From f96435277e4c2b1e305f10f39206e281693f6232 Mon Sep 17 00:00:00 2001
From: Christian Poessinger <christian@poessinger.com>
Date: Sat, 14 Aug 2021 18:24:13 +0200
Subject: op-mode: combine two "show vpn" definitions

---
 op-mode-definitions/show-vpn.xml.in  | 20 --------------------
 op-mode-definitions/vpn-ipsec.xml.in |  6 ++++++
 2 files changed, 6 insertions(+), 20 deletions(-)
 delete mode 100644 op-mode-definitions/show-vpn.xml.in

(limited to 'op-mode-definitions')

diff --git a/op-mode-definitions/show-vpn.xml.in b/op-mode-definitions/show-vpn.xml.in
deleted file mode 100644
index 3fbc74ad1..000000000
--- a/op-mode-definitions/show-vpn.xml.in
+++ /dev/null
@@ -1,20 +0,0 @@
-<?xml version="1.0"?>
-<interfaceDefinition>
-  <node name="show">
-    <children>
-      <node name="vpn">
-       <properties>
-          <help>Show active remote access Virtual Private Network (VPN) sessions</help>
-       </properties>
-       <children>
-         <leafNode name="remote-access">
-            <properties>
-              <help>Show active VPN server sessions</help>
-            </properties>
-           <command>${vyos_op_scripts_dir}/show_vpn_ra.py</command>
-         </leafNode>
-        </children>
-      </node>
-    </children>
-  </node>
-</interfaceDefinition>
diff --git a/op-mode-definitions/vpn-ipsec.xml.in b/op-mode-definitions/vpn-ipsec.xml.in
index 20f275e9b..18b72b87c 100644
--- a/op-mode-definitions/vpn-ipsec.xml.in
+++ b/op-mode-definitions/vpn-ipsec.xml.in
@@ -140,6 +140,12 @@
                 </properties>
                 <command>sudo ip xfrm policy list</command>
               </node>
+              <leafNode name="remote-access">
+                 <properties>
+                   <help>Show active VPN server sessions</help>
+                 </properties>
+                <command>${vyos_op_scripts_dir}/show_vpn_ra.py</command>
+              </leafNode>
               <node name="sa">
                 <properties>
                   <help>Show all active IPSec Security Associations (SA)</help>
-- 
cgit v1.2.3


From b4629d14d8ec5c780f665222205a396eb4dc3158 Mon Sep 17 00:00:00 2001
From: Christian Poessinger <christian@poessinger.com>
Date: Sat, 14 Aug 2021 18:24:54 +0200
Subject: op-mode: vpn: use  over absolute path

---
 op-mode-definitions/vpn-ipsec.xml.in | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

(limited to 'op-mode-definitions')

diff --git a/op-mode-definitions/vpn-ipsec.xml.in b/op-mode-definitions/vpn-ipsec.xml.in
index 18b72b87c..3d997c143 100644
--- a/op-mode-definitions/vpn-ipsec.xml.in
+++ b/op-mode-definitions/vpn-ipsec.xml.in
@@ -184,7 +184,7 @@
                     <command>if pgrep charon >/dev/null ; then sudo /usr/sbin/ipsec statusall ; else echo "IPSec process not running" ; fi</command>
                   </node>
                 </children>
-                <command>if pgrep charon >/dev/null ; then sudo /usr/libexec/vyos/op_mode/show_ipsec_sa.py ; else echo "IPSec process not running" ; fi</command>
+                <command>if pgrep charon >/dev/null ; then sudo ${vyos_op_scripts_dir}/show_ipsec_sa.py ; else echo "IPSec process not running" ; fi</command>
               </node>
               <node name="state">
                 <properties>
-- 
cgit v1.2.3


From 0f498d782c8fc3645355184cc59e88a16d1b230d Mon Sep 17 00:00:00 2001
From: Christian Poessinger <christian@poessinger.com>
Date: Tue, 17 Aug 2021 12:11:54 +0200
Subject: op-mode: T1513: bgp: xml: provide exact-match building block

---
 op-mode-definitions/include/bgp/afi-common.xml.i           |  7 +------
 op-mode-definitions/include/bgp/afi-ipv4-ipv6-common.xml.i | 14 ++------------
 op-mode-definitions/include/bgp/exact-match.xml.i          |  8 ++++++++
 3 files changed, 11 insertions(+), 18 deletions(-)
 create mode 100644 op-mode-definitions/include/bgp/exact-match.xml.i

(limited to 'op-mode-definitions')

diff --git a/op-mode-definitions/include/bgp/afi-common.xml.i b/op-mode-definitions/include/bgp/afi-common.xml.i
index 7fc59f3b0..0edeb9f81 100644
--- a/op-mode-definitions/include/bgp/afi-common.xml.i
+++ b/op-mode-definitions/include/bgp/afi-common.xml.i
@@ -7,12 +7,7 @@
     </completionHelp>
   </properties>
   <children>
-    <leafNode name="exact-match">
-      <properties>
-        <help>Exact match of the communities</help>
-      </properties>
-      <command>${vyos_op_scripts_dir}/vtysh_wrapper.sh $@</command>
-    </leafNode>
+    #include <include/bgp/exact-match.xml.i>
   </children>
   <command>${vyos_op_scripts_dir}/vtysh_wrapper.sh $@</command>
 </tagNode>
diff --git a/op-mode-definitions/include/bgp/afi-ipv4-ipv6-common.xml.i b/op-mode-definitions/include/bgp/afi-ipv4-ipv6-common.xml.i
index f1b699347..a51595b7f 100644
--- a/op-mode-definitions/include/bgp/afi-ipv4-ipv6-common.xml.i
+++ b/op-mode-definitions/include/bgp/afi-ipv4-ipv6-common.xml.i
@@ -22,12 +22,7 @@
       </properties>
       <command>${vyos_op_scripts_dir}/vtysh_wrapper.sh $@</command>
     </leafNode>
-    <leafNode name="exact-match">
-      <properties>
-        <help>Exact match of the communities</help>
-      </properties>
-      <command>${vyos_op_scripts_dir}/vtysh_wrapper.sh $@</command>
-    </leafNode>
+    #include <include/bgp/exact-match.xml.i>
     <leafNode name="graceful-shutdown">
       <properties>
         <help>Graceful shutdown (well-known community)</help>
@@ -105,12 +100,7 @@
     </completionHelp>
   </properties>
   <children>
-    <leafNode name="exact-match">
-      <properties>
-        <help>Show BGP routes exactly matching specified community list</help>
-      </properties>
-      <command>${vyos_op_scripts_dir}/vtysh_wrapper.sh $@</command>
-    </leafNode>
+    #include <include/bgp/exact-match.xml.i>
   </children>
   <command>${vyos_op_scripts_dir}/vtysh_wrapper.sh $@</command>
 </tagNode>
diff --git a/op-mode-definitions/include/bgp/exact-match.xml.i b/op-mode-definitions/include/bgp/exact-match.xml.i
new file mode 100644
index 000000000..49026db9b
--- /dev/null
+++ b/op-mode-definitions/include/bgp/exact-match.xml.i
@@ -0,0 +1,8 @@
+<!-- included start from bgp/exact-match.xml.i -->
+<leafNode name="exact-match">
+  <properties>
+    <help>Exact match of the communities</help>
+  </properties>
+  <command>${vyos_op_scripts_dir}/vtysh_wrapper.sh $@</command>
+</leafNode>
+<!-- included end -->
-- 
cgit v1.2.3


From 6c0044d12ecf762d9d362d6b09cdaa4c8227db58 Mon Sep 17 00:00:00 2001
From: Christian Poessinger <christian@poessinger.com>
Date: Tue, 17 Aug 2021 12:13:04 +0200
Subject: op-mode: T1513: bgp: add "show bgp large-community AA:BB:CC
 exat-match"

---
 op-mode-definitions/include/bgp/afi-common.xml.i | 3 +++
 1 file changed, 3 insertions(+)

(limited to 'op-mode-definitions')

diff --git a/op-mode-definitions/include/bgp/afi-common.xml.i b/op-mode-definitions/include/bgp/afi-common.xml.i
index 0edeb9f81..ef6709ae8 100644
--- a/op-mode-definitions/include/bgp/afi-common.xml.i
+++ b/op-mode-definitions/include/bgp/afi-common.xml.i
@@ -19,6 +19,9 @@
     </completionHelp>
   </properties>
   <command>${vyos_op_scripts_dir}/vtysh_wrapper.sh $@</command>
+  <children>
+    #include <include/bgp/exact-match.xml.i>
+  </children>
 </tagNode>
 <leafNode name="statistics">
   <properties>
-- 
cgit v1.2.3


From 6bb2f6e22706bb1c5874a58e74585160164011f6 Mon Sep 17 00:00:00 2001
From: Christian Poessinger <christian@poessinger.com>
Date: Tue, 17 Aug 2021 13:31:39 +0200
Subject: op-mode: xml: bgp: fix large-community help string

---
 op-mode-definitions/include/bgp/afi-common.xml.i | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

(limited to 'op-mode-definitions')

diff --git a/op-mode-definitions/include/bgp/afi-common.xml.i b/op-mode-definitions/include/bgp/afi-common.xml.i
index ef6709ae8..e28dfe5d7 100644
--- a/op-mode-definitions/include/bgp/afi-common.xml.i
+++ b/op-mode-definitions/include/bgp/afi-common.xml.i
@@ -13,7 +13,7 @@
 </tagNode>
 <tagNode name="large-community">
   <properties>
-    <help>List of large-community numbers</help>
+    <help>Display routes matching the large-communities</help>
     <completionHelp>
       <list>AA:BB:CC</list>
     </completionHelp>
-- 
cgit v1.2.3


From 90f778fc04b322867f6fec023328330adc3fd85f Mon Sep 17 00:00:00 2001
From: Christian Poessinger <christian@poessinger.com>
Date: Tue, 17 Aug 2021 13:32:21 +0200
Subject: op-mode: T1513: bgp: add "show bgp large-community-list" commnad

---
 op-mode-definitions/include/bgp/afi-common.xml.i | 12 ++++++++++++
 1 file changed, 12 insertions(+)

(limited to 'op-mode-definitions')

diff --git a/op-mode-definitions/include/bgp/afi-common.xml.i b/op-mode-definitions/include/bgp/afi-common.xml.i
index e28dfe5d7..4d5f56656 100644
--- a/op-mode-definitions/include/bgp/afi-common.xml.i
+++ b/op-mode-definitions/include/bgp/afi-common.xml.i
@@ -23,6 +23,18 @@
     #include <include/bgp/exact-match.xml.i>
   </children>
 </tagNode>
+<tagNode name="large-community-list">
+  <properties>
+    <help>Display routes matching the large-community-list</help>
+    <completionHelp>
+      <path>policy large-community-list</path>
+    </completionHelp>
+  </properties>
+  <command>${vyos_op_scripts_dir}/vtysh_wrapper.sh $@</command>
+  <children>
+    #include <include/bgp/exact-match.xml.i>
+  </children>
+</tagNode>
 <leafNode name="statistics">
   <properties>
     <help>RIB advertisement statistics</help>
-- 
cgit v1.2.3


From a4e1a9235ff5e4aef29cc013239c6d842af5c1ae Mon Sep 17 00:00:00 2001
From: Christian Poessinger <christian@poessinger.com>
Date: Thu, 19 Aug 2021 18:28:00 +0200
Subject: op-mode: bgp: T3759: add "show bgp ipv4|ipv6 vpn" commands

---
 .../include/bgp/afi-ipv4-ipv6-vpn.xml.i            | 23 ++++++++++++++++++++++
 .../include/bgp/show-bgp-common.xml.i              |  2 ++
 2 files changed, 25 insertions(+)
 create mode 100644 op-mode-definitions/include/bgp/afi-ipv4-ipv6-vpn.xml.i

(limited to 'op-mode-definitions')

diff --git a/op-mode-definitions/include/bgp/afi-ipv4-ipv6-vpn.xml.i b/op-mode-definitions/include/bgp/afi-ipv4-ipv6-vpn.xml.i
new file mode 100644
index 000000000..ba6edb256
--- /dev/null
+++ b/op-mode-definitions/include/bgp/afi-ipv4-ipv6-vpn.xml.i
@@ -0,0 +1,23 @@
+<!-- included start from bgp/afi-ipv4-ipv6-vpn.xml.i -->
+<tagNode name="vpn">
+  <properties>
+    <help>Network in the BGP routing table to display</help>
+    <completionHelp>
+      <list>&lt;x.x.x.x&gt; &lt;x.x.x.x/x&gt; &lt;h:h:h:h:h:h:h:h&gt; &lt;h:h:h:h:h:h:h:h/x&gt;</list>
+    </completionHelp>
+  </properties>
+  <children>
+    #include <include/bgp/prefix-bestpath-multipath.xml.i>
+  </children>
+  <command>${vyos_op_scripts_dir}/vtysh_wrapper.sh $@</command>
+</tagNode>
+<node name="vpn">
+  <properties>
+    <help>VPN Address Family modifier</help>
+  </properties>
+  <children>
+    #include <include/bgp/afi-common.xml.i>
+    #include <include/bgp/afi-ipv4-ipv6-common.xml.i>
+  </children>
+</node>
+<!-- included end -->
diff --git a/op-mode-definitions/include/bgp/show-bgp-common.xml.i b/op-mode-definitions/include/bgp/show-bgp-common.xml.i
index b86b09056..0664b11fc 100644
--- a/op-mode-definitions/include/bgp/show-bgp-common.xml.i
+++ b/op-mode-definitions/include/bgp/show-bgp-common.xml.i
@@ -20,6 +20,7 @@
   <children>
     #include <include/bgp/afi-common.xml.i>
     #include <include/bgp/afi-ipv4-ipv6-common.xml.i>
+    #include <include/bgp/afi-ipv4-ipv6-vpn.xml.i>
   </children>
 </node>
 <tagNode name="ipv6">
@@ -41,6 +42,7 @@
   <children>
     #include <include/bgp/afi-common.xml.i>
     #include <include/bgp/afi-ipv4-ipv6-common.xml.i>
+    #include <include/bgp/afi-ipv4-ipv6-vpn.xml.i>
   </children>
 </node>
 <node name="l2vpn">
-- 
cgit v1.2.3


From aa58d5c58edef40619192d11b0dcafc36b1e5d89 Mon Sep 17 00:00:00 2001
From: Christian Poessinger <christian@poessinger.com>
Date: Sat, 21 Aug 2021 08:25:15 +0200
Subject: op-mode: nhrp: T3599: check if process is running instead of checking
 PID file

---
 op-mode-definitions/nhrp.xml.in | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

(limited to 'op-mode-definitions')

diff --git a/op-mode-definitions/nhrp.xml.in b/op-mode-definitions/nhrp.xml.in
index 9e746cc35..89508e2be 100644
--- a/op-mode-definitions/nhrp.xml.in
+++ b/op-mode-definitions/nhrp.xml.in
@@ -50,13 +50,13 @@
             <properties>
               <help>Show NHRP interface connection information</help>
             </properties>
-            <command>if [ -f /var/run/opennhrp.pid ]; then sudo opennhrpctl interface show; else echo OpenNHRP is not running.; fi</command>
+            <command>if pgrep opennhrp >/dev/null; then sudo opennhrpctl interface show; else echo OpenNHRP is not running; fi</command>
           </leafNode>
           <leafNode name="tunnel">
             <properties>
               <help>Show NHRP tunnel connection information</help>
             </properties>
-            <command>if [ -f /var/run/opennhrp.pid ]; then sudo opennhrpctl show ; else echo OpenNHRP is not running.; fi</command>
+            <command>if pgrep opennhrp >/dev/null; then sudo opennhrpctl show ; else echo OpenNHRP is not running; fi</command>
           </leafNode>
         </children>
       </node>
-- 
cgit v1.2.3


From 9ca60f94bf16b5958967d786f479842e454767dc Mon Sep 17 00:00:00 2001
From: Christian Poessinger <christian@poessinger.com>
Date: Sun, 22 Aug 2021 12:01:22 +0200
Subject: ipsec: T1210: op-mode command for Windows has no "profile" option

---
 op-mode-definitions/generate-ipsec-profile.xml.in | 31 -----------------------
 1 file changed, 31 deletions(-)

