upstream/opnsense-core
1
0
Fork 0
mirror of https://github.com/opnsense/core.git synced 2026-02-18 18:18:13 -05:00
Code Issues Projects Releases Packages Wiki Activity Actions
19718 commits 44 branches 404 tags 147 MiB
Commit graph

46 commits

Author SHA1 Message Date
Franco Fichtner
ae63623233 system: better wwwonly bootstrap 
This also has an issue with the post-update rc.syshook if
the wwwonly is not found.  But: after a boot it is ensured
and should not be missing thereafter.

The package post-install would ensure it previously, but
we don't want to also chain the php bootstrap through this
just to get the call stack in the right order.

May need further adjusting but also no need to rush this
into a stable release at the moment.
 2025-07-29 13:16:04 +02:00
Franco Fichtner
ba368165cd pkg: replace wwwonly user/group information #8824 
Reduce exposure by injecting the information to package
and recover scripts.
 2025-06-25 13:25:00 +02:00
Franco Fichtner
ad640cbbde pkg: to complicate matters we need to register and restore user/group through package means 2025-06-12 11:01:32 +02:00
Franco Fichtner
6d2df05371 pkg: fix previous 2025-06-10 12:50:23 +02:00
Franco Fichtner
de7097bfa8 pkg: feature wwwonly group again as discussed 2025-06-10 12:47:36 +02:00
Franco Fichtner
7e60d3c19d pkg: fix faulty refactor 2025-05-06 13:42:37 +02:00
Franco Fichtner
f43af78edb pkg: simplify wwwonly user addition, no extra group (reuse www/80) 2025-04-30 07:38:34 +02:00
Franco Fichtner
a4124d7e99 pkg: adjust this a bit making it possible to shift the user UID and GID if needed #8521 2025-04-24 21:10:50 +02:00
Franco Fichtner
08a86fdae9 pkg: add a user for www-only access #8521 
Added a group as well, but we can always drop it if it doesn't
make sense.
 2025-04-23 09:09:35 +02:00
Franco Fichtner
166b199de6 firmware: deal with *.pkgsave, offload post install bits to rc.syshook 
PR: https://github.com/opnsense/core/issues/4574
 2021-01-14 09:20:33 +01:00
Franco Fichtner
73eccc5c42 firmware: add update syshook; closes #3288 2019-07-08 17:31:55 +02:00
Ad Schellevis
8b17ddfe1e typo in previous 2019-07-01 21:29:50 +02:00
Franco Fichtner
13e1906be8 pkg: move timestamp refresh to post-install stage 2019-07-01 07:19:23 +02:00
Franco Fichtner
6c952d0ee7 rc: move rc back to /usr/local 
We use grep and awk for early automation.  Deal with this later.
 2018-10-28 08:10:56 +01:00
Franco Fichtner
6fd1fd0d74 pkg: move rc to /etc/rc.opnsense; closes #2416 
Move /usr/local/etc/rc to /etc/rc.opnsense in order to be able
to boot without /usr mounted.  Move the /boot files along with
it since they require the same type of /usr/local-escapting.

1. This needs further testing.  :)
2. Inspect rc script for commands depend on /usr tools

Our rc.shutdown stays where it is, if we can shutdown we should be
able to access it.  If not, it's not grabbed via /etc/rc.shutdown.
 2018-10-27 22:12:04 +02:00
Franco Fichtner
6ebded2717 firmware: stop providing ABI/name version files manually 
Add them to the plist with proper replacement for now, even though
they are going away eventually.
 2018-09-22 10:38:15 +02:00
Franco Fichtner
6c7699efd0 pkg: proper replacements in pkg scripts for now 2018-09-17 18:58:03 +02:00
Franco Fichtner
ea675a0ce8 pkg: retain compat with release version update tools for now... 
and change an obsolete opnsense-update call to opnsense-version
equivalent.
 2018-09-17 18:14:29 +02:00
Franco Fichtner
8fcda9f8aa firmware: make firmware-upgrade the version file 2018-09-16 23:15:55 +02:00
Franco Fichtner
0cf4fe5e38 rc: hello opnsense-version! 2018-09-16 23:07:21 +02:00
Franco Fichtner
90296833f9 firmware: firmware-product, src/opnsense/version/opnsense, etc. 
Now that we have metadata injection at build time read it instead
of its auxiliary files.  Allow live-mount to snoop the metadata and
afterwards we can start to marry the version and firmware-product
file.

