| Commit message (Collapse) | Author | Age | Files | Lines |
|---|
| ... | |
| | | |
| | |
| | |
| | |
| | |
| | | |
The finalizer method may not be strictly necessary but for the sake
of consistency shutdown the socket listener the same way we do for
a regular TcpSocket.
|
| | | |
| | |
| | |
| | | |
Deleted some useless comments in java viewer
|
| | | |
| | |
| | |
| | |
| | |
| | |
| | |
| | | |
This reverts commit 39d7dc043afcf6f94b9c16942765fdb9a6a3202e.
We should be secure by default, even if it might cause a performance
hit. Those who wish to make that trade off are more likely to notice
the lack of performance than others noticing the lack of security.
|
| | | |
| | |
| | |
| | |
| | |
| | | |
The local window manager might give us a window of a different size
than the one we request. Make sure that the remote resize setting
gets respected even in this case.
|
| | | |
| | |
| | |
| | |
| | | |
It's often useful to see if encryption was used, and how the user
authenticated (if at all).
|
| |\ \ \
| | |/
| |/| |
Build enhancements for RPM-based distros
|
| | | |
| | |
| | |
| | | |
* Allow build time selection of self-signed or keystore signing
|
| | | |
| | |
| | |
| | |
| | | |
* The keymap files have UTF-8 characters embedded in comments.
javac complains about this unless the default encoding is set.
|
| |\| |
| | |
| | | |
Buildfixes for el5 & el6
|
| | | |
| | |
| | |
| | |
| | | |
* This line should not have been changed, it's inside an "ifdef(APPLE"
block anyway, but removing it all the same.
|
| | | |
| | |
| | |
| | |
| | | |
* Link dynamically against libm to avoid relocation errors
when building mesa on x86_64.
|
| | | |
| | |
| | |
| | |
| | | |
* Bumped the xserver patch version to keep up with the installed
version of xorg source.
|
| | | |
| | |
| | |
| | | |
* Need to pass the path to the static X11 libraries to cmake
|
| | | |
| | |
| | |
| | |
| | |
| | |
| | |
| | | |
* Fixes for unresolved dependency issues when linking against static fltk
* Major overhaul of static build. Previously, fltk & tigervnc were built
against the dynamic system libraries (and thus not entirely portable).
All of the X11 libraries required for Xvnc are now built first and
everything is linked against them.
|
| | | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | | |
Various fixes for linker issues when building fltk statically.
* The native FindX11.cmake module can't be overridden so that
fltk links against the static libraries that we've just built.
* Need to link fltk against libdl.a or else an unresolved
dependency error occurs while linking tigervnc.
* Additional fixes to fix dependency resolution issues when
linking fltk against X11 statically.
|
| | | |
| | |
| | |
| | |
| | | |
The el5 build was derived from fc12. Adding all patches from fc12's
version of fontconfig.
|
| |\ \ \
| | |/
| |/| |
More enhancements to java SSLEngineManager
|
| | | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | | |
* Blocking behavior in the read() method was leading to high CPU
usage.
* GC wasn't purging temporary byte arrays used to transfer data
between I/O streams and NIO byte buffers, causing excessive
memory usage.
* Some optimization of read() behavior to reduce the frequency
of blocking operations.
|
| |\ \ \
| |/ /
|/| /
| |/ |
Static build fix - only attempt to link against libtasn1 if it's present
|
| | |
| |
| |
| |
| | |
GnuTLS may be compiled without external libtasn1, so we shouldn't try
to link against it unless it's actually present.
|
| | |
| |
| |
| | |
Needed to merge upstream changes in before creating pull request.
|
| | |\
| |/
|/| |
|
| |\ \ |
|
| | | |
| | |
| | |
| | | |
Our link order should now match the built-in library list.
|
| | | | |
|
| | | | |
|
| | | |
| | |
| | |
| | | |
This happens sometimes in order to enforce a strict ordering.
|
| | | |
| | |
| | |
| | |
| | | |
Otherwise you'll just get the initial response back every time
you call it.
|
| |/ /
| |
| |
| | |
We don't use that directory anymore.
|
| |\ \
| | |
| | | |
Major overhaul of SSLEngineManager
|
| |\ \ \ |
|
| | | | |
| | | |
| | | |
| | | |
| | | | |
Static builds are the special case, so it should be left off
by default.
|
| | | | | |
|
| | | | |
| | | |
| | | |
| | | |
| | | | |
We don't even log this much for RFB protocol stuff, and it makes
it very annoying to run with full debugging on.
|
| | | | |
| | | |
| | | |
| | | |
| | | | |
This is needed to make sure they are always included, and in the
proper order.
|
| | | | |
| | | |
| | | |
| | | |
| | | | |
crypt32 is a Windows thing, and it is used no matter the crypto
backend.
|
| |/ / /
| | |
| | |
| | |
| | |
| | | |
CMake is very aggressive about minimising the list of libraries,
so we need to be similarily aggressive about quotes to make sure
we get everything we want and in the correct order.
|
| |\ \ \
| | | |
| | | | |
Fixes for package builds after commit f95272d.
|
| | | |/
| | |
| | |
| | |
| | | |
GnuTLS may be compiled without external libtasn1, so we shouldn't try
to link against it unless it's actually present.
|
| | |/
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| | |
The SSLEngineManager was basically an abomination. The work is now
done as it should be, with the buffers being fed and the engine
deciding when data is consumed or produced. The engine should be
much more robust now as well.
Additionally, although JRE 7 supports the TLSv1.1 and TLSv1.2
protocols, they are not actually enabled by default. The JSSE
reference cites compatibility reasons for this but this doesn't
appear to be the case with the TigerVNC server and they will be
enabled by default in JRE 8.
The regular expression for enabling anonymous DH cipher suites
was too narrow and excluded the elliptic curve ciphers, which
are now ordered ahead of the ephemeral ciphers by the default
security provider.
Lastly, increase the size of the buffer in FdOutStream from 8Kb
to 16Kb. I'm not sure why FdInStream and FdOutStream were
asymmetric to begin with, but 16Kb is the default size for TLS
packets and there seems to be now negative effects on plain
text connections.
|
| | |
| |
| |
| | |
Commit f95272d created some undefined references in GnuTLS.
|
| |/
|
|
| |
Commit f95272d set the BUILD_STATIC flag on by default, which is unnecessary for package builds.
|
| |\ |
|
| | |
| |
| |
| |
| | |
Try to link as much as possible statically in an effort to produce
binaries that can be run everywhere.
|
| | |
| |
| |
| |
| | |
We use both frameworks directly from vncviewer so we should
make sure they get pulled in.
|
| | |
| |
| |
| | |
It is rdr and network that needs it, not vncviewer.
|
| | |
| |
| |
| |
| | |
The extension libraries might depend on libXext or libX11, so
make sure they come last on the link line.
|
| | |
| |
| |
| |
| | |
There is nothing special about this library that warrants special
treatment.
|
| | |
| |
| |
| |
| |
| |
| |
| |
| | |
GnuTLS can have different crypto backends, and it is rarely gcrypt
these days. So we should not be including that unconditionally,
and should not be pointing people at it either. Also remove the
section about Win32 binaries as those are out of date and probably
insecure. Lastly remove the section about static builds as it is
a general issue and in no way complete with just the GnuTLS portions.
|
| |\ \
| |/
|/| |
|
