v6.3.2

What's Changed

• Fix pihole.format_path() memory handling by @DL6ER in #2675

Full Changelog: v6.3.1...v6.3.2

v6.3.1

What's Changed

• Fix pihole.format_path(string) modifying string in-place by @DL6ER in #2661
• Do not try to renew certificate that is not used by @DL6ER in #2666
• Replace dots with underscores when creating env var examples by @rdwebdesign in #2669
• Grammar corrections in documentation by @alexxroche in #2670
• Add new config option for hiding some warnings from diagnosis system by @DL6ER in #2657

New Contributors

• @alexxroche made their first contribution in #2670

Full Changelog: v6.3...v6.3.1

v6.3

What's Changed

• Tests - fix PTR test by @rrobgill in #2516
• Reply to address queries in .localhost domain (RFC6171) by @rrobgill in #2517
• dhcp-discover: Fix string processing by @rrobgill in #2519
• [RFC] Prevent .internal queries from being upstreamed. Draft draft-davies-internal-tld-03 by @Tooa in #2474
• Add dns.localise by @Manakuremati in #2524
• Webserver: Allow webhome to be root by @rrobgill in #2521
• api/network Avoid NULL string comparison logspam by @rrobgill in #2526
• request_info.is_authenticated needs to be initialized explicitly with… by @DL6ER in #2533
• Allow forcing color in CLI output by @DL6ER in #2538
• Simplify CI build by removing the composite action by @yubiuser in #2511
• Rename flushing arp > flushing network by @yubiuser in #2541
• Update embedded SQLite3 engine to 3.50.2 by @DL6ER in #2544
• Add pihole-FTL create-default-config option and use it to upload pihole.toml to ftl.pi-hole.net by @yubiuser in #2540
• Allow low-level header manipulation from Lua pages by @DL6ER in #2535
• Fix foreign fork PRs by @DL6ER in #2543
• Update package-lock.json to fix npm vuln by @XhmikosR in #2555
• Update rapidoc to v9.3.8 by @XhmikosR in #2556
• Add missing 'took' fields to API spec response examples by @tsutsu3 in #2466
• Remove domain type from domainNeeded help text by @yubiuser in #2564
• Update embedded dnsmasq to v2.92test16 by @DL6ER in #2570
• Config typo correction by @rrobgill in #2572
• Support IPv6 in the DHCP API by @DL6ER in #2554
• Add sigrtmin option by @jacklul in #2574
• NTP ipv6 crash fix - ntp reply & logging by @rrobgill in #2569
• Add 'never-stale' to stale issue exempt lable list by @yubiuser in #2578
• Upgrade TOML library to tomlc17 by @DL6ER in #2579
• Add warning to the config markdown by @yubiuser in #2580
• Automatically detect DNS interface when empty in pihole.toml by @DL6ER in #2456
• Make type a required parameter for PUT and DELETE /lists by @DL6ER in #2530
• Update embedded SQLite3 to 3.50.3 by @DL6ER in #2576
• Remove remaining traces of ARP flush by @yubiuser in #2545
• Improve CNAME behavior of pi.hole by @DL6ER in #2585
• Add colors to the --config output by @DL6ER in #2584
• fix: change type of disk parameter for GET /queries by @ninjack-dev in #2589
• Improve default CSP headers by @DL6ER in #2575
• Improve already running detection by @DL6ER in #2591
• Update embedded SQLite3 to 3.50.4 by @DL6ER in #2592
• Fix debug output association by @DL6ER in #2594
• Fix FTL running behing reverse-proxy with prefix by @DL6ER in #2595
• Update embedded dnsmasq by @DL6ER in #2587
• Implement netlink ARP cache handling by @DL6ER in #2600
• Add autocomplete feature by @DL6ER in #2593
• Update embedded dnsmasq to v2.92test19 by @DL6ER in #2603
• Fix dns.interface comment by @rdwebdesign in #2597
• Fix logic in automatic interface determination (when dns.interface = "") by @DL6ER in #2607
• Fix default value autocomplete suggestions by @DL6ER in #2609
• Update dnsmasq to v2.92test21 by @DL6ER in #2614
• Fix cache-optimizer queries in Query Log by @DL6ER in #2619
• Update embedded CivetWeb by @DL6ER in #2621
• Do not set domainname when the kernel replies with "(none)" by @DL6ER in #2620
• Fix dns.hosts help text to show multiple hostnames per IP are allowed by @rdwebdesign in #2623
• Improve memory handling by @DL6ER in #2617
• Pin github actions to SHA by @yubiuser in #2615
• Bump the github_action-dependencies group across 1 directory with 6 updates by @dependabot[bot] in #2628
• Be more gracefully when validating dns_hosts by @yubiuser in #2624
• Implement automatic TLS/SSL certificate renewals by @DL6ER in #2463
• Fix HOSTS file rotation test which was hiding in fast runners by @yubiuser in #2630
• Suggest IP addresses instead of names for upstream by @DL6ER in #2444
• Make restarting optional in API config endpoints by @DL6ER in #2632
• Ensure queries with ID 0 are stored to the long-term queries database by @DL6ER in #2633
• Ensure we can log until the very end by @DL6ER in #2634
• Bump github/codeql-action from 3.30.3 to 3.30.5 in the github_action-dependencies group across 1 directory by @dependabot[bot] in #2636
• Fix long-term database insertion by @DL6ER in #2583
• Add webserver.advancedOpts by @DL6ER in #2635
• Add new dns.domain.local and rename dns.domain -> dns.domain.name by @DL6ER in #2531
• Bump the github_action-dependencies group across 1 directory with 3 updates by @dependabot[bot] in #2641
• Allow escaping special single-character wildcard "_" when doing partial matching by @DL6ER in #2550
• Expose both total and enabled for gravity tables by @DL6ER in #2177
• Improve gravity database resilience by @DL6ER in #2605
• Add custom SQLite busy callback by @DL6ER in #2602
• Add %MEM and %CPU of FTL to GET info/system by @DL6ER in #2645
• Try to load system load averages from /proc/loadavg first by @tpjanssen in #2644
• Fix database busy handler initialization by @DL6ER in #2646
• Fix POST /lists example by @DL6ER in #2649
• Improve CPU utilization reporting by @DL6ER in #2647
• Bump the github_action-dependencies group across 1 directory with 2 updates by @dependabot[bot] in #2651
• Implement selection of TLS ciphers for mbedtls by @DL6ER in #2638
• Bump the github_action-dependencies group across 1 directory with 3 updates by @dependabot[bot] in #2654

