]> source.dussan.org Git - tigervnc.git/log
tigervnc.git
9 years agoMerge pull request #94 from bphinz/buildfixes
Brian Hinz [Fri, 26 Dec 2014 06:10:55 +0000 (01:10 -0500)]
Merge pull request #94 from bphinz/buildfixes

Remove support for openSUSE 11.4

9 years agoRemoving unwanted commits from pull request 94/head
Brian P. Hinz [Fri, 26 Dec 2014 06:05:00 +0000 (01:05 -0500)]
Removing unwanted commits from pull request

Oops, didn't realize these changes wre on the branch from an
old pull request.

9 years agoRemove support for openSUSE 11.4
Brian P. Hinz [Fri, 26 Dec 2014 05:53:33 +0000 (00:53 -0500)]
Remove support for openSUSE 11.4

Project Evergreen stopped supporting 11.4 in October and it's not feasible to
back-port the patches for the Xorg 2014-12-09 CVEs, so as a result we can no
longer provide pre-built packages for this distribution.  The genric binaries
can be used instead.

9 years agoIPv6: create new socket if IPv6 bind fails (#77).
Tim Waugh [Fri, 21 Nov 2014 16:07:34 +0000 (16:07 +0000)]
IPv6: create new socket if IPv6 bind fails (#77).

9 years agoFix for broken GLX extension in rhel6u6 89/head
Brian P. Hinz [Sun, 7 Dec 2014 04:27:19 +0000 (23:27 -0500)]
Fix for broken GLX extension in rhel6u6

RHEL/CentOS 6.6 bumped the version of xorg to 6u6, which broke
software GLX because Xvnc wasn't properly linked against libglapi.

9 years agoMerge pull request #88 from bphinz/buildfixes
Brian Hinz [Sun, 7 Dec 2014 04:26:03 +0000 (23:26 -0500)]
Merge pull request #88 from bphinz/buildfixes

Fixes for rpm-based distro builds

9 years agoFixes for el6 spec file 88/head
Brian P. Hinz [Sun, 7 Dec 2014 03:09:13 +0000 (22:09 -0500)]
Fixes for el6 spec file

Some minor adjustments to sync up the el6 spec file with fedora.

9 years agoFix for rpm-based packages when self-signed cert is used to sign java applet
Brian P. Hinz [Sun, 7 Dec 2014 03:00:59 +0000 (22:00 -0500)]
Fix for rpm-based packages when self-signed cert is used to sign java applet

RPM build failed when the self-signed cert was used because the macro did not
expand correctly.

9 years agoMerge branch 'translations' of https://github.com/CendioOssman/tigervnc
Pierre Ossman [Wed, 3 Dec 2014 13:23:55 +0000 (14:23 +0100)]
Merge branch 'translations' of https://github.com/CendioOssman/tigervnc

9 years agoReduce symbol scope of parameter helpers 86/head
Pierre Ossman [Wed, 3 Dec 2014 13:04:11 +0000 (14:04 +0100)]
Reduce symbol scope of parameter helpers

There is no need for these to be global symbols as they are only
used in that file.

9 years agoRework the error message in parameters.cxx
Pierre Ossman [Wed, 3 Dec 2014 13:03:29 +0000 (14:03 +0100)]
Rework the error message in parameters.cxx

They were not very end user friendly so redo more or less all of them.

9 years agoSimplify log message as we always use TrueColour
Pierre Ossman [Wed, 3 Dec 2014 13:01:56 +0000 (14:01 +0100)]
Simplify log message as we always use TrueColour

9 years agoImprove some error messages
Pierre Ossman [Wed, 3 Dec 2014 13:01:31 +0000 (14:01 +0100)]
Improve some error messages

9 years agoAdd comments for translators where requested
Pierre Ossman [Wed, 3 Dec 2014 13:00:54 +0000 (14:00 +0100)]
Add comments for translators where requested

9 years agoSort translation strings by file instead
Pierre Ossman [Wed, 3 Dec 2014 12:58:54 +0000 (13:58 +0100)]
Sort translation strings by file instead

This variant keeps more context for the translators by having related
strings clumped together.

