| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2024-07-24 | op_mode: T6593: Release DHCP interface does not work | Nataliia Solomko | |
| (cherry picked from commit 92461c35c7ef131940c885aca894a2d8b3c89592) | |||
| 2024-07-22 | utils: T5195: fix timeout comment | Christian Breunig | |
| (cherry picked from commit 11b273108d78ab1588be3c077f40b2ac876369a4) | |||
| 2024-07-20 | interfaces: T6592: moving an interface between VRF instances failed | Christian Breunig | |
| To reproduce: set vrf name mgmt table '150' set vrf name no-mgmt table '151' set interfaces ethernet eth2 vrf 'mgmt' commit set interfaces ethernet eth2 vrf no-mgmt commit This resulted in an error while interacting with nftables: [Errno 1] failed to run command: nft add element inet vrf_zones ct_iface_map { "eth2" : 151 } The reason is that the old mapping entry still exists and was not removed. This commit adds a new utility function get_vrf_tableid() and compares the current and new VRF table IDs assigned to an interface. If the IDs do not match, the nftables ct_iface_map entry is removed before the new entry is added. (cherry picked from commit 452068ce78581bb6fba2df4dba197e95b9aeb33d) | |||
| 2024-07-17 | configdep: T6559: use single dependency list with reset under configd | John Estabrook | |
| (cherry picked from commit 52d08b1ec5b2943744daac7123e35fd415f85db2) | |||
| 2024-07-17 | configdep: T6559: drop global redundancy removal to fix error reporting | John Estabrook | |
| (cherry picked from commit 7249d10f1fbb3f90a4bdbcd0223926d0380ddd3a) | |||
| 2024-06-26 | interfaces: T6519: harden config migration if ethernet interface is missing | Christian Breunig | |
| During a corner case where the configuration is migrated to a different system with fewer ethernet interfaces, migration will fail during an image upgrade. vyos.ethtool.Ethtool() is instantiated with an invalid interface leading to an exception that kills the migrator (cherry picked from commit e47d4fd385631236da6882233b09f6364cbb077b) | |||
| 2024-06-24 | vyos.utils: T6504: add interactive op-/configure mode support for ↵ | Christian Breunig | |
| get_current_user() (cherry picked from commit 710bb184045baa85897d589ffbc8af14b0fce629) | |||
| 2024-06-24 | T6489: add abstraction vyos.utils.configfs to work natively with the config ↵ | Christian Breunig | |
| filesystem (cherry picked from commit d7a18a3da949bfa3df89661cc0871e8f23b18a10) | |||
| 2024-06-24 | T6489: add abstraction vyos.utils.auth.get_current_user() | Christian Breunig | |
| (cherry picked from commit e1a34e661d3e5f0090550796ac266dac15e1e337) | |||
| 2024-06-24 | T6489: add vyos_configdir to the dictionary of default directories | Christian Breunig | |
| (cherry picked from commit f0923acffbef04c1f8cf2a6c8a9e2afd66c4a494) | |||
| 2024-06-21 | op-mode: T5514: Allow safe reboots to config defaults when config.boot is ↵ | Andrew Topp | |
| deleted * Added flag to vyos.config_mgmt.unsaved_commits() that will tolerate missing config.boot for specific circumstances * Shutdown/reboot uses this flag; config will regenerate from defaults after a reboot (cherry picked from commit 8281383a09f12da20a1c9b4864b38ac3f541b48f) | |||
| 2024-06-19 | macsec: T5447: fix error message syntax - there is no tx and rx key, only key | Christian Breunig | |
| (cherry picked from commit f29caa824c02c833a3978b9236391e4277c1a6ba) | |||
| 2024-06-10 | op-mode: T6471: add optimized get_config_dict | John Estabrook | |
| 2024-06-10 | vyos.utils: T5195: import vyos.cpu to this package | Christian Breunig | |
| The intention of vyos.utils package is to have a common ground for repeating actions/helpers. This is also true for number of CPUs and their respective core count. Move vyos.cpu to vyos.utils.cpu | |||
| 2024-06-09 | op-mode: T6424: ipsec: honor certificate CN and CA chain during profile ↵ | Christian Breunig | |
| generation In e6fe6e50a5c ("op-mode: ipsec: T6407: fix profile generation") we fixed support for multiple CAs when dealing with the generation of Apple IOS profiles. This commit extends support to properly include the common name of the server certificate issuer and all it's paren't CAs. A list of parent CAs is automatically generated from the "PKI" subsystem content and embedded into the resulting profile. | |||
| 2024-06-06 | grub: T6453: Fixed GRUB variables parsing | zsdc | |
| To parse variables with `=` a variable name should be limited by alphanumerical characters only. | |||
| 2024-06-06 | Merge pull request #3578 from nicolas-fort/raw-hook | Daniil Baturin | |
| T3900: Add support for raw tables in firewall | |||
| 2024-06-06 | Merge pull request #3573 from talmakion/bugfix/T6401-2 | Daniil Baturin | |
