lucaspalomodevelop/core
1
0
Fork 0
mirror of https://github.com/lucaspalomodevelop/core.git synced 2026-03-20 03:16:12 +00:00
Code Issues Packages Projects Releases Wiki Activity
12,032 Commits 1 Branch 0 Tags
Commit Graph

12032 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Ad Schellevis
89cfc06d8e Lobby: Dashboard - gateway status widget, add gateway status endpoint (api/routes/gateway/status) and refactor widget to use it. closes https://github.com/opnsense/core/issues/4261 2020-08-21 12:36:10 +02:00
Franco Fichtner
7cfa870850 web proxy: move error directory template 
Personally I prefer "_" and keeping the suffix here as we can still
grep for extension like so "error_directory.in" since "." in regex
means any character.
 2020-08-21 07:30:56 +02:00
Franco Fichtner
10fe321bf3 system: restore damaged bogons files on startup; closes #4277 2020-08-20 16:44:41 +02:00
Ad Schellevis
9090a03261 Proxy: no form-inline on previous for https://github.com/opnsense/core/issues/4278 2020-08-20 11:38:08 +02:00
Ad Schellevis
7b5c5c9b17 Proxy: forgot about build magic replacing ".in", fix targets to cope with that, while there add an apply button as well for clarity. closes https://github.com/opnsense/core/issues/4278 2020-08-20 11:31:19 +02:00
Franco Fichtner
87efd07831 ipsec: style sweep 2020-08-20 06:57:03 +02:00
Ad Schellevis
bc342e1eef Interfaces -> Diagnostics -> Netstat : add listen-queue-sizes in Socket tab 2020-08-19 20:36:06 +02:00
Franco Fichtner
00a4848004 system: remove syslog-ng workaround, all better now 2020-08-19 14:38:32 +02:00
Franco Fichtner
ff797aa668 system: add new-password hint for Chrome on login form 
This may prevent Chrome from falsely caching CSRF tokens.  The issue
is really obscure and only happens every once in a while but test-
driving this has made the situation disappear for the moment.
 2020-08-19 09:11:57 +02:00
Franco Fichtner
166427da6d system: add REQUESTS_CA_BUNDLE to rc.syshook and rc as well 2020-08-19 09:06:10 +02:00
Franco Fichtner
1fb4d808d6 system: use /etc/ssl/cert.pem consistently 2020-08-19 08:59:46 +02:00
Franco Fichtner
5a76be41db system: fix permission of startup helper 2020-08-19 08:56:02 +02:00
Ad Schellevis
ae36505873 python/env make sure requests library uses system certificate store when being called from cron or configd (set REQUESTS_CA_BUNDLE) 2020-08-18 20:27:22 +02:00
Ad Schellevis
71e1393b73 jinja2: add regex_replace, pull in https://github.com/opnsense/core/pull/4225 using lambda 2020-08-18 18:26:56 +02:00
Franco Fichtner
c9f2094200 system: adjust wording 2020-08-18 17:26:10 +02:00
Franco Fichtner
1c488d823f pkg: fix plist 2020-08-18 17:12:43 +02:00
Ad Schellevis
d0a3bb18c7 syslog-ng: move syshook as per request @fichtner 2020-08-18 16:44:30 +02:00
Franco Fichtner
dea080c695 interfaces: bugs be bugs, time to remove training wheels 2020-08-18 16:25:06 +02:00
Franco Fichtner
83ef9725d5 system: a bit easier to read 2020-08-18 16:21:53 +02:00
Franco Fichtner
de981c90bc pkg: fix plist 2020-08-18 16:21:42 +02:00
Ad Schellevis
863b3cc95b syslog-ng: force restart after boot sequence 2020-08-18 15:59:02 +02:00
Ad Schellevis
3a538fb197 Syslog: rename syslog service description and hide legacy mode when not enabled. ref https://github.com/opnsense/core/issues/4263 2020-08-17 12:07:18 +02:00
Ad Schellevis
80696b3be7 Firewall:aliases prevent pfctl error messages from being suppressed. closes https://github.com/opnsense/core/issues/4266 2020-08-16 10:55:21 +02:00
Ad Schellevis
5a141a79c9 syslog: interpretation difference between legacy (clog) and new style logging when send via syslog, clog files are not split into directories (module_mylog.log vs module/mylog_XXXXXX.log) 2020-08-14 16:53:43 +02:00
Ad Schellevis
f226eecc87 syslog: cleanup unused legacy function 2020-08-14 16:44:46 +02:00
Ad Schellevis
6cb0f29268 flowd_aggregator. better replace line endings when sending traceback to syslog. 2020-08-14 09:50:16 +02:00
Ad Schellevis
26ab28d522 Firewall / aliases: internally reserved keywords, second case in a week, let's make sure we exclude all yacc doesn't like (41ba6e29a8/sbin/pfctl/parse.y (L5482)) 
closes https://github.com/opnsense/core/issues/4251
 2020-08-12 14:45:38 +02:00
Ad Schellevis
8c6df07be7 Proxy: json access log, minor bugfix for https://github.com/opnsense/core/issues/4244 
response.body.bytes vs response.bytes, %<st equals the message size
 2020-08-12 11:51:40 +02:00
Franco Fichtner
3eed068675 web proxy: help text style 2020-08-12 09:08:32 +02:00
Ad Schellevis
2784956853 syslog-ng: initial startup issues. try to sleep for 0.5 seconds before using syslogs socket. 2020-08-10 22:36:40 +02:00
Ad Schellevis
53c22497ae Proxy: better explain where access log entries are heading when syslog is selected, slightly related to https://github.com/opnsense/core/issues/4244 2020-08-10 18:14:33 +02:00
Ad Schellevis
b9823cd4d1 authgui.inc: wrong jQuery version. closes https://github.com/opnsense/core/issues/4250 2020-08-10 15:30:50 +02:00
Ad Schellevis
8fdb97a2f4 Firewall / aliases. resolve mac addresses at fixed ttl for https://github.com/opnsense/core/issues/4248 2020-08-10 14:23:20 +02:00
Ad Schellevis
c2c424aea2 Firewall / aliases - allow mac addresses for https://github.com/opnsense/core/issues/4248 2020-08-09 18:44:31 +02:00
Ad Schellevis
e7ee753f68 Firewall / alias, log is reserved too. closes https://github.com/opnsense/core/issues/4246 2020-08-09 17:50:15 +02:00
Ad Schellevis
9ec7391446 fix plist 2020-08-09 13:08:11 +02:00
Ad Schellevis
e388020e49 mvc: remove unused sample_input_field 2020-08-09 13:07:32 +02:00
Ad Schellevis
58b672fcab IPsec: simplify previous with legacy_interface_create() 2020-08-07 19:57:23 +02:00
Ad Schellevis
9167000171 IPSec: prevent ipsec vti interface to hit 32768 limit (create numbered, rename and attach afterwards) 
@fichtner as promised,  the almost one liner :)
 2020-08-07 17:30:38 +02:00
Ad Schellevis
5bd793a8a0 Web proxy: add json output, following Elastic Common Schema (ECS) reference. closes https://github.com/opnsense/core/issues/4244 
o Extracts most of the attributes from our extended log format, when X-Request-Event-Id header is set it will be included as event id.
o Added log format for internal ui parsing (extract timestamp)

