Debug Authentication API

Debug Authentication module provides debugging for securely provisioned devices.

DAT module general information

This module contains support for Debug Authentication Tool.

Module for generating debug credentials

Module with Debugcredential class.

class spsdk.dat.debug_credential.DebugCredential(socc, uuid, rot_meta, dck_pub, cc_socu, cc_vu, cc_beacon, rot_pub, signature=None, signature_provider=None)

Bases: object

Base class for DebugCredential.

Initialize the DebugCredential object.

Parameters

  • socc (int) – The SoC Class that this credential applies to

  • uuid (bytes) – The bytes of the unique device identifier

  • rot_meta (bytes) – Metadata for Root of Trust

  • dck_pub (bytes) – Internal binary representation of Debug Credential public key

  • cc_socu (int) – The Credential Constraint value that the vendor has associated with this credential.

  • cc_vu (int) – The Vendor Usage constraint value that the vendor has associated with this credential.

  • cc_beacon (int) – The non-zero Credential Beacon value, which is bound to a DC

  • rot_pub (bytes) – Internal binary representation of RoT public key

  • signature (Optional[bytes]) – Debug Credential signature

  • signature_provider (Optional[SignatureProvider]) – external signature provider

FORMAT = 'INVALID_FORMAT'
FORMAT_NO_SIG = 'INVALID_FORMAT'
HASH_LENGTH = 32
VERSION = '0.0'
classmethod create_from_yaml_config(version, yaml_config, search_paths=None)

Create a debug credential object out of yaml configuration.

Parameters

  • version (str) – Debug Authentication protocol version.

  • yaml_config (dict) – Debug credential file configuration.

  • search_paths (Optional[List[str]]) – List of paths where to search for the file, defaults to None

Return type

DebugCredential

Returns

DebugCredential object

export()

Export to binary form (serialization).

Return type

bytes

Returns

binary representation of the debug credential

Raises

SPSDKError – When Debug Credential Signature is not set, call the .sign method first

classmethod get_instance_from_challenge(data)

Returns instance of class from DAP authentication challenge data.

Return type

DebugCredential

Returns

Instance of this class.

info()

String representation of DebugCredential.

Return type

str

Returns

binary representation of the debug credential

classmethod parse(data, offset=0)

Parse the debug credential.

Parameters

  • data (bytes) – Raw data as bytes

  • offset (int) – Offset of input data

Return type

DebugCredential

Returns

DebugCredential object

sign()

Sign the DC data using SignatureProvider.

Return type

None

class spsdk.dat.debug_credential.DebugCredentialECC(socc, uuid, rot_meta, dck_pub, cc_socu, cc_vu, cc_beacon, rot_pub, signature=None, signature_provider=None)

Bases: spsdk.dat.debug_credential.DebugCredential

Class for ECC specific of DebugCredential.

Initialize the DebugCredential object.

Parameters

  • socc (int) – The SoC Class that this credential applies to

  • uuid (bytes) – The bytes of the unique device identifier

  • rot_meta (bytes) – Metadata for Root of Trust

  • dck_pub (bytes) – Internal binary representation of Debug Credential public key

  • cc_socu (int) – The Credential Constraint value that the vendor has associated with this credential.

  • cc_vu (int) – The Vendor Usage constraint value that the vendor has associated with this credential.

  • cc_beacon (int) – The non-zero Credential Beacon value, which is bound to a DC

  • rot_pub (bytes) – Internal binary representation of RoT public key

  • signature (Optional[bytes]) – Debug Credential signature

  • signature_provider (Optional[SignatureProvider]) – external signature provider

CORD_LENGTH = 66
CURVE: Any = <cryptography.hazmat.primitives.asymmetric.ec.SECP256R1 object>
FORMAT = '<2HL16s528s132s3L4s132s'
FORMAT_NO_SIG = '<2HL16s528s132s3L4s'
sign()

Sign the DC data using SignatureProvider.

