+TODO/bugs in Irssi SILC client
+==============================
+
+ o Add KNOCKOUT local command. It should kick an client from channel and
+ set a ban for it for number of seconds.
+
+ o Add KICKBAN local command. Kicks and bans the specified client.
+
+ o Add local commands to list the current server and client public keys
+ that the user has. And a local command to dump the contents of the
+ public key to the screen. Something like LISTKEYS, SHOWKEY...
+
+
TODO/bugs In SILC Client Library
================================
- o Client library crashes if for example server timeouts protocol
- execution and disconnects the client. The client, on the other hand
- may still assume that the connection is active, even after receiving
- the EOF. Reason for this is that the clien library does not handle
- the SilcSocketConnection reference counter at all. This must be
- fixed.
-
- o When receiving client's public key with GETKEY or in key agreement
- protoocl it probably should be saved using the nickname and the real
- name of the client instead of the host name of the client.
+ o The client library must manage somehow when receiving client that has
+ same nickname, same server, same username but different Client ID than
+ what we have in the cache. It is now assumed that they are different
+ client but it might not be. It should at least number the clients
+ using the client->num so that they can be accessed from the user
+ interface separately or it could just remove the old client unless
+ it is on some channels.
o Add client library parameters or options that handle what kind of
messages the library should print out (using `say' client operation,
TODO/bugs In SILC Server
========================
- o Send SILC_NOTIFY_TYPE_CUMODE_CHANGE when received announced channels
- and channel users and we (router) already has a channel founder on the
- channel.
+ o The SKE protocol in the server does not verify the remote hosts
+ (the router's) public key at all. All public keys are accepted without
+ verification - this obviously is not secure.
o When server quits and all clients of that server are removed from all
channels the channel keys are re-generated for all clients. This is
a bug and should be done only once per channel after all clients of
the server has been removed.
- o Acceptance of incoming connections (client and server connections)
- should be checked before key exchange protocol. Currently it is
- checked at the authentication phase after KE, that is ok, but it should
- be checked before starting KE, as well. This should be done so that
- is first checks denied connections, then client connections and then
- server connections. There is no use to execute the SKE if the connection
- will not be allowed.
+ o Incomplete IPv6 support:
+
+ o silc_server_get_users_on_channel does not support IPv6 based
+ Client ID's.
+ o silc_server_route_get and the route code in general supports
+ only IPv4.
+ o silcd/serverid.c and its routines supports only IPv4.
o DNS/IP lookup blocks the server. This must be fixed. Check the
resolver stuff (resolver(3), resolver(5)). Either we have to do the
own resolver stuff (through scheduler, if possible without writing
too much own stuff) or use threads.
- o [AdminConnection] config section does not work correctly, it takes
- only one entry and ignores the other -> authentication fails.
-
- o [DenyConnection] config section is not implemented.
-
o The backup router support described in the protocol specification
should be done at some point.
- o Server says that it is able to listen on multiple ports but currently
- that is bogus. It can, but internals are for single server.
+ o New configuration file format must be added. The new one will be
+ done using the dotconf config library (lib/dotconf). The following
+ tasks relates closely to this as well and must be done at the same time
+ when adding the new config file format:
+
+ o Server says that it is able to listen on multiple ports but
+ currently that is bogus. It can, but internals are for single
+ server.
- o Protocol execution timeouts are hard coded, should be configurable.
+ o Protocol execution timeouts are hard coded, should be
+ configurable.
- o IP address fields in configuration file should accept mask format
- as well, IP/MASK, and not just plain IP.
+ o IP address fields in configuration file should accept mask
+ format as well, IP/MASK, and not just plain IP.
- o Connection classes should be actually implemented in serverconfig.c.
- They can be defined but they are totally ignored currently. And they
- should be redefined also.
+ o Connection classes should be actually implemented in
+ serverconfig.c. They can be defined but they are totally
+ ignored currently. And they should be redefined also.
TODO/bugs In SILC Libraries
===========================
- o Remove the static lists from SILC ciphers, PKCS and hash functions
- in the crypto library. The currently acceptable code is used in the
- HMAC library, look from there. The config file must decide the order
- of the algorithms, not the static lists, as they are doing now.
- Actually the way to do this is to keep the static lists, but register
- the algorithms to the dynamic list and make the alloc routines to
- check only the dynamic list. Also, replace the lists used by these
- routines with SilcList. Also, for applications it might be nice
- to export a function that registers default algorithms, if application
- does not want to register them one by one (if for example SILC client
- is run without config files at all).
+ o Incomplete IPv6 support:
+
+ o All network routines in lib/silcutil/silcnet.[ch] does not
+ support IPv6.
+ o silc_id_render supports only IPv4 based ID's in the file
+ lib/silcutil/silcutil.c.
o Compression routines are missing. The protocol supports packet
compression thus it must be implemented. SILC Comp API must be
not in distribution), but it is not used yet, and it requires some
tweaking on the Makefiles (we want static lib not shared).
- o Some of the ciphers in lib/silccrypt does not implement the SILC
- Crypto API correctly.
-
- o IPv6 support for ID's and into the code.
-
- o SIM support for SILC PKCS API needs to made so that they could be
- used as SIM's. At the same time some work is required on prime
- generation as the way it is done now sucks. Read from code for
- more (silcpkcs.h).
+ o The CAST cipher is not compiled currently due to compilation errors;
+ check those. Cast is in lib/silccrypt/cast.c.
+
+ o All payload parsing (decoding) functions should take unsigned char *
+ and uint32 as data and data length as arguments. Now some of the
+ routines do already that but most of the routines use SilcBuffer.
+ The SilcBuffer ones should be removed since buf->data and buf->len
+ is more convenient to use. However, the silc_buffer_[un]format
+ routines support only SilcBuffer so they would require reallocation
+ of SilcBuffer. Maybe support for raw data (and not just SilcBuffer)
+ should be added silc_buffer_[un]format_? routines. These are currently
+ only cosmetic changes but at some point must be done to make the
+ payload interfaces consistent.
TODO After 1.0
projects / silc.git / blobdiff