New Contributors

• @Tooa made their first contribution in #2474
• @Manakuremati made their first contribution in #2524
• @ninjack-dev made their first contribution in #2589
• @tpjanssen made their first contribution in #2644

Full Changelog: v6.2.3...v6.3

Pi-hole FTL v6.2.3

This patch release contains fixes for almost all reported bugs (most importantly, it fixes a logging regression where types are missing from pihole.log as well as a crash in filter_servers() deep down in dnsmasq code). There is one remaining issue about the behavior of server=/example.com/1.2.3.4 having changed which we are still working on with the maintainers of dnsmasq.

What's Changed

• Relax the session cookie from SameSite=Strict to Lax by @DL6ER in #2471
• Run dependabot also on composite actions by @yubiuser in #2502
• Speedup build and test by running RISCV on ARM64 by @yubiuser in #2501
• Remove pullapprove.yml by @yubiuser in #2499
• ntp : ignore client version, always return a v4 packet by @rrobgill in #2505
• Store intermediate CNAME domain pointers in DNS cache by @DL6ER in #2461
• Allow unauthenticated access to non-admin LUA pages by @DL6ER in #2503
• Simplify CI build process by @DL6ER in #2507
• Get latest dnsmasq updates by @DL6ER in #2509
• Split FTL build and test on GHA by @yubiuser in #2498

v6.2.2

This release addresses crashes reported in #2473 #2475 #2481 and friends.

