2002-10-19 07:55:27 +00:00
|
|
|
-*- outline -*-
|
1998-10-18 15:21:22 +00:00
|
|
|
|
2002-10-19 07:55:27 +00:00
|
|
|
* src/base64
|
|
|
|
** Make parsing more robust
|
|
|
|
Currently we don't cope with overlong lines in the best way.
|
2000-10-11 17:26:49 +00:00
|
|
|
|
2002-10-19 07:55:27 +00:00
|
|
|
* sm/call-agent.c
|
|
|
|
** The protocol uses an incomplete S-expression
|
|
|
|
We should always use valid S-Exp and not just parts.
|
|
|
|
** Some code should go into import.c
|
|
|
|
** When we allow concurrent service request in gpgsm, we
|
|
|
|
might want to have an agent context for each service request
|
|
|
|
(i.e. Assuan context).
|
2004-01-28 16:22:25 +00:00
|
|
|
** There is no error report if GPG_AGENT_INFO has been set but the agent is not anymore running.
|
1999-12-08 21:03:03 +00:00
|
|
|
|
2002-10-19 07:55:27 +00:00
|
|
|
* sm/certreqgen.c
|
|
|
|
** Improve error reporting
|
|
|
|
** Do some basic checks on the supplied DNs
|
1999-12-08 21:03:03 +00:00
|
|
|
|
2002-10-19 07:55:27 +00:00
|
|
|
* sm/certchain.c
|
|
|
|
** When a certificate chain was sucessfully verified, make ephemeral certs used in this chain permanent.
|
|
|
|
** figure out how to auto retrieve a key by serialno+issuer.
|
|
|
|
Dirmngr is currently not able to parse more than the CN.
|
2003-09-02 19:06:34 +00:00
|
|
|
** Try all available root certs in case we have several of them in our keybox.
|
|
|
|
For example TC TrustCenter Class 1 CA certs are ambiguous becuase
|
|
|
|
user certs don't come with a authorityKeyIdentifier.
|
2004-01-28 16:22:25 +00:00
|
|
|
** Support extKeyUsage
|
|
|
|
The only value which makes sense for us is emailProtection (I have
|
|
|
|
not yet found a test cetificate with that). We might want to allow
|
|
|
|
other usages depending on special options (e.g. an option used for code
|
|
|
|
signing).
|
1999-12-08 21:03:03 +00:00
|
|
|
|
2002-10-19 07:55:27 +00:00
|
|
|
* sm/decrypt.c
|
|
|
|
** replace leading zero in integer hack by a cleaner solution
|
1999-12-08 21:03:03 +00:00
|
|
|
|
2002-10-19 07:55:27 +00:00
|
|
|
* sm/sign.c
|
|
|
|
** Don't hardcode the use of RSA.
|
1999-10-26 12:14:37 +00:00
|
|
|
|
2002-10-19 07:55:27 +00:00
|
|
|
* sm/gpgsm.c
|
2004-01-16 17:39:58 +00:00
|
|
|
** Support --output for all commands
|
2002-10-19 07:55:27 +00:00
|
|
|
** mark all unimplemented commands and options.
|
2003-12-23 10:23:16 +00:00
|
|
|
** Print a hint when MD2 is the cause for a problem.
|
2004-01-16 17:39:58 +00:00
|
|
|
** Implement --default-key
|
1999-09-15 15:58:40 +00:00
|
|
|
|
2002-10-19 07:55:27 +00:00
|
|
|
* sm/keydb.c
|
|
|
|
** Check file permissions
|
|
|
|
** Write a keybox header and check for that magic value.
|
|
|
|
** Check that all error code mapping is done.
|
|
|
|
** Remove the inter-module dependencies between gpgsm and keybox
|
2003-06-03 19:55:50 +00:00
|
|
|
** Add an source_of_key field
|
2004-02-04 19:13:16 +00:00
|
|
|
** We need an error code GPG_ERR_NOT_LOCKED
|
2002-06-29 14:15:02 +00:00
|
|
|
|
2004-01-28 16:22:25 +00:00
|
|
|
* agent/gpg-agent.c
|
|
|
|
** A SIGHUP should also restart the scdaemon
|
|
|
|
But do this only after all connections terminated.
|
|
|
|
|
2002-10-19 07:55:27 +00:00
|
|
|
* agent/command.c
|
|
|
|
** Make sure that secure memory is used where appropriate
|
2002-06-29 14:15:02 +00:00
|
|
|
|
2002-10-19 07:55:27 +00:00
|
|
|
* agent/pkdecrypt.c, agent/pksign.c
|
|
|
|
** Don't use stdio to return results.
|
1999-08-31 15:30:12 +00:00
|
|
|
|
2004-01-29 20:16:59 +00:00
|
|
|
* agent/divert-scd.c
|
|
|
|
Remove the agent_reset_scd kludge.
|
|
|
|
|
2002-10-19 07:55:27 +00:00
|
|
|
* agent/protect-tool.c
|
|
|
|
** Export and import certificates along with the secret key.
|
|
|
|
** Make it more comfortable; i.e. copy files to the correct place.
|
2004-01-27 16:40:42 +00:00
|
|
|
** BUG? --p12-export seems to work only with unprotected keys
|
1999-08-31 15:30:12 +00:00
|
|
|
|
2002-10-19 07:55:27 +00:00
|
|
|
* Move pkcs-1 encoding into libgcrypt.
|
1999-09-02 14:50:38 +00:00
|
|
|
|
2002-10-19 07:55:27 +00:00
|
|
|
* Use a MAC to protect some files.
|
1999-09-02 14:50:38 +00:00
|
|
|
|
2002-10-19 07:55:27 +00:00
|
|
|
* sm/export.c
|
|
|
|
** Return an error code or a status info per user ID.
|
1999-09-02 14:50:38 +00:00
|
|
|
|
2003-08-05 17:11:04 +00:00
|
|
|
* scd/apdu.c
|
|
|
|
** We need close_reader functionality
|
|
|
|
|
2003-04-29 10:37:24 +00:00
|
|
|
* ALL
|
|
|
|
** Return IMPORT_OK status.
|
2003-09-23 17:48:33 +00:00
|
|
|
|
|
|
|
* Where is http.c, regcomp.c, srv.c, w32reg.c ?
|
2003-09-30 13:16:33 +00:00
|
|
|
|
|
|
|
* scd/sc-investigate
|
|
|
|
** Enhance with card compatibility check
|
|
|
|
|
2003-11-17 12:20:11 +00:00
|
|
|
* scd/app-openpgp
|
|
|
|
Must check that the fingerprint used is not the one of the
|
|
|
|
authentication key. Old GnuPG versions seem to encode the wrong
|
2003-12-23 10:23:16 +00:00
|
|
|
keyID.
|
|
|
|
|
|
|
|
* Store the revocation status directly in the Keybox
|
|
|
|
|
|
|
|
* tests
|
|
|
|
** Makefile.am
|
|
|
|
We use printf(1) to setup the library path, this is not portable.
|
|
|
|
Furthermore LD_LIBRARY_PATH is not used on all systems. It doesn't
|
|
|
|
matter for now, because we use some GNU/*BSDish features anyway.
|
|
|
|
|
|
|
|
|