120-openwrt_options.patch 3.1 KB

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081
  1. --- a/options.h
  2. +++ b/options.h
  3. @@ -41,7 +41,7 @@
  4. * Both of these flags can be defined at once, don't compile without at least
  5. * one of them. */
  6. #define NON_INETD_MODE
  7. -#define INETD_MODE
  8. +/*#define INETD_MODE*/
  9. /* Setting this disables the fast exptmod bignum code. It saves ~5kB, but is
  10. * perhaps 20% slower for pubkey operations (it is probably worth experimenting
  11. @@ -81,7 +81,7 @@ much traffic. */
  12. /* Enable "Netcat mode" option. This will forward standard input/output
  13. * to a remote TCP-forwarded connection */
  14. -#define ENABLE_CLI_NETCAT
  15. +/*#define ENABLE_CLI_NETCAT*/
  16. /* Whether to support "-c" and "-m" flags to choose ciphers/MACs at runtime */
  17. #define ENABLE_USER_ALGO_LIST
  18. @@ -91,16 +91,16 @@ much traffic. */
  19. * Including multiple keysize variants the same cipher
  20. * (eg AES256 as well as AES128) will result in a minimal size increase.*/
  21. #define DROPBEAR_AES128
  22. -#define DROPBEAR_3DES
  23. +/*#define DROPBEAR_3DES*/
  24. #define DROPBEAR_AES256
  25. /* Compiling in Blowfish will add ~6kB to runtime heap memory usage */
  26. /*#define DROPBEAR_BLOWFISH*/
  27. -#define DROPBEAR_TWOFISH256
  28. -#define DROPBEAR_TWOFISH128
  29. +/*#define DROPBEAR_TWOFISH256*/
  30. +/*#define DROPBEAR_TWOFISH128*/
  31. /* Enable CBC mode for ciphers. This has security issues though
  32. * is the most compatible with older SSH implementations */
  33. -#define DROPBEAR_ENABLE_CBC_MODE
  34. +/*#define DROPBEAR_ENABLE_CBC_MODE*/
  35. /* Enable "Counter Mode" for ciphers. This is more secure than normal
  36. * CBC mode against certain attacks. It is recommended for security
  37. @@ -131,9 +131,9 @@ If you test it please contact the Dropbe
  38. * If you disable MD5, Dropbear will fall back to SHA1 fingerprints,
  39. * which are not the standard form. */
  40. #define DROPBEAR_SHA1_HMAC
  41. -#define DROPBEAR_SHA1_96_HMAC
  42. -#define DROPBEAR_SHA2_256_HMAC
  43. -#define DROPBEAR_SHA2_512_HMAC
  44. +/*#define DROPBEAR_SHA1_96_HMAC*/
  45. +/*#define DROPBEAR_SHA2_256_HMAC*/
  46. +/*#define DROPBEAR_SHA2_512_HMAC*/
  47. #define DROPBEAR_MD5_HMAC
  48. /* You can also disable integrity. Don't bother disabling this if you're
  49. @@ -146,7 +146,7 @@ If you test it please contact the Dropbe
  50. * Removing either of these won't save very much space.
  51. * SSH2 RFC Draft requires dss, recommends rsa */
  52. #define DROPBEAR_RSA
  53. -#define DROPBEAR_DSS
  54. +/*#define DROPBEAR_DSS*/
  55. /* ECDSA is significantly faster than RSA or DSS. Compiling in ECC
  56. * code (either ECDSA or ECDH) increases binary size - around 30kB
  57. * on x86-64 */
  58. @@ -194,7 +194,7 @@ If you test it please contact the Dropbe
  59. /* Whether to print the message of the day (MOTD). This doesn't add much code
  60. * size */
  61. -#define DO_MOTD
  62. +/*#define DO_MOTD*/
  63. /* The MOTD file path */
  64. #ifndef MOTD_FILENAME
  65. @@ -242,7 +242,7 @@ Homedir is prepended unless path begins
  66. * note that it will be provided for all "hidden" client-interactive
  67. * style prompts - if you want something more sophisticated, use
  68. * SSH_ASKPASS instead. Comment out this var to remove this functionality.*/
  69. -#define DROPBEAR_PASSWORD_ENV "DROPBEAR_PASSWORD"
  70. +/*#define DROPBEAR_PASSWORD_ENV "DROPBEAR_PASSWORD"*/
  71. /* Define this (as well as ENABLE_CLI_PASSWORD_AUTH) to allow the use of
  72. * a helper program for the ssh client. The helper program should be