summaryrefslogtreecommitdiff
AgeCommit message (Collapse)Author
2025-03-29Merge pull request #4416 from sever-sever/T7286Christian Breunig
T7286: Add CLI option to disable LDP establish packets
2025-03-29Merge pull request #4418 from kumvijaya/currentChristian Breunig
T7291: disabled codeowners review
2025-03-29Merge pull request #4423 from jestabro/preserve-symlinksChristian Breunig
T7294: preserve /config symlinks on image upgrade
2025-03-29T7286: Add CLI option to disable LDP establish packetsViacheslav Hletenko
If a router has not formed an LDP neighbor adjacency yet, it answers all received LDP Hello packets from non-neighbors with new Hello packets. This leads to flooding LDP packets to all routers for each LDP incoming packet. Add configuration option to disable this behavior ``` set protocols mpls ldp interface eth0 disable-establish-hello ```
2025-03-28T7294: preserve /config symlinks on image upgradeJohn Estabrook
The service certbot expects symbolic links for /config/auth/letsencrypt/live/<cert_name>/*.pem however, the default behavior of copytree copies the linked files during image upgrade. Set copytree argument to preserve symlinks.
2025-03-28Merge pull request #4421 from dmbaturin/T7295-tzdata-dependencyDaniil Baturin
fixup: T7295: add an explicit dependency on tzdata > 2025 to prevent APT from pulling that package from buster
2025-03-28fixup: T7295: add an explicit dependency on tzdata > 2025Daniil Baturin
to prevent APT from pulling that package from buster
2025-03-28T7291: disabled codeowners reviewkumvijaya
2025-03-25Merge pull request #4415 from jestabro/strip-versionJohn Estabrook
T7246: update hash for strip version on config load
2025-03-25T7246: update hash for strip version on config loadJohn Estabrook
2025-03-25Merge pull request #4413 from oniko94/fix/T7278-fix-cracklib-dep-buildJohn Estabrook
T7278: Remove cracklib hack from postconfig script template
2025-03-25Merge pull request #4326 from Embezzle/T5493Daniil Baturin
firewall: T5493: Implement remote-group
2025-03-25T7278: Remove cracklib hack from postinstall script templateoniko94
2025-03-21firewall: T5493: Implement remote-groupAlex W
2025-03-21Merge pull request #4397 from c-po/T861-secure-boot-certsChristian Breunig
T861: rename Secure Boot MOK (Machine Owner Key) file
2025-03-21Merge pull request #4400 from l0crian1/currentChristian Breunig
T7138: Fix show qos
2025-03-20Merge pull request #4402 from c-po/wireguard-key-T7246Christian Breunig
wireguard: T7246: verify Base64 encoded 32byte boundary on keys
2025-03-20wireguard: T7246: verify Base64 encoded 32byte boundary on keysChristian Breunig
Not 31 bytes or 33 bytes, but exactly 32. This matters, because 32 does not divide evenly by .75, so there's a padding character and the penultimate character does not include the whole base64 alphabet. Extend the base64 validator with an optional argument to define the length to match of the decrypted Base64 encoded string. Source: https://lists.zx2c4.com/pipermail/wireguard/2020-December/006222.html
2025-03-20Merge pull request #4407 from jestabro/relax-lexer-testJohn Estabrook
T7246: update libvyosconfig hash and add nosetest
2025-03-20T7246: update libvyosconfig hash and add nosetestJohn Estabrook
2025-03-20Merge pull request #4406 from jestabro/relax-lexerJohn Estabrook
T7246: do not pass unneeded version string to parser
2025-03-18T7246: do not pass unneeded version string to parserJohn Estabrook
Previously the parser would ignore lines beginning with '//', however this is unnecessarily restrictive. Pass only config information to parser, as the version string is saved separately for reconstruction on render.
