Build system
For more information about the toolchain, build process, and compilation, see Qualcomm Linux Build Guide.Set up SecTools v2 for secure boot
- Go to the SecTools v2 folder.
The SecTools executable is located in the following path.
<Metabuild>/<chipset>.LE.X.x/common/sectoolsv2/ext/<host_machine>This folder has the binaries and scripts required for secure boot, image signing, and other security operations. - Locate the security Profile XML.
Find the
<chipset>_security_profile.xmlsecurity profile file in meta.<chipset>.LE.X.x/common/sectoolsv2This XML file defines the security configuration used by SecTools.
The table lists the documentation for SecTools v2. Table : SecTools v2The minimum SecTools version required is 1.43 or later.
| Document | Description |
|---|---|
| SecTools V2: Metabuild Secure Image User Guide | Perform the secure-image operations on metabuild software images. |
| SecTools V2: Fuse Blower User Guide | Create and sign the fuse blower images. When a device uses a fuse blower image, it blows the specified fuse. |
| SecTools V2: ELF Tool User Guide | Generate, add segments, and combine the ELF software images. |
| SecTools V2: MBN Tool User Guide | Add the modem configuration binary (MBN) headers to binary images. |
| SecTools V2: ELF Consolidator User Guide | Create the consolidated ELF software images. A consolidated ELF has the contents of many subsystem images. |
| SecTools V2: Secure Image User Guide | Sign, encrypt, and inspect Qualcomm software images. |
| SecTools V2: Secure Debug User Guide | Generate and sign the debug policy images to enable device debugging and authentication. |
The SecTools guides are available to licensed users with authorized access.
Next steps
- To initialize and configure the hardware for running securely on Linux, see Verify security configurations.
- To configure Qualcomm TEE for securing devices that handle sensitive data and run trusted applications, see Configure security services.

