| Age | Commit message (Collapse) | Author |
|
T7862: VPP: Enable support of ixgbevf driver for DPDK
|
|
|
|
Config save is provided by the helper script in both CLI and
configsession (hence also in the http api).
Use utilities write_file_sync and write_file_atomic, in accordance with
permissions and location:
If the target is in /opt/vyatta/etc/config or /config, use
write_file_sync; if, moreover, the caller has permissions, use
write_file_atomic. Otherwise, fall back to util write_file.
|
|
Some platforms do not have `vendor_id` for the CPU information
This causes of `KeyError: 'vendor_id'` errors while commiting
system option kernel memory settings.
Fix this.
|
|
T7850: make op_mode_config_dict edit level aware
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Move encrypted volume check before key input
Unmount any conflicting config bind mounts
|
|
|
|
bgp: T7760: remove per vrf instance system-as node
|
|
kea: T7281: Fix Kea 3.0 service failures
|
|
|
|
|
|
|
|
|
|
|
|
Fix "No such file or directory" error triggered during image upgrade when user
opts not to migrate config.
GRUB cmdline migration incorrectly attempts to access non-existent config in
new image path.
|
|
Reduce amount of duplicate file/folder strings.
|
|
firewall: T7475: Add an option to disable conntrack for individual firewall chaisn
|
|
T7737: add vyconf-aware analogue of configfs
|
|
Accidentally slipped in 2 whitespace corrections
|
|
The list calculation of in-use but deprecated SSH hostkey algorithms was wrong.
This was implemented in commit 6deda171e ("ssh: T7839: add deprecation warning
for DSA hostkey-algorithm usage"). It always returned the content of the list
of deprecated algorithms, but not the list of deprecated algorithms actually -
in use - by the configuration. This has been corrected.
Before:
DEPRECATION WARNING: Support for SSH-DSA keys is deprecated and will
be removed in VyOS 1.6. Please update affected keys to a supported
algorithm (e.g., RSA, ECDSA or ED25519) to avoid authentication
failures after the upgrade. The following hostkey-algorithms are in
use: ssh-dss, ssh-dss-cert-v01@openssh.com
After:
DEPRECATION WARNING: Support for SSH-DSA keys is deprecated and will
be removed in VyOS 1.6. Please update affected keys to a supported
algorithm (e.g., RSA, ECDSA or ED25519) to avoid authentication
failures after the upgrade. The following hostkey-algorithms are in
use: ssh-dss
The generation of the MOTD was not affected!
|
|
The mount point /opt/vyatta/etc/config is considered the source of truth
whereas /config is simply a bind mount of convenience. As the latter is
no longer defined at boot, all operations should use the former.
|
|
We are removing the bind mount construction from the initrd components
in live-boot, as:
(1) it is not needed before initialization in the vyos-router script
(2) does not correctly update inodes on libc rename
(3) fails on the livecd (cf. /var/log/live/boot.log)
|
|
kea: T7821: Update Kea to 3.0
|
|
op-mode: T6857: Fix default action for prerouting hook
|
|
container: T7681: fix multiple name servers
|
|
- Fixed incorrect wrapping of 'show interfaces' description
|
|
T7787: add deprecation warning for ssh-dss keys
|
|
Fixed issue with podman and systemd sync when restarting
containers with 'podman restart' command.
- Placed podman storage directory in vyos/defaults.py
- Replaced repeated declarations with vyos.defaults.directories['podman_storage']
|
|
|
|
T7796: PPPoE-server add mapping in vpp if vpp-cp is enabled
|
|
wlb: T114: Add firewall group support for WAN load balancer
|
|
OpenSSH in Debian Trixie has removed support for ssh-dss (DSA) keys, which will
prevent users with such keys from logging in after upgrade. To avoid lockouts,
add a loud deprecation warning when users log in using a DSA key. This warning
advises affected users to replace their keys with a supported algorithm (e.g.,
ed25519 or RSA) before the upgrade.
Deprecation warning will be displayed during "commit" but also as MOTD to inform
on this issue during every login.
DEPRECATION WARNING: Support for SSH-DSA keys is deprecated and will
be removed in VyOS 1.6. Please update affected keys to a supported
algorithm (e.g., RSA, ECDSA or ED25519) to avoid authentication
failures after the upgrade. The following hostkey-algorithms are in
use: ssh-dss, ssh-dss-cert-v01@openssh.com
|
|
OpenSSH in Debian Trixie has removed support for ssh-dss (DSA) keys, which will
prevent users with such keys from logging in after upgrade. To avoid lockouts,
add a loud deprecation warning when users log in using a DSA key. This warning
advises affected users to replace their keys with a supported algorithm (e.g.,
ed25519 or RSA) before the upgrade.
Deprecation warning will be displayed during "commit" but also as MOTD to inform
on this issue during every login.
DEPRECATION WARNING: Support for SSH-DSA keys is deprecated and will
be removed in VyOS 1.6. Please update affected keys to a supported
algorithm (e.g., RSA, ECDSA or ED25519) to avoid authentication
failures after the upgrade. The following users are using SSH-DSS keys
for authentication.
User "vyos" with deprecated public-key named: foo
|
|
|
|
- Fixed incorrect wrapping of 'show interfaces' description
|
|
- Fixed error with multiple name servers missing space between --dns options
|
|
|
|
T7783: T7786: VPP clarify error messages for CPU requirements
|
|
T75: migrate from pmacct to ipt_NETFLOW
|