From d20a9a301b83652d6552f0981574ca3363b061ae Mon Sep 17 00:00:00 2001
From: DRC <information@virtualgl.org>
Date: Mon, 22 Jul 2024 16:16:41 -0400
Subject: [PATCH 1/4] Xvnc: Remove vestigial -compatiblekbd option

That option has been a no-op since
715b2c5ffeb8085684d2cbc6212f76d9d6a87681 (TurboVNC 2.0 beta1.)
---
 unix/Xvnc/programs/Xserver/Xvnc.man.in     | 5 -----
 unix/Xvnc/programs/Xserver/hw/vnc/init.c   | 6 ------
 unix/Xvnc/programs/Xserver/hw/vnc/kbdptr.c | 3 ---
 unix/Xvnc/programs/Xserver/hw/vnc/rfb.h    | 1 -
 4 files changed, 15 deletions(-)

diff --git a/unix/Xvnc/programs/Xserver/Xvnc.man.in b/unix/Xvnc/programs/Xserver/Xvnc.man.in
index 1e9b60931..023cf405e 100644
--- a/unix/Xvnc/programs/Xserver/Xvnc.man.in
+++ b/unix/Xvnc/programs/Xserver/Xvnc.man.in
@@ -204,11 +204,6 @@ connected viewer to complete [default: 20000].
 .TP
 \fBTURBOVNC INPUT OPTIONS\fR
 
-.TP
-\fB\-compatiblekbd\fR
-Set META and ALT keys to the same X modifier flag, as in the original
-version of Xvnc by AT&T labs.
-
 .TP
 \fB\-nocursor\fR
 Don't display a mouse pointer on the remote desktop.
diff --git a/unix/Xvnc/programs/Xserver/hw/vnc/init.c b/unix/Xvnc/programs/Xserver/hw/vnc/init.c
index c317cdd31..dbcd99742 100644
--- a/unix/Xvnc/programs/Xserver/hw/vnc/init.c
+++ b/unix/Xvnc/programs/Xserver/hw/vnc/init.c
@@ -407,11 +407,6 @@ int ddxProcessArgument(int argc, char *argv[], int i)
 
   /***** TurboVNC input options *****/
 
-  if (strcasecmp(argv[i], "-compatiblekbd") == 0) {
-    compatibleKbd = TRUE;
-    return 1;
-  }
-
   if (strcasecmp(argv[i], "-nocursor") == 0) {
     noCursor = TRUE;
     return 1;
@@ -1747,7 +1742,6 @@ void ddxUseMsg(void)
 
   ErrorF("\nTurboVNC input options\n");
   ErrorF("======================\n");
-  ErrorF("-compatiblekbd         set META key = ALT key as in the original VNC\n");
   ErrorF("-nocursor              don't display a cursor\n");
   ErrorF("-pointerlocktimeout time\n");
   ErrorF("                       max time in ms (0 = indefinitely) to wait for a new\n");
diff --git a/unix/Xvnc/programs/Xserver/hw/vnc/kbdptr.c b/unix/Xvnc/programs/Xserver/hw/vnc/kbdptr.c
index 5e465bf86..3cef9a5ee 100644
--- a/unix/Xvnc/programs/Xserver/hw/vnc/kbdptr.c
+++ b/unix/Xvnc/programs/Xserver/hw/vnc/kbdptr.c
@@ -51,9 +51,6 @@
 DeviceIntPtr kbdDevice = NULL;
 static DeviceIntPtr ptrDevice = NULL;
 
-/* If TRUE, then keys META == ALT as in the original AT&T version. */
-Bool compatibleKbd = FALSE;
-
 /* Avoid fake Shift presses for keys affected by NumLock */
 Bool avoidShiftNumLock = TRUE;
 Bool ignoreLockModifiers = TRUE;
diff --git a/unix/Xvnc/programs/Xserver/hw/vnc/rfb.h b/unix/Xvnc/programs/Xserver/hw/vnc/rfb.h
index 1a843d771..a18432af0 100644
--- a/unix/Xvnc/programs/Xserver/hw/vnc/rfb.h
+++ b/unix/Xvnc/programs/Xserver/hw/vnc/rfb.h
@@ -892,7 +892,6 @@ extern void *rfbRealloc(void *ptr, size_t size);
 
 /* kbdptr.c */
 
-extern Bool compatibleKbd;
 extern Bool enableQEMUExtKeyEvent;
 extern unsigned char ptrAcceleration;
 

From 7356bad5c39b6edea376215a5d43ee14403c4207 Mon Sep 17 00:00:00 2001
From: DRC <information@virtualgl.org>
Date: Mon, 22 Jul 2024 15:36:33 -0400
Subject: [PATCH 2/4] Doc: Various server command-line/config doc tweaks

- "command line option" = "command-line option"

- "manual page" = "man page"

- Alphabetize vncserver command-line options and configuration
  variables.

- Various formatting tweaks

- Various clarifications and wordsmithing
---
 unix/Xvnc/programs/Xserver/Xvnc.man.in | 152 ++++++++--------
 unix/turbovncserver.conf.in            |  72 +++++---
 unix/vncpasswd/vncpasswd.man           |  10 +-
 unix/vncserver.in                      |  24 +--
 unix/vncserver.man.in                  | 229 ++++++++++++-------------
 5 files changed, 249 insertions(+), 238 deletions(-)

diff --git a/unix/Xvnc/programs/Xserver/Xvnc.man.in b/unix/Xvnc/programs/Xserver/Xvnc.man.in
index 023cf405e..39cc352b1 100644
--- a/unix/Xvnc/programs/Xserver/Xvnc.man.in
+++ b/unix/Xvnc/programs/Xserver/Xvnc.man.in
@@ -27,25 +27,24 @@ Xvnc \- the TurboVNC X server
 .hy
 .SH DESCRIPTION
 \fBXvnc\fR is a VNC (Virtual Network Computing) server for Unix and Linux
-systems.  It acts like a normal X server, except that it sends its output
-to a virtual rather than a physical display.  Remote machines can connect
-to the VNC server and see/control the output of this virtual display
-[see \fBvncviewer\fR(1).]  Xvnc is built using the X.org source code and shares
-many options with it.
+systems.  It acts like a normal X server, except that it sends its output to a
+virtual rather than a physical display.  Remote machines can connect to the VNC
+server and see/control the output of this virtual display [see
+\fBvncviewer\fR(1).]  Xvnc is built using the X.org source code and shares many
+options with it.
 
-Normally, you don't need to start Xvnc manually-- use the
-\fBvncserver\fR(1) wrapper script instead.  This script sets reasonable
-defaults for the TurboVNC session, checks many error conditions, etc.
+Normally, you don't need to start Xvnc manually.  Use the \fBvncserver\fR(1)
+wrapper script instead.  This script sets reasonable defaults for the TurboVNC
+session, checks many error conditions, etc.
 
