lucaspalomodevelop/core
1
0
Fork 0
mirror of https://github.com/lucaspalomodevelop/core.git synced 2026-03-18 10:35:27 +00:00
Code Issues Packages Projects Releases Wiki Activity
7,420 Commits 1 Branch 0 Tags
Commit Graph

2485 Commits

Author SHA1 Message Date
Franco Fichtner
f22ade58db interfaces: fix lock vs. non-lock priority in loop 2017-08-07 06:19:45 +02:00
Franco Fichtner
dc53c74c07 rc: did PHP 7.0.22 flip-flop on dot vs. comma usage in floats? 
The same thing happened with 930f7974e.  This is a worrying trend.
 2017-08-07 06:08:21 +02:00
Franco Fichtner
81aed9877d interfaces: add ability to lock vital interfaces 
They will prevent any interface mismatch and individual deletion
from the GUI on the assignment page.

PR: https://forum.opnsense.org/index.php?topic=5667.0
 2017-08-07 06:07:45 +02:00
Franco Fichtner
051e44ca72 rc: put unconditional filter reload back for testing 
PR: https://forum.opnsense.org/index.php?topic=5622.0
 2017-08-05 23:58:31 +02:00
Franco Fichtner
c598ca816c services: log error when IP detection failed 2017-08-04 09:03:30 +02:00
Franco Fichtner
9066aec2e3 firmware: flip print order for new changelog console fetch 2017-08-04 08:32:10 +02:00
Franco Fichtner
11ac9b2507 firmware: wrong function in previous 2017-08-03 09:17:39 +02:00
Franco Fichtner
ef0f86a346 firmware: automatically support "other" flavours 
We always have an internal ABI prefix now, if the flavour is a short
keyword, we should always use the ABI on it so "experimental" becomes
"17.7/experimental".  If a path is set "17.7/MINT/17.7/LibreSSL" we
detect the slash and assume the explicit ABI was selected.

This may eventually support things such as "nightly" or others without
fiddling through this code every time something else is added.
 2017-08-03 09:14:13 +02:00
Franco Fichtner
a5e5661414 openvpn: fields were off, another try #1737 2017-08-01 15:37:02 +02:00
Franco Fichtner
f43f02d7c8 openvpn: adjust time, ISO print format #1737 2017-08-01 14:53:26 +02:00
Franco Fichtner
35e57c0fe9 openvpn: set time in server peer to perr case, too #1737 2017-07-31 22:36:06 +02:00
Ad Schellevis
da66245abe add nat type selection in firewall_nat_1to1 and change some descriptions, for https://github.com/opnsense/core/issues/440 2017-07-30 20:20:09 +02:00
Franco Fichtner
9584bbf7b5 pkg: revoke 17.1 fingerprint 2017-07-30 17:58:36 +02:00
Franco Fichtner
535cb2cfbc ipsec: align with OpenVPN in group enforcement #1748 2017-07-30 17:53:24 +02:00
Franco Fichtner
27f26f0dab ipsec: mock authcfg for backwards compat, "none" is not an auth server #1748 2017-07-30 14:11:29 +02:00
Franco Fichtner
6bb6110562 ipsec: local group enforcement, some comments follow #1748 
o group_source was removed as it was unused
o stop passing global authcfg through the ipsec config--wtf?
o if the mobile client section is disable, refuse authentication
o make xauth privilege optional, it will go away in 18.1
 2017-07-30 13:49:35 +02:00
Ad Schellevis
76839db73a ipsec, cleanup spd entries after removal, for https://github.com/opnsense/core/issues/440 2017-07-30 12:58:17 +02:00
Franco Fichtner
ee0c1705a1 openvpn: allow local group enforcement #1748 
While there, strip a bit of legacy cruft.
 2017-07-30 12:34:28 +02:00
Franco Fichtner
1fe8341a19 ipsec: keep the namespace prefix ipsec_, inline a compare function 2017-07-30 10:39:02 +02:00
Ad Schellevis
814d18ac37 ipsec, support manually defined spd entries, for https://github.com/opnsense/core/issues/440 2017-07-29 14:58:10 +02:00
Ad Schellevis
9351e45d59 restructure ipsec_find_id, remove dependency of ipsec_configure_do(), work for https://github.com/opnsense/core/issues/440 2017-07-29 14:21:52 +02:00
Franco Fichtner
eaff826af5 firewall: support outbound NAT source invert; closes #1747 2017-07-29 10:46:47 +02:00
Franco Fichtner
ecbd90e2ef system: set local + no fallback as default auth mode 
softcoding local + local fallback seems weird.
 2017-07-28 21:34:53 +02:00
Franco Fichtner
262f466f2b firmware: better print for changelog fetch if failed 2017-07-24 08:36:37 +02:00
Franco Fichtner
36c4a67e9d firmware: fetch changelogs on console update, too 2017-07-24 07:05:00 +02:00
Franco Fichtner
0d9e0ba616 interfaces: strtolower() according to manual 2017-07-23 16:53:24 +02:00
Paolo Velati
c909149e51 host-uniq settings in mpd.conf corrected 
fixed command in pppoe configuration, connected to pull request #1730 https://github.com/opnsense/core/pull/1730
 2017-07-23 16:28:25 +02:00
Franco Fichtner
6da1836636 rc: root file system print, closes #1408 2017-07-23 16:03:26 +02:00
Franco Fichtner
566fe52edc etc: last batch for #1733 2017-07-22 18:10:00 +02:00
Ad Schellevis
b7f61727cd php7.1 filter.inc https://github.com/opnsense/core/issues/1733 2017-07-22 14:55:20 +02:00
Ad Schellevis
cd4b958840 fix some more config handling for php 7.1, https://github.com/opnsense/core/issues/1733 2017-07-21 17:43:32 +02:00
Ad Schellevis
678aa412b5 some more config handling fixes in inc directory, for https://github.com/opnsense/core/issues/1733 2017-07-21 17:38:19 +02:00
Ad Schellevis
57c478f9af remove legacy migrations (upgrade_config.inc), as discussed with @fichtner 2017-07-21 17:18:29 +02:00
Ad Schellevis
39fe8d838c fix config handling for auth.inc, https://github.com/opnsense/core/issues/1733 2017-07-21 16:12:48 +02:00
Franco Fichtner
e5b0401626 rc: allow to stop launch of configd 
https://forum.opnsense.org/index.php?topic=5531.0
 2017-07-21 10:38:51 +02:00
Franco Fichtner
ea6b5bda52 interfaces: protect call of new WAN IPv6 #1668 2017-07-20 12:53:04 +02:00
Franco Fichtner
ac40e5218a interfaces: annotate binary data #1730 2017-07-20 11:21:58 +02:00
Franco Fichtner
4c179c235d openvpn: fix config handling on PHP 7.1 #1733 
The day has come that this "bootstrap" logic broke horribly,
preventing us from upgrading to PHP 7.1 with the initial 17.7.

