scottk/meta-tegra
1
0
Fork 0
mirror of https://github.com/lingble/meta-tegra.git synced 2025-10-29 03:22:36 +00:00
Code Issues Packages Projects Releases Wiki Activity

tegra-flash-helper: Allow PKC-only secure boot flashing

Browse Source 
When flashing a board fused with PKC hash but no SBK, we should not
supply a SBK key as that would encrypt the flash contents which would
then not be able to be read by the board when booting, as the board
won't know the SBK key.

Signed-off-by: Andrew Bradford <andrew.bradford@konsulko.com>
This commit is contained in:
Andrew Bradford
2024-12-16 12:58:42 -05:00
committed by Matt Madison
parent e563e7860f
commit c523c2f938
1 changed files with 7 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

8
recipes-bsp/tegra-binaries/tegra-helper-scripts/tegra-flash-helper.sh
View File

@@ -259,7 +259,13 @@ if [ -z "$CHIPREV" ]; then
CHIPREV="${chipid:5:1}"
skipuid="--skipuid"
case $bootauth in
PKC|SBKPKC)
PKC)
if [ -z "$keyfile" ]; then
echo "ERR: Target is configured for secure boot ($bootauth); use -u option to specify key file" >&2
exit 1
fi
;;
SBKPKC)
if [ -z "$keyfile" -o -z "$sbk_keyfile" ]; then
echo "ERR: Target is configured for secure boot ($bootauth); use -u and -v options to specify key files" >&2
exit 1