From 7095159a4cee68a9b5f356f303debf0cd9befd3b Mon Sep 17 00:00:00 2001
From: Prasad Alatkar <prasad.alatkar@espressif.com>
Date: Wed, 12 May 2021 16:45:52 +0530
Subject: [PATCH] NimBLE: Update NimBLE submodule to reattempt conn and to fix
 vulnerability

* Add workaround to overcome connection establishment failure error.

* Fix vulnerability during public key exchange in secure connection
---
 components/bt/host/nimble/Kconfig.in | 16 ++++++++++++++++
 components/bt/host/nimble/nimble     |  2 +-
 2 files changed, 17 insertions(+), 1 deletion(-)

diff --git a/components/bt/host/nimble/Kconfig.in b/components/bt/host/nimble/Kconfig.in
index ec6d2a397a..8e321f8647 100644
--- a/components/bt/host/nimble/Kconfig.in
+++ b/components/bt/host/nimble/Kconfig.in
@@ -435,6 +435,22 @@ config BT_NIMBLE_HOST_BASED_PRIVACY
         Use this option to do host based Random Private Address resolution.
         If this option is disabled then controller based privacy is used.
 
+config BT_NIMBLE_ENABLE_CONN_REATTEMPT
+    bool "Enable connection reattempts on connection establishment error"
+    default y if (IDF_TARGET_ESP32C3 || IDF_TARGET_ESP32S3)
+    default n if IDF_TARGET_ESP32
+    help
+        Enable to make the NimBLE host to reattempt GAP connection on connection
+        establishment failure.
+
+config BT_NIMBLE_MAX_CONN_REATTEMPT
+    int "Maximum number connection reattempts"
+    range 1 7
+    default 3
+    depends on BT_NIMBLE_ENABLED && BT_NIMBLE_ENABLE_CONN_REATTEMPT
+    help
+        Defines maximum number of connection reattempts.
+
 config BT_NIMBLE_EXT_ADV
     bool "Enable extended advertising."
     default n
diff --git a/components/bt/host/nimble/nimble b/components/bt/host/nimble/nimble
index 1b808fcb80..5bb7b40227 160000
--- a/components/bt/host/nimble/nimble
+++ b/components/bt/host/nimble/nimble
@@ -1 +1 @@
-Subproject commit 1b808fcb809c6ceb74c83c0a09f07a63580ca91c
+Subproject commit 5bb7b402275210ed6f97fe4bd6e452bf0f659452