From 8414b75b06969e504e08b31a5895dee774e2630f Mon Sep 17 00:00:00 2001
From: Till Dieminger <git@dieminger.ch>
Date: Sat, 30 Aug 2025 21:33:56 +0200
Subject: [PATCH] first commit

---
 LICENSE                       |  24 +++
 Makefile                      |  61 ++++++
 README                        |  24 +++
 arg.h                         |  65 ++++++
 config.def.h                  |  12 ++
 config.h                      |  12 ++
 config.mk                     |  32 +++
 explicit_bzero.c              |  19 ++
 explicit_bzero.o              | Bin 0 -> 1400 bytes
 patches/slockpatchlockinput   |  41 ++++
 slock                         | Bin 0 -> 18864 bytes
 slock-backup/LICENSE          |  24 +++
 slock-backup/Makefile         |  61 ++++++
 slock-backup/README           |  24 +++
 slock-backup/arg.h            |  65 ++++++
 slock-backup/config.def.h     |  12 ++
 slock-backup/config.mk        |  32 +++
 slock-backup/explicit_bzero.c |  19 ++
 slock-backup/slock.1          |  39 ++++
 slock-backup/slock.c          | 387 ++++++++++++++++++++++++++++++++++
 slock-backup/util.h           |   2 +
 slock.1                       |  39 ++++
 slock.c                       | 386 +++++++++++++++++++++++++++++++++
 slock.o                       | Bin 0 -> 11008 bytes
 util.h                        |   2 +
 25 files changed, 1382 insertions(+)
 create mode 100755 LICENSE
 create mode 100755 Makefile
 create mode 100755 README
 create mode 100755 arg.h
 create mode 100755 config.def.h
 create mode 100755 config.h
 create mode 100755 config.mk
 create mode 100755 explicit_bzero.c
 create mode 100755 explicit_bzero.o
 create mode 100755 patches/slockpatchlockinput
 create mode 100755 slock
 create mode 100755 slock-backup/LICENSE
 create mode 100755 slock-backup/Makefile
 create mode 100755 slock-backup/README
 create mode 100755 slock-backup/arg.h
 create mode 100755 slock-backup/config.def.h
 create mode 100755 slock-backup/config.mk
 create mode 100755 slock-backup/explicit_bzero.c
 create mode 100755 slock-backup/slock.1
 create mode 100755 slock-backup/slock.c
 create mode 100755 slock-backup/util.h
 create mode 100755 slock.1
 create mode 100755 slock.c
 create mode 100755 slock.o
 create mode 100755 util.h

diff --git a/LICENSE b/LICENSE
new file mode 100755
index 0000000..2e4419b
--- /dev/null
+++ b/LICENSE
@@ -0,0 +1,24 @@
+MIT/X Consortium License
+
+© 2015-2016 Markus Teich <markus.teich@stusta.mhn.de>
+© 2014 Dimitris Papastamos <sin@2f30.org>
+© 2006-2014 Anselm R Garbe <anselm@garbe.us>
+© 2014-2016 Laslo Hunhold <dev@frign.de>
+
+Permission is hereby granted, free of charge, to any person obtaining a
+copy of this software and associated documentation files (the "Software"),
+to deal in the Software without restriction, including without limitation
+the rights to use, copy, modify, merge, publish, distribute, sublicense,
+and/or sell copies of the Software, and to permit persons to whom the
+Software is furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in
+all copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT.  IN NO EVENT SHALL
+THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING
+FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER
+DEALINGS IN THE SOFTWARE.
diff --git a/Makefile b/Makefile
new file mode 100755
index 0000000..f4ffbb7
--- /dev/null
+++ b/Makefile
@@ -0,0 +1,61 @@
+# slock - simple screen locker
+# See LICENSE file for copyright and license details.
+
+include config.mk
+
+SRC = slock.c ${COMPATSRC}
+OBJ = ${SRC:.c=.o}
+
+all: options slock
+
+options:
+	@echo slock build options:
+	@echo "CFLAGS   = ${CFLAGS}"
+	@echo "LDFLAGS  = ${LDFLAGS}"
+	@echo "CC       = ${CC}"
+
+.c.o:
+	@echo CC $<
+	@${CC} -c ${CFLAGS} $<
+
+${OBJ}: config.h config.mk arg.h util.h
+
+config.h:
+	@echo creating $@ from config.def.h
+	@cp config.def.h $@
+
+slock: ${OBJ}
+	@echo CC -o $@
+	@${CC} -o $@ ${OBJ} ${LDFLAGS}
+
+clean:
+	@echo cleaning
+	@rm -f slock ${OBJ} slock-${VERSION}.tar.gz
+
+dist: clean
+	@echo creating dist tarball
+	@mkdir -p slock-${VERSION}
+	@cp -R LICENSE Makefile README slock.1 config.mk \
+		${SRC} explicit_bzero.c config.def.h arg.h util.h slock-${VERSION}
+	@tar -cf slock-${VERSION}.tar slock-${VERSION}
+	@gzip slock-${VERSION}.tar
+	@rm -rf slock-${VERSION}
+
+install: all
+	@echo installing executable file to ${DESTDIR}${PREFIX}/bin
+	@mkdir -p ${DESTDIR}${PREFIX}/bin
+	@cp -f slock ${DESTDIR}${PREFIX}/bin
+	@chmod 755 ${DESTDIR}${PREFIX}/bin/slock
+	@chmod u+s ${DESTDIR}${PREFIX}/bin/slock
+	@echo installing manual page to ${DESTDIR}${MANPREFIX}/man1
+	@mkdir -p ${DESTDIR}${MANPREFIX}/man1
+	@sed "s/VERSION/${VERSION}/g" <slock.1 >${DESTDIR}${MANPREFIX}/man1/slock.1
+	@chmod 644 ${DESTDIR}${MANPREFIX}/man1/slock.1
+
+uninstall:
+	@echo removing executable file from ${DESTDIR}${PREFIX}/bin
+	@rm -f ${DESTDIR}${PREFIX}/bin/slock
+	@echo removing manual page from ${DESTDIR}${MANPREFIX}/man1
+	@rm -f ${DESTDIR}${MANPREFIX}/man1/slock.1
+
+.PHONY: all options clean dist install uninstall
diff --git a/README b/README
new file mode 100755
index 0000000..a81290d
--- /dev/null
+++ b/README
@@ -0,0 +1,24 @@
+slock - simple screen locker
+============================
+simple screen locker utility for X. 
+
+
+Requirements
+------------
+In order to build slock you need the Xlib header files.
+
+
+Installation
+------------
+Edit config.mk to match your local setup (slock is installed into
+the /usr/local namespace by default).
+
+Afterwards enter the following command to build and install slock
+(if necessary as root):
+
+    make clean install
+
+
+Running slock
+-------------
+Simply invoke the 'slock' command. To get out of it, enter your password.
diff --git a/arg.h b/arg.h
new file mode 100755
index 0000000..0b23c53
--- /dev/null
+++ b/arg.h
@@ -0,0 +1,65 @@
+/*
+ * Copy me if you can.
+ * by 20h
+ */
+
+#ifndef ARG_H__
+#define ARG_H__
+
+extern char *argv0;
+
+/* use main(int argc, char *argv[]) */
+#define ARGBEGIN	for (argv0 = *argv, argv++, argc--;\
+					argv[0] && argv[0][0] == '-'\
+					&& argv[0][1];\
+					argc--, argv++) {\
+				char argc_;\
+				char **argv_;\
+				int brk_;\
+				if (argv[0][1] == '-' && argv[0][2] == '\0') {\
+					argv++;\
+					argc--;\
+					break;\
+				}\
+				for (brk_ = 0, argv[0]++, argv_ = argv;\
+						argv[0][0] && !brk_;\
+						argv[0]++) {\
+					if (argv_ != argv)\
+						break;\
+					argc_ = argv[0][0];\
+					switch (argc_)
+
+/* Handles obsolete -NUM syntax */
+#define ARGNUM				case '0':\
+					case '1':\
+					case '2':\
+					case '3':\
+					case '4':\
+					case '5':\
+					case '6':\
+					case '7':\
+					case '8':\
+					case '9'
+
+#define ARGEND			}\
+			}
+
+#define ARGC()		argc_
+
+#define ARGNUMF()	(brk_ = 1, estrtonum(argv[0], 0, INT_MAX))
+
+#define EARGF(x)	((argv[0][1] == '\0' && argv[1] == NULL)?\
+				((x), abort(), (char *)0) :\
+				(brk_ = 1, (argv[0][1] != '\0')?\
+					(&argv[0][1]) :\
+					(argc--, argv++, argv[0])))
+
+#define ARGF()		((argv[0][1] == '\0' && argv[1] == NULL)?\
+				(char *)0 :\
+				(brk_ = 1, (argv[0][1] != '\0')?\
+					(&argv[0][1]) :\
+					(argc--, argv++, argv[0])))
+
+#define LNGARG()	&argv[0][0]
+
+#endif
diff --git a/config.def.h b/config.def.h
new file mode 100755
index 0000000..9855e21
--- /dev/null
+++ b/config.def.h
@@ -0,0 +1,12 @@
+/* user and group to drop privileges to */
+static const char *user  = "nobody";
+static const char *group = "nogroup";
+
+static const char *colorname[NUMCOLS] = {
+	[INIT] =   "black",     /* after initialization */
+	[INPUT] =  "#005577",   /* during input */
+	[FAILED] = "#CC3333",   /* wrong password */
+};
+
+/* treat a cleared input like a wrong password (color) */
+static const int failonclear = 1;
diff --git a/config.h b/config.h
new file mode 100755
index 0000000..27cc2d0
--- /dev/null
+++ b/config.h
@@ -0,0 +1,12 @@
+/* user and group to drop privileges to */
+static const char *user  = "nobody";
+static const char *group = "nobody";
+
+static const char *colorname[NUMCOLS] = {
+	[INIT] =   "black",     /* after initialization */
+	[INPUT] =  "#005577",   /* during input */
+	[FAILED] = "#CC3333",   /* wrong password */
+};
+
+/* treat a cleared input like a wrong password (color) */
+static const int failonclear = 1;
diff --git a/config.mk b/config.mk
new file mode 100755
index 0000000..74429ae
--- /dev/null
+++ b/config.mk
@@ -0,0 +1,32 @@
+# slock version
+VERSION = 1.4
+
+# Customize below to fit your system
+
+# paths
+PREFIX = /usr/local
+MANPREFIX = ${PREFIX}/share/man
+
+X11INC = /usr/X11R6/include
+X11LIB = /usr/X11R6/lib
+
+# includes and libs
+INCS = -I. -I/usr/include -I${X11INC}
+LIBS = -L/usr/lib -lc -lcrypt -L${X11LIB} -lX11 -lXext -lXrandr
+
+# flags
+CPPFLAGS = -DVERSION=\"${VERSION}\" -D_DEFAULT_SOURCE -DHAVE_SHADOW_H
+CFLAGS = -std=c99 -pedantic -Wall -Os ${INCS} ${CPPFLAGS}
+LDFLAGS = -s ${LIBS}
+COMPATSRC = explicit_bzero.c
+
+# On OpenBSD and Darwin remove -lcrypt from LIBS
+#LIBS = -L/usr/lib -lc -L${X11LIB} -lX11 -lXext -lXrandr
+# On *BSD remove -DHAVE_SHADOW_H from CPPFLAGS
+# On NetBSD add -D_NETBSD_SOURCE to CPPFLAGS
+#CPPFLAGS = -DVERSION=\"${VERSION}\" -D_BSD_SOURCE -D_NETBSD_SOURCE
+# On OpenBSD set COMPATSRC to empty
+#COMPATSRC =
+
+# compiler and linker
+CC = cc
diff --git a/explicit_bzero.c b/explicit_bzero.c
new file mode 100755
index 0000000..3e33ca8
--- /dev/null
+++ b/explicit_bzero.c
@@ -0,0 +1,19 @@
+/*	$OpenBSD: explicit_bzero.c,v 1.3 2014/06/21 02:34:26 matthew Exp $ */
+/*
+ * Public domain.
