection update, and both sends at the end of the receive window and sends a lot of data in the connection event with the connection update instant.
- DRGN-21619: The controller might assert if the CIS peripheral stops receiving packets from the CIS central
This only occurs when the window widening reaches at least half of the ISO interval in magnitude. Assuming worst case clock accuracies on both the central and the peripheral, this could occur with a supervision timeout of 2.4, 3.7, or 4.9 seconds, corresponding to an ISO interval of 5, 7.5, or 10 milliseconds, respectively.
Workaround: Set the supervision timeout to a value lower than those mentioned above.
- DRGN-21605: Value read by HCI ISO Read TX Timestamp is off by 40 µs
The HCI command
ISO Read TX Timestamp
returns the last assigned sync reference for the ISO TX path and the value might be off by 40 µs.
- DRGN-22163: Assert when initiating a connection for a long time
An assert can happen if the initiator runs for more than 2147 seconds before connecting.
- DRGN-21603: A rare race condition when encrypting a block
An extremely rare race condition where using
sdc_soc_ecb_block_encrypt()
from an ISR can lead to encryption failures.
- DRGN-21637: The peripheral waited for a link to time out when tearing down the connection
This happens when the central acknowledges
TERMINATE_IND
in the same event as it was being sent.
- DRGN-19050: The controller accepts the HCI LE Set Random Address command while passive scanning is enabled
The controller must return the error code
0x0D
in this case.
- DRGN-21912: A BIS broadcaster transmits invalid parameters in the BIG Info
This happens if a BIG was created (using the LL Create BIG or LL Create BIG Test commands) with
num_bis
set to1
andpacking
set to1
(interleaved).
- DRGN-21923: The controller-initiated autonomous LE Power Control Request procedure for Coded PHY could lead to a disconnection
This happens only when an autonomous power control request was enabled and was about to be sent.
- DRGN-21949: Assert on BIS sync
The controller can assert if a BIS receiver stops receiving packets from the BIS broadcaster.
- DRGN-21839: Rare failures when setting periodic advertising subevent data
In some rare cases, the controller can generate an LE Periodic Advertising Subevent Data Request for a subevent for which it does not have the memory capacity.
- DRGN-21962: Assert when using SPI FEM with Coded PHY on nRF53 Series devices
The controller can assert when scanning or advertising on Coded PHY using SPI FEM on nRF53 Series devices.
Affected platforms: nRF5340, Thingy:53
- DRGN-21293: The LE Read ISO TX Sync command is implemented according to the raised errata ES-23138
In ES-23138, the return parameter
TX_Time_Stamp
is used as the SDU synchronization reference of the SDU previously scheduled for transmission. This differs from the Bluetooth Core Specification v5.4, which uses the CIG or BIG reference anchor point as the SDU synchronization reference. When the CIG or BIG is configured with anISO_Interval
that equals theSDU_Interval
, there is no difference between the CIG or BIG reference anchor point and the SDU synchronization reference. If several SDUs are transmitted during eachISO_Interval
, meaning that it is larger than theSDU_Interval
, our implementation of the LE Read ISO TX Sync command returns a unique SDU synchronization reference for each SDU.
- DRGN-20444: The HCI LE Create Connection command and the HCI LE Extended Create Connection command overwrite scan parameters
This happens when the HCI LE Create Connection command or the HCI LE Extended Create Connection command is called after the scan parameters are set.
Workaround: Set the scan parameters with the HCI LE Set Scan Parameters command or the HCI LE Set Extended Scan Parameters command again.
- DRGN-20762: LE Set Periodic Advertising Subevent Data could fail unexpectedly if interrupted
The LE Set Periodic Advertising Subevent Data command could fail when providing data at the same time as an
AUX_SYNC_SUBEVENT_IND
was sent.
- DRGN-20815: A packet might not be received when sent at the instant of a Channel Map Update
This could happen when the controller is acting as slave, while the master is sending a Channel Map Update.
- DRGN-20432: LE Set Periodic Advertising Response Data command can assert if host behaves incorrectly
This could happen if the LE Set Periodic Advertising Response Data command was issued more than once without fetching the Command Complete Event.
- DRGN-20832: The controller would assert during cooperative active scanning or when running a cooperative initiator
This could happen when the controller was about to send a scan request or connect indication.
- DRGN-20862: The nRF5340 DK consumed too much current while scanning
This could happen if the controller was running with TX power higher than 0 dB.
- DRGN-21085: The controller would stop sending ACL data packets to the host when controller to host flow control was enabled
This could happen when a disconnection occurred before the host had issued the Host Number of Complete Packets command for the remaining ACL data packets.
- DRGN-21253: Rare assert on the scanner
The scanner may assert when it schedules the reception of the next advertising packet.
- DRGN-21020: The continuous extended scanner sometimes stops generating advertising reports
This can happen when the controller is running an extended cooperative scanner together with other activities, such as advertising or connection, while receiving data in an extended advertising event that uses
AUX_CHAIN_IND
.
- DRGN-20956: Rare assert when terminating the Periodic Sync with Responses.
In rare cases, when a Periodic Sync with Responses is being terminated while it is waiting for a sync to a Periodic Advertiser with Responses, the controller can assert.
- DRGN-19460: The continuous extended scanner cannot receive the
AUX_ADV_IND
packet This can happen if the time between the
ADV_EXT_IND
andAUX_ADV_IND
is more than 840 µs.
- DRGN-19580: The stack would dereference a
NULL
pointer This can happen if a resolvable
own_address_type
is used in the HCI Le Extended Create Connection V2 command while the resolving list is empty.
- DRGN-19623: The HCI Reset would not reset the channel map
The HCI Reset command would not clear the channel map set by the host using the HCI Le Set Host Channel Classification command.
- DRGN-18411: The
Peer_Address_Type
parameter in the LE Connection Complete event was incorrectly set to2
or3
This can happen when a connection is established to a device whose address is resolved. The least significant bit of the
Peer_Address_Type
parameter was set correctly.
- DRGN-20118: The stack would assert when creating advertisers
This can happen if you try to set up more advertisers than the available advertising sets.
- DRGN-20085: The stack would assert when enabling an advertising set
Enabling an extended advertising set would assert in cases where a host-provided address was not needed and the address was not set up for the advertising set.
- DRGN-20578: The stack would assert when receiving a non-compliant
LL_PHY_RSP
The controller acting as the central would assert when receiving a non-compliant
LL_PHY_RSP
from a peer device.
- DRGN-20654: The controller returns an invalid error for the Host Number of Completed Packets command
This can happen if the Host Number of Complete Packets command was sent with a connection handle for which the controller had already raised a disconnect event. The controller would return
BT_HCI_ERR_INVALID_PARAM
to the command, which would mean that the host could not return the buffer to the controller.
