Aditya Patwardhanesp_hal_security (G1 component)
The esp_hal_security component provides a Hardware Abstraction Layer for security-related peripherals across all targets supported by ESP-IDF.
This component contains HAL implementations for the following security peripherals:
- AES (Advanced Encryption Standard)
- SHA (Secure Hash Algorithm)
- HMAC (Hash-based Message Authentication Code)
- MPI (Modular Polynomial Integer - RSA operations)
- ECC (Elliptic Curve Cryptography)
- ECDSA (Elliptic Curve Digital Signature Algorithm)
- DS (Digital Signature)
- Key Manager (Hardware key management)
- HUK (Hardware Unique Key)
- APM (Access Permission Manager)
- MPU (Memory Protection Unit)
Structure
Similar to the main hal component, this component follows the same structure:
- HAL layer (
include/esp_hal_security/<periph>_hal.h): High-level abstraction for peripheral operations - LL layer (
<target>/include/esp_hal_security/<periph>_ll.h): Low-level register access functions - Types (
include/esp_hal_security/<periph>_types.h): Type definitions and constants shared across layers
Usage
This component is automatically included when you depend on components that use security peripherals, such as:
esp_securitymbedtlsbootloader_support(for secure boot and flash encryption)
You typically don't need to explicitly add this component to your CMakeLists.txt unless you're directly using security HAL APIs.
Note
This component was split from the main hal component to better organize security-related functionality and manage dependencies. Components that previously depended on hal for security features should now depend on esp_hal_security instead.