Povilas Kanapickas
dc7aa012d5
Merge pull request #1368 from chewi/cstddef-null
...
Add missing cstddef includes for NULL
2021-11-03 22:57:58 +02:00
James Le Cuirot
4b12265ae5
Add missing cstddef includes for NULL
...
Fixes https://github.com/debauchee/barrier/issues/1366 .
2021-11-03 18:12:56 +02:00
Povilas Kanapickas
141ab9ecb4
Merge pull request #1379 from p12tic/github-pr-template
...
github: Add pull request template
2021-11-03 14:47:49 +02:00
Povilas Kanapickas
bfc465d477
github: Add pull request template
2021-11-03 14:15:02 +02:00
Povilas Kanapickas
ac5a1bfd3b
Merge pull request #1254 from yan12125/fix-wrong-encoding-for-text-copied-between-linux-and-windows
...
Fix wrong encoding for text copied between linux and windows
2021-11-03 03:33:28 +02:00
Chih-Hsuan Yen
dd3ea8adfe
lib/platform: Fix encoding for text copied between linux and windows
...
Copied from https://github.com/symless/synergy-core/pull/7029 . I don't
include the application/x-moz-nativehtml part in that patch as I already
added it in https://github.com/debauchee/barrier/pull/1164 .
Fixes https://github.com/debauchee/barrier/issues/1037
Fixes https://github.com/debauchee/barrier/issues/1137
Original author: Serhii Hadzhilov <serhii-external@symless.com>
2021-11-03 03:12:41 +02:00
Povilas Kanapickas
e010f89f41
Merge pull request #1371 from p12tic/doc-release-notes
...
doc: Add missed details to v2.3.4 and v2.4.0 release notes
2021-11-03 03:04:38 +02:00
Povilas Kanapickas
21c8fb88d0
doc: Add missed details to v2.3.4 and v2.4.0 release notes
2021-11-02 14:32:21 +02:00
Povilas Kanapickas
3e0d758b59
Barrier v2.4.0
2021-11-01 22:46:43 +02:00
Povilas Kanapickas
1738afc6e3
Merge pull request #1360 from p12tic/release
...
Prepare for v2.4.0
2021-11-01 22:25:46 +02:00
Povilas Kanapickas
6b729df698
Release notes for v2.4.0
2021-11-01 21:56:47 +02:00
Povilas Kanapickas
56177d461a
Release notes for v2.3.4
2021-11-01 21:39:42 +02:00
Povilas Kanapickas
e7bdcb5249
Setup release notes build using towncrier tool
2021-11-01 21:35:55 +02:00
Povilas Kanapickas
e8453f2b9a
azure-pipelines: Use a different artifact name for each macOS image
2021-11-01 21:35:18 +02:00
Povilas Kanapickas
608594f245
Document the releasing procedure
2021-11-01 21:35:18 +02:00
Povilas Kanapickas
fc6d4e41d8
Merge pull request #1352 from p12tic/cleanup-callbacks
...
Cleanup internal callback APIs
2021-11-01 17:28:53 +02:00
Povilas Kanapickas
d7de571fdc
lib/net: Simplify handling of socket multiplexer jobs
2021-11-01 14:41:53 +02:00
Povilas Kanapickas
d2c106db53
lib: Pass jobs to barrier::Thread as std::function
2021-11-01 14:41:53 +02:00
Povilas Kanapickas
53356697d9
lib/arch: Pass jobs to Arch threads as std::function
2021-11-01 14:41:53 +02:00
Povilas Kanapickas
9cf590ccd7
lib: Make ThreadFunc return nothing
2021-11-01 14:41:53 +02:00
Povilas Kanapickas
815e80ec4d
lib: Remove unused threading functionality related to thread results
2021-11-01 14:41:53 +02:00
Povilas Kanapickas
666460aced
lib/platform: Use std::function instead of IJob in MSWindowsDesks
2021-11-01 14:41:53 +02:00
Povilas Kanapickas
4486830fdb
Merge pull request #1351 from p12tic/fix-ssl-crash-closing-connections
...
Fix ssl-related crashes when closing connections [SECURITY VULNERABILITY CVE-2021-42074]
2021-11-01 14:40:11 +02:00
Povilas Kanapickas
f0efe043bb
lib/net: Fix incorrect sharing of data between different SSL sessions
2021-11-01 14:05:49 +02:00
Povilas Kanapickas
8b937a4abd
lib/net: Fix race conditions when closing SSL connections
...
This fixes the following security vulnerability:
- CVE-2021-42074 SIGSEGV on quick open/close sequence while sending
Hello message
The issue has been reported by Matthias Gerstner <mgerstner@suse.de>.
2021-11-01 14:05:49 +02:00
Povilas Kanapickas
caeebf6c36
Merge pull request #1350 from p12tic/fix-file-handles-leak
...
