Projekt

Allgemein

Profil

Revision:

Revisionen

# Datum Autor Kommentar
4eb38a5a 19.01.2014 21:19 mlenk

Add function GWEN_Register_App_Plugin_Dir()

This function allows the calling application to register an explicit
directory that is scanned for plugins before all other (default)
locations when GWEN_Init() is called.

git-svn-id: https://devel.aqbanking.de/svn/gwenhywfar/trunk@2284 70169cfe-8b10-0410-8925-dcb4b91034d8
36abd6d9 12.01.2014 22:41 christian

Minor decrease of verbosity: Display the 'plugin has no i18n domain' text as notice, not as warning, to avoid distractions here

git-svn-id: https://devel.aqbanking.de/svn/gwenhywfar/trunk@2283 70169cfe-8b10-0410-8925-dcb4b91034d8
b17d1721 07.01.2014 22:38 martin

SSL: Disabled new cipher selection code for now, needs further testing.

git-svn-id: https://devel.aqbanking.de/svn/gwenhywfar/trunk@2282 70169cfe-8b10-0410-8925-dcb4b91034d8
d2454af9 29.12.2013 22:48 martin

Prepared 4.9.0beta.

git-svn-id: https://devel.aqbanking.de/svn/gwenhywfar/trunk@2281 70169cfe-8b10-0410-8925-dcb4b91034d8
18e6038d 30.11.2013 21:07 martin

TLS: Added flags to force unsafe ciphers.

Unfortunately it is necessary to offer only "SECURE128" ciphers to the
Netbank server, otherwise it chooses a safe cipher but fails when something
is actually sent via the connection.

This needs to be added to AqHBCI as well....
b53ae3a5 30.11.2013 18:42 martin

TLS: Improved cipher handling

The environment variable "GWEN_TLS_CIPHER_PRIORITIES" is now used as is.
Only if this var is not set a default handling is used.

This allows connecting to Netbank/Sparda servers.

git-svn-id: https://devel.aqbanking.de/svn/gwenhywfar/trunk@2279 70169cfe-8b10-0410-8925-dcb4b91034d8
95253240 27.11.2013 00:54 martin

TLS: Fixed another problem.

The string
"SECURE256:SECURE128:-ARCFOUR-128:-AES-128-CBC:-CAMELLIA-128-CBC:-3DES-CBC"
makes it impossible to connect to postbank.de. For whatever reason Postbank
tries to enforce ARCFOUR-128 when given the opportunity to use a 128 bit...
44888b95 27.11.2013 00:54 martin

Increased verbosity.

git-svn-id: https://devel.aqbanking.de/svn/gwenhywfar/trunk@2277 70169cfe-8b10-0410-8925-dcb4b91034d8
8d392ca5 27.11.2013 00:38 martin

Added flags to force only safe TLS ciphers.

git-svn-id: https://devel.aqbanking.de/svn/gwenhywfar/trunk@2276 70169cfe-8b10-0410-8925-dcb4b91034d8
203012e8 27.11.2013 00:31 martin

TLS: Added flag GWEN_SYNCIO_TLS_FLAGS_ONLY_SAFE_CIPHERS

If this flag is set then ciphers known as unsafe will be disabled in the
cipher priority list.

git-svn-id: https://devel.aqbanking.de/svn/gwenhywfar/trunk@2275 70169cfe-8b10-0410-8925-dcb4b91034d8
38594dd8 26.11.2013 23:36 martin

TLS: Fixed a type.

git-svn-id: https://devel.aqbanking.de/svn/gwenhywfar/trunk@2274 70169cfe-8b10-0410-8925-dcb4b91034d8
ae7dc037 26.11.2013 23:36 martin

TLS: Show more session info.

git-svn-id: https://devel.aqbanking.de/svn/gwenhywfar/trunk@2273 70169cfe-8b10-0410-8925-dcb4b91034d8
5f9273d5 26.11.2013 23:08 martin

TLS: Show session info.

