OPNSense/core 91be9a6src/opnsense/service configd_ctl.py, src/opnsense/service/modules template.py processhandler.py

python 2-->3 / configd

First (functional) attempt, this needs to stay on devel for some time there might be 
dragons ;)

src/etc/rc.d/configd --> command_interpreter could cause restart issues after an upgrade, 
the rc system doesn't like command changes it seems. Maybe not a real world problem, just 
haven't tried it yet.
unit tests are somewhat functional, although generating all templates will likely fail, 
since the test config doesn't include all data involved.

OPNSense/core 47a3b24src/opnsense/service/templates/OPNsense/Captiveportal lighttpd-zone.conf, src/opnsense/service/templates/OPNsense/IPFW ipfw.conf

python 2->3 iteritems() in core templates

OPNSense/core 9e08244src/opnsense/service/templates/OPNsense/IDS suricata.yaml newsyslog.conf

IDS, minor template cleanups using https://github.com/opnsense/core/issues/3100

OPNSense/core 245513fsrc/opnsense/service/modules/addons template_helpers.py

configd, add helpers.empty(), closes https://github.com/opnsense/core/issues/3100

OPNSense/core cc2b41bsrc/opnsense/mvc/app/controllers/OPNsense/OpenVPN/forms export_options.xml, src/opnsense/mvc/app/library/OPNsense/OpenVPN PlainOpenVPN.php ArchiveOpenVPN.php

OpenVPN export, add auth-nocache option, closes 
https://github.com/opnsense/core/issues/3193

OPNSense/core a8d89dasrc/opnsense/mvc/app/views/layout_partials form_input_tr.volt, src/opnsense/www/js opnsense_ui.js

mvc/forms, add support for tokenize2 sortable tag, closes 
https://github.com/opnsense/core/issues/3145

OPNSense/core 3a361f8src/opnsense/mvc/app/library/OPNsense/Auth AuthenticationFactory.php, src/opnsense/mvc/app/library/OPNsense/Auth/Services Opnsense_Auth_Test.php OpnsenseAuthTest.php

auth/pam, better CamelCase for https://github.com/opnsense/core/issues/3242

OPNSense/core 2e14587src/opnsense/mvc/app/library/OPNsense/Auth AuthenticationFactory.php, src/opnsense/mvc/app/library/OPNsense/Auth/Services Opnsense_Auth_Test.php

Auth, add example authentication service and some filename cleansing. for 
https://github.com/opnsense/core/issues/3242

OPNSense/core bdd4c8dsrc/opnsense/www/themes/opnsense/build/images default-logo.svg

refresh logo, small scaling issue in previous

OPNSense/core 63065a9src/opnsense/www/themes/opnsense/assets/stylesheets main.scss, src/opnsense/www/themes/opnsense/build/css main.css

theme, sharpen our theme a bit

OPNSense/core f7213e8src/www vpn_ipsec_mobile.php

psec_mobile.php fix minor escaping issue

OPNSense/core 5123277src/opnsense/mvc/app/library/OPNsense/Core Config.php

config access, don't try to open config.xml in write mode when file is not writeable. 
closes https://github.com/opnsense/core/issues/3241

OPNSense/core dd1d8cbsrc/opnsense/mvc/app/library/OPNsense/Auth AuthenticationFactory.php

OPNSense/core 0793375src/opnsense/mvc/app/library/OPNsense/Auth AuthenticationFactory.php IService.php, src/opnsense/mvc/app/library/OPNsense/Auth/Services System.php Sshd.php

Authentication/pam, initial (working) version to move already implemented pam services 
into our framework. for https://github.com/opnsense/core/issues/3242

OPNSense/core ab3b5b5src/opnsense/www api.php

MVC/Exception handling, prevent UserException from being pushed to /tmp/PHP_errors.log

OPNSense/core a22e5a7src/etc/inc/plugins.inc.d webgui.inc, src/etc/rc.subr.d var

php session, fix previous

OPNSense/core 426b0e1src/etc/inc/plugins.inc.d webgui.inc, src/etc/rc.subr.d var

Revert "php session path, 
https://github.com/opnsense/core/commit/3eba9a739e49f23830751a0104ece72eaecff7cb"

This reverts commit 545f29a7d2a883696f4923286bbb21dd9e5618d6.

OPNSense/core 545f29asrc/etc/inc/plugins.inc.d webgui.inc, src/etc/rc.subr.d var

OPNSense/core 7d5b9dfsrc/etc/rc.subr.d recover

OPNSense/core 895d6bbsrc/www system_certmanager.php

remove "show certificate info" on certificate list from pending CSR (#3243)

OPNSense/core 3eba9a7src/etc/inc/plugins.inc.d webgui.inc, src/opnsense/service/templates/OPNsense/WebGui php.ini

php, move session files into it's own directory

OPNSense/core 969f452src/etc/inc certs.inc

certs.inc, make sure create_temp_openssl_config() can't wrap lines

OPNSense/core 02b16dcsrc/opnsense/scripts/suricata rule-updater.py

ids, rule-updater.py, cleanup unused

OPNSense/core 4337e25src/opnsense/service/templates/OPNsense/IPFW ipfw.conf

Merge branch 'fredronnv-dev/ipfwcaptiveportal'

