diff options
Diffstat (limited to 'docs/changelog/1.5.rst')
| -rw-r--r-- | docs/changelog/1.5.rst | 386 | 
1 files changed, 386 insertions, 0 deletions
| diff --git a/docs/changelog/1.5.rst b/docs/changelog/1.5.rst index 3f88f950..45edc52c 100644 --- a/docs/changelog/1.5.rst +++ b/docs/changelog/1.5.rst @@ -8,6 +8,392 @@     _ext/releasenotes.py +2024-03-15 +========== + +* :vytask:`T6118` ``(feature): radvd: RFC8781: add nat64prefix support`` + + +2024-03-12 +========== + +* :vytask:`T6020` ``(bug): VRRP health-check script is not applied correctly in keepalived.conf`` +* :vytask:`T5646` ``(bug): QoS policy limiter broken if class without match`` + + +2024-03-11 +========== + +* :vytask:`T6098` ``(bug): Description doesnt seem to allow for non international characters`` +* :vytask:`T2998` ``(bug): SNMP v3 oid "exclude" option doesn't work`` +* :vytask:`T6107` ``(bug): Nginx does not allow big config queries for configure endpoint API`` +* :vytask:`T6096` ``(bug): Config commits are not synced properly because 00vyos-sync is deleted by vyos-router`` +* :vytask:`T6093` ``(bug): Incorrect dhcp-options vendor-class-id regex`` +* :vytask:`T6083` ``(feature): ethtool: move string parsing to JSON parsing`` +* :vytask:`T6069` ``(bug): HTTP API segfault during concurrent configuration requests`` +* :vytask:`T6057` ``(feature): Add ability to disable syslog for conntrackd`` +* :vytask:`T5504` ``(feature): Keepalived VRRP ability to set more than one peer-address`` +* :vytask:`T5717` ``(feature): ospfv3 - add  allow to set metric-type to ospf redistribution while frr docs says its possible.`` +* :vytask:`T6071` ``(bug): firewall: CLI description limit of 256 characters cause config upgrade issues`` + + +2024-03-08 +========== + +* :vytask:`T6086` ``(bug): NAT does not work with network-groups`` +* :vytask:`T6094` ``(bug): Destination Nat not Making Firewall Rules`` +* :vytask:`T6061` ``(bug): connection-status nat destination firewall filter not working in 1.4.0-epa1`` +* :vytask:`T6075` ``(bug): Applying firewall rules with a non-existent interface group`` + + +2024-03-07 +========== + +* :vytask:`T6104` ``(bug): Regression in commit-archive for non-interactive configuration`` +* :vytask:`T6084` ``(bug): OpenNHRP DMVPN configuration file clean after reboot if we have any IPSec configuration`` +* :vytask:`T5348` ``(bug): Service config-sync can freeze the secondary router if it has commit-archive location`` +* :vytask:`T6073` ``(bug): Conntrack/NAT not being disabled when VRFs are defined`` +* :vytask:`T6095` ``(default): Tab completion for "set interfaces wireless wlan0 country-code" incorrect country "uk"`` + + +2024-03-06 +========== + +* :vytask:`T6079` ``(bug): dhcp: migration fails for duplicate static-mapping`` +* :vytask:`T6063` ``(default): Kea DHCP: Expose match-client-id setting`` +* :vytask:`T5992` ``(default): DHCP: show dhcp server leases not showing all leases`` + + +2024-03-05 +========== + +* :vytask:`T5903` ``(bug): NHRP don“t start on reboot from version 1.5-rolling-202401010026`` +* :vytask:`T2447` ``(feature): Additional Boot Argument Configuration to limit CPU C-States`` + + +2024-03-04 +========== + +* :vytask:`T6087` ``(feature): ospfv3: add support to redistribute IS-IS routes`` + + +2024-03-02 +========== + +* :vytask:`T6081` ``(bug): QoS policy shaper target and interval wrong calcuations`` + + +2024-02-29 +========== + +* :vytask:`T6078` ``(feature): Update ethtool to 6.6`` +* :vytask:`T6077` ``(feature): banner: implement ASCII contest winner default logo`` +* :vytask:`T6074` ``(feature): container: do not allow deleting images which have a container running`` + + +2024-02-28 +========== + +* :vytask:`T4270` ``(bug): dns forwarding - When "ignore-hosts-file" is unset, local hostname of router resolves to 127.0.1.1`` + + +2024-02-26 +========== + +* :vytask:`T6064` ``(bug): Can not build VyOS if repository it not cloned to a branch`` +* :vytask:`T5754` ``(default): Update to StrongSwan 5.9.11`` + + +2024-02-25 +========== + +* :vytask:`T6060` ``(feature): op-mode: container: support removing all container images at once`` + + +2024-02-24 +========== + +* :vytask:`T5909` ``(bug): Container registry with authentication prevents config load (section container) after reboot`` + + +2024-02-23 +========== + +* :vytask:`T5376` ``(bug): Conntrack FTP helper does not work properly`` + + +2024-02-22 +========== + +* :vytask:`T6048` ``(bug): Exception in event handler script`` + + +2024-02-21 +========== + +* :vytask:`T6050` ``(bug): Wrong scripting commands descriptions in accel-ppp services`` +* :vytask:`T3771` ``(feature): DHCPv6 server prefix delegation - dynamically add route to delegated prefix via requesting router`` + + +2024-02-19 +========== + +* :vytask:`T5971` ``(default): Create the same view of ppp section  for all accel-ppp services`` +* :vytask:`T6029` ``(default): Rewrite Accel-PPP services to an identical feature set`` +* :vytask:`T3722` ``(bug): op-mode IPSec show vpn ike sa always shows L-TIME 0`` + + +2024-02-18 +========== + +* :vytask:`T6043` ``(bug): VxLAN and bridge error bug`` +* :vytask:`T6041` ``(bug): image-tools: install fails from PXE boot into live iso due to restrictive logic`` + + +2024-02-17 +========== + +* :vytask:`T5972` ``(feature): login: add possibility to disable individual local user accounts`` + + +2024-02-16 +========== + +* :vytask:`T6009` ``(bug): Firewall - Time not working properly when not using UTC`` +* :vytask:`T6005` ``(bug): Error on adding a wireguard interface to OSPFv3`` +* :vytask:`T6019` ``(feature): Bump nftables and libnftnl version`` +* :vytask:`T6001` ``(default): Add option to enable resolve-via-default`` +* :vytask:`T5965` ``(bug): WWAN modems using raw-ip do not work with dhclient/dhcp6c`` +* :vytask:`T5245` ``(bug): Wireless interfaces do not get IPv6 link-local address assigned`` + + +2024-02-15 +========== + +* :vytask:`T5977` ``(bug): nftables: Operation not supported when using match-ipsec in outbound firewall`` +* :vytask:`T2612` ``(bug): HTTPS API, changing API key fails but goes through`` +* :vytask:`T5989` ``(bug): IP subnets not usable in UPnP ACLs`` +* :vytask:`T5719` ``(default): mdns repeater: Add op-mode commands`` +* :vytask:`T4839` ``(feature): Dynamic Firewall groups`` + + +2024-02-14 +========== + +* :vytask:`T6034` ``(feature): rpki: move file based SSH keys for authentication to PKI subsystem`` +* :vytask:`T5981` ``(bug): IPsec site-to-site migrated PKI ca certificates are created with an '@'`` +* :vytask:`T5930` ``(bug): vrf - route-leak not work using route-target both command.`` +* :vytask:`T5709` ``(bug): IPoE-server fails if next pool mentioned but not defined`` +* :vytask:`T2044` ``(bug): RPKI doesn't boot properly`` +* :vytask:`T6032` ``(feature): bgp: add EVPN MAC-VRF Site-of-Origin support`` +* :vytask:`T5960` ``(default): Rewriting authentication section in accel-ppp services`` + + +2024-02-13 +========== + +* :vytask:`T5928` ``(bug): Configuration fails to load on boot if offloading has VLAN interfaces defined`` +* :vytask:`T5064` ``(bug): Value validation for domain-groups seems to be broken`` + + +2024-02-12 +========== + +* :vytask:`T6010` ``(bug): Support setting multiple values in BGP path-attribute`` +* :vytask:`T6004` ``(bug): RPKI is not configured`` +* :vytask:`T5952` ``(default): DHCP allow same MAC Address on same subnet`` +* :vytask:`T5849` ``(feature): Add SRv6 route commands`` + + +2024-02-10 +========== + +* :vytask:`T6023` ``(bug): rpki: add support for CLI knobs expire-interval and retry-interval`` + + +2024-02-09 +========== + +* :vytask:`T6028` ``(bug): QoS policy shaper wrong class_id_max and