IABSD.fr/src/usr.bin
Branch :
Log
| Author | Commit | Date | CI | Message |
|---|---|---|---|---|
 |
fb763662 | 2026-04-01 14:12:24 | iabsd | |
 |
ccde0b7b | 2026-06-02 08:13:50 | Move the PANE_FLOATING flag into the layout cell and add an accessor. From Dane Jensen. | |
|
c532acea | 2026-06-02 07:11:49 | Fix border colour bug in the floating panes branch where inactive floating pane borders incorrectly use the active colour at intersections with tiled pane borders. From Michael Grant. | |
 |
825a2083 | 2026-06-02 06:18:27 | refer to RFC9987 instead of I-D | |
|
8c3bf64e | 2026-06-01 20:10:01 | Remove the actual LAYOUT_FLOATING enum member. | |
|
230d0142 | 2026-06-01 20:09:26 | Remove LAYOUT_FLOATING and disable custom layouts with floating panes for now, from Dane Jensen. | |
|
7496f954 | 2026-06-01 20:00:25 | Fix vertical position of scrollbar having wrong vertical offset when status-position top, from Michael Grant. | |
|
ce646811 | 2026-06-01 19:59:04 | Fix resize of floating panes with pane-border-status top, from Michael Grant. | |
|
344ed6f9 | 2026-06-01 19:56:26 | Only set saved_layout_cell if creating a new cell, avoids crash when respawning pane. Reported by Mingjie Shen in GitHubb issue 5143. | |
|
dd5d101e | 2026-06-01 18:19:51 | Add a Z sort order in tree mode. | |
|
d609da3f | 2026-06-01 18:00:20 | Mark floating panes in tree mode. | |
|
45b3be88 | 2026-06-01 14:01:09 | Add pane_x, y, z format variables and show in list-panes. | |
|
b280781f | 2026-06-01 13:28:49 | Add some more DECRQM responses, from Ayman Bagabas in GitHub issue 5118. | |
|
08595ab7 | 2026-06-01 10:53:28 | Do not try to use pane if there isn't one when redrawing wide characters, GitHub issues 5145 and 5139. | |
|
6bc4de42 | 2026-06-01 08:27:37 | Allow run-shell arguments after a shell command to be expanded as #1, #2 and so on. From Rasmus Thystrup Karstensen in GitHub issue 5121. | |
|
e60c3b6d | 2026-06-01 08:27:28 | differentiate between execution failures and subsystem not found when logging why a subsystem failed to start; GHPR#637 from cuiweixie | |
|
bddfd4c1 | 2026-06-01 05:49:20 | sk-usbhid: skip unsupported key types in read_rks() When enumerating resident keys, encountering a credential with an unsupported COSE key type (not ES256 or EdDSA) caused the entire enumeration to abort via goto out, discarding all valid keys. Move the key type check before the per-credential allocation so unsupported types can be skipped with continue instead. This preserves all valid resident keys on the token. Patch from Akhilesh Arora via GHPR657 | |
|
f1855846 | 2026-06-01 05:40:13 | Actually set pollfd.events correctly for socket type channels; previously we were throwing away the events we computed if the channel had a c->sock distinct from it's other read and write fds. Fortunately, it appears that this case happens rarely, if ever. Reported by Darafei Praliaskouski via GHPR660 | |
|
b596178c | 2026-05-31 21:29:41 | Only draw visible parts of numbers for display-panes. | |
|
037fe703 | 2026-05-31 21:08:23 | When pane-border-indicators is set to "both" or "arrows", only draw arrows on the active floating pane and no other floating panes. Also there is no need to loop in screen_redraw_cell_border if only checking one pane. | |
|
4c93f76d | 2026-05-31 20:41:07 | Move back to starting position when pane is outside the window at all. | |
|
76d412ec | 2026-05-31 13:12:07 | handle compiled-time unsupported options in servconf.h better; leave a zero placeholder variable so we don't have #ifdef around their absence elsehwere in the tree | |
|
b9dde2da | 2026-05-31 11:30:50 | big refactor of sshd config management code. This generates much of the initialisation, defaults and keyword table code from a set of macros rather than hand coding them. These same macros are also used to generate serialisation and deserialisation code. The macros are admittedly ugly but have the advantage of forcing a good degree of consistency across places that need to stay in sync with each other. The new de/serialisation code is used to pass configurations across the various sshd-* process boundaries. This removes the need to pass around raw text configurations that need to be re-parsed as well as eliminating some raw pointer leakage across the processes where structures were previously clumsily serialised. feedback/ok markus@ | |
