projects / thirdparty / strongswan.git / blame
| Commit | Line | Data |
|---|---|---|
| 828815b0 TB |
1 | charon.plugins.pkcs11.modules {} |
| 2 | List of available PKCS#11 modules. | |
| 3 | ||
| 124a1eb8 TB |
4 | charon.plugins.pkcs11.modules.<name>.path = |
| 5 | Full path to the shared object file of this PKCS#11 module. | |
| 6 | ||
| 7 | charon.plugins.pkcs11.modules.<name>.os_locking = no | |
| 8 | Whether OS locking should be enabled for this module. | |
| 9 | ||
| 10 | charon.plugins.pkcs11.modules.<name>.load_certs = yes | |
| 11 | Whether to automatically load certificates from tokens. | |
| 828815b0 TB |
12 | |
| 13 | charon.plugins.pkcs11.reload_certs = no | |
| 14 | Reload certificates from all tokens if charon receives a SIGHUP. | |
| 15 | ||
| 16 | charon.plugins.pkcs11.use_dh = no | |
| 17 | Whether the PKCS#11 modules should be used for DH and ECDH (see _use_ecc_ | |
| 18 | option). | |
| 19 | ||
| 20 | charon.plugins.pkcs11.use_ecc = no | |
| 21 | Whether the PKCS#11 modules should be used for ECDH and ECDSA public key | |
| 22 | operations. ECDSA private keys can be used regardless of this option. | |
| 23 | ||
| 24 | charon.plugins.pkcs11.use_hasher = no | |
| 25 | Whether the PKCS#11 modules should be used to hash data. | |
| 26 | ||
| 27 | charon.plugins.pkcs11.use_pubkey = no | |
| 28 | Whether the PKCS#11 modules should be used for public key operations, even | |
| 29 | for keys not stored on tokens. | |
| 30 | ||
| 31 | charon.plugins.pkcs11.use_rng = no | |
| 32 | Whether the PKCS#11 modules should be used as RNG. | |
| 49769fff AS |
33 | |
| 34 | charon.plugins.pkcs11.use_rsa_pss_hashers = no | |
| 35 | Whether the PKCS#11 modules should try to use internal hashing for RSA-PSS | |
| 36 | signatures (some PKCS#11 libraries don't implement internal hashing | |
| 37 | in conjunction with RSA-PSS correctly). |