lucaspalomodevelop/core
1
0
Fork 0
mirror of https://github.com/lucaspalomodevelop/core.git synced 2026-03-13 08:09:41 +00:00
Code Issues Packages Projects Releases Wiki Activity
14,997 Commits 1 Branch 0 Tags
Commit Graph

14997 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Franco Fichtner
a300d97fc7 src: style sweep 2023-03-01 12:20:03 +01:00
Ad Schellevis
2586ae1ec3 Add SECURITY.md referring to the appropriate doc sections. closes https://github.com/opnsense/core/issues/6365 2023-03-01 11:19:57 +01:00
Ad Schellevis
652b35e87a VPN: IPsec: Connections - allow @ for [eap]id fields, missed a spot in https://github.com/opnsense/core/issues/6277 2023-03-01 11:09:54 +01:00
Anthony
24cfbac5f7
hostname/nameservers can be regenerated from cron (#6290) 2023-03-01 09:10:04 +01:00
Franco Fichtner
ed6cd638ac system: create system_resolver_configure() to simplify callers 
Replace a few easy spots.  Eventually we want to call both
functions for each spot instead of doing both (in switching order)
or only one of them.  They are both cheap operations since they
don't (re)start DNS processes any longer.
 2023-03-01 08:56:16 +01:00
Stephan de Wit
b4e72bbeff Unbound: Blocklists: slight restructure of inherited code. No functional changes 2023-03-01 08:31:13 +01:00
Franco Fichtner
bd635e086f interfaces: restructure no-IP case in IPv4 as well 2023-03-01 08:12:50 +01:00
Franco Fichtner
ee4e53c7ac interfaces: OpenVPN never calls newipv6 so remove and restructure no-IP case 2023-03-01 08:10:58 +01:00
Ad Schellevis
9975cc9dad VPN/OpenVPN - change configd action from 'openvpn status' to 'openvpn connections' for clarity 2023-02-28 21:34:12 +01:00
Franco Fichtner
d847fb7043 system: possibly defunct after being moved from +POST_INSTALL/rc.restart_webgui 2023-02-28 16:16:30 +01:00
Stephan de Wit
194d50891b Unbound: dnsbl_module: allow host bits during parsing of ip network 
ipaddress.ip_network is strict by default, but model validation allows host bits in a CIDR notation, so turn
strict parsing off.
 2023-02-28 14:27:09 +01:00
Ad Schellevis
331b03a21a Interfaces: Diagnostics: Packet Capture - minor bugfix in extracting interface leading to mangled interfaces in the viewer (vlan0.1.2.3 turning into vlan0) 2023-02-28 13:43:51 +01:00
Stephan de Wit
afcbddc153 Unbound: set cache time as a property and missing config check 2023-02-28 13:21:10 +01:00
Franco Fichtner
3b61b10bb5 system: bring stop/start a little closer together #6351 2023-02-28 09:28:52 +01:00
Franco Fichtner
4e1dc4c783 system: adjust timeout #6351 2023-02-28 09:24:39 +01:00
Franco Fichtner
293bf9e88a system: fix historic oversight in pid vs. name/pidfile reading related to #6351 
If we kill a process and want to wait for it we will have to cache
the PID file and check this one until it's gone.
 2023-02-28 09:24:39 +01:00
Stephan de Wit
501f08c87d Unbound: Blocklists: make sure to disable blocklist by writing an empty file when no data provided and properly merge configurations 2023-02-28 08:51:33 +01:00
Franco Fichtner
36106069ad system: switch to SIGINT for lighttpd for #6351 2023-02-27 17:12:57 +01:00
Stephan de Wit
4682bd97e9 Reporting: Unbound DNS: make all status mappings color configurable 2023-02-27 16:45:22 +01:00
Ad Schellevis
6d376414b0 Firewall/NAT - empty() !empty and monday morning.. 2023-02-27 10:59:09 +01:00
Ad Schellevis
fcdab9abab Firewall: NAT: dropdown ignoring vip's https://github.com/opnsense/core/issues/6270 2023-02-27 08:40:56 +01:00
Franco Fichtner
aaed91bbb2 src: style sweep 2023-02-26 21:18:34 +01:00
Ad Schellevis
ac876fbdfc fix plist 2023-02-26 15:28:36 +01:00
Ad Schellevis
78b76cb505
Firewall/Aliases - refactor alias update script (for https://github.com/opnsense/core/issues/6312) (#6362) 
Cleanup alias handling uniforming operations so new types can be adopted more easily. 