What's Changed

• Update build containers to Alpine 3.22 by @DL6ER in #2477
• Update dnsmasq to 2.92test11(-1) by @DL6ER in #2486
• Update dnsmasq to 2.92test11 by @DL6ER in #2489
• Revert the SQLite update to 3.50.0 as it is causing crashes for users by @DL6ER in #2488
• Update Lua to 5.4.8 (bugfix) by @DL6ER in #2491
• Fix typos in misc config settings by @rrobgill in #2485
• Display invalid character and offset correctly in hostname diagnosis by @rrobgill in #2484

Full Changelog: v6.2...v6.2.2

v6.2.1

Full Changelog: v6.2...v6.2.1

v6.2

What's Changed

• Fix minor spelling mistake in API docs by @PromoFaux in #2399
• fix: batch request body spec by @tien in #2389
• fix: make getAuth security optional by @tien in #2388
• fix: incorrect session field requirements by @tien in #2387
• Add privacy_level to /padd endpoint by @yubiuser in #2402
• Parameter is called length not n in GET /queries by @DL6ER in #2407
• Fix duplicate web port information output in FTL startup by @PromoFaux in #2410
• Fix logfile warning port length truncation (bug #2408) by @rrobgill in #2409
• Remove dns.watch from upstream DNS server list by @rdwebdesign in #2411
• Prevent home.arpa queries from being upstreamed. RFC 8375 by @rrobgill in #2405
• Fix redirecting when redirecting from /admin/ to /admin/login and back by @DL6ER in #2415
• Move manual filtering to FTLs file parsing by @DL6ER in #2381
• Various small fixes by @DL6ER in #2392
• Update embedded dnsmasq to v2.92test2 by @DL6ER in #2417
• Fix signedness error in the NTP total round-trip delay calculation by @DL6ER in #2420
• Use webhome variable also on the API documentation page by @DL6ER in #2406
• Report RFC6598 shared address space as "Carrier-Grade NAT" by @rrobgill in #2423
• Fix mishanding of CONF_UINT16 config options by @shawnanastasio in #2426
• Feature/fix yocto cross build by @rehsack in #2425
• Update embedded civetweb by @DL6ER in #2428
• Check for existing NTP client when starting FTL by @DL6ER in #2416
• Validate received NTP packets for version and server synchronisation by @rrobgill in #2431
• Use CODEOWNERS instead of deprecated dependbot/reviewers by @yubiuser in #2437
• Modify how we use xxd to compile assets into the FTL binary by @DL6ER in #2446
• Update dnsmasq to v2.91test5 by @DL6ER in #2433
• Update embedded SQLite3 to 3.49.2 by @DL6ER in #2447
• Gravity: support for arbitrary HOSTS-like list formats by @DL6ER in #2439
• Set dns.interface to eth0 by default by @yubiuser in #2448
• Update embedded dnsmasq by @DL6ER in #2457
• Adjust write_to_file function to include the CA certificate by @nathansmeal in #2465
• Update SQLite to 3.50.0 by @DL6ER in #2469

New Contributors

• @tien made their first contribution in #2389
• @shawnanastasio made their first contribution in #2426
• @rehsack made their first contribution in #2425
• @nathansmeal made their first contribution in #2465

Full Changelog: v6.1...v6.2

v6.1

What's Changed

• The domain pi.hole should be fully local by @DL6ER in #2331
• Add total CPU % to /info/system endpoint by @DL6ER in #2297
• Do not read empty values from versions file. Use null instead by @DL6ER in #2335
• Ensure proper shutdown when crashing in a thread by @DL6ER in #2332
• README.md: switch to the SVG logos by @XhmikosR in #2344
• Allow newlines in env vars as separator by @DL6ER in #2346
• Update npm dependencies by @XhmikosR in #2342
• Fix unlocking warning in /api/history/clients by @DL6ER in #2351
• Increase restrictions on POST /api/teleporter by @DL6ER in #2352
• Use keep-alive by @DL6ER in #2357
• Change default file serving behavior possibly breaking by @DL6ER in #2355
• Add new special permitted upstream filter for Query Log by @DL6ER in #2345
• Fix typo in json_macros.h for HTTP Status Code body return check by @Gabriel-H4 in #2338
• API validation: update CI by @XhmikosR in #2341
• Do not overwrite externally given MAKEFLAGS if set by @DL6ER in #2360
• Default-off 0x20 encoding by @DL6ER in #2365
• Simplify overTime processing by @DL6ER in #2353
• Tweak API documentation for /docs by @DL6ER in #2337
• Add Discovery of Designated Resolvers special zone blocking by @DL6ER in #2315
• Still save clients when database.maxDBdays is 0 by @DL6ER in #2367
• Add new Lua function pihole.format_path() by @DL6ER in #2370
• Do not update webserver.threads in-place by @DL6ER in #2368
• Update embedded dnsmasq to v2.91rc6 by @DL6ER in #2374
• Also set Expires= property for deleted cookies by @DL6ER in #2336
• Fix docs for lists batchDelete by @DL6ER in #2379
• Update dnsmasq tag to 2.91 by @DL6ER in #2380
• Allow prefix multiplexing behind reverse proxy by @DL6ER in #2319
• NTP - Provide correct stratum to clients by @rrobgill in #2386
• Set X-DNS-Prefetch-Control header by @yubiuser in #2396

