RPI_DEVICE_JTAG_LOCK automatically set program_pubkey and revoke_devkey in config? #233
Description
Hello again,
Running 2.1.1 and am provisioning devices using secure-boot. I have set RPI_DEVICE_JTAG_LOCK in the web UI and in the manufacturing database it is confirmed as set. program_pubkey and revoke_devkey have question marks next to them though which provides concern. According to the config.txt docs:
"program_jtag_lock
If this property is set to 1 then recovery.bin will program an OTP value that prevents VideoCore JTAG from being used. This option requires that program_pubkey and revoke_devkey are also set. This option can prevent failure analysis, and should only be set after the device has been fully tested."
So if jtag lock requires program_pubkey and revoke_devkey but I didn't set them manually in my config.txt does this mean the secure-boot provisioner has set them for me?
Thanks in advance.