98e407ec45
Merge branch 'ci/improve-tests_v6.0' into 'release/v6.0'
...
tests: change wifi tests expect timeout to 60 (v6.0)
See merge request espressif/esp-idf!46545
2026-03-20 00:57:25 +01:00
629a4e2444
docs(key-manager): Add Key-Manager peripheral related documentation
2026-03-18 16:42:21 +05:30
bc2c857bc9
test(examples/security): Extend the flash enc example to flash enc enabled using KM targets
2026-03-18 16:41:03 +05:30
8b26fb150b
test(examples/security): Add an example to demonstrate signing using Key Manager keys
2026-03-18 16:39:07 +05:30
84d80dd37d
tests: change wifi tests expect timeout to 60
...
- wifi_router
- wifi_ap
- wifi_high_traffic
2026-03-12 15:59:26 +08:00
68d31180f0
fix(esp_tee): Prevent IV reuse in the TEE secure storage AES-GCM service
2026-02-11 12:29:52 +05:30
2d386e2f6f
fix(examples/tee): Remove dead code and fix unintialised scalar usage
2026-02-02 10:57:02 +05:30
5c55790f54
feat(mbedtls/ecdsa): Introduce PSA ECDSA driver
2026-01-31 10:59:11 +05:30
b470f08c94
refactor(esp_tee): Update TEE attestation tests and examples to use the PSA interface
2026-01-29 11:49:16 +05:30
76287081ea
feat: code cleanup
2025-12-19 07:29:43 +08:00
aa88c81dfb
fix(wpa_supplicant): revert changes to dpp_crypto
2025-12-19 07:29:08 +08:00
f306dbea84
feat(mbedtls): migrates ESP-TEE with PSA APIs
2025-12-19 07:28:33 +08:00
dc65c332cb
fix(tee): fix incorrect test expectation logic
2025-12-06 00:08:36 +07:00
ec0ef59535
Merge branch 'chore/update-protocol-eth-connect_v6.0' into 'release/v6.0'
...
feat(protocol_examples_common): Use Ethernet Init component (v6.0)
See merge request espressif/esp-idf!43554
2025-11-21 08:22:17 +01:00
714b022a43
ci(p4): disable p4 rev3 invalid tests temporarily
2025-11-21 02:48:05 +00:00
e187d3b259
feat(protocol_examples_common): Use Ethernet Init component
...
- Refactored protocol_examples_common to use ethernet_init component
2025-11-20 18:57:03 +08:00
01f5050f6f
ci(esp_tee): Enable the TEE examples for ESP32-C61
2025-11-20 11:01:29 +05:30
e3198fff3c
feat: Update esptool to v5
2025-09-30 15:28:55 +02:00
649741fa9d
Merge branch 'feat/nvs_flash_deregister_sec_scheme' into 'master'
...
feat(nvs_flash): Added an API to deregister the NVS security scheme context
Closes IDF-12456 and IDFGH-16210
See merge request espressif/esp-idf!41073
2025-09-22 11:11:34 +05:30
c152663408
feat(esp_tee): Added support for PBKDF2-based (HMAC) ECDSA signing
2025-09-19 12:06:02 +05:30
1ea0fc261d
change(nvs_sec_provider): Make the HMAC-based NVS security scheme default for supported SoCs
...
- When NVS encryption is enabled on SoCs with the HMAC peripheral that have flash encryption
enabled, the HMAC-based NVS encryption scheme is now selected as default instead of the
flash encryption-based scheme.
- If your application previously used the flash encryption-based scheme, you need to manually
configure the NVS encryption scheme to flash encryption from HMAC through ``menuconfig``
or your project's ``sdkconfig`` (i.e., setting ``CONFIG_NVS_SEC_KEY_PROTECT_USING_FLASH_ENC=y``).
2025-09-19 10:38:38 +05:30
8b812d4192
feat(esp_tee): Miscellaneous fixes and updates
...
- Rename `tee_test_fw` app configs for better CI tracking
- Decrease the lower bound of TEE I/DRAM config options
- Trim the TEE test-apps build
- Improve the TEE/REE OTA pytest script with additional checks
- Fix build issues when `tee_sec_storage`/`tee_ota_ops` are a
a part of the project build but ESP-TEE is disabled
2025-09-16 14:54:06 +05:30
7d19c310c1
Merge branch 'feat/esptool_v5_minimal' into 'master'
...
Feat: Add minimal esptool v5 support
See merge request espressif/esp-idf!41314
2025-08-25 16:28:51 +08:00
391de423fd
docs(security_features_app): Update the QEMU instructions for the security_features_app example
...
