BSD Commit Log Search

www/c-icap: move to syslog (#4674)

net/ndproxy: Disable promiscuous mode forced by port

We do not need this since our most common setup has "uplink_interface" and "downlink_mac_address" on the same interface, ndproxy and CPE router are same device.

Promiscuous mode would be needed if the "downlink_mac_address" is on a different device, e.g. a separate CPE router. If that is the case, users can enable it via interface settings.

www/caddy: Build message is dismissable so users do not miss the result if they go away for a bit

www/caddy: Adjust dependencies, put module tab last in general settings.

www/caddy: Make status of build clearer.

www/caddy: Use localized status for frontend while building.

www/caddy: Improve a few things in the build script to avoid a busy caddy when replacing the binary. Restructure general settings a little bit as there were too many tabs. Change polling rate to 10s.

www/caddy: Only render modules in template if at least one is selected

www/caddy: Fix wrong path for CaddyModules in model

www/caddy: Update dependencies and remove cloudflare as its in standard build.

www/caddy: Add config file to caddy_build script so it can be more simply configured

www/caddy: Add module building functionality to GUI using xcaddy

- Users can select predefined modules in the General Settings
- When the build is invoked, a hardcoded base build will be merged with the selected modules
- A child process will spawn that async builds the new caddy binary and replaces it upon success
- Multiple parallel builds are prevented using a file lock
- The status is polled via separate file and presented to the front
- Since this is a long running operation that can take several minutes, timeouts have been a consideration
- Upon success, replaces the current binary with the new one

www/caddy: Add wrapper script for xcaddy to support local custom builds

www/caddy: Add encrypted client hello (ECH)

www/caddy: Allow Client Auth (mTLS) inside subdomains as supported by new wildcard domain and subdomain pattern

www/caddy: Change wildcard domain with subdomain pattern to align with caddy-v2.10.0

www/squid: authenticate before blacklist (#4670)

dns/rfc2136: function renamed for clarity

(cherry picked from commit 5c2207906b2db5c95c31aca29468ec245996c169)

dns/rfc2136: function renamed for clarity

dns/ddclient: Add Akamai to checkip providers. (#4660)

security/wazuh-agent: make agent_name configurable (#4657)

misc/theme-rebellion: sync with master

www/caddy: style sweep

www/caddy: Fix missing translation and toggle filter icon correctly (#4648)

www/caddy: Fix missing translation and toggle filter icon correctly

www/caddy: Revise dns providers for caddy-v2.10.0 (#4644)

* www/caddy-custom: Revise dns providers for caddy-v2.10.0

https://github.com/opnsense/plugins/issues/4643

* Update www/caddy/src/opnsense/mvc/app/models/OPNsense/Caddy/Caddy.xml

Co-authored-by: Franco Fichtner <franco at opnsense.org>

---------

Co-authored-by: Franco Fichtner <franco at opnsense.org>

www/caddy: Show only wildcard domains in subdomain selection, show only wildcard domains in handler selection if a subdomain is selected (#4646)

Bootgrid Corrections (#4645)

net/turnserver: sync with master

net/turnserver: prep for release