X-Git-Url: http://www.privoxy.org/gitweb/?p=privoxy.git;a=blobdiff_plain;f=TODO;h=a2063e9ebee2a2fa6d625493f7f062fc07f3457a;hp=ab0b0d6f4b1b68ce4716000e33d899cc73ba6055;hb=85817cc55b9;hpb=b834a2860cef555c4b62dc22360dd987018b30df diff --git a/TODO b/TODO index ab0b0d6f..a2063e9e 100644 --- a/TODO +++ b/TODO @@ -13,6 +13,7 @@ https://www.privoxy.org/donate Note that there is currently work in progress to leverage curl's test suite, patches have been submitted upstream: https://curl.se/mail/lib-2014-06/0070.html + https://curl.se/mail/lib-2021-01/0068.html 3) Fix some more XXX: comments. @@ -438,7 +439,7 @@ https://www.privoxy.org/donate 169) Preserve all relevant copyright and license statements in binary packages we distribute. -170) Serve the ca-cert-file through the CGI interface so client's +170) Serve the ca-cert-file through the CGI interface so clients can conveniently import it (insecurely). 171) Create a "view page using Privoxy" website where users can input @@ -470,6 +471,62 @@ https://www.privoxy.org/donate 181) Allow to upgrade an http request to https behind the client's back using a client-header filter. +182) Before enforcing the client-header-order, check that the + client headers actually need sorting. Should reduce log + messages and memory allocations. + +183) Properly deal with proxy responses that arrive in multiple pieces + when https inspecting while using a forwarding proxy. + +184) Add support for wolfSSL. Work in progress, expected to be + committed after the 3.0.32 release. Funded with donations + made to the Privoxy project. + +185) The mbedTLS and OpenSSL versions of generate_host_certificate() + should only be called when necessary and the check should be + done without holding the certificate mutex. + +186) Privoxy should handle "OPTIONS *" requests properly. + +187) There should be a convenient way to see the versions of + the libraries Privoxy is using. + +188) In the windows config.txt file, add the line + user-manual ./doc/user-manual/ + right after + # Copyright ... + # + +189) Bring back binary packages for macOS, preferably for both Intel and M1. + The first step would be getting at least one build system, either + donated or bought with donations earmarked for this. + Interested donors: 0. + +190) The socks5 authentication code should send user name an password + seperately or we should increase the cbuf size to allow longer + user names and passwords. + +191) The cipher-list directive should be split into cipher-list-server + and cipher-list-client. + +192) The client TLS contexts should probably be shared among threads + to spend less time and memory loading the root certificates. + +193) Use SHA256 instead of MD5 for the host hash used when generating file + names for host certificates and keys. + +194) There should be a way to force gif deanimation if the server does not + declare the content as gif. + +195) We should probably cache the server TLS contexts. + +196) Investigate if it's worth adding an optional mutex for the CGI handler. + Could reduce memory use and increase performance on single core systems + for some tests. + +197) Investigate if parts of Privoxy should get optional replacements + written in Rust. + ########################################################################## Hosting wish list (relevant for #53)