summaryrefslogtreecommitdiff
path: root/python
AgeCommit message (Collapse)Author
2023-08-17wireguard: T5409: rename threaded CLI not to per-client-threadChristian Breunig
Using threaded as CLI node is a very deep term used by kernel threads. To make this more understandable to users, rename the node to per-client-thread. It's also not necessary to test if any one peer is configured and probing if the option is set. There is a base test which requires at least one peer to be configured.
2023-08-07wireguard: T5409: Added 'set interfaces wireguard wgX threaded'aapostoliuk
Added 'set interfaces wireguard wgX threaded' command. Process traffic from each peer in a dedicated thread.
2023-08-02Merge pull request #2128 from aapostoliuk/T5426-sagittaChristian Breunig
ipsec: T5426: Added exceptions in vici functions calls
2023-08-02Merge pull request #2122 from aapostoliuk/T5413Christian Breunig
wireguard: T5413: Blocked adding the peer with the router's public key
2023-08-02wireguard: T5413: Blocked adding the peer with the router's public keyaapostoliuk
Disabeled adding the peer with the same public key as the router has. Added smoketest
2023-08-02ipsec: T5426: Added exceptions in vici functions callsaapostoliuk
Added exceptions in vici functions calls
2023-07-31dhcpv6-pd: T5387: add support for no-release flag1vivy
When no-release is specified, dhcp6c client will not release allocated address or prefix on client exit. vyos.ifconfig: dhcpv6: T5387: re-use options_file for no release flag [WIP] * Todo: render Jinja2 template and fill it vyos.ifconfig: dhcpv6: T5387: finish options_file and no release flag in cli vyos.ifconfig: dhcpv6: T5387: fix missing/wrong end tag vyos.ifconfig: dhcpv6: T5387: fix options, no var for -n dhcpv6-client: T5387: fix missing / from filepaths
2023-07-31T5416: fix ipsec matcherNicolas Fort
2023-07-29xml: T5403: remove incorrect arg checkJohn Estabrook
2023-07-28Merge pull request #2116 from jestabro/user-defJohn Estabrook
xml: T5403: add support for supplemental xml cache
2023-07-28configtree: T5316: use single-pass to drop trim functionJohn Estabrook
2023-07-27xml: T5403: add support for supplemental xml cacheJohn Estabrook
2023-07-26openvpn: T4974: dynamically load/unload kernel moduleChristian Breunig
2023-07-25remote: T4412: Improved error handling for uploads/downloadszsdc
- added ability to set a timeout, with default value 10s - added exceptions handling to show nicer messages for users - denied to use untrusted SSH hosts in non-interactive mode
2023-07-22Merge pull request #2100 from nicolas-fort/T4889Christian Breunig
T4889: NAT Redirect: adddestination nat redirection (to local host) feature.
2023-07-20config: T5228: add missing check of argsJohn Estabrook
2023-07-20xml: T5345: replace dropped shift, necessary for compatability of argsJohn Estabrook
The fix for T5345 dropped a necessary adjusment in the case of get_first_key=False.
2023-07-19T4899: NAT Redirect: adddestination nat redirection (to local host) feature.Nicolas Fort
2023-07-16T5195: fix remaining references to decommissioned vyos.utilChristian Breunig
2023-07-15T5195: remove empty vyos.utilJohn Estabrook
2023-07-15T5195: remove obsoleted mangle_dict_keysJohn Estabrook
2023-07-15T5195: add/fix missing importsJohn Estabrook
2023-07-15T5195: move individual helper functions to vyos.utils moduleChristian Breunig
* FixedDict can be found in vyos.utils.dict.FixedDict * Move vyos.authutils to vyos.utils.auth
2023-07-15T5195: vyos.util -> vyos.utils package refactoring part #2Christian Breunig
2023-07-15T5195: add missing "import os" for vyos.utils.processChristian Breunig
2023-07-14T5195: vyos.util -> vyos.utils package refactoring (#2093)Christian Breunig
* T5195: move run, cmd, call, rc_cmd helper to vyos.utils.process * T5195: use read_file and write_file implementation from vyos.utils.file Changed code automatically using: find . -type f -not -path '*/\.*' -exec sed -i 's/^from vyos.util import read_file$/from vyos.utils.file import read_file/g' {} + find . -type f -not -path '*/\.*' -exec sed -i 's/^from vyos.util import write_file$/from vyos.utils.file import write_file/g' {} + * T5195: move chmod* helpers to vyos.utils.permission * T5195: use colon_separated_to_dict from vyos.utils.dict * T5195: move is_systemd_service_* to vyos.utils.process * T5195: fix boot issues with missing imports * T5195: move dict_search_* helpers to vyos.utils.dict * T5195: move network helpers to vyos.utils.network * T5195: move commit_* helpers to vyos.utils.commit * T5195: move user I/O helpers to vyos.utils.io
2023-07-12T5195: drop sysctl_* implementation from vyos.util - prefer vyos.utils.systemChristian Breunig
2023-07-12T5195: move boot_* helpers to vyos.utils.bootChristian Breunig
2023-07-12bgp: T5338: simplify XML and code handlingChristian Breunig
2023-07-12Merge pull request #2079 from jestabro/from-defaultsDaniil Baturin
config: T5330: add boolean check for additions by default in config dict
2023-07-11config-mgmt: T5347: correct logrotate conf permissions on system updateJohn Estabrook
2023-07-09xml: T5345: remove unneeded, incorrect check on pathsJohn Estabrook
This check can raise a false positive exception in the case of a tag-node value name equal to the tag-node name; it is unneeded in any case as the functions are called with well-defined paths, respectively, with a correct verification.
