| AArch64 | |
| ppc64le | |
| s390x | |
| x86-64 |
- update to 1.4.4
* Expose location of signals.txt via pkg-config
+ Levels can now be inverted using `^' prefix in the /WINDOW
(HIDE)LEVEL commands
+ Support receiving monospace
- Fix config broken by /WINDOW LOGFILE without parameter
- Fix broken /LASTLOG -window switch
- Fix logic in how actions are printed for other protocols
- Fix stale special collector use after free
CVE-2023-29132 boo#1210077
- Help and message fixes
- update to 1.4.3
- Fix freeze on Alt+arrows (#1416, #1417)
- Fix crash on /upgrade (#1399, #1419)
- Fix saving of -disallow_starttls (#1401, #1420)
- Fix libnv detection on FreeBSD (freebsd#265397, #1407). By
Guido Falsi and Kristof Provost
- Minor help and script fixes (#1380, #1393, #1411, #1413,
[#1414], #1415)
- drop patches; upstreamed
- drop use-isystem-for-include.patch, upstreamed
- drop fix-textbuffer-view.patch, upstreamed
- drop default-hash-chan.patch, upstreamed
- update to 1.4.2
* Add irssimoduledir to irssi-1.pc in the Meson build (#1383,
[#1378])
- Use -isystem includes, limiting warnings to Irssi
code. Fixes compilation with Perl 5.36 (#1381,
gentoo#851522, #1384)
- Fix missing lines when changing dynamic textbuffer contents
(#1382, #1387). Reported by externalserver15
- Fix Perl cross compilation with Meson 0.60.0 (#1377)
- Fix default channel prefix used for /JOIN to default to `#'
(#1385, #1388)
- Fix crash in /LASTLOG by getting line texts before printing
(#1367, #1398)
- backport first set of fixes:
- add use-isystem-for-include.patch, fixes build with perl 5.36
(#1381)
- add fix-textbuffer-view.patch, fixes lost lines on display
(#1382)
- add default-hash-chan.patch, default to joining #-channels
again (#1385)
- drop irssi.conf, upstream does not install it anymore
- drop SOCKS support and related patch
irssi-0.8.16_missing_prototype_warnings.patch, was not working
- drop irssi-1.2.3-add-libera.patch, upstream
- drop irssi-rpmlintrc, did not match
- drop botti, not supported by upstream
- update to 1.4.1
! Note: botti no longer compiles; get in touch if you use it
* Format the output of /QUOTE HELP (#1371, an#82). By Val
Lorentz. Add /SHELP as default alias (an#83)
+ GLib log message filter: /SET glib_log_domains (an#50,
an#59). By Andrej Kacian
+ An option to clear the cutbuffer:
/SET empty_kill_clears_cutbuffer (an#58). By Mikael
Magnusson
+ Scriptable pastebin (an#60, an#88)
+ Configurable actlist separator: /SET actlist_separator
(#1364, an#61)
- Fix window left/right not skipping visible windows
(an#57). By Mikael Magnusson
- Fix wrong printf-format on OpenBSD (an#66, an#68). Reported
by Aaron Bieber
- Fix erroneous output produced by autoload_modules (an#72)
- Fix scroll_page_count setting with `.' (#1365, an#76)
- Fix memory leak in /IGNORE (#1373, an#84). Found by Jookia
- Misc fixes (an#45, an#67, an#70, #1368, an#77)
- CHANTYPES take precedence over (missing) STATUSMSG in /join
(#1358, an#54)
- Fix crash in Perl's $view->set_bookmark (freebsd#254237,
an#56)
- Minor help fixes (an#51, an#52)
- Fix regression where own channel status was forgotten after
/UPGRADE (#1357, an#53)
* /SET resolve_reverse_lookup setting was removed (#1034,
[#1135])
* Irssi will try to connect on IPv4 if IPv6 connection failed
(#1146). By Shivaram Lingamneni
* The display system now renders formats on the fly (#1079,
[#1188], #1191, #1192, #1204, #1205, #1209, #1349, #1355,
an#13, an#14, an#28, an#29, an#36, an#37, an#49)
This major change will break scripts that try to modify
printed text during "print text" signal (#1189). They need
to be ported to modify the text during "print format"
instead. It also breaks the usage of using /FORMAT to add
different colours to a line. Such usage needs to be ported
to using $expando variables instead. Affected scripts
include format_identify.pl, friends_peder.pl, nickcolor.pl,
nm.pl, people.pl
The "gui print text finished" and "gui print text after
finished" signals gained a TEXT_DEST_REC *parameter in the
process.
A new "gui render line text" signal is available to change
the rendering of a line
* made the $Z expando (time) dynamic (#1087, #1207, #1208)
This change breaks the usage of /SET timestamp_format to
supply a custom displayed time stamp. Affected scripts
include binary_time.pl
* /HILIGHT -priority now affects which hilight rule gets
applied (#1228, #1232)
* The NAMES list is now hidden by default if there are more
than 18 users on the channel (an#7)
To revert to the previous behaviour
/SET show_names_on_join_limit -1
* -tls_verify is now enabled by default (#1170, an#18, #1309,
an#23, #1343, #1351)
This may cause an ugly display of notls_verify in the output
of /SERVER LIST, even on plain-text connection, on old
configs. Kindly remove the "tls_verify = "no";" entries from
your config file manually.
* Irssi will now attempt STARTTLS if advertised (#1170, #1312,
an#19)
Use -disallow_starttls if you absolutely do not want this
In order to check for a STARTTLS advertisement, Irssi will
now wait for a response (even an error) to CAP LS 302. If
your bouncer/server does not want to communicate before
receiving USER/PASS at all, use -nocap to disable the CAP
check.
