Skip to content

@douglasbakkum douglasbakkum released this Jan 16, 2020 · 2 commits to master since this release

The latest desktop app contains the latest firmware and provides step-by-step instructions for upgrading. To get the latest desktop app, click here.

Release notes:

  • Fixes off-by-one error in the base64 decoder that could lead to memory bugs

To reproduce and verify the deterministic build:

# Clone the repository
git clone https://github.com/digitalbitbox/mcu.git
cd mcu

# Build deterministically (requires Vagrant and Virtualbox and OSX or Linux)
vagrant up
cp build-vagrant/bin/firmware.pad.bin firmware.deterministic.7.0.4.bin
vagrant halt

# Verify the deterministic binary
shasum -a 256 firmware.deterministic.7.0.4.bin  #  60d43e3aa6db682abf9a53d2c1e03a9128ae097c8e34d513d7f71554278f3e11

# Append signatures of the firmware
py/prepend_signatures_firmware_binary.py firmware.deterministic.7.0.4.bin firmware.deterministic.7.0.4.signed.bin 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


# Verify the signed deterministic binary
shasum -a 256 firmware.deterministic.7.0.4.signed.bin  #  3bdfda6389f638395c316b21abfdd3fb8f6e48ae28206d50a2e678a1a502f3c7

# Signed deterministic binaries can be loaded into the Digital Bitbox
# using the Upgrade Firmware button in the desktop app.

# In case of problems, check if using a different major version:
vagrant --version  #  Vagrant 2.2.4
vagrant box list   #  ubuntu/trusty64 (virtualbox, 20190429.0.0)
virtualbox --help  #  Oracle VM VirtualBox Manager 5.1.38

ECC secp256k1 public keys and signatures of the double SHA256 hash of firmware.deterministic.7.0.4.bin:

0263b742d9873405c609814da884324ab0f4c1597a5fd152b388899857f4d041df : ff41ee436366c2dafd056dd61cc04d9e21c51303ac87851cc972637aa5668f195d56b4faff404e5d1d2d1bf0ee51c1cc4c19f74456e41869b01f317c33592e80
02b95dc22d293376222ef896f74a8436a8b6672e7e416299f3c4e23b49c38ad366 : 979e20029fb848bd201fd849bd35c80fd3d4351b2eb4a525639e3a2123689cad1b9c681bd06db95717137b7778fa86b3c3d376028bfdb70fe2778dd12a42233b
03ef4c48dc308ace971c025db3edd4bc5d5110e28e14bdd925fffafd4d21002800 : 122f5ee27e9c3ca7cdf890969d9b3e8501674931b30f92a54dd1e05d37ffe3403771fc83855b9983273e17610d0804abf64a292160e32ba6940542e4618645e7
030d8b0b86fca70bfd3a8d842cdb3ff8362c02f455fd092b080f1bb137dfc1d25f : 2a03863b997fa79f890aa5e4ba6a75b3b5c7570fb37f9b27afa2f4df831deeb52a3176c5badf335aac8809ceb8427a01558e061860fe5892c7219697655b913f

Signature blob appended to firmware.deterministic.7.0.4.bin

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
Assets 4
You can’t perform that action at this time.