OPNSense - FreshBSD

OPNSense/core d46112e — src/opnsense/mvc/app/views/layout_partials form_input_tr.volt

2026-04-28 09:01:11 UTC by Ad Schellevis on ⎇

master

mvc: volt form template, add type_formatter keyword which was implemented in https://github.com/opnsense/core/commit/528474372b373c720962e5efaad3c7cf6773917a

Delta		File
+5	-3	src/opnsense/mvc/app/views/layout_partials/form_input_tr.volt
+5	-3	1 files

OPNSense/core 5217772 — src/opnsense/mvc/app/controllers/OPNsense/Kea/Api Dhcpv6Controller.php Dhcpv4Controller.php, src/opnsense/mvc/app/views/OPNsense/Dnsmasq settings.volt

2026-04-28 07:42:57 UTC by Franco Fichtner on ⎇

dynamic_hint

mvc: generalize placeholders between controllers and JS for #10225

Delta		File
+0	-8	src/opnsense/mvc/app/views/OPNsense/Kea/dhcpv6.volt
+0	-8	src/opnsense/mvc/app/views/OPNsense/Kea/dhcpv4.volt
+0	-8	src/opnsense/mvc/app/views/OPNsense/Dnsmasq/settings.volt
+3	-1	src/opnsense/mvc/app/controllers/OPNsense/Kea/Api/Dhcpv6Controller.php
+3	-1	src/opnsense/mvc/app/controllers/OPNsense/Kea/Api/Dhcpv4Controller.php
+3	-0	src/opnsense/www/js/opnsense.js
+9	-26	1 files not shown
+11	-27	7 files

OPNSense/core 54b054d — src/opnsense/mvc/app/views/OPNsense/Kea leases6.volt, src/opnsense/scripts/kea del_kea_leases.py

2026-04-28 07:25:35 UTC by Monviech on ⎇

kea-delete-prefix

Add IPv6 lease type to delete script so either IA_NA and IA_PD can be targeted

Delta		File
+13	-3	src/opnsense/scripts/kea/del_kea_leases.py
+2	-2	src/opnsense/mvc/app/views/OPNsense/Kea/leases6.volt
+1	-1	src/opnsense/service/conf/actions.d/actions_kea.conf
+16	-6	3 files

OPNSense/core 1ab9f54 — src/opnsense/mvc/app/views/OPNsense/Kea leases6.volt, src/opnsense/scripts/kea get_kea_leases.py

2026-04-28 07:13:35 UTC by Monviech on ⎇

kea-delete-prefix

Add type to leases, is necessary to target certain leases like IA_PD for deletion

Delta		File
+1	-0	src/opnsense/mvc/app/views/OPNsense/Kea/leases6.volt
+1	-0	src/opnsense/scripts/kea/get_kea_leases.py
+2	-0	2 files

OPNSense/ports c593061 — security/openvpn/files patch-inotify

2026-04-28 07:05:30 UTC by Franco Fichtner on ⎇

master

security/openvpn: patch was released

Delta		File
+0	-11	security/openvpn/files/patch-inotify
+0	-11	1 files

OPNSense/core 3d69669 — src/opnsense/mvc/app/controllers/OPNsense/Firewall/forms dialogDNatRule.xml

2026-04-28 06:24:31 UTC by gitterdoneplease via GitHub on ⎇

master

firewall: clarify redirect target port help text (#10223)

Delta		File
+1	-1	src/opnsense/mvc/app/controllers/OPNsense/Firewall/forms/dialogDNatRule.xml
+1	-1	1 files

OPNSense/core ce0d656 — src/opnsense/mvc/app/controllers/OPNsense/Kea/forms generalSettings6.xml, src/opnsense/mvc/app/models/OPNsense/Kea KeaDhcpv6.xml KeaDhcpv6.php

2026-04-27 14:44:50 UTC by Monviech via GitHub on ⎇

master

Services: Kea DHCPv6: Allow customizing mac_sources and change default to ipv6-link-local (#10220)

* Services: Kea DHCPv6: Allow customizing mac_sources and change default to ipv6-link-local since it seems to align best with the expectations of our setup, especially taking PD route installation via kea_prefix_watcher.py into account.

Per default KEA would derive MAC addresses of clients from the DUID, but these do not take multiple interfaces into account. This means, the route target could be the wrong MAC address. The new default ipv6-link-local takes the EUI-64 assumption of the link-local address, this seems to be better suited as our default.

