Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

build.sh: output BL2 when build BL2 + FIP #38

Merged
merged 1 commit into from
Dec 25, 2023
Merged

build.sh: output BL2 when build BL2 + FIP #38

merged 1 commit into from
Dec 25, 2023

Conversation

lgs2007m
Copy link
Contributor

No description provided.

@hanwckf hanwckf merged commit 3669f03 into hanwckf:master Dec 25, 2023
@CTCD
Copy link

CTCD commented Dec 31, 2023

_ No description provided. _

What is the file BL2.bin? If I don't flash BL2.bin, can uboot start normally?

CTCD added a commit to CTCD/bl-mt798x that referenced this pull request Dec 31, 2023
@lgs2007m
Copy link
Contributor Author

_ No description provided. _

What is the file BL2.bin? If I don't flash BL2.bin, can uboot start normally?

Only the stock BL2 and FIP which builted with secure boot need to be rebuilt and replaced together. Flashing only the FIP will result in bricking.

As of now, we have only found the BL2 and FIP of the JDCloud RE-CP-03 ware builted with secure boot. Therefore, for the JDCloud RE-CP-03, both BL2 and FIP need to be flashed, while others which builted without secure boot only require flashing FIP.

BTW, in case of hardware modifications, it is also necessary to recompile and flash BL2 and FIP.

You can learn something about BL2 and secure boot in the file MT7986_Secure_Boot_Quick_Start_20220126_v1.2.pdf

@CTCD
Copy link

CTCD commented Dec 31, 2023

_ No description provided. _

What is the file BL2.bin? If I don't flash BL2.bin, can uboot start normally?

Only the stock BL2 and FIP which builted with secure boot need to be rebuilt and replaced together. Flashing only the FIP will result in bricking.

As of now, we have only found the BL2 and FIP of the JDCloud RE-CP-03 ware builted with secure boot. Therefore, for the JDCloud RE-CP-03, both BL2 and FIP need to be flashed, while others which builted without secure boot only require flashing FIP.

BTW, in case of hardware modifications, it is also necessary to recompile and flash BL2 and FIP.

You can learn something about BL2 and secure boot in the file MT7986_Secure_Boot_Quick_Start_20220126_v1.2.pdf

CONFIG_TARGET_ALL_NO_SEC_BOOT=y mean to use secure boot?

@lgs2007m
Copy link
Contributor Author

lgs2007m commented Dec 31, 2023

_ No description provided. _

What is the file BL2.bin? If I don't flash BL2.bin, can uboot start normally?

Only the stock BL2 and FIP which builted with secure boot need to be rebuilt and replaced together. Flashing only the FIP will result in bricking.
As of now, we have only found the BL2 and FIP of the JDCloud RE-CP-03 ware builted with secure boot. Therefore, for the JDCloud RE-CP-03, both BL2 and FIP need to be flashed, while others which builted without secure boot only require flashing FIP.
BTW, in case of hardware modifications, it is also necessary to recompile and flash BL2 and FIP.
You can learn something about BL2 and secure boot in the file MT7986_Secure_Boot_Quick_Start_20220126_v1.2.pdf

CONFIG_TARGET_ALL_NO_SEC_BOOT=y mean to use secure boot?

"NO_SEC_BOOT" is an abbreviation for NO Secure Boot, mean not to use secure boot.
"ALL" mean to build BL2 and FIP.

@CTCD
Copy link

CTCD commented Dec 31, 2023

ware builted with secure boot

CONFIG_TARGET_NO_SEC_BOOT=y means no secure boot, CONFIG_TARGET_ALL_NO_SEC_BOOT=y means with secure boot?
How did you know JDCloud RE-CP-03 comes with secure boot? How do I know if a device has Secure Boot?

@lgs2007m
Copy link
Contributor Author

ware builted with secure boot

CONFIG_TARGET_NO_SEC_BOOT=y means no secure boot, CONFIG_TARGET_ALL_NO_SEC_BOOT=y means with secure boot? How did you know JDCloud RE-CP-03 comes with secure boot? How do I know if a device has Secure Boot?

You should read the source code, the answer is in it. Whether a device has Secure Boot, check the TTL bootlog.

@CTCD
Copy link

CTCD commented Dec 31, 2023

ware builted with secure boot

CONFIG_TARGET_NO_SEC_BOOT=y means no secure boot, CONFIG_TARGET_ALL_NO_SEC_BOOT=y means with secure boot? How did you know JDCloud RE-CP-03 comes with secure boot? How do I know if a device has Secure Boot?

You should read the source code, the answer is in it. Whether a device has Secure Boot, check the TTL bootlog.

OK, thank you for your enthusiastic answer

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

3 participants