Hi all,
I am able to generate an SFI image via the trust package and I am using a HSM card to attempt to program a STM32WBA55. As far as I understand is that during provisioning TZEN is set and RDP level is set to 0.5.
Reading various documents such as the ref manual (section boot modes) and the an4992 on section 3.3.2.1 it states "The OEM internal firmware can be built to start at the beginning of the user flash memory (starting address
0x0800 0000). After a SFI, the SRAM is fully available for OEM."
It is not clear to me if it actually works once TZEN remains set after the SFI process. Can I just provision my non-secure application? My goal is to reach RDP level 2 once my option bytes are applied and have under control what happens at the contract manufacturer site.
Thank you very much,
best,
Ivan
