diff options
author | Christian Grothoff <christian@grothoff.org> | 2020-12-24 14:48:21 +0100 |
---|---|---|
committer | Christian Grothoff <christian@grothoff.org> | 2020-12-24 14:48:21 +0100 |
commit | fe732cd38e1f2c0bc2ee8c2377cbfd95aff5167b (patch) | |
tree | b3d3407dc2985cb3d6ae2f46db7f602df9a870f6 | |
parent | c6d233e6ed52ff054f02ccb57762bb577d5e76f8 (diff) | |
download | docs-fe732cd38e1f2c0bc2ee8c2377cbfd95aff5167b.tar.gz docs-fe732cd38e1f2c0bc2ee8c2377cbfd95aff5167b.tar.bz2 docs-fe732cd38e1f2c0bc2ee8c2377cbfd95aff5167b.zip |
document offline options
-rw-r--r-- | manpages/taler.conf.5.rst | 22 | ||||
-rw-r--r-- | taler-auditor-manual.rst | 8 |
2 files changed, 30 insertions, 0 deletions
diff --git a/manpages/taler.conf.5.rst b/manpages/taler.conf.5.rst index 66e9699d..f6a192d3 100644 --- a/manpages/taler.conf.5.rst +++ b/manpages/taler.conf.5.rst @@ -157,6 +157,28 @@ EXCHANGE OFFLINE SIGNING OPTIONS The following options must be in the section "[exchange-offline]". +MASTER_PRIV_FILE + Where to store the offline private key of the exchange. + Mandatory. + +SECM_TOFU_FILE + Where to store the public keys of both crypto helper modules. + Used to persist the keys after the first invocation of the tool, + so that if they ever change in the future, this is detected and + the tool can abort. + Mandatory. + +SECM_DENOM_PUBKEY + Public key of the (RSA) crypto helper module. Optional. If not given, + we will rely on TOFU. Note that once TOFU has been established, + this option will also be ignored. + +SECM_ESIGN_PUBKEY + Public key of the (EdDSA) crypto helper module. Optional. If not given, + we will rely on TOFU. Note that once TOFU has been established, + this option will also be ignored. + + EXCHANGE RSA CRYPTO HELPER OPTIONS ------------------------------ diff --git a/taler-auditor-manual.rst b/taler-auditor-manual.rst index 3bab780f..d81b7ce8 100644 --- a/taler-auditor-manual.rst +++ b/taler-auditor-manual.rst @@ -699,6 +699,14 @@ Invariants checked by the taler-helper-auditor-coins This is from CodeBlau's analysis. A proper write-up is pending. CodeBlau reports the following checks: +- check that all denominations used by the exchange have been signed using + this auditor's key. All denominations encountered in the database that + this auditor did not officially sign for are reported (but still included + in the audit as they obviously may impact the exchange's bank balance). + Depending on the business situation, this may be normal (say if an exchange + is changing auditors and newer denominations are no longer supported until + their end-of-life by the current auditor). + - emergency on denomination over loss - value of coins deposited exceed value of coins issued |