summaryrefslogtreecommitdiff
AgeCommit message (Collapse)Author
2023-12-16image: T4516: add clearer error msg on attempt to upgrade to 1.2.xJohn Estabrook
An attempt to upgrade to 1.2.x is caught, but error is of failed checksum verification; add check and message. (cherry picked from commit aae1247da61206d7a1b0b4d6ee20d36d194dbaba)
2023-12-16image: T4516: use copy of pw_reset script for install, link for compatJohn Estabrook
Note that this was updated for the fix in T5739. (cherry picked from commit 424c9b19fd54598081e965c3364b082c5ef984de)
2023-12-16image: T4516: support for interoperability of legacy/new image toolsJohn Estabrook
This commit allows management of system images with either new or legacy tools: 'add/delete/rename system image' and 'set default' are translated appropriately on booting between images with the old and new tools. Consequently, the warning of the initial commit of T4516 is dropped. (cherry picked from commit 96b65e90fbfa1fe63d97929ac86fc910abb0caa9)
2023-12-16image: T4516: improve format of 'show system image details'John Estabrook
(cherry picked from commit 8efab9ee8cdb0e65dddb9d3ba97de8ddcf3666dc)
2023-12-16image: T5195: vyos.util -> vyos.utils package refactoringJohn Estabrook
(cherry picked from commit fcded7930b5426193e8490c6df2a70e300a60e31)
2023-12-16image: T4516: restore reboot reminder messageJohn Estabrook
(cherry picked from commit a604d5d56d93a6958d879b838066bbe2df131bc5)
2023-12-16image: T4516: set op-mode files executableJohn Estabrook
(cherry picked from commit d88168b8e26e46d512e3b175cd2eacecae0e596a)
2023-12-16image: T4516: do not prompt for config copy on live installJohn Estabrook
(cherry picked from commit b31092cc33685628c74845f2aa1e94f0e7879e87)
2023-12-16image: T4516: service vyos-grub-update should exit on live bootJohn Estabrook
(cherry picked from commit 7d6c262976eba624b935c96a7495cc392158b8ff)
2023-12-16image: T4516: remove unused file, replaced by vyos/system/image.pyJohn Estabrook
(cherry picked from commit 9e3b769f8402a816f6c7fa80ff12c9579c3f5243)
2023-12-16image: T4516: correct implementation of configure_authenticationJohn Estabrook
(cherry picked from commit 169c9ff01287cb558850479afb733dd53fb6ae5d)
2023-12-16image: T4516: correct permissions on creation of config directoryJohn Estabrook
(cherry picked from commit 74b00c1f6961d1bd3a59768021f154bdb64c154e)
2023-12-16image: T4516: Added system image toolszsdc
This commit adds the whole set of system image tools written from the scratch in Python that allows performing all the operations on images: * check information * perform installation and deletion * versions management Also, it contains a new service that will update the GRUB menu and keep tracking its version in the future. WARNING: The commit contains non-reversible changes. Because of boot menu changes, it will not be possible to manage images from older VyOS versions after an update. (cherry picked from commit 8f94262e8fa2477700c50303ea6e2c6ddad72adb)
2023-12-16Merge pull request #2645 from vyos/mergify/bp/sagitta/pr-2644Viacheslav Hletenko
ocserv: T5796: add CLI knob "http-security-headers" (backport #2644)
2023-12-16ocserv: T5796: add smoketest for new "http-security-headers" featureChristian Breunig
(cherry picked from commit 1c82e661e04e0979e09e487a58a801ffa9f438e8)
2023-12-16ocserv: T5796: add CLI knob "http-security-headers"fett0
OCserv manual recommended HTTP headers tobe included in the configuration. (cherry picked from commit ad65d37ddf92ec8416c84707d7d41e63346b550c) (cherry picked from commit 24f449cc099703df95646c719e9d3f308ed1a3f0)
2023-12-16Merge pull request #2597 from GurliGebis/T5775-sagitta-backportChristian Breunig
T5775: firewall: re-add state-policy to firewall. (manual backport #2539)
2023-12-15T5775: Fix collisions and adjust for 1.4Bjarke Istrup Pedersen
2023-12-15T5575: Update migration scripts for state policy parsingNicolas Fort
2023-12-15T5775: firewall: re-add state-policy to firewall. These commands are now ↵Nicolas Fort
included in <set firewall global-options state-policy> node.
