Spsdk

New features
- nxpimage:
- support encrypted image hab
- support for RT11xx and RT10xx
- improve OTFAD/IEE names generation
- add API to retrieve info about fuses

Bugfixes
- nxpimage:
- fix XMCD load_from_config
- fix IEE template
- fix circular dependency in signature provider import
- fix issue with loading keys as INT
- not enable logging when spsdk is used as a library

New features
- blhost:
- add new command: ele_message
- nxpdebugmbox:
- add command: read UUID from device
- update PyOCD to latest version to support CMSIS DAP FW v3
- nxpdevhsm:
- USER_PCK rename to CUST_MK_SK
- nxpimage:
- add subcommand group for generate and parse certificate block
- replace private key to signature provider in master boot image
- OTFAD support for RT1170
- ifr:
- add commands read/write
- pfr:
- add CMPA erase command

Bugfixes
- nxpdebugmbox:
- fix AP selection issue for PyOCD and PEMICRO
- fix DAC verification when there is only 1 root key
- nxpimage:
- fix MBI issue with HMAC
- shadowregs:
- fix endianness for OTP MASTER KEY

- drop support for Python 3.7

New features
- nxpdevhsm
- split reset option in nxpdevhsm into two; disable init reset by default

Bugfixes

- nxpdebugmbox:
- fix Linux error on PyOCD
- fix PyOCD and PEmicro connection for kw45xx and k32w1xx
- nxpdevhsm:
- fix buffer base address for DevHSM operations
- nxpimage:
- fix handling exception when the root cert index is wrong

- tphost/tpconfig:
- incorrect output in TP PG command in case of an failure

New features

- nxpdebugmbox:
- add check of root of trust hash in dat authentication
- enable debug authentication protocol on RT1180
- nxpdevhsm:
- reset target before and after DevHSM SB3 file creation
- nxpimage:
- XMCD support
- signed messages support for RT1180
- add bootable image for RT10xx, RT1180, RT1170, LPC55S3x
- implement IEE encryption
- support Memory ID for erase in sb21
- support Memory ID for enable and load in sb21
- implement JUMP and JUMP_SP commands in BD file for SB2.1
- enable encryption in AHAB container
- tphost/tpconfig:
- create command for loading ProvFW
- add command for retrieving TP_RESPONSE without models or smart card
- smart card reader name hash identification
- debug authentication improvements
- unify memory access cross all debuggers
- replace json file with yml file for TZ
- support for k32w1xx, kw45xx
- improve format of debugging logger

Bugfixes

- nxpdebugmbox:
- remove duplicated option --protocol for gendc command
- nxpdevhsm:
- fix skipping commands from config file
- nxpimage:
- fix non working 384/521 ECC keys for signature in AHAB container
- fix CRC mode in external flash for lpc55s3x
- failure on start due to boot_image hook definition
- pfr:
- command line parameter '-t' is duplicated
- tphost/tpconfig:
- TPhost load-tpfw requires TP device definition
- OEM ProvFW boot-check incorrectly fails with non-verbose flavor

Known issues

- nxpdebugmbox:
- we do not support CMSIS-DAP version 2 (bulk pipes, https://arm-software.github.io/CMSIS_5/DAP/html/group__DAP__ConfigUSB__gr.html)
This means sw debuggers such as MCU-Link v3 will not work (nxpdebugmbox will not detect the debugger probe)
This issue will be resolved in next version of SPSDK

New features

- nxpimage:
- add support for BEE
- enable OTFAD on RT1180
- pfr:
- move the functionality of pfrc tool into PFR tool
- tphost/tpconfig:
- implement USB re-enumeration in TPHost after OEM ProvFW is started
- create command for checking the Chain of Trust used in TP
- investigate TP performance loss during device reset after TP is completed
- add possibility to select TP SmartCard via card reader's name
- unify option for getting template across tools
- add API for parsing XMCD
- support cryptography >= 37.0.0
- support bincopy 17.14

Bugfixes

- nxpdevscan:
- fix hanging up for serial communication
- tphost/tpconfig:
- blhost_port should not be mandatory in TP target settings
- fix disabling timeout in TP is ignored
- fix documentation regarding SB31 programFuses

New features

- nxpimage:
- add OTFAD support for RT5xx and RT6xx devices
- pfr:
- read command allows independent binary and yaml exports
- shadowregs:
- new subcommand: fuses-script
- add OEM cert size check into TPConfig

Bugfixes

- nxpdebugmbox:
- fix debug authentication for RT595
- nxpimage:
- fix sb21 command line argument in documentation
- fix the use of pyyaml's load in tests (use safe_load())