๐
eBoot
Secure Bootloader
Secure bootloader establishing hardware root of trust for all EmbeddedOS devices. Verified boot chains, firmware updates, and board-specific port layers.
Platform FoundationC/AssemblyActive Development
Key Features
Secure Boot Chain โ RSA-2048/Ed25519 verification
Firmware Update (FOTA) โ A/B partition scheme
Hardware Root of Trust โ HSM, TPM 2.0, TrustZone
Minimal Footprint โ Stage 1 fits in 8 KB
Anti-Rollback Protection โ OTP fuse counters
Recovery Mode โ UART/USB failsafe
AES-256-GCM firmware encryption
Architecture
Power On / Reset โโโ Stage 0: ROM Bootloader (SoC-specific) โโโ Stage 1: eBoot Primary (8 KB) โ Ed25519 verify โโโ Stage 2: eBoot Secondary (56 KB) โ Full init, update โโโ eos Kernel Boot โ Jump to entry point
Code Example
c
#include <eboot/config.h>
#define EBOOT_BOARD_NAME "eHealth365_SmartRing"
#define EBOOT_FLASH_BASE 0x08000000
#define EBOOT_FLASH_SIZE (2 * 1024 * 1024)
#define EBOOT_PARTITION_A 0x08010000
#define EBOOT_PARTITION_B 0x08110000
#define EBOOT_SIGN_ALGO EBOOT_SIGN_ED25519
#define EBOOT_ENCRYPT_ALGO EBOOT_ENCRYPT_AES256_GCM
#define EBOOT_ANTI_ROLLBACK 1API Highlights
| Function | Description |
|---|---|
eboot_verify_image() | Verify firmware image signature |
eboot_install_update() | Install firmware update to inactive partition |
eboot_rollback() | Roll back to previous firmware version |
eboot_enter_recovery() | Enter UART/USB recovery mode |