FAQs
English (US) 日本語 | Japanese 中文 | Chinese (Simplified)

CSEc MASTER ECU KEY update error

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
SOLVED
Jump to solution

CSEc MASTER ECU KEY update error

Jump to solution
‎04-28-2021 03:57 AM
1,591 Views
leandro_malara_
Contributor I

Hi,

I am using CSEc peripheral on S32K144 MCU and an error occurs sporadically when configuring the MASTER ECU KEY (90% of the time works fine):

  • When configuring first time the MASTER_ECU_KEY, CSEC returns ERC_KEY_UPDATE_ERROR. It also appears that using the MASTER_ECU_KEY for updating other keys, returns ERC_KEY_EMPTY, so it seems that the key is actually not configured. What i found out is that the FlexRAM is corrupted: at startup it is sometimes entirely filled with "junk" data, or sometimes goes back to all 1s. So the question is, could it be that an error during FLASH partitioning command (e.g. power loss) caused a FlexRAM error, that in turn resulted in CSEc driver being unable to correctly function?
  • After this error, i am unable to revert back to factory state: no mass erase is possible and CMD_DEBUG_AUTH returns ERC_GENERAL_ERROR when

Also, when partitioning the flash for CSEc usage, but without configuring the MASTER_ECU_KEY, i am unable to revert to factory state:

  • Mass erase is not working, as if keys were configured
  • Executing CMD_DEBUG_CHAL and CMD_DEBUG_AUTH, returns ERC_GENERAL_ERROR. I use MASTER_ECU_KEY equal to all 1s. Is there a default value to use for MASTER_ECU_KEY that is not all 1s? or is it not possible to erase keys and flash partition without first configuring a MASTER_ECU_KEY?

Thank you. Kind regards,

Leandro Malara.

 

0 Kudos
Reply
1 Solution

Jump to solution
‎04-29-2021 01:18 AM
1,581 Views
lukaszadrapa
NXP TechSupport
NXP TechSupport

Hi,
If MASTER_ECU_KEY is not programmed, it is not possible to reset the device back to factory state. The key is either loaded or the slot is considered as empty. There’s no default key value. Yes, it’s equal to all 1s but it’s not considered as default and valid key. This behavior is required by SHE specification.
Once CSE is enabled by partitioning, the only way to destroy the partition is to run CMD_DEBUG_CHAL and CMD_DEBUG_AUTH with knowledge of the MASTER_ECU_KEY. There’s no workaround for that.
Such sporadic problem should not happen. That means something obviously went wrong during previous steps. Unexpected reset/power-down during partitioning could also be the reason. Or are you sure you are not operating the device out of specification? In production, the partitioning is supposed to be done only once per lifetime of the device. It should be done in factory under controlled conditions, so such situation cannot happen.
I’m not really sure what’s the root cause of your troubles. Can you see that on one device only? Or is more of them affected?
Regards,
Lukas

View solution in original post

Reply
3 Replies

Jump to solution
‎04-29-2021 01:18 AM
1,582 Views
lukaszadrapa
NXP TechSupport
NXP TechSupport

Hi,
If MASTER_ECU_KEY is not programmed, it is not possible to reset the device back to factory state. The key is either loaded or the slot is considered as empty. There’s no default key value. Yes, it’s equal to all 1s but it’s not considered as default and valid key. This behavior is required by SHE specification.
Once CSE is enabled by partitioning, the only way to destroy the partition is to run CMD_DEBUG_CHAL and CMD_DEBUG_AUTH with knowledge of the MASTER_ECU_KEY. There’s no workaround for that.
Such sporadic problem should not happen. That means something obviously went wrong during previous steps. Unexpected reset/power-down during partitioning could also be the reason. Or are you sure you are not operating the device out of specification? In production, the partitioning is supposed to be done only once per lifetime of the device. It should be done in factory under controlled conditions, so such situation cannot happen.
I’m not really sure what’s the root cause of your troubles. Can you see that on one device only? Or is more of them affected?
Regards,
Lukas

Reply

Jump to solution
‎10-12-2022 09:24 PM
1,041 Views
luyu
Contributor I

Hello

      I‘m engineer from China Aptiv. And also I meet the same issue as the customer did.

      But I still don't know how to fix this issue.

      Could you give me some advice for it?

0 Kudos
Reply

Jump to solution
‎04-30-2021 12:49 AM
1,572 Views
leandro_malara_
Contributor I

Hi,

Thank you for your feedback. It happened on two ECUthat I use during development. As you mentioned, during production the partition is done once and under controlled conditions, and until now no problems occurred in production ECUs but just during development.

0 Kudos
Reply