Guillaume GARDET
b023bfab1c
- Make 'parsec' user part of 'tss' group to access /dev/tpm* devices - Update to 0.7.2: * Changelog: https://github.com/parallaxsecond/parsec/compare/0.6.0...0.7.2 - Recommends 'softhsm' as it is used by PKCS#11 backend - Recommends 'opensc' as it is used to initialize HSM keys (PKCS#11 backend) - Add PKCS#11 template (disabled) in config.toml - Disable Tpm backend by default in config.toml OBS-URL: https://build.opensuse.org/request/show/882567 OBS-URL: https://build.opensuse.org/package/show/security/parsec?expand=0&rev=5
32 lines
708 B
TOML
32 lines
708 B
TOML
# See a more complete example in /usr/share/doc/packages/parsec/config.toml
|
|
[core_settings]
|
|
|
|
[listener]
|
|
listener_type = "DomainSocket"
|
|
timeout = 200 # in milliseconds
|
|
|
|
[authenticator]
|
|
auth_type = "UnixPeerCredentials"
|
|
|
|
[[key_manager]]
|
|
name = "on-disk-manager"
|
|
manager_type = "OnDisk"
|
|
|
|
[[provider]]
|
|
provider_type = "MbedCrypto"
|
|
key_info_manager = "on-disk-manager"
|
|
|
|
#[[provider]]
|
|
#provider_type = "Pkcs11"
|
|
#key_info_manager = "on-disk-manager"
|
|
#library_path = "/usr/lib64/pkcs11/libsofthsm2.so"
|
|
#slot_number = 123456789
|
|
#user_pin = "123456"
|
|
#software_public_operations = false
|
|
|
|
#[[provider]]
|
|
#provider_type = "Tpm"
|
|
#key_info_manager = "on-disk-manager"
|
|
#tcti = "device:/dev/tpmrm0"
|
|
#owner_hierarchy_auth = ""
|