summaryrefslogtreecommitdiff
AgeCommit message (Collapse)Author
2022-04-07Merge pull request #1268 from c-po/t4341-ssh-loginDaniil Baturin
T4341 SSH and system login fixes + smoketests
2022-04-07Merge pull request #1261 from c-po/t4319-disable-ipv6-equuleusDaniil Baturin
T4319: bugfixes for disabled IPv6 (equuleus)
2022-04-06Merge pull request #1265 from c-po/t4337-isis-equuleusDaniil Baturin
T4337: isis: IETF SPF delay algorithm cannot be configured - results in vyos.frr.CommitError (equuleus)
2022-04-06Merge pull request #1269 from c-po/t3804-dns-equuleusDaniil Baturin
dns: forwarding: T3804: bugfix DHCP name-servers used for recursion
2022-04-05dns: forwarding: T3804: bugfix DHCP name-servers used for recursionChristian Poessinger
Commit 2ecf7a9f9c ('name-server: T3804: merge "system name-servers-dhcp" into "system name-server"') missed out an old dictionary key "system_name_server_dhcp" and thus system nameservers configured via DHCP did not get used for the DNS forwar recursor. (cherry picked from commit 806ff50bf1a970d731c2227f9d2cd2342b8a1b4e)
2022-04-04login: T4341: busy wait on userdel(8) until the account was deleted successfullyChristian Poessinger
(cherry picked from commit 796178f69ce09e28ab9f20c7b5e1ce97ef00a1ff)
2022-04-04smoketest: login: verify test accounts are properly deletedChristian Poessinger
(cherry picked from commit 6a04ff2840dfcfcad7a1cb93baf210370fa8871e)
2022-04-04login: T4341: disable user account prior to deletionChristian Poessinger
(cherry picked from commit efa753bc661d04967237e7ec3d72d3757230aaf9)
2022-04-04smoketest: ssh: verify SSH service is stopped on removalChristian Poessinger
(cherry picked from commit 4bb0adf535e12dc962a0ebea0f5a96f612a76a5d)
2022-04-04smoketest: ssh: verify login of valid and invalid test userChristian Poessinger
In order to test for proper system authentication and security setup a new testcase is added which performs an SSH login and command execution with a predefined user. The result (output of uname -a) must match the output if the command is run natively. We also try to login as an invalid user - this is not allowed to work. (cherry picked from commit e66c45ce7a664ecb26d21a215975777bef0fcd71)
2022-04-04Merge pull request #1266 from c-po/pr-conflict-backportChristian Poessinger
GitHub: enable PR conflict workflow - backport from current
2022-04-03GitHub: enable PR conflict workflow - backport from currentChristian Poessinger
2022-04-03smoketest: isis: T4337: verify IETF SPF delay algorithmChristian Poessinger
2022-04-03isis: T4337: IETF SPF delay algorithm can not be configuredChristian Poessinger
To reproduce: set protocols isis interface eth1 set protocols isis net '49.0001.1921.6800.1002.00' Now enable SPF: set protocols isis spf-delay-ietf holddown '20' set protocols isis spf-delay-ietf init-delay '31' set protocols isis spf-delay-ietf long-delay '30' set protocols isis spf-delay-ietf short-delay '32' set protocols isis spf-delay-ietf time-to-learn '44' This will only render the FRR config line: spf-delay-ietf init-delay 31 which is incomplete: frr-reload output: 2 2022-04-03 12:35:24,764 ERROR: vtysh failed to process new configuration: vtysh (mark file) exited with status 4: frr-reload output: 3 b'line 15: % Command incomplete: spf-delay-ietf init-delay 31\n\n'
2022-03-31vyos.ifconfig: T4330: MTU must be configured prior to any IPv6 option changeChristian Poessinger
This extends the fix from 53e20097 ("vyos.ifconfig: T4330: bugfix changing MTU when IPv6 is disabled") by ordering the execution in a way the Kernel does not complain. (cherry picked from commit 601ab19fd8c81a998b3c966cc83b85ed60ac5ae0)
2022-03-31vyos.ifconfig: T4330: bugfix changing MTU when IPv6 is disabledChristian Poessinger
Commit f8b3d8999c ("ipv6: T4319: do not configure IPv6 related settings if it's disabled") moved the MTU configuration part under the code path which is only run if IPv6 is enabled on the system. This prevented MTU changes on IPv6 disabled systems. (cherry picked from commit 53e20097d227ebf4bdb4dc6c85427ec9c5ec3982)
2022-03-31smoketest: vrf: verify routes via FRR cliChristian Poessinger
2022-03-30test: vyos.util build time tests should import all functionsChristian Poessinger
2022-03-30smoketest: T4319: verify correct assignment of loopback IP addressesChristian Poessinger
(cherry picked from commit a33b737b753843501c86eee744aef75137d2b64e)
2022-03-30vyos.ifconfig: T4319: add_addr() should not add IPv6 address if it's disabledChristian Poessinger
(cherry picked from commit 60f009defadb9d36bf84def1e839cb11a0b3d619)
2022-03-30vrf: T4319: do not add IPv6 localhost address if IPv6 is disabledChristian Poessinger
(cherry picked from commit c33a96f6f0f0259808992b246b1a550fcf9a454a)
2022-03-30vyos.util: T4319: add is_ipv6_enabled() helper functionChristian Poessinger
(cherry picked from commit df0fbfeedce0f163e9d10be21d58ad4dc797a28a)
2022-03-30Merge pull request #1257 from dmbaturin/T4319-loChristian Poessinger
T4319: do not try to add ::1/128 to lo when IPv6 is disabled
2022-03-30T4319: do not try to add ::1/128 to lo when IPv6 is disabledDaniil Baturin
2022-03-28Merge pull request #1255 from vyos/revert-1235-equuleus-ipv6-local-routeDaniil Baturin
Revert "backport: T4515: T4219: policy local-route6 and inbound-interface support"
2022-03-28Revert "backport: T4515: T4219: policy local-route6 and inbound-interface ↵Daniil Baturin
support"
2022-03-28Revert "openvpn: T4230: globally enable ip_nonlocal_bind"Daniil Baturin
This reverts commit 382d5aa16d81b745e522a14122b429750ee64789.
