3
* Use _attribute_((nonnull)) wherever possible.
6
** Make mandos-ctl fail nicer to permission deny (runing as non-root for example)
9
** TODO [#B] use scandir(3) instead of readdir(3)
10
** TODO [#B] Prefix all debug output with "Mandos plugin " + program_invocation_short_name
11
** TODO [#B] Retry a server which has a non-definite reply:
12
*** A closed connection during the TLS handshake
14
** TODO [#B] Use capabilities instead of seteuid().
15
** TODO [#A] Retry --connect forever
18
** TODO [#B] use scandir(3) instead of readdir(3)
19
** TODO [#B] Prefix all debug output with "Mandos plugin " + program_invocation_short_name
22
** TODO [#A] Make it work again
23
** TODO [#B] use scandir(3) instead of readdir(3)
24
** TODO [#B] Prefix all debug output with "Mandos plugin " + program_invocation_short_name
25
** TODO Use [[info:libc:Argz%20Functions][argz_extract]]
28
** TODO [#B] Prefix all debug output with "Mandos plugin " + program_invocation_short_name
29
** TODO [#B] Drop privileges after opening FIFO.
32
** TODO [#B] Prefix all debug output with "Mandos plugin " + program_invocation_short_name
33
** TODO [#B] lock stdin (with flock()?)
36
** TODO Use [[info:libc:Argz%20Functions][argz_extract]]
41
** TODO [#B] use scandir(3) instead of readdir(3)
42
** TODO [#C] use same file name rules as run-parts(8)
43
** kernel command line option for debug info
44
** TODO [#B] Use openat()
47
** TODO [#B] Log level :BUGS:
48
** TODO Persistent state :BUGS:
50
*** TODO /etc/mandos/clients.d/*.conf
51
Watch this directory and add/remove/update clients?
52
** TODO [#C] config for TXT record
53
** TODO Log level option
54
syslogger.setLevel(logging.WARNING)
55
+ SetLogLevel D-Bus call
56
** TODO Implement --foreground :BUGS:
57
[[info:standards:Option%20Table][Table of Long Options]]
58
** TODO Implement --socket
59
[[info:standards:Option%20Table][Table of Long Options]]
60
** TODO Date+time on console log messages :BUGS:
62
** TODO [#C] DBusServiceObjectUsingSuper
63
** TODO [#B] Global enable/disable flag
64
** TODO [#B] By-client countdown on secrets given
65
** TODO [#B] Fix problem with fsck taking a really long time
66
Whenever a client successfully gets a secret it could get a
67
one-time timeout boost to allow for an fsck-incurred delay
68
** TODO [#A] Delay before client receives key
69
This would give an operator opportunity to cancel the request if
71
** TODO [#A] Client manual approval mode
72
A client needs manual approval on the server before it gets the
74
** TODO [#B] Support RFC 3339 time duration syntax
76
*** NeedsApproval(50, True) -> timeout, default approve
77
Default approval is configurable, but True by default
78
+ Approve(True) -> approve sending saved
79
+ Approve(False) -> Close client connection immediately
80
*** NeedsPassword(50) - Timeout, default disapprove
81
+ SetPass(u"gazonk", True) -> Approval, persistent
82
+ Approve(False) -> Close client connection immediately
83
** TODO [#C] python-parsedatetime
84
** TODO [#C] systemd/launchd
85
http://0pointer.de/blog/projects/systemd.html
86
** TODO Separate logging logic to own object
87
** TODO make clients to a dict!
88
** TODO [#A] Limit approved_delay to max gnutls/tls timeout value
89
** TODO [#B] break the wait on approved_delay if connection dies
92
** [[file:mandos.xml::XXX][Document D-Bus interface]]
93
Remove mention of lack of such interface in BUGS section
94
** Add mandos contact info in manual pages
96
* TODO [#A] Provide and install /etc/dbus-1/system.d/mandos.conf
99
*** Handle "no D-Bus server" and/or "no Mandos server found" better
100
*** [#B] --dump option
101
** TODO Support RFC 3339 time duration syntax
103
* TODO mandos-dispatch
104
Listens for specified D-Bus signals and spawns shell commands with
108
** TODO help should be toggable
109
** Urwid client data displayer
110
Better view of client data in the listing
112
** Nicer crashes. Stack traces Messes up shell.
113
*** Print a nice "We are sorry" message, save stack trace to log.
116
** TODO Loop until passwords match when run interactively
117
** TODO "--secfile" option
118
Using the "secfile" option instead of "secret"
119
** TODO [#B] "--test" option
120
For testing decryption before rebooting.
123
** TODO Add "--Xlinker --as-needed"
124
http://udrepper.livejournal.com/19395.html
125
** TODO [#C] Implement DEB_BUILD_OPTIONS
126
http://www.debian.org/doc/debian-policy/ch-source.html#s-debianrules-options
129
** /usr/share/initramfs-tools/hooks/mandos
130
*** TODO [#C] use same file name rules as run-parts(8)
131
*** TODO [#C] Do not install in initrd.img if configured not to.
132
Use "/etc/initramfs-tools/hooksconf.d/mandos"?
133
** TODO [#C] /etc/bash_completion.d/mandos
134
From XML sources directly?
137
** TODO Locate which packet move the other bin/sh when busy box is deactivated
138
** TODO contact owner of packet, and ask them to have that shell static in position regardless of busybox
7
** [#A] check exit codes of all system calls
8
** [#B] header files/symbols tally
10
** use strsep instead of strtok?
11
** Do not depend on GPG key rings on disk
12
This would mean creating new GPG key rings with GPGME by importing
13
the key files from scratch every time we start the program.
20
** [#A] check exit codes of all system calls
21
** [#B] header files/symbols tally
22
** use strsep instead of strtok?
23
** use config file in addition to arguments
24
** pass things in environment, like device name, etc
28
** [#A] write PID file
29
** [#A] /etc/init.d/mandos-server
31
** /etc/mandos/clients.d/*.conf
32
Watch this directory and add/remove/update clients?
33
** config for TXT record
34
** Run-time communication with server
37
* Mandos-tools/utilities
38
All of this probably using D-Bus
44
** Change initrd.img file to not be publically readable
45
** Create GPG key ring files in initrd
141
48
#+STARTUP: showall
added
removed
TODO
