kea: enable static arp support, Feature #15654
Set picture widget download file ext. Fixes #15767
Refine widget validation checks. Fixes #15844
Config access regression when saving dnsmasq overrides. Fix #15890
Dashboard widget settings and widgetkey validation. Issue #15844
Validate inputs when killing OpenVPN clients. Fixes #15856
While here, fix the JS 'busy' icon switching for both the widget and status page.
Ignore queue status interface. Fix #15885
Return the previous condition; $altqstats['interface'] is not required.
Don't separate the last array key in config access paths
Config access regression in L2TP. Fix #15882
Limit RDNSS addresses to 3. Fix #15876
Merge pull request #4717 from Self-Hosting-Group/igd-pcp-finalisation
https://redmine.pfsense.org/issues/15864
Followup to:7961830d30b89605b26732350335f5a9498ff5ba9bc580f00f691b2c3de5f029c8f381205eb99e07
Avoid potential name collision in CSRF
UPnP IGD & PCP: No need to enter STUN port and update example servers
(#4717)
UPnP IGD & PCP: Simplify UI and finalise wording and descriptions update
Merge pull request #4645 from pypckompsite/master
Support IPv6 requests for any DDNS service. Implement #11177
Introduce get_dyndns_source_address() to find the source address to beused when sending a DDNS request. It supports both IPv4 and IPv6 -determined by the configured gateway and addresses on the interface....
Config access regression when editing system tunables. Fix NG#18003
List Kea HA TLS certificates without a type. Fix #15842
Regression in setup wizard when setting checkbox values. Fix NG#17960
Followup to 5731f17e082d5c0924771a8689303fcfdbd3880f
Config access regression with default check IP service. Fix #15833
Fetch the latest config before processing the user config.
Followup to 211adbf491c0c5083159a48e515a9f608b37f435.
Fix the unexpected config reset when the password is changed in the CLI.
Update the config cache before rewrite it to catch up with any changes madein the GUI.
Ticket: #17926
Fix short open tag
Fix config warning when saving a new outbound NAT rule
interface widget: Prevent name and icon from wrapping
Config access regression. Fix #15815
Apply removed route changes with all routes removed.
Followup to e2eb3e16e9ef63a375718dcc06b54a9765266244
Fix parsing for ACB change reason. Fix #15711
Fix it by delimiting on the last occurrence of the delimiter.
Always use the highest existing zone ID when creating a new one. Fix #15772
Apply removed route changes to secondary HA node. Fix #15795
Fix NTP pool DNS note. Fixes 15552
Fix some config path warnings
Decrease the number of config requests when deleting filter rules
Merge pull request #4704 from GChuf/removePragmaHeader
Merge pull request #4705 from GChuf/disksCookies
Fix PHP error when saving PPP settings without an interfaces selected
Use minified nvd3 vendor files. Implement #15782
Add minified nvd3 vendor files
Remove unnecessary config_init_path() calls
Reduce config fetches when displaying filter logs
Also show system aliases when listing all aliases
Interface group member validation/encoding. Fixes #15778
Fix rule generation and display for system aliases
This is a followup to 52e512c0555d9f5a91732907e524364358d3f70c- Update system alias comments and descriptions.- Improve reserved aliases processing.- Use alias_info_popup() code when possible for system aliases....
Remove additional cookie config from disks.widget.php
Remove deprecated pragma header. Implement #15781
This removes adding pragma header which is now deprecated. Cache control is used instead.
Expose system aliases to the GUI. Implement #1979
Refactor system_alias_info_popup()
It now supports any alias name. Additionally check for html characters.
Refactor get_alias_list()
It now uses CSVs for multiple types instead of an array.
Merge pull request #4695 from Self-Hosting-Group/remove-interface
UPnP IGD & PCP: Improve descriptions
Improve error message for duplicated aliases
Adjust widget refresh intervals
Now that the refresh interval works as expected, decrease the refreshfrequency to more closely match the previous behavior.
Display correct bandwidth usage. Fix #14933
Allow apex records for Azure DDNS. Implement #10000
Allow apex records for name.com DDNS. Implement #14289
Improve code readability for DDNS checks
Sanitize RFC2136 key data in status output. Fixes #15490
Merge pull request #4699 from GChuf/logWidgetFix
Merge pull request #4698 from GChuf/thermalSensorWidgetImprovement
Merge pull request #4697 from GChuf/WidgetRefreshRework
Refresh widgets at specified intervals. Fix #15725
Remove old code references in thermal widget
Originally removed in https://redmine.pfsense.org/issues/5369
Improve thermal widget refresh code. Implement #15728
Only replace values instead of entire DOM elements.
Display seconds in firewall log widget
Respect user-specified interval for log widget. Fix #15373
Clean up diffs
dhcp: ensure $pconfig is never null or not an array
kea: filter self-signed certs from TLS options
Add package hooks plugin_xmlrpc_send plugin_xmlrpc_recv, and plugin_xmlrpc_post_recv
Don't unnecessarily remove the config cache
Removing the cache is no longer necessary; the behavior remains thesame without removing the config cache.
Add safety check for alias ID
Avoid config access with unknown userid
Fix input validation for gateway
Set the working directory before checking unbound config. Fix #15723
Improve localhost DNS checks. Fix #15722
Improve thermal widget readability
Add a margin between progress bars and sort sensors.
Theme the progress-bar color in pfSense-dark
Add config path check when creating a user
Don't do ACB uploads while the system is booting
Fix indentation
Style guide is to indent using tabs.
Fix config paths with leading slash
A single or a leading forwward-slash is not supported.
Add safety checks for calls to convert_real_interface_to_friendly_interface_name()
The function will return null for unassigned interfaces. Add checksfor this where appropriate.
Filter out empty array values for explode()
Calling explode() with an empty string will return a single-elementarray with an empty value. This change filters out empty valueswhere appropriate - i.e. where it's not already a condition check forit and the value should not be empty.
Skip ppp modem interfaces where appropriate
This avoids calling e.g. get_real_interface() for a modem device.
Fix checks for mobile IPsec
When mobile is set, it is an empty string and hence should bechecked with isset(). Also make sure the mobile network typeis properly set, otherwise ipsec_idinfo_to_cidr() will not catch it.
Escape only once when printing form fields
Form titles and values are already escaped when printed.
Remove reference to undefined function
Fix regression when removing interface assignments
Add some config access safety checks
Add safety checks to config index variables
If a config path is called with a null index, the result is undefined due to theconfig functions ignoring consecutive slashes.
Config access regression in general setup
Stop sshguard spam in system logs. Fix #12747
Instead of restarting sshguard with each log rotation, keep it runningseparately while monitoring the auth log file. This allows sshguardstart/stop events to still be included in the system log withoutspamming it. When the log file is rotated by newsyslog, sshguard will...
Move to CURLINFO_RESPONSE_CODE
As of cURL 7.10.8, CURLINFO_HTTP_CODE is a legacy alias ofCURLINFO_RESPONSE_CODE.
Introduce explicit config file read/write functions
Set a default destination type in Port Forward rules. Fix #15671
Check that the destination option exists before switching to it, elseset it to "Address or Alias".
Allow changing system-default SCTP timeouts. Implement #15661
Fix PHP error in DDNS widget.
The widget was generating a PHP error when there were no Dynamic DNSentries (traditional or RFC2136)
More revisions to OpenVPN CSC. Fix #12522
Fix push reset was not appliedFix some flags were improperly set in config
Don't modify widget config button when toggling collapse state. Fix #15439