Search found 19 matches
- Mon Apr 15, 2024 2:31 am
- Forum: ESP-IDF
- Topic: Secure boot with HSM
- Replies: 0
- Views: 473
Secure boot with HSM
The documentation regarding Secure Boot using espsecure.py to generate the digest for burning the eFuse signature block assumes that the private key is available. We are using an external HSM (Digicert, via PKS11) and we're wondering how we can do this from a pre-signed binary (or what other method ...
- Sat Apr 13, 2024 11:01 pm
- Forum: ESP-IDF
- Topic: ESP32 Secure Bootloader
- Replies: 5
- Views: 7431
Re: ESP32 Secure Bootloader
I know this is late, but my guess is that you are starting with a public PEM rather than the required private PEM.
- Mon Feb 19, 2024 2:50 am
- Forum: ESP-IDF
- Topic: IDF v4.4 ESP32 secure boot and flash encryption step-by-step
- Replies: 17
- Views: 20285
Re: IDF v4.4 ESP32 secure boot and flash encryption step-by-step
Thanks for your answers.
Also note that you have to erase the flash (idf.py -p PORT erase_flash) before you start the procedure otherwise you can get ESP_ERR_NVS_CORRUPT_KEY_PART.
This also applies to ESP32's delivered from the factory as they are not always erased when received.
Also note that you have to erase the flash (idf.py -p PORT erase_flash) before you start the procedure otherwise you can get ESP_ERR_NVS_CORRUPT_KEY_PART.
This also applies to ESP32's delivered from the factory as they are not always erased when received.
- Fri Feb 16, 2024 1:58 am
- Forum: ESP-IDF
- Topic: IDF v4.4 ESP32 secure boot and flash encryption step-by-step
- Replies: 17
- Views: 20285
Re: IDF v4.4 ESP32 secure boot and flash encryption step-by-step
I have thoroughly read through your suggested documentation you suggested at https://docs.espressif.com/projects/esp-idf/en/latest/esp32/security/host-based-security-workflows.html#enable-flash-encryption-and-secure-boot-v2-externally We simply request a complete step-by-step with command lines . It...
- Mon Feb 12, 2024 10:32 pm
- Forum: ESP-IDF
- Topic: IDF v4.4 ESP32 secure boot and flash encryption step-by-step
- Replies: 17
- Views: 20285
Re: IDF v4.4 ESP32 secure boot and flash encryption step-by-step
Can someone PLEASE respond to this. It MUST have been done by Espressif at some point, so why not just show us EXACTLY what you did to prove it works.
- Sun Feb 11, 2024 11:38 pm
- Forum: ESP-IDF
- Topic: IDF v4.4 ESP32 secure boot and flash encryption step-by-step
- Replies: 17
- Views: 20285
- Tue Feb 06, 2024 9:41 pm
- Forum: ESP-IDF
- Topic: IDF v4.4 ESP32 secure boot and flash encryption step-by-step
- Replies: 17
- Views: 20285
- Mon Feb 05, 2024 3:38 am
- Forum: Hardware
- Topic: ESP32 not booting until reset button pressed
- Replies: 16
- Views: 25064
Re: ESP32 not booting until reset button pressed
We have found that FTDI serial cables work, but CP210x cables do NOT work.
It has to do with the timing of control signals and the problem with the Q1,Q2 design I highlighted above.
It has to do with the timing of control signals and the problem with the Q1,Q2 design I highlighted above.
- Mon Feb 05, 2024 3:31 am
- Forum: ESP-IDF
- Topic: IDF v4.4 ESP32 secure boot and flash encryption step-by-step
- Replies: 17
- Views: 20285
Re: IDF v4.4 ESP32 secure boot and flash encryption step-by-step
Can someone PLEASE respond to this. It MUST have been done by Espressif at some point, so why not just show us EXACTLY what you did to prove it works. I have now bricked 4 ESP32 dev boards because Espressif documentation is inadequate and poorly organised. To try and push things along, this is what ...
- Fri Jan 05, 2024 1:35 am
- Forum: ESP-IDF
- Topic: IDF v4.4 ESP32 secure boot and flash encryption step-by-step
- Replies: 17
- Views: 20285
Re: IDF v4.4 ESP32 secure boot and flash encryption step-by-step
I don't believe it is as easy as you say. I can successfully program encrypted flash OR secure boot - but not both. (1) If I enable encrypted flash, let it boot and encrypt and reboot - then encrypted flash flash is working ok (2) If I then enable secure boot, then the header is invalid. I suspect t...