mirror of
https://github.com/strongswan/strongswan.git
synced 2025-10-03 00:00:24 -04:00
38 lines
1.3 KiB
Plaintext
38 lines
1.3 KiB
Plaintext
charon.plugins.pkcs11.modules {}
|
|
List of available PKCS#11 modules.
|
|
|
|
charon.plugins.pkcs11.modules.<name>.path =
|
|
Full path to the shared object file of this PKCS#11 module.
|
|
|
|
charon.plugins.pkcs11.modules.<name>.os_locking = no
|
|
Whether OS locking should be enabled for this module.
|
|
|
|
charon.plugins.pkcs11.modules.<name>.load_certs = yes
|
|
Whether to automatically load certificates from tokens.
|
|
|
|
charon.plugins.pkcs11.reload_certs = no
|
|
Reload certificates from all tokens if charon receives a SIGHUP.
|
|
|
|
charon.plugins.pkcs11.use_dh = no
|
|
Whether the PKCS#11 modules should be used for DH and ECDH (see _use_ecc_
|
|
option).
|
|
|
|
charon.plugins.pkcs11.use_ecc = no
|
|
Whether the PKCS#11 modules should be used for ECDH and ECDSA public key
|
|
operations. ECDSA private keys can be used regardless of this option.
|
|
|
|
charon.plugins.pkcs11.use_hasher = no
|
|
Whether the PKCS#11 modules should be used to hash data.
|
|
|
|
charon.plugins.pkcs11.use_pubkey = no
|
|
Whether the PKCS#11 modules should be used for public key operations, even
|
|
for keys not stored on tokens.
|
|
|
|
charon.plugins.pkcs11.use_rng = no
|
|
Whether the PKCS#11 modules should be used as RNG.
|
|
|
|
charon.plugins.pkcs11.use_rsa_pss_hashers = no
|
|
Whether the PKCS#11 modules should try to use internal hashing for RSA-PSS
|
|
signatures (some PKCS#11 libraries don't implement internal hashing
|
|
in conjunction with RSA-PSS correctly).
|