+ * Written by Matthew Dempsky.
+ */
+
+#include <string.h>
+
+__attribute__((weak)) void
+__explicit_bzero_hook(void *buf, size_t len)
+{
+}
+
+void
+explicit_bzero(void *buf, size_t len)
+{
+	memset(buf, 0, len);
+	__explicit_bzero_hook(buf, len);
+}
diff --git a/explicit_bzero.o b/explicit_bzero.o
new file mode 100755
index 0000000000000000000000000000000000000000..d98c7e9328a657fbe7d8d66a9b0073bed48c290d
GIT binary patch
literal 1400
zcmb<-^>JfjWMqH=Mg}_u1P><4z)-=2U^{@B4h%dD+zf{e4|sHb^z8icd6iG+@t0s3
zcV}lS1r2w<P)!9x13e=>0|o{L5wHvc17lSX17n2%qcjgY#{@<O1_1^J1{s(flm>}`
z^nkcRAOa5txs`?C<9}>Qn6dhVfq|KU8JltjW(F1<;%qp?*>Q-oVu*wMp@iffkh?*O
zG#D5dgcum%G9YyzafZ~2f}G6c%#!$|s??%<y<~>?cvPYIjQsp;G-V77{9w%tV4rX>
zFfjc24*?2LaZogZFqF$+0%d^2Kp5sO2EF3S+>*p32EF2vA_$!UV-=<5B<hu<R+KR4
zr6iUlGUz207c=N3=jZ08=9Mt$<>i;8>bd)c>K2zICTBC~ft9Cb#HSS{=B7feqnHBu
z2jo`tn1Q5C1_og?8$fE2g`^oEVFXhTle+*_C;=7VWMBZt4Ja%@LNIYPs5p8`3I-{{
zf}zI3Wpo%A7(ix{tKSf6KP;cX42Ic{%l|NUSV8r}^ug#f7z2%l>4ORTL-m8w3``6}
zXMhL>1_tzS1^E>!1*W`kg#QbuMKFJX!XK2&VESR<4^oD1H^|@>AcBE`;RBTBf`&7?
sevrB7VGq(W17t7*1A{q;gM^{Na1lWUP&oqU!Wj}!M@7O#APjW<04!TtmH+?%

literal 0
HcmV?d00001

diff --git a/patches/slockpatchlockinput b/patches/slockpatchlockinput
new file mode 100755
index 0000000..200bdd0
--- /dev/null
+++ b/patches/slockpatchlockinput
@@ -0,0 +1,41 @@
+
+From ccfc4c1ab41826b4bac99e53a844ca244fcfb330 Mon Sep 17 00:00:00 2001
+From: Arif Roktim <aroktim@stuy.edu>
+Date: Wed, 25 Apr 2018 21:27:59 -0400
+Subject: [PATCH] Lock input but don't lock screen
+
+This patch keeps the screen unlocked but keeps the input locked.
+That is, the screen is not affected by slock, but users will not
+be able to interact with the X session unless they enter the correct password.
+
+There's a lot of extraneous code that can be removed since the goal is
+for input to be locked while at the same time allowing the screen to be
+updated and viewable. But this patch just works (tm) and I don't want to
+potentially introduce bugs.
+---
+ slock.c | 3 +--
+ 1 file changed, 1 insertion(+), 2 deletions(-)
+
+diff --git a/slock.c b/slock.c
+index d2f0886..98f5d80 100644
+--- a/slock.c
++++ b/slock.c
+@@ -254,7 +254,7 @@ lockscreen(Display *dpy, struct xrandr *rr, int screen)
+ 			ptgrab = XGrabPointer(dpy, lock->root, False,
+ 			                      ButtonPressMask | ButtonReleaseMask |
+ 			                      PointerMotionMask, GrabModeAsync,
+-			                      GrabModeAsync, None, invisible, CurrentTime);
++			                      GrabModeAsync, None, None, CurrentTime);
+ 		}
+ 		if (kbgrab != GrabSuccess) {
+ 			kbgrab = XGrabKeyboard(dpy, lock->root, True,
+@@ -263,7 +263,6 @@ lockscreen(Display *dpy, struct xrandr *rr, int screen)
+
+ 		/* input is grabbed: we can lock the screen */
+ 		if (ptgrab == GrabSuccess && kbgrab == GrabSuccess) {
+-			XMapRaised(dpy, lock->win);
+ 			if (rr->active)
+ 				XRRSelectInput(dpy, lock->win, RRScreenChangeNotifyMask);
+
+--
+2.17.0
diff --git a/slock b/slock
new file mode 100755
index 0000000000000000000000000000000000000000..0f6c1b34435babc40e8592881db5fbc3e6dd9ff9
GIT binary patch
literal 18864
zcmb<-^>JfjWMqH=W(GS35buE|M8p9?F>G*xG8h;b92hJZxEUN6WEi9w*cccXSioWs
zd6;?_oxubVhtV7mE(0@E-wLQaIxPcL2cto50tta=kbNLFHoQX+A_}7!1R#8nK2{J@
z0Yoq`Frd+;{19;%jjRuBp8-Uk0gV;_8_K`{qmlK2!e)XkMBfBoRGI^9C<B8Al!oa8
z1qVpq4ye8zP<=330i*!rd?*bIPmnPnd;}_vPP;&?XMoWlwIHE@rzI&M_8TJ*kAVT5
z4uJ?Wz-W+KkWk>$k`$0TL2P0$G#VI!p!VSkmjbB!VKgY-K<4Y`WG0!J=;x&9=49rT
zR_In(nCY6C=oRPd8G+NE2m=E+O}YDpGVH1|-m=j=c<wFj>poi+UcCABPwhjHyFqRM
znFmq>G82>rq1J)*nlLbc(>};w9gYgj42%q1ATcwLVg?2VC)cZQc0Zm}ld-IM!;QiS
z8Ou-Iu;d9<fuPzL85o2RTsSKnhqyBXcJ=>2aShjvVCdpd@5Y4P98VnfR^SlN#bG`l
z4slRGVDs-x9O~0?h)>4ho;)1tLFp2ky}NOk^A?BrV;tt&;1IuzLp&CT`NlZZf5Raz
z#fT`P5V6j{5QjtkMI82);83rLBb_kf5NF3Bz5s{4cW{WG!Qq~29O9tz4O{$v#i4#Z
z4sj72?$^Vi-W-Q|O&sw8Dp#<%a~+OwxP`-BXB_JHGB7YGAtwYVTO5ZuEjYxt;SkTl
zVebqk1_l8J35FSgPz#~dYOuH@!wxj@1z_`e8P0<O7R-idm=9HtZq6hI1_nU}NrnYb
zb3pM8)=`{VQkt2<kd|MNn#YiyT2fFB;TB~x#K#wxBqnFaCud~GrzK|QFvO=;WR^e_
z<t64aBq!$N<R>%4$EOw*<>klc<R>SVWaj5F6sMM?7v+~06oZte7lD+f6_l0~Go&Tw
z<QJzh<U;hNr<N2KfF$GNlS?WKQsa|AMlckYq@)%VfwY1gl3G!albM`Z5}#C+T9nU_
zT9KMuR=`kNoRgYbzz`pwT#*=`mYJ8BlUbDtwl_0{p}3?dIkx~rr4|+C7cs=g=VT@&
zgZxrd5}%uxna5C;R#23gSCYmM?-}A7pORXXnx0u)l3Env>ztFHml~3ol#|L3AD^C^
zp9j?z4^fI$VRBJrK?y@dP-<~zRcd%<UP^vBLxfXmP7Xtae?e-VOJ;FFPGTiPgnLn9
zl6PulQhs7l3PXfXetvdoL2yY?W?ni&gmX@6Vi8O)NMS&JW?o5Z5krJaYFcJqs&i>k
zaefg)L{MU8G29O4qSVBaRHw|6+{6O6qWoN!#F9jY2*1>d64$cSyb^{8M^OCuCFZ84
zIOpepv_o_RWLD%R7Ql=QuFOkjhzL&2Nlh;C%qu7@0dYzoZgEOX&IUzgUJ645L@z{~
zAtERUMMqFjU}<VmrE5h=YF;rY4S<3i)M_we0I@(J1mYQicoBw%AU0SgBDJCf!6{12
zODO_zjTqunQ$W6nk54KthQt9wd@9%(L6HF=@kV+E4DLRjPR{X0dd6^;37lo5X9`Z;
z3=9mQmInxf_)H8;49pB55+n{01@S;E5DgNAV32AM28lv2OdO(?1#Ai{*mOn)2n5N1
zSV`bK2&q>R-p2BQTJ9S_lHhg^GeZPa9%R07W+pEK11rOBsF(<t&&+TX$}g45<OJD#
z9;zSKzJ=xA3tAvk7#L<i+pjS32B`P~H1R9Y_U8&T@mo;w4QS$zpyCtI$_*I*hCjr9
zP+Jbv_Ji;k7#<*r3&R8%7#Ln4iAy4he?St4Ivp(g14&#TECL~5<rt`2U;z;VlM(@7
zih&&*)(|#`R6r7k1|>+CK?6w~)J_EpGB7Y0Ac=$QfQefmiG%zM6L&xo2iXl1_dpVd
z#SKU<07;w^Bml(`Na9>jF%Xr2B+d;IfZ_}!aUQ4`h$=u5=LHEsaRrh%sEr8~W@tbX
zhj!7xQXNR*pmsf2kb!|=0+KkiD+rdFfh3MxPcJ|c2lXMqiWwLfRv?Ls!UP!@7&ah@
ziy?{cKoSSl$uOw{Na7MOK?Vkf6G-AxNa7ce#HEqMZy<?-+S)Lw2T0<wFhNjyMiQ4p
z690fCE{`Ps14$g#H3myV^A{-XD1rqb1P78ha=SzTNn9DC6iiAWiK~D`AcO*vxGF>l
zOllyBtARxzgaMMcIz$LeS|EvQfJGpL1Cls&NCPb4fh4XC7J(1}Na8vWAut(%Bo69(
zfdv^D7!r`gp-mpJR0fhbY{&p4QGg_F2oiwe3M6r8(FT@jKoSS_A;5y8#ApbNhQMeD
zjE2By2#kinXb6mkz-S1JhQMeDjE2By2#^>8pZVo}c{IP_@aSf}sn5XR(R!eS>Hh_f
z<|7=3!6yATeWcI8@L%<bJ_7^4yaU63RS-V|B=_>c|NsC0tKQOQV8{SXf4sZ^=3fHw
zK|@(D4}kfnKzz^;*2@iG{vi+_G$i+O0hqrF#0L#!y_^8%Zvyc_Ls%~x!2DGpK4|#i
zWdWGK2*d{sS-ngE^JjthprNXl0bu?l5Fa!|_0j>%?*j2bLsKse!2Bi<A2cNOQUT1b
z0`WmZQ7;9+{2~w^Gz9gM0nE<=@j*jRFF*VP`8Nr~2MsyBd;sQ0f%u@Irk5AM{2&k?