- DRGN-17562: One of the LE Transmit Power Reporting Events might not be reported to the host
When multiple LE Transmit Power Reporting Events are generated at the same time for the same PHY, one of these events will be missed. This will occur only when there are simultaneous remote and local power level changes on the same PHY.
- DRGN-19039: Multirole advertiser not seen by peer in some cases
This can happen when the controller attempts to reschedule the advertising events due to scheduling conflicts with the scanner or initiator and both of the following apply:
One device is either a multirole advertiser and scanner or a multirole advertiser and initiator, and has a scan window shorter than the scan interval, and an advertising interval shorter than the scan window.
The peer is a scanner or initiator with the same scan window.
Workaround: Set the scan interval equal to either the scan window or the advertising interval.
- DRGN-18424: Rare assert when stopping the Periodic Advertiser role
In rare cases, when a Periodic Advertiser instance is being stopped while another Periodic Advertiser instance is still running, the controller can assert.
- DRGN-18424: Rare assert when stopping the Periodic Sync role
In rare cases, when a Periodic Sync instance is being stopped while another Periodic Sync instance is still running, the controller can assert.
- DRGN-18651: Scanner may fail to deliver advertising reports
There is a chance of failure if an advertising report is received just before the scanner times out or is disabled. This can lead to the scanner not delivering any further advertising reports when re-enabled.
- DRGN-18714: Assert when advertising or initiating after disconnection
The controller could assert when starting a connectable advertiser or creating a connection too quickly after disconnection.
- DRGN-18775: Periodic Advertisement Sync Transfer receiver fails to synchronize with large periodic advertising intervals
The Periodic Advertisement Sync Transfer (PAST) sender may generate an incorrect SyncInfo field for periodic advertising intervals greater than five seconds.
- DRGN-18833: Assert when the periodic sync is in progress
The Periodic Advertisement Sync Transfer (PAST) sender could assert if the associated periodic sync was not fully established.
- DRGN-18971: Low TX power on the nRF21540 DK in connected state
TX power value goes to the default one on the nRF21540 DK in connected state when using MPSL FEM and manually configuring the radio power.
Affected platforms: nRF21540
- DRGN-19003: Fail to synchronize using the Periodic Advertising Sync Transfer procedure
The controller cannot synchronize to a periodic advertising train using the Periodic Advertising Sync Transfer procedure if it has previously tried to do it while it was already synchronized to the periodic advertising train.
- DRGN-18840: Disconnect with transaction_collision when receiving LL_PHY_UPDATE_IND with “no change”
The peripheral would disconnect with DIFFERENT_TRANSACTION_COLLISION when a collision of a connection update and a PHY update occurs even if the central asks for no change.
- DRGN-19058: Do not accept the advertising handle specified by the host
The Controller would not accept an advertising handle provided in HCI commands with values above the configured number of advertising sets.
- DRGN-19197: The Advertiser fails to advertise when payload increases
The advertiser fails in the first event when the payload is increased by a small amount.
- DRGN-18261: SoftDevice Controller wrongly uses non-zero randomness for the first advertising event
The controller uses non-zero randomness even after calling
sdc_hci_cmd_vs_set_adv_randomness()
with a validadv_handle
parameter.
- DRGN-18358: Scanning can get hardfaults
The SoftDevice Controller ends up in the
HardFault
handler after receiving an invalid response to a scan request.
- DRGN-18411: Bluetooth LE Connection complete event has wrong
peer_address_type
if resolved address The
peer_address_type
parameter in the Bluetooth LE Connection Complete event is incorrectly set to2
or3
in case the connection is established to a device whose address was resolved.
- DRGN-18420: Periodic advertiser can get
NULL
pointer dereference The controller could dereference a
NULL
pointer when starting a periodic advertiser.
- DRGN-18586: Assert when starting Periodic Advertisement Sync Transfer while Periodic Advertising is not enabled
When initiating Periodic Advertising Sync Transfer (PAST) as advertiser, the controller might assert if the periodic advertising train is not running.
- DRGN-18655: Wrongly set the address if calling
bt_ctlr_set_public_addr()
beforebt_enable()
bt_ctlr_set_public_addr()
accesses uninitialized memory if called beforebt_enable()
.
- DRGN-18568: Using
CONFIG_MPSL_FEM
Kconfig option lowers the value of radio output power The actual value is lower than the default one in case the
CONFIG_BT_CTLR_TX_PWR_ANTENNA
orCONFIG_BT_CTLR_TX_PWR
Kconfig options are used together with theCONFIG_MPSL_FEM
Kconfig option.
- DRGN-16013: Initiating connections over extended advertising is not supported when external radio coexistence and FEM support are enabled
The initiator can assert when initiating a connection to an extended advertiser when both external radio coexistence and FEM are enabled.
Workaround: Do not enable both coex (
CONFIG_MPSL_CX_BT
) and FEM (CONFIG_MPSL_FEM
) when support for extended advertising packets is enabled (CONFIG_BT_EXT_ADV
).
- DRGN-18105: Controller might abandon a link due to an MPSL issue
The controller can abandon a link because of an issue in MPSL, causing a disconnect on the remote side.
- DRGN-17851: When a Bluetooth role is running, the controller might assert due to an MPSL issue
When a Bluetooth role is running, the controller can assert because of an issue in MPSL.
- DRGN-18089: Controller wrongly erases the previous periodic advertising reports
When creating a periodic sync, the controller could in some cases erase periodic advertising reports for the previously created syncs.
- DRGN-19744: Controller asserts if the sync timeout is shorter than the periodic advertising interval
The controller asserts when trying to sync to a periodic advertiser with a sync timeout shorter than the periodic advertising interval.
- DRGN-17776: Controller wrongly accepts the
connSupervisionTimeout
value set to0
The controller should not accept
CONNECT_IND
,AUX_CONNECT_REQ
, andCONNECTION_UPDATE_REQ
packets with theconnSupervisionTimeout
value set to0
.
- DRGN-17777: Controller wrongly accepts LL_PAUSE_ENC_REQ packet received on an unencrypted link
The
LL_PAUSE_ENC_REQ
packet shall be sent encrypted and the controller should not accept this packet on an unencrypted link.
- DRGN-17656: Hard fault with periodic advertising synchronization
When creating a periodic advertising synchronization, a hard fault might occur if receiving legacy advertising PDUs.
- DRGN-17454: Wrong data length is selected if the even length is greater than 65535 µs
If the event length (
CONFIG_BT_CTLR_SDC_MAX_CONN_EVENT_LEN_DEFAULT
) was set to a value greater than 65535 us, the auto-selected maximum data length was set to 27 bytes due to an integer overflow.
- DRGN-17651: Incorrect memory usage if configuring fewer TX/RX buffers than the default value
When using the memory macros with less TX/RX packet count than the default value, the actual memory usage might be higher than expected.
