Lines Matching +full:apache +full:- +full:mynewt +full:- +full:core
3 - Table of Contents
8 The 1.7.0 release of MCUBoot adds support for the Mbed-OS platform,
9 Equal slots (direct-xip) upgrade mode, RAM loading upgrade mode,
16 - Initial support for the Mbed-OS platform.
17 - Added possibility to enter deep sleep mode after mcuboot app execution
19 - Added hardening against hardware level fault injection and timing attacks.
20 - Introduced Abstract crypto primitives to simplify porting.
21 - Added RAM-load upgrade mode.
22 - Renamed single-image mode to single-slot mode.
23 - Allow larger primary slot in swap-move
24 - Fixed boostrapping in swap-move mode.
25 - Fixed issue causing that interrupted swap-move operation might brick device
27 - Abstracting mcuboot crypto functions for cleaner porting
28 - Droped flash_area_read_is_empty() porting API.
29 - boot/zephyr: Added watchdog feed on nRF devices.
31 - boot/zephyr: Added patch for turning off cache for Cortex M7 before
32 chain-loading.
33 - boot/zephyr: added option to relocate interrupts to application
34 - boot/zephyr: clean ARM core configuration only when selected by user
35 - boot/boot_serial: allow nonaligned last image data chunk
36 - imgtool: added custom TLV support.
37 - imgtool: added possibility to set confirm flag for hex files as well.
38 - imgtool: Print image digest during verify.
40 ### Zephyr-RTOS Compatibility
57 - Initial support for the Cypress PSOC6 plaformt. This platform
59 - CBOR decoding in serial recovery replaced by code generated from a
61 - Add support for X25519 encrypted images.
62 - Add rollback protection. There is support for a HW rollback counter
65 - Add an optional boot record in shared memory to communicate boot
66 attributes to later-run code.
67 - Add support for hardware keys.
68 - Various fixes to work with the latest Zephyr version.
72 - CVE-2020-7595 "xmlStringLenDecodeEntities in parser.c in libxml2
73 2.9.10 has an infinite loop in a certain end-of-file situation." Fix
76 ### Zephyr-RTOS Compatibility
83 v1.6.0-zephyr-2.2.1.
88 ECIES with secp256r1 as an Elliptic Curve alternative to RSA-OAEP. A
95 - TLVs were updated to use 16-bit lengths (from previous 8). This
96 should work with no changes for little-endian targets, but will
97 break compatibility with big-endian targets.
98 - A benchmark framework was added to Zephyr
99 - ed25519 signature validation can now build without using mbedTLS
100 by relying on a bundled tinycrypt based sha-512 implementation.
101 - imgtool was updated to correctly detect trailer overruns by image.
102 - Encrypted image TLVs can be saved in swap metadata during a swap
104 - imgtool can dump private keys in C format (getpriv command), which
106 fields from the ASN1 by passing it `--minimal`.
107 - Lots of other smaller bugs fixes.
108 - Added downgrade prevention feature (available when the overwrite-based
113 - TLV size change breaks compatibility with big-endian targets.
117 The 1.4.0 release of MCUboot primarily adds support for multi-image
122 Multi-image support adds backward-incompatible changes to the format
129 - Fixed CVE-2019-5477, and CVE-2019-16892. These fix issue with
131 - Numerous code cleanups and refactorings
132 - Documentation updates for multi-image features
133 - Update imgtool.py to support the new features
134 - Updated the mbed TLS submodule to current stable version 2.16.3
135 - Moved the mbed TLS submodule from within sim/mcuboot-sys to ext.
137 - Added some additional overflow and bound checks to data in the image
139 - Add a `-x` (or `--hex_addr`) flag to imgtool to set the base address
140 written to a hex-format image. This allows the image to be flashed
148 Mynewt 1.6.0 and up, and any Zephyr `main` after sha
153 - Fixed a revert interruption bug
154 - Added ed25519 signing support
155 - Added RSA-3072 signing support
156 - Allow ec256 to run on CC310 interface
157 - Some preparation work was done to allow for multi image support, which
159 multi-images, and a new name for slot0/slot1 which are now called
161 - Other minor bugfixes and improvements
173 - Modernize the Zephyr build scripts.