zG{p4s0GRIu;)8}7Uv2>Noj`ohP}9o=V7?WI4;o^6IRVT!0`WmZOD`M1d@T?kG^F&h
z0L)hc@j*jLFB8CgDG(ntWce}x%ohUjK|@L}9l(4p5Fa#@^wI##X9Dp-Lr5<b!2Dl&
z3=A2dp`(`qVE!i%A2ek2k^#(r1>%E-ie7&B3-bRX5Fa!|^zs3ie+$G14Gq1#0Onr;
z@j*jEFAsqEr$BtrP|(W_VE!QxA2bB?asimX3&aNv{k)t2=5GS=K|?+-8^HWkAU<fQ
z=VbwyzX-$!4e`880P|;o_@JSkmjPh@BoH4oRQu8a%<ls6K|?$*4Z!>+5Fa$O^HKrK
zuLAKwLpm=7{{H{(815M680yoT$Ke<f8tl>dhJ%rTA;qJcMHOVFM`w%54+aJXk8U=P
zPSyfF28Leu|D7%>BA(r@;JlO6V4+(Y+ZDjra;YS&;g@cyKtlx+Ln+sP9~BYL=A#_1
z9X)yj7(F{f8M+)8TMm?H*p!t@cyybJ>M<~Q^xCfHVPJUS`S<_-mz->1ft5TA3@^<Y
z85rOOOnou)&;S1(y|x>97#NO&@*#sq=iwJi{{H{((R!d%wcFaGSJZ}wfuZ$(3CD}G
z|Nj5?=se`nYudyEHV{O;wsYxD5I7FXlORhoK$f;Z^=pCk3&QmG!u2~r^hfb9Fc=<q
zF^`Rb!KJ%Gz@vAM%6(9P^qS`KF)-`|rNhrlJbKr_M8VoR-@iEW_y2#-&SM}aT6bGF
z|7R*yfH>fV*Ps9YJCDCm2KlP<s7LDo{?>K|28P#3FF@(hqw}3dukAl>1_qDLL$6ys
zI*;#?0IBRX{m%_{$?iY@|NC@)e{uQu|NpHAN>+gk=Pl*)=(T+aQSh0Sf#JnbkoUkw
z34#34dFZA2|NsBHty}+>h`d+<lI*qR1IrwHY0Lr+DG?q9hS&Q&x*a$?dQJ7fa>qS7
zT~s(;fE>_zpj6JIyO!a_ZLn)>`9TU=50p#*YXB*Oc+aD|M1{kn*LD^+XpRA7QR{(H
zv2N=Z#vpdDZ37p`XUAUdV`gA5{Qu(YZ*bf~90?AL7R&$t{~LZY{Qn{m?88cs=5G*7
z*+G_e9(&oy%)sE%`TvFeA5a*8Ra}9n_ze!YV=v>uDxSZXi%_u%qT&ryg)KA4*C8q{
z9=#<h4j!HFUj+X8|KB5d?-K?FhJB#&w$nw$rn5#x-~|WBk)19o5}?{bz~eXzC^s{B
zb{>0qn-OG)?P_iYhL?^1{{P<(nga1S-U3byptSnJ<~JxE905ghO9B%ELpO_xtKmt<
zP8Jo9ZWa}fgAdp}m|I_fQdGBtfF~#%J$hNct1&S6^wy|&cyzw^>GV-i@ah)f@Jwb=
z@#%F@iSX(CiK4F{;Dy@n|NniueN+@Yx?NN}ygOZZ6g-;`a(FiXlqg;A+3ljD;L#hR
zl3{q#qx1do7L^0gNf}RYWOcfz6o3pzGSsEpL&l}sK_bZTQU((f1H=CUhb)F}2aA9#
zh8I<!U}`>MuoDzU9-Z$&ju!CfJm%3m1?+9d9UzGpn}34R=}+IzAFhTcL24vGYC7LL
zHlP0=<k5L3i{ZtBpa1`ZoFL%Q`QD@R(2Iay|NlqEIX0jEf80ey0aPWrw%+D%>0w}C
z04d`LaNG&1cMUIPF*xo3v3B}^0<QCY7DE=p3!$I?|9dnaQE==$?ArRjG|r{-h70Ep
z{#MY+faV$%8-@}gkSPMYKsrJ3UHA)PJ;yEv1`Y<0PnwT$yx0vg=0A&yZ)e(%ZWfhJ
z7ZnXl7Zm~ieo*c4atQ+igKO*ml64@XI9v@+f?ed%`5xjRu-Pu1F)BJQCja{X-=#Z7
zMaQx8IJhQvZ2rwyuHxAIpRrtS|AIC~28g=oU;qFA_fb&*tL1Oy`v3pGYwPV2$?gyp
z4UcZyHyWT6W*W~4&iwm+fMox}WzRumOCYife*FLMc^njO42Iu8KD__q|Nm|u6#+{h
z6%GE@RSXOa%{3|_4E%i!pc#{cKmY%4{_($rt@S{O=<9-R>lghXzxUb(bAt2eYuWBv
zffuL0gY%d~xAltxh_nwx+VH@O4n|PS)H3*VzI*W*WS8{|ACQ`ETT=~?Oelj#uc<y*
z`9Z@2FBpFO|Gys;`Y*111Ep6N6%LT=KpD^mlmxm%R3u(JVFdZ~H7huRJ-U0q^-qe2
zHV?Q$Dq(%`>)ZeT9*svp^;C4MV~k_0W1M6BVSaf~JTowW+INO;Jv%SPd2~MVXnyh`
zAjGGaHH{S%ioEY3B^}4l|NsAsUQ%UX_%gwx*S1j|B*|I@qAY)uh<bFhu2Y3H4LScm
z;Fkvl7Q<mE?a^x+2vXQ<>II@S|9NzN@HqI+-s9j8W)H?=9vA<Wh<J3fwn7cy`2Qe{
zU*3fQt{>#S23uKB{a$Ju>d|bQ1ZoO+bUrQN_2{;Jr^dkWUo=3Kf#F5+|NsAwv3^lw
zU|@_roTdl!-{CX_8`M4pnfEgNKPX7v+yG^i&R-s#B`O*oogpd)9-Tfa7CxOWDh{Ah
z#G~avi8;Tfi%I~$rjJSjzh;O^0l(%P6_Ee<HJ7MNU|?Y2*Ic6lTGGO=xkY6In7;>H
zS|GIuTvQ|s4|sIj2C0Ek$s?c6YaYEVDi0VK7>={3fU-Wg((veYQBgSVqQU~23<8M=
zyg2v`7X8n^ff^pZoyS3K562MC&MToFoqvN3Z+kSpkzfKDTcX0z>7ycnWNnKI2NNh|
zfDG1v7QtY1K{XDj1bK1rD=4M%x9$ZMvo0zc%|Dp<TS4oZe0tZYfQs0CpjMnu=ld7O
zKz4N3s0g?k9`NaWw+kfh(d(n4@FMri|NoAi$3VrXf=BO!1_n@>^2@ed#lyDuKLbN4
zw+E<b;{DIS@LJGAcf)@M29M?+oaL;b;071INV*dE+dwULkKPFjAjWX>xA}u&suvW}
z?>!oS{r}Ivz~5#K60-%FSt9FUD-9BBSqv)JY&k&e*8L0&3@=wOFfbfzkpZQ829SS1
zj2HEvL1pZFpU!`XhSBY>pcc?^P{Tv9+xo>G5VzZQsR}5Kn=*kaz0O012VRtX`Tzel
zk5A{n7gk?D!B!%)F9l?0=ld6upa1^{=RTj#_xnH#L_1wnWDIY=n83)u;0Ov_hHe)X
znU~EV<-L1UKrR6*GravGml4#EX}w(%*Lmar>0>P{AW4STHm<GTO3Ys*fZW2rZwfdv
zJh~aau>>%cDmeDC$l3m9U|=X0_2``f_MvC;IiJpVorgU-uYX?B{F@PCE7(nr%~$`w
z=7uoAZgH{HQQ>bn2%5rX<ZsytDxVF%xpuyAu`E%Ms5A2JX88iHMOjq5x<d{qcyt#C
zya@mD|36g1^ZzlhkjN)ciNvDv`nXG{j>^mBpw>#aj|zvY;oD|Qh7uQRN0w517t0(K
z3I4vWzhLceKpH))OH@2c6}o*?O1eW-3P7c<<R_?f=X;Qf7dt=x|L^(#=<9<}?cOl$
zo$o#W9|bF61I5MzP*YG3Y%wIUr+8>Xn&Bm^FIYZ-viK2D?m#N_4jUfu==|u}`Q!5{
zpU&ei-~RvqAGvsNfs}`i;Xb{#ljRr~9K$?2uQ`T#c7AmXaqRpP>d~v)BFDfG?4$V?
z)F*y%|HJ?P9tZz2m&hC5hL(3eou7O<-??-?cl<AM-=q03qle|)(pRAVGLkcp$|O*E
z1nNnHXpos8l^{N-F*F!3BLfpdaZY}6wv_^Sy_l7PYB3i>X>n?iLTX+~QKdp&eu+X_
zera9`18Bij0fs18v#z0@2}oCBda9KISVSROw=7m6IypB*Av&=rT|rMzFE*BoAum5E
zKcy08BY0U~USh6-YB9uKuvRODbkIUQWbtyC4)Ah7xN_ALn0RR(Xl<NANxni#W-*xQ
z@9(RSotcx9TBN7oo0y%dP+VG+3Q|y9nwg@IU!+i+o|yu1s~#837|23ExcLa@fL9-)
zxG^~~4-_;-sU=03sb#4O1&PJQ<@rS^kO1OhsDPOXTTW=DfUc!DBQYhv9HM~)M?#GO
zEsO;D7PN>D?g97`M-;b$L^D&+g-X$c@=Hq;^3xP@Q*-l+D&Zy~LN>i9F-ajezqB}2
zp#ZW9P$3Nzj>$!-sd);jDY&#`L)RAKP@R@vl&t_-#+i!hLhzbQ6gNW_S;AvSzn~~T
zS-&_nCrv*;KR3QOIlm}1J~1VWAt@&@Ih#S*z`)eh+?+w#+1c3G7_@eRQJUErw9ExG
zSY-0{|9?;mN#(=;{{oB*3}3$e|DVIa!0`6_|Nm<k7#QaM`2YV10|UdO-~a#5VPs%<
z{QLj^4U7y7EPww0Kf=hsQ1a*he;y_V2GBqbC?7Lc1u-yI2rx?XuycSa29P*tkfq_<
z|Nr3iVJ_^TF(U?0R|&MIV8xsN|3836$@m1^_$0jexyv~k80@92wTx9jV<%v9V;C41
zEWiK%4{CTYxbr;#H5EM=7#K<z7#J>o|Nq|=)Pr~86X<7h<&)@RcH&d$WpU!u=wWr?
zGiYOT;j?IF_vE|4!Ys$kXW__a;K--p#HZlIC*i~=;Kawlz|g_KzyRv{@Vx*3{{*O+
z3^vONZk8L!EJu)8jv%w#`3^8KbFuK9U~=cXz~sz#gUN~S0h0^g3nnMN4@{nX2bgO3
zPB6LhU0@31JHh10cYrCH?*x+<-vy=ss9KO3=GTnaTmuRmA4UcSyI=qRgZv2!Q;=8!
