summaryrefslogtreecommitdiff
AgeCommit message (Collapse)Author
2020-03-01login: radius: T2089: only query servers when uid matches ...Christian Poessinger
Do not query RADIUS servers when commit is running started from a non RADIUS user (localuser, root). This should reduce the overall system boot time.
2020-03-01vmware: T1028: readd static IP address after resumeChristian Poessinger
2020-03-01pppoe: T2087: enable unlimited connection attemptsChristian Poessinger
2020-03-01syslog: T2086: move sudo session open/close log entries to auth.logChristian Poessinger
2020-02-29interfaces: wireguard: make test script executableChristian Poessinger
2020-02-29interfaces: wireguard: add initial testChristian Poessinger
WireGuard interface can not be easily inherit the BasicInterfaceTest class as every operation on WireGuard interfaces require IP addresses assigned to the interface - I do not now if this is really a requirement or just a to restrict validate() on the WireGuard interface. Nevertheless this helps to see if changes on e.g. ifconfig.py breaks this interface.
2020-02-29interfaces: base: add rfc3021 test using /31 prefixesChristian Poessinger
2020-02-29Merge pull request #231 from thomas-mangin/T2082Christian Poessinger
ifconfig: T2082: fix checking of argument passed
2020-02-29ifconfig: T2082: fix checking of argument passedThomas Mangin
2020-02-27tunnel: fix several issues in testcaseThomas Mangin
The addresses for the tunnels were not correctly assigned, leading to some tunnels sharing the same local-ip/remote-ip pairs. The tearnDown code was not removing the dummy interface created and required for testing. Still two tunnels are not deleted as the current code is not using 'ip tunnel delete' for ip6gre (most likely 'ip link delete' instead) This will be resolved when the tunnel interface code is moved to python/vyos-1x
2020-02-27pppoe: add initial testChristian Poessinger
2020-02-27Merge pull request #227 from thomas-mangin/T2057Christian Poessinger
ifconfig: T2057: generalised Interface configuration
2020-02-27openvpn: T2075: add support for OpenVPN tls-crypt file optionChristian Poessinger
Encrypt and authenticate all control channel packets with the key from keyfile. Encrypting (and authenticating) control channel packets: * provides more privacy by hiding the certificate used for the TLS connection * makes it harder to identify OpenVPN traffic as such * provides "poor-man's" post-quantum security, against attackers who will never know the pre-shared key (i.e. no forward secrecy)
2020-02-27login: T2050: retrieve home directory for SSH keys from OS and not guess itChristian Poessinger
We should not rely on the home dir value stored in user['home_dir'] as if a crazy user will choose username root or any other system user this will fail. Should be deny using root at all?
2020-02-26interfaces: base: remove superfluous import of ConfigSessionErrorChristian Poessinger
2020-02-26interfaces: bond: add missing import on ConfigSessionErrorChristian Poessinger
2020-02-26interfaces: add missing unittest importChristian Poessinger
2020-02-26ipoe-server: T2073: reset op-mode command for sessionsDaniil Kharun
2020-02-26Merge pull request #4 from thomas-mangin/correctionChristian Poessinger
tunnel: tidying up
2020-02-26interfaces: replace wildcard import with dedicated importChristian Poessinger
2020-02-26cli: remove superfluous imports (we never use Config())Christian Poessinger
Every test hat a Config() instance but it was never referenced. It has been introduced by simple means of copy/pasting the first nameserver test.
2020-02-25login: T1948: sync banner and login node.def fileChristian Poessinger
2020-02-25Revert "login: T1948: also set properties for banner"Christian Poessinger
This reverts commit 998361ed0ac972a6856f373f1fc86e8a73cf141b.
2020-02-25login: T1948: also set properties for bannerChristian Poessinger
2020-02-25[service https] T1443: set default HTTPS listen portJohn Estabrook
2020-02-25login: T1948: migrade local and radius configurationsChristian Poessinger
Splitting was not a good idea. By combining both we can create a RADIUS server XML include file which can be reused by multiple implementations to get a uniformed CLI for the users.