- DRGN-15903:
BT_CTLR_TX_PWR
is ignored by the SoftDevice Controller Using
BT_CTLR_TX_PWR
does not set TX power.Workaround: Use the HCI command Zephyr Write Tx Power Level to dynamically set TX power.
- DRGN-17710: Periodic advertiser delay
The periodic advertiser sends its
AUX_SYNC_IND
packet 40 µs later than the one indicated in theSyncInfo
of theAUX_ADV_IND
packet.
- DRGN-17710: Scanner packet reception delay
The scanner attempts to receive the first
AUX_SYNC_IND
packet 40 µs later than the one indicated in theSyncInfo
of theAUX_ADV_IND
. This might result in the device failing to establish a synchronization to the periodic advertiser.
- DRGN-17110: Wrong address type in the LE Periodic Advertising Sync Established event when the Periodic Advertiser List is used to establish a synchronization
The SoftDevice Controller sometimes does not set the address type when the Periodic Advertiser List is used to establish a synchronization to a Periodic Advertiser.
- DRGN-17110: The Advertiser Address Type in the LE Periodic Advertising Sync Established event is not set to 0x02 or 0x03, even if the advertiser’s address was resolved (DRGN-17110)
In the case the address is resolved, the reported address type is still set to 0x00 or 0x01.
- DRGN-16859: The vendor-specific HCI commands Zephyr Write TX Power Level and Zephyr Read TX Power Level might return “Unknown Advertiser Identifier (0x42)” when setting advertising output power
The SoftDevice Controller will return this error code if the command is issued before advertising parameters are set.
Workaround: Configure the advertiser before setting TX Power using HCI LE Set Advertising Parameters
- DRGN-16808: Assertion on nRF53 Series devices when the RC oscillator is used as the Low Frequency clock source
The SoftDevice Controller might assert when
CONFIG_CLOCK_CONTROL_NRF_K32SRC_RC
is set on nRF53 Series devices and the device is connected as a peripheral.Affected platforms: nRF5340, Thingy:53
Workaround: Do not use the RC oscillator as the Low Frequency clock source.
- DRGN-16650: Undefined behavior when extended scanning is enabled
When extended scanning is enabled and
CONFIG_BT_BUF_ACL_RX_SIZE
is set to a value less than 251, it might result in asserts or undefined behavior.Workaround: Set
CONFIG_BT_BUF_EVT_RX_SIZE
to 255 when extended scanning is enabled.
- DRGN-16394: The host callback provided to
sdc_enable()
is always called after every advertising event This will cause slightly increased power consumption.
- DRGN-16394: The peripheral accepts a channel map where all channels are marked as bad
If the initiator sends a connection request with all channels marked as bad, the peripheral will always listen on data channel 0.
- DRGN-16317: The SoftDevice Controller might discard LE Extended Advertising Reports
If there is insufficient memory available or the Host is not able to process HCI events in time, the SoftDevice Controller can discard LE Extended Advertising Reports. If advertising data is split across multiple reports and any of these are discarded, the Host will not be able to reassemble the data.
Workaround: Increase
CONFIG_BT_BUF_EVT_RX_COUNT
until events are no longer discarded.
- DRGN-16341: The SoftDevice Controller might discard LE Extended Advertising Reports
Extended Advertising Reports with data length of 228 are discarded.
- DRGN-16113: Active scanner assert when performing extended scanning
The active scanner might assert when performing extended scanning on Coded PHY with a full whitelist.
Affected platforms: nRF5340, Thingy:53, nRF52840, nRF52833, nRF52832
Workaround: On nRF52 Series devices, do not use coex and fem. On nRF53 Series devices, do not use CODED PHY.
- DRGN-16079: LLPM mode assertion
An assertion can happen when in the LLPM mode and the connection interval is more than 1 ms.
Workaround: Only use 1 ms connection interval when in LLPM mode.
- DRGN-15993: Assertion with legacy advertising commands
An assertion can happen when using legacy advertising commands after HCI LE Clear Advertising Sets.
Workaround: Do not mix legacy and extended advertising HCI commands.
- DRGN-15852: In rare cases on nRF53 Series devices, an assert can occur while scanning
This only occurs when the host started scanning using HCI LE Set Scan Enable. This is default configuration of the Bluetooth host.
Affected platforms: nRF5340, Thingy:53
Workaround: Use extended scanning commands. That is, set
CONFIG_BT_EXT_ADV
to use HCI LE Set Extended Scan Enable instead.
- DRGN-15852: In rare cases on nRF53 Series, the scanner generates corrupted advertising reports
The following fields are affected:
Event_Type
Address_Type
Direct_Address_Type
TX_Power
Advertising_SID
Affected platforms: nRF5340, Thingy:53
- DRGN-15586: “HCI LE Set Scan Parameters” accepts a scan window greater than the scan interval
This can result in undefined behavior. It should fail with the result “Invalid HCI Command Parameters (0x12)”.
Workaround: The application should make sure the scan window is set to less than or equal to the scan interval.
- DRGN-15547: Assertion when updating PHY and the event length is configured too low
The SoftDevice Controller might assert in the following cases:
sdc_cfg_t
withevent_length
is set to less than 2500 µs and the PHY is updated from 2M to 1M, or from either 1M or 2M to Coded PHY.sdc_cfg_t
withevent_length
is set to less than 7500 µs and a PHY update to Coded PHY is performed.
The default value of
CONFIG_SDC_MAX_CONN_EVENT_LEN_DEFAULT
is 7500 us. The minimum event length supported byCONFIG_SDC_MAX_CONN_EVENT_LEN_DEFAULT
is 2500 us.Workaround:
Set
sdc_cfg_t
withevent_length
to at least 2500 µs if the application is using 1M PHY.Set
sdc_cfg_t
withevent_length
to at least 7500 µs if the application is using Coded PHY.
- DRGN-13594: The channel map provided by the LE Host Set Channel Classification HCI command is not always applied on the secondary advertising channels
In this case, the extended advertiser can send secondary advertising packets on channels which are disabled by the Host.
- DRGN-15338: Extended scanner might generate reports containing truncated data from chained advertising PDUs
The scanner reports partial data from advertising PDUs when there is not enough storage space for the full report.
- DRGN-15469: Slave connections can disconnect prematurely if there are scheduling conflicts with other roles
This is more likely to occur during long-running events such as flash operations.
- DRGN-15369: Radio output power cannot be set using the vendor-specific HCI command Zephyr Write TX Power Level for all power levels
The command returns “Unsupported Feature or Parameter value (0x11)” if the chosen power level is not supported by the used hardware platform.
Workaround: Only select output power levels that are supported by the hardware platform.
