esp-idf/components/bootloader_support/include
Anurag Kar ba2ff1876f Enable secure boot only after encrypting flash
This prevents a device from being bricked in case when both secure boot & flash encryption are enabled and encryption gets interrupted during first boot. After interruption, all partitions on the device need to be reflashed (including the bootloader).

List of changes:
* Secure boot key generation and bootloader digest generation logic, implemented inside function esp_secure_boot_permanently_enable(), has been pulled out into new API esp_secure_boot_generate_digest(). The enabling of R/W protection of secure boot key on EFUSE still happens inside esp_secure_boot_permanently_enable()
* Now esp_secure_boot_permanently_enable() is called only after flash encryption process completes
* esp_secure_boot_generate_digest() is called before flash encryption process starts
2019-05-06 11:34:12 +05:30
..
bootloader_clock.h esp32: Fix backwards compatibility for pre-v2.1 bootloaders 2017-12-18 13:45:57 +11:00
bootloader_common.h bootloader: Add support of anti-rollback 2019-02-14 18:51:43 +08:00
bootloader_random.h bootloader_support: Move bootloader_random.h to public header directory 2018-09-03 04:39:45 +00:00
bootloader_util.h bootloader: verify that loaded image does not overlap bootloader code 2018-10-26 12:44:10 +08:00
esp_flash_encrypt.h Merge branch 'master' into feature/cmake 2018-09-05 10:35:04 +08:00
esp_flash_partitions.h bootloader: Don't verify Partition Table as part of Secure Boot 2018-07-13 15:45:15 +10:00
esp_image_format.h esp32: Add firmware version to app 2018-12-03 16:52:04 +08:00
esp_secure_boot.h Enable secure boot only after encrypting flash 2019-05-06 11:34:12 +05:30