2018-07-12 08:15:44 -04:00
|
|
|
ESP HTTPS OTA
|
|
|
|
|
=============
|
|
|
|
|
|
|
|
|
|
Overview
|
|
|
|
|
--------
|
|
|
|
|
|
|
|
|
|
``esp_https_ota`` provides simplified APIs to perform firmware upgrades over HTTPS.
|
|
|
|
|
It's an abstraction layer over existing OTA APIs.
|
|
|
|
|
|
|
|
|
|
Application Example
|
|
|
|
|
-------------------
|
|
|
|
|
|
|
|
|
|
.. highlight:: c
|
|
|
|
|
|
|
|
|
|
::
|
|
|
|
|
|
|
|
|
|
esp_err_t do_firmware_upgrade()
|
|
|
|
|
{
|
|
|
|
|
esp_http_client_config_t config = {
|
|
|
|
|
.url = CONFIG_FIRMWARE_UPGRADE_URL,
|
|
|
|
|
.cert_pem = (char *)server_cert_pem_start,
|
|
|
|
|
};
|
2022-03-01 23:31:42 -05:00
|
|
|
esp_https_ota_config_t ota_config = {
|
|
|
|
|
.http_config = &config,
|
|
|
|
|
};
|
|
|
|
|
esp_err_t ret = esp_https_ota(&ota_config);
|
2018-07-12 08:15:44 -04:00
|
|
|
if (ret == ESP_OK) {
|
|
|
|
|
esp_restart();
|
|
|
|
|
} else {
|
|
|
|
|
return ESP_FAIL;
|
|
|
|
|
}
|
|
|
|
|
return ESP_OK;
|
|
|
|
|
}
|
|
|
|
|
|
2021-02-02 02:55:40 -05:00
|
|
|
Partial Image Download over HTTPS
|
|
|
|
|
---------------------------------
|
|
|
|
|
|
|
|
|
|
To use partial image download feature, enable ``partial_http_download`` configuration in ``esp_https_ota_config_t``.
|
|
|
|
|
When this configuration is enabled, firmware image will be downloaded in multiple HTTP requests of specified size.
|
|
|
|
|
Maximum content length of each request can be specified by setting ``max_http_request_size`` to required value.
|
|
|
|
|
|
|
|
|
|
This option is useful while fetching image from a service like AWS S3, where mbedTLS Rx buffer size (:ref:`CONFIG_MBEDTLS_SSL_IN_CONTENT_LEN`)
|
|
|
|
|
can be set to lower value which is not possible without enabling this configuration.
|
|
|
|
|
|
|
|
|
|
Default value of mbedTLS Rx buffer size is set to 16K. By using partial_http_download with max_http_request_size of 4K,
|
2021-11-16 23:06:01 -05:00
|
|
|
size of mbedTLS Rx buffer can be reduced to 4K. With this configuration, memory saving of around 12K is expected.
|
2021-02-02 02:55:40 -05:00
|
|
|
|
2021-03-12 02:20:41 -05:00
|
|
|
Signature Verification
|
|
|
|
|
----------------------
|
2018-08-14 09:25:11 -04:00
|
|
|
|
2021-03-12 02:20:41 -05:00
|
|
|
For additional security, signature of OTA firmware images can be verified. For that, refer :ref:`secure-ota-updates`
|
2018-08-14 09:25:11 -04:00
|
|
|
|
2022-03-01 23:31:42 -05:00
|
|
|
Advanced APIs
|
|
|
|
|
-------------
|
|
|
|
|
|
|
|
|
|
``esp_https_ota`` also provides advanced APIs which can be used if more information and control is needed during the OTA process.
|
|
|
|
|
|
|
|
|
|
Example that uses advanced ESP_HTTPS_OTA APIs: :example:`system/ota/advanced_https_ota`.
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
OTA Upgrades with Pre-Encrypted Firmware
|
|
|
|
|
----------------------------------------
|
|
|
|
|
|
|
|
|
|
To perform OTA upgrades with Pre-Encrypted Firmware, please enable :ref:`CONFIG_ESP_HTTPS_OTA_DECRYPT_CB` in component menuconfig.
|
|
|
|
|
|
|
|
|
|
Example that performs OTA upgrade with Pre-Encrypted Firmware: :example:`system/ota/pre_encrypted_ota`.
|
|
|
|
|
|
2018-07-12 08:15:44 -04:00
|
|
|
API Reference
|
|
|
|
|
-------------
|
|
|
|
|
|
2019-11-12 22:46:16 -05:00
|
|
|
.. include-build-file:: inc/esp_https_ota.inc
|
