More gettext fixes
Fix quotes to use %N$X on gettext calls
Merge remote branch 'mainline/master' into inc
Conflicts: etc/inc/filter.inc etc/inc/system.inc
cbuechler says monitorip should not be stored in <interfaces><$if>. See ticket #919
Ticket #921. Actually reconfigure apinger in case of newip event because it might impact a previous down event.
Make this code more readble and clear on what it does.
Remove legacy code for static routes.
Oops fix long standing variable name mistype.
Remove legacy code
Remove support for this legacy code. The upgrade path handles this.
Do not support anymore an ip in the 'gateway' section of an interface.
Don't refer to non-existent variable.
Reported in forum http://forum.pfsense.org/index.php/topic,28643.0.html
Define and explain $aliases as a global.
Use a glob here instead of a shell exec.
Carry aliases around as a global so that discover_pkg_rules() can see aliases/macros, otherwise package rules that reference aliases/macros will never properly pass verification.
Test before working on what could be an empty value, otherwise it ends up set and causing an unexpected duplication. Fixes duplicate groups when editing users, as reported here: http://forum.pfsense.org/index.php/topic,26612.0.html
Do not synchronize ip alias. Ticket #882
Properly handle reinitializing of variables on the next loop. Reported-by: http://forum.pfsense.org/index.php/topic,28636.0.html
Fix the contents of the captive portal logout popup. Fixes #836
Add additional acceptable version strings.
Pass args to openssl_pkey_new() so it gets the key length too. Fixes #905
DNSWatch core dumps when it encounters white spaces.
Make safe_mkdir() create directories recursively
Initialize variable to possibly prevent hard caching of content.
Restart dnsmasq first because dyndns might depend on it. Possibly these all should be sent through evnets to check_reload_status
Fixup multiple dyndns updates with interface parameter passed. Reported-by: Blumeatt http://forum.pfsense.org/index.php/topic,27704.15.html
unbreak rc.bootup
Use pkill to avoid an error if the process isn't already running. This was a cosmetic issue only, cron was not yet running when this happened at bootup, it's started later in the boot process. Fixes #902
If we fail to send an event to check_reload_status consider its not running and try restarting it.
Bring gitsync to the new check_reload_status behaviour.
Properly check and set "Prefer older IPsec SAs" setting in the config and its associated sysctl. Move setting the sysctl to its own function to avoid code duplication.
Properly check if this is in use.
Allow selecting an OpenVPN Server CRL if we are in an SSL mode.
Some fixes/enhancements/cleanup
Fix write_rcfile() declaring $rcfileprefix as global and touching rcfile before check if it is writable
Update (C)
Ensure /etc/gettytab is of a sane size and restore from backup + log if it is not
Correct typo. Spotted by: wagnoza(IRC)
on newip event reload the static routes for that interface because on dynamic gateways the ip might have changed. While here make sure the interface argument is repsected on system_routing_configure() and use send_event to reconfigure an interface to aleviate a possible race.
Prevent a foreach on what might not be an array. Fixes #900
Add as a search domain the domains suggested by dhcp.
We might not have any defaultgw selected and consider wan as default. Make sure to catch this so GUI works and other parts that depend on defaultgw detection.
Fix this function's logic/variable tests.
Add some safety belt checks so we don't try to update an imported crl
Add some CRL support functions, not active or used in the GUI yet.
Make it possible to show default against dynamic gateway names in the GUI.
Do not suck in the file but actually execute it.
Actually display a the right class for static gateways. Also fix whitespace
Conflicts: etc/inc/filter.inc
Add support for an automatic merge list to gitsync, properly escape user-supplied parameters, and improve error handling a bit.
Return list with WAN and LAN interfaces in the configured order rather than giving special treatment, as is already done with the OPTx interfaces.
Revert "Reorder the way this list (get_configured_interface_list) is generated to make it more beautiful."
This reverts commit 144d0e793de61366340758b28f169c3afeeba922.
Merge branch 'master' of rcs.pfsense.org:pfsense/mainline
Reorder the way this list (get_configured_interface_list) is generated to make it more beautiful.
I know you guys said don't bother, but it's just cosmetic, and it took 10 seconds.
Write status file every 5seconds.
