This release provides a fix for CVE-2017-2625 for platforms which don't have
arc4random_buf() in their default libraries but do have getentropy(), such
as Linux platforms with a kernel version of 3.17 or newer and a glibc version
of 2.25 or newer. (libXdmcp 1.1.2 already ensured that arc4random_buf()
is used on platforms that have it to provide sufficient entropy in XDMCP
key generation, but left other platforms with the weaker methods. Linux
platforms could also have linked against libbsd to use arc4random_buf()
with libXdmcp 1.1.2 for stronger keys.)
Alan Coopersmith (2):
Update README for gitlab migration
libXdmcp 1.1.3
Benjamin Tissoires (2):
Use getentropy() if arc4random_buf() is not available
Fix compilation error when arc4random_buf is not available
Emil Velikov (1):
autogen.sh: use quoted string variables
Helmut Grohne (1):
do not use &fullrelvers; in xdmcp.xml (Debian bug 761628)
Jon TURNEY (1):
Link with winsock library for socket functions on MinGW
Mihail Konev (1):
autogen: add default patch prefix
Peter Hutterer (1):
autogen.sh: use exec instead of waiting for configure to finish
The actual fix as been done by "pkglint -F */*/buildlink3.mk", and was
reviewed manually.
There are some .include lines that still are indented with zero spaces
although the surrounding .if is indented. This is existing practice.
Problems found locating distfiles:
Package modular-xorg-server: missing distfile xorg-server-1.17.4.tar.bz2
Package py-qt4: missing distfile PyQt-mac-gpl-4.11.1.tar.gz
Package xservers: missing distfile xservers-3.3.6.5.tar.bz2
Package xview-clients: missing distfile xview3.2p1-X11R6.tar.gz
Package xview-lib: missing distfile xview3.2p1-X11R6.tar.gz
Otherwise, existing SHA1 digests verified and found to be the same on
the machine holding the existing distfiles (morden). All existing
SHA1 digests retained for now as an audit trail.
This release has hardened handling of invalid arguments & allocation
failures, adds support for using arc4random in key generation, and adds
some unit tests to help developers prevent regressions in the future.
Alan Coopersmith (11):
Remove unused TLI ("STREAMSCONN") code from libXdmcp
Ensure ARRAY* structs are zero'ed out when allocation fails
Make XdmcpCopyARRAY8 call XdmcpAllocARRAY8 instead of replicating it
Add unit tests for Array allocation functions
Ensure ARRAY* structs are zero'ed out when oversize values are passed
Ensure ARRAYofARRAY8 pointers are initialized to NULL
Also reject requests to allocate negative sized amounts of memory
configure: Drop AM_MAINTAINER_MODE
autogen.sh: Honor NOCONFIGURE=1
Add AC_USE_SYSTEM_EXTENSIONS to expose arc4random() interfaces in headers
libXdmcp 1.1.2
Matthieu Herrb (1):
Use arc4random when available to produce the XDM-AUTHENTICATION1 key
1.1.1:
This release builds on the DocBook/XML conversion of the XDMCP spec
included in the 1.1.0 release with cleanups & improvements to make
the documentation more useful and usable.
1.1.0:
This release features a major refactoring and cleanup of the code base,
and conversion of the XDMCP specification from troff to DocBook/XML,
along with the usual recent set of build configuration improvements and
janitorial cleanups.
Add README with pointers to mailing list, bugzilla & git repos
Mark Xalloc, Xrealloc, and Xfree as weak symbols.
Ansification and compile warning fixes.
Require macros 1.3 for XORG_DEFAULT_OPTIONS.
libXdmcp 1.0.3
This changes the buildlink3.mk files to use an include guard for the
recursive include. The use of BUILDLINK_DEPTH, BUILDLINK_DEPENDS,
BUILDLINK_PACKAGES and BUILDLINK_ORDER is handled by a single new
variable BUILDLINK_TREE. Each buildlink3.mk file adds a pair of
enter/exit marker, which can be used to reconstruct the tree and
to determine first level includes. Avoiding := for large variables
(BUILDLINK_ORDER) speeds up parse time as += has linear complexity.
The include guard reduces system time by avoiding reading files over and
over again. For complex packages this reduces both %user and %sys time to
half of the former time.
X.Org found in NetBSD-current.
Thanks a lot to all who helped, especially Matthias Scheler who did
repeated tests on Mac OS X and older versions of NetBSD to make sure the
support for those platforms wouldn't be broken (or at least, not fatally,
as I would still expect a few hiccups here and there, because there is
only so much one can test in such limited time).
On the infrastructure side, this branch brings pkgconfig-builtin.mk, in
order to write very easily new builtin.mk files. It can actually handle
more than just pkgconfig files, but it will provide a version if it finds
such a file. x11.builtin.mk has also been made more useful and now all
existing (and future!) native-X11-related builtin.mk files should include
it.