174 - Add a `ptest` utility to help run the simulator in different
176 - Migrate the simulator to Rust 2018 edition. The sim now requires at
178 - Simulator cleanups. The simulator code is now built the same way
181 - Abstract logging in MCUboot. This was needed to support the new
183 - Add multiple flash support. Allows slot1/scratch to be stored in an
185 - Add support for [encrypted images](encrypted_images.md).
186 - Add support for flash devices that read as '0' when erased.
187 - Add support to Zephyr for the `nrf52840_pca10059`. This board
189 - imgtool is now also available as a python package on pypi.org.
190 - Add an option to erase flash pages progressively during recovery to
193 - imgtool: big-endian support
194 - imgtool: saves in intel-hex format when output filename has `.hex`
206 - imgtool accepts .hex formatted input
207 - Logging system is now configurable
208 - Most Zephyr configuration has been switched to Kconfig
209 - Build system accepts .pem files in build system to autogenerate required
211 - Zephyr build switched to using built-in flash_map and TinyCBOR modules
212 - Serial boot has substantially decreased in space usage after refactorings
213 - Serial boot build doesn't require newlib-c anymore on Zephyr
214 - imgtool updates:
217 overflow the status area, `--slot-size` was added and `--pad` was updated
219 + `--overwrite-only` can be passed if not using swap upgrades
220 + `--max-sectors` can be used to adjust the maximum amount of sectors that
222 + `--pad-header` substitutes `--included-header` with reverted semantics,
240 - serial recovery functionality support under Zephyr
241 - simulator: lots of refactors were applied, which result in the
244 - imgtool: removed PKCS1.5 support, added support for password
246 - tinycrypt 0.2.8 and the mbed-tls ASN1 parser are now bundled with
248 - Overwrite-only mode was updated to erase/copy only sectors that
250 - A lot of small code and documentation fixes and updates.
260 pass the `-2` to recent versions of the `newt` tool in order to
266 - Header format change. This change was made to move all of the
269 - The signature to be replaced without changing the image.
270 - Multiple signatures to be applied. This can be used, for example,
273 - The public key is referred to by its SHA1 hash (or a prefix of the
276 - Allow new types of signatures in the future.
277 - Support for PKCS#1 v1.5 signatures has been dropped. All RSA
280 - The source for Tinycrypt has been placed in the MCUboot tree. A
285 - Support for some new targets:
286 - Nordic nRF51 and nRF52832 dev kits
287 - Hexiwear K64
288 - Clearer sample applications have been added under `samples`.
289 - Test plans for [zephyr](testplan-zephyr.md), and
290 [mynewt](testplan-mynewt.md).
291 - The simulator is now able to test RSA signatures.
292 - There is an unimplemented `load_addr` header for future support for
294 - Numerous documentation.
302 This is the first release of MCUboot, a secure bootloader for 32-bit MCUs.
303 It is designed to be operating system-agnostic and works over any transport -
306 we have support for three open source operating systems: Apache Mynewt, Zephyr
311 - This release supports building with and running Apache Mynewt and Zephyr
313 - RIOT is supported as a running target.
314 - Image integrity is provided with SHA256.
315 - Image originator authenticity is provided supporting the following
317 - RSA 2048 and RSA PKCS#1 v1.5 or v2.1
318 - Elliptic curve DSA with secp224r1 and secp256r1
319 - Two firmware upgrade algorithms are provided:
320 - An overwrite only which upgrades slot 0 with the image in slot 1.
321 - A swapping upgrade which enables image test, allowing for rollback to a
323 - Supports both mbed-TLS and tinycrypt as backend crypto libraries. One of them
326 - RSA 2048 needs mbed TLS
327 - ECDSA secp224r1 needs mbed TLS
328 - ECDSA secp256r1 needs tinycrypt as well as the ASN.1 code from mbed TLS
333 - The image header and TLV formats are planned to change with release 1.0:
334 https://runtimeco.atlassian.net/browse/MCUB-66