WROVER-E esp_ota_end reboots in secure Boot V2

[samc77]

Hi,

I am using the new WROVER-E and trying my luck with the secure boot V2.

I am having an issue with updating the ota partition with a new image.

At the end, the esp_ota_end() is called, this causes the system to reboot without any message.

Tracked it down to esp_secure_boot_verify_rsa_signature_block():
Its failing in a call to a ROM function in this part of the code:

Code: Select all

    int r = ets_secure_boot_read_key_digests(&trusted_keys);
    if (r != 0) {
        ESP_LOGE(TAG, "No trusted key digests were found in efuse!");
    } else {
        ESP_LOGD(TAG, "Verifying with RSA-PSS...");
        // TODO: calling this function in IDF app context is unsafe
        r = ets_secure_boot_verify_signature(sig_block, image_digest, &trusted_keys, verified_digest);
    }

Maybe its related to that TODO?

Any help on this would be appreciated, because we need to ship our product in about two weeks and i would be unhappy if we need to use the V1...

Thanks,
Simon

[samc77]

So I can answer this myself already:

the problem is with the stack size of the task doing the ota:

after increasing the stack size from 4096 to 8192 it finally works!

Thanks