9 years agoUpdate German translations
Mario Blättermann [Tue, 2 Dec 2014 15:36:55 +0000 (16:36 +0100)]
Update German translations

9 years agoUpdate Dutch translations
Benno Schulenberg [Tue, 2 Dec 2014 15:36:29 +0000 (16:36 +0100)]
Update Dutch translations

9 years agoAdd Ukrainian translations
Yuri Chornoivan [Tue, 2 Dec 2014 15:35:32 +0000 (16:35 +0100)]
Add Ukrainian translations

9 years agoMerge branch 'readonlypassword' of https://github.com/CendioOssman/tigervnc
Pierre Ossman [Tue, 2 Dec 2014 14:15:44 +0000 (15:15 +0100)]
Merge branch 'readonlypassword' of https://github.com/CendioOssman/tigervnc

9 years agoMake sure attributes propagate through security wrappers 83/head
Pierre Ossman [Tue, 2 Dec 2014 14:13:22 +0000 (15:13 +0100)]
Make sure attributes propagate through security wrappers

Both SSecurityVeNCrypt and SSecurityStack are wrappers around other
security objects, so they need to delegate the properties of those
sub-objects properly.

9 years agoLimit access to non-shared mode
Pierre Ossman [Tue, 2 Dec 2014 13:33:17 +0000 (14:33 +0100)]
Limit access to non-shared mode

A read-only client should not be allowed to kick out other clients.
It will be forced into shared mode, or refused the connection, depending
on the neverShared parameter.

9 years agoUse new API for getVncAuthPasswd()
Pierre Ossman [Tue, 2 Dec 2014 13:17:06 +0000 (14:17 +0100)]
Use new API for getVncAuthPasswd()

9 years agoMerge branch 'readonlypassword' of https://github.com/michalsrb/tigervnc into viewonly
Pierre Ossman [Tue, 2 Dec 2014 11:59:53 +0000 (12:59 +0100)]
Merge branch 'readonlypassword' of https://github.com/michalsrb/tigervnc into viewonly

10 years agoUpdate comment of VncAuthPasswdGetter::getVncAuthPasswd. 65/head
Michal Srb [Mon, 24 Nov 2014 11:53:23 +0000 (13:53 +0200)]
Update comment of VncAuthPasswdGetter::getVncAuthPasswd.

10 years agoAdd AccessSetDesktopSize right.
Michal Srb [Mon, 24 Nov 2014 11:18:28 +0000 (13:18 +0200)]
Add AccessSetDesktopSize right.

So clients with limited access rights can not affect it.

10 years agoMerge pull request #80 from bphinz/buildfixes
Brian Hinz [Sat, 22 Nov 2014 05:43:50 +0000 (00:43 -0500)]
Merge pull request #80 from bphinz/buildfixes

More RPM spec file cleanup

10 years agoMore RPM spec file cleanup 80/head
Brian P. Hinz [Sat, 22 Nov 2014 05:42:08 +0000 (00:42 -0500)]
More RPM spec file cleanup

* Removed obsolete patches from openSUSE packages

10 years agoMerge pull request #79 from bphinz/buildfixes
Brian Hinz [Sat, 22 Nov 2014 02:01:42 +0000 (21:01 -0500)]
Merge pull request #79 from bphinz/buildfixes

SPEC file cleanup

10 years agoSPEC file cleanup 79/head
Brian P. Hinz [Sat, 22 Nov 2014 01:11:14 +0000 (20:11 -0500)]
SPEC file cleanup

* Removed the hard coded snap tag, if needed it should be passed in
  via "rpmbuild --define 'snap ...'".
* Changed the hard coded version to "@VERSION@" to make it clear
  that the copy of the spec file in the repository needs to be
  updated manually.

10 years agoMerge pull request #76 from bphinz/buildfixes
Brian Hinz [Thu, 20 Nov 2014 01:37:28 +0000 (20:37 -0500)]
Merge pull request #76 from bphinz/buildfixes

Remove libvnc server module from statically built versions

10 years agoRemove libvnc server module from statically built versions 76/head
Brian P. Hinz [Thu, 20 Nov 2014 00:23:44 +0000 (19:23 -0500)]
Remove libvnc server module from statically built versions

* The static libvnc server module can't be loaded anyway so just
  remove it from the el5 and portable binaries.

