lucaspalomodevelop/core
1
0
Fork 0
mirror of https://github.com/lucaspalomodevelop/core.git synced 2026-03-15 09:04:39 +00:00
Code Issues Packages Projects Releases Wiki Activity
6,938 Commits 1 Branch 0 Tags
Commit Graph

6340 Commits

Author SHA1 Message Date
Franco Fichtner
5f653cf0b9 ipsec: put back the lock, because... 
rc.newwanip, rc.newwanipv6, interface_configure() and interfaces_configure()
all call ipsec_configure_do(), which is no wonder why the code can be prone
to races.
 2017-03-27 06:29:24 +02:00
Franco Fichtner
f3c0f74fbe rc: more tabs vs. spaces 2017-03-27 06:28:26 +02:00
Franco Fichtner
1f8e73ba9c src: whitespace sweep 2017-03-26 21:41:27 +02:00
Franco Fichtner
5ba281e8ea ipsec: switch include order 2017-03-26 21:32:38 +02:00
Franco Fichtner
8ccff0a515 rc: drop a spurious comment 2017-03-26 21:14:04 +02:00
Franco Fichtner
e4113804e0 dynamic dns: if we change/split these scripts, we can also rename them 
".update" does not bring any value to the table, especially since there
is no other script there and the intent is somewhat clear...
 2017-03-26 21:11:17 +02:00
Franco Fichtner
6e599ed47d rc: fix tabs vs. spaces in dynamic dns scripts 2017-03-26 21:07:42 +02:00
Franco Fichtner
c1055e1ddc ipsec: zap empty line 2017-03-26 20:56:36 +02:00
Franco Fichtner
802157a3a1 xmlrpc: switch base/kernel version file 2017-03-25 17:03:57 +01:00
Fabian Franz
1ada56947a unbound debugging (#1504) 2017-03-25 17:01:36 +01:00
Ad Schellevis
a6fc0d5586 Merge pull request #1498 from fabianfrz/squid_hardening 
harden ciphers and tls versions
 2017-03-25 08:37:46 +00:00
Franco Fichtner
867a9a953d mvc: first scoping fix was before for, that obviously didn't work; closes #1245 2017-03-25 08:35:01 +01:00
Franco Fichtner
465cd35a9e mvc: work around Phalcon volt scoping issue 
PR:  https://forum.opnsense.org/index.php?topic=4860
See: https://github.com/phalcon/cphalcon/issues/12648
 2017-03-25 08:24:04 +01:00
Ad Schellevis
b6c6eec21e (ipsec) missing ca for Mutual RSA, for https://github.com/opnsense/core/issues/1497 2017-03-23 20:58:33 +01:00
Ad Schellevis
7504bd00a2 (mvc) volt templates scope issues, closes https://github.com/opnsense/core/issues/1500 2017-03-23 20:39:14 +01:00
Fabian Franz
98716bd751 harden ciphers and tls versions - Note: SSL cannot be disabled because it does not exist 2017-03-22 11:19:50 +01:00
Franco Fichtner
4c087a2874 openvpn: of course, skip mismatch in previous ;) 2017-03-22 09:13:28 +01:00
Franco Fichtner
b521b24ce0 openvpn: restart single instance by id 
This looks a bit odd when we have the full struct and pass it down,
but is way easier to maintain than to tell the underlying code
this is a server or a client or whatever, because it shouldn't
matter as the vpnid is unique anyway.
 2017-03-22 08:52:05 +01:00
Franco Fichtner
aff94b55a3 openvpn: naming and call conventions, pull more internal code into plugin 
Looking at openvpn_configure_server() and openvpn_configure_client()
it becomes a bit clearer why they take a config.xml subset: it's beause
the write_config() ordering was flipped.  We could probably now pass
an ID and let the code figure out if it is a client or server...
 2017-03-22 08:22:52 +01:00
Franco Fichtner
8ba7da8fc2 plugins: exclude both '.inc' and '.class' 2017-03-22 07:14:47 +01:00
Franco Fichtner
1464b111f3 plugins: clearly annotate the reason why this is bad in general 2017-03-22 07:10:38 +01:00
Franco Fichtner
200bd3eefa plugins: protect against faulty updates 
Switching the tty causes the terminal to exit, which means
the package upgrade jobs are not done, leaving files in the
system that shouldn't be there.

