Hi.
I am using the authenticated boot feature of i.MX6ul and I would like to ask:
How can I verify a signed image (for example signed Kernel with device tree) from Linux user-space?
While doing a firmware upgrade, I would like to verify that the new firmware will successfully boot before flashing it to the memory the device boots from.
Regards,
Michal
已解决! 转到解答。
Hello,
Generally, HAB API library is included as a component of the boot ROM. It allows
image code, external to the ROM, to make calls back to the HAB for authenticating
additional boot stages. But we do not have Linux user space implementation of the
HAB API. Customers can try to design own one.
Have a great day,
Yuri
-----------------------------------------------------------------------------------------------------------------------
Note: If this post answers your question, please click the Correct Answer button. Thank you!
-----------------------------------------------------------------------------------------------------------------------
@Yuri However HAB API requires the image to be validated to be at a expecific absolute memory location (as described in the CST) correct? This is something that is not always possible when running Linux SO.
Is there a way to workaround that requirement?
Hello,
Generally, HAB API library is included as a component of the boot ROM. It allows
image code, external to the ROM, to make calls back to the HAB for authenticating
additional boot stages. But we do not have Linux user space implementation of the
HAB API. Customers can try to design own one.
Have a great day,
Yuri
-----------------------------------------------------------------------------------------------------------------------
Note: If this post answers your question, please click the Correct Answer button. Thank you!
-----------------------------------------------------------------------------------------------------------------------