Trust Provisioning API

Provides support for trust provisioning containers and OEM trust provisioning.

TP Data Containers

Module implementing the TrustProvisioning Data Container.

Data Container

Module implementing the TrustProvisioning Data Container.

class spsdk.tp.data_container.data_container.BaseElement

Bases: object

Base class for items used in data_container.

abstract export()

Serialize object data.

Return type: bytes

abstract classmethod parse(data, offset=0)

Reconstruct object from serialized data.

Return type: BaseElement

class spsdk.tp.data_container.data_container.Container

Bases: spsdk.tp.data_container.data_container.BaseElement

TrustProvisioning Data Container.

Initialize the container.

add_auth_entry(auth_type, key)

Add the final data authentication entry.

Parameters

auth_type (AuthenticationType) – Authentication Type
key (bytes) – Key for authentication

Raises

SPSDKTpError – Unknown or not-implemented Authentication type

Return type

None

add_entry(entry)

Add an entry to the container.

Return type: None

export()

Serialize the container.

Return type: bytes

get_entries(payload_type)

Get all entries for given payload type.

Return type: List[DataEntry]

get_entry(payload_type)

Get the first entry for the given type.

Parameters: payload_type (PayloadType) – Type of an entry to look for
Raises: SPSDKTpError – Container doesn’t have an entry of required type
Return type: DataEntry
Returns: Entry with given type

classmethod parse(data, offset=0)

Reconstruct container from binary data.

Return type: Container

validate(key)

Validate signature/authentication code.

Parameters: key (bytes) – Key for validating signature
Raises: SPSDKTpError – Unknown or non-implemented Authentication type
Return type: bool
Returns: True if signature/authentication code is valid

class spsdk.tp.data_container.data_container.ContainerHeader(major=1, minor=0, patch=0)

Bases: spsdk.tp.data_container.data_container.BaseElement

Main container header.

Initialize Container Header with version information.

Parameters

major (int) – major version, defaults to 1
minor (int) – minor version, defaults to 0
patch (int) – patch re-vision, defaults to 0

FORMAT = '<4B2H': Binary format for entry header (used by the struct module)

SIZE = 8: Total size of the container header

TAG = 51: Tag (magic) indicating start of the container in binary stream

export()

Serialize the container header.

Return type: bytes

classmethod parse(data, offset=0)

Reconstruct the container header from binary data.

Return type: ContainerHeader

class spsdk.tp.data_container.data_container.DataAuthenticationEntry(payload, payload_type, extra=0)

Bases: spsdk.tp.data_container.data_container.DataEntry

Final Data entry used for integrity check.

Initialize Standard Data Entry.

Parameters

payload (bytes) – Data entry payload
payload_type (int) – Data entry type
extra (int) – Extra information for the entry

TAG = 192

class spsdk.tp.data_container.data_container.DataDestinationEntry(payload, payload_type, destination, destination_type, extra=0)

Bases: spsdk.tp.data_container.data_container.DataEntry

Data entry including destination information.

Initialize data entry with destination record.

Parameters

payload (bytes) – Data entry payload
payload_type (int) – Data entry type
destination (int) – Destination memory address/OTP index
destination_type (DestinationType) – Destination type memory/OTP

TAG = 176

export()

Serialize the entry.

Return type: bytes

classmethod parse(data, offset=0)

Reconstruct the entry header from binary data.

Return type: DataDestinationEntry

property total_size: int

Returns total size of the entry (including header and padding).

Return type: int

class spsdk.tp.data_container.data_container.DataEntry(payload, payload_type, extra=0)

Bases: spsdk.tp.data_container.data_container.BaseElement

Standard data entry.

Initialize Standard Data Entry.

Parameters

payload (bytes) – Data entry payload
payload_type (int) – Data entry type
extra (int) – Extra information for the entry

TAG = 160

export()

Serialize the entry.

Return type: bytes

classmethod parse(data, offset=0)

Reconstruct the entry from binary data.

Return type: DataEntry

property total_size: int

Returns total size of the entry (including header and padding).

Return type: int

class spsdk.tp.data_container.data_container.DestinationHeader(destination, destination_type)

Bases: spsdk.tp.data_container.data_container.BaseElement

Header used to store destination information.

