Page 1 of 1
Will partition with type 0x40 be encrypted when Flash Encryption is on?
Posted: Wed Jul 12, 2017 10:33 am
by tobewinner
If I add a partition(Type 0x40 subtype 0x00) with encrypted flag, will it be encrypted?
and if I turn on secure boot ,will it be checked before being used?
Re: Will partition with type 0x40 be encrypted when Flash Encryption is on?
Posted: Wed Jul 12, 2017 8:47 pm
by WiFive
Yes partitions with encryption flag set should be encrypted during initial encrypted boot process.
Secure boot will verify bootloader, bootloader will verify partition table and app. I believe otherwise you have to verify user partitions yourself.
Not sure of any issues for custom partition types.
Re: Will partition with type 0x40 be encrypted when Flash Encryption is on?
Posted: Thu Jul 13, 2017 1:54 am
by tobewinner
WiFive wrote:Yes partitions with encryption flag set should be encrypted during initial encrypted boot process.
Secure boot will verify bootloader, bootloader will verify partition table and app. I believe otherwise you have to verify user partitions yourself.
Not sure of any issues for custom partition types.
Thanks.
Here it writes: "The bootloader ignores any partition types other than app (0) & data (1)."
does it means that the bootloader will not verify partition other than partition table , app partitions and data partitions?
Re: Will partition with type 0x40 be encrypted when Flash Encryption is on?
Posted: Thu Jul 13, 2017 2:26 am
by WiFive
Yes I think so and there is also a difference between verify partition structure and verify partition signature. You can check source code of bootloader in IDF.