From c4e1a83be58be54c480052f912da678a673744d6 Mon Sep 17 00:00:00 2001 From: Wouter Wijngaards Date: Thu, 17 Jan 2008 09:19:34 +0000 Subject: [PATCH] TODO update. git-svn-id: file:///svn/unbound/trunk@872 be551aaa-1e26-0410-a405-d3ace91eadb9 --- doc/TODO | 16 +++------------- 1 file changed, 3 insertions(+), 13 deletions(-) diff --git a/doc/TODO b/doc/TODO index cdfc88500..d9b73477f 100644 --- a/doc/TODO +++ b/doc/TODO @@ -1,8 +1,5 @@ TODO items. -o use real entropy to make random (ID, port) numbers more random. o in production mode, do not free memory on exit. In debug mode, test leaks. -o profile memory allocation, and if performance issues, use special memory - allocator. For example, with caches per thread. o #define BIT_... different on bigendian and smallendian systems so that the htons on flags is not needed to send a message from the cache. o speed up pkt domain name decompression loop detection using counter perhaps. @@ -16,11 +13,6 @@ o scrubber has slow pkt_subdomain and pkt_strict_subdomain functions. o get serverselection algorithm out of local optimum. make subtargets to get rtt info for a couple of targets, like fetch-policy. or send out multiple queries to multiple servers. -o donotqueryaddresses allow specification of subnets, use trie to store. - extend default list to contain illegal ip4 and ip6 addresses. -o memory profile; and if needed put serviced queries under qstate->region - and special purpose region code, reuse blocks, shrink if too big. -o check query, option to enforce presence of qdsection in noerror answers. o configuration option where port 53 is used for send and receive, no other ports are used. o (option) to not send replies to clients after a timeout of (say 5 secs) has @@ -35,14 +27,11 @@ o retain prime results in a overlaid roothints file. o store primed key data in a overlaid keyhints file (sort of like drafttimers). o windows version, auto update feature, a query to check for the version. o autoreport of problems -o logrotation, syslog o command the server with TSIG inband. get-config, clearcache, get stats, get memstats, get ..., reload, clear one zone from cache o watch for spoof nearmisses. o improve compression of DNS packets by first puttig uncompressible rrs, then compress to their rdata. -o if one server is not responsive do not spend 75 secs on that server, but - try other servers with lower rtt. o NSID rfc 5001 support. o timers rfc 5011 support. o Treat YXDOMAIN from a DNAME properly, in iterator (not throwaway), validator. @@ -54,10 +43,10 @@ o proactively prime root, stubs and trust anchors, feature. early failure, faster on first query, but more traffic. o use privilege separation, to change privilege options during reload securely not needed. -o check if for PowerDNS(2.9.21) CNAME in Answer section & rcode=NXDOMAIN needs - to be fixed up to be rcode=NOERROR? o On Windows use CryptGenRandom() to get random seed for arc4random. o Think about intermediate firewalls dropping EDNS UDP & handling that. + detect nonEDNS middlebox by timeout on edns queries, and fallback to + nonEDNS when appropriate. o library add convenience functions for A, AAAA, PTR, getaddrinfo, libresolve. o library add function to get signature data (or whole reply message). o library add function to validate input from app that is signed. @@ -66,3 +55,4 @@ o in an ipv6 connected only environment unbound cannot use outgoing IP6 to send to ip4to6 mapped hosts, need ip4to6map of NS and disable V6ONLY socket option. o support multiple dns messages in a TCP query stream for the unbound server. +o SIG(0) and TSIG. -- 2.47.3