lucaspalomodevelop/core
1
0
Fork 0
mirror of https://github.com/lucaspalomodevelop/core.git synced 2026-03-15 09:04:39 +00:00
Code Issues Packages Projects Releases Wiki Activity
12,611 Commits 1 Branch 0 Tags
Commit Graph

12611 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
kulikov-a
8ec2c22cac LDAP minor fixes (#4784) 
Improve error handling in ldap authentication
 2021-03-14 12:44:43 +01:00
Ad Schellevis
bf3877b834 HA Sync: unify sync sections and remove legacy blocks from system_hasync.php 2021-03-14 12:44:43 +01:00
Franco Fichtner
38f7f864be pkg: fix plist 2021-03-14 12:44:43 +01:00
Ad Schellevis
05f6abb4a0 Firewall / Shaper: the current number of allowed source / destination addresses is limited to a couple of addresses. in order to match larger lists one need to use tables in order for ipfw to process them. 
This commit replaces all rule source / destinations where more than one address is being targetted with a tablename like __rule__{uuid}__[source,destination] a support tool after load flushes the selected addresses into the table (which is automatically created by the ruleset). closes https://github.com/opnsense/core/issues/4756
 2021-03-14 12:44:43 +01:00
kulikov-a
73020d6928 firewall_rules.php: Icon color after toggle fix (#4773) 2021-03-14 12:44:43 +01:00
Ad Schellevis
aa0d4fdf20 interfaces: newwanip, clear states when address changes. for https://github.com/opnsense/core/pull/4726 2021-03-14 12:44:43 +01:00
Ad Schellevis
8193c60424 IPSec / roadwarriors: do not pin reqid's in case of mobile connections to avoid traffic being forwarded to the wrong end. closes https://github.com/opnsense/core/issues/4757 2021-03-14 12:44:43 +01:00
Franco Fichtner
84a241c30a system: better logic for -h and -D #4231 2021-03-14 12:44:43 +01:00
Franco Fichtner
6a4b89b497 interfaces: immediately enable SLAAC during IPv6 initiation 
This improves PPPoE responsivenes for IPv6 acquire using
SLAAC on the "IPv4 interface".  Tests ok according to an
user and the impact on existing setups is low.

PR: https://forum.opnsense.org/index.php?topic=21506.0
 2021-03-14 12:44:43 +01:00
Franco Fichtner
1bafebe861 interfaces: make this easier to read 2021-03-14 12:44:43 +01:00
Ad Schellevis
1cbee54644 MVC: align layouts of select_multiple and dropdown types 2021-03-14 12:44:43 +01:00
Ad Schellevis
395fa73cf7 HA Sync: extend rc.filter_synchronize with capabilities to reconfigure the backup node (template flush + service reload) for https://github.com/opnsense/core/issues/4604 
to offer the ability to schedule a new configd action "system ha_reconfigure_backup":

configctl system ha_reconfigure_backup
 2021-03-14 12:44:43 +01:00
Gareth Owen
43b207ed5c Use lists when building RR records 
Update according to code review request
 2021-02-28 12:15:00 -05:00
Gareth Owen
a3d5cbcc7a unbound: Fix PTR records for DHCP endpoints 
* Add PTR records for DHCP endpoints in the correct format
* Delete PTR records when A records are deleted
* Use bulk add/remove requests to unbound-control to improve performance

Fixes #4597
 2021-02-27 17:06:23 -05:00
kulikov-a
71d6d0adeb
system_certmanager: take extensions out of a DN (#4761) 2021-02-27 13:49:20 +01:00
kulikov-a
8953d038e5
rulecache.py: make manual rule status boolean (#4758) 2021-02-26 14:02:38 +01:00
Ad Schellevis
2696e42d3a Service / Intrusion Detection / Policies: type error in 'enabled' field (bool vs str), closes https://github.com/opnsense/core/issues/4753 2021-02-25 20:02:59 +01:00
Franco Fichtner
90ad674928 interfaces: also needs #4576 2021-02-26 02:56:19 +01:00
Franco Fichtner
a980771d7f interfaces: experiment for #4576 2021-02-26 02:51:23 +01:00
Franco Fichtner
e345b965cc interfaces: looks like a typo 
Probably dead code but better to align it.  Some style on the side.
 2021-02-26 02:22:36 +01:00
Franco Fichtner
70f856bf2f firmware: emit api version string, second major iteration already #4500 2021-02-25 13:59:35 +01:00
Franco Fichtner
db29e02ecb dhcpd: unify loop, improve leases page #4642 2021-02-25 13:40:50 +01:00
Ad Schellevis
43b50ed086 Netflow: prevent crash when attributes missing, closes https://github.com/opnsense/core/issues/4751 2021-02-25 12:08:46 +01:00
Franco Fichtner
e73db9c7ae dhcp: remove interface key #4642 
At first the idea was to pass it, but especially since this only
passes one entry as noted by @maurice-w it is probably better to
ditch it.  :)
 2021-02-24 20:00:34 +01:00
Franco Fichtner
f67e242eaa www: fix $$ weirdness loosely related to typo in #4702 2021-02-24 16:23:02 +01:00
Franco Fichtner
63978a60c8 interfaces: better primary address detection; closes #4702 2021-02-24 16:19:09 +01:00
Ad Schellevis
8b9764fa86 Lobby / Dashboard / Traffic Graph: prevent duplicate traffic pollers mangling with the graphs. 2021-02-24 11:28:57 +01:00
Martin Wasley
4e9144f885
Correct help text for Range (#4738) 2021-02-24 10:08:45 +01:00
Franco Fichtner
d0822b0067 dhcpd: move staticmap preparation to parent #4642 
Move all the duplication out of Unbound/Dnsmasq code and just
iterate over the results there.
 2021-02-24 09:54:15 +01:00
Ad Schellevis
277ffb6ac5 Reporting / Traffic: change api output to combined in/out per row and change user interface to handle new format. closes https://github.com/opnsense/core/issues/4724 2021-02-23 16:21:25 +01:00
Ad Schellevis
bcb7c26897 User management: performance enhancement for local_sync_accounts() should improve boot time when a lot of users are involved, also improves xmlrpc sync and some other actions calling a sync. 2021-02-23 14:46:21 +01:00
Franco Fichtner
6368a2bb6d firmware: that wasn't complete but now it is #4718 2021-02-23 09:10:43 +01:00
Ad Schellevis
8bb823880e Services / DHCPv4 / Relay : fix non-existing array 2021-02-22 22:47:25 +01:00
Gareth Owen
d344d0a773
Unbound: Fix bad dereference when DHCP lease expires (#4742) 
Move deletion of dhcp cache info when the lease expires to after the
last reference to the cache information.