 Please read the SECURITY CONCERNS section if you plan to use VNC on an
 untrusted network.
 .SH OPTIONS
-Xvnc supports many standard X server options and a number of
-VNC-specific options.  To see which standard X server options are
-supported, please look at the output of \fBXvnc\fR \fI\-help\fR and read
-the \fBXserver\fR(1) manual page.  Some command-line options have equivalent
-"Xvnc parameters" that can be configured dynamically using the
-\fBtvncconfig\fP(1) program.
+Xvnc supports many standard X server options and a number of VNC-specific
+options.  To see which standard X server options are supported, please look at
+the output of \fBXvnc\fR \fI\-help\fR and read the \fBXserver\fR(1) man page.
+Some command-line options have equivalent "Xvnc parameters" that can be
+configured dynamically using the \fBtvncconfig\fP(1) program.
 
 The VNC-specific options are as follows:
 
@@ -54,8 +53,8 @@ The VNC-specific options are as follows:
 
 .TP
 \fB\-alwaysshared\fR
-Always treat new connections as shared.  Never disconnect existing users
-or deny new connections when a new user tries to connect to a TurboVNC session
+Always treat new connections as shared.  Never disconnect existing users or
+deny new connections when a new user tries to connect to a TurboVNC session
 that is already occupied.
 
 .TP
@@ -82,13 +81,12 @@ rather than refusing the new connection.
 Amount of time, in seconds, that the TurboVNC session can sit idle (with no VNC
 viewer connections) before it automatically exits [default: no timeout].  This
 argument has no effect if the \fImax-idle-timeout\fR directive is specified in
-the security configuration file and if that value is lower than
-\fItime\fR.
+the security configuration file and if that value is lower than \fItime\fR.
 
 .TP
 \fB\-inetd\fR
-If Xvnc is launched by inetd, this option causes Xvnc to redirect
-network input/output to stdin/stdout.
+If Xvnc is launched by inetd, this option causes Xvnc to redirect network
+input/output to stdin/stdout.
 
 .TP
 \fB\-interface\fR \fIip-address\fR
@@ -107,12 +105,12 @@ connections from IPv6 clients (the equivalent of specifying
 
 .TP
 \fB\-localhost\fR
-Only allow loopback connections from localhost.  This option is useful
-in conjunction with SSH tunneling.  This option can be set for all TurboVNC
+Only allow loopback connections from localhost.  This option is useful in
+conjunction with SSH tunneling.  This option can be set for all TurboVNC
 sessions on this system by using the \fIno-remote-connections\fR directive in
-the security configuration file.  See the SECURITY CONFIGURATION
-FILE section for more details.  Unless \fB-ipv6\fR is also specified, only
-IPv4 loopback connections are accepted.
+the security configuration file.  See the SECURITY CONFIGURATION FILE section
+for more details.  Unless \fB-ipv6\fR is also specified, only IPv4 loopback
+connections are accepted.
 
 .TP
 \fB-maxclipboard\fR \fIbytes\fR
@@ -130,21 +128,21 @@ connections to the same TurboVNC session.
 
 .TP
 \fB-noclipboardrecv\fR
-Disable inbound clipboard synchronization.  This prevents the clipboard of
-the TurboVNC session from being synchronized with the clipboard of a connected
-viewer whenever the latter changes.  This option can be set for all
-TurboVNC sessions on this system by using the \fIno-clipboard-recv\fR
-directive in the security configuration file.  See the SECURITY
-CONFIGURATION FILE section for more details.
+Disable inbound clipboard synchronization.  This prevents the clipboard of the
+TurboVNC session from being synchronized with the clipboard of a connected
+viewer whenever the latter changes.  This option can be set for all TurboVNC
+sessions on this system by using the \fIno-clipboard-recv\fR directive in the
+security configuration file.  See the SECURITY CONFIGURATION FILE section for
+more details.
 
 .TP
 \fB-noclipboardsend\fR
-Disable outbound clipboard synchronization.  This prevents the clipboard of
-any connected viewers from being synchronized with the clipboard of the
-TurboVNC session whenever the latter changes.  This option can be set for all
-TurboVNC sessions on this system by using the \fIno-clipboard-send\fR
-directive in the security configuration file.  See the SECURITY
-CONFIGURATION FILE section for more details.
+Disable outbound clipboard synchronization.  This prevents the clipboard of any
+connected viewers from being synchronized with the clipboard of the TurboVNC
+session whenever the latter changes.  This option can be set for all TurboVNC
+sessions on this system by using the \fIno-clipboard-send\fR directive in the
+security configuration file.  See the SECURITY CONFIGURATION FILE section for
+more details.
 
 .TP
 \fB\-noflowcontrol\fR
@@ -176,8 +174,8 @@ session and connected viewers.
 \fB\-noreverse\fR
 Do not allow reverse VNC connections to be made from this TurboVNC session.
 This option can be set for all TurboVNC sessions on this system by using the
-\fIno-reverse-connections\fR directive in the security configuration
-file.  See the SECURITY CONFIGURATION FILE section for more details.
+\fIno-reverse-connections\fR directive in the security configuration file.  See
+the SECURITY CONFIGURATION FILE section for more details.
 
 .TP
 \fB\-rfbport\fR \fIport\fR
@@ -221,8 +219,8 @@ is dragging the mouse.
 
 .TP
 \fB\-viewonly\fR
-Don't accept keyboard and pointer events from viewers.  All viewers will
-be able to see the desktop but won't be able to control it.
+Don't accept keyboard and pointer events from viewers.  All viewers will be
+able to see the desktop but won't be able to control it.
 
 .TP
 \fB\-virtualtablet\fR
@@ -272,12 +270,12 @@ box of all screens.
 .TP
 \fB\-pixelformat\fR rgb\fINNN\fR|bgr\fINNN\fR
 Specify the pixel format of the virtual X display.  Xvnc can use any pixel
-format you choose, but if this pixel format does not match the pixel format
-of the display on which vncviewer is running, then Xvnc will perform pixel
-format conversion prior to sending images to vncviewer.  This can slow
-performance.  The default pixel format, rgb888, is equivalent to BGRA on little
-endian systems or ARGB on big endian systems.  A pixel format of bgr888 is
-equivalent to RGBA on little endian systems or ABGR on big endian systems.
+format you choose, but if this pixel format does not match the pixel format of
+the display on which vncviewer is running, then Xvnc will perform pixel format
+conversion prior to sending images to vncviewer.  This can slow performance.
+The default pixel format, rgb888, is equivalent to BGRA on little endian
+systems or ARGB on big endian systems.  A pixel format of bgr888 is equivalent
+to RGBA on little endian systems or ABGR on big endian systems.
 
 .TP
 \fBTURBOVNC ENCODING OPTIONS\fR
@@ -407,9 +405,9 @@ WebSocket proxy.
 
 .TP
 \fB\-x509key\fR \fIkey\fR
-Specify the X.509 private key file (in PEM format) to use with X.509
-encryption (if X.509 security types are enabled and permitted) or the built-in
-WebSocket proxy.
+Specify the X.509 private key file (in PEM format) to use with X.509 encryption
+(if X.509 security types are enabled and permitted) or the built-in WebSocket
+proxy.
 
