espressif/esp-idf
1
0
Fork 0
mirror of https://github.com/espressif/esp-idf.git synced 2026-04-29 11:55:00 +00:00
Code Issues Packages Projects Releases Wiki Activity
39,160 Commits 24 Branches 183 Tags
0eb9d052d0ea4bf30bc8f7ba53faeac883a30cb2
Commit Graph

172 Commits

Author SHA1 Message Date
harshal.patil 03a15664ee change(bootloader_support/secure_boot): Improve description of the config SECURE_BOOT_V2_ALLOW_EFUSE_RD_DIS 
Co-authored-by: Zhang Shuxian <zhangshuxian@espressif.com>
 2024-08-21 16:32:54 +05:30
Mahavir Jain 3ec400b332 docs(security): fix ESP32-C3 minimum supported revision for secure boot v2 
Closes https://github.com/espressif/esp-idf/issues/14377
 2024-08-16 15:04:28 +05:30
renpeiying afd3179ae8 docs: Provide Chinese translation for host-based-security-workflows.rst 2024-08-08 11:03:24 +08:00
nilesh.kale 3aa448ee0d fix: disable config for RSA during secure boot 
support for RSA secure boot is disabled for ESP32-ECO0 due to
hardware issue. It will be re-enabled in future version ECO1.

For ESP32C5- ECO0 , ECDSA secure boot is the recommended option.
 2024-07-12 12:40:11 +05:30
Mahavir Jain f5f85803a2 docs(security): use target specific macro for bootloader flash offset 2024-07-09 09:43:16 +05:30
shenmengjing 3cb4880d02 docs: Add often used espefuse subcommands to idf.py 2024-07-03 17:55:26 +08:00
Jiang Jiang Jian 15219e2a7e Merge branch 'docs/phase2_auth_update' into 'master' 
docs: Adds document for wifi PEAP phase 2 authentication security advisory.

See merge request espressif/esp-idf!31829
 2024-07-02 10:36:44 +08:00
kindaTall 4259df3d56 docs(security): fix typo for key purpose field in flash encryption guide 2024-07-01 12:21:49 +00:00
aditi df9680b827 docs: Adds document for wifi PEAP phase 2 authentication security advisory. 2024-07-01 14:50:13 +05:30
harshal.patil 4d6cb7bf23 docs(secure_boot): Add secure boot signature verification time for esp32p4 2024-06-21 21:59:55 +05:30
Mahavir Jain 2a4f227c5c docs: add page to summarize the security vulnerabilities and advisories 2024-06-19 10:06:01 +08:00
shenmengjing 85557380dd docs: Update the CN translation for three docs in security 2024-06-12 19:01:11 +08:00
Jan Beran 950428c2f4 feat(tools): Add often used espefuse subcommands to idf.py 2024-06-07 16:23:17 +02:00
Aditya Patwardhan 874388c628 Merge branch 'feature/enable_flash_encryption_for_c5' into 'master' 
feat: enable flash encryption support for c5

Closes IDF-8622 and IDF-9480

See merge request espressif/esp-idf!29578
 2024-06-07 14:30:39 +08:00
caixinying-git 64dca12e76 docs: provide CN translation for security/secure-boot-v2.rst 2024-06-06 12:16:08 +08:00
Marius Vikhammer 21c111465a Merge branch 'docs/c61_support' into 'master' 
docs(c61): add docs build for C61

Closes IDF-9287

See merge request espressif/esp-idf!31182
 2024-06-04 18:13:38 +08:00
nilesh.kale d1fa51e3c9 feat: enable flash encryption support for c5 
This commit provide support for flash encryption feature in ESP32C5
 2024-06-04 14:10:21 +05:30
Aditya Patwardhan f412149dc9 Merge branch 'feat/enable_secure_boot_for_c5' into 'master' 
feat: enable secure boot for c5

Closes IDF-8623 and IDF-9478

See merge request espressif/esp-idf!29774
 2024-06-03 15:35:51 +08:00
Marius Vikhammer 2eb4cd3d84 docs(c61): add docs build for C61 2024-06-03 10:24:27 +08:00
Roland Dobai 7b7f73ba2a Merge branch 'feat/add_espsecure_subcommands' into 'master' 
feat: Add espsecure subcommands into idf.py

See merge request espressif/esp-idf!29424
 2024-05-31 18:29:55 +08:00
nilesh.kale f5dd1074b6 feat: enable secure boot for c5 
This MR added suppport for secure boot in ESP32-C5.
 2024-05-30 11:43:17 +05:30
nilesh.kale 317f07f22a docs: updated security documents for esp32c5 2024-05-27 16:36:17 +05:30
Jan Beran 981062d54f feat(tools): add often used espsecure subcommands to idf.py 2024-05-20 15:13:35 +02:00
Aditya Patwardhan 530fdacd88 fix(docs): Fix DIS_ICACHE related information in host security workflow 2024-04-19 11:29:21 +05:30
Aditya Patwardhan 1366949c8a feat(docs): Add workflow for externally enabling NVS Encryption 
Fix documentation for host based workflows for flash encryption and
    secure boot v2
 2024-04-19 11:29:21 +05:30
Aditya Patwardhan 0dcd692d59 Merge branch 'fix/fix_esp32p4_flash_encryption' into 'master' 
fix(bootloader_support): Fix default key usage for flash encryption

