/mandos/release

To get this branch, use:
bzr branch http://bzr.recompile.se/loggerhead/mandos/release

« back to all changes in this revision

Viewing changes to TODO

  • Committer: Teddy Hogeborn
  • Date: 2018-10-14 14:11:15 UTC
  • mto: (237.7.594 trunk)
  • mto: This revision was merged to the branch mainline in revision 370.
  • Revision ID: teddy@recompile.se-20181014141115-1oilce79snz1ackb
Depend on either old cryptsetup or new cryptsetup-initramfs

* debian/control (Package: mandos-client/Depends): Change "cryptsetup"
  to "cryptsetup (<< 2:2.0.3-1) | cryptsetup-initramfs".

Show diffs side-by-side

added added

removed removed

Lines of Context:
14
14
** TODO [#C] Make start_mandos_communication() take "struct server".
15
15
** TODO [#C] --interfaces=regex,eth*,noregex (bridge-utils-interfaces(5))
16
16
** TODO [#A] Detect partial writes to stdout and exit with EX_TEMPFAIL
17
 
** TODO [#B] Use reallocarray() with GNU LibC 2.29 or later.
18
17
 
19
18
* splashy
20
19
** TODO [#B] use scandir(3) instead of readdir(3)
34
33
 
35
34
* plymouth
36
35
** TODO [#A] Detect partial writes to stdout and exit with EX_TEMPFAIL
37
 
** TODO [#B] Use reallocarray() with GNU LibC 2.29 or later.
38
36
 
39
37
* TODO [#B] passdev
40
38
 
86
84
*** TODO [#C] In Python 3.3, use shlex.quote() instead of re.escape()
87
85
 
88
86
* mandos-ctl
 
87
*** Handle "no D-Bus server" and/or "no Mandos server found" better
89
88
** TODO Remove old string_to_delta format                                 :2:
90
89
 
91
90
* TODO mandos-dispatch
120
119
 
121
120
* [[http://www.undeadly.org/cgi?action=article&sid=20110530221728][OpenBSD]]
122
121
 
 
122
* TODO Use raw public keys (RFC 7250) for TLS communications              :2:
 
123
** Support for this is planned for GnuTLS version 3.6
 
124
   https://gitlab.com/gnutls/gnutls/issues/26
 
125
** Rationale
 
126
*** The client key is used both for communication and encryption
 
127
    Using raw keys in GnuTLS instead uses separate keys for
 
128
    communication and password decryption.
 
129
*** GnuTLS 3.5.9 has deprecated the OpenPGP functions
 
130
    The functions are still available, but deprecated:
 
131
    https://gitlab.com/gnutls/gnutls/issues/102
 
132
 
123
133
 
124
134
#+STARTUP: showall