 .SH SECURITY EXTENSIONS
 The TurboVNC Server supports 13 security types, each of which specifies an
@@ -424,8 +422,8 @@ The authentication methods that the TurboVNC Server supports are as follows:
 No authentication.  Xvnc will not enable any security types that use this
 authentication method unless no other security types are enabled.  This
 authentication method should generally only be used in conjunction with SSH or
-another security mechanism that provides authentication outside of the
-context of Xvnc.
+another security mechanism that provides authentication outside of the context
+of Xvnc.
 
 .IP \fBVNC\ Password\fR
 Authenticate using a VNC password file created by the \fBvncpasswd\fR(1)
@@ -451,8 +449,8 @@ method is typically used to authenticate against Unix login credentials, but it
 can also be used to authenticate against any other user/password authentication
 credentials that can be accessed through PAM.  A valid PAM service
 configuration must be created by the system administrator (see the SECURITY
-CONFIGURATION FILE section for details.)  On some systems, it may be
-necessary to make the Xvnc binary setuid root in order to authenticate against
+CONFIGURATION FILE section for details.)  On some systems, it may be necessary
+to make the Xvnc binary setuid root in order to authenticate against
 credentials other than those of the user running Xvnc.
 
 PAM User/Password authentication uses the TightVNC Unix Login or the VeNCrypt
@@ -468,9 +466,9 @@ The security types that the TurboVNC Server supports are as follows:
 .IP \fBNone\fR
 No encryption and no authentication.
 
-This security type can be used with VNC viewers that understand the
-"None" RFB security type or the "Tight" RFB security type with the "None"
-authentication capability.
+This security type can be used with VNC viewers that understand the "None" RFB
+security type or the "Tight" RFB security type with the "None" authentication
+capability.
 
 .IP \fBTLSNone\fR
 Anonymous TLS (Transport Layer Security) encryption with no authentication.
@@ -558,10 +556,10 @@ The \fB-securitytypes\fR argument allows you to request that specific security
 types be enabled in Xvnc.
 .TP
 \fBThe \fIpermitted-security-types\fB directive\fR
-If the security configuration file exists, then the system administrator
-can use the \fIpermitted-security-types\fR directive in that file to specify
-the security types that are allowed on the system.  A security type must both
-be requested, by way of the \fB-securitytypes\fR argument (or in the default
+If the security configuration file exists, then the system administrator can
+use the \fIpermitted-security-types\fR directive in that file to specify the
+security types that are allowed on the system.  A security type must both be
+requested, by way of the \fB-securitytypes\fR argument (or in the default
 security types that Xvnc uses if that argument is not specified), and permitted
 in order for the security type to be enabled.  If none of the security types
 meet this criteria, then Xvnc exits with an error.  For instance, if "TLSVnc"
@@ -570,10 +568,10 @@ is the only permitted security type, then it is an error to start Xvnc with
 
 The \fIpermitted-security-types\fR directive also allows you to specify the
 order in which authentication schemes are advertised to VNC viewers.  For
-instance, if "UnixLogin" is listed first, then the TurboVNC Viewer will
-default to using Unix Login authentication when connecting to any TurboVNC
-sessions on this host.  Similarly, if "VNC" or "OTP" is listed first, then the
-TurboVNC Viewer will default to using Standard VNC authentication.
+instance, if "UnixLogin" is listed first, then the TurboVNC Viewer will default
+to using Unix Login authentication when connecting to any TurboVNC sessions on
+this host.  Similarly, if "VNC" or "OTP" is listed first, then the TurboVNC
+Viewer will default to using Standard VNC authentication.
 
 If the security configuration file does not exist or
 \fIpermitted-security-types\fR is not specified, then Xvnc behaves as if
@@ -594,14 +592,13 @@ TurboVNC Server's permitted security types attempts to connect.
 .TP
 \fBThe VNC viewer user interface\fR
 The VNC viewer's user interface may place additional restrictions on which
-security types can be used.  For example, the TurboVNC Viewer has
-command-line options that allow you to force the use of the VNC or Unix
-Login authentication schemes, regardless of which scheme the server advertises
-as the default.
+security types can be used.  For example, the TurboVNC Viewer has command-line
+options that allow you to force the use of the VNC or Unix Login authentication
+schemes, regardless of which scheme the server advertises as the default.
 .P
-You can examine the Xvnc log file to see details of authentication
-processing, including the authentication methods, RFB protocol versions,
-and security types that have been enabled.
+You can examine the Xvnc log file to see details of authentication processing,
+including the authentication methods, RFB protocol versions, and security types
+that have been enabled.
 .SH SECURITY CONFIGURATION FILE
 At startup, Xvnc reads security configuration information from
 \fB@CMAKE_INSTALL_FULL_SYSCONFDIR@/turbovncserver-security.conf\fR.  For
@@ -610,9 +607,8 @@ cannot be changed without rebuilding Xvnc.  If present, the security
 configuration file must be owned by either root or by the user who started the
 TurboVNC session, and the file may not be writable by others.
 
-Comment lines start with a hash (#) character.  Spaces and tabs are
-ignored on lines containing configuration directives.  The configuration
-directives are:
+Comment lines start with a hash (#) character.  Spaces and tabs are ignored on
+lines containing configuration directives.  The configuration directives are:
 
