Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Next revision		 Previous revision
docs:guide-developer:releases:provision-nitrokey3 [2023/05/13 14:39] – created ynezzdocs:guide-developer:releases:provision-nitrokey3 [2023/05/18 12:33] (current) – [Generate GPG key] fix ynezz
Line 55: Line 55:
  
 <code bash> <code bash>
-nk3 rng --length 4096 | sudo tee /dev/random | hexdump -C+nitropy nk3 rng --length 4096 | sudo tee /dev/random | hexdump -C
 </code> </code>
  
Line 61: Line 61:
  
 <code bash> <code bash>
-PASSPHRASE=$(gpg --gen-random --armor 0 60)+export PASSPHRASE=$(gpg --gen-random --armor 0 60)
  
-GNUPGHOME=$(mktemp -d -t gnupg_openwrt_nk3_$(date +%Y%m%d%H%M)_XXX)+export GNUPGHOME=$(mktemp -d -t gnupg_openwrt_nk3_$(date +%Y%m%d%H%M)_XXX)
  
 cat > $GNUPGHOME/gpg.conf << EOF cat > $GNUPGHOME/gpg.conf << EOF
Line 87: Line 87:
 EOF EOF
  
-cat > $GNUPGHOME/gpg-generate-nk3-keys.txt+cat > $GNUPGHOME/gpg-generate-nk3-keys.txt << EOF
   %echo Generating a Openwrt Build System signing key for Nitrokey3   %echo Generating a Openwrt Build System signing key for Nitrokey3
   Key-Type: eddsa   Key-Type: eddsa
Line 115: Line 115:
  
 <code bash> <code bash>
-KEYID=$(gpg --list-signatures --with-colons | grep sig: | cut -d: -f 5 | head -1)+export KEYID=$(gpg --list-signatures --with-colons | grep sig: | cut -d: -f 5 | head -1)
  
 gpg --export --armor | tee $GNUPGHOME/gnupg-openwrt-nk3-$KEYID.asc gpg --export --armor | tee $GNUPGHOME/gnupg-openwrt-nk3-$KEYID.asc
Line 132: Line 132:
  
 gpg/card> name gpg/card> name
-Cardholder's surname: Build System Key .+Cardholder's surname: Build System Key 3.
 Cardholder's given name: OpenWrt Cardholder's given name: OpenWrt
  
  • Last modified: 2023/05/13 14:39
  • by ynezz