See merge request espressif/esp-idf!29968
 2024-04-02 19:57:38 +08:00
Aditya Patwardhan 51a91259d7 fix(bootloader_support): Fix default key usage for flash encryption 2024-04-02 12:27:53 +05:30
harshal.patil 1975c1c69e docs(security): Update security-related docs for ESP32-P4 2024-04-01 17:34:28 +05:30
Marius Vikhammer f1e65b8373 docs(misc): fixed typos found with codespell 2024-03-28 11:50:58 +08:00
Mahavir Jain 000d1407ea Merge branch 'bugfix/host_security_workflow_docs_update' into 'master' 
fix(docs): correct the UART ROM DL mode disable section for ESP32

See merge request espressif/esp-idf!29046
 2024-02-23 11:24:29 +08:00
harshal.patil f4581d7103 docs(secure_boot_v2): Specify the workflow to disable revocation of unused key digests slots 2024-02-15 14:31:41 +05:30
Mahavir Jain 2238e11e90 fix(docs): correct the UART ROM DL mode disable section for ESP32 2024-02-14 14:46:51 +05:30
Marius Vikhammer 4d28524bdb docs(esp32c5): add support for building C5 docs 2024-02-01 10:06:41 +08:00
kirill.chalov 22a053f1fc docs(sphinx-lint): Fix issues reported by sphinx-lint before adding it to pre-commit 2024-01-23 15:22:29 +08:00
Mahavir Jain 25c2cc5f03 Merge branch 'feature/esp32p4_enable_flash_encryption' into 'master' 
Enable Flash Encryption for ESP32P4

Closes IDF-7545

See merge request espressif/esp-idf!26959
 2023-12-05 21:42:18 +08:00
Aditya Patwardhan a84234c23f feat(security): Enable Flash encryption for ESP32P4 2023-12-05 13:10:55 +05:30
Zhang Xiao Yan 4cd0a6a4b1 Merge branch 'docs/remove_wifi_related_documentation_for_esp32h2' into 'master' 
docs: remove WiFi related documentation for ESP32-H2

See merge request espressif/esp-idf!27026
 2023-12-05 09:58:06 +08:00
Linda bd1825f9b1 docs: remove WiFi related documentation for ESP32-H2 2023-12-04 11:12:39 +08:00
Mahavir Jain 7bb29086df docs: add ECDSA peripheral chapter for H2/P4 
- Add ECDSA peripheral chapter and instructions to program efuse key block
- Update security guide for ECDSA peripheral mention for device identity
- Link with ESP-TLS guide about using ECDSA peripheral in TLS connection
 2023-11-15 09:42:26 +05:30
Mahavir Jain 2a09627d03 Merge branch 'bugfix/secure_boot_v2_docs' into 'master' 
fix(docs): correct the target specific macros for secure boot v2 guide

See merge request espressif/esp-idf!26993
 2023-11-15 11:17:43 +08:00
Wang Zi Yan 32ce89f3cf docs: Update CN for security docs 2023-11-14 07:41:58 +00:00
Shang Zhou 3cb8e18648 docs: Provide CN translation for security/secure-boot-v1.rst 2023-11-09 17:31:54 +08:00
Mahavir Jain 6b823ddb2a fix(docs): correct the target specific macros for secure boot v2 guide 
It appears that target specific or'ing is not supported through the
docs build. Actual text rendering on the docs site was still using
"default" field from the custom macro, rather than using target
specific.
 2023-11-07 19:38:44 +05:30
Mahavir Jain 64cb35deef docs(security): add section about managing the root certificates 2023-10-29 12:21:23 +05:30
walerii 478879ab0d Update host-based-security-workflows.rst 
Fixed typos in the code examples which caused troubles when trying to follow the secure boot workflow and improved the grammar.

Closes https://github.com/espressif/esp-idf/pull/12262
 2023-10-17 14:27:30 +05:30
Mahavir Jain eea2536dc4 Merge branch 'feature/conservative_key_revocation_in_secure_boot_v2' into 'master' 
feat: Add API to verify the bootloader and application image before revoking...

Closes IDF-7078

See merge request espressif/esp-idf!24572
 2023-10-16 12:42:49 +08:00
Mahavir Jain 1501aef1b3 Merge branch 'feature/enable_secure_boot_esp32p4' into 'master' 
feat(secure_boot): add secure boot support for esp32p4

Closes IDF-7544 and IDF-7745

See merge request espressif/esp-idf!26335
 2023-10-16 11:07:14 +08:00
harshal.patil 6cf9cc2c9b docs(secure_boot_v1): add missing digest byte swap information 
- In the secure bootloader digest algorithm section, the final
four byte word byte-swap information was not mentioned.
 2023-10-12 17:35:10 +05:30
Harshit Malpani 1df186d4e1 feat: Add API to verify the bootloader and app image 
Added an API to verify the bootloader and app image before revoking the key in Secure Boot V2.
This will help in preventing the device to be bricked if the bootloader/application cannot be
verified by any other keys in efuse
 2023-10-12 14:53:57 +05:30
harshal.patil f46a93e565 feat(secure_boot): add secure boot support for esp32p4 2023-10-12 10:12:54 +05:30