• State TI Thinks Resolved
  • Locked Locked
  • Replies 16 replies
  • Answers 5 answers
  • Subscribers 100 subscribers
  • Views 307 views
  • Users 0 members are here
Support feedback
Options
Options
Related

This thread has been locked.

If you have a related question, please click the "Ask a related question" button in the top right corner. The newly created question will be automatically linked to this question.

TDA4VM: HS-FS chip with unsigned images

Joshua Wu
Prodigy 10 points
Part Number: TDA4VM

Tool/software:

When using TDA4VM88T5CALFRQ1, is it possible to use an unsigned image?

If so, how do we configure it?

  • 0
    TI__Guru** 111595 points

    Hi Joshua,

    The primary bootloader images, the MCU R5 bootloader (SBL or SPL) and the TIFS binaries need to be signed. This is the case even on a GP device, these need to have a x509 certificate in front of the binaries.

    There are a lot of images involved during the boot, which binaries are you talking about?

    What bootloader and HLOS are you using?

    regards

    Suman

  • 0 in reply to Suman Anna
    Prodigy 10 points

    Hi Suman,

    Thanks for the reply! Currently we use tiboot3.bin + sysfw.itb as bootloader and RTOS as HLOS on R5, and tispl + uboot as bootloader and linux as HLOS on A72.

    I noticed that if we use HS-FS version, then secure boot is not enabled, so it should be fine if secondary bootloader and HLOS are not signed, right?

    My understanding is that TI secure boot protects the secondary bootloader, but not for HLOS, is it correct?

  • 0 in reply to Joshua Wu
    TI__Guru** 111595 points

    Hi Joshua,

    Joshua Wu said:
    Thanks for the reply! Currently we use tiboot3.bin + sysfw.itb as bootloader and RTOS as HLOS on R5, and tispl + uboot as bootloader and linux as HLOS on A72.

    Thanks, so you are using the Linux SPL/U-Boot as your bootloader component.

    Joshua Wu said:
    I noticed that if we use HS-FS version, then secure boot is not enabled, so it should be fine if secondary bootloader and HLOS are not signed, right?

    TIFS binary is signed and encrypted with TI Keys on HS-FS, and this binary does go through the authenticaion & decryption process as part of the boot. Apart from that all other signed binaries are signed with Customer Keys (or ROM Degenerate Key), but a HS-FS device doesn't have the Customer keys blown.

    The Linux SDKs and RTOS SDKs follow slightly different models w.r.t images for HS-FS. RTOS SBL will sign the images with ROM degenerate keys, while Linux SDKs have signed them with Customer Keys (TI Dummy Keys on SDK).

    Joshua Wu said:
    My understanding is that TI secure boot protects the secondary bootloader, but not for HLOS, is it correct?

    Correct. That said, our U-Boot code is now written in a uniform fashion for GP, HS-FS and HS-SE devices, and the bootloader code makes a device_type detection and ignores the certificates typically associated/required with HS-SE images.

    This is to allow to use signed images like one would on a final product, but continue to use them in the same fashion on a development HS-FS board.

    The proper Linux boot on HS-SE devices will require you to use a signed FIT image comprising of the kernel Image and the dtb. You can continue to use unsigned Linux kernel Image and dtbs on HS-FS like they would be used on a GP device.

    regards

    Suman

  • 0 in reply to Suman Anna
    Prodigy 10 points

    Hello Suman,

    Could you please elaborate more on signed FIT image? Is it a must for HS-SE devices? Does it mean that a signed FIT image protect kernel and dtb but not rootfs?

    Thanks,

    Joshua

  • 0 in reply to Joshua Wu
    TI__Guru** 111595 points

    Hi Joshua,

    Joshua Wu said:
    Could you please elaborate more on signed FIT image? Is it a must for HS-SE devices?

    Yes, this is the only means that the root-of-trust can be fully maintained for a Linux boot on HS-SE devices. You could use it on GP and HS-FS devices as well, there are no restrictions on it.