Initialize the destination record.

Parameters

destination (int) – Destination address
destination_type (DestinationType) – Destination type, see: DestinationType

FORMAT = '<4BL': Binary format for destination record (used by the struct module)

SIZE = 8: Total size of the destination record

export()

Serialize the destination record.

Return type: bytes

classmethod parse(data, offset=0)

Reconstruct the destination record from binary data.

Return type: DestinationHeader

class spsdk.tp.data_container.data_container.DestinationType

Bases: spsdk.utils.easy_enum.Enum

Destination type setting for DataDestinationEntry.

MEMORY = 0

OTP = 2

class spsdk.tp.data_container.data_container.EntryHeader(tag, payload_size, payload_type, entry_extra=0)

Bases: spsdk.tp.data_container.data_container.BaseElement

Common Entry header for all entry types.

Initialize Entry header.

Parameters

tag (int) – Tag indicating entry type, see EntryType
payload_size (int) – Size of entry payload, excluding header and padding
payload_type (int) – Type of entry payload
entry_extra (int) – Extra type specific data

FORMAT = '<H2B2H': Binary format for entry header (used by the struct module)

SIZE = 8: Total size of the entry header

export()

Serialize the entry header.

Return type: bytes

classmethod parse(data, offset=0)

Reconstruct the entry header from binary data.

Return type: EntryHeader

stringify_payload_type()

Return a stringified payload type.

Return type: str

class spsdk.tp.data_container.data_container.EntryType

Bases: spsdk.utils.easy_enum.Enum

Enumeration of all supported Entry types.

AUTHENTICATION = 192

DESTINATION = 176

STANDARD = 160

spsdk.tp.data_container.data_container.parse_entry(data, offset=0)

Common parser for all known DataEntry classes.

Return type: DataEntry

Audit log

Module for generating, processing and verifying TP Audit Log.

class spsdk.tp.data_container.audit_log.AuditLog(iterable=(), /)

Bases: List[spsdk.tp.data_container.audit_log.AuditLogRecord]

Full Audit log, List of AuditLogRecords.

static load(file_path)

Load AuditLog from a sqlite database file.

Return type: AuditLog

static properties(file_path)

Return properties of database.

Parameters: file_path (str) – Path to audit log file.
Raises: SPSDKTpError – Unable to read properties table
Return type: AuditLogProperties

static record_count(file_path)

Return number of records in database file.

Return type: int

static records(file_path, id_slice=None)

Read records from database file.

Parameters

file_path (str) – Path to database file
id_slice (Optional[Tuple[int, int]]) – Read records with id between (x, y), defaults to None

Yield

Iterator yielding record ID and record itself

Return type

Iterator[Tuple[int, AuditLogRecord]]

save(file_path, tp_device_id)

Store AuditLog into a sqlite database file.

Return type: None

class spsdk.tp.data_container.audit_log.AuditLogCounter(check_count=0, nxp_count=0, oem_count=0)

Bases: object

Counter for Audit Log stats (records verified, certificates exported).

Initialize counters for Audit log verification.

class spsdk.tp.data_container.audit_log.AuditLogProperties(version: int, tp_device_id: str)

Bases: tuple

Properties of the Audit log.

Create new instance of AuditLogProperties(version, tp_device_id)

classmethod from_tuple(data)

Create AuditLogProperties from database tuple.

Raises: SPSDKTpError – Unexpected number of data members.
Return type: AuditLogProperties

tp_device_id: str: Alias for field number 1

version: int: Alias for field number 0

class spsdk.tp.data_container.audit_log.AuditLogRecord(nxp_id_cert: bytes, oem_id_certs: List[bytes], prod_counter: bytes, start_hash: bytes, signature: bytes)

Bases: tuple

Single record in the Audit log.

Create new instance of AuditLogRecord(nxp_id_cert, oem_id_certs, prod_counter, start_hash, signature)

as_dict()

Return dictionary suitable for writing into log file.

Return type: dict

as_tuple()

Return AuditLogRecord as tuple.

Return type: tuple

classmethod from_data(container_data)

Create AuditLogRecord from TP Data Container.