Send a log entry when openvpn resync is called.
Oops this is meant to add members not override them.
Cleanup code.
Do not use the \ based list for modules because it treats even the comments as modules. Simplify logic and make sure php.ini exists in both paths when needed.
Ticket #867. Flush the cache when restarting apinger and also when rc.newwanip is called. also restart apinger earlier in to be on latest address asap.
Do stricter validation of host names and domain names.
Simplify logic.
Ticket #876. Actually use the friendly name for the key of the array returned by return_gateways_array() so the dynamic gateway and status pages work correctly.
Conflicts: etc/inc/filter.inc etc/inc/gwlb.inc
Ticket #876. Show all gateways even though apinger is not monitoring them, for various reasons, this removes user confusion in the status pages.
Ticket #876. Add the ip to the respective files on ppp linkup event so the code of dynamic gateways finds them. Also reorganize/simplify/optimize the apinger config generation code. Do not use that 127.0.0.x hack anymore and avoid loops as much as possible.
Since the OpenVPN management is done via unix socket and not tcp, we no longer need to require the local_port be set in order to activate the daemon.
Reload cron after changes. Submitted-by: robiscool
Check for proper type.
Correct typo in file name. Also do not delete users just expire them.
Use foreach and check for type to avoid errors.
Start-up first check_reload_status than call rc.bootup since this is the new world order. This unbreaks booting and removes spurious messages during boot. While here for all binaries use full path for correctnes and avoid any 'strange' issues.
Conflicts: etc/inc/filter.inc etc/inc/pkg-utils.inc etc/inc/service-utils.inc etc/inc/system.inc etc/inc/vpn.inc
Expand alias for redirect target port and truncate to first port or range if destination port is not that same alias, since the translation port in PF does not accept lists.
Fix variable name typo in status_services.php and fix return value of is_pid_running. Fixes #877
Ticket #876. Reload gateways/apinger before filter_reload so the new ip/gateway is considered up from the beginning.
Use the new events mechanisms to dispatch events.
Ticket #876. Remove old status file of apinger before restarting because it might confuse gui.
Actually there is a script that will run ntpd on bootup. Revert partially the change to fix ntp.
Fix ntpd starting at boot time and also status->services checking/stop/start/restart display. Previously ntpd would not start at all either though it should.
Add upgrade code for NAT 1:1 rules and bump config version.
Fix reflection on 1:1 rules and properly reinitialize the variable holding the CIDR mask on each iteration of the loop since having none specified is allowed.
Do this check earlier rather than later, instead of moving the interface_bring_down call.
Revert "Rearrange function calls for wireless to prevent killing hostapd/wpa_supplicant at the wrong time."
This reverts commit e93385d06ddf0e2888b3f5ee5764992a19f99120.
Revert "Ticket #867. Do not destory interfaces other than preventing a loop for ppp interfaces during interface configuration."
This reverts commit 990fb7a9a9b03f744c56792011f1c1e2950ce764.
Protect against wpa_supplicant dying when bringing down interfaces to change wireless regulatory configuration.
Ticket #873. Call write_config() before including file to avoid loosing already done modifications. While here do some code cleanup and formating to make it more readble.
Rearrange function calls for wireless to prevent killing hostapd/wpa_supplicant at the wrong time.
- Moved interface_wireless_configure call to after the new location of the interface_bring_down call to prevent it from killing hostapd and wpa_supplicant right after they start....
Ticket #843. Disable for now bringing down the interface unless we want to destroy it. While this is not all correct this seems to help alleviate problems when the parent is shared on cloned types.
Allow 1:1 rules to specify source and destination. This is almost the same as on Port Forward tab rules without protocol and ports.
Actually decode before writing to mpd.secret. Alos correct variable names. Discovered-by: Efonne(IRC)
Base64 encode passowrd fields for safer operations. Suggested-by: Efonne(IRC)
Upgrade user data too for new pppoe world.
Correct function name. Pointy-hat: jimp@
We no longer need system_usermanager_addcert.php, its redundant functionality has been merged with system_certmanager.php
Update sync code since CERT/CA have moved.
Remove two unused functions (now useless) and add a few more utility functions.
Upgrade code to merge user certificates with normal certificates.
Remove obsolete Bogons files