* Channel sync requests (WHO, MODE) are now sent "later" than
user commands. This should improve responsiveness to user
commands in the autojoin phase (an#26, an#32, an#33)
* Irssi is now using full paths in #include directives and
consequently does not add all directories to the include
path anymore (#1040)
* The Build System was ported to Meson (#1064, #1065, #1068,
[#1071], #1072, #1073, #1074, #1075, #1084, #1085, #1118, #1166,
[#1223], #1224, #1245, #1313, #1314, an#31)
* Scriptassist was changed to use a YAML database (#1163)
It will tell you when you need to update your setting
* /BIND shows all partial matches (#1155)
* Cleanup of unused functions (#1017, #1132, #1145, #1182,
[#1246], #1264)
Functions removed:
NET_CALLBACK
NET_HOST_CALLBACK
RESOLVED_NAME_REC
net_gethostbyaddr_nonblock
net_connect_nonblock
[ SIMPLE_THREAD_REC, simple_init, simple_readpipe ]
hash_save_key
Functions deprecated:
dec2octal
g_timeval_cmp
get_timeval_diff
Function names corrected:
g_input -> i_input
g_istr -> i_istr
g_io_channel -> i_io_channel
g_hash_free_value -> i_hash_free_value
remove g_free_true
gslist -> i_slist
glog_func -> i_log_func
glist -> i_list
If multi-version compatibility is desired, module authors
can find an example of backwards compatible code in
cdidier/irssi-xmpp#55
+ Add MSGLEVEL_HIDDEN to Perl (#1044)
+ Add $view->set_hidden_level and $view->remove_lines_by_level
to Perl (#1026)
+ Add a /SET scrollback_max_age setting (#1022). By Heikki
Orsila
+ Add /SET actlist_prefer_window_name (#1025)
+ Add -window option to /CAT (#1023, #1159)
+ Add an option to list specific sections with
/SET -section lookandfeel
(#1048)
+ Add support for IRCv3 CAP LS 302 (#1091)
+ Add a new "print noformat" signal that goes together with
"print format" (#1088, #1192)
+ Add support for IRCv3 extended-join. /SET show_extended_join
to enable (#1097, #1107, #1124)
There are two new /FORMATs, join_extended and
join_extended_account, that theme writers need to take into
account if desired.
+ Add support for IRCv3 setname (#1093, #1104, #1254, GL#33)
+ Add support for IRCv3 account-notify (#1100, #1098, GL#33,
[#1105], #1131). Credit to oss-fuzz
/SET show_account_notify to enable
+ Add support for IRCv3 invite-notify (#1094)
+ Add support for receiving IRCv3 message-tags (#576, #1090)
+ Add support for sending IRCv3 message-tags (#1092, an#34)
+ Enable the znc.in/self-message CAP by default (#1123)
+ Add support for IRCv3 away-notify. /SET away_notify_public
to enable (#1099, GL#33, #1105)
+ Add support for IRCv3 chghost (#1096, GL#33, #1105)
For servers with broken chghost implementation that fill the
status window with host changed messages, one may add "quote
cap req -chghost" to the -autosendcmd or, if the host change
messages are entirely undesired, "/format -delete
host_changed"
+ Add support for IRCv3 server-time. /SET show_server_time to
enable (#1108)
+ Add support for logging IRCv3 server-time.
/SET log_server_time to disable (#1318, an#16)
+ Add IRCv3 features to signals.txt (#1111)
In particular, "message join" now takes 2 additional
arguments, script and module authors must beware of this
change.
+ Show the unignore time in /IGNORE output (#1158, #1161)
+ Add /SET quit_on_hup to make the behaviour of SIGHUP
configurable (#828, #1169). By Pinguin1234
+ Support numeric 489 as ERR_SECUREONLYCHAN (#1193, #1196). By
Michael Hansen
+ Improve support for building Irssi in Termux-Android with
Meson (#1199)
+ Add usermode key to Irssi::Irc::Chatnet in Perl (#1288). By
Jessica Sophie Porter
+ Add format_string_expand and format_string_unexpand
functions to Perl (#1286)
+ Add ...->format_create_dest(...)->printformat("format",
args...) and ...->printformat_module("module", "format",
args...) methods to Perl (#1284)
You can avoid any CORE::GLOBAL::caller hacks using the
printformat_module method, especially sind that hack was not
safe during signal emissions
+ Add tracking of user accounts in the channel nicklist using
WHOX on join (#1250)
+ Add auto-loading of the Perl and otr module from /SET
autoload_modules (#1295)
+ Add /IGNORE ... NOHILIGHT to ignore some hilights (#1260)
+ Do not beep on hidden lines with /SET beep_msg_level
... -HIDDEN (#1259)
+ Added /CS, /MS, /NS, and /OS aliases to the default config
(#1316). By Mathis Beer
+ Allow -tls_ca{file,path} '' to unset an argument (#730,
[#1060], an#30)
+ Add a "server outgoing modify" signal to intercept outgoing
messages (#1148, #1151, an#15, an#43). Original by
JustAnotherArchivist
- remove some hard-coded 510 byte assumptions (#1086)
- Several fixes for error checks in SSL (#944, #1037, #943,
[#1036]). Reported by Chi Li
- Wrong variable tested in mask_match (#902, #1035)
- Fix bug where irssi-proxy with `?'-port would not reconnect
(#1041)
- Allow shrinking of /SET rawlog_lines (#957, #1020). By
Marcus "Teschi" Prinz
- Fix /WINDOW BALANCE warning (#1054)
- fix overflow when first command history entry expires
(#1070)
- begin modularising IRC module (#1067, #1112, #1113)
- fix some memory leaks in /DCC RESUME and settings_add
(#1077). By Zero King
- fix cut-off text with theme_indent module and /SET
indent_always OFF (#1078)
- fix the cap_queue order (#1095)
- add reference counted strings (#1089)
- Fix irc_op_public messages not triggering hilights (#354,
[#891], #1129). By Dan Collins
- Fix /IGNORE not setting the right level in irc_op_public
messages (#1280). Credit to oss-fuzz
- Fix GTimeVal deprecation (#1141, #1144, #1145, #1350, an#44)
If multi-version compatibility is desired, module authors
can find an example of backwards compatible code in
cdidier/irssi-xmpp#53
- Fix /IGNORE ... MODES NO_ACT not working (#1164)
- Deprecated -ssl* options are hidden from tab completion
(#1171)
- Make /SET actlist_sort a choice type (#1198)
