47 lines
1.6 KiB
ReStructuredText
47 lines
1.6 KiB
ReStructuredText
mcuboot 0.9 - Release Notes
|
|
===========================
|
|
|
|
This is the first release of MCUBoot, a secure bootloader for 32-bit MCUs.
|
|
It is designed to be operating system-agnostic and works over any transport -
|
|
wired or wireless. It is also hardware independent, and relies on hardware
|
|
porting layers from the operating system it works with. For the first release,
|
|
we have support for three open source operating systems: Apache Mynewt, Zephyr
|
|
and RIOT.
|
|
|
|
About this release:
|
|
===================
|
|
|
|
* This release supports building with and running Apache Mynewt and Zephyr
|
|
targets.
|
|
|
|
* RIOT is supported as a running target.
|
|
|
|
* Image integrity is provided with SHA256.
|
|
|
|
* Image originator authenticity is provided supporting the following
|
|
signature algorithms:
|
|
|
|
- RSA 2048 and RSA PKCS#1 v1.5 or v2.1
|
|
- Elliptic curve DSA with secp224r1 and secp256r1
|
|
|
|
* Two firmware upgrade algorithms are provided:
|
|
|
|
- An overwrite only which upgrades slot 0 with the image in slot 1.
|
|
- A swapping upgrade which enables image test, allowing for rollback to a
|
|
previous known good image.
|
|
|
|
* Supports both mbed-TLS and tinycrypt as backend crypto libraries. One of them
|
|
must be defined and the chosen signing algorithm will require a particular
|
|
library according to this list:
|
|
|
|
- RSA 2048 needs mbed TLS
|
|
- ECDSA secp224r1 needs mbed TLS
|
|
- ECDSA secp256r1 needs tinycrypt as well as the ASN.1 code from mbed TLS
|
|
(so still needs that present).
|
|
|
|
Known issues:
|
|
=============
|
|
|
|
* The image header and TLV formats are planned to change with release 1.0:
|
|
https://runtimeco.atlassian.net/browse/MCUB-66
|