    Please see the Creating the kernel fitImage for high security device / GP devices section of the Linux SDK documentation.

    Joshua Wu said:
    Does it mean that a signed FIT image protect kernel and dtb but not rootfs?

    Correct. U-Boot is responsible for loading and booting the kernel and dtb, rootfs is not managed by U-Boot.

    regards

    Suman

  • 0 in reply to Suman Anna
    TI__Expert 5245 points

    Hi, Suman

    Thanks you explanation.

    This is an double check and conclusion, because I want to avoid any miss understanding.

    If customer want to use HS-FS device for development without unsigned image

    (1) sysfw.itb -> You must use "signed" SYS FW with TI dummy key, THIS IS ENCRYPTION BY TI, NOT CUTOMERIZED KEY, it already in SDK.

    (2) tiboot3.bin -> unsigned image is ok, before customer key programming.

    (3) tispl.bin -> unsigned image is ok, before customer key programming.

    (4) u-boot.img -> unsigned image is ok, before customer key programming.

    (5) kernel + DTB (FIT image) -> unsigned image is ok, before customer key programming.

    (6) rootfs -> unsigned image is ok.

    If customer want to use HS-FS device with their signed key.

    (1) sysfw.itb -> You must use "signed" SYS FW with TI dummy key, THIS IS ENCRYPTION BY TI, NOT CUTOMERIZED KEY, it already in SDK.

    (2) tiboot3.bin -> Need customer's signed image

    (3) tispl.bin -> Need customer's signed image

    (4) u-boot.img -> unsigned image is also ok, because its is uniform fashion for GP, HS-FS and HS-SE devices

    (5) kernel + DTB (FIT image) -> Need customer's signed image

    (6) rootfs -> unsigned image is ok. 

    Thank You.

    Gibbs

  • 0 in reply to Gibbs Shih
    TI__Guru** 111595 points

    Hi Gibbs,

    Gibbs Shih said:
    This is an double check and conclusion, because I want to avoid any miss understanding.

    The U-Boot builds have been evolving with each SDK, so some of the questions depends on the SDK and U-Boot you are using.

    Gibbs Shih said:
    (1) sysfw.itb -> You must use "signed" SYS FW with TI dummy key, THIS IS ENCRYPTION BY TI, NOT CUTOMERIZED KEY, it already in SDK

    TI Dummy Key is used as a Customer SMPK Key. The TIFS binaries get delivered as signed and encrypted by TI MPK and TI MEK, which are different. So, you shouldn't be needing to "sign" the SYSFW binary with TI Dummy Key.

    Please try the following command to see what's packaged today on your sysfw.itb files

    $ dumpimage -l <sysfw.itb>

    Gibbs Shih said:
    (2) tiboot3.bin -> unsigned image is ok, before customer key programming.

    tiboot3.bin image should always have a x509 Certificate. So you can use either the ROM degenerate key or the Customer Private Key on HS-FS. The Customer Private Key is needed to sign on HS-SE.

    The TI BinMan build signs these with Customer Private Key.

    Please take a look at the <U-Boot>/arch/arm/dts/k3-j721e-binman.dtsi binman file used to generate the various binaries.

    Gibbs Shih said:

    (3) tispl.bin -> unsigned image is ok, before customer key programming.

    (4) u-boot.img -> unsigned image is ok, before customer key programming.

    The TI SDKs do sign these images even on HS-FS, so that the flow remains the same between HS-FS and HS-SE.

    Gibbs Shih said:
    (5) kernel + DTB (FIT image) -> unsigned image is ok, before customer key programming.

    FIT image is mandatory for using on HS-SE, and usage of a FIT image for GP or HS-FS is optional. 

    Gibbs Shih said:
    (6) rootfs -> unsigned image is ok.

    Yes.