2025-03-18Merge pull request #4398 from jestabro/commitdDaniil Baturin
T7121: Set up communication vyconfd to vyos-commitd
2025-03-18Merge pull request #4405 from c-po/certbot-T7249Daniil Baturin
pki: T7249: fix shebang to support CLI backend
2025-03-18T7121: T6946: update hash for commit algorithm/commitd messagingJohn Estabrook
2025-03-18Merge pull request #4399 from sever-sever/T7252Daniil Baturin
T7252: Allow vpptun and vpptap for constraint validator
2025-03-18bgp: T7157: Allow using route-maps for VRF route leaking in BGP (#4404)aapostoliuk
* bgp: T7157: Allow using route-maps for VRF route leaking in BGP Added the possibility of using route-map in route leaking. * Improve the constraint error message --------- Co-authored-by: Daniil Baturin <daniil@baturin.org>
2025-03-18Merge pull request #4390 from ↵Viacheslav Hletenko
oniko94/feature/T6353-add-password-complexity-validation T6353: Add password complexity validation for system login user
2025-03-18pki: T7249: fix shebang to support CLI backendChristian Breunig
Fixes an error: interpreter/vyatta-cfg-run: line 162: `vyatta_config_commit-confirm': not a valid identifier Which prevented to renew the certificates. This will only fix renewing of the certificates. Nothing changed in how daemons will be restarted if a certificate is updated.
2025-03-18T6353: Change cli_commit to return the command outputoniko94
2025-03-18T6353: Add password strength check and user warningoniko94
2025-03-17Merge pull request #4401 from dmbaturin/T7217-generate-dropbear-keysChristian Breunig
console-server: T7217: generate Dropbear SSH keys if they do not exist
2025-03-17console-server: T7217: generate Dropbear SSH keys if they do not existDaniil Baturin
2025-03-17T7138: Fix show qosl0crian1
This change corrects a behavior witnessed in T7138. If a policy name had a `-` in it, the command would fail, returning nothing.
2025-03-17T7252: Allow vpptun and vpptap for constraint validatorViacheslav Hletenko
It fixes cases whey we want to use VPP kernel interfaces for OSPF But VPP kernel interface is not exists on this step set vpp interfaces loopback lo0 kernel-interface 'vpptun0' set protocols ospf interface vpptun0 area '0' Incorrect path /sys/class/net/vpptun0: no such file or directory
2025-03-16T7121: add test_commit wrapper and test scriptJohn Estabrook
2025-03-16T7121: add vyos-commitd service as emergent replacement for vyos-configdJohn Estabrook
vyos-commitd exchanges messages with vyconfd, to replace the shim redirection of legacy commands to vyos-configd.
2025-03-16T7121: add defaults entry for vyconfd.confJohn Estabrook
The vyconfd configuration file contains socket name, canonical directories, and file names shared with vyos-commitd.
2025-03-16T7121: generate Python protobuf files at buildJohn Estabrook
2025-03-16T7121: add Config init from internal cacheJohn Estabrook
The internal cache is used as a faster replacement to parsing the active and proposed configs on initialization of a commit session.
2025-03-16T7121: add protobuf and tomli dependenciesJohn Estabrook
Add protobuf dependencies for communication vyconfd <-> vyos-commitd, and tomli runtime dependency for vyos-commitd load of vyconfd.conf.
2025-03-16T7121: use dunder equal instead of string rep comparison, where possibleJohn Estabrook
2025-03-16T7121: add configtree read/write to internal representationJohn Estabrook
2025-03-16T6946: add wrapper for show_commit_data and test functionJohn Estabrook
2025-03-16Merge pull request #4395 from kumvijaya/currentChristian Breunig
T7247: removed pr number input for target repo mirror workflow call
2025-03-16T861: rename Secure Boot MOK (Machine Owner Key) fileChristian Breunig
2025-03-16Merge pull request #4393 from c-po/T5400-fix-schroedingers-envChristian Breunig
T5400: initialize OPAM environment where it's really needed
2025-03-16Merge pull request #4394 from c-po/dhcp6c-smoketest-T7248Daniil Baturin
smoketest: T7248: ensure there is no Yacc/Bison error in wide-dhcpv6-client
2025-03-16T7247: removed pr number input for target repo mirror workflow callkumvijaya
2025-03-15smoketest: T7248: ensure there is no Yacc/Bison error in wide-dhcpv6-clientChristian Breunig
T7050 revealed an issue in the CI system where VyOS CLI was rendering a configuration for wide-dhcpv6-client that was not working due to a missing patch of the wide-dhcpv6-client source code. This can be prevented by checking the daemon logs after startup for any config linguistic (Yacc/Bison) issues.
generated by cgit v1.2.3 (git 2.39.1) at 2025-04-24 21:22:52 +0000