zBLjo>umAr+18N{K(EgPYMg|6pU;qE7f&|<^{`UmA*_BVBm&Fz2X0ZP~AZ~WZ!)6_L
zyUiX(28M)R|NnyqA3;Wq;?WQo4S~@R7!85Z5Eu=C(GVDj5P<EQfbElj?TdizgMjUO
zfVGi8dp1Dsgz-UpJdpY5`)F%GZBFQLH%MJ4ln<H^1@U3~qCpd)Abtk8@yfsen%DvH
zVf#El6N(@{Xn+eugC-n7G;F^IsO<~l!{opI`=1ZygW9YNpq(Wk9s|P+r~**)6C~mQ
zl?P4Wg7~+g?gLHWg7~0`PY?~7Fa^;t4AsWK0BYbvch`XA0zfm(42X6*Xd)RT4w_H}
z(HT&W!o)qG0ReRug90>QL45|0dYJvc|3m!402(W2U;s^(g8lab>d^mCd8qRlK0x^;
zQ2C!wKFr@Bvj+mh_LZaCZ3Y?xWME)$gVJG8It@yfLFqOqJq=1PgVNie^f4%X4N5<Q
z(%+yo8))X3fq_8`N~=L>Gbrr_rNf|f8k8=B(rr+B8kAlJrME%pV^I1Ulzs-Kzd>m>
zaBqu&K@3W(L1{B6?FOa8pmZ9PE`!o-P<k4aUIwMNLFr>q`Wlpe2Bp72X*STzI8xxl
z_Aj|RJ6kDexch}_Di|8*fwq+~=oM!amlTyGCNb!N_uv&U=;h^?r0S*TmFgvxX6B^m
zW~M-e9GyIMOA^x=z;YRh#Tg8GDV2G}mAMeQqzEEYmRbbf6bDuY<-`{;=oO{rB!V<R
zSp_*IAS*LV81za~D@qvj(lYZh8T5+s!CT?<QZwSyiV|~E<1<o<7~njJj`+l)qQpvw
z4j3Dx3uJ{}Q9jr?iMg4{40`GLC164iY#T@ogI-c`F@s)mer_&k*C0|LQNRRcKTwv2
z<x5=WPQa`HsfDpYG-x3QsH}kLM?Yr))V~L*gJEd#1LHENF))DlfWh>?fHGh-G+V&c
zqw5Ea9en%$KOd@%fdg9b!D!HgD@Ze}PYWx@Kw=<l$H2e<3ImvaSa}PhBcK{V<r2v6
zF#WJ{&kcIc0!%-w{D#r6@)~3p2!qT3(J<`CzyMlS19v~HJcQ9jP=!!ufcG(igkbhX
zL(5tiA6DMN=md~r1_toCBp@{~_d|slvY_XVfaE}8u<{;8!^(S@{V@G7|AWR}Kyd;)
z4h2?!z-U-~1JVzwW6<^2LF-;n_=4<*)weJjR<DBPpl*e+L3AaWeg$ZPfzjYGC6GcW
z292SBm@pbN<^_rqnEe9K@&`tTLhC<}9uS7<1F=E43(bC5`v68mt5c9tFb0Jcm;og~
zQ#~O2Vd0N{p2{n@1VjV6{uxmFVajlwR|3%u+TjXgLFi>@`W-+6gP`+kp!5Zh;~+}G
zBrN{G9MJwh1_lPu;xK5oV}P}XVCR{jtB3Jn^d8V8A~X+y%!IX<X4ryw(8dIW2_|9s
zVDt&7`(gIO_R%hY>W8IMux19(-hCJgLSKdE4VZpd{l5dMA9lVBEPcT2g{6agX!gVQ
z+1{{+m=9Vd1z|x*n0^=yI%fkE#4!6|?KKAIfkB`tbcjv}3DXCo-=Nvw0o@<h;RsO=
zb0>s{8J?e@4K|qlu>HC-p!(6n51PGT#xZ<{+7Ft>g$pt;Fu?S~#wlTPAisjx$TZAu
WkT?vlg4z$7UxbN)XqY|_8-xKQ`$Q7}

literal 0
HcmV?d00001

diff --git a/slock-backup/LICENSE b/slock-backup/LICENSE
new file mode 100755
index 0000000..2e4419b
--- /dev/null
+++ b/slock-backup/LICENSE
@@ -0,0 +1,24 @@
+MIT/X Consortium License
+
+© 2015-2016 Markus Teich <markus.teich@stusta.mhn.de>
+© 2014 Dimitris Papastamos <sin@2f30.org>
+© 2006-2014 Anselm R Garbe <anselm@garbe.us>
+© 2014-2016 Laslo Hunhold <dev@frign.de>
+
+Permission is hereby granted, free of charge, to any person obtaining a
+copy of this software and associated documentation files (the "Software"),
+to deal in the Software without restriction, including without limitation
+the rights to use, copy, modify, merge, publish, distribute, sublicense,
+and/or sell copies of the Software, and to permit persons to whom the
+Software is furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in
+all copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT.  IN NO EVENT SHALL
+THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING
+FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER
+DEALINGS IN THE SOFTWARE.
diff --git a/slock-backup/Makefile b/slock-backup/Makefile
new file mode 100755
index 0000000..f4ffbb7
--- /dev/null
+++ b/slock-backup/Makefile
@@ -0,0 +1,61 @@
+# slock - simple screen locker
+# See LICENSE file for copyright and license details.
+
+include config.mk
+
+SRC = slock.c ${COMPATSRC}
+OBJ = ${SRC:.c=.o}
+
+all: options slock
+
+options:
+	@echo slock build options:
+	@echo "CFLAGS   = ${CFLAGS}"
+	@echo "LDFLAGS  = ${LDFLAGS}"
+	@echo "CC       = ${CC}"
+
+.c.o:
+	@echo CC $<
+	@${CC} -c ${CFLAGS} $<
+
+${OBJ}: config.h config.mk arg.h util.h
+
+config.h:
+	@echo creating $@ from config.def.h
+	@cp config.def.h $@
+
+slock: ${OBJ}
+	@echo CC -o $@
+	@${CC} -o $@ ${OBJ} ${LDFLAGS}
+
+clean:
+	@echo cleaning
+	@rm -f slock ${OBJ} slock-${VERSION}.tar.gz
+
+dist: clean
+	@echo creating dist tarball
+	@mkdir -p slock-${VERSION}
+	@cp -R LICENSE Makefile README slock.1 config.mk \
+		${SRC} explicit_bzero.c config.def.h arg.h util.h slock-${VERSION}
+	@tar -cf slock-${VERSION}.tar slock-${VERSION}
+	@gzip slock-${VERSION}.tar
+	@rm -rf slock-${VERSION}
+
+install: all
+	@echo installing executable file to ${DESTDIR}${PREFIX}/bin
+	@mkdir -p ${DESTDIR}${PREFIX}/bin
+	@cp -f slock ${DESTDIR}${PREFIX}/bin
+	@chmod 755 ${DESTDIR}${PREFIX}/bin/slock
+	@chmod u+s ${DESTDIR}${PREFIX}/bin/slock
+	@echo installing manual page to ${DESTDIR}${MANPREFIX}/man1
+	@mkdir -p ${DESTDIR}${MANPREFIX}/man1
+	@sed "s/VERSION/${VERSION}/g" <slock.1 >${DESTDIR}${MANPREFIX}/man1/slock.1
+	@chmod 644 ${DESTDIR}${MANPREFIX}/man1/slock.1
+
+uninstall:
+	@echo removing executable file from ${DESTDIR}${PREFIX}/bin
+	@rm -f ${DESTDIR}${PREFIX}/bin/slock
+	@echo removing manual page from ${DESTDIR}${MANPREFIX}/man1
+	@rm -f ${DESTDIR}${MANPREFIX}/man1/slock.1
+
+.PHONY: all options clean dist install uninstall
diff --git a/slock-backup/README b/slock-backup/README
new file mode 100755
index 0000000..a81290d
--- /dev/null
+++ b/slock-backup/README
@@ -0,0 +1,24 @@
+slock - simple screen locker
+============================
+simple screen locker utility for X. 
+
+
+Requirements
+------------
+In order to build slock you need the Xlib header files.
+
+
+Installation
+------------
+Edit config.mk to match your local setup (slock is installed into
+the /usr/local namespace by default).
+
+Afterwards enter the following command to build and install slock
+(if necessary as root):
+
+    make clean install
+
+
+Running slock
+-------------
+Simply invoke the 'slock' command. To get out of it, enter your password.
diff --git a/slock-backup/arg.h b/slock-backup/arg.h
new file mode 100755
index 0000000..0b23c53
--- /dev/null
+++ b/slock-backup/arg.h
@@ -0,0 +1,65 @@
+/*
+ * Copy me if you can.
+ * by 20h
+ */
+
+#ifndef ARG_H__
+#define ARG_H__
+
+extern char *argv0;
+
+/* use main(int argc, char *argv[]) */
+#define ARGBEGIN	for (argv0 = *argv, argv++, argc--;\
+					argv[0] && argv[0][0] == '-'\
+					&& argv[0][1];\
+					argc--, argv++) {\
+				char argc_;\
+				char **argv_;\
+				int brk_;\
+				if (argv[0][1] == '-' && argv[0][2] == '\0') {\
+					argv++;\
+					argc--;\
+					break;\
+				}\
+				for (brk_ = 0, argv[0]++, argv_ = argv;\
+						argv[0][0] && !brk_;\
+						argv[0]++) {\
+					if (argv_ != argv)\
+						break;\
+					argc_ = argv[0][0];\
+					switch (argc_)
+
+/* Handles obsolete -NUM syntax */
+#define ARGNUM				case '0':\
+					case '1':\
+					case '2':\
+					case '3':\
+					case '4':\
+					case '5':\
+					case '6':\
+					case '7':\
+					case '8':\
+					case '9'
+
+#define ARGEND			}\
+			}
+
+#define ARGC()		argc_
+
+#define ARGNUMF()	(brk_ = 1, estrtonum(argv[0], 0, INT_MAX))
+
+#define EARGF(x)	((argv[0][1] == '\0' && argv[1] == NULL)?\
+				((x), abort(), (char *)0) :\
+				(brk_ = 1, (argv[0][1] != '\0')?\
+					(&argv[0][1]) :\
+					(argc--, argv++, argv[0])))
+
+#define ARGF()		((argv[0][1] == '\0' && argv[1] == NULL)?\
+				(char *)0 :\
+				(brk_ = 1, (argv[0][1] != '\0')?\
+					(&argv[0][1]) :\
+					(argc--, argv++, argv[0])))
+
+#define LNGARG()	&argv[0][0]
+
+#endif
diff --git a/slock-backup/config.def.h b/slock-backup/config.def.h
new file mode 100755
index 0000000..9855e21
--- /dev/null
+++ b/slock-backup/config.def.h
@@ -0,0 +1,12 @@
+/* user and group to drop privileges to */
+static const char *user  = "nobody";
+static const char *group = "nogroup";
+
+static const char *colorname[NUMCOLS] = {
+	[INIT] =   "black",     /* after initialization */
+	[INPUT] =  "#005577",   /* during input */
+	[FAILED] = "#CC3333",   /* wrong password */
+};
+
+/* treat a cleared input like a wrong password (color) */
+static const int failonclear = 1;
diff --git a/slock-backup/config.mk b/slock-backup/config.mk
new file mode 100755
index 0000000..74429ae
--- /dev/null
+++ b/slock-backup/config.mk
@@ -0,0 +1,32 @@
+# slock version
+VERSION = 1.4
+
+# Customize below to fit your system
+
+# paths
+PREFIX = /usr/local
+MANPREFIX = ${PREFIX}/share/man
+
+X11INC = /usr/X11R6/include
+X11LIB = /usr/X11R6/lib
+
+# includes and libs
+INCS = -I. -I/usr/include -I${X11INC}
+LIBS = -L/usr/lib -lc -lcrypt -L${X11LIB} -lX11 -lXext -lXrandr
+
+# flags
+CPPFLAGS = -DVERSION=\"${VERSION}\" -D_DEFAULT_SOURCE -DHAVE_SHADOW_H
+CFLAGS = -std=c99 -pedantic -Wall -Os ${INCS} ${CPPFLAGS}
+LDFLAGS = -s ${LIBS}
+COMPATSRC = explicit_bzero.c
+
+# On OpenBSD and Darwin remove -lcrypt from LIBS
+#LIBS = -L/usr/lib -lc -L${X11LIB} -lX11 -lXext -lXrandr
+# On *BSD remove -DHAVE_SHADOW_H from CPPFLAGS
+# On NetBSD add -D_NETBSD_SOURCE to CPPFLAGS
+#CPPFLAGS = -DVERSION=\"${VERSION}\" -D_BSD_SOURCE -D_NETBSD_SOURCE
+# On OpenBSD set COMPATSRC to empty
+#COMPATSRC =
+
+# compiler and linker
+CC = cc
diff --git a/slock-backup/explicit_bzero.c b/slock-backup/explicit_bzero.c
new file mode 100755
index 0000000..3e33ca8
--- /dev/null
+++ b/slock-backup/explicit_bzero.c
@@ -0,0 +1,19 @@
+/*	$OpenBSD: explicit_bzero.c,v 1.3 2014/06/21 02:34:26 matthew Exp $ */
+/*
+ * Public domain.
