]> source.dussan.org Git - tigervnc.git/log
tigervnc.git
9 years agoApply Xorg CVE-2015-0255 patches to el5 & generic build 140/head
Brian P. Hinz [Sun, 1 Mar 2015 19:03:48 +0000 (14:03 -0500)]
Apply Xorg CVE-2015-0255 patches to el5 & generic build

9 years agoDefault compression level should be interpreted as high
Pierre Ossman [Thu, 12 Feb 2015 13:57:05 +0000 (14:57 +0100)]
Default compression level should be interpreted as high

(cherry picked from commit 4daa7b1172cd4606b60f8245831bc5aa155c4b9e)

9 years agoBe more aggressive in finding solid rectangles
Pierre Ossman [Thu, 12 Feb 2015 12:44:22 +0000 (13:44 +0100)]
Be more aggressive in finding solid rectangles

The previous FIXME was incorrect. The old code did in fact continue
looking over the entire area. This commit restores that old behaviour.

(cherry picked from commit eef5516854cdc466daed1e1a817bb41bc264027d)

Conflicts:
common/rfb/EncodeManager.cxx

9 years agoOptimise fillRect()
Pierre Ossman [Fri, 6 Feb 2015 12:51:35 +0000 (13:51 +0100)]
Optimise fillRect()

It had regressed in performance compared to 1.3. This brings it back
up to the same speed.

(cherry picked from commit a43a3f4e0e1ae9faa389a91ad9a38db4af4c54c8)

9 years agoVersion wasn't properly updated to 1.4.2 v1.4.2
Brian P. Hinz [Fri, 23 Jan 2015 23:37:23 +0000 (18:37 -0500)]
Version wasn't properly updated to 1.4.2

9 years agoTigerVNC 1.4.2
Brian P. Hinz [Fri, 23 Jan 2015 23:13:22 +0000 (18:13 -0500)]
TigerVNC 1.4.2

9 years agoImproved font path specifiecation for el5 & generic binaries.
Brian P. Hinz [Mon, 19 Jan 2015 18:12:12 +0000 (13:12 -0500)]
Improved font path specifiecation for el5 & generic binaries.

Font paths were incompletely specified, resulting in font issues with some applications (nedit, for instance).  Also, added support for font catalogues back in, even though el5 doesn't supoort it, this should make font handling more robust for the genric binaries.

(cherry picked from commit 233eea2d45004adeaf6434ef6b0e0c9942a1f1ea)

9 years agoFixes for various build issues with el5 build
Brian P. Hinz [Fri, 2 Jan 2015 14:17:04 +0000 (09:17 -0500)]
Fixes for various build issues with el5 build

Fixed various static linking problems with latest el5 spec.
Some definitions were being overridden in StaticBuild.cmake,
causing checks for various fltk capabilities to fail.  Also,
fontconfig was not being configured properly for default font
locations, causing the vncviewer to fail to locate fonts when
used as a generic binary.

(cherry picked from commit 81e4483169fbb415c9e6dfc68ce0b1858e2961e9)

9 years agoTigerVNC 1.4.1 v1.4.1
Brian P. Hinz [Fri, 26 Dec 2014 20:16:04 +0000 (15:16 -0500)]
TigerVNC 1.4.1

9 years agoRemove libexpat.so dependency from el5 and generic binaries
Brian P. Hinz [Fri, 26 Dec 2014 18:16:34 +0000 (13:16 -0500)]
Remove libexpat.so dependency from el5 and generic binaries

This is a regression, swrast_dri.so depends on libexpat.so unless we
explicitly link against libexpat.a

(cherry picked from commit 47e3765f2c9ac0c147626df3b3e69cb3bbe8494e)

9 years agoUpdate distro patches after 2b76d02
Brian P. Hinz [Fri, 26 Dec 2014 06:47:47 +0000 (01:47 -0500)]
Update distro patches after 2b76d02

Cleanup distribution patches in 1.4 branch to account for 2b76d02
without fuzz.

(cherry picked from commit 6e00f1149073dd30a31142e9a23bf16f9feb9d3c)

9 years agoRemove support for openSUSE 11.4
Brian P. Hinz [Fri, 26 Dec 2014 05:53:33 +0000 (00:53 -0500)]
Remove support for openSUSE 11.4

Project Evergreen stopped supporting 11.4 in October and it's not feasible to
back-port the patches for the Xorg 2014-12-09 CVEs, so as a result we can no
longer provide pre-built packages for this distribution.  The genric binaries
can be used instead.

