BSD Commit Log Search

opnsense/suricata: update to 8.0.4

system: style fix in syslog cert script

system: validate monitor uniqueness based on the host route presence #9844

This is a little tricky to get right but that should be it:

If the host route is disabled we allow the same monitor IP to be used
in several gateways.  Dpinger uses -B to bind the source address which
should make this work as per the ticket.  We still need to make sure
that although the gateway in question disables the host route feature
another gateway may still have it enabled so we also need to fail in
that case.  Tested the combinations and looks ok also looking at:

    # pluginctl -r host_routes

Would still consider this an experiment.

(cherry picked from commit 1156faee1df99f4d010520ac0f074cb6266864a6)

fix: enforce POST-only on captiveportal logoffAction (#9989)

Services: Kea: DHCPv4: A DHCP option can be matched with a single client_class

Kea: DHCPv6: Forgot to add option tab and API endpoint for b67a8fd (#9987)

* Kea: DHCPv6: Forgot to add option tab for https://github.com/opnsense/core/commit/b67a8fdc931936f768b3d6a2eea1e179320f257a

* Kea: DHCPv6: Forgot to add option API endpoint for https://github.com/opnsense/core/commit/b67a8fdc931936f768b3d6a2eea1e179320f257a

Kea: DHCPv6: Forgot to add option tab for https://github.com/opnsense/core/commit/b67a8fdc931936f768b3d6a2eea1e179320f257a

Firewall: Aliases: Add target to getAliasSource() (#9985)

Firewall: NAT: One-to-One NAT: add missing log statement

dnsmasq: remove a too-strict validation

When adding ranges from setaddr.php we do not use the model so
one can input ::1000 etc and then Dnsmasq migration will fail
due to it not setting a constructor.  We still validate :: prefix
for constructor use but now take :: prefix verbatim which
doesn't interfere with Dnsmasq service start.

Discussed-with: @monviech
(cherry picked from commit a5773fe71f5703426761b9965bd49e468366de27)

dnsmasq: remove a too-strict validation

When adding ranges from setaddr.php we do not use the model so
one can input ::1000 etc and then Dnsmasq migration will fail
due to it not setting a constructor.  We still validate :: prefix
for constructor use but now take :: prefix verbatim which
doesn't interfere with Dnsmasq service start.

Discussed-with: @monviech

config: remove usb_modeswitch

Last mentioned in the forum in 2023.  Not a lot of upstream updates
since too.

config: add valkey8 (continuation of redis 7.2.x) closes #417

Not sure about drop in replacement but it's worth a try if we have
the binary package.

unbound: formGridHostAlias can be removed as well

Framework: sync with upstream

Taken from: FreeBSD

x11/libX11: sync with upstream

Taken from: FreeBSD

x11-fonts/libfontenc: sync with upstream

Taken from: FreeBSD

www/py-google-cloud-storage: sync with upstream

Taken from: FreeBSD

www/py-boto3: sync with upstream

Taken from: FreeBSD

www/nginx: sync with upstream

Taken from: FreeBSD

www/mod_auth_openidc: sync with upstream

Taken from: FreeBSD

www/llhttp: sync with upstream

Taken from: FreeBSD

textproc/py-regex: sync with upstream

Taken from: FreeBSD

textproc/py-mkdocs-material: sync with upstream

Taken from: FreeBSD

textproc/py-markdown: sync with upstream

Taken from: FreeBSD

textproc/py-elasticsearch: sync with upstream

Taken from: FreeBSD

textproc/gtk-doc: sync with upstream

Taken from: FreeBSD

textproc/groff: sync with upstream

Taken from: FreeBSD

sysutils/usb_modeswitch: sync with upstream

Taken from: FreeBSD

sysutils/syslog-ng: sync with upstream

Taken from: FreeBSD