BSD Commit Log Search

Merge branch 'master' into firewall-interfacenot-floating

Update src/opnsense/mvc/app/controllers/OPNsense/Firewall/Api/FilterController.php

Co-authored-by: Franco Fichtner <franco at opnsense.org>

system: experiment with is_int+array_key_first #9485

system: scrub config.xml sample with toArray/fromArray

system: fix indent in config.xml sample

Revert "Config - ditch isArraySequential() in favor of the new array_is_list() introduced in PHP 8.1. closes https://github.com/opnsense/core/pull/9424"

PR: https://github.com/opnsense/core/issues/9485

This reverts commit 76d9f0ad599b5ce80d607ff5ed185b967a70fb15.

unbound: move this up

(cherry picked from commit 633bc0bb94ee94a149a1e5d88ef43bd520f600a1)

unbound: move this up

isc-dhcp: interalize interfaces_staticarp_configure(); closes #9476

Instead of making the interface code pluggable, push the code that
causes the persistent side effect to the ISC DHCP plugin which then
gets to fix the stuck static ARP flag after disable/deinstall and a
reboot.  The situation isn't ideal, but much better than before.

Services: Kea DHCP: Kea DHCPv4 - add DNR DHCP Option (#9341)

* Services: Kea DHCP: Kea DHCPv4 - add DNR DHCP Option

(cherry picked from commit b5195f8a22885f72a2a40953c86f38cb274c6302)

unbound: overview: fix quick allow/blocklist actions

(cherry picked from commit 344c322e8124a611c0e9c23195f071a4273398af)
(cherry picked from commit c39134ab9456642ff8ab4302fc3e97ad1ea1651a)

firewall: not taking any chances with isset() then via @adschellevis

unbound: style

firewall: make missing interface floating too in FilterRuleField

unbound: overview: fix quick allow/blocklist actions

The quick fix here is to block & allow on every defined policy. Ideally
one should be able to select a policy where an entry should apply
to in the case of a block action, and map back to the policy in case
of an allow action. The latter isn't possible in the current construct
yet as it needs a slight adjustment to the data format.

mvc: a bit more of asInt() and friends

firewall: safe execution changes in rc.filter_synchronize

system: safe execution tweaks in rc.routing_configure

backend: extend mwexecfb() with PID and log file support

backend: use mwexecf(m) where possible

firewall: safe execution changes in rules reloading code

firewall: tweak previous a bit more

firewall: this looks a little better

dhcp/kea: Add lease commands, tabulator GroupBy, URL hashes (#9409)

(cherry picked from commit cc2fa5ff1f30167a06a2500effb0f22a1cb41202)
(cherry picked from commit b6b61f9e94dccf6a5308fbb99cc0c930953e300a)
(cherry picked from commit 6d1ff4c975f8468dacd0c8416c09b0e8ba49a0d0)

firewall: live log: revert static property, persistence is disabled for this grid

ref: https://forum.opnsense.org/index.php?topic=49874.0
(cherry picked from commit c11efa62bda8af907ff4b6877727b4c100334560)

firewall: live view: restructure DOM layout to reduce wasted space. Closes https://github.com/opnsense/core/issues/9416

(cherry picked from commit d698b4e5ad41b30c5b89e2cdd842b6889543178f)

mvc: typ typo

shell: rewite timeout() using safe execution functions

This now works like opnsense-importer does it except for the print
which still counts here instead of showing a character per second.
Instead of returning the character we return the error if a key was
pressed, i.e. reversed to signal that timeout() was an actual timeout
or interrupted.

Firewall: Aliases - do not support nesting in geoip aliases to prevent overlapping countries with existing alias contents, closes https://github.com/opnsense/core/issues/9482

(cherry picked from commit 7b9aaf9f5dd6f747f1eaafefa5ba1bd5bd6549c3)

Firewall: Aliases - do not support nesting in geoip aliases to prevent overlapping countries with existing alias contents, closes https://github.com/opnsense/core/issues/9482