blackbeard420/esp-idf
1
0
Fork 0
mirror of https://github.com/espressif/esp-idf synced 2025-03-10 09:39:10 -04:00
Code Issues Projects Releases Wiki Activity
42,694 Commits 20 Branches 159 Tags
Commit Graph

65 Commits

Author SHA1 Message Date
shenmengjing
29a7146b12 docs: Update CN translation for secure-boot-v2.rst 2024-12-20 11:24:49 +08:00
nilesh.kale
1e11340061 feat(bootloader_support): enabled RSA based secure boot scheme for ESP32C5 ECO1 
This commit enabled RSA based secure boot scheme for ESP32C5 ECO1 module.
This update also adds a check to ensure the selected secure boot scheme is
valid for ECO0 modules.
 2024-12-03 16:48:56 +05:30
shenmengjing
6f86f70f0a docs: Sync CN and EN files 2024-11-05 18:03:42 +08:00
renpeiying
46770a50a6 docs: standardize the names of bootloaders in esp-idf 2024-10-23 11:29:24 +08:00
Aditya Patwardhan
6dc8fe3db3 Merge branch 'docs/update_cn_trans_for_secure_boot_v2' into 'master' 
docs: Update CN translation for secure-boot-v2.rst

Closes DOC-9082

See merge request espressif/esp-idf!33895
 2024-10-08 15:13:59 +08:00
Zhang Shuxian
808a82de81 docs: Update CN translation for secure-boot-v2.rst 2024-10-08 11:09:40 +08:00
Aditya Patwardhan
2c11c2ab81 fix(docs): Fix secure boot v2 documentation 
Update the secure boot v2 documentation
    about the limitation of read-protection
    when secure boot is enabled

    Closes https://github.com/espressif/esp-idf/issues/14587
 2024-10-01 11:56:37 +08:00
Lucas Dekker
232f219321
docs: Explain revocation of unused but compromised keys 
Explain the revocation of unused but compromised keys.

docs: Apply updates from code review

Add some nitpicks from AdityaHPatwardhan.

Closes  https://github.com/espressif/esp-idf/pull/14563

Co-authored-by: Aditya Patwardhan <aditya.patwardhan@espressif.com>
 2024-09-23 12:23:28 +05:30
nilesh.kale
1011cee7a7 feat: udpate security docs for c61 and c5 
This commit update security documents for ESP32C61.
 2024-09-02 11:04:38 +05:30
harshal.patil
e5f22521da
docs(secure_boot_v2): Mention idf.py and openssl commands to generate and verify signatures 
- Adds support for verify_signature command in idf.py

Closes https://github.com/espressif/esptool/issues/942
 2024-08-27 15:44:05 +05:30
harshal.patil
03a15664ee
change(bootloader_support/secure_boot): Improve description of the config SECURE_BOOT_V2_ALLOW_EFUSE_RD_DIS 
Co-authored-by: Zhang Shuxian <zhangshuxian@espressif.com>
 2024-08-21 16:32:54 +05:30
Mahavir Jain
3ec400b332
docs(security): fix ESP32-C3 minimum supported revision for secure boot v2 
Closes https://github.com/espressif/esp-idf/issues/14377
 2024-08-16 15:04:28 +05:30
nilesh.kale
3aa448ee0d fix: disable config for RSA during secure boot 
support for RSA secure boot is disabled for ESP32-ECO0 due to
hardware issue. It will be re-enabled in future version ECO1.

For ESP32C5- ECO0 , ECDSA secure boot is the recommended option.
 2024-07-12 12:40:11 +05:30
harshal.patil
4d6cb7bf23
docs(secure_boot): Add secure boot signature verification time for esp32p4 2024-06-21 21:59:55 +05:30
caixinying-git
64dca12e76 docs: provide CN translation for security/secure-boot-v2.rst 2024-06-06 12:16:08 +08:00
Aditya Patwardhan
f412149dc9 Merge branch 'feat/enable_secure_boot_for_c5' into 'master' 
feat: enable secure boot for c5

Closes IDF-8623 and IDF-9478

See merge request espressif/esp-idf!29774
 2024-06-03 15:35:51 +08:00
nilesh.kale
f5dd1074b6 feat: enable secure boot for c5 
This MR added suppport for secure boot in ESP32-C5.
 2024-05-30 11:43:17 +05:30
Jan Beran
981062d54f feat(tools): add often used espsecure subcommands to idf.py 2024-05-20 15:13:35 +02:00
Marius Vikhammer
f1e65b8373 docs(misc): fixed typos found with codespell 2024-03-28 11:50:58 +08:00
harshal.patil
f4581d7103
docs(secure_boot_v2): Specify the workflow to disable revocation of unused key digests slots 2024-02-15 14:31:41 +05:30
Mahavir Jain
6b823ddb2a
fix(docs): correct the target specific macros for secure boot v2 guide 
It appears that target specific or'ing is not supported through the
docs build. Actual text rendering on the docs site was still using
"default" field from the custom macro, rather than using target
specific.
 2023-11-07 19:38:44 +05:30
Mahavir Jain
eea2536dc4 Merge branch 'feature/conservative_key_revocation_in_secure_boot_v2' into 'master' 
feat: Add API to verify the bootloader and application image before revoking...

