[Gnuk-users] How to flash 4096 on FST-01 ?
NIIBE Yutaka
gniibe at fsij.org
Wed Jun 15 04:42:15 UTC 2016
On 06/11/2016 01:26 PM, Srinivas V wrote:
> Firstly is it possible on FST-01 to put 4096 keys?
Yes.
> FST-01 is the only one seems to keep things simple and open and clean
> regarding implementation and functionality. Importantly very very keen
> on selecting chips, technology etc.. not compromizing which is very very
> good.
Thanks.
> But, I see no instructions on how to put 4096 keys on it. I am ok to
> wait 10s for it. ( or I need a way to move to 4096 later without loosing
> WOT which I don't have any WOT yet as I am just trying to start in this.)
>
> I built 40b3516 (HEAD, origin/rsa_4096_support, rsa_4096_support)
No, the branch is not used any more. It was only used when we did
modifications for RSA-4096 support.
Please try master.
> and flashed it with
>
> #compile
> $./configure --vidpid="234b:0000" --target="FST_01" --enable-keygen
> $make
>
> #upload firmware
> $./stlinkv2.py -u
> $./stlinkv2.py ../src/build/gnuk.bin
>
> But I was not able to store 4096 keys.
Note that key generation is not supported for RSA-4096. STM32F103TB
doesn't have enough memory for key generation of RSA-4096.
Please generate your key on your host PC. Then, invoke 'gpg --edit-key'
with your key ID and do 'keytocard'. GnuPG will change key attribute
to RSA-4096 (from the default of RSA-2048) and put your private key
on to the Gnuk Token.
--
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 213 bytes
Desc: OpenPGP digital signature
URL: <http://lists.alioth.debian.org/pipermail/gnuk-users/attachments/20160615/0a2fba42/attachment.sig>
More information about the gnuk-users
mailing list