summaryrefslogtreecommitdiff
AgeCommit message (Collapse)Author
2024-05-01firewall: T6257: Show member information for dynamic groups in op-modesarthurdev
(cherry picked from commit 456419c7930405b80d322586736734f707affaed)
2024-05-01Merge pull request #3383 from vyos/mergify/bp/sagitta/pr-3382Christian Breunig
haproxy: T6179: fix rule generation (backport #3382)
2024-05-01haproxy: T6179: fix rule generationNicolas Vollmar
(cherry picked from commit 0be0cdb932ca2d7399c026f1f601b56e179cc9c3)
2024-04-30Merge pull request #3377 from vyos/mergify/bp/sagitta/pr-3371Christian Breunig
openconnect: T4982: Support defining minimum TLS version in openconnect VPN (backport #3371)
2024-04-30Merge pull request #3380 from vyos/mergify/bp/sagitta/pr-3379Christian Breunig
T6169: DNS forwarding should allow underscore for srv record (backport #3379)
2024-04-30Merge pull request #3381 from vyos/mergify/bp/sagitta/pr-3368Christian Breunig
T6267: Check interface wireless module before apply config (backport #3368)
2024-04-30T6267: Check interface wireless module before apply configViacheslav Hletenko
Check if the wireless device/modem exists in the system and the module `ieee802111` was loaded In cases where we do not have wireless devices, it prevents the unexpected traceback ``` set interfaces wireless wlan0 address 192.0.2.5/32 commit Traceback (most recent call last): File "/usr/libexec/vyos/conf_mode/interfaces_wireless.py", line 269, in <modu> c = get_config() ^^^^^^^^^^^^ File "/usr/libexec/vyos/conf_mode/interfaces_wireless.py", line 104, in get_cg tmp = find_other_stations(conf, base, wifi['ifname']) ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ File "/usr/libexec/vyos/conf_mode/interfaces_wireless.py", line 54, in find_os for phy in os.listdir('/sys/class/ieee80211'): ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ FileNotFoundError: [Errno 2] No such file or directory: '/sys/class/ieee80211' ``` (cherry picked from commit 09c302d7e57a0fdb6c51ae8f61d5ad6371a30b67)
2024-04-30T6169: DNS forwarding should allow underscore for srv recordViacheslav Hletenko
This srv recors looks valid: ``` set service dns forwarding authoritative-domain _tcp.db.mongors1.example.com records srv _mongodb entry 0 hostname 'mongors1.example.com' ``` But FQDN validator cannot validate it correctly, use regex to fix (cherry picked from commit 3c37b6a44dca552da950b5288a30c7e074d58704)
2024-04-30Merge pull request #3378 from vyos/mergify/bp/sagitta/pr-3374Christian Breunig
T6273: Allowed the use of "-" and "_" in PPPoE access-concentrator name (backport #3374)
2024-04-30T6273: Allowed the use of "-" and "_" in PPPoE access-concentrator nameaapostoliuk
Allowed the use of "-" and "_" in PPPoE access-concentrator name (cherry picked from commit de38b01710958b7f7dababcff9557e4be98c8450)
2024-04-30openconnect: T4982: Support defining minimum TLS version in openconnect VPNAlex W
(cherry picked from commit 9ff74d4370f0a5f66c303074796dab8b1ca5c4a5)
2024-04-29Merge pull request #3376 from vyos/mergify/bp/sagitta/pr-3375Christian Breunig
T6272: Changed interface existence verification in pppoe/ipoe to Warning (backport #3375)
2024-04-29T6272: Changed interface existence verification in pppoe/ipoe to Warningaapostoliuk
Throwing Warning message instead of Error if interface which is used in pppoe/ipoe does not exist. (cherry picked from commit af7277c7d525c22749bc236ad2096bec5c08d998)
2024-04-29Merge pull request #3373 from jestabro/sagitta-configdep-redundancyDaniil Baturin
T5660: Remove redundant calls to config dependency scripts
2024-04-28configdep: T6276: do not call dependencies on script errorJohn Estabrook
(cherry picked from commit 9438f1f8394b7c90bb536292882571c88556ce87)
2024-04-28configdep: T5660: remove global redundancies under vyos-configdJohn Estabrook
(cherry picked from commit 70e1df1b5fcb3b1791cca320ed45b71e01e1ffda)
2024-04-28configdep: T5839: remove trivially redundant config dependency callsJohn Estabrook
(cherry picked from commit 5c173c5935eab3a8bd0f169759617c4296a92df7)
2024-04-28configdep: T5836: add boolean check whether script called as dependencyJohn Estabrook
(cherry picked from commit 80077eee89e4f0aa3af5dca1a4b2b5e1665bda6f)
2024-04-26Merge pull request #3365 from vyos/mergify/bp/sagitta/pr-3316Christian Breunig
qos: T4248: Allow to remove the only rule from the qos class (backport #3316)
2024-04-25Merge pull request #3366 from vyos/mergify/bp/sagitta/pr-3363Christian Breunig
T6263: Groups 224.0.0.0/24 are reserved and cannot be joined (backport #3363)
2024-04-25Merge pull request #3362 from vyos/mergify/bp/sagitta/pr-3361Christian Breunig
T6258: Add sysctl base-reachable-time for IPv6 (backport #3361)
2024-04-25T6263: Groups 224.0.0.0/24 are reserved and cannot be joinedViacheslav Hletenko
The join addresses within the multicast group 224.0.0.0/24 are reserved and cannot be joined FRR ``` r4(config)# interface eth2 r4(config-if)# ip igmp join 224.0.0.0 224.0.0.10 % Configuration failed. Error type: validation Error description: Groups within 224.0.0.0/24 are reserved and cannot be joined r4(config-if)# ``` Add verify check (cherry picked from commit c8f9acf5d91827b0d1266d3061a5e15a82628323)
2024-04-25qos: T4248: Allow to remove the only rule from the qos classkhramshinr
(cherry picked from commit da40bd2b2a826986de128354ea1bfc041ada0016)
2024-04-25T6258: Add sysctl base-reachable-time for IPv6Viacheslav Hletenko
Add abiilty to change `base_reachable_time_ms` option /proc/sys/net/ipv6/neigh/{ifname}/base_reachable_time_ms (cherry picked from commit 0bf4b570fe2d239b9fbabd3ae801ad3f04a06bde)
2024-04-24Merge pull request #3360 from vyos/mergify/bp/sagitta/pr-3359Daniil Baturin
T5833: Not all AFIs compatible with VRF add verify check (backport #3359)
2024-04-24T5833: Not all AFIs compatible with VRF add verify checkViacheslav Hletenko
Not all FRR address-families compatibe with VRF ``` r4# conf t r4(config)# router bgp 65001 vrf bgp r4(config-router)# r4(config-router)# address-family ipv4 flowspec Only Unicast/Multicast/EVPN SAFIs supported in non-core instances. r4(config-router)# r4(config-router)# address-family ipv4 labeled-unicast Only Unicast/Multicast/EVPN SAFIs supported in non-core instances. r4(config-router)# r4(config-router)# address-family ipv4 vpn Only Unicast/Multicast/EVPN SAFIs supported in non-core instances. r4(config-router)# ``` Add verify AFI for VRF (cherry picked from commit a3713cd64f2f43f321a5138db94bb1a87edbffdd)
2024-04-24Merge pull request #3351 from c-po/action-updateDaniil Baturin
GitHub actions update for sagitta
2024-04-24Merge pull request #3358 from vyos/mergify/bp/sagitta/pr-3355Viacheslav Hletenko
T6109: Fix remote logging for sudo commands (backport #3355)
2024-04-24T6109: Fix remote logging for sudo commandsViacheslav Hletenko
This fix for bug when `sudo` commands were not send to the remote syslog server. They stop before the directive that includes all configurations `$IncludeConfig /etc/rsyslog.d/*.conf` (cherry picked from commit 7164ad40f5cc47f35c7903626d4d4da048a25113)
2024-04-23Merge pull request #3357 from vyos/mergify/bp/sagitta/pr-3340Christian Breunig
T6255: static-routing: don't render whitespace from static table descriptions (backport #3340)
2024-04-23T6255: static-routing: don't render whitespace from static table descriptionsAlex W
(cherry picked from commit 8602c84e1b7c0da4c4c57fc2d034ec18497303fd)
2024-04-23Merge pull request #3356 from vyos/mergify/bp/sagitta/pr-3354Christian Breunig
T6217: Conntrack-sync change the actual name of the script (backport #3354)
2024-04-23T6217: Conntrack-sync change the actual name of the scriptViacheslav Hletenko
The actual name of the script is `vyos-vrrp-conntracksync.sh` (cherry picked from commit 7efe245f59bbea9f12d0c7c5a8975380efc6f2d5)
2024-04-23Merge pull request #3352 from vyos/mergify/bp/sagitta/pr-3342Christian Breunig
T6226: add HAPROXY tcp-request related block to load-balancing reverse proxy config (backport #3342)
