- Fix missing -sasl_method '' in /NETWORK (#718, #719).
- Fix incorrect restoration of term state when hitting SUSP
inside screen (#737, #733).
- Fix out of bounds read when compressing colour
sequences. Found by Hanno Böck (GL#12, GL!18).
- Fix use after free condition during a race condition when
waiting on channel sync during a rejoin (GL#13, GL!19).
- Fix null pointer dereference when parsing certain malformed
CTCP DCC messages (GL#14, GL!20).
- Fix crash due to null pointer dereference when failing to
split messages due to overlong nick or target (GL#15, GL!21).
- Fix out of bounds read when trying to skip a safe channel ID
without verifying that the ID is long enough (GL#16, GL!22).
- Fix return of random memory when inet_ntop failed (#769).
- Minor statusbar help update. By Robert Bisewski (#758,
#763).
Security advisory: https://irssi.org/security/irssi_sa_2017_10.txt
This even makes it an option, to disable it if necessary. It is enabled by
default here since it remains disabled by default at run-time:
/set colors_ansi_24bit
Bumps PKGREVISION.
"Go for it" maya@
v1.0.4 2017-07-07 The Irssi team <staff@irssi.org>
- Fix null pointer dereference when parsing invalid timestamp (GL#10,
GL!15). Reported by Brian 'geeknik' Carpenter.
- Fix use-after-free condition when removing nicks from the internal
nicklist (GL#11, GL!16). Reported by Brian 'geeknik' Carpenter.
- Fix incorrect string comparison in DCC file names (#714).
- Fix regression in Irssi 1.0.3 where it would claim "Invalid time '-1'"
(#716, #722).
- Fix a bug when using \n to separate lines with expand_escapes (#723).
- Retain screen output on improper exit, to better see any error
messages (#287, #721).
- Minor help update (#729).
- Fix out of bounds read when scanning expandos (GL!11).
- Fix invalid memory access with quoted filenames in DCC
(GL#8, GL!12).
- Fix null-pointer dereference on DCC without address (GL#9, GL!13).
- Improve integer overflow handling. Originally reported by
oss-fuzz#525 (#706).
- Improve nicklist performance from O(N^2) to O(N) (#705).
- Fix initial screen redraw delay. By Stephen Oberholtzer
(#680, bdo#856201).
- Fix incorrect reset of true colours when resetting background. (#711).
- Fix missing -notls option in /SERVER. By Jari Matilainen (#117, #702).
- Fix minor history glitch on overcounter (#462, #685).
- Improved OpenSSL detection at compile time. By Rodrigo Rebello (#677).
- Improved NetBSD Terminfo detection. By Maya Rashish (#694, #698).
- Add missing syntax info for COMPLETION (#687, #688).
- Minor typo correction in help. By Michael Hansen (#707).
From maya@
build, and this update includes a security fix.
v1.0.2 2017-03-10 The Irssi team <staff@irssi.org>
- Prevent some null-pointer crashes (GL!9).
- Fix compilation with OpenSSL 1.1.0 (#628, #597).
- Correct dereferencing of already freed server objects during
output of netjoins. Found by APic (GL!10, GL#7).
- Fix in command arg parser to detect missing arguments in tail place
(#652, #651).
- Fix regression that broke incoming DCC file transfers (#667, #656).
- Fix issue with escaping \ in evaluated strings (#669, #520).
This needs glib2 to run, and glib2 depends on perl, so no reason not to
support perl scripting here.
Requested by Dominik Bialy in PR 52008.
Bump PKGREVISION.
v1.0.1 2017-02-03 The Irssi team <staff@irssi.org>
- Fix Perl compilation in object dir. By Martijn Dekker (#602, #623).
- Disable EC cryptography on Solaris to fix build (#604, #598).
- Fix incorrect HELP SERVER example (#606, #519).
- Correct memory leak in /OP and /VOICE. By Tim Konick (#608).
- Fix regression that broke second level completion (#613, #609).
- Correct missing NULL termination in perl_parse. By Hanno Böck (#619).