10 years agoMerge pull request #75 from bphinz/java
Brian Hinz [Thu, 20 Nov 2014 00:12:41 +0000 (19:12 -0500)]
Merge pull request #75 from bphinz/java

More Java viewer clipboard handler fixes

10 years agoMore Java viewer clipboard handler fixes 75/head
Brian P. Hinz [Wed, 19 Nov 2014 23:58:59 +0000 (18:58 -0500)]
More Java viewer clipboard handler fixes

* Override TransferHandler.exportToClipboard method to ensure that
  serverCutText updates get sent to the system clipboard.  This
  wasn't always happening when relying on the super class' paste()
  method alone.
* Removed some unnecessary setText() statements and one check for
  whether sending client cut text is enabled.

10 years agoChange development version to 1.4.80
Pierre Ossman [Wed, 19 Nov 2014 13:19:30 +0000 (14:19 +0100)]
Change development version to 1.4.80

The 1.4 branch is now live, so change the version number of the
development builds.

10 years agoFix setsockopt() call on Windows
Pierre Ossman [Wed, 19 Nov 2014 13:17:15 +0000 (14:17 +0100)]
Fix setsockopt() call on Windows

They use char* rather than void*, requiring a cast here.

10 years agoAssume inet_pton() is missing on Windows
Pierre Ossman [Wed, 19 Nov 2014 13:16:00 +0000 (14:16 +0100)]
Assume inet_pton() is missing on Windows

It's much more difficult to test for this on Windows since the
headers have version guards. Just play it safe and assume it is
missing. We can remove this check when we raise the base requirements
to Vista (or newer).

10 years agoUpdate translation template file
Pierre Ossman [Wed, 19 Nov 2014 12:48:27 +0000 (13:48 +0100)]
Update translation template file

10 years agoRemove "Error:" prefix from error message
Pierre Ossman [Wed, 19 Nov 2014 12:47:39 +0000 (13:47 +0100)]
Remove "Error:" prefix from error message

We had already fixed the others, but this one was overlooked.

10 years agoMerge branch 'ipv6' of https://github.com/CendioOssman/tigervnc
Pierre Ossman [Wed, 19 Nov 2014 10:21:37 +0000 (11:21 +0100)]
Merge branch 'ipv6' of https://github.com/CendioOssman/tigervnc

10 years agoProtect IPv6 address strings with [] 74/head
Pierre Ossman [Wed, 19 Nov 2014 10:16:04 +0000 (11:16 +0100)]
Protect IPv6 address strings with []

This is the format we support when converting a string to an
address, so it makes sense to use them the other way around.

10 years agoDon't assume that it's IPv4 just because it's not IPv6
Pierre Ossman [Wed, 19 Nov 2014 10:14:49 +0000 (11:14 +0100)]
Don't assume that it's IPv4 just because it's not IPv6

There might be more protocols in the future, and we might also
misdetect things depending on varying IPv6 functions being missing.

10 years agoinet_ntoa() want's the address directly, not a pointer to it
Pierre Ossman [Wed, 19 Nov 2014 10:01:10 +0000 (11:01 +0100)]
inet_ntoa() want's the address directly, not a pointer to it

10 years agoMerge pull request #73 from bphinz/java
bphinz [Wed, 19 Nov 2014 05:28:05 +0000 (00:28 -0500)]
Merge pull request #73 from bphinz/java

Major rework of Java viewer clipboard handling

10 years agoMajor rework of Java viewer clipboard handling 73/head
Brian P. Hinz [Wed, 19 Nov 2014 05:10:46 +0000 (00:10 -0500)]
Major rework of Java viewer clipboard handling

* Clipboard dialog UI significantly improved.
  - Fixes issue where scrollpane size did not track dialog size
  - Removed unnecessary JPanel
  - Adjusted default size of dialog to something more appropriate.
* Clipboard dialog is now a pure clipboard viewer
  - Window title now reflects thati fact.
  - Eliminates problems with concurrency and updating contents.
  - Clipboard dialog now updates contents if a clipbard transfer
    occurs and the dialog is visible.
  - Prevents possible loop condition when text in the scrollpane
    is selected (ie: selection buffer triggers clipboard updates).
* Custom TransferHandler implemented.
  - Limits the size of outbound clipboard transfers.
  - On Windows and Linux this implementation does not appear to
    provoke huge memory spike issue when the transferable is
    accessed.  Unfortunately, the OSX implemenation still
    suffers from this problem, but that is a JRE issue. For the
    time being, this at least minimizes the problem.  Additionaly,
    if an OutOfMemoryError is thrown, it's now caught and an error
    is logged rather than the viewer bailing out.
  - Vastly simpler implementation - the copy/paste methods inherent
    in the JTextArea are utilized for interfacing with the system
    clipboard.  This eliminates the need for checking permissions,
    as well as streamlining the code quite a bit.

