1
1
------------------------------------------------------------------
2
2013-10-22 20:24:06 +0200 Martin Preuss
2
2013-12-29 22:46:51 +0100 Martin Preuss
5
------------------------------------------------------------------
6
2013-11-30 20:07:53 +0000 martin
7
TLS: Added flags to force unsafe ciphers.
8
Unfortunately it is necessary to offer only "SECURE128" ciphers to the
9
Netbank server, otherwise it chooses a safe cipher but fails when something
10
is actually sent via the connection.
12
This needs to be added to AqHBCI as well.
14
git-svn-id: https://devel.aqbanking.de/svn/gwenhywfar/trunk@2280 70169cfe-8b10-0410-8925-dcb4b91034d8
16
------------------------------------------------------------------
17
2013-11-30 17:42:38 +0000 martin
18
TLS: Improved cipher handling
19
The environment variable "GWEN_TLS_CIPHER_PRIORITIES" is now used as is.
20
Only if this var is not set a default handling is used.
22
This allows connecting to Netbank/Sparda servers.
24
git-svn-id: https://devel.aqbanking.de/svn/gwenhywfar/trunk@2279 70169cfe-8b10-0410-8925-dcb4b91034d8
26
------------------------------------------------------------------
27
2013-11-26 23:54:41 +0000 martin
28
TLS: Fixed another problem.
30
"SECURE256:SECURE128:-ARCFOUR-128:-AES-128-CBC:-CAMELLIA-128-CBC:-3DES-CBC"
31
makes it impossible to connect to postbank.de. For whatever reason Postbank
32
tries to enforce ARCFOUR-128 when given the opportunity to use a 128 bit
33
algo, despite the fact that our list starts with SECURE256...
35
Removing "SECURE128" leaves Postbank only the option to use a 256 bit algo,
38
git-svn-id: https://devel.aqbanking.de/svn/gwenhywfar/trunk@2278 70169cfe-8b10-0410-8925-dcb4b91034d8
40
------------------------------------------------------------------
41
2013-11-26 23:54:37 +0000 martin
43
git-svn-id: https://devel.aqbanking.de/svn/gwenhywfar/trunk@2277 70169cfe-8b10-0410-8925-dcb4b91034d8
45
------------------------------------------------------------------
46
2013-11-26 23:38:46 +0000 martin
47
Added flags to force only safe TLS ciphers.
48
git-svn-id: https://devel.aqbanking.de/svn/gwenhywfar/trunk@2276 70169cfe-8b10-0410-8925-dcb4b91034d8
50
------------------------------------------------------------------
51
2013-11-26 23:31:13 +0000 martin
52
TLS: Added flag GWEN_SYNCIO_TLS_FLAGS_ONLY_SAFE_CIPHERS
53
If this flag is set then ciphers known as unsafe will be disabled in the
56
git-svn-id: https://devel.aqbanking.de/svn/gwenhywfar/trunk@2275 70169cfe-8b10-0410-8925-dcb4b91034d8
58
------------------------------------------------------------------
59
2013-11-26 22:36:44 +0000 martin
61
git-svn-id: https://devel.aqbanking.de/svn/gwenhywfar/trunk@2274 70169cfe-8b10-0410-8925-dcb4b91034d8
63
------------------------------------------------------------------
64
2013-11-26 22:36:39 +0000 martin
65
TLS: Show more session info.
66
git-svn-id: https://devel.aqbanking.de/svn/gwenhywfar/trunk@2273 70169cfe-8b10-0410-8925-dcb4b91034d8
68
------------------------------------------------------------------
69
2013-11-26 22:08:14 +0000 martin
70
TLS: Show session info.
71
Maybe we might later add a warning for insecure ciphers...
73
git-svn-id: https://devel.aqbanking.de/svn/gwenhywfar/trunk@2272 70169cfe-8b10-0410-8925-dcb4b91034d8
75
------------------------------------------------------------------
76
2013-11-26 21:25:36 +0000 martin
77
TLS: Changed acceptable cipher list.
78
The secure cipher lists don't work with some banks.
