xref: /OK3568_Linux_fs/buildroot/package/dropbear/Config.in (revision 4882a59341e53eb6f0b4789bf948001014eff981) 
1config BR2_PACKAGE_DROPBEAR
2	bool "dropbear"
3	select BR2_PACKAGE_ZLIB if !BR2_PACKAGE_DROPBEAR_SMALL
4	select BR2_PACKAGE_LIBTOMCRYPT if !BR2_PACKAGE_DROPBEAR_SMALL
5	help
6	  A small SSH 2 server designed for small memory environments.
7
8	  Note that dropbear requires a per-device unique host key. The
9	  key will be generated when dropbear starts, but it is not
10	  persistent over reboot (if you have a read-only rootfs) or
11	  upgrade (if you have a read-write rootfs). To make the key
12	  persistent, replace /etc/dropbear with a symlink to a
13	  directory on a persistent, writeable filesystem.
14	  Alternatively, mount a persistent unionfs over your root
15	  filesystem.
16
17	  https://matt.ucc.asn.au/dropbear/dropbear.html
18
19if BR2_PACKAGE_DROPBEAR
20
21config BR2_PACKAGE_DROPBEAR_CLIENT
22	bool "client programs"
23	default y
24	help
25	  Provides the programs: dbclient, ssh
26
27	  Note that the following programs are also used server-side
28	  and are therefore always build regardless this setting:
29	  dropbear, dropbearkey, dropbearconvert, scp
30
31config BR2_PACKAGE_DROPBEAR_DISABLE_REVERSEDNS
32	bool "disable reverse DNS lookups"
33	help
34	  Disable reverse DNS lookups on connection. This can be handy
35	  on systems without working DNS, as connections otherwise
36	  stall until DNS times out.
37
38config BR2_PACKAGE_DROPBEAR_SMALL
39	bool "optimize for size"
40	default y
41	help
42	  Compile dropbear for the smallest possible binary size.
43
44	  Tradeoffs are slower hashes and ciphers, and disabling of the
45	  blowfish cipher and zlib.
46
47config BR2_PACKAGE_DROPBEAR_WTMP
48	bool "log dropbear access to wtmp"
49	help
50	  Enable logging of dropbear access to wtmp. Notice that
51	  Buildroot does not generate wtmp by default.
52
53config BR2_PACKAGE_DROPBEAR_LASTLOG
54	bool "log dropbear access to lastlog"
55	help
56	  Enable logging of dropbear access to lastlog. Notice that
57	  Buildroot does not generate lastlog by default.
58
59config BR2_PACKAGE_DROPBEAR_LEGACY_CRYPTO
60	bool "enable legacy crypto"
61	help
62	  Enable legacy and possibly insecure algorithms:
63	    3DES encryption
64	    SHA1-96 message integrity
65	    CBC encryption mode
66	    DSA public keys
67	    Diffie-Hellman Group1 key exchange
68
69config BR2_PACKAGE_DROPBEAR_LOCALOPTIONS_FILE
70	string "path to custom localoptions.h definitions file"
71	help
72	  Path to a file whose contents will be appended to Dropbear
73	  localoptions.h. It can be used to tweak the Dropbear
74	  configuration.
75
76endif
77