-
Notifications
You must be signed in to change notification settings - Fork 55
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
NK Storage: Combine menu entries Generate Keys and Initialize Storage WIth Random Data #45
Comments
@jans23 Should these two entries always merged or only on first initialization? |
Always.Sent from a mobile device. |
Tested on Ubuntu 16.04 with scenario:
Nitrokey Storage, Unity, with HAVE_LIBAPPINDICATOR=ON and OFF 'Initialize device' is visible in both cases: when device is not initialized or when sd card is not initialiazed. Warning text updated. |
@jans23 Please let me know if that works for you - branch issue_45 |
Merged to master. Please reopen if any modifications would be needed. |
The command "destroy encrypted data" should only trigger generating new AES keys but not initializing the storage with random data. |
@jans23 Please retest and close if correct. |
@szszszsz
Think of it this way: The storage needs to be initialized only once in a device's lifetime. The AES keys may be generated over and over. Reality check: Most of it is working as expected except the sentence marked in bold. After destroying encrypted data the command "initialized device" is displayed again. Instead it shouldn't and the device should work as fully initialized. Please let me know if fixing this issue should involve a modification of the firmware. |
Hi @jans23 |
Hi @szszszsz |
Currently generating new AES keys sets stick's flag
I will submit proper issue report to NK Storage firmware. |
New patch is in branch |
Describing the expected behaviour in different terms:
As long as the device is not flashed or reset to factory defaults the storage is not formated with random data again. |
@jans23 Please test and close if all is correct. |
When using a brand new Nitrokey Storage the App shows two menu entries:
Both entries should be combined to "initialize device". When this function is selected the AES keys should be generated first and the mass storage be initialized afterwards.
Also the text of warning dialogs, which are displayed as long as the device is not initialized, should be updated and refer to "initialize device".
The text was updated successfully, but these errors were encountered: