summaryrefslogtreecommitdiff
path: root/xserver
AgeCommit message (Collapse)Author
2019-04-28Backport cf7517675d988c2d1ff967d6d162a17acbdad46 from xserver 1.20Jonathan Gray
xfree86: Hold input_lock across SPRITE functions in VGA arbiter Fixes stack overflow crash with VGA arbiter used with multi GPU systems. Report and fix identified by 'Joe M' on misc@. ok matthieu@
2019-04-06When checking keyboard variants, perform a stricter comparison.Anthony J. Bentley
This prevents kbd(8) layouts with particular bitmasks from being wrongly detected as French. Broken behavior reported by Diogo Galvao; thanks! ok mpi@ matthieu@
2019-03-19Update to xserver 1.19.7. Tested by jca@ and stsp@.Matthieu Herrb
2019-02-18sync xserver dri2 pci_ids with the latest MesaJonathan Gray
the modesetting driver uses these to pick a dri driver name ok phessler@ kettenis@ matthieu@
2019-01-03Call xf86OpenConsole() before probing for drivers.Matthieu Herrb
On OpenBSD, we need the console fd to query wsdisplay type, This was only causing problems with -keepPriv, since the privilege separation code already calls xf86OpenConsole() earlier. The function is idempotent, so there's no harm calling it several times. ok kettenis@
2018-11-03Explicitely disable xdm-authorization-1 support in X server.Matthieu Herrb
It was previously disabled by a broken test for XdmcpWrap() in xdm and later in xenodm but it won't be missed. (use of DES, no IPv6 support). ok tb@ mortimer@
2018-10-25Disable setuid on the X server. We have always known it is a trash fireTheo de Raadt
and we held out hope too long. This will break some stuff. Let's start with non-setuid as the baseline, and see if it is worth trying to fix the broken parts in some other way.
2018-10-25MFC: Disable -logfile and -modulepath when running with elevatedMatthieu Herrb
privileges. This Could cause arbitrary files overwrite. CVE-2018-14665.
2018-10-25xserver's priv proc is responsible for opening devices in O_RDWR mode and sendRicardo Mestre
their fds over to the parent proc. Knowing this then we already have a list of all possible devices that might be opened in the future, in struct okdev allowed_devices[], and we just need to traverse them and unveil(2) each one with read/write permissions. positive feedback from semarie@, OK matthieu@
2018-08-20Initialize PCI subsystem on arm64.Mark Kettenis
ok matthieu@
2018-08-06Use priv_open_device() to open the dri device in glamor_dri3_open_client().Matthieu Herrb
Fixes DRI3 with Xserver running as _x11 with xenodm. close-on-exec is now default for priv_open_device(). ok kettenis@
2018-08-06set MSG_CMSG_CLOEXEC when receiving file descriptors.Matthieu Herrb
All file descriptors opened via priv_open_device() can benefit of the close-on-exec flag. ok kettenis@.
2018-07-30setup WSMOUSE_TYPE_TOUCHPAD devices to use ws driver by default, butJoshua Stein
allow them to work with xf86-input-synaptics with and ok bru@
2018-04-19modesetting: setup colormapJoshua Stein
Fixes utilities like xcalib Upstream xorg commit ac138f9b31b0fba00742edbc3326afe66e28099a ok matthieu
2018-03-15After updated to xserver 1.19.5, the con figure's default value ofKenji Aoyama
--enable-glamor has changed from 'no' to 'auto'. This makes an error running configure on luna88k, so disable it explicitly with ${XENOCARA_BUILD_GL}=no machines. ok jsg@
2018-02-18Update to xserver 1.19.6. bug fix releaseMatthieu Herrb
2018-01-20Remove code to pull softfloat libs.Matthieu Herrb
It was needed at some point in the past, but doesn't compile and isn't needed with clang. Reported by jsg@.
2018-01-15watch for events sent by drm(4) over kevent using EVFILT_DEVICERobert Nagy
and NOTE_CHANGE to notify the desktop environment to deal with the change (e.g. after plugging in an HDMI cable) with this change there is no need to manually do any randr commands if your desktop environment supports it (gnome, mate, kde, etc.) ok matthieu@, kettenis@
2017-12-08Update to xserver 1.19.5.Matthieu Herrb
Tested by bru@, jsg@ and others
2017-12-05Use ws as default driver for touchpads.Ulf Brosziewski
ok matthieu@
2017-10-14MFC: Unvalidated extra length in ProcEstablishConnection (CVE-2017-12176)Matthieu Herrb
2017-10-14MFC: dbe: Unvalidated variable-length request inMatthieu Herrb
ProcDbeGetVisualInfo (CVE-2017-12177) v2: Protect against integer overflow (Alan Coopersmith)
2017-10-14MFC: Xi: fix wrong extra length check in ProcXIChangeHierarchyMatthieu Herrb
(CVE-2017-12178)
2017-10-14MFC: Xi: integer overflow and unvalidated length inMatthieu Herrb
(S)ProcXIBarrierReleasePointer [jcristau: originally this patch fixed the same issue as commit 211e05ac85 "Xi: Test exact size of XIBarrierReleasePointer", with the addition of these checks] This addresses CVE-2017-12179
2017-10-14MFC: Xi: Test exact size of XIBarrierReleasePointerMatthieu Herrb
Otherwise a client can send any value of num_barriers and cause reading or swapping of values on heap behind the receive buffer.
