3.4.1.2:STM32H5 Extends
1:Function Entrance
PowerWriter® support for manufacturer-specific features, are using the plug-in mode, you can support the specific features required by any manufacturer, the method of entry and other brands of the support method is consistent, in the selection of the chip, such as in the toolbar on the right side of the most a plug-in support icon appears, the currently selected chip has a plug-in support function, as shown below:
After selecting the STM32H5 family of chips, an Extensions button appears on the right side of the toolbar, defined as Vendor Specific Plug-In Functions, which can be clicked to enter the STM32H5 Security Extensions screen as shown below:
2:Safety Function Configuration
Click "Enable security configure" button, it will start the security configure function, First, add obk files used for debugging and certification, and more data files can be added as needed.the security configure supports *.OBK file mode (STM32H56/STM32H57) and password mode (STM32H50), the plug-in automatically selects the appropriate mode according to the current chip, for example, selecting the chip for STM32H50 series. The plug-in automatically selects the appropriate mode according to the current chip, such as selecting the STM32H50 series chip. In addition to setting the password, it can export the PASSWORD.bin file for unlocking the chip to be used in the regression.
3:Debug authentication
Click "Enable debug authentication(DA)" button, it will start the function of security function regression (debug authentication of the chip, in order to analyze or unlock the chip), the configuration of security function regression supports *.bin file mode (Trust Zone is not turned on), and the certificate mode (Trust Zone is turned on), the password mode regression, import bin file, certificate mode import b64 file and PEM key file, import b64 file and PEM key file. Import bin file.
Import b64 file and PEM key file in the form of certificate.At present, only obk configuration writing is supported, and the fallback of certificate authentication mode is not supported. You can use STM32CubeProgrammer to fallback.
As of now (2024/02/29) the current security features configuration and return to support the form of password, does not support the form of certificates, the future will be updated to support certificates, if there is an update, please pay attention to the detailed changelog, or consult technical support and customer service.
STM32H50x series Only support password form, STM32H56x, STM32H57x support both password and certificate form (Debugging and authentication (DA) that supports opening trust zone but not certificate mode).
At present, the extended function only supports offline mode .
Functional dependence
Security function configuration: only when the option byte-byte 1(PRODUCT STATE) is not Open(0xED), the added configuration file (.obk) is written into the OBKey area of the chip.
fallback of security function: When the chip cannot be connected or the option bytes are restored to the default, programming device will use the files added under this function for Full regression.Currently, only full regression is supported.
Before use, please verify that the file used for rollback matches the configuration file completely, and the loss caused by the user's wrong configuration shall be borne by the user.