X-Git-Url: http://www.chiark.greenend.org.uk/ucgi/~ian/git?a=blobdiff_plain;f=TODO;h=5ae53cf8cf4070b270c44950698b472112c63da6;hb=469fd1d95b2528212a46b155cb115c078de4228f;hp=45ee3302610be3fd62d9487d4a5820d17cd77ec4;hpb=974d0468ad285d9ddbc5b052110076d7adf0ed2e;p=secnet.git diff --git a/TODO b/TODO index 45ee330..5ae53cf 100644 --- a/TODO +++ b/TODO @@ -1,27 +1,37 @@ -configure.in: done - Makefile.in: autodep stuff -conffile.c: done +dh.c: change format to binary from decimal string (without introducing +endianness problems) -dh.c: change format to binary from decimal string +ipaddr.c: implement the useful functionality from ipaddr.py -netlink.c: done. Test tun-old code. +netlink.c: investigate why 'default' routes don't appear to work +(reported by JDA). +Test the 'allow_route' option properly. random.c: test -resolver.c: done - rsa.c: check padding type, change format to binary from decimal string - -secnet.c: done +(without introducing endianness problems) site.c: the site_incoming() routing could be implemented much more cleanly using a table. There's still quite a lot of redundancy in this -file. - -transform.c: done - -udp.c: done - -util.c: sort out logging +file. Abandon key exchanges when a bad packet is received. Modify +protocol to include version fields, as described in the NOTES +file. Implement keepalive mode. Make policy about when to initiate key +exchanges more configurable (how many NAKs / bad reverse-transforms +does it take to prompt a key exchange?) + +slip.c: restart userv-ipif to cope with soft routes? Restart it if it +fails in use? +userv-ipif doesn't like the same bit of network to be specified +twice. Use the new functionality in ipaddr.c once it's done to prevent +this. +Work out why slip.c doesn't compile on Solaris-2.5.1 + +transform.c: separate the transforms into multiple parts, which can +then be combined in the configuration file. Will allow the user to +plug in different block ciphers, invent an authenticity-only mode, +etc. + +udp.c: actually send NAKs rather than just complaining.