|
e284402f | 2026-05-31 06:14:42 | avoid strlen(NULL) crash if an X11 channel was created before the x11-req SSH_MSG_CHANNEL_REQUEST was sent. Reported by Ben Perry via GHPR679 | |
|
b67053e1 | 2026-05-31 05:55:21 | DNS0x20[1] can randomise the case of domain names returned by lookup to force some more uniqueness in queries to reduce the likelihood of spoofing attacks succeeding. Normally this should be hidden from the user by the resolver, but in some cases it can leak through. When it does, it can mess up ssh's CanonicalizePermittedCNAMEs. Fix this by forcing the name we received from the system resolver to lowercase. bz3966, report and fix by Martin D Kealey [1] https://datatracker.ietf.org/doc/html/draft-vixie-dnsext-dns0x20-00 | |
|
b6d27d6c | 2026-05-31 04:59:51 | disallow use of the copy-data extension to read and write to the same inode simultaneously; reported by Qifan Zhang of Palo Alto Networks; ok markus@ | |
|
62c68ecb | 2026-05-31 04:51:45 | Fix two separate one-byte out-of-cound reads 1) if a server sent an empty reply to a SSH2_FXP_REALPATH request 2) if a batch command used the full 2048 byte buffer but ended in a literal backslash character Both reported by Zhenpeng (Leo) Lin from depthfirst ok markus@ | |
|
ec76a249 | 2026-05-31 04:47:29 | DisableForwarding=yes didn't override PermitTunnel=yes Reported independently by Huzaifa Sidhpurwala of Redhat and Marko Jevtic; ok markus@ | |
|
9032e60e | 2026-05-31 04:44:38 | make the transport protocol stricter by disconnecting if the peer sends non-KEX messages during a key re-exchange. Previously an evil peer could continue sending non-KEX messages without penalty, causing memory to be wasted up until the connection terminated or the server/client hit a OOM limit. reported by Marko Jevtic; ok markus@ | |
|
0f4d9fd1 | 2026-05-31 04:37:56 | stricter validation of the transport state passed from the unprivileged preauth sshd-auth process to the user-privileged postauth sshd-session process. These are harmless unless an attacker had an exploit for sshd-auth in which case they could be used for post-auth memory DoS or to crash you own session in a new and exciting way. Reported by bylee3 and Kayky Vinicius ok markus | |
|
204d162f | 2026-05-31 04:31:04 | Enforce a maximum size for usernames in agent key use constraints Along with the match_pattern() performance change that was just committed this avoids a denial-of-service where an agent client could waste CPU on an agent by sending user constraints with lots of wildcards. Reported by Huzaifa Sidhpurwala of Redhat ok markus | |
|
a6389801 | 2026-05-31 04:24:39 | fix client use-after-free on error path if cipher_init() fails; reported by Qualys Security Advisory Team, ok markus@ | |
|
3ec0b86f | 2026-05-31 04:19:16 | Replace the old recursive match_pattern() with an implementation that uses a NFA for matching. This avoids the exponential worst- case behaviour for the old implementation. ok markus@ | |
|
6568abc0 | 2026-05-30 16:10:13 | Return empty ranges if line is below window. | |
 |
a553a88b | 2026-05-30 15:18:44 | Fix heap buffer overread in column counting loop OK millert@ | |
|
984ad87c | 2026-05-30 11:20:03 | Missed this file from previous. | |
|
23c9f378 | 2026-05-30 11:19:39 | Handle ranges for panes which are outside the window to the left. | |
|
6e4b9ba6 | 2026-05-30 09:48:30 | Do not crash when a pane offset is negative. | |
|
31132783 | 2026-05-30 08:58:29 | Check if the range is invalid using start,end rather than length since it will never be negative. | |
|
c936f2c9 | 2026-05-30 08:50:09 | Correct calculation of start and end. | |
|
fe6635b1 | 2026-05-29 15:51:03 | Correct offsets for redrawing entire line here too. | |
|
42d9a1e3 | 2026-05-29 07:49:01 | Use correct X position for redrawing wide characters. | |
|
2f32edf4 | 2026-05-28 11:17:35 | Swap panes on z-index list as well. | |
|
4ffcb6ab | 2026-05-28 10:45:17 | Do not try to use last pane if there isn't one. | |
|