80
git-svn-id: https://devel.aqbanking.de/svn/gwenhywfar/trunk@2271 70169cfe-8b10-0410-8925-dcb4b91034d8
82
------------------------------------------------------------------
83
2013-11-26 21:25:32 +0000 martin
84
Show the ciphers used.
85
git-svn-id: https://devel.aqbanking.de/svn/gwenhywfar/trunk@2270 70169cfe-8b10-0410-8925-dcb4b91034d8
87
------------------------------------------------------------------
88
2013-11-26 21:25:26 +0000 martin
90
git-svn-id: https://devel.aqbanking.de/svn/gwenhywfar/trunk@2269 70169cfe-8b10-0410-8925-dcb4b91034d8
92
------------------------------------------------------------------
93
2013-11-25 19:44:15 +0000 martin
94
For GnuTLS >=3.2.4 insert "PFS" before "SECURE256".
95
Followed a suggestion from Martin (MK).
97
git-svn-id: https://devel.aqbanking.de/svn/gwenhywfar/trunk@2268 70169cfe-8b10-0410-8925-dcb4b91034d8
99
------------------------------------------------------------------
100
2013-11-25 08:20:31 +0000 mlenk
101
Improve GnuTLS cipher settings
102
- make cipher string a #define in syncio_tls_p.h
103
- add facility to override cipher settings via environment variable GWEN_TLS_CIPHER_PRIORITIES
104
- construct Force-SSLv3 cipher by adding prefix "+VERS-SSL3.0:"
107
git-svn-id: https://devel.aqbanking.de/svn/gwenhywfar/trunk@2267 70169cfe-8b10-0410-8925-dcb4b91034d8
109
------------------------------------------------------------------
110
2013-11-24 00:02:08 +0000 martin
111
Added explanation and changed gnutls version check.
112
git-svn-id: https://devel.aqbanking.de/svn/gwenhywfar/trunk@2266 70169cfe-8b10-0410-8925-dcb4b91034d8
114
------------------------------------------------------------------
115
2013-11-23 12:04:15 +0000 martin
116
Fixed a typo, according to MK.
117
git-svn-id: https://devel.aqbanking.de/svn/gwenhywfar/trunk@2265 70169cfe-8b10-0410-8925-dcb4b91034d8
119
------------------------------------------------------------------
120
2013-11-18 20:52:34 +0000 martin
121
Fix build issues with mingw with recent MinGW versions.
122
Patch supplied by "geert".
124
git-svn-id: https://devel.aqbanking.de/svn/gwenhywfar/trunk@2264 70169cfe-8b10-0410-8925-dcb4b91034d8
126
------------------------------------------------------------------
127
2013-11-18 19:50:55 +0000 martin
128
Tried removing unsafe ciphers.
129
Applied a modification of a patch submitted by MK.
131
git-svn-id: https://devel.aqbanking.de/svn/gwenhywfar/trunk@2263 70169cfe-8b10-0410-8925-dcb4b91034d8
133
------------------------------------------------------------------
134
2013-10-28 20:16:04 +0000 martin
135
Added (deactivated) code to use ca-certificates from target system.
