RP2040 probe - add some kind of protection?

AchimKraus

Are there any considerations to limit the RP2040 probe to flash the device?

For devices in the field that may be pretty helpful to protect the device from being flashed unauthorized. Though the RP2040 also “listen” on the UART, it may unlock the flash feature via a “pass phrase”, just as idea.

jaredwolff

The only thing that comes to mind is the APPROTECT UICR register. That way nothing can be done without erasing the chip.

AchimKraus

That way nothing can be done without erasing the chip.

That way the app and settings are protected from being read, but the device could be very simple bricked using that chip-erase or recover operation (OK, it requires some know-how, but with that it’s easy.). For unattended devices that may be a weakness/downside.

My idea was more to “disable” the “probe” until it reads/sniffs a “pass phrase” on the serial. That way it offers protection and makes it much harder to “brick” the device. That would be something as “probe set <pass phrase>”,
“probe unlock <pass phrase>”, and “probe clear <pass phrase>”.

jaredwolff

AchimKraus you could totally do this the RP2040 firmware is open source. Or for the paranoid completely erase the RP2040. Since it’s application specific, I won’t be changing anything on my end.

AchimKraus

It was just an idea.