 .IP \fIenable-user-acl\fR
 If the "PAM User/Password" authentication method is used, then this directive
@@ -704,9 +700,9 @@ the design of VNC.  Thus, it is recommended that you restrict network access to
 TurboVNC sessions from untrusted network addresses.  Probably the best way to
 secure a TurboVNC session is to allow only loopback connections from the host
 (using the \fB\-localhost\fR option or the \fIno-remote-connections\fR security
-configuration file directive) and to use SSH tunneling for remote access
-to the TurboVNC session.  For details on using TurboVNC with SSH tunneling, see
-the TurboVNC User's Guide.
+configuration file directive) and to use SSH tunneling for remote access to the
+TurboVNC session.  For details on using TurboVNC with SSH tunneling, see the
+TurboVNC User's Guide.
 .P
 It is incumbent upon the system administrator to ensure that a security type
 meets the security requirements for a particular site before it is permitted to
diff --git a/unix/turbovncserver.conf.in b/unix/turbovncserver.conf.in
index 064d8becf..558e020b0 100644
--- a/unix/turbovncserver.conf.in
+++ b/unix/turbovncserver.conf.in
@@ -1,59 +1,75 @@
 ##
-## Configuration of the TurboVNC Server.
+## TurboVNC Server Configuration
 ##
 ## This file uses Perl syntax, although only one-line assignments
 ## are allowed.  Assignments can be applied to the following variables:
 ##
+##  $autokill    -- 1 to automatically kill the TurboVNC session when the
+##                  X startup script exits or 0 to leave it running
+##                  [equivalent of -noautokill command-line option]
+##  $depth       -- color depth in bits per pixel (8, 16, 24, 30, or 32)
+##                  [equivalent of -depth command-line option]
+##  $desktopName -- remote desktop name
+##                  [equivalent of -name command-line option]
+##  $fontPath    -- X11 font path
+##                  [equivalent of -fp command-line option]
+##  $generateOTP -- 1 to generate an initial one-time password.  (OTP
+##                  authentication must be enabled and permitted)
+##                  [equivalent of -otp command-line option]
 ##  $geometry    -- desktop geometry, WIDTHxHEIGHT or
 ##                  W0xH0+X0+Y0[,W1xH1+X1+Y1,...,WnxHn+Xn+Yn]
-##  $depth       -- color depth in bits per pixel (between 8 and 32)
-##  $desktopName -- X desktop name
-##  $vncUserDir  -- path to TurboVNC user directory (session information,
-##                  VNC passwords, and log files are stored here)
-##  $fontPath    -- X font path
+##                  [equivalent of -geometry command-line option]
+##  $noVNC       -- directory containing noVNC
+##                  [equivalent of -novnc command-line option]
+##  $noxstartup  -- 1 to start the TurboVNC session with no X startup script
+##                  [equivalent of -noxstartup command-line option]
+##  $passwdFile  -- path to VNC password file to use with VNC Password
+##                  authentication
 ##  $securityTypes -- comma-separated list of security types to enable
 ##                    (passed to Xvnc in the -securitytypes argument)
-##  $generateOTP -- 1 to generate an initial one-time password.  (OTP
-##                  authentication must be enabled and permitted)
-##  $wm          -- the window manager to use (for instance, "mate" or "2d".)
-##                  This variable is ignored if $xstartup or $noxstartup is
-##                  specified.
+##  $serverArgs  -- additional arguments to pass to Xvnc (refer to the Xvnc man
+##                  page for a list of accepted arguments)
+##  $useUDS      -- listen on a Unix domain socket rather than a TCP port for
+##                  connections from VNC viewers
+##                  [equivalent of -uds command-line option]
 ##  $useVGL      -- 1 to run the window manager using VirtualGL.  This variable
 ##                  is ignored if $xstartup or $noxstartup is specified.
-##  $autokill    -- 1 to automatically kill the TurboVNC session when the
-##                  X startup script finishes or 0 to leave it running
-##  $noVNC       -- directory containing noVNC
-##  $passwdFile  -- path to VNC password file to use with VNC Password
-##                  authentication
+##                  [equivalent of -vgl command-line option]
+##  $vncUserDir  -- path to TurboVNC user directory (session information, VNC
+##                  passwords, and log files are stored here)
+##  $wm          -- the window manager to use (for instance, "mate" or "2d"),
+##                  which corresponds to a session desktop file under
+##                  /usr/share/xsessions (/usr/local/share/xsessions on *BSD
+##                  systems.)  This variable is ignored if $xstartup or
+##                  $noxstartup is specified.
+##                  [equivalent of -wm command-line option]
 ##  $x509CertFile -- path to X.509 signed certificate file (in PEM format) to
 ##                   use with X.509 encryption
+##                   [equivalent of -x509cert command-line option]
 ##  $x509KeyFile -- path to X.509 private key file (in PEM format) to use with
 ##                  X.509 encryption
+##                  [equivalent of -x509key command-line option]
 ##  $xstartup    -- path to alternative X startup script
-##  $noxstartup  -- 1 to start the TurboVNC session with no X startup script
-##  $serverArgs  -- additional arguments to pass to Xvnc (refer to the Xvnc man
-##                  page for a list of accepted arguments)
-##  $useUDS      -- listen on a Unix domain socket rather than a TCP port for
-##                  connections from VNC viewers
+##                  [equivalent of -xstartup command-line option]
 ##
 
 ## These settings are the default.  Uncomment and edit to change.
 #
-# $geometry = "1240x900";
+# $autokill = 1;
 # $depth = 24;
 # $desktopName = "TurboVNC ($ENV{USER})";
-# $vncUserDir = "$ENV{HOME}/.vnc";
 # $fontPath = "";
-# $securityTypes = "TLSVnc, TLSOtp, TLSPlain, X509Vnc, X509Otp, X509Plain, VNC, OTP, UnixLogin, Plain";
 # $generateOTP = 0;
-# $wm = "";
-# $useVGL = 0;
-# $autokill = 1;
+# $geometry = "1240x900";
 # $noVNC = "";
-# $xstartup = "${exedir}xstartup.turbovnc";
 # $noxstartup = 0;
+# $securityTypes = "TLSVnc, TLSOtp, TLSPlain, X509Vnc, X509Otp, X509Plain, VNC, OTP, UnixLogin, Plain";
 # $serverArgs = "";
 # $useUDS = 0;
+# $useVGL = 0;
+# $vncUserDir = "$ENV{HOME}/.vnc";
+# $wm = "";
+# $xstartup = "${exedir}xstartup.turbovnc";
 
 ## Here is an example of setting the font path:
 #
diff --git a/unix/vncpasswd/vncpasswd.man b/unix/vncpasswd/vncpasswd.man
index 757167e29..d0af1a9c0 100644
--- a/unix/vncpasswd/vncpasswd.man
+++ b/unix/vncpasswd/vncpasswd.man
@@ -2,7 +2,7 @@
 .\" ** The above line should force tbl to be a preprocessor **
 .\" Man page for X vncpasswd
 .\"
-.\" Copyright (C) 2010, 2015, 2018 D. R. Commander
+.\" Copyright (C) 2010, 2015, 2018, 2024 D. R. Commander
 .\" Copyright (C) 2010 University Corporation for Atmospheric Research
 .\" Copyright (C) 2005-2008 Sun Microsystems, Inc.
 .\" Copyright (C) 2001-2003 Constantin Kaplinsky
@@ -13,7 +13,7 @@
 .\" License as specified in the file LICENCE.TXT that comes with the
 .\" TurboVNC distribution.
 .\"
-.TH vncpasswd 1 "October 2018" "" "TurboVNC"
+.TH vncpasswd 1 "July 2024" "" "TurboVNC"
 .SH NAME
 vncpasswd \- set passwords for TurboVNC sessions
 .SH SYNOPSIS
@@ -34,7 +34,7 @@ vncpasswd \- set passwords for TurboVNC sessions
 .SH DESCRIPTION
 The \fBvncpasswd\fR utility can be used to create and change
 passwords for Xvnc (the TurboVNC virtual X server.)  \fBXvnc\fR uses these
-passwords when started with the \fB\-rfbauth\fR command line option
+passwords when started with the \fB\-rfbauth\fR command-line option
 (or when started from the \fBvncserver\fR script.)
 
 \fBvncpasswd\fR allows one to enter a primary VNC password and an
@@ -42,12 +42,12 @@ optional view-only password.  \fBXvnc\fR will ignore mouse and keyboard
 input from viewers that authenticate with the view-only password.
 
 The password filename defaults to \fB$HOME/.vnc/passwd\fR, unless the
-\fB\-t\fR command line option was used (see the OPTIONS section
+\fB\-t\fR command-line option was used (see the OPTIONS section
 below.)  The \fB$HOME/.vnc/\fR directory will be created if it does not
 exist.
 
