Mercurial > dropbear
comparison options.h @ 559:7f66b8e40f2d agent-client
propagate from branch 'au.asn.ucc.matt.dropbear' (head bbe4e11695a7b22bd89a722600eb4a4020b6fdf3)
to branch 'au.asn.ucc.matt.dropbear.cli-agent' (head 276cf5e82276b6c879d246ba64739ec6868f5150)
| author | Matt Johnston <matt@ucc.asn.au> |
|---|---|
| date | Wed, 29 Jul 2009 02:58:33 +0000 |
| parents | 568638be7203 daf52f813328 |
| children | 541ebf5bf0f6 |
comparison
equal
deleted
inserted
replaced
| 552:de3653483ac0 | 559:7f66b8e40f2d |
|---|---|
| 85 * Including multiple keysize variants the same cipher | 85 * Including multiple keysize variants the same cipher |
| 86 * (eg AES256 as well as AES128) will result in a minimal size increase.*/ | 86 * (eg AES256 as well as AES128) will result in a minimal size increase.*/ |
| 87 #define DROPBEAR_AES128 | 87 #define DROPBEAR_AES128 |
| 88 #define DROPBEAR_3DES | 88 #define DROPBEAR_3DES |
| 89 #define DROPBEAR_AES256 | 89 #define DROPBEAR_AES256 |
| 90 #define DROPBEAR_BLOWFISH | 90 /* Compiling in Blowfish will add ~6kB to runtime heap memory usage */ |
| 91 /*#define DROPBEAR_BLOWFISH*/ | |
| 91 #define DROPBEAR_TWOFISH256 | 92 #define DROPBEAR_TWOFISH256 |
| 92 #define DROPBEAR_TWOFISH128 | 93 #define DROPBEAR_TWOFISH128 |
| 93 | 94 |
| 94 /* Enable "Counter Mode" for ciphers. This is more secure than normal | 95 /* Enable "Counter Mode" for ciphers. This is more secure than normal |
| 95 * CBC mode against certain attacks. This adds around 1kB to binary | 96 * CBC mode against certain attacks. This adds around 1kB to binary |
| 127 /* Define DSS_PROTOK to use PuTTY's method of generating the value k for dss, | 128 /* Define DSS_PROTOK to use PuTTY's method of generating the value k for dss, |
| 128 * rather than just from the random byte source. Undefining this will save you | 129 * rather than just from the random byte source. Undefining this will save you |
| 129 * ~4k in binary size with static uclibc, but your DSS hostkey could be exposed | 130 * ~4k in binary size with static uclibc, but your DSS hostkey could be exposed |
| 130 * if the random number source isn't good. In general this isn't required */ | 131 * if the random number source isn't good. In general this isn't required */ |
| 131 /* #define DSS_PROTOK */ | 132 /* #define DSS_PROTOK */ |
| 133 | |
| 134 /* Control the memory/performance/compression tradeoff for zlib. | |
| 135 * Set windowBits=8, memLevel=1 for least memory usage, see your system's | |
| 136 * zlib.h for full details. | |
| 137 * Default settings (windowBits=15, memLevel=8) will use | |
| 138 * 256kB for compression + 32kB for decompression. | |
| 139 * windowBits=8, memLevel=1 will use 10kB compression + 32kB decompression. | |
| 140 * Note that windowBits is only set for deflate() - inflate() always uses the | |
| 141 * default of 15 so as to interoperate with other clients. */ | |
| 142 #ifndef DROPBEAR_ZLIB_WINDOW_BITS | |
| 143 #define DROPBEAR_ZLIB_WINDOW_BITS 15 | |
| 144 #endif | |
| 145 #ifndef DROPBEAR_ZLIB_MEM_LEVEL | |
| 146 #define DROPBEAR_ZLIB_MEM_LEVEL 8 | |
| 147 #endif | |
| 132 | 148 |
| 133 /* Whether to do reverse DNS lookups. */ | 149 /* Whether to do reverse DNS lookups. */ |
| 134 #define DO_HOST_LOOKUP | 150 #define DO_HOST_LOOKUP |
| 135 | 151 |
| 136 /* Whether to print the message of the day (MOTD). This doesn't add much code | 152 /* Whether to print the message of the day (MOTD). This doesn't add much code |
| 246 /* Size of the network receive window. This amount of memory is allocated | 262 /* Size of the network receive window. This amount of memory is allocated |
| 247 as a per-channel receive buffer. Increasing this value can make a | 263 as a per-channel receive buffer. Increasing this value can make a |
| 248 significant difference to network performance. 24kB was empirically | 264 significant difference to network performance. 24kB was empirically |
| 249 chosen for a 100mbit ethernet network. The value can be altered at | 265 chosen for a 100mbit ethernet network. The value can be altered at |
| 250 runtime with the -W argument. */ | 266 runtime with the -W argument. */ |
| 267 #ifndef DEFAULT_RECV_WINDOW | |
| 251 #define DEFAULT_RECV_WINDOW 24576 | 268 #define DEFAULT_RECV_WINDOW 24576 |
| 269 #endif | |
| 252 /* Maximum size of a received SSH data packet - this _MUST_ be >= 32768 | 270 /* Maximum size of a received SSH data packet - this _MUST_ be >= 32768 |
| 253 in order to interoperate with other implementations */ | 271 in order to interoperate with other implementations */ |
| 272 #ifndef RECV_MAX_PAYLOAD_LEN | |
| 254 #define RECV_MAX_PAYLOAD_LEN 32768 | 273 #define RECV_MAX_PAYLOAD_LEN 32768 |
| 274 #endif | |
| 255 /* Maximum size of a transmitted data packet - this can be any value, | 275 /* Maximum size of a transmitted data packet - this can be any value, |
| 256 though increasing it may not make a significant difference. */ | 276 though increasing it may not make a significant difference. */ |
| 277 #ifndef TRANS_MAX_PAYLOAD_LEN | |
| 257 #define TRANS_MAX_PAYLOAD_LEN 16384 | 278 #define TRANS_MAX_PAYLOAD_LEN 16384 |
| 279 #endif | |
| 258 | 280 |
| 259 /* Ensure that data is transmitted every KEEPALIVE seconds. This can | 281 /* Ensure that data is transmitted every KEEPALIVE seconds. This can |
| 260 be overridden at runtime with -K. 0 disables keepalives */ | 282 be overridden at runtime with -K. 0 disables keepalives */ |
| 261 #define DEFAULT_KEEPALIVE 0 | 283 #define DEFAULT_KEEPALIVE 0 |
| 262 | 284 |