Store Certificates in encrypted partition , how ?
Posted: Wed Nov 27, 2019 2:52 am
Hello
I always used SPIFFS , they are great for storage .. they have a way to upload while building and they are super easy
to work with .
The only down side now is it can't be encrypted , So I look for NVS .. I found lots of posts here about sector size and each file
shouldn't exceed 2KB ??
Some Certificates (Mutual Authentication) exceed 3KB.
So now I look for a FAT partition .. Looks like a simple thing .. similar to SPIFFS but with encryption .
Now , the problem is I need a way to upload certificates while building , not in a separate process like the tool of
MakeFATfs (can't remember the name correctly, sorry)
So , I guess my question is ...
-is there any tool in esp-idf that can upload to a fat partition during building & flashing (not a separate tool) ?
-If NVS can support 3.2KB or slightly more .. Is there any tool to upload the files during the Build and flash stage ?
I know about the MFG? Tool , but again .. what I need is something like the Folder you make with SPIFFS and put
Make directives .. so all end up uploaded to the chip in it's partition .
Note :
-I used to embed the Keys in the Bin , but that is not an option now
-I've seen a post about no Upload tool for fat partition , but that was 2017 or something ? any changes ?
any advise on that situation please , from other posts .. it's clear lots of people faced this before .
Thanks
I always used SPIFFS , they are great for storage .. they have a way to upload while building and they are super easy
to work with .
The only down side now is it can't be encrypted , So I look for NVS .. I found lots of posts here about sector size and each file
shouldn't exceed 2KB ??
Some Certificates (Mutual Authentication) exceed 3KB.
So now I look for a FAT partition .. Looks like a simple thing .. similar to SPIFFS but with encryption .
Now , the problem is I need a way to upload certificates while building , not in a separate process like the tool of
MakeFATfs (can't remember the name correctly, sorry)
So , I guess my question is ...
-is there any tool in esp-idf that can upload to a fat partition during building & flashing (not a separate tool) ?
-If NVS can support 3.2KB or slightly more .. Is there any tool to upload the files during the Build and flash stage ?
I know about the MFG? Tool , but again .. what I need is something like the Folder you make with SPIFFS and put
Make directives .. so all end up uploaded to the chip in it's partition .
Note :
-I used to embed the Keys in the Bin , but that is not an option now
-I've seen a post about no Upload tool for fat partition , but that was 2017 or something ? any changes ?
any advise on that situation please , from other posts .. it's clear lots of people faced this before .
Thanks