- Sync broken mail.pl script (#624, #607).
v1.0.0 2017-01-03 The Irssi team <staff@irssi.org>
* Removed --disable-ipv6 (#408).
* /connect Network now aborts with an error if no servers have been
added to that network (#443).
* /dcc commands now use quotes around spaces consistently.
* bell_beeps was removed (#524, #565).
* Switch to GRegex instead of regex.h (#412).
+ irssiproxy can now forward all tags through a single
port. By Lukas Mai (mauke, #425).
+ irssiproxy can also listen on unix sockets. By Lukas Mai (#427).
+ send channel -botcmds immediately when no mask is specified (#175, #399).
+ the kill buffer now remembers consecutive kills.
New bindings were added: yank_next_cutbuffer and append_next_kill
By Todd A. Pratt (#353, #414, #455)
+ connections will avoid looking up IPv6 addresses if the machine does
not have an IPv6 address assigned (exact behaviour is implementation
defined, #410).
+ Fix potential crash if scripts insert undef values into the completion
list (#413).
+ Paste warning is now also shown on pasting overlong
lines. By Manish Goregaokar (#426).
+ autolog_ignore_targets and activity_hide_targets learn a new syntax
tag/* and * to ignore whole networks or everything.
By Jari Matilainen (vague666, #437)
+ /hilight got a -matchcase flag to hilight case
sensitively. By Thibault B (isundil, #421, #476).
+ Always build irssi with TLS support.
+ Rename SSL to TLS in the code and add -tls_* versions of the -ssl_*
options to /CONNECT and /SERVER, but make sure the -ssl_* options continue
to work.
+ Use TLS for Freenode, EFnet, EsperNet, OFTC, Rizon, and IRC6 in the default
configuration.
+ Display TLS connection information upon connect. You can disable this by
setting tls_verbose_connect to FALSE.
+ Add -tls_pinned_cert and -tls_pinned_pubkey for x509 and public key pinning.
The values needed for -tls_pinned_cert and -tls_pinned_pubkey is shown
when connecting to a TLS enabled IRC server, but you can also find the
values like this: Start by downloading the certificate from a given IRC
server:
$ openssl s_client -connect chat.freenode.net:6697 < /dev/null 2>/dev/null | \
openssl x509 > freenode.cert
Find the value for -tls_pinned_cert:
$ openssl x509 -in freenode.cert -fingerprint -sha256 -noout
Find the value for -tls_pinned_pubkey:
$ openssl x509 -in freenode.cert -pubkey -noout | \
openssl pkey -pubin -outform der | \
openssl dgst -sha256 -c | \
tr a-z A-Z
+ Remove support for DANE validation of TLS certificates.
There wasn't enough support in the IRC community to push for this on the
majority of bigger IRC networks. If you believe this should be
reintroduced into irssi, then please come up with an implementation that
does not rely on the libval library. It is causing a lot of troubles for
our downstream maintainers.
+ /names and $[...] now uses utf8 string operations. By Xavier
G. (#40, #411, #471, #480).
+ New setting completion_nicks_match_case (#488).
+ /channel /server /network now support modify subcommand. By
Jari Matilainen (#338, #498).
+ Irssi::signal_remove now works with coderefs. By Tom Feist (shabble, #512).
+ /script reset got an -autorun switch (#540, #538).
+ cap_toggle can now be called from Perl, and fields
cap_active and cap_supported can be inspected (#542).
+ Make it possible to disable empty line completion. By Lauri
Tirkkonen (lotheac, #574).
+ New option sasl_disconnect_on_failure to disconnect when
SASL log-in failed (#514).
- IP addresses are no longer stored when resolve_reverse_lookup is
used.
- Removed broken support for curses (#521).
- Removed broken dummy mode (#526).
- Fix terminal state after suspend (#450, #452).
- Improve Perl library path detection (#479, #132).
- Reconnect now works on unix connections (#493).
- Fix completion warnings (#125, #496, FS#124).
- Fix a crash in the --more-- item (#501).
- Fix a display issue in /unignore (#517, bdo#577202).
- Fix a crash in some netsplits (#529, #500).