Closes IDF-7078

See merge request espressif/esp-idf!24572
 2023-10-16 12:42:49 +08:00
Harshit Malpani
1df186d4e1
feat: Add API to verify the bootloader and app image 
Added an API to verify the bootloader and app image before revoking the key in Secure Boot V2.
This will help in preventing the device to be bricked if the bootloader/application cannot be
verified by any other keys in efuse
 2023-10-12 14:53:57 +05:30
harshal.patil
f46a93e565
feat(secure_boot): add secure boot support for esp32p4 2023-10-12 10:12:54 +05:30
Cai Xin Ying
bcb87c4b8f docs: update format issues for both EN and CN under security and contribute folder 2023-08-22 23:59:44 +08:00
Aditya Patwardhan
083e943704 docs(security): Added host based workflow to enable secure boot externally 
* Styling changes for the host-based workflow document
* Fix formatting for the document for host based security wofkflows
 2023-07-19 10:11:30 +05:30
Aditya Patwardhan
2a4fddb48b docs/Security:Add references to second stage bootloader to avoid confusion bettwen 
bootloader and 2nd stage bootloader
 2023-06-22 17:18:08 +05:30
Mahavir Jain
11e034b387
docs: add ESP32-H2 secure boot guide 
Close IDF-6681
 2023-03-06 16:58:08 +05:30
Sachin Parekh
2bb9499a7e esp32c6: Enable ECDSA based secure boot 
- Updated documentation for C6
 2023-02-13 13:02:11 +05:30
Mahavir Jain
02fb6fab09
docs: secure-boot-v2: add a section about secure padding 2023-02-08 12:01:52 +05:30
harshal.patil
3c0778a069
docs: refactored Secure Boot V2 documentation 
- Added "Signing using pre-calculate signatures" section
- Refactored "Signing using an external HSM" section
 2023-02-08 12:01:47 +05:30
Zhang Xiao Yan
ae639f68a6 Merge branch 'docs/update_USB-OTG_ESP32S2_ESP32S3' into 'master' 
updated USB_OTG in dfu.rst, usb_device.rst and secure-boot-v2.rst

Closes DOC-3565

See merge request espressif/esp-idf!20144
 2022-12-27 14:38:51 +08:00
Mahavir Jain
371a6abdca Merge branch 'docs/support_for_pre_calculated_signatures' into 'master' 
docs: Added documetation for using pre-calculated signatures

See merge request espressif/esp-idf!21377
 2022-12-20 14:03:04 +08:00
harshal.patil
54d6ab2044 docs: Added documentation for using pre-calculated signatures 
to generate secure boot enabled binaries.
 2022-12-06 10:23:45 +05:30
harshal.patil
6809eaf375 docs: fix secure boot "Remote Signing of Images" section command 2022-12-01 18:03:44 +05:30
Linda
9c0d573eae updated USB_OTG in dfu.rst, usb_device.rst and secure-boot-v2.rst 2022-11-29 10:08:59 +08:00
Mahavir Jain
e40d733d5a
secure-boot-v2: fix minor typo (s/MFG1/MGF1) 2022-08-23 16:37:14 +05:30
Linda
3d5f2fbafc docs:updates based on feedbacks 2022-07-22 15:58:09 +08:00
Mahavir Jain
26514959dd
docs: secure-boot-v2: remove incorrect note about bootloader re-flash 
In secure-boot-v2 scheme, one can always regenerate signature using
secure boot signing key and re-flash either bootloader or application.
 2022-06-27 14:24:42 +05:30
KonstantinKondrashov
6e6b5474c3 doc(esp32c2): Updates Flash Encryption chapter 2022-05-31 11:12:21 +00:00
Stefan Wallentowitz
dd7aece4bf
Secure boot v2 image format: CRC size 
The CRC size is documented as 1095 bytes, but in the code I find 1196 bytes:
https://github.com/espressif/esp-idf/blob/master/components/bootloader_support/src/secure_boot_v2/secure_boot.c#L35
 2022-05-30 23:30:34 +02:00
Sachin Parekh
2c725264f7
esp32c2: Support Secure Boot V2 based on ECDSA scheme 2022-05-11 18:00:03 +05:30
Mahavir Jain
1501a22e02 docs: fix salt length in secure-boot-v2 docs 2021-12-07 09:49:28 +05:30
Roland Dobai
9c1d4f5b54 Build & config: Remove the "make" build system 
The "make" build system was deprecated in v4.0 in favor of idf.py
(cmake). The remaining support is removed in v5.0.
 2021-11-10 09:53:53 +01:00
Sachin Parekh
8ff3dbc05d secure_boot: Added Kconfig option for aggressive key revoke 
Applicable to S2, C3, and S3
 2021-10-22 12:20:14 +05:30
Jakob Hasse
ea2e2b0d62 [docs]: Clarified and improved Secure Boot docs 2021-10-13 11:41:53 +08:00
Sachin Parekh
2d82560ed5 bootloader: Enable Secure boot V2 for ESP32-S3 2021-08-19 14:08:12 +05:30
KonstantinKondrashov
93512edc7a secure_boot_v2(doc): secure_boot_v2 key/s must be readable 2021-08-04 15:39:48 +05:00
Sachin Parekh
082cc36532 doc/secure_boot_v2: Fix the steps mentioned for enabling secure boot 2021-07-30 14:40:32 +08:00
Mahavir Jain
77c96e51bb docs: security: fix minor formatting issues or typos 2021-07-22 15:18:56 +05:30