[quote author="Sjaak"]The pickit2 or 3 shoulde be able. Provided the config bits are allowing this. Most manufacturers wil prohibit reading their code by setting the copyprotectbit in tge uC[/quote]
When the copy protection bit is set Is there a way I can attack?
[quote author="DangerByte"]Did you do this while the BP was connected to another board? There might indeed be a short somewhere or maybe the board simply uses too much power and starves the bus pirate power supply. See, if you can connect a voltage meter to the pins. The voltage should be about 3.3V. You can probably also use the board power supply instead (but do not connect the +3.3V from bus pirate in this case, and make sure the debugged chip i.e. SPI flash is not in use).[/quote]
[quote author="DangerByte"]Sorry, I misspoke there.
The /WP pin is a write-protect pin. You don't really need this while dumping the flash memory (reading), but if you plan to write to it then you must definitely disable it. My setup was meant for a scenario where you have read/write access for the chip. If the /WP pin is set to low (GND) then write protection will be enabled. To disable write protection you should connect it to Vcc (+3.3V). Personally I have successfully read a winbond chip with /WP pin high, I haven't tried reading it with /WP low (low = write-protect enable).
The /HOLD pin is also active low, which (according to the datasheet) means that a low signal on it (while /CS is also low) will prevent any communication from taking place - hance its name HOLD. You should connect this pin to Vcc (+3.3V) for normal operation.[/quote] Thank you for answers.
If I understand your answer correctly
So I do not need to connect the cable to the WP pin because it proceeds only dump
In order to dump , /HOLD pin, Do need unconditional VCC (3.3V) connection cable?
Finally, in order to the dump
Excluding the WP pin and do all the pins to be connected?
I have created a table, please confirm.
Bottom line is needed to pin the memory dump (reading) CS, VCC, DO, DI, GND, CLK ,/HOLD(3.3V),VCC(3.3V)?
Bottom line is needed to pin the memory dump (Writing) CS, VCC, DO, DI, GND, CLK, VCC, HOLD, WP(VCC 3.3) ?
[quote author="DangerByte"]If you're not using the router power (the router is powered off and disconnected from power) then you need to supply the voltage from Bus Pirate. Luckily, Bus pirate provides a +3.3V output that you can connect to the flash chip. According to the datasheet, your component is meant for +3.3V, but be careful because some components are meant for lower voltages like 1.8V.
So the bottom line is: - Connect the following pins: /CS, DO (MISO), GND, DI (MOSI) and CLK. - If you're using the router to supply the power then you're all set to go. Do not connect any more pins. - If you're not using the router power then use the Bus Pirate +3.3V power supply. Connect it to all three pins: VCC, /WP and /HOLD.[/quote]
Hi.
Thank you for answers.
I'll try again.
I'd like to dump in the firmware (data) in the SPI memory.
Connect the WP# pin and the HOLD# pin also. Can I dump the firmware?
WP# pin is not that the write-protect pin?
And WP #, HOLD # pin, Do I connect the cable from the Bus Pirate?
[quote author="DangerByte"]If you're going to flash while the device is powered on, make sure not to connect any wires to the Vcc pin, as the router board provides its own power. I've just recently dumped my laptop BIOS, and I found out that by running flashrom while the PC was powered up, Bus Pirate was unable to pull the /CS pin low enough for the flash chip to activate. I had to remove power completely and use Bus Pirate to provide the +3.3V directly to the chip. Since I had a Winbond SOIC8 SPI flash chip, I had to supply +3.3V to three different pins: Vcc, /HOLD and /WP.
The dump was successful, but for some reason it took an unusually long time to read the entire 4 megs of flash... This was the command line I used: $ flashrom -p buspirate_spi:dev=/dev/ttyACM0 -c "W25Q32.V" -r ./flash_L.bin
NOTE: You may need to adjust the -c parameter or simply leave it out to use chip autodetection.[/quote]
Hi.
Thanks for the answer.
To connect the Bus Pirate cable to the SPI Flash memory
I do connect with the exception of WP# and HOLD#?
And CS, VCC, DO, CLK, GND, DI pin happens only when you connect the cable?
