Bureaucrats, dave_user, Administrators
743
edits
Changes
→Conclusions
...
</pre>
=== HAB Warnings ===
Not everything that is notified by <code>hab_status</code> command as <code>HAB Event</code> is a critical error (in other words: invalid signature)
On some cases (in our experience depending on silicon revision, part to part differences and bootloader software releases) there might be some HAB events that are just warning, e.g. the following is a warning on an issue RNG initialization (please note the difference in <code>STS</code> field, from <code>HAB_FAILURE</code> to <code>HAB_WARNING</code>)<syntaxhighlight lang="text">
=> hab_status
Secure boot disabled
HAB Configuration: 0xf0, HAB State: 0x66
--------- HAB Event 1 -----------------
event data:
0xdb 0x00 0x24 0x42 0x69 0x30 0xe1 0x1d
0x00 0x08 0x00 0x02 0x40 0x00 0x36 0x06
0x55 0x55 0x00 0x03 0x00 0x00 0x00 0x00
0x00 0x00 0x00 0x00 0x00 0x00 0x00 0x00
0x00 0x00 0x00 0x01
STS = HAB_WARNING (0x69)
RSN = HAB_ENG_FAIL (0x30)
CTX = HAB_CTX_ENTRY (0xE1)
ENG = HAB_ENG_CAAM (0x1D)
</syntaxhighlight>
Warnings like this don't prevent booting even if secure boot is enabled
== Conclusions ==
