1 | /* |
1 | /* |
2 | global.h -- global variables and constants |
2 | global.h -- global variables and constants |
|
|
3 | Copyright (C) 2003-2004 Marc Lehmann <pcg@goof.com> |
3 | |
4 | |
4 | This program is free software; you can redistribute it and/or modify |
5 | This program is free software; you can redistribute it and/or modify |
5 | it under the terms of the GNU General Public License as published by |
6 | it under the terms of the GNU General Public License as published by |
6 | the Free Software Foundation; either version 2 of the License, or |
7 | the Free Software Foundation; either version 2 of the License, or |
7 | (at your option) any later version. |
8 | (at your option) any later version. |
… | |
… | |
21 | |
22 | |
22 | #include "config.h" |
23 | #include "config.h" |
23 | |
24 | |
24 | #include <time.h> |
25 | #include <time.h> |
25 | |
26 | |
|
|
27 | /* Protocol version. Different major versions are incompatible, |
|
|
28 | * different minor versions probably are compatible ;) |
|
|
29 | */ |
|
|
30 | |
|
|
31 | #define PROTOCOL_MAJOR 0 |
|
|
32 | #define PROTOCOL_MINOR 1 |
26 | |
33 | |
27 | #define RSA_KEYBITS 1280 // must be >= 1280 and divisible by 8 |
34 | #define RSA_KEYBITS 1280 // must be >= 1280 and divisible by 8 |
28 | #define RSA_KEYLEN ((RSA_KEYBITS) >> 3) |
35 | #define RSA_KEYLEN ((RSA_KEYBITS) >> 3) |
29 | #define RSA_OVERHEAD (41 + 1) // well, no define for OAEP |
36 | #define RSA_OVERHEAD (41 + 1) // well, no define for OAEP in openssl |
30 | |
37 | |
|
|
38 | #define RSA_HASH EVP_ripemd160 ()// speed don't matter, boy, safety does.. I need sha256 :( |
|
|
39 | #define RSA_HASHLEN (160 >> 3) |
|
|
40 | #define RSA_RESLEN RSA_HASHLEN |
|
|
41 | |
|
|
42 | #define RSA_IDLEN 16 // how many bytes are used to identify the challenge |
31 | #define CHALLENGE_TTL 30 // challenge bytes timeout after 30 seconds |
43 | #define RSA_TTL 120 // challenge bytes timeout after n seconds |
32 | |
44 | |
33 | #define CIPHER ENABLE_CIPHER () |
45 | #define CIPHER ENABLE_CIPHER () |
34 | #define CIPHER_KEYLEN (EVP_CIPHER_key_length (CIPHER)) |
46 | #define CIPHER_KEYLEN (EVP_CIPHER_key_length (CIPHER)) |
35 | #define DIGEST ENABLE_DIGEST () |
47 | #define DIGEST ENABLE_DIGEST () |
36 | #define HMAC_KEYLEN (256 >> 3) // number of bits used for the HMAC key (also change CHG_HMAC_KEY) |
48 | #define HMAC_KEYLEN (256 >> 3) // number of bits used for the HMAC key (also change CHG_HMAC_KEY) |
37 | |
49 | |
38 | #define MAX_SEQNO 0xfffff000U |
50 | #define MAX_SEQNO 0xfffffff0U |
39 | |
51 | |
40 | #define CHG_SEQNO 0 // where the seqno starts within the rsa challenge |
52 | #define CHG_SEQNO 0 // where the seqno starts within the rsa challenge |
41 | #define CHG_CIPHER_KEY 4 // where the key starts within the rsa challenge |
53 | #define CHG_CIPHER_KEY 4 // where the key starts within the rsa challenge |
42 | #define CHG_HMAC_KEY 86 // where the key starts within the rsa challenge (256 bits at the end!) |
54 | #define CHG_HMAC_KEY 86 // where the key starts within the rsa challenge (256 bits at the end!) |
43 | |
55 | |
44 | // hdr seq len hmac MAC MAC |
56 | // hdr seq len hmac MAC MAC |
45 | #define VPE_OVERHEAD (4 + 4 + 4 + RAND_SIZE + HMACLENGTH - 6 - 6) |
57 | #define VPE_OVERHEAD (4 + 4 + 4 + RAND_SIZE + HMACLENGTH - 6 - 6) |
46 | #define UDP_OVERHEAD 40 // size of a (normal) ip + udp header |
58 | #define IP_OVERHEAD 20 // size of a (normal) ip header |
|
|
59 | #define GRE_OVERHEAD (IP_OVERHEAD + 4) |
|
|
60 | #define ICMP_OVERHEAD (IP_OVERHEAD + 4) |
|
|
61 | #define UDP_OVERHEAD (IP_OVERHEAD + 20) // size of a (normal) ip + udp header |
|
|
62 | #define TCP_OVERHEAD (IP_OVERHEAD + 22) // size of a (normal) ip + tcp header + pakcetlength |
|
|
63 | #define MAX_OVERHEAD UDP_OVERHEAD // the max. overhead of any protocol (ok, tcp doesn't count) |
47 | #define ETH_OVERHEAD 14 // the size of an ethernet header |
64 | #define ETH_OVERHEAD 14 // the size of an ethernet header |
48 | #define MAXSIZE (MAX_MTU + VPE_OVERHEAD)// slightly too large, but who cares |
65 | #define MAXSIZE (MAX_MTU + VPE_OVERHEAD)// slightly too large, but who cares |
49 | |
66 | |
50 | #define TIMER_GRANULARITY 5 // check for events at least every 5 seconds |
|
|
51 | |
|
|
52 | #define PKTCACHESIZE 4 // the size of the memory pool for packets |
67 | #define PKTCACHESIZE 5 // the size of the memory pool for packets |
53 | |
68 | |
54 | #define QUEUEDEPTH 16 // the number of packets that will be queued (should be low) |
69 | #define QUEUEDEPTH 16 // the number of packets that will be queued (should be low) |
|
|
70 | |
|
|
71 | #define WINDOWSIZE 512 // sliding window size |
55 | |
72 | |
56 | extern char *confbase; // directory in which all config files are |
73 | extern char *confbase; // directory in which all config files are |
57 | extern char *thisnode; // config for current node (TODO: remove) |
74 | extern char *thisnode; // config for current node (TODO: remove) |
58 | extern char *pidfilename; // pid file location |
75 | extern char *pidfilename; // pid file location |
59 | |
76 | |
60 | extern time_t now; // globale now variable |
|
|
61 | |
|
|
62 | #endif |
77 | #endif |
63 | |
78 | |