Last puzzle piece will be a tool called "opnsense-version" to read
the JSON metadata and return it in a piecemeal fashion of a part
of the system requires that info, especially from the shell.
 2018-09-16 20:38:15 +02:00
Franco Fichtner
5dd6901b2b rc: sprinkle more exec, better rc.syshook usage in shutdown 2018-06-11 00:03:43 +02:00
Franco Fichtner
272a5b8b41 rc: rc.initital is now opnsense-shell 2018-05-19 15:23:36 +02:00
Franco Fichtner
9df08987b7 rc: merge rc.installer into opnsense-installer 
We have successfully decoupled rc.installer from other components
so now we can merge both utilities.  We use opnsense-installer for
user support, which is easier to invoke and remember.
 2018-05-18 19:42:34 +02:00
Franco Fichtner
060b794685 pkg: if we stop on deinstall, start after install 2017-08-29 10:48:06 +02:00
Franco Fichtner
b54398f0a5 pkg: training wheels come off, build sets configd_enable="NO" now 2017-08-21 09:48:10 +02:00
Franco Fichtner
3386053709 webgui: clean up after rework 2017-05-04 16:59:51 +02:00
Franco Fichtner
80eefebf42 pkg: also rc.shutdown hook, better for ACPI shutdown 2017-01-03 17:54:51 +01:00
Franco Fichtner
61567c81c0 rc: light up configure_firmware output 2016-12-18 22:44:13 +01:00
Franco Fichtner
897b2c96eb rc: add changelog fetch script for #341 2016-11-10 20:27:22 +01:00
Franco Fichtner
c78c9ced21 config: weave new migrations into convert_config(); closes #1156 2016-10-10 08:38:35 +02:00
Franco Fichtner
07278b08ac pkg: firmware reload requires initialised PHP 2016-09-22 17:42:33 +02:00
Franco Fichtner
29dcbf58f6 rc: more loader.conf changes 2016-09-22 19:43:45 +02:00
Franco Fichtner
0cdd609ec6 pkg: omit spurious delete 2016-09-16 09:18:47 +02:00
Franco Fichtner
4425c28ea0 src: extend whitespace sweep to root dir files 2016-08-13 12:50:58 +02:00
Ad Schellevis
f3aed56978 execute run_migrations.php after pkg install 2016-08-12 15:36:24 +02:00
Franco Fichtner
bde361f78a pkg: also register rc.installer as shell on install 2016-08-08 19:08:45 +02:00
Franco Fichtner
1131e741ea pkg: better branding for loader screen 2016-07-21 22:55:49 +02:00
Franco Fichtner
b5c7f232d7 firmware: make ABI a bit more flexible and also register name 2016-07-01 14:33:17 +02:00
Franco Fichtner
aa510985a6 pkg: employ better pluggability for branding 2016-05-26 07:19:17 +02:00
Franco Fichtner
4e2b0079df firmware: narrow window for update-related crash reports 
Sync PHP config and PHP directly after installation of the new package
in order to avoid errors for missing files or modules.
 2016-05-17 12:18:22 +02:00
Franco Fichtner
80a70ffe05 rc/pkg: remove the automount features, they are not needed anymore 
The new package targets have no drawbacks compared to auto live
mount, but the latter has proven difficult and does not match the
normal boot scenario and could potentially panic due to unionfs
being broken beyond repair (kib@'s words in spirit, not mine).

Discussed with: @adschellevis
 2016-03-12 10:09:30 +01:00
Franco Fichtner
fb2ba14187 pkg: typo 2015-07-29 17:22:53 +02:00
Franco Fichtner
6950149bf5 pkg: fold package configuration code into main Makefile 2015-07-29 11:21:28 +02:00
Franco Fichtner
9267664bbf pkg: add more manifest info and keep version history 2015-07-27 11:26:30 +02:00
Franco Fichtner
7f2a872029 pkg: better auto-generation of manifest info 2015-07-17 07:49:27 +02:00
Renamed from pkg/+POST_INSTALL (Browse further)