summaryrefslogtreecommitdiff
AgeCommit message (Collapse)Author
2021-06-08T3165: prevent override of populated node.def file with empty contentChristian Poessinger
(cherry picked from commit b4fdcebebecd8d8952211b78bce26d53fd29edb3)
2021-06-06Debian: add missing dependency on vyatta-cfgChristian Poessinger
(cherry picked from commit fd9032fb7bfc86d4e8901e348bc0afdc83e07413)
2021-06-04tunnels: T3592: Set default TTL to 64sever-sever
Set default TTL value for tunnels from 0 to 64 There are a lot of situation when default value 0 (inherit) not work properly when you have routing configuration for OSPF or BGP over the tunnels. To fix it you need explicit set TTL value other then 0. Or hardcode another value as default. (cherry picked from commit b4db37507635bf95161bea32b18736fc0732a9e6)
2021-06-04Merge pull request #864 from jpbede/fix-flow-accounting-egressChristian Poessinger
flow-accounting: T3132: fix egress iptables chain
2021-06-03flow-accounting: T3132: fix egress iptables chainJan-Philipp Benecke
2021-05-30op-mode: T3589: add "clear log" command to vacuume journaldChristian Poessinger
(cherry picked from commit 3e6e4a1738dc2bcf173c6e450ad4d43dda54f283)
2021-05-30op-mode: T3589: replace short journalctl options with long namesChristian Poessinger
... this is done for easier readability of the commands (cherry picked from commit f357cf58f7bd1892f85bb26003c62b1d44753e0a)
2021-05-27smoketest: vif: T3570: bugfix for equuleus smoketest APIChristian Poessinger
Added by commit 8ff36fa268f ("smoketest: vif: T3570: fix vlan interface MTU test for pseudo-ethernet interfaces"), but it used the new API available through VyOSUnitTestSHIM. This has ben fixed to use the old API.
2021-05-27dhcp-server: T2669: do not allow overlapping ranges to be createdChristian Poessinger
set service dhcp-server shared-network-name NET01 authoritative set service dhcp-server shared-network-name NET01 subnet 10.0.0.0/24 default-router '10.0.0.1' set service dhcp-server shared-network-name NET01 subnet 10.0.0.0/24 lease '86400' set service dhcp-server shared-network-name NET01 subnet 10.0.0.0/24 range RNG01 start '10.0.0.60' set service dhcp-server shared-network-name NET01 subnet 10.0.0.0/24 range RNG01 stop '10.0.0.70' set service dhcp-server shared-network-name NET01 subnet 10.0.0.0/24 range RNG02 start '10.0.0.55' set service dhcp-server shared-network-name NET01 subnet 10.0.0.0/24 range RNG02 stop '10.0.0.65' Will result in a dhcpd.conf: shared-network NET01 { authoritative; subnet 10.0.0.0 netmask 255.255.255.0 { option routers 10.0.0.1; default-lease-time 86400; max-lease-time 86400; range 10.0.0.60 10.0.0.70; range 10.0.0.55 10.0.0.65; } on commit { set shared-networkname = "NET01"; } } This is not allowed by ISC DHCPd: dhcpd[3307]: /run/dhcp-server/dhcpd.conf line 25: lease 10.0.0.63 is declared twice! dhcpd[3307]: range 10.0.0.55 10.0.0.65; (cherry picked from commit b0e1c8a9c9ef470297bf3c9f5059ad7c720c46ff)
2021-05-27login: T3455: Fix edit level configuration for usersever-sever
2021-05-27openconnect: T3461: Delete CA crt file checkssever-sever
2021-05-27op-mode: T3431: Fix show version allsever-sever
2021-05-26ospfv3: T3581: Fix op-mode for linkstateViacheslav Hletenko
2021-05-24smoketest: pseudo-ethernet: add missing "Section" importChristian Poessinger
(cherry picked from commit bee080daffad41468eee6084f54bc67b1470f914)
2021-05-24op-mode: T3571: add missing "show protocol" help stringsChristian Poessinger
(cherry picked from commit 397b04115ff522f2240059cdb08bdf1561ea8bde)
2021-05-24pseudo-ethernet: T3575: verify parent interface MTUChristian Poessinger
(cherry picked from commit 38b3dff1ebdf8c26a28d0befa6dcf0b4f51f21be)
2021-05-24router-advert: T3561: fix inconsistent use of tabs and spaces in indentationChristian Poessinger
Commit c17f259d ("router-advert: T3561: add support for specific routes") used tabs over spaces in the Migration script which triggered a TabError (inconsistent use of tabs and spaces in indentation"). (cherry picked from commit acc701bac3483a3242c77a2e00c076890e27eea9)
2021-05-24router-advert: T3561: add support for specific routesMark Royds
Co-authored-by: Mark Royds <mark.royds@vitaminit.co.uk> (cherry picked from commit c17f259d09abd2bf632d09400fe8deb4c2781d32)
2021-05-24smoketest: vif: T3570: fix vlan interface MTU test for pseudo-ethernet ↵Christian Poessinger
interfaces The MTU size of the source-interface must be greater or equal to the MTU of the pseudo ethernet interface. (cherry picked from commit 06dae2734aee09885e34aec0df397985c2a36961)
