-TODO
-====
-
-This is more or less complete list of tasks that has to be done before
-SILC 1.0 could ever be released. It is clear that the list does not
-include all the bugs that exists. At the end of list are tasks that
-needs to be done but are probably post 1.0.
-
-Feel free to contribute if you have the ability and free time - all the
-help is really appreciated - and needed.
-
- - Pekka
-
-
-TODO General
-============
-
- o We should replace all short, int, long, unsigned short, unsigned int,
- unsigned long with some pre-defined datatypes that really are what
- we want on all platforms. int16, uint16, int32, uint32 etc. are
- what we could use or maybe SilcInt16, SilcUInt16 etc. Also, boolean
- datatype should be defined.
-
-
-TODO In SILC Client Library
-===========================
-
- o TODO in commands (silc/local_command.c, lib/silcclient/command.c and
- silc/silclient/command_reply.c):
-
- o Local command to handle private message keys is not done
- o Local command to handle channel private keys is not done
- o Local command to handle key agreement protocol is not done
- o RESTART command is not implemented
+TODO/bugs In SILC Client Library
+================================
o Client library crashes if for example server timeouts protocol
execution and disconnects the client. The client, on the other hand
the SilcSocketConnection reference counter at all. This must be
fixed.
- o Logic for handling multiple same nicknames for example in private
- message sending. I guess the logic is done in server side but is
- missing from client.
-
- o I guess, public key authentication (when connecting to a server)
- is not working currently. It is just matter of loading the keys
- from file and using them (see corresponding code in server, it should
- support public key authentication already).
-
- o Connection Authentication request resolving is missing and must be
- done. This is required by the protocol.
-
o Add client library parameters or options that handle what kind of
messages the library should print out (using `say' client operation,
for example) and what is left for the application to print. The
appliation could for example set that it handles all command printing
but all error printing should be handled by the library, etc...
-
- o Non-blocking connection on the background must be stopped if some
- other connection on same window has established. Now it is possible
- that some non-blocking connection timeouts on the background when
- we already have a working connection to some other place; things
- goes bad.
+ This is not a showstopper.
o Input line on UI is buggy. Cursor movement etc bugs. Too lazy to
fix it.
-TODO In SILC Server
-===================
-
- o TODO in commands (command.c and command_reply.c):
-
- o RESTART is not implemented
- o CMODE should be rewritten as it uses a lot duplicated code.
- Some of the modes may still not be implemented or is implemented
- the wrong way.
- o In servers all command reply funtions should still call the
- pending command reply even if the reply was error. In client
- it is not called but in server, I think, it must be called.
- When implementing this check that all commands handle the
- situation correctly when it is called as pending command
- (it should most likely check that cmd->pending == TRUE/FALSE).
-
- o TODO in notify types (packet_receive.c):
-
- o SERVER_SIGNOFF notify type is not implemented
-
- o TODO in authentication protocol (protocol.c):
-
- o Public key authentication is missing in initiator side. It must
- be implemented by creating the authentication data.
-
- o TODO in general server (server.c)
-
- o SILC_PACKET_CONNECTION_AUTH_REQUEST packet type is not
- implemented.
+TODO/bugs In SILC Server
+========================
- o silc_server_connect_to_router_second checks the authentication
- method to be used in the connection. However, if it does not
- find it it must resolve it from the responder by sending the
- SILC_PACKET_CONNECTION_AUTH_REQUEST packet.
+ o When server quits and all clients of that server are removed from all
+ channels the channel keys are re-generated for all clients. This is
+ a bug and should be done only once per channel after all clients of
+ the server has been removed.
- o Packet processing can be made faster. All packet function in the
- packet_receive.c has same prototypes. Instead of calling those from
- huge switch() make a table of callback functions that can be called
- directly by the packet type.
+ o Acceptance of incoming connections (client and server connections)
+ should be checked before key exchange protocol. Currently it is
+ checked at the authentication phase after KE, that is ok, but it should
+ be checked before starting KE, as well. This should be done so that
+ is first checks denied connections, then client connections and then
+ server connections. There is no use to execute the SKE if the connection
+ will not be allowed.
o DNS/IP lookup blocks the server. This must be fixed. Check the
resolver stuff (resolver(3), resolver(5)). Either we have to do the
own resolver stuff (through scheduler, if possible without writing
too much own stuff) or use threads.
- o Acceptance of incoming connections (client and server connections)
- should be checked before key exchange protocol. Currently it is
- checked at the authentication phase after KE, that is ok, but it should
- be checked before starting KE, as well.
-
o Server says that it is able to listen on multiple ports but currently
that is bogus. It can, but internals are for single server.
as well, IP/MASK, and not just plain IP.
o Connection classes should be actually implemented in serverconfig.c.
- They can be defined but they are totally ignored currently.
-
- o Connection redirect, if server is full, is not implemented. I also
- don't know how to do it currently. Maybe it shouldn't be done at all.
-
+ They can be defined but they are totally ignored currently. And they
+ should be redefined also.
-TODO In SILC Libraries
-======================
- o Implement PFS (Perfect Forward Secrecy) flag in SKE (and in client and
- server, actually). If PFS is set, re-key must cause new key exchange.
- This is required by the SILC protocol.
-
- o Re-key in general is actually missing (from everywhere) and must be done.
+TODO/bugs In SILC Libraries
+===========================
o Compression routines are missing. The protocol supports packet
compression thus it must be implemented. SILC Comp API must be
not in distribution), but it is not used yet, and it requires some
tweaking on the Makefiles (we want static lib not shared).
- o Rewrite the task system. I made it too complex and too "neat" and
- it really should be rewritten. We don't need priorities really, one
- priority is enough. This will simplify a lot the task system.
+ o Random Number Generator needs some tweaking. Reading /dev/random may
+ block resulting slow initialization of RNG. Some other things in the
+ RNG may block as well. Also, I have some pending changes to the RNG
+ that needs to be commited (from Schneier's Yarrow-160 paper). They
+ should make the RNG even better.
o SIM support for SILC PKCS API needs to made so that they could be
used as SIM's. At the same time some work is required on prime
generation as the way it is done now sucks. Read from code for
more (silcpkcs.h).
- o Random Number Generator needs some tweaking. Reading /dev/random may
- block resulting slow initialization of RNG. Some other things in the
- RNG may block as well. Also, I have some pending changes to the RNG
- that needs to be commited (from Schneier's Yarrow-160 paper). They
- should make the RNG even better.
- o Scheduler needs to be analyzed on high load as it might be unfair
- towards select() because it may run timeout tasks before select() and
- after select(). If it is found to be unfair the timeout task running
- before select() should probably be removed.
+TODO in the protocol before SILC 0.x
+====================================
+
+ o New commands and features in the commands
+ (draft-riikonen-silc-spec-xx.txt):
+
+ o Define GETKEY command to fetch the public key of a server
+ and/or a client in the SILC Network.
+ o Define SENDKEY command to send your public key to a client
+ in the network. Sending to the server must not be done due
+ to various security reasons (the server must not trust the
+ public keys blindly without third party verification; that's
+ why SENDKEY is not for servers).
TODO After 1.0
projects / silc.git / blobdiff