Two methods have been skipped since they are not implemented by KEA upstream, raw and subscriber-id.

* Specify this influences MAC based reservations. Since blast radius is larger make it non-advanced.

Delta		File
+14	-1	src/opnsense/mvc/app/models/OPNsense/Kea/KeaDhcpv6.xml
+6	-0	src/opnsense/mvc/app/controllers/OPNsense/Kea/forms/generalSettings6.xml
+1	-0	src/opnsense/mvc/app/models/OPNsense/Kea/KeaDhcpv6.php
+21	-1	3 files

OPNSense/core 2e61d11 — src/opnsense/mvc/app/controllers/OPNsense/Kea/forms generalSettings6.xml

2026-04-27 14:28:24 UTC by Monviech on ⎇

kea-ipv6-mac-source

Specify this influences MAC based reservations. Since blast radius is larger make it non-advanced

Delta		File
+1	-2	src/opnsense/mvc/app/controllers/OPNsense/Kea/forms/generalSettings6.xml
+1	-2	1 files

OPNSense/core 388cf99 — src/opnsense/mvc/app/controllers/OPNsense/Kea/forms generalSettings6.xml, src/opnsense/mvc/app/models/OPNsense/Kea KeaDhcpv6.xml KeaDhcpv6.php

2026-04-27 13:38:38 UTC by Monviech on ⎇

kea-ipv6-mac-source

Services: Kea DHCPv6: Allow customizing mac_sources and change default to ipv6-link-local since it seems to align best with the expectations of our setup, especially taking PD route installation via kea_prefix_watcher.py into account.

Per default KEA would derive MAC addresses of clients from the DUID, but these do not take multiple interfaces into account. This means, the route target could be the wrong MAC address. The new default ipv6-link-local takes the EUI-64 assumption of the link-local address, this seems to be better suited as our default.

Two methods have been skipped since they are not implemented by KEA upstream, raw and subscriber-id.

Delta		File
+14	-1	src/opnsense/mvc/app/models/OPNsense/Kea/KeaDhcpv6.xml
+7	-0	src/opnsense/mvc/app/controllers/OPNsense/Kea/forms/generalSettings6.xml
+1	-0	src/opnsense/mvc/app/models/OPNsense/Kea/KeaDhcpv6.php
+22	-1	3 files

OPNSense/core 0513f26 — src/opnsense/mvc/app/controllers/OPNsense/Interfaces/forms dialogSettings.xml, src/opnsense/mvc/app/models/OPNsense/Interfaces/FieldTypes DUIDField.php

2026-04-27 10:26:51 UTC by Franco Fichtner on ⎇

master

interfaces: wrong DUID-UUID format for #10218

Not sure about migration here to avoid future migrations from breaking,
but wrong UUID is simply wrong.  To be continued.

Delta		File
+1	-1	src/opnsense/mvc/app/controllers/OPNsense/Interfaces/forms/dialogSettings.xml
+1	-1	src/opnsense/mvc/app/models/OPNsense/Interfaces/FieldTypes/DUIDField.php
+1	-1	src/opnsense/scripts/interfaces/gen_duid.php
+3	-3	3 files

OPNSense/core 09d431b — src/etc/inc/plugins.inc.d kea.inc, src/opnsense/scripts/kea kea_prefix_watcher.py

2026-04-27 08:56:43 UTC by Monviech via GitHub on ⎇

master

Services: Kea DHCPv6: kea_prefix_watcher: Plug socket into dynamic pd route installation script (#10197)

* Services: Kea DHCPv4/v6: Use KeaCtrl python lib for kea_prefix_watcher to switch to polling the socket instead of streaming the csv lease files. The running configuration has structured output, and we stay in memory without needing to read and parse any files. The tradeoff is that we always have to process the full set of leases, yet by using lease6-get-page which is especially made for efficient bulk operations, this should be rather cheap. The main benefit is we always work with structured json data, can filter for ID_PD better, and reprocess the full truth on every poll interval to ensure the whole setup is self-healing

* Use state instead of time based mechanism to decide of lease is still valid

* Make interval parameter explicit

* Time is still needed for polling

* We do not need argparse or parameters anymore

* Add an explicit empty argument for backend parser

* Remove duplicate state check, add documentation for the possible states

* No we still have do add state into the mix or the route lazy drop will not work anymore

* Use new count() base method for hasPdPools()

