<feed xmlns='http://www.w3.org/2005/Atom'>
<title>vyos-1x.git/src/system/standalone_root_pw_reset, branch feature/T9082-codeql-cpp</title>
<subtitle>VyOS command definitions, scripts, and utilities (mirror of https://github.com/vyos/vyos-1x.git)
</subtitle>
<id>https://git.amelek.net/vyos/vyos-1x.git/atom?h=feature%2FT9082-codeql-cpp</id>
<link rel='self' href='https://git.amelek.net/vyos/vyos-1x.git/atom?h=feature%2FT9082-codeql-cpp'/>
<link rel='alternate' type='text/html' href='https://git.amelek.net/vyos/vyos-1x.git/'/>
<updated>2026-06-15T15:24:03+00:00</updated>
<entry>
<title>password-reset: T8985: Fix unbounded `sed` ranges corrupting other user blocks</title>
<updated>2026-06-15T15:24:03+00:00</updated>
<author>
<name>Oleksandr Kuchmystyi</name>
<email>o.kuchmystyi@vyos.io</email>
</author>
<published>2026-06-15T14:00:56+00:00</published>
<link rel='alternate' type='text/html' href='https://git.amelek.net/vyos/vyos-1x.git/commit/?id=e3b946e34b109406f38bfa5f78eb9a2ec7502bc9'/>
<id>urn:sha1:e3b946e34b109406f38bfa5f78eb9a2ec7502bc9</id>
<content type='text'>
`sed` ranges keyed on a field name (`plaintext-password`, `encrypted-password`,
`authentication {`) are not bounded to the target user's block. When the
field is absent the range stays open past the user's closing brace and
matches the first occurrence of that field in a later account.
</content>
</entry>
<entry>
<title>password-reset: T8346: Fix password recovery when only `plaintext-password` is set</title>
<updated>2026-06-04T10:47:11+00:00</updated>
<author>
<name>Oleksandr Kuchmystyi</name>
<email>o.kuchmystyi@vyos.io</email>
</author>
<published>2026-06-03T12:11:37+00:00</published>
<link rel='alternate' type='text/html' href='https://git.amelek.net/vyos/vyos-1x.git/commit/?id=1e4be728442a782e3dbfaa877104e879c9022f61'/>
<id>urn:sha1:1e4be728442a782e3dbfaa877104e879c9022f61</id>
<content type='text'>
When a user account was provisioned with only `plaintext-password` (e.g.
via cloud-init), the password recovery tool failed to persist the new
password across reboots. On the next boot, VyOS would re-apply the
`plaintext-password` from config.boot, silently overwriting the recovered
encrypted password.
</content>
</entry>
<entry>
<title>T8410: Fix typos and mistakes for comments and messages</title>
<updated>2026-03-27T15:00:17+00:00</updated>
<author>
<name>Viacheslav Hletenko</name>
<email>v.gletenko@vyos.io</email>
</author>
<published>2026-03-27T14:43:47+00:00</published>
<link rel='alternate' type='text/html' href='https://git.amelek.net/vyos/vyos-1x.git/commit/?id=139b0841f8242a5c6ebdafb37380c1fb78342aae'/>
<id>urn:sha1:139b0841f8242a5c6ebdafb37380c1fb78342aae</id>
<content type='text'>
Fix typos and mistakes
No functional changes
</content>
</entry>
<entry>
<title>T7852: Switch to yescypt for password encryption</title>
<updated>2025-09-20T19:43:09+00:00</updated>
<author>
<name>roedie</name>
<email>github@roedie.nl</email>
</author>
<published>2025-09-20T19:43:09+00:00</published>
<link rel='alternate' type='text/html' href='https://git.amelek.net/vyos/vyos-1x.git/commit/?id=44e12a001b21d6e0250466e252d61c805ba004df'/>
<id>urn:sha1:44e12a001b21d6e0250466e252d61c805ba004df</id>
<content type='text'>
Accidentally slipped in 2 whitespace corrections
</content>
</entry>
<entry>
<title>image: T4516: use copy of pw_reset script for install, link for compat</title>
<updated>2023-11-16T18:18:01+00:00</updated>
<author>
<name>John Estabrook</name>
<email>jestabro@vyos.io</email>
</author>
<published>2023-10-23T17:19:26+00:00</published>
<link rel='alternate' type='text/html' href='https://git.amelek.net/vyos/vyos-1x.git/commit/?id=424c9b19fd54598081e965c3364b082c5ef984de'/>
<id>urn:sha1:424c9b19fd54598081e965c3364b082c5ef984de</id>
<content type='text'>
Note that this was updated for the fix in T5739.
</content>
</entry>
</feed>
