Commit 94d85f91 authored by Dominik Ermel's avatar Dominik Ermel Committed by Dominik Ermel
Browse files

imgtool: Fix x25519 TLV HMAC tag 



HMAC-SHA512 has been incorrectly fed only 32 bytes of password.

Signed-off-by: default avatarDominik Ermel <dominik.ermel@nordicsemi.no>
parent 32db7886

scripts/imgtool/image.py

+1 −1
Original line number Diff line number Diff line
@@ -445,7 +445,7 @@ class Image: 
            newpk = X25519PrivateKey.generate()

            shared = newpk.exchange(enckey._get_public())

        derived_key = HKDF(

            algorithm=hmac_sha_alg, length=48, salt=None,

            algorithm=hmac_sha_alg, length=16 + hmac_sha_alg.digest_size, salt=None,

            info=b'MCUBoot_ECIES_v1', backend=default_backend()).derive(shared)

        encryptor = Cipher(algorithms.AES(derived_key[:16]),

                           modes.CTR(bytes([0] * 16)),

CRA Git | Maintained and supported by SUSTech CRA and CCSE