2002-10-19 07:55:27 +00:00
|
|
|
-*- outline -*-
|
1998-10-18 15:21:22 +00:00
|
|
|
|
2002-10-19 07:55:27 +00:00
|
|
|
* src/base64
|
|
|
|
** Make parsing more robust
|
|
|
|
Currently we don't cope with overlong lines in the best way.
|
2006-03-21 12:48:51 +00:00
|
|
|
** Check that we really release the ksba reader/writer objects.
|
2000-10-11 17:26:49 +00:00
|
|
|
|
2002-10-19 07:55:27 +00:00
|
|
|
* sm/call-agent.c
|
|
|
|
** Some code should go into import.c
|
|
|
|
** When we allow concurrent service request in gpgsm, we
|
|
|
|
might want to have an agent context for each service request
|
|
|
|
(i.e. Assuan context).
|
1999-12-08 21:03:03 +00:00
|
|
|
|
2002-10-19 07:55:27 +00:00
|
|
|
* sm/certchain.c
|
|
|
|
** When a certificate chain was sucessfully verified, make ephemeral certs used in this chain permanent.
|
2006-03-21 09:56:47 +00:00
|
|
|
** Try to keep certificate references somewhere
|
|
|
|
This will help with some of our caching code. We also need to test
|
2006-06-20 17:21:37 +00:00
|
|
|
that caching; in particular "regtp_ca_chainlen".
|
2004-08-18 14:37:22 +00:00
|
|
|
|
2002-10-19 07:55:27 +00:00
|
|
|
* sm/decrypt.c
|
|
|
|
** replace leading zero in integer hack by a cleaner solution
|
1999-12-08 21:03:03 +00:00
|
|
|
|
2002-10-19 07:55:27 +00:00
|
|
|
* sm/gpgsm.c
|
|
|
|
** mark all unimplemented commands and options.
|
2004-01-16 17:39:58 +00:00
|
|
|
** Implement --default-key
|
2004-08-17 15:26:22 +00:00
|
|
|
** support the anyPolicy semantic
|
|
|
|
** Check that we are really following the verification procedures in rfc3280.
|
2005-05-18 10:48:06 +00:00
|
|
|
** Implement a --card-status command.
|
|
|
|
This is useful to check whether a card is supported at all.
|
|
|
|
|
1999-09-15 15:58:40 +00:00
|
|
|
|
2002-10-19 07:55:27 +00:00
|
|
|
* sm/keydb.c
|
|
|
|
** Check file permissions
|
|
|
|
** Check that all error code mapping is done.
|
|
|
|
** Remove the inter-module dependencies between gpgsm and keybox
|
2003-06-03 19:55:50 +00:00
|
|
|
** Add an source_of_key field
|
2002-06-29 14:15:02 +00:00
|
|
|
|
2002-10-19 07:55:27 +00:00
|
|
|
* agent/command.c
|
|
|
|
** Make sure that secure memory is used where appropriate
|
2002-06-29 14:15:02 +00:00
|
|
|
|
2002-10-19 07:55:27 +00:00
|
|
|
* agent/pkdecrypt.c, agent/pksign.c
|
|
|
|
** Don't use stdio to return results.
|
2004-08-17 15:26:22 +00:00
|
|
|
** Support DSA
|
1999-08-31 15:30:12 +00:00
|
|
|
|
2002-10-19 07:55:27 +00:00
|
|
|
* Move pkcs-1 encoding into libgcrypt.
|
1999-09-02 14:50:38 +00:00
|
|
|
|
2005-01-13 18:00:46 +00:00
|
|
|
* Use a MAC to protect sensitive files.
|
|
|
|
The problem here is that we need yet another key and it is unlikely
|
|
|
|
that users are willing to remember that key too. It is possible to
|
|
|
|
do this with a smartcard, though.
|
1999-09-02 14:50:38 +00:00
|
|
|
|
2002-10-19 07:55:27 +00:00
|
|
|
* sm/export.c
|
|
|
|
** Return an error code or a status info per user ID.
|
1999-09-02 14:50:38 +00:00
|
|
|
|
2005-05-21 18:49:00 +00:00
|
|
|
* scd/tlv.c
|
|
|
|
The parse_sexp fucntion should not go into this file. Check whether
|
|
|
|
we can change all S-expression handling code to make use of this
|
|
|
|
function.
|
|
|
|
|
2005-06-03 13:57:24 +00:00
|
|
|
* scd
|
|
|
|
** Application context vs. reader slot
|
|
|
|
We have 2 concurrent method of tracking whether a read is in use:
|
|
|
|
Using the session_list in command.c and the lock_table in app.c. IT
|
|
|
|
would be better to do this just at one place. First we need to see
|
|
|
|
how we can support cards with multiple applications.
