summaryrefslogtreecommitdiff
AgeCommit message (Collapse)Author
5 daysMerge pull request #4397 from c-po/T861-secure-boot-certsChristian Breunig
T861: rename Secure Boot MOK (Machine Owner Key) file
5 daysMerge pull request #4400 from l0crian1/currentChristian Breunig
T7138: Fix show qos
5 daysMerge pull request #4402 from c-po/wireguard-key-T7246Christian Breunig
wireguard: T7246: verify Base64 encoded 32byte boundary on keys
5 dayswireguard: T7246: verify Base64 encoded 32byte boundary on keysChristian Breunig
Not 31 bytes or 33 bytes, but exactly 32. This matters, because 32 does not divide evenly by .75, so there's a padding character and the penultimate character does not include the whole base64 alphabet. Extend the base64 validator with an optional argument to define the length to match of the decrypted Base64 encoded string. Source: https://lists.zx2c4.com/pipermail/wireguard/2020-December/006222.html
5 daysMerge pull request #4407 from jestabro/relax-lexer-testJohn Estabrook
T7246: update libvyosconfig hash and add nosetest
6 daysT7246: update libvyosconfig hash and add nosetestJohn Estabrook
6 daysMerge pull request #4406 from jestabro/relax-lexerJohn Estabrook
T7246: do not pass unneeded version string to parser
7 daysT7246: do not pass unneeded version string to parserJohn Estabrook
Previously the parser would ignore lines beginning with '//', however this is unnecessarily restrictive. Pass only config information to parser, as the version string is saved separately for reconstruction on render.
7 daysMerge pull request #4398 from jestabro/commitdDaniil Baturin
T7121: Set up communication vyconfd to vyos-commitd
7 daysMerge pull request #4405 from c-po/certbot-T7249Daniil Baturin
pki: T7249: fix shebang to support CLI backend
8 daysT7121: T6946: update hash for commit algorithm/commitd messagingJohn Estabrook
8 daysMerge pull request #4399 from sever-sever/T7252Daniil Baturin
T7252: Allow vpptun and vpptap for constraint validator
8 daysbgp: T7157: Allow using route-maps for VRF route leaking in BGP (#4404)aapostoliuk
* bgp: T7157: Allow using route-maps for VRF route leaking in BGP Added the possibility of using route-map in route leaking. * Improve the constraint error message --------- Co-authored-by: Daniil Baturin <daniil@baturin.org>
8 daysMerge pull request #4390 from ↵Viacheslav Hletenko
oniko94/feature/T6353-add-password-complexity-validation T6353: Add password complexity validation for system login user
8 dayspki: T7249: fix shebang to support CLI backendChristian Breunig
Fixes an error: interpreter/vyatta-cfg-run: line 162: `vyatta_config_commit-confirm': not a valid identifier Which prevented to renew the certificates. This will only fix renewing of the certificates. Nothing changed in how daemons will be restarted if a certificate is updated.
8 daysT6353: Change cli_commit to return the command outputoniko94
8 daysT6353: Add password strength check and user warningoniko94
8 daysMerge pull request #4401 from dmbaturin/T7217-generate-dropbear-keysChristian Breunig
console-server: T7217: generate Dropbear SSH keys if they do not exist
8 daysconsole-server: T7217: generate Dropbear SSH keys if they do not existDaniil Baturin
8 daysT7138: Fix show qosl0crian1
This change corrects a behavior witnessed in T7138. If a policy name had a `-` in it, the command would fail, returning nothing.
9 daysT7252: Allow vpptun and vpptap for constraint validatorViacheslav Hletenko
It fixes cases whey we want to use VPP kernel interfaces for OSPF But VPP kernel interface is not exists on this step set vpp interfaces loopback lo0 kernel-interface 'vpptun0' set protocols ospf interface vpptun0 area '0' Incorrect path /sys/class/net/vpptun0: no such file or directory
9 daysT7121: add test_commit wrapper and test scriptJohn Estabrook
9 daysT7121: add vyos-commitd service as emergent replacement for vyos-configdJohn Estabrook
vyos-commitd exchanges messages with vyconfd, to replace the shim redirection of legacy commands to vyos-configd.