- Fix crash from self-unloading script (#1206). By Thomas
Stagner
- Fix crash during Perl signal emission (#1233, #1234)
- Fix a case where empty lines or comments inside channels or
servers in the config would confuse Irssi (#1062, #1242,
[#1243])
- Fix reported freezing in DCC GET on slow disks (#159, #1271)
- Fix message-tags parsing (#1274, #1275). Credit to oss-fuzz
- Fail redirects when receiving numeric 263 (RPL_TRYAGAIN) in
response to /WHO (#1283)
- Some updates to .gitignore (#1302). By Rene Kita
- Fix build on operating systems with X/Open Curses, version 2
(#1305, #1308). By Nia Alarie (Regression introduced with
[#1290], alternative fix for Irssi 1.2.3 no-term.h.patch)
- Fix otr module not using g_strndup, e.g. on Solaris 10
(#1315). By Claes Nästén
- Fix cursor getting stuck for auto completions that changes
case (#1176, #1322, an#8). By ffrogman
- Restore operation of tag/* in /SET activity_hide_targets
(#1337, an#11) nb. the ::all syntax was working in Irssi 1.1
and 1.2 (and continues to work)
- Fix /SERVER ADD -matrix -network my_matrix_network
(an#12). By Andrej Kacian
- Fix /SERVER ADD creating duplicated entries in the config
file (#1317, an#22, an#41)
- Fix critical when SASL user is set and SASL password is
empty (#1325, an#21)
- Misc fixes (#1106, #1141, #1272, #1297, an#35)
- Fuzz fixes (#1116, #1117, #1119, #1125, #1126, an#20)
- Build system fixes (#1101, #1102, #1069, #1140, #1181, #1253)
- Sync docs and scripts (an#39)
- Text and Help updates
- add -tls_* options to manual (#1029, #1030). By Jacob
V. Rasmussen
- missing targets in /MSG (#1032)
- wrong parameter in /ECHO (#1024)
- Spelling in OTR (#1047). By David Gall
- Clarify statusbar priority (#1049). By Marius Gedminas
- Document get_irssi_dir in Perl (#1051, #1052). By Alex
Shafer
- typo in /HILIGHT help (#1081). By DFrostByte
- improved clarity of your_nick_owned (#1138). By Mike Quin
- Update some URLs to https (#1163)
- Add documentation for escaping some characters (#1329,
[#1330], an#9). By Guntbert Reiter
- Fix some typos (#1336, an#10). By Francis Mteo
- Document $abiversion and parse_special (an#38). By bw1
- Infrastructure updates:
- Support for Github Actions (#1039, #1103, #1160, #1212,
[#1231], #1252, #1261, an#40)
- Run clang-format on pull requests (#1172, #1173, #1184,
[#1230], #1247, #1287)
- Run abidiff on pull requests (#1179, #1195)
- Test CI-Fuzz (#1279, #1304, an#17)
- add the Libera chat network to the default configuration to improve the new user experience - irssi-1.2.3-add-libera.patch
- update to 1.2.3 (boo#1184848)
- Fix the compilation of utf8proc (#1021)
- Fix wrong call to free. By Zero King (#1076)
- Fix a colour reset in true colour themes when encountering
mIRC colours (#1059)
- Fix memory leak on malformed CAP requests (#1120)
- Fix an erroneous free of SASL data. Credit to Oss-Fuzz (#1128,
[#1130])
- Re-set the TLS flag when reconnecting (#1027, #1134)
- Fix the scrollback getting stuck after /clear (#1115, #1136)
- Fix the input of Ctrl+C as the first character (#1153, #1154)
- Fix crash on quit during unloading of modules on certain
platforms (#1167)
- Fix Irssi freezing input after Ctrl+Space on GLib >2.62 (#1180,
[#1183])
- Fix layout of IDCHANs. By Lauri Tirkkonen (#1197)
- Fix crash when server got reconnected before it was properly
connected (#1210, #1211)
- Fix multiple identical active caps (#1249)
- Minor help corrections (#1156, #1213, #1214, #1255)
- Remove erroneous colour in the colorless theme. Reported and
fixed by Nutchanon Wetchasit (#1220, #1221)
- Fix invalid bounds calculation when editing the text
entry. Found and fixed by Sergey Valentey (#1269)
- Fix passing of negative size in buffer writes. Found and
fixed by Sergey Valentey (#1270)
- Fix Irssi freezing on slow hardware and fast DCC transfers (#159,
[#1271])
- Fix compilation on Solaris (#1291)
- Fix null pointer dereference when receiving broken JOIN
record. Credit to Oss-Fuzz (#1292)
- Fix crash on /connect to some sockets (#1239, #1298)
- Fix Irssi rendering on Apple ARM. By Misty De Méo (#1267,
[#1268], #1290)
- Fix crash on /lastlog with broken lines (#1281, #1299)
- Fix memory leak when receiving bogus SASL authentication
data. Found and fixed by Sergey Valentey (#1293)
- added glib-2-63.patch:
- Backport a fix that froze Irssi on GLib >2.62 when typing
Ctrl+Space (#1180, #1183)
- update to 1.2.2
- Fix a use after free issue when receiving IRCv3 CAP
information from the server (GL#34) CVE-2019-15717
- Fix a crash during startup when windows weren't fully
initialised yet (#1114, bdo#935813)
- update to 1.2.1
! Contains all changes from 1.1.3
! Contains all changes from 1.0.8
- Fix a test on big endian machines (#1014)
- Fix the compile time conditionality of wcwidth
implementation (#1019, gentoo#677804, #720)
- Fix /save no longer working on old Solaris (pre
POSIX.1-2008) (#1042, #1043)
- Fix regression of #764 where display of 8-bit (legacy
encoding) in the input prompt was broken (#1018,
[#1057]). Initial patch by Артём Курашов
- Fix regression of #779 where autolog_ignore_targets would
not matching itemless windows anymore (#1012, #1013)
- Fix a use after free issue when sending the SASL login on
(automatic and manual) reconnects (#1055, #1058). Reported
by ilbelkyr. CVE-2019-13045
- update to 1.2.0
* Improved the /STATUSBAR commands (#858)
* /SET no longer shows `=' between setting and value (#886)
* /CUBES removed from default config (available as script)
(#956)
* /1 /2 /3 ... removed from default config (available as new
setting window_number_commands) (#958)
* Always redraw the screen on resize. By David Phillips (#896)
* Private notices intended for channels are now displayed on
the channel (new setting notice_channel_context) (#959)
+ Imported the "Off-the-record" module into Irssi tree (#854,
