Apr 7, 2013

Arduino JTAG Finder Workshop Tutorial

9:56 AM  pakitong  No comments

Step by step
Step 1: Download
zoobab@gierek /home/zoobab/soft [44]$ wget http://zoobab.wikidot.com/local--files/jtag-finder/jtagscan.tar.bz2
--2009-06-08 21:01:08--  http://zoobab.wikidot.com/local--files/jtag-finder/jtagscan.tar.bz2
Resolving zoobab.wikidot.com... 67.228.37.26
Connecting to zoobab.wikidot.com|67.228.37.26|:80... connected.
HTTP request sent, awaiting response... 301 Moved Permanently
Location: http://zoobab.wdfiles.com/local--files/jtag-finder/jtagscan.tar.bz2 [following]
--2009-06-08 21:01:09--  http://zoobab.wdfiles.com/local--files/jtag-finder/jtagscan.tar.bz2
Resolving zoobab.wdfiles.com... 67.228.37.28
Connecting to zoobab.wdfiles.com|67.228.37.28|:80... connected.
HTTP request sent, awaiting response... 200 OK
Length: 18458 (18K) [application/x-bzip2]
Saving to: `jtagscan.tar.bz2'

100%[================================================================================================================================>] 18,458      35.3K/s   in 0.5s    

2009-06-08 21:01:11 (35.3 KB/s) - `jtagscan.tar.bz2' saved [18458/18458]
Step 2: Untar
zoobab@gierek /home/zoobab/soft [46]$ tar -xvjf jtagscan.tar.bz2
jtagscan/
jtagscan/relocations.avr
jtagscan/jtagscan.glade
jtagscan/avr/
jtagscan/avr/jtagscan-avr.c
jtagscan/avr/Makefile
jtagscan/avr/jtagscan-avr.hex
jtagscan/avr/COPYING
jtagscan/Makefile
jtagscan/TODO
jtagscan/README
jtagscan/COPYING
jtagscan/jtagscan.c
Step 3: Go to jtagscan/avr directory
zoobab@gierek /home/zoobab/soft/jtagscan [49]$ l
total 80
drwxr-xr-x 2 zoobab zoobab 4096 2006-05-31 19:14 avr
-rw-r--r-- 1 zoobab zoobab 18007 2006-05-31 18:47 COPYING
-rw-r--r-- 1 zoobab zoobab 11124 2006-05-31 19:20 jtagscan.c
-rw-r--r-- 1 zoobab zoobab 28527 2006-05-28 20:08 jtagscan.glade
-rw-r--r-- 1 zoobab zoobab 115 2006-05-28 20:35 Makefile
-rw-r--r-- 1 zoobab zoobab 76 2006-05-31 18:46 README
-rw-r--r-- 1 zoobab zoobab 81 2006-05-25 15:14 relocations.avr
-rw-r--r-- 1 zoobab zoobab 686 2006-05-30 08:43 TODO
zoobab@gierek /home/zoobab/soft/jtagscan [50]$ cd avr/
zoobab@gierek /home/zoobab/soft/jtagscan/avr [51]$ l
total 40
-rw-r--r-- 1 zoobab zoobab 18007 2006-05-31 18:47 COPYING
-rw-r--r-- 1 zoobab zoobab 5270 2006-05-31 19:17 jtagscan-avr.c
-rw-r--r-- 1 zoobab zoobab 4530 2006-05-30 22:40 jtagscan-avr.hex
-rw-r--r-- 1 zoobab zoobab 316 2006-05-28 20:37 Makefile
Step 4: Install gcc-avr and avr-libc
zoobab@gierek /home/zoobab/soft/jtagscan/avr [56]$ sudo apt-get install avr-libc gcc-avr
Reading package lists... Done
Building dependency tree
Reading state information... Done
Suggested packages:
task-c-devel gcc-doc gcc-4.2
The following NEW packages will be installed:
avr-libc gcc-avr
0 upgraded, 2 newly installed, 0 to remove and 0 not upgraded.
Need to get 0B/8906kB of archives.
After this operation, 32.7MB of additional disk space will be used.
Selecting previously deselected package gcc-avr.
(Reading database ... 118728 files and directories currently installed.)
Unpacking gcc-avr (from .../gcc-avr_1%3a4.3.2-1_i386.deb) ...
Selecting previously deselected package avr-libc.
Unpacking avr-libc (from .../avr-libc_1%3a1.6.2.cvs20080610-2_all.deb) ...
Setting up gcc-avr (1:4.3.2-1) ...
Setting up avr-libc (1:1.6.2.cvs20080610-2) ...
Step 5: Make
zoobab@gierek /home/zoobab/soft/jtagscan/avr [57]$ make
avr-gcc -Wall -O3 -o jtagscan-avr -mmcu=atmega32 jtagscan-avr.c
avr-objdump -h -S jtagscan-avr > jtagscan-avr.lst
avr-objcopy -j .text -j .data -O ihex jtagscan-avr jtagscan-avr.hex
Step 6: Port it from ATMega32 to ATMega328
/***************************************************************************
* jtagscan-avr.c
*
* Wed May 31 18:57:23 2006
* Copyright 2006 Benedikt 'Hunz' Heinz
* jtagscan at hunz.org
* $Id: jtagscan-avr.c,v 1.1 2006/05/31 17:17:50 hunz Exp $
****************************************************************************/