(cherry picked from commit f2079c0e421b9b951f4e6c72bcdeded8b804f1df)

9 years agoMajor update of EL5 build
Brian P. Hinz [Fri, 26 Dec 2014 04:51:36 +0000 (23:51 -0500)]
Major update of EL5 build

The patches required for the 2014-12-09 Xorg CVE advisory would not
have been feasible to back-port to the 1.7 version of Xorg that we
were previously using to built against for EL5 and the generic
binaries.  However, building the newer version of Xorg required
some fairly extensive re-tooling.  In a nutshell, here's what was
done:

 * The build is now done against Xorg X117R7, with all CVE patches
   (taken from debian sources) applied.  Note that this requires
   updating various packages beyond the versions readily available
   for EL5.  This included things like automake, autoconf, libtool,
   m4, and flex.  Wherever possible, the EL6 rpm was used unaltered.
   The most chalenging package to upgrade was libxml2, which was
   necessary to supply the python26-libxml2 requirement from mesa.

 * Mesa libGL is now supplied with the package, installed in the
   %{_libdir}/tigervnc directory.  The Xvnc binary is linked using
   an rpath so that we always link against our version of libGL.
   This was done to prevent linker errors with the generic binaries
   in the case where the distro supplied libGL is built with
   different options (in particular, kernel versions < 2.4.20 do
   not support glx-tls, so the generic binaries would likely break
   whenever used on newer distros that build libGL with glx-tls
   turned on by default).  Additionally, this allows swrast_dri.so
   to be bundled without worrying about overwriting the distro
   supplied library.

 * A static libsha1 is built for Xorg to link against.  The EL5
   version of libgcrypt does not satisfy Xorg's requirements,
   and linking against OpenSSL creates nearly a dozen runtime
   dependencies.

9 years agoBand aid to work around inluding C headers in C++ code
Pierre Ossman [Mon, 15 Dec 2014 09:52:43 +0000 (10:52 +0100)]
Band aid to work around inluding C headers in C++ code

9 years agoTigerVNC 1.4.0 v1.4.0
Pierre Ossman [Wed, 10 Dec 2014 10:18:40 +0000 (11:18 +0100)]
TigerVNC 1.4.0

9 years agoFixes for el6 spec file
Brian P. Hinz [Sun, 7 Dec 2014 03:09:13 +0000 (22:09 -0500)]
Fixes for el6 spec file

Some minor adjustments to sync up the el6 spec file with fedora.

(cherry picked from commit 0600473f346920334ed147f3c39a28aff7e4aaea)

9 years agoFix for rpm-based packages when self-signed cert is used to sign java applet
Brian P. Hinz [Sun, 7 Dec 2014 03:00:59 +0000 (22:00 -0500)]
Fix for rpm-based packages when self-signed cert is used to sign java applet

RPM build failed when the self-signed cert was used because the macro did not
expand correctly.

(cherry picked from commit 7dfa06ecc9066989d9f257fdca8e59188e1c72d4)

9 years agoRevert IPv6 listening support
Pierre Ossman [Mon, 8 Dec 2014 12:57:50 +0000 (13:57 +0100)]
Revert IPv6 listening support

There were too many problems found so drop this functionality on
the stable branch. It will be revisited for the next release.

This reverts commit 4561f7e9c63c6ca2859da9b9fa75f64a1a8c2a81.
This reverts commit 6abf3f4c87a0309d5e7d436e4b72d26a08631ebf.
This reverts commit 820c0ceb2ed92080e8d76d50b78ba01bd264baef.
This reverts commit 698371a65002c8785c34481635044fddc217d3f1.
This reverts commit 6ae42df65141ccb49c875bda45b8f5ae9fa60c28.
This reverts commit f1665ac7fbff068ffc2c2f3f110645609b73806c.
This reverts commit 14263e17e425d1bca7e99d4ddfca1ace3bae0ca7.
This reverts commit 07cd2298dcbf7da8db22d630cb84c0216da30ea1.
This reverts commit 8e101704c32c47654d7453f5bde42d8d0c8cc160.