 Each password has to be longer than five characters (unless the
-\fB\-f\fR command line option was used-- see its description below.)
+\fB\-f\fR command-line option was used-- see its description below.)
 Only the first eight characters are significant.  If the primary
 password is too short, then vncpasswd will abort.  If the view-only
 password is too short, then only the primary password will be saved.
diff --git a/unix/vncserver.in b/unix/vncserver.in
index c7a61f420..42d9e3262 100644
--- a/unix/vncserver.in
+++ b/unix/vncserver.in
@@ -882,27 +882,27 @@ sub Usage
       "\n".
       "<OPTIONS> are Xvnc options, or:\n".
       "\n".
-      "        -geometry <WIDTH>x<HEIGHT> or\n".
-      "        -geometry <W0>x<H0>+<X0>+<Y0>[,<W1>x<H1>+<X1>+<Y1>,...]\n".
       "        -depth <DEPTH>\n".
-      "        -pixelformat rgb<NNN>\n".
-      "        -pixelformat bgr<NNN>\n".
+      "        -fg\n".
       "        -fp <FONT-PATH>\n".
+      "        -geometry <WIDTH>x<HEIGHT> or\n".
+      "        -geometry <W0>x<H0>+<X0>+<Y0>[,<W1>x<H1>+<X1>+<Y1>,...]\n".
+      "        -log <FILE>\n".
       "        -name <DESKTOP-NAME>\n".
+      "        -noautokill\n".
       "        -novnc <DIR>\n".
+      "        -noxstartup\n".
       "        -otp\n".
-      "        -fg\n".
+      "        -pixelformat rgb<NNN>\n".
+      "        -pixelformat bgr<NNN>\n".
+      "        -uds\n".
+      "        -vgl\n".
+      "        -wm <SCRIPT>\n".
       "        -x509cert <CERT-FILE>\n".
       "        -x509key <KEY-FILE>\n".
-      "        -noautokill\n".
-      "        -noxstartup\n".
       "        -xstartup <SCRIPT>\n".
-      "        -wm <SCRIPT>\n".
-      "        -vgl\n".
-      "        -uds\n".
-      "        -log <FILE>\n".
       "\n".
-      "See vncserver and Xvnc manual pages for more information.\n");
+      "See the vncserver and Xvnc man pages for more information.\n");
 }
 
