FAQs
English (US) 日本語 | Japanese 中文 | Chinese (Simplified)

RT1170 ROM app image checking

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
SOLVED
Jump to solution

RT1170 ROM app image checking

Jump to solution
‎06-03-2025 09:41 AM
613 Views
Littell
Contributor III

What checks does the RT1170 ROM do before beginning execution of an app image?  The Reference Manual Figure 10-3 shows decision points and processes like "IVT header
valid?", "Image == XIP?", and "Authenticate Image" - what are the specifics of these checks?

Thanks,

Dave

 

0 Kudos
Reply
1 Solution

Jump to solution
‎06-18-2025 03:17 PM
468 Views
diego_charles
NXP TechSupport
NXP TechSupport

Hi @Littell 

I am sorry for the delayed reply. 

The chapter  3 XIP boot flow of the AN12183 How to Enable Debugging for FLEXSPI NOR Flash does provide a simple overview of bootflow.  Also this video complements very well NXP: MCU Tech Minutes: Boot Options for i.MX RT Crossover MCUs for me. 

Let me provide some of my comments with  regards to this: 

The Reference Manual Figure 10-3 shows decision points and processes like "IVT header
valid?", "Image == XIP?", and "Authenticate Image" - what are the specifics of these checks?

diego_charles_0-1750283996729.png

 

 About IVT header valid

If you have boot mode pins set to  internal boot and boot config pins for XIP. After boot the  bootROM will check for the IVT at 0x1000 base address of the booting device. If you are using a blinky demo on the i.MX RT1176, bootROM will go a look for the IVT at 0x3000_1000. 

Now lets suppose that bootROM finds the IVT, it will proceed to check that the IVT is on the expected format: 

diego_charles_1-1750284130107.png

It is important that the Tag parameter is met, along the lenght and version.

About Image == XIP?

The IVT contains several elements and one of them is the image's entry point. The image entry point is read by bootROM to know in which address will the application execute.  If the image entry is set after the IVT space and in the FlexSPI mapped area, the bootROM will know that the image is an XIP image. In other words, if the entry point is above the 0x3000_2000 (for typical blinkly ) and in the FlexSPI address range, you know that the app will be executed from the external flash memory. If the image entry point is set to other address than like 0x8000_0000 (SECM SDRAM for example ), 0x2020_0000 ( internal SRAM ) it means that the image is not an XIP image and will know that it will have to copy flash contents to target RAM , there is image lenght parameter on the IVT.

About authenticate image

This is very generic, but it refers to the process of bootROM verifying image signature for secure boot. During development you should not worry about this step. If the image is not not trusted/valid the bootROM will not execute it.

I hope this still helps. Let me know any other question you may have, David.

Regards, 

Diego

 

 

 

 

View solution in original post

0 Kudos
Reply
4 Replies

Jump to solution
‎06-19-2025 08:56 AM
444 Views
Littell
Contributor III

This information is helpful, thank you!

0 Kudos
Reply

Jump to solution
‎06-18-2025 03:17 PM
469 Views
diego_charles
NXP TechSupport
NXP TechSupport

Hi @Littell 

I am sorry for the delayed reply. 

The chapter  3 XIP boot flow of the AN12183 How to Enable Debugging for FLEXSPI NOR Flash does provide a simple overview of bootflow.  Also this video complements very well NXP: MCU Tech Minutes: Boot Options for i.MX RT Crossover MCUs for me. 

Let me provide some of my comments with  regards to this: 

The Reference Manual Figure 10-3 shows decision points and processes like "IVT header
valid?", "Image == XIP?", and "Authenticate Image" - what are the specifics of these checks?

diego_charles_0-1750283996729.png

 

 About IVT header valid

If you have boot mode pins set to  internal boot and boot config pins for XIP. After boot the  bootROM will check for the IVT at 0x1000 base address of the booting device. If you are using a blinky demo on the i.MX RT1176, bootROM will go a look for the IVT at 0x3000_1000. 

Now lets suppose that bootROM finds the IVT, it will proceed to check that the IVT is on the expected format: 

diego_charles_1-1750284130107.png

It is important that the Tag parameter is met, along the lenght and version.

About Image == XIP?

The IVT contains several elements and one of them is the image's entry point. The image entry point is read by bootROM to know in which address will the application execute.  If the image entry is set after the IVT space and in the FlexSPI mapped area, the bootROM will know that the image is an XIP image. In other words, if the entry point is above the 0x3000_2000 (for typical blinkly ) and in the FlexSPI address range, you know that the app will be executed from the external flash memory. If the image entry point is set to other address than like 0x8000_0000 (SECM SDRAM for example ), 0x2020_0000 ( internal SRAM ) it means that the image is not an XIP image and will know that it will have to copy flash contents to target RAM , there is image lenght parameter on the IVT.

About authenticate image

This is very generic, but it refers to the process of bootROM verifying image signature for secure boot. During development you should not worry about this step. If the image is not not trusted/valid the bootROM will not execute it.

I hope this still helps. Let me know any other question you may have, David.

Regards, 

Diego

 

 

 

 

0 Kudos
Reply

Jump to solution
‎06-12-2025 10:20 AM
541 Views
Littell
Contributor III

So nobody can explain what this thing is really doing?

0 Kudos
Reply

Jump to solution
‎06-06-2025 06:15 AM
571 Views
Littell
Contributor III

Hello?

0 Kudos
Reply