(limited to 'op-mode-definitions')

diff --git a/op-mode-definitions/generate-ipsec-profile.xml.in b/op-mode-definitions/generate-ipsec-profile.xml.in
index be9227971..8d1051b94 100644
--- a/op-mode-definitions/generate-ipsec-profile.xml.in
+++ b/op-mode-definitions/generate-ipsec-profile.xml.in
@@ -100,37 +100,6 @@
                           </completionHelp>
                         </properties>
                         <command>${vyos_op_scripts_dir}/ikev2_profile_generator.py --os windows --connection "$5" --remote "$7" --name "$9"</command>
-                        <children>
-                          <tagNode name="profile">
-                            <properties>
-                              <help>Profile name as seen under system profiles</help>
-                              <completionHelp>
-                                <list>&lt;name&gt;</list>
-                              </completionHelp>
-                            </properties>
-                            <command>${vyos_op_scripts_dir}/ikev2_profile_generator.py --os windows --connection "$5" --remote "$7" --name "$9" --profile "${11}"</command>
-                          </tagNode>
-                        </children>
-                      </tagNode>
-                      <tagNode name="profile">
-                        <properties>
-                          <help>Profile name as seen under system profiles</help>
-                          <completionHelp>
-                            <list>&lt;name&gt;</list>
-                          </completionHelp>
-                        </properties>
-                        <command>${vyos_op_scripts_dir}/ikev2_profile_generator.py --os windows --connection "$5" --remote "$7" --profile "$9"</command>
-                        <children>
-                          <tagNode name="name">
-                            <properties>
-                              <help>Connection name as seen in the VPN application</help>
-                              <completionHelp>
-                                <list>&lt;name&gt;</list>
-                              </completionHelp>
-                            </properties>
-                            <command>${vyos_op_scripts_dir}/ikev2_profile_generator.py --os windows --connection "$5" --remote "$7" --profile "$9" --name "${11}"</command>
-                          </tagNode>
-                        </children>
                       </tagNode>
                     </children>
                   </tagNode>
-- 
cgit v1.2.3


From a30d74f41647258d0c338c495ea7fea90dec3663 Mon Sep 17 00:00:00 2001
From: Christian Poessinger <christian@poessinger.com>
Date: Sun, 22 Aug 2021 18:30:40 +0200
Subject: container: op-mode: T3765: add "connect container mysql-server"
 command

---
 op-mode-definitions/connect.xml.in | 9 +++++++++
 1 file changed, 9 insertions(+)

(limited to 'op-mode-definitions')

diff --git a/op-mode-definitions/connect.xml.in b/op-mode-definitions/connect.xml.in
index 8f19eac70..88f91ae32 100644
--- a/op-mode-definitions/connect.xml.in
+++ b/op-mode-definitions/connect.xml.in
@@ -24,6 +24,15 @@
         </properties>
         <command>sudo ${vyos_op_scripts_dir}/connect_disconnect.py --connect "$3"</command>
       </tagNode>
+      <tagNode name="container">
+        <properties>
+          <help>Attach to a running container</help>
+          <completionHelp>
+            <path>container name</path>
+          </completionHelp>
+        </properties>
+        <command>echo "Use Ctrl+p and Ctrl+q to detach"; sudo podman attach "$3"</command>
+      </tagNode>
     </children>
   </node>
 </interfaceDefinition>
-- 
cgit v1.2.3


From 0e4b36f4c550baf151a1bbc68e4ed1bea8cd3c94 Mon Sep 17 00:00:00 2001
From: Christian Poessinger <christian@poessinger.com>
Date: Sun, 22 Aug 2021 19:23:25 +0200
Subject: container: op-mode: T3765: move "connect container" command to
 container.xml.in file

---
 op-mode-definitions/connect.xml.in    |  9 ---------
 op-mode-definitions/containers.xml.in | 13 +++++++++++++
 2 files changed, 13 insertions(+), 9 deletions(-)

(limited to 'op-mode-definitions')

diff --git a/op-mode-definitions/connect.xml.in b/op-mode-definitions/connect.xml.in
index 88f91ae32..8f19eac70 100644
--- a/op-mode-definitions/connect.xml.in
+++ b/op-mode-definitions/connect.xml.in
@@ -24,15 +24,6 @@
         </properties>
         <command>sudo ${vyos_op_scripts_dir}/connect_disconnect.py --connect "$3"</command>
       </tagNode>
-      <tagNode name="container">
-        <properties>
-          <help>Attach to a running container</help>
-          <completionHelp>
-            <path>container name</path>
-          </completionHelp>
-        </properties>
-        <command>echo "Use Ctrl+p and Ctrl+q to detach"; sudo podman attach "$3"</command>
-      </tagNode>
     </children>
   </node>
 </interfaceDefinition>
diff --git a/op-mode-definitions/containers.xml.in b/op-mode-definitions/containers.xml.in
index a22549dd9..4c95fa315 100644
--- a/op-mode-definitions/containers.xml.in
+++ b/op-mode-definitions/containers.xml.in
@@ -17,6 +17,19 @@
       </node>
     </children>
   </node>
+  <node name="connect">
+    <children>
+      <tagNode name="container">
+        <properties>
+          <help>Attach to a running container</help>
+          <completionHelp>
+            <path>container name</path>
+          </completionHelp>
+        </properties>
+        <command>echo "Use Ctrl+p and Ctrl+q to detach"; sudo podman attach "$3"</command>
+      </tagNode>
+    </children>
+  </node>
   <node name="delete">
     <children>
       <node name="container">
-- 
cgit v1.2.3


From deaa1e8b65bdaf89caa9855d659dd7da459cf415 Mon Sep 17 00:00:00 2001
From: Christian Poessinger <christian@poessinger.com>
Date: Sun, 22 Aug 2021 19:23:34 +0200
Subject: container: op-mode: T3765: add "restart container" command

---
 op-mode-definitions/containers.xml.in | 13 +++++++++++++
 1 file changed, 13 insertions(+)

(limited to 'op-mode-definitions')

diff --git a/op-mode-definitions/containers.xml.in b/op-mode-definitions/containers.xml.in
index 4c95fa315..94dd24369 100644
--- a/op-mode-definitions/containers.xml.in
+++ b/op-mode-definitions/containers.xml.in
@@ -71,4 +71,17 @@
       </node>
     </children>
   </node>
+  <node name="restart">
+    <children>
+      <tagNode name="container">
+        <properties>
+          <help>Restart a given container</help>
+          <completionHelp>
+            <path>container name</path>
+          </completionHelp>
+        </properties>
+        <command>sudo podman restart "$3"</command>
+      </tagNode>
+    </children>
+  </node>
 </interfaceDefinition>
-- 
cgit v1.2.3


From a1873a39f4fb9e8445b772b3fc1697f55314888a Mon Sep 17 00:00:00 2001
From: Christian Poessinger <christian@poessinger.com>
Date: Sun, 22 Aug 2021 20:35:46 +0200
Subject: container: op-mode: T3765: add "show log container" command

---
 op-mode-definitions/containers.xml.in | 13 +++++++++++++
 1 file changed, 13 insertions(+)

(limited to 'op-mode-definitions')

diff --git a/op-mode-definitions/containers.xml.in b/op-mode-definitions/containers.xml.in
index 94dd24369..8cc30d3a8 100644
--- a/op-mode-definitions/containers.xml.in
+++ b/op-mode-definitions/containers.xml.in
@@ -69,6 +69,19 @@
           </leafNode>
         </children>
       </node>
+      <node name="log">
+        <children>
+          <tagNode name="container">
+            <properties>
+              <help>Show logs from a given container</help>
+              <completionHelp>
+                <path>container name</path>
+              </completionHelp>
+            </properties>
+            <command>sudo podman logs --names "$4"</command>
+          </tagNode>
+        </children>
+      </node>
     </children>
   </node>
   <node name="restart">
-- 
cgit v1.2.3


From 536991d0c6f305256ce6ab5975d15116f027b7b6 Mon Sep 17 00:00:00 2001
From: Christian Poessinger <christian@poessinger.com>
Date: Sun, 22 Aug 2021 20:41:11 +0200
Subject: xml: op-mode: remove multiple "Reset a service" help definitions

That nasty workaround to always specify the same value for the node.def file
as the help text is no longer necessary after commit 17b5ac14 ("T3165: op-mode:
prevent override of populated node.def file with empty content".

The redundant definitions are no longer necessary.
---
 op-mode-definitions/dns-forwarding.xml.in  | 3 ---
 op-mode-definitions/ipv4-route.xml.in      | 6 ------
 op-mode-definitions/ipv6-route.xml.in      | 6 ------
 op-mode-definitions/openvpn.xml.in         | 3 ---
 op-mode-definitions/pppoe-server.xml.in    | 3 ---
 op-mode-definitions/reset-conntrack.xml.in | 3 ---
 op-mode-definitions/reset-vpn.xml.in       | 3 ---
 op-mode-definitions/terminal.xml.in        | 8 --------
 8 files changed, 35 deletions(-)

(limited to 'op-mode-definitions')

diff --git a/op-mode-definitions/dns-forwarding.xml.in b/op-mode-definitions/dns-forwarding.xml.in
index 36fe6b5ef..6574f2319 100644
--- a/op-mode-definitions/dns-forwarding.xml.in
+++ b/op-mode-definitions/dns-forwarding.xml.in
@@ -59,9 +59,6 @@
     </children>
   </node>
   <node name="reset">
-    <properties>
-      <help>Reset a service</help>
-    </properties>
     <children>
       <node name="dns">
         <properties>
diff --git a/op-mode-definitions/ipv4-route.xml.in b/op-mode-definitions/ipv4-route.xml.in
index aab3df0f1..8f001d5bb 100644
--- a/op-mode-definitions/ipv4-route.xml.in
+++ b/op-mode-definitions/ipv4-route.xml.in
@@ -20,11 +20,7 @@
       </node>
     </children>
   </node>
-
   <node name="reset">
-    <properties>
-      <help>Reset a service</help>
-    </properties>
     <children>
       <node name="ip">
         <properties>
@@ -56,7 +52,6 @@
               </tagNode>
             </children>
           </node>
-
           <node name="route">
             <properties>
               <help>Reset IP route</help>
@@ -68,7 +63,6 @@
                 </properties>
                 <command>sudo ip route flush cache</command>
               </leafNode>
-
               <tagNode name="cache">
                 <properties>
                   <help>Flush the kernel route cache for a given route</help>
diff --git a/op-mode-definitions/ipv6-route.xml.in b/op-mode-definitions/ipv6-route.xml.in
index 7f188fdb2..5f20444d4 100644
--- a/op-mode-definitions/ipv6-route.xml.in
+++ b/op-mode-definitions/ipv6-route.xml.in
@@ -28,11 +28,7 @@
       </node>
     </children>
   </node>
-
   <node name="reset">
-    <properties>
-      <help>Reset a service</help>
-    </properties>
     <children>
       <node name="ipv6">
         <properties>
@@ -64,7 +60,6 @@
               </tagNode>
             </children>
           </node>
-
           <node name="route">
             <properties>
               <help>Reset IPv6 route</help>
@@ -76,7 +71,6 @@
                 </properties>
                 <command>sudo ip -f inet6 route flush cache</command>
               </leafNode>
-
               <tagNode name="cache">
                 <properties>
                   <help>Flush the kernel IPv6 route cache for a given route</help>
diff --git a/op-mode-definitions/openvpn.xml.in b/op-mode-definitions/openvpn.xml.in
index 781fbdc9d..8f7419545 100644
--- a/op-mode-definitions/openvpn.xml.in
+++ b/op-mode-definitions/openvpn.xml.in
@@ -1,9 +1,6 @@
 <?xml version="1.0"?>
 <interfaceDefinition>
   <node name="reset">
-    <properties>
-      <help>Reset a service</help>
-    </properties>
     <children>
       <node name="openvpn">
         <children>
diff --git a/op-mode-definitions/pppoe-server.xml.in b/op-mode-definitions/pppoe-server.xml.in
index 6efdc5a48..835e03aab 100644
--- a/op-mode-definitions/pppoe-server.xml.in
+++ b/op-mode-definitions/pppoe-server.xml.in
@@ -40,9 +40,6 @@
     </children>
   </node>
   <node name="reset">
-    <properties>
-      <help>Reset a service</help>
-    </properties>
     <children>
       <node name="pppoe-server">
         <properties>
diff --git a/op-mode-definitions/reset-conntrack.xml.in b/op-mode-definitions/reset-conntrack.xml.in
index 827ba4af4..9c8265f77 100644
--- a/op-mode-definitions/reset-conntrack.xml.in
+++ b/op-mode-definitions/reset-conntrack.xml.in
@@ -1,9 +1,6 @@
 <?xml version="1.0"?>
 <interfaceDefinition>
   <node name="reset">
-    <properties>
-      <help>Reset a service</help>
-    </properties>
     <children>
       <node name="conntrack">
         <properties>
diff --git a/op-mode-definitions/reset-vpn.xml.in b/op-mode-definitions/reset-vpn.xml.in
index 71dbb4ed9..94ee1c7df 100644
--- a/op-mode-definitions/reset-vpn.xml.in
+++ b/op-mode-definitions/reset-vpn.xml.in
@@ -1,9 +1,6 @@
 <?xml version="1.0"?>
 <interfaceDefinition>
   <node name="reset">
-    <properties>
-      <help>Reset a service</help>
-    </properties>
     <children>
       <node name="vpn">
         <properties>
diff --git a/op-mode-definitions/terminal.xml.in b/op-mode-definitions/terminal.xml.in
index 9c4e629cb..2a76de146 100644
--- a/op-mode-definitions/terminal.xml.in
+++ b/op-mode-definitions/terminal.xml.in
@@ -40,7 +40,6 @@
         </properties>
         <command>builtin $3</command>
       </tagNode>
-
       <node name="console">
         <properties>
           <help>Control console behaviors</help>
@@ -54,13 +53,11 @@
           </leafNode>
         </children>
       </node>
-
       <node name="terminal">
         <properties>
           <help>Control terminal behaviors</help>
         </properties>
         <children>
-
           <node name="key">
             <properties>
               <help>Set key behaviors</help>
@@ -77,7 +74,6 @@
               </tagNode>
             </children>
           </node>
-
           <node name="pager">
             <properties>
               <help>Set terminal pager to default (less)</help>
@@ -93,7 +89,6 @@
             </properties>
             <command>VYATTA_PAGER=$4</command>
           </tagNode>
-
           <tagNode name="length">
             <properties>
               <help>Set terminal to given number of rows (0 disables paging)</help>
@@ -103,7 +98,6 @@
             </properties>
             <command>if [ "$4" -eq 0 ]; then VYATTA_PAGER=cat; else VYATTA_PAGER=${_vyatta_default_pager}; stty rows $4; fi</command>
           </tagNode>
-
           <tagNode name="width">
             <properties>
               <help>Set terminal to given number of columns</help>
@@ -117,6 +111,4 @@
       </node>
     </children>
   </node>
-
-
 </interfaceDefinition>
-- 
cgit v1.2.3


From d225f938b2250229621c7013c47ce52b839ae169 Mon Sep 17 00:00:00 2001
From: Christian Poessinger <christian@poessinger.com>
Date: Sun, 22 Aug 2021 20:42:21 +0200
Subject: xml: op-mode: add missing help test for "monitor protocol ospf"
 commands

---
 op-mode-definitions/monitor-protocol.xml.in | 10 +++++++---
 1 file changed, 7 insertions(+), 3 deletions(-)

(limited to 'op-mode-definitions')

diff --git a/op-mode-definitions/monitor-protocol.xml.in b/op-mode-definitions/monitor-protocol.xml.in
index 6a6bd50f3..f3af3575c 100644
--- a/op-mode-definitions/monitor-protocol.xml.in
+++ b/op-mode-definitions/monitor-protocol.xml.in
@@ -263,13 +263,14 @@
           </node>
           <node name="ospf">
             <properties>
-              <help>Monitor the Open Shortest Path First (OSPF) protocol</help>
+              <help>Monitor Open Shortest Path First (OSPF) protocol</help>
             </properties>
             <children>
               #include <include/monitor-background.xml.i>
-
-
               <node name="disable">
+                <properties>
+                  <help>Disable Open Shortest Path First (OSPF) debugging</help>
+                </properties>
                 <children>
                   <node name="event">
                     <properties>
@@ -458,6 +459,9 @@
                 </children>
               </node>
               <node name="enable">
+                <properties>
+                  <help>Enable Open Shortest Path First (OSPF) debugging</help>
+                </properties>
                 <children>
                   <node name="event">
                     <properties>
-- 
cgit v1.2.3


From 68567d60626aa7ee5f990af792eb63f6887d93de Mon Sep 17 00:00:00 2001
From: Christian Poessinger <christian@poessinger.com>
Date: Sun, 22 Aug 2021 20:42:56 +0200
Subject: xml: op-mode: add missing help test for "reset openvpn" command

---
 op-mode-definitions/openvpn.xml.in | 3 +++
 1 file changed, 3 insertions(+)