136
git-svn-id: https://devel.aqbanking.de/svn/gwenhywfar/trunk@2262 70169cfe-8b10-0410-8925-dcb4b91034d8
138
------------------------------------------------------------------
139
2013-10-28 20:15:58 +0000 martin
140
Updated ca-bundle.crt
141
git-svn-id: https://devel.aqbanking.de/svn/gwenhywfar/trunk@2261 70169cfe-8b10-0410-8925-dcb4b91034d8
143
------------------------------------------------------------------
144
2013-10-28 20:15:42 +0000 martin
145
Worked on TLS certificate stuff - fixed a memory leak - if no local trust file is set try the system files first: - /etc/ssl/certs/ca-certificates.crt - /usr/share/ca-certificates - our own cert file
146
git-svn-id: https://devel.aqbanking.de/svn/gwenhywfar/trunk@2260 70169cfe-8b10-0410-8925-dcb4b91034d8
148
------------------------------------------------------------------
149
2013-10-27 13:36:33 +0000 mlenk
150
Fix makefile target for listdoc.h for the case when admin/mklistdoc is not built yet
151
git-svn-id: https://devel.aqbanking.de/svn/gwenhywfar/trunk@2259 70169cfe-8b10-0410-8925-dcb4b91034d8
153
------------------------------------------------------------------
154
2013-10-27 12:45:57 +0000 mlenk
155
Properly cleanup auto-generated files/directories in clean target
156
git-svn-id: https://devel.aqbanking.de/svn/gwenhywfar/trunk@2258 70169cfe-8b10-0410-8925-dcb4b91034d8
158
------------------------------------------------------------------
159
2013-10-27 12:03:35 +0000 mlenk
160
Properly integrate skipping of network checks in the Autoconf build system
161
git-svn-id: https://devel.aqbanking.de/svn/gwenhywfar/trunk@2257 70169cfe-8b10-0410-8925-dcb4b91034d8
163
------------------------------------------------------------------
164
2013-10-27 10:21:03 +0000 mlenk
165
Add a facility to disable network dependent checks
166
If the environment variable GWENHYWFAR_CHECK_WITHOUT_NETWORK is set during
167
running 'make check', all checks that depend on network connectivity are
170
This is useful for Debian buildd environments that may not provide internet
171
connectivity during build. With disabled network dependent checks, Debian's
172
buildds can at least run all the non-network dependent checks during build.
175
git-svn-id: https://devel.aqbanking.de/svn/gwenhywfar/trunk@2256 70169cfe-8b10-0410-8925-dcb4b91034d8
177
------------------------------------------------------------------
178
2013-10-27 00:18:49 +0000 martin
179
Removed a blank line.
180
git-svn-id: https://devel.aqbanking.de/svn/gwenhywfar/trunk@2255 70169cfe-8b10-0410-8925-dcb4b91034d8
182
------------------------------------------------------------------
183
2013-10-26 23:47:57 +0000 martin
184
Typemaker2: Improved handling of virtual functions.
185
Parameters are now named in the output file if they are named in the
188
Also, APIDOC for virtual functions and their parameters is generated.
190
git-svn-id: https://devel.aqbanking.de/svn/gwenhywfar/trunk@2254 70169cfe-8b10-0410-8925-dcb4b91034d8
192
------------------------------------------------------------------
193
2013-10-22 18:25:33 +0000 martin
3
194
Prepared release 4.8.0beta.
195
git-svn-id: https://devel.aqbanking.de/svn/gwenhywfar/trunk@2253 70169cfe-8b10-0410-8925-dcb4b91034d8
5
197
------------------------------------------------------------------
6
2013-10-22 20:20:59 +0200 Martin Preuss
198
2013-10-22 18:25:29 +0000 martin
200
git-svn-id: https://devel.aqbanking.de/svn/gwenhywfar/trunk@2252 70169cfe-8b10-0410-8925-dcb4b91034d8
9
202
------------------------------------------------------------------
10
203
2013-10-04 21:12:34 +0000 martin
452
645
2012-12-30 22:18:30 +0000 martin
453
646
Prepared release 4.4.0beta
454
647
git-svn-id: https://devel.aqbanking.de/svn/gwenhywfar/trunk@2182 70169cfe-8b10-0410-8925-dcb4b91034d8
456
------------------------------------------------------------------
457
2012-12-30 22:18:27 +0000 martin
459
git-svn-id: https://devel.aqbanking.de/svn/gwenhywfar/trunk@2181 70169cfe-8b10-0410-8925-dcb4b91034d8
461
------------------------------------------------------------------
462
2012-12-30 22:18:23 +0000 martin
463
Added var attribute GWEN_UNUSED and tested it.
464
We can later use this to suppress warnings of type unused-but-set,
465
especially in C++ GUI code where sometimes GUI objects are created with
466
"new" but never accessed again inside a method. This is perfectly correct
467
but still triggeres a warning by gcc.
469
git-svn-id: https://devel.aqbanking.de/svn/gwenhywfar/trunk@2180 70169cfe-8b10-0410-8925-dcb4b91034d8
471
------------------------------------------------------------------
472
2012-12-30 22:18:19 +0000 martin
474
git-svn-id: https://devel.aqbanking.de/svn/gwenhywfar/trunk@2179 70169cfe-8b10-0410-8925-dcb4b91034d8
476
------------------------------------------------------------------
477
2012-12-30 22:18:16 +0000 martin
479
git-svn-id: https://devel.aqbanking.de/svn/gwenhywfar/trunk@2178 70169cfe-8b10-0410-8925-dcb4b91034d8
481
------------------------------------------------------------------
482
2012-12-30 22:18:13 +0000 martin
483
Improved message on creation of a password store.