    The short-summary is that TI SDKs have tried to minimize the build differences between HS-FS and HS-SE devices, and use signed images. There is code logic in U-Boot code that parses and skips the authentication portion of the images on HS-FS devices.

    regards

    Suman

  • 0 in reply to Suman Anna
    TI__Expert 5245 points

    Hi, Suman

    Thanks you replies, because I am not very familiar security device, so I need to check as detail as possible.

    Some clarification,

    TI Dummy Key is used as a Customer SMPK Key. The TIFS binaries get delivered as signed and encrypted by TI MPK and TI MEK, which are different. So, you shouldn't be needing to "sign" the SYSFW binary with TI Dummy Key.

    IF we use HS-FS device, we must to use "signed and encrypted by TI MPK and TI MEK" TIFS binaries (sysfw.itb)
    IF we use GP device, we must to use no "signed and encrypted by TI MPK and TI MEK" TIFS binaries (sysfw.itb)

    Even GP or HS-FS device, both sysfw.itb provided (generated) by TI, so customer do not need to care about this binary 

    tiboot3.bin image should always have a x509 Certificate. So you can use either the ROM degenerate key or the Customer Private Key on HS-FS. The Customer Private Key is needed to sign on HS-SE.

    IF we use HS-FS device, we must to use tiboot3.bin with customer private Key signed.
    IF we use GP device, we must to use tiboot3.bin without customer private Key signed.

    Our SDK will generate signed (HS-FS) and non-signed (GP) tiboot3.bin at same time, it depends on customer already add patch "Customer Private Key" in source  code or not. default key in SDK is "TI Dummy key"

    FIT image is mandatory for using on HS-SE, and usage of a FIT image for GP or HS-FS is optional

    If customer plan to use HS-FS device in the future, they should try to study how to use FIT image.
    even FIT image "without signed", which also can running on HS-FS device

    If I say something wrong, please correct me.

    Thank You Very Much

    Gibbs

  • 0 in reply to Gibbs Shih
    TI__Guru** 111595 points

    Hi Gibbs,

    Gibbs Shih said:
    IF we use HS-FS device, we must to use "signed and encrypted by TI MPK and TI MEK" TIFS binaries (sysfw.itb)
    IF we use GP device, we must to use no "signed and encrypted by TI MPK and TI MEK" TIFS binaries (sysfw.itb)

    Correct. The TIFS firmware also needs a X509 Certificate even on GP device, so this is signed with a ROM Degenerate Key.

    Gibbs Shih said:
    Even GP or HS-FS device, both sysfw.itb provided (generated) by TI, so customer do not need to care about this binary

    sysfw.itb is a FIT image that comprises of TIFS binary and Board Configuration binaries. The TIFS binary will remain unchanged from TI SDKs, but the Board Configuration binaries can change as per the Customer resource allocations or other board configurations/customizations.

    Gibbs Shih said:
    IF we use HS-FS device, we must to use tiboot3.bin with customer private Key signed.

    Must is not a requirement. They can sign with Customer Private Key or can choose the ROM degenerate Key. TI SDKs default to using the Customer Keys in the U-Boot developer build flow.

    Gibbs Shih said:
    IF we use GP device, we must to use tiboot3.bin without customer private Key signed.

    Yes. tiboot3.bin on GP devices also need a X509 Certificate in front, so it is signed with ROM Degenerate Key.

    Gibbs Shih said:
    Our SDK will generate signed (HS-FS) and non-signed (GP) tiboot3.bin at same time, it depends on customer already add patch "Customer Private Key" in source  code or not. default key in SDK is "TI Dummy key"

    Please review the following files that give an indication of how TI SDKs generate the images using the U-Boot binman flow. The BinMan flow is a developer flow where you have access to a Private Key. Please note that this won't be the case for production systems, where images are signed using a HSM Server where the private keys reside.

    <Linux-SDK>/board-support/<U-Boot>/arch/arm/dts/k3-j721e-binman.dtsi

    <Linux-SDK>/board-support/<U-Boot>/arch/arm/dts/k3-binman.dtsi

    Gibbs Shih said:
    If customer plan to use HS-FS device in the future, they should try to study how to use FIT image.
    even FIT image "without signed", which also can running on HS-FS device

    FIT image usage for kernel and dtb is optional on GP and HS-FS devices. They typically use the regular unsigned images on either of these devices.

