TDA4VEN-Q1: Signature problem of secure boot

cesar.xu

Intellectual 380 points

Part Number: TDA4VEN-Q1

Tool/software:

Hi,

1. the default keywriter TI dummy key：${PSDKRA_PATH}/pdk/packages/ti/build/makerules/k3_dev_mpk.pem

2. but uboot signature different key

3. The difference between the two:

tiboot3-j722s-hs-evm.bin tiboot3-j722s-hs-fs-evm.bin

4. I generated a new key by myself (smpk.pem), how do I replace the key in the Uboot.

regards,

Cesar

4 months ago

+1 Diwakar Dhyani 3 months ago

TI__Guru 56815 points

Hi Cesar,

cesar.xu said:
1. the default keywriter TI dummy key：${PSDKRA_PATH}/pdk/packages/ti/build/makerules/k3_dev_mpk.pem

2. but uboot signature different key

Both keys are same. You can run cat command on ke_dev_mpk.pem and custMpk.pem

cesar.xu said:
3. The difference between the two:

tiboot3-j722s-hs-evm.bin -> tiboot3.bin binary for HS-SE device.
tiboot3-j722s-hs-fs-evm.bin -> tiboot3.bin binary for HS-FS device

cesar.xu said:
4. I generated a new key by myself (smpk.pem), how do I replace the key in the Uboot.

Have you flashed the corresponding public key onto the device ? If yes, you can just replace it with the custMpk.pem

Regards
Diwakar

Processors

Processors forum

TDA4VEN-Q1: Signature problem of secure boot