 
diff --git a/unix/vncserver.man.in b/unix/vncserver.man.in
index 198348fe4..082ace37a 100644
--- a/unix/vncserver.man.in
+++ b/unix/vncserver.man.in
@@ -2,7 +2,7 @@
 .\" ** The above line should force tbl to be a preprocessor **
 .\" Man page for vncserver
 .\"
-.\" Copyright (C) 2010-2013, 2015-2018, 2020, 2022 D. R. Commander
+.\" Copyright (C) 2010-2013, 2015-2018, 2020, 2022, 2024 D. R. Commander
 .\" Copyright (C) 2005-2006 Sun Microsystems, Inc.
 .\" Copyright (C) 2001, 2002 Constantin Kaplinsky
 .\" Copyright (C) 2000, 2001 Red Hat, Inc.
@@ -13,22 +13,14 @@
 .\" License as specified in the file LICENCE.TXT that comes with the
 .\" TurboVNC distribution.
 .\"
-.TH vncserver 1 "October 2022" "" "TurboVNC"
+.TH vncserver 1 "July 2024" "" "TurboVNC"
 .SH NAME
 vncserver \- a wrapper to launch the TurboVNC Server
 .SH SYNOPSIS
 .nh
 .ad l
 \fBvncserver\fR
-[:\fIdisplay\fR] [\-geometry\ \fIwidth\fRx\fIheight\fR]
-[\-geometry\ \fIW0\fRx\fIH0\fR+\fIX0\fR+\fIY0\fR[,\fIW1\fRx\fIH1\fR+\fIX1\fR+\fIY1\fR,...,\fIWn\fRx\fIHn\fR+\fIXn\fR+\fIYn\fR]]
-[\-depth\ \fIdepth\fR] [\-pixelformat\ rgb\fINNN\fR|bgr\fINNN\fR]
-[\-fp\ \%\fIfont\-path\fR] [\-name\ \fIdesktop\-name\fR]
-[\-novnc \fInovnc\-dir\fR] [\-otp]
-[\-x509cert\ \fIcert\fR] [\-x509key\ \fIkey\fR] [\-fg] [\-noautokill]
-[\-noxstartup] [\-xstartup\ \fIscript\fR] [\-wm \fIwindow-manager\fR] [\-vgl]
-[\-uds] [\-log\ \fIfile\fR]
-\%[\fIXvnc\-options\fR...]
+[:\fIdisplay\fR] \%[\fIvncserver-options\fR...] \%[\fIXvnc\-options\fR...]
 .ad
 .hy
 .TP
@@ -38,22 +30,39 @@ vncserver \- a wrapper to launch the TurboVNC Server
 .TP
 \fBvncserver\fR \-help
 .SH DESCRIPTION
-\fBvncserver\fR is a wrapper script for \fBXvnc\fR, the VNC (Virtual Network
-Computing) X server. Xvnc provides all of the capabilities of a standard X
-server, but it does not connect to a physical display. Instead, \fBXvnc\fR
-creates a virtual X display that you can view or control remotely using a VNC
-viewer.
+\fBvncserver\fR is a wrapper script for \fBXvnc\fR(1), the VNC (Virtual Network
+Computing) X server.  Xvnc provides all of the capabilities of a standard X
+server, but it does not connect to a physical display.  Instead, Xvnc creates a
+virtual X display that you can view or control remotely using a VNC viewer.
 .SH OPTIONS
-You can add \fBXvnc\fR options to the \fBvncserver\fR command line. They will be
-passed through to Xvnc without modification. The options provided by
-\fBvncserver\fR itself are as follows:
+You can add Xvnc options to the vncserver command line.  They will be passed
+through to Xvnc without modification.  The options provided by vncserver itself
+are as follows:
 .TP
 \fB:\fR\fIdisplay\fR
-The X display number that Xvnc should occupy. If omitted, the next free display number
-is used.
+The X display number that Xvnc should occupy.  If omitted, the next free
+display number is used.
+.TP
+\fB\-depth\fR \fIdepth\fR
+Set the color depth of the virtual X display, in bits per pixel.  Must be 8,
+16, 24, 30, or 32 [default: 24].
+.TP
+\fB\-fg\fR
+Run the X startup script as a foreground process.  This has two effects:
+(1) The TurboVNC session can be aborted with CTRL-C, and (2) the TurboVNC
+session will exit as soon as the user logs out of the window manager in the
+session.  This may be necessary when launching TurboVNC from within certain
+grid computing environments.
+.TP
+\fB\-fp\fR \fIfont-path\fR
+The vncserver script will normally examine your system to figure out where it
+stores its X11 fonts and then generate an appropriate font path for Xvnc based
+on this.  If your system stores its X11 fonts in a location that vncserver does
+not know about, however, then this may fail.  In that case, you can manually
+specify a font path by using the \fB-fp\fR argument to vncserver.
 .TP
 \fB\-geometry\fR \fIwidth\fR\fBx\fR\fIheight\fR
-Set width and height of the virtual X display.
+Set width and height of the virtual X display [default: 1240x900].
 .TP
 \fB\-geometry\fR \fIW0\fRx\fIH0\fR+\fIX0\fR+\fIY0\fR[,\fIW1\fRx\fIH1\fR+\fIX1\fR+\fIY1\fR,...,\fIWn\fRx\fIHn\fR+\fIXn\fR+\fIYn\fR]
 Set multi-screen geometry of the virtual X display.  Wi and Hi are the width
@@ -61,76 +70,97 @@ and height of Screen i, and Xi and Yi specify the offset of Screen i relative
 to the origin.  The total width and height are determined by the bounding box
 of all screens.
 .TP
-\fB\-depth\fR \fIdepth\fR
-Set the color depth of the virtual X display, in bits per pixel. Must
-be a value between 8 and 32.
+\fB\-help\fR
+Print a brief list of command-line options.
 .TP
-\fB\-pixelformat\fR \fBrgb\fR\fINNN\fR|\fBbgr\fR\fINNN\fR
-Specify the pixel format of the virtual X display. Xvnc can use any pixel
-format you choose, but if this pixel format does not match the pixel format
-of the display on which vncviewer is running, then Xvnc will perform pixel
-format conversion prior to sending images to vncviewer. This can slow
-performance. The default pixel format, rgb888, is equivalent to BGRA on little
-endian systems or ARGB on big endian systems.  A pixel format of bgr888 is
-equivalent to RGBA on little endian systems or ABGR on big endian systems.
+\fB\-kill\fR \fB:\fR\fIdisplay\fR
+Stop the TurboVNC session that is currently running on the specified display.
 .TP
-\fB\-fp\fR \fIfont-path\fR
-The vncserver script will normally examine your system to figure out where it
-stores its X11 fonts and then generate an appropriate font path for Xvnc based
-on this.  If your system stores its X11 fonts in a location that vncserver does
-not know about, however, then this may fail.  In that case, you can manually
-specify a font path by using the -fp argument to vncserver.
+\fB\-list\fR
+List the display numbers and process ID's of all TurboVNC sessions that are
+currently running under your account on this host.
+.TP
+\fB\-log\fR  \fIfile\fR
+Redirect the output of Xvnc to \fIfile\fR rather than to
+\fB$vncUserDir/.vnc/{hostname}{display}.log\fR.
 .TP
 \fB\-name\fR \fIstring\fR
-This specifies the name of the desktop.
+Specify the name of the remote desktop.
+.TP
+\fB\-noautokill\fR
+Normally, vncserver automatically kills the TurboVNC session when the X startup
+script exits (which, in most cases, means that the session will be killed
+automatically whenever the user logs out of the window manager running in the
+session.)  This option disables that behavior.
 .TP
 \fB-novnc\fR \fInovnc\-dir\fR
 Automatically start a simple web server that serves up noVNC (an
 HTML 5/JavaScript VNC viewer) from directory \fInovnc\-dir\fR when starting a
-TurboVNC session.  \fBvncserver\fR tracks the process ID of the noVNC web
-server and automatically kills that process along with the TurboVNC session.
-noVNC works in any web browser (including on mobile devices), but since it only
-supports VNC Password authentication, it is strongly recommended that it be
-used only with one-time passwords unless the connections are encrypted (see
+TurboVNC session.  vncserver tracks the process ID of the noVNC web server and
+automatically kills that process along with the TurboVNC session.  noVNC works
+in any web browser (including on mobile devices), but since it only supports
+VNC Password authentication, it is strongly recommended that it be used only
+with one-time passwords unless the connections are encrypted (see
 \fB-x509cert\fR and \fB-x509key\fR below.)  The performance of noVNC will
 generally be much less than that of the TurboVNC Viewer.
 .TP
+\fB\-noxstartup\fR
+Do not run the default X startup script (\fBxstartup.turbovnc\fR) after
+launching Xvnc.  This option allows you to manually start a window manager in
+your TurboVNC session or to run a full-screen application without a window
+manager.
+.TP
 \fB\-otp\fR
 If the One-Time Password authentication method is enabled and permitted in