Return type

None

class spsdk.dat.debug_credential.DebugCredentialECC256(socc, uuid, rot_meta, dck_pub, cc_socu, cc_vu, cc_beacon, rot_pub, signature=None, signature_provider=None)

Bases: spsdk.dat.debug_credential.DebugCredentialECC

DebugCredential class for ECC 256.

Initialize the DebugCredential object.

Parameters

  • socc (int) – The SoC Class that this credential applies to

  • uuid (bytes) – The bytes of the unique device identifier

  • rot_meta (bytes) – Metadata for Root of Trust

  • dck_pub (bytes) – Internal binary representation of Debug Credential public key

  • cc_socu (int) – The Credential Constraint value that the vendor has associated with this credential.

  • cc_vu (int) – The Vendor Usage constraint value that the vendor has associated with this credential.

  • cc_beacon (int) – The non-zero Credential Beacon value, which is bound to a DC

  • rot_pub (bytes) – Internal binary representation of RoT public key

  • signature (Optional[bytes]) – Debug Credential signature

  • signature_provider (Optional[SignatureProvider]) – external signature provider

CURVE: Any = <cryptography.hazmat.primitives.asymmetric.ec.SECP256R1 object>
VERSION = '2.0'
class spsdk.dat.debug_credential.DebugCredentialECC256Lpc55s3x(socc, uuid, rot_meta, dck_pub, cc_socu, cc_vu, cc_beacon, rot_pub, signature=None, signature_provider=None)

Bases: spsdk.dat.debug_credential.Lpc55s3xMixin

DebugCredential class for LPC55s3x for version 2.0 (p256).

Initialize the DebugCredential object.

Parameters

  • socc (int) – The SoC Class that this credential applies to

  • uuid (bytes) – The bytes of the unique device identifier

  • rot_meta (bytes) – Metadata for Root of Trust

  • dck_pub (bytes) – Internal binary representation of Debug Credential public key

  • cc_socu (int) – The Credential Constraint value that the vendor has associated with this credential.

  • cc_vu (int) – The Vendor Usage constraint value that the vendor has associated with this credential.

  • cc_beacon (int) – The non-zero Credential Beacon value, which is bound to a DC

  • rot_pub (bytes) – Internal binary representation of RoT public key

  • signature (Optional[bytes]) – Debug Credential signature

  • signature_provider (Optional[SignatureProvider]) – external signature provider

CORD_LENGTH = 32
HASH_LENGTH = 32
KEY_LENGTH = 256
VERSION = '2.0'
class spsdk.dat.debug_credential.DebugCredentialECC384(socc, uuid, rot_meta, dck_pub, cc_socu, cc_vu, cc_beacon, rot_pub, signature=None, signature_provider=None)

Bases: spsdk.dat.debug_credential.DebugCredentialECC

DebugCredential class for ECC 384.

Initialize the DebugCredential object.

Parameters

  • socc (int) – The SoC Class that this credential applies to

  • uuid (bytes) – The bytes of the unique device identifier

  • rot_meta (bytes) – Metadata for Root of Trust

  • dck_pub (bytes) – Internal binary representation of Debug Credential public key

  • cc_socu (int) – The Credential Constraint value that the vendor has associated with this credential.

  • cc_vu (int) – The Vendor Usage constraint value that the vendor has associated with this credential.

  • cc_beacon (int) – The non-zero Credential Beacon value, which is bound to a DC

  • rot_pub (bytes) – Internal binary representation of RoT public key

  • signature (Optional[bytes]) – Debug Credential signature

  • signature_provider (Optional[SignatureProvider]) – external signature provider

CURVE: Any = <cryptography.hazmat.primitives.asymmetric.ec.SECP384R1 object>
VERSION = '2.1'
class spsdk.dat.debug_credential.DebugCredentialECC384Lpc55s3x(socc, uuid, rot_meta, dck_pub, cc_socu, cc_vu, cc_beacon, rot_pub, signature=None, signature_provider=None)

Bases: spsdk.dat.debug_credential.Lpc55s3xMixin

DebugCredential class for LPC55s3x for version 2.1 (p384).