* Use count() directly in kea.inc

Delta		File
+54	-67	src/opnsense/scripts/kea/kea_prefix_watcher.py
+3	-3	src/etc/inc/plugins.inc.d/kea.inc
+57	-70	2 files

OPNSense/core 23d7501 — src/opnsense/mvc/app/controllers/OPNsense/Kea/forms dialogReservation6.xml, src/opnsense/mvc/app/library/OPNsense/Firewall Util.php

2026-04-27 08:48:32 UTC by Monviech on ⎇

kea-prefix-watcher-socket-polling

Merge remote-tracking branch 'origin/master' into kea-prefix-watcher-socket-polling

Delta		File
+32	-0	src/opnsense/mvc/app/library/OPNsense/Firewall/Util.php
+13	-2	src/opnsense/mvc/app/models/OPNsense/Kea/KeaDhcpv6.php
+11	-0	src/opnsense/mvc/app/models/OPNsense/Kea/KeaDhcpv6.xml
+7	-1	src/opnsense/mvc/app/views/OPNsense/Kea/leases6.volt
+6	-0	src/opnsense/mvc/app/controllers/OPNsense/Kea/forms/dialogReservation6.xml
+2	-1	src/opnsense/mvc/app/views/OPNsense/Firewall/nat_rule.volt
+71	-4	2 files not shown
+73	-4	8 files

OPNSense/core 5d0a25c — src/opnsense/mvc/app/controllers/OPNsense/Kea/forms dialogReservation6.xml, src/opnsense/mvc/app/library/OPNsense/Firewall Util.php

2026-04-27 08:09:02 UTC by Monviech via GitHub on ⎇

master

Services: Kea DHCPv6: Add prefix to reservations to allow for static PD allocations based on DUID/MAC (#10206)

Delta		File
+32	-0	src/opnsense/mvc/app/library/OPNsense/Firewall/Util.php
+13	-2	src/opnsense/mvc/app/models/OPNsense/Kea/KeaDhcpv6.php
+11	-0	src/opnsense/mvc/app/models/OPNsense/Kea/KeaDhcpv6.xml
+7	-1	src/opnsense/mvc/app/views/OPNsense/Kea/leases6.volt
+6	-0	src/opnsense/mvc/app/controllers/OPNsense/Kea/forms/dialogReservation6.xml
+1	-0	src/opnsense/mvc/app/views/OPNsense/Kea/dhcpv6.volt
+70	-3	1 files not shown
+71	-3	7 files

OPNSense/core ca2fe06 — src/opnsense/mvc/app/views/OPNsense/Firewall nat_rule.volt

2026-04-27 08:08:40 UTC by Monviech via GitHub on ⎇

master

Firewall: NAT: Fix inverted source/destination cosmetic issue in SNAT and One-to-One NAT grids (#10215)

Delta		File
+2	-1	src/opnsense/mvc/app/views/OPNsense/Firewall/nat_rule.volt
+2	-1	1 files

OPNSense/core 9f71564 — src/etc/inc/plugins.inc.d kea.inc, src/opnsense/mvc/app/models/OPNsense/Kea KeaDhcpv6.php

2026-04-27 07:38:11 UTC by Monviech on ⎇

kea-prefix-watcher-socket-polling

Use count() directly in kea.inc

Delta		File
+0	-9	src/opnsense/mvc/app/models/OPNsense/Kea/KeaDhcpv6.php
+1	-1	src/etc/inc/plugins.inc.d/kea.inc
+1	-10	2 files

OPNSense/ports c593c5a — security/openvpn distinfo Makefile

2026-04-27 07:34:36 UTC by Franco Fichtner on ⎇

master

security/openvpn: update to 2.6.20

Delta		File
+3	-3	security/openvpn/distinfo
+1	-1	security/openvpn/Makefile
+4	-4	2 files

OPNSense/ports 54baca7 — textproc/expat2 distinfo Makefile

2026-04-27 07:26:46 UTC by Franco Fichtner on ⎇

master

textproc/expat2: sync with upstream

Taken from: FreeBSD

Delta		File
+3	-3	textproc/expat2/distinfo
+1	-1	textproc/expat2/Makefile
+1	-1	textproc/expat2/pkg-plist
+5	-5	3 files

