Skip to content

Add STM33TPM Firmware Update Support for LMS/non-LMS #446

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
dgarske merged 1 commit into from
Jan 28, 2026
Merged

Add STM33TPM Firmware Update Support for LMS/non-LMS #446

dgarske merged 1 commit into from
Jan 28, 2026

Conversation

@aidangarske
Copy link
Contributor

@aidangarske aidangarske commented Jan 1, 2026
edited
Loading

Description

This PR adds comprehensive firmware update support for STMicroelectronics ST33KTPM2X TPM modules, including both legacy non-LMS and modern LMS (Leighton-Micali Signature) signature formats.

Overview

The implementation supports firmware updates for ST33 TPMs across two firmware generations:

  • Generation 1 (< 512): Legacy firmware requiring non-LMS format (177-byte manifest)
  • Generation 2 (>= 512): Modern firmware requiring LMS format (2697-byte manifest with embedded signature)

Main Functions Created

Core API Functions

  1. wolfTPM2_FirmwareUpgradeHash() - Main firmware upgrade function

    • Handles version detection and routes to appropriate path (non-LMS or LMS)
    • Sends full manifest (blob0) directly to TPM via FieldUpgradeStart command
    • Processes firmware data as blobs per ST reference implementation
    • Supports recovery/continuation from TPM_RC_UPGRADE state

  2. wolfTPM2_FirmwareUpgradeCancel() - Cancel/abandon firmware update

    • Allows cancellation of in-progress firmware updates
    • Uses ST33's password-based authentication (TPM_RS_PW)

Helper Functions

  • tpm2_st33_firmware_start() - Non-LMS firmware upgrade start
  • tpm2_st33_firmware_start_lms() - LMS firmware upgrade start
  • tpm2_st33_firmware_upgrade_hash() - Version detection and routing logic
  • tpm2_st33_firmware_send_blob() - Send firmware blob chunks to TPM

Key Implementation Details

Firmware Version Detection

The implementation uses a simplified two-state model matching ST's reference tools:

  • Firmware < 512 (e.g., 9.257): Legacy Generation 1, non-LMS format required
  • Firmware >= 512 (e.g., 9.512): Modern Generation 2, LMS format required

Version threshold is 512 (0x0200), matching ST's policy where 9.512 is the first firmware version that mandates LMS signatures.

Versions are detected based on manifest size

Testing

All functionality was tested on real ST33KTPM2X hardware:

  • Firmware 9.256 (legacy): Verified non-LMS firmware update path
  • Firmware 9.512 (modern): Verified LMS format detection, enforcement, and successful updates

Tested firmware update and all examples

Added test script (examples/firmware/test_st33_firmware.sh) with autodetected version type

  • updated .github/workflows/cmake-build.yml with --enable-firmware
  • updated .github/workflows/make-test-swtpm.yml with --enable-firmware

@aidangarske aidangarske self-assigned this Jan 1, 2026
@dgarske dgarske self-requested a review January 1, 2026 19:55
@dgarske dgarske self-assigned this Jan 1, 2026
@aidangarske aidangarske force-pushed the stm33KTPM-support-clean branch 2 times, most recently from 018e15f to 1a7c490 Compare January 1, 2026 20:15
@aidangarske aidangarske marked this pull request as ready for review January 1, 2026 20:19
@dgarske dgarske force-pushed the stm33KTPM-support-clean branch 2 times, most recently from be306c4 to 7964756 Compare January 26, 2026 21:52
dgarske
dgarske requested changes Jan 26, 2026
View reviewed changes
@dgarske dgarske self-requested a review January 27, 2026 19:37
dgarske
dgarske requested changes Jan 27, 2026
View reviewed changes
Copy link
Contributor

@dgarske dgarske left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Very close!

@dgarske dgarske assigned aidangarske and unassigned dgarske and aidangarske Jan 27, 2026
@aidangarske aidangarske force-pushed the stm33KTPM-support-clean branch from 4b9b735 to 6898e84 Compare January 27, 2026 23:55
@aidangarske aidangarske reopened this Jan 27, 2026
@aidangarske aidangarske requested a review from dgarske January 27, 2026 23:58
@aidangarske aidangarske assigned dgarske and unassigned aidangarske Jan 27, 2026
@dgarske dgarske merged commit 1ea04b7 into wolfSSL:master Jan 28, 2026
110 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@dgarske dgarske dgarske approved these changes

Assignees

@dgarske dgarske

@wolfSSL-Bot wolfSSL-Bot

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@aidangarske @dgarske @wolfSSL-Bot