Initialize the DebugCredential object.

Parameters

  • socc (int) – The SoC Class that this credential applies to

  • uuid (bytes) – The bytes of the unique device identifier

  • rot_meta (bytes) – Metadata for Root of Trust

  • dck_pub (bytes) – Internal binary representation of Debug Credential public key

  • cc_socu (int) – The Credential Constraint value that the vendor has associated with this credential.

  • cc_vu (int) – The Vendor Usage constraint value that the vendor has associated with this credential.

  • cc_beacon (int) – The non-zero Credential Beacon value, which is bound to a DC

  • rot_pub (bytes) – Internal binary representation of RoT public key

  • signature (Optional[bytes]) – Debug Credential signature

  • signature_provider (Optional[SignatureProvider]) – external signature provider

CORD_LENGTH = 48
HASH_LENGTH = 48
KEY_LENGTH = 384
VERSION = '2.1'
class spsdk.dat.debug_credential.DebugCredentialECC521(socc, uuid, rot_meta, dck_pub, cc_socu, cc_vu, cc_beacon, rot_pub, signature=None, signature_provider=None)

Bases: spsdk.dat.debug_credential.DebugCredentialECC

DebugCredential class for ECC 521.

Initialize the DebugCredential object.

Parameters

  • socc (int) – The SoC Class that this credential applies to

  • uuid (bytes) – The bytes of the unique device identifier

  • rot_meta (bytes) – Metadata for Root of Trust

  • dck_pub (bytes) – Internal binary representation of Debug Credential public key

  • cc_socu (int) – The Credential Constraint value that the vendor has associated with this credential.

  • cc_vu (int) – The Vendor Usage constraint value that the vendor has associated with this credential.

  • cc_beacon (int) – The non-zero Credential Beacon value, which is bound to a DC

  • rot_pub (bytes) – Internal binary representation of RoT public key

  • signature (Optional[bytes]) – Debug Credential signature

  • signature_provider (Optional[SignatureProvider]) – external signature provider

CURVE: Any = <cryptography.hazmat.primitives.asymmetric.ec.SECP521R1 object>
VERSION = '2.2'
class spsdk.dat.debug_credential.DebugCredentialRSA(socc, uuid, rot_meta, dck_pub, cc_socu, cc_vu, cc_beacon, rot_pub, signature=None, signature_provider=None)

Bases: spsdk.dat.debug_credential.DebugCredential

Class for RSA specific of DebugCredential.

Initialize the DebugCredential object.

Parameters

  • socc (int) – The SoC Class that this credential applies to

  • uuid (bytes) – The bytes of the unique device identifier

  • rot_meta (bytes) – Metadata for Root of Trust

  • dck_pub (bytes) – Internal binary representation of Debug Credential public key

  • cc_socu (int) – The Credential Constraint value that the vendor has associated with this credential.

  • cc_vu (int) – The Vendor Usage constraint value that the vendor has associated with this credential.

  • cc_beacon (int) – The non-zero Credential Beacon value, which is bound to a DC

  • rot_pub (bytes) – Internal binary representation of RoT public key

  • signature (Optional[bytes]) – Debug Credential signature

  • signature_provider (Optional[SignatureProvider]) – external signature provider

FORMAT = '<2HL16s128s260s3L260s256s'
FORMAT_NO_SIG = '<2HL16s128s260s3L260s'
class spsdk.dat.debug_credential.DebugCredentialRSA2048(socc, uuid, rot_meta, dck_pub, cc_socu, cc_vu, cc_beacon, rot_pub, signature=None, signature_provider=None)

Bases: spsdk.dat.debug_credential.DebugCredentialRSA

DebugCredential class for RSA 2048.

Initialize the DebugCredential object.

Parameters

  • socc (int) – The SoC Class that this credential applies to

  • uuid (bytes) – The bytes of the unique device identifier

  • rot_meta (bytes) – Metadata for Root of Trust

  • dck_pub (bytes) – Internal binary representation of Debug Credential public key

  • cc_socu (int) – The Credential Constraint value that the vendor has associated with this credential.