Closes https://github.com/espressif/esp-idf/issues/17458
Closes https://github.com/espressif/esp-idf/pull/17464
2025-08-25 10:12:36 +08:00
eba6b814ba
feat: Add support for esptool v5 and keep v4 for now
2025-08-21 15:53:39 +02:00
9d35d63651
feat(cmake): Update minimum cmake version to 3.22 (whole repository)
2025-08-19 14:44:32 +02:00
16873520fd
ci(flash_enc): Extend flash encryption and mbedtls test case to test PSRAM encryption
2025-08-12 11:29:00 +05:30
55e0730a8d
change(esp_hw_support): Move security-related modules to the esp_security component
...
- Also adds support to whitelist target specific expected dependency violations
in check_dependencies.py
2025-08-04 11:43:01 +05:30
c16fc04c2d
docs(esp_tee): Revise TEE secure storage and related documentation
2025-05-04 18:22:22 +05:30
3bb3f9362e
refactor(esp_tee): Update TEE secure storage examples and test-apps
2025-05-04 18:03:30 +05:30
3fd107aa04
feat(mbedtls): Add support for ECDSA signing with TEE secure storage
2025-04-03 15:35:15 +05:30
1e8933d296
feat(esp_tee): Add support for SECP192R1 curve in TEE secure storage
2025-04-03 15:35:14 +05:30
c34b4eb882
feat(esp32h4): enable ESP32H4 ci build
2025-03-28 14:41:28 +08:00
ce7ec7f19f
Merge branch 'feature/enable_hmac_and_ds_support_for_esp32h21' into 'master'
...
feat: enabled hmac and ds support in esp32h21
Closes IDF-11495 and IDF-11497
See merge request espressif/esp-idf!37085
2025-03-21 17:23:46 +08:00
88fa3e2c9e
feat(security): fixes review comments
2025-03-17 18:23:14 +08:00
fbecd65e2a
feat(security): update README.md to include support for esp32s3
2025-03-17 18:23:14 +08:00
f794eb9b2d
feat: enabled hmac and ds support in esp32h21
...
This commit enables support for HMAC and DS in ESP32H21
2025-03-13 10:23:11 +05:30
adf4822a31
test(hmac_soft_jtag): check jtag connection status properly
2025-03-05 10:51:48 +01:00
daf2d31008
test: format all test scripts
2025-03-05 12:08:48 +08:00
786dcacd8b
fix(security): Fixed README for security features app
2025-02-20 22:05:48 +05:30
870a1846b1
Merge branch 'feature/esp_tee_flash_prot_spi1' into 'master'
...
feat(esp_tee): Add support for flash memory isolation and protection (SPI1)
Closes IDF-10481, IDF-10083, and IDF-8915
See merge request espressif/esp-idf!36454
2025-02-12 18:35:49 +08:00
1f6d450d19
fix(security): Fixed coverity warnings from nvs_sec_provider and esp_tee components
2025-02-11 13:01:13 +05:30
37525c605d
refactor(esp_tee): Migrate secure services list from TBL to YAML
2025-02-11 10:15:20 +05:30
8f117c7f4c
refactor(esp_tee): Add local components in TEE examples via idf_component.yml
2025-02-11 10:15:19 +05:30
5ef4f20778
feat(esp32h21): disable unsupported build test
2025-02-06 15:47:51 +08:00
c4eec756f3
refactor(esp_tee): Revised the secure service ID numbering scheme
...
Also:
- Split the secure service table into two parts: one DRAM-resident and the
other DROM-resident. The former holds the services invoked when the cache is
disabled or suspended while the latter holds rest of the services.
2025-01-23 12:39:19 +05:30
a91f89026c
feat(esp_tee): Make the attestation service configurable
2025-01-23 12:39:17 +05:30
2c814ef2fa
feat(tools): Enforce utf-8 encoding with open() function
2024-12-27 17:12:21 +08:00
ad74c1c3c2
feat(esp_tee): Added examples demonstrating the ESP-TEE framework
2024-12-20 14:34:14 +05:30
1c92945f59
change(examples): switch examples to use a minimal build
...
Currently, several example dependencies rely on the fact that all
registered components are added to the build, along with components
specified in common requirements. This results in longer build times
because even unused components must be built. Switch all examples to use
idf_minimal_build to compile only the components actually required by
the example.
Signed-off-by: Frantisek Hrbata <frantisek.hrbata@espressif.com >
2024-11-20 20:14:40 +01:00
Fu Hanxi
harshal.patil
Laukik Hase
Ashish Sharma
Alexey Lapshin
Euripedes Rocha
armando
glmfe
Peter Dragun
Soren Friis
Marek Fiala
Chen Jichang
Mahavir Jain
nilesh.kale
Erhan Kurubas
igor.udot
Aditya Patwardhan
gaoxu
Frantisek Hrbata