We've noticed that for applications on the RT685S that are in secure flash XIP mode, assigning the start address to beginning of the image header in secure flash (0x18001000) causes the image to not boot properly when enabled a signed booting + force Trustzone enabled in OTP. This does not occur when in the plain image and plain image + CRC mode and with Trustzone enabled. It would seem the SEC tool interprets the start address of (0x18001000) to be a non-XIP load-to-RAM image - is this a bug or intended behavior? We have noticed that reassigning our start address location to non-secure flash (0x08001000) enables the image to boot properly when signed and with Trustzone enabled in the OTP configuration.
Solved! Go to Solution.
Hi George,
as a workaround solution, you can modify template for the mbi_config.yaml, so the tool always generates "XIP" image:
Please mind, after this change, load to RAM image for RTxxx will not work, as the tool will always generate XIP image.
Hope this helps.
Following your instructions, when I change mbi_config.yaml's line 11 parameter to External flash (XIP), the app can't boot when launching from secure flash:
I've also noticed that hitting the "Build Image" button in the Build image tab also changes the mbi_config.yaml parameter back to RAM.
Hi George,
I believe this is a bug, not intentional. I can see that generated mbi_config.yaml contains "outputImageExecutionTarget: RAM" instead "outputImageExecutionTarget: External flash (XIP)"
Could you please confirm, if you manually fix mbi_config.yaml and then if you invoke build script from the disk, the issue is resolved on your side?
Thank you for the report, we will fix this into next version (V8).
Sorry, I misread your post. After selecting build image, and then changing the mbi_config.yaml parameter to:
Hi George,
as a workaround solution, you can modify template for the mbi_config.yaml, so the tool always generates "XIP" image:
Please mind, after this change, load to RAM image for RTxxx will not work, as the tool will always generate XIP image.
Hope this helps.