Tool/software:
Just Reading the section of "Secure Booting Sequence" of AM62x from the doc named <AM62x Family Security Concept ---KeyStone3 Platform>
I got the following questions:
Context: using eMMc as a boot-up mode (eMMc as a code storage media)
(1) As the boot-up sequence shown, Secure ROM (executed by TIFS) will trigger the Public ROM Code (executed in Public ROM), is it the Initial sequence between Secure ROM and Public ROM are a fixture, that is a fixed program code EOL from TI production line? I think the answer is yes, cuz from the sequence flow, there is no explicit introduction to illustrate who is responsible for loading the Public ROM (from eMMc external media to internal DDR to execute) , right?
(1.1) If the answer to Question (1) is negative, there must be a fix rules for the pre-placement of the DM R5 image. (from physical address-wise) ? Right?
For example, Like in the current project we place the SBL stage_1 image at the address of 0x0 (physical address). 【i mean the SBL stage_1 image must be fixed at 0x0, and the fixture code will only load the SBL_stage_1 code only from 0x0】
(2) and for the device security state transition: From HS -> SE, i read the related guide document that a tiboot3.bin has to be programmed. And this raises the other questions:
(2.1) I wonder is it right that essentially there is no fixed or mandatory placement address for the OPTkeywriter image (aka. keywriter client) as long as the OPT key writer APP are placed at the enrty point (entry address) of the code section of "DM-R5 SBL" , but just as the description of (1), the entry address happens to be fixed at 0x0.
