From 15609a3a27efa655d9beb7760a13329584091e5f Mon Sep 17 00:00:00 2001
From: David Blacka <david@blacka.com>
Date: Sun, 19 Apr 2009 21:05:56 -0400
Subject: [PATCH] add some expanded TODO notes

---
 TODO | 20 ++++++++++++++++++++
 1 file changed, 20 insertions(+)

diff --git a/TODO b/TODO
index 900723a..a0124a8 100644
--- a/TODO
+++ b/TODO
@@ -1,2 +1,22 @@
+TODO
+
+* Complete CNAME response validation code.
+
+  This differs from the original Unbound code in that it can only
+  validate CNAME/DNAME chains as long as we have the exact keys for
+  each element of the chain.  The Unbound (java) version solved this
+  by requerying for each element of the CNAME chain and validating
+  each element independently (that is, it could construct a chain of
+  trust to each link separately).
+
 * Add way to report errors and validation failure conditions.
 
+  For the TAT handler, what we want is a way to fetch all of the
+  various reason why a validation failed, so it can be spit out in the
+  test results.  A globally available vector of error messages?  Pass
+  around a vector of error messages?
+
+* Create the TAT handler that uses this bit of code.
+
+
+
-- 
2.36.6