- DRGN-15694: An assert can occur when running an extended advertiser with maximum data length and minimum interval on Coded PHY
The assert only occurs if there are scheduling conflicts.
Workaround: Ensure the advertising interval is configured to at least 30 milliseconds when advertising on LE Coded PHY.
- DRGN-15484: A connectable or scannable advertiser might end with sending a packet without listening for the
CONNECT_IND
,AUX_CONNECT_REQ
,SCAN_REQ
, orAUX_SCAN_REQ
These packets sent by the scanner or initiator can end up ignored in some cases.
- DRGN-15531: The coding scheme provided by the LE Set PHY HCI Command is ignored after a remote initiated PHY procedure
The PHY options set by the host in LE Set PHY command are reverted when the remote initiates a PHY update. This happens because of the automatic reply of a PHY update Request in the SoftDevice Controller. This makes it impossible to change the PHY preferred coding in both directions. When receiving on S2, the SoftDevice Controller will always transmit on S8 even when configured to prefer S2.
- DRGN-15758: The controller might still have pending events after
sdc_hci_evt_get()
returns false This will only occur if the host has masked out events.
- DRGN-15251: Very rare assertion fault when connected as peripheral on Coded PHY
The controller might assert when the following conditions are met:
The device is connected as a peripheral.
The connection PHY is set to LE Coded PHY.
The devices have performed a data length update, and the supported values are above the minimum specification defined values.
A packet is received with a CRC error.
Workaround: Do not enable
CONFIG_BT_DATA_LEN_UPDATE
for applications that require Coded PHY as a peripheral device.
- DRGN-15310: HCI Read RSSI fails
The command “HCI Read RSSI” always returns “Command Disallowed (0x0C)”.
- DRGN-15465: Corrupted advertising data when
CONFIG_BT_EXT_ADV
is set Setting scan response data for a legacy advertiser on a build with extended advertising support corrupts parts of the advertising data. When using
BT_LE_ADV_OPT_USE_NAME
(which is the default configuration in most samples), the device name is put in the scan response. This corrupts the advertising data.Workaround: Do not set scan response data. That implies not using the
BT_LE_ADV_OPT_USE_NAME
option, or theBT_LE_ADV_CONN_NAME
macro when initializing Bluetooth. Instead, useBT_LE_ADV_CONN
, and if necessary set the device name in the advertising data manually.
- DRGN-15475: Samples might not initialize the SoftDevice Controller HCI driver correctly
Samples using both the advertising and the scanning state, but not the connected state, fail to initialize the SoftDevice Controller HCI driver. As a result, the function
bt_enable()
returns an error code.Workaround: Manually enable
CONFIG_SOFTDEVICE_CONTROLLER_MULTIROLE
for the project configuration.
- DRGN-15382: The SoftDevice Controller cannot be qualified on nRF52832
The SoftDevice Controller cannot be qualified on nRF52832.
Affected platforms: nRF52832
Workaround: Upgrade to v1.5.1 or use the main branch.
- DRGN-14008: The advertising data is cleared every time the advertising set is configured
This causes the “HCI LE Set Extended Advertising Parameters” command to accept data which cannot be fit within the advertising interval instead of returning “Packet Too Long (0x45)”. This would only occur if the advertising set is configured to use maximum data length on LE Coded PHY with an advertising interval less than 30 milliseconds.
- DRGN-15291: The generation of QoS Connection events is not disabled after an HCI reset
Some event reports might still occur after a reset.
- DRGN-15226: Link disconnects with reason “LMP Response Timeout (0x22)”
If the slave receives an encryption request while the “HCI LE Long Term Key Request” event is disabled, the link disconnects with the reason “LMP Response Timeout (0x22)”. The event is disabled when
CONFIG_BT_SMP
and/orCONFIG_BT_CTLR_LE_ENC
is disabled.
- DRGN-11963: LL control procedures cannot be initiated at the same time
The LL control procedures (LE start encryption and LE connection parameter update) cannot be initiated at the same time or more than once. The controller will return an HCI error code “Controller Busy (0x3a)”, as per specification’s chapter 2.55.
Workaround: Do not initiate these procedures at the same time.
- DRGN-13921: Directed advertising issues using RPA in TargetA
The SoftDevice Controller will generate a resolvable address for the TargetA field in directed advertisements if the target device address is in the resolving list with a non-zero IRK, even if privacy is not enabled and the local device address is set to a public address.
Workaround: Remove the device address from the resolving list.
- DRGN-10367: Advertiser times out earlier than expected
If an extended advertiser is configured with limited duration, it will time out after the first primary channel packet in the last advertising event.
- DRGN-11222: A Central might disconnect prematurely if there are scheduling conflicts while doing a control procedure with an instant
This bug will only be triggered in extremely rare cases.
- DRGN-13231: A control packet might be sent twice even after the packet is ACKed
This only occurs if the radio is forced off due to an unforeseen condition.
- DRGN-13350: HCI LE Set Extended Scan Enable returns “Unsupported Feature or Parameter value (0x11)”
This occurs when duplicate filtering is enabled.
Workaround: Do not enable duplicate filtering in the controller.
- DRGN-12122:
secondary_max_skip
cannot be set to a non-zero value HCI LE Set Advertising Parameters will return “Unsupported Feature or Parameter value (0x11)” when
secondary_max_skip
is set to a non-zero value.
- DRGN-13079: An assert occurs when setting a secondary PHY to 0 when using HCI LE Set Extended Advertising Parameters
This issue occurs when the advertising type is set to legacy advertising.
CONFIG_BT_HCI_TX_STACK_SIZE
requires specific valueCONFIG_BT_HCI_TX_STACK_SIZE
must be set to 1536 when selectingCONFIG_BT_LL_SOFTDEVICE
.
CONFIG_SYSTEM_WORKQUEUE_STACK_SIZE
requires specific valueCONFIG_SYSTEM_WORKQUEUE_STACK_SIZE
must be set to 2048 when selectingCONFIG_BT_LL_SOFTDEVICE
on Bluetooth: Central UART and Bluetooth: Central BAS.
CONFIG_NFCT_IRQ_PRIORITY
requires specific valueCONFIG_NFCT_IRQ_PRIORITY
must be set to 5 or less when selectingCONFIG_BT_LL_SOFTDEVICE
on Bluetooth: Peripheral HIDS keyboard.
- Several issues for nRF5340
The following issues can occur when using SoftDevice Controller with nRF5340:
Poor performance when performing active scanning.
The controller could assert when receiving extended advertising packets.
The
T_IFS
could in certain conditions be off by 5 us.The radio could stay in the TX state longer than expected. This issue can only occur when sending a packet on either LE 1M or LE 2M PHY after receiving or transmitting a packet on LE Coded PHY. If this occurs while performing a Link Layer Control Procedure, the controller could end up retransmitting an acknowledged packet, resulting in a disconnect.