|
2006-03-01 11:05:47 +00:00
|
|
|
** Detecting a removed card works only after the ticker detected it.
|
|
|
|
We should check the card status in open-card to make this smoother.
|
|
|
|
Needs to be integrated with the status file update, though. It is
|
|
|
|
not a real problem because application will get a card removed status
|
|
|
|
and should the send a reset to try solving the problem.
|
|
|
|
|
2003-12-23 10:23:16 +00:00
|
|
|
* tests
|
|
|
|
** Makefile.am
|
|
|
|
We use printf(1) to setup the library path, this is not portable.
|
|
|
|
Furthermore LD_LIBRARY_PATH is not used on all systems. It doesn't
|
|
|
|
matter for now, because we use some GNU/*BSDish features anyway.
|
|
|
|
|
2004-02-20 13:46:21 +00:00
|
|
|
** Add a test to check the extkeyusage.
|
|
|
|
|
2004-07-22 09:37:36 +00:00
|
|
|
* doc/
|
|
|
|
** Explain how to setup a root CA key as trusted
|
|
|
|
** Explain how trustlist.txt might be managed.
|
2004-09-29 13:50:31 +00:00
|
|
|
** Write a script to generate man pages from texi.
|
2005-04-21 09:33:07 +00:00
|
|
|
In progress (yatm)
|
2004-08-05 09:24:36 +00:00
|
|
|
|
2004-12-20 16:17:25 +00:00
|
|
|
|
|
|
|
* Windows port
|
|
|
|
** gpgsm's LISTKEYS does not yet work
|
|
|
|
Fix is to change everything to libestream
|
|
|
|
** Signals are not support
|
|
|
|
This means we can't reread a configuration
|
2004-12-21 10:03:00 +00:00
|
|
|
** No card status notifications.
|
|
|
|
|
2005-05-21 18:49:00 +00:00
|
|
|
|
|
|
|
|
2005-07-20 15:05:05 +00:00
|
|
|
* sm/
|
2005-12-16 15:52:48 +00:00
|
|
|
** check that we issue NO_SECKEY xxx if a -u key was not found
|
2006-08-17 18:01:25 +00:00
|
|
|
We don't. The messages retruned are also wrong (recipient vs. signer).
|
2005-12-16 15:52:48 +00:00
|
|
|
|
2006-06-30 09:42:08 +00:00
|
|
|
* jnlib/
|
|
|
|
** provide jnlib_malloc and try to remove all jnlib_xmalloc.
|
2006-08-17 18:01:25 +00:00
|
|
|
** Extend utf8conv.c to make use of iconv.
|
|
|
|
Need to merge with the code in 1.4/util/strgutil.c.
|
2006-06-30 09:42:08 +00:00
|
|
|
|
2006-08-17 18:01:25 +00:00
|
|
|
* g10/
|
2005-12-16 15:52:48 +00:00
|
|
|
** issue a NO_SECKEY xxxx if a -u key was not found.
|
2006-04-28 14:32:13 +00:00
|
|
|
** Replace DIGEST_ALGO_SHA224
|
|
|
|
We can't do that right now because it is only defined by newer
|
2006-08-29 16:18:30 +00:00
|
|
|
versions of libgcrypt. Change this if we require libgcrypt 1.3
|
2006-04-28 14:32:13 +00:00
|
|
|
anyway.
|
2006-06-27 14:32:34 +00:00
|
|
|
** qbits
|
|
|
|
We pass a new qbit parameter to genkey - implement this in libgcrypt.
|
2006-08-21 20:20:23 +00:00
|
|
|
** skclist.c
|
|
|
|
As soon as we switch to libgcrypt 1.3 we should remove the hard
|
|
|
|
coded constant in random_is_faked.
|
2006-07-27 14:18:55 +00:00
|
|
|
|
2006-05-23 16:19:43 +00:00
|
|
|
|
|
|
|
* common/
|
|
|
|
** ttyio
|
|
|
|
Add completion support.
|
|
|
|
** yesno
|
2006-06-20 17:21:37 +00:00
|
|
|
Update to gpg 1.4.3 version
|
2006-08-16 10:47:53 +00:00
|
|
|
|
|
|
|
|
2006-08-17 18:01:25 +00:00
|
|
|
* Extend selinux support to other modules
|
|
|
|
|
2006-08-16 10:47:53 +00:00
|
|
|
|