Return type: AuditLogRecord

classmethod from_dict(data)

Create AuditLogRecord from a dictionary.

Return type: AuditLogRecord

classmethod from_tuple(data)

Create AuditLogRecord from a tuple.

Return type: AuditLogRecord

is_valid(key)

Check if record is valid.

Parameters: key (Union[EllipticCurvePublicKey, bytes]) – PEM-encoded public key or public key object
Return type: bool
Returns: True if signature checks out

new_hash()

Hash together the relevant pieces of the record.

Return type: bytes

nxp_id_cert: bytes: Alias for field number 0

oem_id_certs: List[bytes]: Alias for field number 1

prod_counter: bytes: Alias for field number 2

property prod_counter_int: int

Return production counter as an integer.

Return type: int

save(file_path, tp_device_id)

Store record in an sqlite database file.

Return type: None

signature: bytes: Alias for field number 4

start_hash: bytes: Alias for field number 3

spsdk.tp.data_container.audit_log.sqlite_cursor(file_path)

Yield an cursor to SQLite database.

Parameters: file_path (str) – Path to SQLite database file
Raises: SPSDKTpError – Error during SQL operation
Yield: SQLite cursor
Return type: Iterator[Cursor]

Data Container Authentication

Module for all Authenticators used in DataContainer.

class spsdk.tp.data_container.data_container_auth.AES_CMAC

Bases: spsdk.tp.data_container.data_container_auth.AuthenticationProvider

AES-CMAC Authenticator.

DATA_LEN = 16: Expected length of Authentication code/signature

TYPE = 16: Type of Authenticator, see: AuthenticationType

classmethod sign(data, key)

Generate CMAC authentication code.

Return type: bytes

classmethod validate(data, signature, key)

Validate CMAC authentication code.

Return type: bool

class spsdk.tp.data_container.data_container_auth.AuthenticationProvider

Bases: object

Base abstract class for Authenticators.

DATA_LEN = 0: Expected length of Authentication code/signature

TYPE = 0: Type of Authenticator, see: AuthenticationType

abstract classmethod sign(data, key)

Generate signature/authentication code.

Return type: bytes

abstract classmethod validate(data, signature, key)

Validate signature/authentication code.

Return type: bool

class spsdk.tp.data_container.data_container_auth.AuthenticationType

Bases: spsdk.utils.easy_enum.Enum

Available Authentication types.

AES_CMAC = 16

CRC32 = 254

ECDSA_256 = 32

HMAC_256 = 17

NONE = 0

class spsdk.tp.data_container.data_container_auth.CRC32

Bases: spsdk.tp.data_container.data_container_auth._CRC

CRC Authenticator using CRC32 settings.

CRC_NAME = 'crc32'

DATA_LEN = 4: Expected length of Authentication code/signature

TYPE = 254: Type of Authenticator, see: AuthenticationType

class spsdk.tp.data_container.data_container_auth.ECDSA_256

Bases: spsdk.tp.data_container.data_container_auth.AuthenticationProvider

ECDSA Authenticator using ECC P-256.

DATA_LEN = 64: Expected length of Authentication code/signature

TYPE = 32: Type of Authenticator, see: AuthenticationType

classmethod sign(data, key)

Generate ECDSA signature.

Return type: bytes

classmethod validate(data, signature, key)

Validate ECDSA signature.

Return type: bool

class spsdk.tp.data_container.data_container_auth.HMAC_256

Bases: spsdk.tp.data_container.data_container_auth._HMAC

HMAC-256 Authenticator.

DATA_LEN = 32: Expected length of Authentication code/signature

HASHER: Optional[cryptography.hazmat.primitives.hashes.HashAlgorithm] = <cryptography.hazmat.primitives.hashes.SHA256 object>

TYPE = 17: Type of Authenticator, see: AuthenticationType

spsdk.tp.data_container.data_container_auth.get_auth_data_len(auth_type)

Get expected length of signature/authentication code.

Parameters: auth_type (AuthenticationType) – Type of authenticator
Raises: SPSDKTpError – Unknown type of Authenticator
Return type: int
Returns: Length of signature/authentication code

spsdk.tp.data_container.data_container_auth.sign(data, auth_type, key)

Generate signature/authentication code.