| vxlan: T6401: Avoid calling get_vxlan_vni_filter() unless we need it | |||
| 2024-06-05 | migration: T6006: add activation script dir and helper function | John Estabrook | |
| 2024-06-05 | migration: T6447: add module compose_config | John Estabrook | |
| 2024-06-05 | migration: T6006: update config.boot.default and move to vyos-1x | John Estabrook | |
| 2024-06-01 | vxlan: T6401: Avoid calling get_vxlan_vni_filter() unless we need it | Andrew Topp | |
| `bridge vni show dev vxlanX` will exit with an error if no VNI filters are installed, but the getter is used even when we haven't installed any. This fix avoids fetching a list of VNI filters unless we know we've created some. | |||
| 2024-05-30 | vyos.ifconfig: T6421: verify /etc/hostname exists before reading | Christian Breunig | |
| Inspired-By: Brandon Zhi <Huiyuze_Zhi@protonmail.com> | |||
| 2024-05-27 | T5786: Add set/show system image to /image endpoint | khramshinr | |
| 2024-05-23 | Merge pull request #3399 from 0xThiebaut/suricata | Christian Breunig | |
| suricata: T751: Initial support for suricata | |||
| 2024-05-22 | Merge pull request #3502 from dmbaturin/T6385-yes-no-ctrl-c | Christian Breunig | |
| vyos.utils.io: T6385: handle keyboard interrupts in ask_yes_no | |||
| 2024-05-22 | vyos.utils.io: T6385: handle keyboard interrupts in ask_yes_no | Daniil Baturin | |
| and return False if the user interrupts the prompt with Ctrl-C | |||
| 2024-05-22 | rollback-soft: T6384: tell the user to compare or commit | Daniil Baturin | |
| after applying the diff | |||
| 2024-05-21 | Merge pull request #3494 from HollyGurza/T6373 | Christian Breunig | |
| T6373: QoS Policy Limiter - classes for marked traffic do not work | |||
| 2024-05-21 | T6373: QoS Policy Limiter - classes for marked traffic do not work | khramshinr | |
| 2024-05-21 | T6375: Fix/Update NAT logging | l0crian1 | |
| Fixed broken logging for "show log nat" Added the following commands: show log nat source show log nat source rule <ruleNum> show log nat destination nat show log nat destination nat rule <ruleNum> show log nat static show log nat static rule <ruleNum> | |||
| 2024-05-17 | T6354: do an explicit read from version file to avoid circular reference | John Estabrook | |
| 2024-05-17 | T6354: Get rid of the custom boot type check in version.py | khramshinr | |
| 2024-05-15 | T3900: add support for raw table in firewall. | Nicolas Fort | |
| 2024-05-15 | op mode: T3355: remove the mention of legacy non-image installations | Daniil Baturin | |
| They were never supported by VyOS, that was just for very old systens upgraded from Vyatta Core | |||
| 2024-05-12 | suricata: T751: Initial support for suricata | Maxime THIEBAUT | |
| 2024-05-10 | image-tools: T6327: prune, instead of ignore, menu entries with ttyUSB | John Estabrook | |
| 2024-05-10 | image-tools: T6327: drop boot console type ttyUSB | John Estabrook | |
| 2024-05-10 | Merge pull request #3410 from fett0/T6303 | Christian Breunig | |
| Bond: T6303: add system mac address on interfaces bond | |||
| 2024-05-10 | bond: T6303: must reset system-mac to 00:00:00:00:00:00 on deletion | Christian Breunig | |
| 2024-05-10 | bond: T6303: system-mac is not allowed to be a multicast MAC address | Christian Breunig | |
| 2024-05-10 | bond: T6303: add system mac address on bond | fett0 | |
| 2024-05-08 | xml: T6319: add util for ancestor owner/priority | John Estabrook | |
| 2024-05-06 | vyos.template: T3664: use a module-level global variable for the default ↵ | Daniil Baturin | |
| template directory as a more convenient and secure alternative to environment variable | |||
| 2024-05-06 | T6298: Fix TPM incorrect path for rc_cmd | Viacheslav Hletenko | |
| Fix import for `rc_cmd` | |||
| 2024-05-02 | qos: T6225: Fix qos random-detect policy | khramshinr | |
| Fix default values for random-detect Remove dsmakr qdisc from gred cofig because dsmark was deleted from kernel | |||
| 2024-04-26 | T6269: policy: ensure correct rule parsing when using, and when not using ↵ | Nicolas Fort | |
| <set table> option in policy route. | |||
| 2024-04-25 | Merge pull request #3316 from HollyGurza/T4248 | Daniil Baturin | |
| qos: T4248: Allow to remove the only rule from the qos class | |||
| 2024-04-25 | T6258: Add sysctl base-reachable-time for IPv6 | Viacheslav Hletenko | |
| Add abiilty to change `base_reachable_time_ms` option /proc/sys/net/ipv6/neigh/{ifname}/base_reachable_time_ms | |||
| 2024-04-22 | PKI: T6259: Support RFC822 names in certificate generation | Alex W | |
 |
index : vyos-1x.git | |
| VyOS command definitions, scripts, and utilities (mirror of https://github.com/marekm72/vyos-1x.git) |
| summaryrefslogtreecommitdiff |