summaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorHarald Welte <laforge@gnumonks.org>2003-01-10 14:50:24 +0000
committerHarald Welte <laforge@gnumonks.org>2003-01-10 14:50:24 +0000
commit42e283c5ce1fff30c324791a1ca7ce10658a203c (patch)
tree86911a99ff331f59d09a5026d38a05b1958e5ffe
parenteb1c6464bb19d6192543473dc9d9835e00ba1435 (diff)
TODO update
-rw-r--r--CURRENT_ISSUES49
-rw-r--r--TODO9
2 files changed, 32 insertions, 26 deletions
diff --git a/CURRENT_ISSUES b/CURRENT_ISSUES
index c4169365..13b91fbd 100644
--- a/CURRENT_ISSUES
+++ b/CURRENT_ISSUES
@@ -1,28 +1,35 @@
-- REJECT to UDP packets with wrong checksum
- - fix in pending
-- save/restore problem of owner match
+save/restore problem of owner match
- userspace
-- ECN checksum problem
- - fix in pending
-- 'mangle INPUT MARK problem'
- - route me harder?
-- ip6tables HOPLIMIT target
- - can be put in pom
-- u32
+u32 match
- can wait
-- XDMCP conntrack/nat
+XDMCP conntrack/nat
- can wait
-- nf_debug stuff
+nf_debug stuff
- can wait
-- ipt_ACCOUNT
+ipt_ACCOUNT
- can wait
-- ftp conntrack debug message
- - fix in pending
-- ASSERT debug messages
- - fix in submitted
-- ICMP de-nat problem at MTU transition
+ICMP de-nat problem at MTU transition
- fix needs testing
-- early_drop_backwards.diff
- - is in my local pom, needs testing before 'pending'
-- UDP stream timeout (180s) doens't apply for first reply packet
+early_drop_backwards.diff
+ - fix in pending, needs testing
+UDP stream timeout (180s) doens't apply for first reply packet
- fix by Martin Josefsson, needs review/testing
+rpc conntrack helper
+ - comments/updates sent to Ian, waiting for reply
+remove __MOD_INC_USAGE / __MOD_DEC_USAGE patch
+ - need to familiarize with new API and review patch
+SLOG target
+ - no further work expected
+ - needs to be integrated with recent nfnetlink/ctnetlink
+loop detection / nf_hipac (mail from dec 15
+ - need time
+reject --with-admin-prohibited
+ - most compatible version needs to be used
+IPv6 REJECT target fix
+ - important, it's a pity that it's still broken
+bi-directional ftp state tracking
+ - do we want this?
+typo in ftp helper (espv instead of epsv)
+ - cosmetic patch needs to be done and submitted
+final ACK of a SYN - SYN/ACK - ACK tcp handshake establishes ASSURED
+ - patch is on list, needs testing + comments from kadlec
diff --git a/TODO b/TODO
index 32b7b002..b59ef01b 100644
--- a/TODO
+++ b/TODO
@@ -4,11 +4,11 @@ Currently maintained by Harald Welte <laforge@gnumonks.org>
Please inform me, if you want to work on any of the TODO items, so I
can update this list and thus prevent two people doing the same work.
-CVS ID: $Id: TODO,v 1.66 2002/09/15 11:29:18 laforge Exp $
+CVS ID: $Id: TODO,v 1.67 2002/10/22 10:15:19 laforge Exp $
IMPORTANT issues:
- erroneously too-fast dropped conntrack for half-open TCP connections [JK]
-- wrong 'Out of window' error message from tcp-windowtracking [JK]
+X wrong 'Out of window' error message from tcp-windowtracking [JK]
- --mac-source not working in FORWARD (manpage bug?)
- update manpages to include recently submitted extensions
- locally bound udp port can still be used for MASQ/SNAT
@@ -29,12 +29,11 @@ TO BE INVESTIGATED:
NICE to have:
- endianness wrt. unnamed initializers in conntrack helpers after
pptp-patch applied
-- make RPC conntrack work again
+X make RPC conntrack work again
- multicast connection tracking
- sysctl support for ftp-multi, irc-conntrack/nat, ftp-fxp
-- integrate HOPLIMIT for ipv6 in patch-o-matic [HW]
+X integrate HOPLIMIT for ipv6 in patch-o-matic [HW]
- u32 classifier (port from tc -> iptables) [YU]
-- documentation for libiptc
- port conntrack to IPv6 (code reuse?) [BC]
- ip_nat_ident module
- make iptables / ip6tables use the same codebase (as libiptc) [KA]