3 ### tripe-keys configuration file
5 ### see tripe-keys.conf(5) for full details
7 ###--------------------------------------------------------------------------
8 ### File locations (required).
10 ## The base URL for the repository files. Include the trailing slash if
12 # base-url = http://some.server.somewhere/blah/
14 ## The local directory name for the repository files. Again, include the
15 ## trailing slash if necessary.
16 # base-dir = /some/directory/blah/
18 ###--------------------------------------------------------------------------
19 ### Crypto parameters.
21 ## The key-exchange type. May be `dh', `ec', `x25519', or `x448'.
24 ## Key-generation parameters for key exchange group.
25 # kx-param = -LS -b3072 -B256
26 # kx-param = -Cnist-p256
29 ## Expiry time for peer key-exchange keys.
30 # kx-expire = now + 1 year
32 ## Bulk crypto transform to use. May be `v0', `iiv', or `naclbox'.
35 ## Symmetric encryption scheme to use.
36 # cipher = rijndael-cbc
38 ## Hash function to use. (We derive the MGF and MAC from this.)
41 ## Signature scheme to use for signing/verifying repository archives.
46 ## How recently an archive must have been signed to be valid.
48 # sig-fresh = 28 days ago
50 ## When the master signing key expires.
51 # sig-expire = forever
53 ###--------------------------------------------------------------------------
54 ### Master key integrity
56 ## Since the master public key is contained within the repository, we must
57 ## check its integrity: therefore we record its sequence number and
58 ## fingerprint here. These are filled in automatically by `tripe-keys
59 ## upload'. Leave them as they are.
60 master-sequence = @MASTER-SEQUENCE@
61 hk-master = @HK-MASTER@