OPNSense/core 3a02d1asrc/opnsense/service/templates/OPNsense/IPFW ipfw.conf

Merge branch 'dev/ipfwcaptiveportal' of https://github.com/fredronnv/core into 
fredronnv-dev/ipfwcaptiveportal

OPNSense/core f11eb71src/etc/inc config.inc

legacy_config_get_interfaces, let's make sure we don't stumble over an empty interface, 
closes https://github.com/opnsense/core/issues/3231

(cherry picked from commit 621f84e900f5ea17c58bf665573b9d13f4344f59)

OPNSense/core 0aabd02src/opnsense/scripts/interfaces dhclient-script

interfaces: check for valid alias IP #3197

Suggested by: @tbandixen

(cherry picked from commit 90c0c395a54967f28c797b46293d4fb975b27ded)

OPNSense/core 90c0c39src/opnsense/scripts/interfaces dhclient-script

interfaces: check for valid alias IP #3197

Suggested by: @tbandixen

OPNSense/core 8e9ae38src/opnsense/scripts/interfaces dhclient-script

Revert "interfaces: remove arp flush from dhclient-script #3197"

This reverts commit a1dbbb5ef132487c88b2b144ac67eeedb00a576c.

OPNSense/core 621f84esrc/etc/inc config.inc

legacy_config_get_interfaces, let's make sure we don't stumble over an empty interface, 
closes https://github.com/opnsense/core/issues/3231

OPNSense/core eea383esrc/www system_advanced_firewall.php

firewall: tweak a help text

(cherry picked from commit 32cd65b9f9f4a11080671181f1ecfb4a7d0bf78b)

OPNSense/core 2251cf5src/etc/inc/plugins.inc.d openvpn.inc

openvpn: proper daemonize instead of background job #3223

(cherry picked from commit c217bee6f2f6f7bc2d8ffbad5535812a62627e22)
(cherry picked from commit 156d6f7287da05f337f9784dfc024c7b42a3a50d)
(cherry picked from commit f10b710a587e69edb704184ac7171a209f21f604)

OPNSense/core 6c263d4src/opnsense/service/templates/OPNsense/IPFW ipfw.conf

Revert "ipfw: there's no need to loop over cp_interfaces"

This reverts commit 6178310af241221faf94e9515235b002a12dfbdf.

Don't want to risk opening 53 on wan

OPNSense/core 6178310src/opnsense/service/templates/OPNsense/IPFW ipfw.conf

ipfw: there's no need to loop over cp_interfaces

We can allow traffic to this host via all.

OPNSense/core f2da545src/opnsense/service/templates/OPNsense/IPFW ipfw.conf

ipfw: only allow traffic to/from me via cp_interfaces

OPNSense/core b6cdbaasrc/www interfaces_lagg.php

interfaces: do not do background ifconfig call

OPNSense/core 156d6f7src/etc/inc/plugins.inc.d openvpn.inc

openvpn: daemon is already in the config #3223

OPNSense/core bbe0592src/etc/inc system.inc

system: syslog doesn't need background job

The foreground option is -F so we double-background it...

OPNSense/core c217beesrc/etc/inc/plugins.inc.d openvpn.inc

openvpn: proper daemonize instead of background job #3223

OPNSense/core f10b710src/etc/inc/plugins.inc.d openvpn.inc

openvpn: remove stale PID file as well

PR: https://github.com/opnsense/core/issues/3223
Suggested by: @marjohn56

OPNSense/core 9b651c1src/opnsense/mvc/app/library/OPNsense/Firewall Util.php, src/opnsense/mvc/app/models/OPNsense/Base/Constraints ComparedToFieldConstraint.php

src: style sweep

(cherry picked from commit 5bc3ed8ccf286c6996a3579053257751c6c5394e)

OPNSense/core 5bc3ed8src/etc/inc/plugins.inc.d ipsec.inc, src/opnsense/mvc/app/library/OPNsense/Auth LDAP.php

src: style sweep

OPNSense/core e8af5besrc/opnsense/service/templates/OPNsense/IPFW ipfw.conf

ipfw: Remove VIP loop / Add explicit "to me" for DNS

There's no need to explicitly loop around VIPs. We can get away with
simply allowing DNS "to me" via the captive portal interfaces.

Removed unneccessary attribute in cp_interface_list

OPNSense/core 9704e0dsrc/www services_dhcp.php services_dhcpv6.php

www: html_safe() for value=; closes #3218

OPNSense/core a1d5d74src/www services_ntpd.php services_unbound_domainoverride_edit.php

www: everything not "dhcp" for #3218

OPNSense/core 32cd65bsrc/www system_advanced_firewall.php

firewall: tweak a help text

OPNSense/core 5174562. LICENSE

LICENSE: sync

(cherry picked from commit d8f2251d7bb582e193d3516542dde723e2f054a3)
DeltaFile
+1-1LICENSE
+1-11 files

OPNSense/core 0b87902src/www diag_resetstate.php diag_packet_capture.php

www: d+f for #3218

OPNSense/core 8f80173src/www system_hasync.php system_crlmanager.php, src/www/widgets/widgets picture.widget.php

www: a few for #3218

OPNSense/core d8f2251. LICENSE

LICENSE: sync
DeltaFile
+1-1LICENSE
+1-11 files