[#589], #196)
+ Initial support for sideways split windows (#697, #431,
[#224], #807, FS#310, #947, #955, #989)
+ Change the implementation of `wcwidth'. This is used to
calculate the width of emojis on your terminal screen (#917,
[#720])
+ Make the wcwidth functions available from Perl (#973):
string_width(str)
string_chars_for_width(str, width)
wcwidth(char)
+ Added completion_keep_word setting (#979)
+ Allow activity_hide_targets to hide activity in itemless
windows (#967, #997, #1001, #1003)
+ Added activity_hide_visible setting (#990)
+ Allow hiding of lines through the /IGNORE system (#901,
[#900], #892, #890, #884, #937)
+ Add window_default_hidelevel setting. By Doug Freed (#941)
+ Add activity_hide_window_hidelevel setting, defaulting to ON
(#938)
+ Add autolog_only_saved_channels setting, to autolog only
channels that are in the config (#968)
+ Add format support for the input line. By Ben Paxton,
originally by Jonas Hurrelmann (#764, FS#621, #1004)
use Irssi::TextUI;
gui_input_set_extent(pos, text)
gui_input_set_extents(pos, len, left, right)
gui_input_clear_extents(pos, len)
gui_input_get_extent(pos)
gui_input_get_text_and_extents()
gui_input_set_text_and_extents(...)
+ Parsing of IRCv3 CAP 3.2 (#775, #869)
+ Show CAP-related events in the user interface (#918, #916,
[#870], #704)
+ Continue using separators when addressing multiple nicks
with tab completion. By Manish Goregaokar (#822)
+ Bind Shift-tab by default. By Niklas Luokkala (#830, #829)
+ Fuzzing more things (#913, #780, #813)
- Disconnect SASL properly in case the SASL module got
unloaded from server (#931, #629, #618, #616)
- Fix backward completion jumping to the first instead of last
word (#979)
- Improve empty topic handling (#961, #905, #911, #897, #888)
- Prevent config truncation when no space left. By dequis and
Lukas Waymann (#922, #925, #910, #909, #906, #871, #817)
- Also time-out servers in lookup phase (#866, #130)
- Fix build with LibreSSL 2.7. By Dorian Harmans (#865)
- Fix a crash when appending to a textbuffer without
line. Reported by Jari Matilainen (#862)
- Fix segfault on sending large messages (#803, #796, #802)
- Fix segfault on invalid statusbar config (#993, #994)
- Fix random memory writes on restoring queries of foreign
protocols (#999, #1000)
- Make default keybinds deletable (#859, #507)
- Fix freeze when resizing Irssi very small (#946)
- Compare channels case-insensitively, avoiding confusions
with the config file (#857, #856)
- Fix DCC GET on Android. By Martin Staron (#844)
- Improve rawlog performance (#957)
- Fix nick escaping erroneously escaping quotes (#978, #974,
[#709])
- Protect against theme recursion, improve padding
performance, limit alignment padding. Credit to Oss-Fuzz
(#835, #851, #850, #846, #848)
- Fix recursive loop in replaces (#833, GL#23)
- Fix headers for compilation of C modules (#939)
- Documentation. By Zero King (#814). (#852)
- Sync NEWS, docs, scripts (#849, #855)
- Build system (#868, #867, #985, #988)
- Fix build on IBM i and AIX. By Calvin Buckley (#975)
- Misc fixes (#840, #839, #843, #953, #962). Tests (#806,
[#875], #905, #964, #1011). Fuzzing (#929).
- Trim filler wording from description.
- disable PIE on sle11
- update to 1.1.3
! Contains all changes from 1.0.8
- Fix regression of #779 where autolog_ignore_targets would
not matching itemless windows anymore (#1012, #1013)
- Fix a use after free issue when sending the SASL login on
(automatic and manual) reconnects (#1055, #1058). Reported
by ilbelkyr. CVE-2019-13045 bsc#1139802
- update to 1.1.3
! Contains all changes from 1.0.8
- Fix regression of #779 where autolog_ignore_targets would
not matching itemless windows anymore (#1012, #1013)
- Fix a use after free issue when sending the SASL login on
(automatic and manual) reconnects (#1055, #1058). Reported
by ilbelkyr. CVE-2019-13045 bsc#1139802
- update to 1.1.2
- Fix the resetting of window hiddenlevel (#861)
- Fix clearing of hidelevel in layout (#951)
- Fix accessing unallocated text when checking entry position
(#930)
- Fix uninitialised memory on empty lines (#873, GL#31, #878,
[#877], #907, #914)
- Fix use-after-free on expiration of hidden lines (#948)
(CVE-2019-5882 boo#1121396)
- Fix use-after-frees. By Maya Rashish (#919)
- Fix out of bounds access in help display when window width
is small (#949)
- Fix paste_join_multiline (#971)
- Correctly check for errno when displaying SSL errors. By
Janik Rabe (#895)
- Fix wrong signal emission argument count (#965)
- Documentation (#920). Sync NEWS, scripts (#849)
- Fix Perl detection on MacOS. By Dominyk Tiller (#927)
- Misc fixes. By Jaroslav Škarvada (#982)
- update to 1.1.2
- Fix the resetting of window hiddenlevel (#861)
- Fix clearing of hidelevel in layout (#951)
- Fix accessing unallocated text when checking entry position
(#930)
- Fix uninitialised memory on empty lines (#873, GL#31, #878,
[#877], #907, #914)
- Fix use-after-free on expiration of hidden lines (#948)
(CVE-2019-5882 boo#1121396)
- Fix use-after-frees. By Maya Rashish (#919)
- Fix out of bounds access in help display when window width
is small (#949)
- Fix paste_join_multiline (#971)
- Correctly check for errno when displaying SSL errors. By
Janik Rabe (#895)
- Fix wrong signal emission argument count (#965)
- Documentation (#920). Sync NEWS, scripts (#849)
- Fix Perl detection on MacOS. By Dominyk Tiller (#927)
- Misc fixes. By Jaroslav ?karvada (#982)
- update to 1.1.1 (bsc#1081238):
- Restore compatibility with OpenSSL < 1.0.2 (#820, #831)
- Fix test compilation on some platforms (#815, #816)
- Fix portability and backwards compatibility of test runner
(#818, #845)
- Prevent use after free error during the execution of some
commands. Found by Joseph Bisch (GL#17, GL!24).