  • cc_vu (int) – The Vendor Usage constraint value that the vendor has associated with this credential.

  • cc_beacon (int) – The non-zero Credential Beacon value, which is bound to a DC

  • rot_pub (bytes) – Internal binary representation of RoT public key

  • signature (Optional[bytes]) – Debug Credential signature

  • signature_provider (Optional[SignatureProvider]) – external signature provider

FORMAT = '<2HL16s128s260s3L260s256s'
FORMAT_NO_SIG = '<2HL16s128s260s3L260s'
VERSION = '1.0'
class spsdk.dat.debug_credential.DebugCredentialRSA4096(socc, uuid, rot_meta, dck_pub, cc_socu, cc_vu, cc_beacon, rot_pub, signature=None, signature_provider=None)

Bases: spsdk.dat.debug_credential.DebugCredentialRSA

DebugCredential class for RSA 4096.

Initialize the DebugCredential object.

Parameters

  • socc (int) – The SoC Class that this credential applies to

  • uuid (bytes) – The bytes of the unique device identifier

  • rot_meta (bytes) – Metadata for Root of Trust

  • dck_pub (bytes) – Internal binary representation of Debug Credential public key

  • cc_socu (int) – The Credential Constraint value that the vendor has associated with this credential.

  • cc_vu (int) – The Vendor Usage constraint value that the vendor has associated with this credential.

  • cc_beacon (int) – The non-zero Credential Beacon value, which is bound to a DC

  • rot_pub (bytes) – Internal binary representation of RoT public key

  • signature (Optional[bytes]) – Debug Credential signature

  • signature_provider (Optional[SignatureProvider]) – external signature provider

FORMAT = '<2HL16s128s516s3L516s512s'
FORMAT_NO_SIG = '<2HL16s128s516s3L516s'
VERSION = '1.1'
class spsdk.dat.debug_credential.Lpc55s3xMixin(socc, uuid, rot_meta, dck_pub, cc_socu, cc_vu, cc_beacon, rot_pub, signature=None, signature_provider=None)

Bases: spsdk.dat.debug_credential.DebugCredentialECC

LPC55s3x Class.

Initialize the DebugCredential object.

Parameters

  • socc (int) – The SoC Class that this credential applies to

  • uuid (bytes) – The bytes of the unique device identifier

  • rot_meta (bytes) – Metadata for Root of Trust

  • dck_pub (bytes) – Internal binary representation of Debug Credential public key

  • cc_socu (int) – The Credential Constraint value that the vendor has associated with this credential.

  • cc_vu (int) – The Vendor Usage constraint value that the vendor has associated with this credential.

  • cc_beacon (int) – The non-zero Credential Beacon value, which is bound to a DC

  • rot_pub (bytes) – Internal binary representation of RoT public key

  • signature (Optional[bytes]) – Debug Credential signature

  • signature_provider (Optional[SignatureProvider]) – external signature provider

CORD_LENGTH = 0
property FORMAT: str

Formatting string.

Return type

str

property FORMAT_NO_SIG: str

Formatting string without signature.

Return type

str

HASH_LENGTH = 0
KEY_LENGTH = 0
static calculate_flags(used_root_cert, rot_pub_keys)

Calculates flags in rotmeta.

Return type

bytes

static create_ctrk_table(rot_pub_keys)

Creates ctrk table.

Return type

bytes

export()

Export to binary form (serialization).

Return type

bytes

classmethod get_instance_from_challenge(data)

Returns instance of class from DAP authentication challenge data.

Return type

DebugCredential

Returns

Instance of this class.

info()

String representation of DebugCredential.

Return type

str

Returns

binary representation of the debug credential

classmethod parse(data, offset=0)

Parse the debug credential.

