summaryrefslogtreecommitdiff
path: root/src
AgeCommit message (Collapse)Author
2024-10-07config-mgmt: T5976: move commit-confirm revert action to subnodeJohn Estabrook
2024-10-05config-mgmt: T5976: add option for commit-confirm to use 'soft' rollbackJohn Estabrook
Commit-confirm will restore a previous configuration if a confirmation is not received in N minutes. Traditionally, this was restored by a reboot into the last configuration on disk; add a configurable option to reload the last completed commit without a reboot. The default setting is to reboot.
2024-10-05config-mgmt: T5976: normalize formattingJohn Estabrook
2024-10-04Merge pull request #4110 from jestabro/distinct-apiChristian Breunig
http-api: T6736: move REST API to a node distinct from GraphQL API
2024-10-04Merge pull request #4121 from natali-rs1985/T6101-currentChristian Breunig
ipsec: T6101: Add validation for proposal option used in IKE group
2024-10-04Merge pull request #4048 from rebortg/node_exporterChristian Breunig
T973: add basic node_exporter implementation
2024-10-03T973: remove irrelevant standard valuesrebortg
2024-10-03cli: T6752: add a wrapper for the show command (#4111)Daniil Baturin
2024-10-03http-api: T6736: sanitize error message containing user inputJohn Estabrook
2024-10-02ipsec: T6101: Add validation for proposal option used in IKE groupNataliia Solomko
2024-09-30http-api: T6736: normalize formattingJohn Estabrook
2024-09-30Merge pull request #4106 from dmbaturin/T6743-native-range-validatorsDaniil Baturin
validators: T6743: use native ipaddrcheck validator options for ranges
2024-09-30Merge pull request #4024 from nicolas-fort/T6687Daniil Baturin
T6687: add fqdn support to nat rules.
2024-09-29http-api: T6736: add migration script and update versionJohn Estabrook
2024-09-29http-api: T6736: regenerate openapi docsJohn Estabrook
2024-09-29http-api: T6736: remove routes on config deleteJohn Estabrook
Avoid duplicate entries in the list of routes when adding/deleting endpoints.
2024-09-29http-api: T6736: separate REST API and GraphQL API activationJohn Estabrook
The GraphQL API was implemented as an addition to the existing REST API. As there is no necessary dependency, separate the initialization of the respective endpoints. Factor out the REST Pydantic models and FastAPI routes for symmetry and clarity.
2024-09-29http-api: T6736: update for deprecated/renamed in Pydantic V2John Estabrook
2024-09-27validators: T6743: use native ipaddrcheck validator options for rangesDaniil Baturin
2024-09-27validators: T6739: correctly quote ipaddrcheck argumentsDaniil Baturin
to avoid ipaddrcheck syntax errors when values include whitespace
2024-09-27Revert "validators: T6739: fix ipaddrcheck argument quoting"Daniil Baturin
2024-09-25validators: T6739: fix ipaddrcheck argument quotingDaniil Baturin
2024-09-25Merge pull request #3876 from jestabro/uncaught-conf-script-err-as-commit-errDaniil Baturin
configd: T6608: report uncaught config script exceptions as commit error
2024-09-24syslog: T6719: fix the behavior of "syslog global preserve-fqdn"Nicolas Vollmar
2024-09-24Merge pull request #4086 from natali-rs1985/T6675-currentChristian Breunig
bridge: T6675: VXLAN Interface configuration lost due to improper bridge detachment
2024-09-22configd: T6608: report uncaught config script exceptions as commit errorJohn Estabrook
In the case of config mode script exceptions other than ConfigError, vyos-configd would previously trigger the shim to re-run the script in the CLI context. The use of config dependencies require this case to return a commit error. A traceback is returned as output, consistent with running without vyos-configd support.
