Syntax
- For Zynq devices and Zynq UltraScale+ MPSoC:
[bh_keyfile] <key file path>
- For Versal
ACAP:
bh_keyfile = <key file path>
Description
256-bit obfuscated key or black key to be stored in boot header. This is only valid when the encryption key source is either obfuscated key or black key.
Note: Obfuscated key not supported for Versal
devices.
Arguments
Path to the obfuscated key or black key, based on which source is selected.
Example
- For Zynq devices and Zynq UltraScale+ MPSoC:
all: { [keysrc_encryption] bh_gry_key [bh_keyfile] obfuscated_key.txt [bh_key_iv] obfuscated_iv.txt [bootloader, encryption=aes, aeskeyfile = encr.nky, destination_cpu=a53-0]fsbl.elf }
- For Versal
ACAP:
all: { bh_keyfile = bh_key1.txt bh_kek_iv = blk_iv.txt image { name = pmc_subsys, id = 0x1c000001 { type = bootloader, encryption = aes, keysrc = bbram_red_key, aeskeyfile = key1.nky, file = plm.elf } { type = pmcdata, load = 0xf2000000, aeskeyfile = key2.nky, file = pmc_cdo.bin } { type=cdo, encryption = aes, keysrc = bh_blk_key, aeskeyfile = key3.nky, file=fpd_data.cdo } } }