sm8250 1.0 default dat file 2 1 64 0x808FF000 contains the OEM public key hash as set by OEM root_cert_hash0 000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000 SHA384 hash of the root certificate used for signing root_cert_sha384_hash0_file ./../../resources/data_prov_assets/Signing/Local/qti_presigned_certs-key2048_exp65537_paddingPSS/qpsa_rootca.cer PK Hash is in Fuse for SEC_BOOT1 : Apps SEC_BOOT1_PK_Hash_in_Fuse true If PK Hash in Fuse is 0, then this index selects which of 16 keys in ROM to use SEC_BOOT1_rom_pk_hash_index 0 Use Serial Num for secure boot authentication (0: Use OEM ID (Default), 1: Use Serial Num) SEC_BOOT1_use_serial_num false PK Hash is in Fuse for SEC_BOOT2 : MBA SEC_BOOT2_PK_Hash_in_Fuse true PK Hash is in Fuse for SEC_BOOT3 : MPSS SEC_BOOT3_PK_Hash_in_Fuse true The OEM hardware ID oem_hw_id 0x0000 The OEM product ID oem_product_id 0x0000 used to configure the number of root certificates hashed into OEM_PK_HASH (Max - 4) mrc_cert_count 1 if true, disable APPS debug apps_debug_disabled true allowing bus DCVS SW feature will require and set APPS_NIDEN_DISABLE to 0 allow_bus_dcvs false prevents the Watch Dog from being disabled by the GPIO, true: ignore GPIO, false: use GPIO watchdog_enable true Parameter to set SP_NVM_AR_CONFIG bit(0-3) sp_nvm_ar_config 0 Parameter to disable SPU sp_disable false Parameter to enable FIPS mode for SPU sp_fips_enable false Parameter to Override TZ_SW_CRYPTO_FIPS_ENABLE fuse tz_sw_crypto_fips_enable false Parameter to Override SPU_IAR_FEATURE_ENABLE fuse spu_iar_feature_enable false if true, enables use of Extended Key eku_enforcement_en true If true, all anti_rollback features are enabled. . boot anti_rollback feature . tzapps anti_rollback feature . pilsubsys anti_rollback feature . msa anti_rollback feature If false, all anti_rollback features are disabled. anti_rollback_feature_enable true