TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / mirror / mcuboot / 006994b7547e9d69342a027e5b8fb69d632653e9
commit006994b7547e9d69342a027e5b8fb69d632653e9[log] [tgz]
authorFabio Utzig <utzig@apache.org>Wed Jan 16 16:33:20 2019 -0800
committerDavid Brown <davidb@davidb.org>Fri Jan 18 09:44:48 2019 -0700
treed7ad80b981e8d55c1f5452940b4d0c4cfc6df2c0
parent90abedc7528e020d4eef49c85917b85293557b75 [diff]
Fix a buffer overflow on EC point load

While loading a new EC point, when it was smaller than the expected
number of bytes, a zero padding was being written beyond the end of the
buffer instead of at the initial position.

While this has been working before, it broke when images were signed using
the ring API.

Signed-off-by: Fabio Utzig <utzig@apache.org>
1 file changed
tree: d7ad80b981e8d55c1f5452940b4d0c4cfc6df2c0
  1. boot/
  2. docs/
  3. ext/
  4. samples/
  5. scripts/
  6. sim/
  7. testplan/
  8. .gitignore
  9. .gitmodules
  10. .travis.yml
  11. enc-aes128kw.b64
  12. enc-rsa2048-priv.pem
  13. enc-rsa2048-pub.pem
  14. LICENSE
  15. NOTICE
  16. project.yml
  17. README.md
  18. repository.yml
  19. root-ec-p256-pkcs8.pem
  20. root-ec-p256.pem
  21. root-rsa-2048.pem
  22. version.yml
README.md

mcuboot

Coverity Scan Build Status Build/Test

This is mcuboot, version 1.2.0

MCUboot is a secure bootloader for 32-bit MCUs. The goal of MCUboot is to define a common infrastructure for the bootloader, system flash layout on microcontroller systems, and to provide a secure bootloader that enables easy software upgrade.

MCUboot is operating system and hardware independent and relies on hardware porting layers from the operating system it works with. Currently, mcuboot works with both the Apache Mynewt, and Zephyr operating systems, but more ports are planned in the future. RIOT is currently supported as a boot target with a complete port planned.

Using MCUboot

Instructions for different operating systems can be found here:

Roadmap

The issues being planned and worked on are tracked using GitHub issues. To participate please visit:

MCUBoot GitHub Issues

Issues were previously tracked on MCUboot JIRA , but it is now deprecated.

Browsing

Information and documentation on the bootloader are stored within the source.

It was previously also documented on confluence: MCUBoot Confluence however, it is now deprecated and not currently maintained

For more information in the source, here are some pointers:

  • boot/bootutil: The core of the bootloader itself.
  • boot/boot_serial: Support for serial upgrade within the bootloader itself.
  • boot/zephyr: Port of the bootloader to Zephyr
  • boot/mynewt: Mynewt bootloader app
  • imgtool: A tool to securely sign firmware images for booting by mcuboot.
  • sim: A bootloader simulator for testing and regression

Joining

Developers welcome!