+ * Written by Matthew Dempsky.
+ */
+
+#include <string.h>
+
+__attribute__((weak)) void
+__explicit_bzero_hook(void *buf, size_t len)
+{
+}
+
+void
+explicit_bzero(void *buf, size_t len)
+{
+	memset(buf, 0, len);
+	__explicit_bzero_hook(buf, len);
+}
diff --git a/slock-backup/slock.1 b/slock-backup/slock.1
new file mode 100755
index 0000000..82cdcd6
--- /dev/null
+++ b/slock-backup/slock.1
@@ -0,0 +1,39 @@
+.Dd 2016-08-23
+.Dt SLOCK 1
+.Sh NAME
+.Nm slock
+.Nd simple X screen locker
+.Sh SYNOPSIS
+.Nm
+.Op Fl v
+.Op Ar cmd Op Ar arg ...
+.Sh DESCRIPTION
+.Nm
+is a simple X screen locker. If provided,
+.Ar cmd Op Ar arg ...
+is executed after the screen has been locked.
+.Sh OPTIONS
+.Bl -tag -width Ds
+.It Fl v
+Print version information to stdout and exit.
+.El
+.Sh SECURITY CONSIDERATIONS
+To make sure a locked screen can not be bypassed by switching VTs
+or killing the X server with Ctrl+Alt+Backspace, it is recommended
+to disable both in
+.Xr xorg.conf 5
+for maximum security:
+.Bd -literal -offset left
+Section "ServerFlags"
+	Option "DontVTSwitch" "True"
+	Option "DontZap"      "True"
+EndSection
+.Ed
+.Sh EXAMPLES
+$
+.Nm
+/usr/sbin/s2ram
+.Sh CUSTOMIZATION
+.Nm
+can be customized by creating a custom config.h from config.def.h and
+(re)compiling the source code. This keeps it fast, secure and simple.
diff --git a/slock-backup/slock.c b/slock-backup/slock.c
new file mode 100755
index 0000000..d2f0886
--- /dev/null
+++ b/slock-backup/slock.c
@@ -0,0 +1,387 @@
+/* See LICENSE file for license details. */
+#define _XOPEN_SOURCE 500
+#if HAVE_SHADOW_H
+#include <shadow.h>
+#endif
+
+#include <ctype.h>
+#include <errno.h>
+#include <grp.h>
+#include <pwd.h>
+#include <stdarg.h>
+#include <stdlib.h>
+#include <stdio.h>
+#include <string.h>
+#include <unistd.h>
+#include <sys/types.h>
+#include <X11/extensions/Xrandr.h>
+#include <X11/keysym.h>
+#include <X11/Xlib.h>
+#include <X11/Xutil.h>
+
+#include "arg.h"
+#include "util.h"
+
+char *argv0;
+
+enum {
+	INIT,
+	INPUT,
+	FAILED,
+	NUMCOLS
+};
+
+struct lock {
+	int screen;
+	Window root, win;
+	Pixmap pmap;
+	unsigned long colors[NUMCOLS];
+};
+
+struct xrandr {
+	int active;
+	int evbase;
+	int errbase;
+};
+
+#include "config.h"
+
+static void
+die(const char *errstr, ...)
+{
+	va_list ap;
+
+	va_start(ap, errstr);
+	vfprintf(stderr, errstr, ap);
+	va_end(ap);
+	exit(1);
+}
+
+#ifdef __linux__
+#include <fcntl.h>
+#include <linux/oom.h>
+
+static void
+dontkillme(void)
+{
+	FILE *f;
+	const char oomfile[] = "/proc/self/oom_score_adj";
+
+	if (!(f = fopen(oomfile, "w"))) {
+		if (errno == ENOENT)
+			return;
+		die("slock: fopen %s: %s\n", oomfile, strerror(errno));
+	}
+	fprintf(f, "%d", OOM_SCORE_ADJ_MIN);
+	if (fclose(f)) {
+		if (errno == EACCES)
+			die("slock: unable to disable OOM killer. "
+			    "Make sure to suid or sgid slock.\n");
+		else
+			die("slock: fclose %s: %s\n", oomfile, strerror(errno));
+	}
+}
+#endif
+
+static const char *
+gethash(void)
+{
+	const char *hash;
+	struct passwd *pw;
+
+	/* Check if the current user has a password entry */
+	errno = 0;
+	if (!(pw = getpwuid(getuid()))) {
+		if (errno)
+			die("slock: getpwuid: %s\n", strerror(errno));
+		else
+			die("slock: cannot retrieve password entry\n");
+	}
+	hash = pw->pw_passwd;
+
+#if HAVE_SHADOW_H
+	if (!strcmp(hash, "x")) {
+		struct spwd *sp;
+		if (!(sp = getspnam(pw->pw_name)))
+			die("slock: getspnam: cannot retrieve shadow entry. "
+			    "Make sure to suid or sgid slock.\n");
+		hash = sp->sp_pwdp;
+	}
+#else
+	if (!strcmp(hash, "*")) {
+#ifdef __OpenBSD__
+		if (!(pw = getpwuid_shadow(getuid())))
+			die("slock: getpwnam_shadow: cannot retrieve shadow entry. "
+			    "Make sure to suid or sgid slock.\n");
+		hash = pw->pw_passwd;
+#else
+		die("slock: getpwuid: cannot retrieve shadow entry. "
+		    "Make sure to suid or sgid slock.\n");
+#endif /* __OpenBSD__ */
+	}
+#endif /* HAVE_SHADOW_H */
+
+	return hash;
+}
+
+static void
+readpw(Display *dpy, struct xrandr *rr, struct lock **locks, int nscreens,
+       const char *hash)
+{
+	XRRScreenChangeNotifyEvent *rre;
+	char buf[32], passwd[256], *inputhash;
+	int num, screen, running, failure, oldc;
+	unsigned int len, color;
+	KeySym ksym;
+	XEvent ev;
+
+	len = 0;
+	running = 1;
+	failure = 0;
+	oldc = INIT;
+
+	while (running && !XNextEvent(dpy, &ev)) {
+		if (ev.type == KeyPress) {
+			explicit_bzero(&buf, sizeof(buf));
+			num = XLookupString(&ev.xkey, buf, sizeof(buf), &ksym, 0);
+			if (IsKeypadKey(ksym)) {
+				if (ksym == XK_KP_Enter)
+					ksym = XK_Return;
+				else if (ksym >= XK_KP_0 && ksym <= XK_KP_9)
+					ksym = (ksym - XK_KP_0) + XK_0;
+			}
+			if (IsFunctionKey(ksym) ||
+			    IsKeypadKey(ksym) ||
+			    IsMiscFunctionKey(ksym) ||
+			    IsPFKey(ksym) ||
+			    IsPrivateKeypadKey(ksym))
+				continue;
+			switch (ksym) {
+			case XK_Return:
+				passwd[len] = '\0';
+				errno = 0;
+				if (!(inputhash = crypt(passwd, hash)))
+					fprintf(stderr, "slock: crypt: %s\n", strerror(errno));
+				else
+					running = !!strcmp(inputhash, hash);
+				if (running) {
+					XBell(dpy, 100);
+					failure = 1;
+				}
+				explicit_bzero(&passwd, sizeof(passwd));
+				len = 0;
+				break;
+			case XK_Escape:
+				explicit_bzero(&passwd, sizeof(passwd));
+				len = 0;
+				break;
+			case XK_BackSpace:
+				if (len)
+					passwd[len--] = '\0';
+				break;
+			default:
+				if (num && !iscntrl((int)buf[0]) &&
+				    (len + num < sizeof(passwd))) {
+					memcpy(passwd + len, buf, num);
+					len += num;
+				}
+				break;
+			}
+			color = len ? INPUT : ((failure || failonclear) ? FAILED : INIT);
+			if (running && oldc != color) {
+				for (screen = 0; screen < nscreens; screen++) {
+					XSetWindowBackground(dpy,
+					                     locks[screen]->win,
+					                     locks[screen]->colors[color]);
+					XClearWindow(dpy, locks[screen]->win);
+				}
+				oldc = color;
+			}
+		} else if (rr->active && ev.type == rr->evbase + RRScreenChangeNotify) {
+			rre = (XRRScreenChangeNotifyEvent*)&ev;
+			for (screen = 0; screen < nscreens; screen++) {
+				if (locks[screen]->win == rre->window) {
+					XResizeWindow(dpy, locks[screen]->win,
+					              rre->width, rre->height);
+					XClearWindow(dpy, locks[screen]->win);
+				}
+			}
+		} else for (screen = 0; screen < nscreens; screen++)
+			XRaiseWindow(dpy, locks[screen]->win);
+	}
+}
+
+static struct lock *
+lockscreen(Display *dpy, struct xrandr *rr, int screen)
+{
+	char curs[] = {0, 0, 0, 0, 0, 0, 0, 0};
+	int i, ptgrab, kbgrab;
+	struct lock *lock;
+	XColor color, dummy;
+	XSetWindowAttributes wa;
+	Cursor invisible;
+
+	if (dpy == NULL || screen < 0 || !(lock = malloc(sizeof(struct lock))))
+		return NULL;
+
+	lock->screen = screen;
+	lock->root = RootWindow(dpy, lock->screen);
+
+	for (i = 0; i < NUMCOLS; i++) {
+		XAllocNamedColor(dpy, DefaultColormap(dpy, lock->screen),
+		                 colorname[i], &color, &dummy);
+		lock->colors[i] = color.pixel;
+	}
+
+	/* init */
+	wa.override_redirect = 1;
+	wa.background_pixel = lock->colors[INIT];
+	lock->win = XCreateWindow(dpy, lock->root, 0, 0,
+	                          DisplayWidth(dpy, lock->screen),
+	                          DisplayHeight(dpy, lock->screen),
+	                          0, DefaultDepth(dpy, lock->screen),
+	                          CopyFromParent,
+	                          DefaultVisual(dpy, lock->screen),
+	                          CWOverrideRedirect | CWBackPixel, &wa);
+	lock->pmap = XCreateBitmapFromData(dpy, lock->win, curs, 8, 8);
+	invisible = XCreatePixmapCursor(dpy, lock->pmap, lock->pmap,
+	                                &color, &color, 0, 0);
+	XDefineCursor(dpy, lock->win, invisible);
+
+	/* Try to grab mouse pointer *and* keyboard for 600ms, else fail the lock */
+	for (i = 0, ptgrab = kbgrab = -1; i < 6; i++) {
+		if (ptgrab != GrabSuccess) {
+			ptgrab = XGrabPointer(dpy, lock->root, False,
+			                      ButtonPressMask | ButtonReleaseMask |
+			                      PointerMotionMask, GrabModeAsync,
+			                      GrabModeAsync, None, invisible, CurrentTime);
