BSD Commit Log Search

mvc: form handling, html decode <select> values, closes https://github.com/opnsense/core/issues/8735

dnsmasq: strict hostname and domain validation (#9232)

* Strict hostname validation in Hosts tab using legal_hostname() function of upstream source code as baseline.
* Use HostnameField for "host", "domain", "cnames" and "aliases" field, merge former AliasesField logic into HostnameField for LegacyXML configs
* Remove AliasesField
* Add php unit test for HostnameField

net/shadowsocks: bump plugin version to 1.3 (#4966)

* net/shadowsocks: Bump plugin version to 1.3

* Update changelog

net/shadowsocks: update web UI ciphers to match shadowsocks rust (#4958)

Updating cipher option set to match the one of the plugin, source:
https://github.com/shadowsocks/shadowsocks-rust?tab=readme-ov-file#supported-ciphers
Update to present options in optgroups

diagnostics/packetcapture: Fix permission of capture zip file for wwwonly strict security mode (#9255)

* diagnostics/packetcapture: Fix permission of capture zip file when wwwonly strict security mode is enabled

* Unconditionally set wwwonly:wheel

* Also set permissions to 640

Also set permissions to 640

Unconditionally set wwwonly:wheel

diagnostics/packetcapture: Fix permission of capture zip file when wwwonly strict security mode is enabled

vpn/wireguard: Add debug flag to instances, can be set without restarting service, send logs to wireguard log (#9236)

* vpn/wireguard: Add debug flag to instances, can be set without restarting service, send logs to wireguard log

* Add debug as comment into wireguard-server.conf, so the file hash changes and wg_start() is triggered

* Update src/opnsense/mvc/app/controllers/OPNsense/Wireguard/forms/dialogEditWireguardServer.xml

Co-authored-by: Franco Fichtner <franco at opnsense.org>

---------

Co-authored-by: Franco Fichtner <franco at opnsense.org>

Since AsList is used add a test for it, also add one more value to the ValidLabels

Fix one small issue the unit test found

Add php unit test for LegalHostnameField

enable some packages for aarch64

firewall: adapt default table size for #9110

While here simplify the code and rename the functions.

Use LegalHostnameField for Cname and Aliases field, merge AliasesField logic into LegalHostnameField for LegacyXML configs

Change approach for validation, reduce code duplication

reduce diff

Update src/opnsense/mvc/app/controllers/OPNsense/Wireguard/forms/dialogEditWireguardServer.xml

Co-authored-by: Franco Fichtner <franco at opnsense.org>

Add debug as comment into wireguard-server.conf, so the file hash changes and wg_start() is triggered

configd: add ! operator to execute and flush cache when it exists, closes https://github.com/opnsense/core/issues/9170

Fix a small unnoticed bug in ActionHandler.find_action(), which flushed the action parameter after use.
Refactor HandlerClient so it extracts "preludes" like spaces, &, ! which it will then use to determine command operation mode.

Leading spaces are removed on purpose so we support actions like "&!cmd" "& ! cmd", since the first parameter is always a file on disk, leading spaces can't exist in current callers.

(cherry picked from commit 27bd8125c3868be56f11a7d91b00f6ec5b187abe)

Merge remote-tracking branch 'origin/master' into firewall-automation-responsiveness

unbound: minor change on record labels

(cherry picked from commit b033d87ce27afc965294ad84581a101d9da12588)

unbound: minor change on record labels

core/hasync: Fix reconfigure control on small viewports (#9250)

(cherry picked from commit efed0ea116349f3f7b650175f69bd9918a3a3242)

security/vuxml: sync with upstream

Taken from: FreeBSD

www/mod_security: sync with upstream

Taken from: FreeBSD

security/ca_root_nss: partially sync with upstream

Taken from: FreeBSD

net/kea: sync with upstream

Taken from: FreeBSD

lang/php83: sync with upstream

Taken from: FreeBSD

dns/unbound: sync with upstream

Taken from: FreeBSD