Always use the highest existing zone ID when creating a new one. Fix #15772
Apply removed route changes to secondary HA node. Fix #15795
Fix NTP pool DNS note. Fixes 15552
Fix some config path warnings
Decrease the number of config requests when deleting filter rules
Merge pull request #4704 from GChuf/removePragmaHeader
Merge pull request #4705 from GChuf/disksCookies
Fix PHP error when saving PPP settings without an interfaces selected
Use minified nvd3 vendor files. Implement #15782
Add minified nvd3 vendor files
Remove unnecessary config_init_path() calls
Reduce config fetches when displaying filter logs
Also show system aliases when listing all aliases
Interface group member validation/encoding. Fixes #15778
Fix rule generation and display for system aliases
This is a followup to 52e512c0555d9f5a91732907e524364358d3f70c- Update system alias comments and descriptions.- Improve reserved aliases processing.- Use alias_info_popup() code when possible for system aliases....
Remove additional cookie config from disks.widget.php
Remove deprecated pragma header. Implement #15781
This removes adding pragma header which is now deprecated. Cache control is used instead.
Expose system aliases to the GUI. Implement #1979
Refactor system_alias_info_popup()
It now supports any alias name. Additionally check for html characters.
Refactor get_alias_list()
It now uses CSVs for multiple types instead of an array.
Merge pull request #4695 from Self-Hosting-Group/remove-interface
UPnP IGD & PCP: Improve descriptions
Improve error message for duplicated aliases
Adjust widget refresh intervals
Now that the refresh interval works as expected, decrease the refreshfrequency to more closely match the previous behavior.
Display correct bandwidth usage. Fix #14933
Allow apex records for Azure DDNS. Implement #10000
Allow apex records for name.com DDNS. Implement #14289
Improve code readability for DDNS checks
Sanitize RFC2136 key data in status output. Fixes #15490
Merge pull request #4699 from GChuf/logWidgetFix
Merge pull request #4698 from GChuf/thermalSensorWidgetImprovement
Merge pull request #4697 from GChuf/WidgetRefreshRework
Refresh widgets at specified intervals. Fix #15725
Remove old code references in thermal widget
Originally removed in https://redmine.pfsense.org/issues/5369
Improve thermal widget refresh code. Implement #15728
Only replace values instead of entire DOM elements.
Display seconds in firewall log widget
Respect user-specified interval for log widget. Fix #15373
Clean up diffs
dhcp: ensure $pconfig is never null or not an array
kea: filter self-signed certs from TLS options
Add package hooks plugin_xmlrpc_send plugin_xmlrpc_recv, and plugin_xmlrpc_post_recv
Don't unnecessarily remove the config cache
Removing the cache is no longer necessary; the behavior remains thesame without removing the config cache.
Add safety check for alias ID
Avoid config access with unknown userid
Fix input validation for gateway
Set the working directory before checking unbound config. Fix #15723
Improve localhost DNS checks. Fix #15722
Improve thermal widget readability
Add a margin between progress bars and sort sensors.
Theme the progress-bar color in pfSense-dark
Add config path check when creating a user
Don't do ACB uploads while the system is booting
Fix indentation
Style guide is to indent using tabs.
Fix config paths with leading slash
A single or a leading forwward-slash is not supported.
Add safety checks for calls to convert_real_interface_to_friendly_interface_name()
The function will return null for unassigned interfaces. Add checksfor this where appropriate.
Filter out empty array values for explode()
Calling explode() with an empty string will return a single-elementarray with an empty value. This change filters out empty valueswhere appropriate - i.e. where it's not already a condition check forit and the value should not be empty.
Skip ppp modem interfaces where appropriate
This avoids calling e.g. get_real_interface() for a modem device.
Fix checks for mobile IPsec
When mobile is set, it is an empty string and hence should bechecked with isset(). Also make sure the mobile network typeis properly set, otherwise ipsec_idinfo_to_cidr() will not catch it.
Escape only once when printing form fields
Form titles and values are already escaped when printed.
Remove reference to undefined function
Fix regression when removing interface assignments
Add some config access safety checks
Add safety checks to config index variables
If a config path is called with a null index, the result is undefined due to theconfig functions ignoring consecutive slashes.
Config access regression in general setup
Stop sshguard spam in system logs. Fix #12747
Instead of restarting sshguard with each log rotation, keep it runningseparately while monitoring the auth log file. This allows sshguardstart/stop events to still be included in the system log withoutspamming it. When the log file is rotated by newsyslog, sshguard will...
Move to CURLINFO_RESPONSE_CODE
As of cURL 7.10.8, CURLINFO_HTTP_CODE is a legacy alias ofCURLINFO_RESPONSE_CODE.
Introduce explicit config file read/write functions
Set a default destination type in Port Forward rules. Fix #15671
Check that the destination option exists before switching to it, elseset it to "Address or Alias".
Allow changing system-default SCTP timeouts. Implement #15661
Fix PHP error in DDNS widget.
The widget was generating a PHP error when there were no Dynamic DNSentries (traditional or RFC2136)
More revisions to OpenVPN CSC. Fix #12522
Fix push reset was not appliedFix some flags were improperly set in config
Don't modify widget config button when toggling collapse state. Fix #15439
kea: restore per-interface enablement for DHCP services.
kea: prevent footgun by warning of changes to enabled interfaces
Additional revisions to OpenVPN CSC. Fix #12522
Fix the keep_minimal checkbox being unchecked on page load, andmove it below the remove_options list. Add more remove optionsand clarify remove_route.
Fix missing word
Correct UPnP page metadata
Fixup some privdefs and run privilege script.
Handle large sections when skipping package config. Fix #15624
Using regex to remove the 'installedpackages' config section may faildepending on the size of the string being parsed. Avoid this limit bymodifying a config array instead.
Push correct OpenVPN CSC options. Fix #12522
While there, include override/remove options for inactivity.
Merge pull request #4689 from Self-Hosting-Group/upnp-update-plugin
kea: relocate HA TLS transport settings below advanced options
Config access regression in captive portal allowed MACs
kea: lower max unacked clients default from 10 to 0.
Use full logo URL for captive portal redirects. Fix #15404
Restore protocol selections in Packet Capture GUI. Fix #15609
Support system protocol names for packet captures. Implement #15609
Remove network/broadcast input validation for IPv6 VIPs. Fix #15361
Expose additional OpenVPN CSC options. Implement #12522
Adds the following override options:- Reset individual server options- IPv4 Gateway- IPv6 Gateway- Redirect IPv6 Gateway- Ping Interval- Ping Action- Block Outside DNS- Force DNS cache update
kea: Introduce high availability support for both IPv4 and IPv6
Config access regression when toggling filter rules
static routes: enable autotrim on `destination network`
UPnP IGD & PCP: Simplify service wording
and change menu/title to `UPnP IGD & PCP` as newer PCP is supported
Revert "Update text references to UPnP protocols"
This reverts commit 429312ff683b5762d0cb6eca69c474121a9dfca1.
Fix config access regressions
services_unbound.php: fix typo
Add the missing ','.
Introduce `class` tag to field markup in pkg xml spec.
Fix vertical text alignment on Unbound `Display Custom Options` button
Config access regression in OpenVPN wizard
Query for SMART data only on root disk devices. Fix #15586
Fix vertical text alignment on `Display Advanced` buttons