* https://github.com/elastic/ecs/blob/master/generated/csv/fields.csv
* http://www.squid-cache.org/Doc/config/logformat/

Sponsored by Incenter Technology (https://www.incenter.tech/)
 2020-08-07 16:54:07 +02:00
Franco Fichtner
2344a7b40c src: lint and stylsrc: lint and stylee 2020-08-07 13:06:04 +02:00
Franco Fichtner
e22bb69cb6 firmware: ignore man page database regeneration 
Looks like on the running system and in the build system the values
are static but obviously going from build to running system the
regenerate causes the checksums to shift.  Not a security issue for
the "man" page databadse so better to hide these files from the
audit to avoid confusion and questions.

PR: https://forum.opnsense.org/index.php?topic=18484.0
 2020-08-07 12:51:59 +02:00
Ad Schellevis
aa1f7b85c3 configd: syslog issue, when messages are laarger tahn 4k (traceback) they just seem to vanish in thin air. let's wrap our syslog calls, cut to max 4000 chars and while here prevent multiline output as well since it mangles our ui 2020-08-07 11:54:52 +02:00
Franco Fichtner
4d3f67a653 pkg: fix plist 2020-08-05 09:11:44 +02:00
Ad Schellevis
6434329a7d Menu: interface groups integrity issue, closes https://github.com/opnsense/core/issues/4243 2020-08-05 08:50:51 +02:00
Ad Schellevis
fc38dfaee4 Firewall/aliases: backend support for arp type entries. 
Although this is still an experiment and needs proper documentation to be actually included in our product, it could help to set policies for physical addresses or ranges of addresses (like vendors).

This commit adds a cache object combined with an address iterator with some simple rules, registrations live for a max ttl after the last moment they where seen. If an item bound to expire contains an address currently in use by another mac address, the ip address will be removed.
 2020-08-04 21:26:32 +02:00
Ad Schellevis
14496cb451 system_authservers.php: fix PHP Warning: in_array() expects parameter 2 to be array, null given in /usr/local/www/system_authservers.php on line 756 
closes https://github.com/opnsense/core/issues/4242
 2020-08-04 18:05:10 +02:00
Ad Schellevis
6dbd1d4abc syslog ui: filter new style log directories accordingly. when using suricata, there already is a directory called suricata for example with a stats.log in it. we should only try to fetch files which match the pattern: 
/var/log/[app]/[component]/component_*.log
/var/log/[component]/component_*.log
 2020-08-04 10:02:03 +02:00
Franco Fichtner
9e4f0dea30 Revert "mirror (Aivian) not active anymore" 
This reverts commit 43c591c0a98fb78be64455ac961575f2c6333a65.
 2020-08-04 07:33:19 +02:00
Ad Schellevis
0bde1c3456 Firewall: live log, add dropdowns for "static" fields. closes https://github.com/opnsense/core/issues/4236 2020-08-03 18:12:53 +02:00