… | |
… | |
767 | enable_static_daemon |
767 | enable_static_daemon |
768 | enable_icmp |
768 | enable_icmp |
769 | enable_tcp |
769 | enable_tcp |
770 | enable_http_proxy |
770 | enable_http_proxy |
771 | enable_dns |
771 | enable_dns |
|
|
772 | enable_rsa_length |
772 | enable_hmac_length |
773 | enable_hmac_length |
773 | enable_rand_length |
774 | enable_rand_length |
774 | enable_max_mtu |
775 | enable_max_mtu |
775 | enable_compression |
776 | enable_compression |
776 | enable_cipher |
777 | enable_cipher |
777 | enable_digest |
778 | enable_digest |
|
|
779 | enable_auth_digest |
778 | ' |
780 | ' |
779 | ac_precious_vars='build_alias |
781 | ac_precious_vars='build_alias |
780 | host_alias |
782 | host_alias |
781 | target_alias |
783 | target_alias |
782 | CC |
784 | CC |
… | |
… | |
1428 | --disable-icmp enable icmp protocol support (default enabled). |
1430 | --disable-icmp enable icmp protocol support (default enabled). |
1429 | --disable-tcp enable tcp protocol support (default enabled). |
1431 | --disable-tcp enable tcp protocol support (default enabled). |
1430 | --disable-http-proxy enable http proxy connect support (default enabled). |
1432 | --disable-http-proxy enable http proxy connect support (default enabled). |
1431 | --enable-dns enable dns tunnel protocol support (default |
1433 | --enable-dns enable dns tunnel protocol support (default |
1432 | disabled). |
1434 | disabled). |
|
|
1435 | --enable-rsa-length=BITS |
|
|
1436 | use BITS rsa keys (default 3072). Allowed values are |
|
|
1437 | 1536-10240. |
1433 | --enable-hmac-length=BYTES |
1438 | --enable-hmac-length=BYTES |
1434 | use a hmac of length BYTES bytes (default 12). |
1439 | use a hmac of length BYTES bytes (default 12). |
1435 | Allowed values are 4, 8, 12, 16. |
1440 | Allowed values are 4, 8, 12, 16. |
1436 | --enable-rand-length=BYTES |
1441 | --enable-rand-length=BYTES |
1437 | use BYTES bytes of extra randomness (default 8). |
1442 | use BYTES bytes of extra randomness (default 8). |
… | |
… | |
1439 | --enable-max-mtu=BYTES enable mtu sizes upto BYTES bytes (default 1500). |
1444 | --enable-max-mtu=BYTES enable mtu sizes upto BYTES bytes (default 1500). |
1440 | Use 9100 for jumbogram support. |
1445 | Use 9100 for jumbogram support. |
1441 | --disable-compression Disable compression support. |
1446 | --disable-compression Disable compression support. |
1442 | --enable-cipher=CIPHER Select the symmetric cipher (default "aes-128"). |
1447 | --enable-cipher=CIPHER Select the symmetric cipher (default "aes-128"). |
1443 | Must be one of "bf" (blowfish), "aes-128" |
1448 | Must be one of "bf" (blowfish), "aes-128" |
1444 | (rijndael), "aes-192" or "aes-256". |
1449 | (rijndael), "aes-192", "aes-256", "camellia-128" or |
|
|
1450 | "camellia-256". |
1445 | --enable-digest=CIPHER Select the digest algorithm to use (default |
1451 | --enable-digest=DIGEST Select the digest algorithm to use (default "sha1"). |
1446 | "ripemd160"). Must be one of "sha512", "sha256", |
1452 | Must be one of "sha512", "sha256", "sha1", |
1447 | "sha1" (somewhat insecure), "ripemd160", "md5" |
1453 | "ripemd160", "whirlpool". |
1448 | (insecure) or "md4" (insecure). |
1454 | --enable-auth-digest=DIGEST |
|
|
1455 | Select the hmac algorithm to use (default "sha512"). |
|
|
1456 | Must be one of "sha512", "sha256", "whirlpool". |
1449 | |
1457 | |
1450 | Optional Packages: |
1458 | Optional Packages: |
1451 | --with-PACKAGE[=ARG] use PACKAGE [ARG=yes] |
