From 0ac1ea078e75006d29a890c2a6d5fcfd961ff654 Mon Sep 17 00:00:00 2001
From: Marko Kudjerski <marko@highfidelity.io>
Date: Fri, 15 Jun 2018 08:20:58 -0700
Subject: [PATCH 1/4] Updated time stamping server for authenticode signatures

Symantec's time stamp server seems to be more robust.
---
 cmake/macros/OptionalWinExecutableSigning.cmake | 2 +-
 cmake/templates/NSIS.template.in                | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/cmake/macros/OptionalWinExecutableSigning.cmake b/cmake/macros/OptionalWinExecutableSigning.cmake
index 41ca5762dc..069fc12fc5 100644
--- a/cmake/macros/OptionalWinExecutableSigning.cmake
+++ b/cmake/macros/OptionalWinExecutableSigning.cmake
@@ -22,7 +22,7 @@ macro(optional_win_executable_signing)
         # setup a post build command to sign the executable
         add_custom_command(
           TARGET ${TARGET_NAME} POST_BUILD
-          COMMAND ${SIGNTOOL_EXECUTABLE} sign /fd sha256 /f %HF_PFX_FILE% /p %HF_PFX_PASSPHRASE% /tr http://tsa.starfieldtech.com /td SHA256 ${EXECUTABLE_PATH}
+          COMMAND ${SIGNTOOL_EXECUTABLE} sign /fd sha256 /f %HF_PFX_FILE% /p %HF_PFX_PASSPHRASE% /tr http://sha256timestamp.ws.symantec.com/sha256/timestamp /td SHA256 ${EXECUTABLE_PATH}
         )
       else ()
         message(FATAL_ERROR "HF_PFX_PASSPHRASE must be set for executables to be signed.")
diff --git a/cmake/templates/NSIS.template.in b/cmake/templates/NSIS.template.in
index fc9b9ab03d..55a46e7326 100644
--- a/cmake/templates/NSIS.template.in
+++ b/cmake/templates/NSIS.template.in
@@ -130,7 +130,7 @@
     ; The Inner invocation has written an uninstaller binary for us.
     ; We need to sign it if it's a production or PR build.
     !if @PRODUCTION_BUILD@ == 1
-      !system '"@SIGNTOOL_EXECUTABLE@" sign /fd sha256 /f %HF_PFX_FILE% /p %HF_PFX_PASSPHRASE% /tr http://tsa.starfieldtech.com /td SHA256 $%TEMP%\@UNINSTALLER_NAME@' = 0
+      !system '"@SIGNTOOL_EXECUTABLE@" sign /fd sha256 /f %HF_PFX_FILE% /p %HF_PFX_PASSPHRASE% /tr http://sha256timestamp.ws.symantec.com/sha256/timestamp /td SHA256 $%TEMP%\@UNINSTALLER_NAME@' = 0
     !endif
 
     ; Good.  Now we can carry on writing the real installer.

From 9772fc4e22c647914444b78e773fa406364ce517 Mon Sep 17 00:00:00 2001
From: "Anthony J. Thibault" <tony@highfidelity.io>
Date: Thu, 28 Jun 2018 14:04:59 -0700
Subject: [PATCH 2/4] Guard against memory corruption in Space::processResets()

Check the proxyID before reading from the _proxies vector and writing into the _owners vector.
---
 libraries/workload/src/workload/Space.cpp | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/libraries/workload/src/workload/Space.cpp b/libraries/workload/src/workload/Space.cpp
index 27a8639f3a..10e61c5661 100644
--- a/libraries/workload/src/workload/Space.cpp
+++ b/libraries/workload/src/workload/Space.cpp
@@ -44,6 +44,11 @@ void Space::processResets(const Transaction::Resets& transactions) {
     for (auto& reset : transactions) {
         // Access the true item
         auto proxyID = std::get<0>(reset);
+
+        // Guard against proxyID being past the end of the list.
+        if (proxyID >= _proxies.size() || proxyID >= _owners.size()) {
+            continue;
+        }
         auto& item = _proxies[proxyID];
 
         // Reset the item with a new payload

From 17f9a01fa20486eef87ee8c3c91eb8a4465f26e0 Mon Sep 17 00:00:00 2001
From: "Anthony J. Thibault" <tony@highfidelity.io>
Date: Thu, 28 Jun 2018 15:29:01 -0700
Subject: [PATCH 3/4] Fix signed unsigned compare warning

---
 libraries/workload/src/workload/Space.cpp | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/libraries/workload/src/workload/Space.cpp b/libraries/workload/src/workload/Space.cpp
index 10e61c5661..54fad79741 100644
--- a/libraries/workload/src/workload/Space.cpp
+++ b/libraries/workload/src/workload/Space.cpp
@@ -46,7 +46,7 @@ void Space::processResets(const Transaction::Resets& transactions) {
         auto proxyID = std::get<0>(reset);
 
         // Guard against proxyID being past the end of the list.
-        if (proxyID >= _proxies.size() || proxyID >= _owners.size()) {
+        if (proxyID < 0 || proxyID >= (int32_t)_proxies.size() || proxyID >= (int32_t)_owners.size()) {
             continue;
         }
         auto& item = _proxies[proxyID];

From 847cad46ca828f00eab0e2bb1931d15ad934581e Mon Sep 17 00:00:00 2001
From: Dante Ruiz <danteruiz102@gmail.com>
Date: Thu, 28 Jun 2018 16:25:34 -0700
Subject: [PATCH 4/4] fix billboard crash

---
 libraries/qml/src/qml/OffscreenSurface.cpp | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/libraries/qml/src/qml/OffscreenSurface.cpp b/libraries/qml/src/qml/OffscreenSurface.cpp
index f0c3dfdffd..dfd0a1d3c6 100644
--- a/libraries/qml/src/qml/OffscreenSurface.cpp
+++ b/libraries/qml/src/qml/OffscreenSurface.cpp
@@ -66,7 +66,7 @@ OffscreenSurface::OffscreenSurface()
 }
 
 OffscreenSurface::~OffscreenSurface() {
-    delete _sharedObject;
+    _sharedObject->deleteLater();
 }
 
 bool OffscreenSurface::fetchTexture(TextureAndFence& textureAndFence) {