FAQs
English (US) 日本語 | Japanese 中文 | Chinese (Simplified)

I.MX6UL HAB event

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
SOLVED
Jump to solution

I.MX6UL HAB event

Jump to solution
‎11-03-2022 06:04 AM
585 Views
benguan
Contributor I

I am working on i.MX6UL and get the following event:

=> hab_status

Secure boot disabled

HAB Configuration: 0xf0, HAB State: 0x66

--------- HAB Event 1 -----------------
event data:
0xdb 0x00 0x14 0x42 0x33 0x22 0x33 0x00
0x00 0x00 0x00 0x0f 0x00 0x90 0x80 0x00
0x00 0x01 0x20 0x00

STS = HAB_FAILURE (0x33)
RSN = HAB_INV_ADDRESS (0x22)
CTX = HAB_CTX_TARGET (0x33)
ENG = HAB_ENG_ANY (0x00)

How to decode the event data to analyze the issue? Thanks in advance.

My csf file:

[Header]
Version = 4.2
Hash Algorithm = sha256
Engine Configuration = 0
Certificate Format = X509
Signature Format = CMS
Engine = CAAM

[Install SRK]
File = "/opt/cst-3.3.1/crts/SRK_1_2_3_4_table.bin"
Source index = 0

[Install CSFK]
File = "/opt/cst-3.3.1/crts/CSF1_1_sha256_2048_65537_v3_usr_crt.pem"

[Authenticate CSF]

[Install Key]
Verification index = 0
Target Index = 2
File= "/opt/cst-3.3.1/crts/IMG1_1_sha256_2048_65537_v3_usr_crt.pem"

[Authenticate Data]
Verification index = 2
Blocks = 0x00908400 0x00000000 0x0000bc00 "SPL"

Labels (2)
Labels
0 Kudos
Reply
1 Solution

Jump to solution
‎11-08-2022 02:23 AM
564 Views
Harvey021
NXP TechSupport
NXP TechSupport

Hi @benguan 

Based on the CTX = HAB_CTX_TARGET (0x33), It seems the given target region goes beyond the allowed regions.

You can try to check the hab block address when you build the bootloader or try to dump the built bootloader ivt structure, then to verify the load address, offset and length for blocks of the authentication data.

For decoding the date, please refer to HAB4_API.pdf that will be under the directory of doc with the downloaded cst tool.

 

Best regards

Harvey

View solution in original post

0 Kudos
Reply
1 Reply

Jump to solution
‎11-08-2022 02:23 AM
565 Views
Harvey021
NXP TechSupport
NXP TechSupport

Hi @benguan 

Based on the CTX = HAB_CTX_TARGET (0x33), It seems the given target region goes beyond the allowed regions.

You can try to check the hab block address when you build the bootloader or try to dump the built bootloader ivt structure, then to verify the load address, offset and length for blocks of the authentication data.

For decoding the date, please refer to HAB4_API.pdf that will be under the directory of doc with the downloaded cst tool.

 

Best regards

Harvey

0 Kudos
Reply