2023-12-15Merge pull request #2641 from GurliGebis/T4502-sagitta-backportChristian Breunig
firewall: T4502: add offload to firewall table actions (backport #2638)
2023-12-15firewall: T4502: add offload to firewall table actionsBjarke Istrup Pedersen
2023-12-15Merge pull request #2640 from vyos/mergify/bp/sagitta/pr-2639Christian Breunig
frr: T4020: add option to define number of open file descriptors (backport #2639)
2023-12-15frr: T4020: add option to define number of open file descriptorsChristian Breunig
This allows the operator to control the number of open file descriptors each daemon is allowed to start with. The current assumed value on most operating systems is 1024. If the operator plans to run bgp with several thousands of peers then this is where we would modify FRR to allow this to happen. set system frr descriptors <n> (cherry picked from commit 892c28ccf634173d4c4952c248cb03974c560793)
2023-12-14Merge pull request #2636 from vyos/mergify/bp/sagitta/pr-2635Christian Breunig
T5749: Add a more scrict search for get_vrf method (backport #2635)
2023-12-14T5749: Add a more scrict search for get_vrf methodViacheslav Hletenko
The current implementation is wrong as it searches `master` in the iproute2 JSON output. It is a worng as it could include bridges or bonding interfaces Add the more strict search `info_slave_kind == vrf` (cherry picked from commit 2ebac5af10a36668ed3b8cfa6e5a9f61cf5d1068)
2023-12-14Merge pull request #2632 from vyos/mergify/bp/sagitta/pr-2631Daniil Baturin
T5826: ensure dmidecode is installed as a dependency of vyos-1x (backport #2631)
2023-12-14T5826: ensure dmidecode is installed as a dependency of vyos-1xMathew McBride
dmicode is used in the "show hardware dmi" and to derive synthetic MAC addresses (see python/vyos/ifconfig/interface.py). On non-x86 platforms like arm64 it may not be pulled in explictly by other packages (like libparted2) so add it as an explicit dependency. (cherry picked from commit 46c929a99b7d507451d8385b315ae7ef9e7cbed5)
2023-12-13Merge pull request #2629 from vyos/mergify/bp/sagitta/pr-2628Viacheslav Hletenko
T5774: fix regression in remote.upload (backport #2628)
2023-12-13T5774: fix regressions in remote.upload and use in config_mgmtJohn Estabrook
(cherry picked from commit 6b325962a4b8b3e67d7976bf161aed34a9fe6cce)
2023-12-13Merge pull request #2610 from vyos/mergify/bp/sagitta/pr-2609Christian Breunig
T5803: Migrate vscode settings to new value and clean up .gitattributes (backport #2609)
2023-12-13Merge pull request #2626 from vyos/mergify/bp/sagitta/pr-2606Christian Breunig
SRv6: T591: initial implementation to support locator definition (backport #2606)
2023-12-13srv6: T591: initial implementation to support locator definitionChristian Breunig
VyOS CLI set protocols segment-routing srv6 locator bar prefix '2001:b::/64' set protocols segment-routing srv6 locator foo behavior-usid set protocols segment-routing srv6 locator foo prefix '2001:a::/64' Will generate in FRR segment-routing srv6 locators locator bar prefix 2001:b::/64 block-len 40 node-len 24 func-bits 16 exit ! locator foo prefix 2001:a::/64 block-len 40 node-len 24 func-bits 16 behavior usid exit ! exit ! exit ! exit (cherry picked from commit ca301cdd4746187f96ff84e411fda6a84e33f237)
2023-12-13bgp: T591: add SRv6 support from FRRChristian Breunig
set protocols bgp sid vpn per-vrf export '99' set protocols bgp srv6 locator 'foo' set protocols bgp system-as '100' Will generate in FRR config router bgp 100 no bgp ebgp-requires-policy no bgp default ipv4-unicast no bgp network import-check ! segment-routing srv6 locator foo exit sid vpn per-vrf export 99 exit (cherry picked from commit af46fe54e56cf85d13b62ee771bec3d80f225ac5)