+		}
+		if (kbgrab != GrabSuccess) {
+			kbgrab = XGrabKeyboard(dpy, lock->root, True,
+			                       GrabModeAsync, GrabModeAsync, CurrentTime);
+		}
+
+		/* input is grabbed: we can lock the screen */
+		if (ptgrab == GrabSuccess && kbgrab == GrabSuccess) {
+			XMapRaised(dpy, lock->win);
+			if (rr->active)
+				XRRSelectInput(dpy, lock->win, RRScreenChangeNotifyMask);
+
+			XSelectInput(dpy, lock->root, SubstructureNotifyMask);
+			return lock;
+		}
+
+		/* retry on AlreadyGrabbed but fail on other errors */
+		if ((ptgrab != AlreadyGrabbed && ptgrab != GrabSuccess) ||
+		    (kbgrab != AlreadyGrabbed && kbgrab != GrabSuccess))
+			break;
+
+		usleep(100000);
+	}
+
+	/* we couldn't grab all input: fail out */
+	if (ptgrab != GrabSuccess)
+		fprintf(stderr, "slock: unable to grab mouse pointer for screen %d\n",
+		        screen);
+	if (kbgrab != GrabSuccess)
+		fprintf(stderr, "slock: unable to grab keyboard for screen %d\n",
+		        screen);
+	return NULL;
+}
+
+static void
+usage(void)
+{
+	die("usage: slock [-v] [cmd [arg ...]]\n");
+}
+
+int
+main(int argc, char **argv) {
+	struct xrandr rr;
+	struct lock **locks;
+	struct passwd *pwd;
+	struct group *grp;
+	uid_t duid;
+	gid_t dgid;
+	const char *hash;
+	Display *dpy;
+	int s, nlocks, nscreens;
+
+	ARGBEGIN {
+	case 'v':
+		fprintf(stderr, "slock-"VERSION"\n");
+		return 0;
+	default:
+		usage();
+	} ARGEND
+
+	/* validate drop-user and -group */
+	errno = 0;
+	if (!(pwd = getpwnam(user)))
+		die("slock: getpwnam %s: %s\n", user,
+		    errno ? strerror(errno) : "user entry not found");
+	duid = pwd->pw_uid;
+	errno = 0;
+	if (!(grp = getgrnam(group)))
+		die("slock: getgrnam %s: %s\n", group,
+		    errno ? strerror(errno) : "group entry not found");
+	dgid = grp->gr_gid;
+
+#ifdef __linux__
+	dontkillme();
+#endif
+
+	hash = gethash();
+	errno = 0;
+	if (!crypt("", hash))
+		die("slock: crypt: %s\n", strerror(errno));
+
+	if (!(dpy = XOpenDisplay(NULL)))
+		die("slock: cannot open display\n");
+
+	/* drop privileges */
+	if (setgroups(0, NULL) < 0)
+		die("slock: setgroups: %s\n", strerror(errno));
+	if (setgid(dgid) < 0)
+		die("slock: setgid: %s\n", strerror(errno));
+	if (setuid(duid) < 0)
+		die("slock: setuid: %s\n", strerror(errno));
+
+	/* check for Xrandr support */
+	rr.active = XRRQueryExtension(dpy, &rr.evbase, &rr.errbase);
+
+	/* get number of screens in display "dpy" and blank them */
+	nscreens = ScreenCount(dpy);
+	if (!(locks = calloc(nscreens, sizeof(struct lock *))))
+		die("slock: out of memory\n");
+	for (nlocks = 0, s = 0; s < nscreens; s++) {
+		if ((locks[s] = lockscreen(dpy, &rr, s)) != NULL)
+			nlocks++;
+		else
+			break;
+	}
+	XSync(dpy, 0);
+
+	/* did we manage to lock everything? */
+	if (nlocks != nscreens)
+		return 1;
+
+	/* run post-lock command */
+	if (argc > 0) {
+		switch (fork()) {
+		case -1:
+			die("slock: fork failed: %s\n", strerror(errno));
+		case 0:
+			if (close(ConnectionNumber(dpy)) < 0)
+				die("slock: close: %s\n", strerror(errno));
+			execvp(argv[0], argv);
+			fprintf(stderr, "slock: execvp %s: %s\n", argv[0], strerror(errno));
+			_exit(1);
+		}
+	}
+
+	/* everything is now blank. Wait for the correct password */
+	readpw(dpy, &rr, locks, nscreens, hash);
+
+	return 0;
+}
diff --git a/slock-backup/util.h b/slock-backup/util.h
new file mode 100755
index 0000000..6f748b8
--- /dev/null
+++ b/slock-backup/util.h
@@ -0,0 +1,2 @@
+#undef explicit_bzero
+void explicit_bzero(void *, size_t);
diff --git a/slock.1 b/slock.1
new file mode 100755
index 0000000..82cdcd6
--- /dev/null
+++ b/slock.1
@@ -0,0 +1,39 @@
+.Dd 2016-08-23
+.Dt SLOCK 1
+.Sh NAME
+.Nm slock
+.Nd simple X screen locker
+.Sh SYNOPSIS
+.Nm
+.Op Fl v
+.Op Ar cmd Op Ar arg ...
+.Sh DESCRIPTION
+.Nm
+is a simple X screen locker. If provided,
+.Ar cmd Op Ar arg ...
+is executed after the screen has been locked.
+.Sh OPTIONS
+.Bl -tag -width Ds
+.It Fl v
+Print version information to stdout and exit.
+.El
+.Sh SECURITY CONSIDERATIONS
+To make sure a locked screen can not be bypassed by switching VTs
+or killing the X server with Ctrl+Alt+Backspace, it is recommended
+to disable both in
+.Xr xorg.conf 5
+for maximum security:
+.Bd -literal -offset left
+Section "ServerFlags"
+	Option "DontVTSwitch" "True"
+	Option "DontZap"      "True"
+EndSection
+.Ed
+.Sh EXAMPLES
+$
+.Nm
+/usr/sbin/s2ram
+.Sh CUSTOMIZATION
+.Nm
+can be customized by creating a custom config.h from config.def.h and
+(re)compiling the source code. This keeps it fast, secure and simple.
diff --git a/slock.c b/slock.c
new file mode 100755
index 0000000..98f5d80
--- /dev/null
+++ b/slock.c
@@ -0,0 +1,386 @@
+/* See LICENSE file for license details. */
+#define _XOPEN_SOURCE 500
+#if HAVE_SHADOW_H
+#include <shadow.h>
+#endif
+
+#include <ctype.h>
+#include <errno.h>
+#include <grp.h>
+#include <pwd.h>
+#include <stdarg.h>
+#include <stdlib.h>
+#include <stdio.h>
+#include <string.h>
+#include <unistd.h>
+#include <sys/types.h>
+#include <X11/extensions/Xrandr.h>
+#include <X11/keysym.h>
+#include <X11/Xlib.h>
+#include <X11/Xutil.h>
+
+#include "arg.h"
+#include "util.h"
+
+char *argv0;
+
+enum {
+	INIT,
+	INPUT,
+	FAILED,
+	NUMCOLS
+};
+
+struct lock {
+	int screen;
+	Window root, win;
+	Pixmap pmap;
+	unsigned long colors[NUMCOLS];
+};
+
+struct xrandr {
+	int active;
+	int evbase;
+	int errbase;
+};
+
+#include "config.h"
+
+static void
+die(const char *errstr, ...)
+{
+	va_list ap;
+
+	va_start(ap, errstr);
+	vfprintf(stderr, errstr, ap);
+	va_end(ap);
+	exit(1);
+}
+
+#ifdef __linux__
+#include <fcntl.h>
+#include <linux/oom.h>
+
+static void
+dontkillme(void)
+{
+	FILE *f;
+	const char oomfile[] = "/proc/self/oom_score_adj";
+
+	if (!(f = fopen(oomfile, "w"))) {
+		if (errno == ENOENT)
+			return;
+		die("slock: fopen %s: %s\n", oomfile, strerror(errno));
+	}
+	fprintf(f, "%d", OOM_SCORE_ADJ_MIN);
+	if (fclose(f)) {
+		if (errno == EACCES)
+			die("slock: unable to disable OOM killer. "
+			    "Make sure to suid or sgid slock.\n");
+		else
+			die("slock: fclose %s: %s\n", oomfile, strerror(errno));
+	}
+}
+#endif
+
+static const char *
+gethash(void)
+{
+	const char *hash;
+	struct passwd *pw;
+
+	/* Check if the current user has a password entry */
+	errno = 0;
+	if (!(pw = getpwuid(getuid()))) {
+		if (errno)
+			die("slock: getpwuid: %s\n", strerror(errno));
+		else
+			die("slock: cannot retrieve password entry\n");
+	}
+	hash = pw->pw_passwd;
+
+#if HAVE_SHADOW_H
+	if (!strcmp(hash, "x")) {
+		struct spwd *sp;
+		if (!(sp = getspnam(pw->pw_name)))
+			die("slock: getspnam: cannot retrieve shadow entry. "
+			    "Make sure to suid or sgid slock.\n");
+		hash = sp->sp_pwdp;
+	}
+#else
+	if (!strcmp(hash, "*")) {
+#ifdef __OpenBSD__
+		if (!(pw = getpwuid_shadow(getuid())))
+			die("slock: getpwnam_shadow: cannot retrieve shadow entry. "
+			    "Make sure to suid or sgid slock.\n");
+		hash = pw->pw_passwd;
+#else
+		die("slock: getpwuid: cannot retrieve shadow entry. "
+		    "Make sure to suid or sgid slock.\n");
+#endif /* __OpenBSD__ */
+	}
+#endif /* HAVE_SHADOW_H */
+
+	return hash;
+}
+
+static void
+readpw(Display *dpy, struct xrandr *rr, struct lock **locks, int nscreens,
+       const char *hash)
+{
+	XRRScreenChangeNotifyEvent *rre;
+	char buf[32], passwd[256], *inputhash;
+	int num, screen, running, failure, oldc;
+	unsigned int len, color;
+	KeySym ksym;
+	XEvent ev;
+
+	len = 0;
+	running = 1;
+	failure = 0;
+	oldc = INIT;
+
+	while (running && !XNextEvent(dpy, &ev)) {
+		if (ev.type == KeyPress) {
+			explicit_bzero(&buf, sizeof(buf));
+			num = XLookupString(&ev.xkey, buf, sizeof(buf), &ksym, 0);
+			if (IsKeypadKey(ksym)) {
+				if (ksym == XK_KP_Enter)
+					ksym = XK_Return;
+				else if (ksym >= XK_KP_0 && ksym <= XK_KP_9)
+					ksym = (ksym - XK_KP_0) + XK_0;
+			}
+			if (IsFunctionKey(ksym) ||
+			    IsKeypadKey(ksym) ||
+			    IsMiscFunctionKey(ksym) ||
+			    IsPFKey(ksym) ||
+			    IsPrivateKeypadKey(ksym))
+				continue;
+			switch (ksym) {
+			case XK_Return:
+				passwd[len] = '\0';
+				errno = 0;
+				if (!(inputhash = crypt(passwd, hash)))
