WolfSSL
/
wolfBoot
mirror of https://github.com/wolfSSL/wolfBoot.git
1
0
Fork 0
Code Issues Releases Wiki Activity

Improve the SEC_SIZE check and add build option to disable check. Add TODO note.

pull/156/head
David Garske 2021-11-12 11:17:28 -08:00 committed by Daniele Lacamera
parent 905730d927
commit d2f762c8eb
1 changed files with 11 additions and 4 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

13
hal/stm32g0.c
View File

@ -297,13 +297,20 @@ static void RAMFUNCTION hal_secure_boot(void)
/* The "SEC_SIZE" is the number of pages (2KB) to extend from base 0x8000000
* and it is programmed using the STM32CubeProgrammer option bytes.
* Example: STM32_Programmer_CLI -c port=swd mode=hotplug -ob SEC_SIZE=
*/
if (sec_size > (WOLFBOOT_PARTITION_BOOT_ADDRESS / WOLFBOOT_SECTOR_SIZE)) {
* Example: STM32_Programmer_CLI -c port=swd mode=hotplug -ob SEC_SIZE= */
#ifndef NO_FLASH_SEC_SIZE_CHECK
/* Make sure at least the first sector is protected and the size is not
* larger than boot partition */
if (sec_size <= 1 ||
sec_size > (WOLFBOOT_PARTITION_BOOT_ADDRESS / WOLFBOOT_SECTOR_SIZE)) {
/* panic: invalid sector size */
while(1)
;
}
#endif
/* TODO: Add checks for WRP, RDP and BootLock. Add warning to help lock down
* target in production */
/* unlock flash to access FLASH_CR write */
hal_flash_unlock();