Mataupu lalafi
1 ST Microelectronics STM32 Saini Meafaigaluega Polokalama
2 Folasaga
3 Fa'apipi'i le STM32-SignTool
4 STM32-SignTool fa'atonuga laina laina
5 Examples mo STM32-SignTool
6 FAQ
7 Pepa / Punaoa
7.1 Fa'asinomaga

ST Microelectronics STM32 Saini Meafaigaluega Polokalama

Folasaga

O le STM32 signing tool software (fa'aigoa STM32-SignTool i lenei pepa) ua tu'ufa'atasia i le STM32CubeProgrammer (STM32CubeProg). STM32-SignTool o se meafaigaluega autu e faʻamaonia ai se tulaga malupuipuia ma faʻamautinoa le sainia o ata binary e faʻaaoga ai ki ECC na gaosia e le STM32-KeyGen software (silasila i le tusi faʻaoga STM32 key generator software description (UM2542) mo nisi faʻamatalaga). O ata fa'amau saini o lo'o fa'aogaina i le taimi ole STM32 fa'amautu fa'asologa o ta'avale e lagolagoina ai se filifili fa'alagolago. O lenei gaioiga e faʻamautinoa ai le faʻamaonia ma le faʻamaoni o le siakiina o ata o loʻo utaina. STM32-SignTool e fa'atupuina se ata fa'alua file, o se ki mo tagata lautele file, ma se ki patino file. Le ata binary file o lo'o i ai fa'amaumauga binary e fa'apolokalameina mo le masini. O le ki lautele file o lo'o i ai le ECC lautele ki i le PEM format, fa'atupuina ma le STM32-KeyGen. Le ki patino file o lo'o i ai le ki fa'ailoga ECC fa'apitoa ile fa'atulagaina PEM, fa'atupu ile STM32-KeyGen. Se binary saini file e mafai foi ona gaosia mai se ua uma ona sainia file ma le vaega file faiga. I le tulaga lea, e le fa'atulafonoina ta'iala o lo'o mulimuli mai: o le fa'ailoga ata, le tuatusi o le uta ata, ma le fa'asologa o ata. O lenei pepa e faʻatatau i oloa o loʻo lisiina i le laulau i lalo.

Fuafuaga 1. Oloa talafeagai

Ituaiga oloa Numera vaega po'o fa'asologa o oloa
Laiti uila STM32N6 fa'asologa
Microprocessor STM32MP1 ma STM32MP2 faasologa

I vaega o loʻo mulimuli mai, STM32 e faʻatatau i oloa o loʻo lisiina i luga o le laulau, seʻi vagana ua faʻaalia.

Fa'apipi'i le STM32-SignTool

O lenei meafaigaluega ua faʻapipiʻiina i le STM32CubeProgrammer package (STM32CubeProg). Mo nisi fa'amatalaga e uiga i le fa'atulagaina o faiga, va'ai i le vaega 1.2 o le tusi fa'aoga STM32CubeProgrammer software description (UM2237). O lenei polokalama e lagolagoina STM32 oloa e faʻavae i luga o le Arm® Cortex® processor.

Fa'aaliga: O le Arm o se fa'ailoga fa'amaufa'ailoga a le Arm Limited (po'o ona lala) i le US ma/po'o se isi mea.

STM32-SignTool fa'atonuga laina laina

O vaega nei o lo'o fa'amatalaina pe fa'apefea ona fa'aoga STM32-SignTool mai le laina fa'atonu.

Poloaiga

O fa'atonuga avanoa o lo'o lisi atu i lalo:

  • –ata-binary(-bin), –input(-in)
    • Fa'amatalaga: ata binary file ala (.bin extension)
    • Syntax: 1 -bin /home/User/binaryFile.bin
    • Syntax: 2 -i totonu /home/User/binaryFile.bin
  • –faiga-ata (-iv)
    • Fa'amatalaga: ulufale i le ata ata o le ata saini file
    • Fa'asologa: -iv
  • –private-key (-prvk)
    • Fa'amatalaga: ki patino file ala (.pem extension)
    • Syntax: -prvkfile_ala>
    • Example: -prvk ../privateKey.pem
  • –public-key -pubk
    • Fa'amatalaga: ki lautele file ala
    • Syntax: -pubkFile_Ala{1..8}>
      • Mo le ulutala v1: fa'aaoga na'o le tasi le ala autu mo oloa STM32MP15xx
      • Mo ulutala v2 ma sili atu: fa'aaoga auala autu e valu mo isi
  • –password (-pwd)
    • Fa'amatalaga: fa'aupuga o le ki tuma'oti (o lenei fa'aupuga e tatau ona i ai a itiiti ifo ma le fa mataitusi)
    • Example: -pwd azerty
    • • –tulaga-tuatusi (-la)
    • Fa'amatalaga: tuatusi uta ata
    • Example: -la
  • –ulu-ulu (-ep)
    • Fa'amatalaga: fa'ailoga ata
    • Example: -ep
  • –filifiliga-fua (-o)
    • Fa'amatalaga: fu'a filifiliga ata (taua masani = 0)
    • Example: -o
  • –algoritm (-a)
    • Fa'amatalaga: fa'ailoa mai se tasi o prime256v1 (taua 1, faaletonu) po'o brainpoolP256t1 (taua 2)
    • Example: -a <2>
  • –uluga (-o)
    • Fa'amatalaga: gaosiga file ala. O lenei parakalafa e filifili. Afai e le faʻamaonia, o le gaioiga file e gaosia i le puna lava e tasi file ala (mo faʻataʻitaʻigaample, le ata binary file o le C:\BinaryFile.bin). Le saini binary file o le C:\BinaryFile_Signed.bin.
    • Fa'asologa: -oFile_Ala>
  • –ituaiga (-t)
    • Fa'amatalaga: ituaiga binary. O fa'atauga e ono mafai o ssbl, fsbl, teeh, teed, teex, ma le copro
    • Fa'asologa: -t
  • –filemu (-s)
    • Fa'amatalaga: leai se fe'au na fa'aalia mo le suiina o se galuega o lo'o iai file
  • –fesoasoani (-h ma le -?)
    • Fa'amatalaga: fa'aalia fesoasoani
  • –faiga (-v)
    • Fa'amatalaga: fa'aalia le fa'asologa o meafaigaluega
  • –enc-dc (-encdc)
    • Fa'amatalaga: fa'ailoga fa'ailoga tumau mo fa'ailoga FSBL [ulutala v2]
    • Syntax: -encdc
  • –enc-key (-enck)
    • Faʻamatalaga: OEM faalilolilo file mo fa'ailoga FSBL [ulutala v2]
    • Syntax: -enck
  • –talatala-uluulu (–dump)
    • Fa'amatalaga: fa'asolo ma lafoa'i ulutala ata
    • Syntax: -tu'uFile_Ala>
  • –ulutala-faiga (-hv)
    • Fa'amatalaga: fa'ailoga fa'aulutala, fa'atatauga talafeagai: 1, 2, 2.1, 2.2, ma le 2.3
    • Example mo STM32MP15xx: -hv 2
    • Example mo STM32MP25xx: -hv 2.2
    • Example mo STM32N6xxx: -hv 2.3
  • –leai ni ki (-nk)
    • Fa'amatalaga: fa'aopoopo le ulutala gaogao e aunoa ma ni filifiliga autu
    • Fa'aaliga: mana'omia le fa'amalo le fa'amaoniaina o le filifiliga ma le fa'atonuga o fu'a

Examples mo STM32-SignTool

O le exampfa'aalia le fa'aogaina o le STM32-SignTool:

Example 1

-bin /home/User/BinaryFile.bin –pubk /home/user/publicKey.pem –prvk /home/user/privateKey.pem –iv 5 –pwd azerty –la 0x20000000 –ep 0x08000000 O le algorithm faaletonu (prime256v1) ua filifilia ma o le tau o le fu'a o le filifiliga o le 0 (default value value). Le fa'ailoga fa'ailoga saini file (PinariFile_Signed.bin) ua faia i le /home/user/ folder

Example 2

-bin /home/User/Folder1/BinaryFile.bin –pubk /home/user/publicKey.pem –prvk /home/user/privateKey.pem –iv 5 –pwd azerty –s –la 0x20000000 –ep 0x08000000 –a 2 –o /home/user/Folder2/signedFile.bin O le BrainpoolP256t1 algorithm ua filifilia i lenei tulaga. E tusa lava pe leai Folder2 ma Folder3, ua faia. Faatasi ai ma le -s poloaiga, tusa lava pe a file o loʻo i ai ma le igoa faʻamaonia tutusa, e otometi lava ona suia e aunoa ma se feʻau.

Example 3

Saini se binary file fa'aaoga le ulutala fa'aulu 2 lea e aofia ai ki fa'alaua'itele e valu mo le fa'agasologa o fa'amaoniga.