2017-10-14MFC: hw/xfree86: unvalidated lengthsMatthieu Herrb
This addresses: CVE-2017-12180 in XFree86-VidModeExtension CVE-2017-12181 in XFree86-DGA CVE-2017-12182 in XFree86-DRI
2017-10-14MFC: xfixes: unvalidated lengths (CVE-2017-12183)Matthieu Herrb
v2: Use before swap (Jeremy Huddleston Sequoia) v3: Fix wrong XFixesCopyRegion checks (Alan Coopersmith)
2017-10-14MFC: Unvalidated lengthsMatthieu Herrb
v2: Add overflow check and remove unnecessary check (Julien Cristau) This addresses: CVE-2017-12184 in XINERAMA CVE-2017-12185 in MIT-SCREEN-SAVER CVE-2017-12186 in X-Resource CVE-2017-12187 in RENDER
2017-10-14MFC: os: Make sure big requests have sufficient length.Matthieu Herrb
A client can send a big request where the 32B "length" field has value 0. When the big request header is removed and the length corrected, the value will underflow to 0xFFFFFFFF. Functions processing the request later will think that the client sent much more data and may touch memory beyond the receive buffer.
2017-10-14MFC: xkb: Handle xkb formated string output safely (CVE-2017-13723)Matthieu Herrb
Generating strings for XKB data used a single shared static buffer, which offered several opportunities for errors. Use a ring of resizable buffers instead, to avoid problems when strings end up longer than anticipated.
2017-10-14MFC: xkb: Escape non-printable characters correctlyMatthieu Herrb
XkbStringText escapes non-printable characters using octal numbers. Such escape sequence would be at most 5 characters long ("\0123"), so it reserves 5 bytes in the buffer. Due to char->unsigned int conversion, it would print much longer string for negative numbers.
2017-10-14MFC: Xext/shm: Validate shmseg resource id (CVE-2017-13721)Matthieu Herrb
Otherwise it can belong to a non-existing client and abort X server with FatalError "client not in use", or overwrite existing segment of another existing client.
2017-09-25Force Intel Ironlake chipsets to use the xf86-video-intel driver.Matthieu Herrb
stsp@ reported that modesetting(4) has been reported unreliable on his laptop, while intel(4) works. XXXX to be removed after 6.2 to figure out and fix the issue. ok kettenis@, also discussed briefly with deraadt@ during EuroBSDCon.
2017-08-07Disable SSE optimizations on i386/amd64 for SlowBcopy.Matthieu Herrb
It is supposed to be slow, and when such instructions are used to copy data from/to mapped video memory, some hypervisors (e.g. KVM, Microsoft Hyper-V) can generate SIGILL or SIGBUS exceptions, causing Xorg to crash. Bug report to OpenBSD by Max Parmer, fix from FreeBSD (Dimitry Andric) via kettenis@ ok kettenis@
2017-08-07Create on OpenBSD-specific version of listPossibleVideoDrivers() that takesMark Kettenis
care of autoconfiguration based on the information returned by the WSDISPLAYIO_GTYPE ioctl of the console FD. This should fix selection of wsfb on loongson and sgi when using a non-KMS kernel driver. ok matthieu@, jsg@
2017-07-14Use the modesetting driver by default on 4th generation Intel Graphics andMark Kettenis
later. This matches what several Linux distros do these days as it tends to work better than the intel driver in most cases. There are some performance issues with vncviewer on at least Ivy Bridge and Haswell. But for now that regression outweighs the benefits. ok robert@, tedu@, sthen@
2017-07-12Add code to update the value of the RandR "Backlight" property based on theMark Kettenis
KMS connector property of the same name if such a property is present. ok matthieu@
2017-07-07Merge upstream fixes to the X event swapping code.Matthieu Herrb
(CVE-2017-10971 and CVE-2017-10972).
2017-05-21Make X work with radeondrm(4) hardware on loongson.Visa Hankala
OK jsg@
2017-03-07make xserver build on arm64Jonathan Gray
ok matthieu@
2017-03-01Fix arc4random_buf(3) detection. Noticed by Eric Engestrom onMatthieu Herrb
the xorg-devel list. Thanks
2017-02-28Oops, in previous commit I forgot to remove the actual implementationMatthieu Herrb
of the unused *ToID functions(). Spotted by Adam Jackson on xorg-devel list. Thanks.
2017-02-28regenMatthieu Herrb
2017-02-28auth: remove AuthToIDFunc and associated functions. Not used anymore.Matthieu Herrb
And the current code for MitToId has a use-after-free() issue. Advisory X41-2017-001: Multiple Vulnerabilities in X.Org
2017-02-28MFC: Use arc4random_buf(3) if available to generate cookies.Matthieu Herrb
Advisory X41-2017-001: Multiple Vulnerabilities in X.Org.
2017-02-28MFC: Use timingsafe_memcmp() to compare MIT-MAGIC-COOKIESMatthieu Herrb
Advisory X41-2017-001: Multiple Vulnerabilities in X.Org.
2016-10-11regenMatthieu Herrb
2016-10-04ignore chown error (for systems which don't install a Xserver)Theo de Raadt
2016-10-02fix the ownership of the link /usr/X11R6/bin/X -> XorgMatthieu Herrb
2016-09-12Fix a bunch of gcc warnings.Matthieu Herrb
- constify name field - rename devname -> devnam - replace deprecated Xprintf() with asprintf()