Главная Обзор Помощь
Вход
RT-Thread-packages
/
esp-idf
зеркало из https://github-proxy.rt-thread.io/RT-Thread-packages/esp-idf.git
2
0
Ответвить 0
Файлы Задачи 0 Вики
Дерево: v5.0-dev
Ветки Метки
esp-idf
/
components
/
bootloader
/
Makefile.projbuild

Makefile.projbuild 6.4 KB
Постоянная ссылка История Исходник

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167 
  1. # Bootloader component (top-level project parts)
    2. 

  2. #
    3. 

  3. # The bootloader is not a real component that gets linked into the project.
    4. 

  4. # Instead it is an entire standalone project (in subproject/) that gets
    5. 

  5. # built in the upper project's build directory. This Makefile.projbuild provides
    6. 

  6. # the glue to build the bootloader project from the original project. It
    7. 

  7. # basically runs Make in the subproject/ directory but it needs to
    8. 

  8. # zero some variables the ESP-IDF project.mk makefile exports first, to not
    9. 

  9. # let them interfere.
    10. 

  10. #
    11. 

  11. BOOTLOADER_COMPONENT_PATH := $(COMPONENT_PATH)
    12. 

  12. BOOTLOADER_BUILD_DIR=$(abspath $(BUILD_DIR_BASE)/bootloader)
    13. 

  13. BOOTLOADER_BIN=$(BOOTLOADER_BUILD_DIR)/bootloader.bin
    14. 

  14. 

  15. # signing key path is resolved relative to the project directory
    16. 

  16. CONFIG_SECURE_BOOT_SIGNING_KEY ?=
    17. 

  17. SECURE_BOOT_SIGNING_KEY=$(abspath $(call dequote,$(CONFIG_SECURE_BOOT_SIGNING_KEY)))
    18. 

  18. export SECURE_BOOT_SIGNING_KEY  # used by bootloader_support component
    19. 

  19. 

  20. BOOTLOADER_SIGNED_BIN ?=
    21. 

  21. 

  22. # Has a matching value in bootloader_support esp_flash_partitions.h
    23. 

  23. BOOTLOADER_OFFSET := 0x1000
    24. 

  24. 

  25. # Custom recursive make for bootloader sub-project
    26. 

  26. #
    27. 

  27. # NB: Some variables are cleared in the environment, not
    28. 

  28. # overriden, because they need to be re-defined in the child
    29. 

  29. # project.
    30. 

  30. #
    31. 

  31. # Pass PROJECT_PATH variable, it will let the subproject look
    32. 

  32. # for user defined bootloader component(s).
    33. 

  33. BOOTLOADER_MAKE= +\
    34. 

  34. 	PROJECT_PATH= \
    35. 

  35. 	COMPONENT_DIRS= \
    36. 

  36. 	$(MAKE) -C $(BOOTLOADER_COMPONENT_PATH)/subproject \
    37. 

  37. 	V=$(V) \
    38. 

  38. 	BUILD_DIR_BASE=$(BOOTLOADER_BUILD_DIR) \
    39. 

  39. 	TEST_COMPONENTS= \
    40. 

  40. 	TESTS_ALL= \
    41. 

  41. 	EXCLUDE_COMPONENTS= \
    42. 

  42. 	PROJECT_SOURCE_DIR=$(PROJECT_PATH)
    43. 

  43. 

  44. .PHONY: bootloader-clean bootloader-flash bootloader-list-components bootloader $(BOOTLOADER_BIN)
    45. 

  45. 

  46. $(BOOTLOADER_BIN): $(SDKCONFIG_MAKEFILE)
    47. 

  47. 	$(BOOTLOADER_MAKE) $@
    48. 

  48. 

  49. clean: bootloader-clean
    50. 

  50. 

  51. bootloader-list-components:
    52. 

  52. 	$(BOOTLOADER_MAKE) list-components
    53. 

  53. 

  54. ifndef CONFIG_SECURE_BOOT
    55. 

  55. # If secure boot disabled, bootloader flashing is integrated
    56. 

  56. # with 'make flash' and no warnings are printed.
    57. 

  57. 

  58. bootloader: $(BOOTLOADER_BIN) | check_python_dependencies
    59. 

  59. 	@echo $(SEPARATOR)
    60. 

  60. 	@echo "Bootloader built. Default flash command is:"
    61. 

  61. 	@echo "$(ESPTOOLPY_WRITE_FLASH) $(BOOTLOADER_OFFSET) $^"
    62. 