1459 | --with-PACKAGE[=ARG] use PACKAGE [ARG=yes] |
1452 | --without-PACKAGE do not use PACKAGE (same as --with-PACKAGE=no) |
1460 | --without-PACKAGE do not use PACKAGE (same as --with-PACKAGE=no) |
1453 | --with-gnu-ld assume the C compiler uses GNU ld default=no |
1461 | --with-gnu-ld assume the C compiler uses GNU ld default=no |
… | |
… | |
3199 | fi |
3207 | fi |
3200 | |
3208 | |
3201 | |
3209 | |
3202 | # Define the identity of the package. |
3210 | # Define the identity of the package. |
3203 | PACKAGE=gvpe |
3211 | PACKAGE=gvpe |
3204 | VERSION=2.24 |
3212 | VERSION=2.25 |
3205 | |
3213 | |
3206 | |
3214 | |
3207 | cat >>confdefs.h <<_ACEOF |
3215 | cat >>confdefs.h <<_ACEOF |
3208 | #define PACKAGE "$PACKAGE" |
3216 | #define PACKAGE "$PACKAGE" |
3209 | _ACEOF |
3217 | _ACEOF |
… | |
… | |
8585 | |
8593 | |
8586 | |
8594 | |
8587 | fi |
8595 | fi |
8588 | |
8596 | |
8589 | |
8597 | |
|
|
8598 | RSA=3072 |
|
|
8599 | # Check whether --enable-rsa-length was given. |
|
|
8600 | if test "${enable_rsa_length+set}" = set; then : |
|
|
8601 | enableval=$enable_rsa_length; RSA=$enableval |
|
|
8602 | |
|
|
8603 | fi |
|
|
8604 | |
|
|
8605 | |
|
|
8606 | cat >>confdefs.h <<_ACEOF |
|
|
8607 | #define RSABITS $RSA |
|
|
8608 | _ACEOF |
|
|
8609 | |
|
|
8610 | |
8590 | HMAC=12 |
8611 | HMAC=12 |
8591 | # Check whether --enable-hmac-length was given. |
8612 | # Check whether --enable-hmac-length was given. |
8592 | if test "${enable_hmac_length+set}" = set; then : |
8613 | if test "${enable_hmac_length+set}" = set; then : |
8593 | enableval=$enable_hmac_length; HMAC=$enableval |
8614 | enableval=$enable_hmac_length; HMAC=$enableval |
8594 | |
8615 | |
… | |
… | |
8642 | |
8663 | |
8643 | |
8664 | |
8644 | CIPHER=aes_128_cbc |
8665 | CIPHER=aes_128_cbc |
8645 | # Check whether --enable-cipher was given. |
8666 | # Check whether --enable-cipher was given. |
8646 | if test "${enable_cipher+set}" = set; then : |
8667 | if test "${enable_cipher+set}" = set; then : |
8647 | enableval=$enable_cipher; if test "x$enableval" = xbf ; then CIPHER=bf_cbc ; fi |
8668 | enableval=$enable_cipher; if test "x$enableval" = xbf ; then CIPHER=bf_cbc ; fi |
8648 | if test "x$enableval" = xaes-128; then CIPHER=aes_128_cbc; fi |
8669 | if test "x$enableval" = xaes-128 ; then CIPHER=aes_128_cbc ; fi |
8649 | if test "x$enableval" = xaes-192; then CIPHER=aes_192_cbc; fi |
8670 | if test "x$enableval" = xaes-192 ; then CIPHER=aes_192_cbc ; fi |
8650 | if test "x$enableval" = xaes-256; then CIPHER=aes_256_cbc; fi |
8671 | if test "x$enableval" = xaes-256 ; then CIPHER=aes_256_cbc ; fi |
|
|
8672 | if test "x$enableval" = xcamellia-128; then CIPHER=camellia_128_cbc; fi |
|
|
8673 | if test "x$enableval" = xcamellia-256; then CIPHER=camellia_256_cbc; fi |
8651 | |
8674 | |
8652 | fi |
8675 | fi |
8653 | |
8676 | |
8654 | |
8677 | |
8655 | cat >>confdefs.h <<_ACEOF |
8678 | cat >>confdefs.h <<_ACEOF |
8656 | #define ENABLE_CIPHER EVP_${CIPHER} |
8679 | #define ENABLE_CIPHER EVP_${CIPHER} |
8657 | _ACEOF |
8680 | _ACEOF |
8658 | |
8681 | |
8659 | |
8682 | |
8660 | DIGEST=ripemd160 |
8683 | DIGEST=sha1 |
8661 | # Check whether --enable-digest was given. |
8684 | # Check whether --enable-digest was given. |
8662 | if test "${enable_digest+set}" = set; then : |
8685 | if test "${enable_digest+set}" = set; then : |
|
|
8686 | enableval=$enable_digest; if test "x$enableval" = xwhirlpool; then DIGEST=whirlpool; fi |
8663 | enableval=$enable_digest; if test "x$enableval" = xsha512 ; then DIGEST=sha512 ; fi |