9 years agoUpdate German translations
Mario Blättermann [Tue, 2 Dec 2014 15:36:55 +0000 (16:36 +0100)]
Update German translations

(cherry picked from commit 7cc06403d4ee728995db5e373d157ae7b8338b38)

9 years agoUpdate Dutch translations
Benno Schulenberg [Tue, 2 Dec 2014 15:36:29 +0000 (16:36 +0100)]
Update Dutch translations

(cherry picked from commit 4ae75778444f8e7839d13c973abd5834bd2c7370)

9 years agoAdd Ukrainian translations
Yuri Chornoivan [Tue, 2 Dec 2014 15:35:32 +0000 (16:35 +0100)]
Add Ukrainian translations

(cherry picked from commit 9522bd1fbd9db5542d1c84162cdecd637522a78a)

10 years agoMore RPM spec file cleanup
Brian P. Hinz [Sat, 22 Nov 2014 05:42:08 +0000 (00:42 -0500)]
More RPM spec file cleanup

* Removed obsolete patches from openSUSE packages

(cherry picked from commit 7b1c84dcca8d76bedba5fd73eb6a319f48429ecb)

10 years agoSPEC file cleanup
Brian P. Hinz [Sat, 22 Nov 2014 01:11:14 +0000 (20:11 -0500)]
SPEC file cleanup

* Removed the hard coded snap tag, if needed it should be passed in
  via "rpmbuild --define 'snap ...'".
* Changed the hard coded version to "@VERSION@" to make it clear
  that the copy of the spec file in the repository needs to be
  updated manually.

(cherry picked from commit 70c2351d54135bad5fa671c39f01ea8955490daa)

10 years agoRemove libvnc server module from statically built versions
Brian P. Hinz [Thu, 20 Nov 2014 00:23:44 +0000 (19:23 -0500)]
Remove libvnc server module from statically built versions

* The static libvnc server module can't be loaded anyway so just
  remove it from the el5 and portable binaries.

(cherry picked from commit 5694c3aff98814efe564442c126993863a8b2968)

10 years agoMore Java viewer clipboard handler fixes
Brian P. Hinz [Wed, 19 Nov 2014 23:58:59 +0000 (18:58 -0500)]
More Java viewer clipboard handler fixes

* Override TransferHandler.exportToClipboard method to ensure that
  serverCutText updates get sent to the system clipboard.  This
  wasn't always happening when relying on the super class' paste()
  method alone.
* Removed some unnecessary setText() statements and one check for
  whether sending client cut text is enabled.

(cherry picked from commit 4f95737b72a516f0ca2ffdd1d299b7469ea90962)

10 years agoTigerVNC 1.3.90 (1.4 beta) v1.3.90
Pierre Ossman [Wed, 19 Nov 2014 13:24:15 +0000 (14:24 +0100)]
TigerVNC 1.3.90 (1.4 beta)

10 years agoFix setsockopt() call on Windows
Pierre Ossman [Wed, 19 Nov 2014 13:17:15 +0000 (14:17 +0100)]
Fix setsockopt() call on Windows

They use char* rather than void*, requiring a cast here.

10 years agoAssume inet_pton() is missing on Windows
Pierre Ossman [Wed, 19 Nov 2014 13:16:00 +0000 (14:16 +0100)]
Assume inet_pton() is missing on Windows

It's much more difficult to test for this on Windows since the
headers have version guards. Just play it safe and assume it is
missing. We can remove this check when we raise the base requirements
to Vista (or newer).

10 years agoUpdate translation template file
Pierre Ossman [Wed, 19 Nov 2014 12:48:27 +0000 (13:48 +0100)]
Update translation template file

10 years agoRemove "Error:" prefix from error message
Pierre Ossman [Wed, 19 Nov 2014 12:47:39 +0000 (13:47 +0100)]
Remove "Error:" prefix from error message

We had already fixed the others, but this one was overlooked.

10 years agoMerge branch 'ipv6' of https://github.com/CendioOssman/tigervnc
Pierre Ossman [Wed, 19 Nov 2014 10:21:37 +0000 (11:21 +0100)]
Merge branch 'ipv6' of https://github.com/CendioOssman/tigervnc

10 years agoProtect IPv6 address strings with [] 74/head
Pierre Ossman [Wed, 19 Nov 2014 10:16:04 +0000 (11:16 +0100)]
Protect IPv6 address strings with []

This is the format we support when converting a string to an
address, so it makes sense to use them the other way around.