o move all pf actions to it's own class
o move all alias related modules to l`ib/alias`
o move AliasParser to alias.py to make update_tables.py more readable
o add targetted alias (type) updates (update a list of aliases including dependencies)
o cache non managed aliases as well, so targeted updates have the opportunity to nest these (interface or bogus aliases for example)
o refactor cleanup a bit to store and keep "txt" files for external aliases
o add `BaseContentParser` type which should be inherited by all parsers and wrap existing types into the new base class.
o add unit tests for all current parsers.
 2023-02-26 15:28:09 +01:00
kulikov-a
f394a78f61
Unbound: typo (#6360) 
Type casting in wrong place: may skip updateBlocklist action if model node exists but empty
 2023-02-26 12:31:07 +01:00
Ad Schellevis
657be3ce6a Firewall: NAT: Outbound - dropdown ignoring vip's. closes https://github.com/opnsense/core/issues/6270 2023-02-25 17:04:36 +01:00
Franco Fichtner
56fcd68a04 interfaces: perhaps not deleting the cache file is a better strategy 
We are forcing a renew now when required anyway and if we keep the
cache file we can flush when it matters and bridge the gap between
same IP addresses with a non-address reload being triggered in between.
 2023-02-24 21:54:22 +01:00
Stephan de Wit
09f40f0e33
Unbound: blocklists: allow scripts to extend blocklist functionality (#6350) 2023-02-24 15:39:40 +01:00
Stephan de Wit
5fa74bfafa
Unbound: implement wildcard blocking and refactor dnsbl_module (#6344) 
Co-authored-by: Ad Schellevis <ad@opnsense.org>
 2023-02-24 15:38:27 +01:00
Stephan de Wit
e0c36de4e4 MVC: CSVListField: switch to Y,N instead of a numeric value for consistency 2023-02-24 15:13:35 +01:00
Franco Fichtner
06416714cf pkg: fix plist 2023-02-24 08:58:16 +01:00
Ad Schellevis
a6a4f2252a System/Auth - add simple script and configd action to list current group membership (auth list groups). requirement for https://github.com/opnsense/core/issues/6312 2023-02-23 21:18:22 +01:00
Franco Fichtner
05b48c1515 firewall: no good regex goes unpunished 
A_BC was not supported but it should.

PR: https://twitter.com/5tru8/status/1628831077560205315
 2023-02-23 20:43:52 +01:00
Franco Fichtner
842cc577a0 interfaces: flatten IPv4 renewal like IPv6 
Go the extra mile now that we know we reached the bottom of the
barrel with reload functionality.  The new guard is already working
so we can unconditionally run the second half as we already do in
IPv6 variant.
 2023-02-23 12:52:26 +01:00
Franco Fichtner
0a1d59b507 interfaces; IPv6 adjustments to match IPv4 version 2023-02-23 12:51:09 +01:00
Franco Fichtner
c56ad1f065 pkg: fix plist 2023-02-23 12:41:28 +01:00
Ad Schellevis
bb1aa66802 VPN/OpenVPN - add ovpn_status.py script and configd action to fetch connected clients, refactor legacy backend code while here (https://github.com/opnsense/core/issues/6312) 
Eventually the old gui code should be replaced as well, but this is an easy to release step in between offering nearly the same output (p2p's presentation is aligned with server in stead of client) with code we are able to reuse for the openvpn aliases.
 2023-02-23 11:09:06 +01:00
Franco Fichtner
a37a922ade ipsec: style change 2023-02-23 10:03:54 +01:00
Ad Schellevis
c8bcac1a85 theme: looks like a typo, wrong color selector used 2023-02-23 09:59:51 +01:00
Ad Schellevis
6d2c6502b5 theme - fix DEPRECATION WARNING: The selector "> li:last-child > a" is invalid CSS. 2023-02-23 09:58:51 +01:00
Ad Schellevis
15fbd36792 VPN/IPsec - reqid shouldn't be provided on mobile sessions. closes https://github.com/opnsense/core/issues/6352 
(same as 9be878390a but only for isolated mode)
 2023-02-23 09:40:51 +01:00
Ad Schellevis
9be878390a VPN/IPsec - reqid shouldn't be provided on mobile sessions. looks like we reintroduced this one https://github.com/opnsense/core/issues/4757 2023-02-22 17:13:20 +01:00
Franco Fichtner
6f3ca2d172 wizard: mismatch 2023-02-22 11:28:33 +01:00
Franco Fichtner
0192217554 wizard: value "on" seems strange, switch to "1" 
Even though this might break we shouldn't have a toggle
failing because "on" value is expected.
 2023-02-22 11:17:43 +01:00
Franco Fichtner
a9ac5db3de wizard: unbound setting moved 
May need adjustments but committed for testing.

PR: https://forum.opnsense.org/index.php?topic=32612.0
 2023-02-22 11:03:05 +01:00
Franco Fichtner
5f29e2cf86 interfaces: missed this 2023-02-22 10:21:13 +01:00
Franco Fichtner
718fde2f29 pkg: fix plist 2023-02-22 09:38:40 +01:00
Christian
e1aca6af23
Added permanent include statement for custom Monit files (#6346) 2023-02-22 09:37:23 +01:00
Ad Schellevis
675c1b8fda VPN/OpenVPN/Client Export - rename "cipher" to "data-ciphers-fallback" to align with changes in https://github.com/opnsense/core/issues/6293 2023-02-21 15:43:42 +01:00
Ad Schellevis
e7007a42a2 VPN/OpenVPN/Client Export - fix openssl_pkcs12_export(): Passing null to parameter #4 ($passphrase) of type string is deprecated 2023-02-21 15:39:41 +01:00