Remove endianness checking
all pfSense builds are little-endian
Code cleanupAdd a check to Copy DUID button on system_advanced_network.php
Support for configuring additional DUID types
dhcp6c stores the entirety of the OPTION_CLIENTID option in DHCPv6 datagrams inits DUID file (named dhcp6c_duid), except for the option code itself. The firsttwo octets in the DUID file are the option-len field, and are saved according to...
After recent fixes to auth_check.inc, move the IPsec widget back to auth_check.inc since its timeout problems are likely now fixed.
Skip IPsec ping host CARP check when there are no IPSec ping hosts. Also, add a safety belt so cat can't get stuck waiting on input. Fixes #8172
Pretty up the new smtp notification header.
Fix auth_check.inc so it conforms to the rest of the session management code. While here, make sure it performs a commit to avoid PHP session gc from reaping the session. Fixes occasional timeouts when sitting on pages that only fetch AJAX for prolonged periods. Fixes #8116
Remove ix from the ALTQ interface list. See ticket #7378
Merge pull request #6319 from JoeriCapens/master
Fix logging for L2TP and PPPoE server login/logout events. Fixes #8164
See https://redmine.pfsense.org/issues/8164 for the reasoning about why it was done this way.
Fix #6319 by setting ptr-domain and key variables correctly for dhcpdzones()
Merge pull request #3884 from stilez/patch-71
Merge pull request #3882 from PiBa-NL/20171130-remove-console-output
Merge pull request #3883 from stilez/patch-70
Fixed #8159 added a sort by index after a delete call has been made to make sure it lines up correctly.
Fix typo
When retrieving a public key for a certificate, private key, or signing request, write the certificate data out to a temp file instead of echoing it through a pipe. Fixes #8153
Revert "Mitigate possible vuln in cert manager"
This reverts commit 1a68f4badd58de8694ac6a4208e11d7265c97df3.
Mitigate possible vuln in cert manager
Add isset, other vars seem to use it
Doesn't seem to have a point though :)
typo
Unbound: Disable IPv6 outgoing queries if IPv6 blocked in firewall, as they can never go anywhere
If IPv6 is disallowed in system->advanced->network, then any IPv6 lookups by Unbound will always be blocked, so there's no point sending them.
The practical purpose is that they also clog up the log and may fractionally slow down the resolver because the resolver then has to deal with IPv6 not replying, fallback lookups, etc....
correct %d -> %s
As previous code used a string. Probably makes no difference and a number is simpler but doesn't matter
Clarify the unexplained numbers in "log verbosity"
At the moment verbosity is a bare list of digits, 0 to 5. No explanation, nothing else. This PR replaces the visible text by user-friendly info as to what will be logged. Source is https://www.unbound.net/documentation/unbound.conf.html
Merge pull request #3880 from bibz0r/master
Merge pull request #3863 from PiBa-NL/20171103-routes-recursive-alias
Merge pull request #3873 from PiBa-NL/20171121-localauth-translated-problem
routing, support use of recursive network aliases in static routes
Merge pull request #3823 from PiBa-NL/20170919-bootupcomplete
Merge pull request #3810 from svenauhagen/bugfix/mpd
Merge pull request #3801 from cgull/radvd-zero-router-lifetime
notify_monitor, don't write EXITQUEUELOCK debug output to system-console
webgui, option to disable dragging of rules
Merge pull request #3776 from nazar-pc/ram-disk-reboot-fix
Merge pull request #3868 from loonylion/master
interfaces_fast.inc: removed accidental rolling 'r' from comment removed unused parameters from definition of convert_real_interface_to_friendly_interface_name_fast()
interfaces_assign.php: removed profiling code removed unncessary comments...
Merge branch 'master' into master
Merge pull request #3870 from jtl999/v2.4.2rc-dhcp6fix
Merge pull request #3844 from luckman212/ovpn-gw-patch-2
Merge pull request #3769 from PiBa-NL/20170626-phpfpm-status
Merge pull request #3183 from znerol/feature/master/register-openvpn-cn
Changed license as requested and added a missing apostrophe in a comment.
Merge pull request #3875 from LedPighp/dyndns_godaddy
Changed maximum length of usernames from 16 to 32 characters. This seems to be some old FreeBSD requirement which is not needed anymore.
