Frequently Asked Questions
Q: What Zymbit products support Bootware 1.0?
Expand for Answer
A: Bootware 1.0 runs on the Secure Compute Module based products - the Secure Edge Node, SCM Development kits, SCM modules.
Q: What Operating Systems are supported?
Expand for Answer
A: Bootware 1.0 supports the standard SCM OS options:
- Bullseye 64-bit
- Ubuntu 22.04 (jammy) 64-bit
Q: Can I use Bootware to switch from Bullseye to Ubuntu 22.04?
Expand for Answer
A: Yes, you can switch between Bullseye and Ubuntu 22.04. Note: The CM4/SCM firmware must include bootloader version 2023/01/11 or later in order to work with Ubuntu 22.04. The version can be verified with the vcgencmd bootloader_version command.
Q: Can I use a custom kernel build?
Expand for Answer
A: Yes, if it is based off of one of the supported OS images - Bullseye or Ubuntu 22.04. You will need to supply your kernel and the corresponding modules from your build.
Q: What are the partitioning schema?
Expand for Answer
A: Bootware 1.0 primarily consists of three partitioning schemes:
- Boot 512MB, RootA: Approximately 50%, RootB: Approximately 50%, Data partition 512MB
- Boot 512MB, RootA: Approximately 100%, Data partition 512MB
- Boot 512MB, RootA: Approximately 50%, Data partition 512MB
Q: Are the partitions encrypted?
Expand for Answer
A: Yes, the Root partitions are encrypted with LUKS encryption, protected by separate keys, i.e. RootA can only be unlocked with its key; the same key cannot unlock RootB. The Boot and Data partitions are not encrypted.
Q: What types of curves are used to sign and verify zi images?
Expand for Answer
A: The sign/verify process relies on ECDSA-based curves, in particular secp256k1. Public/Private key pairs can be generated in either software or Zymbit HSM hardware.
Q: Is there Bare Metal Recovery?
Expand for Answer
A: Bare metal recovery is not currently available.