Modifications by STMicroelectronics

• Folders/Files

  • Remove unused folders/files

  • Add platform_common folder to enable mcuboot integration on stm32 platforms (based on bl2 from TF-M)

  • Add pdsc file

  • Add mcuboot configuration template file

• New features

  • Add fast boot feature (image verification by reference hash comparison)

  • Add fast wake-up feature

  • Add image index verification feature prior image installation

  • Add raw encryption key support

• Fixes

  • After installation in overwrite mode, erase the complete secondary slot

  • Fix decryption of one sector image

  • Fix erase of invalid image in secondary slot

  • Security counter update before controling secondary slots

  • Don’t allow secure image signature with non secure key

  • Improve functional robustness during installation

• Security enhancements

  • Add security counter measures (image verification, security counters mngt…)

  • Control slot content after image TLVs

  • Reset on error

• Miscellaneous

  • Use RNG HW for FIH random delay

  • Add extra logs

  • Fix EWARM/AC6/GCC compile warnings

  • Code quality fixes (coverity and misra)

  • Update ST Copyright on modified files

• imgtool

  • Add support of Secure Manager module image format

  • Add image payload padding capabilities (STiRoT images)

  • Add support of OTFDEC encryption

  • Various minor fixes