TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / mirror / mcuboot / 3f9ec900c4651cf78517230f2185e96eb41bee7c
commit3f9ec900c4651cf78517230f2185e96eb41bee7c[log] [tgz]
authorDavid Brown <david.brown@linaro.org>Fri Feb 23 08:51:12 2018 -0700
committerDavid Brown <davidb@davidb.org>Fri Feb 23 09:38:47 2018 -0700
treefa24dffa368ceef42c3cf03add373105970b98b6
parent9f7c3d2096f615033f37d22109f366207cefce17 [diff]
zephyr: Configure mbed TLS for PSS instead of V1.5

Although MCUboot has used PKCS#1 v2.1 (PSS) for some time now, the mbed
TLS config file was calling out v1.5.  This compiled because MCUboot
implements its own specialized version of the signature check, and only
needs the underlying primitives from mbed TLS.  (The general code in
mbed TLS is quite a bit larger).

To make it clear that we are always using PSS, change the mbed TLS
configuration to call this out explicitly.

Signed-off-by: David Brown <david.brown@linaro.org>
1 file changed
tree: fa24dffa368ceef42c3cf03add373105970b98b6
  1. boot/
  2. docs/
  3. ext/
  4. samples/
  5. scripts/
  6. sim/
  7. testplan/
  8. .gitignore
  9. .gitmodules
  10. .travis.yml
  11. LICENSE
  12. NOTICE
  13. project.yml
  14. README.md
  15. repository.yml
  16. root-ec-p256.pem
  17. root-rsa-2048.pem
  18. sign.sh
README.md

mcuboot

Coverity Scan Build Status Build/Test

This is mcuboot, version 1.1.0

MCUboot is a secure bootloader for 32-bit MCUs. The goal of MCUboot is to define a common infrastructure for the bootloader, system flash layout on microcontroller systems, and to provide a secure bootloader that enables easy software upgrade.

MCUboot is operating system and hardware independent, and relies on hardware porting layers from the operating system it works with. Currently mcuboot works with both the Apache Mynewt, and Zephyr operating systems, but more ports are planned in the future. RIOT is currently supported as a boot target with a complete port planned.

Using MCUboot

Instructions for different operating systems can be found here:

Roadmap

The issues being planned and worked on are tracked on Jira. To participate please visit:

https://runtimeco.atlassian.net/projects/MCUB/summary

Browsing

Information and documentation on the bootloader is stored within the source, and on confluence:

https://runtimeco.atlassian.net/wiki/discover/all-updates

For more information in the source, here are some pointers:

  • boot/bootutil: The core of the bootloader itself.
  • boot/boot_serial: Support for serial upgrade within the bootloader itself.
  • boot/zephyr: Port of the bootloader to Zephyr
  • boot/mynewt: Mynewt bootloader app
  • imgtool: A tool to securely sign firmware images for booting by mcuboot.
  • sim: A bootloader simulator for testing and regression

Joining

Developers welcome!