New Contributors

• @XhmikosR made their first contribution in #2344
• @Gabriel-H4 made their first contribution in #2338

Full Changelog: v6.0.4...v6.1

v6.0.4

What's Changed

• Add webhome validator by @DL6ER in #2276
• Also validate env variables by @DL6ER in #2294
• Prevent crash on failure to source secure randomness by @DL6ER in #2300
• Update embedded CivetWeb by @DL6ER in #2312
• Change default value of webserver.threads to 50 by @DL6ER in #2305
• Avoid CivetWeb crash if no optional port could be bound by @DL6ER in #2313
• Empty DHCP range is valid by @DL6ER in #2314
• Undo optimization attempts for sqlite3 by @DL6ER in #2321
• Fix first-time IPv6 client name resolution by @DL6ER in #2310
• Fix API_EXCLUDE_DOMAINS migration by @DL6ER in #2311
• Update embedded dnsmasq by @DL6ER in #2323
• Tweak misc.etc_dnsmasq_d help text and scope - only read *.conf files by @DL6ER in #2309
• Increase niceness of CivetWeb threads by @DL6ER in #2326

Full Changelog: v6.0.3...v6.0.4

Pi-hole FTL v6.0.3

What's Changed

• Do not try to migrate setupVars.conf if it does not exist. by @DL6ER in #2238
• Fix CLI command for non-local API configuration by @DL6ER in #2233
• Clarify the role of dns.domain outside of the DHCP context by @DL6ER in #2239
• Reduce log level for web requests by @bennettmsherman in #2244
• Improve secure randomness generation by @DL6ER in #2240
• Fix typo in dns.showDNSSEC text description by @DL6ER in #2246
• Allow tabs in dns.hosts by @DL6ER in #2247
• Also make optional in the setupVars.conf migration process by @DL6ER in #2248
• Tweak CHAOS TXT local.api.ftl by @DL6ER in #2254
• Make additional_headers configurable by @DL6ER in #2236
• Fix DNS_BOGUS_PRIV and QUERY_LOGGING migration by @MichaIng in #2264
• Rate-limit internal NTP server by @DL6ER in #2258
• Prevent duplicated entries on successive v5 Teleporter importing by @DL6ER in #2265
• Update config/env.c to accept conventional environment variables in a… by @iain-henderson in #2256
• We should not send any content for HTTP codes 1xx, 204 and 304 by @DL6ER in #2272
• Fix DHCP_LEASETIME migration by @DL6ER in #2271
• Print values of env vars if they are invalid by @DL6ER in #2273
• Fix webserver.api.maxHistory usage in API by @DL6ER in #2275
• Fix typo in dns option descriptions by @rrobgill in #2280
• Follow-up on #2275 by @DL6ER in #2285
• Restart FTL on change of webserver.threads by @DL6ER in #2295
• Fix off-by-one in wildcard SAN checking by @DL6ER in #2293
• Fix status codes and response messages for PUT in API docs by @tsutsu3 in #2291
• Pi-hole FTL v6.0.3 by @DL6ER in #2296

New Contributors

• @bennettmsherman made their first contribution in #2244
• @iain-henderson made their first contribution in #2256
• @tsutsu3 made their first contribution in #2291

Full Changelog: v6.0.2...v6.0.3