  62. 

  63. ESPTOOL_ALL_FLASH_ARGS += $(BOOTLOADER_OFFSET) $(BOOTLOADER_BIN)
    64. 

  64. UF2_ADD_BINARIES += $(BOOTLOADER_OFFSET) $(BOOTLOADER_BIN)
    65. 

  65. 

  66. bootloader-flash: $(BOOTLOADER_BIN) $(call prereq_if_explicit,erase_flash) | check_python_dependencies
    67. 

  67. 	$(ESPTOOLPY_WRITE_FLASH) 0x1000 $^
    68. 

  68. 

  69. else ifdef CONFIG_SECURE_BOOTLOADER_ONE_TIME_FLASH
    70. 

  70. 

  71. # One time flashing requires user to run esptool.py command themselves,
    72. 

  72. # and warning is printed about inability to reflash.
    73. 

  73. #
    74. 

  74. # The flashing command is deliberately printed without an auto-reset
    75. 

  75. # step, so the device doesn't immediately reset to flash itself.
    76. 

  76. 

  77. bootloader: $(BOOTLOADER_BIN) | check_python_dependencies
    78. 

  78. 	@echo $(SEPARATOR)
    79. 

  79. 	@echo "Bootloader built. One-time flash command is:"
    80. 

  80. 	@echo "$(subst hard_reset,no_reset,$(ESPTOOLPY_WRITE_FLASH)) $(BOOTLOADER_OFFSET) $(BOOTLOADER_BIN)"
    81. 

  81. 	@echo $(SEPARATOR)
    82. 

  82. 	@echo "* IMPORTANT: After first boot, BOOTLOADER CANNOT BE RE-FLASHED on same device"
    83. 

  83. 

  84. else ifdef CONFIG_SECURE_BOOTLOADER_REFLASHABLE
    85. 

  85. # Reflashable secure bootloader
    86. 

  86. # generates a digest binary (bootloader + digest)
    87. 

  87. 

  88. ifdef CONFIG_SECURE_BOOTLOADER_KEY_ENCODING_192BIT
    89. 

  89. KEY_DIGEST_LEN=192
    90. 

  90. else
    91. 

  91. KEY_DIGEST_LEN=256
    92. 

  92. endif
    93. 

  93. 

  94. BOOTLOADER_DIGEST_BIN := $(BOOTLOADER_BUILD_DIR)/bootloader-reflash-digest.bin
    95. 

  95. SECURE_BOOTLOADER_KEY := $(BOOTLOADER_BUILD_DIR)/secure-bootloader-key-$(KEY_DIGEST_LEN).bin
    96. 

  96. 

  97. ifdef CONFIG_SECURE_BOOT_BUILD_SIGNED_BINARIES
    98. 

  98. $(SECURE_BOOTLOADER_KEY): $(SECURE_BOOT_SIGNING_KEY) | check_python_dependencies
    99. 

  99. 	$(ESPSECUREPY) digest_private_key --keylen $(KEY_DIGEST_LEN) -k $< $@
    100. 

  100. else
    101. 

  101. $(SECURE_BOOTLOADER_KEY):
    102. 

  102. 	@echo "No pre-generated key for a reflashable secure bootloader is available, due to signing configuration."
    103. 

  103. 	@echo "To generate one, you can use this command:"
    104. 

  104. 	@echo "espsecure.py generate_flash_encryption_key $@"
    105. 

  105. 	@echo "then re-run make."
    106. 

  106. 	exit 1
    107. 

  107. endif
    108. 

  108. 

  109. bootloader: $(BOOTLOADER_DIGEST_BIN)
    110. 

  110. 	@echo $(SEPARATOR)
    111. 

  111. 	@echo "Bootloader built and secure digest generated. First time flash command is:"
    112. 

  112. 	@echo "$(ESPEFUSEPY) burn_key secure_boot_v1 $(SECURE_BOOTLOADER_KEY)"
    113. 

  113. 	@echo "$(ESPTOOLPY_WRITE_FLASH) $(BOOTLOADER_OFFSET) $(BOOTLOADER_BIN)"
    114. 

  114. 	@echo $(SEPARATOR)
    115. 

  115. 	@echo "To reflash the bootloader after initial flash:"
    116. 

  116. 	@echo "$(ESPTOOLPY_WRITE_FLASH) 0x0 $(BOOTLOADER_DIGEST_BIN)"
    117. 

