chiark
/
gitweb
/
~ian
/
secnet.git
/ blobdiff
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
shortlog
|
log
|
commit
|
commitdiff
|
tree
raw
|
inline
| side by side
Import release 0.1.6
[secnet.git]
/
TODO
diff --git
a/TODO
b/TODO
index b75c6335954939b12f5137aa0d8db204f1e51d15..af3a4686efd4ad5be8ee2a6f870b4f78aaa48323 100644
(file)
--- a/
TODO
+++ b/
TODO
@@
-1,24
+1,37
@@
-conffile.c: deal with line numbers from included conffiles correctly
+Makefile.in: autodep stuff
-dh.c: change format to binary from decimal string
+dh.c: change format to binary from decimal string (without introducing
+endianness problems)
-netlink.c: in
itial implementation done, needs basic router functionality
-
adding. Can wait. Also support tun device
.
+netlink.c: in
vestigate why 'default' routes don't appear to work
+
(reported by JDA)
.
-random.c: test
+slip.c: detect failure of userv-ipif to start. Restart userv-ipif to
+cope with soft routes? Restart it if it fails in use?
-resolver.c: done
+tun.c: jdamery reports tun-old code works on Linux-2.2.
+Unresolved problem with ioctl(TUNSETIFF) sometimes returning EINVAL, seems
+to be related to early 2.4.x (x<=5) series kernels. 2.4.9 and above seem ok;
+2.4.[678] untested.
-r
sa.c: check padding type, change format to binary from decimal string
+r
andom.c: test
-secnet.c: done
+rsa.c: check padding type, change format to binary from decimal string
+(without introducing endianness problems)
site.c: the site_incoming() routing could be implemented much more
cleanly using a table. There's still quite a lot of redundancy in this
site.c: the site_incoming() routing could be implemented much more
cleanly using a table. There's still quite a lot of redundancy in this
-file.
+file. Abandon key exchanges when a bad packet is received. Modify
+protocol to include version fields, as described in the NOTES file.
+
+transform.c: see below
-transform.c: done
+sha1.c: test
-udp.c: done
+General: separate the transforms in transform.c into multiple parts,
+which can then be combined in the configuration file. Will allow the
+user to plug in different block ciphers, invent an authenticity-only
+mode, etc.
-util.c: sort out logging
+Signal handling! Really just cope with SIGCHLD and SIGTERM. Possibly
+use SIGUSR1/2 for prodding things. Manage child processes properly.