/*
* This program is free software; you can redistribute it and/or modify
* it under the terms of the GNU General Public License as published by
* the Free Software Foundation; either version 2 of the License, or
* (at your option) any later version.
*
* This program is distributed in the hope that it will be useful,
* but WITHOUT ANY WARRANTY; without even the implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
* GNU Library General Public License for more details.
*
* You should have received a copy of the GNU General Public License
* along with this program; if not, write to the Free Software
* Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA.
*/

#include
#include

void uart_init(void) {
UBRR0L = UBRR0H = UCSR0A = 0;
UCSR0B = ((1<>3] |= (1<<(pins[0]&7)); iocfg[pins[1]>>3] |= (1<<(pins[1]&7)); iocfg[pins[2]>>3] |= (1<<(pins[2]&7)); GPIOR1 = iocfg[0]; DDRB = iocfg[1]; DDRC = iocfg[2]; DDRD = iocfg[3]; GPIOR2 = iocfg[4]; PORTB = iocfg[5]; PORTC = iocfg[6]; PORTD = iocfg[7]; } uint8_t shifts[32], matches[32]; #define SHIFT_TMS 0 #define SHIFT_TDI 0x10 void shift(uint8_t data, uint8_t len) { uint8_t cnt, tck_port,tck_pin,port,pin; uint8_t delay, inp=0, count_matches = len & SHIFT_TDI; if(len&SHIFT_TDI) { port=pins[TDI_PIN]>>3;
pin=pins[TDI_PIN]&7;
}
else {
port=pins[TMS_PIN]>>3;
pin=pins[TMS_PIN]&7;
}

tck_port=pins[TCK_PIN]>>3;
tck_pin=pins[TCK_PIN]&7;

len&=0x0f;

/* shift */
while(len--) {

/* TCK=0 */
if(tck_port == 0)
GPIOR1 &= ~(1<>3) == 0)
inp=GPIOR2;
else if((cnt>>3) == 1)
inp=PINB;
else if((cnt>>3) == 2)
inp=PINC;
else
inp=PIND;
}

shifts[cnt]>>=1;
shifts[cnt]|= (inp&1)<<7 data-blogger-escaped-inp="">>=1;

//if(cnt == pins[TDI_PIN])
//uart_tx(shifts[cnt]);

if( (shifts[cnt] == cfg[CFG_TDIBITS]) && (matches[cnt]<255 data-blogger-escaped-0="" data-blogger-escaped-1="" data-blogger-escaped-2="" data-blogger-escaped-cnt="" data-blogger-escaped-count_matches="" data-blogger-escaped-data="" data-blogger-escaped-delay="" data-blogger-escaped-else="" data-blogger-escaped-gpior1="" data-blogger-escaped-if="" data-blogger-escaped-matches="" data-blogger-escaped-portb="" data-blogger-escaped-portc="" data-blogger-escaped-portd="" data-blogger-escaped-tck="1" data-blogger-escaped-tck_pin="" data-blogger-escaped-tck_port="=">>= 1;
}

}

void scan() {
uint8_t cnt;

for(cnt=0;cnt<32 data-blogger-escaped-0x7f="" data-blogger-escaped-back="" data-blogger-escaped-cfg="" data-blogger-escaped-cnt="" data-blogger-escaped-for="" data-blogger-escaped-get="" data-blogger-escaped-if="" data-blogger-escaped-int="" data-blogger-escaped-into="" data-blogger-escaped-ir="" data-blogger-escaped-jtscan="" data-blogger-escaped-main="" data-blogger-escaped-matches="" data-blogger-escaped-pins="" data-blogger-escaped-reset="" data-blogger-escaped-results="" data-blogger-escaped-send="" data-blogger-escaped-shift="" data-blogger-escaped-shifts="" data-blogger-escaped-state="" data-blogger-escaped-the="" data-blogger-escaped-uart_init="" data-blogger-escaped-uart_tx="" data-blogger-escaped-uint8_t="" data-blogger-escaped-val="" data-blogger-escaped-void="" data-blogger-escaped-while="" data-blogger-escaped-x1f="" data-blogger-escaped-x5f="" data-blogger-escaped-x80="">> 2);
pins[2] = uart_rcv();

