| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 13 days | wireguard: T7246: verify Base64 encoded 32byte boundary on keys | Christian Breunig | |
| Not 31 bytes or 33 bytes, but exactly 32. This matters, because 32 does not divide evenly by .75, so there's a padding character and the penultimate character does not include the whole base64 alphabet. Extend the base64 validator with an optional argument to define the length to match of the decrypted Base64 encoded string. Source: https://lists.zx2c4.com/pipermail/wireguard/2020-December/006222.html | |||
| 2025-03-17 | Merge pull request #4401 from dmbaturin/T7217-generate-dropbear-keys | Christian Breunig | |
| console-server: T7217: generate Dropbear SSH keys if they do not exist | |||
| 2025-03-17 | console-server: T7217: generate Dropbear SSH keys if they do not exist | Daniil Baturin | |
| 2025-03-16 | Merge pull request #4395 from kumvijaya/current | Christian Breunig | |
| T7247: removed pr number input for target repo mirror workflow call | |||
| 2025-03-16 | Merge pull request #4393 from c-po/T5400-fix-schroedingers-env | Christian Breunig | |
| T5400: initialize OPAM environment where it's really needed | |||
| 2025-03-16 | Merge pull request #4394 from c-po/dhcp6c-smoketest-T7248 | Daniil Baturin | |
| smoketest: T7248: ensure there is no Yacc/Bison error in wide-dhcpv6-client | |||
| 2025-03-16 | T7247: removed pr number input for target repo mirror workflow call | kumvijaya | |
| 2025-03-15 | smoketest: T7248: ensure there is no Yacc/Bison error in wide-dhcpv6-client | Christian Breunig | |
| T7050 revealed an issue in the CI system where VyOS CLI was rendering a configuration for wide-dhcpv6-client that was not working due to a missing patch of the wide-dhcpv6-client source code. This can be prevented by checking the daemon logs after startup for any config linguistic (Yacc/Bison) issues. | |||
| 2025-03-15 | smoketest: T7248: use python f'ormat string in test_dhcpv6_client_options | Christian Breunig | |
| 2025-03-15 | T5400: initialize OPAM environment where it's really needed | Christian Breunig | |
| Instead of trying to fix - what we call - "Schroedingers build environment" in the outside world calling this package build, we should rather fix the Makefile/build system.. | |||
| 2025-03-14 | Merge pull request #4385 from markh0338/show-bgp-vpn-rd | Christian Breunig | |
| T7227: show bgp: add filtering by rd and prefix option for ipv4/6 vpn table | |||
| 2025-03-13 | Merge pull request #4389 from natali-rs1985/T7242 | Daniil Baturin | |
| ipsec: T7242: Add a check for encryption algorithms that do not work with VPP | |||
| 2025-03-13 | ipsec: T7242: Add check for encryption algorithms that do not work with VPP | Nataliia Solomko | |
| 2025-03-11 | Merge pull request #4383 from oniko94/fix/T7219-fix-vxlan-verify | Viacheslav Hletenko | |
| T7219: Add check for remote and group command to verify | |||
| 2025-03-11 | Merge pull request #4321 from sskaje/T7092 | Daniil Baturin | |
| T7092: Add Container Registry Mirror | |||
| 2025-03-11 | T7219: Add check for remote and group command to verify | oniko94 | |
| 2025-03-11 | T7092: Change validators: regex to host-name|address + port + path | sskaje | |
| 2025-03-11 | T7092: Update interface-definitions/container.xml.in | sskaje | |
| Co-authored-by: Daniil Baturin <daniil@baturin.org> | |||
| 2025-03-11 | Merge pull request #4388 from jestabro/cleanup-libvyosconfig-build | Viacheslav Hletenko | |
| T5400: clean up directory as needed before local build of libvyosconfig | |||
| 2025-03-10 | T5400: clean up directory as needed before local build of libvyosconfig | John Estabrook | |
| 2025-03-10 | Merge pull request #4386 from c-po/syslog-T7229 | Daniil Baturin | |
| syslog: T7229: advanced format should not have IPv6 addresses in [] brackets | |||
| 2025-03-08 | smoketest: T7229: add syslog test to verify source-address for remote | Christian Breunig | |
| 2025-03-08 | syslog: T7229: advanced format should not have IPv6 addresses in [] brackets | Christian Breunig | |
| Otherwise rsyslog will report an error: omfwd: could not get addrinfo for hostname '[2001:db8::2]':'514': System error | |||
| 2025-03-08 | T7227: show bgp: add filtering by rd and prefix option for ipv4/6 vpn table | Mark Hayes | |
| 2025-03-07 | login: T6712: add newline after motd warning message | Christian Breunig | |
| 2025-03-07 | Merge pull request #4382 from c-po/ipsec-ios-profile-fixes | Christian Breunig | |
| ipsec: T7225: fix IKE DiffieHellmanGroup and ExtendedAuthEnabled in iOS profile | |||
| 2025-03-06 | ipsec: T7225: fix dynamic generation of IKE DiffieHellmanGroup in iOS profile | Christian Breunig | |
