mirror of
https://github.com/espressif/esp-idf.git
synced 2025-11-25 04:17:34 +00:00
1ea0fc261d
- When NVS encryption is enabled on SoCs with the HMAC peripheral that have flash encryption enabled, the HMAC-based NVS encryption scheme is now selected as default instead of the flash encryption-based scheme. - If your application previously used the flash encryption-based scheme, you need to manually configure the NVS encryption scheme to flash encryption from HMAC through ``menuconfig`` or your project's ``sdkconfig`` (i.e., setting ``CONFIG_NVS_SEC_KEY_PROTECT_USING_FLASH_ENC=y``).
22 lines
859 B
Plaintext
22 lines
859 B
Plaintext
CONFIG_EXAMPLE_FIRMWARE_UPGRADE_URL="FROM_STDIN"
|
|
CONFIG_EXAMPLE_SKIP_COMMON_NAME_CHECK=y
|
|
CONFIG_SECURE_FLASH_ENC_ENABLED=y
|
|
CONFIG_SECURE_FLASH_ENCRYPTION_MODE_DEVELOPMENT=y
|
|
CONFIG_SECURE_BOOT_ALLOW_ROM_BASIC=y
|
|
CONFIG_SECURE_BOOT_ALLOW_JTAG=y
|
|
CONFIG_SECURE_FLASH_UART_BOOTLOADER_ALLOW_ENC=y
|
|
CONFIG_SECURE_FLASH_UART_BOOTLOADER_ALLOW_DEC=y
|
|
CONFIG_SECURE_FLASH_UART_BOOTLOADER_ALLOW_CACHE=y
|
|
CONFIG_SECURE_FLASH_REQUIRE_ALREADY_ENABLED=y
|
|
CONFIG_NVS_SEC_KEY_PROTECT_USING_FLASH_ENC=y
|
|
CONFIG_PARTITION_TABLE_OFFSET=0x9000
|
|
CONFIG_EXAMPLE_CONNECT_ETHERNET=n
|
|
CONFIG_EXAMPLE_CONNECT_WIFI=y
|
|
CONFIG_EXAMPLE_WIFI_SSID_PWD_FROM_STDIN=y
|
|
# This is required for nvs encryption (which is enabled by default with flash encryption)
|
|
CONFIG_PARTITION_TABLE_TWO_OTA_ENCRYPTED_NVS=y
|
|
|
|
CONFIG_MBEDTLS_TLS_CLIENT_ONLY=y
|
|
CONFIG_COMPILER_OPTIMIZATION_SIZE=y
|
|
CONFIG_EXAMPLE_CONNECT_IPV6=n
|