Spsdk

New features
- blhost:
- add parameter --no-verify for efuse-program-once
- add possibility to select USBSIO bridge device via VID:PID, USB path, serial number
- lower the timeout during MBoot's UART Ping command
- improve type hints for scan_* functions for detecting MBoot devices
- elftosb:
- dynamically generate config json schema per family
- nxpdevscan:
- extend scan with device serial number information
- list all connected USB or UART or SIO devices
- update device's USB path
- sdphost:
- improve type hints for scan_* functions for detecting SDP devices
- reduce number of findings from Pylint
- update JINJA2 requirement

Bugfixes

- blhost:
- fix UART open operation for RT1176, RT1050 and LPC55S06 platforms (and probably others)
- elftosb:
- fix preset data for lpc55s0x, lpc55s1x
- SPI communication failure (changed FRAME_START_NOT_READY to 0xFF for SPI)
- PYI files are not included in the distribution package

New features

- blhost:
- add experimental batch mode into blhost
- support command get property 30
- change output display for blhost get-property 8
- provide the real exit code (status code) from BLHOST application
- report progress of data transfer operations in blhost
- performance boost in receive-sb-file
- elftosb:
- validation inputs using jsonschemas
- reorganize and improve elftosb
- add support for more input file types
- [RTxxx] HMAC_KEY is now accepted in binary form
- nxpdebugmbox:
- move gendc into nxpdebugmbox
- pfr:
- unify CMPA/CFPA fields descriptions and bit-field values within XML registers data
- implement CMPA data generator and parser
- improve documentation
- remove dependency on munch and construct modules
- add support for reserved bitfields in registers
- support multiple occurrence of certificate attributes for subject/issuer
- remove backward compatibility mode in Registers
- reorganize functions from misc.py
- add support for bumpversion

Bugfixes

- blhost:
- generate-key-blob does not generate blob.bin on RT1176
- parse_property_tag in blhost_helper converts incorrectly in some cases
- different return code on Linux/Mac and Windows
- USBSIO - fixed issue when busy signal on I2C was interpreted as data
- crypto:
- DER encoded certificates are loaded as PEM
- fixed dependency on cryptography's internal keys
- moved to fully typed versions of cryptography
- elftosb:
- cannot build CRC image into ext flash for lpc55s3x
- cannot generate signed image with <4 ROT keys
- fixed some failing cases in regards of TZ
- [rtxxx] missing plain for load-to-ram image
- configuration validation failed in some cases
- nxpdebugmbox:
- return code is 0 in case of fail
- nxpdebugmbox fails on Linux
- nxpdevhsm:
- generate ends with general error when no container is provided
- pfr:
- fix problem in registers class with another size of register than 32 bits
- pfrc:
- displays false brick conditions
- wrong validation of CMPA.CC_SOCU_PIN bits

New features

- nxpdevhsm - new application added:
- The nxpdevhsm is a tool to create initial provisioning SB3 file for LPC55S36 to provision device with SB KEK needed to validate in device all standard SB3 files.
- LIBUSBSIO integration as a replacement for HID_API module:
- blhost - extend blhost by LPCUSBSIO interface
- blhost - following trust-provisioning sub-commands added:
- oem_get_cust_cert_dice_puk - creates the initial trust provisioning keys
- oem_gen_master_share - creates shares for initial trust provisioning keys
- oem_set_master_share - takes the entropy seed and the Encrypted OEM Master Share
- hsm_gen_key - creates OEM common keys, including encryption keys and signing keys
- hsm_store_key - stores known keys, and generate the corresponding key blob
- hsm_enc_blk - encrypts the given SB3 data bloc
- hsm_enc_sign - signs the given data
- elftosb:
- support for SB 2.1 generation using BD file
- LPC55S3x - add support for unsigned/plain images
- SB2.1 - SHA256 digest of all sections included in signed SB2.1 header
- add supported families listing into elftosb
- implement chip family option as a click.Choice
- allow loading certificates for MBI in PEM format
- nxpcertgen:
- generate the template for yml configuration file containing the parameters for certificate
- improve yml template description for nxpcertgen
- add support for generating certificates in DER format
- nxpkeygen:
- moved option -p from general space to gendc subcommand.
- add new -k keygen subcommand option to specify key type to generate
- nxpdebugmbox:
- refactor DebugCredential base class so that it will be possible to pass certificates in yml config file
- check nxpdebugmbox on LPC55S3x
- pfr - update CMPA/CFPA registers XML data for LPC55S3x with CRR update
- SPSDK Applications:
- spsdk applications show help message when no parameter on command line provided
- improved help messages
- support Ctrl+C in cmd applications
- replace functional asserts with raising a SPSDK-based exception
- replace all general exception with SPSDK-based exceptions

