examples/wifi/scan: disabled Secure Boot, by default; prevent compiling the checking of bootloader signature

Author: Catalin Ioana

components/bootloader_support/src/esp_image_format.c

@@ -167,18 +167,17 @@ goto err;
        rewritten the header - rely on esptool.py having verified the bootloader at flashing time, instead.
     */
     if (!is_bootloader) {
-//#ifdef CONFIG_SECURE_BOOT_ENABLED
         if (esp_secure_boot_enabled()) {
+#ifdef CONFIG_SECURE_BOOT_ENABLED
           // secure boot images have a signature appended
           err = verify_secure_boot_signature(sha_handle, data);
-//#else
+#endif // CONFIG_SECURE_BOOT_ENABLED
         } else {
           // No secure boot, but SHA-256 can be appended for basic corruption detection
           if (sha_handle != NULL) {
               err = verify_simple_hash(sha_handle, data);
           }
         }
-//#endif // CONFIG_SECURE_BOOT_ENABLED
     } else { // is_bootloader
         // bootloader may still have a sha256 digest handle open
         if (sha_handle != NULL) {

examples/wifi/scan/sdkconfig

@@ -26,12 +26,7 @@ CONFIG_BOOTLOADER_VDDSDIO_BOOST=y
 #
 # Security features
 #
-CONFIG_SECURE_BOOT_ENABLED=y
-CONFIG_SECURE_BOOTLOADER_ONE_TIME_FLASH=
-CONFIG_SECURE_BOOTLOADER_REFLASHABLE=y
-CONFIG_SECURE_BOOT_BUILD_SIGNED_BINARIES=y
-CONFIG_SECURE_BOOT_SIGNING_KEY="secure_boot_signing_key.pem"
-CONFIG_SECURE_BOOT_INSECURE=
+CONFIG_SECURE_BOOT_ENABLED=
 CONFIG_FLASH_ENCRYPTION_ENABLED=
 
 #