summaryrefslogtreecommitdiff
path: root/scripts
AgeCommit message (Collapse)Author
2020-10-28image: T3027: do not rely on the ISO filename when calculating sha256 hashChristian Poessinger
Updating a running VyOS installation by using the "add system image" command pointing to https://downloads.vyos.io/rolling/current/amd64/vyos-rolling-latest.iso will break the validation due to filename missmatch. The root cause for this is the sha256 checksum file itself. It contains the hash and the filename used when hashing. When running "sha256sum --check" during the upgrade it expects the "real" filename when calculating and verifying the hash. The real filename differs when using the vyos-rolling-latest.iso symlink on the webserver as it will tell the running VyOS installation a different filename and the validation fails. This is now fixed by not depending on the filename when verifying the hash. We simply calculate the hash of the downloaded file and compare it to the has we saved inside the checksum file and totally ignore the filename itself.
2020-10-18image: T2992: automatically verify sha256 checksum on ISO downloadChristian Poessinger
Good: ===== vyos@vyos:~$ add system image http://foo.com/vyos-1.3-rolling-202010180826-amd64.iso Trying to fetch ISO file from http://foo.com/vyos-1.3-rolling-202010180826-amd64.iso % Total % Received % Xferd Average Speed Time Time Time Current Dload Upload Total Spent Left Speed 100 309M 100 309M 0 0 25.1M 0 0:00:12 0:00:12 --:--:-- 25.2M ISO download succeeded. Checking SHA256 (256-bit) checksum... % Total % Received % Xferd Average Speed Time Time Time Current Dload Upload Total Spent Left Speed 100 106 100 106 0 0 26500 0 --:--:-- --:--:-- --:--:-- 26500 Found it. Verifying checksum... SHA256 checksum valid. Checking for digital signature file... % Total % Received % Xferd Average Speed Time Time Time Current Dload Upload Total Spent Left Speed 0 0 0 0 0 0 0 0 --:--:-- --:--:-- --:--:-- 0 curl: (22) The requested URL returned error: 404 Not Found Unable to fetch digital signature file. Do you want to continue without signature check? (yes/no) [yes] Bad: ==== vyos@vyos:~$ add system image http://foo.com/vyos-1.3-rolling-202010180826-amd64.iso Trying to fetch ISO file from http://foo.com/vyos-1.3-rolling-202010180826-amd64.iso % Total % Received % Xferd Average Speed Time Time Time Current Dload Upload Total Spent Left Speed 100 309M 100 309M 0 0 25.8M 0 0:00:11 0:00:11 --:--:-- 25.8M ISO download succeeded. Checking SHA256 (256-bit) checksum... % Total % Received % Xferd Average Speed Time Time Time Current Dload Upload Total Spent Left Speed 100 106 100 106 0 0 9636 0 --:--:-- --:--:-- --:--:-- 9636 Found it. Verifying checksum... vyos-1.3-rolling-202010180826-amd64.iso: FAILED sha256sum: WARNING: 1 computed checksum did NOT match Signature check FAILED. Installation will not be performed. Exiting...
2020-09-26cfg-system: T2902: Fix regex that doesnt allow X in image namesever-sever
2020-09-23cfg-system: T2896: Fix DHCP interface lease file namesever-sever
2020-09-01Revert "init: refresh Kernel module dependencies"Christian Poessinger
This reverts commit c406852a0288f598a74a86cde553790f6a85537f.
2020-09-01init: refresh Kernel module dependenciesChristian Poessinger
2020-08-23Merge pull request #126 from sever-sever/T2423Christian Poessinger
conf-mode: T2423: Loadkey add insecure option
2020-08-23install-image: T2690: T2762: always run in default VRF unless specifiedChristian Poessinger
When you connect via SSH and run the "add system image" command, it is launched inside the VRF you are currently connected to. This might become confusing as the VRF context changes. Change command to always run in "default" vrf unless "add system image" command is invoked with the vrf option.
2020-08-04cronjob: T1194: clear config on bootChristian Poessinger
Config must be cleared on boot, otherwise if one configures a cronjob without explicit saving the config it will still be present on the next reboot.
2020-08-01install-image: T2690: add VRF support when installing new imagesChristian Poessinger
2020-08-01install-image: T2753: add named command line optionsChristian Poessinger
This makes it easier to add VRF support.
2020-07-23conf-mode: T2423: Loadkey add insecure optionsever-sever
2020-04-11grub: remove quiet option for better information gatheringChristian Poessinger
2020-02-23pppoe: T1318: Migrate pppoe interfaces to vyos-1xChristian Poessinger
2020-02-10banner: T2024: migrate "system login banner" to XML/Python representationChristian Poessinger
2020-02-05ssh: T631: remove sshd config manglingChristian Poessinger
The configuration of SSHd is rendered from a template each time the service changes. Thus it is not required that the boot process touches the config.
