Litaba pata
1 ST Microelectronics STM32 Sesebelisoa sa ho Saena Software
2 Selelekela
3 Kenya STM32-SignTool
4 STM32-SignTool taelo ea mola oa taelo
5 Exampbakeng sa STM32-SignTool
6 LBH
7 Litokomane / Lisebelisoa
7.1 Litšupiso

ST Microelectronics STM32 Sesebelisoa sa ho Saena Software

Selelekela

Software ea sesebelisoa sa ho saena sa STM32 (e bitsoang STM32-SignTool tokomaneng ena) e kenyelelitsoe ho STM32CubeProgrammer (STM32CubeProg). STM32-SignTool ke sesebelisoa sa bohlokoa se tiisang sethala se sireletsehileng le se netefatsang ho saena ha litšoantšo tsa binary ho sebelisoa linotlolo tsa ECC tse hlahisoang ke software ea STM32-KeyGen (sheba buka ea mosebedisi tlhaloso ea software ea generator ea STM32 (UM2542) bakeng sa lintlha tse ling). Litšoantšo tsa binary tse saenneng li sebelisoa nakong ea tatellano e sireletsehileng ea bootle ea STM32 e ts'ehetsang ketane ea boot e tšepahalang. Ketso ena e netefatsa bonnete le tlhahlobo ea botšepehi ba litšoantšo tse kentsoeng. STM32-SignTool e hlahisa setšoantšo sa binary file, senotlolo sa sechaba file, le senotlolo sa lekunutu file. Setšoantšo sa binary file e na le data ea binary e lokelang ho hlophisoa bakeng sa sesebelisoa. Senotlolo sa setjhaba file e na le senotlolo sa sechaba sa ECC ka sebopeho sa PEM, se entsoeng ka STM32-KeyGen. Senotlolo sa poraefete file e na le senotlolo sa lekunutu sa ECC se kentsoeng ka sebopeho sa PEM, se hlahisitsoeng ka STM32-KeyGen. Binary e saennoeng file e ka boela ea hlahisoa ho tsoa ho e seng e saennoe file le sehlopha file mokgoa. Tabeng ena, litekanyo tse latelang ha li tlamehe: sebaka sa ho kena setšoantšong, aterese ea mojaro oa setšoantšo, le li-parameter tsa mofuta oa setšoantšo. Tokomane ena e sebetsa ho lihlahisoa tse thathamisitsoeng tafoleng e ka tlase.

Letlapa la 1. Lihlahisoa tse sebetsang

Mofuta oa sehlahisoa Nomoro ea karolo kapa letoto la lihlahisoa
Microcontroller Lethathamo la lintlha tsa STM32N6
Microprocessor Letoto la lihlooho tse STM32MP1 le STM32MP2

Likarolong tse latelang, STM32 e bua ka lihlahisoa tse thathamisitsoeng tafoleng e ka holimo, ntle le haeba ho boletsoe ka tsela e 'ngoe.

Kenya STM32-SignTool

Sesebelisoa sena se kentsoe le sephutheloana sa STM32CubeProgrammer (STM32CubeProg). Bakeng sa tlhahisoleseling e eketsehileng mabapi le mokhoa oa ho seta, sheba karolo ea 1.2 ea bukana ea mosebelisi tlhaloso ea software ea STM32CubeProgrammer (UM2237). Software ena e ts'ehetsa lihlahisoa tsa STM32 tse ipapisitseng le processor ea Arm® Cortex®.

Tlhokomeliso: Arm ke lets'oao la khoebo le ngolisitsoeng la Arm Limited (kapa liofisiri tsa eona) ho la US le/kapa libakeng tse ling.

STM32-SignTool taelo ea mola oa taelo

Likarolo tse latelang li hlalosa mokhoa oa ho sebelisa STM32-SignTool ho tsoa moleng oa taelo.