Merge pull request #3872 from jackfagner/patch-1
Merge pull request #3825 from adam820/helptext-cleanup
Merge pull request #3824 from cfazendin/ddns_widget
Merge pull request #3820 from phil-davis/status-if-disabled
Merge pull request #3819 from PiBa-NL/20170910-show-interface-openvpn
Merge pull request #3802 from svenauhagen/bugfix/ppp
Merge pull request #3797 from IknowJoseph/patch-1
Merge pull request #3768 from PiBa-NL/20170625-notices-queue
Merge pull request #3747 from PiBa-NL/20170529-dhcprelay-destination-interface-discovery
Merge pull request #3738 from PiBa-NL/20170521-oneonone-nat-fix-empty-ip
Fixed #8143 Remove any html special characters for request variable
GoDaddy allows a hostname of @
Feature #8123: Add GoDaddy as a Dynamic DNS provider
local authentication option, use key value instead of translated name.
Fixed #8112
Bug in get_interface_ip
Global variable $config was not available, and IP was always fetched using find_interface_ip
Prevent Clickjacking in CSRF error page
fix for leftover dhcp6c lock file(s) after unclean shutdown
Add upgrade notice include file
Add upgrade notice to dashboard
Bump version to 2.4.3-DEVELOPMENT
Revise modal notice header
Provide a simple mechanism for pakage installer to display a notice to the user. (Such as: Firewall must be rebooted before this package becomes available")
Fixed #7896 Made sure only images could be uploaded and validated on the server to make sure it is an image and not something else.
Tweak the formatting of the disk usage section of the system info widget
Fixed #8098 by converting the '.' in interfaces names to '_' when used to compose an HTML element class name
fix for broken preselection of select boxes
Improves bug#6400 further reducing page load time from my previous commit
Moved select box generation code out of interface display loop, meaning it runs once iterating over count(interfaces) rather than running count(interfaces) times iterating over count(interfaces) each time....
Ensure that the value passed to ipfw pipes is always an integer, no matter the source. Fixes #8097
Fixed #8053value vs text on Gateway selector
Update translation files
Regenerate pot
Add a separate checkbox for OpenVPN servers to redirect an IPv6 gateway now that OpenVPN has a native flag for it. Implements #8082
While here, since local network boxes are hidden when redirect gateway is enabled, do not use the values in those boxes when crafting the configuration. That way the GUI configuration is consistent with the backend.
Fix saving the CRL choice for OpenVPN clients. Fixes #8088
refactored interfaces_assign.php to to benefit people with large numbers of VLANs, as requested on the forum at https://forum.pfsense.org/index.php?topic=137391.0. Also contains a minor speedup for interfaces_vlan.php. Modified functions are contained in interfaces_fast.inc. Profiling code is still present but commented out, as is replaced code.
Fixed #8053 Revised page JavaScript to update gateway selector on IP family change
(cherry picked from commit ae381698db23f260027c27c9aa12694a38c2f9ce)
Remove this part, the voucher settings shouldn't be synchronized this way, it's handled via the voucher sync settings on the secondary. Fixes #8079
It was only working before because of this typo, the code shouldn't have been there at all.
When synchronizing vouchers, avoid allowing null values. Also, fix a missing variable global declaration. Part of ticket #8079
Correct voucher config section name. Part of ticket #8079
Use a strict check of array_search() result
Remove empty items from output
Detect when system is running a newer version than the one available on remote repository
Always do rquery when pkg search is not used
Fix #7946: Display installed packages missing on remote repo to let user to delete it
Fixed #8039 Changed to on sanitizing data. This is to help so if the user has previous cookie data it shouldn't try and sanitize it.
Also kill off sshlockout_pf processes when restarting syslogd. Fixes #7984
Fixed #7966 added a moving average smoothing factor to help out with some of the jagged graphs. Since the quickest update will be every other second this will help make it look smoother. Also added this to the widget and added some functionality to the status page so it can display in two different styles. Setting smoothing to 0 will make the graph the same as before this was added. Raising it will allow for a moving average to be taken into account to smooth out the graphs.
Several corrections to service sorting to produce output consistent with user expectations. Fixes #8069
Reorder reading the product name in pfSense-rc so it happens after all filesystems are mounted. Fixes #8065
Provide mechanism to allow for transition to a new package repository server
Check for /bootpool and import the bootpool zfs pool if present. Fixes #8063
Fix a bug in interfaces.php that will cause a failure on first 'Save' of 'OPT1' with some hardware configurations.
Add the XML tags to support the switch entries.
Remove stray white space.
fixed the ipsec widget to show splitconnections for ikev2
Restore some customizations to openssl.cnf, otherwise it cannot generate a certificate. Fixes #8059
We set prompt=no, so most of these values will cause an error when openssl commands are run directly.