2020-02-05login: T1990: Migrate "system login" to XML/Python representationChristian Poessinger
2020-01-13install: T1940, fix unbootable EFI, 4kn compatibilitykroy
2019-12-28T1912: migrate 'system ip(v6)' subsystem to XML/PythonChristian Poessinger
2019-12-26T1903: Implement predefined interface naming for VMWareDmitriyEshenko
2019-12-06Merge branch 'current' of github.com:vyos/vyatta-cfg-system into equuleusChristian Poessinger
* 'current' of github.com:vyos/vyatta-cfg-system: syslog: T1845: migration script support bumps system to 12 syslog: T1845: migration script support bumps system to 12 Revert "syslog: T1845 bumping system version for migration script" syslog: T1845 bumping system version for migration script Fix rootdev regex to support mmcblk devices geneve: T1799: add Generic Network Virtualization Encapsulation
2019-12-03Fix rootdev regex to support mmcblk devicesRobert Edström
2019-10-21Merge branch 'current' into equuleushagbard
Auto-merging scripts/rl-system.init Auto-merging scripts/install/install-image Auto-merging Jenkinsfile
2019-10-19T1743: do not generate ssh rsa1 host keysjjakob
2019-10-18[system-proxy]: T1741 - Add system wide proxy settinghagbard
2019-10-08install-image: T1718 - ISO check in /opt/vyatta/sbin/install-image faultyhagbard
2019-09-29net.ipv6.route.max_size = 262144Marek Isalski
The IPv6 DFZ is now approaching 80k routes. Time to bump VyOS's default up, because otherwise it is a nasty surprise that's tricky to debug.
2019-09-15Merge branch 'current' of github.com:vyos/vyatta-cfg-system into equuleusChristian Poessinger
* 'current' of github.com:vyos/vyatta-cfg-system: T1616: fix DHCPv6 script behaviour in op mode. openvpn: T1630: add system user openvpn vxlan: T1636: initial rewrite with XML and Python Makefile.am: fix after removing files for bridge and bonding bridge: T1615: remove old vyatta-bridge.pl bonding: T1614: increase config version from interfaces 1 -> 2 bonding: T1614: remove old style node.def files in favour of XML/Python rewrite bridge: T1556: migrate bridge config to XML/Python [tunnel] T1593: Added ip6gre encapsulation for tunnel interfaces loopback: T1601: rewrite using XML/Python definitions powerdns: T1595: add config migrator to remove 'listen-on' powerdns: T1524: support setting allow-from network dummy: T1580: rewrite in new style XML/Python
2019-09-06T1616: fix DHCPv6 script behaviour in op mode.Daniil Baturin
2019-09-04bridge: T1615: remove old vyatta-bridge.plChristian Poessinger
2019-09-04bonding: T1614: remove old style node.def files in favour of XML/Python rewriteChristian Poessinger
2019-08-15T1584: equuleus: buster: consistent grub options for live/installed imageJohn Estabrook
2019-07-31T1381: add dhclient config options for option 121 classless routes.Daniil Baturin
2019-07-31T1553: add 'noautologin' to boot parametersJohn Estabrook
Debian live-config (>= 5.0) will set the default to 'autologin' when booting in live mode, unless explicitly set.
2019-06-30Merge branch 'current' of https://github.com/vyos/vyatta-cfg-system into currentDaniil Baturin
2019-06-30T1430: initial implementation of IPv4 DHCP client id and hostname options.Daniil Baturin
2019-06-18[ installer ] T1446: on installing with efi skip theKim Hagen
xen extra checks, they use dmidecode which will not work in efi mode Get the UUID of the correct partition based on the install type (bios/efi)
2019-06-12fix if statementKim Hagen
2019-06-12Force create raid without answering the question if you want to create it.Kim Hagen
Update initramfs to include raidconfig avoiding md127 being created on reboot.
2019-06-04T1392: improve VyOS boot time by changing {hot,cold}plug callsmtudosoiu
2019-05-20[interfaces] T1387: Fix removal of DHCP interface w/o assigned addressChristian Poessinger
If a DHCP interface fails to get an IP address, deleting the interface results in a bash script error.
2019-04-29T1359: Bugfix handling VLAN interfaces on DHCP -> static address changeChristian Poessinger
Changing VLAN interface address from DHCP to static is not handeled in vyatta-address script as VLAN interfaces are called e.g. eth0.201 or br0.10 and dhclient replaces the '.' by '_', this was not handeled.
2019-04-23T1327: Set the serial console speed to 115200 by defaultJohn Estabrook
Set the default serial console speed to 115200 in system update scripts, to accord with the changes in the build scripts.
2019-04-18T1344: rename RADIUS 'system login' nodesChristian Poessinger
In order to prepare for adding a RADIUS source IP address and synchronize the syntax with L2TP/PPTP the nodes have been renamed from: set system login radius-server x.x.x.x to set system login radius server x.x.x.x
2019-04-10T1329: support installation on SD cards fixKim
2019-03-27T1296: support installation on SD cardsChristian Poessinger
2019-03-22T1309: remove duplicate ip address checkRuben Herold
2019-02-14T1174: migrate local hostname/DNS handling to vyos-1xChristian Poessinger
2019-01-23T980 and T969 update serial console baud on the flyKim
* update serial console baud on the fly * Update help of console speed, a reboot is not required anymore to set the correct baud rate.
2019-01-21T1172: vyatta_update_sysctl.pl does not support options that have multiple ↵Daniel Pro
values Updated vyatta_update_sysctl.pl, now handles multiple values
generated by cgit v1.2.3 (git 2.39.1) at 2025-02-25 19:26:21 +0000