Difference between revisions of "BELK-TN-011: Lock OTP Areas"
(Created page with "{{InfoBoxTop}} {{Applies To Bora}} {{Applies To BoraX}} {{InfoBoxBottom}} __FORCETOC__ {{WarningMessage|text=This technical note was validated against specific versions of ha...") |
m (U0007 moved page BELK-TN-011: Fix Lock OTP Areas to BELK-TN-011: Lock OTP Areas) |
||
| (4 intermediate revisions by 2 users not shown) | |||
| Line 14: | Line 14: | ||
|- | |- | ||
|1.0.0 | |1.0.0 | ||
| − | | | + | |Sep 2020 |
| − | | | + | |First release |
|} | |} | ||
== Introduction == | == Introduction == | ||
| − | As decribed on [[ConfigID_management_(BELK/BXELK)|ConfigID management]] page, these informations are stored inside a general | + | As decribed on [[ConfigID_management_(BELK/BXELK)|ConfigID management]] page, these informations are stored inside a general purpose OTP area of the SoC. |
| − | This | + | This technical note shows how to fix lock this OTP area on BORA systems running BSP versions older than [[BELK/BXELK software components#BELK 4.1.2|BELK/BXELK-4.1.2]] |
=== ConfigID programming === | === ConfigID programming === | ||
| − | All | + | All Bora SOMs are shipped with ConfgID and UniqueID programmed and locked. The OTP lock ensure that nobody can change this data (unattempted code execution, etc). |
| − | + | It is possibile to execute these operations only using the devel versions of u-boot with the following commands: | |
<pre> | <pre> | ||
configid som_configid <16 byte code> | configid som_configid <16 byte code> | ||
| Line 34: | Line 34: | ||
== Older BSP issue == | == Older BSP issue == | ||
| − | In older BSP, due to | + | In older BSP, due to a u-boot limitation, this OTP area is not ''really'' locked and therefore it should be possible to overwrite its value, with possible identification errors during updates. |
| − | + | Starting from the BELK/BXELK-4.1.2 release this issue have been solved. | |
| − | == | + | == Lock OTP area == |
| − | It is | + | It is suggested to update the systems running ''BSP releases'' ''older then'' BELK 4.1.2 performing the following steps: |
| − | * program on | + | * program on internal storage or alternatively boot from uSD using the u-boot devel version belk-4.1.2 |
| − | * | + | ** devel version, for SD, are: [[mirror:bora/belk-4.1.2/belk-4.1.2_borax_mmc_devel_boot.bin|belk-4.1.2_bora_mmc_devel_boot.bin]] and [[mirror:bora/belk-4.1.2/belk-4.1.2_borax_mmc_devel_u-boot.img|belk-4.1.2_bora_mmc_devel_u-boot.img]] |
| − | * program | + | ** u-boot can be downloaded from our [https://cloud.dave.eu/ws-mirror/bora/belk-4.1.2 mirror server] |
| + | ** u-boot 4.1.2 gives access to the OTP lock commands | ||
| + | * run the command <code>configid som_lock 0</code> | ||
| + | * program your u-boot release version to restore the normal operations (''this is not required if previous operations have been executed using an external boot from SD'') | ||
Revision as of 15:45, 25 September 2020
| HOME | SOMs | SBCs | ToloMEO Embedded Assistant |  GET A QUOTE
|
 ONLINE HELPDESK
|
| Roadmap | IoT Services | ML/AI services | Embedded Design Services |
Info Box
|
|
This technical note was validated against specific versions of hardware and software. What is described here may not work with other versions. |
|
History[edit | edit source]
| Version | Date | Notes |
|---|---|---|
| 1.0.0 | Sep 2020 | First release |
Introduction[edit | edit source]
As decribed on ConfigID management page, these informations are stored inside a general purpose OTP area of the SoC.
This technical note shows how to fix lock this OTP area on BORA systems running BSP versions older than BELK/BXELK-4.1.2
ConfigID programming[edit | edit source]
All Bora SOMs are shipped with ConfgID and UniqueID programmed and locked. The OTP lock ensure that nobody can change this data (unattempted code execution, etc).
It is possibile to execute these operations only using the devel versions of u-boot with the following commands:
configid som_configid <16 byte code> configid som_uniqueid <32 byte code> configid som_lock 0
Older BSP issue[edit | edit source]
In older BSP, due to a u-boot limitation, this OTP area is not really locked and therefore it should be possible to overwrite its value, with possible identification errors during updates.
Starting from the BELK/BXELK-4.1.2 release this issue have been solved.
Lock OTP area[edit | edit source]
It is suggested to update the systems running BSP releases older then BELK 4.1.2 performing the following steps:
- program on internal storage or alternatively boot from uSD using the u-boot devel version belk-4.1.2
- devel version, for SD, are: belk-4.1.2_bora_mmc_devel_boot.bin and belk-4.1.2_bora_mmc_devel_u-boot.img
- u-boot can be downloaded from our mirror server
- u-boot 4.1.2 gives access to the OTP lock commands
- run the command
configid som_lock 0 - program your u-boot release version to restore the normal operations (this is not required if previous operations have been executed using an external boot from SD)
