From: Marek Vasut <marex@denx.de>
To: Peng Fan <peng.fan@nxp.com>,
"Alice Guo (OSS)" <alice.guo@oss.nxp.com>,
Tom Rini <trini@konsulko.com>, Lukasz Majewski <lukma@denx.de>,
Sean Anderson <seanga2@gmail.com>, Stefano Babic <sbabic@denx.de>,
Fabio Estevam <festevam@gmail.com>
Cc: dl-uboot-imx <uboot-imx@nxp.com>,
"u-boot@lists.denx.de" <u-boot@lists.denx.de>,
Viorel Suman <viorel.suman@nxp.com>,
Alice Guo <alice.guo@nxp.com>, Ye Li <ye.li@nxp.com>,
Ranjani Vaidyanathan <ranjani.vaidyanathan@nxp.com>
Subject: Re: [PATCH 00/17] (no cover subject)
Date: Mon, 4 Nov 2024 16:39:02 +0100 [thread overview]
Message-ID: <60302aa2-4838-4f59-8aeb-9d02def683f7@denx.de> (raw)
In-Reply-To: <PAXPR04MB8459F3E50519ABEED5C806C688512@PAXPR04MB8459.eurprd04.prod.outlook.com>
On 11/4/24 1:39 PM, Peng Fan wrote:
>> Subject: Re: [PATCH 00/17] (no cover subject)
>>
>> On 11/4/24 1:20 PM, Peng Fan wrote:
>>>> Subject: Re: [PATCH 00/17] (no cover subject)
>>>>
>>>> On 10/16/24 9:17 AM, Alice Guo wrote:
>>>>> This patch set adds the basic support of i.MX95 and has been
>> tested
>>>> on
>>>>> i.MX95 19x19 EVK.
>>>> I have a somewhat more generic question -- can we start U-Boot SPL
>>>> and U-Boot first, and start the ELE/OpTee/... whatever firmwares
>>>> AFTER U-Boot has started, so they can be updated just like the
>> kernel
>>>> can be updated ?
>>>
>>> ELE Firmware packed in flash.bin is used by ROM, out of control of
>>> SPL/U-Boot.
>>
>> Used by ROM how ? Details please ?
>
> ELE Firmware is for secure enclave usage. 8ULP/93 also has it.
> I could not share more details.
Is this some magic proprietary closed source goo ?
Why can this not be started from U-Boot just like OpTee-OS which
implements TEE for Secure TEE trustlets (or whatever that is called) ?
>>> OP-Tee is optional, but if it is there, it could only be loaded by SPL
>>> and kicked by ATF
>> Why ? U-Boot running in EL3 can start OpTee OS, so what is the
>> problem ?
>
> Ah. As we know there is a wrapper in ATF controlled with spd_optee.
> Technically let uboot in EL3 to kick optee is feasible, but I am not
> sure people would do this.
Because if there is a bug in OpTee, it can be safely updated just like
the kernel can be safely updated -- just boot the other copy as a
fallback. If the Optee is baked into your flash.bin , you have to update
bootloader, which is dangerous.
prev parent reply other threads:[~2024-11-04 19:57 UTC|newest]
Thread overview: 33+ messages / expand[flat|nested] mbox.gz Atom feed top
2024-10-16 7:17 [PATCH 00/17] (no cover subject) Alice Guo
2024-10-16 7:17 ` [PATCH 01/17] mailbox: add i.MX95 Messaging Unit (MU) driver Alice Guo
2024-10-16 18:06 ` Tom Rini
2024-10-16 7:17 ` [PATCH 02/17] firmware: scmi: smt: Interrupt communication enable Alice Guo
2024-10-16 7:17 ` [PATCH 03/17] pinctrl: nxp: add SCMI pin control protocol driver Alice Guo
2024-10-16 7:17 ` [PATCH 04/17] scmi_protocols: add SCMI misc protocol protocol_id and message_id for getting the ROM passover data Alice Guo
2024-10-16 7:17 ` [PATCH 05/17] scmi_protocols: add SCMI Performance domain management protocol message IDs Alice Guo
2024-10-16 7:17 ` [PATCH 06/17] clk: scmi: add the command CLOCK_PARENT_SET Alice Guo
2024-10-16 7:18 ` [PATCH 07/17] clk: scmi: check the clock state/parent/rate control permissions Alice Guo
2024-10-16 7:18 ` [PATCH 08/17] scmi_protocols: update struct scmi_base_discover_list_protocols_out Alice Guo
2024-10-16 18:07 ` Tom Rini
2024-10-31 9:57 ` 回复: [EXT] " Alice Guo (OSS)
2024-10-31 16:56 ` Tom Rini
2024-10-16 7:18 ` [PATCH 09/17] imx9: scmi: add i.MX95 SoC and clock related code Alice Guo
2024-10-16 7:18 ` [PATCH 10/17] imx9: add i.MX95 Kconfig and Makefile Alice Guo
2024-10-16 7:18 ` [PATCH 11/17] imx9: scmi: soc: Override h_spl_load_read with trampoline buffer Alice Guo
2024-10-16 7:18 ` [PATCH 12/17] scmi: add the macro SCMI_MSG Alice Guo
2024-10-16 7:18 ` [PATCH 13/17] imx: Kconfig: IMX8_ROMAPI is not configured for i.MX95 Alice Guo
2024-10-16 18:20 ` Tom Rini
2024-10-16 7:18 ` [PATCH 14/17] imx95_evk: add i.MX95 19x19 EVK board basic support Alice Guo
2024-10-16 11:36 ` Fabio Estevam
2024-10-16 17:47 ` Tom Rini
2024-11-01 9:43 ` 回复: [EXT] " Alice Guo (OSS)
2024-11-01 13:36 ` Fabio Estevam
2024-11-01 13:58 ` 回复: " Tom Rini
2024-10-16 7:18 ` [PATCH 15/17] imx: add V2X container support on i.MX95 Alice Guo
2024-10-16 7:18 ` [PATCH 16/17] imx: Support loading container image from RAM device Alice Guo
2024-10-16 7:18 ` [PATCH 17/17] imx: Fix ROMAPI driver to load container image Alice Guo
2024-11-04 11:17 ` [PATCH 00/17] (no cover subject) Marek Vasut
2024-11-04 12:20 ` Peng Fan
2024-11-04 12:30 ` Marek Vasut
2024-11-04 12:39 ` Peng Fan
2024-11-04 15:39 ` Marek Vasut [this message]
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=60302aa2-4838-4f59-8aeb-9d02def683f7@denx.de \
--to=marex@denx.de \
--cc=alice.guo@nxp.com \
--cc=alice.guo@oss.nxp.com \
--cc=festevam@gmail.com \
--cc=lukma@denx.de \
--cc=peng.fan@nxp.com \
--cc=ranjani.vaidyanathan@nxp.com \
--cc=sbabic@denx.de \
--cc=seanga2@gmail.com \
--cc=trini@konsulko.com \
--cc=u-boot@lists.denx.de \
--cc=uboot-imx@nxp.com \
--cc=viorel.suman@nxp.com \
--cc=ye.li@nxp.com \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox