Mercurial > dropbear
comparison options.h @ 839:33207ed1174b
Merge in ECC
| author | Matt Johnston <matt@ucc.asn.au> |
|---|---|
| date | Mon, 21 Oct 2013 22:57:21 +0800 |
| parents | 34b73c9d8aa3 |
| children | b298bb438625 6c69e7df3621 |
comparison
equal
deleted
inserted
replaced
| 834:e378da7eae5d | 839:33207ed1174b |
|---|---|
| 3 * All rights reserved. See LICENSE for the license. */ | 3 * All rights reserved. See LICENSE for the license. */ |
| 4 | 4 |
| 5 #ifndef _OPTIONS_H_ | 5 #ifndef _OPTIONS_H_ |
| 6 #define _OPTIONS_H_ | 6 #define _OPTIONS_H_ |
| 7 | 7 |
| 8 /****************************************************************** | 8 /* Define compile-time options below - the "#ifndef DROPBEAR_XXX .... #endif" |
| 9 * Define compile-time options below - the "#ifndef DROPBEAR_XXX .... #endif" | 9 * parts are to allow for commandline -DDROPBEAR_XXX options etc. */ |
| 10 * parts are to allow for commandline -DDROPBEAR_XXX options etc. | 10 |
| 11 ******************************************************************/ | 11 /* Important: Many options will require "make clean" after changes */ |
| 12 | 12 |
| 13 #ifndef DROPBEAR_DEFPORT | 13 #ifndef DROPBEAR_DEFPORT |
| 14 #define DROPBEAR_DEFPORT "22" | 14 #define DROPBEAR_DEFPORT "22" |
| 15 #endif | 15 #endif |
| 16 | 16 |
| 23 #ifndef DSS_PRIV_FILENAME | 23 #ifndef DSS_PRIV_FILENAME |
| 24 #define DSS_PRIV_FILENAME "/etc/dropbear/dropbear_dss_host_key" | 24 #define DSS_PRIV_FILENAME "/etc/dropbear/dropbear_dss_host_key" |
| 25 #endif | 25 #endif |
| 26 #ifndef RSA_PRIV_FILENAME | 26 #ifndef RSA_PRIV_FILENAME |
| 27 #define RSA_PRIV_FILENAME "/etc/dropbear/dropbear_rsa_host_key" | 27 #define RSA_PRIV_FILENAME "/etc/dropbear/dropbear_rsa_host_key" |
| 28 #endif | |
| 29 #ifndef ECDSA_PRIV_FILENAME | |
| 30 #define ECDSA_PRIV_FILENAME "/etc/dropbear/dropbear_ecdsa_host_key" | |
| 28 #endif | 31 #endif |
| 29 | 32 |
| 30 /* Set NON_INETD_MODE if you require daemon functionality (ie Dropbear listens | 33 /* Set NON_INETD_MODE if you require daemon functionality (ie Dropbear listens |
| 31 * on chosen ports and keeps accepting connections. This is the default. | 34 * on chosen ports and keeps accepting connections. This is the default. |
| 32 * | 35 * |
| 47 | 50 |
| 48 /* Set this if you want to use the DROPBEAR_SMALL_CODE option. This can save | 51 /* Set this if you want to use the DROPBEAR_SMALL_CODE option. This can save |
| 49 several kB in binary size however will make the symmetrical ciphers and hashes | 52 several kB in binary size however will make the symmetrical ciphers and hashes |
| 50 slower, perhaps by 50%. Recommended for small systems that aren't doing | 53 slower, perhaps by 50%. Recommended for small systems that aren't doing |
| 51 much traffic. */ | 54 much traffic. */ |
| 52 /*#define DROPBEAR_SMALL_CODE*/ | 55 #define DROPBEAR_SMALL_CODE |
| 53 | 56 |
| 54 /* Enable X11 Forwarding - server only */ | 57 /* Enable X11 Forwarding - server only */ |
| 55 #define ENABLE_X11FWD | 58 #define ENABLE_X11FWD |
| 56 | 59 |
| 57 /* Enable TCP Fowarding */ | 60 /* Enable TCP Fowarding */ |
| 134 * Removing either of these won't save very much space. | 137 * Removing either of these won't save very much space. |
| 135 * SSH2 RFC Draft requires dss, recommends rsa */ | 138 * SSH2 RFC Draft requires dss, recommends rsa */ |
| 136 #define DROPBEAR_RSA | 139 #define DROPBEAR_RSA |
| 137 #define DROPBEAR_DSS | 140 #define DROPBEAR_DSS |
| 138 | 141 |
| 142 #define DROPBEAR_ECDH | |
| 143 #define DROPBEAR_ECDSA | |
| 144 | |
| 139 /* RSA can be vulnerable to timing attacks which use the time required for | 145 /* RSA can be vulnerable to timing attacks which use the time required for |
| 140 * signing to guess the private key. Blinding avoids this attack, though makes | 146 * signing to guess the private key. Blinding avoids this attack, though makes |
| 141 * signing operations slightly slower. */ | 147 * signing operations slightly slower. */ |
| 142 #define RSA_BLINDING | 148 #define RSA_BLINDING |
| 143 | 149 |