frontpage.
newsnewestaskshowjobs

Made with ♥ by @iamnishanth

Open Source @Github

fp.

Open in hackernews

Booting the RP2350 from UART

https://pfister.dev/blog/2025/rp2350-uart-bl.html
89•hugolundin•5mo ago

Comments

vardump•5mo ago
One could also send a binary stub that sets up fast CPU clock speed and decompresses the rest of the firmware at the RP2350 side. Should be even faster.

Just like old C64 decrunchers and Amiga PowerPacker. Or Fabrice Bellard's LZEXE. (Is there anything that guy did NOT write?!)

duskwuff•5mo ago
In principle, you could boot the RP2040 over SWD. It'd be much more difficult to code, but the possibility is there...
flyingcircus3•5mo ago
Are you implying the SWD signals would send the RAM contents every time? If I had to do that, I would first use a logic analyzer like Saleae to capture the SWD signals of a JLink performing the necessary operations to load the image into RAM. Then figure out, from the bytes that get send and received, whatever needs to be parameterized, and where to put the image data itself, perhaps by capturing different scenarios, and seeing what changes. Maybe even look up the SWD spec. You would also need to figure out what kind of back and forth is necessary, what must block waiting for a response. From there, assuming there isn't cryptography involved, it just becomes a matter of providing bytes to a bus in the correct order or timing based on the proper events. Some of those bytes are "canned" and never change. Some of them are parameters that describe some important quantity relevant your specific image. And the rest are your firmware image, probably chunked up with some overhead wrapped around it. I allow for the possibility that SWD is far more complex than I imagine, but this approach works pretty well for figuring out whats going on with SPI or I2C or BLE.
duskwuff•5mo ago
SWD and the associated debug interfaces are all documented by ARM; there's no need to reverse-engineer anything here. See the ADIv5 documentation [1] for a starter.

[1]: https://developer.arm.com/documentation/ihi0031/a

dmitrygr•5mo ago
ADIv6 for RP2350 (!important)
bsder•5mo ago
> I allow for the possibility that SWD is far more complex than I imagine, but this approach works pretty well for figuring out whats going on with SPI or I2C or BLE.

SWD is pretty well documented. I won't claim its simple, but, in my opinion, it's decent at what it does. The RISC-V folks haven't seemed to be able to do better (and, IMO, did quite a bit worse in a few places, actually).

The SWD description at the packet/command level: https://arm-software.github.io/CMSIS-DAP/latest/index.html

There is open source code directly from ARM for it: https://github.com/ARMmbed/DAPLink/tree/main/source/daplink/...

The documentation of the actual wire protocol is also extensive, but a little more scattered: https://developer.arm.com/documentation/ihi0031/a?lang=en https://community.nxp.com/pwmxy87654/attachments/pwmxy87654/...

The big problem with the SWD wire protocol ARM documentation (and everybody who copies it) is that they don't point out the fact that when you go from Write-to-Read the active edge of the clock changes. In SPI-speak, you switch from CPHA=1 to CPHA=0. This makes sense if you stop to think about it for a moment because during debug there is no clock. Consequently, SWD must provide the clock and you switch from "put something on DATA a half phase early->pulse clock to make chip do something with it" to "pulse clock which makes chip put something on Data->read it a half phase later". However, if it has never been pointed out to you before, it's likely to trip you up.

Sigrok (or similar) which can decode SWD properly and a digital signal analyzer (even a cheap $10 one) are your friends.

The only diagrams which seem to resemble scope traces that point this out are on obscure Chinese engineering blogs.

jdbxbdjehe•5mo ago
This is completely unnecessary since SWD is both trivial as well as well documented
duskwuff•5mo ago
Well... I wouldn't call it "trivial". But it is documented.
gadgetoid•5mo ago
We (Pimoroni) actually shipped this technique in PicoVision, used to load the “GPU” firmware (an RP2040 used to offload the HDMI signal generation) at runtime-

https://github.com/pimoroni/picovision/blob/main/drivers/dv_...

no_time•5mo ago
What are the advantages of doing this instead booting it through UART? Speed perhaps?
vardump•5mo ago
I think RP2040 does not support UART booting.
gadgetoid•5mo ago
In theory you wouldn’t even need to load firmware- you could just manipulate the relevant registers directly over SWD for the silliest IO expander.