484
git-svn-id: https://devel.aqbanking.de/svn/gwenhywfar/trunk@2177 70169cfe-8b10-0410-8925-dcb4b91034d8
486
------------------------------------------------------------------
487
2012-12-30 22:18:08 +0000 martin
489
git-svn-id: https://devel.aqbanking.de/svn/gwenhywfar/trunk@2176 70169cfe-8b10-0410-8925-dcb4b91034d8
491
------------------------------------------------------------------
492
2012-12-30 19:38:22 +0000 martin
494
git-svn-id: https://devel.aqbanking.de/svn/gwenhywfar/trunk@2175 70169cfe-8b10-0410-8925-dcb4b91034d8
496
------------------------------------------------------------------
497
2012-12-30 19:32:50 +0000 martin
498
Changed title of a checkbox.
499
git-svn-id: https://devel.aqbanking.de/svn/gwenhywfar/trunk@2174 70169cfe-8b10-0410-8925-dcb4b91034d8
501
------------------------------------------------------------------
502
2012-12-30 19:32:47 +0000 martin
504
git-svn-id: https://devel.aqbanking.de/svn/gwenhywfar/trunk@2173 70169cfe-8b10-0410-8925-dcb4b91034d8
506
------------------------------------------------------------------
507
2012-12-30 19:21:34 +0000 martin
508
Make FOX16_Gui use common CppGui instead of a copy.
509
Added a test for permanent password storage in FOX16_Gui.
511
git-svn-id: https://devel.aqbanking.de/svn/gwenhywfar/trunk@2172 70169cfe-8b10-0410-8925-dcb4b91034d8
513
------------------------------------------------------------------
514
2012-12-30 19:21:26 +0000 martin
515
Removed password storage code from console gui code.
516
This is now completely implemented in the base GWEN_GUI class.
518
Added flag "GWEN_CGUI_FLAGS_PERMPASSWORDS", this is used to force storing
519
passwords in the permanent password store, if there is one. The reason for
520
this flag is that in console code we can't ask the user conveniently
521
whether the just entered password is allowed to be stored in the password
522
storage (we would have to ask the user after asking for the password
524
In GUI code the dialog might just have an additional checkbox
525
("Store permanently"), but we don't have that on the console.
527
Added function "GWEN_PasswordStore_ClearStoragePasswd". This is used
528
indirectly by AqBanking after every bank contact session.
530
git-svn-id: https://devel.aqbanking.de/svn/gwenhywfar/trunk@2171 70169cfe-8b10-0410-8925-dcb4b91034d8
532
------------------------------------------------------------------
533
2012-12-30 19:21:21 +0000 martin
534
Added first test for GUI with permanent passwd storage.
535
git-svn-id: https://devel.aqbanking.de/svn/gwenhywfar/trunk@2170 70169cfe-8b10-0410-8925-dcb4b91034d8
537
------------------------------------------------------------------
538
2012-12-30 19:21:18 +0000 martin
540
git-svn-id: https://devel.aqbanking.de/svn/gwenhywfar/trunk@2169 70169cfe-8b10-0410-8925-dcb4b91034d8
542
------------------------------------------------------------------
543
2012-12-30 19:21:13 +0000 martin
544
Fixed GWEN_PasswordStore code, added tests.
545
git-svn-id: https://devel.aqbanking.de/svn/gwenhywfar/trunk@2168 70169cfe-8b10-0410-8925-dcb4b91034d8
547
------------------------------------------------------------------
548
2012-12-24 13:38:10 +0000 martin
549
Modified warning about keyfile access rights.