default_minor_id`` +* :vytask:`T6026` ``(bug): QoS hide attempts to delete qdisc from devices`` +* :vytask:`T5788` ``(feature): frr: update to 9.1 release`` +* :vytask:`T5703` ``(bug): QoS config on pppoe interface resets back to fq_codel after tunnel reboots`` +* :vytask:`T5685` ``(feature): Keepalived VRRP prefix is not necessary for the virtual address`` + + +2024-02-08 +========== + +* :vytask:`T6014` ``(feature): Bump keepalived version`` +* :vytask:`T5910` ``(bug): Grub problem(?) Serial Console no longer working`` +* :vytask:`T6021` ``(bug): QoS r2q wrong calculation`` + + +2024-02-07 +========== + +* :vytask:`T6017` ``(bug): Update vyos-http-api-tools for security advisory`` +* :vytask:`T6016` ``(bug): Resolve intermittent failures in cleanup function after failed image install`` +* :vytask:`T6024` ``(feature): bgp: add additional missing FRR features`` +* :vytask:`T6011` ``(feature): rpki: known-hosts-file is no longer supported by FRR CLI - remove VyOS CLI node`` +* :vytask:`T5998` ``(feature): replay_window setting under vpn in config`` + + +2024-02-06 +========== + +* :vytask:`T6018` ``(default): smoketest: updating http-api framework requires a pause before test`` +* :vytask:`T5921` ``(bug): Trying to commit an OpenConnect configuration without any local users results in an exception`` +* :vytask:`T5687` ``(feature): Implement ECS settings for PowerDNS recursor`` + + +2024-02-05 +========== + +* :vytask:`T5974` ``(bug): QoS policy shaper is currently miscalculating bandwidth and ceil values for the default class`` +* :vytask:`T5865` ``(feature): Rewrite ipv6 pool section to ipv6 named pools in Accel-ppp services`` + + +2024-02-02 +========== + +* :vytask:`T5739` ``(bug): Password recovery does not work if public keys are configured`` +* :vytask:`T5955` ``(feature): Rootless containers/set uid/gid for container`` +* :vytask:`T6003` ``(feature): Add 'show rpki as-number' and 'show rpki prefix'`` +* :vytask:`T5848` ``(feature): Add triple-isolate flow isolation option to CAKE QoS policy`` + + +2024-02-01 +========== + +* :vytask:`T5995` ``(bug): Kernel NIC-drivers for Huawei NICs are not properly enabled`` +* :vytask:`T5978` ``(bug): ethernet: hw-tc-offload does not actually get enabled on the NIC`` +* :vytask:`T5979` ``(enhancment): Add configurable kernel boot parameters`` +* :vytask:`T5973` ``(bug): vrf: RTNETLINK answers: File exists`` +* :vytask:`T5967` ``(bug): Multi-hop BFD connections can't be established; please add minimum-ttl option.`` +* :vytask:`T5619` ``(default): Update the Intel ixgbe driver due to issues with Intel X533`` + + +2024-01-31 +========== + +* :vytask:`T6000` ``(bug): [1.3.x -> 1.5.x] migrating threw exception in /opt/vyatta/etc/config-migrate/migrate/https/5-to-6, performed workaround`` +* :vytask:`T5999` ``(bug): load-balancing reverse-proxy can't configure root as a redirect`` + + +2024-01-30 +========== + +* :vytask:`T5980` ``(feature): Add image-tools support for configurable kernel boot options`` + + +2024-01-29 +========== + +* :vytask:`T5988` ``(bug): image-tools: a check of valid image name is missing from 'add image'`` +* :vytask:`T5994` ``(bug): Fix typo in 'remote' module preventing 'add system image' via ftp`` + + +2024-01-26 +========== + +* :vytask:`T5957` ``(bug): Firewall fails to delete inbound-interface name`` +* :vytask:`T5779` ``(bug): custom conntrack timeout rule not applicable`` +* :vytask:`T5984` ``(feature): Add user util numactl`` + + +2024-01-25 +========== + +* :vytask:`T5983` ``(bug): image-tools: minor regression in pruning version files in compatibility mode`` +* :vytask:`T5927` ``(bug): QoS policy shaper-hfsc class does not have a `bandwidth` node but requires one in the check`` +* :vytask:`T5834` ``(bug): Rename 'enable-default-log' to 'default-log'`` + + +2024-01-22 +========== + +* :vytask:`T5968` ``(feature): hsflowd: add