forked from pool/rust-keylime
Alberto Planas Dominguez
b18b7fcd26
- Update to version 0.2.4+git.1706692574.a744517: * Bump version to 0.2.4 * build(deps): bump uuid from 1.4.1 to 1.7.0 * keylime-agent.conf: Allow setting event logs paths * Mutable log paths: allow IMA and MBA log paths to be overridden by keylime configuration. * workflows: Update checkout action to version 4 * build(deps): bump serde from 1.0.188 to 1.0.195 * build(deps): bump pest_derive from 2.7.0 to 2.7.6 * build(deps): bump openssl from 0.10.62 to 0.10.63 * build(deps): bump config from 0.13.3 to 0.13.4 * build(deps): bump base64 from 0.21.4 to 0.21.7 * build(deps): bump tempfile from 3.8.0 to 3.9.0 * build(deps): bump pest from 2.7.0 to 2.7.6 * build(deps): bump actix-web from 4.4.0 to 4.4.1 * build(deps): bump reqwest from 0.11.22 to 0.11.23 * build(deps): bump h2 from 0.3.17 to 0.3.24 * build(deps): bump shlex from 1.1.0 to 1.3.0 * cargo: Bump tss-esapi to version 7.4.0 * workflows: Fix keylime-bot token usage * tpm: Add error context for every possible error * tpm: Add AlgorithmError to TpmError * detect idevid template from certificates * build(deps): bump wiremock from 0.5.18 to 0.5.22 * build(deps): bump thiserror from 1.0.48 to 1.0.56 * Make use of workspace dependencies * build(deps): bump openssl from 0.10.57 to 0.10.62 * packit: Bump Fedora version used for code coverage OBS-URL: https://build.opensuse.org/request/show/1142969 OBS-URL: https://build.opensuse.org/package/show/security/rust-keylime?expand=0&rev=65
43 lines
1.7 KiB
Diff
43 lines
1.7 KiB
Diff
Index: rust-keylime-0.2.0+git.1677002906.cf6c4f0/keylime-agent.conf
|
|
===================================================================
|
|
--- rust-keylime-0.2.0+git.1677002906.cf6c4f0.orig/keylime-agent.conf
|
|
+++ rust-keylime-0.2.0+git.1677002906.cf6c4f0/keylime-agent.conf
|
|
@@ -19,13 +19,15 @@ version = "2.2"
|
|
# of 'SHA256(public EK in PEM format)'.
|
|
#
|
|
# To override, set KEYLIME_AGENT_UUID environment variable.
|
|
-uuid = "d432fbb3-d2f1-4a97-9ef7-75bd81c00000"
|
|
+# uuid = "d432fbb3-d2f1-4a97-9ef7-75bd81c00000"
|
|
+uuid = "generate"
|
|
|
|
# The binding IP address and port for the agent server
|
|
#
|
|
# To override ip, set KEYLIME_AGENT_IP environment variable.
|
|
# To override port, set KEYLIME_AGENT_PORT environment variable.
|
|
-ip = "127.0.0.1"
|
|
+# ip = "127.0.0.1"
|
|
+ip = "0.0.0.0"
|
|
port = 9002
|
|
|
|
# Address and port where the verifier and tenant can connect to reach the agent.
|
|
@@ -41,7 +43,8 @@ contact_port = 9002
|
|
# To override registrar_ip, set KEYLIME_AGENT_REGISTRAR_IP environment variable.
|
|
# To override registrar_port, set KEYLIME_AGENT_REGISTRAR_PORT environment
|
|
# variable.
|
|
-registrar_ip = "127.0.0.1"
|
|
+# registrar_ip = "127.0.0.1"
|
|
+registrar_ip = "<REMOTE_IP>"
|
|
registrar_port = 8890
|
|
|
|
# Enable mTLS communication between agent, verifier and tenant.
|
|
@@ -151,7 +154,8 @@ revocation_actions_dir = "/usr/libexec/k
|
|
# KEYLIME_AGENT_REVOCATION_NOTIFICATION_IP environment variable.
|
|
# To override revocation_notification_port, set
|
|
# KEYLIME_AGENT_REVOCATION_NOTIFICATION_PORT environment variable.
|
|
-revocation_notification_ip = "127.0.0.1"
|
|
+# revocation_notification_ip = "127.0.0.1"
|
|
+revocation_notification_ip = "<REMOTE_IP>"
|
|
revocation_notification_port = 8992
|
|
|
|
# The path to the certificate to verify revocation messages received from the
|