Parameters

data (bytes) – Data to create signature/authentication code from
auth_type (AuthenticationType) – Type of Authenticator
key (bytes) – Key used for Authenticator

Raises

SPSDKTpError – [description]

Return type

bytes

Returns

Signature/authentication code

spsdk.tp.data_container.data_container_auth.validate(data, signature, auth_type, key)

Validate signature/authentication code.

Parameters

data (bytes) – Data to validate
signature (bytes) – Signature/authentication code to validate
auth_type (AuthenticationType) – Authenticator to use
key (bytes) – Key for Authenticator

Raises

SPSDKTpError – Unknown Authenticator type

Return type

bool

Returns

True if signature/authentication code is valid

TP Adapters

Trust provisioning adapters.

TP Config

Trust Provisioning HOST application support.

class spsdk.tp.tpconfig.TrustProvisioningConfig(tpdev, info_print)

Bases: object

Trust provisioning support in none trusted environment.

Trust Provisioning Host support class.

Parameters

tpdev (TpDevInterface) – [description]
info_print (Callable[[str], None]) – [description]

get_counters(timeout=60)

Seal the provisioning device.

Return type: None

seal(timeout=60)

Seal the provisioning device.

Return type: None

setup(timeout=60)

Setup the provisioning device.

Return type: None

upload(user_config, user_config_dir=None, timeout=60)

Upload the user data into the provisioning device.

Return type: None

TP Host

Trust Provisioning HOST application support.

class spsdk.tp.tphost.TrustProvisioningHost(tpdev, tptarget, info_print)

Bases: object

Trust provisioning support in none trusted environment.

Trust Provisioning Host support class.

Parameters

tpdev (TpDevInterface) – TP device instance
tptarget (TpTargetInterface) – TP target instance
info_print (Callable[[str], None]) – Method for printing messages

check_audit_log_owner(audit_log, timeout=60)

Check if this TP Device’s ID is present in the audit log.

Return type: None

create_audit_log_record(data, audit_log)

Create an audit log record out of data representing ISP_WRAP_DATA container.

Return type: None

do_provisioning(family, audit_log, prov_fw=None, product_fw=None, timeout=60, save_debug_data=False)

Do provisioning process.

Parameters

family (str) – Chip family
audit_log (str) – Path to audit log
prov_fw (Optional[bytes]) – Use own provisioning firmware, defaults to None
product_fw (Optional[bytes]) – Load also the final product application, defaults to None
timeout (int) – The timeout of operation is seconds.
save_debug_data (bool) – Save transmitted data in CWD for debugging purposes

Raises

SPSDKTpError – Device family is not supported
SPSDKTpError – Error during trust-provisioning operation

Return type

None

erase_memory(family, database)

Erase part(s) of flash memory if needed.

Return type: None

get_counters(timeout=60)

Seal the provisioning device.

Return type: None

get_tp_response(response_file, timeout=60, challenge=None, oem_id_key_count=0)

Retrieve TP_RESPONSE from the target.

Parameters

response_file (str) – Path where to store TP_RESPONSE
timeout (int) – The timeout of operation is seconds, defaults to 60
challenge (Optional[bytes]) – Challenge for the response, defaults to None
oem_id_key_count (int) – Number of OEM keys to include in the response, defaults to 0

Raises

SPSDKTpError – Failure to retrieve the response

Return type

None

load_provisioning_fw(prov_fw, family, timeout=60, database=None, skip_test=True, keep_target_open=True, skip_usb_enumeration=False)

Method loads the provisioning firmware into device.

Parameters

prov_fw (bytes) – Provisioning Firmware data
family (str) – Chip family
timeout (int) – Timeout for loading provisioning firmware operation in seconds.
database (Optional[Database]) – Database of all supported devices (automatic lookup if not specified)
skip_test (bool) – Skip test for checking that OEM Provisioning Firmware booted-up
keep_target_open (bool) – Keep target device open
skip_usb_enumeration (bool) – Skip USB enumeration after loading the Provisioning firmware

Raises

SPSDKTpError – The Provisioning firmware doesn’t boot

Return type

None

update_cfpa_page(family, database)

Update CFPA page according to chip family.

