Hello,
After spending several days investigating this topic and reviewing all the documentation I could find, I am still completely stuck on how to proceed with implementing STiROT + OEMuROT on my STM32H7S3.
An important point is that I am trying to add this security architecture to a project that is already at a fairly advanced stage of development. The project was originally built on top of the XIP template provided by ST:
https://github.com/STMicroelectronics/STM32CubeH7RS/tree/main/Projects/NUCLEO-H7S3L8/Templates/Template_XIP
The difficulty comes from the fact that, in the XIP context, the project only includes these layers:
As a first step, I imported ROT_Provisioning into the project in a separate folder. However, I still do not see how I should properly integrate or adapt the following components into my current project structure:
- OEMiROT_Appli
- OEMiROT_Boot
- STiROT_Appli
- STiROT_Boot
Should I try to merge the `*_Appli` projects into my existing Appli context, and the `*_Boot` projects into my existing Boot context? Or is the expected approach different when starting from the XIP template?
I also reviewed the following ST Wiki article, which seems relevant to this type of use case, but I still could not find a clear way forward:
https://wiki.st.com/stm32mcu/wiki/Security:How_to_adapt_a_user_application_to_ROT_for_STM32H7RS#STM32CubeIDE-0
At this point, what I am mainly missing is a clear starting methodology for adapting an advanced XIP-based project to a setup that includes STiROT + OEMuROT.
Any guidance, recommended project structure, migration steps, or example workflow would be greatly appreciated.
Thank you very much in advance for your time and help and best regards!
