lucaspalomodevelop/core
1
0
Fork 0
mirror of https://github.com/lucaspalomodevelop/core.git synced 2026-03-16 17:44:41 +00:00
Code Issues Packages Projects Releases Wiki Activity
15,422 Commits 1 Branch 0 Tags
Commit Graph

15422 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Ad Schellevis
5edff49db1 System:Settings:Cron - cleanse user input in /ui/cron/item/open/... 2023-06-29 21:29:32 +02:00
Ad Schellevis
77aa58b046 Services: Unbound DNS: DNS over TLS - remove unused code 2023-06-29 21:28:21 +02:00
Ad Schellevis
53b2ce3aeb VPN: OpenVPN - minor regressions in MVC code, require certificate as we don't support peer fingerprint verification as an option. 2023-06-29 19:13:19 +02:00
Neil Greatorex
8e0637a46d
interfaces: Fix bug with reported number of flapping ports (#6641) 2023-06-29 18:08:26 +02:00
Ad Schellevis
fcb004461d VPN: OpenVPN: Instances - bugfix clone button (init vpnid to null) 2023-06-29 17:37:04 +02:00
Ad Schellevis
5c72f7fab7 VPN: OpenVPN: Instances - minor regression in cipher fallback, forgot multiselect 2023-06-29 16:12:18 +02:00
Franco Fichtner
da5ea8eedf ipsec: missing config section; closes #6639 2023-06-29 14:59:29 +02:00
Franco Fichtner
ca5dd11447 system: use -f in prev 2023-06-29 14:50:18 +02:00
Franco Fichtner
54f2ed4fa7 dhcp: align radvd vip code and exclude /128; closes #6531 
We might want to match specifically for /64 but users may have
success with other sizes despite the configuration error.  Only
make the obvious /128 not relevant here.
 2023-06-29 14:43:54 +02:00
Franco Fichtner
24dd5c3a9e firewall: move all automat rules for interface connectivity to priority 1; closes #4158 
This is to bring all of them before bogon block in order to not block valid
traffic.
 2023-06-29 14:24:06 +02:00
Franco Fichtner
5f9b8c70fe unbound: cleanup old files 2023-06-29 09:20:28 +02:00
Steely Wing
91b4ee7968 interfaces: help tip for enable "Promiscuous mode" for VLAN interface; closes #6492 2023-06-29 09:16:39 +02:00
kulikov-a
5fa87b7949 Lobby/Dashboard/System Log widget - add severity filter 
Add severity filter.
fixed weird typos in tags.
use selectpicker for selects
a uniform code is used to fill the selects.
empty result message is aligned with the same in log grids
 2023-06-29 08:50:19 +02:00
Franco Fichtner
bc2cdd7c18 src: fix permission-after-write 2023-06-28 17:42:13 +02:00
Ad Schellevis
448762d440 Services: Captive Portal - safeguard template overlay distribution. 2023-06-28 17:18:43 +02:00
Franco Fichtner
2554a055ce system: clear compression dir and fix permission after write 2023-06-28 17:14:20 +02:00
Franco Fichtner
38109777e9 Revert "interfaces: different approach for #6637" 
This reverts commit 366c888c9ecc579a700fbb25cdb89dad9f612b24.
This does not work either.  Something seems wrong here with
the kernel responding to "ifconfig up" with a "link down".
 2023-06-28 15:37:47 +02:00
Franco Fichtner
366c888c9e interfaces: different approach for #6637 2023-06-28 14:10:57 +02:00
Franco Fichtner
0ea5b46a68 Revert "interfaces: try to wait out DAD result to catch new addresses with radvd #6637" 
This reverts commit 31368fb15aae9a2764c10523f2b70c4b27578ca8.
Does not appear to be the issue.
 2023-06-28 13:54:07 +02:00
Peter Lawler
24dbe30cad
Better description for Safe Search (#6634) 
'Enable Safe Search' doesn't do justice to what the option actually does, which is attempt to strictly enforce safe search. Byproducts of which include, but maybe not limited to, restrcting general usage of YouTube.
 2023-06-28 10:01:04 +02:00
Henry
377446e920
unbound: Added cache-max-negative-ttl setting (#6554) 
See: https://forum.opnsense.org/index.php?topic=23747.0

Co-authored-by: Henry <henry@mixict.nl>
 2023-06-28 09:53:59 +02:00
kulikov-a
0c550fc0d9
webgui: enable compression (#6172) 2023-06-28 09:26:23 +02:00
Franco Fichtner
31368fb15a interfaces: try to wait out DAD result to catch new addresses with radvd #6637 2023-06-27 22:28:40 +02:00
Franco Fichtner
a04b498339 interfaces: switch indent in newwanip scripts 2023-06-27 22:21:27 +02:00
Ad Schellevis
e8bb2ea933 MVC/ApiControllerBase::searchRecordsetBase - fill missing keys when sorting, prevents "sizes are inconsistent" and eases operation for the caller. ref https://github.com/opnsense/plugins/pull/3484#issuecomment-1609023477 2023-06-27 18:17:51 +02:00
Franco Fichtner
758b0aafe5 openvpn: style sweep 2023-06-27 14:30:47 +02:00
Ad Schellevis
db9abc9276
VPN: OpenVPN: Instances (MVC) (#6636) 
* VPN: OpenVPN: Instances (MVC)

bugfixes and additions:

o fix lookup in tls_verify.php
o add auth attribute
o fix connection status reporting non existing clients

