BSD Commit Log Search

mvc - work in progress to replace Phalcon Application()

https://github.com/opnsense/core/issues/6389

firmware: dump TLS infrmation for firmware server(s) in use

Will make it easier to identify proxy isses.

mvc - work in progress to replace Phalcon Application()

https://github.com/opnsense/core/issues/6389

mvc - work in progress to replace Phalcon Application()

https://github.com/opnsense/core/issues/6389

mvc - work in progress to replace Phalcon Application()

https://github.com/opnsense/core/issues/6389

interfaces: for consistency

(cherry picked from commit 80284fb2811c8b8cfbb0fd01fba9b3d81238b642)

interfaces: for consistency

Interfaces - change help text to reflect reality

PR: https://github.com/opnsense/core/issues/7339

(cherry picked from commit ff1991cdee25d86181276143f0b9abfb90963d68)
(cherry picked from commit e37514e6f6c0cdfc746ff044aeb567b527b71a0c)

interfaces: tweak wording in interface gateway selection (#7445)

Services: Kea DHCP: Kea DHCPv4 - rename code to dhcp option. (https://github.com/opnsense/core/pull/7361)

legacy/csrf - move csrf check code from https://github.com/opnsense/core/commit/d1962f8ed5c5144b71ecda5ea0a21c0605b212fb into legacy scope.

The original intend was to be able to reuse the Csrf class, but as this requires direct access to the session object, it's likely not a good idea for the goals of https://github.com/opnsense/core/issues/6389
Since the legacy pages need a lock on session anyway,  keeping it doesn't make a difference.

interfaces: tweak wording in interface gateway selection

system: allow (multiple) sysctl calls over configd

(cherry picked from commit 7f6f55814f0447162acdc431689d464ff2b06471)
(cherry picked from commit a36b700ec507cd959a7a791fad029c0852afc3ac)

system: as a POC move this security setting to the automatic sysctls #7440

This might not work for all values as we would maybe like the have the
FreeBSD default itself to work its magic.  For security relevant things
bootstrapping the value is useful, but for buffer sizes it might not be.

mvc - work in progress to replace Phalcon Application()

https://github.com/opnsense/core/issues/6389

mvc - work in progress to replace Phalcon Application()

https://github.com/opnsense/core/issues/6389

mvc - work in progress to replace Phalcon Application()

https://github.com/opnsense/core/issues/6389

mvc - work in progress to replace Phalcon Application()

https://github.com/opnsense/core/issues/6389

mvc/model - implement getDescription() in NetworkAliasField. As this field type acts as a single (non-list) type, we need to return the description from here as well as BaseListField's implementation doesn't apply here.

(cherry picked from commit 697992bb53c46e7f365a33e7a2fc271051f8e2ac)

mvc/model - BaseListField replace array_map+strval for loop with cast to preserve execution time. The mapping with strval seems to be rather slow, a simple cast seems to be roughly 4 times faster.

(cherry picked from commit b139e33e4c9b00b35f8263b469ba2fe022d1e23e)

mvc: refactor grid search to fetch descriptive values from the model instead of trying to reconstruct them.

PR: https://github.com/opnsense/core/issues/7383

(cherry picked from commit 10c81a4eea87a17a180ff93cc9c3aa2cc6d72d85)
(cherry picked from commit b36b8edf87393a00f60b0646cf78dda8ff026ed7)
(cherry picked from commit 966bda3c96d7e799334cd4b69bfa1b03c58023d9)
(cherry picked from commit c4b64a417d4d2c5f0f5a2fb121eac255a860dcb6)
(cherry picked from commit 353c89f5c0ec54cf3a4c753d8a07bde1f534d13d)

mvc - change exception handling in runMigrations() to avoid mismatches in attributes being silently ignored.

When a migration tries to address an non existing attribute, a InvalidArgumentException is thrown, but only partially noted in the log.
It's likely safer to abort the migration if steps fail and send the error to the log for further inspection.

(cherry picked from commit 14ea1b96e8923ca0a571e73124930f86ecbd63ae)

mvc - extend model implementation to ease legacy migrations.

(cherry picked from commit 35b5e0b64bb01f892179d89704d60521eaf549d8)
(cherry picked from commit 637208acdba3bc60b02cc7f16a71459974b5e36e)
(cherry picked from commit e516ea7ec8418b3744c8b42ac552825c35a2eb96)
(cherry picked from commit 668a057dac4b154d9feedb6483dafdaf49096219)

mvc - replace \Phalcon\Filter\Validation\Exception  with \OPNsense\Base\ValidationException (both simple empty Exception classes).

for https://github.com/opnsense/core/issues/6389

(cherry picked from commit 0dc6089f8a8766462e126d9b9f73d3ea42c9aab3)

system: adjust log levels in google drive backup; closes #7427

(cherry picked from commit eea9c5c58e0205a366600ef43dc7446c1c9e89b5)

interfaces: evidence suggests + 2 is better than + 1 #7400

The + 1 was completely arbitrary to begin with (derived from
FreeBSD scripting), but if part of the system needs longer to
cope with tentative state then this would be an easy way to
make it more reliable.

If + 3 makes sense for the next person is something I want to
doubt, however.

Special thanks go to @Wireheadbe for pursuing and testing this.

(cherry picked from commit f2e60c18f66a4bcf712078ea718fdb6a95385f55)

fix typo in message about "outboud nat rule" (#7429)

* fix typo in message about "outboud nat rule"

* Removed unused $unqiue_addrs (with typo)

* Restore and fix typo $unique_addrs

(cherry picked from commit 66c684b2c66d26000129bfb161c6cbafe4175dc8)

fix: :bug: Update field separator for Kea DHCP Subnet Form and Model (#7418)

Co-authored-by: Katerina Ford <kford at madtechnicalsolutions.com>
(cherry picked from commit c1548926ad0bcf3ed0fb10e75c3437ffbb0d329b)

VPN: IPsec: Connections - allow the equal sign for identity parsing as specified in https://docs.strongswan.org/docs/5.9/config/identityParsing.html, closes https://github.com/opnsense/core/issues/7424

(cherry picked from commit 7d212f3e5d9eb2456acf2165987dd850cd78c710)

system: disable userspace core dumps by default

Was suggested by @lattera on 93e0d1474.

(cherry picked from commit 886ee0623b8cf1015b71ff5988432922b93c830b)