swtpm-localca.conf - Online Linux Manual PageSection : 5
Updated : 2023-01-21
Source : swtpm
Note :
NAMEswtpm−localca.conf − Configuration file for swtpm_localca
DESCRIPTIONThe file /etc/swtpm−localca.conf contains configuration variables for the swtpm_localca program. Entries may contain environment variables that will be resolved. All environment variables must be formatted like this: '${varname}'. Users may write their own configuration into ${XDG_CONFIG_HOME}/swtpm−localca.conf or if XDG_CONFIG_HOME is not set it may be in ${HOME}/.config/swtpm−localca.conf. The following configuration variables are supported: statedir The name of a directory where to store data into. A lock will be created in this directory. signinkey The file containing the key used for signing the certificates. Provide a key in PEM format or a pkcs11 URI. signingkey_password The password to use for the signing key. issuercert The file containing the certificate for this CA. Provide a certificate in PEM format. certserial The name of file containing the serial number for the next certificate. TSS_TCSD_HOSTNAME This variable can be set to the host where tcsd is running on in case the signing key is a GnuTLS TPM 1.2 key. By default localhost will be used. TSS_TCSD_PORT This variable can be set to the port on which tcsd is listening for connections. By default port 30003 will be used. env:<environment variable name=<value>> Environment variables, that are needed by pkcs11 modules, can be set using this format. An example for such an environment variable may look like this: env:MY_MODULE_PKCS11_CONFIG = /tmp/mymodule−pkcs11.conf
The line must not contain any trailing spaces.
EXAMPLEAn example swtpm−localca.conf file may look as follows: statedir = /var/lib/swtpm_localca
signingkey = /var/lib/swtpm_localca/signkey.pem
issuercert = /var/lib/swtpm_localca/issuercert.pem
certserial = /var/lib/swtpm_localca/certserial
With a PKCS11 URI it may look like this: statedir = /var/lib/swtpm−localca
signingkey = pkcs11:model=SoftHSM%20v2;manufacturer=SoftHSM%20project;serial=891b99c169e41301;token=mylabel;id=%00;object=mykey;type=public
issuercert = /var/lib/swtpm−localca/swtpm−localca−tpmca−cert.pem
certserial = /var/lib/swtpm−localca/certserial
SWTPM_PKCS11_PIN = 1234
SEE ALSOswtpm_localca
REPORTING BUGSReport bugs to Stefan Berger <stefanb@linux.vnet.ibm.com> 0
Johanes Gumabo
Data Size : 8,573 byte
man-swtpm-localca.conf.5Build : 2024-12-05, 20:55 :
Visitor Screen : x
Visitor Counter ( page / site ) : 2 / 203,252
Visitor ID : :
Visitor IP : 3.138.123.240 :
Visitor Provider : AMAZON-02 :
Provider Position ( lat x lon ) : 39.962500 x -83.006100 : x
Provider Accuracy Radius ( km ) : 1000 :
Provider City : Columbus :
Provider Province : Ohio , : ,
Provider Country : United States :
Provider Continent : North America :
Visitor Recorder : Version :
Visitor Recorder : Library :
Online Linux Manual Page : Version : Online Linux Manual Page - Fedora.40 - march=x86-64 - mtune=generic - 24.12.05
Online Linux Manual Page : Library : lib_c - 24.10.03 - march=x86-64 - mtune=generic - Fedora.40
Online Linux Manual Page : Library : lib_m - 24.10.03 - march=x86-64 - mtune=generic - Fedora.40
Data Base : Version : Online Linux Manual Page Database - 24.04.13 - march=x86-64 - mtune=generic - fedora-38
Data Base : Library : lib_c - 23.02.07 - march=x86-64 - mtune=generic - fedora.36
Very long time ago, I have the best tutor, Wenzel Svojanovsky . If someone knows the email address of Wenzel Svojanovsky , please send an email to johanes_gumabo@yahoo.co.id .
If error, please print screen and send to johanes_gumabo@yahoo.co.id
Under development. Support me via PayPal.
ERROR : Need New Coding : (parse_manual_page_|249|swtpm-localca.conf.5|24/25|el══─{─══.|.el══─{─══. ds C`
) (htmlprn|149|swtpm-localca.conf.5|24/25|.el══─{─══. ds C` |.el══─{─══. ds C`
) (parse_manual_page_|249|swtpm-localca.conf.5|27|br══─}─══|'br══─}─══
) (htmlprn|149|swtpm-localca.conf.5|27|'br══─}─══ |'br══─}─══
)