2024-09-21T6630: ntp: rename ptp-transport to ptp and use defaultValue for portChristian Breunig
2024-09-21T6630: ntp: add chrony "ntp over ptp" transportLucas Christian
2024-09-20Merge pull request #4089 from natali-rs1985/T4833-currentChristian Breunig
op-mode: T4833: Include wireguard peer name in interface summary report
2024-09-20http-api: T6326: return full warning/error output through apiJohn Estabrook
Configuration error output is not returned in full to the http-api when running under vyos-configd, due to an early implementation 'workaround' of vyos-configd writing directly to the session tty. This is corrected to return all ambient stdout (notably vyos.base.Warning) and error messages directly to the originating caller, which may be from a session tty or a ConfigSession instance. As the http-api runs in the latter case, the full output is returned.
2024-09-20op-mode: T4833: Include wireguard peer name in interface summary reportNataliia Solomko
2024-09-20bridge: T6675: VXLAN Interface configuration lost due to improper bridge ↵Nataliia Solomko
detachment
2024-09-19Merge pull request #4061 from c-po/syslog-T5367Daniil Baturin
syslog: T5367: add format option to include timezone in message
2024-09-18T973: add basic node_exporter implementationrebortg
2024-09-17T6716: don't automatically set ethernet offloadDave Vogel
Remove the lines of code that checked if the kernel had offloading enabled and was then forcing the config to set it to "on." The behavior now mirrors the config and offloading will only be enabled if the config is explicitly set to enabled. Note: the code is still present to disable the offloading, in the config, if the kernel doesn't support it. Note(2): Allow the previous behavior where the offload settings get set, based on the Kernel, if the boot is a live boot.
2024-09-16Merge pull request #4020 from c-po/secure-bootChristian Breunig
T861: op-mode: initial parts for UEFI secure boot CLI
2024-09-16T861: op-mode: add "show secure-boot [keys]" CLI commandChristian Breunig
Support getting current system secure boot state. In addition add optional suppor tto list all enrolled MOK (Machine Owner Keys) in the UEFI variable store.
2024-09-16T861: op-mode: "show version" will display secure boot stateChristian Breunig
vyos@vyos:~$ show ver ... Architecture: x86_64 Boot via: installed image System type: KVM guest Secure Boot: enabled ...
2024-09-16T6687: add fqdn support to nat rules.Nicolas Fort
2024-09-16Merge pull request #4069 from c-po/eapol-bondChristian Breunig
bond: T6709: add EAPoL support
2024-09-15Merge pull request #4057 from natali-rs1985/T6682-currentDaniil Baturin
op-mode: T6682: Fix for show vpn ike sa peer that always shows all SAs
2024-09-15bond: T6709: add EAPoL supportChristian Breunig
2024-09-14ethernet: T6709: move EAPoL support to common frameworkChristian Breunig
Instead of having EAPoL (Extensible Authentication Protocol over Local Area Network) support only available for ethernet interfaces, move this to common ground at vyos.ifconfig.interface making it available for all sorts of interfaces by simply including the XML portion #include <include/interface/eapol.xml.i>
2024-09-12syslog: T5367: add format option to include timezone in messageChristian Breunig
Add CLI option to include the systems timezone in the syslog message sent to a collector. This can be enabled using: set system syslog host <hostname> format include-timezone
2024-09-12Merge pull request #4047 from natali-rs1985/T6676-currentChristian Breunig
policy: T6676: Invalid route-map caused bgpd to crash
2024-09-12Merge pull request #4046 from nvollmar/T6703Christian Breunig
T6703: Adds option to configure AMD pstate driver
2024-09-12Merge pull request #4021 from natali-rs1985/T6652-currentDaniil Baturin
openfabric: T6652: Add support for OpenFabric protocol
2024-09-12op-mode: T6682: Fix for show vpn ike sa peer always shows all SAsNataliia Solomko
2024-09-12T6711: Fix restart vrrp missed comma between servicesViacheslav Hletenko
Missing comma in the list between services 'ssh', 'suricata' 'vrrp', 'webproxy' Fix it
2024-09-12Merge pull request #4042 from natali-rs1985/T6694-currentChristian Breunig
op-mode: T6694: Move some op-mode commands to the "execute" family