+					fprintf(stderr, "slock: crypt: %s\n", strerror(errno));
+				else
+					running = !!strcmp(inputhash, hash);
+				if (running) {
+					XBell(dpy, 100);
+					failure = 1;
+				}
+				explicit_bzero(&passwd, sizeof(passwd));
+				len = 0;
+				break;
+			case XK_Escape:
+				explicit_bzero(&passwd, sizeof(passwd));
+				len = 0;
+				break;
+			case XK_BackSpace:
+				if (len)
+					passwd[len--] = '\0';
+				break;
+			default:
+				if (num && !iscntrl((int)buf[0]) &&
+				    (len + num < sizeof(passwd))) {
+					memcpy(passwd + len, buf, num);
+					len += num;
+				}
+				break;
+			}
+			color = len ? INPUT : ((failure || failonclear) ? FAILED : INIT);
+			if (running && oldc != color) {
+				for (screen = 0; screen < nscreens; screen++) {
+					XSetWindowBackground(dpy,
+					                     locks[screen]->win,
+					                     locks[screen]->colors[color]);
+					XClearWindow(dpy, locks[screen]->win);
+				}
+				oldc = color;
+			}
+		} else if (rr->active && ev.type == rr->evbase + RRScreenChangeNotify) {
+			rre = (XRRScreenChangeNotifyEvent*)&ev;
+			for (screen = 0; screen < nscreens; screen++) {
+				if (locks[screen]->win == rre->window) {
+					XResizeWindow(dpy, locks[screen]->win,
+					              rre->width, rre->height);
+					XClearWindow(dpy, locks[screen]->win);
+				}
+			}
+		} else for (screen = 0; screen < nscreens; screen++)
+			XRaiseWindow(dpy, locks[screen]->win);
+	}
+}
+
+static struct lock *
+lockscreen(Display *dpy, struct xrandr *rr, int screen)
+{
+	char curs[] = {0, 0, 0, 0, 0, 0, 0, 0};
+	int i, ptgrab, kbgrab;
+	struct lock *lock;
+	XColor color, dummy;
+	XSetWindowAttributes wa;
+	Cursor invisible;
+
+	if (dpy == NULL || screen < 0 || !(lock = malloc(sizeof(struct lock))))
+		return NULL;
+
+	lock->screen = screen;
+	lock->root = RootWindow(dpy, lock->screen);
+
+	for (i = 0; i < NUMCOLS; i++) {
+		XAllocNamedColor(dpy, DefaultColormap(dpy, lock->screen),
+		                 colorname[i], &color, &dummy);
+		lock->colors[i] = color.pixel;
+	}
+
+	/* init */
+	wa.override_redirect = 1;
+	wa.background_pixel = lock->colors[INIT];
+	lock->win = XCreateWindow(dpy, lock->root, 0, 0,
+	                          DisplayWidth(dpy, lock->screen),
+	                          DisplayHeight(dpy, lock->screen),
+	                          0, DefaultDepth(dpy, lock->screen),
+	                          CopyFromParent,
+	                          DefaultVisual(dpy, lock->screen),
+	                          CWOverrideRedirect | CWBackPixel, &wa);
+	lock->pmap = XCreateBitmapFromData(dpy, lock->win, curs, 8, 8);
+	invisible = XCreatePixmapCursor(dpy, lock->pmap, lock->pmap,
+	                                &color, &color, 0, 0);
+	XDefineCursor(dpy, lock->win, invisible);
+
+	/* Try to grab mouse pointer *and* keyboard for 600ms, else fail the lock */
+	for (i = 0, ptgrab = kbgrab = -1; i < 6; i++) {
+		if (ptgrab != GrabSuccess) {
+			ptgrab = XGrabPointer(dpy, lock->root, False,
+			                      ButtonPressMask | ButtonReleaseMask |
+			                      PointerMotionMask, GrabModeAsync,
+			                      GrabModeAsync, None, None, CurrentTime);
+		}
+		if (kbgrab != GrabSuccess) {
+			kbgrab = XGrabKeyboard(dpy, lock->root, True,
+			                       GrabModeAsync, GrabModeAsync, CurrentTime);
+		}
+
+		/* input is grabbed: we can lock the screen */
+		if (ptgrab == GrabSuccess && kbgrab == GrabSuccess) {
+			if (rr->active)
+				XRRSelectInput(dpy, lock->win, RRScreenChangeNotifyMask);
+
+			XSelectInput(dpy, lock->root, SubstructureNotifyMask);
+			return lock;
+		}
+
+		/* retry on AlreadyGrabbed but fail on other errors */
+		if ((ptgrab != AlreadyGrabbed && ptgrab != GrabSuccess) ||
+		    (kbgrab != AlreadyGrabbed && kbgrab != GrabSuccess))
+			break;
+
+		usleep(100000);
+	}
+
+	/* we couldn't grab all input: fail out */
+	if (ptgrab != GrabSuccess)
+		fprintf(stderr, "slock: unable to grab mouse pointer for screen %d\n",
+		        screen);
+	if (kbgrab != GrabSuccess)
+		fprintf(stderr, "slock: unable to grab keyboard for screen %d\n",
+		        screen);
+	return NULL;
+}
+
+static void
+usage(void)
+{
+	die("usage: slock [-v] [cmd [arg ...]]\n");
+}
+
+int
+main(int argc, char **argv) {
+	struct xrandr rr;
+	struct lock **locks;
+	struct passwd *pwd;
+	struct group *grp;
+	uid_t duid;
+	gid_t dgid;
+	const char *hash;
+	Display *dpy;
+	int s, nlocks, nscreens;
+
+	ARGBEGIN {
+	case 'v':
+		fprintf(stderr, "slock-"VERSION"\n");
+		return 0;
+	default:
+		usage();
+	} ARGEND
+
+	/* validate drop-user and -group */
+	errno = 0;
+	if (!(pwd = getpwnam(user)))
+		die("slock: getpwnam %s: %s\n", user,
+		    errno ? strerror(errno) : "user entry not found");
+	duid = pwd->pw_uid;
+	errno = 0;
+	if (!(grp = getgrnam(group)))
+		die("slock: getgrnam %s: %s\n", group,
+		    errno ? strerror(errno) : "group entry not found");
+	dgid = grp->gr_gid;
+
+#ifdef __linux__
+	dontkillme();
+#endif
+
+	hash = gethash();
+	errno = 0;
+	if (!crypt("", hash))
+		die("slock: crypt: %s\n", strerror(errno));
+
+	if (!(dpy = XOpenDisplay(NULL)))
+		die("slock: cannot open display\n");
+
+	/* drop privileges */
+	if (setgroups(0, NULL) < 0)
+		die("slock: setgroups: %s\n", strerror(errno));
+	if (setgid(dgid) < 0)
+		die("slock: setgid: %s\n", strerror(errno));
+	if (setuid(duid) < 0)
+		die("slock: setuid: %s\n", strerror(errno));
+
+	/* check for Xrandr support */
+	rr.active = XRRQueryExtension(dpy, &rr.evbase, &rr.errbase);
+
+	/* get number of screens in display "dpy" and blank them */
+	nscreens = ScreenCount(dpy);
+	if (!(locks = calloc(nscreens, sizeof(struct lock *))))
+		die("slock: out of memory\n");
+	for (nlocks = 0, s = 0; s < nscreens; s++) {
+		if ((locks[s] = lockscreen(dpy, &rr, s)) != NULL)
+			nlocks++;
+		else
+			break;
+	}
+	XSync(dpy, 0);
+
+	/* did we manage to lock everything? */
+	if (nlocks != nscreens)
+		return 1;
+
+	/* run post-lock command */
+	if (argc > 0) {
+		switch (fork()) {
+		case -1:
+			die("slock: fork failed: %s\n", strerror(errno));
+		case 0:
+			if (close(ConnectionNumber(dpy)) < 0)
+				die("slock: close: %s\n", strerror(errno));
+			execvp(argv[0], argv);
+			fprintf(stderr, "slock: execvp %s: %s\n", argv[0], strerror(errno));
+			_exit(1);
+		}
+	}
+
+	/* everything is now blank. Wait for the correct password */
+	readpw(dpy, &rr, locks, nscreens, hash);
+
+	return 0;
+}
diff --git a/slock.o b/slock.o
new file mode 100755
index 0000000000000000000000000000000000000000..7a219e2e8779567fbb910c00da5c20a34f03edab
GIT binary patch
literal 11008
zcmb<-^>JfjWMqH=Mg}_u1P><4z;Hkf!FB*M9T)@|1Q<LT-`rqeVDRkx<<VK9qT$gQ
zqGI6D>7!!d)9Iq(;M3`&;?Z)T#GGH#MJ0e=(?=zNUo%9dfM0WtN&^D}1Ha}Hl?h;a
zjmiQry+vgMnBJpufPsM_#iN@=RfB<n!K2efMZ)laN4G7=Zja7KKAqP*dRtT;FfcG2
zXHnsRD&g?xbx~0`?xMnC02L8<0n)G^<Rvi6G2FNFxMP@OsAGs{=ao>8&cDHiw>=u)
zNHBpcDN*6*^ih#OvbIHqgNcE`@BqkQjpHmTAk#pO5%B0PQ4#Ryd=ECY^#FhCUM2>H
zZWk4e<{wP_t>#P&3_iVUR6w%(6c`v7e4r{lx@%MfTn!KSbiUgK68Gr!QBeS?VsPv{
z=F#n<qTtaxp@HH5e~;#0w&f}ww!Qxu7)rT4j=QKR@cw6DcrECmyWu|rgGciZ&T>{z
za4VqcO5krx`2YXENAH9M5M#Lc+x#H{3=9nKJsN-g|Ifg{-)0RGvjv%1BI{u*4H9cv
z3<@<{4iLL_KLZ29%M}a^498kzI6&bC@(+jscCAn6d!NpK$3elt;L&*)EauU9+@tkC
zsbaS^gbR(VUQ>`NkIqAe2f*U5d3-wmfmy8wN`&^Mfb4{Z&JM6Wo$vR7(qN~Hij3iH
zutG;r;DSO|=4CTTdG8(-kW0YIph{jRwcaj?>%8&*^syEekR-!v8`suvCFWoQJoxub
z0Y`>MH^VoU0H#s}$6gjW+y4v<4CSI8y;HzG^h`eI)A_FRut(?h&r6zrGeT?yyUDTn
z>i^f=5GL3yE|xkf{4EC=7#LPC^0(|{U|?`H{N~#E!o{*gMWW8gyPM^U2PlYGRJ^)F
z4k&nZ7eG=XRKoNBF}RRVH;c;a<1U>#DleD+{r}&i+ed}N)$nbzB}0jewIfTZy^Cdz
ziUfaO*WdsDy}Mc7fHZnom#BD@Ds=m(lyrxv6u{CUSi18)NCnv2p8t=&J_yzB4b$HF
z-t+%axRTcoK#5lmY%wIUr+8>XGF=HP*btA#BcR+79qSn580#447=M_7fuT4jKRMe<
zA-Slspu|c+wU~>cv^cd$AvLe0s8S&>zeFJ|zcep}A-yQSv;adCtXbDk&jh3^F+J5v
z0W6{rty>nW5S^Txq7a=}l&+wsrxzQ`#gLbul%G-wvoSrjq@X-6F;_vg7-BD2tCd1}
zYDsz#vUoX6M_PVCY93s<Y6?ueG%qnJCsm;&Um+#47|itd_f^Qw%*jbD(o^tF%uZD(
zE-eBpC@#%RQOGY+C{E8zfw)zV3ua7Oa!!76D%^a8a|+5!GgDC9n4Fjg3YwzSlA_Gi
zvQ&kF#Ny)e{Gt>{0C6!?z|2ffEh#R@OU$)WK-W^7k(iQS4$(l2BVi^&%>f5RN@j6E
zPGTk82gRVE%P%cJ4N#CMn){1WOVGWPUs|G&pQezTnwwvQFcA^7=|zc23c2~E#i<Gf
z`I&hosYMEDpnyy+N(Dtq3fvKBTC!6slkyXbQgEnF%P-1SNK4GjNkt1`P+Xvdd1^&!