Maybe we might later add a warning for insecure ciphers...

git-svn-id: https://devel.aqbanking.de/svn/gwenhywfar/trunk@2272 70169cfe-8b10-0410-8925-dcb4b91034d8
fc2bd1cd 26.11.2013 22:25 martin

TLS: Changed acceptable cipher list.

The secure cipher lists don't work with some banks.

git-svn-id: https://devel.aqbanking.de/svn/gwenhywfar/trunk@2271 70169cfe-8b10-0410-8925-dcb4b91034d8
cab62b0b 26.11.2013 22:25 martin

Show the ciphers used.

git-svn-id: https://devel.aqbanking.de/svn/gwenhywfar/trunk@2270 70169cfe-8b10-0410-8925-dcb4b91034d8
508d7909 26.11.2013 22:25 martin

Decreased verbosity.

git-svn-id: https://devel.aqbanking.de/svn/gwenhywfar/trunk@2269 70169cfe-8b10-0410-8925-dcb4b91034d8
0213c47a 25.11.2013 20:44 martin

For GnuTLS >=3.2.4 insert "PFS" before "SECURE256".

Followed a suggestion from Martin (MK).

git-svn-id: https://devel.aqbanking.de/svn/gwenhywfar/trunk@2268 70169cfe-8b10-0410-8925-dcb4b91034d8
ec1009d0 25.11.2013 09:20 mlenk

Improve GnuTLS cipher settings

- make cipher string a #define in syncio_tls_p.h
- add facility to override cipher settings via environment variable GWEN_TLS_CIPHER_PRIORITIES
- construct Force-SSLv3 cipher by adding prefix "+VERS-SSL3.0:"

git-svn-id: https://devel.aqbanking.de/svn/gwenhywfar/trunk@2267 70169cfe-8b10-0410-8925-dcb4b91034d8
b026f018 24.11.2013 01:02 martin

Added explanation and changed gnutls version check.

git-svn-id: https://devel.aqbanking.de/svn/gwenhywfar/trunk@2266 70169cfe-8b10-0410-8925-dcb4b91034d8
eca00aca 23.11.2013 13:04 martin

Fixed a typo, according to MK.

git-svn-id: https://devel.aqbanking.de/svn/gwenhywfar/trunk@2265 70169cfe-8b10-0410-8925-dcb4b91034d8
47e4dbd6 18.11.2013 21:52 martin

Fix build issues with mingw with recent MinGW versions.

Patch supplied by "geert".

git-svn-id: https://devel.aqbanking.de/svn/gwenhywfar/trunk@2264 70169cfe-8b10-0410-8925-dcb4b91034d8
ef3f34db 18.11.2013 20:50 martin

Tried removing unsafe ciphers.

Applied a modification of a patch submitted by MK.

git-svn-id: https://devel.aqbanking.de/svn/gwenhywfar/trunk@2263 70169cfe-8b10-0410-8925-dcb4b91034d8
6c1be053 28.10.2013 21:16 martin

Added (deactivated) code to use ca-certificates from target system.

git-svn-id: https://devel.aqbanking.de/svn/gwenhywfar/trunk@2262 70169cfe-8b10-0410-8925-dcb4b91034d8
98fa8e78 28.10.2013 21:15 martin

Updated ca-bundle.crt

git-svn-id: https://devel.aqbanking.de/svn/gwenhywfar/trunk@2261 70169cfe-8b10-0410-8925-dcb4b91034d8
47698245 28.10.2013 21:15 martin

Worked on TLS certificate stuff
- fixed a memory leak
- if no local trust file is set try the system files first:
- /etc/ssl/certs/ca-certificates.crt
- /usr/share/ca-certificates
- our own cert file

git-svn-id: https://devel.aqbanking.de/svn/gwenhywfar/trunk@2260 70169cfe-8b10-0410-8925-dcb4b91034d8

(1226-1250/3215) Pro Seite: 25, 50, 100

Auch abrufbar als: Atom