pins[1] = (val & 3) << 3; pins[1] |= (pins[2] >> 5);

pins[2] &= 0x1f;

set_ios();

scan();
}

/* config */
else if(val == 0x40) {

for(val=0; val < CFG_LEN; val++) cfg[val] = uart_rcv(); uart_tx(0x40); } else if(val == 0x00) { GPIOR1 = uart_rcv(); DDRB = uart_rcv(); DDRC = uart_rcv(); DDRD = uart_rcv(); uart_tx(0); } else if(val == 0x01) { GPIOR2 = uart_rcv(); PORTB = uart_rcv(); PORTC = uart_rcv(); PORTD = uart_rcv(); uart_tx(1); } else if(val == 0x02) { uart_tx(GPIOR0); uart_tx(PINB); uart_tx(PINC); uart_tx(PIND); } /* TODO: TMS / TDI / get TDO / direct IO */ } /* loop */ return 0; }
zoobab@gierek /home/zoobab/soft/jtagscan/avr [59]$ l
total 76
-rw-r--r-- 1 zoobab zoobab 18007 2006-05-31 18:47 COPYING
-rwxr-xr-x 1 zoobab zoobab 5823 2009-06-08 21:05 jtagscan-avr
-rw-r--r-- 1 zoobab zoobab 5270 2006-05-31 19:17 jtagscan-avr.c
-rw-r--r-- 1 zoobab zoobab 4403 2009-06-08 21:05 jtagscan-avr.hex
-rw-r--r-- 1 zoobab zoobab 28373 2009-06-08 21:05 jtagscan-avr.lst
-rw-r--r-- 1 zoobab zoobab 316 2006-05-28 20:37 Makefile
zoobab@gierek /home/zoobab/soft/jtagscan/avr [60]$ file ./jtagscan-avr
./jtagscan-avr: ELF 32-bit LSB executable, Atmel AVR 8-bit, version 1 (SYSV), statically linked, not stripped
Step 7: install libglade2-dev
zoobab@gierek /home/zoobab/soft/jtagscan [34]$ sudo apt-get install libglade2-dev
Reading package lists... Done
Building dependency tree
Reading state information... Done
Suggested packages:
glade glade-gnome
The following NEW packages will be installed:
libglade2-dev
0 upgraded, 1 newly installed, 0 to remove and 0 not upgraded.
Need to get 0B/85.8kB of archives.
After this operation, 545kB of additional disk space will be used.
Selecting previously deselected package libglade2-dev.
(Reading database ... 124542 files and directories currently installed.)
Unpacking libglade2-dev (from .../libglade2-dev_1%3a2.6.4-1_i386.deb) ...
Processing triggers for doc-base ...
Processing 1 added doc-base file(s)...
Registering documents with scrollkeeper...
Processing triggers for man-db ...
Setting up libglade2-dev (1:2.6.4-1) ...
Step 9: Flash the Arduino with avrdude

You need avrdude version 5.6 at the minimum if you have an Arduino with an ATmega328p.
root@gierek /home/zoobab/soft/jtagscan/avr [23]# avrdude -p m328p -P /dev/ttyUSB0 -c stk500v1 -b 57600 -F -u -U flash:w:jtagscan-avr.hex

avrdude: AVR device initialized and ready to accept instructions

Reading | ################################################## | 100% 0.05s

avrdude: Device signature = 0x1e950f
avrdude: NOTE: FLASH memory has been specified, an erase cycle will be performed
To disable this feature, specify the -D option.
avrdude: erasing chip
avrdude: reading input file "jtagscan-avr.hex"
avrdude: input file jtagscan-avr.hex auto detected as Intel Hex
avrdude: writing flash (1742 bytes):

Writing | ################################################## | 100% 0.87s

avrdude: 1742 bytes of flash written
avrdude: verifying flash memory against jtagscan-avr.hex:
avrdude: load data flash data from input file jtagscan-avr.hex:
avrdude: input file jtagscan-avr.hex auto detected as Intel Hex
avrdude: input file jtagscan-avr.hex contains 1742 bytes
avrdude: reading on-chip flash data:

Reading | ################################################## | 100% 0.74s

avrdude: verifying ...
avrdude: 1742 bytes of flash verified

avrdude done. Thank you.
Arduinull

LeKernel rewrote the whole thing with Arduinull (arduinull.c, arduinull.hex, Makefile). You can access the terminal of the application with GtkTerm or minicom over /dev/ttyUSB0. You can connect the 4 pins of the arduino analog connector (the 6 pins) and do not forget to connect the ground with one pin from the neighboor connector. Put some resistors (value XXX ohms) between the pins of the board you think they might be JTAG and the arduino pins. More screenshots coming soon.

Posted in:

0 comments:

Post a Comment