2021-05-23smoketest: vif: T3570: vlan interface MTU must be less or equal to parentChristian Poessinger
(cherry picked from commit ed817477dd418f4b448910e990f38a9a3de5ee73)
2021-05-23smoketest: ethernet: bugfix RPS CPU validationChristian Poessinger
We always read back the RPS value from eth1 which worked on the CI smoketests, but not when running a smoketest with only one interface e.g. by: $ TEST_ETH="eth2" /usr/libexec/vyos/tests/smoke/cli/test_interfaces_ethernet.py (cherry picked from commit a431adf8676ea377175b91776082eb37d4773e80)
2021-05-23vyos.configverify: T3570: sub interface MTU must be less or equal to parent MTUSimon
(cherry picked from commit 5e1ed4086f96141611680892911dad82c28795ee)
2021-05-23op-mode: storage: T3572: add S.M.A.R.T. status supportChristian Poessinger
vyos@vyos:~$ show hardware storage nvme Node SN Model Namespace Usage Format FW Rev ---------------- -------------------- ---------------------------------------- --------- -------------------------- ---------------- -------- /dev/nvme0n1 S437Nxxxxxxxxx SAMSUNG MZQLB960HAJR-00007 1 25.17 GB / 960.20 GB 512 B + 0 B EDA5202Q /dev/nvme1n1 S437Nxxxxxxxxx SAMSUNG MZQLB960HAJR-00007 1 38.36 GB / 960.20 GB 512 B + 0 B EDA5202Q vyos@vyos:~$ show hardware storage smart nvme0n1 === START OF INFORMATION SECTION === Model Number: SAMSUNG MZQLB960HAJR-00007 Serial Number: S437Nxxxxxxxxx ...
2021-05-23op-mode: disks: T1621: bugfix no disk outputChristian Poessinger
2021-05-20vyos.util: T3532: Replace func get_interface_configViacheslav Hletenko
Replace function get_interface_config to function get_interface_config, as we have in 1.4 branch. It need after this cherry-picked commit edcdea8
2021-05-19openconnect-server: T3559: Add restart op-commandDmitriyEshenko
(cherry picked from commit 5b5e74fb667fa5a5abec779b6c411b3864f3b5fb)
2021-05-18op-mode: drop full path to iproute2 binaryChristian Poessinger
(cherry picked from commit 21d97ba0651fc20bded91e22e00a402d0044da3c)
2021-05-18revert: "util: T2467: add autosudo as an option to command"Christian Poessinger
Implementing a wrapper which will - based on the command - add a sudo prefix to the execution string seemed to be a nice idea but unfortunately it did not only not get momentum but also the codebase somethis added an implicit "sudo" call a second time. This resulted in a call: "sudo sudo systemctl" The entire functionality was removed again and if an op-mode script requires root priviledges it must be explicitly called with them - no black magic. (cherry picked from commit b76931e6d3a4bd0cdb74ca447a746ab6855fcf55)
2021-05-18ddns: T3254: fix incorrect update timeFileGo
This fixes a bug when show dynamic dns status returned (formatted) UNIX time 0. I have changed the code to use ddclient's mtime value in the cache file, which is updated on every successful sync with DDNS service as opposed to atime, which was previously used. (cherry picked from commit 89b127647cbf3fea3a439f43efa32a31aa03524e)
2021-05-18vmware: T3525: fix invocation of resume scriptChristian Poessinger
Commit dce67433 ("util: T2226: rewrite resume-vm to use run") changed the way in which the script executed system binaries in a way which could not be processes by the underlayin infrastructure (lists are not supported, only strings). (cherry picked from commit fa05e4267c17d93c4e9594a0ba32e66c7b2a1d61)
2021-05-18vmware: T1028: properly expose syslog identityChristian Poessinger
(cherry picked from commit 7de7a1b2d127df85d4224162116c1d4c984b022b)
2021-05-17ddclient: T3557: fix FileNotFoundError when querying status informationChristian Poessinger
If ddclient is not problery configured it will start up but no status file is generated. This commit checks if the status file exists before reading it. (cherry picked from commit 041cea6d7a13a804b4e656778048bcefd0a46cb8)
2021-05-15router-advert: T3550: fixed completion typoFileGo
(cherry picked from commit e36120d93ee1c8077b713c4bb9c10035f0a9957a)
2021-05-15smoketest: T3549: dhcpv6-server: adjust to new config syntaxChristian Poessinger
Commit b0520172 ("dhcpv6-server: T3549: fix incorrect syntax for global name-server definition") changed how the daemon configuration represents global DNS nameservers. Test updated. (cherry-picked from commit ae57c5dc783d8c87382e25e031e21d8c2be59d03)
2021-05-15dhcpv6-server: T3549: fix incorrect syntax for global name-server definitionChristian Poessinger
dhcp6.name-servers is a comma-delimited, multi-value list of name-servers that should only appear once in the dhcpdv6.conf file.
