From 41ca60fee8c14f74af22bbeeda56574e883c21a9 Mon Sep 17 00:00:00 2001 From: Linus Nordberg Date: Wed, 25 Apr 2012 17:33:40 +0200 Subject: Update HACKING. --- lib/HACKING | 12 ++++++++++-- 1 file changed, 10 insertions(+), 2 deletions(-) diff --git a/lib/HACKING b/lib/HACKING index 7b1f298..793ac72 100644 --- a/lib/HACKING +++ b/lib/HACKING @@ -21,6 +21,14 @@ examples/client -r examples/client.conf blocking-tls; echo $? - Fully reentrant (FIXME: issues with libfreeradius-radius?) - User chooses allocation regime +Note that as of 0.0.2.dev libradsec suffers from way too much focus on +the behaviour of a blocking client and is totally useless as a server. +Not only does it lack most of the functions needed for writing a +server but it also contains at least one architectural mishap which +kills the server idea. A connection timeout (TCP) or a retransmit +timeout (UDP) will result in the event loop being broken. The same is +thing will happen if there's an error on a TCP connection, f.ex. a +failing certificate validation (TLS). * Dependencies Details apply to Ubuntu 10.10. @@ -41,13 +49,13 @@ Details apply to Ubuntu 10.10. - [TCP] short read - [TCP] short write - [TLS] basic tls support +- [TLS] preshared key support +- [TLS] verification of CN ** Known issues - error stack is only one entry deep - custom allocation scheme is not used in all places ** Not implemented - server failover -- [TLS] verification of CN -- [TLS] preshared key support - [DTLS] support * Found a bug? -- cgit v1.1