* VPN: OpenVPN: Instances (MVC)

bugfixes and additions:

o add missing syshook for startup at boot
o show instances in connection states when not connected
 2023-06-27 13:55:39 +02:00
Ad Schellevis
1500419112 Services / Intrusion Detection - add missing typecast in getAlertLogsAction() [php8.1] 2023-06-26 11:47:13 +02:00
Ad Schellevis
d674bf720f MVC / Backend - fix "escapeshellarg(): Passing null to parameter #1 ($arg) .." 2023-06-26 11:42:56 +02:00
Franco Fichtner
75227f146c firewall: typo in previous 2023-06-22 12:43:55 +02:00
Franco Fichtner
ded0b9c93e firewall: align rule validation with port forward validation 
PR: https://forum.opnsense.org/index.php?topic=34548.0
 2023-06-22 12:39:29 +02:00
Ad Schellevis
4e1562af51 MVC/Config - fix locking regresion in https://github.com/opnsense/core/issues/6565. When we call for an explicit lock() we should keep track of this ourselves so loadFromStream() doesn't unlock it after reading. closes https://github.com/opnsense/core/issues/6630 2023-06-22 10:55:01 +02:00
Franco Fichtner
18d6e18d76 system: style fix 2023-06-22 10:06:25 +02:00
Stephan de Wit
60fcb48d23 dhcp watchers: strip trailing and leading dots from hostname 2023-06-21 15:58:16 +02:00
Stephan de Wit
2b89ff975f dhcp: apply hostname validation to dnsmasq watcher as well. make the pattern a bit less restrictive 2023-06-21 15:54:36 +02:00
Franco Fichtner
d6d6aa4f9a system: be a bit more specific in error case 2023-06-21 14:34:27 +02:00
Franco Fichtner
f619102e78 firmware: ready for tomorrow 2023-06-21 13:24:46 +02:00
Franco Fichtner
4e8e7bb0ed firmware: sticky advanced mode if flavour is set to non-default 2023-06-21 13:05:11 +02:00
Stephan de Wit
e43c23fce1 dhcp: unbound_watcher: shorten previous 2023-06-19 13:51:40 +02:00
Stephan de Wit
02aae56f05 dhcp: unbound_watcher: validate client hostnames 2023-06-19 13:50:10 +02:00
Franco Fichtner
ca3945b8ca src: style sweep 2023-06-19 12:10:13 +02:00
Ad Schellevis
58b1ec1ea6 System / Auth / Radius - add MSCHAPv2 support using Crypt_CHAP_MSv2(). As MSCHAPv1 doesn't seem to be frequently used and we currently don't have a server setup for it either, we limit the support to v2 only. 
Implemented using the examples in https://github.com/LawnGnome/php-radius/blob/master/examples/radius-auth.php, requires 818fa8e936 for CHAP.php to funciton on php 8.1
 2023-06-18 17:19:45 +02:00
Ad Schellevis
fc93cdb0b0 Firewall : disable related network fields to align with https://github.com/opnsense/core/issues/6617 2023-06-16 21:56:34 +02:00
Ad Schellevis
0c76a9134d Firewall: NAT: Port Forward - virtual ip address adding /32 on ipv6 address. for https://github.com/opnsense/core/issues/6617 2023-06-16 10:51:32 +02:00
Franco Fichtner
c59a06f645 firmware: sort plugins before store; closes #6616 2023-06-15 13:24:51 +02:00
Franco Fichtner
96460cf330 dhcp: tighten expire logic for delegated prefix routes 
We need to expire existing routes as well in order to get rid
of the old gateway, because deleting with the new gateway given
will not delete the existing route to another one.

Also bring back (and actually use) the active binding check
before storing an address or prefix for processing.

Use "null" to designate that these are expired, later overwritten
if an active lease is there.
 2023-06-15 09:40:14 +02:00
Franco Fichtner
23c913918e dhcp: avoid parse_duid() duplication 
We know this works so clean this up properly now.
 2023-06-14 14:52:54 +02:00
Franco Fichtner
617d0f62a1 dhcp: improve prefix script readability and flow 
Assign copyright due to fundamntal work since 2022 here.
 2023-06-14 14:43:54 +02:00
Franco Fichtner
c868a2e4bf dhcp: fix includes 2023-06-12 14:54:29 +02:00
Franco Fichtner
a738136847 dhcp: use static mapping to find a gateway to delegated prefix 
PR: https://forum.opnsense.org/index.php?topic=34416.0
 2023-06-12 13:14:05 +02:00