Validator TODO
From DNSSEC-Tools Wiki
Items:
| Pri | Description | Difficulty |
|---|---|---|
| 1 | Fix existing TODOs in code (portions marked /*XXX*/ or /* xxx */) | Mixed |
| 1 | SHA 256 support | ? |
| 1 | Verify operation of algorithm rollover | ? |
| 1 | {Validator authentication chain -> succinct human understandable message} translator | ? |
| 2 | API to clear cache, only use cache, never use cache | ? |
| 2 | API to set EDNS0 size | ? |
| 2 | API to set/get policy definition | ? |
| 2 | Policy/error codes for the following
| ? |
| 2 | correctly setting AD bit during daemon operation | ? |
| 2 | Allow named.conf file to be included in the dnsval.conf | ? |
| 2 | Stealth mode operation | ? |
| 3 | Make test-cases more flexible;
| ? |
| 3 | Optimize caching | ? |
| 3 | Query ID spoof protection | ? |
| 3 | cleanup interface between resolver and validator
(query_send(), response_recv(), nameserver struct etc) | ? |
| 3 | setting that allows you to control which clients are able to query the validator running in daemon mode | ? |
| 3 | Name server selection based on response time | ? |
| 3 | Resolver robustness - ask other NSs on error | ? |
| 4 | Privileges for accessing certain APIs | ? |
| 5 | NSID | ? |
| 5 | support for TSIG/SIG0 | ? |
| 5 | detection of multiple responses for a given query;
waiting for "correct" response | ? |
| 5 | validating zone file | ? |
| 5 | python validator module | ? |
