7
** [#A] check exit codes of all system calls
8
** [#B] header files/symbols tally
10
** use strsep instead of strtok?
11
** Do not depend on GPG key rings on disk
12
This would mean creating new GPG key rings with GPGME by importing
13
the key files from scratch every time we start the program.
20
** [#A] check exit codes of all system calls
21
** [#B] header files/symbols tally
22
** use strsep instead of strtok?
23
** use config file in addition to arguments
24
** pass things in environment, like device name, etc
28
** [#A] write PID file
29
** [#A] /etc/init.d/mandos-server
30
** Better comments in config files
32
** /etc/mandos/clients.d/*.conf
33
Watch this directory and add/remove/update clients?
34
** config for TXT record
35
** Run-time communication with server
38
* Mandos-tools/utilities
39
All of this probably using D-Bus
45
** Change initrd.img file to not be publically readable
46
** Create GPG key ring files in initrd
3
* Use _attribute_((nonnull)) wherever possible.
9
** TODO [#B] use scandir(3) instead of readdir(3)
10
** TODO [#B] Prefix all debug output with "Mandos plugin " + program_invocation_short_name
11
** TODO [#B] Retry a server which has a non-definite reply:
12
*** A closed connection during the TLS handshake
14
** TODO [#B] Use capabilities instead of seteuid().
15
** TODO [#A] Retry --connect forever
18
** TODO [#B] use scandir(3) instead of readdir(3)
19
** TODO [#B] Prefix all debug output with "Mandos plugin " + program_invocation_short_name
22
** TODO [#A] Make it work again
23
** TODO [#B] use scandir(3) instead of readdir(3)
24
** TODO [#B] Prefix all debug output with "Mandos plugin " + program_invocation_short_name
25
** TODO Use [[info:libc:Argz%20Functions][argz_extract]]
28
** TODO [#B] Prefix all debug output with "Mandos plugin " + program_invocation_short_name
29
** TODO [#B] Drop privileges after opening FIFO.
32
** TODO [#B] Prefix all debug output with "Mandos plugin " + program_invocation_short_name
33
** TODO [#B] lock stdin (with flock()?)
38
** TODO [#B] use scandir(3) instead of readdir(3)
39
** TODO [#C] use same file name rules as run-parts(8)
40
** kernel command line option for debug info
41
** TODO [#B] Use openat()
44
** TODO [#B] Log level :BUGS:
45
** TODO Persistent state :BUGS:
47
*** TODO /etc/mandos/clients.d/*.conf
48
Watch this directory and add/remove/update clients?
49
** TODO [#C] config for TXT record
50
** TODO Log level option
51
syslogger.setLevel(logging.WARNING)
52
+ SetLogLevel D-Bus call
53
** TODO Implement --foreground :BUGS:
54
[[info:standards:Option%20Table][Table of Long Options]]
55
** TODO Implement --socket
56
[[info:standards:Option%20Table][Table of Long Options]]
57
** TODO Date+time on console log messages :BUGS:
59
** TODO [#C] DBusServiceObjectUsingSuper
60
** TODO [#B] Global enable/disable flag
61
** TODO [#B] By-client countdown on secrets given
62
** TODO [#B] Fix problem with fsck taking a really long time
63
Whenever a client successfully gets a secret it could get a
64
one-time timeout boost to allow for an fsck-incurred delay
65
** TODO [#A] Delay before client receives key
66
This would give an operator opportunity to cancel the request if
68
** TODO [#A] Client manual approval mode
69
A client needs manual approval on the server before it gets the
71
** TODO [#B] Support RFC 3339 time duration syntax
73
*** NeedsApproval(50, True) -> timeout, default approve
74
Default approval is configurable, but True by default
75
+ Approve(True) -> approve sending saved
76
+ Approve(False) -> Close client connection immediately
77
*** NeedsPassword(50) - Timeout, default disapprove
78
+ SetPass(u"gazonk", True) -> Approval, persistent
79
+ Approve(False) -> Close client connection immediately
80
** TODO [#C] python-parsedatetime
81
** TODO [#C] systemd/launchd
82
http://0pointer.de/blog/projects/systemd.html
83
** TODO Separate logging logic to own object
84
** TODO make clients to a dict!
85
** TODO [#A] Limit approval_delay to max gnutls/tls timeout value
86
** TODO [#B] break the wait on approval_delay if connection dies
89
** Add mandos contact info in manual pages
92
*** Handle "no D-Bus server" and/or "no Mandos server found" better
93
*** [#B] --dump option
94
** TODO Support RFC 3339 time duration syntax
96
* TODO mandos-dispatch
97
Listens for specified D-Bus signals and spawns shell commands with
101
** TODO help should be toggable
102
** Urwid client data displayer
103
Better view of client data in the listing
105
** Nicer crashes. Stack traces Messes up shell.
106
*** Print a nice "We are sorry" message, save stack trace to log.
109
** TODO Loop until passwords match when run interactively
110
** TODO "--secfile" option
111
Using the "secfile" option instead of "secret"
112
** TODO [#B] "--test" option
113
For testing decryption before rebooting.
116
** TODO Add "--Xlinker --as-needed"
117
http://udrepper.livejournal.com/19395.html
118
** TODO [#C] Implement DEB_BUILD_OPTIONS
119
http://www.debian.org/doc/debian-policy/ch-source.html#s-debianrules-options
122
** /usr/share/initramfs-tools/hooks/mandos
123
*** TODO [#C] use same file name rules as run-parts(8)
124
*** TODO [#C] Do not install in initrd.img if configured not to.
125
Use "/etc/initramfs-tools/hooksconf.d/mandos"?
126
** TODO [#C] /etc/bash_completion.d/mandos
127
From XML sources directly?
130
** TODO Locate which packet move the other bin/sh when busy box is deactivated
131
** TODO contact owner of packet, and ask them to have that shell static in position regardless of busybox
49
134
#+STARTUP: showall
added
removed
TODO
