summaryrefslogtreecommitdiff
AgeCommit message (Collapse)Author
2021-12-05T2076: RAID install: sfdisk change-id is deprecated in favor of --part-typeKim Hagen
T1869: Install and Boot from RAID Doesn't Work T1126: Reusing a RAID from a BIOS install in an EFI install causes a failure to boot
2021-12-05T1869: Install and Boot from RAID Doesn't WorkKim Hagen
2021-10-21T3925: interfaces: bump version 21 -> 22Christian Poessinger
2021-10-16gpg: T3879: fix signature validationChristian Poessinger
2021-09-19dhcp-server: T1968: T3838: bump version 5 -> 6Christian Poessinger
(cherry picked from commit 0383e588404d2a829fb54447cbfda63a7e107140)
2021-09-11Merge pull request #169 from erkin/equuleusDaniil Baturin
T3275: conntrack: Migrate conntrack helper versioning from vyatta-conntrack
2021-09-10T3275: conntrack: Migrate conntrack moduleerkin
2021-09-06install-image: T2108: use minisign backup key if primary key failsChristian Poessinger
2021-09-06install-image: remove whitespaces after .Christian Poessinger
2021-09-05system: T3804: bump version 20 -> 21Christian Poessinger
2021-09-03Merge pull request #167 from UnicronNL/equuleusDaniil Baturin
T1785: Deleting partitions on disks (Raid1) with default value 'no'
2021-09-03T1785: Deleting partitions on disks (Raid1) with default value 'no'Kim Hagen
the default was still set to "Yes"
2021-08-30T3619: bump interfaces version 20 -> 21Christian Poessinger
2021-08-27T3351: Check for SHA256 filesLulu Cathrinus Grimalkin
Fall back to MD5 if SHA256 checksums could not be found Don't bother downloading .iso.sha256 files (cherry picked from commit 085d0148c3d7d22afc5ce4fc10750b67c8cdfe26)
2021-08-27Merge pull request #163 from c-po/t2108-minisign-equuleusDaniil Baturin
install-image: T2108: verify image by using minisign over GPG
2021-08-26install-image: T2108: verify image by using minisign over GPGChristian Poessinger
We will first download and try to verify the image using the generated minisign signature. If this fails, we try to retrieve the GPG signature file.
2021-08-26isis: T3417: bump version 0 -> 1Christian Poessinger
(cherry picked from commit cc489a8dee5e849441536c3b5a96a2de2e92d835)
2021-08-19T3768: add https component versionJohn Estabrook
Previously, the component version for https was located in the XML interface-definition, as part of the early version of the XML syntaxVersion tag; remove early version and add here.
2021-08-08Merge pull request #160 from UnicronNL/equuleusDaniil Baturin
T169: Image install should put correct serial console device in creat…
2021-08-08T169: Image install should put correct serial console device in created grub ↵Kim Hagen
menuentry
2021-08-06T1153: VyOS 1.2.0RC10, RAID-1, fresh install, unable to save configEquuleus ↵Kim
(#159) * add search for same drive size if more than 2 drives are installed * add ability to configure RAID-1 by selecting 2 drives * cleaning up sysconf/filecaps rights * cleaning up sysconf/filecaps rights xtables-monitor
2021-07-31sysctl: T3716: remove IPv4/6 routes from FIB when link goes downChristian Poessinger
For more information see: * https://programmersought.com/article/62242485344/ * https://www.spinics.net/lists/netdev/msg332453.html * https://github.com/FRRouting/frr/blob/master/doc/user/Useful_Sysctl_Settings.md
2021-07-25tunnel: T3366: update interfaces version 19 -> 20Christian Poessinger
2021-07-02conntrack-sync: T3535: bump version from 1 -> 2Christian Poessinger
(cherry picked from commit 16feaa704c47618293657c64d33dce2f8b028f21)
2021-06-13interfaces: wwan: T3620: bump versionChristian Poessinger
(cherry-picked from commit fd1d71b62c3b7170d06040b1cad2227fe353a325)
2021-06-13wwan: T3620: rename wirelessmodem to wwanChristian Poessinger
(cherry picked from commit 736316517ae6a960af55d4fdaadfb0ac3f47334f)
2021-04-04Jenkins: use build library from proper branch "equuleus"Christian Poessinger
2021-04-03migration: T2838: fix parsing of quoted config value for hw-idJohn Estabrook
(cherry picked from commit 6019ab063d8f26172ffc3993fa25a57fcd5782aa)
2021-02-01T3255: bump rpki version 0 -> 1Christian Poessinger
(cherry picked from commit 19a711be69aee63b616808fb5f6b0c954a375bf1)
2021-01-20Debian: remove vyos-intfwatchd reference from postinstall scriptChristian Poessinger
vyos-intfwatchd was removed in commit bf1313bd0fe4 ("T669: set IPv6 keep_addr_on_down sysctl options to 1 and get rid of intfwatchd"). (cherry picked from commit e0d0de5939891c8b655ca8ce398b03802e23841a)
2021-01-17T671: cleanup rl-system and move components to better suited locationsChristian Poessinger
- CHanging sysctl values should be done by out generic file /etc/sysctl.d/30-vyatta-router.conf - NTP config must not be restored from from /opt as it is entirely rendered from scratch. (cherry picked from commit b74daed7c3d2e302426fd5c6ace7e299d4278ca0)
2021-01-04migration: T3161: move XorpConfigParser to vyatta-cfg-systemJohn Estabrook
The scripts: vyatta_net_name vyatta_interface_rescan still require XorpConfigParser; all other uses have been rewritten, or obviated. In order to retire the package vyatta-config-migrate in favor of keeping migration scripts in vyos-1x, we need to move this module into vyatta-cfg-system for use by the above mentioned scripts.