In our case it was the only choice. I’d say we’d use UART now but the RP2350 can pretty much do it all in one chip.

mschuster91•5mo ago
There's nothing speaking "version 1.0" more than a bunch of stuff just manually soldered as piggyback over other components of the board :D

Thanks for the writeup.

mrheosuper•5mo ago
this is also how some BLE controller boot.
kees99•5mo ago
Some wifi controllers can also boot like that. In particular ESP8089 chip that shipped with some android tablets circa 2012-2014.

Later, Espressif took that chip, modified bootrom to be able to boot from an SPI flash as well, and marketed that variant as "ESP8266". Serial bootloader was kept as a debug/programming interface, and that was inherited to ESP32 and later chips. All of which can boot directly from serial.

bluehex•5mo ago
This is awesome. I've had similar ideas but wasn't able to do any prototyping yet as I only have Pico 2 boards that don't expose the CSn pin in the pinout.

Rather than UART booting every time I thought it might be nice to use UART Boot just as a way to deliver the firmware update to the sub chip - so the UART image you load would just be a program that accepts a larger image (over UART again) and would write to the flash for subsequent boots. I think that would get around the SRAM and boot time downsides the author mentioned. Is there a reason this might not work?

vardump•5mo ago
That requires having a flash chip in the first place. By booting via UART you don't need any flash at all.
zoobab•5mo ago
The CH32V003 has also a UART bootloader, but for some reason there is no open source command line client to do something with it. WCH has a Windows GUI though.
devdri•5mo ago
This is one of the tricks to enable using both QSPI slots for PSRAM instead of the typical FLASH+PSRAM.

This is great for making audio modules, where the firmware is be small and operates on a big audio buffer. Since the biggest available PSRAM chips are 8MB, this combined 16 MB could hold around 3 minutes of mono 16-bit audio, which allows for a very nice multi track looper.

Another way (in case there's no other MCU to help with uart bootstrap) would be to add a logic chip to multiplex the CS line between Flash and the first PSRAM - copy firmware to flash and then switch to using ram.

ThrowawayR2•5mo ago
Are there any off-the-shelf hobbyist boards that expose QSPI CSn (pin 75 on the RP2350B?) and QPI_SD1-3 signals to a header or pin? Doesn't seem like the official Pico 2 or the Adafruit or Pimoroni versions of the Pico 2 expose access to these signals without modifying the board, which most people won't be able to do.
ptorrone•5mo ago
https://www.adafruit.com/product/6000 has the pads for external PSRAM you can connect to the QSPI pins there (pt @ adafruit)

Affinity Studio now free

https://www.affinity.studio/get-affinity
658•dagmx•7h ago•507 comments

Why We're Never Using Wise Again – A Cautionary Tale from a Business Burned

https://shaun.nz/why-were-never-using-wise-again-a-cautionary-tale-from-a-business-burned/
21•jemmyw•25m ago•6 comments

The ear does not do a Fourier transform

https://www.dissonances.blog/p/the-ear-does-not-do-a-fourier-transform
296•izhak•6h ago•99 comments

If a pilot ejects, what is the autopilot programmed to do? (2018)

https://aviation.stackexchange.com/questions/52862/if-a-pilot-ejects-what-is-the-autopilot-progra...
34•avestura•1h ago•32 comments

Phone numbers for use in TV shows, films and creative works

https://www.acma.gov.au/phone-numbers-use-tv-shows-films-and-creative-works
24•nomilk•1h ago•10 comments