Litaelo

Litaelo tse fumanehang li thathamisitsoe ka tlase:

  • -setšoantšo sa binary(-bin), -input(-in)
    • Tlhaloso: setšoantšo sa binary file tsela (.bin extension)
    • Syntax: 1 -bin /home/User/binaryFile.bin
    • Syntax: 2 -in /home/User/binaryFile.bin
  • - mofuta oa setšoantšo (-iv)
    • Tlhaloso: e kenya mofuta oa setšoantšo sa setšoantšo se saenneng file
    • Sintax: -iv
  • - senotlolo sa lekunutu (-prvk)
    • Tlhaloso: senotlolo sa lekunutu file tsela (.pem extension)
    • Syntax: -prvkfile_tsela>
    • Example: -prvk ../privateKey.pem
  • –public-key -pubk
    • Tlhaloso: senotlolo sa sechaba file litselana
    • Syntax: -pubkFile_Tsela{1..8}>
      • Bakeng sa hlooho ea v1: sebelisa tsela e le 'ngoe feela ea bohlokoa bakeng sa lihlahisoa tsa STM32MP15xx
      • Bakeng sa sehlooho sa v2 le ho feta: sebelisa litsela tse robeli tsa bohlokoa bakeng sa ba bang
  • - password (-pwd)
    • Tlhaloso: phasewete ea senotlolo sa lekunutu (senotlolo sena se tlameha ho ba le bonyane litlhaku tse 'ne)
    • Example: -pwd azerty
    • • –load-address (-la)
    • Tlhaloso: aterese ea boima ba setšoantšo
    • Example: -la
  • - ntlha ea ho kena (-ep)
    • Tlhaloso: sebaka sa ho kena setšoantšong
    • Example: -ep
  • - lifolakha tsa khetho (-ea)
    • Tlhaloso: lifolakha tsa khetho ea setšoantšo (boleng ba kamehla = 0)
    • Example: -ea
  • -algorithm (-a)
    • Tlhaloso: e totobatsa e 'ngoe ea li-prime256v1 (boleng ba 1, kamehla) kapa brainpoolP256t1 (boleng 2)
    • Example: -a <2>
  • - sephetho (-o)
    • Tlhaloso: tlhahiso file tsela. Paramethara ena ke boikhethelo. Haeba e sa boleloa, tlhahiso file e hlahisoa mohloling o le mong file tsela (mohlalaample, setšoantšo sa binary file ke C:\BinaryFile.bin). Binary e saennweng file ke C:\BinaryFile_E saennoe.bin.
    • Syntax: -oFile_Tsela>
  • - mofuta (-t)
    • Tlhaloso: mofuta oa binary. Maemo a ka bang teng ke ssbl, fsbl, teeh, teed, teex, le copro
    • Syntax: -t
  • - khutsa (-s)
    • Tlhaloso: ha ho molaetsa o bonts'itsoeng bakeng sa ho khutlisa tlhahiso e teng file
  • –help (-h le -?)
    • Tlhaloso: e bontša thuso
  • - mofuta (-v)
    • Tlhaloso: E bonts'a mofuta oa sesebelisoa
  • -enc-dc (-encdc)
    • Tlhaloso: ho tlosoa ha "encryption" kamehla bakeng sa encryption ea FSBL [hlooho ea v2]
    • Syntax: -encdc
  • -enc-key (-enck)
    • Tlhaloso: Sephiri sa OEM file bakeng sa encryption ea FSBL [hlooho ea v2]
    • Syntax: -enck
  • -lahla hlooho (-lahla)
    • Tlhaloso: Hlalosa le ho lahla sehlooho sa setšoantšo
    • Syntax: -lahlaFile_Tsela>
  • Mofuta oa sehlooho (-hv)
    • Tlhaloso: mofuta oa sehlooho sa ho saena, boleng bo ka bang teng: 1, 2, 2.1, 2.2, le 2.3
    • Example bakeng sa STM32MP15xx: -hv 2
    • Example bakeng sa STM32MP25xx: -hv 2.2
    • Example bakeng sa STM32N6xxx: -hv 2.3
  • -ha ho linotlolo (-nk)
    • Tlhaloso: ho eketsa hlooho e se nang letho ntle le likhetho tsa bohlokoa
    • Tlhokomeliso: ho hlokahala ho tima khetho ea netefatso ka taelo ea lifolakha tsa khetho