- Revert netsplit print optimisation due to crashes (#465, #809,
[#812], #819, #824). CVE-2018-7054
- Fix use after free when SASL messages are received in
unexpected order (GL#26, GL!33). CVE-2018-7053
- Fix null pointer dereference in the tab completion when an
empty nick is joined (GL#24, GL!31). CVE-2018-7050
- Fix use after free when entering oper password (GL#22,
GL!32).
- Fix null pointer dereference when too many windows are
opened (GL#27, #837). CVE-2018-7052
- Fix out of bounds access in theme strings when the last
escape is incomplete. Credit to Oss-Fuzz (#842). CVE-2018-7051
- Fix out of bounds write when using negative counts on window
resize (GL#25, GL#29, #836).
- Minor help correction. By William Jackson (#834).
- update to 1.1.0
* Changes
+ Colour is now re-set when reaching a comma, matching mIRC
behaviour
+ Irssi now shows the initial nick and name on first start
+ lynx is no longer required to run autogen.sh
+ The command history no longer permits wrapping around
+ /foreach now correctly sends arguments as commands, stopping
you from embarassing AMSGs
+ /server does not connect to servers anymore, use /server
connect to change servers
+ The net_ip_compare API function is now deprecated, and the
previously deprecated net_connect has been removed
* Additions
+ Add an option to ignore all channels or ignore all queries
using /set activity_hide_targets
+ Add a startup warning if the TERM var is wrong inside tmux /
screen
+ Add option to hide certain levels from the textbuffer using /
window hidelevel
+ Irssi now has its first unit test (for mode parsing)
+ Added access to global command history when using window
history, and a binding to erase entries from the command
history (erase_history_entry)
+ -alternate_nick is now available as a network specific
property
+ On FreeBSD, Irssi now supports Capsicum sandbox (/capsicum
enter)
+ Filenames (directories) ending with a / now tab-complete
+ UTF-8 should now work in regular expressions when using
GRegex (the default)
+ Nicks are now properly escaped on completion
+ /server add -port now works
+ Add a setting key_timeout to make key sequences
automatically re-set when not finished
+ Warn users about expired client certificates, as servers
may refuse them
+ Add a new net_start_ssl function for StartTLS. This is
available from ABI 8 and can be used by protocol modules
+ The %# code is now stored in the textbuffer, so for example
web scripts can make use of it
+ Add new setting break_wide which can be used to enable
breaking of wide characters (for east-asian users)
+ Add fuzzing code
* Fixes
+ Netsplits show properly again
+ Do not error on blank lines when using /exec -o
+ Detect used nickname as reported by server
+ Prevent use after free error during the execution of some
commands
+ Fix MODE parameter parsing when colon was used at a place
Irssi didn't expect
+ Fixed code to compile with -Werror=declaration-after-statement
+ Clang-format is now supported for git-clang-format
+ Fix use after free when changing the network of hilights
+ Fix positioning error when tab-completing non-ascii strings
+ In-development issues
+ Clarify Alis in /help list
+ Improve /lastlog performance from O(N^2) to O(N)
+ Fix a segfault on "script destroyed" signal
+ Fix early ISON error
+ Documentation improvements
+ Minor cleanups
+ Fix space issue in glib-2.0.m4
- cleanup with spec-cleaner
- drop regex-patch-653.patch
* fixed upstream in 79bbca4644cad7f2dee89c7ac6b8f9acc2c8b427
- update to 1.0.6 (bsc#1074958)
- Fix invalid memory access when reading hilight configuration
(#787, #788).
- Fix null pointer dereference when the channel topic is set
without specifying a sender (GL#20, GL!25). CVE-2018-5206
- Fix return of random memory when using incomplete escape
codes (GL#21, GL!26). CVE-2018-5205
- Fix heap buffer overflow when completing certain strings
(GL#19, GL!27). CVE-2018-5208
- Fix return of random memory when using an incomplete
variable argument (GL#18, GL!28). CVE-2018-5207
- update to 1.0.5 (boo#1064540)
- Fix missing -sasl_method '' in /NETWORK (#718, #719).
- Fix incorrect restoration of term state when hitting SUSP
inside screen (#737, #733).
- Fix out of bounds read when compressing colour
sequences. Found by Hanno Böck (GL#12, GL!18). CVE-2017-15228
- Fix use after free condition during a race condition when
waiting on channel sync during a rejoin (GL#13, GL!19).
CVE-2017-15227
- Fix null pointer dereference when parsing certain malformed
CTCP DCC messages (GL#14, GL!20).
CVE-2017-15721
- Fix crash due to null pointer dereference when failing to
split messages due to overlong nick or target (GL#15, GL!21).
CVE-2017-15723
- Fix out of bounds read when trying to skip a safe channel ID
without verifying that the ID is long enough (GL#16, GL!22).
CVE-2017-15722
- Fix return of random memory when inet_ntop failed (#769).
- Minor statusbar help update. By Robert Bisewski (#758,
[#763]).
- update to 1.0.4
- Fix null pointer dereference when parsing invalid timestamp (GL#10,
GL!15). Reported by Brian 'geeknik' Carpenter. CVE-2017-10965
boo#1047709
- Fix use-after-free condition when removing nicks from the internal
nicklist (GL#11, GL!16). Reported by Brian 'geeknik' Carpenter.
