[Solved (a hard way)] Update to 25.7.6 failed

Started by ednt, October 24, 2025, 08:14:50 AM

Previous topic - Next topic
Print
Go Down Pages 1 2
User actions
October 25, 2025, 05:19:08 AM #15
thank you so much for this thread, ednt.  i had the same issue with a partially updated system.  i followed the steps of faking out the opnsense-auth file, bringing up the network, creating the pkg/.../OPNsense.conf file, and finally "pkg install opnsense".
October 25, 2025, 05:36:40 AM #16
interesting issue.  when i ran "cleanup" from the audit option under firmware, the system ended up "cleaning up" the entire system.  i had to recover again.  it seems as though recovering this way doesn't remember what packages are needed in the base system.  how can i fix this going forward?
October 25, 2025, 05:51:17 AM #17
Quote from: franco on October 24, 2025, 09:01:49 AMThe core package is missing and I suspect this is because the new package manager screws up by removing the core package early and then failing on some dependency before putting the core package back, see https://forum.opnsense.org/index.php?topic=49423.0


Cheers,
Franco

After the oddity I posted in my recent thread, things to me do appear as fully updated without doing anything manually.

# pkg upgrade
Updating OPNsense repository catalogue...
OPNsense repository is up to date.
All repositories are up to date.
Checking for upgrades (101 candidates): 100%
Processing candidates (101 candidates): 100%
Checking integrity... done (0 conflicting)
Your packages are up to date.
Mini-pc N150 i226v x520, FREEDOM
January 31, 2026, 12:47:00 PM #18 Last Edit: January 31, 2026, 01:11:46 PM by jocke
I was upgrading from 25.1 to 25.7 today. Upgrade from 25.1 to 25.7 went without a hithc. The next upgrade was from 25.7. to 25.7.11, which failed hard. There was an error in the GUI: "Danger: Unexpected error, check log for details", and I got the 403 error on GUI upon refresh. It did not recover "after some minutes", and I also got the "sh: /usr/local/libexec/opnsense-auth not found" error upon CLI login.

Found this thread quickly, but I had to do some additional steps (specifically the fingrprints). Listing them here for future reference:

Code Select
### log into single user mode
vi /usr/local/libexec/opnsense-auth

### add the following

#!/bin/sh

exit 0

# make it executable
chmod +x /usr/local/libexec/opnsense-auth

reboot

# set up networking
ifconfig ix0 10.10.10.10 netmask 255.255.255.0
route add default 10.10.10.1

# start ssh, so you can login via ssh (for easier copy-paste etc)
/usr/local/sbin/sshd

# ssh user@10.10.10.1
mkdir -p /usr/local/etc/pkg/repos
vi /usr/local/etc/pkg/repos/OPNsense.conf

# add the following

OPNsense: {
  fingerprints: "/usr/local/etc/pkg/fingerprints/OPNsense",
  url: "https://pkg.opnsense.org/${ABI}/25.7/latest",
  signature_type: "fingerprints",
  priority: 11,
  enabled: yes
}

# i also had to create fingerprints directories
mkdir -p /usr/local/etc/pkg/fingerprints/OPNsense/revoked
mkdir -p /usr/local/etc/pkg/fingerprints/OPNsense/trusted

echo 'function: "sha256"' > /usr/local/etc/pkg/fingerprints/OPNsense/trusted/pkg.opnsense.org.20241217
echo 'fingerprint: "9d104dda4c0ec16316503d47438d7b5dd008871d842c61c259bb89c56af41e88"' >> /usr/local/etc/pkg/fingerprints/OPNsense/trusted/pkg.opnsense.org.20241217

echo 'function: "sha256"' > /usr/local/etc/pkg/fingerprints/OPNsense/trusted/pkg.opnsense.org.20250710
echo 'fingerprint: "ab6411c236dd1d03bf23de635f68e4628753b05ae877bf1486d40e63b778f001"' >> /usr/local/etc/pkg/fingerprints/OPNsense/trusted/pkg.opnsense.org.20250710

# then i could run install + upgrade
pkg install opnsense
pkg upgrade
Print
Go Up Pages 1 2
User actions