ヘルプ
英语(美国) | English (US) 日本語 | Japanese 中文 | Chinese (Simplified)

CC_SOCU_DLFT in CMPA

キャンセル
提案をオンにする
自動提案では、入力時に可能な一致が提案されるので検索結果を素早く絞り込むことができます。
次の結果を表示 
表示  限定  | 次の代わりに検索 
もしかして: 
解決済み
ソリューションへジャンプ

CC_SOCU_DLFT in CMPA

ソリューションへジャンプ
‎06-29-2020 11:07 PM
1,423件の閲覧回数
kamii
Contributor III

Hello,

We'd like LPC55S69 to enter "OEM Closed" lifecycle state and close all debug ports permanently.

For this transition, which CMPA configuration is correct?

[Configuration 1]

CMPA.CC_SOCU_PIN = 0xFC00.03FF

CMPA.CC_SOCU_DFLT = 0xFC00.03FF (all SOCU_DFLT[n] bit to 1)

[Configuration 2]

CMPA.CC_SOCU_PIN = 0xFC00.03FF

CMPA.CC_SOCU_DFLT = 0xFFFF.0000 (all SOCU_DFLT[n] bit to 0)

I'd like to confirm the SOCU_DFLT[n] bit polarity.

I'm looking the Table 1062 "Access restriction levels" in UM11126 Rev.2.0, and that shows that "SOCU_PIN[n] = 1 and SOCU_DFLT[n] = 1" mean Restriction Level 3 (Access to the sub-domain is permanently disabled), so I think the above Configuration 1 is correct for disabling debug ports.

Best Regards,

返信
1 解決策

ソリューションへジャンプ
‎07-01-2020 10:36 AM
1,310件の閲覧回数
nxf58474
NXP Employee
NXP Employee

Hi,

 

Hope you are doing well. The correct configuration would be the second one. There is a documentation issue in the version of the User Manual.

 

CC_SoCU_DFLT setting defines the default access rights for corresponding debug domains.

– If bit is set, access is allowed. Otherwise access is denied.

 

CC_SoCU_PIN setting defines if debug authentication process can modify the access rights defined by CC_SoCU_DFLT:

– If bit is clear, access rights to corresponding debug domain are determined via debug authentication process.

– If bit is set, access right as defined CC_SoCU_DFLT cannot be altered.

 

 

– SOCU_PIN[n] = 1, SoCU_DFLT[n] = 0: This offers the highest level of restriction.

– SOCU_PIN[n] = 0, SOCU_DFLT[n] = 0/1: This setting allows debug authentication process to define access rights.

– SOCU_PIN[n] = 1, SOCU_DFLT[n] =1: This setting is lowest security level.

 

Hope this helps.

 

Best Regards,

Ricardo

元の投稿で解決策を見る

返信
4 返答(返信)

ソリューションへジャンプ
‎07-01-2020 10:36 AM
1,311件の閲覧回数
nxf58474
NXP Employee
NXP Employee

Hi,

 

Hope you are doing well. The correct configuration would be the second one. There is a documentation issue in the version of the User Manual.

 

CC_SoCU_DFLT setting defines the default access rights for corresponding debug domains.

– If bit is set, access is allowed. Otherwise access is denied.

 

CC_SoCU_PIN setting defines if debug authentication process can modify the access rights defined by CC_SoCU_DFLT:

– If bit is clear, access rights to corresponding debug domain are determined via debug authentication process.

– If bit is set, access right as defined CC_SoCU_DFLT cannot be altered.

 

 

– SOCU_PIN[n] = 1, SoCU_DFLT[n] = 0: This offers the highest level of restriction.

– SOCU_PIN[n] = 0, SOCU_DFLT[n] = 0/1: This setting allows debug authentication process to define access rights.

– SOCU_PIN[n] = 1, SOCU_DFLT[n] =1: This setting is lowest security level.

 

Hope this helps.

 

Best Regards,

Ricardo

返信

ソリューションへジャンプ
‎07-01-2020 05:16 PM
1,310件の閲覧回数
kamii
Contributor III

Hi,

Thank you for your answer! I understand that's a documentation issue. I was confused about inconsistency between the documentation and my testing result.

I think that table is important for security level description, so could you please consider to modify the UM?

Thank you.

0 件の賞賛
返信

ソリューションへジャンプ
‎07-02-2020 07:33 AM
1,310件の閲覧回数
nxf58474
NXP Employee
NXP Employee

Hi,

 

Yes, the new upcoming release of the User Manual should have this modification.

 

Thank you for your observation.

 

Best Regards,

Ricardo

返信

ソリューションへジャンプ
‎07-30-2020 09:55 PM
1,310件の閲覧回数
kamii
Contributor III

Hi,

I've found the latest User Manual Rev.2.1, but that documentation isn't modified. When will you apply the modification?

Best Regards,  

0 件の賞賛
返信