2023-07-08vyos.utils: T5195: take the time and use the full command over an abbreviationChristian Breunig
2023-07-08vyos.utils: T5195: add network namespace helper interface_exists_in_netns()Christian Breunig
2023-07-07config: T5330: retain information of internal _dict_mergeJohn Estabrook
2023-07-07config: T5330: add subclass ConfigDict to preserve merge dataJohn Estabrook
2023-07-07config: T5330: allow mangle_dict_keys to preserve type for subclassingJohn Estabrook
2023-07-06Merge pull request #2074 from zdc/T1797-sagittaChristian Breunig
VPP: T1797: Optimizations for VPP memory allocation during startup
2023-07-06Merge pull request #2054 from JonSanMan/T5314-PRDaniil Baturin
T5314: Fix default QOS classes not getting qdisc
2023-07-05vyos.configdict: T5319: remove defaults workarounds in get_accel_dictJohn Estabrook
2023-07-05xml: T5218: add missing str.split() in defaults of multi nodeJohn Estabrook
2023-07-05util: T1797: Optimized sysctl helperszsdc
- modified `sysctl_read()` to return the whole value - modified `sysctl_write()` logic to return `True` only in case a value was changed successfully - added `sysctl_apply()` to apply a dictionary of values at once
2023-07-05T5314: Always run build_base_qdisc for defaultJon Sanchez
2023-07-05geneve: T5339: add option to use ipv4 instead of ethernetfett0
2023-07-02T5048: QoS do not add prio if it is already in tc commandViacheslav Hletenko
Prevent duplicatte prio fot tc command
2023-07-02T5048: QoS index priority should be used only for shaperViacheslav Hletenko
QoS index priority should be used only for qostype 'shaper' otherwise we set priority 2 times, that is incorrect. OSError: [Errno 255] failed to run command: tc filter add dev eth2 parent 1: prio 5 protocol all prio 1 u32 match ip src 10.1.1.0/24 flowid 1:1e exit code: 255 Fix it
2023-07-01T5302: QoS fix class with multiple matches generate one ruleViacheslav Hletenko
Fix QoS tc class with multiple matches generates one rule but expects multiple filter rules: set qos policy shaper test class 23 match one ip protocol 'tcp' set qos policy shaper test class 23 match two ip protocol 'udp' tc filter add dev eth0 parent 1: protocol all prio 1 u32 match ip protocol 6 0xff flowid 1:17 tc filter add dev eth0 parent 1: protocol all prio 2 u32 match ip protocol 17 0xff flowid 1:17
2023-07-01T5295: QoS fix policy limiter tc filter rate limitViacheslav Hletenko
tc filter rate limit should be used only if qostype is 'limiter' and not 'shaper'
2023-06-29Merge pull request #2059 from sever-sever/T1797-vppChristian Breunig
T1797: Add initial vpp configuration
2023-06-29VPP: T1797: Optimized interfaces add/removezsdc
- added extra renaming operation to be sure that interface has the same name as before in the system after it was moved from VPP to kernel - added extra check after PCI device removal/adding - added check for proper `retval` for CPI calls where it is available - replaced empty return with an error in `_get_pci_address_by_interface()` because not resolved address will lead to inconsistency of the system later