Updating via OTA from non-encrypted to encrypted version

afcec1
Posts: 23
Joined: Tue Oct 08, 2019 1:48 pm

Updating via OTA from non-encrypted to encrypted version

Postby afcec1 » Mon Mar 21, 2022 8:50 am

Hi,

the initial versions of my firmware were released without flash encryption. Now we have decided to enable encryption due to obvious reasons and the whole procedure is working fine (Using ESP32 generated keys). However, a clear limitation I have detected is that a device running a non-encrypted version can not be updated via OTA to an encrypted version. I have not been able to check this is depth yet but I understand the bootloader was not initially compiled with flash encryption enabled and therefore it just does not work. Am I right? Is there any way to overcome this limitation? Thanks

WiFive
Posts: 3529
Joined: Tue Dec 01, 2015 7:35 am

Re: Updating via OTA from non-encrypted to encrypted version

Postby WiFive » Mon Mar 21, 2022 5:58 pm

You can technically update the bootloader and partition table via custom ota but it is risky and unsupported.

Who is online

Users browsing this forum: Majestic-12 [Bot] and 360 guests