2002-10-19 09:55:27 +02:00
|
|
|
-*- outline -*-
|
1998-10-18 17:21:22 +02:00
|
|
|
|
2007-04-13 13:45:05 +02:00
|
|
|
* src/base64
|
2002-10-19 09:55:27 +02:00
|
|
|
** Make parsing more robust
|
2006-10-24 16:45:34 +02:00
|
|
|
Currently we don't cope with overlong lines in the best way.
|
2006-03-21 13:48:51 +01:00
|
|
|
** Check that we really release the ksba reader/writer objects.
|
2000-10-11 19:26:49 +02:00
|
|
|
|
2002-10-19 09:55:27 +02:00
|
|
|
* sm/call-agent.c
|
|
|
|
|
** Some code should go into import.c
|
|
|
|
|
** When we allow concurrent service request in gpgsm, we
|
2006-10-24 16:45:34 +02:00
|
|
|
might want to have an agent context for each service request
|
|
|
|
|
(i.e. Assuan context).
|
1999-12-08 22:03:03 +01:00
|
|
|
|
2002-10-19 09:55:27 +02:00
|
|
|
* sm/certchain.c
|
2006-03-21 10:56:47 +01:00
|
|
|
** Try to keep certificate references somewhere
|
|
|
|
|
This will help with some of our caching code. We also need to test
|
2006-06-20 19:21:37 +02:00
|
|
|
that caching; in particular "regtp_ca_chainlen".
|
2004-08-18 16:37:22 +02:00
|
|
|
|
2002-10-19 09:55:27 +02:00
|
|
|
* sm/decrypt.c
|
|
|
|
|
** replace leading zero in integer hack by a cleaner solution
|
1999-12-08 22:03:03 +01:00
|
|
|
|
2002-10-19 09:55:27 +02:00
|
|
|
* sm/gpgsm.c
|
|
|
|
|
** mark all unimplemented commands and options.
|
2004-01-16 18:39:58 +01:00
|
|
|
** Implement --default-key
|
2004-08-17 17:26:22 +02:00
|
|
|
** support the anyPolicy semantic
|
|
|
|
|
** Check that we are really following the verification procedures in rfc3280.
|
2005-05-18 12:48:06 +02:00
|
|
|
|
1999-09-15 17:58:40 +02:00
|
|
|
|
2002-10-19 09:55:27 +02:00
|
|
|
* sm/keydb.c
|
|
|
|
|
** Check file permissions
|
|
|
|
|
** Check that all error code mapping is done.
|
|
|
|
|
** Remove the inter-module dependencies between gpgsm and keybox
|
2003-06-03 21:55:50 +02:00
|
|
|
** Add an source_of_key field
|
2002-06-29 16:15:02 +02:00
|
|
|
|
2006-11-14 15:53:42 +01:00
|
|
|
* agent/
|
|
|
|
|
** If we detect that a private key has been deleted
|
|
|
|
|
Bump the key event counter.
|
|
|
|
|
|
2002-10-19 09:55:27 +02:00
|
|
|
* agent/command.c
|
|
|
|
|
** Make sure that secure memory is used where appropriate
|
2002-06-29 16:15:02 +02:00
|
|
|
|
2002-10-19 09:55:27 +02:00
|
|
|
* agent/pkdecrypt.c, agent/pksign.c
|
2004-08-17 17:26:22 +02:00
|
|
|
** Support DSA
|
1999-08-31 17:30:12 +02:00
|
|
|
|
2002-10-19 09:55:27 +02:00
|
|
|
* Move pkcs-1 encoding into libgcrypt.
|
1999-09-02 16:50:38 +02:00
|
|
|
|
2005-01-13 19:00:46 +01:00
|
|
|
* Use a MAC to protect sensitive files.
|
|
|
|
|
The problem here is that we need yet another key and it is unlikely
|
|
|
|
|
that users are willing to remember that key too. It is possible to
|
|
|
|
|
do this with a smartcard, though.
|
1999-09-02 16:50:38 +02:00
|
|
|
|
2002-10-19 09:55:27 +02:00
|
|
|
* sm/export.c
|
|
|
|
|
** Return an error code or a status info per user ID.
|
1999-09-02 16:50:38 +02:00
|
|
|
|
2005-05-21 20:49:00 +02:00
|
|
|
* scd/tlv.c
|
2006-10-24 16:45:34 +02:00
|
|
|
The parse_sexp function should not go into this file. Check whether
|
2005-05-21 20:49:00 +02:00
|
|
|
we can change all S-expression handling code to make use of this
|
|
|
|
|
function.
|
|
|
|
|
|
2005-06-03 15:57:24 +02:00
|
|
|
* scd
|
|
|
|
|
** Application context vs. reader slot
|
2007-07-17 20:11:24 +02:00
|
|
|
We have 2 concurrent method of tracking whether a reader is in use:
|
2005-06-03 15:57:24 +02:00
|
|
|
Using the session_list in command.c and the lock_table in app.c. IT
|
|
|
|
|
would be better to do this just at one place. First we need to see
|
|
|
|
|
how we can support cards with multiple applications.
|
2006-03-01 12:05:47 +01:00
|
|
|
** Detecting a removed card works only after the ticker detected it.
|
2006-10-24 16:45:34 +02:00
|
|
|
We should check the card status in open-card to make this smoother.
