/etc/strongswan.d/charon/pkcs11.conf is in strongswan-plugin-pkcs11 5.1.2-0ubuntu2.
This file is owned by root:root, with mode 0o644.
The actual contents of the file can be viewed below.
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 | pkcs11 {
# Whether to load the plugin. Can also be an integer to increase the
# priority of this plugin.
load = yes
# Whether to load certificates from tokens.
# load_certs = yes
# Reload certificates from all tokens if charon receives a SIGHUP.
# reload_certs = no
# Whether the PKCS#11 modules should be used for DH and ECDH (see use_ecc
# option).
# use_dh = no
# Whether the PKCS#11 modules should be used for ECDH and ECDSA public key
# operations. ECDSA private keys can be used regardless of this option.
# use_ecc = no
# Whether the PKCS#11 modules should be used to hash data.
# use_hasher = no
# Whether the PKCS#11 modules should be used for public key operations, even
# for keys not stored on tokens.
# use_pubkey = no
# Whether the PKCS#11 modules should be used as RNG.
# use_rng = no
# List of available PKCS#11 modules.
modules {
}
}
|