Spsdk

New features

- nxpimage application as replacement for elftosb
- nxpcrypto application for generating and verifying keys, certificates, hash digest, converting key's format
- trust provisioning applications (tphost and tpconfig)
- blhost:
- support LifeCycleUpdate command for RT1180
- add option to specify peripheral index of SPI/I2C for LIBUSBSIO
- allow lowercase names in the filter for USB mboot devices
- nxpdebugmbox:
- utility to read/write memory using debug probe
- nxpimage:
- support of Master Boot Images
- support AHAB container for RT1180
- support of Secure Binary 2.1 / 3.1
- support for TrustZone blocks
- support for Bootable images for RTxxx devices
- support for FCB block parsing and exporting for RTxxx and some RTxxxx devices
- simply binary image support, like create, merge, extract and convert (S19,HEX,ELF and BIN format)
- pfr:
- load PFR configuration directly from chip using BLHOST
- sdphost:
- support for SET_BAUDRATE command
- support for iMX93
- drop support for Python 3.6
- pypemicro dependency update in order to cover latest bug fixes in this package
- libusbsio update to version 2.1.11
- unify debug options within applications
- API to compute RKTH
- support LPC553x in elftosb/nxpimage
- support dual image boot on RT5xx and RT6xx
- replace click/sys.exit with raising an SPSDKAppError exception
- encryption of remapped images

Bugfixes

- blhost:
- efuse_program_once returns failure message when using 'lock' option but still the fuse is burnt
- fix in re-scanning LIBUSBSIO devices when target MCU is not connected
- scan_usb() should return nxp devices
- read memory command doesn't print read data when mem region is defined
- elftosb:
- fix trustzone config template for rt5xx and rt6xx
- fix MBI_PLainRamRTxxx image
- fix CRC bootable image on RT685 EVK
- fix image located in FLASH executed in RAM on RT6xx
- fix burning fuses in BD file
- nxpdebugmbox:
- fix in Jlink debugger probe initialization
- fix get-crp command

New features

- pypemicro dependency update in order to cover latest bug fixes in this package
- libusbsio update to version 2.1.11

Bugfixes

- fix in rescanning LIBUSBSIO devices when target MCU is not connected
- efuse_program_once returns failure message when using 'lock' option but still the fuse is burnt
- fix memory leaks in elftosb

New features

- bump-up version of bincopy to <17.11
- add plain load image to build example bootable i.MX-RT image
- align docs requirements with project dependencies
- add stability notice to documentation
- speed-up application's start due to move of bincopy import

New features
- blhost:
- add parameter --no-verify for efuse-program-once
- add possibility to select USBSIO bridge device via VID:PID, USB path, serial number
- lower the timeout during MBoot's UART Ping command
- improve type hints for scan_* functions for detecting MBoot devices
- elftosb:
- dynamically generate config json schema per family
- nxpdevscan:
- extend scan with device serial number information
- list all connected USB or UART or SIO devices
- update device's USB path
- sdphost:
- improve type hints for scan_* functions for detecting SDP devices
- reduce number of findings from Pylint
- update JINJA2 requirement

Bugfixes

- blhost:
- fix UART open operation for RT1176, RT1050 and LPC55S06 platforms (and probably others)
- elftosb:
- fix preset data for lpc55s0x, lpc55s1x
- SPI communication failure (changed FRAME_START_NOT_READY to 0xFF for SPI)
- PYI files are not included in the distribution package

New features

- blhost:
- add experimental batch mode into blhost
- support command get property 30
- change output display for blhost get-property 8
- provide the real exit code (status code) from BLHOST application
- report progress of data transfer operations in blhost
- performance boost in receive-sb-file
- elftosb:
- validation inputs using jsonschemas
- reorganize and improve elftosb
- add support for more input file types
- [RTxxx] HMAC_KEY is now accepted in binary form
- nxpdebugmbox:
- move gendc into nxpdebugmbox
- pfr:
- unify CMPA/CFPA fields descriptions and bit-field values within XML registers data
- implement CMPA data generator and parser
- improve documentation
- remove dependency on munch and construct modules
- add support for reserved bitfields in registers
- support multiple occurrence of certificate attributes for subject/issuer
- remove backward compatibility mode in Registers
- reorganize functions from misc.py
- add support for bumpversion

