• Mynewt uses the newtmgr protocol • Image is sent to free slot § Image is checked after it is written § On reset bootloader checks config, validates images, do upgrade if requested
or less § Slots § Accommodates a mcuboot image (not a binary image!) § Slot 0 always has the running image § Slot 1 contains image to swap to § Scratch § Temporary space used for swapping
is checked • If there a swap was underway, finish it • Validate slot 0 (optional) • If slot 0 image is not marked as permanente, swap back to image in slot 1
generation process described in boot/bootutil/ signed_images.md (or maybe doc/signed_images.md) § Somewhat involved process, but only has to be done once § use OpenSSL to create private, extract public, dump as C, add new file with required key vars, rebuild!