Exampbakeng sa STM32-SignTool

E latelang exampe bonts'a mokhoa oa ho sebelisa STM32-SignTool:

Example 1

-bin /home/User/BinaryFile.bin –pubk /home/user/publicKey.pem –prvk /home/user/privateKey.pem –iv 5 –pwd azerty –la 0x20000000 –ep 0x08000000 Algorithm ya kamehla (prime256v1) e khethilwe mme boleng ba folaga ya kgetho bo khethilwe 0. The saennweng tlhahiso binary file (BinaryFile_Signed.bin) e thehiloe ho /home/user/ foldareng

Example 2

-bin /home/User/Folder1/BinaryFile.bin –pubk /home/user/publicKey.pem –prvk /home/user/privateKey.pem –iv 5 –pwd azerty –s –la 0x20000000 –ep 0x08000000 –a 2 –o /home/user/Folder2/Folder3/FolderFile.bin The BrainpoolP256t1 algorithm e khethiloe tabeng ena. Leha Folder2 le Folder3 li le sieo, lia bōptjoa. Ka taelo ea -s, leha a file e na le lebitso le tšoanang le boletsoeng, e nkeloa sebaka ntle le molaetsa ofe kapa ofe.

Example 3

Saena binary file ho sebelisa sehlooho sa 2 se kenyelletsang linotlolo tse robeli tsa sechaba bakeng sa phallo ea netefatso.

... azerty -t fsbl -iv 32x00 -la 01x02 -ep 03x04 -of 05x06 -o /home/user/output.stm07

Example 4

Saena binary file ho sebelisa sehlooho sa 2 se kenyelletsang linotlolo tse robeli tsa sechaba bakeng sa netefatso le phallo ea encryption.

./STM32_SigningTool_CLI.exe -bin /home/user/input.bin -pubk publicKey00.pem publicKey01.pem publicKey02.pem publicKey03.pem publicKey04.pem publicKey05.pem publicKey06.pem publicKey07.pem publicKey00. 0x00000000 -pwd azerty -la 0x20000000 -ep 0x08000000 -t fsbl -of 0x00000003 -encdc 0x25205f0e -enck /home/user/OEM_SECRET/outhotmustm.

Example 5

Netefatsa sets'oants'o se hlahisitsoeng ka ho arola tlhahiso file 'me u hlahlobe sebaka se seng le se seng sa lihlooho. ./STM32_SigningTool_CLI.exe -dump /home/user/output.stm32

Example 6

Kenya hlooho ntle le ho saena le ntle le ho kenya linotlolo. STM32_SigningTool_CLI.exe -in input.bin -nk -of 0x0 -iv 1 -hv 2.2 -o output.stm32

Mokhoa o ikemetseng

Ha o sebelisa STM32-SignTool ka mokhoa o ikemetseng, ho tlameha ho kengoa tsela e phethahetseng pele. Ho tla kopuoa phasewete habeli bakeng sa netefatso, joalo ka ha ho bonts'itsoe setšoantšong se ka tlase.

Setšoantšo sa 1. STM32-SignTool ka mokhoa o ikemetseng

Mehato e latelang ke e latelang:

  • Khetha e 'ngoe ea li-algorithms tse peli.
  • Kenya mofuta oa setšoantšo, sebaka sa ho kenela setšoantšo, le aterese ea phahlo ea setšoantšo.
  • Kenya khetho ea boleng ba folakha.

Sephetho se seng file tsela e ka hlalosoa ha ho hlokahala, kapa tobetsa Enter ho tsoela pele ka e teng.