./STM32_SigningTool_CLI.exe -bin /home/user/input.bin -pubk publicKey00.pem publicKey01.pem publicKey02.pem publicKey03.pem publicKey04.pem publicKey05.pem publicKey06.pem publicKey07.pem publicKey00.pem a privateKey0.pem fsbl -iv 00000000x0 -la 20000000x0 -ep 08000000x0 -of 80000001x32 -o /home/user/output.stmXNUMX

Example 4

Saini se binary file fa'aaoga le ulutala fa'aulu 2 lea e aofia ai ki fa'alaua'itele e valu mo le fa'amaoni fa'atasi ai ma le fa'ailoga fa'ailoga.

./STM32_SigningTool_CLI.exe -bin /home/user/input.bin -pubk publicKey00.pem publicKey01.pem publicKey02.pem publicKey03.pem publicKey04.pem publicKey05.pem publicKey06.pem publicKey07.pem publicKey00.pem publicKey0.pem publicKey00000000.pem 0x20000000 -pwd azerty -la 0x08000000 -ep 0x00000003 -t fsbl -of 0x25205 -encdc 0x32fXNUMXe -enck /home/user/OEM_SECRET.bin/outputst

Example 5

Fa'amaonia le ata na maua e ala i le fa'avasegaina o mea e maua file ma siaki fanua ulutala taitasi. ./STM32_SigningTool_CLI.exe -dump /home/user/output.stm32

Example 6

Fa'aopoopo se ulutala e aunoa ma le saini ma aunoa ma le fa'aogaina o ki. STM32_SigningTool_CLI.exe -in input.bin -nk -of 0x0 -iv 1 -hv 2.2 -o output.stm32

Faiga tuto'atasi

A fa'atino le STM32-SignTool ile tulaga tuto'atasi, e tatau ona fa'aulu muamua se ala sa'o. Ona talosagaina faalua lea o se upu faataga mo le faamaoniga, e pei ona faaalia i le ata i lalo.

Ata 1. STM32-SignTool ile tulaga tuto'atasi

O laasaga nei e sosoo ai:

  • Filifili se tasi o algorithms e lua.
  • Ulufale i le fa'asologa o ata, le mea e ulufale ai ata, ma le tuatusi uta ata.
  • Ulufale le tau o le fu'a filifiliga.

O le isi galuega faatino file e mafai ona faʻamaonia le ala pe a manaʻomia, pe lolomi le ulufale e faʻaauau ai le mea o iai.

PKCS#11 fofo
O ata fa'amau saini o lo'o fa'aogaina i le taimi ole STM32 fa'amautu fa'asologa o ta'avale e lagolagoina ai se filifili fa'alagolago.
O lenei gaioiga e faʻamautinoa ai le faʻamaonia ma le faʻamaoni o le siakiina o ata o loʻo utaina.
O le fa'atonuga masani o le sainia e mana'omia le tu'uina atu uma o ki fa'alaua'itele ma fa'apitoa e fai ma fa'aoga files. O nei mea
e mafai ona maua sa'o e so'o se tagata ua fa'atagaina e fa'atino le tautua saini. Mulimuli ane, e mafai ona mafaufauina lenei mea
ia avea ma se puipuiga malu. E tele fofo e puipuia ai ki mai so'o se taumafaiga e gaoi fa'amatalaga autu. I lenei
anotusi, ua talia le fofo PKCS#11.
O le PKCS#11 API e mafai ona fa'aoga e fa'atautaia ma teu ai ki fa'ailoga. O lenei atina'e e fa'amaoti mai pe fa'afefea
feso'ota'i ma masini fa'ata'oto e pei o HSMs (fa'aoga fa'aoga fa'aoga) ma kata atamai. O le
O le fa'amoemoega o nei masini o le fa'atupuina lea o ki fa'ailoga ma saini fa'amatalaga e aunoa ma le fa'aaliaina o le ki patino
mea i le lalolagi i fafo.
E mafai e polokalame fa'akomepiuta ona vala'au le API e fa'aoga ai mea nei mo:
• Fausia ki tutusa/asymmetric
• Fa'ailoga ma le fa'ailoga
• Fa'akomepiuta ma fa'amaonia le saini numera
PKCS #11 o lo'o tu'uina atu i fa'aoga se mea masani, talafeagai view o le masini e taʻua o le cryptographic token ma e
tofia se ID slot i faailoga taitasi. O se talosaga e fa'ailoa ai le fa'ailoga e mana'o e maua e ala i le fa'ama'oti o le
ID slot talafeagai.
O le STM32SigningTool o lo'o fa'aogaina e pulea ai mea taua o lo'o teuina i luga o kata atamai ma tutusa PKCS#11 saogalemu.
fa'ailoga e le tu'ua ai lava ki patino ma'ale'ale le masini.
O le STM32SigningTool e fa'aogaina le PKCS#11 fa'aoga e fa'aogaina ma saini ai fa'aulu fa'atatau ile ECDSA.
fa'alaua'itele/fa'apitoa ki. O nei ki o loʻo teuina i faʻailoga saogalemu (megana poʻo polokalama).