VRF support`` +* :vytask:`T5961` ``(bug): QoS policy shaper vif with ceiling fails on commit`` +* :vytask:`T5958` ``(bug): QoS policy shaper-hfsc is not implemented`` +* :vytask:`T5969` ``(feature): op-mode: list multicast group membership`` + + +2024-01-21 +========== + +* :vytask:`T5799` ``(bug): vyos unbootable after 1.4-rolling-202308240020 to 1.5-rolling-202312010026 upgrade`` +* :vytask:`T5787` ``(bug): dhcp-server allows duplicate static-mapping for the same IP address`` +* :vytask:`T5912` ``(bug): DHCP Static mapping don't work on every first lease`` +* :vytask:`T5692` ``(enhancment): NTP leap smear`` +* :vytask:`T5954` ``(feature): Enable nvme_hwmon and drivetemp in KERNEL`` + + +2024-01-20 +========== + +* :vytask:`T5964` ``(bug): disconnect interface wwan0 throws exception`` +* :vytask:`T5948` ``(bug): pdns-recursor crashes on restart if hostfile-update is enabled and dhcp client sends hostname with trailing dot`` +* :vytask:`T5945` ``(bug): Missing minisign public key for rolling release`` +* :vytask:`T5922` ``(bug): Firewall - bug in zone config`` +* :vytask:`T5915` ``(bug): Firewall zone - Re add op-mode commands`` +* :vytask:`T5724` ``(feature): About dhcp client hooks`` +* :vytask:`T5721` ``(bug): Error in migrating configuration from VyOS 1.4`` +* :vytask:`T5550` ``(bug): Source validation on interface does not work properly`` +* :vytask:`T5239` ``(bug): frr 'hostname' missing or incorrect, and domain-name missing totally`` +* :vytask:`T4726` ``(default): Add completion and validation for the accel-ppp RADIUS vendor option`` +* :vytask:`T4085` ``(feature): Rewrite L2TP/PPTP/SSTP/PPPoE services to get_config_dict`` +* :vytask:`T5963` ``(bug): QoS policy shaper rate calculations could be wrong for some ethernet devices`` +* :vytask:`T5876` ``(bug): Dhcp bug in latest 1.5 rolling releases`` +* :vytask:`T5962` ``(feature): QoS policy set default speed to 100mbit or 1gbit instead of 10mbit`` + + +2024-01-19 +========== + +* :vytask:`T5897` ``(bug): VyOS with Cloud-init and VRF stucks at reboot/shutdown process`` +* :vytask:`T5554` ``(bug): Disable sudo for PAM RADIUS`` +* :vytask:`T4754` ``(default): Improvement: system login: show configured 2FA OTP key`` +* :vytask:`T5857` ``(bug): show interfaces wireless info`` +* :vytask:`T5841` ``(default): Remove old ssh-session-cleanup.service`` +* :vytask:`T5884` ``(default): Minor description fix (op-mode: generate wireguard)`` +* :vytask:`T5781` ``(default): Add ability to add additional minisign keys`` + + +2024-01-18 +========== + +* :vytask:`T5863` ``(bug): Failure to Load Config on Recent 1.5 Versions`` +* :vytask:`T4638` ``(bug): Deleting a parent interface does not delete its underlying VLAN interfaces`` +* :vytask:`T5953` ``(default): Rename 'close_action' value from `hold` to `trap` in IPSEC IKE`` + + +2024-01-17 +========== + +* :vytask:`T5923` ``(bug): Config mode system_console.py is not aware of revised GRUB file structure`` +* :vytask:`T4658` ``(feature): Rename DPD action `hold` to `trap``` + + +2024-01-16 +========== + +* :vytask:`T5859` ``(bug): Invalid format of pool range in accel-ppp services`` +* :vytask:`T5842` ``(feature): Rewrite PPTP service to get_config_dict`` +* :vytask:`T5801` ``(feature): Rewrite L2TP service to get_config_dict`` +* :vytask:`T5688` ``(default): Create the same view of pool configuration for all accel-ppp services`` + + +2024-01-15 +========== + +* :vytask:`T5944` ``(bug): "reboot in 1" not working`` +* :vytask:`T5936` ``(bug): [1.3.5 -> 1.4.0-RC1 Migration] OSPF Passive Interface Configuration Not Working Correctly`` +* :vytask:`T5247` ``(bug): the bug of the command "show interfaces system"`` +* :vytask:`T5901` ``(bug): Cloud-init and DHCP exit hook errors`` +* :vytask:`T2556` ``(bug): "show interfaces vrrp" does not return any interface`` + +  2024-01-12  ========== | 