10 years agoDon't assume that it's IPv4 just because it's not IPv6
Pierre Ossman [Wed, 19 Nov 2014 10:14:49 +0000 (11:14 +0100)]
Don't assume that it's IPv4 just because it's not IPv6

There might be more protocols in the future, and we might also
misdetect things depending on varying IPv6 functions being missing.

10 years agoinet_ntoa() want's the address directly, not a pointer to it
Pierre Ossman [Wed, 19 Nov 2014 10:01:10 +0000 (11:01 +0100)]
inet_ntoa() want's the address directly, not a pointer to it

10 years agoMerge pull request #73 from bphinz/java
bphinz [Wed, 19 Nov 2014 05:28:05 +0000 (00:28 -0500)]
Merge pull request #73 from bphinz/java

Major rework of Java viewer clipboard handling

10 years agoMajor rework of Java viewer clipboard handling 73/head
Brian P. Hinz [Wed, 19 Nov 2014 05:10:46 +0000 (00:10 -0500)]
Major rework of Java viewer clipboard handling

* Clipboard dialog UI significantly improved.
  - Fixes issue where scrollpane size did not track dialog size
  - Removed unnecessary JPanel
  - Adjusted default size of dialog to something more appropriate.
* Clipboard dialog is now a pure clipboard viewer
  - Window title now reflects thati fact.
  - Eliminates problems with concurrency and updating contents.
  - Clipboard dialog now updates contents if a clipbard transfer
    occurs and the dialog is visible.
  - Prevents possible loop condition when text in the scrollpane
    is selected (ie: selection buffer triggers clipboard updates).
* Custom TransferHandler implemented.
  - Limits the size of outbound clipboard transfers.
  - On Windows and Linux this implementation does not appear to
    provoke huge memory spike issue when the transferable is
    accessed.  Unfortunately, the OSX implemenation still
    suffers from this problem, but that is a JRE issue. For the
    time being, this at least minimizes the problem.  Additionaly,
    if an OutOfMemoryError is thrown, it's now caught and an error
    is logged rather than the viewer bailing out.
  - Vastly simpler implementation - the copy/paste methods inherent
    in the JTextArea are utilized for interfacing with the system
    clipboard.  This eliminates the need for checking permissions,
    as well as streamlining the code quite a bit.

10 years agoMerge branch 'ipv6' of https://github.com/twaugh/tigervnc into ipv6
Pierre Ossman [Tue, 18 Nov 2014 13:52:57 +0000 (14:52 +0100)]
Merge branch 'ipv6' of https://github.com/twaugh/tigervnc into ipv6

10 years agoMerge pull request #71 from bphinz/buildfixes
bphinz [Tue, 18 Nov 2014 12:41:48 +0000 (07:41 -0500)]
Merge pull request #71 from bphinz/buildfixes

Update BUILDING.txt to document GnuTLS requirements

10 years agoRemoved references to libgcrypt and libgpg-error in BUILDING.txt 71/head
Brian P. Hinz [Tue, 18 Nov 2014 12:39:35 +0000 (07:39 -0500)]
Removed references to libgcrypt and libgpg-error in BUILDING.txt

10 years agoTcpSocket: IPv6 handling throughout (#68). 69/head
Tim Waugh [Mon, 17 Nov 2014 17:07:07 +0000 (17:07 +0000)]
TcpSocket: IPv6 handling throughout (#68).

10 years agoAdded more #ifdefs for IPv6.
Tim Waugh [Mon, 17 Nov 2014 14:04:07 +0000 (14:04 +0000)]
Added more #ifdefs for IPv6.

10 years agoUpdate BUILDING.txt to document GnuTLS requirements
Brian P. Hinz [Fri, 14 Nov 2014 05:25:12 +0000 (00:25 -0500)]
Update BUILDING.txt to document GnuTLS requirements

See Issue #44 for further details.

10 years agoMerge pull request #70 from bphinz/java
bphinz [Fri, 14 Nov 2014 03:26:33 +0000 (22:26 -0500)]
Merge pull request #70 from bphinz/java

Fixes for java viewer listen mode, TcpSocket methods, and code cleanup

10 years agoFixed issue where java viewer in listen mode did not exit properly. 70/head
Brian P. Hinz [Fri, 14 Nov 2014 02:33:32 +0000 (21:33 -0500)]
Fixed issue where java viewer in listen mode did not exit properly.

