Skip to content

Add example for ATECCX08 configuration and locking #10

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
merged 5 commits into from
Mar 19, 2024
Merged

Add example for ATECCX08 configuration and locking #10

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
5 commits
Select commit Hold shift + click to select a range
2ac8c5f
Examples: RandomNumber fix serial prints referring to ECCX08
pennam Mar 1, 2024
96ab727
Examples: add dedicated example skecth for ATECCX08 configuration and…
pennam Mar 1, 2024
7249484
Examples: RandomNumber add note about the ConfigurationLocking example
pennam Mar 18, 2024
1580af9
Examples: fix sketch description using SecureElement naming
pennam Mar 18, 2024
85baef4
Examples: ConfigurationLocking fix typo in sketch description
pennam Mar 18, 2024
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
2 changes: 1 addition & 1 deletion examples/CertificateSigningRequest/CertificateSigningRequest.ino
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -4,7 +4,7 @@
This sketch can be used to generate a CSR for a private key
generated in an ECC508/ECC608 or SE050 crypto chip slot.

If the ECC508/ECC608 is not configured and locked it prompts
If the SecureElement is not configured and locked it prompts
the user to configure and lock the chip with a default TLS
configuration.

Expand Down
111 changes: 111 additions & 0 deletions examples/ConfigurationLocking/ConfigurationLocking.ino
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,111 @@
/*
Configure and Lock your ATECCX08 SecureElement

This sketch can be used to apply default configuration and lock
yout ATECCX08 Secure Element.
Default configuration can be found here:
https://github.com/arduino-libraries/ArduinoECCX08/blob/master/src/utility/ECCX08DefaultTLSConfig.h

SE050 do not have EEPROM configuration and do not need to be locked
to work correctly. secureElement.locked() always returns true for SE050
and the sketch does nothing.

The circuit:
- A board equipped with ECC508 or ECC608 or SE050 chip

This example code is in the public domain.
*/

#include <Arduino_SecureElement.h>

void setup() {
Serial.begin(9600);
while (!Serial);

SecureElement secureElement;

if (!secureElement.begin()) {
Serial.println("No SecureElement present!");
while (1);
}

String serialNumber = secureElement.serialNumber();

Serial.print("SecureElement Serial Number = ");
Serial.println(serialNumber);
Serial.println();

if (!secureElement.locked()) {
String lock = promptAndReadLine("The SecureElement on your board is not locked, would you like to PERMANENTLY configure and lock it now? (y/N)", "N");
lock.toLowerCase();

if (!lock.startsWith("y")) {
Serial.println("Unfortunately you can't proceed without locking it :(");
while (1);
}

if (!secureElement.writeConfiguration()) {
Serial.println("Writing SecureElement configuration failed!");
while (1);
}

if (!secureElement.lock()) {
Serial.println("Locking SecureElement configuration failed!");
while (1);
}

Serial.println("SecureElement locked successfully");
Serial.println();
} else {
#if defined(SECURE_ELEMENT_IS_ECCX08)
Serial.println("SecureElement already locked!");
Serial.println();
#else
Serial.println("SecureElement does not need to be locked!");
Serial.println();
#endif
}

}

void loop() {
// do nothing
}

String promptAndReadLine(const char* prompt, const char* defaultValue) {
Serial.print(prompt);
Serial.print(" [");
Serial.print(defaultValue);
Serial.print("]: ");

String s = readLine();

if (s.length() == 0) {
s = defaultValue;
}

Serial.println(s);

return s;
}

String readLine() {
String line;

while (1) {
if (Serial.available()) {
char c = Serial.read();

if (c == '\r') {
// ignore
continue;
} else if (c == '\n') {
break;
}

line += c;
}
}

return line;
}
11 changes: 7 additions & 4 deletions examples/RandomNumber/RandomNumber.ino
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,9 +1,13 @@
/*
secureElement Random Number
SecureElement Random Number

This sketch uses the ECC508/ECC608 or SE050 to generate a random number
every second and print it to the Serial Monitor

If the SecureElement is not configured and locked the ConfigurationLocking
example should be used before running this sketch to setup the chip with a
default TLS configuration.

Circuit:
- A board equipped with ECC508 or ECC608 or SE050 chip

Expand All @@ -19,12 +23,12 @@ void setup() {
while (!Serial);

if (!secureElement.begin()) {
Serial.println("Failed to communicate with ECC508/ECC608!");
Serial.println("Failed to communicate with SecureElement!");
while (1);
}

if (!secureElement.locked()) {
Serial.println("The ECC508/ECC608 is not locked!");
Serial.println("The SecureElement is not locked!");
while (1);
}
}
Expand All @@ -35,4 +39,3 @@ void loop() {

delay(1000);
}

4 changes: 2 additions & 2 deletions examples/SelfSignedCertificate/SelfSignedCertificate.ino
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -4,7 +4,7 @@
This sketch can be used to generate a self signed certificate
for a private key generated in an ECC508/ECC608 or SE050 crypto chip slot.

If the crypto chip is not configured and locked it prompts
If the SecureElement is not configured and locked it prompts
the user to configure and lock the chip with a default TLS
configuration.

Expand Down Expand Up @@ -145,4 +145,4 @@ String readLine() {
}

return line;
}
}
Loading