Secure boot of kernel image

Jayashree · ‎02-06-2025

Hello I am currently working on securing the boot process of the kernel image using U-Boot on the S32G3 board (BSP 40). I would appreciate some clarification on the following:

In the event of a kernel image boot failure, what is the recommended recovery mechanism? On the M core side, there are two slots available for an image, allowing for a fallback to a backup or alternate image if the primary image fails. This process is managed based on the SMR (Secure Memory Region) configurations. Is there a similar recovery mechanism for the kernel image? If so, could you please provide further details?

Jayashree · ‎04-07-2025

In a scenario where a previously working system is updated with a new kernel image, and the updated system fails to boot due to a bad hash indicating a verification or integrity issue with the newly flashed kernel.
In such a situation, what would be the recommended recovery procedure?

Is it possible to revert to the previous kernel image safely? If so will the newly updated fip.s32 and ATF support the previous kernel image

Or would reflashing with a known good kernel be the best course of action?

I would appreciate any guidance on best practices for handling such recovery scenarios.
Thank you

chenyin_h · ‎02-06-2025

Hello, @Jayashree

Thanks for your post.

From my understanding, there seems not such features provided within BSP for kernel booting recovery, and it may be designed and implemented by the user according to the specific requirements.

I apologize for your inconvenience.

BR

Chenyin