WolfSSL
/
wolfBoot
mirror of https://github.com/wolfSSL/wolfBoot.git
1
0
Fork 0
Code Issues Releases Wiki Activity
887 Commits
29 Branches
28 Tags
20 MiB
Commit Graph

887 Commits (bc89cb6594f66c2adc8eda34b138ff56eb8e078c)

Author SHA1 Message Date
David Garske 0827aa34dd
Merge pull request #187 from danielinux/fix-imagesize-options 
Fix to override small image_hdr_size
 2022-03-24 06:57:51 -07:00
Daniele d3b910b91d Removed redundant assignment of IMAGE_HEADER_SIZE 2022-03-24 11:46:41 +01:00
Daniele b3e9c49a2c Fix to override small image_hdr_size 2022-03-24 07:48:35 +01:00
David Garske 015461e630
Merge pull request #185 from danielinux/riscv-fix-include 
Added missing include to riscV port
 2022-03-23 16:40:20 -07:00
David Garske b1c08e9f10
Merge pull request #186 from danielinux/no-default-imagesize 
Remove IMAGE_HDR_SIZE from configuration files
 2022-03-23 15:34:02 -07:00
Daniele c4acbbe59a Added default IMAGE_HDR_SIZE for ECC256 2022-03-23 22:44:20 +01:00
Daniele fd2d2b013e Remove IMAGE_HDR_SIZE from configuration files 2022-03-23 22:36:18 +01:00
David Garske a56abdcffb Fix for ED25519 default image header size not being set. Fixed others to allow override. 2022-03-23 22:23:17 +01:00
Daniele 404a41e1fb Added missing include to riscV port 2022-03-23 21:22:44 +01:00
David Garske c8a59c2418
Merge pull request #183 from danielinux/mitigate-faultinjections 
Mitigate fault injections
 2022-03-23 09:57:17 -07:00
Daniele Lacamera a017e482b9 Removed dead code after reviewer's comments 2022-03-23 09:19:33 +01:00
Daniele Lacamera 7b7282e74d Added comment as suggested by reviewer. 2022-03-17 12:10:57 +01:00
Daniele Lacamera 986855ce0a Review's feedback 2022-03-17 11:53:49 +01:00
Daniele Lacamera 4527347173 Error if attempting to build ARMORED on not-arm-gcc 2022-03-17 10:48:49 +01:00
Daniele Lacamera 00d32d33a2 Added test with invalid/corrupted update 2022-03-17 08:32:33 +01:00
Daniele Lacamera 73fe84c55c Fixed version check armor, add no-downgrade tests 2022-03-16 11:19:05 +01:00
Daniele Lacamera 0684245187 Added canary vars around signature_ok flag, improved checks 2022-03-15 12:36:24 +01:00
Daniele Lacamera f79b9742a9 Added target to test armored version on renode 2022-03-14 18:22:47 +01:00
Daniele Lacamera 0665eeff67 Reverted 'return -1' fix; removed _update() optim. 2022-03-14 18:14:50 +01:00
Daniele Lacamera a72715caa3 Improved "return -1" in version check 2022-03-14 17:58:43 +01:00
Daniele Lacamera 028d184b17 Added armored image version, improve armor 2022-03-14 17:45:47 +01:00
Daniele Lacamera 32ecb5c3b6 Added pre-boot sanity check 2022-03-14 16:04:11 +01:00
Daniele Lacamera 75fb9f70e3 Fixed ECC with no armor 2022-03-14 15:22:04 +01:00
Daniele Lacamera 9ac4a6d365 Armored signature verification back-end 2022-03-14 15:12:36 +01:00
Daniele Lacamera 5a15fe1138 Added armored panic() function form arm cortex-m 2022-03-14 13:06:13 +01:00
David Garske f99ac826a3
Merge pull request #182 from danielinux/test-actions 
Add github actions for renode tests on docker
 2022-03-03 08:24:05 -08:00
Daniele Lacamera 3f2eec8299 Add github actions for renode tests on docker 2022-03-03 16:40:46 +01:00
David Garske 8802e36ce5
Merge pull request #181 from danielinux/sign-fix 
Fixed comparison of RSA4096 header size in sign.py
 2022-03-02 09:48:50 -08:00
Daniele Lacamera 7b51eef290 Fixed comparison of RSA4096 header size in sign.py 2022-03-02 17:46:35 +01:00
Elms 048eaffbe6 EFI: fixes and expand documenation 
* Add EFI x86_64 include
* fix keytools build with EFI config
* Enable debug by default
* Expand `Targets.md` EFI section
 2022-02-25 01:16:59 -08:00
elms 7dda1fe267
Merge pull request #176 from danielinux/renode-test 2022-02-15 07:48:43 -08:00
David Garske b46c5b222c Cleanup STM32H7 target documentation and code. 2022-02-14 10:51:53 -08:00
David Garske e3aaeccdb2 Minor fixes to get the IAR example building. 2022-02-14 10:47:02 -08:00
Daniele Lacamera 7b4054ab2c Adjusted after review 2022-02-11 12:51:55 +01:00
Daniele Lacamera 561312c8cc Added firmware update tests on nRF52 2022-02-11 10:48:47 +01:00
Daniele Lacamera 826305c2f1 Fixed warning in nrf52 app 2022-02-11 10:48:47 +01:00
Daniele Lacamera d2482d97fa Added script renode-test-all 2022-02-11 10:48:47 +01:00
Daniele Lacamera 7eb63a93e4 Restored quiet test 2022-02-11 10:48:47 +01:00
Daniele Lacamera f2280f5575 Added renode board: nrf52840 2022-02-11 10:48:47 +01:00
Daniele Lacamera 11d7a67498 Fixed fail case with version mismatch. Quiet test. 2022-02-11 10:48:47 +01:00
Daniele Lacamera 539cc97e73 Added renode board: sifive-hifive-fe310. 
+Quicker test
 2022-02-11 10:48:47 +01:00
Daniele Lacamera 402d7b412c Added new renode board: stm32F746 2022-02-11 10:48:47 +01:00
Daniele Lacamera 123587de0f Removed unused targets 2022-02-11 10:48:47 +01:00
Daniele Lacamera ce8d01864c Added basic test cases with renode 2022-02-11 10:48:47 +01:00
David Garske 262a5b0a78
Merge pull request #167 from danielinux/aes-encryption 
Add AES encryption support
 2022-02-09 10:55:51 -08:00
Daniele Lacamera 67912790de Fixed Chacha in C keytools 2022-02-07 16:39:56 +01:00
Daniele Lacamera 61275ec9dd Update Chacha ENCRYPT_BLOCK_SIZE to match IV ctr 2022-02-07 16:35:25 +01:00
Marco Oliverio b7026a5b1c update: don't set IV on SWAP based on SWAP address. 
New update logic when using encrypted external flash:

- an update sector is copied to swap. No decryption and re-encryption is done in
this step. This is important, because the swap address never changes and
otherwise the data will be encrypted, one sector at the time, with the same
IV. It's also a performance improvement.

- a boot sector is copied to update. In this step the boot sector is encrypted

- the swap sector is copied into boot. In this step the swap sector is decrypted

This commit moves the set_iv logic into wolfBoot_copy_sector to account for
this.
 2022-02-07 15:03:08 +01:00
Marco Oliverio 0f9613837a libwolfboot: make crypto_*() functions public 2022-02-07 15:03:08 +01:00
Marco Oliverio fbef9e8a98 wolfboot: lib: fix wrong range check 2022-02-07 15:03:08 +01:00