Parameters

  • data (bytes) – Raw data as bytes

  • offset (int) – Offset of input data

Return type

DebugCredential

Returns

DebugCredential object

Raises

SPSDKError – When flag is invalid

Module with Debug Authentication Challenge (DAC) Packet

Module with Debug Authentication Challenge (DAC) Packet.

class spsdk.dat.dac_packet.DebugAuthenticationChallenge(version, socc, uuid, rotid_rkh_revocation, rotid_rkth_hash, cc_soc_pinned, cc_soc_default, cc_vu, challenge)

Bases: object

Base class for DebugAuthenticationChallenge.

Initialize the DebugAuthenticationChallenge object.

Parameters

  • version (str) – The string representing version: for RSA: 1.0, for ECC: 2.0, 2.1, 2.2

  • socc (int) – The SoC Class that this credential applies to

  • uuid (bytes) – The string representing the unique device identifier

  • rotid_rkh_revocation (int) – State of certificate revocation field

  • rotid_rkth_hash (bytes) – The hash of roth-meta data

  • cc_soc_pinned (int) – State of lock bits in the debugger configuration field

  • cc_soc_default (int) – State of the debugger configuration field

  • cc_vu (int) – The Vendor usage that the vendor has associated with this credential

  • challenge (bytes) – Randomly generated bytes from the target

export()

Exports the DebugAuthenticationChallenge into bytes.

Return type

bytes

info()

String representation of DebugCredential.

Return type

str

classmethod parse(data, offset=0)

Parse the data into a DebugAuthenticationChallenge.

Parameters

  • data (bytes) – Raw data as bytes

  • offset (int) – Offset within the input data

Return type

DebugAuthenticationChallenge

Returns

DebugAuthenticationChallenge object

Module with Debug Authentication Response (DAR) Packet

Module with Debug Authentication Response (DAR) Packet.

class spsdk.dat.dar_packet.DebugAuthenticateResponse(debug_credential, auth_beacon, dac, path_dck_private)

Bases: object

Class for DAR packet.

Initialize the DebugAuthenticateResponse object.

Parameters

  • debug_credential (DebugCredential) – the path, where the dc is store

  • auth_beacon (int) – authentication beacon value

  • dac (DebugAuthenticationChallenge) – the path, where the dac is store

  • path_dck_private (str) – the path, where the dck private key is store

classmethod create(version, socc, dc, auth_beacon, dac, dck)

Create a dar object out of input parameters.

Parameters

  • version (str) – protocol version

  • socc (int) – SoC Class

  • dc (DebugCredential) – debug credential object

  • auth_beacon (int) – authentication beacon value

  • dac (DebugAuthenticationChallenge) – DebugAuthenticationChallenge object

  • dck (str) – string containing path to dck key

Return type

DebugAuthenticateResponse

Returns

DAR object

export()

Export to binary form (serialization).

Return type

bytes

Returns

the exported bytes from object

info()

String representation of DebugAuthenticateResponse.

Return type

str

classmethod parse(data, offset=0)

Parse the DAR.

Parameters

  • data (bytes) – Raw data as bytes

  • offset (int) – Offset of input data

Return type

DebugAuthenticateResponse

Returns

DebugAuthenticateResponse object

Raises

NotImplementedError – Derived class has to implement this method

class spsdk.dat.dar_packet.DebugAuthenticateResponseECC(debug_credential, auth_beacon, dac, path_dck_private)

Bases: spsdk.dat.dar_packet.DebugAuthenticateResponse

Class for ECC specific of DAR.

Initialize the DebugAuthenticateResponse object.

Parameters

  • debug_credential (DebugCredential) – the path, where the dc is store

  • auth_beacon (int) – authentication beacon value

  • dac (DebugAuthenticationChallenge) – the path, where the dac is store

  • path_dck_private (str) – the path, where the dck private key is store

class spsdk.dat.dar_packet.DebugAuthenticateResponseLpc55s3x(debug_credential, auth_beacon, dac, path_dck_private)

Bases: spsdk.dat.dar_packet.DebugAuthenticateResponse

Class for LPC55S3x specific of DAR.

