X-Git-Url: https://git.distorted.org.uk/~mdw/secnet/blobdiff_plain/4efd681a66c15bc6f81eefc69396669e165e5e0f..refs/tags/v0.1.5:/TODO

diff --git a/TODO b/TODO
index b2e871b..af3a468 100644
--- a/TODO
+++ b/TODO
@@ -1,27 +1,37 @@
-configure.in: cut down to just the required tests. Support for installation.
+Makefile.in: autodep stuff
 
-Makefile.in: support for installation.
+dh.c: change format to binary from decimal string (without introducing
+endianness problems)
 
-conffile.c: deal with line numbers from included conffiles correctly
+netlink.c: investigate why 'default' routes don't appear to work
+(reported by JDA).
 
-dh.c: change format to binary from decimal string
+slip.c: detect failure of userv-ipif to start. Restart userv-ipif to
+cope with soft routes? Restart it if it fails in use?
 
-netlink.c: done. Test tun-old code.
+tun.c: jdamery reports tun-old code works on Linux-2.2.
+Unresolved problem with ioctl(TUNSETIFF) sometimes returning EINVAL, seems
+to be related to early 2.4.x (x<=5) series kernels. 2.4.9 and above seem ok;
+2.4.[678] untested.
 
 random.c: test
 
-resolver.c: done
-
 rsa.c: check padding type, change format to binary from decimal string
-
-secnet.c: done
+(without introducing endianness problems)
 
 site.c: the site_incoming() routing could be implemented much more
 cleanly using a table. There's still quite a lot of redundancy in this
-file.
+file. Abandon key exchanges when a bad packet is received. Modify
+protocol to include version fields, as described in the NOTES file.
+
+transform.c: see below
 
-transform.c: done
+sha1.c: test
 
-udp.c: done
+General: separate the transforms in transform.c into multiple parts,
+which can then be combined in the configuration file.  Will allow the
+user to plug in different block ciphers, invent an authenticity-only
+mode, etc.
 
-util.c: sort out logging
+Signal handling! Really just cope with SIGCHLD and SIGTERM. Possibly
+use SIGUSR1/2 for prodding things. Manage child processes properly.