CVE-2017-10966
- Fix incorrect string comparison in DCC file names (#714).
- Fix regression in Irssi 1.0.3 where it would claim "Invalid time '-1'"
(#716, #722).
- Fix a bug when using \n to separate lines with expand_escapes (#723).
- Retain screen output on improper exit, to better see any error
messages (#287, #721).
- Minor help update (#729).
- update to 1.0.3
- Fix out of bounds read when scanning expandos (GL!11).
- Fix invalid memory access with quoted filenames in DCC
(GL#8, GL!12). bsc#1043052 CVE-2017-9469
- Fix null-pointer dereference on DCC without address (GL#9, GL!13).
bsc#1043051 CVE-2017-9468
- Improve integer overflow handling. Originally reported by
oss-fuzz#525 (#706).
- Improve nicklist performance from O(N^2) to O(N) (#705).
- Fix initial screen redraw delay. By Stephen Oberholtzer
(#680, bdo#856201).
- Fix incorrect reset of true colours when resetting background. (#711).
- Fix missing -notls option in /SERVER. By Jari Matilainen (#117, #702).
- Fix minor history glitch on overcounter (#462, #685).
- Improved OpenSSL detection at compile time. By Rodrigo Rebello (#677).
- Improved NetBSD Terminfo detection. By Maya Rashish (#694, #698).
- Add missing syntax info for COMPLETION (#687, #688).
- Minor typo correction in help. By Michael Hansen (#707).
- add references to previous change
- irssi 1.0.2 fixes a vulnerability that could result in denial of
service or worse during a netjoin in certain circumstances (CVE
pending) bsc#1029020
- Prevent some null-pointer crashes (GL!9).
- Fix compilation with OpenSSL 1.1.0 (#628, #597).
- Correct dereferencing of already freed server objects during
output of netjoins. Found by APic (GL!10, GL#7).
- Fix in command arg parser to detect missing arguments in tail place
(#652, #651).
- Fix regression that broke incoming DCC file transfers (#667, #656).
- Fix issue with escaping \ in evaluated strings (#669, #520).
- Added regex-patch-653.patch from Upstream PR#653 to improve UTF8
support in GRegex
- irssi 1.0.1:
* Fix Perl compilation in object dir
* Fix incorrect HELP SERVER example
* Correct memory leak in /OP and /VOICE
* Fix regression that broke second level completion
* Correct missing NULL termination in perl_parse boo#1023638
* Sync broken mail.pl script
* Prevent a memory leak during the processing of the SASL
response boo#1023637
- Update to version 1.0.0
* irssiproxy can now forward all tags through a single port.
* The kill buffer now remembers consecutive kills. New bindings
were added: yank_next_cutbuffer and append_next_kill.
* autolog_ignore_targets and activity_hide_targets learn a new
syntax tag/* and * to ignore whole networks or everything.
* hilight got a -matchcase flag to hilight case sensitively.
* Display TLS connection information upon connect. You can disable
this by setting tls_verbose_connect to FALSE
* Certificate pinning for TLS certificates
* /names and $[?] now uses utf8 string operations.
* New setting completion_nicks_match_case
* /channel /server /network now support modify subcommand.
* New option sasl_disconnect_on_failure to disconnect when SASL
log-in failed.
- Drop not applied irssi-0.8.15_ssl_proxy.patch
- Run through spec-cleaner, remove support for old openSUSE/SUSE
releases.
- irssi 0.8.21 fixes four vulnerabilities that could result in denial of service (remote crash) when connecting to malicious servers or receiving specially crafted data [boo#1018357]: * CVE-2017-5193: NULL pointer dereference in the nickcmp function * CVE-2017-5194: out of bounds read in certain incomplete control codes * CVE-2017-5195: out of bounds read in certain incomplete character sequences * CVE-2017-5196: Correct an error when receiving invalid nick message * CVE-2017-5356: out of bounds read in format string [boo#1019809] - drop irssi-0.8.20-buf.pl.patch, upstream
- irssi-0.8.20-buf.pl.patch: Fixed a information disclosure in buf.pl (CVE-2016-7553 bsc#1001215)
- disable PIE on sle11
- disable PIE on sle11
- Update to version 0.8.20
- Correct the name of an emitted sasl signal (#484)
- Correct the prototype for the 'message private' signal (#515)
- Corrections in away and hilight help text (#477, #518)
- /squery and /servlist commands have been restored.
- Where Irssi would previously only report "System error" on connect,
it will now try harder to retrieve the system error message.
- Fixed issue with +channels not working properly (#533)
- Fixed crash in optchan when item has no server (#485)
- Fixed random remote crash in the nicklist handling (#529)
- Fixed remote crash due to incorrect bounds checking on
formats, reported by Gabriel Campana and Adrien Guinet from
Quarkslab. (CVE-2016-7044, CVE-2016-7045, bsc#999199)
- Update to version 0.8.19 * Fixed regression when joining and parting channels on IRCnet * Fixed SASL EXTERNAL * Fixed regression when not using SASL * Fixed incorrect SSL disconnects when using SSL from modules/scripts * Fixed regression where proxy_string could not be configured or certain file transfers could not be accepted * Fixed storing layout of !channels * Fixed restoration of bracketed paste mode on quit * Make the usage of meta-O for cursor keys configurable with /set term_appkey_mode off
- Update to version 0.8.18
New Features
+ CAP SASL PLAIN login is now supported natively.
+ Paste bracket markers can be requested from terminal with
/set paste_use_bracketed_mode on
+ "Self messages" generated by some bouncers can now be received in
the proper window.
+ Try to split long lines on spaces to avoid words being splitted.
Adds a new option: split_line_on_space which defaults to on.
+ Add setting hilight_nick_matches_everywhere (#56).
+ The config parser is more robust and prints out better diagnostics
on incorrect config files.
+ Ctrl+^ (FS#721) and Ctrl+J can now be bound.
+ Command history can be cleared with /window history -clear
+ /hilight -mask -line is now supported (FS#275).
+ CHANTYPES are now supported.
+ Improved reload speed of ignores.
