Quote
If I am not mistaken, cloning or copying integrated circuits without the necessary rights or licenses is a violation of intellectual property laws and is considered illegal.
it is if you intend to sell it on either as flashable code or installed in a clone device.
some local laws however allow you to copy for backup purpose and this is really needed, I've had several devices die due to the manufacturer providing faulty firmware and costly ones at that. I now always make a attempt to backup the firmware and as a result have helped many others
recover their devices from the same situ .e.g a500/a600 obd LCD displays elsewhere in this forum a $100 device that need updating before it can be used on newer cars and the OEM provided update program is faulty, however it can be used to download the update and then using a working open source tool i developed will flash the files correctly
In other cases it's allowed fixes to be applied that the OEM wont provide as they prefer you buy the newer model with all the same features + maybe one or two software extras.
In the case of the Reiden RD60xx series of power supplies it allowed a clean room open source firmware development that even the OEM now copies ideas from, this dumping also allowed recovery of devices that needed repairs that included the replacing stm32f103 MCU and open source bootloader compatible with OEM files was developed that again the OEM stole ideas from ( no thanks or nod provided as per the norm for china)
for stm8 firmware dumping on devices that dont have protection enabled you need a stlink v2/v2.1 device that has SWIM enabled , attached is a image of two models that do , you see both support SWIM protocol which means official tools will work as well as many un-official programs.
if the mcu is locked then your only choice is the VCC attack, i cant off hand remember which pin it is that is ment to have vcc+cap but you take that power feed and put it through a resistor , transistor, resistor setup controlled by another mcu that also controls reset and can do the swim protocol as the timing are so tight that sending a command via serial port to start swim reading while the mcu is in this zombie state are so tight that serial wont cut it.
Also you cant use offical software or h/w SWIM programmers for stm8's either as they all do a SWIM reset that restarts the mcu code stopping the SWIM lockout bypass from working.
offical tools sort of go like this
STLINK: hello swim device?
SWIM device : yes ?
STLINK: reset
SWIM device :ok, doing so
STLINK: hello, swim device ?
SWIM device : yes?
STLINK:give me your details and read out protection status
SWIM device :"reads lockout status, depending on results responds with all mcu details or just ROP status", ok here you go
where as the hack device allows the device to start the internal on mcu SWIM code then drops power just enough to skip a line of code and then just asks for memory reads, this skips the device details and ROP status check and swim is enabled from the first request.
Also chances are a device based on stm8 mcu's it prob out of date and now e-waste in the eyes of the OEM and no doubt has a better new faster more expensive model out now.
one final thought, if the stm8 has STM's own DFU code on it the even with protection it falls pray to the dfu buffer sploit and that super easy to do as no hardware needed , just a virtual machine and usb cable
darkspr1te