BSD Commit Log Search

Interfaces: Assignments - work in progress for https://github.com/opnsense/core/issues/9945

In order to migrate the interface assignments, we need to think of a way to use the differently named xml nodes for interfaces (wan, lan, ..) into something that closely resembles a standard model implementation.
Since we can't match these nodes in our statically defined model xmls, the main idea is to flush all via an in-memory model with a separate load [construct] and save hook.

Interfaces: add some missing config locks, reading the configuration requires it being locked first to ensure setBase() can't be raced with another caller.

security/q-feeds-connector - add alert when license expired or invalid. closes https://github.com/opnsense/plugins/issues/5417

Add comment about issue if interfaces vanish or become deconfigured by the user, but the KEA config is not adjusted accordingly.

Fix the NO_LEASES_PLEASE client-classes test

Services: Kea DHCPv4/6: Build reservation status from control socket output, so it matches the scope of individual subnet (#10276)

* Services: Kea DHCPv4/6: Build reservation status from control socket output, so it matches the scope of individual subnets as well. Add client-id since it's relevant for IPv4 leases as well in default configuration.

We return an array now, change frontend detection if it's dynamic or static lease

Missed a closing bracket

Typo in client_id

Remove unused imports in LeasesController

Add comment to build_reserved_matches() to explain why the subnet-id logic exists now

* Add state as well, helpful for troubleshooting

* Add a state formatter to convert number status into their documented meaning

* Some data-width micro management

Rename Unbound service display name in ACL.xml (#10278)

Reporting: Traffic - add Max on Y axis for traffic graphs, closes https://github.com/opnsense/core/pull/10277

Some data-width micro management

Add a state formatter to convert number status into their documented meaning

config: options stage complains about this

I expect they will swtich back at some point which would
break this but let's get rid of the error.

config: change 1.24 for 1.26

lang/go124||2026-03-12|Has expired: End of life--please switch to go125 or go126

Add state as well, helpful for troubleshooting

security/q-feeds-connector - use local file timestamp for feed updated_at, closes https://github.com/opnsense/plugins/issues/5415

shorten this

improve comment here

Captive Portal: arp entries overwritten here, do not check tables as it's not necessary

Services: Kea DHCPv4/6: Build reservation status from control socket output, so it matches the scope of individual subnets as well. Add client-id since it's relevant for IPv4 leases as well in default configuration.

We return an array now, change frontend detection if it's dynamic or static lease

Missed a closing bracket

Typo in client_id

Remove unused imports in LeasesController

Add comment to build_reserved_matches() to explain why the subnet-id logic exists now

Add comment to build_reserved_matches() to explain why the subnet-id logic exists now

Remove unused imports in LeasesController

Typo in client_id

Missed a closing bracket

We return an array now, change frontend detection if it's dynamic or static lease

Services: Kea DHCPv4/6: Build reservation status from control socket output, so it matches the scope of individual subnets as well. Add client-id since it's relevant for IPv4 leases as well in default configuration.

Captive Portal: re-introduce hash lookup for accounting purposes

Table redirection allowed for constant time lookups, with the
migration to pf this was changed to a linear time lookup.

While here, fix a small edge case that kills states for ips
flipping primary IPs according to hostwatch. Also make sure
to include the set of ipfw keys to "registered addresses" to make
sure theyre properly cleaned up from the table

config: this was changed recently

DHCPSRV_ONLY_IF_REQUIRED_DEPRECATED The parameter 'only-if-required' is deprecated. Use 'only-in-additional-list' instead

Since KEA logs all commands issued to its socket anyway, we can reduce some of the kea_prefix_renew logging. Streamline the STDOUT result as well.

Always run dhcpv6 newwanip hook script when dhcpv6 is enabled since it's cheap and essentially side effect free

security/q-feeds-connector - add error message for https://github.com/opnsense/plugins/issues/5428