8687 | if test "x$enableval" = xsha512 ; then DIGEST=sha512 ; fi |
8664 | if test "x$enableval" = xsha256 ; then DIGEST=sha256 ; fi |
8688 | if test "x$enableval" = xsha256 ; then DIGEST=sha256 ; fi |
8665 | if test "x$enableval" = xsha1 ; then DIGEST=sha1 ; fi |
8689 | if test "x$enableval" = xsha1 ; then DIGEST=sha1 ; fi |
8666 | if test "x$enableval" = xripemd160; then DIGEST=ripemd160; fi |
8690 | if test "x$enableval" = xripemd160; then DIGEST=ripemd160; fi |
8667 | if test "x$enableval" = xmd5 ; then DIGEST=md5 ; fi |
|
|
8668 | if test "x$enableval" = xmd4 ; then DIGEST=md4 ; fi |
|
|
8669 | |
8691 | |
8670 | fi |
8692 | fi |
8671 | |
8693 | |
8672 | |
8694 | |
8673 | cat >>confdefs.h <<_ACEOF |
8695 | cat >>confdefs.h <<_ACEOF |
8674 | #define ENABLE_DIGEST EVP_${DIGEST} |
8696 | #define ENABLE_DIGEST EVP_${DIGEST} |
|
|
8697 | _ACEOF |
|
|
8698 | |
|
|
8699 | |
|
|
8700 | AUTH=sha512 |
|
|
8701 | # Check whether --enable-auth-digest was given. |
|
|
8702 | if test "${enable_auth_digest+set}" = set; then : |
|
|
8703 | enableval=$enable_auth_digest; if test "x$enableval" = xwhirlpool; then AUTH=whirlpool; fi |
|
|
8704 | if test "x$enableval" = xsha512 ; then AUTH=sha512 ; fi |
|
|
8705 | if test "x$enableval" = xsha256 ; then AUTH=sha256 ; fi |
|
|
8706 | |
|
|
8707 | fi |
|
|
8708 | |
|
|
8709 | |
|
|
8710 | cat >>confdefs.h <<_ACEOF |
|
|
8711 | #define ENABLE_AUTH EVP_${AUTH} |
8675 | _ACEOF |
8712 | _ACEOF |
8676 | |
8713 | |
8677 | |
8714 | |
8678 | if $CXX -v --help 2>&1 | grep -q fno-rtti; then |
8715 | if $CXX -v --help 2>&1 | grep -q fno-rtti; then |
8679 | CXXFLAGS="$CXXFLAGS -fno-rtti" |
8716 | CXXFLAGS="$CXXFLAGS -fno-rtti" |
… | |
… | |
10263 | echo |
10300 | echo |
10264 | echo "***" |
10301 | echo "***" |
10265 | echo "*** Configuration Summary" |
10302 | echo "*** Configuration Summary" |
10266 | echo "***" |
10303 | echo "***" |
10267 | echo "*** Kernel Iface: $IFTYPE/$IFSUBTYPE" |
10304 | echo "*** Kernel Iface: $IFTYPE/$IFSUBTYPE" |
|
|
10305 | echo "*** RSA size: $RSA" |
10268 | echo "*** Cipher used: $CIPHER" |
10306 | echo "*** Cipher used: $CIPHER" |
10269 | echo "*** Digest used: $DIGEST" |
10307 | echo "*** Digest used: $DIGEST" |
|
|
10308 | echo "*** Authdigest: $AUTH" |
10270 | echo "*** HMAC length: $HMAC" |
10309 | echo "*** HMAC length: $HMAC" |
10271 | echo "*** RAND used: $RAND" |
10310 | echo "*** RAND used: $RAND" |
10272 | echo "*** Max. MTU: $MTU" |
10311 | echo "*** Max. MTU: $MTU" |
10273 | |
10312 | |
10274 | echo "***" |
10313 | echo "***" |
10275 | echo "*** Enable options:" |
10314 | echo "*** Enable options:" |
10276 | grep ENABLE_ config.h | sed -e 's/^/*** /' |
10315 | grep ENABLE_ config.h | sed -e 's/^/*** /' |
10277 | |
10316 | |
10278 | if test "x$DIGEST" = xmd4; then |
|
|
10279 | echo "***" |
|
|
10280 | echo "*** WARNING: The digest you have chosen ($DIGEST) is known to be insecure" |
|
|
10281 | fi |
|
|
10282 | |
|
|
10283 | if test "x$DIGEST" = xmd5; then |
|
|
10284 | echo "***" |
|
|
10285 | echo "*** WARNING: The digest you have chosen ($DIGEST) is quite insecure" |
|
|
10286 | fi |
|
|
10287 | |
|
|
10288 | if test "$HMAC" -lt 12; then |
10317 | if test "$HMAC" -lt 12; then |
10289 | echo "***" |
10318 | echo "***" |
10290 | echo "*** WARNING: The hmac length you have chosen ($HMAC) is quite insecure" |
10319 | echo "*** WARNING: The hmac length you have chosen ($HMAC) is quite insecure" |
10291 | fi |
10320 | fi |
10292 | |
10321 | |