 Xvnc, then this generates an initial one-time password and prints it to the
 console prior to starting Xvnc.
 .TP
+\fB\-pixelformat\fR \fBrgb\fR\fINNN\fR|\fBbgr\fR\fINNN\fR
+Specify the pixel format of the virtual X display.  Xvnc can use any pixel
+format you choose, but if this pixel format does not match the pixel format of
+the display on which the VNC viewer is running, then Xvnc will perform pixel
+format conversion prior to sending images to the VNC viewer.  This can slow
+performance.  The default pixel format, rgb888, is equivalent to BGRA on little
+endian systems or ARGB on big endian systems.  A pixel format of bgr888 is
+equivalent to RGBA on little endian systems or ABGR on big endian systems.
+.TP
+\fB\-uds\fR
+Listen on a Unix domain socket rather than a TCP port for connections from VNC
+viewers.
+.TP
+\fB\-vgl\fR
+This sets an environment variable (\fBTVNC_VGL\fR) to 1, which causes the
+default X startup script to launch the window manager using VirtualGL.  More
+specifically, if \fBTVNC_VGL\fR is set, then the default X startup script will
+launch the window manager using a command specified in another environment
+variable (\fBTVNC_VGLRUN\fR.)  The default value of \fBTVNC_VGLRUN\fR is
+"vglrun +wm", but users can override that environment variable in order to pass
+additional arguments to vglrun, to specify the full path of vglrun, or to use
+another command to launch the window manager.
+.TP
+\fB-wm\fR \fIwindow-manager\fR
+This sets the value of the \fBTVNC_WM\fR environment variable to
+\fIwindow-manager\fR.  The default X startup script will launch the window
+manager specified in the \fBTVNC_WM\fR environment variable, if it is set and a
+corresponding session desktop file exists under \fB/usr/share/xsessions\fR
+(\fB/usr/local/share/xsessions\fR on *BSD systems.)  If the window manager is
+not specified, then the default X startup script will launch the "gnome" or
+"ubuntu" window manager if a corresponding session desktop file exists and
+execute \fB/etc/X11/xinit/xinitrc\fR otherwise.
+.TP
 \fB\-x509cert\fR \fIcert\fR
 Specify the X.509 signed certificate file (in PEM format) to use with X.509
 encryption, the built-in WebSocket proxy, and the noVNC web server.  If this
 argument is specified, then it is passed to Xvnc and the noVNC web server.
-Otherwise, the \fBvncserver\fR script passes a default value of
-$vncUserDir/x509_cert.pem.
+Otherwise, the vncserver script passes a default value of
+\fB$vncUserDir/x509_cert.pem\fR.
 .TP
 \fB\-x509key\fR \fIkey\fR
 Specify the X.509 private key file (in PEM format) to use with X.509
 encryption, the built-in WebSocket proxy, and the noVNC web server.  If this
 argument is specified, then it is passed to Xvnc and the noVNC web server.
-Otherwise, the \fBvncserver\fR script passes a default value of
-$vncUserDir/x509_private.pem.
-.TP
-\fB\-fg\fR
-Runs the X startup script as a foreground process.  This has two effects:
-(1) The TurboVNC session can be aborted with CTRL-C, and (2) the TurboVNC
-session will exit as soon as the user logs out of the window manager in the
-session.  This may be necessary when launching TurboVNC from within certain
-grid computing environments.
-.TP
-\fB\-noautokill\fR
-Normally, \fBvncserver\fR automatically kills the TurboVNC session when the
-X startup script exits (which, in most cases, means that the session will be
-killed automatically whenever the user logs out of the window manager running
-in the session.)  This option disables that behavior.
-.TP
-\fB\-noxstartup\fR
-Do not run the default X startup script (xstartup.turbovnc) after launching
-Xvnc.  This option allows you to manually start a window manager in your
-TurboVNC session or to run a full-screen application without a window manager.
+Otherwise, the vncserver script passes a default value of
+\fB$vncUserDir/x509_private.pem\fR.
 .TP
 \fB\-xstartup\fR \fIscript\fR
 Run a custom X startup script, instead of the default X startup script, after
@@ -138,70 +168,39 @@ launching Xvnc.  This is useful in conjunction with the \fB-fg\fR option, since
 it allows for running a full-screen application (such as a game or a
 virtualization solution) in TurboVNC without a window manager and causes the
 TurboVNC session to terminate whenever the application exits.
-.TP
-\fB-wm\fR \fIwindow-manager\fR
-This sets the value of the \fBTVNC_WM\fR environment variable to
-\fIwindow-manager\fR.  The default X startup script will launch the window
-manager specified in the \fBTVNC_WM\fR environment variable, if it is set and
-a corresponding session desktop file exists under /usr/share/xsessions.
-.TP
-\fB\-vgl\fR
-This sets an environment variable (\fBTVNC_VGL\fR) to 1, and the default
-X startup script will launch the window manager using VirtualGL if that
-environment variable is set.  More specifically, if \fBTVNC_VGL\fR is set, then
-the default X startup script will launch the window manager using a command
-specified in another environment variable (\fBTVNC_VGLRUN\fR.)  The default
-value of \fBTVNC_VGLRUN\fR is "vglrun +wm", but users can override that
-environment variable in order to pass additional arguments to vglrun, to
-specify the full path of vglrun, or to use another command to launch the window
-manager.
-.TP
-\fB\-uds\fR
-Listen on a Unix domain socket rather than a TCP port for connections from VNC
-viewers.
-.TP
-\fB\-log\fR  \fIfile\fR
-Redirect the output of Xvnc to \fIfile\fR, rather than to
-$vncUserDir/.vnc/{hostname}{display}.log.
-.TP
-\fB\-kill\fR \fB:\fR\fIdisplay\fR
-Stops the VNC session that is currently running on the specified display.
-.TP
-\fB\-list\fR
-Lists the display numbers and process ID's of all VNC sessions that are
-currently running under your account on this host.
-.TP
-\fB\-help\fR
-Prints a brief list of command line options
 .SH EXAMPLES
 .TP
 \fBvncserver\fR
-Starts \fBXvnc\fR on the next available display and uses suitable
-defaults.
+Start Xvnc on the next available X display number and use suitable defaults.
 .TP
 \fBvncserver\fR \fI:1\fR
-Starts \fBXvnc\fR on display :1.
+Start Xvnc on Display :1.
 .TP
 \fBvncserver\fR -geometry \fI1024x768 :1\fR
-Starts \fBXvnc\fR on display :1 with desktop size of 1024x768 pixels.
+Start Xvnc on Display :1 with a desktop size of 1024x768 pixels.
 .TP
 \fBvncserver\fR -kill \fI:1\fR
-Shuts down the VNC session running on display :1.
-.SH FILES
+Shut down the TurboVNC session running on Display :1.
+.SH CONFIGURATION FILES
 .TP
-@CMAKE_INSTALL_FULL_SYSCONFDIR@/turbovncserver.conf
+\fB@CMAKE_INSTALL_FULL_SYSCONFDIR@/turbovncserver.conf\fR
 System-wide configuration file for the TurboVNC Server.
 .TP
-$HOME/.vnc/turbovncserver.conf
-User configuration file for the TurboVNC Server. Settings in this file
+\fB$HOME/.vnc/turbovncserver.conf\fR
+Per-user configuration file for the TurboVNC Server.  Settings in this file
 override the system-wide configuration.
+.P
+These files allow the vncserver defaults to be configured persistently on a
+per-user or system-wide basis using Perl variables.  See
+\fB@CMAKE_INSTALL_FULL_SYSCONFDIR@/turbovncserver.conf\fR for a description
+of each variable.
 .SH SEE ALSO
 \fBXvnc\fR(1), \fBvncviewer\fR(1), \fBvncpasswd\fR(1), \fBvncconnect\fR(1)
 .SH AUTHORS
-VNC was originally developed at AT&T Laboratories Cambridge. TightVNC
-additions were implemented by Constantin Kaplinsky. TurboVNC, based
-on TightVNC, is provided by The VirtualGL Project. Many other people
-participated in development, testing and support.
+VNC was originally developed at AT&T Laboratories Cambridge.  TightVNC
+additions were implemented by Constantin Kaplinsky.  TurboVNC, based on
+TightVNC, is provided by The VirtualGL Project.  Many other people participated
+in development, testing and support.
 
