OpenOCD - Open On-Chip Debugger / Tickets / #275 ST-Link v3 refuses to work with non-ST targets, RE help needed

Uwe Bonnes - 2020-07-27

Paul Fertser via OpenOCD-devel writes:

[tickets:#275] ST-Link v3 refuses to work with non-ST targets, RE help needed

Status: new
Milestone: 0.9.0
Created: Fri Jul 24, 2020 04:26 PM UTC by Paul Fertser
Last Updated: Fri Jul 24, 2020 04:26 PM UTC
Owner: Paul Fertser

For the reasons yet to be discovered, ST-Link v3 is not connecting to the
Cortex-M targets not produced by ST. There's likely a way to fix this by
patching the firmware, and thanks to the amazing effort by some community
members patching and uploading patched versions of the firmware is now
relatively easy.

Rejecting non-ST MCU probably has also a deeper impact. The need to
read the MCUID! This has often problems when in sleep or even when in
reset. Even with stprog, STLINKV3 often does to to a board the
STLINK-V2(1) had no probblem.

First, a word of warning: V3J6M2 firmware will enable permanent protection
level 2, so you won't be able to debug ST-Link itself over SWD on this chip
ever (reflashing via the bootloader would still be possible though). V3J2-V3J5
are known to not enable any additional protection.
How to patch the firmware:

There is also a patched bootloader available that does not protect the
F723.

Bye

Uwe Bonnes bon@elektron.ikp.physik.tu-darmstadt.de

Institut fuer Kernphysik Schlossgartenstrasse 9 64289 Darmstadt
--------- Tel. 06151 1623569 ------- Fax. 06151 1623305 ---------

Related

Tickets: #275

If you would like to refer to this comment somewhere else in this project, copy and paste the following link:
- Paul Fertser - 2020-07-27
  
  On Mon, Jul 27, 2020 at 11:21:00AM +0200, bon@elektron.ikp.physik.tu-darmstadt.de wrote:
  
  Rejecting non-ST MCU probably has also a deeper impact. The need to
  read the MCUID! This has often problems when in sleep or even when in
  reset. Even with stprog, STLINKV3 often does to to a board the
  STLINK-V2(1) had no probblem.
  
  I'm surprised I get no constructive feedback on this ticket. Now that
  it's trivial to try a firmware with patched-out IDCODE check why isn't
  anybody trying that? Probably in fact I'm wrong to bother at all and
  nobody just gives a damn and it's a non-issue?
  
  First, a word of warning: V3J6M2 firmware will enable permanent protection
  level 2, so you won't be able to debug ST-Link itself over SWD on this chip
  ever (reflashing via the bootloader would still be possible though). V3J2-V3J5
  are known to not enable any additional protection.
  How to patch the firmware:
  
  There is also a patched bootloader available that does not protect the
  F723.
  
  From reading that github ticket thread I got an impression that the
  protection is performed by the main firmware. And it's probably
  checking some byte that's flashed with the bootloader, right, but
  nobody has tested it yet, and also nothing prevents ST from ignoring
  that byte in the new not-yet-released versions of the firmware, so I
  wouldn't count on it.
  
  --
  Be free, use free (http://www.gnu.org/philosophy/free-sw.html) software!
  mailto:fercerpav@gmail.com
  
  If you would like to refer to this comment somewhere else in this project, copy and paste the following link:
  - Uwe Bonnes - 2020-07-27
    
    Paul Fertser writes:
    
    On Mon, Jul 27, 2020 at 11:21:00AM +0200,
    bon@elektron.ikp.physik.tu-darmstadt.de wrote:
    
    Rejecting non-ST MCU probably has also a deeper impact. The need to
    read the MCUID! This has often problems when in sleep or even when in
    reset. Even with stprog, STLINKV3 often does to to a board the
    STLINK-V2(1) had no probblem.
    
    I'm surprised I get no constructive feedback on this ticket. Now that
    it's trivial to try a firmware with patched-out IDCODE check why isn't
    anybody trying that?
    
    This is caused probably by different interpretations of "trivial" ...
    
    Uwe Bonnes bon@elektron.ikp.physik.tu-darmstadt.de
    
    Institut fuer Kernphysik Schlossgartenstrasse 9 64289 Darmstadt
    --------- Tel. 06151 1623569 ------- Fax. 06151 1623305 ---------
    
    If you would like to refer to this comment somewhere else in this project, copy and paste the following link:
    - Paul Fertser - 2020-07-27
      
      On Mon, Jul 27, 2020 at 12:03:12PM +0200, bon@elektron.ikp.physik.tu-darmstadt.de wrote:
      
      I'm surprised I get no constructive feedback on this ticket. Now that
      it's trivial to try a firmware with patched-out IDCODE check why isn't
      anybody trying that?
      
      This is caused probably by different interpretations of "trivial" ...
      
      I'm not sure what is the possible misunderstanding here. OpenOCD is
      targetted at developers and surely it shouldn't be problematic for a
      developer to unpack/pack zip files or to run a java utility for
      encryption/decryption? And stlink users are of course targetting
      cortex-m MCUs, so STM32F7 firmware is not something alien to them.
      
      Am I missing anything essential?
      
      --
      Be free, use free (http://www.gnu.org/philosophy/free-sw.html) software!
      mailto:fercerpav@gmail.com
      
      If you would like to refer to this comment somewhere else in this project, copy and paste the following link:

ST-Link v3 refuses to work with non-ST targets, RE help needed

The Open On-Chip Debugger

Milestone

Searches

Help

#275 ST-Link v3 refuses to work with non-ST targets, RE help needed

Related

Discussion

Bye

Related

This is caused probably by different interpretations of "trivial" ...