On Mon, Nov 10, 2025 at 01:41:00PM +0100, Lukasz Majewski wrote:
> With current mainline it is possible to check with AHAB if system OS image
> can be trusted (with 'auth_cntr' command).
> However, after the validation one needs to use the image (fitImage in this
> case) itself. Such operation requires getting the offset in the image
> eligible for AHAB validation to start execution of the fitImage.
>
> Command in this patch allows it, so with:
> auth_cntr_offset ${addr} auth_cntr_os_offset;
> setexpr addr ${kernel_addr_r} + ${auth_cntr_os_offset};
>
> it is possible to boot the fitImage after AHAB IP block vaidation.
>
> Signed-off-by: Lukasz Majewski <[email protected]>
> ---
> arch/arm/mach-imx/imx8/ahab.c | 50 +++++++++++++++++++++++++++++++++++
> 1 file changed, 50 insertions(+)Can we please split the commands here out and put it under cmd/imx/imxh-ahab.c or something? Thanks. -- Tom
signature.asc
Description: PGP signature
