| | 1 | Makefile.in: autodep stuff |
| | 2 | |
| | 3 | dh.c: change format to binary from decimal string (without introducing |
| | 4 | endianness problems) |
| | 5 | |
| | 6 | ipaddr.c: implement the useful functionality from ipaddr.py |
| | 7 | |
| | 8 | netlink.c: investigate why 'default' routes don't appear to work |
| | 9 | (reported by JDA). |
| | 10 | Implement the 'allow_route' option properly. |
| | 11 | |
| | 12 | random.c: test |
| | 13 | |
| | 14 | rsa.c: check padding type, change format to binary from decimal string |
| | 15 | (without introducing endianness problems) |
| | 16 | |
| | 17 | site.c: the site_incoming() routing could be implemented much more |
| | 18 | cleanly using a table. There's still quite a lot of redundancy in this |
| | 19 | file. Abandon key exchanges when a bad packet is received. Modify |
| | 20 | protocol to include version fields, as described in the NOTES |
| | 21 | file. Implement keepalive mode. Make policy about when to initiate key |
| | 22 | exchanges more configurable (how many NAKs / bad reverse-transforms |
| | 23 | does it take to prompt a key exchange?) |
| | 24 | |
| | 25 | slip.c: restart userv-ipif to cope with soft routes? Restart it if it |
| | 26 | fails in use? |
| | 27 | userv-ipif doesn't like the same bit of network to be specified |
| | 28 | twice. Use the new functionality in ipaddr.c once it's done to prevent |
| | 29 | this. |
| | 30 | |
| | 31 | tun.c: jdamery reports tun-old code works on Linux-2.2. |
| | 32 | Unresolved problem with ioctl(TUNSETIFF) sometimes returning EINVAL, seems |
| | 33 | to be related to early 2.4.x (x<=5) series kernels. 2.4.9 and above seem ok; |
| | 34 | 2.4.[678] untested. |
| | 35 | |
| | 36 | transform.c: separate the transforms into multiple parts, which can |
| | 37 | then be combined in the configuration file. Will allow the user to |
| | 38 | plug in different block ciphers, invent an authenticity-only mode, |
| | 39 | etc. |
~mdw / secnet / blame_incremental