The viewer count was being incorrectly incremented, preventing the
listening viewer from exiting when the window was closed.

10 years agoFix getSockPort methods in java TcpSocket
Brian P. Hinz [Fri, 14 Nov 2014 02:30:27 +0000 (21:30 -0500)]
Fix getSockPort methods in java TcpSocket

Although not actually used anywhere, the getSockPort method was
actually returning the the remote socket's port number.

Also simplified some of the other socket methods.

10 years agoMake sure sockets are shutdown in java viewer listen mode
Brian P. Hinz [Fri, 14 Nov 2014 02:21:25 +0000 (21:21 -0500)]
Make sure sockets are shutdown in java viewer listen mode

The finalizer method may not be strictly necessary but for the sake
of consistency shutdown the socket listener the same way we do for
a regular TcpSocket.

10 years agoJava code cleanup
Brian P. Hinz [Fri, 14 Nov 2014 02:12:49 +0000 (21:12 -0500)]
Java code cleanup

Deleted some useless comments in java viewer

10 years agoIPv6 loopback support too.
Tim Waugh [Wed, 12 Nov 2014 12:31:51 +0000 (12:31 +0000)]
IPv6 loopback support too.

10 years agoAdd IPv6 support (#68).
Tim Waugh [Wed, 12 Nov 2014 10:24:02 +0000 (10:24 +0000)]
Add IPv6 support (#68).

10 years agoRevert "Use VncAuth as the default security type, ..." 67/head
Pierre Ossman [Tue, 11 Nov 2014 13:00:38 +0000 (14:00 +0100)]
Revert "Use VncAuth as the default security type, ..."

This reverts commit 39d7dc043afcf6f94b9c16942765fdb9a6a3202e.

We should be secure by default, even if it might cause a performance
hit. Those who wish to make that trade off are more likely to notice
the lack of performance than others noticing the lack of security.

10 years agoMake sure we do an initial resize
Pierre Ossman [Tue, 11 Nov 2014 12:59:01 +0000 (13:59 +0100)]
Make sure we do an initial resize

The local window manager might give us a window of a different size
than the one we request. Make sure that the remote resize setting
gets respected even in this case.

10 years agoAlways log chosen security type
Pierre Ossman [Tue, 11 Nov 2014 12:42:51 +0000 (13:42 +0100)]
Always log chosen security type

It's often useful to see if encryption was used, and how the user
authenticated (if at all).

10 years agoMerge pull request #62 from bphinz/buildfixes
bphinz [Thu, 6 Nov 2014 04:49:06 +0000 (23:49 -0500)]
Merge pull request #62 from bphinz/buildfixes

Build enhancements for RPM-based distros

10 years agoParameterize jar file signing for rpm-based distros 62/head
Brian P. Hinz [Thu, 6 Nov 2014 03:47:04 +0000 (22:47 -0500)]
Parameterize jar file signing for rpm-based distros

* Allow build time selection of self-signed or keystore signing

10 years agoSet default file encoding to prevent java compiler warnings
Brian P. Hinz [Thu, 6 Nov 2014 02:00:31 +0000 (21:00 -0500)]
Set default file encoding to prevent java compiler warnings

* The keymap files have UTF-8 characters embedded in comments.
  javac complains about this unless the default encoding is set.

10 years agoMerge pull request #61 from bphinz/buildfixes
bphinz [Wed, 5 Nov 2014 23:01:18 +0000 (18:01 -0500)]
Merge pull request #61 from bphinz/buildfixes

Buildfixes for el5 & el6

10 years agoRemove non-applicable changes from cmake patch 61/head
Brian P. Hinz [Wed, 5 Nov 2014 13:13:51 +0000 (08:13 -0500)]
Remove non-applicable changes from cmake patch

* This line should not have been changed, it's inside an "ifdef(APPLE"
  block anyway, but removing it all the same.

10 years agomore el5 build fixes
Brian P. Hinz [Wed, 5 Nov 2014 13:01:45 +0000 (08:01 -0500)]
more el5 build fixes

* Link dynamically against libm to avoid relocation errors
  when building mesa on x86_64.