10 years agoMerge branch 'ipv6' of https://github.com/twaugh/tigervnc into ipv6
Pierre Ossman [Tue, 18 Nov 2014 13:52:57 +0000 (14:52 +0100)]
Merge branch 'ipv6' of https://github.com/twaugh/tigervnc into ipv6

10 years agoMerge pull request #71 from bphinz/buildfixes
bphinz [Tue, 18 Nov 2014 12:41:48 +0000 (07:41 -0500)]
Merge pull request #71 from bphinz/buildfixes

Update BUILDING.txt to document GnuTLS requirements

10 years agoRemoved references to libgcrypt and libgpg-error in BUILDING.txt 71/head
Brian P. Hinz [Tue, 18 Nov 2014 12:39:35 +0000 (07:39 -0500)]
Removed references to libgcrypt and libgpg-error in BUILDING.txt

10 years agoTcpSocket: IPv6 handling throughout (#68). 69/head
Tim Waugh [Mon, 17 Nov 2014 17:07:07 +0000 (17:07 +0000)]
TcpSocket: IPv6 handling throughout (#68).

10 years agoAdded more #ifdefs for IPv6.
Tim Waugh [Mon, 17 Nov 2014 14:04:07 +0000 (14:04 +0000)]
Added more #ifdefs for IPv6.

10 years agoUpdate BUILDING.txt to document GnuTLS requirements
Brian P. Hinz [Fri, 14 Nov 2014 05:25:12 +0000 (00:25 -0500)]
Update BUILDING.txt to document GnuTLS requirements

See Issue #44 for further details.

10 years agoMerge pull request #70 from bphinz/java
bphinz [Fri, 14 Nov 2014 03:26:33 +0000 (22:26 -0500)]
Merge pull request #70 from bphinz/java

Fixes for java viewer listen mode, TcpSocket methods, and code cleanup

10 years agoFixed issue where java viewer in listen mode did not exit properly. 70/head
Brian P. Hinz [Fri, 14 Nov 2014 02:33:32 +0000 (21:33 -0500)]
Fixed issue where java viewer in listen mode did not exit properly.

The viewer count was being incorrectly incremented, preventing the
listening viewer from exiting when the window was closed.

10 years agoFix getSockPort methods in java TcpSocket
Brian P. Hinz [Fri, 14 Nov 2014 02:30:27 +0000 (21:30 -0500)]
Fix getSockPort methods in java TcpSocket

Although not actually used anywhere, the getSockPort method was
actually returning the the remote socket's port number.

Also simplified some of the other socket methods.

10 years agoMake sure sockets are shutdown in java viewer listen mode
Brian P. Hinz [Fri, 14 Nov 2014 02:21:25 +0000 (21:21 -0500)]
Make sure sockets are shutdown in java viewer listen mode

The finalizer method may not be strictly necessary but for the sake
of consistency shutdown the socket listener the same way we do for
a regular TcpSocket.

10 years agoJava code cleanup
Brian P. Hinz [Fri, 14 Nov 2014 02:12:49 +0000 (21:12 -0500)]
Java code cleanup

Deleted some useless comments in java viewer

10 years agoIPv6 loopback support too.
Tim Waugh [Wed, 12 Nov 2014 12:31:51 +0000 (12:31 +0000)]
IPv6 loopback support too.

10 years agoAdd IPv6 support (#68).
Tim Waugh [Wed, 12 Nov 2014 10:24:02 +0000 (10:24 +0000)]
Add IPv6 support (#68).

10 years agoRevert "Use VncAuth as the default security type, ..." 67/head
Pierre Ossman [Tue, 11 Nov 2014 13:00:38 +0000 (14:00 +0100)]
Revert "Use VncAuth as the default security type, ..."

This reverts commit 39d7dc043afcf6f94b9c16942765fdb9a6a3202e.

We should be secure by default, even if it might cause a performance
hit. Those who wish to make that trade off are more likely to notice
the lack of performance than others noticing the lack of security.

