OPNSense/core 3c2ad5dsrc/opnsense/mvc/app/models/OPNsense/IPsec/FieldTypes IPsecProposalField.php

ipsec: add DH Group 2 for basic Azure VPN gateway compatibility

While insecure, this is the best possible proposal combination out
of the list provided by Microsoft: https://learn.microsoft.com/en-us/azure/vpn-gateway/vpn-gateway-about-vpn-devices#ike-phase-1-main-mode-parameters
DeltaFile
+1-0src/opnsense/mvc/app/models/OPNsense/IPsec/FieldTypes/IPsecProposalField.php
+1-01 files

OPNSense/core a4124d7. +POST_INSTALL

pkg: adjust this a bit making it possible to shift the user UID and GID if needed #8521
DeltaFile
+12-10+POST_INSTALL
+12-101 files

OPNSense/core 2a935b7src/opnsense/mvc/app/controllers/OPNsense/Routing/forms dialogEditGateway.xml

system: states kill checkbox clarification (#8578)


Co-authored-by: Stephan de Wit <stephan.de.wit at deciso.com>
DeltaFile
+4-4src/opnsense/mvc/app/controllers/OPNsense/Routing/forms/dialogEditGateway.xml
+4-41 files

OPNSense/core 727967esrc/etc/inc/plugins.inc.d dhcpd.inc radvd.inc, src/opnsense/mvc/app/models/OPNsense/Base/Menu MenuSystem.php

Services: ISC DHCPv6 - show "tracking" interfaces when enabled and offer an explicit disable (#8576)

* Services: ISC DHCPv6 - show "tracking" interfaces when enabled an offer an explicit disable option for the service in question so someone could use dnsmasq or kea instead.

To avoid large changes, we opt for a  minimal set here.
In services_dhcpv6.php, we add a separate form and handler in case tracking (without dhcpd6track6allowoverride) is set, which either flushes the unused isc-dhcpv6 server configuration when enabled (default) or writes a small section only including ['enabled' => -1].
For visibility, we show the calculated range as would be set by dhcpd_dhcp6_configure() when tracking is used.

The backend code then double checks the services which er explicitly disabled (-1) and skip processing for these (not enabled).

In order to make people aware of the fact that an isc-dhcpv6 server could be running, make sure the menu system also reflects reality.

Since router advertisements are stored within the same container and will need a toggle as well, keep the value of ramode so we have a way to intervene in a similar way as for dhcpv6.
One small side affect of this commit is that it will show "Services: Router Advertisements" for the tracking interface, which we need to implement later.

One of the building blocks for: https://github.com/opnsense/core/issues/8528

* Update src/www/services_dhcpv6.php


    [12 lines not shown]
DeltaFile
+121-8src/www/services_dhcpv6.php
+103-13src/www/services_router_advertisements.php
+16-5src/etc/inc/plugins.inc.d/dhcpd.inc
+10-2src/etc/inc/plugins.inc.d/radvd.inc
+1-1src/opnsense/mvc/app/models/OPNsense/Base/Menu/MenuSystem.php
+251-295 files

OPNSense/core 178285esrc/etc/inc/plugins.inc.d radvd.inc, src/www services_router_advertisements.php services_dhcpv6.php

Services: Router Advertisements: show "tracking" interfaces when enabled an offer an explicit disable option for the service in question so someone could use dnsmasq instead.

More or less the same construction as added for dhcpv6, using the ramode field to switch between types (disabled or assisted).

While here, also bugfix fieldname in services_dhcpv6.php

also for https://github.com/opnsense/core/issues/8528
DeltaFile
+103-13src/www/services_router_advertisements.php
+10-2src/etc/inc/plugins.inc.d/radvd.inc
+2-2src/www/services_dhcpv6.php
+115-173 files

OPNSense/core d8f831esrc/opnsense/mvc/app/controllers/OPNsense/Routing/forms dialogEditGateway.xml

Update src/opnsense/mvc/app/controllers/OPNsense/Routing/forms/dialogEditGateway.xml

Co-authored-by: Stephan de Wit <stephan.de.wit at deciso.com>
DeltaFile
+1-1src/opnsense/mvc/app/controllers/OPNsense/Routing/forms/dialogEditGateway.xml
+1-11 files

OPNSense/core 5bb4a48src/opnsense/mvc/app/controllers/OPNsense/Routing/forms dialogEditGateway.xml

Update src/opnsense/mvc/app/controllers/OPNsense/Routing/forms/dialogEditGateway.xml
DeltaFile
+1-1src/opnsense/mvc/app/controllers/OPNsense/Routing/forms/dialogEditGateway.xml
+1-11 files

OPNSense/core 7cb10b2src/opnsense/mvc/app/controllers/OPNsense/Routing/forms dialogEditGateway.xml

Update src/opnsense/mvc/app/controllers/OPNsense/Routing/forms/dialogEditGateway.xml

Co-authored-by: Stephan de Wit <stephan.de.wit at deciso.com>
DeltaFile
+1-1src/opnsense/mvc/app/controllers/OPNsense/Routing/forms/dialogEditGateway.xml
+1-11 files

OPNSense/core 391617bsrc/opnsense/mvc/app/controllers/OPNsense/Routing/forms dialogEditGateway.xml

Update src/opnsense/mvc/app/controllers/OPNsense/Routing/forms/dialogEditGateway.xml

