| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 19 hours | Merge pull request #4398 from jestabro/commitdHEADcurrent | Daniil Baturin | |
| T7121: Set up communication vyconfd to vyos-commitd | |||
| 19 hours | Merge pull request #4405 from c-po/certbot-T7249 | Daniil Baturin | |
| pki: T7249: fix shebang to support CLI backend | |||
| 20 hours | T7121: T6946: update hash for commit algorithm/commitd messaging | John Estabrook | |
| 20 hours | Merge pull request #4399 from sever-sever/T7252 | Daniil Baturin | |
| T7252: Allow vpptun and vpptap for constraint validator | |||
| 20 hours | bgp: T7157: Allow using route-maps for VRF route leaking in BGP (#4404) | aapostoliuk | |
| * bgp: T7157: Allow using route-maps for VRF route leaking in BGP Added the possibility of using route-map in route leaking. * Improve the constraint error message --------- Co-authored-by: Daniil Baturin <daniil@baturin.org> | |||
| 20 hours | Merge pull request #4390 from ↵ | Viacheslav Hletenko | |
| oniko94/feature/T6353-add-password-complexity-validation T6353: Add password complexity validation for system login user | |||
| 20 hours | pki: T7249: fix shebang to support CLI backend | Christian Breunig | |
| Fixes an error: interpreter/vyatta-cfg-run: line 162: `vyatta_config_commit-confirm': not a valid identifier Which prevented to renew the certificates. This will only fix renewing of the certificates. Nothing changed in how daemons will be restarted if a certificate is updated. | |||
| 23 hours | T6353: Change cli_commit to return the command output | oniko94 | |
| 23 hours | T6353: Add password strength check and user warning | oniko94 | |
| 40 hours | Merge pull request #4401 from dmbaturin/T7217-generate-dropbear-keys | Christian Breunig | |
| console-server: T7217: generate Dropbear SSH keys if they do not exist | |||
| 41 hours | console-server: T7217: generate Dropbear SSH keys if they do not exist | Daniil Baturin | |
| 2 days | T7252: Allow vpptun and vpptap for constraint validator | Viacheslav Hletenko | |
| It fixes cases whey we want to use VPP kernel interfaces for OSPF But VPP kernel interface is not exists on this step set vpp interfaces loopback lo0 kernel-interface 'vpptun0' set protocols ospf interface vpptun0 area '0' Incorrect path /sys/class/net/vpptun0: no such file or directory | |||
| 2 days | T7121: add test_commit wrapper and test script | John Estabrook | |
| 2 days | T7121: add vyos-commitd service as emergent replacement for vyos-configd | John Estabrook | |
| vyos-commitd exchanges messages with vyconfd, to replace the shim redirection of legacy commands to vyos-configd. | |||
| 2 days | T7121: add defaults entry for vyconfd.conf | John Estabrook | |
| The vyconfd configuration file contains socket name, canonical directories, and file names shared with vyos-commitd. | |||
| 2 days | T7121: generate Python protobuf files at build | John Estabrook | |
| 2 days | T7121: add Config init from internal cache | John Estabrook | |
| The internal cache is used as a faster replacement to parsing the active and proposed configs on initialization of a commit session. | |||
| 2 days | T7121: add protobuf and tomli dependencies | John Estabrook | |
| Add protobuf dependencies for communication vyconfd <-> vyos-commitd, and tomli runtime dependency for vyos-commitd load of vyconfd.conf. | |||
| 2 days | T7121: use dunder equal instead of string rep comparison, where possible | John Estabrook | |
| 2 days | T7121: add configtree read/write to internal representation | John Estabrook | |
| 2 days | T6946: add wrapper for show_commit_data and test function | John Estabrook | |
| 3 days | Merge pull request #4395 from kumvijaya/current | Christian Breunig | |
| T7247: removed pr number input for target repo mirror workflow call | |||
| 3 days | Merge pull request #4393 from c-po/T5400-fix-schroedingers-env | Christian Breunig | |
| T5400: initialize OPAM environment where it's really needed | |||
| 3 days | Merge pull request #4394 from c-po/dhcp6c-smoketest-T7248 | Daniil Baturin | |
| smoketest: T7248: ensure there is no Yacc/Bison error in wide-dhcpv6-client | |||
| 3 days | T7247: removed pr number input for target repo mirror workflow call | kumvijaya | |
| 4 days | smoketest: T7248: ensure there is no Yacc/Bison error in wide-dhcpv6-client | Christian Breunig | |
| T7050 revealed an issue in the CI system where VyOS CLI was rendering a configuration for wide-dhcpv6-client that was not working due to a missing patch of the wide-dhcpv6-client source code. This can be prevented by checking the daemon logs after startup for any config linguistic (Yacc/Bison) issues. | |||
