summaryrefslogtreecommitdiff
AgeCommit message (Collapse)Author
2019-06-20firewall: T1461: deleting 'firewall options' causes Python TypeErrorChristian Poessinger
[ firewall options interface wg01 ] Traceback (most recent call last): File "/usr/libexec/vyos/conf_mode/firewall_options.py", line 139, in <module> apply(c) File "/usr/libexec/vyos/conf_mode/firewall_options.py", line 97, in apply if tcp['new_chain4']: TypeError: 'NoneType' object is not subscriptable delete [ firewall options ] failed delete [ firewall ] failed Commit failed (cherry picked from commit efb1a1c88f436a3704c4ca6e15b65aeded4b9654)
2019-06-20T1458: Regression in 1.2.1-S2 hostname & loggingKim Hagen
2019-06-16T1438: fix permissions when invoking 'show version'Christian Poessinger
Accessing Kernel DMI data (under /sys/class/dmi) requires elevated permission and thus retrieving a Board Serial/UUID was not possible. version.py is now called via sudo to gether all facts. (cherry picked from commit efb598caafc20db278938ff3787e3674467e0663)
2019-06-04T1379: Deprecated functions in /sbin/dhclient-scriptKim Hagen
Conflicts: src/conf_mode/host_name.py
2019-06-01T1422: fix wrong file mode.Daniil Baturin
2019-06-01T1422: add a script for querying values in config files.Daniil Baturin
2019-05-26Merge branch 'crux' of https://github.com/vyos/vyos-1x into cruxDaniil Baturin
2019-05-26[rsyslog] T1358 - typo fixed os.path.existshagbard
2019-05-26[rsyslogd] T1355 - rsyslog stopped after reboot or clean starthagbard
- rsyslog appears now to be started via systemd automatically, checking for the pid to avoid restart race condition between systemd vyos conf script
2019-05-26[rsyslog] Fixes: T1294 - Trying to delete 'system syslog' throws an exceptionhagbard
2019-05-22add tests to JenkinsfileKim Hagen
2019-05-22Create Jenkinsfile cruxKim Hagen
2019-05-21Restore the "make test" target.Daniil Baturin
2019-05-21T1255: add newlines for 3rd party script amendmentsChristian Poessinger
2019-05-20T1255: add newlines for 3rd party script amendmentsChristian Poessinger
2019-05-20hostname: bugfix for overwriting search domainsChristian Poessinger
2019-05-20Add header to resolver configuration fileChristian Poessinger
2019-05-20hostname: additional test case fixesChristian Poessinger
Conflicts: src/tests/test_host_name.py
2019-05-20T1174: migrate local hostname/DNS handling to vyos-1xChristian Poessinger
Conflicts: src/conf_mode/host_name.py
2019-05-13T1378: extend version file with Git commit IDChristian Poessinger
The Git commit ID will be crucial for the future when the full VyOS build can be reproduced by the one Git commit ID, thus start recording it in the version file. (cherry picked from commit a8b5fae5581c03c5037c5fdc840be3e5bf984484)
2019-05-08[VRRP] T1371: add quotes around the health check script string.Daniil Baturin
2019-04-26[dhcp-server]: bugfix on wrong exit code caused due to wrong indentionChristian Poessinger
(cherry picked from commit d46523b92a2e5959da66973343092c819fea6285)
2019-04-21T1343: do not remove zeros DHCP static routetmarlok88
(cherry picked from commit 31ad6b67e3bc22bc340ba5b4f95cf3dd548e31b9)
2019-04-21[firewall] T314: add firewall options for MSS clampingChristian Poessinger
* clamp MSS IPv4 set firewall options interface pppoe0 adjust-mss '1452' * clamp MSS IPv6 set firewall options interface pppoe0 adjust-mss6 '1452' * disable entire rule set firewall options interface pppoe0 disable Output ------ $ sudo iptables-save -t mangle # Generated by iptables-save v1.4.21 on Sun Apr 21 12:56:25 2019 *mangle :PREROUTING ACCEPT [1217:439885] :INPUT ACCEPT [290:52459] :FORWARD ACCEPT [920:375774] :OUTPUT ACCEPT [301:100053] :POSTROUTING ACCEPT [1221:475827] :VYOS_FW_OPTIONS - [0:0] -A FORWARD -j VYOS_FW_OPTIONS -A VYOS_FW_OPTIONS -o pppoe0 -p tcp -m tcp --tcp-flags SYN,RST SYN -j TCPMSS --set-mss 1452 COMMIT Completed on Sun Apr 21 12:56:25 2019
2019-04-20[dhcp-server] T1335: bugfix when migrating authoritative sectionChristian Poessinger
(cherry picked from commit f8b7e3b2b20d143643bfac72db68943dfc9046f1)
2019-04-20[hostname] T1336: sanitize FQDN before passing to hostnamectlChristian Poessinger
2019-04-12Add dependency on python3-viciDaniil Baturin
Required for the "run show vpn ipsec sa" script.
