From 5cffe055ad96a76a4f06d01055c42308290bcdff Mon Sep 17 00:00:00 2001 From: Daniel Stenberg Date: Thu, 7 Feb 2002 10:43:43 +0000 Subject: [PATCH] added Cris Bailiff's CAdir option suggestion --- docs/TODO | 8 ++++++++ 1 file changed, 8 insertions(+) diff --git a/docs/TODO b/docs/TODO index e308a02e4..367c46a03 100644 --- a/docs/TODO +++ b/docs/TODO @@ -127,6 +127,14 @@ TODO SSL + * If you really want to improve the SSL situation, you should probably have a + look at SSL cafile loading as well - quick traces look to me like these are + done on every request as well, when they should only be necessary once per + ssl context (or once per handle). Even better would be to support the SSL + CAdir option - instead of loading all of the root CA certs for every + request, this option allows you to only read the CA chain that is actually + required (into the cache)... + * Add an interface to libcurl that enables "session IDs" to get exported/imported. Cris Bailiff said: "OpenSSL has functions which can serialise the current SSL state to a buffer of your choice, and