https://devzone.nordicsemi.com/f/nordic-q-a/48979/secure-dfu-serial-bootloaderI&#39;m busy implementing a (serial) DFU host, but sofar i&#39;m unable to send a proper init packet. The bootloader keeps returning an invalid signature error If i open a .dat file with HxD is the visible data also in the order that it has to be send oren-USTelligent Community 13Tue, 16 Jul 2019 13:49:55 GMThttps://devzone.nordicsemi.com/thread/198755?ContentTypeID=1Tue, 16 Jul 2019 13:49:55 GMT137ad170-7792-4731-bb38-c0d22fbe4515:7f8dcd94-f53b-4478-9554-864c7b5b6e22Erwin v. H.<p>Hi,</p> <p>I made a mistake on my side, the size of the Tx buffer was exact the same size as the expected MTU, I forgot to allocate a byte for the opcode.</p> <p>Therefore the signature failed everytime after uploading the init packet</p> <p>Regards,</p> <p>Erwin</p><div style="clear:both;"></div>https://devzone.nordicsemi.com/thread/196057?ContentTypeID=1Tue, 02 Jul 2019 16:07:46 GMT137ad170-7792-4731-bb38-c0d22fbe4515:ca0ef29e-5a54-4cd3-82f0-e1625210f954tesc<p>Hi,</p> <p>So to be clear, the update package should be generated using the private key, and the bootloader is made using the corresponding public key.</p> <p>While I am not familiar with HxD, the data should be sent in the same order it appears in the .dat file, which I presume is the same as what is displayed in any hex editor. (I.e. endianness is kept as written to file by nrfutil when generating the dfu package. / The binary data files in the zip are to be treated as a stream of bytes.)</p> <p>In order to check that everything is OK with the generated .dat file for the particular firmware and key pair, have you done a test of the serial DFU using nrfutil as the DFU controller (host)? (Full description in the <a href="https://infocenter.nordicsemi.com/index.jsp?topic=%2Fcom.nordic.infocenter.sdk5.v15.3.0%2Fsdk_app_serial_dfu_bootloader.html">Secure DFU Bootloader over Serial Link (UART/USB) example documentation</a>.)</p> <p>You can have a look at the contents of the package with &quot;nrfutil pkg display &lt;name of zip file&gt;&quot;, e.g. &quot;nrfutil pkg display my_dfu_package.zip&quot;, to check if everything seems to be in order.</p> <p>For a reference implementation you can have a look at the <a href="https://github.com/NordicSemiconductor/pc-nrfutil">nrfutil source</a>.</p> <p>Regards,<br />Terje</p><div style="clear:both;"></div>https://devzone.nordicsemi.com/thread/195361?ContentTypeID=1Fri, 28 Jun 2019 12:30:55 GMT137ad170-7792-4731-bb38-c0d22fbe4515:12b9c5c0-b752-4068-a072-9dae7108943eErwin v. H.<p>Dear,</p> <p>Do you have any idea how i can continue.</p> <p>As is said i currently always get a signature error after sending the init packet.</p> <p>Do i have to search it in the method of sending or in a mismatch of signature/private key between the generated package and bootloader?</p> <p>Regards,</p> <p>Erwin</p><div style="clear:both;"></div>https://devzone.nordicsemi.com/thread/194930?ContentTypeID=1Wed, 26 Jun 2019 14:54:50 GMT137ad170-7792-4731-bb38-c0d22fbe4515:eb18179b-c238-43ec-9eb0-15f74c0859adErwin v. H.<p>The bootloader is based on SDK 15.3 and I generated the update package an public key with the same private key (nRF utility)</p> <p>Regards,</p> <p>Erwin</p><div style="clear:both;"></div>https://devzone.nordicsemi.com/thread/194902?ContentTypeID=1Wed, 26 Jun 2019 13:39:56 GMT137ad170-7792-4731-bb38-c0d22fbe4515:7d0ca2e7-2efc-4b32-8b81-6cfdb96ace6etesc<p>Hi,</p> <p>What version of the DFU bootloader is on the DFU target, based on what version of the SDK?</p> <p>How do you generate the DFU update package?</p> <p>Are you using Secure DFU, and have you signed the update using the correct private key?</p> <p>Regards,<br />Terje</p><div style="clear:both;"></div>