I have two imx6ull core boards.The u-boot version is 2016.3
1.Generate relevant keys using CST tools
Core board A was burned band 3 using the contents of the fuse.bin file,and band 0 6 0x2 was alsoburned
Core board B is not treated as the control group.
2.mx6ullevk.h
->add #define CONFIG_SECURE_BOOT #define CONFIG_CSF_SIZE 0x4000
3.make uboot
....................
./tools/mkimage -n board/freescale/mx6ullevk/imximage-ddr256.cfg.cfgtmp -T imximage -e 0x87800000 -d u-boot.bin u-boot.imx
Image Type: Freescale IMX Boot Image
Image Ver: 2 (i.MX53/6/7 compatible)
Mode: DCD
Data Size: 438272 Bytes = 428.00 kB = 0.42 MB
Load Address: 877ff420
Entry Point: 87800000
HAB Blocks: 877ff400 00000000 00066c00
xxx$ ll u-boot.imx
-rw-rw-r-- 1 xxx xxx 420864 Jun 1 15:38 u-boot.imx
4.cst_uboot.txt:
[Authenticate Data]
Verification index = 2
Blocks = 0x877FF400 0x00000000 0x00066C00 "u-boot.imx"
5.Execute Command
./cst -i csf_uboot.txt -o csf_uboot.bin
cat u-boot.imx csf_uboot.bin > u-boot-signed.imx
6.
Set the board to USB mode
./uuu.exe -b sd .\u-boot-signed.imx
7.
board A(burned fuse):
The serial port has no output
board B (Unburned fuse):
=> hab_status
Secure boot disabled
HAB Configuration: 0xf0, HAB State: 0x66
--------- HAB Event 1 -----------------
event data:
0xdb 0x00 0x14 0x42 0x33 0x0c 0xa0 0x00
0x00 0x00 0x00 0x00 0x00 0x91 0x00 0x00
0x00 0x00 0x01 0xe8
STS = HAB_FAILURE (0x33)
RSN = HAB_INV_ASSERTION (0x0C)
CTX = HAB_CTX_ASSERT (0xA0)
ENG = HAB_ENG_ANY (0x00)
