FAQs
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Will app based on CubeMX v6.11.1 (BSP1.28.0) FreeRTOS with MPU disabled work with STM32 Secure Boot

Go to solution
Torben1
Associate II

‎2024-05-09 06:42 PM

Hi,

I'm looking into introducing STM32 Secure Boot and Secure Firmware Update based on X-CUBE-SBSFU library on my project with app based on CubeMX v6.11.1 (BSP1.28.0).

I noted in CubeMX the MPU option is still not available for FreeRTOS - which is used by my application.

It looks like the Secure Boot will be using MPU, but the app won't - will this become a showstopper for Secure Boot?

 

Thanks,

Torben

0 Kudos
1 ACCEPTED SOLUTION

Accepted Solutions
Go to solution
Bubbles
ST Employee

‎2024-05-14 04:57 AM

Hi @Torben1,

you didn't mention for which STM32 MCU is the application intended. They are not equal in security features.

The secure boot, once finished, is then inactive. In most cases your application is free to reconfigure the MPU as necessary. Especially on H7, G4 or G0 the HDP or securable memory area hides the SB code and the MPU has no obligation to protect it.

So you can change or disable the MPU configuration without compromising the SB in any way.

BR,

J

To give better visibility on the answered topics, please click on Accept as Solution on the reply which solved your issue or answered your question.

View solution in original post

0 Kudos
4 REPLIES 4
Go to solution
Bubbles
ST Employee

‎2024-05-14 04:57 AM

Hi @Torben1,

you didn't mention for which STM32 MCU is the application intended. They are not equal in security features.

The secure boot, once finished, is then inactive. In most cases your application is free to reconfigure the MPU as necessary. Especially on H7, G4 or G0 the HDP or securable memory area hides the SB code and the MPU has no obligation to protect it.

So you can change or disable the MPU configuration without compromising the SB in any way.

BR,

J

To give better visibility on the answered topics, please click on Accept as Solution on the reply which solved your issue or answered your question.

0 Kudos
Go to solution
Torben1
Associate II

‎2024-05-14 10:08 AM

Hey @Bubbles,

I'm using STM32F429BI6 MCU using CubeMX v6.11.1 to configure FreeRTOS.

Using this toolset and MCU, the FreeRTOS configuration disables MPU.

I understand the MPU being disabled when running the FreeRTOS image will not affect Secure Boot functionality.

In this context, I suppose the question is answered, so thank you.

 

Out of curiosity, do you know what the reason behind disabling MPU for FreeRTOS is?

Br

Torben

 

0 Kudos
Go to solution
Bubbles
ST Employee
In response to Torben1

‎2024-05-14 11:39 PM

Hi @Torben1,

my expertise is more on SBSFU side than the FreeRTOS. I'm not sure but it's probably the goal of the FreeRTOS developers to start the code with clean sheet and remove any possible annoyances in advance.

I don't think it really needs to be disabled completely. MPU is not only matter of security, setting memory regions as cacheable or bufferable also affects performance and stability.

BR,

J

To give better visibility on the answered topics, please click on Accept as Solution on the reply which solved your issue or answered your question.

0 Kudos
Go to solution
Bubbles
ST Employee

‎2024-05-15 12:56 AM

PS, the STM32F4 series are not the security champion of the STM32 ecosystem. See for example AN5156 for comparison with other series. If the SBSFU uses PCROP, it's fine, but if the code you chose does not use it, write protection is the only protection of the boot code when the MPU is disabled.

To give better visibility on the answered topics, please click on Accept as Solution on the reply which solved your issue or answered your question.

0 Kudos
Top