Mercurial > dropbear
comparison default_options.h @ 1438:4f8eb331174f
add configuration option for default RSA size.
print key size with dropbearkey
| author | Matt Johnston <matt@ucc.asn.au> |
|---|---|
| date | Sat, 24 Jun 2017 23:32:25 +0800 |
| parents | 5abbecdecba4 |
| children | 517c67cbcd31 |
comparison
equal
deleted
inserted
replaced
| 1436:60fc6476e044 | 1438:4f8eb331174f |
|---|---|
| 8 | 8 |
| 9 Local customisation should be added to localoptions.h which is | 9 Local customisation should be added to localoptions.h which is |
| 10 used if it exists. Options defined there will override any options in this | 10 used if it exists. Options defined there will override any options in this |
| 11 file (#ifndef guards added by ifndef_wrapper.sh). | 11 file (#ifndef guards added by ifndef_wrapper.sh). |
| 12 | 12 |
| 13 Options can also be defined with -DDROPBEAR_XXX Makefile CFLAGS | 13 Options can also be defined with -DDROPBEAR_XXX in Makefile CFLAGS |
| 14 | 14 |
| 15 IMPORTANT: Many options will require "make clean" after changes */ | 15 IMPORTANT: Many options will require "make clean" after changes */ |
| 16 | 16 |
| 17 #ifndef DROPBEAR_DEFPORT | 17 #ifndef DROPBEAR_DEFPORT |
| 18 #define DROPBEAR_DEFPORT "22" | 18 #define DROPBEAR_DEFPORT "22" |
| 195 * code (either ECDSA or ECDH) increases binary size - around 30kB | 195 * code (either ECDSA or ECDH) increases binary size - around 30kB |
| 196 * on x86-64 */ | 196 * on x86-64 */ |
| 197 #ifndef DROPBEAR_ECDSA | 197 #ifndef DROPBEAR_ECDSA |
| 198 #define DROPBEAR_ECDSA 1 | 198 #define DROPBEAR_ECDSA 1 |
| 199 #endif | 199 #endif |
| 200 | |
| 201 /* RSA must be >=1024 */ | |
| 202 #ifndef DROPBEAR_DEFAULT_RSA_SIZE | |
| 203 #define DROPBEAR_DEFAULT_RSA_SIZE 2048 | |
| 204 #endif | |
| 205 /* DSS is always 1024 */ | |
| 206 /* ECDSA defaults to largest size configured, usually 521 */ | |
| 200 | 207 |
| 201 /* Add runtime flag "-R" to generate hostkeys as-needed when the first | 208 /* Add runtime flag "-R" to generate hostkeys as-needed when the first |
| 202 connection using that key type occurs. | 209 connection using that key type occurs. |
| 203 This avoids the need to otherwise run "dropbearkey" and avoids some problems | 210 This avoids the need to otherwise run "dropbearkey" and avoids some problems |
| 204 with badly seeded /dev/urandom when systems first boot. */ | 211 with badly seeded /dev/urandom when systems first boot. */ |