| Commit e97d86e ("T6617: T6618: vpn ipsec remote-access: fix profile generators") added a bug when working with DiffieHellmanGroup, it started becoming a boolead and no longer referencing the DH groups itself. This has been fixed. | |||
| 2025-03-06 | ipsec: T7225: iOS18+ always requires ExtendedAuthEnabled to be set | Christian Breunig | |
| If this is unset, loading the iOS VPN profile will error out on the device giving: Profile Installation Failed configuration is invalid: Missing identity My first assumption was an empty string in LocalIdentifier for IKE, but turned out only adding this flag solved it. This was made optional in commit e97d86e ("T6617: T6618: vpn ipsec remote-access: fix profile generators") but got reverted now. | |||
| 2025-03-06 | Merge pull request #4381 from c-po/ipsec-opmode-profile | Christian Breunig | |
| ipsec: T7225: "generate ipsec profile ios-remote-access" throws UndefinedError | |||
| 2025-03-06 | Merge pull request #4380 from oniko94/feature/T4406-vyos-info-api-endpoint | Christian Breunig | |
| T4406: Add public API endpoint to display information | |||
| 2025-03-06 | ipsec: T7225: "generate ipsec profile ios-remote-access" throws UndefinedError | Christian Breunig | |
| Calling "generate ipsec profile ios-remote-access rw remote ipsec.vyos.net name VYOS-NET profile VYOS" in op-mode causes File "/usr/share/vyos/templates/ipsec/ios_profile.j2", line 58, in top-level template code {% if authentication.client_mode.startswith("eap") %} ^^^^^^^^^^^^^^^^^^^^^^^^^ jinja2.exceptions.UndefinedError: 'dict object' has no attribute 'client_mode' | |||
| 2025-03-06 | T4406: Add public API endpoint to display information | oniko94 | |
| 2025-03-05 | Merge pull request #4378 from jestabro/libvyosconfig-build | John Estabrook | |
| T5400: Move libvyosconfig build out of the Docker image | |||
| 2025-03-04 | Merge pull request #4377 from vyos/syslog-typos-T6989 | Christian Breunig | |
| syslog: T6989: fix typos and add option to disable MARK | |||
| 2025-03-04 | T5400: add local build of libvyosconfig to Makefile | John Estabrook | |
| libvyosconfig is both a build and a run dependency of vyos-1x. Satisfying the build dependency within the Docker image requires coordination of updates to vyos-build/libvyosconfig/vyos-1x on any changes to the library; simplify this process by moving the build to a step of the vyos-1x Makefile. | |||
| 2025-03-04 | Merge pull request #4379 from vyos/c-po-patch-1 | Christian Breunig | |
| GitHub: T5400: evaluate OPAM environment before package build | |||
| 2025-03-04 | GitHub: T5400: evaluate OPAM environment before package build | Christian Breunig | |
| 2025-03-04 | syslog: T6989: add option do disable "MARK"syslog-typos-T6989 | Christian Breunig | |
| New CLI command set system syslog marker disable | |||
| 2025-03-04 | syslog: T6989: fix validator range to match completion helper | Christian Breunig | |
| 2025-03-02 | Merge pull request #4376 from jameskr97/current | Daniil Baturin | |
| Revert "wireguard: T4930: remove pylint W0611: unused import" | |||
| 2025-03-01 | Revert "wireguard: T4930: remove pylint W0611: unused import" | James Roberts | |
| This reverts commit bb70ea569f4548b103c54bbb7c393221a6da0a23. | |||
| 2025-02-27 | Merge pull request #4237 from indrajitr/hostd-update | Viacheslav Hletenko | |
| T6948: Keep DHCP server leases in sync with hostd records | |||
| 2025-02-27 | Merge pull request #4374 from sever-sever/T7204 | Daniil Baturin | |
| T7204: Container add capability MKNOD | |||
| 2025-02-27 | Merge pull request #4369 from natali-rs1985/T7166 | Daniil Baturin | |
| wireguard: T7166: Call vxlan dependency if interface exist | |||
| 2025-02-27 | wireguard: T7166: Call vxlan dependency if interface exist | Nataliia Solomko | |
| 2025-02-27 | Merge pull request #4371 from talmakion/bugfix/T7116/remove-obsolete-community | Christian Breunig | |
| policy: T7116: Remove unsupported use of BGP community "internet" | |||
| 2025-02-27 | Merge pull request #4372 from aapostoliuk/T7118-circinus | Christian Breunig | |
| T7118: Added the ability to redistribute NHRP routes to other protocols | |||
| 2025-02-27 | T7204: Container add capability MKNOD | Viacheslav Hletenko | |
| 2025-02-27 | Merge pull request #4373 from aapostoliuk/T7158-circinus | Christian Breunig | |
| policy: T7158: Added match source-vrf to route-map | |||
| 2025-02-26 | wlb: T7196: Migrate interface wildcards to nftables format | Simon | |
| * wlb: T7196: Migrate interface wildcards to nftables format * wlb: T7196: Fix exclude/interface verify check * wlb: T7196: Extra sanity check on ipv4 address function | |||
 |
index : vyos-1x.git | |
| VyOS command definitions, scripts, and utilities (mirror of https://github.com/vyos/vyos-1x.git) |
| summaryrefslogtreecommitdiff |