2023-12-13Merge pull request #2625 from vyos/mergify/bp/sagitta/pr-2618Viacheslav Hletenko
validator: T5816: large community validator should only allos character set and basic format (backport #2618)
2023-12-13Merge pull request #2620 from vyos/mergify/bp/sagitta/pr-2608Christian Breunig
load-config: T5815: provide a variety of load config methods (backport #2608)
2023-12-13validator: T5816: large community validator should only allos character set ↵Trae Santiago
and basic format (cherry picked from commit 5acc655c316216122ba975f30df7b76f161cbf02)
2023-12-12load-config: T5815: provide a variety of load config methodsJohn Estabrook
Collect in a module several versions of a 'load config' function. They have different use cases according to performance and error reporting, and allow comparison of non-legacy and legacy variants. (cherry picked from commit 7e4caa118692d9b6fd798783596bd018f805e5eb)
2023-12-11Merge pull request #2616 from vyos/mergify/bp/sagitta/pr-2613Viacheslav Hletenko
T5812: report actual number of revisions instead of max (backport #2613)
2023-12-11T5812: report actual number of revisions instead of maxJohn Estabrook
(cherry picked from commit ccbf03f1a87ac37eef78aeb29420ceea9a730a90)
2023-12-11Merge pull request #2615 from vyos/mergify/bp/sagitta/pr-2598John Estabrook
T5812: Fix for rollback check max revision number (backport #2598)
2023-12-11Merge pull request #2614 from vyos/mergify/bp/sagitta/pr-2612Viacheslav Hletenko
T5807: fix op-mode command <show nat66> (backport #2612)
2023-12-11T5812: Fix for rollback check max revision numberViacheslav Hletenko
(cherry picked from commit f019ed91b5444d2f446ca4f7332602c03a074190)
2023-12-11T5807: fix op-mode command <show nat66>, which only display rules if nat was ↵Nicolas Fort
configured. In this commit, check is fixed and rules are printed as expected. (cherry picked from commit 3d3418d1585cbb6d3c2d1d81d310a3107e16c4aa)
2023-12-11T5803: Migrate vscode settings to new value and clean up .gitattributesIndrajit Raychaudhuri
Update VSCode settings for "editor.wordBasedSuggestions". It has changed from boolean to enum. The value "off" is the same as previous value of `false`. Also remove stray duplicate entries in .gitattributes. (cherry picked from commit 75e914c4dff0359988e5f500ae63f882ae6813e7)
2023-12-10Merge pull request #2604 from vyos/mergify/bp/sagitta/pr-2600Christian Breunig
T5773: API add smoketest for load config via HTTP URL (backport #2600)
2023-12-10Merge pull request #2605 from vyos/mergify/bp/sagitta/pr-2601Christian Breunig
migration: T5413: re-sequence interfaces migration scripts (backport #2601)
2023-12-10migration: T5413: re-sequence interfaces migration scriptsChristian Breunig
PR https://github.com/vyos/vyos-1x/pull/2540 backported a migration script from current to the equuleus LTS branch. As migration scripts are executed in order to adjust the CLI for necessary improvements in future LTS releases we need to change the versioning of the migration files to match the new "base" version from the previous LTS release. In theory this could break very ancient 1.4 rolling releases (from the early days of the OSPF refactoring) - but those versions are considered very much unstable. Now this is the last chance to sync up the migration scripts before the 1.4 LTS release. (cherry picked from commit 98ca0984312257a09b57d4aac60ff4abf7f84e66)
2023-12-10T5773: API add smoketest for load config via HTTP URLViacheslav Hletenko
Use a custom NGINX config to load config via URL (cherry picked from commit db0df8e75b85d39ab61bf900f211d589f6cb8506)
2023-12-10Merge pull request #2603 from vyos/mergify/bp/sagitta/pr-2602Christian Breunig
T5791: DNS dynamic exclude check for dynamic interfaces PPPoE (backport #2602)