890b2d30 | 2026-05-28 10:34:38 | Hide menu options that do not work for floating panes. | |
|
44505f08 | 2026-05-28 08:43:57 | Use the correct ranges when a pane is covered by a popup in tty_draw_pane. | |
|
7c837cf8 | 2026-05-28 07:58:45 | Obscured check should not be true if pane is same size as window. | |
|
f263261d | 2026-05-28 07:23:52 | Check visible ranges for collected cell output. | |
|
78ae0b70 | 2026-05-28 07:01:46 | Fix signed integer overflow in column position tracking OK millert@ | |
|
d00f99cd | 2026-05-27 20:57:53 | Bring in the single-cell redraw parts for floating panes. | |
|
3079a4a0 | 2026-05-27 20:47:23 | Do not adjust end position when removing partial padding, it does not change. | |
|
2f2d91a8 | 2026-05-27 19:43:46 | Check visible ranges when copying screens. | |
|
cd72e3e3 | 2026-05-27 19:36:04 | Add an accessor function needed for floating panes. | |
|
fe658f29 | 2026-05-27 18:57:10 | Add window-pane-status-format options and adjust the default second status line to show panes, also change how window-style is checked now it is a pane option. | |
|
15e936de | 2026-05-27 16:25:01 | Floating panes clearing bits. | |
 |
58ff4898 | 2026-05-27 13:57:26 | Use the new RELINK feature in bsd.prog.mk to build the relink kits. | |
 |
1708629b | 2026-05-27 13:54:15 | ssh: use sentinel idiom for timegm(3) and mktime(3) There is nothing wrong with times before the epoch, even -1, so use the idiom recently added to the CAVEATS section to figure out whether there was an error in the timegm() or mktime() calls. We should sweep the tree for this. If anyone is bored, feel free to beat me to it... ok deraadt djm | |
|
d48f9573 | 2026-05-27 13:41:20 | Cache border and active border style separately, fixes problem reported by Marcel Partap in GitHub issue 5125. | |
|
7f22a1e1 | 2026-05-27 12:52:47 | Remove reference to an option that hasn't been added yet. | |
|
7d2efe2b | 2026-05-27 11:54:28 | Bring in some more floating panes changes - obscured panes need to be handled specially in screen_write_* rather than dropping into the client redraw (tty.c). | |
 |
59afafd2 | 2026-05-27 07:05:20 | fix sort_get_clients() indentation; ok nicm@ | |
|
44ca0aff | 2026-05-27 07:01:36 | Check error result correctly (*cause not cause), pointed out by jsg. | |
 |
6239428e | 2026-05-27 05:56:57 | newsyslog: add glob(3) support for logfile names Allow glob patterns in the logfile_name field of newsyslog.conf(5), so that entries like /var/log/app/*.log are expanded at parse time. From Alvar Penning, feedback and OK jan@ | |
|
6035b275 | 2026-05-27 03:28:07 | ssh-agent: add -V to usage() ok djm | |
|
9ad264c2 | 2026-05-27 03:05:21 | use "ssh-agent -V" to test the binary is functional after relinking requested deraadt@ | |
|
5d5d5d78 | 2026-05-27 03:04:30 | add a -V flag to print the version, but mostly as a way to check the binary is functional; ok deraadt@ | |
|
51e8ce08 | 2026-05-26 15:59:22 | Fix signed integer overflow in repetition count OK tb@ | |
 |
05c105ac | 2026-05-26 14:50:52 | sndiod: Make the device sample rate and buffer sizes global | |
|
f5f1f41a | 2026-05-25 14:53:09 | pane_zoomed_flag went missing somewhere in tmux.1, put it back. | |
|
9e77e174 | 2026-05-25 08:07:48 | More of floating panes redraw path, still mostly using flags which are never set. | |
|
538c1292 | 2026-05-25 07:55:46 | Preserve flags when creating new cells, from Brian Youngs. | |
|
2a42768b | 2026-05-25 04:40:36 | the waitpid() can only return a real pid. none of the error cases can occur. still, it is good style to check for != -1 before using WIFEXITED(). forgot where i heard about this. | |
|
6adc68a2 | 2026-05-24 08:40:43 | Do not crash when freeing layout cell, reported by Jere Viikari. | |
|
19a448b4 | 2026-05-23 16:43:04 | Add missing argument to %unlinked-window-renamed, reported by Andrew Grangaard. | |
|
d9c11f67 | 2026-05-23 07:22:50 | Some code tidying up. | |
|
dbd5cf8c | 2026-05-22 15:22:43 | Tighten up read-only checks on attach-session, detach-client and switch-client so that a user should be able to only detach their own client. Reported by John Walker. | |
|
df993a24 | 2026-05-22 11:55:43 | Work out if a pane is obscured by another one when drawing. | |