10 years agoMerge pull request #60 from bphinz/java
bphinz [Wed, 5 Nov 2014 05:02:56 +0000 (00:02 -0500)]
Merge pull request #60 from bphinz/java

More enhancements to java SSLEngineManager

10 years agoMore enhancements to java SSLEngineManager 60/head
Brian P. Hinz [Wed, 5 Nov 2014 04:56:23 +0000 (23:56 -0500)]
More enhancements to java SSLEngineManager

* Blocking behavior in the read() method was leading to high CPU
  usage.
* GC wasn't purging temporary byte arrays used to transfer data
  between I/O streams and NIO byte buffers, causing excessive
  memory usage.
* Some optimization of read() behavior to reduce the frequency
  of blocking operations.

10 years agoel6 package enhancement
Brian P. Hinz [Wed, 5 Nov 2014 04:15:45 +0000 (23:15 -0500)]
el6 package enhancement

* Bumped the xserver patch version to keep up with the installed
  version of xorg source.

10 years agomore el5 build fixes
Brian P. Hinz [Wed, 5 Nov 2014 02:22:14 +0000 (21:22 -0500)]
more el5 build fixes

* Need to pass the path to the static X11 libraries to cmake

10 years agomore el5 build enhancements
Brian P. Hinz [Wed, 5 Nov 2014 00:57:18 +0000 (19:57 -0500)]
more el5 build enhancements

* Fixes for unresolved dependency issues when linking against static fltk
* Major overhaul of static build.  Previously, fltk & tigervnc were built
  against the dynamic system libraries (and thus not entirely portable).
  All of the X11 libraries required for Xvnc are now built first and
  everything is linked against them.

10 years agomore el5 static build enhancements
Brian P. Hinz [Wed, 5 Nov 2014 00:45:32 +0000 (19:45 -0500)]
more el5 static build enhancements

Various fixes for linker issues when building fltk statically.

* The native FindX11.cmake module can't be overridden so that
  fltk links against the static libraries that we've just built.
* Need to link fltk against libdl.a or else an unresolved
  dependency error occurs while linking tigervnc.
* Additional fixes to fix dependency resolution issues when
  linking fltk against X11 statically.

10 years agoel5 build enhancements
Brian P. Hinz [Wed, 5 Nov 2014 00:40:50 +0000 (19:40 -0500)]
el5 build enhancements

The el5 build was derived from fc12.  Adding all patches from fc12's
version of fontconfig.

10 years agoMerge pull request #59 from bphinz/buildfixes
bphinz [Tue, 4 Nov 2014 05:12:35 +0000 (00:12 -0500)]
Merge pull request #59 from bphinz/buildfixes

Static build fix - only attempt to link against libtasn1 if it's present

10 years agoStatic build fix - only attempt to link against libtasn1 if it's present 59/head
Brian P. Hinz [Tue, 4 Nov 2014 05:03:24 +0000 (00:03 -0500)]
Static build fix - only attempt to link against libtasn1 if it's present

GnuTLS may be compiled without external libtasn1, so we shouldn't try
to link against it unless it's actually present.

10 years agoBack out previous change
Brian P. Hinz [Tue, 4 Nov 2014 05:00:19 +0000 (00:00 -0500)]
Back out previous change

Needed to merge upstream changes in before creating pull request.

10 years agoMerge remote-tracking branch 'upstream/master' into buildfixes 58/head
Brian P. Hinz [Tue, 4 Nov 2014 04:48:01 +0000 (23:48 -0500)]
Merge remote-tracking branch 'upstream/master' into buildfixes

10 years agoStatic build fix - only attempt to link against libtasn1 if it's present
Brian P. Hinz [Tue, 4 Nov 2014 04:37:48 +0000 (23:37 -0500)]
Static build fix - only attempt to link against libtasn1 if it's present

GnuTLS may be compiled without external libtasn1, so we shouldn't try
to link against it unless it's actually present.

10 years agoMerge branch 'build' of https://github.com/CendioOssman/tigervnc
Pierre Ossman [Mon, 3 Nov 2014 13:39:22 +0000 (14:39 +0100)]
Merge branch 'build' of https://github.com/CendioOssman/tigervnc

10 years agoHandle mingw circular dependencies in base libraries 55/head
Pierre Ossman [Mon, 3 Nov 2014 13:36:23 +0000 (14:36 +0100)]
Handle mingw circular dependencies in base libraries

Our link order should now match the built-in library list.

