| … | |
… | |
| 21 | |
21 | |
| 22 | #include "config.h" |
22 | #include "config.h" |
| 23 | |
23 | |
| 24 | #include <time.h> |
24 | #include <time.h> |
| 25 | |
25 | |
|
|
26 | /* Protocol version. Different major versions are incompatible, |
|
|
27 | * different minor versions probably are compatible ;) |
|
|
28 | */ |
|
|
29 | |
|
|
30 | #define PROTOCOL_MAJOR 0 |
|
|
31 | #define PROTOCOL_MINOR 1 |
| 26 | |
32 | |
| 27 | #define RSA_KEYBITS 1280 // must be >= 1280 and divisible by 8 |
33 | #define RSA_KEYBITS 1280 // must be >= 1280 and divisible by 8 |
| 28 | #define RSA_KEYLEN ((RSA_KEYBITS) >> 3) |
34 | #define RSA_KEYLEN ((RSA_KEYBITS) >> 3) |
| 29 | #define RSA_OVERHEAD (41 + 1) // well, no define for OAEP in openssl |
35 | #define RSA_OVERHEAD (41 + 1) // well, no define for OAEP in openssl |
| 30 | |
36 | |
| 31 | #define RSA_HASH EVP_ripemd160 ()// speed don't matter, boy, safety does.. I need sha256 :( |
37 | #define RSA_HASH EVP_ripemd160 ()// speed don't matter, boy, safety does.. I need sha256 :( |
| 32 | #define RSA_HASHLEN (160 >> 3) |
38 | #define RSA_HASHLEN (160 >> 3) |
|
|
39 | #define RSA_RESLEN RSA_HASHLEN |
| 33 | |
40 | |
| 34 | #define RSA_IDLEN 16 // how many bytes are used to identify the challenge |
41 | #define RSA_IDLEN 16 // how many bytes are used to identify the challenge |
| 35 | #define RSA_TTL 20 // challenge bytes timeout after n seconds |
42 | #define RSA_TTL 120 // challenge bytes timeout after n seconds |
| 36 | |
43 | |
| 37 | #define CIPHER ENABLE_CIPHER () |
44 | #define CIPHER ENABLE_CIPHER () |
| 38 | #define CIPHER_KEYLEN (EVP_CIPHER_key_length (CIPHER)) |
45 | #define CIPHER_KEYLEN (EVP_CIPHER_key_length (CIPHER)) |
| 39 | #define DIGEST ENABLE_DIGEST () |
46 | #define DIGEST ENABLE_DIGEST () |
| 40 | #define HMAC_KEYLEN (256 >> 3) // number of bits used for the HMAC key (also change CHG_HMAC_KEY) |
47 | #define HMAC_KEYLEN (256 >> 3) // number of bits used for the HMAC key (also change CHG_HMAC_KEY) |
| … | |
… | |
| 46 | #define CHG_HMAC_KEY 86 // where the key starts within the rsa challenge (256 bits at the end!) |
53 | #define CHG_HMAC_KEY 86 // where the key starts within the rsa challenge (256 bits at the end!) |
| 47 | |
54 | |
| 48 | // hdr seq len hmac MAC MAC |
55 | // hdr seq len hmac MAC MAC |
| 49 | #define VPE_OVERHEAD (4 + 4 + 4 + RAND_SIZE + HMACLENGTH - 6 - 6) |
56 | #define VPE_OVERHEAD (4 + 4 + 4 + RAND_SIZE + HMACLENGTH - 6 - 6) |
| 50 | #define IP_OVERHEAD 20 // size of a (normal) ip header |
57 | #define IP_OVERHEAD 20 // size of a (normal) ip header |
|
|
58 | #define GRE_OVERHEAD (IP_OVERHEAD + 4) |
|
|
59 | #define ICMP_OVERHEAD (IP_OVERHEAD + 4) |
| 51 | #define UDP_OVERHEAD (IP_OVERHEAD + 20) // size of a (normal) ip + udp header |
60 | #define UDP_OVERHEAD (IP_OVERHEAD + 20) // size of a (normal) ip + udp header |
|
|
61 | #define TCP_OVERHEAD (IP_OVERHEAD + 22) // size of a (normal) ip + tcp header + pakcetlength |
| 52 | #define MAX_OVERHEAD UDP_OVERHEAD // the max. overhead of any protocol |
62 | #define MAX_OVERHEAD UDP_OVERHEAD // the max. overhead of any protocol (ok, tcp doesn't count) |
| 53 | #define ETH_OVERHEAD 14 // the size of an ethernet header |
63 | #define ETH_OVERHEAD 14 // the size of an ethernet header |
| 54 | #define MAXSIZE (MAX_MTU + VPE_OVERHEAD)// slightly too large, but who cares |
64 | #define MAXSIZE (MAX_MTU + VPE_OVERHEAD)// slightly too large, but who cares |
| 55 | |
65 | |
| 56 | #define PKTCACHESIZE 4 // the size of the memory pool for packets |
66 | #define PKTCACHESIZE 5 // the size of the memory pool for packets |
| 57 | |
67 | |
| 58 | #define QUEUEDEPTH 16 // the number of packets that will be queued (should be low) |
68 | #define QUEUEDEPTH 16 // the number of packets that will be queued (should be low) |
| 59 | |
69 | |
| 60 | #define WINDOWSIZE 512 // sliding window size |
70 | #define WINDOWSIZE 512 // sliding window size |
| 61 | |
71 | |
