OPNSense/core 8b01bd2src/opnsense/mvc/app/controllers/OPNsense/Dnsmasq/forms dialogDHCPoption.xml, src/opnsense/mvc/app/models/OPNsense/Dnsmasq Dnsmasq.xml

dnsmasq: Add option6 to support DHCPv6 options (#8448)

DeltaFile
+6-0src/opnsense/mvc/app/controllers/OPNsense/Dnsmasq/forms/dialogDHCPoption.xml
+6-0src/opnsense/mvc/app/models/OPNsense/Dnsmasq/Dnsmasq.xml
+1-1src/opnsense/service/templates/OPNsense/Dnsmasq/dnsmasq.conf
+13-13 files

OPNSense/core d2b78e1src/opnsense/mvc/app/controllers/OPNsense/Dnsmasq/forms general.xml, src/opnsense/mvc/app/models/OPNsense/Dnsmasq Dnsmasq.xml

dnsmasq: Add add-mac, add-subnet and strip-subnet options to general settings (#8447)

DeltaFile
+21-0src/opnsense/mvc/app/controllers/OPNsense/Dnsmasq/forms/general.xml
+11-0src/opnsense/service/templates/OPNsense/Dnsmasq/dnsmasq.conf
+9-0src/opnsense/mvc/app/models/OPNsense/Dnsmasq/Dnsmasq.xml
+41-03 files

OPNSense/core 1ae2338src/opnsense/mvc/app/controllers/OPNsense/Dnsmasq/forms dialogDHCPoption.xml, src/opnsense/mvc/app/models/OPNsense/Dnsmasq Dnsmasq.xml

dnsmasq: Add option6 to support DHCPv6 options
DeltaFile
+6-0src/opnsense/mvc/app/controllers/OPNsense/Dnsmasq/forms/dialogDHCPoption.xml
+6-0src/opnsense/mvc/app/models/OPNsense/Dnsmasq/Dnsmasq.xml
+1-2src/opnsense/service/templates/OPNsense/Dnsmasq/dnsmasq.conf
+13-23 files

OPNSense/core d55ecc6src/opnsense/mvc/app/models/OPNsense/Core ACL.php, src/opnsense/mvc/app/models/OPNsense/Core/ACL ACL.xml

auth: rewire system_usermanager_passwordmg.php to /ui/user_portal for cooperation with the next business edition.

This commit consists of two parts:

1) Add user portal privileges to "Lobby: Password" as this replaces the legacy item
2) Rewire password policy constraints to use "ui/user_portal", which will be redirected to the legacy page when BE is not installed.

The impact of this change should be small.
DeltaFile
+8-2src/opnsense/www/index.php
+7-2src/opnsense/mvc/app/models/OPNsense/Core/ACL.php
+2-0src/opnsense/mvc/app/models/OPNsense/Core/ACL/ACL.xml
+1-1src/www/authgui.inc
+18-54 files

OPNSense/core f2b1171src/opnsense/mvc/app/controllers/OPNsense/Dnsmasq/forms general.xml, src/opnsense/mvc/app/models/OPNsense/Dnsmasq Dnsmasq.xml

dnsmasq: Add add-mac, add-subnet and strip-subnet options to general settings
DeltaFile
+21-0src/opnsense/mvc/app/controllers/OPNsense/Dnsmasq/forms/general.xml
+11-0src/opnsense/service/templates/OPNsense/Dnsmasq/dnsmasq.conf
+9-0src/opnsense/mvc/app/models/OPNsense/Dnsmasq/Dnsmasq.xml
+41-03 files

OPNSense/core c5af733src/opnsense/mvc/app/library/OPNsense/Auth Radius.php

Radius: check correct var for error

(cherry picked from commit 7140a2cf2b403030fa401ffcf82a15f585f70091)
DeltaFile
+1-1src/opnsense/mvc/app/library/OPNsense/Auth/Radius.php
+1-11 files

OPNSense/core 7140a2csrc/opnsense/mvc/app/library/OPNsense/Auth Radius.php

Radius: check correct var for error
DeltaFile
+1-1src/opnsense/mvc/app/library/OPNsense/Auth/Radius.php
+1-11 files

OPNSense/core 0050660src/opnsense/mvc/app/controllers/OPNsense/Base ControllerRoot.php

mvc: send audit messsages emitted in the authentication sequence to proper channel and extend them with relevant event information. (ControllerRoot)