| 4 days | smoketest: T7248: use python f'ormat string in test_dhcpv6_client_options | Christian Breunig | |
| 4 days | T5400: initialize OPAM environment where it's really needed | Christian Breunig | |
| Instead of trying to fix - what we call - "Schroedingers build environment" in the outside world calling this package build, we should rather fix the Makefile/build system.. | |||
| 5 days | Merge pull request #4385 from markh0338/show-bgp-vpn-rd | Christian Breunig | |
| T7227: show bgp: add filtering by rd and prefix option for ipv4/6 vpn table | |||
| 6 days | Merge pull request #4389 from natali-rs1985/T7242 | Daniil Baturin | |
| ipsec: T7242: Add a check for encryption algorithms that do not work with VPP | |||
| 6 days | ipsec: T7242: Add check for encryption algorithms that do not work with VPP | Nataliia Solomko | |
| 8 days | Merge pull request #4383 from oniko94/fix/T7219-fix-vxlan-verify | Viacheslav Hletenko | |
| T7219: Add check for remote and group command to verify | |||
| 8 days | Merge pull request #4321 from sskaje/T7092 | Daniil Baturin | |
| T7092: Add Container Registry Mirror | |||
| 8 days | T7219: Add check for remote and group command to verify | oniko94 | |
| 8 days | T7092: Change validators: regex to host-name|address + port + path | sskaje | |
| 8 days | T7092: Update interface-definitions/container.xml.in | sskaje | |
| Co-authored-by: Daniil Baturin <daniil@baturin.org> | |||
| 8 days | Merge pull request #4388 from jestabro/cleanup-libvyosconfig-build | Viacheslav Hletenko | |
| T5400: clean up directory as needed before local build of libvyosconfig | |||
| 9 days | T5400: clean up directory as needed before local build of libvyosconfig | John Estabrook | |
| 9 days | Merge pull request #4386 from c-po/syslog-T7229 | Daniil Baturin | |
| syslog: T7229: advanced format should not have IPv6 addresses in [] brackets | |||
| 11 days | smoketest: T7229: add syslog test to verify source-address for remote | Christian Breunig | |
| 11 days | syslog: T7229: advanced format should not have IPv6 addresses in [] brackets | Christian Breunig | |
| Otherwise rsyslog will report an error: omfwd: could not get addrinfo for hostname '[2001:db8::2]':'514': System error | |||
| 11 days | T7227: show bgp: add filtering by rd and prefix option for ipv4/6 vpn table | Mark Hayes | |
| 12 days | login: T6712: add newline after motd warning message | Christian Breunig | |
| 12 days | Merge pull request #4382 from c-po/ipsec-ios-profile-fixes | Christian Breunig | |
| ipsec: T7225: fix IKE DiffieHellmanGroup and ExtendedAuthEnabled in iOS profile | |||
| 13 days | ipsec: T7225: fix dynamic generation of IKE DiffieHellmanGroup in iOS profile | Christian Breunig | |
| Commit e97d86e ("T6617: T6618: vpn ipsec remote-access: fix profile generators") added a bug when working with DiffieHellmanGroup, it started becoming a boolead and no longer referencing the DH groups itself. This has been fixed. | |||
| 13 days | ipsec: T7225: iOS18+ always requires ExtendedAuthEnabled to be set | Christian Breunig | |
| If this is unset, loading the iOS VPN profile will error out on the device giving: Profile Installation Failed configuration is invalid: Missing identity My first assumption was an empty string in LocalIdentifier for IKE, but turned out only adding this flag solved it. This was made optional in commit e97d86e ("T6617: T6618: vpn ipsec remote-access: fix profile generators") but got reverted now. | |||
| 13 days | Merge pull request #4381 from c-po/ipsec-opmode-profile | Christian Breunig | |
| ipsec: T7225: "generate ipsec profile ios-remote-access" throws UndefinedError | |||
| 13 days | Merge pull request #4380 from oniko94/feature/T4406-vyos-info-api-endpoint | Christian Breunig | |
| T4406: Add public API endpoint to display information | |||
| 13 days | ipsec: T7225: "generate ipsec profile ios-remote-access" throws UndefinedError | Christian Breunig | |
| Calling "generate ipsec profile ios-remote-access rw remote ipsec.vyos.net name VYOS-NET profile VYOS" in op-mode causes File "/usr/share/vyos/templates/ipsec/ios_profile.j2", line 58, in top-level template code {% if authentication.client_mode.startswith("eap") %} ^^^^^^^^^^^^^^^^^^^^^^^^^ jinja2.exceptions.UndefinedError: 'dict object' has no attribute 'client_mode' | |||
| 13 days | T4406: Add public API endpoint to display information | oniko94 | |
 |
index : vyos-1x.git | |
| VyOS command definitions, scripts, and utilities (mirror of https://github.com/vyos/vyos-1x.git) |
| summaryrefslogtreecommitdiff |