TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / mirror / mcuboot / 9bf95afd43ee1c63fcbae2f2706168558c41307b
commit9bf95afd43ee1c63fcbae2f2706168558c41307b[log] [tgz]
authorDavid Brown <david.brown@linaro.org>Thu Oct 10 15:36:36 2019 -0600
committerDavid Brown <davidb@davidb.org>Tue Oct 15 09:41:01 2019 -0600
tree48332b450205d2141d9452faa59f9c258b72bd29
parenteffb06e367572e48433d9021a937033390b1b43c [diff]
boot: Check overflow/bounds on image header size

Before using the image and header size fields from the image header,
verify that both of these values are sane.  In this case, sanity means
that there is no arithmetic overflow when they are added, and that the
result is within the bounds of the containing flash region.  This is
done in addition to the check of the header's magic number.

Signed-off-by: David Brown <david.brown@linaro.org>
1 file changed
tree: 48332b450205d2141d9452faa59f9c258b72bd29
  1. boot/
  2. ci/
  3. docs/
  4. ext/
  5. ptest/
  6. samples/
  7. scripts/
  8. sim/
  9. testplan/
  10. .gitignore
  11. .gitmodules
  12. .travis.yml
  13. enc-aes128kw.b64
  14. enc-rsa2048-priv.pem
  15. enc-rsa2048-pub.pem
  16. LICENSE
  17. NOTICE
  18. project.yml
  19. README.md
  20. repository.yml
  21. root-ec-p256-pkcs8.pem
  22. root-ec-p256.pem
  23. root-ed25519.pem
  24. root-rsa-2048.pem
  25. root-rsa-3072.pem
  26. version.yml
README.md

mcuboot

Coverity Scan Build Status Build/Test

This is mcuboot, version 1.4.0-rc1

MCUboot is a secure bootloader for 32-bit MCUs. The goal of MCUboot is to define a common infrastructure for the bootloader, system flash layout on microcontroller systems, and to provide a secure bootloader that enables easy software upgrade.

MCUboot is operating system and hardware independent and relies on hardware porting layers from the operating system it works with. Currently, mcuboot works with both the Apache Mynewt, and Zephyr operating systems, but more ports are planned in the future. RIOT is currently supported as a boot target with a complete port planned.

Using MCUboot

Instructions for different operating systems can be found here:

Roadmap

The issues being planned and worked on are tracked using GitHub issues. To participate please visit:

MCUBoot GitHub Issues

Issues were previously tracked on MCUboot JIRA , but it is now deprecated.

Browsing

Information and documentation on the bootloader are stored within the source.

It was previously also documented on confluence: MCUBoot Confluence however, it is now deprecated and not currently maintained

For more information in the source, here are some pointers:

  • boot/bootutil: The core of the bootloader itself.
  • boot/boot_serial: Support for serial upgrade within the bootloader itself.
  • boot/zephyr: Port of the bootloader to Zephyr
  • boot/mynewt: Mynewt bootloader app
  • imgtool: A tool to securely sign firmware images for booting by mcuboot.
  • sim: A bootloader simulator for testing and regression

Joining

Developers welcome!