10 years agoMake sure we do an initial resize
Pierre Ossman [Tue, 11 Nov 2014 12:59:01 +0000 (13:59 +0100)]
Make sure we do an initial resize

The local window manager might give us a window of a different size
than the one we request. Make sure that the remote resize setting
gets respected even in this case.

10 years agoAlways log chosen security type
Pierre Ossman [Tue, 11 Nov 2014 12:42:51 +0000 (13:42 +0100)]
Always log chosen security type

It's often useful to see if encryption was used, and how the user
authenticated (if at all).

10 years agoVncAuth: Read and use readonly password.
Michal Srb [Mon, 10 Nov 2014 13:32:00 +0000 (15:32 +0200)]
VncAuth: Read and use readonly password.

Try to read second password (for read only access) from rfbauth file. If client
sent second password instead of first one, allow him read only access.

10 years agovncpasswd: Ask for read only password.
Michal Srb [Mon, 10 Nov 2014 09:24:04 +0000 (11:24 +0200)]
vncpasswd: Ask for read only password.

Ask for optional second password that is used for read only access. Save it
after the main password. This is same format as tightvnc uses.

10 years agoAllow SSecurity to specify AccessRights for SConnection.
Michal Srb [Mon, 10 Nov 2014 07:15:41 +0000 (09:15 +0200)]
Allow SSecurity to specify AccessRights for SConnection.

SConnection has AccessRights property that specifies what connected client can
do. Set this property to value given by SSecurity after successful
authentication. This way individual SSecurity subclasses can accept clients but
restrict their access.

10 years agoMerge pull request #62 from bphinz/buildfixes
bphinz [Thu, 6 Nov 2014 04:49:06 +0000 (23:49 -0500)]
Merge pull request #62 from bphinz/buildfixes

Build enhancements for RPM-based distros

10 years agoParameterize jar file signing for rpm-based distros 62/head
Brian P. Hinz [Thu, 6 Nov 2014 03:47:04 +0000 (22:47 -0500)]
Parameterize jar file signing for rpm-based distros

* Allow build time selection of self-signed or keystore signing

10 years agoSet default file encoding to prevent java compiler warnings
Brian P. Hinz [Thu, 6 Nov 2014 02:00:31 +0000 (21:00 -0500)]
Set default file encoding to prevent java compiler warnings

* The keymap files have UTF-8 characters embedded in comments.
  javac complains about this unless the default encoding is set.

10 years agoMerge pull request #61 from bphinz/buildfixes
bphinz [Wed, 5 Nov 2014 23:01:18 +0000 (18:01 -0500)]
Merge pull request #61 from bphinz/buildfixes

Buildfixes for el5 & el6

10 years agoRemove non-applicable changes from cmake patch 61/head
Brian P. Hinz [Wed, 5 Nov 2014 13:13:51 +0000 (08:13 -0500)]
Remove non-applicable changes from cmake patch

* This line should not have been changed, it's inside an "ifdef(APPLE"
  block anyway, but removing it all the same.

10 years agomore el5 build fixes
Brian P. Hinz [Wed, 5 Nov 2014 13:01:45 +0000 (08:01 -0500)]
more el5 build fixes

* Link dynamically against libm to avoid relocation errors
  when building mesa on x86_64.

10 years agoMerge pull request #60 from bphinz/java
bphinz [Wed, 5 Nov 2014 05:02:56 +0000 (00:02 -0500)]
Merge pull request #60 from bphinz/java

More enhancements to java SSLEngineManager

10 years agoMore enhancements to java SSLEngineManager 60/head
Brian P. Hinz [Wed, 5 Nov 2014 04:56:23 +0000 (23:56 -0500)]
More enhancements to java SSLEngineManager

* Blocking behavior in the read() method was leading to high CPU
  usage.
* GC wasn't purging temporary byte arrays used to transfer data
  between I/O streams and NIO byte buffers, causing excessive
  memory usage.
* Some optimization of read() behavior to reduce the frequency
  of blocking operations.

10 years agoel6 package enhancement
Brian P. Hinz [Wed, 5 Nov 2014 04:15:45 +0000 (23:15 -0500)]
el6 package enhancement

* Bumped the xserver patch version to keep up with the installed
  version of xorg source.

