BSD Commit Log Search

LICENSE/README: sync

www/web-proxy-sso: sync with master

LICENSE/README: sync

plugins: remove a few of my historic maintainerships

These plugins have had maintainership attached due to the fact
that they became plugins at one point in time.  Since we can now
annotate this better, do it.

www/web-proxy-sso: very old and likely unused nowadays

security/acme-client: sync with master

net-mgmt/zabbix-agent: sync with master

system: use is_int()/array_key_first() in toArray() and fromArray() #9485

The approximation of the magic here is that we are looking for array
elements created by a natural append [] = or equivalent which has
an integer key of a rough range of 0 to count() - 1, but not always as
we can see from the ticket.

unset() breaks the pledge of sequential lists and makes array_is_list()
fail.  Sorting would also break the sequential pledge without resetting
the keyes using array_values() but that approach is too broad.

Instead, get a single key we can do a strict int type check on so that
we are as likely to succeed as was the case before the change in 7ee3b2c.

It's also fast.  ;)

system: use is_int()/array_key_first() in toArray() and fromArray() #9485

The approximation of the magic here is that we are looking for array
elements created by a natural append [] = or equivalent which has
an integer key of a rough range of 0 to count() - 1, but not always as
we can see from the ticket.

unset() breaks the pledge of sequential lists and makes array_is_list()
fail.  Sorting would also break the sequential pledge without resetting
the keyes using array_values() but that approach is too broad.

Instead, get a single key we can do a strict int type check on so that
we are as likely to succeed as was the case before the change in 7ee3b2c.

It's also fast.  ;)

net/miniupnpd: UPNP_NOPPP does not exist

Allow interface to be empty

net/ndp-proxy-go: Add firewall alias support

config: add net/miniupnpd build options LEASEFILE UPNP_NOPPP

net/miniupnpd: build improvements

net/upnp: sync with master

Merge branch 'master' into firewall-interfacenot-floating

Update src/opnsense/mvc/app/controllers/OPNsense/Firewall/Api/FilterController.php

Co-authored-by: Franco Fichtner <franco at opnsense.org>

system: experiment with is_int+array_key_first #9485

security/acme-client: update release notes, refs #4671

security/acme-client: Add support for ZoneEdit DNS API (#4671)

* Add ZoneEdit settings for acme.sh

Merge pull request #5057 from fraenki/zabbix_118

net-mgmt/zabbix-agent: release 1.18

system: scrub config.xml sample with toArray/fromArray

system: fix indent in config.xml sample

Revert "Config - ditch isArraySequential() in favor of the new array_is_list() introduced in PHP 8.1. closes https://github.com/opnsense/core/pull/9424"

PR: https://github.com/opnsense/core/issues/9485

This reverts commit 76d9f0ad599b5ce80d607ff5ed185b967a70fb15.

net/upnp: default to IDGv1 when not yet set

net/upnp: fix escaping in the file for #5005

* remove pconfig escaping as it is already escaped globally
* change htmlspecialchars() to html_safe()
* protect some spots with html_safe() (being legacy code this is an uphill battle)
* some more style tweaks for readability

unbound: move this up

(cherry picked from commit 633bc0bb94ee94a149a1e5d88ef43bd520f600a1)

net/upnp: status update via https://github.com/opnsense/plugins/pull/5005#issuecomment-3606197018

Add UPDATING entries and bump version.

Approved by:    so

Add a fix to scrub unsolicited NS RRSets to prevent cache poisoning.

Approved by:    so
Obtained from:  NLnet Labs
Security:       FreeBSD-SA-25:10.unbound
Security:       CVE-2025-11411