Affected platforms: nRF5340
- Sending control packet twice
A control packet could be sent twice even after the packet was acknowledged. This would only occur if the radio was forced off due to an unforeseen condition.
- DRGN-13029: The application will not immediately restart a connectable advertiser after a high duty cycle advertiser times out
In some cases, the host might restart advertising sooner than the SoftDevice Controller is able to free its connection context.
Workaround: Wait 500 ms before restarting a connectable advertiser
- Assert risk after performing a DLE procedure
The controller could assert when receiving a packet with a CRC error on LE Coded PHY after performing a DLE procedure where RX Octets is changed to a value above 140.
- No data issue when connected to multiple devices
hci_data_get()
might return “No data available” when there is data available. This issue will only occur when connected to multiple devices at the same time.
- Assert on LE Write Suggested Default Data Length
The controller will assert if the host issues LE Write Suggested Default Data Length.
- HCI LE Set Privacy Mode appears as not supported
The controller does not indicate support for HCI LE Set Privacy Mode although it is supported.
- Assert if advertising data is set after HCI Reset
The controller will assert if advertising data is set after HCI Reset without first setting advertising parameters.
- Assert on writing to flash
The controller might assert when writing to flash.
- Timeout without sending packet
A directed advertiser might time out without sending a packet on air.
nrfx
The issues in this section are related to drivers provided in nrfx.
MDK
- Incorrect pin definition for nRF5340
For nRF5340, the pins P1.12 to P1.15 are unavailable due to an incorrect pin number definition in the MDK.
Affected platforms: nRF5340
nrfx_saadc driver
- Samples might be swapped
Samples might be swapped when buffer is set after starting the sample process, when more than one channel is sampled. This can happen when the sample task is connected using PPI and setting buffers and sampling are not synchronized.
nrfx_uarte driver
- RX and TX not disabled in uninit
The driver does not disable RX and TX in uninit, which can cause higher power consumption.
nrfx_uart driver
- tx_buffer_length set incorrectly
The nrfx_uart driver might incorrectly set the internal tx_buffer_length variable when high optimization level is set during compilation.
Integrations
The issues in this section are related to Integrations.
Pelion
The issues in this section are related to Pelion Device Management integration. The support for Pelion Device Management and the related library and application were removed in nRF Connect SDK v1.9.0.
- NCSDK-10196: DFU fails for some configurations with the quick session resume feature enabled
Enabling
CONFIG_PELION_QUICK_SESSION_RESUME
together with the OpenThread network backend leads to the quick session resume failure during the DFU packet exchange. This is valid for the nRF52840 DK and the nRF5340 DK.Affected platforms: nRF5340, nRF52840
Workaround: Use the quick session resume feature only for configurations with the cellular network backend.
Trusted Firmware-M (TF-M)
The issues in this section are related to the TF-M implementation in the nRF Connect SDK.
- CIA-1182: TF-M flash partition overflow
When building for Thingy:91 and enabling debug optimizations (or enabling Debug build in the VS code extension), the TF-M flash partition will overflow.
Affected platforms: Thingy:91
Workaround:: Set the
CONFIG_TFM_CMAKE_BUILD_TYPE_MINISIZEREL
toy
.
- NCSDK-24986: TF-M does not configure PDM and I2S as non-secure peripherals on nRF91 Series devices
The peripherals cannot be accessed by the non-secure application without triggering a security violation.
- NCSDK-24804: TF-M does not compile without the
gpio0
node enabled in devicetree This fails with the error message
'TFM_PERIPHERAL_GPIO0_PIN_MASK_SECURE' undeclared.
Workaround: Enable the
gpio0
node in the devicetree configuration&gpio0 { status = "okay"; };
- NCSDK-22907: TF-M does not build with
CONFIG_TFM_ITS_ENCRYPTED
enabled andCONFIG_TFM_PARTITION_PROTECTED_STORAGE
disabled This fails with the error message
Invalid config: NOT PS_ROLLBACK_PROTECTION and PS_ENCRYPTION and PSA_ALG_GCM or PSA_ALG_CCM! and TFM_SP_PS is not defined
.Workaround: Enable
CONFIG_TFM_PARTITION_PROTECTED_STORAGE
if encrypted ITS is used.
- NCSDK-22818: TF-M does not build with
CONFIG_TFM_PROFILE_TYPE_MINIMAL
disabled andCONFIG_TFM_LOG_LEVEL_SILENCE
enabled This fails with the error message
undefined reference to 'end'
caused by printf being included in the build.
- NRFJPROG-454: TF-M might fail to reset when using nrfjprog version 10.22.x on nRF9160 platforms
Issuing a reset command using nrfjprog for nRF9160 platforms using the following command might fail to successfully complete and might cause a TF-M core panic:
nrfjprog -f nrf91 --reset
Affected platforms: nRF9160
Workaround: Use an nrfjprog version that is not affected or do not use the –reset option, for example use –pinreset or –debugreset instead:
nrfjprog -f nrf91 --pinreset
nrfjprog -f nrf91 --debugreset
- NCSDK-18321: TF-M PSA architecture tests do not build with CMake v3.25.x
The TF-M: Platform security architecture test fails to build with CMake version 3.25.x with missing header files. This happens because the CMake install command is executed before the build command with the affected CMake versions.
Workaround: Do not use the CMake version 3.25.x.
- NCSDK-20864: TF-M unaligned partitions when MCUboot padding and debug optimizations are enabled
When building TF-M using the Partition Manager with the MCUboot bootloader enabled (
CONFIG_BOOTLOADER_MCUBOOT
), with eitherCONFIG_DEBUG_OPTIMIZATIONS
orCONFIG_TFM_CMAKE_BUILD_TYPE_DEBUG
also enabled, the resulting partitions are not aligned withCONFIG_NRF_SPU_FLASH_REGION_SIZE
as required by the TF-M partition alignment requirements. This will cause the build to fail.Workaround: Disable the
CONFIG_DEBUG_OPTIMIZATIONS
andCONFIG_TFM_CMAKE_BUILD_TYPE_DEBUG
options, or subtract 0x200 from the current value of theCONFIG_PM_PARTITION_SIZE_TFM
option, to comply with the TF-M partition alignment requirements.
- NCSDK-17501: Partition Manager: Ignored alignment for partitions
The
align
setting for some partitions was set incorrectly, sometimes creating overlapping partitions. Because of this, assertions fail in the debug builds of TF-M and the board does not boot.This issue affects the following configuration files:
pm.yml.bt_fast_pair
pm.yml.emds
pm.yml.file_system
pm.yml.memfault
pm.yml.nvs
pm.yml.pgps
pm.yml.tfm
pm.yml.zboss
Workaround: Edit the affected configurations file so that
align
is correctly placed inside theplacement
section of the config file.
