[Gnuk-users] GnuK 1.2.1 locked Admin PW
Paul Fertser
fercerpav at gmail.com
Wed Apr 12 15:43:46 UTC 2017
On Wed, Apr 12, 2017 at 05:21:01PM +0200, NdK wrote:
> Il 12/04/2017 16:30, Paul Fertser ha scritto:
> > If you have SWD, there's no reason to use serial bootloader, as you
> > can not only flash but also fully debug (stepping, breakpoints,
> > watchpoints) the target firmware. I recommend routing out the reset
> > line to the SWD connector as that will allow the debugger to access
> > the target no matter what.
>
> IIRC it should be possible to disable SWD, too. At least the debug
> functions. That should be done as soon as the FW is "finalyzed" to avoid
> an attacker injecting malicious code.
Not possible on STM32F1, no. You can protect the firmware from reading
via debug port, yes. Messing with it by other means shouldn't be
possible either, at least I couldn't find any reports of it being
done.
--
Be free, use free (http://www.gnu.org/philosophy/free-sw.html) software!
mailto:fercerpav at gmail.com
More information about the gnuk-users
mailing list