10 years agoHandle static linking flags in .la files
Pierre Ossman [Mon, 3 Nov 2014 13:20:46 +0000 (14:20 +0100)]
Handle static linking flags in .la files

10 years agoHandle arguments that have the -l prefix
Pierre Ossman [Mon, 3 Nov 2014 13:20:01 +0000 (14:20 +0100)]
Handle arguments that have the -l prefix

10 years agoSplit up any entries that contain multiple link arguments
Pierre Ossman [Mon, 3 Nov 2014 13:18:44 +0000 (14:18 +0100)]
Split up any entries that contain multiple link arguments

This happens sometimes in order to enforce a strict ordering.

10 years agoThe output variable from find_library() needs to be cleared
Pierre Ossman [Mon, 3 Nov 2014 13:17:10 +0000 (14:17 +0100)]
The output variable from find_library() needs to be cleared

Otherwise you'll just get the initial response back every time
you call it.

10 years agoRemove obsolete reference to staticlib
Pierre Ossman [Mon, 3 Nov 2014 13:15:52 +0000 (14:15 +0100)]
Remove obsolete reference to staticlib

We don't use that directory anymore.

10 years agoMerge pull request #53 from bphinz/buildfixes
bphinz [Mon, 3 Nov 2014 05:04:07 +0000 (00:04 -0500)]
Merge pull request #53 from bphinz/buildfixes

Major overhaul of SSLEngineManager

10 years agoMajor overhaul of SSLEngineManager 53/head
Brian P. Hinz [Mon, 3 Nov 2014 04:37:54 +0000 (23:37 -0500)]
Major overhaul of SSLEngineManager

The SSLEngineManager was basically an abomination. The work is now
done as it should be, with the buffers being fed and the engine
deciding when data is consumed or produced. The engine should be
much more robust now as well.

Additionally, although JRE 7 supports the TLSv1.1 and TLSv1.2
protocols, they are not actually enabled by default. The JSSE
reference cites compatibility reasons for this but this doesn't
appear to be the case with the TigerVNC server and they will be
enabled by default in JRE 8.

The regular expression for enabling anonymous DH cipher suites
was too narrow and excluded the elliptic curve ciphers, which
are now ordered ahead of the ephemeral ciphers by the default
security provider.

Lastly, increase the size of the buffer in FdOutStream from 8Kb
to 16Kb.  I'm not sure why FdInStream and FdOutStream were
asymmetric to begin with, but 16Kb is the default size for TLS
packets and there seems to be now negative effects on plain
text connections.

10 years agoMerge branch 'build' of https://github.com/CendioOssman/tigervnc
Pierre Ossman [Tue, 28 Oct 2014 16:05:01 +0000 (17:05 +0100)]
Merge branch 'build' of https://github.com/CendioOssman/tigervnc

10 years agoUse dynamic builds by default 52/head
Pierre Ossman [Tue, 28 Oct 2014 16:01:08 +0000 (17:01 +0100)]
Use dynamic builds by default

Static builds are the special case, so it should be left off
by default.

10 years agoRemove unused variable
Pierre Ossman [Tue, 28 Oct 2014 16:00:44 +0000 (17:00 +0100)]
Remove unused variable

10 years agoRemove verbose TLS logging
Pierre Ossman [Tue, 28 Oct 2014 15:59:58 +0000 (16:59 +0100)]
Remove verbose TLS logging

We don't even log this much for RFB protocol stuff, and it makes
it very annoying to run with full debugging on.

10 years agoInclude gettext and zlib in static GnuTLS link
Pierre Ossman [Tue, 28 Oct 2014 15:59:02 +0000 (16:59 +0100)]
Include gettext and zlib in static GnuTLS link

This is needed to make sure they are always included, and in the
proper order.

10 years agoOnly link with crypt32 on Windows
Pierre Ossman [Tue, 28 Oct 2014 15:58:14 +0000 (16:58 +0100)]
Only link with crypt32 on Windows

crypt32 is a Windows thing, and it is used no matter the crypto
backend.

10 years agoPut quotes around entire static link variables
Pierre Ossman [Tue, 28 Oct 2014 15:57:05 +0000 (16:57 +0100)]
Put quotes around entire static link variables

CMake is very aggressive about minimising the list of libraries,
so we need to be similarily aggressive about quotes to make sure
we get everything we want and in the correct order.