2022-03-27Merge pull request #1254 from jestabro/eq-gql-test-nodeDaniil Baturin
graphql: T3993: add unsettable gql option; this is not exposed by CLI
2022-03-27graphql: T3993: add unsettable gql option; this is not exposed by CLIJohn Estabrook
(cherry picked from commit 9d3acc2b55f2d1c563f1941e59c98c159211dc58)
2022-03-25smoketest: ipv6: fix testcase after using new sysctl interfaceChristian Poessinger
(cherry picked from commit 6249c2abe7e40a6671549d318ee9b0fbd622b991)
2022-03-25smoketest: mpls: disable debug outputChristian Poessinger
(cherry picked from commit 625ea99e69a319c88fa67125438fdc457eaaaed3)
2022-03-25mpls: T915: use vyos.util.sysctl_write() helper functionChristian Poessinger
(cherry picked from commit cabe0c06e2312cc872d3e22d91611a3ccecefdb0)
2022-03-25vyos.util: T4319: rename sysctl() -> sysctl_write()Christian Poessinger
(cherry picked from commit 364009e4317fb5c6732635726b511613aa2ed519)
2022-03-25ipv6: T4319: do not configure IPv6 related settings if it's disabledChristian Poessinger
(cherry picked from commit f8b3d8999cbea988ce8e7d303957558308ddc1bc)
2022-03-25system: T4319: align ipv6 settings with ipv4 by using get_config_dict()Christian Poessinger
(cherry picked from commit 1b16a4eab926462c0d2752d698bedf28c995058d)
2022-03-25vyos.util: T4319: provide generic sysctl_read() helperChristian Poessinger
(cherry picked from commit 52cb6185a4a51ffa92f10e0ded55a943bc21bc60)
2022-03-25xml: T4319: use common building block for table-size CLI optionChristian Poessinger
(cherry picked from commit eaf4b60c9e7fa094d17b87b29bebaf81182ee7a1)
2022-03-25T4319: "system ip(v6)" must run before any interface operationChristian Poessinger
(cherry picked from commit 87ccafd06b897b63f847e6b47cf72b951b0ed223)
2022-03-24openvpn: T4230: globally enable ip_nonlocal_bindChristian Poessinger
(cherry picked from commit 1cbcbf40b7721849f9696c05fac65db010a66b7c)
2022-03-24Merge pull request #1210 from sever-sever/T4230-equChristian Poessinger
openvpn: T4230: Delete checks if local-host address assigned
2022-03-24openvpn: T4294: force service restart on openvpn-option node changeChristian Poessinger
(cherry picked from commit 999b1e50dfdea8694174e82d22b2438cb1bf5e28)
2022-03-23Merge pull request #1235 from hensur/equuleus-ipv6-local-routeChristian Poessinger
backport: T4515: T4219: policy local-route6 and inbound-interface support
2022-03-16T3506: loadkey: fix build error1.3.1Christian Poessinger
Commit 92f6feca ("T3506: loadkey: Add `generate public-key-command` command") backported a change from current for the op-mode command definitions. Unfortunately VyOS 1.3 (equuleus) uses the old GCC preprocessor which is unable to properly handle long strings containing control characters lilke // (CPP-comment).
2022-03-15bonding: T4301: Fixed arp-monitor optionzsdc
In verify function for arp-monitor option was used by mistake an extra conversion for incoming data before comparing items. This commit removed these unnecessary conversions and makes the option operable. (cherry picked from commit df4b544c29974e36b52fc42bcbf617f50738a4a6)
2022-03-11Ethtool: T4297: Update drivers supporting speed/flow/duplexDaniel Berlin
The iavf, ice, and i40e drivers do not support speed, flow, or duplex control using ethtool. As a result, interface configuration changes fail to commit when using those drivers. This patch fixes that by correctly marking those drivers as not supporting those controls. (cherry picked from commit 2894b52454311f8e011bed910704064be7471275)
2022-03-10Merge pull request #1244 from erkin/equuleusDaniil Baturin
T3506: loadkey: Add `generate public-key-command` command
2022-03-10T3506: loadkey: Add `generate public-key-command` commanderkin
2022-03-06smoketest: config: add "recent" firewall rule to dialup-routerChristian Poessinger
(cherry picked from commit 1d0d4e83d8413c1b389be763cadd5d150d4be982)
2022-03-05conntrackd: T4259: fix daemon configuration pathChristian Poessinger
(cherry picked from commit aa8080d316dbeb4d26bf67f6d67efeda43b2bc07)
2022-03-05conntrackd: T4259: prevent startup of multiple daemon instancesChristian Poessinger
(cherry picked from commit 2c94c3ec72a559de405b29b4399250db3085717e)
generated by cgit v1.2.3 (git 2.39.1) at 2024-11-23 10:28:50 +0000