socks5_connect(): Don't try to send credentials when none are configured

[privoxy.git] / TODO

diff --git a/TODO b/TODO
index 8b4d4f2..a2063e9 100644 (file)
--- a/TODO
+++ b/TODO
@@ -479,7 +479,8 @@ https://www.privoxy.org/donate
      when https inspecting while using a forwarding proxy.
 
 184) Add support for wolfSSL. Work in progress, expected to be
-     committed after the 3.0.30 release.
+     committed after the 3.0.32 release. Funded with donations
+     made to the Privoxy project.
 
 185) The mbedTLS and OpenSSL versions of generate_host_certificate()
      should only be called when necessary and the check should be
@@ -501,6 +502,31 @@ https://www.privoxy.org/donate
      donated or bought with donations earmarked for this.
      Interested donors: 0.
 
+190) The socks5 authentication code should send user name an password
+     seperately or we should increase the cbuf size to allow longer
+     user names and passwords.
+
+191) The cipher-list directive should be split into cipher-list-server
+     and cipher-list-client.
+
+192) The client TLS contexts should probably be shared among threads
+     to spend less time and memory loading the root certificates.
+
+193) Use SHA256 instead of MD5 for the host hash used when generating file
+     names for host certificates and keys.
+
+194) There should be a way to force gif deanimation if the server does not
+     declare the content as gif.
+
+195) We should probably cache the server TLS contexts.
+
+196) Investigate if it's worth adding an optional mutex for the CGI handler.
+     Could reduce memory use and increase performance on single core systems
+     for some tests.
+
+197) Investigate if parts of Privoxy should get optional replacements
+     written in Rust.
+
 ##########################################################################
 
 Hosting wish list (relevant for #53)