(limited to 'op-mode-definitions')

diff --git a/op-mode-definitions/openvpn.xml.in b/op-mode-definitions/openvpn.xml.in
index 8f7419545..73cbbe501 100644
--- a/op-mode-definitions/openvpn.xml.in
+++ b/op-mode-definitions/openvpn.xml.in
@@ -3,6 +3,9 @@
   <node name="reset">
     <children>
       <node name="openvpn">
+        <properties>
+          <help>Reset OpenVPN client/server connections</help>
+        </properties>
         <children>
           <tagNode name="client">
             <properties>
-- 
cgit v1.2.3


From 1b0d7b9e027672a95535d18e550919aff7e41ee3 Mon Sep 17 00:00:00 2001
From: Christian Poessinger <christian@poessinger.com>
Date: Sun, 22 Aug 2021 20:51:34 +0200
Subject: log

---
 op-mode-definitions/containers.xml.in | 9 +++++++++
 1 file changed, 9 insertions(+)

(limited to 'op-mode-definitions')

diff --git a/op-mode-definitions/containers.xml.in b/op-mode-definitions/containers.xml.in
index 8cc30d3a8..1ed569407 100644
--- a/op-mode-definitions/containers.xml.in
+++ b/op-mode-definitions/containers.xml.in
@@ -61,6 +61,15 @@
             </properties>
             <command>sudo ${vyos_op_scripts_dir}/containers_op.py --image</command>
           </leafNode>
+          <tagNode name="log">
+            <properties>
+              <help>Show logs from a given container</help>
+              <completionHelp>
+                <path>container name</path>
+              </completionHelp>
+            </properties>
+            <command>sudo podman logs --names "$4"</command>
+          </tagNode>
           <leafNode name="network">
             <properties>
               <help>Show available container networks</help>
-- 
cgit v1.2.3


From 461e3e1b47813d808bf22c9f8e2d8d8fb427fac2 Mon Sep 17 00:00:00 2001
From: Christian Poessinger <christian@poessinger.com>
Date: Mon, 23 Aug 2021 11:46:20 +0200
Subject: container: T2216: add completion helper for "delete container image"

---
 op-mode-definitions/containers.xml.in | 3 +++
 1 file changed, 3 insertions(+)

(limited to 'op-mode-definitions')

diff --git a/op-mode-definitions/containers.xml.in b/op-mode-definitions/containers.xml.in
index 1ed569407..e93487105 100644
--- a/op-mode-definitions/containers.xml.in
+++ b/op-mode-definitions/containers.xml.in
@@ -40,6 +40,9 @@
           <tagNode name="image">
             <properties>
               <help>Delete container image</help>
+              <completionHelp>
+                <script>sudo podman image ls -q</script>
+              </completionHelp>
             </properties>
             <command>sudo ${vyos_op_scripts_dir}/containers_op.py --remove "${4}"</command>
           </tagNode>
-- 
cgit v1.2.3


From a1f82a06e1a1788164f52ef291a1275568912b9b Mon Sep 17 00:00:00 2001
From: Christian Poessinger <christian@poessinger.com>
Date: Mon, 23 Aug 2021 14:42:54 +0200
Subject: container: T2216: op-mode now supports updating the image for a given
 container

---
 op-mode-definitions/containers.xml.in | 20 ++++++++++++++
 src/op_mode/containers_op.py          | 49 ++++++++++++++++++++++++-----------
 2 files changed, 54 insertions(+), 15 deletions(-)

(limited to 'op-mode-definitions')

diff --git a/op-mode-definitions/containers.xml.in b/op-mode-definitions/containers.xml.in
index e93487105..efa72e1a4 100644
--- a/op-mode-definitions/containers.xml.in
+++ b/op-mode-definitions/containers.xml.in
@@ -109,4 +109,24 @@
       </tagNode>
     </children>
   </node>
+  <node name="update">
+    <children>
+      <node name="container">
+        <properties>
+          <help>Update a container image</help>
+        </properties>
+        <children>
+          <tagNode name="image">
+            <properties>
+              <help>Delete container image</help>
+              <completionHelp>
+                <path>container name</path>
+              </completionHelp>
+            </properties>
+            <command>sudo ${vyos_op_scripts_dir}/containers_op.py --update "${4}"</command>
+          </tagNode>
+        </children>
+      </node>
+    </children>
+  </node>
 </interfaceDefinition>
diff --git a/src/op_mode/containers_op.py b/src/op_mode/containers_op.py
index 1e3fc3a8f..bc317029c 100755
--- a/src/op_mode/containers_op.py
+++ b/src/op_mode/containers_op.py
@@ -15,10 +15,10 @@
 # along with this program.  If not, see <http://www.gnu.org/licenses/>.
 
 import argparse
-from vyos.configquery import query_context, ConfigQueryError
-from vyos.util import cmd
 
-config, op = query_context()
+from getpass import getuser
+from vyos.configquery import ConfigTreeQuery
+from vyos.util import cmd
 
 parser = argparse.ArgumentParser()
 parser.add_argument("-a", "--all", action="store_true", help="Show all containers")
@@ -26,34 +26,53 @@ parser.add_argument("-i", "--image", action="store_true", help="Show container i
 parser.add_argument("-n", "--networks", action="store_true", help="Show container images")
 parser.add_argument("-p", "--pull", action="store", help="Pull image for container")
 parser.add_argument("-d", "--remove", action="store", help="Delete container image")
+parser.add_argument("-u", "--update", action="store", help="Update given container image")
 
-if not config.exists(['container']):
+config = ConfigTreeQuery()
+base = ['container']
+if not config.exists(base):
     print('Containers not configured')
     exit(0)
 
+if getuser() != 'root':
+    raise OSError('This functions needs to be run as root to return correct results!')
+
 if __name__ == '__main__':
     args = parser.parse_args()
 
     if args.all:
         print(cmd('podman ps --all'))
-        exit(0)
-    if args.image:
+
+    elif args.image:
         print(cmd('podman image ls'))
-        exit(0)
-    if args.networks:
+
+    elif args.networks:
         print(cmd('podman network ls'))
-        exit(0)
-    if args.pull:
+
+    elif args.pull:
         image = args.pull
         try:
-            print(cmd(f'sudo podman image pull {image}'))
+            print(cmd(f'podman image pull {image}'))
         except:
             print(f'Can\'t find or download image "{image}"')
-        exit(0)
-    if args.remove:
+
+    elif args.remove:
         image = args.remove
         try:
-            print(cmd(f'sudo podman image rm {image}'))
+            print(cmd(f'podman image rm {image}'))
         except:
             print(f'Can\'t delete image "{image}"')
-        exit(0)
+
+    elif args.update:
+        tmp = config.get_config_dict(base + ['name', args.update],
+                                     key_mangling=('-', '_'), get_first_key=True)
+        try:
+            image = tmp['image']
+            print(cmd(f'podman image pull {image}'))
+        except:
+            print(f'Can\'t find or download image "{image}"')
+    else:
+        parser.print_help()
+        exit(1)
+
+    exit(0)
-- 
cgit v1.2.3


From f3ff81f4f31cd3ecb5d648caff674663943db42f Mon Sep 17 00:00:00 2001
From: Christian Poessinger <christian@poessinger.com>
Date: Mon, 23 Aug 2021 21:04:59 +0200
Subject: container: op-mode: T3765: "connect container" will now drop you to a
 shell

Commit a30d74f4 (container: op-mode: T3765: add "connect container mysql-server")
added a CLI op-mode command to attach to a container - users typically not want
to attach and consume stdout (can be done via logs) but rather wan't to debug
inside the container image.

vyos@vyos:~$ connect container unifi
USER         PID %CPU %MEM    VSZ   RSS TTY      STAT START   TIME COMMAND
root         202  0.0  0.0   4640   828 pts/1    Ss   21:06   0:00 /bin/sh
root         203  0.0  0.0  34416  2872 pts/1    R+   21:06   0:00  \_ ps faux
root         187  0.0  0.0  18388  3124 ?        S    21:03   0:00 /bin/bash
root         186  0.0  0.0   4640   788 ?        S    21:03   0:00 /bin/sh
root         185  0.0  0.0   4640   824 ?        S    21:03   0:00 /bin/sh
root         184  0.0  0.0   4640   836 ?        S    21:03   0:00 /bin/sh
root           1  0.0  0.0  18520  3228 pts/0    Ss+  20:50   0:00 bash /usr/local/bin/docker-entrypoint.sh unifi
root          12  4.8 14.2 3688080 572756 pts/0  Sl+  20:50   0:48 java -Dunifi.datadir=/unifi/data -Dunifi.logdir=/unifi/log -Dunifi.rundir=/var/run/unifi -
root          35  0.7  3.4 1102700 139752 pts/0  Sl+  20:50   0:07  \_ bin/mongod --dbpath /usr/lib/unifi/data/db --port 27117 --unixSocketPrefix /usr/lib/un

Linux 57c689f739ed 5.10.60-amd64-vyos #1 SMP Fri Aug 20 14:44:59 UTC 2021 x86_64 x86_64 x86_64 GNU/Linux
---
 op-mode-definitions/containers.xml.in | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

(limited to 'op-mode-definitions')

diff --git a/op-mode-definitions/containers.xml.in b/op-mode-definitions/containers.xml.in
index efa72e1a4..b2b318786 100644
--- a/op-mode-definitions/containers.xml.in
+++ b/op-mode-definitions/containers.xml.in
@@ -26,7 +26,7 @@
             <path>container name</path>
           </completionHelp>
         </properties>
-        <command>echo "Use Ctrl+p and Ctrl+q to detach"; sudo podman attach "$3"</command>
+        <command>sudo podman exec --interactive --tty "$3" /bin/sh</command>
       </tagNode>
     </children>
   </node>
-- 
cgit v1.2.3


From 059307f924c604eb2bdeab19a2db8ce6d8e09f90 Mon Sep 17 00:00:00 2001
From: Daniil Baturin <daniil@vyos.io>
Date: Tue, 24 Aug 2021 09:17:58 -0500
Subject: T3773: delete the original "show system integrity" command

---
 op-mode-definitions/show-system.xml.in |  6 ---
 src/op_mode/show_system_integrity.py   | 70 ----------------------------------
 2 files changed, 76 deletions(-)
 delete mode 100755 src/op_mode/show_system_integrity.py

(limited to 'op-mode-definitions')

diff --git a/op-mode-definitions/show-system.xml.in b/op-mode-definitions/show-system.xml.in
index 5e9bf719e..18a28868d 100644
--- a/op-mode-definitions/show-system.xml.in
+++ b/op-mode-definitions/show-system.xml.in
@@ -55,12 +55,6 @@
             </properties>
             <command>${vyos_op_scripts_dir}/show_cpu.py</command>
           </leafNode>
-          <leafNode name= "integrity">
-            <properties>
-              <help>Checks overall system integrity</help>
-            </properties>
-            <command>sudo ${vyos_op_scripts_dir}/show_system_integrity.py</command>
-          </leafNode>
           <leafNode name="kernel-messages">
             <properties>
               <help>Show messages in kernel ring buffer</help>
diff --git a/src/op_mode/show_system_integrity.py b/src/op_mode/show_system_integrity.py
deleted file mode 100755
index c34d41e80..000000000
--- a/src/op_mode/show_system_integrity.py
+++ /dev/null
@@ -1,70 +0,0 @@
-#!/usr/bin/env python3
-#
-# Copyright (C) 2020 VyOS maintainers and contributors
-#
-# This program is free software; you can redistribute it and/or modify
-# it under the terms of the GNU General Public License version 2 or later as
-# published by the Free Software Foundation.
-#
-# This program is distributed in the hope that it will be useful,
-# but WITHOUT ANY WARRANTY; without even the implied warranty of
-# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
-# GNU General Public License for more details.
-#
-# You should have received a copy of the GNU General Public License
-# along with this program.  If not, see <http://www.gnu.org/licenses/>.
-#
-#
-
-import sys
-import os
-import re
-import json
-from datetime import datetime, timedelta
-
-version_file = r'/usr/share/vyos/version.json'
-
-
-def _get_sys_build_version():
-    if not os.path.exists(version_file):
-        return None
-    buf = open(version_file, 'r').read()
-    j = json.loads(buf)
-    if not 'built_on' in j:
-        return None
-    return datetime.strptime(j['built_on'], '%a %d %b %Y %H:%M %Z')
-
-
-def _check_pkgs(build_stamp):
-    pkg_diffs = {
-        'buildtime': str(build_stamp),
-        'pkg': {}
-    }
-
-    pkg_info = os.listdir('/var/lib/dpkg/info/')
-    for file in pkg_info:
-        if re.search('\.list$', file):
-            fts = os.stat('/var/lib/dpkg/info/' + file).st_mtime
-            dt_str = (datetime.utcfromtimestamp(
-                fts).strftime('%Y-%m-%d %H:%M:%S'))
-            fdt = datetime.strptime(dt_str, '%Y-%m-%d %H:%M:%S')
-            if fdt > build_stamp:
-                pkg_diffs['pkg'].update(
-                    {str(re.sub('\.list', '', file)): str(fdt)})
-
-    if len(pkg_diffs['pkg']) != 0:
-        return pkg_diffs
-    else:
-        return None
-
-
-if __name__ == '__main__':
-    built_date = _get_sys_build_version()
-    if not built_date:
-        sys.exit(1)
-    pkgs = _check_pkgs(built_date)
-    if pkgs:
-        print (
-            "The following packages don\'t fit the image creation time\nbuild time:\t" + pkgs['buildtime'])
-        for k, v in pkgs['pkg'].items():
-            print ("installed: " + v + '\t' + k)
-- 
cgit v1.2.3


From 5b0fce20c2c5afd2ecfb7544e13eb623f3502443 Mon Sep 17 00:00:00 2001
From: Christian Poessinger <christian@poessinger.com>
Date: Wed, 25 Aug 2021 14:44:21 +0200
Subject: op-mode: T3776: drop "frr" level from "restart frr
 ospfd|bgpd|staticd" commands

The current command to restart any of the FRR processes is:

vyos@vyos:~$ restart frr
Possible completions:
  <Enter>       Execute the current command
  bfdd          Restart Bidirectional Forwarding Detection daemon
  bgpd          Restart Border Gateway Protocol daemon
  ospf6d        Restart OSPFv3 daemon
  ospfd         Restart OSPFv2 daemon
  ripd          Restart Routing Information Protocol daemon
  ripngd        Restart RIPng daemon
  staticd       Restart Static Route daemon
  zebra         Restart IP routing manager daemon

From a real-life example: Two engineers needed 5 minutes to figure it is under
"restart frr" - that is why this commit drops the artificial "frr" level on the
op-mode commands to restart routing protocol daemons.

It's less intuitive to have "restart frr ospfd" or "restart frr bgpd" compared
to "restart ospf" and "restart bgp" - we have the same for "restart ssh" or
"restart snmp" and not "restart openssh sshd".

This commit also drops the d (daemon) suffix of the op-mode comamands so the
commands align with the VyOS CLI, else there would be a miss-understanding from
ospf6d to ospfv3.

