esp_https_server: Enable secure element support.

Closes https://github.com/espressif/esp-idf/issues/8286
2025-08-08 12:10:59 +00:00 · 2022-03-27 14:31:30 +05:30
parent 2cf6399cd5
commit 4c58685c00
4 changed files with 59 additions and 13 deletions
--- a/components/esp_https_server/src/https_server.c
+++ b/components/esp_https_server/src/https_server.c
@@ -181,6 +181,7 @@ static httpd_ssl_ctx_t *create_secure_context(const struct httpd_ssl_config *con

    ssl_ctx->tls_cfg = cfg;
    ssl_ctx->user_cb = config->user_cb;
+
 /* cacert = CA which signs client cert, or client cert itself */
    if(config->cacert_pem != NULL) {
        cfg->cacert_buf = (unsigned char *)malloc(config->cacert_len);
@@ -193,6 +194,7 @@ static httpd_ssl_ctx_t *create_secure_context(const struct httpd_ssl_config *con
        memcpy((char *)cfg->cacert_buf, config->cacert_pem, config->cacert_len);
        cfg->cacert_bytes = config->cacert_len;
    }
+
 /* servercert = cert of server itself */
    cfg->servercert_buf = (unsigned char *)malloc(config->servercert_len);
    if (!cfg->servercert_buf) {
@@ -205,15 +207,20 @@ static httpd_ssl_ctx_t *create_secure_context(const struct httpd_ssl_config *con
    memcpy((char *)cfg->servercert_buf, config->servercert, config->servercert_len);
    cfg->servercert_bytes = config->servercert_len;

-    cfg->serverkey_buf = (unsigned char *)malloc(config->prvtkey_len);
-    if (!cfg->serverkey_buf) {
-        ESP_LOGE(TAG, "Could not allocate memory");
-        free((void *)cfg->servercert_buf);
-        free((void *)cfg->cacert_buf);
-        free(cfg);
-        free(ssl_ctx);
-        return NULL;
+    /* Pass on secure element boolean */
+    cfg->use_secure_element = config->use_secure_element;
+    if (!cfg->use_secure_element) {
+        cfg->serverkey_buf = (unsigned char *)malloc(config->prvtkey_len);
+        if (!cfg->serverkey_buf) {
+            ESP_LOGE(TAG, "Could not allocate memory");
+            free((void *)cfg->servercert_buf);
+            free((void *)cfg->cacert_buf);
+            free(cfg);
+            free(ssl_ctx);
+            return NULL;
+        }
    }
+
    memcpy((char *)cfg->serverkey_buf, config->prvtkey_pem, config->prvtkey_len);
    cfg->serverkey_bytes = config->prvtkey_len;