arno/trezor-firmware
1
0
Fork 0
mirror of https://github.com/trezor/trezor-firmware.git synced 2025-01-09 06:50:58 +00:00
Code Issues Releases Wiki Activity
5fa55825db
trezor-firmware/docs/core/misc/trustzone.md

27 lines
995 B
Markdown
Raw Normal View History

docs(core) Update embedded build instraction, add DISC2 and TrustZone section
2024-12-12 13:21:05 +00:00
# TrustZone
New Trezor models are built on the STM32U5 series microcontrollers, which are based on the ARM Cortex-M33 and provide advanced security features, such as TrustZone.
When building firmware for such a device (Blank Trezor device or DISC2 evaluation kit), you need to ensure that TrustZone is enabled in the STM32 microcontrollers option bytes.
## Enable TrustZone in STM32 Option Bytes
1. Download and install [STM32CubeProgrammer](https://www.st.com/en/development-tools/stm32cubeprog.html#st-get-software).
2. Connect the device via ST-Link (DISC2 has an embedded ST-Link; for Trezor devices, use an external one).
3. Power on the device (connect via USB).
4. Open STM32CubeProgrammer and connect to the device.
5. Open the Option Bytes (OB) tab.
6. In the User Configuration tab, enable TZEN, then press Apply.
7. In the Boot Configuration tab, change the SECBOOTADD0 address to 0x0C004000, then press Apply.
8. Disconnect the ST-Link and reset the device.
Reference in New Issue Copy Permalink