Bugfixes

- blhost:
- generate-key-blob does not generate blob.bin on RT1176
- parse_property_tag in blhost_helper converts incorrectly in some cases
- different return code on Linux/Mac and Windows
- USBSIO - fixed issue when busy signal on I2C was interpreted as data
- crypto:
- DER encoded certificates are loaded as PEM
- fixed dependency on cryptography's internal keys
- moved to fully typed versions of cryptography
- elftosb:
- cannot build CRC image into ext flash for lpc55s3x
- cannot generate signed image with <4 ROT keys
- fixed some failing cases in regards of TZ
- [rtxxx] missing plain for load-to-ram image
- configuration validation failed in some cases
- nxpdebugmbox:
- return code is 0 in case of fail
- nxpdebugmbox fails on Linux
- nxpdevhsm:
- generate ends with general error when no container is provided
- pfr:
- fix problem in registers class with another size of register than 32 bits
- pfrc:
- displays false brick conditions
- wrong validation of CMPA.CC_SOCU_PIN bits

New features

- nxpdevhsm - new application added:
- The nxpdevhsm is a tool to create initial provisioning SB3 file for LPC55S36 to provision device with SB KEK needed to validate in device all standard SB3 files.
- LIBUSBSIO integration as a replacement for HID_API module:
- blhost - extend blhost by LPCUSBSIO interface
- blhost - following trust-provisioning sub-commands added:
- oem_get_cust_cert_dice_puk - creates the initial trust provisioning keys
- oem_gen_master_share - creates shares for initial trust provisioning keys
- oem_set_master_share - takes the entropy seed and the Encrypted OEM Master Share
- hsm_gen_key - creates OEM common keys, including encryption keys and signing keys
- hsm_store_key - stores known keys, and generate the corresponding key blob
- hsm_enc_blk - encrypts the given SB3 data bloc
- hsm_enc_sign - signs the given data
- elftosb:
- support for SB 2.1 generation using BD file
- LPC55S3x - add support for unsigned/plain images
- SB2.1 - SHA256 digest of all sections included in signed SB2.1 header
- add supported families listing into elftosb
- implement chip family option as a click.Choice
- allow loading certificates for MBI in PEM format
- nxpcertgen:
- generate the template for yml configuration file containing the parameters for certificate
- improve yml template description for nxpcertgen
- add support for generating certificates in DER format
- nxpkeygen:
- moved option -p from general space to gendc subcommand.
- add new -k keygen subcommand option to specify key type to generate
- nxpdebugmbox:
- refactor DebugCredential base class so that it will be possible to pass certificates in yml config file
- check nxpdebugmbox on LPC55S3x
- pfr - update CMPA/CFPA registers XML data for LPC55S3x with CRR update
- SPSDK Applications:
- spsdk applications show help message when no parameter on command line provided
- improved help messages
- support Ctrl+C in cmd applications
- replace functional asserts with raising a SPSDK-based exception
- replace all general exception with SPSDK-based exceptions

Bugfixes

- nxpkeygen - regenerates a key without –force
- elftosb - unclear error message: No such file or directory: ‘None’
- pfr - duplicated error message: The silicon revision is not specified
- nxpdebugmbox - fix Retry of AP register reads after Chip reset
- nxpdebugmbox - add timeout to never ending loops in spin_read/write methods in Debug mailbox
- blhost - flash-erase-region command doesn’t accept the memory_id argument in hex form
- elftosb - using kdkAccessRigths = 0 in SB31 is throwing an error in KeyDerivator