Bugfixes

- nxpkeygen - regenerates a key without –force
- elftosb - unclear error message: No such file or directory: ‘None’
- pfr - duplicated error message: The silicon revision is not specified
- nxpdebugmbox - fix Retry of AP register reads after Chip reset
- nxpdebugmbox - add timeout to never ending loops in spin_read/write methods in Debug mailbox
- blhost - flash-erase-region command doesn’t accept the memory_id argument in hex form
- elftosb - using kdkAccessRigths = 0 in SB31 is throwing an error in KeyDerivator

Features:
- version flag added for all command-line application
- support for Python 3.9 added
- [blhost] following sub-commands added:
- list-memory
- flash-program-once
- set-property
- flash-erase-all-unsecure
- flash-security-disable
- flash-read-resource
- reliable-update
- fuse-program
- flash-image
- program-aeskey
- [blhost] memoryId calmp-down for mapped external memories added
- [elftosb] support for SB 2.1 added
- [elftosb] basic support for BD configuration file added
- [nxpdebugmbox] debug port enabled check added
- [nxpkeygen] new sub-command added to nxpkeygen to create a template for configuration YML file for DC keys
- [nxpkeygen] new sub-command added to create a template for configuration YML file for DC keys
- [pfr] default JSON config file generation removed, but still accepted as an input. The preferred is the YML configuration format.
- [docs] Read The Docs documentation improvements

Bugfixes:
- wrong DCD size by BootImgRT.parse
- cmdKeyStoreBackupRestore wrong param description
- [blhost] typo in McuBootConnectionError exception
- [blhost] mcuBoot Uart doesn't close the device after failed ping command
- [blhost] assertion error when connection lost during fuses readout
- [blhost] sub-command flash-read-resource fails when the length is not aligned
- [pfr] incorrect keys hash computation for LPC55S3x
- [pfr] wrong LPC55S69 silicon revision
- [pfr] parse does not show PRINCE IV fields
- [sdphost] running spdhost --help fails
- [shadowreg] bad DEV_TEST_BIT in shadow registers

Features:
- [PFR] configuration template supports YAML with description, backward compatibility with JSON ensured
- [PFR] API change: "keys" parameter has been moved from __init__ to export
- [PRF] sub-commands renamed: (user-config -> get-cfg-template; parse -> parse-binary; generate -> generate-binary)
- [blhost] allow key names for key-provisioning commands
- [blhost] support for RT1170, RT1160
- Shadow Registers tool is now top-level module

Bugfixes:
- [blhost] fix baud rate parameter
- [PFR] fix in data for Niob4, Niobe4 Mini, Niobe4 Nano
- bug fixes for sb 2.1 commands and options

Features:
- support creation of SB version 3.1 (for N4Analog)
- elftosb application based on legacy elf2sb supporting SB 3.1 support
- nxpdevscan - application for connected USB, UART devices discovery
- shadowregs - application for shadow registers management using DebugProbe
- support USB path argument in blhost/sdphost (all supported OS)
- nxpcertgen cli application (basicConstrains, self-signed)
- extend blhost commands:
- flash-erase-all
- call
- load-image
- execute
- key-provisioning
- receive-sb-file
- extend blhost commands' options:
- configure-memory now allows usage of internal memory
- extend error code in output
- add parameters lock/nolock into efuse-program-once command
- add key selector option to generate-key-blob command
- add nolock/lock selector to efuse-program-once command
- add hexdata option to write-memory command