| Age | Commit message (Collapse) | Author |
|---|
|
Backported from 686fcb96.
|
|
(cherry picked from commit 77b37732f99ca67addfde6567d5ba61173ab7730)
|
|
This change fixes installation into two NVME devices. It should be considered as
a temporary solution before migration to the new installer.
(cherry picked from commit 4e5d53ce0b5a367be3399b102186dbcd4615ab3f)
|
|
Also fix indentation
|
|
A change in behaviour of coreutils 'cp' reveals a problem when doing a
'cp -a' from the bind mount /config; use /opt/vyatta/etc/config instead.
|
|
|
|
|
|
Commit f34e9028 ("T5136: properly unmount filesystems after installation") assumed
it would be a good idea to simply rm -rf the new root folder. This could have
a bad, non booting side effect.
Warn user if unmount fails but the filesystem is synced anyway. The rest is
handled by the Kernel on reboot.
|
|
|
|
Fix a hardcoded x86_64-efi reference, and ensure the correct GRUB binary package is installed
|
|
* fixed NVME drive names parser
* replaced partition parser to take into account `p` suffixes
on NVME partitions
|
|
|
|
|
|
T1869: Install and Boot from RAID Doesn't Work
T1126: Reusing a RAID from a BIOS install in an EFI install causes a failure to boot
|
|
T3865: loadkey command help text missing escape sequence
|
|
|
|
(#159)
* add search for same drive size if more than 2 drives are installed
* add ability to configure RAID-1 by selecting 2 drives
* cleaning up sysconf/filecaps rights
* cleaning up sysconf/filecaps rights xtables-monitor
(cherry picked from commit 3cc31793d57ce05421300ce4e8a1a1352291db85)
|
|
(cherry picked from commit 217c4b5c165e9e8a64bfe82d3ddade256b0990e0)
|
|
|
|
This reverts commit 4bc5dabe46fffc2edd5bdbda27f020ed1a2bfc33.
|
|
|
|
|
|
(cherry picked from commit 0c5edf1ced2872c495b190977db575deaf28fa1c)
|
|
(cherry picked from commit c36db1614b60fc180d016fd3b7f64d9342a503a6)
|
|
the default was still set to "Yes"
|
|
We will first download and try to verify the image using the generated minisign
signature. If this fails, we try to retrieve the GPG signature file.
|
|
menuentry
|
|
Actions are now handled in vyos-router script on startup by calling the vyos-1x
Python handler scripts.
|
|
|
|
|
|
|
|
|
|
|
|
Fall back to MD5 if SHA256 checksums could not be found
Don't bother downloading .iso.sha256 files
|
|
|
|
|
|
Serial interface is in the default config and without that function
system installation via serial console still works like a charm!
|
|
|
|
|
|
|
|
|
|
- CHanging sysctl values should be done by out generic file
/etc/sysctl.d/30-vyatta-router.conf
- NTP config must not be restored from from /opt as it is entirely
rendered from scratch.
|
|
Commit ac2586bc ("T671: remove apparently unused scripts") dropped the
restricted-shell helper script which is not referenced by any other VyOS/Vyatta
shell script, but rather directly from C code [1].
Restore the file.
[1] https://github.com/vyos/libpam-radius-auth/blob/76ad405d374f70812/src/radius_shell.c#L125-L129
|
|
|
|
These scripts have been superseded by the cloud-init tools, and contain
legacy references to XorpConfigParser.pm (via
vyatta-cfg/scripts/vyatta-load-config.pl, via ConfigLoad.pm), which one
would like to retire.
|
|
The scripts:
vyatta_net_name
vyatta_interface_rescan
still require XorpConfigParser; all other uses have been rewritten, or
obviated. In order to retire the package vyatta-config-migrate in favor
of keeping migration scripts in vyos-1x, we need to move this module
into vyatta-cfg-system for use by the above mentioned scripts.
|
|
|
|
|
|
Updating a running VyOS installation by using the "add system image" command
pointing to https://downloads.vyos.io/rolling/current/amd64/vyos-rolling-latest.iso
will break the validation due to filename missmatch.
The root cause for this is the sha256 checksum file itself. It contains the hash
and the filename used when hashing. When running "sha256sum --check" during the
upgrade it expects the "real" filename when calculating and verifying the hash.
The real filename differs when using the vyos-rolling-latest.iso symlink on the
webserver as it will tell the running VyOS installation a different filename and
the validation fails.
This is now fixed by not depending on the filename when verifying the hash. We
simply calculate the hash of the downloaded file and compare it to the has we
saved inside the checksum file and totally ignore the filename itself.
|
|
Good:
=====
vyos@vyos:~$ add system image http://foo.com/vyos-1.3-rolling-202010180826-amd64.iso
Trying to fetch ISO file from http://foo.com/vyos-1.3-rolling-202010180826-amd64.iso
% Total % Received % Xferd Average Speed Time Time Time Current
Dload Upload Total Spent Left Speed
100 309M 100 309M 0 0 25.1M 0 0:00:12 0:00:12 --:--:-- 25.2M
ISO download succeeded.
Checking SHA256 (256-bit) checksum...
% Total % Received % Xferd Average Speed Time Time Time Current
Dload Upload Total Spent Left Speed
100 106 100 106 0 0 26500 0 --:--:-- --:--:-- --:--:-- 26500
Found it. Verifying checksum...
SHA256 checksum valid.
Checking for digital signature file...
% Total % Received % Xferd Average Speed Time Time Time Current
Dload Upload Total Spent Left Speed
0 0 0 0 0 0 0 0 --:--:-- --:--:-- --:--:-- 0
curl: (22) The requested URL returned error: 404 Not Found
Unable to fetch digital signature file.
Do you want to continue without signature check? (yes/no) [yes]
Bad:
====
vyos@vyos:~$ add system image http://foo.com/vyos-1.3-rolling-202010180826-amd64.iso
Trying to fetch ISO file from http://foo.com/vyos-1.3-rolling-202010180826-amd64.iso
% Total % Received % Xferd Average Speed Time Time Time Current
Dload Upload Total Spent Left Speed
100 309M 100 309M 0 0 25.8M 0 0:00:11 0:00:11 --:--:-- 25.8M
ISO download succeeded.
Checking SHA256 (256-bit) checksum...
% Total % Received % Xferd Average Speed Time Time Time Current
Dload Upload Total Spent Left Speed
100 106 100 106 0 0 9636 0 --:--:-- --:--:-- --:--:-- 9636
Found it. Verifying checksum...
vyos-1.3-rolling-202010180826-amd64.iso: FAILED
sha256sum: WARNING: 1 computed checksum did NOT match
Signature check FAILED.
Installation will not be performed.
Exiting...
|