(cherry picked from commit 8ad8b0d51bf21c583e6d687576cb1a61195e7215)
---
 op-mode-definitions/restart-frr.xml.in | 104 ++++++++++++++++-----------------
 1 file changed, 51 insertions(+), 53 deletions(-)

(limited to 'op-mode-definitions')

diff --git a/op-mode-definitions/restart-frr.xml.in b/op-mode-definitions/restart-frr.xml.in
index 96ad1a650..a5ba5b11f 100644
--- a/op-mode-definitions/restart-frr.xml.in
+++ b/op-mode-definitions/restart-frr.xml.in
@@ -2,62 +2,60 @@
 <interfaceDefinition>
   <node name="restart">
     <children>
-      <node name="frr">
+      <leafNode name="all">
         <properties>
-          <help>Restart FRRouting daemons</help>
+          <help>Restart all routing daemons</help>
         </properties>
         <command>sudo ${vyos_op_scripts_dir}/restart_frr.py --action restart</command>
-        <children>
-          <leafNode name="bfdd">
-            <properties>
-              <help>Restart Bidirectional Forwarding Detection daemon</help>
-            </properties>
-            <command>sudo ${vyos_op_scripts_dir}/restart_frr.py --action restart --daemon bfdd</command>
-          </leafNode>
-          <leafNode name="bgpd">
-            <properties>
-              <help>Restart Border Gateway Protocol daemon</help>
-            </properties>
-            <command>sudo ${vyos_op_scripts_dir}/restart_frr.py --action restart --daemon bgpd</command>
-          </leafNode>
-          <leafNode name="ospfd">
-            <properties>
-              <help>Restart OSPFv2 daemon</help>
-            </properties>
-            <command>sudo ${vyos_op_scripts_dir}/restart_frr.py --action restart --daemon ospfd</command>
-          </leafNode>
-          <leafNode name="ospf6d">
-            <properties>
-              <help>Restart OSPFv3 daemon</help>
-            </properties>
-            <command>sudo ${vyos_op_scripts_dir}/restart_frr.py --action restart --daemon ospf6d</command>
-          </leafNode>
-          <leafNode name="ripd">
-            <properties>
-              <help>Restart Routing Information Protocol daemon</help>
-            </properties>
-            <command>sudo ${vyos_op_scripts_dir}/restart_frr.py --action restart --daemon ripd</command>
-          </leafNode>
-          <leafNode name="ripngd">
-            <properties>
-              <help>Restart RIPng daemon</help>
-            </properties>
-            <command>sudo ${vyos_op_scripts_dir}/restart_frr.py --action restart --daemon ripngd</command>
-          </leafNode>
-          <leafNode name="staticd">
-            <properties>
-              <help>Restart Static Route daemon</help>
-            </properties>
-            <command>sudo ${vyos_op_scripts_dir}/restart_frr.py --action restart --daemon staticd</command>
-          </leafNode>
-          <leafNode name="zebra">
-            <properties>
-              <help>Restart IP routing manager daemon</help>
-            </properties>
-            <command>sudo ${vyos_op_scripts_dir}/restart_frr.py --action restart --daemon zebra</command>
-          </leafNode>
-        </children>
-      </node>
+      </leafNode>
+      <leafNode name="bfd">
+        <properties>
+          <help>Restart Bidirectional Forwarding Detection (BFD) daemon</help>
+        </properties>
+        <command>sudo ${vyos_op_scripts_dir}/restart_frr.py --action restart --daemon bfdd</command>
+      </leafNode>
+      <leafNode name="bgp">
+        <properties>
+          <help>Restart Border Gateway Protocol (BGP) routing daemon</help>
+        </properties>
+        <command>sudo ${vyos_op_scripts_dir}/restart_frr.py --action restart --daemon bgpd</command>
+      </leafNode>
+      <leafNode name="ospf">
+        <properties>
+          <help>Restart Open Shortest Path First (OSPF) routing daemon</help>
+        </properties>
+        <command>sudo ${vyos_op_scripts_dir}/restart_frr.py --action restart --daemon ospfd</command>
+      </leafNode>
+      <leafNode name="ospfv3">
+        <properties>
+          <help>Restart IPv6 Open Shortest Path First (OSPFv3) routing daemon</help>
+        </properties>
+        <command>sudo ${vyos_op_scripts_dir}/restart_frr.py --action restart --daemon ospf6d</command>
+      </leafNode>
+      <leafNode name="rip">
+        <properties>
+          <help>Restart Routing Information Protocol (RIP) routing daemon</help>
+        </properties>
+        <command>sudo ${vyos_op_scripts_dir}/restart_frr.py --action restart --daemon ripd</command>
+      </leafNode>
+      <leafNode name="ripng">
+        <properties>
+          <help>Restart Routing Information Protocol NG (RIPng) routing daemon</help>
+        </properties>
+        <command>sudo ${vyos_op_scripts_dir}/restart_frr.py --action restart --daemon ripngd</command>
+      </leafNode>
+      <leafNode name="static">
+        <properties>
+          <help>Restart static routing daemon</help>
+        </properties>
+        <command>sudo ${vyos_op_scripts_dir}/restart_frr.py --action restart --daemon staticd</command>
+      </leafNode>
+      <leafNode name="zebra">
+        <properties>
+          <help>Restart Routing Information Base (RIB) manager daemon</help>
+        </properties>
+        <command>sudo ${vyos_op_scripts_dir}/restart_frr.py --action restart --daemon zebra</command>
+      </leafNode>
     </children>
   </node>
 </interfaceDefinition>
-- 
cgit v1.2.3


From 3cca26f6dcf74ae430cc557f67a4116adaec19fe Mon Sep 17 00:00:00 2001
From: Christian Poessinger <christian@poessinger.com>
Date: Wed, 25 Aug 2021 14:55:10 +0200
Subject: op-mode: frr: T1514: add possibility to restart isis daemon

(cherry picked from commit b4b2c91127289c7b62afb24304054d57357a48c5)
---
 op-mode-definitions/restart-frr.xml.in | 6 ++++++
 src/op_mode/restart_frr.py             | 2 +-
 2 files changed, 7 insertions(+), 1 deletion(-)

(limited to 'op-mode-definitions')

diff --git a/op-mode-definitions/restart-frr.xml.in b/op-mode-definitions/restart-frr.xml.in
index a5ba5b11f..475bd1ee8 100644
--- a/op-mode-definitions/restart-frr.xml.in
+++ b/op-mode-definitions/restart-frr.xml.in
@@ -20,6 +20,12 @@
         </properties>
         <command>sudo ${vyos_op_scripts_dir}/restart_frr.py --action restart --daemon bgpd</command>
       </leafNode>
+      <leafNode name="isis">
+        <properties>
+          <help>Restart Intermediate System to Intermediate System (IS-IS) routing daemon</help>
+        </properties>
+        <command>sudo ${vyos_op_scripts_dir}/restart_frr.py --action restart --daemon isisd</command>
+      </leafNode>
       <leafNode name="ospf">
         <properties>
           <help>Restart Open Shortest Path First (OSPF) routing daemon</help>
diff --git a/src/op_mode/restart_frr.py b/src/op_mode/restart_frr.py
index d1b66b33f..0b2322478 100755
--- a/src/op_mode/restart_frr.py
+++ b/src/op_mode/restart_frr.py
@@ -155,7 +155,7 @@ def _check_args_daemon(daemons):
 # define program arguments
 cmd_args_parser = argparse.ArgumentParser(description='restart frr daemons')
 cmd_args_parser.add_argument('--action', choices=['restart'], required=True, help='action to frr daemons')
-cmd_args_parser.add_argument('--daemon', choices=['bfdd', 'bgpd', 'ospfd', 'ospf6d', 'ripd', 'ripngd', 'staticd', 'zebra'], required=False,  nargs='*', help='select single or multiple daemons')
+cmd_args_parser.add_argument('--daemon', choices=['bfdd', 'bgpd', 'ospfd', 'ospf6d', 'isisd', 'ripd', 'ripngd', 'staticd', 'zebra'], required=False,  nargs='*', help='select single or multiple daemons')
 # parse arguments
 cmd_args = cmd_args_parser.parse_args()
 
-- 
cgit v1.2.3


From a086dc2c429aea9614ac7a9c735c6475c2d6da59 Mon Sep 17 00:00:00 2001
From: Christian Poessinger <christian@poessinger.com>
Date: Tue, 31 Aug 2021 12:22:36 +0200
Subject: vyos.ethtool: T3163: use long option names when calling the ethtool
 binray

This makes understanding the code easier what is "really" called without
opening the man page.
---
 op-mode-definitions/show-interfaces-ethernet.xml.in | 10 +++++-----
 python/vyos/ethtool.py                              |  2 +-
 python/vyos/ifconfig/ethernet.py                    |  7 +------
 3 files changed, 7 insertions(+), 12 deletions(-)

(limited to 'op-mode-definitions')

diff --git a/op-mode-definitions/show-interfaces-ethernet.xml.in b/op-mode-definitions/show-interfaces-ethernet.xml.in
index fc79f44bf..6d50d6e90 100644
--- a/op-mode-definitions/show-interfaces-ethernet.xml.in
+++ b/op-mode-definitions/show-interfaces-ethernet.xml.in
@@ -23,19 +23,19 @@
                 <properties>
                   <help>Visually identify specified ethernet interface</help>
                 </properties>
-                <command>echo "Blinking interface $4 for 30 seconds."; /sbin/ethtool --identify "$4" 30</command>
+                <command>echo "Blinking interface $4 for 30 seconds."; ethtool --identify "$4" 30</command>
               </leafNode>
               <node name="physical">
                 <properties>
                   <help>Show physical device information for specified ethernet interface</help>
                 </properties>
-                <command>/sbin/ethtool "$4"; /sbin/ethtool -i "$4"</command>
+                <command>ethtool "$4"; ethtool --driver "$4"</command>
                 <children>
                   <leafNode name="offload">
                     <properties>
                       <help>Show physical device offloading capabilities</help>
                     </properties>
-                    <command>/sbin/ethtool -k "$4" | sed -e 1d -e '/fixed/d' -e 's/^\t*//g' -e 's/://' | column -t -s' '</command>
+                    <command>ethtool --show-features "$4" | sed -e 1d -e '/fixed/d' -e 's/^\t*//g' -e 's/://' | column -t -s' '</command>
                   </leafNode>
                 </children>
               </node>
@@ -43,13 +43,13 @@
                 <properties>
                   <help>Show physical device statistics for specified ethernet interface</help>
                 </properties>
-                <command>/sbin/ethtool -S "$4"</command>
+                <command>ethtool --statistics "$4"</command>
               </leafNode>
               <leafNode name="transceiver">
                 <properties>
                   <help>Show transceiver information from modules (e.g SFP+, QSFP)</help>
                 </properties>
-                <command>/sbin/ethtool -m "$4"</command>
+                <command>ethtool --module-info "$4"</command>
               </leafNode>
               <tagNode name="vif">
                 <properties>
diff --git a/python/vyos/ethtool.py b/python/vyos/ethtool.py
index 5a5d84bed..7dcb68346 100644
--- a/python/vyos/ethtool.py
+++ b/python/vyos/ethtool.py
@@ -65,7 +65,7 @@ class Ethtool:
                             self._speed_duplex[speed].update({ duplex : ''})
 
         # Now populate features dictionaty
-        out, err = popen(f'ethtool -k {ifname}')
+        out, err = popen(f'ethtool --show-features {ifname}')
         # skip the first line, it only says: "Features for eth0":
         for line in out.splitlines()[1:]:
             if ":" in line:
diff --git a/python/vyos/ifconfig/ethernet.py b/python/vyos/ifconfig/ethernet.py
index 7d29da8fc..76ed3fd92 100644
--- a/python/vyos/ifconfig/ethernet.py
+++ b/python/vyos/ifconfig/ethernet.py
@@ -42,34 +42,29 @@ class EthernetIf(Interface):
 
     @staticmethod
     def feature(ifname, option, value):
-        run(f'ethtool -K {ifname} {option} {value}')
+        run(f'ethtool --features {ifname} {option} {value}')
         return False
 
     _command_set = {**Interface._command_set, **{
         'gro': {
             'validate': lambda v: assert_list(v, ['on', 'off']),
             'possible': lambda i, v: EthernetIf.feature(i, 'gro', v),
-            # 'shellcmd': 'ethtool -K {ifname} gro {value}',
         },
         'gso': {
             'validate': lambda v: assert_list(v, ['on', 'off']),
             'possible': lambda i, v: EthernetIf.feature(i, 'gso', v),
-            # 'shellcmd': 'ethtool -K {ifname} gso {value}',
         },
         'lro': {
             'validate': lambda v: assert_list(v, ['on', 'off']),
             'possible': lambda i, v: EthernetIf.feature(i, 'lro', v),
-            # 'shellcmd': 'ethtool -K {ifname} lro {value}',
         },
         'sg': {
             'validate': lambda v: assert_list(v, ['on', 'off']),
             'possible': lambda i, v: EthernetIf.feature(i, 'sg', v),
-            # 'shellcmd': 'ethtool -K {ifname} sg {value}',
         },
         'tso': {
             'validate': lambda v: assert_list(v, ['on', 'off']),
             'possible': lambda i, v: EthernetIf.feature(i, 'tso', v),
-            # 'shellcmd': 'ethtool -K {ifname} tso {value}',
         },
     }}
 
-- 
cgit v1.2.3


From 8834c22dc3f5758c1d2364579acc428cfc0fe650 Mon Sep 17 00:00:00 2001
From: Christian Poessinger <christian@poessinger.com>
Date: Tue, 31 Aug 2021 22:00:27 +0200
Subject: op-mode: "show interfaces ethernet eth0 physical" should display
 ring-buffers

---
 op-mode-definitions/show-interfaces-ethernet.xml.in | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

(limited to 'op-mode-definitions')

diff --git a/op-mode-definitions/show-interfaces-ethernet.xml.in b/op-mode-definitions/show-interfaces-ethernet.xml.in
index 6d50d6e90..c42efd21f 100644
--- a/op-mode-definitions/show-interfaces-ethernet.xml.in
+++ b/op-mode-definitions/show-interfaces-ethernet.xml.in
@@ -29,7 +29,7 @@
                 <properties>
                   <help>Show physical device information for specified ethernet interface</help>
                 </properties>
-                <command>ethtool "$4"; ethtool --driver "$4"</command>
+                <command>ethtool "$4"; ethtool --show-ring "$4"; ethtool --driver "$4"</command>
                 <children>
                   <leafNode name="offload">
                     <properties>
-- 
cgit v1.2.3


From b1ff7baaf3c52c8c364955632fcece2da7033b10 Mon Sep 17 00:00:00 2001
From: Christian Poessinger <christian@poessinger.com>
Date: Thu, 2 Sep 2021 14:05:33 +0200
Subject: op-mode: T1376: speed up tab-completion for DHCP pool listing

Commit 9f20bee81c ("T1376: improve show_dhcp and show_dhcpv6") added the tab
completion helper to list the availbale IP pools to query. This was done by
calling a python script which then called cli-shell-api which resulted in a
penalty by the Python interpreter startup.

This can be solved by directly using the cli-shell-api wrapper available
as <path> in op-mode - as also seen for DHCPv6.
---
 op-mode-definitions/dhcp.xml.in | 4 ++--
 src/op_mode/show_dhcp.py        | 8 ++------
 2 files changed, 4 insertions(+), 8 deletions(-)

(limited to 'op-mode-definitions')

diff --git a/op-mode-definitions/dhcp.xml.in b/op-mode-definitions/dhcp.xml.in
index 1dacbd5ba..6f0c25110 100644
--- a/op-mode-definitions/dhcp.xml.in
+++ b/op-mode-definitions/dhcp.xml.in
@@ -22,7 +22,7 @@
                     <properties>
                       <help>Show DHCP server leases for a specific pool</help>
                       <completionHelp>
-                        <script>sudo ${vyos_op_scripts_dir}/show_dhcp.py --allowed pool</script>
+                        <path>service dhcp-server shared-network-name</path>
                       </completionHelp>
                     </properties>
                     <command>sudo ${vyos_op_scripts_dir}/show_dhcp.py --leases --pool $6</command>
@@ -57,7 +57,7 @@
                     <properties>
                       <help>Show DHCP server statistics for a specific pool</help>
                       <completionHelp>
-                        <script>sudo ${vyos_op_scripts_dir}/show_dhcp.py --allowed pool</script>
+                        <path>service dhcp-server shared-network-name</path>
                       </completionHelp>
                     </properties>
                     <command>sudo ${vyos_op_scripts_dir}/show_dhcp.py --statistics --pool $6</command>
diff --git a/src/op_mode/show_dhcp.py b/src/op_mode/show_dhcp.py
index 4df275e04..cd6e8ed43 100755
--- a/src/op_mode/show_dhcp.py
+++ b/src/op_mode/show_dhcp.py
@@ -177,7 +177,7 @@ if __name__ == '__main__':
     group = parser.add_mutually_exclusive_group()
     group.add_argument("-l", "--leases", action="store_true", help="Show DHCP leases")
     group.add_argument("-s", "--statistics", action="store_true", help="Show DHCP statistics")
-    group.add_argument("--allowed", type=str, choices=["pool", "sort", "state"], help="Show allowed values for argument")
+    group.add_argument("--allowed", type=str, choices=["sort", "state"], help="Show allowed values for argument")
 
     parser.add_argument("-p", "--pool", type=str, help="Show lease for specific pool")
     parser.add_argument("-S", "--sort", type=str, default='ip', help="Sort by")
@@ -188,11 +188,7 @@ if __name__ == '__main__':
 
     conf = Config()
 
-    if args.allowed == 'pool':
-        if conf.exists_effective('service dhcp-server'):
-            print(' '.join(conf.list_effective_nodes("service dhcp-server shared-network-name")))
-        exit(0)
-    elif args.allowed == 'sort':
+    if args.allowed == 'sort':
         print(' '.join(lease_display_fields.keys()))
         exit(0)
     elif args.allowed == 'state':
-- 
cgit v1.2.3


From 10814c4d3360598262e991e4b20768dfcde91d75 Mon Sep 17 00:00:00 2001
From: Christian Poessinger <christian@poessinger.com>
Date: Mon, 6 Sep 2021 08:23:24 +0200
Subject: wwan: T3620: op-mode: not all commands supported by all modems - add
 info message

---
 op-mode-definitions/show-interfaces-wwan.xml.in |  4 ++--
 src/op_mode/show_wwan.py                        | 18 +++++++++++-------
 2 files changed, 13 insertions(+), 9 deletions(-)