  117. 	@echo $(SEPARATOR)
    118. 

  118. 	@echo "* After first boot, only re-flashes of this kind (with same key) will be accepted."
    119. 

  119. 	@echo "* Not recommended to re-use the same secure boot keyfile on multiple production devices."
    120. 

  120. 

  121. $(BOOTLOADER_DIGEST_BIN): $(BOOTLOADER_BIN) $(SECURE_BOOTLOADER_KEY) | check_python_dependencies
    122. 

  122. 	@echo "DIGEST $(notdir $@)"
    123. 

  123. 	$(ESPSECUREPY) digest_secure_bootloader -k $(SECURE_BOOTLOADER_KEY) -o $@ $<
    124. 

  124. 

  125. else ifdef CONFIG_SECURE_BOOT_V2_ENABLED
    126. 

  126. BOOTLOADER_SIGNED_BIN := $(BOOTLOADER_BUILD_DIR)/bootloader-signed.bin
    127. 

  127. ifdef CONFIG_SECURE_BOOT_BUILD_SIGNED_BINARIES
    128. 

  128. bootloader: $(BOOTLOADER_BIN) $(SDKCONFIG_MAKEFILE) | check_python_dependencies
    129. 

  129. 	$(ESPSECUREPY) sign_data --keyfile $(SECURE_BOOT_SIGNING_KEY) --version 2 \
    130. 

  130. 	-o $(BOOTLOADER_SIGNED_BIN) $(BOOTLOADER_BIN)
    131. 

  131. else
    132. 

  132. bootloader: $(BOOTLOADER_BIN) $(SDKCONFIG_MAKEFILE) | check_python_dependencies
    133. 

  133. 	@echo "Bootloader not signed. Sign the bootloader before flashing."
    134. 

  134. 	@echo "To sign the bootloader, you can use this command:"
    135. 

  135. 	@echo "espsecure.py sign_data --keyfile SECURE_BOOT_SIGNING_KEY --version 2 $(BOOTLOADER_BIN)"
    136. 

  136. endif
    137. 

  137. 	@echo $(SEPARATOR)
    138. 

  138. 	@echo "Use the following command to flash the bootloader:"
    139. 

  139. ifdef CONFIG_SECURE_BOOT_BUILD_SIGNED_BINARIES
    140. 

  140. 	@echo "$(ESPTOOLPY_WRITE_FLASH) $(BOOTLOADER_OFFSET) $(BOOTLOADER_SIGNED_BIN)"
    141. 

  141. else
    142. 

  142. 	@echo "$(ESPTOOLPY_WRITE_FLASH) $(BOOTLOADER_OFFSET) $(BOOTLOADER_BIN)"
    143. 

  143. endif
    144. 

  144. 	@echo $(SEPARATOR)
    145. 

  145. 

  146. else # CONFIG_SECURE_BOOT && !CONFIG_SECURE_BOOTLOADER_REFLASHABLE \
    147. 

  147. && !CONFIG_SECURE_BOOTLOADER_ONE_TIME_FLASH && !CONFIG_SECURE_SIGNED_APPS_RSA_SCHEME
    148. 

  148. bootloader:
    149. 

  149. 	@echo "Invalid bootloader target: bad sdkconfig?"
    150. 

  150. 	@exit 1
    151. 

  151. endif
    152. 

  152. 

  153. ifndef CONFIG_SECURE_BOOT
    154. 

  154. # don't build bootloader by default if secure boot is enabled
    155. 

  155. all_binaries: $(BOOTLOADER_BIN)
    156. 

  156. endif
    157. 

  157. 

  158. bootloader-clean: $(SDKCONFIG_MAKEFILE)
    159. 

  159. 	$(BOOTLOADER_MAKE) app-clean
    160. 

  160. ifdef CONFIG_SECURE_BOOTLOADER_REFLASHABLE
    161. 

  161. 	rm -f $(SECURE_BOOTLOADER_KEY) $(BOOTLOADER_DIGEST_BIN)
    162. 

  162. endif
    163. 

  163. ifdef CONFIG_SECURE_SIGNED_APPS_RSA_SCHEME
    164. 

  164. ifdef CONFIG_SECURE_BOOT_BUILD_SIGNED_BINARIES
    165. 

  165. 	rm -f $(BOOTLOADER_SIGNED_BIN)
    166. 

  166. endif
    167. 

  167. endif
    168.