- NCSDK-19536: TF-M does not compile when the board is missing a
uart1
node and TF-M logging is enabled TF-M does not compile when a
uart1
node is not defined in a board’s devicetree configuration and TF-M logging is enabled.Workaround: Use one of the following workarounds:
Add uart1 node with baudrate property in the devicetree configuration.
Disable TF-M logging by enabling the
CONFIG_TFM_LOG_LEVEL_SILENCE
option.
- NCSDK-15909: TF-M failing to build with Zephyr SDK 0.14.2
TF-M may fail to build due to flash overflow with Zephyr SDK 0.14.2 when
TFM_PROFILE_TYPE_NOT_SET
is set toy
.Workaround: Use one of the following workarounds:
Increase the TF-M partition
CONFIG_PM_PARTITION_SIZE_TFM
.Use Zephyr SDK version 0.14.1.
- NCSDK-16916: TF-M non-secure storage size might be incorrect when having multiple storage partitions
TF-M non-secure storage partition
nonsecure_storage
size is incorrectly calculated when it has multiple storage partitions inside.Workaround: Use one of the following workarounds:
Set the sizes of the storage partitions to a multiple of
CONFIG_NRF_SPU_FLASH_REGION_SIZE
.Use a static partition file.
- TF-M is not supported for Thingy:91 v1.5.0 and lower versions
TF-M does not support Thingy:91 v1.5.0 and lower versions when using the factory-programmed bootloader to upgrade the firmware. TF-M is compatible with all versions of the Thingy:91 if you first upgrade the bootloader using an external debug probe. Additionally, TF-M functions while using the bootloader to upgrade the firmware if you upgrade the bootloader to nRF Connect SDK v2.0.0.
Affected platforms: Thingy:91
- NCSDK-15382: TF-M uses more RAM compared to SPM in the minimal configuration
TF-M uses 64 KB of RAM in the minimal configuration, while SPM uses 32 KB of RAM.
Workaround: Free up memory in the application if needed or keep
CONFIG_SPM
enabled in the application.
- NCSDK-15379: TF-M does not support FP Hard ABI
TF-M does not support enabling the Float Point Hard Application Binary Interface configuration enabled with
CONFIG_FP_HARDABI
.Workaround: Use
CONFIG_FP_SOFTABI
or keepCONFIG_SPM
enabled in the application.
- NCSDK-15345: TF-M does not support non-secure partitions in external flash
TF-M does not support configuring a non-secure partition in external flash, such as non-secure storage or MCUboot secondary partition. Partitions that TF-M will attempt to configure as non-secure are:
tfm_nonsecure
,nonsecure_storage
, andmcuboot_secondary
.Workaround: Do not put non-secure partitions in external flash or keep
CONFIG_SPM
enabled in the application.
- NCSDK-12483: Missing debug symbols
Some debug symbols are missing sometimes in the library model.
Workaround: Add the text
zephyr_link_libraries(-Wl,--undefined=my_missing_debug_symbol)
in the application’sCMakeLists.txt
file.
- NCSDK-12342: Potential SecureFault exception while accessing protected storage
When accessing protected storage, a SecureFault exception is sometimes triggered and execution halts.
- NCSDK-11195: Build errors when enabling
CONFIG_BUILD_WITH_TFM
option Enabling the
CONFIG_BUILD_WITH_TFM
Kconfig option in SES project configuration or usingwest -t menuconfig
results in build errors.Workaround: Set
CONFIG_BUILD_WITH_TFM=y
in project configuration file (prj.conf
) or through west command line (west build -- -DCONFIG_BUILD_WITH_TFM=y
).
- NCSDK-12306: Enabling debug configuration causes usage fault on nRF9160
When the debug configuration
CONFIG_TFM_CMAKE_BUILD_TYPE_DEBUG
is enabled, a usage fault is triggered during boot on nRF9160.Affected platforms: nRF9160
- NCSDK-14590: Usage fault in interrupt handlers when using FPU extensions
When the
ARM_NONSECURE_PREEMPTIBLE_SECURE_CALLS
Kconfig option is disabled, a usage fault can be triggered when an interrupt handler uses FPU extensions while interrupting the secure processing environment.Workaround: Do not disable the
ARM_NONSECURE_PREEMPTIBLE_SECURE_CALLS
option when theFPU
option is enabled.
- NCSDK-15443: TF-M cannot be booted by MCUboot without enabling
CONFIG_MCUBOOT_CLEANUP_ARM_CORE
in MCUboot TF-M cannot be booted by MCUboot unless MCUboot cleans up the ARM hardware state to reset values before booting TF-M.
Workaround: Upgrade MCUboot with
CONFIG_MCUBOOT_CLEANUP_ARM_CORE
enabled or keepCONFIG_SPM
enabled in the application.
- NCSDK-13530: TF-M minimal build has increased in size
TF-M minimal build exceeds 32 kB due to increased dependencies in the TF-M crypto partition.
- KRKNWK-12777: FLASHACCER event triggered after soft reset
After soft reset, TF-M sometimes triggers a FLASHACCERR event and execution halts.
- NCSDK-14015: Execution halts during boot
When the
CONFIG_RPMSG_SERVICE
is enabled on the nRF5340 SoC together with TF-M, the firmware does not boot. This option is used by OpenThread and Bluetooth modules.Affected platforms: nRF5340
Workaround: Place the
rpmsg_nrf53_sram
partition inside thesram_nonsecure
partition using Partition Manager.
- NCSDK-13949: TF-M Secure Image copies FICR to RAM on nRF9160
TF-M Secure Image copies the FICR to RAM address between
0x2003E000
and0x2003F000
during boot on nRF9160.Affected platforms: nRF9160
Zephyr
The issues in this section are related to the Zephyr downstream in the nRF Connect SDK.
- NCSDK-20104: MCUboot configuration can prevent application from being able to run
MCUboot will, by default, create a read-only RAM region on the MPU that is used for the stack guard feature (enabled by default). The intention is that the application that gets booted clears this region. If the user application’s startup variables reside in this memory location, the application will stop with a fault and be unable to start. This issue replaces the issue NCSDK-18426, which mentioned a fault in the firmware when using RTT on nRF52 Series devices.
Affected platforms: nRF52840, nRF52833, nRF52830, nRF52820
Workaround: Enable
CONFIG_MCUBOOT_CLEANUP_ARM_CORE`
in MCUboot configuration.
- LwM2M engine blocks all composite operations
Due to a bug in LwM2M engine, all composite operations get a return code of
4.01 - Unauthorized
. This has been reported in Zephyr issue #6412.Workaround: To fix the error, cherry-pick commits from the upstream Zephyr PR #64016.