10 years agomore el5 build fixes
Brian P. Hinz [Wed, 5 Nov 2014 02:22:14 +0000 (21:22 -0500)]
more el5 build fixes

* Need to pass the path to the static X11 libraries to cmake

10 years agomore el5 build enhancements
Brian P. Hinz [Wed, 5 Nov 2014 00:57:18 +0000 (19:57 -0500)]
more el5 build enhancements

* Fixes for unresolved dependency issues when linking against static fltk
* Major overhaul of static build.  Previously, fltk & tigervnc were built
  against the dynamic system libraries (and thus not entirely portable).
  All of the X11 libraries required for Xvnc are now built first and
  everything is linked against them.

10 years agomore el5 static build enhancements
Brian P. Hinz [Wed, 5 Nov 2014 00:45:32 +0000 (19:45 -0500)]
more el5 static build enhancements

Various fixes for linker issues when building fltk statically.

* The native FindX11.cmake module can't be overridden so that
  fltk links against the static libraries that we've just built.
* Need to link fltk against libdl.a or else an unresolved
  dependency error occurs while linking tigervnc.
* Additional fixes to fix dependency resolution issues when
  linking fltk against X11 statically.

10 years agoel5 build enhancements
Brian P. Hinz [Wed, 5 Nov 2014 00:40:50 +0000 (19:40 -0500)]
el5 build enhancements

The el5 build was derived from fc12.  Adding all patches from fc12's
version of fontconfig.

10 years agoMerge pull request #59 from bphinz/buildfixes
bphinz [Tue, 4 Nov 2014 05:12:35 +0000 (00:12 -0500)]
Merge pull request #59 from bphinz/buildfixes

Static build fix - only attempt to link against libtasn1 if it's present

10 years agoStatic build fix - only attempt to link against libtasn1 if it's present 59/head
Brian P. Hinz [Tue, 4 Nov 2014 05:03:24 +0000 (00:03 -0500)]
Static build fix - only attempt to link against libtasn1 if it's present

GnuTLS may be compiled without external libtasn1, so we shouldn't try
to link against it unless it's actually present.

10 years agoBack out previous change
Brian P. Hinz [Tue, 4 Nov 2014 05:00:19 +0000 (00:00 -0500)]
Back out previous change

Needed to merge upstream changes in before creating pull request.

10 years agoMerge remote-tracking branch 'upstream/master' into buildfixes 58/head
Brian P. Hinz [Tue, 4 Nov 2014 04:48:01 +0000 (23:48 -0500)]
Merge remote-tracking branch 'upstream/master' into buildfixes

10 years agoStatic build fix - only attempt to link against libtasn1 if it's present
Brian P. Hinz [Tue, 4 Nov 2014 04:37:48 +0000 (23:37 -0500)]
Static build fix - only attempt to link against libtasn1 if it's present

GnuTLS may be compiled without external libtasn1, so we shouldn't try
to link against it unless it's actually present.

10 years agoMerge branch 'build' of https://github.com/CendioOssman/tigervnc
Pierre Ossman [Mon, 3 Nov 2014 13:39:22 +0000 (14:39 +0100)]
Merge branch 'build' of https://github.com/CendioOssman/tigervnc

10 years agoHandle mingw circular dependencies in base libraries 55/head
Pierre Ossman [Mon, 3 Nov 2014 13:36:23 +0000 (14:36 +0100)]
Handle mingw circular dependencies in base libraries

Our link order should now match the built-in library list.

10 years agoHandle static linking flags in .la files
Pierre Ossman [Mon, 3 Nov 2014 13:20:46 +0000 (14:20 +0100)]
Handle static linking flags in .la files

10 years agoHandle arguments that have the -l prefix
Pierre Ossman [Mon, 3 Nov 2014 13:20:01 +0000 (14:20 +0100)]
Handle arguments that have the -l prefix

10 years agoSplit up any entries that contain multiple link arguments
Pierre Ossman [Mon, 3 Nov 2014 13:18:44 +0000 (14:18 +0100)]
Split up any entries that contain multiple link arguments

This happens sometimes in order to enforce a strict ordering.

10 years agoThe output variable from find_library() needs to be cleared
Pierre Ossman [Mon, 3 Nov 2014 13:17:10 +0000 (14:17 +0100)]
The output variable from find_library() needs to be cleared

Otherwise you'll just get the initial response back every time
you call it.

