X-Git-Url: https://git.strongswan.org/?p=strongswan.git;a=blobdiff_plain;f=TODO;h=c398ebab88743c85d74db83abcd2739e7383e9ad;hp=024af1d2e6824fd104b8664a324d624e572e425e;hb=24bb9fdbf7c67f1e4274ad670f3f0e2bf9dbc88d;hpb=2b4405a3e7a3e747ef39016365bbbcea24d442cc diff --git a/TODO b/TODO index 024af1d..c398eba 100644 --- a/TODO +++ b/TODO @@ -1,74 +1,15 @@ - ------------------------- - strongSwan - Roadmap - ------------------------- + ---------------------- + strongSwan - TODO + ---------------------- -These notes mostly belong to charon, the new IKEv2 daemon. The plan is to -migrate IKEv1 into charon. It's hard to say how much effort is needed to -do that, and how much code we can reuse from pluto. But a port IS necessary to -gain hassle-free confiugration, version negotiation and maintainability. +This is a TODO list we should keep in mind. A roadmap of the strongSwan +project is available online at: -Roadmap for 2007 -================ - - Jan ¦ - first stable release of the strongSwan 4.x branch, 4.1.0? - ¦ - Feb ¦ - refactoring of exchange handling for better code sharing, - ¦ we need to separate specific tasks to reuse them in multiple - ¦ exchanges - ¦ - merge of EAP authentication code / plugin loader - ¦ - merge of the virtual IP support currently in the pipeline - ¦ - merge of the experimental "mediated double-NAT" support - ¦ - write an IETF draft for this feature - ¦ - Mar ¦ - interface in charon for the new SMP management interface - ¦ - full certificate support - ¦ - Cookie support, other fixes to mature against DoS - ¦ - Apr ¦ - start porting efforts of IKEv1 into charon - ¦ - support of IKEv1 messages and payloads in charon - ¦ - May ¦ - migration of plutos state machine into charon - ¦ - Jun ¦ - get a useable IKEv1 implementation for simple cases - ¦ - Jul ¦ - first release of charon supporting IKEv2 and IKEv1, 4.9.0? - ¦ - holidays :-) - ¦ - Aug ¦ - get IKEv1 support to the level of pluto - ¦ - Sep ¦ - ¦ - Oct ¦ - ¦ - Nov ¦ - ¦ - Dec ¦ - feature complete release, 5.0.0! - ¦ - world domination - - -TODO-List -========= - -A set of TODOs. This is only a list of things I write down to not forget them. -Watch out for TODOs in the code. - -Build system ------------- -- configure flag which allows to ommit vendor id in pluto -- reduce printf handlers count to 10, as uClibc does not support more - -Denail of service ------------------ -- Cookie support -- thread exhaustion (multiple messages to a single IKE_SA) + http://trac.strongswan.org/roadmap Certificate support ------------------- -- New trustchain mechanism? -- proper CERTREQ support -- proper handling of multiple certificate payloads (import order) - synchronized CRL fetcher -- OCSP support - Smartcard interface - Attribute certificates @@ -76,9 +17,17 @@ Stroke interface ---------------- - add a Rekey-Counter for SAs in "statusall" - ipsec statusall bytecount -- detach console after first keyingtry -- proper handling of CTRL+C console detach (SIG_PIPE) Misc ---- -- retry transaction on failure while keyingtries > 1 +- Address pool/backend for virtual IP assignement +- replace iterator by enumerator + +libstrongswan stuff +------------------- +- Header installation support (#include ?) +- object style for leak detective, include an API +- Cleanup/Refactor PEM/ASN1 stuff +- replace file reads through chunk_read +- rewrite lexparser in object-oriented style +