-configure.in: cut down to just the required tests. Support for installation.
+configure.in: done
-Makefile.in: support for installation.
+Makefile.in: autodep stuff
-conffile.c: deal with line numbers from included conffiles correctly
+conffile.c: done
-dh.c: change format to binary from decimal string
+dh.c: change format to binary from decimal string (without introducing
+endianness problems)
-netlink.c: done. Test tun-old code.
+netlink.c: done
+
+slip.c: done. Detect failure of userv-ipif to start.
+
+tun.c: jdamery reports tun-old code works on Linux-2.2.
+Unresolved problem with ioctl(TUNSETIFF) sometimes return EINVAL.
random.c: test
resolver.c: done
rsa.c: check padding type, change format to binary from decimal string
+(without introducing endianness problems)
secnet.c: done
site.c: the site_incoming() routing could be implemented much more
cleanly using a table. There's still quite a lot of redundancy in this
-file.
+file. Abandon key exchanges when a bad packet is received. Modify
+protocol to include version fields, as described in the NOTES file.
-transform.c: done
+transform.c: done. JDA reports endianness problems are fixed.
udp.c: done
util.c: sort out logging
+
+General: separate the transforms in transform.c into multiple parts,
+which can then be combined in the configuration file. Will allow the
+user to plug in different block ciphers, invent an authenticity-only
+mode, etc.
+
+Write scripts to generate the 'real' sites file from a less-expressive
+version that's more easily checked by external tools.
~ian / secnet.git / blobdiff