2024-04-23T6226: add HAPROXY tcp-request related block to load-balancing reverse proxy ↵Windom WU
config (cherry picked from commit 984c386d11ead8371b7ac381e6c0921473e557ed)
2024-04-23Merge pull request #3350 from vyos/mergify/bp/sagitta/pr-3346Christian Breunig
image-tools: T6260: remove persistence image directory if no space error (backport #3346)
2024-04-23Merge pull request #3348 from vyos/mergify/bp/sagitta/pr-3347Christian Breunig
connect_disconnect: T6261: correction to typo in check_ppp_running (backport #3347)
2024-04-23GitHub: use ubuntu-latest for labeler actionChristian Breunig
(cherry picked from commit eab0adcbf30734045cf04c140d30efae1abdf194)
2024-04-23GitHub: adjust MergifyIo regex match to both upper and lower caseChristian Breunig
(cherry picked from commit 76cc762ef4aacd1120d533e1122f56ce09a2cfa9)
2024-04-23image-tools: T6260: remove persistence image directory if no space errorJohn Estabrook
(cherry picked from commit c2fc2dba32ba861684f5e34635f810c56d551d51)
2024-04-23connect_disconnect: T6261: correction to typo in check_ppp_running functionGinko
Connect_disconnect: T6261: correction to typo in check_ppp_running function Changes include: 1. Replaces "beeing" -> being in print statement for check_ppp_running 2. Replaces "can not" -> cannot in print statement on lines 61 and 93 (cherry picked from commit 19e0d3b74f66e082c3f131b9044e7ca2371b1d85)
2024-04-22Merge pull request #3344 from vyos/mergify/bp/sagitta/pr-3339Viacheslav Hletenko
xml: T5738: fix typo in radius-additions.xml.i (backport #3339)
2024-04-22xml: T5738: fix typo in radius-additions.xml.iAndré Luiz dos Santos
(cherry picked from commit 8d0aa7bfb83aecb989ab01b6d1975cf23f1c7dcb)
2024-04-22Merge pull request #3343 from vyos/mergify/bp/sagitta/pr-3336Christian Breunig
vyos.utils: T6244: add whitespace after time unit in uptime (backport #3336)
2024-04-22op-mode: T6244: add whitespace after time unit in "show system uptime"Christian Breunig
(cherry picked from commit 31b21d26751b7db7ab784486da5b8690ddd4a058)
2024-04-22vyos.utils: T6244: add support for year timebase in seconds_to_human()Christian Breunig
We only supported calculating seconds to weeks but not seconds to years. This has been added. Testcase: from vyos.utils.convert import seconds_to_human minute = 60 hour = minute * 60 day = hour * 24 week = day * 7 year = day * 365.25 for separator in ['', ' ', '-', '/']: print(f'----- Using separator "{separator}" -----') print(seconds_to_human(10, separator)) print(seconds_to_human(5* minute, separator)) print(seconds_to_human(3* hour, separator)) print(seconds_to_human(4* day, separator)) print(seconds_to_human(7 * week, separator)) print(seconds_to_human(10 * year, separator)) print(seconds_to_human(5*year + 4*week + 3*day + 2*hour + minute + 5, separator)) print() cpo@LR1.wue3:~$ ./foo.py ----- Using separator "" ----- 10s 5m 3h 4d 7w 10y 5y4w3d2h1m5s ----- Using separator " " ----- 10s 5m 3h 4d 7w 10y 5y 4w 3d 2h 1m 5s ----- Using separator "-" ----- 10s 5m 3h 4d 7w 10y 5y-4w-3d-2h-1m-5s ----- Using separator "/" ----- 10s 5m 3h 4d 7w 10y 5y/4w/3d/2h/1m/5s (cherry picked from commit 8d8f3137d174a43a259cbe50dd12730805f0200c)
2024-04-22vyos.utils: T6244: use list to build up result stringChristian Breunig
When handling optional separators rather build up a list and join the list with the requested delimiter to form the resulting human readable time string. (cherry picked from commit 6e9cd8821ca028b5bc05c14b0b4e3454036da6da)
2024-04-22Merge pull request #3341 from vyos/mergify/bp/sagitta/pr-3337Daniil Baturin
T6237: IPSec remote access VPN: ability to set EAP ID of clients (backport #3337)
2024-04-22T6237: IPSec remote access VPN: ability to set EAP ID of clientsAlex W
(cherry picked from commit 78ea623df20b44309cc6ac9848ed18e97fc4ed03)
2024-04-21Merge pull request #3332 from vyos/mergify/bp/sagitta/pr-3325Christian Breunig
T6246: basic haproxy http-check configuration (backport #3325)