Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Unable to change "Stored Key User Input Mode" to "Button Press Required" #170

Open
altsalt opened this issue Jul 29, 2021 · 5 comments
Open

Unable to change "Stored Key User Input Mode" to "Button Press Required" #170

altsalt opened this issue Jul 29, 2021 · 5 comments

Comments

@altsalt
Copy link

altsalt commented Jul 29, 2021

While trying to hunt down the solution to loading a new ECC Curve25519 master-key generated with GnuPG 2.2.27 using OnlyKey-App 5.3.3 and OnlyKey-Firmware 2.1.1, I found a thread suggesting that this needs "Stored Key User Input Mode" set to "Button Press Required". However, whenever I try to change this via the OnlyKey-App or onlykey-cli, it does not persist.

My OnlyKey is new, and I've yet to successfully load any keys due to a variety of issues that I've commented on/started.

What information can I provide to help debug this issue?

Thanks!
@altsalt altsalt mentioned this issue Jul 29, 2021
Closed
@onlykey
Copy link
Collaborator

onlykey commented Jul 29, 2021
edited
Loading

Your device must be in config mode to change this setting, if its not you receive this error
image

However, this setting has nothing to do with loading keys, this is for using keys - https://docs.crp.to/usersguide.html#stored-challenge-mode

For loading keys we recommend following our guide here which includes three supported methods - https://docs.crp.to/importpgp.html

@altsalt altsalt mentioned this issue Aug 5, 2021
Open
@altsalt
Copy link
Author

altsalt commented Aug 5, 2021

I've tried to modify this setting before and after having keys loaded into the first three ECC slots, but it still will not persist. Here are screenshots, happy to take further debugging steps.

1-OnlyKey_Button_Setting_Issue
2-OnlyKey_Button_Setting_Issue
3-OnlyKey_Button_Setting_Issue
4-OnlyKey_Button_Setting_Issue
5-OnlyKey_Button_Setting_Issue
6-OnlyKey_Button_Setting_Issue

@onlykey
Copy link
Collaborator

onlykey commented Aug 5, 2021

This is normal behavior. The setting is set, it doesn't show up in the app as the app is just for setting values and does not read values from key.

@altsalt
Copy link
Author

altsalt commented Aug 5, 2021

Is there a way to dump the current settings akin to holding 2 for 8+ seconds? For instance, I added labels to the ECC slots, but I can't actually tell if there is a key in them or not. Well, I can, since the web decryption works... Appreciate your responses to everything!

@onlykey
Copy link
Collaborator

onlykey commented Aug 6, 2021
edited
Loading

Currently nothing can be read about keys loaded other than the label set by user in the CLI, we may be able to add a get-public <slot #> in the future this is currently done by the GPG agent but is not supported in the CLI.

One workaround is to use the agent, if you get a public key there is a key in the slot, if not you receive an error (and OnlyKey flashes red):

$ onlykey-agent identity@myhost -sk 101

or for RSA keys

$ onlykey-agent identity@myhost -sk 1 -e rsa

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@altsalt @onlykey