za#;a9dh`p5@{{$8Q*+Yv^Ye4#i<9$<QsWa-vKW$b5|gtTlno3_P0h_2l%1W8jg5^N
z9K%6%g->rDhhs=+ut(z?P|1>lsFhk&et^oOZZ?ljR!}L|>;AvfMMcE3+m*qi^*~8d
zgN1HsY*zqd%cYXAhF`j+0u2>R45eKEeN;p|n~!q5cJ$~CVD#(^W$1EXY&lS(VN+Hr
z;n58#Fneu5CcXd>FFDy57(5^XFU=Vl7~lp>1<OOF(2C>M1Es3n)*ij0AR}7;mvBJT
zb{_J87Re9;U)#BKCkPy82C0G?1X0*}pj3+p{m^3FrMp7Fqj!(WeNccvEZ8Z@z`*c%
ziAV1mWKmdQ<=J@*R9#qiTQ~n_Dpi0u0Bm#TaWLi4dDH_`IJGk{FuYEJ3cZ6m(WCRw
z>sF7><GUpOfGRt1kU?GI)A=2&xb;BEDv;s4rF>9LPz7LFk4_|`UYh^^|G(S1^?!*7
zL=qA-9-YTt8neKI{`G#3ZU+un=ye_kH3T4m+IpZ=&ZE1Q0Y!7`fszSe4V^A391!n;
zS`8df$3WD!9w-%qRhS4%_c1dt82*Q-fQf<wqs8+7|Nn;HpmMDTDzRv8WM*J+>4fOU
zt|A_+;yKuS>?&-TLB0-Aaq;LaQE`ApnMd;8CkzY>`#|ljP8SuM&Kea+wFU|a2~dg`
z@PIawJUfrQyv+zQ1e}atHvaqnf4>DNZ5(d_rv^}R13SR8^9U%KTM|GGC>9l0!;_Ak
zEGiz|EGixcAFz8cw}Mo8bUO%mg2K_G7o5?2dTUfXz%{Ioih@_S2#04fi;7RLi%Nt~
z=T8)U1py%a3_jgHD&VG)hj*t7kAi3OK@QL6pAx0(Jt2**5S0wWlOCP#kGFtZo}h+^
zXLpGT2gqjyAj6Rib?Nqyap`uD2r|5s!NkPC@V~$zi=o@WA|MNz0Gf{&>;#38N9TKx
zqXj%Vk9qV?0ejnV2S@_qq|Tqdoj+U+PlD7)fYfxpcWgfYKggr=5Y!})6F{v@kIqA2
zEs=4K&8Po^8iQ=0CP(XS{+1q4^Bd&S0LPsmR~uf+VsHevRCfA+g1hs576a5YkLDu^
zj-7{HTmP5Fxpdxe;rzkh+QPuV&|ITp!%!jwwrm&33|M@FL^yUaFmNz{eA0XjlGr`|
zv#9uXrv2z<QR#G1(Xez;5#aAv`1k++%Ozk({V!Pu*63<@66_+6&i4=pfz5X5j8V}6
zd&Z?ZMn%W5^Z3hx|Ns9xHveWUS8;6q&sZ+Ee?c1~147+@9~A|#TK-n9|NsBHw%#t0
z><&@Ufb|9-g$*=sySDzvBkOq_6mATL-(WuM_E8bA^ik2^Z(Rim2oVPUK2X;L?84?B
z|4Z0f50r?$F2Km6uVuSyA&I~BK&1qRG}Jks-L(upo$tV=!PG$7#h%@v4Dh1lAXGV`
zqvF%;qQU`k9Vi3Zcz_ypAu1AJa|{o>W(7yEM|Tgn{z>uB<^gw;5G^)PJ%!q01LZe7
z*xlLLN<qWjFH}>(&_K^f57dETU|<k|YGJGjVqmNgV3g)z=a|3<5to6=fqHBV?tBlx
zDTjf9!2~Mq3aV0^_yqcyT=^vWn4S0(dRd(KG<sNF_zc?ET=*=S***C#urSLp^I16Z
z894H3IPobs@ku!G2{`d_Ffep5Fff3k0%Y6?P`rW7a)O)X1~SVLWR@eyEO)*GOw3#?
zd?%RP`7SUy^W9)_;(Ng4!uNv7iSGlGC*J|48om=uu6!4m!uU=wIr1G~isn1P<i&S^
zDFCV#q=xx5BX-w-T!D!}er93#2<k{+NHT+ZF&Lr@49pCmfWeetW?;b(<YZuAU_vqn
z9M(`(%nab75Xys4yioNpb>KLFNHH)ofC3T9fl{FOWn=&qNe}@E2n8mYk;K6QP=c9(
z8_GhZm>GCb1sE6@<iH}B?o@_~gDVFx8$y6O`wR@M3?2|JoYV!gSQ)axG=eY!Gg%pg
zz%+s|2Qyh2ioi62umLk!8Pvfvf^Y;gSsA*(G=gvgGg%pSFo79x!W+zDWmp8J5kvr(
z$;tpK3BgP#5eBAN89+TnFcV6|fN55SJzyF^B!QW%49uVe24+Ku3^2vYAc-cP2Nl;t
z6EA^^hoXsBLB+$-#3A{Om0<;%cpFsxN;Gj$?E{LhqiEujpz1+Q05B6u%mCA@4DZm?
z&x49HqJ=Xg99bE}(ZoTeHOO8sG;v6}XJx2B6W<0ke*&5~B-~jU7NLoQlruAMfhZJw
zh=GAY07V4CIf+9Y)EdU7{yY<Qb3g?=Huaxzn9szB-5dcN;)*!L)p3Y}2H3E<#{h?V
zQ0D}jdRrXoy>W;q;1JKnAzqC`yaR{$OhyI<A*AvUT)!|dFwA3QU=TzqhhZh-5*+5N
z!XdsHhxi^G;)igEpTr@435WPi9O92~h`+}n{u75d1CDgdjze4$hqwX`adjNx7C6M+
zaEQm?5HG+XUWY@x8;AHT9OBDyh;PLqz6Xc+AsphDam34U9O}>E5QmHl=_NCyWTr9{
zr6#5nlrtpf=j4Ni&{7%ne4GtHgfWOP0THGk!VpB5fe0fIVGbfJK!hcTFa&Ec1S>KG
zD=-A>Hv}7C2r&Vy+YqeN5UkY@tk(#v*9ffF2&~r#tk(#v*9ffF2&~r#tk=kbp|~U^
zwWx?8-rdLF$<Zg?-_0%9H6%X7(aFa(o}nzQpeQr1B#j}$FSVk?wJbHSgdw$}ASW|9
zvm`#LDzzw|A;Kp=KfAObxTGjEFP$MiKDDSQFF!sfKRK}^Ge3_3JhI79TvC);RFq!?
zVkGAlFhn?|=HxKM$0wIm7No`}fs`{u1gDmSXXd5kmpdgUXM;vO^HLZhoO4nWiy*=b
z5kaZNnN_K9USei3j1wPUT#}fa9iN<$9S<7MV#rO*%wtF_N-r~DNGm8UDQ18Tc!C(<
z5l#m1fF_7rnwbKkzypm8ka0*5zZf)h$PnRQkecTL8R}yI4d#J{VvE77%oGp>(j5^L
z6j+*CROwn#lA2cx_IF}VPJS{&E`*A31o8Y5b5m2CL8*fw!nr6lu>|IND9<UgBsa0Z
zttda&C9xzCrY0b>A~&(XxwNP_zlb5iB{eNGFBQgfFG@@bfQ$z+L<9u|r{<(4mw4tC
zl$L;k6Nv*-=nWkUWGF4pNlh(ahzPFCOJ)EK0Wv^F_ZZ?+D>5N1okB=;3@WA=v>6x}
z{``jkSUU~W!UnY^Vd86`>OtaqNa{iLDo6?>u8$<H18ui}#6evom^p4p;)Y1-zaWW&
z+Nv=1pjjoD`Nl}<VeK4{`JjFjOuZbmeFCD8{iO;L0Jr%W7(i`*n0kGvILI8(*ceRQ
z5=q<)$zE7H3Zx#?c7~}>LQ;?H-&P#ri;=`ZqdhQlbf8@xkolHK_Sz$fTOo;eA&FZf
ziO)h3M^?WVNgUM1huM1{N!%96934>LL&MD;NxU3M966lpki_|r)Pts@KvE!of#yYF
z_V$AWq2}`=sb35g2dPI+50LgOsILcU&%w;ufutVPM}dhSgNlQKTM)_o^H6b+`N-+#
zCR7}x9@IXAnFDIyfuum<pgt5#9Ms-~i6g830TN_j0Jo5wknClHrgM-v!bsx$P;qqk
z!1^yB^~mNcK-Gi9L48x0dqC||kkue@5Qd3cA*lzAbHl^~ki^B1+!Fy62f4=?NxTS2
z+yzOz5=q<@NxTP1966k)LB&CC6h~4IYA3?n59(vX+_@2|9^@Y6d<q^ogN8Gx4+>L%
z8mb;-K4^3uCJt&3!psNB!Njja)q~7OcIQK=I7qD&k~@*hD`fS*k<?2gspkS208Qth
z@gSJJuyPC}EsLaH1tb9V7jpSyh$QZgq#o4ngZT?ImH;z90;(QF$s?(c1qndSM=n=0
zk;IYx1!@n%%ttOi>ygxh#v)+$wn4=~6lne)CO#V^0JYZ>$vw-E#F6b?3l#@Zib(3g
zlgm(ZypY6CfD}T-k<9`1BVq1WLQ;PpNj+$+0_M(FNaD!me1wXFDA3ppOg%SJ`3V|M
zhKZ{niTfhi3mb0&nFCrZ0aKrVq}~rn{ZyzpNIj^x4O4#%Dh^7w{z&SLKmyQk0FAZ4
z)JGzT2O_DjK@tx_67NA04@MF{g(Mz=B>o#oJQPV>5IVF4k_L_Oz}<r+9*(5G5lK7(
zNqhlR925@7_0Do6aaAPs>!9Kwdy&hHeNb_9bB-d3t09?l1}ctj&Rrz&NF?>Yk;J2r
z#Cf4Ziy(85)0GHR9ONF*m>Vp76rtiE_0dS?=pczBn_~<W2blvJBZQe_izE(`gNb`W
z#X;tS#@Jxu0Z8J==7&SYL1rL_e-e_oCXzdIpyD9&k;A_XNjw%w{Y0oZ$b1lnwL3RK
z#X;sEw@*NM8iYZ`E=b8mkR}GuObker0X!lM62A@=2i2h<8JK!l{s)y&AaRf~5C*Y9
z7}Pcc(I7DphK!prFo33mVB)Z`4-lV0uedU|Br%CWuehWLLTA8OMX5Q7dL^k9B@B8g
zp!UCBQgJbZUQs@X15$3NXUL!jSEN^5l2}wyS^yOSD=JFO(JRW=19iS~81$0!b8|r*
zHod(3l2ko+zffIp9|@`<H6uQ)C^0t`>?(>0Q24;Y4B0SHTMoqk3N42~Y!C*i1<^1J
zstZAJ2U8CdzW}OK85kHeK!MA^zyNA9g7m_|6x0R)sRiXlkT{w(45lDMK?=|?NG-Au
zs2vM36J5UrR6j@#Sv@)*)K>wS32KWXtApu(4s}0F4x|>uhS8ul5r_>+iy(0rmS=~s
zVB=~K9wgnu*dQ7dZXl<EXb>NUe}Ebj3=9klpbiFwAIJ_UmjM=jpfVI>Kf3=vfGTqa
z2Dmzyxv+c!<Ach6Z1&Fp6}F)1Q>a3a{UEzR7$gL<A2c5UvLDnp0*S*g2S@`00|Tfn
z3=;#<AhpOesMiV;1Bt`1G*mx~52Ml5b}~T16fK$<6rlP+^MEkDAR6X=5F3O+`5l}8
zA7Jr6Xm$stALf6Md(iC$nX3Wn^e`|mT!3l-aY5xOlnaj+(EJv9+=2A}05zT&7#Oag
e84j`!BoD)&z7ID28la5Dz`!sWrVvV_>jwb$D$aud

literal 0
HcmV?d00001

diff --git a/util.h b/util.h
new file mode 100755
index 0000000..6f748b8
--- /dev/null
+++ b/util.h
@@ -0,0 +1,2 @@
+#undef explicit_bzero
+void explicit_bzero(void *, size_t);