- Fix crashes with some invalid config (#550, #551, #563, #564, #587, #581, #570).
- Add support for SASL Fragmentation. By Kenny Root (kruton, #506).
- Improve netsplit dumping (#420, #465).
- Improve responsibility under DCC I/O strain (#578, #159).
- Fix query nick change on open (#580, #586).
- Correct a few help texts.
irssi 0.8.21 is a maintenance release without any new features.
Changes:
- Correct a NULL pointer dereference in the nickcmp function found by
Joseph Bisch (GL#1)
- Correct an out of bounds read in certain incomplete control codes
found by Joseph Bisch (GL#2)
- Correct an out of bounds read in certain incomplete character
sequences found by Hanno Böck and independently by J. Bisch (GL#3)
- Correct an error when receiving invalid nick message (GL#4, #466)
previously it would create a world readable file containing chat
logs when /upgrade was used.
while a security fix, you have to jump through many hoops to be
affected by it - we don't enable perl scripts by default, we
don't run that perl script by default, and you'd have to know that
/upgrade exists in the first place, and run on a system where world
readability of files is a concern.
still, grab upstream update, bump PKGREVISION.
catch up with irssi-icb, irssi-xmpp distinfo (they grab irssi versioned
file).
comment out part of irssi-xmpp makefile which is breaking the build.
irssi 0.8.20 changes:
- Correct the name of an emitted sasl signal (#484)
- Correct the prototype for the 'message private' signal (#515)
- Corrections in away and hilight help text (#477, #518)
- /squery and /servlist commands have been restored.
- Where Irssi would previously only report "System error" on connect,
it will now try harder to retrieve the system error message.
- Fixed issue with +channels not working properly (#533)
- Fixed crash in optchan when item has no server (#485)
- Fixed random remote crash in the nicklist handling (#529)
- Fixed remote crash due to incorrect bounds checking on
formats, reported by Gabriel Campana and Adrien Guinet from
Quarkslab.
Changes:
v0.8.19 2016-03-23 The Irssi team <staff@irssi.org>
- Fixed regression when joining and parting channels on IRCnet (#435)
- Fixed SASL EXTERNAL (#432)
- Fixed regression when not using SASL (#438)
- Fixed incorrect SSL disconnects when using SSL from modules/scripts
(#439)
- Fixed regression where proxy_string could not be configured or
certain file transfers could not be accepted (#445)
- Fixed storing layout of !channels (#183)
- Fixed restoration of bracketed paste mode on quit (#449)
- Make the usage of meta-O for cursor keys configurable with
/set term_appkey_mode off
v0.8.18 2016-02-13 The Irssi team <staff@irssi.org>
* Modules will now require to define a
void MODULENAME ## _abicheck(int *version)
method to ensure that they are compiled against the correct Irssi
version.
* The signature of "message private" has been changed to
5: server, message, nick, address, target
in order to support "self messages". Module authors should
implement this change if they are using this signal.
* Removing networks will now remove all attached servers and channels
(#45).
* The proxy module now has an /irssiproxy command.
* sb_search has been moved to scripts.irssi.org
* WIN32 has been completely removed (it had not been working and is
lacking a maintainer.)
* Garbage Collection support has been removed. This will hardly have any
effect for anyone given that it has been unsupported for several years.
+ CAP SASL PLAIN login is now supported natively.
+ Paste bracket markers can be requested from terminal with
/set paste_use_bracketed_mode on
+ "Self messages" generated by some bouncers can now be received in the
proper window.
+ Try to split long lines on spaces to avoid words being splitted. Adds
a new option: 'split_line_on_space' which defaults to on.
+ Add setting hilight_nick_matches_everywhere (#56).
+ The config parser is more robust and prints out better diagnostics on
incorrect config files.
+ Ctrl+^ (FS#721) and Ctrl+J can now be bound.
+ Command history can be cleared with /window history -clear
+ /hilight -mask -line is now supported (FS#275).
+ CHANTYPES are now supported.
+ Improved reload speed of ignores.
+ Add -date feature to /lastlog
+ irssiproxy can be more easily enabled and disabled.
