From f7a98122ea7d35fc2c57dc00d6fd03c4cf4b7cc9 Mon Sep 17 00:00:00 2001 From: Andreas Steffen Date: Wed, 7 Sep 2011 08:02:44 +0200 Subject: added strongswan.conf attributes for attestation IMC/IMV --- man/strongswan.conf.5.in | 43 ++++++++++++++++++++++++++++++++----------- 1 file changed, 32 insertions(+), 11 deletions(-) diff --git a/man/strongswan.conf.5.in b/man/strongswan.conf.5.in index 3f6e14726..8701488b4 100644 --- a/man/strongswan.conf.5.in +++ b/man/strongswan.conf.5.in @@ -565,26 +565,47 @@ Debug level for a stand-alone libimcv library Disable output to stderr with a stand-alone libimcv library .SS libimcv plugins section .TP -.BR libimcv.plugins.imc_test.command " [none]" -Command to be sent to the Test IMV +.BR libimcv.plugins.imc-attestation.platform_info +Information on operating system and hardware platform .TP -.BR libimcv.plugins.imc_test.retry " [no]" -Do a handshake retry +.BR libimcv.plugins.imc-attestation.aik_cert +AIK certificate file .TP -.BR libimcv.plugins.imc_test.retry_command -Command to be sent to the Test IMV in the handshake retry +.BR libimcv.plugins.imc-attestation.aik_key +AIK public key file .TP -.BR libimcv.plugins.imv_test.rounds " [0]" -Number of IMC-IMV retry rounds +.BR libimcv.plugins.imv-attestation.cadir +Path to directory with AIK cacerts .TP -.BR libimcv.plugins.imv_scanner.closed_port_policy " [yes]" +.BR libimcv.plugins.imv-attestation.database +Path to database with file measurement information +.TP +.BR libimcv.plugins.imv-attestation.hash_algorithm " [sha1]" +Preferred measurement hash algorithm +.TP +.BR libimcv.plugins.imv-attestation.platform_info +Information on operating system and hardware platform +.TP +.BR libimcv.plugins.imv-scanner.closed_port_policy " [yes]" By default all ports must be closed (yes) or can be open (no) .TP -.BR libimcv.plugins.imv_scanner.tcp_ports +.BR libimcv.plugins.imv-scanner.tcp_ports List of TCP ports that can be open or must be closed .TP -.BR libimcv.plugins.imv_scanner.udp_ports +.BR libimcv.plugins.imv-scanner.udp_ports List of UDP ports that can be open or must be closed +.TP +.BR libimcv.plugins.imc-test.command " [none]" +Command to be sent to the Test IMV +.TP +.BR libimcv.plugins.imc-test.retry " [no]" +Do a handshake retry +.TP +.BR libimcv.plugins.imc-test.retry_command +Command to be sent to the Test IMV in the handshake retry +.TP +.BR libimcv.plugins.imv-test.rounds " [0]" +Number of IMC-IMV retry rounds .SS libtls section .TP .BR libtls.cipher -- cgit v1.2.3