C# hash signature of .bin firmware file not matching with with device ios Device-manager github code. does it have to? problems confirming image. correct length of bytes in write notification?

Hello, 

I will need to forward this to our mobile developers and get back to you. 

Please note that the DevZone team is currently entering Easter holiday and a delayed answer must be expected.

Kind regards,
Øyvind

Hello,

I'm not sure which sha256 are you referring to, so let me start from the beginning.

When you compile an app from NCS of Zephyr with MCU mgr enabled you will get a zip file created. This zip file contains a json file with metadata and binaries (one per core). Each binary in the zip is signed using a key given in compilation. The signature, among other values is added to the binary in a header. The header consist of a "magic value" and TLV (Type-Length-Value) fields. On snape of those fields is "hash". This is the sha256 of the firmware content in this binary. This is different than the sha256 of the full bin file or the zip file.

Current MCU manager protocol requires an image to be "tested" or "confirmed" after sending. To test/confirm an image the client sends an SMP command to Image group giving the hash obtained from the binary from TLV. This sets "pending" flag in the secondary slot and, in case of "confirm" also "permanent" flag (not the "confirmed" flag, which is set by the mcu boot later). A reset following this will cause mcu boot to swap slots.

https://github.com/NordicSemiconductor/Android-nRF-Connect-Device-Manager/blob/b450eb994523ebcba5c6d161f5a26e3484ce3022/mcumgr-core/src/main/java/io/runtime/mcumgr/image/McuMgrImage.java#L88

Here you can see parsing of the header and TLV.