--- gvpe/configure	2014/06/18 20:40:51	1.55
+++ gvpe/configure	2015/01/29 00:21:38	1.56
@@ -763,7 +763,6 @@
 enable_dns
 enable_rsa_length
 enable_hmac_length
-enable_rand_length
 enable_max_mtu
 enable_compression
 enable_cipher
@@ -1430,16 +1429,12 @@
   --enable-hmac-length=BYTES
                           use a hmac of length BYTES bytes (default 12).
                           Allowed values are 4, 8, 12, 16.
-  --enable-rand-length=BYTES
-                          use BYTES bytes of extra randomness (default 12).
-                          Allowed values are 0, 4, 8, 12.
   --enable-max-mtu=BYTES  enable mtu sizes upto BYTES bytes (default 1500).
                           Use 9100 for jumbogram support.
   --disable-compression   Disable compression support.
   --enable-cipher=CIPHER  Select the symmetric cipher (default "aes-128").
-                          Must be one of "bf" (blowfish), "aes-128"
-                          (rijndael), "aes-192", "aes-256", "camellia-128" or
-                          "camellia-256".
+                          Must be one of "aes-128" (rijndael), "aes-192", or
+                          "aes-256".
   --enable-hmac-digest=HMAC
                           Select the HMAC digest algorithm to use (default
                           "sha1"). Must be one of "sha512", "sha256", "sha1",
@@ -8484,19 +8479,6 @@
 _ACEOF
 
 
-RANDSIZE=12
-# Check whether --enable-rand-length was given.
-if test "${enable_rand_length+set}" = set; then :
-  enableval=$enable_rand_length; RANDSIZE=$enableval
-
-fi
-
-
-cat >>confdefs.h <<_ACEOF
-#define RAND_SIZE $RANDSIZE
-_ACEOF
-
-
 MTU=1500
 # Check whether --enable-max-mtu was given.
 if test "${enable_max_mtu+set}" = set; then :
@@ -8525,15 +8507,15 @@
 _ACEOF
 
 
-CIPHER=aes_128_cbc
+CIPHER=aes_128_ctr
 # Check whether --enable-cipher was given.
 if test "${enable_cipher+set}" = set; then :
-  enableval=$enable_cipher; if test "x$enableval" = xbf          ; then CIPHER=bf_cbc          ; fi
-  if test "x$enableval" = xaes-128     ; then CIPHER=aes_128_cbc     ; fi
-  if test "x$enableval" = xaes-192     ; then CIPHER=aes_192_cbc     ; fi
-  if test "x$enableval" = xaes-256     ; then CIPHER=aes_256_cbc     ; fi
-  if test "x$enableval" = xcamellia-128; then CIPHER=camellia_128_cbc; fi
-  if test "x$enableval" = xcamellia-256; then CIPHER=camellia_256_cbc; fi
+  enableval=$enable_cipher; #if test "x$enableval" = xbf          ; then CIPHER=bf_ctr          ; fi
+  if test "x$enableval" = xaes-128     ; then CIPHER=aes_128_ctr     ; fi
+  if test "x$enableval" = xaes-192     ; then CIPHER=aes_192_ctr     ; fi
+  if test "x$enableval" = xaes-256     ; then CIPHER=aes_256_ctr     ; fi
+  #if test "x$enableval" = xcamellia-128; then CIPHER=camellia_128_ctr; fi
+  #if test "x$enableval" = xcamellia-256; then CIPHER=camellia_256_ctr; fi
 
 fi
 
@@ -10148,7 +10130,6 @@
 echo "*** Digest used:  $DIGEST"
 echo "*** Authdigest:   $AUTH"
 echo "*** HMAC length:  $HMAC"
-echo "*** RAND used:    $RAND"
 echo "*** Max. MTU:     $MTU"
 
 echo "***"
@@ -10160,11 +10141,6 @@
 echo "*** WARNING: The hmac length you have chosen ($HMACSIZE) is quite insecure"
 fi
 
-if test "$RANDSIZE" -lt 12; then
-echo "***"
-echo "*** WARNING: The random prefix you have chosen ($RANDSIZE) is probably insecure"
-fi
-
 echo "***"
 echo