Skip to content

mgmt: mcumgr: grp: img_mgmt: Add support for SHA512 in images #95332

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 2 commits into from
Sep 4, 2025
Merged

mgmt: mcumgr: grp: img_mgmt: Add support for SHA512 in images #95332

merged 2 commits into from
Sep 4, 2025
+22 −11

Conversation

nordicjm
Copy link
Contributor

@nordicjm nordicjm commented Sep 2, 2025

Adds support for images signed with SHA512.

@nordicjm nordicjm requested a review from de-nordic September 2, 2025 12:17
de-nordic
de-nordic previously approved these changes Sep 2, 2025
View reviewed changes
@kartben kartben requested a review from Copilot September 2, 2025 16:00
Copilot
Copilot AI reviewed Sep 2, 2025
View reviewed changes
Copy link

@Copilot Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull Request Overview

This PR adds support for SHA512 hash verification in the MCUmgr image management subsystem. The change enables the system to handle images signed with SHA512 instead of being limited to SHA256.

  • Introduces conditional compilation to support both SHA256 and SHA512 based on MCUboot configuration
  • Updates hash buffer sizes and TLV type checks throughout the image management code
  • Increases main stack size to accommodate larger hash processing requirements

Reviewed Changes

Copilot reviewed 4 out of 4 changed files in this pull request and generated 1 comment.

File Description
img_mgmt_priv.h Adds conditional macros for SHA algorithm selection and hash length based on MCUboot configuration
img_mgmt_state.c Updates hash buffer declarations and length checks to use new SHA-agnostic macros
img_mgmt.c Replaces hardcoded SHA256 references with configurable SHA macros in hash processing functions
prj.conf Increases main stack size to handle additional memory requirements for SHA512 processing

Tip: Customize your code reviews with copilot-instructions.md. Create the file or learn how to get started.

subsys/mgmt/mcumgr/grp/img_mgmt/src/img_mgmt_state.c Outdated
uint8_t hash[IMAGE_HASH_LEN]; /* SHA256 hash */
struct zcbor_string zhash = { .value = hash, .len = IMAGE_HASH_LEN };
uint8_t hash[IMAGE_SHA_LEN];
struct zcbor_string zhash = { .value = hash, .len = IMAGE_SHA_LEN};
Copy link
Preview

Copilot AI Sep 2, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

[nitpick] Missing space before the closing brace. Should be IMAGE_SHA_LEN }; for consistency with coding style.

Copilot uses AI. Check for mistakes.

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Fixed

@nordicjm
mgmt: mcumgr: grp: img_mgmt: Add support for SHA512 in images
a51f635 
Adds support for images signed with SHA512.

Signed-off-by: Dominik Ermel <dominik.ermel@nordicsemi.no>
Signed-off-by: Jamie McCrae <jamie.mccrae@nordicsemi.no>
@nordicjm
samples/smp_svr: Increase stack size required
cad1f94 
Increase stack size as support for SHA512 requires more data.

Signed-off-by: Dominik Ermel <dominik.ermel@nordicsemi.no>
Signed-off-by: Jamie McCrae <jamie.mccrae@nordicsemi.no>
@nordicjm nordicjm requested a review from de-nordic September 3, 2025 06:56
@sonarqubecloud SonarQubeCloud
Copy link

sonarqubecloud bot commented Sep 3, 2025

Quality Gate Passed Quality Gate passed

Issues
1 New issue
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud

@henrikbrixandersen henrikbrixandersen merged commit 81413f0 into zephyrproject-rtos:main Sep 4, 2025
26 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

Copilot code review Copilot Copilot left review comments

@kartben kartben kartben approved these changes

@de-nordic de-nordic de-nordic approved these changes

@JarmouniA JarmouniA Awaiting requested review from JarmouniA

@nashif nashif Awaiting requested review from nashif

Assignees

@kartben kartben

Labels
area: mcumgr area: Samples Samples
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
5 participants
@nordicjm @kartben @de-nordic @henrikbrixandersen @zephyrbot