debugging a non-secure app (with tfm)

Hi,

I was wondering what I need to do, or if it is even possible, to debug a non-secure app which uses TFM.

Running 'west debug' on e.g. the blinky sample works regardless if I built it with secure or non-secure board type on an nrf9160dk. However, on an app that uses modem/crypto/tfm functionality, like the psa_crypto sample from the zephyr repository, that will result in a debugging session that is unable to get to the main function of the app.

This feels like I'm missing something really obvious, but I can't tell what it is. Anyone here willing to push me in the right direction?

Cheers!

Top Replies

dejans over 2 years ago in reply to randomdude +1 verified

Hi, The reset is done inside "west debug", after the breakpoint is set. First, you have "break main" and "continue", followed by "mon reset" and "continue", it should break into main. Best regards, De…

0 dejans over 2 years ago in reply to randomdude

Hi,

You could now test the crypto sample from the main branch with build command "west build -b nrf9160dk_nrf9160_ns@your_revision_number", where your_revision_number is revision number of the board. Crypto sample requires target reset.

Best regards,
Dejan
Cancel
Vote Up 0 Vote Down

Sign in to reply

Verify Answer

Cancel
0 randomdude over 2 years ago in reply to dejans

Hi,

which crypto sample are you referring to, exactly? I have done a fresh install of the main branch of the nrf connect SDK and built the psa_crypto sample in zephyr/samples/tfm_integration, but debugging still fails the same way it did before.

One thing I didn't realize before is that I was using two different zephyr flavors, vanilla and the one that comes with the nrf connect SDK. Not sure if that makes much of a difference in this case, though.
Cancel
Vote Up 0 Vote Down

Sign in to reply

Verify Answer

Cancel
0 dejans over 2 years ago in reply to randomdude

Hi,

I am referring to psa_crypto sample. Which Zephyr version did you use when building your sample?

Best regards,
Dejan
Cancel
Vote Up 0 Vote Down

Sign in to reply

Verify Answer

Cancel
0 randomdude over 2 years ago in reply to dejans

Still not sure about the terminology. As I understand it, there are two parts to Zephyr. The Zephyr-RTOS source files which are shipped with the nrf connect SDK, and the toolchain, which gets installed in /opt or ~, or wherever. I was using the Zephyr SDK that comes with the nrf connect SDK from the main branch and zephyr toolchain 0.14.2.
Cancel
Vote Up 0 Vote Down

Sign in to reply

Verify Answer

Cancel
0 dejans over 2 years ago in reply to randomdude

Hi,

The toolchain provided by Zephyr is set of tools to help in building and debugging. You should use Zephyr toolchain version 0.14.1 instead of 0.14.2.

Best regards,
Dejan
Cancel
Vote Up 0 Vote Down

Sign in to reply

Verify Answer

Cancel