Hi ST team,
I am using STM32U5G9 in my project. It would need simple firmware update feature and the image would be received by UART from a zigbee module.
I have read UM2851 and AN5447 application notes and check the SBSFU example in STM32CubeU5 package (v1.8.0) in github.
I believe this is what my project needs:
1. MCUBOOT (Secure area)
2. NS Application (non-secure primary slot)
3. Nonsecure image secondary slot (for firmware update)
4. Authentication and integrity check
5. SWAP mode with scratch region
I want to maximize the flash usage, so it doesn't need:
1. Secure application
2. Secure data
3. Non-secure data
4. Loader
5. Encryption
The bootloader would verify the signature in primary slot and execute the NS application. NS application would write the new image into Nonsecure image secondary slot when firmware update is needed.
I would like to ask:
1. How to modify the SBSFU example to meet above requirement? How should I modify below config file?
- mcuboot_config.h
- flash_layout.h
- region_defs.h
2. Does the SBSFU example include direct-xip mode in its MCUBOOT? I would like to skip the installation time if possible.
3. In SBSFU example, the public key for image authentication is in keys.c. Does it support ECDSA-P256 public key in .pem or .cer format? How to adapt different format of public key in SBSFU example?