- LwM2M object’s resource instance buffers may overlap
If the LwM2M object statically allocates storage for more than one resource instance of the string type, these buffers will overlap. This has been reported in Zephyr issue #6411.
Workaround: To fix the error, cherry-pick commits from the upstream Zephyr PR #64015.
- LwM2M engine uses incorrect encoding of object links when SenML-CBOR content format is used
Some servers might fail to decode payload from Zephyr LwM2M client. This has been reported in Zephyr issue #52527.
- NCSIDB-840: Compilation of I2C TWIM driver fails when PINCTRL is disabled
The I2C driver for TWIM peripherals (
i2c_nrfx_twim.c
) cannot be compiled withCONFIG_PINCTRL
set ton
.Workaround: Wrap the call to
pinctrl_apply_state()
on line 292 ofi2c_nrfx_twim.c
in a#ifdef CONFIG_PINCTRL
block. Additionally, whenCONFIG_PM_DEVICE
is set toy
,#ifdef CONFIG_PINCTRL
from line 307 and the corresponding#endif
need to be removed.
- The time returned by clock_gettime() API becomes incorrect after one week of uptime
The time returned by POSIX clock_gettime() API becomes incorrect after one week elapses. This is due to an overflow in the uptime conversion.
- NCSDK-6330: USB Mass Storage Sample Application fails MSC Tests from USB3CV test tool
USB Mass Storage fails the USB3CV compliance Command Set Test from the MSC Tests suite.
- NCSDK-6328: USB CDC ACM Composite Sample Application fails Chapter 9 Tests from USB3CV test tool
USB CDC-ACM composite fails the USB3CV compliance TD 9.1: Device Descriptor Test from the Chapter 9 Test suite.
- NCSDK-6331: WebUSB sample application fails Chapter 9 Tests from USB3CV test tool
WebUSB fails the USB3CV compliance TD 9.21: LPM L1 Suspend Resume Test from the Chapter 9 Test suite.
- FOTA does not work
FOTA with the SMP server does not work.
Affected platforms: nRF5340
- NCSIDB-108: Thread context switch might lead to a kernel fault
If the Zephyr kernel preempts the current thread and performs a context switch to a new thread while the current thread is executing a secure service, the behavior is undefined and might lead to a kernel fault. To prevent this situation, a thread that aims to call a secure service must temporarily lock the kernel scheduler (
k_sched_lock()
) and unlock the scheduler (k_sched_unlock()
) after returning from the secure call.
- Counter Alarm sample does not work
The Counter Alarm does not work. A fix can be found in Pull Request #16736.
- USB Mass Storage Sample Application compilation issues
USB Mass Storage does not compile.
- NCSDK-6832: SMP Server sample fails upon initialization
The SMP server will fail upon initialization when using the
bt-overlay.conf
Kconfig overlay file. This happens because of a stack overflow.Workaround: Set
CONFIG_MAIN_STACK_SIZE
to2048
.
Other issues
- Receive error with large packets
nRF9160 fails to receive large packets (over 4000 bytes).
Affected platforms: nRF9160
- Calling
nrf_connect()
immediately causes fail nrf_connect()
fails if called immediately after initialization of the device. A delay of 1000 ms is required for this to work as intended.Affected platforms: nRF9160
Known issues for deprecated components
This section lists known issues for components that have been deprecated during the nRF Connect SDK development. These issues are visible for older releases.
HomeKit
Note
HomeKit is deprecated with the nRF Connect SDK v2.5.0 release and removed in the nRF Connect SDK v.2.6.0 release. All HomeKit customers are recommended to use Matter for new designs of smart home products.
- KRKNWK-17343: Accessories become significantly slower when some data pairs in the non-volatile storage (NVS) change frequently
Accessing data pairs that rarely change can take a long time. It might happen, for example, in case of long booting or paired/unpaired identify response time, which can lead to certification issues. During the certification, the accessory is subjected to multiple resets and pair/unpair processes, which causes the NVS to store a large amount of new data pairs. As a result, the accessory does not pass the certification test cases exceeding the maximum operation time (for example, TCT012, TCT022 and TCT023).
Workaround: Enable the NVS cache by setting the Kconfig options
CONFIG_NVS_LOOKUP_CACHE
toy
andCONFIG_NVS_LOOKUP_CACHE_SIZE
to512
(requires additional 2 KB of RAM). Additional optimization can be enabled by setting the Kconfig optionsCONFIG_SETTINGS_NVS_NAME_CACHE
toy
andSETTINGS_NVS_NAME_CACHE_SIZE
to512
(requires additional 2 KB of RAM). Alternatively, you can manually cherry-pick and apply commit with fix frommain
(commit hash:216d6588d069390d2c5291560002ca47684fbfc0
).
- KRKNWK-16503: OTA DFU using the iOS Home app (over UARP) does not work on the nRF5340 SoC
Application core cannot be upgraded due to a problem with uploading images for two cores. Uploading the network core image overrides an already uploaded application core image.
Affected platforms: nRF5340
Workaround: Manually cherry-pick and apply commit from the main branch (commit hash:
09874a36edf21ced7d3c9356de07df6f0ff3d457
).
- KRKNWK-13010: Dropping from Thread to Bluetooth LE takes too long
Dropping from Thread to Bluetooth LE, after a Thread Border Router is powered off, takes much longer for FTD accessories than estimated in TCT030 test case. It takes between 3-4 minutes for the FTD accessory to detect that the Thread network connection is lost. The accessory then waits the specified 65 seconds and falls back to Bluetooth LE in case the Thread network is not available again.
Workaround: Specification for TCT030 is going to be updated.
- KRKNWK-14130: Bluetooth LE TX configuration is set to
0
dBm by default The minimum Bluetooth LE TX configuration required is at least
4
dBm. For HomeKit multiprotocol samples, this should be8
dBm. This results in a weak signal on the SoC itself.Workaround: You need to configure the appropriate dBm values for Bluetooth LE and Thread manually in the source code.
- KRKNWK-14081: HomeKit SDK light bulb example does not work with MTD
If the MTD is set to
y
in the light bulb sample, user is not able to communicate with the device after it has been added to the Home app using an iPhone and a HomePod Mini.
- NCSDK-13947: Net core downgrade prevention does not work on nRF5340
When updating firmware via SMP protocol (Nordic DFU), the downgrade prevention mechanism does not work for the network core.
Affected platforms: nRF5340
Workaround: Prevention mechanism can be implemented in the mobile application layer.
- KRKNWK-13607: Stateless switch application crashes upon factory reset
When running Thread test suit on the stateless switch application, the CI crashes upon factory reset.