Co-authored-by: Stephan de Wit <stephan.de.wit at deciso.com>
DeltaFile
+1-1src/opnsense/mvc/app/controllers/OPNsense/Routing/forms/dialogEditGateway.xml
+1-11 files

OPNSense/core 3ddb403src/opnsense/mvc/app/controllers/OPNsense/Routing/forms dialogEditGateway.xml

Update src/opnsense/mvc/app/controllers/OPNsense/Routing/forms/dialogEditGateway.xml

Co-authored-by: Stephan de Wit <stephan.de.wit at deciso.com>
DeltaFile
+1-1src/opnsense/mvc/app/controllers/OPNsense/Routing/forms/dialogEditGateway.xml
+1-11 files

OPNSense/core 66989cfsrc/opnsense/mvc/app/controllers/OPNsense/Routing/forms dialogEditGateway.xml

system: work on states kill wording
DeltaFile
+4-4src/opnsense/mvc/app/controllers/OPNsense/Routing/forms/dialogEditGateway.xml
+4-41 files

OPNSense/core b724535contrib/tzdata zone.tab iso3166.tab

tzdata: sync while here

(cherry picked from commit 0deba9c9de36caf0c4a97337eb9acdfd95d02435)
DeltaFile
+54-56contrib/tzdata/zone.tab
+14-9contrib/tzdata/iso3166.tab
+68-652 files

OPNSense/core c7d0bbaScripts unused-functions.sh

Scripts: add a small script to find unused function
DeltaFile
+86-0Scripts/unused-functions.sh
+86-01 files

OPNSense/core 9c5a96esrc/etc/inc util.inc

system: remove unused format_bytes()

(cherry picked from commit 30343809e9a79ff2c275b7cdda07ab55ed60fd4d)
DeltaFile
+0-17src/etc/inc/util.inc
+0-171 files

OPNSense/core 4ae61e9src/etc/inc/plugins.inc.d ipsec.inc

ipsec: remove two unused functions

(cherry picked from commit b2a62884376d38efda2b1b4df095fee5e4088d1e)
DeltaFile
+0-46src/etc/inc/plugins.inc.d/ipsec.inc
+0-461 files

OPNSense/core 93a344esrc/etc/inc config.inc

config: remove unused config_restore()

(cherry picked from commit 51dcbcc39e90321233742177997013da2500dd74)
DeltaFile
+0-19src/etc/inc/config.inc
+0-191 files

OPNSense/core e773ac6src/www interfaces.php

interfaces: allow the unused function script to find these

(cherry picked from commit 39d5ff1a26ae306abc83c9ae1c70c8c4c07ce997)
DeltaFile
+3-3src/www/interfaces.php
+3-31 files

OPNSense/core 3280916Scripts unused-functions.sh

Scripts: one more for JS
DeltaFile
+1-0Scripts/unused-functions.sh
+1-01 files

OPNSense/core 35f46bbsrc/www firewall_schedule_edit.php

firewall: remove unused function...

... imported into pfSense in 2007... unused ;)

https://github.com/pfsense/pfsense/commit/615b27bc267a98e72
DeltaFile
+0-26src/www/firewall_schedule_edit.php
+0-261 files

OPNSense/core 1c4a983Scripts unused-functions.sh

Scripts: last adjustments? ;)
DeltaFile
+16-3Scripts/unused-functions.sh
+16-31 files

OPNSense/core 966c129src/www services_dhcpv6.php

Update src/www/services_dhcpv6.php

Co-authored-by: Franco Fichtner <franco at opnsense.org>
DeltaFile
+1-1src/www/services_dhcpv6.php
+1-11 files

OPNSense/core 39d5ff1src/www interfaces.php

interfaces: allow the unused function script to find these
DeltaFile
+3-3src/www/interfaces.php
+3-31 files

OPNSense/core e300395Scripts unused-functions.sh

Scripts: exclude plugin argument selector trick
DeltaFile
+1-1Scripts/unused-functions.sh
+1-11 files

OPNSense/core f5e0735Scripts unused-functions.sh

Scripts: a bit noisy, we just want the gory details now
DeltaFile
+2-1Scripts/unused-functions.sh
+2-11 files

OPNSense/core b2a6288src/etc/inc/plugins.inc.d ipsec.inc

ipsec: remove two unused functions
DeltaFile
+0-46src/etc/inc/plugins.inc.d/ipsec.inc
+0-461 files

OPNSense/core bc9f73aScripts unused-functions.sh

Scripts: typo
DeltaFile
+1-1Scripts/unused-functions.sh
+1-11 files

OPNSense/core b1a84fcsrc/etc/inc util.inc

system: remove unused check_subnets_overlap()
DeltaFile
+0-22src/etc/inc/util.inc
+0-221 files

OPNSense/core 17134aesrc/etc/inc util.inc

system: remove unused subnet_size()
DeltaFile
+0-13src/etc/inc/util.inc
+0-131 files

OPNSense/core 2d1c1fcScripts unused-functions.sh

Scripts: add unused-functions.sh helper

Processing is quite heavy but we don't need to run this all the time.
DeltaFile
+71-0Scripts/unused-functions.sh
+71-01 files

OPNSense/core c12f4cfsrc/etc/inc/plugins.inc.d captiveportal.inc

captive portal: drop forced redirection (test for https://github.com/opnsense/core/issues/8261)
DeltaFile
+0-21src/etc/inc/plugins.inc.d/captiveportal.inc
+0-211 files