 \fBMan page authors:\fR
 .br

From cd8a11e124345ba304bf90ea6e3d13b50e89d1d9 Mon Sep 17 00:00:00 2001
From: DRC <information@virtualgl.org>
Date: Mon, 22 Jul 2024 21:16:15 -0400
Subject: [PATCH 3/4] xstartup: Require sess dsktop file if WM specified

xinitrc is poorly or not at all supported on modern Un*x distributions.
Executing it as a fallback if the session desktop file for the specified
window manager could not be found sometimes caused hard-to-diagnose
issues.
---
 ChangeLog.md           |  4 ++++
 unix/vncserver.man.in  | 12 +++++-----
 unix/xstartup.turbovnc | 51 +++++++++++++++++++++++++++---------------
 3 files changed, 43 insertions(+), 24 deletions(-)

diff --git a/ChangeLog.md b/ChangeLog.md
index ff4605e68..f15dc742b 100644
--- a/ChangeLog.md
+++ b/ChangeLog.md
@@ -29,6 +29,10 @@ with the TurboVNC Server on Ubuntu 23.10 and later (if the `polkitd-pkla`
 package is not installed) and on RHEL 7 and Fedora 19 and later (if the
 `polkit-pkla-compat` package is not installed.)
 
+5. The default X startup script (`xstartup.turbovnc`) now throws an error,
+rather than trying to execute **xinitrc** or twm, if a window manager is
+specified and the session desktop file for the window manager cannot be found.
+
 
 3.1.1
 =====
diff --git a/unix/vncserver.man.in b/unix/vncserver.man.in
index 082ace37a..007cebc3a 100644
--- a/unix/vncserver.man.in
+++ b/unix/vncserver.man.in
@@ -140,13 +140,13 @@ another command to launch the window manager.
 .TP
 \fB-wm\fR \fIwindow-manager\fR
 This sets the value of the \fBTVNC_WM\fR environment variable to
-\fIwindow-manager\fR.  The default X startup script will launch the window
-manager specified in the \fBTVNC_WM\fR environment variable, if it is set and a
+\fIwindow-manager\fR.  If the \fBTVNC_WM\fR environment variable is set, then
+the default X startup script will launch the specified window manager if a
 corresponding session desktop file exists under \fB/usr/share/xsessions\fR
-(\fB/usr/local/share/xsessions\fR on *BSD systems.)  If the window manager is
-not specified, then the default X startup script will launch the "gnome" or
-"ubuntu" window manager if a corresponding session desktop file exists and
-execute \fB/etc/X11/xinit/xinitrc\fR otherwise.
+(\fB/usr/local/share/xsessions\fR on *BSD systems) and fail otherwise.  If the
+window manager is not specified, then the default X startup script will launch
+the "gnome" or "ubuntu" window manager if a corresponding session desktop file
+exists and execute \fB/etc/X11/xinit/xinitrc\fR otherwise.
 .TP
 \fB\-x509cert\fR \fIcert\fR
 Specify the X.509 signed certificate file (in PEM format) to use with X.509
diff --git a/unix/xstartup.turbovnc b/unix/xstartup.turbovnc
index a7ab2fe67..3129e04d1 100644
--- a/unix/xstartup.turbovnc
+++ b/unix/xstartup.turbovnc
@@ -82,6 +82,31 @@ OS=`uname -s`
 
 # Emulate GDM
 
+find_session()
+{
+  for SESSION in $SESSIONS; do
+    if [ "$XSESSIONSDIR" != "" -a -f $XSESSIONSDIR/$SESSION.desktop ]; then
+      DESKTOP_SESSION=$SESSION;  export DESKTOP_SESSION
+    fi
+  done
+  if [ "$DESKTOP_SESSION" = "" ]; then
+    if [ "$TVNC_WM" = "" ]; then
+      echo "xstartup.turbovnc: The session desktop file for the default window manager was"
+      echo "xstartup.turbovnc:   not found at:"
+    else
+      echo "xstartup.turbovnc: The session desktop file for the '$TVNC_WM'"
+      echo "xstartup.turbovnc:   window manager was not found at:"
+    fi
+    for SESSION in $SESSIONS; do
+      echo "xstartup.turbovnc:   $XSESSIONSDIR/$SESSION.desktop"
+    done
+    if [ "$TVNC_WM" != "" ]; then
+      exit 1
+    fi
+  fi
+  unset SESSIONS
+}
+
 # Use Unity 2D on Ubuntu 12 if no WM is specified.  Historically, Unity 3D
 # 5.20.x didn't even pretend to work properly with our X server, although it
 # probably would now.
@@ -113,16 +138,12 @@ case "$TVNC_WM" in
       NOXSESSION=1
       TVNC_WM=`echo $TVNC_WM | $SED -r 's/:noxsession$//g'`
     fi
-    # RHEL 7, Fedora: gnome-classic
+    # RHEL 7+, Fedora: gnome-classic
     # Ubuntu 12: ubuntu-2d
     # Ubuntu 14: gnome-fallback
     # Ubuntu 16+: gnome-flashback-metacity
-    for SESSION in "gnome-classic" "gnome-fallback" "ubuntu-2d" "2d-gnome" \
-      "gnome-flashback-metacity"; do
-      if [ "$XSESSIONSDIR" != "" -a -f $XSESSIONSDIR/$SESSION.desktop ]; then
-        DESKTOP_SESSION=$SESSION;  export DESKTOP_SESSION
-      fi
-    done
+    SESSIONS="gnome-classic gnome-fallback ubuntu-2d 2d-gnome gnome-flashback-metacity"
+    find_session
     unset TVNC_WM
     ;;
   *)
@@ -136,22 +157,16 @@ case "$TVNC_WM" in
     esac
     if [ "$TVNC_WM" = "" ]; then
       # No window manager was specified.  Use GNOME or Unity if it exists.
-      for SESSION in "gnome" "ubuntu"; do
-        if [ "$XSESSIONSDIR" != "" -a -f $XSESSIONSDIR/$SESSION.desktop ]; then
-          DESKTOP_SESSION=$SESSION;  export DESKTOP_SESSION
-        fi
-      done
+      SESSIONS="gnome ubuntu"
+      find_session
     else
       # For backward compatibility with TurboVNC 2.2.x, we allow a window
       # manager's startup script (e.g. mate-session, gnome-session) to be
       # specified using -wm / $wm, but if there is a matching session desktop
       # file for it, we use that instead.
-      SESSION=`echo $TVNC_WM | $SED -r 's/^.*\/|-session$//g'`
-      if [ "$XSESSIONSDIR" != "" -a -f "$XSESSIONSDIR/$SESSION.desktop" ]; then
-        DESKTOP_SESSION=$SESSION;  export DESKTOP_SESSION
-        unset TVNC_WM
-      fi
-      unset SESSION
+      SESSIONS="`echo $TVNC_WM | $SED -r 's/^.*\/|-session$//g'`"
+      find_session
+      unset TVNC_WM
     fi
     ;;
 esac

From 27f95cf89daf64b003c4b545155fc1ac314f2b9a Mon Sep 17 00:00:00 2001
From: DRC <information@virtualgl.org>
Date: Mon, 22 Jul 2024 22:08:27 -0400
Subject: [PATCH 4/4] Build: Don't generate turbovncserver.conf

This hasn't been necessary since
fc473a5131819b4e9eae0059935477cfa0041e59 (TurboVNC 3.0 beta1.)
---
 unix/CMakeLists.txt                                  | 3 +--
 unix/{turbovncserver.conf.in => turbovncserver.conf} | 0
 2 files changed, 1 insertion(+), 2 deletions(-)
 rename unix/{turbovncserver.conf.in => turbovncserver.conf} (100%)

diff --git a/unix/CMakeLists.txt b/unix/CMakeLists.txt
index e2c793371..6f7d57852 100644
--- a/unix/CMakeLists.txt
+++ b/unix/CMakeLists.txt
@@ -136,8 +136,7 @@ endif()
 configure_file(vncserver.man.in vncserver.man @ONLY)
 install(FILES ${CMAKE_CURRENT_BINARY_DIR}/vncserver.man
 	DESTINATION ${CMAKE_INSTALL_MANDIR}/man1 RENAME vncserver.1)
-configure_file(turbovncserver.conf.in turbovncserver.conf @ONLY)
-install(FILES ${CMAKE_CURRENT_BINARY_DIR}/turbovncserver.conf
+install(FILES ${CMAKE_CURRENT_SOURCE_DIR}/turbovncserver.conf
 	DESTINATION ${CMAKE_INSTALL_FULL_SYSCONFDIR})
 install(FILES ${CMAKE_CURRENT_SOURCE_DIR}/turbovncserver-security.conf
 	DESTINATION ${CMAKE_INSTALL_FULL_SYSCONFDIR})
diff --git a/unix/turbovncserver.conf.in b/unix/turbovncserver.conf
similarity index 100%
rename from unix/turbovncserver.conf.in
rename to unix/turbovncserver.conf