forked from pool/parsec
Guillaume GARDET
747332bc19
- Requires 'tpm2-0-tss' as it holds the udev rule to make /dev/tpm* owned by tss user - Requires 'libtss2-tcti-device0' as it is required to start parsec with TPM support - Enable all authenticators which adds 'direct-authenticator' - Add CryptoAuthLib template (disabled) in config.toml OBS-URL: https://build.opensuse.org/request/show/885427 OBS-URL: https://build.opensuse.org/package/show/security/parsec?expand=0&rev=8
40 lines
872 B
TOML
40 lines
872 B
TOML
# See a more complete example in /usr/share/doc/packages/parsec/config.toml
|
|
[core_settings]
|
|
|
|
[listener]
|
|
listener_type = "DomainSocket"
|
|
timeout = 200 # in milliseconds
|
|
|
|
[authenticator]
|
|
auth_type = "UnixPeerCredentials"
|
|
|
|
[[key_manager]]
|
|
name = "on-disk-manager"
|
|
manager_type = "OnDisk"
|
|
|
|
[[provider]]
|
|
provider_type = "MbedCrypto"
|
|
key_info_manager = "on-disk-manager"
|
|
|
|
#[[provider]]
|
|
#provider_type = "Pkcs11"
|
|
#key_info_manager = "on-disk-manager"
|
|
#library_path = "/usr/lib64/opensc-pkcs11.so"
|
|
#slot_number = 123456789
|
|
#user_pin = "123456"
|
|
#software_public_operations = false
|
|
|
|
#[[provider]]
|
|
#provider_type = "Tpm"
|
|
#key_info_manager = "on-disk-manager"
|
|
#tcti = "device:/dev/tpmrm0"
|
|
#owner_hierarchy_auth = ""
|
|
|
|
#[[provider]]
|
|
#provider_type = "CryptoAuthLib"
|
|
#key_info_manager = "on-disk-manager"
|
|
#device_type = "atecc508a"
|
|
#iface_type = "i2c"
|
|
#wake_delay = 1500
|
|
#rx_retries = 20
|