- KRKNWK-13249: Unexpected assertion in HAP Bluetooth Peripheral Manager
When Bluetooth LE layer emits callback with a connect or disconnect event, one of its parameters is an underlying Bluetooth LE connection object. On rare occasions, this connection object is no longer valid by the time it is processed in HomeKit, and this results in assertion. There is no proven workaround yet.
- KRKNWK-11729: Stateless switch event characteristic value not handled according to specification in Bluetooth LE mode
The stateless programmable switch application does not handle the value of the stateless switch event characteristic in the Bluetooth LE mode according to the specification. According to the specification, the accessory is expected to return null once the characteristic has been read or after 10 seconds have passed. In its current implementation in the nRF Connect SDK, the characteristic value does not change to null immediately after it is read, and changes to null after 5 seconds instead.
Workaround: The HomeKit specification in point 11.47 is going to be updated.
- KRKNWK-13063: RTT logs do not work with the Light Bulb multiprotocol sample with DFU on nRF52840
The Light Bulb multiprotocol sample with Nordic DFU activated in debug version for nRF52840 platform does not display RTT logs properly.
Affected platforms: nRF52840
Workaround: Disable RTT logs for the bootloader.
- KRKNWK-13064: Nordic DFU is not compliant with HAP certification requirements
Some of the HAP certification requirements are not met by the Nordic DFU solution.
Workaround: Cherry-pick changes from PR #332 in the sdk-homekit repository.
- KRKNWK-12474: Multiprotocol samples on nRF52840 might not switch to Thread
Samples might not switch to Thread mode as expected and remain in Bluetooth mode instead. The issue is related to older iOS versions.
Affected platforms: nRF52840
Workaround: Update your iPhone to iOS 15.4.
- KRKNWK-13095: Change in KVS key naming scheme causes an error for updated devices
A previous implementation allowed for empty key in domain. This has been restricted during refactoring.
Workaround: Cherry-pick changes from PR #329 in the sdk-homekit repository.
- KRKNWK-13022: Activating DFU causes increased power consumption
Currently shell is used to initiate DFU mode, which leads to increased power consumption.
- KRKNWK-10611: DFU fails with external flash memory
DFU will fail when using external flash memory for update image storage. For this reason, DFU with external flash memory cannot be performed on HomeKit accessories.
- KRKNWK-9422: On-mesh commissioning does not work
Thread’s on-mesh commissioning does not work for the HomeKit accessories.
- Invalid NFC payload
Invalid NFC payload occurs if the HomeKit accessory is paired.
- Build error when building with DEBUG_SETUP_CODE configuration
The following build error is observed with DEBUG_SETUP_CODE - invalid file path in CMakeFile.
- HomeKit accessory fails to start
Occasionally, the accessory fails to start after a factory reset attempt.
- KRKNWK-11666: CLI command
hap services
returns incorrect results Observed issues with the command include float values not printed, values not updated, and read callbacks shown as “<No read callback>” even though present.
- KRKNWK-11365: HAP tool’s
provision
command freezes This issue happens on macOS when an EUI argument is not passed in attempt to read EUI from a connected board.
SEGGER Embedded Studio Nordic Edition
Note
SEGGER Embedded Studio Nordic Edition support has been deprecated with the nRF Connect SDK v2.0.0 release and Visual Studio Code is now the default IDE for the nRF Connect SDK. Use the Open an existing application option in the nRF Connect for VS Code extension to migrate your application.
- NCSDK-6852: Extra CMake options might not be applied in version 5.10d
If you specify Extra CMake Build Options in the Open nRF Connect SDK Project dialog and at the same time select an nRF Connect Toolchain Version of the form
X.Y.Z
, the additional CMake options are discarded.Workaround: Select
NONE (Use SES settings/environment PATH)
from the nRF Connect Toolchain Version drop-down if you want to specify Extra CMake Build Options.
- NCSDK-8372: Project name collision causes SES Nordic Edition to load the wrong project
Some samples that are located in different folders use the same project name. For example, there is a
light_switch
project both in thesamples/bluetooth/mesh/
folder and in thesamples/zigbee/
folder. When you select one of these samples from the project list in the Open nRF Connect SDK Project dialog, the wrong sample might be selected. Check the Build Directory field in the dialog to see if this is the case. The field indicates the path to the project that SES Nordic Edition will load.Workaround: If the path in Build Directory points to the wrong project, select the correct project by using the … button for Projects and navigating to the correct project location. The build directory will update automatically.
- NCSDK-9992: Multiple extra CMake options applied as single option
If you specify two or more Extra CMake Build Options in the Open nRF Connect SDK Project dialog, those will be incorrectly treated as one option where the second option becomes a value to the first. For example:
-DFOO=foo -DBAR=bar
will define the CMake variableFOO
having the valuefoo -DBAR=bar
.Workaround: Create a CMake preload script containing
FOO
andBAR
settings, and then specify-C <pre-load-script>.cmake
in Extra CMake Build Options.
Secure Partition Manager (SPM)
Note
The Secure Partition Manager (SPM) is deprecated as of nRF Connect SDK v2.1.0 and removed after nRF Connect SDK v2.2.0. It is replaced by Trusted Firmware-M (TF-M).
- NCSDK-19156: Building SPM for other boards than
nrf5340dk_nrf5340_cpuapp
andnrf9160dk_nrf9160
fails with compilation error incortex_m_systick.c
This happens because the
CONFIG_CORTEX_M_SYSTICK
configuration option is enabled while the systick node is disabled in the devicetree.Affected platforms: nRF9160, nRF5340
Workaround: Enable the systick node in a DTS overlay file for the SPM build by completing the following steps:
Create an overlay file
systick_enabled.overlay
with the following content:&systick { status = "okay"; };
Add the overlay file as a build argument to SPM:
west build -- -Dspm_DTC_OVERLAY_FILE=systick_enabled.overlay
- NCSIDB-114: Default logging causes crash
Enabling default logging in the Secure Partition Manager sample makes it crash if the sample logs any data after the application has booted (for example, during a SecureFault, or in a secure service). At that point, RTC1 and UARTE0 are non-secure.
Workaround: Do not enable logging and add a breakpoint in the fault handling, or try a different logging backend.
- NCSDK-8232: Secure Partition Manager and application building together
It is not possible to build and program Secure Partition Manager and the application individually.
- CIA-248: Samples with default SPM config fails to build for
thingy91_nrf9160_ns
All samples using the default SPM config fails to build for the
thingy91_nrf9160_ns
board target if the sample is not set up with MCUboot.Affected platforms: Thingy:91
Workaround: Use the main branch.
Zephyr repository issues
In addition to these known issues, check the current issues in the official Zephyr repository, since these might apply to the nRF Connect SDK fork of the Zephyr repository as well.
Reporting nRF Connect SDK issues
To get help and report issues that are not related to Zephyr but to the nRF Connect SDK, go to Nordic’s DevZone.