+ Expando for hostname (FS#829).
+ UNIX sockets can now also be specified in the config file.
+ Disable SSLv3 due to the POODLE vulnerability.
+ SSL ciphers can now be specified per server.
+ Added SNI support for SSL.
- /ignore now respects -pattern on merge (#78).
- irssiproxy (BNC) module now uses correct line endings.
- Fix missing lines on large pastes (FS#905).
- Correctly preserve STATUSMSG prefixes (#291).
- Fix infinite recursion in key bindings (FS#817).
- Fix incomplete awaylog caused by buffering.
- Fix calculation of UTF-8 string length display in some cases.
- Fix some Perl warnings related to @ISA.
- EXEC windowitems now get proper references on the Perl side.
- Incremental help file improvements.
- ANSI attributes are now properly reset.
- Fixed regression where text would blink when terminal lacks color
support.
- Permit the usage of Freenode extban syntax in /ban (#150)
- Fixed regression in scriptassist on unload of scripts.
- Fixed regression in -actcolor %n
Problems found with existing distfiles:
distfiles/icb-5.0.9.tar.gz
distfiles/icb.2.1.4.tar.Z
distfiles/zenicb-19981202.tar.gz
No changes made to these /distinfo files.
Otherwise, existing SHA1 digests verified and found to be the same on
the machine holding the existing distfiles (morden). All existing
SHA1 digests retained for now as an audit trail.
from 0.8.16 to 0.8.17
(and also update accordingly chat/irssi-*/distinfo).
Changes:
v0.8.17 2014-10-11 The Irssi team <staff@irssi.org>
+ Document that SSL connections aren't properly handled during /UPGRADE.
See Github PR #39.
+ Synchronize scripts with scripts.irssi.org.
+ Performance enhancement of the nicklist as well as the window_item_find
function. See Github PR #24.
+ Disallow unloading of static modules.
+ Allow UTF-8 characters in /bind. See Github PR #18.
+ Split overlong outgoing messages instead of silently truncating them.
Adds two new options: 'split_line_end' and 'split_line_start'.
'split_line_end' contains a string added to the end of line fragments.
'split_line_start' contains a string added to the beginning of line
fragments. See Github PR #29.
+ Added special /ignore NO_ACT level to ignore only activity (see /help ignore).
+ Support for 256 and true color terminals (see Github PR #48).
+ Support for italics (see Github PR #58).
+ Rewrote many help files.
- Fixed various compiler warnings and use of deprecated functions.
- Fixed Perl API usage and added PERL_NO_GET_CONTEXT to reduce code size.
- Fixed format_get_text Perl API. See Github PR #23.
- Fixed gui_printtext_after and term_refresh_*() visibility. See Github PR #22.
- Fixed issue where UTF-8 characters was corrupted once for every 32k text.
See Github PR #12.
- Fixed redrawing issue with right-aligned statusbar.
- Fixed use-after-free bug with cached settings values. See Github PR #147.
PR pkg/48866 from Leonardo Taccari
Changes (from http://www.irssi.org/news/ChangeLog ):
Features:
* Add -noautosendcmd to /SERVER and /CONNECT. Passing this option will
force Irssi to not execute the content of the autosendcmd
chatnet-setting upon connect.
* Accept names replies with nick!user@host instead of just nick, if they
are enabled (see bug #805).
* Set window binds for channel items as sticky when re-creating window
binds as part of /layout save. This fixes the bug where previously
saved channel windows forgets their window number upon reconnect.
* Add experimental support for DNSSEC DANE validation of certificates.
* Strip the argument for boolean options (see bug #769).
* Freenode have been readded to the list of networks in the default
configuration file.
* Disabled support for the insecure SSLv2 protocol.
* Various documentation enhancements.
* Add -ssl_pass to /connect and /server (see bug #305).
Bugfixes:
* Fix crashing bug that can happen if the terminal height decreases
before the first window is created.
* Fixed minor compiler warnings.
* Fixed possible crashing bug when processing an octal escape sequence.
* Fixed the /ignore -network option (see bug #748).