9 daysT7121: add defaults entry for vyconfd.confJohn Estabrook
The vyconfd configuration file contains socket name, canonical directories, and file names shared with vyos-commitd.
9 daysT7121: generate Python protobuf files at buildJohn Estabrook
9 daysT7121: add Config init from internal cacheJohn Estabrook
The internal cache is used as a faster replacement to parsing the active and proposed configs on initialization of a commit session.
9 daysT7121: add protobuf and tomli dependenciesJohn Estabrook
Add protobuf dependencies for communication vyconfd <-> vyos-commitd, and tomli runtime dependency for vyos-commitd load of vyconfd.conf.
9 daysT7121: use dunder equal instead of string rep comparison, where possibleJohn Estabrook
9 daysT7121: add configtree read/write to internal representationJohn Estabrook
9 daysT6946: add wrapper for show_commit_data and test functionJohn Estabrook
9 daysMerge pull request #4395 from kumvijaya/currentChristian Breunig
T7247: removed pr number input for target repo mirror workflow call
9 daysT861: rename Secure Boot MOK (Machine Owner Key) fileChristian Breunig
9 daysMerge pull request #4393 from c-po/T5400-fix-schroedingers-envChristian Breunig
T5400: initialize OPAM environment where it's really needed
9 daysMerge pull request #4394 from c-po/dhcp6c-smoketest-T7248Daniil Baturin
smoketest: T7248: ensure there is no Yacc/Bison error in wide-dhcpv6-client
10 daysT7247: removed pr number input for target repo mirror workflow callkumvijaya
10 dayssmoketest: T7248: ensure there is no Yacc/Bison error in wide-dhcpv6-clientChristian Breunig
T7050 revealed an issue in the CI system where VyOS CLI was rendering a configuration for wide-dhcpv6-client that was not working due to a missing patch of the wide-dhcpv6-client source code. This can be prevented by checking the daemon logs after startup for any config linguistic (Yacc/Bison) issues.
10 dayssmoketest: T7248: use python f'ormat string in test_dhcpv6_client_optionsChristian Breunig
10 daysT5400: initialize OPAM environment where it's really neededChristian Breunig
Instead of trying to fix - what we call - "Schroedingers build environment" in the outside world calling this package build, we should rather fix the Makefile/build system..
11 daysMerge pull request #4385 from markh0338/show-bgp-vpn-rdChristian Breunig
T7227: show bgp: add filtering by rd and prefix option for ipv4/6 vpn table
13 daysMerge pull request #4389 from natali-rs1985/T7242Daniil Baturin
ipsec: T7242: Add a check for encryption algorithms that do not work with VPP
13 daysipsec: T7242: Add check for encryption algorithms that do not work with VPPNataliia Solomko
2025-03-11Merge pull request #4383 from oniko94/fix/T7219-fix-vxlan-verifyViacheslav Hletenko
T7219: Add check for remote and group command to verify
2025-03-11Merge pull request #4321 from sskaje/T7092Daniil Baturin
T7092: Add Container Registry Mirror
2025-03-11T7219: Add check for remote and group command to verifyoniko94
2025-03-11T7092: Change validators: regex to host-name|address + port + pathsskaje
2025-03-11T7092: Update interface-definitions/container.xml.insskaje
Co-authored-by: Daniil Baturin <daniil@baturin.org>
2025-03-11Merge pull request #4388 from jestabro/cleanup-libvyosconfig-buildViacheslav Hletenko
T5400: clean up directory as needed before local build of libvyosconfig
2025-03-10T5400: clean up directory as needed before local build of libvyosconfigJohn Estabrook
2025-03-10Merge pull request #4386 from c-po/syslog-T7229Daniil Baturin
syslog: T7229: advanced format should not have IPv6 addresses in [] brackets
2025-03-08smoketest: T7229: add syslog test to verify source-address for remoteChristian Breunig
generated by cgit v1.2.3 (git 2.39.1) at 2025-03-26 03:40:03 +0000