From: David Blacka <david@blacka.com>
Date: Mon, 20 Apr 2009 01:05:56 +0000 (-0400)
Subject: add some expanded TODO notes
X-Git-Url: https://blacka.com/cgi-bin/gitweb.cgi?p=captive-validator.git;a=commitdiff_plain;h=15609a3a27efa655d9beb7760a13329584091e5f

add some expanded TODO notes
---

diff --git a/TODO b/TODO
index 900723a..a0124a8 100644
--- a/TODO
+++ b/TODO
@@ -1,2 +1,22 @@
+TODO
+
+* Complete CNAME response validation code.
+
+  This differs from the original Unbound code in that it can only
+  validate CNAME/DNAME chains as long as we have the exact keys for
+  each element of the chain.  The Unbound (java) version solved this
+  by requerying for each element of the CNAME chain and validating
+  each element independently (that is, it could construct a chain of
+  trust to each link separately).
+
 * Add way to report errors and validation failure conditions.
 
+  For the TAT handler, what we want is a way to fetch all of the
+  various reason why a validation failed, so it can be spit out in the
+  test results.  A globally available vector of error messages?  Pass
+  around a vector of error messages?
+
+* Create the TAT handler that uses this bit of code.
+
+
+