* Fixed signal handling for /exec'd commands. Irssi now sends the signal
to the process group id instead of the process id.
* Fixed segfault generated by SSL disconnections (see bug #752).
* Fix compilation when build with -Werror=format-security. Patch by
Jaroslav Skarvada.
Do it for all packages that
* mention perl, or
* have a directory name starting with p5-*, or
* depend on a package starting with p5-
like last time, for 5.18, where this didn't lead to complaints.
Let me know if you have any this time.
a) refer 'perl' in their Makefile, or
b) have a directory name of p5-*, or
c) have any dependency on any p5-* package
Like last time, where this caused no complaints.
Features:
* Add active_window_ignore_refnum option With active_window_ignore_refnum ON, the current behavior for the active_window key (meta-a by default) is preserved: it switches to the window with the highest activity level that was last activated. With active_window_ignore_refnum OFF, the old behavior is used: it switches to the window with the highest activity level with the lowest refnum. (by Matt Sparks, bug #667)
* Show new Charybdis +q list in channel windows (numerics 728 and 729).
* Allow servers to belong to multiple networks.
* Improve paste detection. Irssi now detects a paste if it reads at least three bytes in a single read; subsequent reads are associated to the same paste if they happen before 'paste_detect_time' time since the last read. If no read occurs after 'paste_detect_time' time the paste buffer is flushed; if there is at least one complete line its content is sent as a paste, otherwise it is processed normally.
* Show "target changing too fast" messages in the channel/query window.
* Use default trusted CAs if nothing is specified. This allows useful use of -ssl_verify without -ssl_cafile/-ssl_capath, using OpenSSL's default trusted CAs.
* Show why an SSL certificate failed validation.
* Make own nick and actions use default colour instead of white (by Tim Retout).
Bugfixes:
* Change some characters illegal in Windows filenames to underscores in logs
* Fix disconnects when sending large amounts of data over SSL
* Show all nicks instead of just the first in an /accept * listing (Bug #704)
* Make several signals without parameters available to perl again. In particular, this includes the "beep" signal (by Matt Sparks, bug #674)
* Close the config file fd after saving (by Sven Wegener)
* Check if an SSL certificate matches the hostname of the server we are connecting to.
* Fix bash'isms, use command -v instead of which and use bc -l in /CALC.
* Fix a crash with handling the DCC queue.
* Fix crash when checking for fuzzy nick match when not on the channel. Reported by Aurelien Delaitre (SATE 2009).
Features:
* Make /reset an alias for /set -default.
* Make /unset an alias for /set -clear.
* Allow ctrl+home / ctrl+end to go to the beginning / end of scrollback.
* Accept WHOX reply (354 numeric) as a /who reply.
* Show numerics directed at channels in the channel window.
* The time duration parser is more strict now.
Bugfixes:
* Fix out of bounds access in event_wallops().
* Build fix for OS X.
* Fix the autolog_ignore_targets logic to work correctly with manually opened log files (see bug #673).
Also contains security fix for CVE-2009-1959 (patch-ab).
Based on patch provided by Leonardo Taccari in PR 41785.
ChangeLog for 0.8.13
Features:
* Reject some obviously invalid values in /set.
* Add perl bindings for Window::get_history_lines
* Use an io channel to write the config file.
* Use memory slices instead of memory chunks for text buffer.
* Remove methods to create/destroy TextBuffer and TextBufferView and low
level api to add/remove lines, scripts should be fine using
Window::print_after and TextBufferView::remove_line.
* Add print_after method to Window perl object analogous to
gui_printtext_after but which also expands formats and forces a full line.
* Better mapping of signal parameters to Perl. All signals used in scripts
now need to be registered with Irssi::signal_register.
* Add public header with interfaces to manage statusbar items (bug #535)
* Recode: assume utf-8 encoding for an ascii string in which no escape
character occurs (bug #392).
* Allow /BAN, /UNBAN, /KICBAN, /KNOCKOUT if channel is not synced.
Requesting ban lists from an unsynced channel will ask them from the
server, banning a user whose u@h irssi does not know will ban nick!*@* and
only bans irssi knows about can be removed.
