Howdy partners,

So here are OpenSSL 1.0.2e and LibreSSL 2.2.5, finally! 15.7.22 itself is only tweaks and minor fixes. We take it as a good sign that there were no "oh no what did you do to the menu" complaints in the past week. Nobody missed the RRD graphs either. You guys are really cool.

The root cause for the filter reload timeout reports that some of you encountered in 15.7.19 has finally been found. The function filter_generate_optcfg_array() could be called hundreds of times in a single filter reload while only providing static interface data to the callers that did not change over the runtime of the reload. At some point it must have gotten so slow that a caching mechanism was added around the function, which caused the function's output to get stuck, causing the initial bug report. Now it's as fast as ever and glitch-free.

Here are the full patch notes:


Stay safe,
Your OPNsense team