|
|
|
|
|
Needs to be integrated with the status file update, though. It is
|
|
|
|
|
not a real problem because application will get a card removed
|
|
|
|
|
status and should the send a reset to try solving the problem.
|
2006-03-01 12:05:47 +01:00
|
|
|
|
2004-02-20 14:46:21 +01:00
|
|
|
** Add a test to check the extkeyusage.
|
|
|
|
|
|
2007-06-15 16:27:31 +02:00
|
|
|
* Windows port (W32)
|
2004-12-21 11:03:00 +01:00
|
|
|
** No card status notifications.
|
2007-06-15 16:27:31 +02:00
|
|
|
** Regex support is disabled
|
|
|
|
|
We need to adjust the test to find the regex we have anyway in
|
|
|
|
|
gpg4in. Is that regex compatible to the OpenPGP requirement?
|
|
|
|
|
|
2004-12-21 11:03:00 +01:00
|
|
|
|
2005-07-20 17:05:05 +02:00
|
|
|
* sm/
|
2005-12-16 16:52:48 +01:00
|
|
|
** check that we issue NO_SECKEY xxx if a -u key was not found
|
2006-09-22 20:15:18 +02:00
|
|
|
We don't. The messages returned are also wrong (recipient vs. signer).
|
2007-06-06 20:12:30 +02:00
|
|
|
** gpgsm_format_name2
|
|
|
|
|
Replace by an estream based implementation.
|
2005-12-16 16:52:48 +01:00
|
|
|
|
2006-06-30 11:42:08 +02:00
|
|
|
* jnlib/
|
|
|
|
|
** provide jnlib_malloc and try to remove all jnlib_xmalloc.
|
|
|
|
|
|
2006-08-17 20:01:25 +02:00
|
|
|
* g10/
|
2005-12-16 16:52:48 +01:00
|
|
|
** issue a NO_SECKEY xxxx if a -u key was not found.
|
2006-10-18 19:19:08 +02:00
|
|
|
|
|
|
|
|
|
2007-12-12 11:28:30 +01:00
|
|
|
* When switching to libgcrypt 1.4
|
2006-10-05 13:06:42 +02:00
|
|
|
** scd#encode_md_for_card, g10#encode_md_value, sm@do_encode_md
|
|
|
|
|
Remove the extra test for a valid algorithm as libgcrypt will do it
|
|
|
|
|
then in gcry_md_algo_info.
|
2006-08-21 22:20:23 +02:00
|
|
|
** skclist.c
|
2006-10-05 13:06:42 +02:00
|
|
|
Remove the hard coded constant in random_is_faked.
|
|
|
|
|
** g10/ Replace DIGEST_ALGO_SHA224
|
|
|
|
|
We can't do that right now because it is only defined by newer
|
|
|
|
|
versions of libgcrypt.
|
2006-10-10 13:11:04 +02:00
|
|
|
** GCRY_MD_USER
|
|
|
|
|
Remove these definitions.
|
2007-05-07 21:49:12 +02:00
|
|
|
** MY_GCRY_PK_ECDSA
|
2007-06-26 15:48:44 +02:00
|
|
|
Remove this.
|
2006-07-27 16:18:55 +02:00
|
|
|
|
2006-08-17 20:01:25 +02:00
|
|
|
* Extend selinux support to other modules
|
|
|
|
|
|
2006-09-25 20:29:20 +02:00
|
|
|
* Remove -sat PGP2 compatibility hack
|
2006-12-13 17:49:10 +01:00
|
|
|
|
2007-05-08 15:59:41 +02:00
|
|
|
* UTF-8 specific TODOs
|
2007-08-14 18:50:27 +02:00
|
|
|
None.
|
2007-03-07 21:55:14 +01:00
|
|
|
|
|
|
|
|
* Pinpad Reader
|
|
|
|
|
We do not yet support P15 applications. The trivial thing using
|
2007-03-19 15:35:04 +01:00
|
|
|
ASCII characters will be easy to implement but the other cases need
|
2007-03-07 21:55:14 +01:00
|
|
|
some more work.
|
2007-03-19 15:35:04 +01:00
|
|
|
|
|
|
|
|
* Bugs
|
|
|
|
|
** After disabling scdaemon and sending a HUP
|
|
|
|
|
scdaemon stays as a zombie and gpg-agent does not perform any more
|
|
|
|
|
commands.
|
|
|
|
|
|
2007-05-15 18:10:48 +02:00
|
|
|
* Howtos
|
|
|
|
|
** Migrate OpenPGP keys to another system
|
2007-05-07 21:49:12 +02:00
|
|
|
|
2007-09-10 17:40:29 +02:00
|
|
|
* Duplicate certificates
|
2007-08-02 20:12:43 +02:00
|
|
|
This may happen and lead to an Ambiguous Name error. Solution is to
|
2007-08-14 18:50:27 +02:00
|
|
|
check the certs for identity before throwing this error.
|
|
|
|
|
|
2007-11-19 17:32:05 +01:00
|
|
|
* Gpg-Agent Locale
|
|
|
|
|
Although we pass LC_MESSAGE from gpgsm et al. to Pinentry, this has
|
|
|
|
|
only an effect on the stock GTK strings (e.g. "OK") and not on any
|
|
|
|
|
strings gpg-agent generates and passes to Pinentry. This defeats
|
|
|
|
|
our design goal to allow changing the locale without changing
|
|
|
|
|
gpg-agent's default locale (e.g. by the command updatestartuptty).
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