Poloaiga faaopoopo PKCS#11

  • –module (-m)
    • Fa'amatalaga: fa'ailoa mai se PKCS#11 module/Ala Faletusi e uta (dll, so)
    • Fa'aupuga:-m
    • • –key-index (-ki)
  • –key-index (-ki)
    • Fa'amatalaga: lisi o fa'asino igoa ki fa'aoga ile fa'asologa o le hex
      • Fa'aaogā le fa'asinomaga e tasi mo le ulutala v1 ma le fa'ailoga e valu mo le ulutala v2 (tu'ese'ese i le avanoa)
    • Fa'asologa: -ki
  • –slot-index (-si)
    • Fa'amatalaga: fa'ailoa le fa'ailoga ole avanoa e fa'aoga (fa'aoga 0x0)
    • Syntax:-si
  • –slot-identifier (-sid)
    • Fa'amatalaga: fa'amaonia le fa'ailoaina ole avanoa e fa'aoga (filifiliga, ile fa'ailoga tesimale po'o le fa'a-tesimale)
    • Syntax:-sid
      • Afai o le filifiliga -slot-identifier e faʻaoga faʻatasi ma le -slot-index, e siaki e le meafaigaluega pe o fetaui lenei faʻatulagaga i le avanoa tutusa. O le fa'asinomaga e atagia mai ai le fa'ailoga na ta'ua; a leai, e tupu se mea sese.
      • E mafai ona faʻaaoga -slot-identifier e aunoa ma le taʻua -slot-index. E su'esu'e fa'atonu e le meafaigaluega le fa'ailoga slot.
  • –active-keyIndex (-aki)
    • Fa'amatalaga: fa'ailoa mai le fa'ailoga autu o lo'o galue (fa'aleaogaina 0)
    • Syntax: -aki < hexValue >

PKH/PKTH file tupulaga

A maeʻa le faʻagasologa o le saini faʻagaioiga, o le meafaigaluega faʻapitoa e gaosia ai le PKH files e fa'aaoga pe a uma mo le OTP fuse.

  • PKH file faaigoa pkcsHashPublicKey0x{active_key_index}.bin mo ulutala v1
  • PKTH file faaigoa pkcsPublicKeysHashHashes.bin mo ulutala v2

Examples

E mafai e le meafaigaluega ona saini i totonu files mo ulutala v1 ma ulutala v2, faʻatasi ai ma sina eseesega i le laina faʻatonu.

  • Ulutala v1
    -bin input.bin -iv -pwd -la -ep -t -o –
    -key-index -aki 0 ​​–module –slot-index -o galuega faatino.stm32
  • Ulutala v2
    -bin input.bin -iv -pwd -la -ep -t -o – -key-index -aki –module –slot-index -o galuega faatino.stm0

O se mea sese i luga o le laina faʻatonu, poʻo le le mafaia e le meafaigaluega e faʻamaonia ai mea autu e fetaui, e mafua ai ona faʻaalia se feʻau sese. Ua faailoa mai ai le puna o le faafitauli. O le SigningTool e mafai ona na'o le fa'aogaina o HSM ua uma ona fa'atulagaina, ma e le'o fa'atulagaina e fa'atautaia pe fa'atupu ai ni mea fa'alelei fou. O le mea lea, e manaʻomia le faʻapipiʻiina o polokalama faʻapitoa e faʻatutuina ai se siosiomaga talafeagai. Ona mafai ai lea ona gaosia ia ki, ma maua ai faʻamatalaga e uiga i mea faitino.

Filifiliga e iloagofie ai slot:

  • -bin input.bin –type fsbl -hv 1 –key-index 0x40 -aki 0 ​​–module softhsm2.dll –password prg-dev -ep 0x2ffe4000 -s -si 0 -sid 0x51a53ad8 -la 0x2ffc2500 -iv 0 -of0 output

Sese examples:

  • Le sa'o le fa'ailoga o le slot

Ata 2. HSM TOKEN_NOT_RECOGNIZED
Le iloa mea autu o loʻo taʻua i le -key-index command

Ata 3. HSM OBJECT_HANDLE_INVALID

O le meafaigaluega e togafitia mea faʻasolosolo faʻasolosolo. Afai e le mafai ona iloa mea autu e fetaui i le taumafaiga muamua, o le saini e taofia le faagasologa. Ona faʻaalia lea o se faʻamatalaga sese e faʻaalia ai le mafuaʻaga o le faʻafitauli.

