OE4T Meeting Notes 2024‐05‐09 - OE4T/meta-tegra GitHub Wiki

Video

https://youtu.be/zvxOSnuySsY

Attendees

12

Topics

  • Jetpack 6 GA
    • Work started, notes in Matrix channel
    • Work in progress branch started, rebased history from the old wip branch.
    • Testing on AGX Orin and Orin Nano with nvme
    • Issue with demo-image-full and images with lots of content on rootfs. Some issue with USB gadget support in xusb controller firmware or drivers.
    • Can build OP-TEE from source
      • Getting an exception at boot time when trying to combine built from source UEFI and OP-TEE.
      • Suspect some issue with the stand-alone memory manager.
      • Currently set for prebuilt OP-TEE.
      • Also able to boot when using OP-TEE from source but EDK prebuilt.
    • Nvidia has done away with userland libdrm nvdc library. Believe they are now full gbm.
      • Started working to strip out all modifications to wayland and weston so we only use upstream.
      • Ran into issues with graphics demos not building.
    • X11 working, sato boots
    • Gstreamer working
    • Haven’t tested MIPI camera support yet.
    • All recipes updated as much as we can. Still need to do an audit pass over all MACHINE settings to accommodate both 35.6 and 35.5
    • No ETA on merge yet. Matt’s time may be limited over the next few weeks. Would like to merge by the end of May if possible.
    • Still need to look into secure boot support. Believe there will be changes to make based on changes to initrd-flashing to handle pre-signing related to RCM boot. RCM now gets signed through a different mechanism.
    • GStreamer nveglgles plugin code needs wayland protocol bits in build. One added is for IBI shell extension. There are recipes for pulling those protocol extensions in other layers, mostly in automotive. Rather than trying to pull into our layer have conditionalized out those bits.
    • Docker should be ready to try
    • Out of tree kernel driver changes
      • With 36.3 some of the sound drivers have the same name as the in-tree drivers.
      • Used nvidia-kernel-oot reference names with alias.
      • If you make use of sound drivers other than HDMI and find build conflicts make sure you point the provider to out of tree instead of in-tree.
      • Can set PREFERRED_PROVIDER to point to the module you want.
    • Jetpack 5 features for secure boot will ultimately be available in Jetpack 6, should also have some new features. Work on secure boot still ongoing.
  • Pull request for refactor of capsule updates at https://github.com/OE4T/meta-tegra/pull/1527
    • Will try to come up with a scheme to avoid breaking changes.
    • Want to come up with reference configurations in Yocto for signing, related to https://openbao.org/
  • 35.4.1 to 35.5.0 and UEFI variable authentication
    • New key needed in EKB to authenticate UEFI variables
    • Tried to update from 35.4.1 to 35.5.0 UEFI variables are wiped away and re-written.
    • Products already shipped didn’t have root of trust burned, used whatever default was. Presumably still have a mechanism to add authentication key and get an EKB out.
    • Required for secureboot.
    • Might be possible to hack UEFI support to turn off.
  • OTA Document for NVIDIA
    • Ilies has a document started describing challenges.
    • Looking for feedback for those using device update strategies on Jetpack 5/6.
  • Bring your own Kernel for Jetpack 6
    • Table for next month’s meeting.
    • Concerned about support burden long term.