(limited to 'op-mode-definitions')

diff --git a/op-mode-definitions/show-interfaces-wwan.xml.in b/op-mode-definitions/show-interfaces-wwan.xml.in
index d57e17a13..7e5f49ba6 100644
--- a/op-mode-definitions/show-interfaces-wwan.xml.in
+++ b/op-mode-definitions/show-interfaces-wwan.xml.in
@@ -68,9 +68,9 @@
                 </properties>
                 <command>sudo ${vyos_op_scripts_dir}/show_wwan.py --interface=$4 --sim</command>
               </leafNode>
-              <leafNode name="summary">
+              <leafNode name="detail">
                 <properties>
-                  <help>Show WWAN module information summary</help>
+                  <help>Show WWAN module detailed information summary</help>
                 </properties>
                 <command>mmcli --modem ${4#wwan}</command>
               </leafNode>
diff --git a/src/op_mode/show_wwan.py b/src/op_mode/show_wwan.py
index 249dda2a5..529b5bd0f 100755
--- a/src/op_mode/show_wwan.py
+++ b/src/op_mode/show_wwan.py
@@ -34,13 +34,17 @@ required = parser.add_argument_group('Required arguments')
 required.add_argument("--interface", help="WWAN interface name, e.g. wwan0", required=True)
 
 def qmi_cmd(device, command, silent=False):
-    tmp = cmd(f'qmicli --device={device} --device-open-proxy {command}')
-    tmp = tmp.replace(f'[{cdc}] ', '')
-    if not silent:
-        # skip first line as this only holds the info headline
-        for line in tmp.splitlines()[1:]:
-            print(line.lstrip())
-    return tmp
+    try:
+        tmp = cmd(f'qmicli --device={device} --device-open-proxy {command}')
+        tmp = tmp.replace(f'[{cdc}] ', '')
+        if not silent:
+            # skip first line as this only holds the info headline
+            for line in tmp.splitlines()[1:]:
+                print(line.lstrip())
+        return tmp
+    except:
+        print('Command not supported by Modem')
+        exit(1)
 
 if __name__ == '__main__':
     args = parser.parse_args()
-- 
cgit v1.2.3


From bd2c79ebb8abbd844f4b0568110c7bcea0d8f4f1 Mon Sep 17 00:00:00 2001
From: Christian Poessinger <christian@poessinger.com>
Date: Tue, 7 Sep 2021 11:26:42 +0200
Subject: op-mode: xml: improve "show interfaces <type>" help text

---
 op-mode-definitions/show-interfaces-bonding.xml.in |  4 +-
 op-mode-definitions/show-interfaces-bridge.xml.in  |  4 +-
 op-mode-definitions/show-interfaces-dummy.xml.in   |  4 +-
 .../show-interfaces-ethernet.xml.in                |  4 +-
 op-mode-definitions/show-interfaces-input.xml.in   |  4 +-
 op-mode-definitions/show-interfaces-l2tpv3.xml.in  |  2 +-
 .../show-interfaces-loopback.xml.in                |  4 +-
 op-mode-definitions/show-interfaces-pppoe.xml.in   |  2 +-
 .../show-interfaces-pseudo-ethernet.xml.in         |  4 +-
 op-mode-definitions/show-interfaces-tunnel.xml.in  |  4 +-
 op-mode-definitions/show-interfaces-vti.xml.in     |  4 +-
 op-mode-definitions/show-interfaces-vxlan.xml.in   |  2 +-
 .../show-interfaces-wireguard.xml.in               |  4 +-
 .../show-interfaces-wireless.xml.in                | 82 ++++++++++++++++++++++
 op-mode-definitions/show-interfaces-wwan.xml.in    |  2 +-
 op-mode-definitions/wireless.xml.in                | 79 ---------------------
 16 files changed, 106 insertions(+), 103 deletions(-)
 create mode 100644 op-mode-definitions/show-interfaces-wireless.xml.in

(limited to 'op-mode-definitions')

diff --git a/op-mode-definitions/show-interfaces-bonding.xml.in b/op-mode-definitions/show-interfaces-bonding.xml.in
index 08ce78296..c5f82b70e 100644
--- a/op-mode-definitions/show-interfaces-bonding.xml.in
+++ b/op-mode-definitions/show-interfaces-bonding.xml.in
@@ -6,7 +6,7 @@
         <children>
           <tagNode name="bonding">
             <properties>
-              <help>Show bonding interface information</help>
+              <help>Show specified Bonding interface information</help>
               <completionHelp>
                 <path>interfaces bonding</path>
               </completionHelp>
@@ -58,7 +58,7 @@
           </tagNode>
           <node name="bonding">
             <properties>
-              <help>Show bonding interface information</help>
+              <help>Show Bonding interface information</help>
             </properties>
             <command>${vyos_op_scripts_dir}/show_interfaces.py --intf-type=bonding --action=show-brief</command>
             <children>
diff --git a/op-mode-definitions/show-interfaces-bridge.xml.in b/op-mode-definitions/show-interfaces-bridge.xml.in
index 85fde95b5..e1444bd84 100644
--- a/op-mode-definitions/show-interfaces-bridge.xml.in
+++ b/op-mode-definitions/show-interfaces-bridge.xml.in
@@ -6,7 +6,7 @@
         <children>
           <tagNode name="bridge">
             <properties>
-              <help>Show bridge interface information</help>
+              <help>Show specified Bridge interface information</help>
               <completionHelp>
                 <path>interfaces bridge</path>
               </completionHelp>
@@ -23,7 +23,7 @@
           </tagNode>
           <node name="bridge">
             <properties>
-              <help>Show bridge interface information</help>
+              <help>Show Bridge interface information</help>
             </properties>
             <command>${vyos_op_scripts_dir}/show_interfaces.py --intf-type=bridge --action=show-brief</command>
             <children>
diff --git a/op-mode-definitions/show-interfaces-dummy.xml.in b/op-mode-definitions/show-interfaces-dummy.xml.in
index 7c24c6921..52d2cc7ee 100644
--- a/op-mode-definitions/show-interfaces-dummy.xml.in
+++ b/op-mode-definitions/show-interfaces-dummy.xml.in
@@ -6,7 +6,7 @@
         <children>
           <tagNode name="dummy">
             <properties>
-              <help>Show dummy interface information</help>
+              <help>Show specified Dummy interface information</help>
               <completionHelp>
                 <path>interfaces dummy</path>
               </completionHelp>
@@ -23,7 +23,7 @@
           </tagNode>
           <node name="dummy">
             <properties>
-              <help>Show dummy interface information</help>
+              <help>Show Dummy interface information</help>
             </properties>
             <command>${vyos_op_scripts_dir}/show_interfaces.py --intf-type=dummy --action=show-brief</command>
             <children>
diff --git a/op-mode-definitions/show-interfaces-ethernet.xml.in b/op-mode-definitions/show-interfaces-ethernet.xml.in
index c42efd21f..f8d1c9395 100644
--- a/op-mode-definitions/show-interfaces-ethernet.xml.in
+++ b/op-mode-definitions/show-interfaces-ethernet.xml.in
@@ -6,7 +6,7 @@
         <children>
           <tagNode name="ethernet">
             <properties>
-              <help>Show ethernet interface information</help>
+              <help>Show specified Ethernet interface information</help>
               <completionHelp>
                 <path>interfaces ethernet</path>
               </completionHelp>
@@ -78,7 +78,7 @@
           </tagNode>
           <node name="ethernet">
             <properties>
-              <help>Show ethernet interface information</help>
+              <help>Show Ethernet interface information</help>
             </properties>
             <command>${vyos_op_scripts_dir}/show_interfaces.py --intf-type=ethernet --action=show-brief</command>
             <children>
diff --git a/op-mode-definitions/show-interfaces-input.xml.in b/op-mode-definitions/show-interfaces-input.xml.in
index 15e8203e5..9ae3828c8 100644
--- a/op-mode-definitions/show-interfaces-input.xml.in
+++ b/op-mode-definitions/show-interfaces-input.xml.in
@@ -6,7 +6,7 @@
         <children>
           <tagNode name="input">
             <properties>
-              <help>Show input interface information</help>
+              <help>Show specified Input interface information</help>
               <completionHelp>
                 <path>interfaces input</path>
               </completionHelp>
@@ -23,7 +23,7 @@
           </tagNode>
           <node name="input">
             <properties>
-              <help>Show input interface information</help>
+              <help>Show Input (ifb) interface information</help>
             </properties>
             <command>${vyos_op_scripts_dir}/show_interfaces.py --intf-type=input --action=show-brief</command>
             <children>
diff --git a/op-mode-definitions/show-interfaces-l2tpv3.xml.in b/op-mode-definitions/show-interfaces-l2tpv3.xml.in
index 60fee34a1..2a1d6a1c6 100644
--- a/op-mode-definitions/show-interfaces-l2tpv3.xml.in
+++ b/op-mode-definitions/show-interfaces-l2tpv3.xml.in
@@ -6,7 +6,7 @@
         <children>
           <tagNode name="l2tpv3">
             <properties>
-              <help>Show L2TPv3 interface information</help>
+              <help>Show specified L2TPv3 interface information</help>
               <completionHelp>
                 <path>interfaces l2tpv3</path>
               </completionHelp>
diff --git a/op-mode-definitions/show-interfaces-loopback.xml.in b/op-mode-definitions/show-interfaces-loopback.xml.in
index b30b57909..25a75ffff 100644
--- a/op-mode-definitions/show-interfaces-loopback.xml.in
+++ b/op-mode-definitions/show-interfaces-loopback.xml.in
@@ -6,7 +6,7 @@
         <children>
           <tagNode name="loopback">
             <properties>
-              <help>Show loopback interface information</help>
+              <help>Show specified Loopback interface information</help>
               <completionHelp>
                 <path>interfaces loopback</path>
               </completionHelp>
@@ -23,7 +23,7 @@
           </tagNode>
           <node name="loopback">
             <properties>
-              <help>Show loopback interface information</help>
+              <help>Show Loopback interface information</help>
             </properties>
             <command>${vyos_op_scripts_dir}/show_interfaces.py --intf-type=loopback --action=show-brief</command>
             <children>
diff --git a/op-mode-definitions/show-interfaces-pppoe.xml.in b/op-mode-definitions/show-interfaces-pppoe.xml.in
index 18697a275..767836abf 100644
--- a/op-mode-definitions/show-interfaces-pppoe.xml.in
+++ b/op-mode-definitions/show-interfaces-pppoe.xml.in
@@ -6,7 +6,7 @@
         <children>
           <tagNode name="pppoe">
             <properties>
-              <help>Show PPPoE interface information</help>
+              <help>Show specified PPPoE interface information</help>
               <completionHelp>
                 <path>interfaces pppoe</path>
               </completionHelp>
diff --git a/op-mode-definitions/show-interfaces-pseudo-ethernet.xml.in b/op-mode-definitions/show-interfaces-pseudo-ethernet.xml.in
index 195944745..2ae4b5a9e 100644
--- a/op-mode-definitions/show-interfaces-pseudo-ethernet.xml.in
+++ b/op-mode-definitions/show-interfaces-pseudo-ethernet.xml.in
@@ -6,7 +6,7 @@
         <children>
           <tagNode name="pseudo-ethernet">
             <properties>
-              <help>Show pseudo-ethernet/MACvlan interface information</help>
+              <help>Show specified Pseudo-Ethernet/MACvlan interface information</help>
               <completionHelp>
                 <path>interfaces pseudo-ethernet</path>
               </completionHelp>
@@ -23,7 +23,7 @@
           </tagNode>
           <node name="pseudo-ethernet">
             <properties>
-              <help>Show pseudo-ethernet/MACvlan interface information</help>
+              <help>Show Pseudo-Ethernet/MACvlan interface information</help>
             </properties>
             <command>${vyos_op_scripts_dir}/show_interfaces.py --intf-type=pseudo-ethernet --action=show-brief</command>
             <children>
diff --git a/op-mode-definitions/show-interfaces-tunnel.xml.in b/op-mode-definitions/show-interfaces-tunnel.xml.in
index 416de0299..51b25efd9 100644
--- a/op-mode-definitions/show-interfaces-tunnel.xml.in
+++ b/op-mode-definitions/show-interfaces-tunnel.xml.in
@@ -6,7 +6,7 @@
         <children>
           <tagNode name="tunnel">
             <properties>
-              <help>Show tunnel interface information</help>
+              <help>Show specified Tunnel interface information</help>
               <completionHelp>
                 <path>interfaces tunnel</path>
               </completionHelp>
@@ -23,7 +23,7 @@
           </tagNode>
           <node name="tunnel">
             <properties>
-              <help>Show tunnel interface information</help>
+              <help>Show Tunnel interface information</help>
             </properties>
             <command>${vyos_op_scripts_dir}/show_interfaces.py --intf-type=tunnel --action=show-brief</command>
             <children>
diff --git a/op-mode-definitions/show-interfaces-vti.xml.in b/op-mode-definitions/show-interfaces-vti.xml.in
index f51be2d19..b436b8414 100644
--- a/op-mode-definitions/show-interfaces-vti.xml.in
+++ b/op-mode-definitions/show-interfaces-vti.xml.in
@@ -6,7 +6,7 @@
         <children>
           <tagNode name="vti">
             <properties>
-              <help>Show vti interface information</help>
+              <help>Show specified VTI interface information</help>
               <completionHelp>
                 <path>interfaces vti</path>
               </completionHelp>
@@ -23,7 +23,7 @@
           </tagNode>
           <node name="vti">
             <properties>
-              <help>Show vti interface information</help>
+              <help>Show VTI interface information</help>
             </properties>
             <command>${vyos_op_scripts_dir}/show_interfaces.py --intf-type=vti --action=show-brief</command>
             <children>
diff --git a/op-mode-definitions/show-interfaces-vxlan.xml.in b/op-mode-definitions/show-interfaces-vxlan.xml.in
index 4e3cb93cd..1befd428c 100644
--- a/op-mode-definitions/show-interfaces-vxlan.xml.in
+++ b/op-mode-definitions/show-interfaces-vxlan.xml.in
@@ -6,7 +6,7 @@
         <children>
           <tagNode name="vxlan">
             <properties>
-              <help>Show VXLAN interface information</help>
+              <help>Show specified VXLAN interface information</help>
               <completionHelp>
                 <path>interfaces vxlan</path>
               </completionHelp>
diff --git a/op-mode-definitions/show-interfaces-wireguard.xml.in b/op-mode-definitions/show-interfaces-wireguard.xml.in
index 863357ef7..c9b754dcd 100644
--- a/op-mode-definitions/show-interfaces-wireguard.xml.in
+++ b/op-mode-definitions/show-interfaces-wireguard.xml.in
@@ -6,7 +6,7 @@
         <children>
           <tagNode name="wireguard">
             <properties>
-              <help>Show Wireguard interface information</help>
+              <help>Show specified WireGuard interface information</help>
               <completionHelp>
                 <script>${vyos_completion_dir}/list_interfaces.py --type wireguard</script>
               </completionHelp>
@@ -47,7 +47,7 @@
           </tagNode>
           <node name="wireguard">
             <properties>
-              <help>Show Wireguard interface information</help>
+              <help>Show WireGuard interface information</help>
             </properties>
             <command>${vyos_op_scripts_dir}/show_interfaces.py --intf-type=wireguard --action=show-brief</command>
             <children>
diff --git a/op-mode-definitions/show-interfaces-wireless.xml.in b/op-mode-definitions/show-interfaces-wireless.xml.in
new file mode 100644
index 000000000..4a37417aa
--- /dev/null
+++ b/op-mode-definitions/show-interfaces-wireless.xml.in
@@ -0,0 +1,82 @@
+<?xml version="1.0"?>
+<interfaceDefinition>
+  <node name="show">
+    <children>
+      <node name="interfaces">
+        <children>
+          <node name="wireless">
+            <properties>
+              <help>Show Wireless (WLAN) interface information</help>
+            </properties>
+            <command>${vyos_op_scripts_dir}/show_interfaces.py --intf-type=wireless --action=show-brief</command>
+            <children>
+              <leafNode name="detail">
+                <properties>
+                  <help>Show detailed wireless interface information</help>
+                </properties>
+                <command>${vyos_op_scripts_dir}/show_interfaces.py --intf-type=wireless --action=show</command>
+              </leafNode>
+              <leafNode name="info">
+                <properties>
+                  <help>Show wireless interface configuration</help>
+                </properties>
+                <command>${vyos_op_scripts_dir}/show_wireless.py --brief</command>
+              </leafNode>
+            </children>
+          </node>
+          <tagNode name="wireless">
+            <properties>
+              <help>Show specified wireless interface information</help>
+              <completionHelp>
+                <script>${vyos_completion_dir}/list_interfaces.py --type wireless</script>
+              </completionHelp>
+            </properties>
+            <command>${vyos_op_scripts_dir}/show_interfaces.py --intf="$4"</command>
+            <children>
+              <leafNode name="brief">
+                <properties>
+                  <help>Show summary of the specified wireless interface information</help>
+                </properties>
+                <command>${vyos_op_scripts_dir}/show_interfaces.py --intf="$4" --action=show-brief</command>
+              </leafNode>
+              <node name="scan">
+                <properties>
+                  <help>Show summary of the specified wireless interface information</help>
+                </properties>
+                <command>sudo ${vyos_op_scripts_dir}/show_wireless.py --scan "$4"</command>
+                <children>
+                  <leafNode name="detail">
+                    <properties>
+                      <help>Show detailed scan results</help>
+                    </properties>
+                    <command>sudo /sbin/iw dev "$4" scan ap-force</command>
+                  </leafNode>
+                </children>
+              </node>
+              <leafNode name="stations">
+                <properties>
+                  <help>Show specified Wireless interface information</help>
+                </properties>
+                <command>${vyos_op_scripts_dir}/show_wireless.py --stations "$4"</command>
+              </leafNode>
+              <tagNode name="vif">
+                <properties>
+                  <help>Show specified virtual network interface (vif) information</help>
+                </properties>
+                <command>${vyos_op_scripts_dir}/show_interfaces.py --intf="$4.$6"</command>
+                <children>
+                  <leafNode name="brief">
+                    <properties>
+                      <help>Show summary of specified virtual network interface (vif) information</help>
+                    </properties>
+                    <command>${vyos_op_scripts_dir}/show_interfaces.py --intf="$4.$6" --action=show-brief</command>
+                  </leafNode>
+                </children>
+              </tagNode>
+            </children>
+          </tagNode>
+        </children>
+      </node>
+    </children>
+  </node>
+</interfaceDefinition>
diff --git a/op-mode-definitions/show-interfaces-wwan.xml.in b/op-mode-definitions/show-interfaces-wwan.xml.in
index 7e5f49ba6..3cd29b38a 100644
--- a/op-mode-definitions/show-interfaces-wwan.xml.in
+++ b/op-mode-definitions/show-interfaces-wwan.xml.in
@@ -6,7 +6,7 @@
         <children>
           <tagNode name="wwan">
             <properties>
-              <help>Show Wireless Wire Area Network (WWAN) interface information</help>
+              <help>Show specified Wireless Wire Area Network (WWAN) interface information</help>
               <completionHelp>
                 <path>interfaces wwan</path>
                 <script>cd /sys/class/net; ls -d wwan*</script>
diff --git a/op-mode-definitions/wireless.xml.in b/op-mode-definitions/wireless.xml.in
index a3a9d1f55..5d9db1544 100644
--- a/op-mode-definitions/wireless.xml.in
+++ b/op-mode-definitions/wireless.xml.in
@@ -37,83 +37,4 @@
       </node>
     </children>
   </node>
-  <node name="show">
-    <children>
-      <node name="interfaces">
-        <children>
-          <node name="wireless">
-            <properties>
-              <help>Show wireless interface information</help>
-            </properties>
-            <command>${vyos_op_scripts_dir}/show_interfaces.py --intf-type=wireless --action=show-brief</command>
-            <children>
-              <leafNode name="detail">
-                <properties>
-                  <help>Show detailed wireless interface information</help>
-                </properties>
-                <command>${vyos_op_scripts_dir}/show_interfaces.py --intf-type=wireless --action=show</command>
-              </leafNode>
-              <leafNode name="info">
-                <properties>
-                  <help>Show wireless interface configuration</help>
-                </properties>
-                <command>${vyos_op_scripts_dir}/show_wireless.py --brief</command>
-              </leafNode>
-            </children>
-          </node>
-          <tagNode name="wireless">
-            <properties>
-              <help>Show specified wireless interface information</help>
-              <completionHelp>
-                <script>${vyos_completion_dir}/list_interfaces.py --type wireless</script>
-              </completionHelp>
-            </properties>
-            <command>${vyos_op_scripts_dir}/show_interfaces.py --intf="$4"</command>
-            <children>
-              <leafNode name="brief">
-                <properties>
-                  <help>Show summary of the specified wireless interface information</help>
-                </properties>
-                <command>${vyos_op_scripts_dir}/show_interfaces.py --intf="$4" --action=show-brief</command>
-              </leafNode>
-              <node name="scan">
-                <properties>
-                  <help>Show summary of the specified wireless interface information</help>
-                </properties>
-                <command>sudo ${vyos_op_scripts_dir}/show_wireless.py --scan "$4"</command>
-                <children>
-                  <leafNode name="detail">
-                    <properties>
-                      <help>Show detailed scan results</help>
-                    </properties>
-                    <command>sudo /sbin/iw dev "$4" scan ap-force</command>
-                  </leafNode>
-                </children>
-              </node>
-              <leafNode name="stations">
-                <properties>
-                  <help>Show specified wireless interface information</help>
-                </properties>
-                <command>${vyos_op_scripts_dir}/show_wireless.py --stations "$4"</command>
-              </leafNode>
-              <tagNode name="vif">
-                <properties>
-                  <help>Show specified virtual network interface (vif) information</help>
-                </properties>
-                <command>${vyos_op_scripts_dir}/show_interfaces.py --intf="$4.$6"</command>
-                <children>
-                  <leafNode name="brief">
-                    <properties>
-                      <help>Show summary of specified virtual network interface (vif) information</help>
-                    </properties>
-                    <command>${vyos_op_scripts_dir}/show_interfaces.py --intf="$4.$6" --action=show-brief</command>
-                  </leafNode>
-                </children>
-              </tagNode>
-            </children>
-          </tagNode>
-        </children>
-      </node>
-    </children>
-  </node>
 </interfaceDefinition>
-- 
cgit v1.2.3