PKCS#11 tharollo
Litšoantšo tsa binary tse saenneng li sebelisoa nakong ea tatellano e sireletsehileng ea bootle ea STM32 e ts'ehetsang ketane ea boot e tšepahalang.
Ketso ena e netefatsa bonnete le tlhahlobo ea botšepehi ba litšoantšo tse kentsoeng.
Taelo ea khale ea ho saena e kopa hore linotlolo tsohle tsa sechaba le tsa lekunutu li fanoe joalo ka tlhahiso files. Tsena ke
e fumanehang ka kotloloho ke motho ofe kapa ofe ya dumelletsweng ho phethahatsa tshebeletso ya ho saena. Qetellong, sena se ka nahanoa
ho ba leqhubu la tshireletso. Ho na le litharollo tse 'maloa tsa ho sireletsa linotlolo khahlanong le boiteko leha e le bofe ba ho utsoa lintlha tsa bohlokoa. Ho sena
moelelo oa taba, tharollo ea PKCS#11 e amohetsoe.
PKCS#11 API e ka sebelisoa ho sebetsana le ho boloka linotlolo tsa cryptographic. Sehokelo sena se hlalosa mokhoa oa ho
buisana le lisebelisoa tsa cryptographic tse kang HSMs (hardware security modules) le smartcards. The
sepheo sa lisebelisoa tsena ke ho hlahisa linotlolo tsa cryptographic le tlhahisoleseling ntle le ho hlahisa senotlolo sa lekunutu
lintho tse bonahalang lefatšeng le kantle.
Lisebelisoa tsa software li ka letsetsa API ho sebelisa lintho tsena bakeng sa:
• Hlahisa linotlolo tsa symmetric/asymmetric
• Encryption le decryption
• Ho khomphutha le ho netefatsa tshaeno ea dijithale
PKCS #11 e hlahisa lits'ebetso tse tloaelehileng, tse utloahalang view ea sesebelisoa se bitsoang "cryptographic token" le eona
e fana ka ID ea slot ho tokeneng ka 'ngoe. Sesebelisoa se tsebahatsa lets'oao leo e batlang ho se fumana ka ho hlakisa
ID sekotjana se loketseng.
STM32SigningTool e sebelisoa ho laola lintho tsa bohlokoa tse bolokiloeng ho smartcards le ts'ireletso e ts'oanang ea PKCS#11.
li-tokens moo linotlolo tsa lekunutu li sa tloheng sesebelisoa.
STM32SigningTool e sebelisa sebopeho sa PKCS#11 ho thetsa le ho saena li-binaries tsa ho kenya tse ipapisitseng le ECDSA.
linotlolo tsa sechaba/tse ikemetseng. Linotlolo tsena li bolokiloe ho li-tokens tsa tšireletso (hardware kapa software).

Litaelo tse ling tsa PKCS#11

  • –mojule (-m)
    • Tlhaloso: hlakisa mokhoa oa PKCS#11/Laebrari ho kenya (dll, kahoo)
    • Sintax:-m
    • • –key-index (-ki)
  • – key-index (-ki)
    • Tlhaloso: lethathamo la li-index tsa linotlolo tse sebelisitsoeng ka sebopeho sa hex
      • Sebelisa index e le 'ngoe bakeng sa lihlooho tsa v1 le li-index tse robeli bakeng sa hlooho ea v2 (e arotsoe ke sebaka)
    • Sintax: -ki
  • – slot-index (-si)
    • Tlhaloso: hlakisa index ea slot eo u ka e sebelisang (kamehla 0x0)
    • Syntax:-si
  • -slot-identifier (-sid)
    • Tlhaloso: hlakisa sekhetho sa slot seo u ka se sebelisang (ho ikhethela, ka sebopeho sa decimal kapa sa hexadecimal)
    • Syntax:-lehlakore
      • Haeba khetho -slot-identifier e sebelisoa ka nako e le 'ngoe le -slot-index, sesebelisoa se hlahloba hore na tlhophiso ena e lumellana le slot e tšoanang. Sesupo se bonahatsa index e boletsoeng; ho seng joalo, phoso e etsahala.
      • Hoa khoneha ho sebelisa -slot-identifier ntle le ho bolela -slot-index. Lisebelisoa li batla index ea slot ka mokhoa o hlophisehileng.
  • -active-keyIndex (-aki)
    • Tlhaloso: hlakisa index ea senotlolo e sebetsang (kamehla 0)
    • Syntax: -aki <hexValue >

