Hi there,
Quick update on the 22.1 front includes feedback from the RC1 release, a FreeBSD package tool fix for its static binary failing to validate certain TLS certificates and a number of small improvements that do not fit into the former categories.
The 22.1 release is scheduled for January 27 which is next week already. ;)
Here are the full patch notes:
- system: use correct IPv6 interface for dpinger gateway monitoring when using 6RD
- system: remove spurious XML validation that cannot cope with attributes from backup restore
- system: sync recovery utility contents with FreeBSD 13
- system: fix new PPP CARP hook function call (contributed by Markus Reiter)
- system: allow additional search domain (Pierre Fevre)
- system: fix general settings PHP warnings that only appear when validation fails
- system: move multiple sysctl manipulations to tunables framework to allow overriding them
- system: prevent more than one default route by default
- system: prevent syslog-ng from crashing after update due to "syslog-ng-ctl reload" use
- system: MSDOS file system awareness in information widget for new /boot/efi partition
- system: separate core and thread count in information widget
- system: refactor GUI rebind protection and remove its os-dyndns/os-rfc2136 references
- reporting: fix display of total in/out traffic values
- interfaces: improve validations and fix defaults for bridges
- interfaces: remove defunct link support for GRE
- interfaces: align GIF configuration with base system options
- interfaces: allow bridges to attach to VXLAN on boot
- interfaces: repair get_interface_list() for console use
- interfaces: improve LAGG/VLAN assignments via console option
- firewall: plain log default logging severity selection is now "informational"
- firewall: improve maximum shaper value validation and add Gbit/s support
- dhcp: rework router advertisement "static" mode flags to separate advanced options
- dnsmasq: no-hosts option (contributed by agh1467)
- firmware: opnsense-update: exclude /boot/efi permission reset from base set extract
- intrusion detection: prevent config migration from crashing
- intrusion detection: update to ET-Open to version 6
- network time: detach "limited" from "kod" option (contributed by Zsolt Zsiros)
- network time: remove PID file use as it can be unreliable
- mvc: fix logging of configd errors
- mvc: add BlankDesc to ModelRelationField (contributed by agh1467)
- ui: move storing jQuery Bootgrid settings in browser from core to bootgrid (contributed by Manuel Faux)
- plugins: os-ddclient 1.0 as an eventual replacement for os-dyndns
- plugins: os-dyndns adds local copy of get_dyndns_ip()
- plugins: os-freeradius 1.9.18[1]
- plugins: os-nginx 1.26[2]
- plugins: os-rfc2136 adds local copy of get_dyndns_ip()
- plugins: os-wol adds cron support for wake action (contributed by digitalshow)
- src: revert upstream permission change for /root directory
- src: fix kernel build creating wrong linkers.hint file
- ports: hostapd 2.10[3]
- ports: nss 3.74[4]
- ports: pecl-psr 1.2.0[5]
- ports: pkg fixes validation failures on HTTPS fetch in static binary[6]
- ports: sqlite 3.37.2[7]
- ports: syslog-ng 3.35.1[8]
- ports: wpa_supplicant 2.10[9]
Stay safe,
Your OPNsense team