|
b016a3d7 | 2026-05-22 09:21:32 | Use a union for the data passed around in tty_ctx instead of void *. | |
|
57b766cc | 2026-05-22 09:05:16 | Tidy up a load of different flags and special values in the tty_ctx into a single bitmask. | |
|
188c3557 | 2026-05-21 07:28:51 | Pane resizing code for floating panes, mostly by Michael Grant. | |
|
e88944ec | 2026-05-21 04:04:57 | mention that compression could potentially leak information about session contents (cf. the CRIME attack on TLS) if a connection allows attacker- controlled traffic over it alongside trused traffic. This might occur in some forwarding scenarios. with deraadt@ | |
|
d047add8 | 2026-05-21 02:50:59 | mention usefulness of request type allow/denylisting for servers accepting untrusted clients | |
|
f5d7ccb6 | 2026-05-20 15:43:07 | sndiod: Allow control slots to have NULL opt pointer This case is not encoutered yet, but to control non-audio properties the control slots must work with no opt structure. | |
|
cc1ae2aa | 2026-05-20 13:27:41 | sndiod: Add a reference counter to the port structure Using a counter is simpler than (ab-)using the midi endpoint bitmaps to figure out if the port is in use. In turn this allows holding a reference to the port without involving midi endpoint connections. This change also reduces the differences between MIDI ports and audio devices: less logic, less bugs. | |
|
aeb04560 | 2026-05-20 13:26:57 | sndiod: When connecting midi endpoints, check their modes As sndiod always uses IN|OUT, the behavior is unchanged. | |
|
712016e9 | 2026-05-20 13:26:02 | sndiod: Save a pointer to the struct opt associated to the midi endpoint As the socket code holds a reference to the struct opt, it's simpler to just save it and release it when the socket is closed. This avoids iterating over the full set of midi endpoint structures. No behavior change | |
|
eae1ec4b | 2026-05-20 13:24:58 | sndiod: Unlink the MIDI port from the socket when its closed Not unlinking the port is bad style and might keep the port open after the socket is closed. | |
|
ae684bfa | 2026-05-20 13:15:31 | sndioctl: Allow list elements to be added or removed | |
|
715c3a87 | 2026-05-20 13:12:31 | sndioctl: Split the parse_modeval() function No behavior change | |
|
40c5a1ee | 2026-05-20 13:03:14 | sndiod: Fix confusion between OPT_NMAX and DEV_NMAX Both macros have the same value, so no behavior change. | |
|
3388eece | 2026-05-20 13:02:04 | sndiod: Add the server.mode control making the setting dynamic The default mode remains "-m play,rec" but now it can be changed with sndioctl(1). If the server is switched to play-only mode, then existing clients will start recording silence. Similarly if it's switched to rec-only mode, clients are muted. ok armani, deraadt, rsadowski | |
|
05603cc9 | 2026-05-20 10:56:46 | Increase escape delay if the buffer contains a partial paste end, fixes issues with at least Windows Terminal. From jing dot empty at gmail.com GitHub issue 5088. | |
|
2d03e0d5 | 2026-05-20 08:54:40 | Some more trivial floating panes bits. | |
|
e11f9acf | 2026-05-20 06:23:13 | Solve the signed integer overflow in flush_line() sort | |
|
ddd72ab0 | 2026-05-19 13:12:45 | Floating panes full redraw code, by Michael Grant. | |
|
9c4974fc | 2026-05-19 12:16:25 | Some more easy floating panes bits. | |
|
fed307ce | 2026-05-19 10:26:03 | More (currently disabled) bits for creating floating panes, from Michael Grant and Dane Jensen. | |
|
ef65d4e9 | 2026-05-19 09:48:14 | More bits for pane Z index tracking from floating panes, mostly by Michael Grant. | |
 |
089ac1e1 | 2026-05-19 02:08:49 | brace_subst: fix single NUL byte overflow after reallocarray() The check for sufficient space when performing brace substitution did not take into account space for the terminating NUL byte. From Thomas Habets | |
|
8a5afb5c | 2026-05-19 01:55:45 | find: Fix mix of character block size check If multiple -size primaries were specified and any of the values had the 'c' suffix, it was applied to all values and not just the one that ended with 'c'. The divsize setting is now stored in the plan, not a global. From Thomas Habets |