Mercurial > dropbear
comparison default_options.h.in @ 1438:4f8eb331174f
add configuration option for default RSA size.
print key size with dropbearkey
| author | Matt Johnston <matt@ucc.asn.au> |
|---|---|
| date | Sat, 24 Jun 2017 23:32:25 +0800 |
| parents | 750ec4ec4cbe |
| children | 517c67cbcd31 |
comparison
equal
deleted
inserted
replaced
| 1436:60fc6476e044 | 1438:4f8eb331174f |
|---|---|
| 8 | 8 |
| 9 Local customisation should be added to localoptions.h which is | 9 Local customisation should be added to localoptions.h which is |
| 10 used if it exists. Options defined there will override any options in this | 10 used if it exists. Options defined there will override any options in this |
| 11 file (#ifndef guards added by ifndef_wrapper.sh). | 11 file (#ifndef guards added by ifndef_wrapper.sh). |
| 12 | 12 |
| 13 Options can also be defined with -DDROPBEAR_XXX Makefile CFLAGS | 13 Options can also be defined with -DDROPBEAR_XXX in Makefile CFLAGS |
| 14 | 14 |
| 15 IMPORTANT: Many options will require "make clean" after changes */ | 15 IMPORTANT: Many options will require "make clean" after changes */ |
| 16 | 16 |
| 17 #define DROPBEAR_DEFPORT "22" | 17 #define DROPBEAR_DEFPORT "22" |
| 18 | 18 |
| 127 #define DROPBEAR_DSS 1 | 127 #define DROPBEAR_DSS 1 |
| 128 /* ECDSA is significantly faster than RSA or DSS. Compiling in ECC | 128 /* ECDSA is significantly faster than RSA or DSS. Compiling in ECC |
| 129 * code (either ECDSA or ECDH) increases binary size - around 30kB | 129 * code (either ECDSA or ECDH) increases binary size - around 30kB |
| 130 * on x86-64 */ | 130 * on x86-64 */ |
| 131 #define DROPBEAR_ECDSA 1 | 131 #define DROPBEAR_ECDSA 1 |
| 132 | |
| 133 /* RSA must be >=1024 */ | |
| 134 #define DROPBEAR_DEFAULT_RSA_SIZE 2048 | |
| 135 /* DSS is always 1024 */ | |
| 136 /* ECDSA defaults to largest size configured, usually 521 */ | |
| 132 | 137 |
| 133 /* Add runtime flag "-R" to generate hostkeys as-needed when the first | 138 /* Add runtime flag "-R" to generate hostkeys as-needed when the first |
| 134 connection using that key type occurs. | 139 connection using that key type occurs. |
| 135 This avoids the need to otherwise run "dropbearkey" and avoids some problems | 140 This avoids the need to otherwise run "dropbearkey" and avoids some problems |
| 136 with badly seeded /dev/urandom when systems first boot. */ | 141 with badly seeded /dev/urandom when systems first boot. */ |