    HS-SE requires FIT image, so if a Customer is moving from HS-FS to HS-SE, then they indeed should try to use the FIT images.

    regards

    Suman

  • 0 in reply to Suman Anna
    TI__Expert 5245 points

    Hi, Suman

    I am a little bit confuse this term "ROM degenerate Key", Could you give us some related information?

    Ref this page,

    https://software-dl.ti.com/jacinto7/esd/processor-sdk-linux-jacinto7/10_00_00_08/exports/docs/linux/Foundational_Components/U-Boot/UG-General-Info.html?highlight=sysfw%20itb

    Despite FIT image discussion, Our SDK will build 3 type binary, it include GP/HS-FS/HS-SE

    If customer use HS-FS device without "customer Private Key", they can direct use HS-FS binary build.

    If their device already become HS-SE device with"customer Private Key", they can direct use HS-SE binary build.

    That is the most simple way, Am I correct?

    Thank You.

    Gibbs

  • 0 in reply to Gibbs Shih
    TI__Guru** 111595 points

    Hi Gibbs,

    Gibbs Shih said:
    I am a little bit confuse this term "ROM degenerate Key", Could you give us some related information?

    Please see the section 4.5.6.1.1 Degenerate RSA Keys in the TRM. This is the key used on GP devices for Bootloader and TIFS binaries and can be used on HS-FS devices for generic images as well.

    The ROM degenerate key is pre-packacked in the SDK (alongside other TI Dummy Keys) within the U-Boot tree at <Linux-SDK>/board-support/<U-Boot>/arch/arm/mach-k3/keys/ti-degenerate-key.pem

    Gibbs Shih said:
    Despite FIT image discussion, Our SDK will build 3 type binary, it include GP/HS-FS/HS-SE

    Yes and No, as you can see from the binaries listed. There are 3 different sets for the primary bootloader binaries - tiboot3.bin and sysfw.itb. There are only two sets for other other bootloader images - one set for GP; another set for HS-FS and HS-SE. 

    The SDK top-level build has only two options - build for GP or build for HS (will generate both HS-FS and HS-SE). Please see the 1.1.7. Simplified SDK Build Using Top-Level Makefile of the SDK documentation.

    I recommend that you try out the builds first and look through the references I posted earlier.

    Gibbs Shih said:
    If customer use HS-FS device without "customer Private Key", they can direct use HS-FS binary build.

    Yes. Customers will have to adapt U-Boot, so they are expected to add their own binman entries. They can choose to use either ROM degenerate Key (if they don't have access to their Private Keys) or the Customer Private Key directly (and not have to adjust for HS-SE).

    Gibbs Shih said:

    If their device already become HS-SE device with"customer Private Key", they can direct use HS-SE binary build.

    That is the most simple way, Am I correct?

    Yes, correct. Please note that the U-Boot build flow for HS-SE is a developer-friendly version (means developers have the Customer Keys on their bench). Production HS-SE will require images to be signed using their HSM server where their Private Keys reside.

    regards

    Suman

  • 0 in reply to Suman Anna
    Expert 1095 points

    Hi Suman

    If we need to boot an HS-FS device (either 5B or 5C silicon) using the Linux SDK, is the following understanding correct:

    We can use all GP images except for the following two, which must be replaced:

    Small blue diamond For 5B HS-FS :

    1. Replace sysfw-j721e-gp-evm.itb
      ➜ with sysfw-j721e_sr1_1-hs-fs-evm.itb

    2. Replace tiboot3-j721e-gp-evm.bin
      ➜ with tiboot3-j721e-sr1_1-hs-fs-evm.bin

    All other images (such as tispl.bin, u-boot.img, kernel, DTB, rootfs, etc.) can remain as GP versions.