Fix file descriptor leak on incomplete connections [SECURITY VULNERABILITY CVE-2021-42075]
2021-11-01 14:04:45 +02:00
Povilas Kanapickas
aaa0e4d2e0
Merge pull request #1349 from p12tic/types-cleanup
...
Cleanup declarations of {S,U}Int{8,16,32} types
2021-11-01 14:04:32 +02:00
Povilas Kanapickas
deefecc262
lib/server: Close connection when client app-level handshake fails
...
This fixes the following security vulnerability:
- CVE-2021-42075 DoS via file descriptor exhaustion
The issue has been reported by Matthias Gerstner <mgerstner@suse.de>.
2021-11-01 05:58:21 +02:00
Povilas Kanapickas
20f66fe133
lib/common: Clean up declarations of {S,U}Int{8,16,32} types
2021-11-01 05:56:53 +02:00
Povilas Kanapickas
676fa39f9a
lib/platform: Switch remaining ObjC source files to ObjC++
2021-11-01 05:56:53 +02:00
Povilas Kanapickas
00e182d22e
Merge pull request #1347 from p12tic/enforce-max-message-length
...
Enforce max message length [SECURITY VULNERABILITY CVE-2021-42076]
2021-11-01 05:56:38 +02:00
Povilas Kanapickas
dd31d0a539
Merge pull request #1348 from p12tic/fix-openssl-windows-applink
...
Include openssl applink shim into Windows builds
2021-11-01 05:56:22 +02:00
Povilas Kanapickas
e8ac56b045
lib/net: Include openssl applink shim into Windows builds
2021-11-01 05:48:26 +02:00
Povilas Kanapickas
fd5295eb31
lib/barrier: Disconnect client on too long input packets
...
This commit is the 3/3 part of the fix for the following security
vulnerability:
- CVE-2021-42076 DoS via excess length messages
The issue has been reported by Matthias Gerstner <mgerstner@suse.de>.
2021-11-01 05:18:53 +02:00
Povilas Kanapickas
af90f39b4a
lib/net: Limit the maximum size of TCP or SSL input buffers
...
This commit is the 2/3 part of the fix for the following security
vulnerability:
- CVE-2021-42076 DoS via excess length messages
The issue has been reported by Matthias Gerstner <mgerstner@suse.de>.
2021-11-01 05:18:52 +02:00
Povilas Kanapickas
e33c81b835
lib: Enforce a maximum length of input messages
...
This commit is the 1/3 part of the fix for the following security
vulnerability:
- CVE-2021-42076 DoS via excess length messages
The issue has been reported by Matthias Gerstner <mgerstner@suse.de>.
2021-11-01 05:18:51 +02:00
Povilas Kanapickas
cc369820d4
lib/server: Remove unused code
2021-11-01 05:18:50 +02:00
Povilas Kanapickas
7ab8e0101d
lib/server: Add a note about taking pointer to virtual member function
2021-11-01 05:18:49 +02:00
Povilas Kanapickas
b677a0b419
Merge pull request #1344 from p12tic/windows-build-cleanup
...
Windows build cleanup
2021-11-01 05:16:09 +02:00
Povilas Kanapickas
b5adc93e2b
Merge pull request #1346 from p12tic/client-identity-verification
...
Implement client identity verification [SECURITY VULNERABILITIES CVE-2021-42072, CVE-2021-42073]
2021-11-01 05:15:48 +02:00
Povilas Kanapickas
7cacbd1489
gui: Improve formatting of the fingerprint acceptance dialog
2021-11-01 04:50:17 +02:00
Povilas Kanapickas
165100a0d2
gui: Extract barrier type to separate enum
2021-11-01 04:50:16 +02:00
Povilas Kanapickas
229abab99f
Implement client identity verification
...
This commit fixes two security vulnerabilities: CVE-2021-42072 and
CVE-2021-42073.
The issues have been reported by Matthias Gerstner <mgerstner@suse.de>.
2021-11-01 04:50:15 +02:00
Povilas Kanapickas
e79bdf333c
gui: Fix fingerprint database being not populated due to missing dirs
2021-11-01 04:50:14 +02:00
Povilas Kanapickas
57769cffda
lib/net: Pass connection security level to within socket classes
2021-11-01 04:50:13 +02:00
Povilas Kanapickas
5c7d7194d5
lib/net: Use enum for connection security level instead of boolean
2021-11-01 04:50:12 +02:00
Povilas Kanapickas
82b8fa905e
lib/net: Improve name of showCertificate() to reflect what it does
2021-11-01 04:50:11 +02:00
Povilas Kanapickas
133e447fb6
lib/net: Don't hardcode fingerprint DB path in verify_cert_fingerprint()
2021-11-01 04:50:10 +02:00
Povilas Kanapickas
8bc280e0dd
gui: Add configuration for requiring client certificates
2021-11-01 04:50:09 +02:00
Povilas Kanapickas
ed32e2e326
gui: Expand checkboxes in settings dialog through both grid columns
2021-11-01 04:50:08 +02:00