2025-09-04 2:32 AM
Hello,
we are using a STM32H5 with TZ disabled. In firmware, we are doing the following:
- set the product state to provisioning (0x17)
- provision the debug authentication
This already works fine. Afterwards, we can do a discovery an see the validity of the DA ( we read 0xeaeaeaea). Regression afterwards works fine.
However, we would like to check this validity from within the firmware.
1) where does this 0xeaeaeaea comes from? Can we also access it?
2) reading back the storage area of the DA (0x0ffd0100) is not reliable. Sometimes, we can read the data we just wrote, sometime we just read 0xff... This depends on the code we execute after writing. It is not a timing issue, should we maybe set a certain flag or something like that?
The code we used is based on the github project https://github.com/stm32-hotspot/STM32H5_DA_EmbeddedProvisioning
Best regards
Peter