10 years agoRemove obsolete reference to staticlib
Pierre Ossman [Mon, 3 Nov 2014 13:15:52 +0000 (14:15 +0100)]
Remove obsolete reference to staticlib

We don't use that directory anymore.

10 years agoMerge pull request #53 from bphinz/buildfixes
bphinz [Mon, 3 Nov 2014 05:04:07 +0000 (00:04 -0500)]
Merge pull request #53 from bphinz/buildfixes

Major overhaul of SSLEngineManager

10 years agoMajor overhaul of SSLEngineManager 53/head
Brian P. Hinz [Mon, 3 Nov 2014 04:37:54 +0000 (23:37 -0500)]
Major overhaul of SSLEngineManager

The SSLEngineManager was basically an abomination. The work is now
done as it should be, with the buffers being fed and the engine
deciding when data is consumed or produced. The engine should be
much more robust now as well.

Additionally, although JRE 7 supports the TLSv1.1 and TLSv1.2
protocols, they are not actually enabled by default. The JSSE
reference cites compatibility reasons for this but this doesn't
appear to be the case with the TigerVNC server and they will be
enabled by default in JRE 8.

The regular expression for enabling anonymous DH cipher suites
was too narrow and excluded the elliptic curve ciphers, which
are now ordered ahead of the ephemeral ciphers by the default
security provider.

Lastly, increase the size of the buffer in FdOutStream from 8Kb
to 16Kb.  I'm not sure why FdInStream and FdOutStream were
asymmetric to begin with, but 16Kb is the default size for TLS
packets and there seems to be now negative effects on plain
text connections.

10 years agoMerge branch 'build' of https://github.com/CendioOssman/tigervnc
Pierre Ossman [Tue, 28 Oct 2014 16:05:01 +0000 (17:05 +0100)]
Merge branch 'build' of https://github.com/CendioOssman/tigervnc

10 years agoUse dynamic builds by default 52/head
Pierre Ossman [Tue, 28 Oct 2014 16:01:08 +0000 (17:01 +0100)]
Use dynamic builds by default

Static builds are the special case, so it should be left off
by default.

10 years agoRemove unused variable
Pierre Ossman [Tue, 28 Oct 2014 16:00:44 +0000 (17:00 +0100)]
Remove unused variable

10 years agoRemove verbose TLS logging
Pierre Ossman [Tue, 28 Oct 2014 15:59:58 +0000 (16:59 +0100)]
Remove verbose TLS logging

We don't even log this much for RFB protocol stuff, and it makes
it very annoying to run with full debugging on.

10 years agoInclude gettext and zlib in static GnuTLS link
Pierre Ossman [Tue, 28 Oct 2014 15:59:02 +0000 (16:59 +0100)]
Include gettext and zlib in static GnuTLS link

This is needed to make sure they are always included, and in the
proper order.

10 years agoOnly link with crypt32 on Windows
Pierre Ossman [Tue, 28 Oct 2014 15:58:14 +0000 (16:58 +0100)]
Only link with crypt32 on Windows

crypt32 is a Windows thing, and it is used no matter the crypto
backend.

10 years agoPut quotes around entire static link variables
Pierre Ossman [Tue, 28 Oct 2014 15:57:05 +0000 (16:57 +0100)]
Put quotes around entire static link variables

CMake is very aggressive about minimising the list of libraries,
so we need to be similarily aggressive about quotes to make sure
we get everything we want and in the correct order.

10 years agoMerge pull request #50 from bphinz/buildfixes
bphinz [Thu, 23 Oct 2014 03:34:23 +0000 (23:34 -0400)]
Merge pull request #50 from bphinz/buildfixes

Fixes for package builds after commit f95272d.

10 years agoAdd in missing dependency for windows builds. 50/head
Brian P. Hinz [Thu, 23 Oct 2014 02:57:06 +0000 (22:57 -0400)]
Add in missing dependency for windows builds.

Commit f95272d created some undefined references in GnuTLS.

10 years agoSet -DBUILD_STATIC=off for package builds.
Brian P. Hinz [Thu, 23 Oct 2014 02:36:25 +0000 (22:36 -0400)]
Set -DBUILD_STATIC=off for package builds.

Commit f95272d set the BUILD_STATIC flag on by default, which is unnecessary for package builds.