(cherry picked from commit 2eb75b2de22000358cb711ef7ba4aa5540da0f12)
(cherry picked from commit 0ee71a7e682d25d68f3ef56ce871ccff98e72f93)
DeltaFile
+11-3src/opnsense/mvc/app/controllers/OPNsense/Base/ControllerRoot.php
+11-31 files

OPNSense/core 80facb0src/opnsense/mvc/app/controllers/OPNsense/Firewall/Api AliasController.php

Firewall: Aliases - rename action ignored due to missing lock, closes https://github.com/opnsense/core/issues/8432

(cherry picked from commit e702d4e1ddc84b1e8bd63daa7a365bbadbc1861b)
DeltaFile
+10-12src/opnsense/mvc/app/controllers/OPNsense/Firewall/Api/AliasController.php
+10-121 files

OPNSense/core 7365ed5src/opnsense/mvc/app/models/OPNsense/Base/FieldTypes BooleanField.php

mvc: BooleanField defaults to 0 on creation, this will not change any empty node, just changes how these are  being created for the first time.

(cherry picked from commit f569ead1a5371731ed3fe06cdd93b89b999445e0)
DeltaFile
+7-1src/opnsense/mvc/app/models/OPNsense/Base/FieldTypes/BooleanField.php
+7-11 files

OPNSense/core 5b01068src/opnsense/mvc/app/models/OPNsense/Diagnostics PacketCapture.xml

Interfaces: Diagnostics: Packet Capture - add "arp" address family option

(cherry picked from commit adc37c2cd9c6433fad13610d3b60fe65be887ea1)
DeltaFile
+1-0src/opnsense/mvc/app/models/OPNsense/Diagnostics/PacketCapture.xml
+1-01 files

OPNSense/core aa27bb7. plist, src/opnsense/mvc/app/models/OPNsense/Firewall Alias.php

Firewall: Aliases - offer better pluggability for dynamic alias types and move current json static_aliases and interface networks into their own classes.

(cherry picked from commit fdded458e00bfbb6b906e6fea75555d4b67387cd)
(cherry picked from commit 655c74255afd3591ac1dab0cc446a4d5cf8fc09e)
(cherry picked from commit c3994d14c6ff751310b39c9ccf8cb587eda5456f)
DeltaFile
+43-41src/opnsense/mvc/app/models/OPNsense/Firewall/FieldTypes/AliasField.php
+51-0src/opnsense/mvc/app/models/OPNsense/Firewall/DynamicAliases/InterfaceNetworkAliases.php
+44-0src/opnsense/mvc/app/models/OPNsense/Firewall/DynamicAliases/StaticAliases.php
+20-22src/opnsense/mvc/app/models/OPNsense/Firewall/Alias.php
+9-0src/opnsense/mvc/app/models/OPNsense/Firewall/DynamicAliases/README.md
+3-0plist
+170-636 files

OPNSense/core 5e23446src/opnsense/mvc/app/controllers/OPNsense/Diagnostics/forms packetcapture.xml, src/opnsense/mvc/app/views/OPNsense/Diagnostics packetcapture.volt

Interfaces: Diagnostics: Packet Capture - minor style update, position "(de)select all" button on the same row.

(cherry picked from commit 676dbb953ce8afd4178dc5ca2debcc51b66bbf2a)
DeltaFile
+1-1src/opnsense/mvc/app/views/OPNsense/Diagnostics/packetcapture.volt
+1-0src/opnsense/mvc/app/controllers/OPNsense/Diagnostics/forms/packetcapture.xml
+2-12 files

OPNSense/core b2474ca. plist, src/opnsense/mvc/app/models/OPNsense/Base/FieldTypes NetworkField.php

mvc: merge NetworkValidator into NetworkField to ease extensibility and add unit test

(cherry picked from commit c93e0ac745c1f4773fcb71db084a9617365ceb95)
(cherry picked from commit b514aafac6346dcd4b79cbd8ed3bf8fa6e76fef0)
(cherry picked from commit 84964049b05e3ae75871b031e45ab96e61a0cb89)
DeltaFile
+133-0src/opnsense/mvc/tests/app/models/OPNsense/Base/FieldTypes/NetworkFieldTest.php
+0-133src/opnsense/mvc/app/models/OPNsense/Base/Validators/NetworkValidator.php
+78-11src/opnsense/mvc/app/models/OPNsense/Base/FieldTypes/NetworkField.php
+1-1plist
+212-1454 files

OPNSense/core f487b32src/etc rc.filter_synchronize config.xml.sample, src/opnsense/mvc/tests/app/models/OPNsense/ACL/AclConfig config.xml

xmlrpc: stop pushing nextuid and nextgid as these don't exist anymore.