The $search parameter is unused.
 2017-03-22 06:39:43 +01:00
Franco Fichtner
6c57fc7a9e dyndns: fix tabs vs. spaces and indent 2017-03-22 06:15:15 +01:00
Franco Fichtner
b990aad69c services: fix a crash report 2017-03-22 06:14:41 +01:00
Franco Fichtner
a561aa5ef8 dns: if at first you don't succeed... 
... wrap with array() to proceed!
 2017-03-21 09:16:41 +01:00
Franco Fichtner
399b9090a4 dns: make DNS services fully pluggable #1491 2017-03-21 08:53:23 +01:00
Franco Fichtner
4a4352610a dns: consolidate previous, remove service names hack... #1491 
... that was written at a time when either Unbound or Dnsmasq
could run, but nowadays both can run in tandem which "breaks"
the service widget on the log page.  The log page now belongs
to the Unbound service.
 2017-03-21 08:26:01 +01:00
Franco Fichtner
2e19f4ecad dns: restructure services menu for #1491 2017-03-21 08:09:36 +01:00
Franco Fichtner
12c3c0c2cb ipsec: mobike is only for IKEv2, coding style 
Submitted by: Armin Tüting
 2017-03-21 07:07:11 +01:00
Ad Schellevis
336cbd67dd (gwlb.inc) simplify things a bit more and add get_interface_gateway_v6() 2017-03-20 21:14:14 +01:00
Franco Fichtner
8cb35f8b02 rfc2136: le widget! closes #996 2017-03-20 10:50:44 +01:00
Franco Fichtner
500539234d firewall: properly reload cron for scheduled rules; closes #1483 2017-03-20 08:45:18 +01:00
Franco Fichtner
c7edcbf8a2 services: align the code some more, fix bugs #996 2017-03-20 08:38:55 +01:00
Franco Fichtner
9f8e2d6712 rfc2136: symmetry #996 2017-03-20 08:12:11 +01:00
Franco Fichtner
b3cfb8533b rfc2136: still prep for #996 
This needs much maintenance, it's amazing really.
 2017-03-20 08:08:23 +01:00
Franco Fichtner
9e65b12325 dyndns: I thought I cleaned this up... 2017-03-20 07:22:40 +01:00
Franco Fichtner
4cb527b9e1 services: a bit more for previous 2017-03-20 07:12:44 +01:00
Franco Fichtner
f9cff02ad2 services: more style and fixes for dyndns types 2017-03-20 07:00:02 +01:00
Franco Fichtner
26032f66be services: more work on dynamic dns and rfc 2136 2017-03-20 06:41:40 +01:00
Franco Fichtner
d51dd4adf1 dyndns/rfc2136: proper enabled helper 2017-03-19 20:33:06 +01:00
Franco Fichtner
66de2bde0e rc: exlude the old use_mfs_tmp_size / use_mfs_var_size options; closes #1485 2017-03-19 20:30:32 +01:00
Ad Schellevis
66511addbe (gwlb) refactor fixup_default_gateway(), the old version didn't even seem to work properly.... 
this whole procedure still seems a bit off when being called in return_gateway_groups_array(), maybe we should move this to a more sane location at some other point in time:
 2017-03-19 20:25:31 +01:00
Franco Fichtner
51fea877de plugins: repair #1483 2017-03-19 17:38:04 +01:00
Franco Fichtner
29490c8df4 plugins: add plugins_cron() for autocron usage; closes #1483 2017-03-19 15:54:08 +01:00
Franco Fichtner
983134be0c rfc2136: rework dyndnsCheckIP() as get_dyndns_ip(); closes #1478 2017-03-19 14:32:46 +01:00
Franco Fichtner
0dd2c69792 rfc2136: split relevant rc.dyndns.update parts in half #1478 
Now the old manual cron job only updates DynDNS, but the autocron
will fix itself...  :)
 2017-03-19 13:37:55 +01:00
Franco Fichtner
852261b688 rc: remove "_sync" suffix from script, we do not have another configure 2017-03-19 13:26:18 +01:00
Franco Fichtner
f760f0f7b5 openssh: add $verbose #1480 2017-03-19 13:18:04 +01:00
Franco Fichtner
b46a48f10d rfc2136: support $verbose for configure #1478 2017-03-19 13:14:05 +01:00
Franco Fichtner
52131f1df9 openssh: several fixes for previous #1480 2017-03-18 13:30:45 +01:00