OPNSense/ports 355f364 — print/texinfo Makefile

2026-04-27 07:26:43 UTC by Franco Fichtner on ⎇

master

print/texinfo: sync with upstream

Taken from: FreeBSD

Delta		File
+2	-1	print/texinfo/Makefile
+2	-1	1 files

OPNSense/ports 73f13c7 — devel/autoconf pkg-plist distinfo, devel/autoconf/files patch-01-bin_autoreconf.in patch-02-bin_autoreconf.in

2026-04-27 07:26:35 UTC by Franco Fichtner on ⎇

master

devel/autoconf: sync with upstream

Taken from: FreeBSD

Delta		File
+0	-159	devel/autoconf/files/patch-01-bin_autoreconf.in
+0	-102	devel/autoconf/files/patch-02-bin_autoreconf.in
+9	-8	devel/autoconf/pkg-plist
+5	-5	devel/autoconf/files/patch-bin_autoreconf.in
+3	-3	devel/autoconf/distinfo
+1	-2	devel/autoconf/Makefile
+18	-279	6 files

OPNSense/ports 7ed0e19 — opnsense/phpseclib distinfo Makefile

2026-04-27 07:22:52 UTC by Franco Fichtner on ⎇

master

opnsense/phpseclib: update to 3.0.52

Delta		File
+3	-3	opnsense/phpseclib/distinfo
+1	-1	opnsense/phpseclib/Makefile
+4	-4	2 files

OPNSense/core 837a134 — src/opnsense/mvc/app/views/OPNsense/Firewall nat_rule.volt

2026-04-27 07:19:26 UTC by Monviech on ⎇

firewall-nat-not

Firewall: NAT: Fix inverted source/destination cosmetic issue in SNAT and One-to-One NAT grids

Delta		File
+2	-1	src/opnsense/mvc/app/views/OPNsense/Firewall/nat_rule.volt
+2	-1	1 files

OPNSense/core 40ace08 — src/opnsense/mvc/app/models/OPNsense/Kea KeaDhcpv6.php

2026-04-27 07:02:53 UTC by Monviech on ⎇

kea-prefix-watcher-socket-polling

Use new count() base method for hasPdPools()

Delta		File
+1	-4	src/opnsense/mvc/app/models/OPNsense/Kea/KeaDhcpv6.php
+1	-4	1 files

OPNSense/core 72ce6b9 — src/opnsense/mvc/app/models/OPNsense/Base/FieldTypes BaseField.php, src/opnsense/mvc/app/models/OPNsense/Base/Menu MenuItem.php

2026-04-27 06:55:41 UTC by Monviech on ⎇

kea-prefix-watcher-socket-polling

Merge remote-tracking branch 'origin/master' into kea-prefix-watcher-socket-polling

Delta		File
+22	-22	src/opnsense/mvc/tests/app/models/OPNsense/Base/FieldTypes/TextFieldTest.php
+22	-22	src/opnsense/mvc/tests/app/models/OPNsense/Base/FieldTypes/AutoNumberFieldTest.php
+5	-6	src/opnsense/mvc/app/models/OPNsense/Base/Menu/MenuItem.php
+5	-5	src/opnsense/service/conf/actions.d/actions_zfs.conf
+10	-0	src/opnsense/mvc/app/models/OPNsense/Base/FieldTypes/BaseField.php
+3	-3	src/opnsense/mvc/app/views/OPNsense/Auth/priv.volt
+67	-58	7 files not shown
+79	-62	13 files

OPNSense/core 4c796dc — src/opnsense/mvc/app/models/OPNsense/Base/FieldTypes BaseField.php, src/opnsense/mvc/tests/app/models/OPNsense/Base/FieldTypes OptionFieldTest.php NetworkFieldTest.php

2026-04-27 06:20:52 UTC by Franco Fichtner on ⎇

master

mvc: BaseField: extend count() for value-based field types

So getValues() already uses isSet() which makes the count of
set values in the field type correct.  Add the tests to prove
it.

