qca/TODO

* Additional unit tests
* API documentation
* Threading consideration (safety, usability) in API and plugins

* finish API:
  cert/crl: Distinguished Names (Botan has X509_DN)
  cert: turn Info into an enum
  cert/pkey: fingerprints (is there a standard for this?)
  cert: subjectAltName

* finish code for APIs:
  cipher
  mac
  pkey
  cert/crl/store (don't forget to call detach())
  tls
  sasl
  store: system rootcerts (win, mac, debian)
  default provider should have built-in sha1 and md5 (?)

* write plugin support
  qca-tls: do something about the cert check lag.  maybe a thread?

* consider new APIs:
  pgp (go beyond cutestuff and support key expiration, validity, etc)
  smime
  extra x509 stuff discussed in the summer with kiko
  xmldsig
  xmlenc (sort of done already in cutestuff/xmlsec, but need to qca-ify)
  padding - a way to do any possible padding approach, so advanced users
            can turn off the default padding scheme, and pass in a 
            pre-padded last block.
  Key wrapping - RFC3217 and RFC3394
  Password based key derivation functions - RFC2898
  pkey: ability to choose cipher for toDER/PEM passphrase ?
    - botan doesn't seem to allow this, but kiko wanted it...
    - jack looking into it
  cert/crl: path limit, subject/issuer ids (only useful for create/validate)
  cert: constraints, ex_constraints, policies (same as above)
  crl: revoked list (serial, time, reason) (same as above)

* qt 4 upgrade:
  new include styles
  use qmake .prf for auto-discovery by applications
  use qplugin
Add a couple of reminders, partly so I don't forget and partly so that I can test the import of QCA into KDE CVS... svn path=/trunk/kdesupport/qca/; revision=349850 2004-09-27 21:41:50 +00:00			`* Additional unit tests`
			`* API documentation`
more API updates svn path=/trunk/kdesupport/qca/; revision=363583 2004-11-17 00:28:34 +00:00			`* Threading consideration (safety, usability) in API and plugins`
merged my local qca2 todo svn path=/trunk/kdesupport/qca/; revision=357256 2004-10-24 07:48:37 +00:00
more API updates svn path=/trunk/kdesupport/qca/; revision=363583 2004-11-17 00:28:34 +00:00			`* finish API:`
cert: isCA, isSelfSigned functions, updated todo svn path=/trunk/kdesupport/qca/; revision=373200 2004-12-24 21:15:24 +00:00			`cert/crl: Distinguished Names (Botan has X509_DN)`
more crl/cert stuff, initial systemstore svn path=/trunk/kdesupport/qca/; revision=373691 2004-12-28 10:17:37 +00:00			`cert: turn Info into an enum`
			`cert/pkey: fingerprints (is there a standard for this?)`
			`cert: subjectAltName`
securelayer svn path=/trunk/kdesupport/qca/; revision=360643 2004-11-05 08:54:01 +00:00
more API updates svn path=/trunk/kdesupport/qca/; revision=363583 2004-11-17 00:28:34 +00:00			`* finish code for APIs:`
			`cipher`
			`mac`
			`pkey`
			`cert/crl/store (don't forget to call detach())`
			`tls`
			`sasl`
more crl/cert stuff, initial systemstore svn path=/trunk/kdesupport/qca/; revision=373691 2004-12-28 10:17:37 +00:00			`store: system rootcerts (win, mac, debian)`
more API updates svn path=/trunk/kdesupport/qca/; revision=363583 2004-11-17 00:28:34 +00:00			`default provider should have built-in sha1 and md5 (?)`

			`* write plugin support`
			`qca-tls: do something about the cert check lag. maybe a thread?`

			`* consider new APIs:`
			`pgp (go beyond cutestuff and support key expiration, validity, etc)`
			`smime`
			`extra x509 stuff discussed in the summer with kiko`
			`xmldsig`
			`xmlenc (sort of done already in cutestuff/xmlsec, but need to qca-ify)`
After investigating padding a bit more, turns out there are a lot of approaches (PKCS#1 V2.1 has two, RFC1423 has one, and apparently X9.31 has yet another). So the plan will be to have a class, or perhaps just a function like: QCA::padMe( QSecureArray data, int blockSize, enum paddingScheme ); that pads the data up to the required blocksize, and then you just pass that into the algorithm with padding turned off. Of course, we'd need an "unPadMe()" to do the reverse. CCMAIL: delta-affinix.com@lists.affinix.com svn path=/trunk/kdesupport/qca/; revision=366564 2004-11-27 05:35:47 +00:00			`padding - a way to do any possible padding approach, so advanced users`
			`can turn off the default padding scheme, and pass in a`
			`pre-padded last block.`
More stuff I haven't done yet. svn path=/trunk/kdesupport/qca/; revision=372951 2004-12-23 10:54:18 +00:00			`Key wrapping - RFC3217 and RFC3394`
			`Password based key derivation functions - RFC2898`
encrypt and signature algorithm selection svn path=/trunk/kdesupport/qca/; revision=373078 2004-12-23 23:51:36 +00:00			`pkey: ability to choose cipher for toDER/PEM passphrase ?`
			`- botan doesn't seem to allow this, but kiko wanted it...`
cert: isCA, isSelfSigned functions, updated todo svn path=/trunk/kdesupport/qca/; revision=373200 2004-12-24 21:15:24 +00:00			`- jack looking into it`
more crl/cert stuff, initial systemstore svn path=/trunk/kdesupport/qca/; revision=373691 2004-12-28 10:17:37 +00:00			`cert/crl: path limit, subject/issuer ids (only useful for create/validate)`
			`cert: constraints, ex_constraints, policies (same as above)`
			`crl: revoked list (serial, time, reason) (same as above)`
more API updates svn path=/trunk/kdesupport/qca/; revision=363583 2004-11-17 00:28:34 +00:00
			`* qt 4 upgrade:`
			`new include styles`
			`use qmake .prf for auto-discovery by applications`
cert: isCA, isSelfSigned functions, updated todo svn path=/trunk/kdesupport/qca/; revision=373200 2004-12-24 21:15:24 +00:00			`use qplugin`
merged my local qca2 todo svn path=/trunk/kdesupport/qca/; revision=357256 2004-10-24 07:48:37 +00:00