nethsm_config

Enum NonAdministrativeSecretHandling

Source 
pub enum NonAdministrativeSecretHandling {
    Plaintext,
    SystemdCreds,
}
Expand description

The handling of non-administrative secrets.

Non-administrative secrets represent passphrases for (non-Administrator) NetHSM users and may be handled in different ways (e.g. encrypted or not encrypted).

Variants§

§

Plaintext

Each non-administrative secret is handled in a plaintext file in a non-volatile directory.

§Warning

This variant should only be used in non-production test setups, as it implies the persistence of unencrypted non-administrative secrets on a file system.

§

SystemdCreds

Each non-administrative secret is encrypted for a specific system user using systemd-creds and the resulting files are stored in a non-volatile directory.

§Note

Although secrets are stored as encrypted strings in dedicated files, they may be extracted under certain circumstances:

  • the root account is compromised
    • decrypts and exfiltrates all secrets
    • the secret is not encrypted using a TPM and the file /var/lib/systemd/credential.secret as well as any encrypted secret is exfiltrated
  • a specific user is compromised, decrypts and exfiltrates its own ssecret

It is therefore crucial to follow common best-practices:

  • rely on a TPM for encrypting secrets, so that files become host-specific
  • heavily guard access to all users, especially root

Trait Implementations§

Source§

impl Clone for NonAdministrativeSecretHandling

Source§

fn clone(&self) -> NonAdministrativeSecretHandling

Returns a copy of the value. Read more
1.0.0 · Source§

fn clone_from(&mut self, source: &Self)

Performs copy-assignment from source. Read more
Source§

impl Debug for NonAdministrativeSecretHandling

Source§

fn fmt(&self, f: &mut Formatter<'_>) -> Result

Formats the value using the given formatter. Read more
Source§

impl Default for NonAdministrativeSecretHandling

Source§

fn default() -> NonAdministrativeSecretHandling

Returns the “default value” for a type. Read more
Source§

impl<'de> Deserialize<'de> for NonAdministrativeSecretHandling

Source§

fn deserialize<__D>(__deserializer: __D) -> Result<Self, __D::Error>
where __D: Deserializer<'de>,

Deserialize this value from the given Serde deserializer. Read more
Source§

impl PartialEq for NonAdministrativeSecretHandling

Source§

fn eq(&self, other: &NonAdministrativeSecretHandling) -> bool

Tests for self and other values to be equal, and is used by ==.
1.0.0 · Source§

fn ne(&self, other: &Rhs) -> bool

Tests for !=. The default implementation is almost always sufficient, and should not be overridden without very good reason.
Source§

impl Serialize for NonAdministrativeSecretHandling

Source§

fn serialize<__S>(&self, __serializer: __S) -> Result<__S::Ok, __S::Error>
where __S: Serializer,

Serialize this value into the given Serde serializer. Read more
Source§

impl Copy for NonAdministrativeSecretHandling

Source§

impl Eq for NonAdministrativeSecretHandling

Source§

impl StructuralPartialEq for NonAdministrativeSecretHandling

Auto Trait Implementations§

Blanket Implementations§

Source§

impl<T> Any for T
where T: 'static + ?Sized,

Source§

fn type_id(&self) -> TypeId

Gets the TypeId of self. Read more
Source§

impl<T> Borrow<T> for T
where T: ?Sized,

Source§

fn borrow(&self) -> &T

Immutably borrows from an owned value. Read more
Source§

impl<T> BorrowMut<T> for T
where T: ?Sized,

Source§

fn borrow_mut(&mut self) -> &mut T

Mutably borrows from an owned value. Read more
Source§

impl<T> CloneToUninit for T
where T: Clone,

Source§

unsafe fn clone_to_uninit(&self, dst: *mut u8)

🔬This is a nightly-only experimental API. (clone_to_uninit)
Performs copy-assignment from self to dst. Read more
§

impl<Q, K> Equivalent<K> for Q
where Q: Eq + ?Sized, K: Borrow<Q> + ?Sized,

§

fn equivalent(&self, key: &K) -> bool

Checks if this value is equivalent to the given key. Read more
§

impl<Q, K> Equivalent<K> for Q
where Q: Eq + ?Sized, K: Borrow<Q> + ?Sized,

§

fn equivalent(&self, key: &K) -> bool

Compare self to key and return true if they are equal.
Source§

impl<T> From<T> for T

Source§

fn from(t: T) -> T

Returns the argument unchanged.

Source§

impl<T, U> Into<U> for T
where U: From<T>,

Source§

fn into(self) -> U

Calls U::from(self).

That is, this conversion is whatever the implementation of From<T> for U chooses to do.

Source§

impl<T> Same for T

Source§

type Output = T

Should always be Self
Source§

impl<T> ToOwned for T
where T: Clone,

Source§

type Owned = T

The resulting type after obtaining ownership.
Source§

fn to_owned(&self) -> T

Creates owned data from borrowed data, usually by cloning. Read more
Source§

fn clone_into(&self, target: &mut T)

Uses borrowed data to replace owned data, usually by cloning. Read more
Source§

impl<T, U> TryFrom<U> for T
where U: Into<T>,

Source§

type Error = Infallible

The type returned in the event of a conversion error.
Source§

fn try_from(value: U) -> Result<T, <T as TryFrom<U>>::Error>

Performs the conversion.
Source§

impl<T, U> TryInto<U> for T
where U: TryFrom<T>,

Source§

type Error = <U as TryFrom<T>>::Error

The type returned in the event of a conversion error.
Source§

fn try_into(self) -> Result<U, <U as TryFrom<T>>::Error>

Performs the conversion.
§

impl<V, T> VZip<V> for T
where V: MultiLane<T>,

§

fn vzip(self) -> V

Source§

impl<T> DeserializeOwned for T
where T: for<'de> Deserialize<'de>,

§

impl<T> ErasedDestructor for T
where T: 'static,

§

impl<T> MaybeSendSync for T