RPMB Key Blob Boot1 storage

cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 

RPMB Key Blob Boot1 storage

1,085 Views
zhongyue_li
Contributor II

Dear NXP engineer,

I am trying to set RPMB key blob into boot1 keyslot partition,

and when i tried to set RPMB key blob into boot1 keyslot partition for second time, 

there is no any error prompt, however i read the key blob from keyslot parttion again,

the key blob is pervious one, it is not changed.

May i know if the boot1 keyslot partition is only able to set one time?

the boot1 keyslot partition cannot be flashed again?

i see there is some guide in document "i.MX_Android_Security_User_Guide.pdf"

In the default condition, this key blob is saved in the 16383rd block of BOOT1 partition in eMMC for i.MX8QuadMax and i.MX 8QuadXPlus.

The key blob is in the last block in BOOT1 partition. To prevent key blob from being tampered when the system is running, BOO1 partition is set with power-on write protection when the board boots up.

#define KEYSLOT_HWPARTITION_ID 2
#define KEYSLOT_BLKS 0x3FFF

0 Kudos
Reply
2 Replies

908 Views
zhongyue_li
Contributor II

Dear Jamesbone,

Firstyly, thanks for your quick answer.

i cannot open your link.

Actually, i just want to know why we re-write the key blob failed into boot1 keyslot partition?

is it basic principle that boot1 keyslot partition cannot be re-written?

Thanks a lot.

0 Kudos
Reply

908 Views
jamesbone
NXP TechSupport
NXP TechSupport

Hello ,

The i.MX8 and i.MX8X families has not been release yet, so we only have information for the i.MX6 family, but it is basically the same functionality.

Here is the link:

https://community.nxp.com/docs/DOC-335549 

0 Kudos
Reply