Fixes #4741
 2021-02-23 08:53:41 +01:00
Franco Fichtner
a4ae9b3918 firmware: use launcher trick for these as well; closes #4718 
So we get a message that the system is doing something else instead
of no message at all.
 2021-02-23 08:49:12 +01:00
Franco Fichtner
2d382bf870 firmware: changelogs are pulled from check scripts 
Like with text output earlier the update feature is not used
from the GUI and brings little to the table.  Separate API
endpoint is better for these types of actions if the need should
ever arise.
 2021-02-23 08:46:43 +01:00
Franco Fichtner
b25727a11b dnsmasq|unbound: align the code, also fix Dnsmasq #4642 2021-02-22 14:56:36 +01:00
Franco Fichtner
9fa54201a7 interfaces: drop return introduced in 31282787df 2021-02-22 14:55:38 +01:00
Franco Fichtner
140f4ea03e unbound: speed up and safeguards for #4642 2021-02-22 14:30:27 +01:00
Franco Fichtner
a3bfcc2729 system: this looks better although not problematic 2021-02-22 14:23:59 +01:00
Martin Wasley
be12dd889f Correct the omission of the prefix when a dynamic interface v6 dhcpdv6 address is set as a static entry. The result is that only the suffix /64 gets added to the unbound host entries. This patch should sort that so a full address is created for unbound. 
use existing call

update
 2021-02-22 13:06:43 +01:00
Martin Wasley
4e3c6aa59b Correct dhcp6c.conf issue on pppoe link down 
Moved v6 reconfigure to before v4.
 2021-02-22 12:00:53 +01:00
Franco Fichtner
48c9b3b403 system: adapt lighttpd ssl.privkey approach #4728 
While we need to hide the key we do not have to chmod the
certificate or the chain.  ;)
 2021-02-22 09:22:31 +01:00
Ad Schellevis
13c4f8eab6 Reporting / Traffic: aggregate iftop results for https://github.com/opnsense/core/issues/4724 
This is more or less a proof of concept, we probably best change the api endpoint data as well to push in/out in the same record so we can also ship the details underneath for those interested.
 2021-02-21 13:23:13 +01:00
Gareth Owen
1b530ff38f
Unbound: Handle DHCP client expiring and returning (#4727) 
Cleanup local data cache when a DHCP endpoint expires, so that it is
kept in sync with dynamic changes.  This ensures that if an expired DHCP
endpoint returns and is assigned the same IP address the local cache is
correct and doesn't block the entry being dynamically re-added to Unbound.

Also don't cache the blacklist entries, which aren't needed to manage
the DHCP DNS entries. There can easily be 1M+ blacklist entries, so
ignoring these improves startup speed and reduces memory footprint

Fixes #4714
 2021-02-21 11:42:11 +01:00
Ad Schellevis
dd2231ee54 Interfaces / Diagnostics / arp,ndp table: slow manufacturer lookups, likely after upgrading netaddr to 0.8.0. for https://github.com/opnsense/core/issues/4666 2021-02-20 00:43:04 +01:00
Ad Schellevis
88e463c913 Netflow: prevent crash when interface number is missing. for https://github.com/opnsense/plugins/issues/2241 2021-02-19 23:16:50 +01:00
Franco Fichtner
889e24c965 firwarme: abstract LOCKFILE away 
Now we only deal with LOCKFILE in the firmware scripts folder.
 2021-02-19 13:20:48 +01:00
Franco Fichtner
99944f462e firmware: hide LOCKFILE behind small read script 
One old bit of compat glue can kick the bucket as well.
 2021-02-19 11:52:20 +01:00
Franco Fichtner
38b0e8ff6c firmware: get rid of old naming convention; closes #4718 2021-02-19 11:43:03 +01:00