SLAZ279AA October 2012 – May 2021 MSP430F5418
SYS Module
Functional
Protection weakness in BSL flash address range
If the BSL Protection is enabled, just the lowest 16 bytes of the secured BSL part should be usable as entry area (jump table). Instead, this entry window (not secured from readout by CPU) can be also be seen on other addresses - address locations affected are dependent on the selected size of the BSL.
Example: for BSLSIZE = 0, memory is reflected into 0x01600 to 0x0160F & 0x01700 to 0x0170F
Similarly, if RAM space is assigned as BSL area and secured, the mechanism can be observed. Only the area 0x01C00 to 0x01C0F should be protected, but the following RAM areas are also secured and no longer accessible: 0x01D00 to 0x01D0F, 0x01E00 to 0x01E0F, 0x01F00 to 0x01F0F, 0x02000 to 0x0200F... 0x02B00 to 0x02B0F.
Any access to locations affected by errata leads to a security reset.
- Do not use RAM as secured area for BSL
or
- Do not put sensitive user code/data in the additional BSL entry address windows.