+ Add -date feature to /lastlog
+ irssiproxy can be more easily enabled and disabled.
+ Expando for hostname (FS#829).
+ UNIX sockets can now also be specified in the config file.
+ Disable SSLv3 due to the POODLE vulnerability.
+ SSL ciphers can now be specified per server.
+ Added SNI support for SSL.
Bugfixes
+ /ignore now respects -pattern on merge (#78).
+ irssiproxy (BNC) module now uses correct line endings.
+ Fix missing lines on large pastes (FS#905).
+ Correctly preserve STATUSMSG prefixes (#291).
+ Fix infinite recursion in key bindings (FS#817).
+ Fix incomplete awaylog caused by buffering.
+ Fix calculation of UTF-8 string length display in some cases.
+ Fix some Perl warnings related to @ISA.
+ EXEC windowitems now get proper references on the Perl side.
+ Incremental help file improvements.
+ ANSI attributes are now properly reset.
+ Fixed regression where text would blink when terminal lacks color support.
+ Permit the usage of Freenode extban syntax in /ban (#150)
+ Fixed regression in scriptassist on unload of scripts.
+ Fixed regression in -actcolor %n
- Remove irssi-0.8.15-ssl-passphrase.patch, fixed upstream.
- downloads moved to github - verify source signature
- build with PIE
- update to 0.8.17
+ Document that SSL connections aren't properly handled during
/UPGRADE. See Github PR #39.
+ Synchronize scripts with scripts.irssi.org.
+ Performance enhancement of the nicklist as well as the
window_item_find function. See Github PR #24.
+ Disallow unloading of static modules.
+ Allow UTF-8 characters in /bind. See Github PR #18.
+ Split overlong outgoing messages instead of silently truncating
them.
Adds two new options: 'split_line_end' and 'split_line_start'.
- 'split_line_end' contains a string added to the end of line
fragments.
- 'split_line_start' contains a string added to the beginning
of line
fragments. See Github PR #29.
+ Added special /ignore NO_ACT level to ignore only activity (see
/help ignore).
+ Support for 256 and true color terminals (see Github PR #48).
+ Support for italics (see Github PR #58).
+ Rewrote many help files.
- Fixed various compiler warnings and use of deprecated
functions.
- Fixed Perl API usage and added PERL_NO_GET_CONTEXT to reduce
code size.
- Fixed format_get_text Perl API. See Github PR #23.
- Fixed gui_printtext_after and term_refresh_*() visibility. See
Github PR #22.
- Fixed issue where UTF-8 characters was corrupted once for every
32k text. See Github PR #12.
- Fixed redrawing issue with right-aligned statusbar.
- Fixed use-after-free bug with cached settings values. See
Github PR #147.
- add conditional to enable socks support but disable by default. unless we can find a way to have socks support so it works without an existing socks.conf.
- disable ssl_passphrase patch but keep it until the discussion with upstream ended: https://github.com/irssi/irssi/issues/103
- update to 0.8.16
+ Add -noautosendcmd to /SERVER and /CONNECT. Passing this option
will force Irssi to not execute the content of the autosendcmd
chatnet-setting upon connect.
+ Accept names replies with nick!user@host instead of just nick,
if they are enabled (see bug #805).
- Set window binds for channel items as sticky when re-creating
window binds as part of /layout save. This fixes the bug where
previously saved channel windows forgets their window number
upon reconnect.
+ Add experimental support for DNSSEC DANE validation of
certificates.
+ Strip the argument for boolean options (see bug #769).
+ Freenode have been readded to the list of networks in the
default configuration file.
+ Disabled support for the insecure SSLv2 protocol.
+ Various documentation enhancements.
+ Add -ssl_pass to /connect and /server (see bug #305).
- Fix crashing bug that can happen if the terminal height
decreases before the first window is created.
- Fixed minor compiler warnings.
- Fixed possible crashing bug when processing an octal escape
sequence.
- Fixed the /ignore -network option (see bug #748).
- Fixed signal handling for /exec'd commands. Irssi now sends the
signal to the process group id instead of the process id.
- Fixed segfault generated by SSL disconnections (see bug #752).
- Fix compilation when build with -Werror=format-security. Patch
by Jaroslav Skarvada.
- refreshed irssi-0.8.15-ssl-passphrase.patch to apply without fuzz
again
- disable irssi-0.8.15_ssl_proxy.patch for now
- added irssi-0.8.16_missing_prototype_warnings.patch: Fixes a compiler warning about missing prototype for SOCKSinit - added -DGLIB_DISABLE_DEPRECATION_WARNINGS to reduce the noise - added dante-devel as requires to irssi-devel so plugins can be compiled again
- irssi-0.8.15-ssl-passphrase.patch Fix prompt breakage following SSL certificate passphrase prompt; (bnc#842532).
- add libperl_requires, as we link against libperl and thus need a specific version of perl
- only enable socks support on opensuse
- added dante-devel to buildrequires to fix the socks support (bnc#794748) - added -fno-strict-aliasing to the cflags
- patch license to follow spdx.org standard
- Fix build for older openSUSE distros.
