BSD Commit Log Search

Only use the config cache if it's not older than the config file

Switch to php 8.4

Rework handling of the config cache file

Move the removal of the configuration cache file from config_read_file()
to config_write_file(). With this change the cache does not have to be
manually removed after a change, including in the following cases:
- In config_provider_init(). The cache should be up-to-date regardless of
  the configuration provider.
- In restore_config_section(). The "subsequent requests" will already use
  an up-to-date cache (see a57d6170198bf46e21a178732b32982ed8b8ab62).
- In backup.inc execPost() when restoring a specific area. The previous
  write already removes the cache.
- In backup.inc execPost() when doing a full restore. The call to
  config_install() and write_config() already removes the cache.
- In rc.filter_configure. The cache should be up-to-date at this point.
- In write_config() when reading back the written config. The call to
  config_write_file() already results in the cache being removed.
- In usermgrpasswd when re-reading the config in case of changes outside
  the script, i.e. from the GUI.
- In interfaces.php when applying changes. It's no longer relevant since

    [21 lines not shown]

kea: The parameter 'client-class' is deprecated. Use 'client-classes'. Fixes #16468

Revert "unbound: remove sock-queue-timeout until supported upstream. Fixes #16299"

This reverts commit 7b9907f18adc7bc6d83ab1652674a6e5059555d7.

unbound 1.24.0 adds FreeBSD support.

Build intel-igb-kmod in dev for testing

Update the default FreeBSD repository names.

And... make sure they are disabled.

Reported by:    SteveW

Remove unused crypto option. Fix #16451

Include more error info for filter reload failures

In some cases the line referenced by the error is syntatically correct, in
which case it may be helpful to see the return of the command as well.

Handle empty config for VLAN tag type

Followup to 682b0eb2ee68bf207bbb40de92c383ff8ffcf2f6.

Retain previous VLAN tag type for exisint interfaces on upgrade. Fix #13622

Allowing changing the VLAN Tag Type. Implement #13340

Use the IPv6 interface address as the OpenVPN server gateway. Fix #16351

In OpenVPN server configurations OpenVPN sets the environment variable
"ifconfig_ipv6_remote" when an IPv6 tunnel network is specified. This is
not the case for IPv4 and its respective variables. These variables are
later used to create a gateway for assigned interfaces in which case the
gateway address should always be the local interface address.

Fix removing old address config elements when saving gif interfaces

Check OpenVPN client2client for p2p_tls case. Fixes #16428

Allow bridge members with IP addresses. Implement #16432

Fix input validation for NAT64 destination type

When the option to overide the prefix is enabled, the destination type
should remain enabled so that the POST request contains the value and
triggers the correct input validation.

Update the bind parameter after src commit 9ba51cce8bbd

Fix typo with generating the IPv6 interface using 6rd

Add missing include when deleting assigned interface

"firewall_nat.inc" is needed for remove_rdr_rules().

Alert user about NAT64 rules changes from config upgrade

Improve generating the 6rd prefix for OpenVPN by using the configured interface instead of hardcoding the WAN

Add support for OpenVPN to track the WAN interface for IPv6 delegations

Move generating the 6rd prefix out to a new function called generate_6rd_prefix()

Move build_ipv6interface_list() to an include file

Clean up ports build conf

Build net-mgmt/pfSense-pkg-ANDwatch

Only delete a local user on rpc sync if not being modified. Fixes #16391

kea2fib6: use new binding-variables in Kea 3

kea: use binding-variables for storing remote-addr and iface-name