10 years agoMerge pull request #50 from bphinz/buildfixes
bphinz [Thu, 23 Oct 2014 03:34:23 +0000 (23:34 -0400)]
Merge pull request #50 from bphinz/buildfixes

Fixes for package builds after commit f95272d.

10 years agoAdd in missing dependency for windows builds. 50/head
Brian P. Hinz [Thu, 23 Oct 2014 02:57:06 +0000 (22:57 -0400)]
Add in missing dependency for windows builds.

Commit f95272d created some undefined references in GnuTLS.

10 years agoSet -DBUILD_STATIC=off for package builds.
Brian P. Hinz [Thu, 23 Oct 2014 02:36:25 +0000 (22:36 -0400)]
Set -DBUILD_STATIC=off for package builds.

Commit f95272d set the BUILD_STATIC flag on by default, which is unnecessary for package builds.

10 years agoMerge branch 'build' of https://github.com/CendioOssman/tigervnc
Pierre Ossman [Tue, 21 Oct 2014 14:29:05 +0000 (16:29 +0200)]
Merge branch 'build' of https://github.com/CendioOssman/tigervnc

10 years agoMerge branch 'remote-shm' of https://github.com/twaugh/tigervnc
Pierre Ossman [Fri, 17 Oct 2014 14:27:22 +0000 (16:27 +0200)]
Merge branch 'remote-shm' of https://github.com/twaugh/tigervnc

10 years agoExtend "static" build option 49/head
Pierre Ossman [Fri, 17 Oct 2014 11:59:35 +0000 (13:59 +0200)]
Extend "static" build option

Try to link as much as possible statically in an effort to produce
binaries that can be run everywhere.

10 years agoAdd Carbon and Cocoa dependencies to vncviewer
Pierre Ossman [Fri, 17 Oct 2014 11:55:05 +0000 (13:55 +0200)]
Add Carbon and Cocoa dependencies to vncviewer

We use both frameworks directly from vncviewer so we should
make sure they get pulled in.

10 years agoMove ws2_32 dependency to the correct place
Pierre Ossman [Fri, 17 Oct 2014 11:54:32 +0000 (13:54 +0200)]
Move ws2_32 dependency to the correct place

It is rdr and network that needs it, not vncviewer.

10 years agoLink basic X11 libraries last
Pierre Ossman [Fri, 17 Oct 2014 11:50:12 +0000 (13:50 +0200)]
Link basic X11 libraries last

The extension libraries might depend on libXext or libX11, so
make sure they come last on the link line.

10 years agoCheck the return value from XShmAttach. 48/head
Tim Waugh [Fri, 17 Oct 2014 09:28:55 +0000 (10:28 +0100)]
Check the return value from XShmAttach.

10 years agoRemove libjpeg-turbo build instructions
Pierre Ossman [Fri, 17 Oct 2014 08:40:07 +0000 (10:40 +0200)]
Remove libjpeg-turbo build instructions

There is nothing special about this library that warrants special
treatment.

10 years agoClean up GnuTLS linking and instructions
Pierre Ossman [Fri, 17 Oct 2014 08:36:58 +0000 (10:36 +0200)]
Clean up GnuTLS linking and instructions

GnuTLS can have different crypto backends, and it is rarely gcrypt
these days. So we should not be including that unconditionally,
and should not be pointing people at it either. Also remove the
section about Win32 binaries as those are out of date and probably
insecure. Lastly remove the section about static builds as it is
a general issue and in no way complete with just the GnuTLS portions.

10 years agoDon't use MIT-SHM on remote displays.
Tim Waugh [Thu, 16 Oct 2014 13:53:17 +0000 (14:53 +0100)]
Don't use MIT-SHM on remote displays.

When run from within 'ssh -X' or 'ssh -Y', MIT-SHM will appear to be
available even though it won't work: the shared memory will be on the
machine running vncviewer, not on the machine running the X server it
displays to. Depending on what shm segments are available on the
machine running the X server, the failure may not be apparent when
checking that MIT-SHM works.

Avoid this by not using MIT-SHM when XDisplayName() indicates we may
not be running locally.

Original bug report:
  https://bugzilla.redhat.com/show_bug.cgi?id=1072733

10 years agoMerge branch 'assert' of https://github.com/CendioOssman/tigervnc
Pierre Ossman [Fri, 10 Oct 2014 11:42:30 +0000 (13:42 +0200)]
Merge branch 'assert' of https://github.com/CendioOssman/tigervnc