Delta		File
+3	-3	src/opnsense/mvc/app/models/OPNsense/Base/FieldTypes/BaseField.php
+5	-0	src/opnsense/mvc/tests/app/models/OPNsense/Base/FieldTypes/OptionFieldTest.php
+3	-0	src/opnsense/mvc/tests/app/models/OPNsense/Base/FieldTypes/NetworkFieldTest.php
+1	-0	src/opnsense/mvc/tests/app/models/OPNsense/Base/FieldTypes/TextFieldTest.php
+12	-3	4 files

OPNSense/core 95acd0d — src/opnsense/mvc/app/models/OPNsense/Kea KeaDhcpv6.php

2026-04-24 14:32:55 UTC by Monviech on ⎇

kea-pd-reservation

use getValues()

Delta		File
+2	-2	src/opnsense/mvc/app/models/OPNsense/Kea/KeaDhcpv6.php
+2	-2	1 files

OPNSense/core 6bb1a93 — src/opnsense/mvc/app/models/OPNsense/Routing GatewayGroups.php

2026-04-24 14:16:44 UTC by Stephan de Wit on ⎇

gwgroups_mvc

update function docs here

Delta		File
+1	-1	src/opnsense/mvc/app/models/OPNsense/Routing/GatewayGroups.php
+1	-1	1 files

OPNSense/core 1d8095a — src/opnsense/mvc/app/controllers/OPNsense/Kea/forms dialogReservation6.xml, src/opnsense/mvc/app/library/OPNsense/Firewall Util.php

2026-04-24 13:57:19 UTC by Monviech on ⎇

kea-pd-reservation

Services: Kea DHCPv6: Add prefix to reservations to allow for static PD allocations based on DUID/MAC

Delta		File
+32	-0	src/opnsense/mvc/app/library/OPNsense/Firewall/Util.php
+13	-2	src/opnsense/mvc/app/models/OPNsense/Kea/KeaDhcpv6.php
+11	-0	src/opnsense/mvc/app/models/OPNsense/Kea/KeaDhcpv6.xml
+7	-1	src/opnsense/mvc/app/views/OPNsense/Kea/leases6.volt
+6	-0	src/opnsense/mvc/app/controllers/OPNsense/Kea/forms/dialogReservation6.xml
+1	-0	src/opnsense/mvc/app/views/OPNsense/Kea/dhcpv6.volt
+70	-3	1 files not shown
+71	-3	7 files

OPNSense/core 5c4589a — src/opnsense/mvc/app/models/OPNsense/Routing GatewayGroups.php, src/opnsense/scripts/routes gateway_watcher.php

2026-04-24 13:01:45 UTC by Stephan de Wit on ⎇

gwgroups_mvc

Gateway Groups: typo and lazy-load model in gateway watcher

Delta		File
+4	-2	src/opnsense/scripts/routes/gateway_watcher.php
+1	-1	src/opnsense/mvc/app/models/OPNsense/Routing/GatewayGroups.php
+5	-3	2 files

OPNSense/core d48faca — src/opnsense/mvc/app/models/OPNsense/Base/FieldTypes BaseField.php, src/opnsense/mvc/tests/app/models/OPNsense/Base/FieldTypes AutoNumberFieldTest.php TextFieldTest.php

2026-04-24 12:50:02 UTC by Franco Fichtner via GitHub on ⎇

master

mvc: BaseField: add count() (#10199)

Helps with checking containers for applicability and
can be extended for non-containers.

Delta		File
+22	-22	src/opnsense/mvc/tests/app/models/OPNsense/Base/FieldTypes/AutoNumberFieldTest.php
+21	-22	src/opnsense/mvc/tests/app/models/OPNsense/Base/FieldTypes/TextFieldTest.php
+10	-0	src/opnsense/mvc/app/models/OPNsense/Base/FieldTypes/BaseField.php
+53	-44	3 files

OPNSense/core 33650c2 — src/opnsense/mvc/app/controllers/OPNsense/Routing/Api SettingsController.php, src/opnsense/mvc/app/models/OPNsense/Routing GatewayGroups.php Gateways.php

2026-04-24 12:37:27 UTC by Stephan de Wit on ⎇

gwgroups_mvc

Gateway Groups: convert to MVC

Delta		File
+305	-0	src/opnsense/mvc/app/models/OPNsense/Routing/GatewayGroups.php
+0	-120	src/opnsense/mvc/app/models/OPNsense/Routing/Gateways.php
+60	-0	src/opnsense/mvc/app/models/OPNsense/Routing/FieldTypes/GatewayGroupItemField.php
+42	-0	src/opnsense/mvc/app/models/OPNsense/Routing/GatewayGroups.xml
+14	-12	src/opnsense/scripts/monit/gateway_alert.php
+5	-13	src/opnsense/mvc/app/controllers/OPNsense/Routing/Api/SettingsController.php
+426	-145	5 files not shown
+441	-163	11 files