2021-01-04migration: T3161: remove scripts ec2-vyos-init, ec2-check.plJohn Estabrook
These scripts have been superseded by the cloud-init tools, and contain legacy references to XorpConfigParser.pm (via vyatta-cfg/scripts/vyatta-load-config.pl, via ConfigLoad.pm), which one would like to retire.
2021-01-04Update debian version.Daniil Baturin
2020-12-28debian: cleanup vyatta-cfg-system.postinstChristian Poessinger
VyOS requires all system services to be disabled by default, this is a second implementation of the same solution. We should stick with the general solution in [1]. [1]: https://github.com/vyos/vyos-build/blob/current/data/live-build-config/hooks/live/18-enable-disable_services.chroot
2020-12-28debian: ddclient: T757: migrate dependency to vyos-1xChristian Poessinger
2020-12-22xdp: mount /sys/fs/bpf on startup for later map populationChristian Poessinger
2020-12-20ethernet: T3140: bump config version 17 -> 18Christian Poessinger
2020-12-08Merge pull request #133 from jack9603301/currentChristian Poessinger
interfaces: T3112: bump config version 16 -> 17
2020-12-07interfaces: T3112: bump config version 16 -> 17jack9603301
2020-12-04interfaces: T3112: bump config version 15 -> 16Christian Poessinger
2020-11-27Merge pull request #132 from sever-sever/T2713Christian Poessinger
vyatta-cfg: T2713: Return original permissions for config-auth files
2020-11-27vyatta-cfg: T2713: Return original permissions for config-auth files in updatesever-sever
2020-11-21system: T3078: bump config version 19 -> 20Christian Poessinger
2020-11-21interfaces: T3048 bump config version 19 -> 20Christian Poessinger
2020-11-12Debian: T1579: drop dependency on ifupdownChristian Poessinger
This is no longer required as we take care about the interfaces by ourselfs through Python vyos.ifconfig module.
2020-11-03interfaces: T3043: bump interfaces version 13 -> 14Christian Poessinger
2020-10-28image: T3027: do not rely on the ISO filename when calculating sha256 hashChristian Poessinger
Updating a running VyOS installation by using the "add system image" command pointing to https://downloads.vyos.io/rolling/current/amd64/vyos-rolling-latest.iso will break the validation due to filename missmatch. The root cause for this is the sha256 checksum file itself. It contains the hash and the filename used when hashing. When running "sha256sum --check" during the upgrade it expects the "real" filename when calculating and verifying the hash. The real filename differs when using the vyos-rolling-latest.iso symlink on the webserver as it will tell the running VyOS installation a different filename and the validation fails. This is now fixed by not depending on the filename when verifying the hash. We simply calculate the hash of the downloaded file and compare it to the has we saved inside the checksum file and totally ignore the filename itself.
2020-10-19Merge pull request #131 from c-po/sha256-verifyChristian Poessinger
image: T2992: automatically verify sha256 checksum on ISO download
2020-10-18image: T2992: automatically verify sha256 checksum on ISO downloadChristian Poessinger
Good: ===== vyos@vyos:~$ add system image http://foo.com/vyos-1.3-rolling-202010180826-amd64.iso Trying to fetch ISO file from http://foo.com/vyos-1.3-rolling-202010180826-amd64.iso % Total % Received % Xferd Average Speed Time Time Time Current Dload Upload Total Spent Left Speed 100 309M 100 309M 0 0 25.1M 0 0:00:12 0:00:12 --:--:-- 25.2M ISO download succeeded. Checking SHA256 (256-bit) checksum... % Total % Received % Xferd Average Speed Time Time Time Current Dload Upload Total Spent Left Speed 100 106 100 106 0 0 26500 0 --:--:-- --:--:-- --:--:-- 26500 Found it. Verifying checksum... SHA256 checksum valid. Checking for digital signature file... % Total % Received % Xferd Average Speed Time Time Time Current Dload Upload Total Spent Left Speed 0 0 0 0 0 0 0 0 --:--:-- --:--:-- --:--:-- 0 curl: (22) The requested URL returned error: 404 Not Found Unable to fetch digital signature file. Do you want to continue without signature check? (yes/no) [yes] Bad: ==== vyos@vyos:~$ add system image http://foo.com/vyos-1.3-rolling-202010180826-amd64.iso Trying to fetch ISO file from http://foo.com/vyos-1.3-rolling-202010180826-amd64.iso % Total % Received % Xferd Average Speed Time Time Time Current Dload Upload Total Spent Left Speed 100 309M 100 309M 0 0 25.8M 0 0:00:11 0:00:11 --:--:-- 25.8M ISO download succeeded. Checking SHA256 (256-bit) checksum... % Total % Received % Xferd Average Speed Time Time Time Current Dload Upload Total Spent Left Speed 100 106 100 106 0 0 9636 0 --:--:-- --:--:-- --:--:-- 9636 Found it. Verifying checksum... vyos-1.3-rolling-202010180826-amd64.iso: FAILED sha256sum: WARNING: 1 computed checksum did NOT match Signature check FAILED. Installation will not be performed. Exiting...
generated by cgit v1.2.3 (git 2.39.1) at 2025-03-27 09:06:46 +0000