From a50095408e9e95afebce97bccc62a2d9a2563b3e Mon Sep 17 00:00:00 2001
From: Christian Poessinger <christian@poessinger.com>
Date: Thu, 9 Sep 2021 23:16:13 +0200
Subject: wireguard: T3642: add deprecation notice to old commands for key
 generation

---
 op-mode-definitions/generate-wireguard.xml.in | 26 +++++++++++++++++++-------
 1 file changed, 19 insertions(+), 7 deletions(-)

(limited to 'op-mode-definitions')

diff --git a/op-mode-definitions/generate-wireguard.xml.in b/op-mode-definitions/generate-wireguard.xml.in
index 6557b463b..259c9a898 100644
--- a/op-mode-definitions/generate-wireguard.xml.in
+++ b/op-mode-definitions/generate-wireguard.xml.in
@@ -4,9 +4,27 @@
     <children>
       <node name="wireguard">
         <properties>
-          <help>Generate Wireguard keys</help>
+          <help>Generate WireGuard keys</help>
         </properties>
         <children>
+          <leafNode name="default-keypair">
+            <properties>
+              <help>generates the wireguard default-keypair</help>
+            </properties>
+            <command>echo "This command is deprecated. Please use: \"generate pki wireguard key-pair\""</command>
+          </leafNode>
+          <leafNode name="preshared-key">
+            <properties>
+              <help>generate a wireguard preshared key</help>
+            </properties>
+            <command>echo "This command is deprecated. Please use: \"generate pki wireguard pre-shared-key\""</command>
+          </leafNode>
+          <tagNode name="named-keypairs">
+            <properties>
+              <help>Generates named wireguard keypairs</help>
+            </properties>
+            <command>echo "This command is deprecated. Please use: \"generate pki wireguard key-pair install wgN\""</command>
+          </tagNode>
           <tagNode name="client-config">
             <properties>
               <help>Generate Client config QR code</help>
@@ -59,12 +77,6 @@
               </tagNode>
             </children>
           </tagNode>
-          <leafNode name="key-pair">
-            <properties>
-              <help>Generate Wireguard key pair for use with server or peer</help>
-            </properties>
-            <command>sudo ${vyos_op_scripts_dir}/pki.py --action generate --wireguard --key "noname"</command>
-          </leafNode>
         </children>
       </node>
     </children>
-- 
cgit v1.2.3


From 310eb1b527047211ae236c6415fee51f15a0fa57 Mon Sep 17 00:00:00 2001
From: Christian Poessinger <christian@poessinger.com>
Date: Thu, 9 Sep 2021 23:16:45 +0200
Subject: wireguard: T3642: improve "set" commands for generated key-pairs

---
 op-mode-definitions/pki.xml.in | 82 ++++++++++++++++++++-----------------
 src/op_mode/pki.py             | 92 ++++++++++++++++++++----------------------
 2 files changed, 87 insertions(+), 87 deletions(-)

(limited to 'op-mode-definitions')

diff --git a/op-mode-definitions/pki.xml.in b/op-mode-definitions/pki.xml.in
index a11814c8a..6b9b0d3f6 100644
--- a/op-mode-definitions/pki.xml.in
+++ b/op-mode-definitions/pki.xml.in
@@ -282,60 +282,66 @@
           </node>
           <node name="wireguard">
             <properties>
-              <help>Generate Wireguard keys</help>
+              <help>Generate WireGuard keys</help>
             </properties>
             <children>
               <node name="key-pair">
                 <properties>
-                  <help>Generate Wireguard key pair for use with server or peer</help>
+                  <help>Generate WireGuard public/private key-pair</help>
                 </properties>
                 <children>
-                  <tagNode name="file">
+                  <node name="install">
                     <properties>
-                      <help>Write generated Wireguard keys into the specified filename</help>
-                      <completionHelp>
-                        <list>&lt;filename&gt;</list>
-                      </completionHelp>
+                      <help>Generate CLI commands to install WireGuard key to configuration</help>
                     </properties>
-                    <command>sudo ${vyos_op_scripts_dir}/pki.py --action generate --wireguard --key "$6" --file</command>
-                  </tagNode>
-                  <tagNode name="install">
-                    <properties>
-                      <help>Commands for installing generated Wireguard key into running configuration</help>
-                      <completionHelp>
-                        <list>&lt;interface&gt; &lt;peer&gt;</list>
-                      </completionHelp>
-                    </properties>
-                    <command>sudo ${vyos_op_scripts_dir}/pki.py --action generate --wireguard --key "$6" --install</command>
-                  </tagNode>
+                    <children>
+                      <tagNode name="interface">
+                        <properties>
+                          <help>WireGuard Interface used in install command</help>
+                          <completionHelp>
+                            <path>interfaces wireguard</path>
+                          </completionHelp>
+                        </properties>
+                        <command>sudo ${vyos_op_scripts_dir}/pki.py --action generate --wireguard --key --interface "$7" --install</command>
+                      </tagNode>
+                    </children>
+                  </node>
                 </children>
-                <command>sudo ${vyos_op_scripts_dir}/pki.py --action generate --wireguard --key "noname"</command>
+                <command>sudo ${vyos_op_scripts_dir}/pki.py --action generate --wireguard --key</command>
               </node>
-              <node name="pre-shared-key">
+              <node name="preshared-key">
                 <properties>
-                  <help>Generate pre-shared key for use with a Wireguard peer</help>
+                  <help>Generate WireGuard pre-shared key</help>
                 </properties>
                 <children>
-                  <tagNode name="file">
+                  <node name="install">
                     <properties>
-                      <help>Write generated Wireguard PSK into the specified filename</help>
-                      <completionHelp>
-                        <list>&lt;filename&gt;</list>
-                      </completionHelp>
+                      <help>Generate CLI commands to install WireGuard key to configuration</help>
                     </properties>
-                    <command>sudo ${vyos_op_scripts_dir}/pki.py --action generate --wireguard --psk "$6" --file</command>
-                  </tagNode>
-                  <tagNode name="install">
-                    <properties>
-                      <help>Commands for installing generated Wireguard PSK on specified peer into running configuration</help>
-                      <completionHelp>
-                        <list>&lt;peer&gt;</list>
-                      </completionHelp>
-                    </properties>
-                    <command>sudo ${vyos_op_scripts_dir}/pki.py --action generate --wireguard --psk "$6" --install</command>
-                  </tagNode>
+                    <children>
+                      <tagNode name="interface">
+                        <properties>
+                          <help>WireGuard Interface used in install command</help>
+                          <completionHelp>
+                            <path>interfaces wireguard</path>
+                          </completionHelp>
+                        </properties>
+                        <children>
+                          <tagNode name="peer">
+                            <properties>
+                              <help>Interface used for install command</help>
+                              <completionHelp>
+                                <path>interfaces wireguard ${COMP_WORDS[COMP_CWORD-2]} peer</path>
+                              </completionHelp>
+                            </properties>
+                            <command>sudo ${vyos_op_scripts_dir}/pki.py --action generate --wireguard --psk --interface "$7" --peer "$9" --install</command>
+                          </tagNode>
+                        </children>
+                      </tagNode>
+                    </children>
+                  </node>
                 </children>
-                <command>sudo ${vyos_op_scripts_dir}/pki.py --action generate --wireguard --psk "noname"</command>
+                <command>sudo ${vyos_op_scripts_dir}/pki.py --action generate --wireguard --psk</command>
               </node>
             </children>
           </node>
diff --git a/src/op_mode/pki.py b/src/op_mode/pki.py
index 55330cbc2..d28cee5d0 100755
--- a/src/op_mode/pki.py
+++ b/src/op_mode/pki.py
@@ -202,30 +202,31 @@ def install_keypair(name, key_type, private_key=None, public_key=None, passphras
 
         if install_private_key:
             install_private_pem = "".join(private_key_pem.strip().split("\n")[1:-1])
-            print("set pki key-pair %s private key '%s'" % (name, install_private_pem))
+            print(f"set pki key-pair {name} private key '{install_private_pem}'")
             if passphrase:
-                print("set pki key-pair %s private password-protected" % (name,))
+                print(f"set pki key-pair {name} private password-protected")
         else:
             print("Private key:")
             print(private_key_pem)
 
-def install_wireguard_key(name, private_key, public_key):
+def install_wireguard_key(interface, private_key, public_key):
     # Show conf commands for installing wireguard key pairs
-    is_interface = re.match(r'^wg[\d]+$', name)
-
-    print("Configure mode commands to install key:")
-    if is_interface:
-        print("set interfaces wireguard %s private-key '%s'" % (name, private_key))
-        print("")
-        print("Public key for use on peer configuration: " + public_key)
-    else:
-        print("set interfaces wireguard [INTERFACE] peer %s public-key '%s'" % (name, public_key))
-        print("")
-        print("Private key for use on peer configuration: " + private_key)
-
-def install_wireguard_psk(name, psk):
+    from vyos.ifconfig import Section
+    if Section.section(interface) != 'wireguard':
+        print(f'"{interface}" is not a WireGuard interface name!')
+        exit(1)
+
+    print("Configure mode commands to install key:", end="\n\n")
+    print(f"set interfaces wireguard {interface} private-key '{private_key}'", end="\n\n")
+    print(f"Public key to use on peer system: '{public_key}'")
+
+def install_wireguard_psk(interface, peer, psk):
+    from vyos.ifconfig import Section
+    if Section.section(interface) != 'wireguard':
+        print(f'"{interface}" is not a WireGuard interface name!')
+        exit(1)
     # Show conf commands for installing wireguard psk
-    print("set interfaces wireguard [INTERFACE] peer %s preshared-key '%s'" % (name, psk))
+    print(f"set interfaces wireguard {interface} peer {peer} preshared-key '{psk}'")
 
 def ask_passphrase():
     passphrase = None
@@ -632,48 +633,37 @@ def generate_openvpn_key(name, install=False, file=False):
         key_data = "".join(key_lines[1:-1]) # Remove wrapper tags and line endings
         key_version = '1'
 
+        import re
         version_search = re.search(r'BEGIN OpenVPN Static key V(\d+)', result) # Future-proofing (hopefully)
         if version_search:
             key_version = version_search[1]
 
+        base = f"set pki openvpn shared-secret {name}"
         print("Configure mode commands to install OpenVPN key:")
-        print("set pki openvpn shared-secret %s key '%s'" % (name, key_data))
-        print("set pki openvpn shared-secret %s version '%s'" % (name, key_version))
+        print(f"{base} key '{key_data}'")
+        print(f"{base} version '{key_version}'")
 
     if file:
         write_file(f'{name}.key', result)
 
-def generate_wireguard_key(name, install=False, file=False):
+def generate_wireguard_key(interface=None, install=False):
     private_key = cmd('wg genkey')
     public_key = cmd('wg pubkey', input=private_key)
 
-    if not install:
-        print("Private key: " + private_key)
-        print("Public key: " + public_key)
-
-    if install:
-        install_wireguard_key(name, private_key, public_key)
-
-    if file:
-        write_file(f'{name}_public.key', public_key)
-        write_file(f'{name}_private.key', private_key)
+    if interface and install:
+        install_wireguard_key(interface, private_key, public_key)
+    else:
+        print(f'Private key: {private_key}')
+        print(f'Public key: {public_key}', end='\n\n')
 
