The tpm plugin offers random number generation

The tpm plugin can be used to derive true random numbers from a TPM 2.0 device. The get_random method must be explicitly enabled in strongswan.conf with the plugin.tpm.use_rng = yes option.
author: Andreas Steffen <andreas.steffen@strongswan.org> 2017-03-18 14:51:30 +0100
committer: Andreas Steffen <andreas.steffen@strongswan.org> 2017-03-20 21:16:10 +0100
commit: 2b233c8a6401ec7911177079aa89bbbf30feeefb (patch)
tree: 77b65d2183021a583e1ff2451092fea01f8b319d /conf
parent: 46d4d2a71e483de41ca0e0412c73da41b3b2f675 (diff)
download: strongswan-2b233c8a6401ec7911177079aa89bbbf30feeefb.tar.bz2
strongswan-2b233c8a6401ec7911177079aa89bbbf30feeefb.tar.xz
2 files changed, 3 insertions, 0 deletions
diff --git a/conf/Makefile.am b/conf/Makefile.am
index 41912c43a..731446a3e 100644
--- a/conf/Makefile.am
+++ b/conf/Makefile.am
@@ -93,6 +93,7 @@ plugins = \
 	plugins/tnc-pdp.opt \
 	plugins/tnccs-11.opt \
 	plugins/tnccs-20.opt \
+	plugins/tpm.opt \
 	plugins/unbound.opt \
 	plugins/updown.opt \
 	plugins/vici.opt \
diff --git a/conf/plugins/tpm.opt b/conf/plugins/tpm.opt
new file mode 100644
index 000000000..cd666dde8
--- /dev/null
+++ b/conf/plugins/tpm.opt
@@ -0,0 +1,2 @@
+charon.plugins.tpm.use_rng = no
+	Whether the TPM should be used as RNG.
author	Andreas Steffen <andreas.steffen@strongswan.org>	2017-03-18 14:51:30 +0100
committer	Andreas Steffen <andreas.steffen@strongswan.org>	2017-03-20 21:16:10 +0100
commit	2b233c8a6401ec7911177079aa89bbbf30feeefb (patch)
tree	77b65d2183021a583e1ff2451092fea01f8b319d /conf
parent	46d4d2a71e483de41ca0e0412c73da41b3b2f675 (diff)
download	strongswan-2b233c8a6401ec7911177079aa89bbbf30feeefb.tar.bz2 strongswan-2b233c8a6401ec7911177079aa89bbbf30feeefb.tar.xz