You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
I manage a network of around 2-3 dozen Meshtastic devices, configured as clients, repeaters, and routers. These devices are provisioned using a standard configuration files. However, I've noticed the following issue:
Problem with Key Pairs:
When importing the configuration file, the security key pair (private and public) is included in the import file.
As a result, all devices now share the same key pair, causing direct messaging encryption to fail (since all devices use the same keys).
Key Sync Issue:
After upgrading the firmware, even if I generate new keys, the devices do not sync the updated public keys with the network.
I suspect the key synchronization is only triggered when the node name (node ID) changes, but I’m unsure if this is correct or if there’s another trigger for key resync.
Also via the Android App, it does not seem to be possible to set the key pair to blank and reboot the device to generate new keys (as the documentation suggests - maybe only via CLI?).
Questions:
Is there a way to regenerate or resync key pairs across all nodes without:
Re-flashing firmware?
Changing node names (do not believe the Node ID is configurable)?
Completely re-configuring the devices manually?
Can I forget the device and will that resync?
What triggers key synchronization between nodes, and how can I force a re-sync of public keys for the affected devices (I understand that there a trust implication with this)?
Is there a way to modify the configuration import process to exclude the key pairs and allow each device to generate unique keys?
reacted with thumbs up emoji reacted with thumbs down emoji reacted with laugh emoji reacted with hooray emoji reacted with confused emoji reacted with heart emoji reacted with rocket emoji reacted with eyes emoji
Meshtastic
-
Hi Community!
I manage a network of around 2-3 dozen Meshtastic devices, configured as clients, repeaters, and routers. These devices are provisioned using a standard configuration files. However, I've noticed the following issue:
Problem with Key Pairs:
When importing the configuration file, the security key pair (private and public) is included in the import file.
As a result, all devices now share the same key pair, causing direct messaging encryption to fail (since all devices use the same keys).
Key Sync Issue:
After upgrading the firmware, even if I generate new keys, the devices do not sync the updated public keys with the network.
I suspect the key synchronization is only triggered when the node name (node ID) changes, but I’m unsure if this is correct or if there’s another trigger for key resync.
Also via the Android App, it does not seem to be possible to set the key pair to blank and reboot the device to generate new keys (as the documentation suggests - maybe only via CLI?).
Questions:
Is there a way to regenerate or resync key pairs across all nodes without:
Re-flashing firmware?
Changing node names (do not believe the Node ID is configurable)?
Completely re-configuring the devices manually?
Can I forget the device and will that resync?
What triggers key synchronization between nodes, and how can I force a re-sync of public keys for the affected devices (I understand that there a trust implication with this)?
Is there a way to modify the configuration import process to exclude the key pairs and allow each device to generate unique keys?
Thank you for any assistance or insights!
Beta Was this translation helpful? Give feedback.
All reactions