summaryrefslogtreecommitdiff
AgeCommit message (Collapse)Author
6 dayslogin: T7159: limit the "not a production version" to dev buildsDaniil Baturin
(as in, display it only if the build_type version data field is not "release")
8 daysMerge pull request #4417 from jestabro/submod-libvyosconfigJohn Estabrook
T7289: add libvyosconfig as git submodule for builds from private repos
9 daysMerge pull request #4409 from woodsb02/patch-2Christian Breunig
syslog: T7270: fix typos in rsyslog.conf
9 daysMerge pull request #4416 from sever-sever/T7286Christian Breunig
T7286: Add CLI option to disable LDP establish packets
9 daysMerge pull request #4418 from kumvijaya/currentChristian Breunig
T7291: disabled codeowners review
9 daysMerge pull request #4423 from jestabro/preserve-symlinksChristian Breunig
T7294: preserve /config symlinks on image upgrade
9 daysT7286: Add CLI option to disable LDP establish packetsViacheslav Hletenko
If a router has not formed an LDP neighbor adjacency yet, it answers all received LDP Hello packets from non-neighbors with new Hello packets. This leads to flooding LDP packets to all routers for each LDP incoming packet. Add configuration option to disable this behavior ``` set protocols mpls ldp interface eth0 disable-establish-hello ```
9 daysT7294: preserve /config symlinks on image upgradeJohn Estabrook
The service certbot expects symbolic links for /config/auth/letsencrypt/live/<cert_name>/*.pem however, the default behavior of copytree copies the linked files during image upgrade. Set copytree argument to preserve symlinks.
9 daysMerge pull request #4421 from dmbaturin/T7295-tzdata-dependencyDaniil Baturin
fixup: T7295: add an explicit dependency on tzdata > 2025 to prevent APT from pulling that package from buster
9 daysfixup: T7295: add an explicit dependency on tzdata > 2025Daniil Baturin
to prevent APT from pulling that package from buster
10 daysT7291: disabled codeowners reviewkumvijaya
10 daysT7289: attempt to update submodule if status inconsistentJohn Estabrook
10 daysT7289: set url as relative pathJohn Estabrook
10 daysT7289: update Makefile for libvyosconfig as git submoduleJohn Estabrook
11 daysT7289: add libvyosconfig as git submoduleJohn Estabrook
12 daysMerge pull request #4415 from jestabro/strip-versionJohn Estabrook
T7246: update hash for strip version on config load
12 daysT7246: update hash for strip version on config loadJohn Estabrook
12 daysMerge pull request #4413 from oniko94/fix/T7278-fix-cracklib-dep-buildJohn Estabrook
T7278: Remove cracklib hack from postconfig script template
12 daysMerge pull request #4326 from Embezzle/T5493Daniil Baturin
firewall: T5493: Implement remote-group
13 dayssyslog: T7270: improve descriptions of format optionsBen Woods
13 daysT7278: Remove cracklib hack from postinstall script templateoniko94
2025-03-21firewall: T5493: Implement remote-groupAlex W
2025-03-21syslog: T7270: fix SyslogProtocol23Format typo in rsyslog.confBen Woods
2025-03-21syslog: T7270: fix octed-counted typo in rsyslog.confBen Woods
2025-03-21Merge pull request #4397 from c-po/T861-secure-boot-certsChristian Breunig
T861: rename Secure Boot MOK (Machine Owner Key) file
2025-03-21Merge pull request #4400 from l0crian1/currentChristian Breunig
T7138: Fix show qos
2025-03-20Merge pull request #4402 from c-po/wireguard-key-T7246Christian Breunig
wireguard: T7246: verify Base64 encoded 32byte boundary on keys
2025-03-20wireguard: T7246: verify Base64 encoded 32byte boundary on keysChristian Breunig
Not 31 bytes or 33 bytes, but exactly 32. This matters, because 32 does not divide evenly by .75, so there's a padding character and the penultimate character does not include the whole base64 alphabet. Extend the base64 validator with an optional argument to define the length to match of the decrypted Base64 encoded string. Source: https://lists.zx2c4.com/pipermail/wireguard/2020-December/006222.html
2025-03-20Merge pull request #4407 from jestabro/relax-lexer-testJohn Estabrook
T7246: update libvyosconfig hash and add nosetest
2025-03-20T7246: update libvyosconfig hash and add nosetestJohn Estabrook
2025-03-20Merge pull request #4406 from jestabro/relax-lexerJohn Estabrook
T7246: do not pass unneeded version string to parser
2025-03-18T7246: do not pass unneeded version string to parserJohn Estabrook
Previously the parser would ignore lines beginning with '//', however this is unnecessarily restrictive. Pass only config information to parser, as the version string is saved separately for reconstruction on render.
