-
Notifications
You must be signed in to change notification settings - Fork 6
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
source code, document behavior #1
Comments
It is not open source for now since this is related to security boot |
If it's for security, then it needs to be open. Obscurity is proven not to work. |
What does security boot mean? |
There is no clear definition of "Secure Boot" besides that of the UEFI Forum, which is their view and mostly marketing. For reference, see also: However, the generic term as a loose concept includes the following:
The key point is to build up a trust chain, similar to the hierarchical PKI you may know from HTTPS, and so you end up with a root, which is then called RTM, Root of Trust for Measurement, categorized into DRTM (dynamic) and SRTM (static). Static RTM is implemented e.g. with keys fused into the hardware. Look for "efuse" in SoC documentation. |
Hi, |
we will refactor the code and open source it soon. thank you all of your comments and suggestion. |
This issue can be now closed thanks to StarFive team upstreamed my code and extended it. <3 |
Thank you so much! I'm already using this now, works just fine :) |
Please provide the source code for and document the header that the tools generate.
The VisionFive 2 is advertised as open source, and here, sources are missing.
Here is what I have reverse engineered. Given a file with the following contents:
This is the output of
./create_sbl toaster 1234
(toaster.normal.out
):Note: all entries are little endian
The first two bytes seem to be fixed; I've run the tool over a few other files:
0240
. Same for the0020
at0x007
.Then come many more zero-bytes.
The
04d2 0000
(at0x0284
) is the hex representation of the version passed,1234
. I noticed that passing longer numbers gets truncated and only the lowest 32 bits (4 bytes) are preserved.The
0008 0000
appears to be the file size in bytes.The
0400 0000
seems to be fixed.The
f685 1a81
is the CRC32 checksum of the file.At
0x0400
, the actual file starts.The text was updated successfully, but these errors were encountered: