Bootloader encrypt_flash_contents: add means to encrypt application image only (IDFGH-11439) #12576
Labels
Resolution: NA
Issue resolution is unavailable
Status: Done
Issue is done internally
Type: Feature Request
Feature request for IDF
Is your feature request related to a problem?
When enabling flash encryption, bootloader will set relevant fuses and encrypt partitions on next boot. Partition encryption is very slow btw: it takes ~30s to encrypt a 1.5M partition. It becomes even more relevant when we first flash a small app for eol testing. It basically doubles our eol times (compared to the non-encrypted process).
Describe the solution you'd like.
App partition encryption is performed by encrypt_partition() in bootloader_support/src/flash_encryption/flash_encrypt.c. Here all the information is available to encrypt the image only (instead of the whole partition). An example solution is as follows:
The change may also be configurable via menuconfig.
Describe alternatives you've considered.
No response
Additional context.
No response
The text was updated successfully, but these errors were encountered: