FAQs
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Replace Factory Bootloader with Custom Secure Bootloader on STM32U3 ?

ashraf21
Associate

‎2025-06-10 4:36 AM - last edited on ‎2025-06-10 5:01 AM by

Hi ST Community,

 

I’m working on a secure boot implementation for the STM32U3 series and need to replace the factory ROM bootloader with my custom secure bootloader. Here’s what I’d like to clarify:

 

Can We Fully Remove the Factory Bootloader?

  • The STM32U3’s ROM bootloader (System Memory) is in masked ROM, so is it even possible to erase or disable it completely?
  • If not, what’s the most secure way to bypass it and ensure the MCU always boots from my custom bootloader in Flash?
Labels:
0 Kudos
2 REPLIES 2
Andrew Neil
Super User

‎2025-06-10 5:00 AM

No, you can't replace it.

A complex system that works is invariably found to have evolved from a simple system that worked.
A complex system designed from scratch never works and cannot be patched up to make it work.
0 Kudos
TDK
Super User

‎2025-06-10 6:18 AM

> The STM32U3’s ROM bootloader (System Memory) is in masked ROM, so is it even possible to erase or disable it completely?

Read-only Memory (ROM) is read only and cannot be changed.

> If not, what’s the most secure way to bypass it and ensure the MCU always boots from my custom bootloader in Flash?

Change the option bytes such that the chip always boots to user flash, regardless of pin settings. Look at AN2606 and change NBOOT0 = NSWBOOT0 = 0 to avoid bootloader patterns.

If you feel a post has answered your question, please click "Accept as Solution".
Top