Return type: None

static verify_extract_log(audit_log, audit_log_key, destination=None, skip_nxp=False, skip_oem=False, cert_index=None, encoding=Encoding.PEM, max_processes=None, info_print=<function TrustProvisioningHost.<lambda>>, force_rewrite=False)

Verifying audit log with given key (public/private).

Parameters

audit_log (str) – Path to audit log
audit_log_key (str) – Path to public/private key for verification
destination (Optional[str]) – Path to destination directory for extracted certificates
skip_nxp (bool) – Skip extracting the NXP Devattest certificates
skip_oem (bool) – Skip extracting the OEM x509 Devattest certificates
cert_index (Optional[int]) – Select single OEM certificate to extract, default None = all certificates
encoding (Encoding) – Certificate encoding, defaults to Encoding.PEM
max_processes (Optional[int]) – Maximum number od parallel process to use, defaults to CPU count
info_print (Callable[[str], None]) – Method for printing messages
force_rewrite (bool) – Skip checking for empty destination directory and rewrite existing content

Raises

SPSDKTpError – Audit log record or chain is invalid

Return type

AuditLogCounter

TP Utils

Trust Provisioning utilities.

spsdk.tp.utils.get_supported_devices()

Return list of supported devices for Trust Provisioning.

Return type: List[str]
Returns: List of devices.

spsdk.tp.utils.get_tp_device_class(name)

Return class of TP device interface by name.

Parameters: name (str) – Name of the interface.
Return type: Type[TpDevInterface]
Returns: TP device interface.

spsdk.tp.utils.get_tp_device_types()

Return list of supported TP device types.

Return type: List[str]

spsdk.tp.utils.get_tp_devices(tpdev=None, settings=None)

Return a list of active TP Devices fulfilling criteria in ‘settings’.

This functions attempts to open/close the device, please mind possible side-effects.

Parameters

tpdev (Optional[str]) – Name of TP Device interface, defaults to None
settings (Optional[dict]) – Settings for TP Target, defaults to None

Return type

List[TpDevInterface]

Returns

List of active TP Devices

spsdk.tp.utils.get_tp_target_class(name)

Return class of TP target interface by name.

Parameters: name (str) – Name of the interface.
Return type: Type[TpTargetInterface]
Returns: TP target interface.

spsdk.tp.utils.get_tp_target_types()

Return list of supported TP targets.

Return type: List[str]

spsdk.tp.utils.get_tp_targets(tptarget=None, settings=None)

Return a list of active TP Targets fulfilling criteria in ‘settings’.

This functions attempts to open/close the device, please mind possible side-effects.

Parameters

tptarget (Optional[str]) – Name of TP Target interface, defaults to None
settings (Optional[dict]) – Settings for TP Target, defaults to None

Return type

List[TpTargetInterface]

Returns

List is active TP Targets

spsdk.tp.utils.reconstruct_cryptography_key(key_material)

Reconstruct cryptography’s ECC Public Key from coordinates.

Return type: EllipticCurvePublicKey

spsdk.tp.utils.scan_tp_devices(tpdev=None, settings=None)

The function scans the TP devices on system.

Parameters

tpdev (Optional[str]) – Selection of one type of TP device, defaults to None (scan all supported).
settings (Optional[dict]) – Additional settings to setup interface, defaults to {}.

Return type

List[TpIntfDescription]

Returns

List of active TP device descriptors.

Raises

SPSDKError – Invalid value of parameter.

spsdk.tp.utils.scan_tp_targets(tptarget=None, settings=None)

The function scans the TP targets on system.

Parameters

tptarget (Optional[str]) – Selection of one type of TP target, defaults to None (scan all supported).
settings (Optional[dict]) – Additional settings to setup interface, defaults to {}.

Return type

List[TpIntfDescription]

Returns

List of active TP devices.

Raises

SPSDKError – Invalid value of parameter.

spsdk.tp.utils.single_tp_device_adapter()

Return True if there’s only one TP device adapter.

Return type: bool

spsdk.tp.utils.single_tp_target_adapter()

Return True if there’s only one TP target adapter.

Return type: bool