-def generate_wireguard_psk(name, install=False, file=False):
+def generate_wireguard_psk(interface=None, peer=None, install=False):
     psk = cmd('wg genpsk')
-
-    if not install and not file:
-        print("Pre-shared key:")
-        print(psk)
-        return None
-
-    if install:
-        install_wireguard_psk(name, psk)
-
-    if file:
-        write_file(f'{name}.key', psk)
+    if interface and peer and install:
+        install_wireguard_psk(interface, peer, psk)
+    else:
+        print(f'Pre-shared key: {psk}')
 
 # Show functions
-
 def show_certificate_authority(name=None):
     headers = ['Name', 'Subject', 'Issuer CN', 'Issued', 'Expiry', 'Private Key', 'Parent']
     data = []
@@ -790,10 +780,13 @@ if __name__ == '__main__':
     # OpenVPN
     parser.add_argument('--openvpn', help='OpenVPN TLS key', required=False)
 
-    # Wireguard
+    # WireGuard
     parser.add_argument('--wireguard', help='Wireguard', action='store_true')
-    parser.add_argument('--key', help='Wireguard key pair', required=False)
-    parser.add_argument('--psk', help='Wireguard pre shared key', required=False)
+    group = parser.add_mutually_exclusive_group()
+    group.add_argument('--key', help='Wireguard key pair', action='store_true', required=False)
+    group.add_argument('--psk', help='Wireguard pre shared key', action='store_true', required=False)
+    parser.add_argument('--interface', help='Install generated keys into running-config for named interface', action='store')
+    parser.add_argument('--peer', help='Install generated keys into running-config for peer', action='store')
 
     # Global
     parser.add_argument('--file', help='Write generated keys into specified filename', action='store_true')
@@ -833,9 +826,10 @@ if __name__ == '__main__':
 
             elif args.wireguard:
                 if args.key:
-                    generate_wireguard_key(args.key, install=args.install, file=args.file)
-                elif args.psk:
-                    generate_wireguard_psk(args.psk, install=args.install, file=args.file)
+                    generate_wireguard_key(args.interface, install=args.install)
+                if args.psk:
+                    generate_wireguard_psk(args.interface, peer=args.peer, install=args.install)
+
         elif args.action == 'show':
             if args.ca:
                 show_certificate_authority(None if args.ca == 'all' else args.ca)
-- 
cgit v1.2.3


From ebf89e0535cf8362a077c07a9cfa2dbd8eeecbb4 Mon Sep 17 00:00:00 2001
From: Christian Poessinger <christian@poessinger.com>
Date: Sun, 12 Sep 2021 18:30:09 +0200
Subject: pki: T3642: show only requested CA in op-mode

---
 op-mode-definitions/pki.xml.in | 24 +++++++++++-------------
 1 file changed, 11 insertions(+), 13 deletions(-)

(limited to 'op-mode-definitions')

diff --git a/op-mode-definitions/pki.xml.in b/op-mode-definitions/pki.xml.in
index 6b9b0d3f6..70154f881 100644
--- a/op-mode-definitions/pki.xml.in
+++ b/op-mode-definitions/pki.xml.in
@@ -356,23 +356,21 @@
           <help>Show PKI certificates</help>
         </properties>
         <children>
-          <node name="ca">
+          <leafNode name="ca">
             <properties>
               <help>Show CA certificates</help>
             </properties>
-            <children>
-              <leafNode name="name">
-                <properties>
-                  <help>Show CA certificate by name</help>
-                  <completionHelp>
-                    <path>pki ca</path>
-                  </completionHelp>
-                </properties>
-                <command>sudo ${vyos_op_scripts_dir}/pki.py --action show --ca "$5"</command>
-              </leafNode>
-            </children>
             <command>sudo ${vyos_op_scripts_dir}/pki.py --action show --ca "all"</command>
-          </node>
+          </leafNode>
+          <tagNode name="ca">
+            <properties>
+              <help>Show CA certificate by name</help>
+              <completionHelp>
+                <path>pki ca</path>
+              </completionHelp>
+            </properties>
+            <command>sudo ${vyos_op_scripts_dir}/pki.py --action show --ca "$4"</command>
+          </tagNode>
           <node name="certificate">
             <properties>
               <help>Show certificates</help>
-- 
cgit v1.2.3


From e092ea4321510c690a51b87a9f7b3eff1fc6ed72 Mon Sep 17 00:00:00 2001
From: Christian Poessinger <christian@poessinger.com>
Date: Sun, 12 Sep 2021 20:12:58 +0200
Subject: pki: T3642: show only requested certificate in op-mode

---
 op-mode-definitions/pki.xml.in | 32 +++++++++++++++-----------------
 1 file changed, 15 insertions(+), 17 deletions(-)

(limited to 'op-mode-definitions')

diff --git a/op-mode-definitions/pki.xml.in b/op-mode-definitions/pki.xml.in
index 70154f881..75ef92d19 100644
--- a/op-mode-definitions/pki.xml.in
+++ b/op-mode-definitions/pki.xml.in
@@ -353,41 +353,39 @@
     <children>
       <node name="pki">
         <properties>
-          <help>Show PKI certificates</help>
+          <help>Show PKI x509 certificates</help>
         </properties>
         <children>
           <leafNode name="ca">
             <properties>
-              <help>Show CA certificates</help>
+              <help>Show x509 CA certificates</help>
             </properties>
             <command>sudo ${vyos_op_scripts_dir}/pki.py --action show --ca "all"</command>
           </leafNode>
           <tagNode name="ca">
             <properties>
-              <help>Show CA certificate by name</help>
+              <help>Show x509 CA certificate by name</help>
               <completionHelp>
                 <path>pki ca</path>
               </completionHelp>
             </properties>
             <command>sudo ${vyos_op_scripts_dir}/pki.py --action show --ca "$4"</command>
           </tagNode>
-          <node name="certificate">
+          <leafNode name="certificate">
             <properties>
-              <help>Show certificates</help>
+              <help>Show x509 certificates</help>
             </properties>
-            <children>
-              <leafNode name="name">
-                <properties>
-                  <help>Show certificate by name</help>
-                  <completionHelp>
-                    <path>pki certificate</path>
-                  </completionHelp>
-                </properties>
-                <command>sudo ${vyos_op_scripts_dir}/pki.py --action show --certificate "$5"</command>
-              </leafNode>
-            </children>
             <command>sudo ${vyos_op_scripts_dir}/pki.py --action show --certificate "all"</command>
-          </node>
+          </leafNode>
+          <tagNode name="certificate">
+            <properties>
+              <help>Show x509 certificate by name</help>
+              <completionHelp>
+                <path>pki certificate</path>
+              </completionHelp>
+            </properties>
+            <command>sudo ${vyos_op_scripts_dir}/pki.py --action show --certificate "all"</command>
+          </tagNode>
           <node name="crl">
             <properties>
               <help>Show certificate revocation lists</help>
-- 
cgit v1.2.3


From 42f675bb1c160fa6b1115e2b3f26afbdfa26e734 Mon Sep 17 00:00:00 2001
From: Christian Poessinger <christian@poessinger.com>
Date: Sun, 12 Sep 2021 20:12:58 +0200
Subject: pki: T3642: show only requested certificate in op-mode

---
 op-mode-definitions/pki.xml.in | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

(limited to 'op-mode-definitions')

diff --git a/op-mode-definitions/pki.xml.in b/op-mode-definitions/pki.xml.in
index 75ef92d19..9aaf2a571 100644
--- a/op-mode-definitions/pki.xml.in
+++ b/op-mode-definitions/pki.xml.in
@@ -384,7 +384,7 @@
                 <path>pki certificate</path>
               </completionHelp>
             </properties>
-            <command>sudo ${vyos_op_scripts_dir}/pki.py --action show --certificate "all"</command>
+            <command>sudo ${vyos_op_scripts_dir}/pki.py --action show --certificate "$4"</command>
           </tagNode>
           <node name="crl">
             <properties>
-- 
cgit v1.2.3


From f86b7314d025fd0cf11c2d91638ed3cc7c4fa507 Mon Sep 17 00:00:00 2001
From: Christian Poessinger <christian@poessinger.com>
Date: Sun, 12 Sep 2021 20:23:45 +0200
Subject: pki: T3642: listing all CRLs show be doen using a leafNode

---
 op-mode-definitions/pki.xml.in | 17 +++--------------
 1 file changed, 3 insertions(+), 14 deletions(-)

(limited to 'op-mode-definitions')

diff --git a/op-mode-definitions/pki.xml.in b/op-mode-definitions/pki.xml.in
index 9aaf2a571..a1c55dcf4 100644
--- a/op-mode-definitions/pki.xml.in
+++ b/op-mode-definitions/pki.xml.in
@@ -386,23 +386,12 @@
             </properties>
             <command>sudo ${vyos_op_scripts_dir}/pki.py --action show --certificate "$4"</command>
           </tagNode>
-          <node name="crl">
+          <leafNode name="crl">
             <properties>
-              <help>Show certificate revocation lists</help>
+              <help>Show x509 certificate revocation lists</help>
             </properties>
-            <children>
-              <leafNode name="name">
-                <properties>
-                  <help>Show certificate revocation lists from specified CA</help>
-                  <completionHelp>
-                    <path>pki ca</path>
-                  </completionHelp>
-                </properties>
-                <command>sudo ${vyos_op_scripts_dir}/pki.py --action show --crl "$5"</command>
-              </leafNode>
-            </children>
             <command>sudo ${vyos_op_scripts_dir}/pki.py --action show --crl "all"</command>
-          </node>
+          </leafNode>
         </children>
         <command>sudo ${vyos_op_scripts_dir}/pki.py --action show</command>
       </node>
-- 
cgit v1.2.3


From 41807725cad3266bf426a9de411bb693b914395e Mon Sep 17 00:00:00 2001
From: Christian Poessinger <christian@poessinger.com>
Date: Sun, 19 Sep 2021 09:17:00 +0200
Subject: dhcp: op-mode: xml: fix duplicate help string

---
 op-mode-definitions/dhcp.xml.in | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

(limited to 'op-mode-definitions')

diff --git a/op-mode-definitions/dhcp.xml.in b/op-mode-definitions/dhcp.xml.in
index 6f0c25110..9b21cb9af 100644
--- a/op-mode-definitions/dhcp.xml.in
+++ b/op-mode-definitions/dhcp.xml.in
@@ -128,13 +128,13 @@
         <children>
           <node name="server">
             <properties>
-              <help>Restart the DHCP server process</help>
+              <help>Restart DHCP server process</help>
             </properties>
             <command>sudo systemctl restart isc-dhcp-server.service</command>
           </node>
           <node name="relay-agent">
             <properties>
-              <help>Restart the DHCP server process</help>
+              <help>Restart DHCP relay agent</help>
             </properties>
             <command>sudo ${vyos_op_scripts_dir}/restart_dhcp_relay.py --ipv4</command>
           </node>
-- 
cgit v1.2.3


From 83f9d4b8bac6b5d401dfea19d4f9d61b7e638a47 Mon Sep 17 00:00:00 2001
From: Christian Poessinger <christian@poessinger.com>
Date: Sun, 19 Sep 2021 09:17:36 +0200
Subject: dhcp: op-mode: xml: error out if DHCP service not configured

---
 op-mode-definitions/dhcp.xml.in | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

(limited to 'op-mode-definitions')

diff --git a/op-mode-definitions/dhcp.xml.in b/op-mode-definitions/dhcp.xml.in
index 9b21cb9af..4e7568ab6 100644
--- a/op-mode-definitions/dhcp.xml.in
+++ b/op-mode-definitions/dhcp.xml.in
@@ -130,7 +130,7 @@
             <properties>
               <help>Restart DHCP server process</help>
             </properties>
-            <command>sudo systemctl restart isc-dhcp-server.service</command>
+            <command>if cli-shell-api existsActive service dhcp-server; then sudo systemctl restart isc-dhcp-server.service; else echo "DHCP server not configured"; fi</command>
           </node>
           <node name="relay-agent">
             <properties>
-- 
cgit v1.2.3


From 5d4c75d7fdecc56a8864a3ef76ead3f6121a0cff Mon Sep 17 00:00:00 2001
From: Christian Poessinger <christian@poessinger.com>
Date: Sun, 19 Sep 2021 09:21:00 +0200
Subject: dhcpv6: op-mode: xml: fix duplicate help strings

---
 op-mode-definitions/dhcp.xml.in | 12 ++++++------
 1 file changed, 6 insertions(+), 6 deletions(-)

(limited to 'op-mode-definitions')

diff --git a/op-mode-definitions/dhcp.xml.in b/op-mode-definitions/dhcp.xml.in
index 4e7568ab6..7f4bdb990 100644
--- a/op-mode-definitions/dhcp.xml.in
+++ b/op-mode-definitions/dhcp.xml.in
@@ -123,18 +123,18 @@
     <children>
       <node name="dhcp">
         <properties>
-          <help>Restart DHCP server processes</help>
+          <help>Restart DHCP processes</help>
         </properties>
         <children>
           <node name="server">
             <properties>
-              <help>Restart DHCP server process</help>
+              <help>Restart DHCP server</help>
             </properties>
             <command>if cli-shell-api existsActive service dhcp-server; then sudo systemctl restart isc-dhcp-server.service; else echo "DHCP server not configured"; fi</command>
           </node>
           <node name="relay-agent">
             <properties>
-              <help>Restart DHCP relay agent</help>
+              <help>Restart DHCP relay-agent</help>
             </properties>
             <command>sudo ${vyos_op_scripts_dir}/restart_dhcp_relay.py --ipv4</command>
           </node>
@@ -142,18 +142,18 @@
       </node>
       <node name="dhcpv6">
         <properties>
-          <help>Restart DHCPv6 server processes</help>
+          <help>Restart DHCPv6 processes</help>
         </properties>
         <children>
           <node name="server">
             <properties>
-              <help>Restart the DHCPv6 server process</help>
+              <help>Restart DHCPv6 server</help>
             </properties>
             <command>sudo systemctl restart isc-dhcp-server6.service</command>
           </node>
           <node name="relay-agent">
             <properties>
-              <help>Restart the DHCP server process</help>
+              <help>Restart DHCPv6 relay-agent</help>
             </properties>
             <command>sudo ${vyos_op_scripts_dir}/restart_dhcp_relay.py --ipv6</command>
           </node>
-- 
cgit v1.2.3


From 224f0b8042f439b8dcc0eb32730da669e8b163af Mon Sep 17 00:00:00 2001
From: Christian Poessinger <christian@poessinger.com>
Date: Sun, 19 Sep 2021 09:21:25 +0200
Subject: dhcpv6: op-mode: xml: error out if DHCPv6 service not configured

Restarting DHCPv6 server should not be possible when service is not configured
on the CLI.
---
 op-mode-definitions/dhcp.xml.in | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

(limited to 'op-mode-definitions')

diff --git a/op-mode-definitions/dhcp.xml.in b/op-mode-definitions/dhcp.xml.in
index 7f4bdb990..241cca0ce 100644
--- a/op-mode-definitions/dhcp.xml.in
+++ b/op-mode-definitions/dhcp.xml.in
@@ -149,7 +149,7 @@
             <properties>
               <help>Restart DHCPv6 server</help>
             </properties>
-            <command>sudo systemctl restart isc-dhcp-server6.service</command>
+            <command>if cli-shell-api existsActive service dhcpv6-server; then sudo systemctl restart isc-dhcp-server6.service; else echo "DHCPv6 server not configured"; fi</command>
           </node>
           <node name="relay-agent">
             <properties>
-- 
cgit v1.2.3


From 801123eff1bf232ca1e5202ceb0989c2fba34c86 Mon Sep 17 00:00:00 2001
From: Christian Poessinger <christian@poessinger.com>
Date: Sat, 25 Sep 2021 16:34:52 +0200
Subject: op-mode: bgp: "show bgp ipv4|ipv6" should display routing table

The <command> node was missed out when adding the XML definitions.
---
 op-mode-definitions/include/bgp/show-bgp-common.xml.i | 2 ++
 1 file changed, 2 insertions(+)

(limited to 'op-mode-definitions')

diff --git a/op-mode-definitions/include/bgp/show-bgp-common.xml.i b/op-mode-definitions/include/bgp/show-bgp-common.xml.i
index 0664b11fc..e81b26b3e 100644
--- a/op-mode-definitions/include/bgp/show-bgp-common.xml.i
+++ b/op-mode-definitions/include/bgp/show-bgp-common.xml.i
@@ -22,6 +22,7 @@
     #include <include/bgp/afi-ipv4-ipv6-common.xml.i>
     #include <include/bgp/afi-ipv4-ipv6-vpn.xml.i>
   </children>
+  <command>${vyos_op_scripts_dir}/vtysh_wrapper.sh $@</command>
 </node>
 <tagNode name="ipv6">
   <properties>
@@ -44,6 +45,7 @@
     #include <include/bgp/afi-ipv4-ipv6-common.xml.i>
     #include <include/bgp/afi-ipv4-ipv6-vpn.xml.i>
   </children>
+  <command>${vyos_op_scripts_dir}/vtysh_wrapper.sh $@</command>
 </node>
 <node name="l2vpn">
   <properties>
-- 
cgit v1.2.3