Initialize the DebugAuthenticateResponse object.

Parameters

  • debug_credential (DebugCredential) – the path, where the dc is store

  • auth_beacon (int) – authentication beacon value

  • dac (DebugAuthenticationChallenge) – the path, where the dac is store

  • path_dck_private (str) – the path, where the dck private key is store

class spsdk.dat.dar_packet.DebugAuthenticateResponseLpc55s3x_256(debug_credential, auth_beacon, dac, path_dck_private)

Bases: spsdk.dat.dar_packet.DebugAuthenticateResponseLpc55s3x

Class for LPC55S3x specific of DAR, 256 bits sized keys.

Initialize the DebugAuthenticateResponse object.

Parameters

  • debug_credential (DebugCredential) – the path, where the dc is store

  • auth_beacon (int) – authentication beacon value

  • dac (DebugAuthenticationChallenge) – the path, where the dac is store

  • path_dck_private (str) – the path, where the dck private key is store

class spsdk.dat.dar_packet.DebugAuthenticateResponseLpc55s3x_384(debug_credential, auth_beacon, dac, path_dck_private)

Bases: spsdk.dat.dar_packet.DebugAuthenticateResponseLpc55s3x

Class for LPC55S3x specific of DAR, 384 bits sized keys.

Initialize the DebugAuthenticateResponse object.

Parameters

  • debug_credential (DebugCredential) – the path, where the dc is store

  • auth_beacon (int) – authentication beacon value

  • dac (DebugAuthenticationChallenge) – the path, where the dac is store

  • path_dck_private (str) – the path, where the dck private key is store

class spsdk.dat.dar_packet.DebugAuthenticateResponseRSA(debug_credential, auth_beacon, dac, path_dck_private)

Bases: spsdk.dat.dar_packet.DebugAuthenticateResponse

Class for RSA specifics of DAR packet.

Initialize the DebugAuthenticateResponse object.

Parameters

  • debug_credential (DebugCredential) – the path, where the dc is store

  • auth_beacon (int) – authentication beacon value

  • dac (DebugAuthenticationChallenge) – the path, where the dac is store

  • path_dck_private (str) – the path, where the dck private key is store

Module for NXP SPDK DebugMailbox support

Module for NXP SPSDK DebugMailbox support.

class spsdk.dat.debug_mailbox.DebugMailbox(debug_probe, reset=True, moredelay=1.0, op_timeout=4000)

Bases: object

Class for DebugMailbox.

Initialize DebugMailbox object.

Parameters

  • debug_probe (DebugProbe) – Debug probe instance.

  • reset (bool) – Do reset of debug mailbox during initialization, defaults to True.

  • moredelay (float) – Time of extra delay after reset sequence, defaults to 1.0.

  • op_timeout (int) – Atomic operation timeout, defaults to 4000.

Raises

SPSDKIOError – Various kind of vulnerabilities during connection to debug mailbox.

close()

Close session.

Return type

None

spin_read(reg)

Do atomic read operation to debugmailbox.

Parameters

reg (int) – Register address.

Return type

int

Returns

Read value.

Raises

SPSDKTimeoutError – When read operation exceed defined operation timeout.

spin_write(reg, value)

Do atomic write operation to debugmailbox.

Parameters

  • reg (int) – Register address.

  • value (int) – Value to write.

Raises

SPSDKTimeoutError – When write operation exceed defined operation timeout.

Return type

None

exception spsdk.dat.debug_mailbox.DebugMailboxError

Bases: RuntimeError

Class for DebugMailboxError.

Module with commands for Debug Mailbox

Commands for Debug Mailbox.

class spsdk.dat.dm_commands.DebugAuthenticationResponse(dm, paramlen)

Bases: spsdk.dat.dm_commands.DebugMailboxCommand

Class for DebugAuthenticationResponse.

Initialize.

class spsdk.dat.dm_commands.DebugAuthenticationStart(dm, resplen=26)

Bases: spsdk.dat.dm_commands.DebugMailboxCommand

Class for DebugAuthenticationStart.