2020-02-25login: radius: T2071: support disabling individual serverChristian Poessinger
2020-02-25login: user: radius: T1948: only allow IPv4 server addressChristian Poessinger
2020-02-25pppoe: T2055: verify logfile really existsChristian Poessinger
2020-02-25Merge branch 'pppoe-t2070' of github.com:c-po/vyos-1x into currentChristian Poessinger
* 'pppoe-t2070' of github.com:c-po/vyos-1x: pppoe: T2070: rewrite (dis-)connect op-mode commands in XML and Python gitignore: fix ignore pattern of all debhelper files pppoe: T2055: make logfile owned by root/vyattacfg pppoe: T1318: validate existing source-interface
2020-02-25pppoe: T2070: rewrite (dis-)connect op-mode commands in XML and PythonChristian Poessinger
2020-02-25gitignore: fix ignore pattern of all debhelper filesChristian Poessinger
2020-02-25pppoe: T2055: make logfile owned by root/vyattacfgChristian Poessinger
2020-02-25pppoe: T1318: validate existing source-interfaceChristian Poessinger
It is not only sufficient to check if there is a source-interface configured, but rather it must also be checked if the source-interface exists at all in the system. If the interface does not exist pppd will complain with: pppd[2778]: /usr/sbin/pppd: In file /etc/ppp/peers/pppoe1: unrecognized option 'eth0.202'
2020-02-24ifconfig: T2057: generalised Interface configurationThomas Mangin
Provides a way to pass options to interface consistent between subclasses of Interface
2020-02-24Merge pull request #228 from DmitriyEshenko/pppoe-cl-snChristian Poessinger
pppoe-client: T2069: Use rp_pppoe_service for send correct service-name
2020-02-24pppoe-client: T2069: Use rp_pppoe_service for send correct service-nameDmitriyEshenko
2020-02-23service-pppoe: T2067: Allow setting multiple service-nameshagbard
2020-02-23openvpn: T2065: move daemon parameter to start-stop-daemon command-lineChristian Poessinger
2020-02-23pppoe: T1318: set interface descriptionChristian Poessinger
2020-02-23Merge branch 'pppoe-rewrite' of https://github.com/c-po/vyos-1x into currentChristian Poessinger
* 'pppoe-rewrite' of https://github.com/c-po/vyos-1x: (23 commits) pppoe: T2055: do not try to start a deleted dialer interface pppoe: T1318: declutter name-server CLI nodes pppoe: T2055: remove router-advert node in client interface pppoe: T1318: migrate user-id and password nodes under an authentication node pppoe: T1318: rename link to source-interface pppoe: T1318: use include files for disable and descriptionx pppoe: T1318: rephrase help text on default-route interface-definitions: include: disable: rephrase help text pppoe: T1318: extend migrator for firewall, qos and ip routing nodes pppoe: T1318: proper delete old interfaces in migrator pppoe: T1318: increase priority so PPPoE is run after bond interfaces pppoe: T1318: fix migrator and add missing link statement pppoe: T1318: use lists rather then strings on Config() pppoe: T1318: support interface description pppoe: T1318: remove obsolete ipv6-up.d script pppoe: T1318: add op-mode commands for link information pppoe: T1318: use systemd to manage connection pppoe: T1318: remove process startup debug output pppoe: T1318: move process startup to apply() pppoe: T1318: "link" option is mandatory ...
2020-02-23pppoe: T2055: do not try to start a deleted dialer interfaceChristian Poessinger
2020-02-23pppoe: T1318: declutter name-server CLI nodesChristian Poessinger
Instead of letting the user choose between auto and none where auto is default, it makes more sesne to just offer an option to disable the default behavior.
2020-02-23pppoe: T2055: remove router-advert node in client interfaceChristian Poessinger
2020-02-23pppoe: T1318: migrate user-id and password nodes under an authentication nodeChristian Poessinger
2020-02-23pppoe: T1318: rename link to source-interfaceChristian Poessinger
2020-02-23pppoe: T1318: use include files for disable and descriptionxChristian Poessinger
2020-02-23pppoe: T1318: rephrase help text on default-routeChristian Poessinger
2020-02-23interface-definitions: include: disable: rephrase help textChristian Poessinger
2020-02-23pppoe: T1318: extend migrator for firewall, qos and ip routing nodesChristian Poessinger
generated by cgit v1.2.3 (git 2.39.1) at 2025-03-22 14:38:35 +0000