Почетна Преглед Помоћ
Пријавите се
RT-Thread-packages
/
esp-idf
огледало од https://github-proxy.rt-thread.io/RT-Thread-packages/esp-idf.git
2
0
Креирај огранак 0
Датотеке Дискусије 0 Вики
Дрво: v5.0-dev
Гране Ознаке
esp-idf
/
tools
/
test_apps
/
security
/
secure_boot
/
main
/
secure_boot_main.c

secure_boot_main.c 2.1 KB
Пермалинк Историја Датотека

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071 
  1. /* Flash encryption Example
    2. 

  2. 

  3.    This example code is in the Public Domain (or CC0 licensed, at your option.)
    4. 

  4. 

  5.    Unless required by applicable law or agreed to in writing, this
    6. 

  6.    software is distributed on an "AS IS" BASIS, WITHOUT WARRANTIES OR
    7. 

  7.    CONDITIONS OF ANY KIND, either express or implied.
    8. 

  8. */
    9. 

  9. #include <stdio.h>
    10. 

  10. #include "freertos/FreeRTOS.h"
    11. 

  11. #include "freertos/task.h"
    12. 

  12. #include "soc/efuse_reg.h"
    13. 

  13. #include "esp_efuse.h"
    14. 

  14. #include "esp_secure_boot.h"
    15. 

  15. #include "esp_system.h"
    16. 

  16. #include "esp_spi_flash.h"
    17. 

  17. #include "esp_log.h"
    18. 

  18. #include "esp_efuse_table.h"
    19. 

  19. #include <string.h>
    20. 

  20. 

  21. static void example_print_chip_info(void);
    22. 

  22. static void example_secure_boot_status(void);
    23. 

  23. 

  24. #define TAG "example_secure_boot"
    25. 

  25. 

  26. void app_main(void)
    27. 

  27. {
    28. 

  28.     printf("\nExample to check Secure Boot status\n");
    29. 

  29. 

  30.     example_print_chip_info();
    31. 

  31.     example_secure_boot_status();
    32. 

  32. }
    33. 

  33. 

  34. 

  35. static void example_print_chip_info(void)
    36. 

  36. {
    37. 

  37.     /* Print chip information */
    38. 

  38.     esp_chip_info_t chip_info;
    39. 

  39.     esp_chip_info(&chip_info);
    40. 

  40.     printf("This is %s chip with %d CPU cores\n", CONFIG_IDF_TARGET, chip_info.cores);
    41. 

  41. 

  42.     printf("silicon revision %d, ", chip_info.revision);
    43. 

  43. 

  44.     printf("%dMB %s flash\n", spi_flash_get_chip_size() / (1024 * 1024),
    45. 

  45.             (chip_info.features & CHIP_FEATURE_EMB_FLASH) ? "embedded" : "external");
    46. 

  46. }
    47. 

  47. 

  48. #define DIGEST_LEN 32
    49. 

  49. 

  50. static void example_secure_boot_status(void)
    51. 

  51. {
    52. 

  52.     ets_secure_boot_key_digests_t trusted_keys = { 0};
    53. 

  53. 

  54.     ESP_LOGI(TAG, "Checking for Secure Boot..");
    55. 

  55.     if(esp_secure_boot_enabled()) {
    56. 

  56.         ESP_LOGI(TAG, "Secure Boot is enabled");
    57. 

  57.         ESP_ERROR_CHECK( esp_secure_boot_read_key_digests(&trusted_keys) );
    58. 

  58. 

  59.         unsigned total = 0;
    60. 

  60.         for (int i = 0; i < MAX_KEY_DIGESTS; i++) {
    61. 

  61.             ESP_LOGI(TAG, "Key slot %d:", i);
    62. 

  62.             if (trusted_keys.key_digests[i]) {
    63. 

  63.                 ESP_LOG_BUFFER_HEXDUMP("trusted key", trusted_keys.key_digests[i], DIGEST_LEN, ESP_LOG_INFO);
    64. 

  64.                 total++;
    65. 

  65.             }
    66. 

  66.         }
    67. 

  67.         ESP_LOGI(TAG, "Total %d trusted public keys", total);
    68. 

  68.     } else {
    69. 

  69.         ESP_LOGI(TAG, "Secure Boot not enabled. Enable Secure Boot in menuconfig, build & flash again.");
    70. 

  70.     }
    71. 

  71. }
    72.