(cherry picked from commit 8c63dad2f349b22ecdf69e2b3b246fd3daa7a076)
(cherry picked from commit 50ed8aeae31f276a8bead299e7a5941c2611d5a2)
DeltaFile
+0-9src/etc/rc.filter_synchronize
+0-2src/opnsense/mvc/tests/app/models/OPNsense/ACL/AclConfig/config.xml
+0-2src/etc/config.xml.sample
+0-133 files

OPNSense/core b3d9cedsrc/opnsense/scripts/unbound/blocklists default_bl.py __init__.py, src/opnsense/service/templates/OPNsense/Unbound/core dnsbl_module.py

Services: Unbound DNS: Blocklist - move whitelist (passlist) handling to unbound plugin in stead of the existing prefiltering option. closes https://github.com/opnsense/core/pull/8415

The previous handling "skimmed" the blocklist using regular expressions, but when these lists include wildcards, you need to filter the exact item to exclude it (e.g. *.org.domain in a blocklist will still block a.org.domain in a passlist).

By moving the evaluation to the place where requests are evaluated, we can pass the likely intended domains by their provided regex.
Although there is a performance penalty, it should be limited since we only compile the regex once.

(cherry picked from commit aa2cff3e665fd0fb2b22b69be4334d365ee066eb)
DeltaFile
+19-44src/opnsense/scripts/unbound/blocklists/default_bl.py
+20-0src/opnsense/scripts/unbound/blocklists/__init__.py
+14-0src/opnsense/service/templates/OPNsense/Unbound/core/dnsbl_module.py
+53-443 files

OPNSense/core 6c91e3bsrc/sbin opnsense-beep

opnsense-beep: serialize access to /dev/speaker (#8281)

(cherry picked from commit f8b35d0a83db12a6e3e127151ca0564466e1cce5)
DeltaFile
+7-3src/sbin/opnsense-beep
+7-31 files

OPNSense/core 69bc522src/opnsense/scripts/filter update_tables.py, src/opnsense/scripts/filter/lib/alias pf.py __init__.py

Firewall: Aliases - performance improvement by using pf's overal table stats instead of dumping them.

This commit changes PF.list_tables() to yield both the name of the aliases as well as (limited) stats, in places where we only check for totals, these are faster to collect than counting them in python.

There should be no functional impact.

(cherry picked from commit 81ec98007dff29f8cdfc5fe23ade60e7bb91ff90)
DeltaFile
+17-2src/opnsense/scripts/filter/lib/alias/pf.py
+8-7src/opnsense/scripts/filter/update_tables.py
+13-1src/opnsense/scripts/filter/lib/alias/__init__.py
+38-103 files

OPNSense/core f8b35d0src/sbin opnsense-beep

opnsense-beep: serialize access to /dev/speaker (#8281)

DeltaFile
+7-3src/sbin/opnsense-beep
+7-31 files

OPNSense/core bf557f9src/opnsense/mvc/app/views/OPNsense/Firewall filter_rule.volt

firewall/filter: Accidentally deleted too much in previous
DeltaFile
+7-0src/opnsense/mvc/app/views/OPNsense/Firewall/filter_rule.volt
+7-01 files

OPNSense/core 598ee95src/opnsense/mvc/app/views/OPNsense/Firewall filter_rule.volt

firewall/filter: Clean up a few things in view from feedback
DeltaFile
+10-55src/opnsense/mvc/app/views/OPNsense/Firewall/filter_rule.volt
+10-551 files

OPNSense/core ff91932src/etc/inc/plugins.inc.d dpinger.inc, src/opnsense/mvc/app/controllers/OPNsense/Routing/forms dialogEditGateway.xml

System: Gateways: Configuration - add "Kill states when down" option trigginer a gateway kill for all states with this gateway set, proposal for https://github.com/opnsense/core/issues/6803

* hide monitor options when disabled
* wire configd kill gateway command for 'pfctl -k gateway -k gwip'
* pass required properties in dpinger_status()
DeltaFile
+9-0src/opnsense/mvc/app/views/OPNsense/Routing/configuration.volt
+9-0src/opnsense/mvc/app/controllers/OPNsense/Routing/forms/dialogEditGateway.xml
+6-0src/opnsense/service/conf/actions.d/actions_filter.conf
+4-0src/opnsense/scripts/routes/gateway_watcher.php
+2-0src/etc/inc/plugins.inc.d/dpinger.inc
+1-0src/opnsense/mvc/app/models/OPNsense/Routing/Gateways.xml
+31-06 files