2025-03-18Merge pull request #4398 from jestabro/commitdDaniil Baturin
T7121: Set up communication vyconfd to vyos-commitd
2025-03-18Merge pull request #4405 from c-po/certbot-T7249Daniil Baturin
pki: T7249: fix shebang to support CLI backend
2025-03-18T7121: T6946: update hash for commit algorithm/commitd messagingJohn Estabrook
2025-03-18Merge pull request #4399 from sever-sever/T7252Daniil Baturin
T7252: Allow vpptun and vpptap for constraint validator
2025-03-18bgp: T7157: Allow using route-maps for VRF route leaking in BGP (#4404)aapostoliuk
* bgp: T7157: Allow using route-maps for VRF route leaking in BGP Added the possibility of using route-map in route leaking. * Improve the constraint error message --------- Co-authored-by: Daniil Baturin <daniil@baturin.org>
2025-03-18Merge pull request #4390 from ↵Viacheslav Hletenko
oniko94/feature/T6353-add-password-complexity-validation T6353: Add password complexity validation for system login user
2025-03-18pki: T7249: fix shebang to support CLI backendChristian Breunig
Fixes an error: interpreter/vyatta-cfg-run: line 162: `vyatta_config_commit-confirm': not a valid identifier Which prevented to renew the certificates. This will only fix renewing of the certificates. Nothing changed in how daemons will be restarted if a certificate is updated.
2025-03-18T6353: Change cli_commit to return the command outputoniko94
2025-03-18T6353: Add password strength check and user warningoniko94
2025-03-17Merge pull request #4401 from dmbaturin/T7217-generate-dropbear-keysChristian Breunig
console-server: T7217: generate Dropbear SSH keys if they do not exist
2025-03-17console-server: T7217: generate Dropbear SSH keys if they do not existDaniil Baturin
2025-03-17T7138: Fix show qosl0crian1
This change corrects a behavior witnessed in T7138. If a policy name had a `-` in it, the command would fail, returning nothing.
2025-03-17T7252: Allow vpptun and vpptap for constraint validatorViacheslav Hletenko
It fixes cases whey we want to use VPP kernel interfaces for OSPF But VPP kernel interface is not exists on this step set vpp interfaces loopback lo0 kernel-interface 'vpptun0' set protocols ospf interface vpptun0 area '0' Incorrect path /sys/class/net/vpptun0: no such file or directory
2025-03-16T7121: add test_commit wrapper and test scriptJohn Estabrook
2025-03-16T7121: add vyos-commitd service as emergent replacement for vyos-configdJohn Estabrook
vyos-commitd exchanges messages with vyconfd, to replace the shim redirection of legacy commands to vyos-configd.
2025-03-16T7121: add defaults entry for vyconfd.confJohn Estabrook
The vyconfd configuration file contains socket name, canonical directories, and file names shared with vyos-commitd.
2025-03-16T7121: generate Python protobuf files at buildJohn Estabrook
2025-03-16T7121: add Config init from internal cacheJohn Estabrook
The internal cache is used as a faster replacement to parsing the active and proposed configs on initialization of a commit session.
generated by cgit v1.2.3 (git 2.39.1) at 2025-04-07 00:16:54 +0000