BSD Commit Log Search

system: webgui templating more pretty

src: non-canonical cast (double) is deprecated

system: non-canonical cast (binary) is deprecated

May need to revisit this again, but for now PHP suggests that
(string) is equivalent to (binary) although the code reads
strange.

firewall: using null as an array offset is deprecated

contrib: another implicit null

src: implicitly marking parameter $chown as nullable is deprecated

config: rebase 26.7 while dropping obsolete files no longer present

This requires the following sequence:

1. Use the previous' major plist file and remove obsolete.
2. make base
3. make rebase

It would be nice to have this as an optional scripted target,
but documenting the procedure is good enough for now.

This was important because:

a) there is a lot of cruft in obsolete
b) ipfw15/dnctl15 were issued in 26.1.10 but not obsoleted with 26.7

build/plugins: handle vendor plugins due to PLUGIN_ABI ambiguity

They use the ABI in the package repository configuration and thus
they need to be rebuilt for business versions.

Firewall: fix 500 (TypeError) on alias getItem with unknown UUID (#10417)

net/frr: sync with master

net/frr: bump for hotfix

net/frr: Fix jinja whitespace control for bfd strict mode

dns/rfc2136: sync with master

security/stunnel: sync with master

www/cache: chicken and egg dependency test

www/cache: fix this

security/netbird: sync with master

security/netbird: changelog

ipsec: validate the use of refid in CA certificates

PR: GHSA-33q4-wcv7-r8fr
(cherry picked from commit 6bc0a1df6550c419f2a44461f6595cacf2080bfa)

firewall: escape shaper targets in rule edit

PR: GHSA-m4m3-v627-wgc2
(cherry picked from commit 3de53a25fdd9b605acc82e4071e9920fa1c9b418)

mvc: strict alphanumeric-only regex for certificate refid

CVE: CVE-2026-53582
PR: GHSA-xww7-76m6-mh2r
(cherry picked from commit fc2f0d745c17855d2027b192fd4e3fa913e26859)

mvc: add new validators to TextField: AllowSpaces, AllowNewlines, AllowSpecial and introduce new StrictTextField (#10398)

(cherry picked from commit c34b7786516afb6dff7a43af92c4328225b81e69)
(cherry picked from commit 9d0e4bf2bb4fdd20f872ff612c5135a7f9115101)

dnsmasq: change widget link from settings to leases page (#10420)

(cherry picked from commit 5e8f226d49196c55cd61ba1ee8e69fbbc194a835)

firewall: fix typo that prevented queues to be selectable in pf-based traffic shaping

(cherry picked from commit 558809488e9014f3452aa7cbcf1c5555a8697846)

firewall: allow WAN as "associated interface" for NPTv6 #10413

firewall: escape shaper targets in rule edit

PR: GHSA-m4m3-v627-wgc2

firewall: fix typo that prevented queues to be selectable in pf-based traffic shaping

ipsec: validate the use of refid in CA certificates

PR: GHSA-33q4-wcv7-r8fr

mvc: strict alphanumeric-only regex for certificate refid

CVE: CVE-2026-53582
PR: GHSA-xww7-76m6-mh2r

net-mgmt/telegraf: sync with master