TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / mirror / mcuboot / db2024eb205bc05161321414ede305c145a1c65a^! / . / docs
commitdb2024eb205bc05161321414ede305c145a1c65a[log] [tgz]
authorAlmir Okato <almir.okato@espressif.com>Thu Aug 24 15:40:26 2023 -0300
committeralmir-okato <66885489+almir-okato@users.noreply.github.com>Wed Sep 20 09:46:27 2023 -0300
tree75626a309ea0aef98453fee4220ace3c54cf4f88
parent736234caa5ee0b3090cf02e5af0c2dc798aa4beb [diff]
espressif: update secure boot and flash encryption

Adjust secure boot and flash encryption after IDF v5.x updates.
It also allows to enable secure boot on ESP32-C2.

Signed-off-by: Almir Okato <almir.okato@espressif.com>

diff --git a/docs/readme-espressif.md b/docs/readme-espressif.md
index ff51d1f..dc236fb 100644
--- a/docs/readme-espressif.md
+++ b/docs/readme-espressif.md

@@ -293,15 +293,13 @@
 
 The Secure Boot implementation is based on
 [IDF's Secure Boot V2](https://docs.espressif.com/projects/esp-idf/en/latest/esp32/security/secure-boot-v2.html),
-is hardware-assisted and RSA based, and has the role for ensuring that only authorized code will be
-executed on the device. This is done through bootloader signature checking by the ROM bootloader.
+is hardware-assisted and RSA based - except ESP32-C2 that uses ECDSA signing scheme - and has the
+role for ensuring that only authorized code will be executed on the device. This is done through
+bootloader signature checking by the ROM bootloader.
 
 ***Note***: ROM bootloader is the First Stage Bootloader, while the Espressif MCUboot port is the
 Second Stage Bootloader.
 
-***Note***: Currently on MCUboot Espressif Port, the Secure Boot V2 for ESP32-C2 is not supported
-yet.
-
 ### [Building bootloader with Secure Boot](#building-bootloader-with-secure-boot)
 
 In order to build the bootloader with the feature on, the following configurations must be enabled:
@@ -310,10 +308,24 @@
 CONFIG_SECURE_BOOT=1
 CONFIG_SECURE_BOOT_V2_ENABLED=1
 CONFIG_SECURE_SIGNED_ON_BOOT=1
+```
+
+For the currently supported chips, with exception of ESP32-C2, enable RSA signing scheme:
+
+```
 CONFIG_SECURE_SIGNED_APPS_RSA_SCHEME=1
 CONFIG_SECURE_BOOT_SUPPORTS_RSA=1
 ```
 
+For ESP32-C2, enable ECDSA signing scheme and, if working with Flash Encryption too, enable the
+configuration to burn keys to efuse together:
+
+```
+CONFIG_SECURE_SIGNED_APPS_ECDSA_V2_SCHEME=1
+
+CONFIG_SECURE_BOOT_FLASH_ENC_KEYS_BURN_TOGETHER=1
+```
+
 ---
 :warning: ***ATTENTION***
 
@@ -1152,7 +1164,7 @@
  *  |        |                    |  *** OS CAN RECLAIM IT AFTER BOOT LATER AS HEAP ***
  *  |        |                    |
  *  |        v                    |
- *  +------------------------------+ 0x403D5000 / 0x3FCD5000
+ *  +------------------------------+ 0x403D5400 / 0x3FCD5400
  *  |        ^                    |
  *  |        |                    |
  *  |        | dram_seg           |  *** SHOULD NOT BE OVERLAPPED ***