TruthWave – A platform for corporate whistleblowers

https://www.truthwave.com
77•mannuch•4h ago•30 comments

Springs and bounces in native CSS

https://www.joshwcomeau.com/animation/linear-timing-function/
93•feross•2d ago•17 comments

NPM flooded with malicious packages downloaded more than 86k times

https://arstechnica.com/security/2025/10/npm-flooded-with-malicious-packages-downloaded-more-than...
107•jnord•22h ago•54 comments

987654321 / 123456789

https://www.johndcook.com/blog/2025/10/26/987654321/
467•ColinWright•4d ago•80 comments

Minecraft HDL, an HDL for Redstone

https://github.com/itsfrank/MinecraftHDL
86•sleepingreset•4h ago•11 comments

Lenses in Julia

https://juliaobjects.github.io/Accessors.jl/stable/lenses/
41•samuel2•4d ago•1 comments

Free software scares normal people

https://danieldelaney.net/normal/
396•cryptophreak•8h ago•267 comments

Denmark reportedly withdraws Chat Control proposal following controversy

https://therecord.media/demark-reportedly-withdraws-chat-control-proposal
65•layer8•1h ago•3 comments

Show HN: I made a heatmap diff viewer for code reviews

https://0github.com
150•lawrencechen•8h ago•46 comments

Launch HN: Propolis (YC X25) – Browser agents that QA your web app autonomously

https://app.propolis.tech/#/launch
85•mpapazian•6h ago•24 comments

Show HN: Run a GitHub Actions step in a gVisor sandbox

https://github.com/geomys/sandboxed-step
39•FiloSottile•6d ago•0 comments

The Psychology of Portnoy: On the Making of Philip Roth's Groundbreaking Novel

https://lithub.com/the-psychology-of-portnoy-on-the-making-of-philip-roths-groundbreaking-novel/
4•lermontov•1w ago•0 comments

Learn Multiplatform Z80 Assembly Programming with Vampires

https://www.chibiakumas.com/z80/
48•surprisetalk•4d ago•4 comments

Israel demanded Google and Amazon use secret 'wink' to sidestep legal orders

https://www.theguardian.com/us-news/2025/oct/29/google-amazon-israel-contract-secret-code
547•skilled•1d ago•220 comments

Show HN: ekoAcademic – Convert ArXiv papers to interactive podcasts

https://www.wadamczyk.io/projects/ekoacademic/index.html
25•wadamczyk•2h ago•6 comments

Show HN: Meals You Love – AI-powered meal planning and grocery shopping

https://mealsyoulove.com
33•tylertreat•3d ago•19 comments

Zig's New Async I/O

https://andrewkelley.me/post/zig-new-async-io-text-version.html
215•todsacerdoti•1d ago•62 comments

Jujutsu at Google [video]

https://www.youtube.com/watch?v=v9Ob5yPpC0A
110•Lanedo•10h ago•107 comments

Show HN: Ellipticc Drive – open-source cloud drive with E2E and PQ encryption

https://ellipticc.com
4•iliasabs•3h ago•2 comments

Independently verifying Go's reproducible builds

https://www.agwa.name/blog/post/verifying_go_reproducible_builds
86•speckx•1d ago•3 comments

ZOZO's Contact Solver for physics-based simulations

https://github.com/st-tech/ppf-contact-solver
62•vintagedave•7h ago•32 comments

Show HN: In a single HTML file, an app to encourage my children to invest

https://roberdam.com/en/dinversiones.html
178•roberdam•12h ago•334 comments

I have released a 69.0MB version of Windows 7 x86

https://twitter.com/XenoPanther/status/1983477707968291075
133•rvnx•5h ago•64 comments

US declines to join more than 70 countries in signing UN cybercrime treaty

https://therecord.media/us-declines-signing-cybercrime-treaty?
290•pcaharrier•8h ago•182 comments

PlanetScale Offering $5 Databases

https://planetscale.com/blog/5-dollar-planetscale
94•ryanvogel•7h ago•41 comments