PKH/PKTH file moloko

Kamora ts'ebetso ea ts'ebetso ea ho saena, sesebelisoa se hlahisa PKH ka mokhoa o hlophisehileng files ho sebelisoa ka morao bakeng sa fuse ea OTP.

  • PKH file e bitsoang pkcsHashPublicKey0x{active_key_index}.bin bakeng sa sehlooho sa v1
  • PKTH file e bitsoang pkcsPublicKeysHashHashes.bin bakeng sa sehlooho sa v2

Examples

Sesebelisoa se ka saena ho kenya files bakeng sa hlooho ea v1 le hlooho ea v2, ka phapang e nyane moleng oa taelo.

  • Sehlooho sa v1
    -bin input.bin -iv -pwd -la -p -t -ea -
    -index-key -aki 0 ​​–mojule – slot-index -o tlhahiso.stm32
  • Sehlooho sa v2
    -bin input.bin -iv -pwd -la -p -t -ea – -key-index -aki - mojule – slot-index -o tlhahiso.stm0

Phoso moleng oa taelo, kapa ho se khonehe ha sesebelisoa ho tseba lintho tsa bohlokoa tse tsamaellanang, ho etsa hore molaetsa oa phoso o hlahisoe. Sena se bontša mohloli oa bothata. SigningTool e khona ho sebelisa li-HSM tse lokiselitsoeng esale pele, 'me ha e etselitsoe ho laola kapa ho etsa lintho tse ncha tsa ts'ireletso. Ka hona, hoa hlokahala ho kenya software ea mahala ho theha tikoloho e loketseng. Joale linotlolo li ka hlahisoa, le tlhahisoleseling mabapi le lintho tse fumanoeng.

Khetho ea sekhetho sa slot:

  • -bin input.bin -mofuta fsbl -hv 1 -key-index 0x40 -aki 0 ​​-module softhsm2.dll -password prg-dev -ep 0x2ffe4000 -s -si 0 -sid 0x51a53ad8 -la 0x2ffc2500 -iv 0 -iv 0 -iv 80000000

Phoso examphanyane:

  • Lenane le sa sebetseng la slot

Setšoantšo sa 2. HSM TOKEN_NOT_RECOGNIZED
Ntho ea bohlokoa e sa tsejoeng e boletsoeng ho -key-index taelo

Setšoantšo sa 3. HSM OBJECT_HANDLE_INVALID

Sesebelisoa se tšoara lintho ka tatellano. Haeba e sa khone ho tseba lintho tsa bohlokoa tse bapisang tekong ea pele, ts'ebetso ea ho saena e emisa ts'ebetso. Joale molaetsa oa phoso o hlahisoa ho bontša mohloli oa bothata.

Nalane ea ntlafatso

Lethathamo la 2. Histori ea ntlafatso ea litokomane

Letsatsi Phetolelo Liphetoho
14-Feb-2019 1 Tokollo ea pele.
 

 

26-Nov-2021

  

 

2

 E ntlafalitsoe:

• Karolo ea 2.1: Litaelo

• Karolo ea 2.2: Exampbakeng sa STM32-SignTool

• E ekelitsoe Karolo ea 2.4: PKCS#11 tharollo
27-Phup-2022 3 E ntlafalitsoe Karolo ea 2.1: Litaelo
 

 

 

26-Phup-2024

  

 

 

4

 E nkeloe sebaka tokomaneng eohle:

• Letoto la STM32MP1 ka letoto la STM32MPx

• STM32MP1-SignTool ka STM32MP-SignTool

• STM32MP1-KeyGen ka STM32MP-KeyGen

E ntlafalitsoe -public-key -pubk le ho eketsoa -header-version (-hv) le -no-keys (- nk) ho Karolo ea 2.1: Litaelo.