OPNSense/core 4ad7543src/opnsense/mvc/app/controllers/OPNsense/Base ControllerRoot.php, src/opnsense/mvc/app/controllers/OPNsense/Firewall/Api AliasController.php

Merge remote-tracking branch 'origin/master' into automation-filter-poc
DeltaFile
+0-306src/opnsense/mvc/app/library/OPNsense/Backup/GDrive.php
+0-150src/opnsense/mvc/app/library/Google/API/Drive.php
+38-32src/opnsense/scripts/filter/lib/alias/uri.py
+20-22src/opnsense/mvc/tests/app/models/OPNsense/Base/FieldTypes/NetworkFieldTest.php
+10-12src/opnsense/mvc/app/controllers/OPNsense/Firewall/Api/AliasController.php
+11-3src/opnsense/mvc/app/controllers/OPNsense/Base/ControllerRoot.php
+79-52513 files not shown
+101-54819 files

OPNSense/core bcabf4asrc/opnsense/mvc/app/views/OPNsense/Firewall filter_rule.volt

firewall/filter: Lets allow the grid to shrink a tiny bit more. This is the lower limit in the default view after which the layout would get too messed up
DeltaFile
+1-1src/opnsense/mvc/app/views/OPNsense/Firewall/filter_rule.volt
+1-11 files

OPNSense/core e702d4esrc/opnsense/mvc/app/controllers/OPNsense/Firewall/Api AliasController.php

Firewall: Aliases - rename action ignored due to missing lock, closes https://github.com/opnsense/core/issues/8432
DeltaFile
+10-12src/opnsense/mvc/app/controllers/OPNsense/Firewall/Api/AliasController.php
+10-121 files

OPNSense/core 010af7csrc/opnsense/mvc/app/views/OPNsense/Firewall filter_rule.volt

firewall/filter: Fix css of bootgrid one last time, add data-container body to selectpickers, ensure minimal heigth for selectpickers that do not support it directly, fix bootgrid-header and footer to behave the same as the grid itself.
DeltaFile
+13-50src/opnsense/mvc/app/views/OPNsense/Firewall/filter_rule.volt
+13-501 files

OPNSense/core c7c0785. Makefile, src/opnsense/mvc/app/views/OPNsense/Firewall alias.volt

Firewall: Aliases - support jq for alias processing, closes https://github.com/opnsense/core/issues/8277

As we already supported a dot [.] terminated format, we should support both advanced queries as simple ones using "container1.container2", by prefixing the simple format with a dot, we can offer both options using the same parser.

While comparing jq with jsonpath, the first option seems to be most practical and easier to explain.
DeltaFile
+38-32src/opnsense/scripts/filter/lib/alias/uri.py
+2-1src/opnsense/mvc/app/views/OPNsense/Firewall/alias.volt
+1-0Makefile
+41-333 files

OPNSense/core d84960dsrc/opnsense/mvc/app/controllers/OPNsense/Firewall/forms dialogFilterRule.xml, src/opnsense/mvc/app/views/OPNsense/Firewall filter_rule.volt

firewall/filter: css is our friend and helper, this fix ensures that dynamic and static column widths can be mixed while still keeping the grid responsive due to a min-width to its own separate grid-box wrapper. Its a bit tricky but works.
DeltaFile
+5-41src/opnsense/mvc/app/controllers/OPNsense/Firewall/forms/dialogFilterRule.xml
+10-1src/opnsense/mvc/app/views/OPNsense/Firewall/filter_rule.volt
+15-422 files

OPNSense/core 7ae4bfasrc/opnsense/mvc/app/views/OPNsense/Firewall filter_rule.volt

firewall/filter: Preselect categories on add action when having them filtered in the grid
DeltaFile
+20-0src/opnsense/mvc/app/views/OPNsense/Firewall/filter_rule.volt
+20-01 files

OPNSense/core 82236a0src/opnsense/mvc/app/controllers/OPNsense/Firewall/forms dialogFilterRule.xml, src/opnsense/mvc/app/views/OPNsense/Firewall filter_rule.volt

firewall/filter: Add the same interface that is selected in the grid selectpicker into the formDialogFilter on add event, change position of interface in dialog
DeltaFile
+25-21src/opnsense/mvc/app/controllers/OPNsense/Firewall/forms/dialogFilterRule.xml
+12-0src/opnsense/mvc/app/views/OPNsense/Firewall/filter_rule.volt
+37-212 files