* Allow storing multiple "other" prefixes such as +q and +a (original patch
by JasonX)
* Add /set autolog_ignore_targets for cherry-picking targets that shouldn't
get logged.
* Add support for 16 colors. Formats KBGCRMYW and mirc colors are now mapped
to colors 8-15. fe-text translates colors 8-15 to bold/blink+0-7 if the
terminal supports only 8 colors. If your theme uses one of the high color
formats and you really want bold you can change %FMT<string> to %fmt%_%_,
it will work fine in all irssi versions.
* Better 005 PREFIX support (bug #580).
* Display 407 numerics other than "duplicate channel".
* Fix display of ratbox-style operspy whois.
* Recode outgoing irc away messages (bug #412).
* Recode outgoing irc quit messages.
* Remove scrollback_levelclear_levels setting and add a 'level' option to
'sb levelclear' to specify a comma separated list of levels.
* Add perl __WARN__ handler for scripts (bug #427).
* Add Irssi::command_parse_options function to parse options for a command.
* Revert recode changes introduced in 0.8.12.
* Add completion for /WINDOW SERVER.
* Support for reading kicks/msgs from TARGMAX/MAXTARGETS 005 tokens.
* Enhancements to the redirections code.
* Support for RPL_WHOISACTUALLY (338 numeric) for both ratbox and ircu
(bug #428).
* -idle option of /notify is gone.
* /layout save now makes window-channel bindings instantly effective
(bug #35).
* /ping without arguments does not send anymore a ctcp ping to a channel
(bug #542).
* Track IRC operator status of nicks a bit better.
* new 'actlist_names' option to add active items names in 'act' statusbar
item.
* new 'word_completion_backward' command to scroll backwards in the
completion list.
* add 'list' option to /bind to print all the available commands.
* show setter/time in +I lists
* apply -usermode before -autosendcmd (bug #548).
* reduce memory usage of the scrollback buffer and make the display in /sb
status more accurate (higher).
* fix data getting dropped when a lot is sent at a time (e.g. when attaching
to irssi-proxy, bug #528).
* introduce the type Irssi::Irc::Client and signals to communicate with
proxy clients to allow for scripting parts of the irssi-proxy.
* Add sb_search.pl, a script for /SCROLLBACK SEARCH
Bugfixes:
* Fix /NOTIFY list when nick is seen joining (bug #642).
* Include hostmask in 001 event sent by proxy (bug #650).
* Be more power-friendly: don't run any always-on <1s timers (bug #641).
* Don't get confused by a failed /JOIN -window (bug #644).
* Properly initialize embedded Perl (PERL_SYS_INIT3).
* Replace invalid utf-8 bytes with U+FFFD when drawing a line.
* Properly unload the original script when using /script load to reload it.
(bug #525, patch by Lukas Mai)
* Clean up script loading in general:
* Don't leak local variables to eval'd code.
* Set filename/line number to get better error messages from perl.
* Use three-arg open and lexical filehandles to avoid surprises.
* Include error reason in message for unopenable scripts.
* Don't wrap script code in sub handler { } - this avoids spurious
warnings and should at least allow __END__ to work properly. (Patch by
Lukas Mai)
* Fix NETSPLIT_SERVER_REC in signals for Perl.
* Remove buggy /SCROLLBACK redraw and /SET scrollback_save_formats.
* Always preserve the active mainwindow when resizing.
* Ignore DNS not found errors when considering reconnect.
* Do not strip the comma in a mirc color if it is not followed by a digit
(bug #250).
* Fix building perl module with perl-5.10 (bug #630).
* fix leak with $L expando.
* fix possible crash with /script reset.
* ignore exceptions take precedence over ignores in all cases.
* honour -channels preference for ignore -replies (bug #227).
* Fix mode display in whois with unreal (379 numeric) (bug #479).
* Fix regressions that prevented external modules from building/working
(bugs #537#539).
* Fix /set hilight_level not taking effect immediately (bug #598).
* Fix bold, blinking and indentation in /LASTLOG and buf.pl.
