… | |
… | |
773 | enable_hmac_length |
773 | enable_hmac_length |
774 | enable_rand_length |
774 | enable_rand_length |
775 | enable_max_mtu |
775 | enable_max_mtu |
776 | enable_compression |
776 | enable_compression |
777 | enable_cipher |
777 | enable_cipher |
778 | enable_digest |
778 | enable_hmac_digest |
779 | enable_auth_digest |
779 | enable_auth_digest |
780 | ' |
780 | ' |
781 | ac_precious_vars='build_alias |
781 | ac_precious_vars='build_alias |
782 | host_alias |
782 | host_alias |
783 | target_alias |
783 | target_alias |
… | |
… | |
1432 | --disable-http-proxy enable http proxy connect support (default enabled). |
1432 | --disable-http-proxy enable http proxy connect support (default enabled). |
1433 | --enable-dns enable dns tunnel protocol support (default |
1433 | --enable-dns enable dns tunnel protocol support (default |
1434 | disabled). |
1434 | disabled). |
1435 | --enable-rsa-length=BITS |
1435 | --enable-rsa-length=BITS |
1436 | use BITS rsa keys (default 3072). Allowed values are |
1436 | use BITS rsa keys (default 3072). Allowed values are |
1437 | 1536-10240. |
1437 | 2048-10240. |
1438 | --enable-hmac-length=BYTES |
1438 | --enable-hmac-length=BYTES |
1439 | use a hmac of length BYTES bytes (default 12). |
1439 | use a hmac of length BYTES bytes (default 12). |
1440 | Allowed values are 4, 8, 12, 16. |
1440 | Allowed values are 4, 8, 12, 16. |
1441 | --enable-rand-length=BYTES |
1441 | --enable-rand-length=BYTES |
1442 | use BYTES bytes of extra randomness (default 8). |
1442 | use BYTES bytes of extra randomness (default 12). |
1443 | Allowed values are 0, 4, 8. |
1443 | Allowed values are 0, 4, 8, 12. |
1444 | --enable-max-mtu=BYTES enable mtu sizes upto BYTES bytes (default 1500). |
1444 | --enable-max-mtu=BYTES enable mtu sizes upto BYTES bytes (default 1500). |
1445 | Use 9100 for jumbogram support. |
1445 | Use 9100 for jumbogram support. |
1446 | --disable-compression Disable compression support. |
1446 | --disable-compression Disable compression support. |
1447 | --enable-cipher=CIPHER Select the symmetric cipher (default "aes-128"). |
1447 | --enable-cipher=CIPHER Select the symmetric cipher (default "aes-128"). |
1448 | Must be one of "bf" (blowfish), "aes-128" |
1448 | Must be one of "bf" (blowfish), "aes-128" |
1449 | (rijndael), "aes-192", "aes-256", "camellia-128" or |
1449 | (rijndael), "aes-192", "aes-256", "camellia-128" or |
1450 | "camellia-256". |
1450 | "camellia-256". |
1451 | --enable-digest=DIGEST Select the digest algorithm to use (default "sha1"). |
1451 | --enable-hmac-digest=HMAC |
|
|
1452 | Select the HMAC digest algorithm to use (default |
1452 | Must be one of "sha512", "sha256", "sha1", |
1453 | "sha1"). Must be one of "sha512", "sha256", "sha1", |
1453 | "ripemd160", "whirlpool". |
1454 | "ripemd160", "whirlpool". |
1454 | --enable-auth-digest=DIGEST |
1455 | --enable-auth-digest=DIGEST |
1455 | Select the hmac algorithm to use (default "sha512"). |
1456 | Select the hmac algorithm to use (default "sha512"). |
1456 | Must be one of "sha512", "sha256", "whirlpool". |
1457 | Must be one of "sha512", "sha256", "whirlpool". |
1457 | |
1458 | |
… | |
… | |
8606 | cat >>confdefs.h <<_ACEOF |
8607 | cat >>confdefs.h <<_ACEOF |
8607 | #define RSABITS $RSA |
8608 | #define RSABITS $RSA |
8608 | _ACEOF |
8609 | _ACEOF |
8609 | |
8610 | |
8610 | |
8611 | |
8611 | HMAC=12 |
8612 | HMACSIZE=12 |
8612 | # Check whether --enable-hmac-length was given. |
8613 | # Check whether --enable-hmac-length was given. |
8613 | if test "${enable_hmac_length+set}" = set; then : |
8614 | if test "${enable_hmac_length+set}" = set; then : |
8614 | enableval=$enable_hmac_length; HMAC=$enableval |
8615 | enableval=$enable_hmac_length; HMACSIZE=$enableval |
8615 | |
8616 | |
8616 | fi |
8617 | fi |
8617 | |