Toe iloilo tala'aga

Laulau 2. Tala'aga o le toe iloiloga o pepa

Aso Fa'aliliuga Suiga
14-Feb-2019 1 Fa'asalalauga muamua.
 

 

26-Nov-2021

  

 

2

 Fa'afouina:

• Vaega 2.1: Poloaiga

• Vaega 2.2: Esoamples mo STM32-SignTool

• Faaopoopo Vaega 2.4: PKCS#11 fofo
27-Iun-2022 3 Fa'afouina Vaega 2.1: Poloaiga
 

 

 

26-Iun-2024

  

 

 

4

 Suia i le pepa atoa:

• STM32MP1 fa'asologa e STM32MPx fa'asologa

• STM32MP1-SignTool e le STM32MP-SignTool

• STM32MP1-KeyGen e STM32MP-KeyGen

Fa'afou -public-key -pubk ma fa'aopoopo -header-version (-hv) ma -no-keys (- nk) i le Vaega 2.1: Poloaiga.

Faaopoopoina “Esoample 6” i le Vaega 2.2: Esoamples mo STM32-SignTool.
 

 

 

14-Nov-2024

  

 

 

5

 Fa'aopoopo:

• STM32N6 faasologa i oloa talafeagai Suia i le pepa atoa:

• STM32MP e STM32

Fa'afouina:

• Vaega 2.1: Poloaiga
 

06-Mat-2025

  

6

 Fa'afouina:

• Vaega 2.4.1: Poloaiga Faaopoopo PKCS#11

• Vaega 2.4.3: Esoamples

FA'AALIGA TAUA – FAITAU MA LE FA'AMANATU

STMicroelectronics NV ma ona lala ("ST") faʻaagaga le aia e fai ai suiga, faʻasaʻoga, faʻaleleia, faʻaleleia, ma faʻaleleia STproducts ma / poʻo lenei pepa i soʻo se taimi e aunoa ma se faʻaaliga. E tatau i tagata fa'atau ona maua fa'amatalaga talafeagai lata mai i oloa ST a'o le'i tu'uina atu oka. O oloa ST o lo'o fa'atau atu e tusa ai ma tu'utu'uga ma aiaiga a le ST o lo'o fa'atau atu i le taimi e fa'ailoa ai le oka. E na'o le au fa'atau le filifiliga, filifiliga, ma le fa'aogaina o oloa ST ma e leai se noataga a le ST mo fesoasoani talosaga po'o le mamanu o oloa a tagata fa'atau. Leai se laisene, fa'aalia pe fa'aalia, i so'o se aia tatau tau le atamai ua fa'atagaina e ST i totonu. O le toe fa'atauina atu o oloa ST ma aiaiga e ese mai fa'amatalaga o lo'o fa'ailoa mai i inei e tatau ona fa'aleaogaina so'o se fa'ataga na tu'uina atu e ST mo ia oloa. ST ma le logo ST o fa'ailoga fa'ailoga a ST. Mo fa'amatalaga fa'aopoopo e uiga i fa'ailoga fa'ailoga ST, va'ai ile www.st.com/trademarks. O isi igoa uma o oloa po'o auaunaga o le meatotino a latou tagata e ona. O fa'amatalaga i totonu o lenei pepa e suitulaga ma sui ai fa'amatalaga na tu'uina atu muamua i so'o se lomiga muamua o lenei pepa.

© 2025 STMicroelectronics – Ua taofia aia tatau uma

FAQ

  • F: O le a la'u mea e fai pe a ou feagai ma ni mea sese a'o fa'aogaina le STM32-SignTool?
    • A: Siaki le fa'asologa o le fa'atonuga, fa'amautinoa o lo'o tu'uina sa'o uma ta'iala mana'omia, ma fa'asino ile tusi fa'aoga mo fa'afitauli.
  • Q: E mafai ona ou faʻaogaina le STM32-SignTool i luga o faiga faʻaoga eseese?
    • A: STM32-SignTool ua mamanuina e galue i luga o faiga faʻaoga faʻapitoa. Va'ai i fa'amatalaga fa'akomepiuta mo fa'amatalaga talafeagai.

Pepa / Punaoa

ST Microelectronics STM32 Saini Meafaigaluega Polokalama [pdf] Tusi Taiala
STM32N6 series, STM32MP1, STM32MP2 series, STM32 Signing Tool Software, STM32, Signing Tool Software, Tool Software, Software

Fa'asinomaga

Tuu se faamatalaga

E le fa'asalalauina lau tuatusi imeli. Fa'ailogaina fanua mana'omia *