Strictly necessary cookies are on by default and cannot be turned off. Functional, Performance and Tracking/targeting/sharing cookies can be turned on below based on your preferences (this banner will remain available for you to accept cookies). You may change your cookie settings by deleting cookies from your browser. Then this banner will appear again. You can learn more details about cookies HERE.
Strictly necessary (always on)
Functional, Performance and Tracking/targeting/sharing (default off)
OK
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results forĀ 
Search instead forĀ 
Did you mean:Ā 

PSoC 6 MCU

user_4814686
New Contributor
ā€ŽNov 12, 2020 09:07 AM

Reversible DAP lock using EFUSE_DATA_SECURE_ACCESS_RESTRICT0

Jump to solution

Hello,

Once the lifecycle stage is set to SECURE, is it possible to go from a DAP lock state to a DAP unlock state using the EFUSE_DATA_SECURE_ACCESS_RESTRICT0 register?

If not, is there any way to unlock the DAP once it has been locked in any given lifecycle stage?

Thank you,

Xavier

0 Likes
Reply
1 Solution
DheerajK_81
Moderator
Moderator
ā€ŽNov 17, 2020 06:21 AM
In response to user_4814686

Re: Reversible DAP lock using EFUSE_DATA_SECURE_ACCESS_RESTRICT0

Jump to solution

Hello Xavier,

Answers inline.

When in Secure w/ Debug Lifecycle mode, will the DAP access be enabled even if the EFUSE_DATA_SECURE_ACCESS_RESTRICT0 register is set to disable the DAP access?

Yes, that's right. In Secure w/ Debug mode, the normal access restrictions will apply. EFUSE_DATA_SECURE_ACCESS_RESTRICT0 will only come into effect if you transition to Secure mode from Normal mode. It does not have a role to play in Secure w/ Debug mode.

Is it possible to lock/unlock the DAP in Normal Lifecycle mode? If so, could you advise on the procedure to follow?

Yes, it is. Please refer to the following thread: Is it possible to prevent user to trace through SWD/JTAG?

Regards,
Dheeraj

View solution in original post

0 Likes
Reply
3 Replies
DheerajK_81
Moderator
Moderator
ā€ŽNov 12, 2020 08:56 PM

Re: Reversible DAP lock using EFUSE_DATA_SECURE_ACCESS_RESTRICT0

Jump to solution

Hello Xavier,

No, this is not possible. Blowing the EFuse is an irreversible process. So, based on the EFUSE_DATA_SECURE_ACCESS_RESTRICT0 register setting, it is going to blow the EFuses accordingly when the lifecycle is changed to SECURE and you can't go back to a lower protection setting.

Hence, during development, it is recommended to test your designs using NORMAL and Secure w/ Debug Lifecycle modes. Secure w/ Debug allows DAP access.

For more information refer:

PSoC6 Architecture TRM

PSoC6 Register TRM

Hope this answers your query

Regards,

Dheeraj

0 Likes
Reply
user_4814686
New Contributor
ā€ŽNov 13, 2020 05:59 AM
In response to DheerajK_81

Re: Reversible DAP lock using EFUSE_DATA_SECURE_ACCESS_RESTRICT0

Jump to solution

Hi Dheeraj,

Thank you for your reply!

First follow-up question:

When in Secure w/ Debug Lifecycle mode, will the DAP access be enabled even if the EFUSE_DATA_SECURE_ACCESS_RESTRICT0 register is set to disable the DAP access?

Second follow-up question:

Is it possible to lock/unlock the DAP in Normal Lifecycle mode? If so, could you advise on the procedure to follow?

From the DAP Security section of the PSoC 6 programming manual: "The second bit, CPUSS_DP_CTL.xxx_DISABLE, can be set during boot, before the debugger can connect, based on eFuse settings for SECURE or DEAD life-cycle stage or based on NAR settings in Supervisory flash for NORMAL life-cycle."

Thank you very much,

Xavier

0 Likes
Reply
DheerajK_81
Moderator
Moderator
ā€ŽNov 17, 2020 06:21 AM
In response to user_4814686

Re: Reversible DAP lock using EFUSE_DATA_SECURE_ACCESS_RESTRICT0

Jump to solution

Hello Xavier,

Answers inline.

When in Secure w/ Debug Lifecycle mode, will the DAP access be enabled even if the EFUSE_DATA_SECURE_ACCESS_RESTRICT0 register is set to disable the DAP access?

Yes, that's right. In Secure w/ Debug mode, the normal access restrictions will apply. EFUSE_DATA_SECURE_ACCESS_RESTRICT0 will only come into effect if you transition to Secure mode from Normal mode. It does not have a role to play in Secure w/ Debug mode.

Is it possible to lock/unlock the DAP in Normal Lifecycle mode? If so, could you advise on the procedure to follow?

Yes, it is. Please refer to the following thread: Is it possible to prevent user to trace through SWD/JTAG?

Regards,
Dheeraj

View solution in original post

0 Likes
Reply
Top labels