From f43e02715d92d59da937454d6b9dfeb0e725bed4 Mon Sep 17 00:00:00 2001
From: Christian Poessinger <christian@poessinger.com>
Date: Mon, 4 Oct 2021 19:45:22 +0200
Subject: op-mode: T3889: migrate to journalctl when reading daemon logs

(cherry picked from commit 3b2523b816556aa911459097c2476a2da4542151)
---
 op-mode-definitions/show-log.xml.in | 37 ++++++++++++++++++++++++-------------
 1 file changed, 24 insertions(+), 13 deletions(-)

(limited to 'op-mode-definitions')

diff --git a/op-mode-definitions/show-log.xml.in b/op-mode-definitions/show-log.xml.in
index 92c1cf016..f31c85245 100644
--- a/op-mode-definitions/show-log.xml.in
+++ b/op-mode-definitions/show-log.xml.in
@@ -6,7 +6,7 @@
         <properties>
           <help>Show contents of current master log file</help>
         </properties>
-        <command>/bin/journalctl</command>
+        <command>journalctl --boot</command>
         <children>
           <leafNode name="all">
             <properties>
@@ -18,7 +18,7 @@
             <properties>
               <help>Show listing of authorization attempts</help>
             </properties>
-            <command>/bin/journalctl --quiet SYSLOG_FACILITY=10 SYSLOG_FACILITY=4</command>
+            <command>journalctl --boot --quiet SYSLOG_FACILITY=10 SYSLOG_FACILITY=4</command>
           </leafNode>
           <leafNode name="cluster">
             <properties>
@@ -30,7 +30,7 @@
             <properties>
               <help>Show log for Conntrack-sync</help>
             </properties>
-            <command>cat $(printf "%s\n" /var/log/messages* | sort -nr ) | grep -e conntrackd</command>
+            <command>journalctl --boot --unit conntrackd.service</command>
           </leafNode>
           <leafNode name="dhcp">
             <properties>
@@ -89,7 +89,7 @@
             <properties>
               <help>Show log for HTTPs</help>
             </properties>
-            <command>cat $(printf "%s\n" /var/log/messages* | sort -nr) | grep -e nginx</command>
+            <command>journalctl --boot --unit nginx.service</command>
           </leafNode>
           <tagNode name="image">
             <properties>
@@ -133,7 +133,7 @@
             <properties>
               <help>Show log for LLDP</help>
             </properties>
-            <command>cat $(printf "%s\n" /var/log/messages* | sort -nr) | grep -e lldpd</command>
+            <command>journalctl --boot --unit lldpd.service</command>
           </leafNode>
           <leafNode name="nat">
             <properties>
@@ -141,17 +141,28 @@
             </properties>
             <command>egrep -i "kernel:.*\[NAT-[A-Z]{3,}-[0-9]+(-MASQ)?\]" $(find /var/log -maxdepth 1 -type f -name messages\* | sort -t. -k2nr)</command>
           </leafNode>
-          <leafNode name="openvpn">
+          <node name="openvpn">
             <properties>
               <help>Show log for OpenVPN</help>
             </properties>
-            <command>cat $(printf "%s\n" /var/log/messages* | sort -nr) | grep -e openvpn</command>
-          </leafNode>
+            <command>journalctl --boot --unit openvpn@*.service</command>
+            <children>
+              <tagNode name="interface">
+                <properties>
+                  <help>Show OpenVPN log on specific interface</help>
+                  <completionHelp>
+                    <path>interfaces openvpn</path>
+                  </completionHelp>
+                </properties>
+                <command>journalctl --boot --unit openvpn@$5.service</command>
+              </tagNode>
+            </children>
+          </node>
           <leafNode name="snmp">
             <properties>
               <help>Show log for Simple Network Monitoring Protocol (SNMP)</help>
             </properties>
-            <command>cat $(printf "%s\n" /var/log/messages* | sort -nr) | grep -e snmpd</command>
+            <command>journalctl --boot --unit snmpd.service</command>
           </leafNode>
           <tagNode name="tail">
             <properties>
@@ -195,13 +206,13 @@
                 <properties>
                   <help>Show log for PPTP</help>
                 </properties>
-                <command>cat $(printf "%s\n" /var/log/messages* | sort -nr) | grep -e accel-pptp -e ppp</command>
+                <command>journalctl --boot --unit accel-ppp@pptp.service</command>
               </leafNode>
               <leafNode name="sstp">
                 <properties>
                   <help>Show log for SSTP</help>
                 </properties>
-                <command>cat $(printf "%s\n" /var/log/messages* | sort -nr) | grep -e accel-sstp -e ppp</command>
+                <command>journalctl --boot --unit accel-ppp@sstp.service</command>
               </leafNode>
             </children>
           </node>
@@ -209,13 +220,13 @@
             <properties>
               <help>Show log for Virtual Router Redundancy Protocol (VRRP)</help>
             </properties>
-            <command>cat $(printf "%s\n" /var/log/messages* | sort -nr) | grep -e Keepalived_vrrp</command>
+            <command>journalctl --boot --unit keepalived.service</command>
           </leafNode>
           <leafNode name="webproxy">
             <properties>
               <help>Show log for Webproxy</help>
             </properties>
-            <command>cat $(printf "%s\n" /var/log/messages* | sort -nr) | grep -e "squid"</command>
+            <command>journalctl --boot --unit squid.service</command>
           </leafNode>
         </children>
       </node>
-- 
cgit v1.2.3


From b7189cd1df327621a304ca65626a517223db6432 Mon Sep 17 00:00:00 2001
From: Christian Poessinger <christian@poessinger.com>
Date: Mon, 4 Oct 2021 19:49:07 +0200
Subject: op-mode: dhcpv(v6): T3890: retrieve both server and client logfiles

* rename: "show log dhcp" will become "show log dhcp server"

* add: "show log dhcp client" to display logs from ALL DHCP client processes
* add: "show log dhcp client interface <name>" to display logs from individual
  DHCP client processes
* add: "show log dhcpv6 server" to display infos about running DHCPv6 server
* add: "show log dhcpv6 client" to display logs from ALL DHCPv6 client processes
* add: "show log dhcpv6 client interface <name>" to display logs from individual
  DHCPv6 client processes

(cherry picked from commit ffd73958e42c20f69ded64393491966e0c9230c6)
---
 op-mode-definitions/show-log.xml.in | 60 +++++++++++++++++++++++++++++++++++--
 1 file changed, 57 insertions(+), 3 deletions(-)

(limited to 'op-mode-definitions')

diff --git a/op-mode-definitions/show-log.xml.in b/op-mode-definitions/show-log.xml.in
index f31c85245..3156d822a 100644
--- a/op-mode-definitions/show-log.xml.in
+++ b/op-mode-definitions/show-log.xml.in
@@ -32,12 +32,66 @@
             </properties>
             <command>journalctl --boot --unit conntrackd.service</command>
           </leafNode>
-          <leafNode name="dhcp">
+          <node name="dhcp">
             <properties>
               <help>Show log for Dynamic Host Control Protocol (DHCP)</help>
             </properties>
-            <command>cat $(printf "%s\n" /var/log/messages* | sort -nr) | grep dhcpd</command>
-          </leafNode>
+            <children>
+              <node name="server">
+                <properties>
+                  <help>Show log for DHCP server</help>
+                </properties>
+                <command>journalctl --boot --unit isc-dhcp-server.service</command>
+              </node>
+              <node name="client">
+                <properties>
+                  <help>Show DHCP client logs</help>
+                </properties>
+                <command>journalctl --boot --unit "dhclient@*.service"</command>
+                <children>
+                  <tagNode name="interface">
+                    <properties>
+                      <help>Show DHCP client log on specific interface</help>
+                      <completionHelp>
+                        <script>${vyos_completion_dir}/list_interfaces.py --broadcast</script>
+                      </completionHelp>
+                    </properties>
+                    <command>journalctl --boot --unit "dhclient@$6.service"</command>
+                  </tagNode>
+                </children>
+              </node>
+            </children>
+          </node>
+          <node name="dhcpv6">
+            <properties>
+              <help>Show log for Dynamic Host Control Protocol IPv6 (DHCPv6)</help>
+            </properties>
+            <children>
+              <node name="server">
+                <properties>
+                  <help>Show log for DHCPv6 server</help>
+                </properties>
+                <command>journalctl --boot --unit isc-dhcp-server6.service</command>
+              </node>
+              <node name="client">
+                <properties>
+                  <help>Show DHCPv6 client logs</help>
+                </properties>
+                <command>journalctl --boot --unit "dhcp6c@*.service"</command>
+                <children>
+                  <tagNode name="interface">
+                    <properties>
+                      <help>Show DHCPv6 client log on specific interface</help>
+                      <completionHelp>
+                        <script>${vyos_completion_dir}/list_interfaces.py</script>
+                      </completionHelp>
+                    </properties>
+                    <command>journalctl --boot --unit "dhcp6c@$6.service"</command>
+                  </tagNode>
+                </children>
+              </node>
+            </children>
+          </node>
           <node name="firewall">
             <properties>
               <help>Show log for Firewall</help>
-- 
cgit v1.2.3


From adc7ef387d40e92bd7163ee6b401e99e554394a3 Mon Sep 17 00:00:00 2001
From: Christian Poessinger <christian@poessinger.com>
Date: Tue, 5 Oct 2021 19:43:08 +0200
Subject: op-mode: T3889: do not display redundant hostname when reading logs

(cherry picked from commit 30cf3bc79e2253a004fcbbf76c9f99c52e7bc216)
---
 op-mode-definitions/show-log.xml.in | 38 ++++++++++++++++++-------------------
 1 file changed, 19 insertions(+), 19 deletions(-)

(limited to 'op-mode-definitions')

diff --git a/op-mode-definitions/show-log.xml.in b/op-mode-definitions/show-log.xml.in
index 3156d822a..4c0a7913b 100644
--- a/op-mode-definitions/show-log.xml.in
+++ b/op-mode-definitions/show-log.xml.in
@@ -6,7 +6,7 @@
         <properties>
           <help>Show contents of current master log file</help>
         </properties>
-        <command>journalctl --boot</command>
+        <command>journalctl --no-hostname --boot</command>
         <children>
           <leafNode name="all">
             <properties>
@@ -18,7 +18,7 @@
             <properties>
               <help>Show listing of authorization attempts</help>
             </properties>
-            <command>journalctl --boot --quiet SYSLOG_FACILITY=10 SYSLOG_FACILITY=4</command>
+            <command>journalctl --no-hostname --boot --quiet SYSLOG_FACILITY=10 SYSLOG_FACILITY=4</command>
           </leafNode>
           <leafNode name="cluster">
             <properties>
@@ -30,7 +30,7 @@
             <properties>
               <help>Show log for Conntrack-sync</help>
             </properties>
-            <command>journalctl --boot --unit conntrackd.service</command>
+            <command>journalctl --no-hostname --boot --unit conntrackd.service</command>
           </leafNode>
           <node name="dhcp">
             <properties>
@@ -41,13 +41,13 @@
                 <properties>
                   <help>Show log for DHCP server</help>
                 </properties>
-                <command>journalctl --boot --unit isc-dhcp-server.service</command>
+                <command>journalctl --no-hostname --boot --unit isc-dhcp-server.service</command>
               </node>
               <node name="client">
                 <properties>
                   <help>Show DHCP client logs</help>
                 </properties>
-                <command>journalctl --boot --unit "dhclient@*.service"</command>
+                <command>journalctl --no-hostname --boot --unit "dhclient@*.service"</command>
                 <children>
                   <tagNode name="interface">
                     <properties>
@@ -56,7 +56,7 @@
                         <script>${vyos_completion_dir}/list_interfaces.py --broadcast</script>
                       </completionHelp>
                     </properties>
-                    <command>journalctl --boot --unit "dhclient@$6.service"</command>
+                    <command>journalctl --no-hostname --boot --unit "dhclient@$6.service"</command>
                   </tagNode>
                 </children>
               </node>
@@ -71,13 +71,13 @@
                 <properties>
                   <help>Show log for DHCPv6 server</help>
                 </properties>
-                <command>journalctl --boot --unit isc-dhcp-server6.service</command>
+                <command>journalctl --no-hostname --boot --unit isc-dhcp-server6.service</command>
               </node>
               <node name="client">
                 <properties>
                   <help>Show DHCPv6 client logs</help>
                 </properties>
-                <command>journalctl --boot --unit "dhcp6c@*.service"</command>
+                <command>journalctl --no-hostname --boot --unit "dhcp6c@*.service"</command>
                 <children>
                   <tagNode name="interface">
                     <properties>
@@ -86,7 +86,7 @@
                         <script>${vyos_completion_dir}/list_interfaces.py</script>
                       </completionHelp>
                     </properties>
-                    <command>journalctl --boot --unit "dhcp6c@$6.service"</command>
+                    <command>journalctl --no-hostname --boot --unit "dhcp6c@$6.service"</command>
                   </tagNode>
                 </children>
               </node>
@@ -143,7 +143,7 @@
             <properties>
               <help>Show log for HTTPs</help>
             </properties>
-            <command>journalctl --boot --unit nginx.service</command>
+            <command>journalctl --no-hostname --boot --unit nginx.service</command>
           </leafNode>
           <tagNode name="image">
             <properties>
@@ -173,7 +173,7 @@
                     <list>&lt;NUMBER&gt;</list>
                   </completionHelp>
                 </properties>
-                <command>tail -n "$6"  /lib/live/mount/persistence/boot/$4/rw/var/log/messages | ${VYATTA_PAGER:-cat}</command>
+                <command>tail -n "$6" /lib/live/mount/persistence/boot/$4/rw/var/log/messages | ${VYATTA_PAGER:-cat}</command>
               </tagNode>
             </children>
           </tagNode>
@@ -187,7 +187,7 @@
             <properties>
               <help>Show log for LLDP</help>
             </properties>
-            <command>journalctl --boot --unit lldpd.service</command>
+            <command>journalctl --no-hostname --boot --unit lldpd.service</command>
           </leafNode>
           <leafNode name="nat">
             <properties>
@@ -199,7 +199,7 @@
             <properties>
               <help>Show log for OpenVPN</help>
             </properties>
-            <command>journalctl --boot --unit openvpn@*.service</command>
+            <command>journalctl --no-hostname --boot --unit openvpn@*.service</command>
             <children>
               <tagNode name="interface">
                 <properties>
@@ -208,7 +208,7 @@
                     <path>interfaces openvpn</path>
                   </completionHelp>
                 </properties>
-                <command>journalctl --boot --unit openvpn@$5.service</command>
+                <command>journalctl --no-hostname --boot --unit openvpn@$5.service</command>
               </tagNode>
             </children>
           </node>
@@ -216,7 +216,7 @@
             <properties>
               <help>Show log for Simple Network Monitoring Protocol (SNMP)</help>
             </properties>
-            <command>journalctl --boot --unit snmpd.service</command>
+            <command>journalctl --no-hostname --boot --unit snmpd.service</command>
           </leafNode>
           <tagNode name="tail">
             <properties>
@@ -260,13 +260,13 @@
                 <properties>
                   <help>Show log for PPTP</help>
                 </properties>
-                <command>journalctl --boot --unit accel-ppp@pptp.service</command>
+                <command>journalctl --no-hostname --boot --unit accel-ppp@pptp.service</command>
               </leafNode>
               <leafNode name="sstp">
                 <properties>
                   <help>Show log for SSTP</help>
                 </properties>
-                <command>journalctl --boot --unit accel-ppp@sstp.service</command>
+                <command>journalctl --no-hostname --boot --unit accel-ppp@sstp.service</command>
               </leafNode>
             </children>
           </node>
@@ -274,13 +274,13 @@
             <properties>
               <help>Show log for Virtual Router Redundancy Protocol (VRRP)</help>
             </properties>
-            <command>journalctl --boot --unit keepalived.service</command>
+            <command>journalctl --no-hostname --boot --unit keepalived.service</command>
           </leafNode>
           <leafNode name="webproxy">
             <properties>
               <help>Show log for Webproxy</help>
             </properties>
-            <command>journalctl --boot --unit squid.service</command>
+            <command>journalctl --no-hostname --boot --unit squid.service</command>
           </leafNode>
         </children>
       </node>
-- 
cgit v1.2.3