Tue Mar 7 21:00:47 2017 UTC ()

Apply patch (requested by mrg in ticket #1442):
Use arc4random when available to produce the auth cookie.
(80f62c54fbd50a3bbdf9c37258525098c9117830 upstream)


(snj)

diff -r1.1.1.3 -r1.1.1.3.2.1 xsrc/external/mit/libICE/dist/src/iceauth.c
diff -r1.1.1.5 -r1.1.1.5.28.1 xsrc/xfree/xc/lib/ICE/iceauth.c

--- xsrc/external/mit/libICE/dist/src/iceauth.c 2010/11/21 05:47:12	1.1.1.3
+++ xsrc/external/mit/libICE/dist/src/iceauth.c 2017/03/07 21:00:47	1.1.1.3.2.1

 @@ -26,73 +26,82 @@ in this Software without prior written a
 Author: Ralph Mor, X Consortium
 ******************************************************************************/
 #ifdef HAVE_CONFIG_H
 #include <config.h>
 #endif
 #include <X11/ICE/ICElib.h>
 #include "ICElibint.h"
 #include <X11/ICE/ICEutil.h>
 #include <time.h>
 #define Time_t time_t
 #ifdef HAVE_LIBBSD
 #include <bsd/stdlib.h>	/* for arc4random_buf() */
 #endif
 static int was_called_state;
 /*
  * MIT-MAGIC-COOKIE-1 is a sample authentication method implemented by
  * the SI.  It is not part of standard ICElib.
  */
 char *
 IceGenerateMagicCookie (
 	int len
+)
+{
     char    *auth;
 #ifndef HAVE_ARC4RANDOM_BUF
     long    ldata[2];
     int	    seed;
     int	    value;
     int	    i;
 #endif
     if ((auth = (char *) malloc (len + 1)) == NULL)
 	return (NULL);
 #ifdef HAVE_ARC4RANDOM_BUF
     arc4random_buf(auth, len);
 #else
 #ifdef ITIMER_REAL
+    {
 	struct timeval  now;
 	X_GETTIMEOFDAY (&now);
 	ldata[0] = now.tv_sec;
 	ldata[1] = now.tv_usec;
+    }
 #else
+    {
 #ifndef __UNIXOS2__
 	long    time ();
 #endif
 	ldata[0] = time ((long *) 0);
 	ldata[1] = getpid ();
+    }
 #endif
     seed = (ldata[0]) + (ldata[1] << 16);
     srand (seed);
     for (i = 0; i < len; i++)
+    {
 	value = rand ();
 	auth[i] = value & 0xff;
+    }
 #endif
     auth[len] = '\0';
     return (auth);
+}
 IcePoAuthStatus
 _IcePoMagicCookie1Proc (
 	IceConn		iceConn,
 	IcePointer	*authStatePtr,
 	Bool 		cleanUp,
 	Bool		swap,
 	int     	authDataLen,
 	IcePointer	authData,

--- xsrc/xfree/xc/lib/ICE/Attic/iceauth.c 2003/02/28 13:18:45	1.1.1.5
+++ xsrc/xfree/xc/lib/ICE/Attic/iceauth.c 2017/03/07 21:00:47	1.1.1.5.28.1

 @@ -27,74 +27,83 @@ in this Software without prior written a
 Author: Ralph Mor, X Consortium
 ******************************************************************************/
 /* $XFree86: xc/lib/ICE/iceauth.c,v 3.6 2002/05/31 18:45:41 dawes Exp $ */
 #include <X11/ICE/ICElib.h>
 #include "ICElibint.h"
 #include <X11/ICE/ICEutil.h>
 #include <time.h>
 #define Time_t time_t
 static int binaryEqual ();
 #ifdef HAVE_LIBBSD
 #include <bsd/stdlib.h>	/* for arc4random_buf() */
 #endif
 static int was_called_state;
 /*
  * MIT-MAGIC-COOKIE-1 is a sample authentication method implemented by
  * the SI.  It is not part of standard ICElib.
  */
 char *
 IceGenerateMagicCookie (len)
 int len;
+{
     char    *auth;
 #ifndef HAVE_ARC4RANDOM_BUF
     long    ldata[2];
     int	    seed;
     int	    value;
     int	    i;
 #endif
     if ((auth = (char *) malloc (len + 1)) == NULL)
 	return (NULL);
 #ifdef HAVE_ARC4RANDOM_BUF
     arc4random_buf(auth, len);
 #else
 #ifdef ITIMER_REAL
+    {
 	struct timeval  now;
 	X_GETTIMEOFDAY (&now);
 	ldata[0] = now.tv_sec;
 	ldata[1] = now.tv_usec;
+    }
 #else
+    {
 #ifndef __UNIXOS2__
 	long    time ();
 #endif
 	ldata[0] = time ((long *) 0);
 	ldata[1] = getpid ();
+    }
 #endif
     seed = (ldata[0]) + (ldata[1] << 16);
     srand (seed);
     for (i = 0; i < len; i++)
+    {
 	value = rand ();
 	auth[i] = value & 0xff;
+    }
 #endif
     auth[len] = '\0';
     return (auth);
+}
 IcePoAuthStatus
 _IcePoMagicCookie1Proc (iceConn, authStatePtr, cleanUp, swap,
     authDataLen, authData, replyDataLenRet, replyDataRet, errorStringRet)
 IceConn		iceConn;
 IcePointer	*authStatePtr;
 Bool 		cleanUp;
 Bool		swap;