8618 | |
8618 | |
8619 | |
8619 | cat >>confdefs.h <<_ACEOF |
8620 | cat >>confdefs.h <<_ACEOF |
8620 | #define HMACLENGTH $HMAC |
8621 | #define HMACLENGTH $HMACSIZE |
8621 | _ACEOF |
8622 | _ACEOF |
8622 | |
8623 | |
8623 | |
8624 | |
8624 | RAND=8 |
8625 | RANDSIZE=12 |
8625 | # Check whether --enable-rand-length was given. |
8626 | # Check whether --enable-rand-length was given. |
8626 | if test "${enable_rand_length+set}" = set; then : |
8627 | if test "${enable_rand_length+set}" = set; then : |
8627 | enableval=$enable_rand_length; RAND=$enableval |
8628 | enableval=$enable_rand_length; RANDSIZE=$enableval |
8628 | |
8629 | |
8629 | fi |
8630 | fi |
8630 | |
8631 | |
8631 | |
8632 | |
8632 | cat >>confdefs.h <<_ACEOF |
8633 | cat >>confdefs.h <<_ACEOF |
8633 | #define RAND_SIZE $RAND |
8634 | #define RAND_SIZE $RANDSIZE |
8634 | _ACEOF |
8635 | _ACEOF |
8635 | |
8636 | |
8636 | |
8637 | |
8637 | MTU=1500 |
8638 | MTU=1500 |
8638 | # Check whether --enable-max-mtu was given. |
8639 | # Check whether --enable-max-mtu was given. |
… | |
… | |
8678 | cat >>confdefs.h <<_ACEOF |
8679 | cat >>confdefs.h <<_ACEOF |
8679 | #define ENABLE_CIPHER EVP_${CIPHER} |
8680 | #define ENABLE_CIPHER EVP_${CIPHER} |
8680 | _ACEOF |
8681 | _ACEOF |
8681 | |
8682 | |
8682 | |
8683 | |
8683 | DIGEST=sha1 |
8684 | HMAC=sha1 |
8684 | # Check whether --enable-digest was given. |
8685 | # Check whether --enable-hmac-digest was given. |
8685 | if test "${enable_digest+set}" = set; then : |
8686 | if test "${enable_hmac_digest+set}" = set; then : |
8686 | enableval=$enable_digest; if test "x$enableval" = xwhirlpool; then DIGEST=whirlpool; fi |
8687 | enableval=$enable_hmac_digest; if test "x$enableval" = xwhirlpool; then HMAC=whirlpool; fi |
8687 | if test "x$enableval" = xsha512 ; then DIGEST=sha512 ; fi |
8688 | if test "x$enableval" = xsha512 ; then HMAC=sha512 ; fi |
8688 | if test "x$enableval" = xsha256 ; then DIGEST=sha256 ; fi |
8689 | if test "x$enableval" = xsha256 ; then HMAC=sha256 ; fi |
8689 | if test "x$enableval" = xsha1 ; then DIGEST=sha1 ; fi |
8690 | if test "x$enableval" = xsha1 ; then HMAC=sha1 ; fi |
8690 | if test "x$enableval" = xripemd160; then DIGEST=ripemd160; fi |
8691 | if test "x$enableval" = xripemd160; then HMAC=ripemd160; fi |
8691 | |
8692 | |
8692 | fi |
8693 | fi |
8693 | |
8694 | |
8694 | |
8695 | |
8695 | cat >>confdefs.h <<_ACEOF |
8696 | cat >>confdefs.h <<_ACEOF |
8696 | #define ENABLE_DIGEST EVP_${DIGEST} |
8697 | #define ENABLE_HMAC EVP_${HMAC} |
8697 | _ACEOF |
8698 | _ACEOF |
8698 | |
8699 | |
8699 | |
8700 | |
8700 | AUTH=sha512 |
8701 | AUTH=sha512 |
8701 | # Check whether --enable-auth-digest was given. |
8702 | # Check whether --enable-auth-digest was given. |
… | |
… | |
10312 | |
10313 | |
10313 | echo "***" |
10314 | echo "***" |
10314 | echo "*** Enable options:" |
10315 | echo "*** Enable options:" |
10315 | grep ENABLE_ config.h | sed -e 's/^/*** /' |
10316 | grep ENABLE_ config.h | sed -e 's/^/*** /' |
10316 | |
10317 | |
10317 | if test "$HMAC" -lt 12; then |
10318 | if test "$HMACSIZE" -lt 12; then |
10318 | echo "***" |
10319 | echo "***" |
10319 | echo "*** WARNING: The hmac length you have chosen ($HMAC) is quite insecure" |
10320 | echo "*** WARNING: The hmac length you have chosen ($HMACSIZE) is quite insecure" |
10320 | fi |
10321 | fi |
10321 | |
10322 | |
10322 | if test "$RAND" -lt 8; then |
10323 | if test "$RANDSIZE" -lt 12; then |
10323 | echo "***" |
10324 | echo "***" |
10324 | echo "*** WARNING: The random prefix you have chosen ($RAND) is probably insecure" |
10325 | echo "*** WARNING: The random prefix you have chosen ($RANDSIZE) is probably insecure" |
10325 | fi |
10326 | fi |
10326 | |
10327 | |
10327 | echo "***" |
10328 | echo "***" |
10328 | echo |
10329 | echo |
10329 | |
10330 | |