2021-05-15vyos.ifconfig: T3532: re-create Q-in-Q interface on protocol changeChristian Poessinger
It is not possible to change the VLAN encapsulation protocol "on-the-fly". For this "quirk" we need to actively delete and re-create the VIF-S interface. (cherry picked from commit cd504035015dca62149b57bc07d8e002bd8723b1)
2021-05-15smoketest: dhcp: T3544: verify locig preventing invalid daemon optionsChristian Poessinger
As we do not allow any invalid raw options passed into ISC dhcpd we should also verify this behavior with a smoketest. (cherry picked from commit 8ab55eb237370b2152b2c0027af5cf16a69675af)
2021-05-15dhcp-server: T3544: fix FileNotFoundError on first invokationChristian Poessinger
The problem of using the move() operation over render() is that render will silently create the directory tree in the background and move() does not. This means that on first boot when /run/dhcp-server does not exist, move will fail with a FileNotFoundError. Instead of using move() we render() the configuration two times, one for validating it via dhcpd -t and the other time to really apply it to the service. The performance impact should be little as the config should still be cached in the system RAM. (cherry picked from commit 1f68b69328c961e450ac70b12f7bf073d70355d7)
2021-05-15dhcp-server: T3544: test config in IPv4 mode onlyChristian Poessinger
(cherry picked from commit 37f3ead353625b53cfa8953196a9c32b42a10e7f)
2021-05-14ntp: T2809: Fix migration script if server not existsever-sever
(cherry picked from commit d96336a808e500934fc4fd9423345d0b965d35ac)
2021-05-14configd: T3426: add support for script arguments to vyos-configdJohn Estabrook
(cherry picked from commit b3d914edcb506bb25c3798683cda341b8acbb0ad)
2021-05-14configd: T3426: correct pass_through function for scripts with argsJohn Estabrook
(cherry picked from commit 5501e5f1de0201f4c977a8027b6e97caf1affa1b)
2021-05-14configd: T3426: check script name against include_set, not exclude_setJohn Estabrook
If the script name is mangled, for any reason (e.g. missing support for script arguments) checking against the exclude_set will yield a false positive; check against the include_set, even if this is a longer search. (cherry picked from commit 93c07ea1edff3f6f84285322b494a24b807ccc25)
2021-05-13dhcp-server: T3544: test newly rendered configuration before restarting daemonChristian Poessinger
The current DHCP server implementation comes with options (see below) which allow the user to pass in any arbitrary option(s) in a verbatim way which will manifest in dhcpd.conf. The options are: * set service dhcp-server global-parameters * set service dhcp-server shared-network-name foo shared-network-parameters * set service dhcp-server shared-network-name foo subnet 192.0.2.0/25 subnet-parameters * set service dhcp-server shared-network-name foo subnet 192.0.2.0/25 static-mapping ff static-mapping-parameters Having an invalid configuration will yield: vyos@vyos# commit [ service dhcp-server ] Configuration file errors encountered - check your options! [[service dhcp-server]] failed (cherry picked from commit 3c754695590b9d9e582c10e6d05c2b628e79262c)
2021-05-13bonding: T3543: add support to configure lacp-rate (slow or fast)Christian Poessinger
Option specifying the rate in which we'll ask our link partner to transmit LACPDU packets in 802.3ad mode. set interfaces bonding bond0 lacp-rate <slow|fast> slow: Request partner to transmit LACPDUs every 30 seconds (default) fast: Request partner to transmit LACPDUs every 1 second (cherry picked from commit 8e392a3dbc16f7b80a979f7b4e9c11408d700e6f)
2021-05-13smoketest: bonding: test minimum link assignmentChristian Poessinger
(cherry picked from commit ca75162b3bbace38fcad5c91ad07c4fedac8444c)
2021-05-12configd: T3302: check vyos-config-status to determine if in boot sessionJohn Estabrook
(cherry picked from commit eeb9687bb9aaf6050b0a8759767f08ab8faac442)
2021-05-10smoketest: policy: T3526: replace seq x for policy testsViacheslav Hletenko
2021-05-06l2tpv3: T3519: add vrf supportChristian Poessinger
(cherry picked from commit 59a82d4ba9790a61b5dc321544a7aa2a10e18322)
2021-05-06smoketest: T3517: Fix bfd test for equuleus FRR 7.5.1Viacheslav Hletenko