E kentsoe "Example 6” Karolong ea 2.2: Exampbakeng sa STM32-SignTool.
 

 

 

14-Nov-2024

  

 

 

5

 E kentsoe:

• Letoto la STM32N6 ho lihlahisoa tse sebetsang E nkeloe sebaka tokomaneng eohle:

• STM32MP ka STM32

E ntlafalitsoe:

• Karolo ea 2.1: Litaelo
 

06-Mar-2025

  

6

 E ntlafalitsoe:

• Karolo ea 2.4.1: Litaelo tse ling tsa PKCS#11

• Karolo ea 2.4.3: Examples

TSEBISO EA BOHLOKOA – BALA KA HLOKO

STMicroelectronics NV le litšehetso tsa eona ("ST") li na le tokelo ea ho etsa liphetoho, litokiso, lintlafatso, lintlafatso, le lintlafatso ho STproducts le/kapa tokomaneng ena ka nako efe kapa efe ntle le tsebiso. Bareki ba lokela ho fumana lintlha tsa morao-rao tse amanang le lihlahisoa tsa ST pele ba fana ka litaelo. Lihlahisoa tsa ST li rekisoa ho latela lipehelo le maemo a thekiso ea ST ka nako ea tumello ea taelo. Bareki ke bona feela ba ikarabellang bakeng sa khetho, khetho, le tšebeliso ea lihlahisoa tsa ST mme ST ha e nke e le molato bakeng sa thuso ea kopo kapa moralo oa lihlahisoa tsa bareki. Ha ho laesense, e hlalositsoeng kapa e boletsoeng, ea tokelo efe kapa efe ea thepa ea mahlale e fanoeng ke ST mona. Ho rekisoa ha lihlahisoa tsa ST ka litokisetso tse fapaneng le tlhahisoleseding e boletsoeng mona ho tla hlakola waranti leha e le efe e fanoeng ke ST bakeng sa sehlahisoa se joalo. ST le logo ea ST ke matšoao a khoebo a ST. Bakeng sa lintlha tse ling mabapi le matšoao a ST, sheba ho www.st.com/trademarks. Mabitso a mang kaofela a lihlahisoa kapa litšebeletso ke thepa ea beng ba tsona. Lintlha tse tokomaneng ena li nkela sebaka le ho nkela tlhahisoleseding e neng e fanoe pele liphetolelong tsa pele tsa tokomane ena.

© 2025 STMicroelectronics – Litokelo tsohle li sirelelitsoe

LBH

  • P: Ke etsa eng haeba ke kopana le liphoso ha ke sebelisa STM32-SignTool?
    • A: Lekola syntax ea litaelo, etsa bonnete ba hore liparamente tsohle tse hlokahalang li fanoa ka nepo, 'me u shebe bukana ea mosebelisi bakeng sa malebela a ho rarolla mathata.
  • P: A na nka sebelisa STM32-SignTool lits'ebetsong tse fapaneng tsa ts'ebetso?
    • A: STM32-SignTool e etselitsoe ho sebetsa lits'ebetsong tse itseng tsa ts'ebetso. Sheba lintlha tsa software bakeng sa lintlha tse lumellanang.

Litokomane / Lisebelisoa

ST Microelectronics STM32 Sesebelisoa sa ho Saena Software [pdf] Bukana ea Mosebelisi
Letoto la STM32N6, STM32MP1, STM32MP2 series, STM32 Signing Tool Software, STM32, Software Tool Software, Tool Software, Software

Litšupiso

Tlohela maikutlo

Aterese ea hau ea lengolo-tsoibila e ke ke ea phatlalatsoa. Libaka tse hlokahalang li tšoailoe *