550
git-svn-id: https://devel.aqbanking.de/svn/gwenhywfar/trunk@2167 70169cfe-8b10-0410-8925-dcb4b91034d8
552
------------------------------------------------------------------
553
2012-12-16 19:18:16 +0000 martin
555
git-svn-id: https://devel.aqbanking.de/svn/gwenhywfar/trunk@2166 70169cfe-8b10-0410-8925-dcb4b91034d8
557
------------------------------------------------------------------
558
2012-12-16 19:18:11 +0000 martin
559
Started moving password caching/storage code to GWEN_GUI.
560
Later we can remove this from GWEN_CGUI and CppGui and only maintain it
563
Started adding optional permanent password storage to GWEN_GUI.
565
git-svn-id: https://devel.aqbanking.de/svn/gwenhywfar/trunk@2165 70169cfe-8b10-0410-8925-dcb4b91034d8
567
------------------------------------------------------------------
568
2012-12-16 01:02:42 +0000 martin
569
Added GWEN_PASSWD_STORE.
570
git-svn-id: https://devel.aqbanking.de/svn/gwenhywfar/trunk@2164 70169cfe-8b10-0410-8925-dcb4b91034d8
572
------------------------------------------------------------------
573
2012-12-16 01:02:38 +0000 martin
574
Added function to overwrite buffer content.
575
git-svn-id: https://devel.aqbanking.de/svn/gwenhywfar/trunk@2163 70169cfe-8b10-0410-8925-dcb4b91034d8
577
------------------------------------------------------------------
578
2012-12-16 01:02:34 +0000 martin
579
Handle new flag "GWEN_GUI_INPUT_FLAGS_DIRECT".
580
git-svn-id: https://devel.aqbanking.de/svn/gwenhywfar/trunk@2162 70169cfe-8b10-0410-8925-dcb4b91034d8
582
------------------------------------------------------------------
583
2012-12-16 01:02:29 +0000 martin
584
Added a checkbox to allow for optional storage of a passwords in a file.
585
git-svn-id: https://devel.aqbanking.de/svn/gwenhywfar/trunk@2161 70169cfe-8b10-0410-8925-dcb4b91034d8
587
------------------------------------------------------------------
588
2012-12-16 01:02:25 +0000 martin
589
Added flags for handling of optional permanent password storage.
590
git-svn-id: https://devel.aqbanking.de/svn/gwenhywfar/trunk@2160 70169cfe-8b10-0410-8925-dcb4b91034d8
592
------------------------------------------------------------------
593
2012-12-16 01:02:18 +0000 martin
594
Added secure handling of GWEN_DB nodes.
595
git-svn-id: https://devel.aqbanking.de/svn/gwenhywfar/trunk@2159 70169cfe-8b10-0410-8925-dcb4b91034d8
597
------------------------------------------------------------------
598
2012-11-27 18:33:39 +0000 martin
599
Incremented version number.
600
git-svn-id: https://devel.aqbanking.de/svn/gwenhywfar/trunk@2158 70169cfe-8b10-0410-8925-dcb4b91034d8
602
------------------------------------------------------------------
603
2012-11-27 18:33:36 +0000 martin
604
Improved typemaker tool.
605
Now multiple classes can be created from a single file. This way all classes
606
within an XML file can reference each other without creating unresolvable
607
circular dependencies.
609
git-svn-id: https://devel.aqbanking.de/svn/gwenhywfar/trunk@2157 70169cfe-8b10-0410-8925-dcb4b91034d8
611
------------------------------------------------------------------
612
2012-11-27 18:33:32 +0000 martin
613
Added missing includes for WIN32.
614
git-svn-id: https://devel.aqbanking.de/svn/gwenhywfar/trunk@2156 70169cfe-8b10-0410-8925-dcb4b91034d8
616
------------------------------------------------------------------
617
2012-11-27 18:33:29 +0000 martin
618
Added a class for lists of pointers (not yet part of the API, might be removed again).
619
git-svn-id: https://devel.aqbanking.de/svn/gwenhywfar/trunk@2155 70169cfe-8b10-0410-8925-dcb4b91034d8
621
------------------------------------------------------------------
622
2012-11-27 18:33:21 +0000 martin
623
Added an example for virtual functions.
624
git-svn-id: https://devel.aqbanking.de/svn/gwenhywfar/trunk@2154 70169cfe-8b10-0410-8925-dcb4b91034d8