Add a config_read_array() function that emulates *all* potentially
required steps and grabs the array reference so that the code can
be migrated easily.

Hopefully this also works on PHP 7.0.  ;)
 2017-07-20 08:41:35 +02:00
velati
7681a2915d interfaces: Host-Uniq field in PPPoE connection; closes #1730 
PR: https://forum.opnsense.org/index.php?topic=5307.0
 2017-07-19 17:29:43 +02:00
Franco Fichtner
36f0ff51dc openvpn: normalise line endings like webgui does 
PR: https://github.com/opnsense/core/issues/1727
 2017-07-19 13:28:17 +02:00
Franco Fichtner
81eeab656d regenerate dh parameters 2017-07-16 12:13:52 +02:00
Ad Schellevis
218b37df45 login, cookies. set secure; HttpOnly on test_cookie as well to avoid false positives on pci scan 2017-07-16 11:55:47 +02:00
Ad Schellevis
d2ab500ac6 webgui, remove cipher TLS_RSA_WITH_3DES_EDE_CBC_SHA (SWEET32) 2017-07-16 11:32:18 +02:00
Ad Schellevis
46c460bb3f cleanup, move link_interface_to_vlans to interfaces_assign.php and remove unused code 2017-07-14 22:10:48 +02:00
Ad Schellevis
5525a08adb interfaces.inc, fix mtu setup for vlans, for https://github.com/opnsense/core/issues/1709 2017-07-14 22:05:07 +02:00
Ad Schellevis
4ff07cad63 lagg interfaces, restructure interface_lagg_configure() and add mtu option, for https://github.com/opnsense/core/issues/1709 2017-07-14 16:38:12 +02:00
Ad Schellevis
e5e914c90f add mtu to legacy_interfaces_details() 2017-07-14 16:17:09 +02:00
Ad Schellevis
cebc6c7e11 legacy_interfaces_details() parse issue on fetching laggports, needed for https://github.com/opnsense/core/issues/1709 2017-07-14 15:03:08 +02:00
Ad Schellevis
093895e37e Networking, side affects. when an "other type" interface is configured it's automatically created, but if the interface got unconfigured it's dropped,leading to broken laggs for example. 
We should trust the "other type" create/drop to handle the interface itself and interface_bring_down() should only unconfigure it, so possible parent/child interfaces won't break for no reason.
Fixes part of https://github.com/opnsense/core/issues/1709
 2017-07-14 09:42:54 +02:00
Franco Fichtner
04f9fd6425 rc: another minor tweak for compat 2017-07-13 20:06:01 +02:00