    Small blue diamond For 5C HS-FS :

    1. Replace sysfw-j721e_gp-evm.itb
      ➜ with sysfw-j721e_sr2_0-hs-fs-evm.itb

    2. Replace tiboot3-j721e-gp-evm.bin
      ➜ with tiboot3-j721e-sr2_0-hs-fs-evm.bin

    Again, all other images can remain as GP versions.


    Please confirm:
    On HS-FS devices, is it correct that the only required difference compared to GP boot is using the appropriate HS-FS tiboot3 and sysfw files, while all other images (e.g., tispl.bin, u-boot.img, kernel, DTB, rootfs) can remain identical to the GP versions?

    BR

    JAY

  • 0 in reply to Jay Sun
    TI__Expert 5245 points

    Remark For Jay

    What's mean for 5B/5C,

  • 0 in reply to Jay Sun
    TI__Guru** 111595 points

    Hi Jay,

    Jay Sun said:
    If we need to boot an HS-FS device (either 5B or 5C silicon) using the Linux SDK, is the following understanding correct:

    Are you trying this with the TI TDA4VM EVM or a customer board?

    Jay Sun said:
    We can use all GP images except for the following two, which must be replaced:

    Yes, the tiboot3.bin files will change though if this is for a Customer board. They would have to add support in U-Boot for their board, and the signing will be dictated by their binman.

    Jay Sun said:
    Again, all other images can remain as GP versions.

    As I stated earlier, TI SDKs use signed images even for other binaries on HS-FS (single build config between HS-FS and HS-SE). The GP version binaries for other images should work on HS-FS. 

    Unless there is a strong motivation to use GP only unsigned binaries, I recommend to follow the same style as TI SDKs.

    regards

    Suman

  • 0 in reply to Suman Anna
    Expert 1095 points

    Hi Suman 


    Thanks for the detailed clarification.

    We’d like to further confirm our use case, which involves transitioning from GP to HS-FS device for early board bring-up and functional validation.

    Our Setup & Objective

    • We already have a customer board that is validated using a GP device.

    • Now, we plan to replace the GP device with a 5C HS-FS device on the same board.

    • The goal is to boot the HS-FS device using the existing GP images (except sysfw and tiboot3) for early-stage functional testing.

    Motivation

    • At this stage, we have not yet programmed the device with Keywriter, so the device is still in HS-FS  state.

    • We hope to reuse the GP images to boot and verify key hardware interfaces .

    • Once functional verification is complete, we will proceed to program the device with Keywriter, effectively converting it to a  HS-FS state.

    • In the final stage, we will re-test using fully signed images as per the standard secure boot flow.

    Summary

    Our question is whether it is acceptable for early-stage HS-FS bring-up to temporarily use GP-signed images (except tiboot3 and sysfw).

    Appreciate your confirmation and guidance.

    BR

    JAY

  • 0 in reply to Jay Sun
    TI__Guru** 111595 points

    Hi Jay,

    Jay Sun said:
    We’d like to further confirm our use case, which involves transitioning from GP to HS-FS device for early board bring-up and functional validation.

    Thanks for the background.

    What Linux SDK is your Customer using? U-Boot has evolved while enabling the boot-support for HS-FS and also to use YAML and BinMan for generating the sysfw.itb file.

    Jay Sun said:
    Once functional verification is complete, we will proceed to program the device with Keywriter, effectively converting it to a  HS-FS state.

    This will convert the device to HS-SE once KeyWriter is run.

    Jay Sun said:
    Our question is whether it is acceptable for early-stage HS-FS bring-up to temporarily use GP-signed images (except tiboot3 and sysfw).

    My recommendation would be to follow the same flow as what is being used as TI SDK, as this would be the standard recommended method. 

    But I understand that you want to try this as part of your early-stage board bringup. I suggest that you open a new thread if you run into any issues, I do not have a HS-FS board to check/verify this myself.

    regards

    Suman