/mandos/release

To get this branch, use:
bzr branch http://bzr.recompile.se/loggerhead/mandos/release

« back to all changes in this revision

Viewing changes to TODO

  • Committer: Teddy Hogeborn
  • Date: 2018-04-01 19:31:31 UTC
  • mto: (237.7.594 trunk)
  • mto: This revision was merged to the branch mainline in revision 368.
  • Revision ID: teddy@recompile.se-20180401193131-w8but5r9ryne9et4
Print a boolean more readably in error message output

* plugins.d/mandos-client.c (pgp_packet_decrypt): If decryption fails,
  print wrong_key_usage as "Yes" or "No", not a number.

Show diffs side-by-side

added added

removed removed

Lines of Context:
14
14
** TODO [#C] Make start_mandos_communication() take "struct server".
15
15
** TODO [#C] --interfaces=regex,eth*,noregex (bridge-utils-interfaces(5))
16
16
** TODO [#A] Detect partial writes to stdout and exit with EX_TEMPFAIL
17
 
** TODO [#B] Use reallocarray() with GNU LibC 2.29 or later.
18
17
 
19
18
* splashy
20
19
** TODO [#B] use scandir(3) instead of readdir(3)
34
33
 
35
34
* plymouth
36
35
** TODO [#A] Detect partial writes to stdout and exit with EX_TEMPFAIL
37
 
** TODO [#B] Use reallocarray() with GNU LibC 2.29 or later.
38
36
 
39
37
* TODO [#B] passdev
40
38
 
121
119
 
122
120
* [[http://www.undeadly.org/cgi?action=article&sid=20110530221728][OpenBSD]]
123
121
 
 
122
* TODO Use raw public keys (RFC 7250) for TLS communications              :2:
 
123
** Support for this is planned for GnuTLS version 3.6
 
124
   https://gitlab.com/gnutls/gnutls/issues/26
 
125
** Rationale
 
126
*** The client key is used both for communication and encryption
 
127
    Using raw keys in GnuTLS instead uses separate keys for
 
128
    communication and password decryption.
 
129
*** GnuTLS 3.5.9 has deprecated the OpenPGP functions
 
130
    The functions are still available, but deprecated:
 
131
    https://gitlab.com/gnutls/gnutls/issues/102
 
132
 
124
133
 
125
134
#+STARTUP: showall