- switch to perl_requires macro
- add desktop file and icon
- disable proxy patch until we got a decision upstream
- added irssi-0.8.15_ssl_proxy.patch: when using a proxy, use the ssl hostname of the proxy (based on the patch from https://bugs.launchpad.net/ubuntu/+source/irssi/+bug/565182) (bnc#596005) CVE-2010-1154, CVE-2010-1155
- update to 0.8.15: (bnc#596005) CVE-2010-1154, CVE-2010-1155
* add active_window_ignore_refnum option
* show new Charybdis +q list in channel windows (numerics 728 and
729)
* allow servers to belong to multiple networks
* improve paste detection: Irssi now detects a paste if it reads
at least three bytes in a single read; subsequent reads are
associated to the same paste if they happen before
'paste_detect_time' time since the last read. If no read occurs
after 'paste_detect_time' time the paste buffer is flushed; if
there is at least one complete line its content is sent as a
paste, otherwise it is processed normally
* show "target changing too fast" messages in the channel/query
window
* use default trusted CAs if nothing is specified
* show why an SSL certificate failed validation
* make own nick and actions use default colour instead of white
* fix disconnects when sending large amounts of data over SSL
* show all nicks instead of just the first in an /accept *
listing
* make several signals without parameters available to perl again
* close the config file fd after saving
* check if an SSL certificate matches the hostname of the server
we are connecting to
* fix bash'isms, use command -v instead of which and use bc -l in
/CALC
* fix a crash with handling the DCC queue
* fix crash when checking for fuzzy nick match when not on the
channel
- update to 0.8.14: * make /reset an alias for /set -default * make /unset an alias for /set -clear * allow ctrl+home / ctrl+end to go to the beginning / end of scrollback * accept WHOX reply (354 numeric) as a /who reply * show numerics directed at channels in the channel window * the time duration parser is more strict now * fix out of bounds access in event_wallops() * fix the autolog_ignore_targets logic to work correctly with manually opened log files
- added irssi-0.8.x_wallop_off_by_one.patch: fix of by one in wallop handling (bnc#510837) CVE-2009-1959
- update to 0.8.13
+ Reject some obviously invalid values in /set.
+ Add perl bindings for Window::get_history_lines
+ Use an io channel to write the config file.
+ Use memory slices instead of memory chunks for text buffer.
+ Remove methods to create/destroy TextBuffer and TextBufferView and low level api to add/remove lines, scripts should be fine using Window::print_after and TextBufferView::remove_line.
+ Add print_after method to Window perl object analogous to gui_printtext_after but which also expands formats and forces a full line.
+ Better mapping of signal parameters to Perl. All signals used in scripts now need to be registered with Irssi::signal_register.
+ Add public header with interfaces to manage statusbar items (bug #535)
+ Recode: assume utf-8 encoding for an ascii string in which no escape character occurs (bug #392).
+ Allow /BAN, /UNBAN, /KICBAN, /KNOCKOUT if channel is not synced. Requesting ban lists from an unsynced channel will ask them from the server, banning a user whose u@h irssi does not know will ban nick!*@* and only bans irssi knows about can be removed.
+ Allow storing multiple "other" prefixes such as +q and +a (original patch by JasonX)
+ Add /set autolog_ignore_targets for cherry-picking targets that shouldn't get logged.
+ Add support for 16 colors. Formats KBGCRMYW and mirc colors are now mapped to colors 8-15. fe-text translates colors 8-15 to bold/blink+0-7 if the terminal supports only 8 colors. If your theme uses one of the high color formats and you really want bold you can change %FMT<string> to %fmt%_<string>%_, it will work fine in all irssi versions.
+ Better 005 PREFIX support (bug #580).
+ Display 407 numerics other than "duplicate channel".
+ Fix display of ratbox-style operspy whois.
+ Recode outgoing irc away messages (bug #412).
+ Recode outgoing irc quit messages.
+ Remove scrollback_levelclear_levels setting and add a 'level' option to 'sb levelclear' to specify a comma separated list of levels.
+ Add perl __WARN__ handler for scripts (bug #427).
+ Add Irssi::command_parse_options function to parse options for a command.
+ Revert recode changes introduced in 0.8.12.
+ Add completion for /WINDOW SERVER.
+ Support for reading kicks/msgs from TARGMAX/MAXTARGETS 005 tokens.
+ Enhancements to the redirections code.
+ Support for RPL_WHOISACTUALLY (338 numeric) for both ratbox and ircu (bug #428).
+ -idle option of /notify is gone.
+ /layout save now makes window-channel bindings instantly effective (bug #35).
+ /ping without arguments does not send anymore a ctcp ping to a channel (bug #542).
+ Track IRC operator status of nicks a bit better.
+ new 'actlist_names' option to add active items names in 'act' statusbar item.
+ new 'word_completion_backward' command to scroll backwards in the completion list.
+ add 'list' option to /bind to print all the available commands.
+ show setter/time in +I lists
+ apply -usermode before -autosendcmd (bug #548).
+ reduce memory usage of the scrollback buffer and make the display in /sb status more accurate (higher).
+ fix data getting dropped when a lot is sent at a time (e.g. when attaching to irssi-proxy, bug #528).
+ introduce the type Irssi::Irc::Client and signals to communicate with proxy clients to allow for scripting parts of the irssi-proxy.
+ Add sb_search.pl, a script for /SCROLLBACK SEARCH
- Fix /NOTIFY list when nick is seen joining (bug #642).
- Include hostmask in 001 event sent by proxy (bug #650).
- Be more power-friendly: don't run any always-on <1s timers (bug #641).
- Don't get confused by a failed /JOIN -window (bug #644).
- Properly initialize embedded Perl (PERL_SYS_INIT3).
- Replace invalid utf-8 bytes with U+FFFD when drawing a line.
- Properly unload the original script when using /script load to reload it. (bug #525, patch by Lukas Mai)
- Clean up script loading in general:
* Don't leak local variables to eval'd code.
* Set filename/line number to get better error messages from perl.
* Use three-arg open and lexical filehandles to avoid surprises.
* Include error reason in message for unopenable scripts.
* Don't wrap script code in sub handler { } - this avoids spurious warnings and
should at least allow __END__ to work properly.
(Patch by Lukas Mai)
- Fix NETSPLIT_SERVER_REC in signals for Perl.
- Remove buggy /SCROLLBACK redraw and /SET scrollback_save_formats.
- Always preserve the active mainwindow when resizing.
- Ignore DNS not found errors when considering reconnect.
- Do not strip the comma in a mirc color if it is not followed by a digit (bug #250).
- Fix building perl module with perl-5.10 (bug #630).
- fix leak with $L expando.
- fix possible crash with /script reset.
- ignore exceptions take precedence over ignores in all cases.
- honour -channels preference for ignore -replies (bug #227).
- Fix mode display in whois with unreal (379 numeric) (bug #479).
- Fix regressions that prevented external modules from building/working (bugs #537 #539).
- Fix /set hilight_level not taking effect immediately (bug #598).
- Fix bold, blinking and indentation in /LASTLOG and buf.pl.