2019-04-10[dhcp] T1330: bugfix for non working wpad urlChristian Poessinger
WPAD url could be configured by CLI but the generated config was not understood by ISC dhcp - caused by infalid if {} statement resulting in a missing option wpad-url block. (cherry picked from commit bfa9d55e9f1c3a091cff2fc214f2587d9b049cdb)
2019-04-06[dhcpv6-relay] T1322: bugfix on multiple listen interfacesChristian Poessinger
Same cause as with commit c6988bb4110541478dad74d0b892fd4643ed530a (cherry picked from commit 40c342f3a84a75acc9f41c83cb735e966da7c47e)
2019-04-03[dhcpv6-relay] T1322: support multiple upstream serversChristian Poessinger
Add support for relaying a DHCPv6 packet to multiple servers on one upstream interface. (cherry picked from commit d5b113923aaa776f89749c820d6283b593e80c3a)
2019-04-03[dhcpv6-relay] T1322: bugfix on multiple upstream interfacesChristian Poessinger
When generation the configuration for multiple upstream interfaces a whitespace was missing in the generated configuration: OPTIONS="-6 -l 2001:db8::ffff%eth1 -u 2001:db8:1:ffff%eth2-u 2001:db8:2:ffff%eth3" ^--- This caused an error when starting up the DHCPv6 relay service (cherry picked from commit c6988bb4110541478dad74d0b892fd4643ed530a)
2019-03-31Revert "Fixes: T1262 - dhcp requested WAN ip address doesn't get search ↵Daniil Baturin
parameter in /etc/resolv.conf" This reverts commit 1a384ed21f1777faaef653f9d1e3d9c05542fdc8.
2019-03-31Revert "Feature: T405 - Add binaries for lcdproc, lcdproc-extra-drivers"Daniil Baturin
This reverts commit 361a4419e0042369fae7eddf67f06a658372db93.
2019-03-22Fixes: T1262 - dhcp requested WAN ip address doesn't get search parameter in ↵hagbard
/etc/resolv.conf
2019-03-20Feature: T405 - Add binaries for lcdproc, lcdproc-extra-drivershagbard
- native debian packages
2019-03-20[rsyslog] T1282 - Configure VyOS to send syslog messages to remote syslog ↵hagbard
using fully-qualified domain name
2019-03-17[vyos.configtree] T1305: allow configs to end with leaf nodes.Daniil Baturin
2019-03-17T103: [dhcp-server] add support to configure host declarative namesChristian Poessinger
(cherry picked from commit 0fefe3c3b9250ad2ba841287a94036119728c708)
2019-03-08T1277: [dhcp-server] bugfix 'show dhcp server leases'Christian Poessinger
The script did not check if the service was actually configured or not. This caused a FileNotFoundError for unconfigured services. vyos@vyos:~$ show dhcp server leases Traceback (most recent call last): File "/usr/libexec/vyos/op_mode/show_dhcp.py", line 123, in <module> leases = get_leases(lease_file, state='active') File "/usr/libexec/vyos/op_mode/show_dhcp.py", line 60, in get_leases leases = IscDhcpLeases(lease_file).get() File "/usr/lib/python3/dist-packages/isc_dhcp_leases/iscdhcpleases.py", line 110, in get with open(self.filename) as lease_file: FileNotFoundError: [Errno 2] No such file or directory: '/config/dhcpd.leases' (cherry picked from commit ed620ef7e8ba741e165698c558b110a31cc35dfd)
2019-03-08T1277: [dhcpv6-server] bugfix 'show dhcpv6 server leases'Christian Poessinger
The script did not check if the service was actually configured or not. This caused a FileNotFoundError for unconfigured services. vyos@vyos:~$ show dhcpv6 server leases Traceback (most recent call last): File "/usr/libexec/vyos/op_mode/show_dhcpv6.py", line 77, in <module> leases = get_leases(lease_file, state='active') File "/usr/libexec/vyos/op_mode/show_dhcpv6.py", line 46, in get_leases leases = IscDhcpLeases(lease_file).get() File "/usr/lib/python3/dist-packages/isc_dhcp_leases/iscdhcpleases.py", line 110, in get with open(self.filename) as lease_file: FileNotFoundError: [Errno 2] No such file or directory: '/config/dhcpdv6.leases' (cherry picked from commit a6700c7d3b75854c3b213b65951a51464cd073be)
2019-02-28Fix: T1217 - cant delete wireguard wg0 interfacehagbard
2019-02-28enhancement: T1225 - wireguard implement 'set int wireguard wg0 peer name ↵hagbard
disable' to disable single peers Conflicts: debian/changelog
2019-02-28IP validation for allowed ip corrected.hagbard
2019-02-28fixes T1238 - Wireguard allows invalid IP'shagbard
Conflicts: debian/changelog
2019-02-28fixes: T1254 - generate wireguard keypair fails when executed on the isohagbard
- keypair can now be generated and used from the running iso to create wg tunnels on the fly Conflicts: debian/changelog
2019-02-28Merge branch 'crux' of https://github.com/vyos/vyos-1x into cruxDaniil Baturin
2019-02-28T1272: send VRRP messages from the base interface in RFC-compliant mode only ↵Daniil Baturin
in unicast mode (patch by Johan Fredin).
2019-02-25T1234: add missing option when processing dhcp-relay packetsChristian Poessinger
(cherry picked from commit f0084de554d71d0f011c7fd2c6009f1864bd9d77)
2019-02-25[tftp] T1261: always adjust directory permissions of tftprootChristian Poessinger
(cherry picked from commit 583975299c625d6049be6561d70e4cadc9976242)
2019-02-25[tftp] T1261: bugfix allow-upload handlingChristian Poessinger
(cherry picked from commit fbfe43b5ae7692e6ee6ce6d5517efdb2cdf8f022)