Initialize.

class spsdk.dat.dm_commands.DebugMailboxCommand(dm, id, name='', paramlen=0, resplen=0, delay=0.03)

Bases: object

Class for DebugMailboxCommand.

Initialize.

DELAY_DEFAULT = 0.03
STATUS_IS_DATA_MASK = 0
run(params=None)

Run DebugMailboxCommand.

Return type

List[Any]

run_safe(raise_if_failure=True, **args)

Run a command and abort on first failure instead of looping forever.

Return type

Optional[List[Any]]

class spsdk.dat.dm_commands.EnterBlankDebugAuthentication(dm)

Bases: spsdk.dat.dm_commands.DebugMailboxCommand

Class for EnterBlankDebugAuthentication.

Initialize.

class spsdk.dat.dm_commands.EnterISPMode(dm)

Bases: spsdk.dat.dm_commands.DebugMailboxCommand

Class for EnterISPMode.

Initialize.

class spsdk.dat.dm_commands.EraseFlash(dm)

Bases: spsdk.dat.dm_commands.DebugMailboxCommand

Class for Erase Flash.

Initialize.

class spsdk.dat.dm_commands.ExitDebugMailbox(dm)

Bases: spsdk.dat.dm_commands.DebugMailboxCommand

Class for ExitDebugMailbox.

Initialize.

class spsdk.dat.dm_commands.GetCRPLevel(dm)

Bases: spsdk.dat.dm_commands.DebugMailboxCommand

Class for Get CRP Level.

Initialize.

STATUS_IS_DATA_MASK = 255
class spsdk.dat.dm_commands.SetFaultAnalysisMode(dm)

Bases: spsdk.dat.dm_commands.DebugMailboxCommand

Class for SetFaultAnalysisMode.

Initialize.

class spsdk.dat.dm_commands.StartDebugMailbox(dm)

Bases: spsdk.dat.dm_commands.DebugMailboxCommand

Class for StartDebugMailbox.

Initialize.

class spsdk.dat.dm_commands.StartDebugSession(dm)

Bases: spsdk.dat.dm_commands.DebugMailboxCommand

Class for StartDebugSession.

Initialize.

class spsdk.dat.dm_commands.StartDebugSessions(dm)

Bases: spsdk.dat.dm_commands.DebugMailboxCommand

Class for StartDebugSessions.

Initialize.

Module with common utils for DAT module

Common utils for DAT module.

spsdk.dat.utils.ecc_key_to_bytes(key, length=None)

Converts key into bytes.

Parameters

  • key (EllipticCurvePublicKey) – instance of ECC Public Key

  • length (Optional[int]) – length of bytes object to use

Return type

bytes

Returns

bytes representation

spsdk.dat.utils.ecc_public_numbers_to_bytes(public_numbers, length=None)

Converts public numbers from ECC key into bytes.

Parameters

  • public_numbers (EllipticCurvePublicNumbers) – instance of ecc public numbers

  • length (Optional[int]) – length of bytes object to use

Return type

bytes

Returns

bytes representation

spsdk.dat.utils.reconstruct_signature(signature_bytes, size=None)

Reconstructs signature.

Parameters

  • signature_bytes (bytes) – signature’s bytes

  • size (Optional[int]) – size of r and s bytes (from signature)

Return type

bytes

Returns

reconstructed signature

spsdk.dat.utils.rsa_key_to_bytes(key, exp_length=None, modulus_length=None)

Converts RSA key into bytes.

Parameters

  • key (Union[RSAPublicKey, RSAPrivateKey]) – Union of types: RSAPublicKey, RSAPrivateKeyWithSerialization

  • exp_length (Optional[int]) – Length of exponent’s bytes to use if none it will be calculated

  • modulus_length (Optional[int]) – Length of modulus’s bytes to use if none it will be calculated

Return type

bytes

Returns

Combined modulus and exponent bytes