Just a note: with such tasks, we should always add context — why is the upgrade done. Is it for vulnerabilites? If yes, which CVEs? Is it for bug fixes? If yes, which bug report number? Is it to unblock a path to implementing new features and which ones?
- Queries
- All Stories
- Search
- Advanced Search
- Transactions
- Transaction Logs
Feed All Stories
All Stories
All Stories
Feb 6 2024
Feb 6 2024
GitHub <[email protected]> committed rVYOSONEX9d74ae52092e: Merge pull request #2941 from jestabro/cleanup-wait (authored by jestabro).
Mergify <37929162+mergify[bot]@users.noreply.github.com> committed rVYOSONEXea8f374a37ec: T5921: Fix OpenConnect verify for local users (authored by Viacheslav).
GitHub <[email protected]> committed rVYOSONEX341fe08465cc: Merge pull request #2946 from sever-sever/T5921 (authored by c-po).
Viacheslav moved T5687: Implement ECS settings for PowerDNS recursor from Open to Finished on the VyOS 1.5 Circinus board.
Viacheslav changed the status of T5921: Trying to commit an OpenConnect configuration without any local users results in an exception from Open to In progress.
Viacheslav added a project to T5926: IPSEC does not apply after l2tp configuration was changed: VyOS 1.4 Sagitta.
Viacheslav changed the status of T5926: IPSEC does not apply after l2tp configuration was changed from Open to In progress.
Viacheslav changed the status of T5133: Add comments for items in address-group and network-group in firewall from Open to In progress.
Viacheslav added a comment to T5133: Add comments for items in address-group and network-group in firewall.
PR https://github.com/vyos/vyos-1x/pull/2945
set firewall group address-group ONE address 192.0.2.1 description 'First' set firewall group address-group ONE address 192.0.2.2 description 'Second'
GitHub <[email protected]> committed rVYOSONEXda465d26b524: Merge pull request #2943 from vyos/mergify/bp/current/pr-2942 (authored by dmbaturin).
Mergify <37929162+mergify[bot]@users.noreply.github.com> committed rVYOSONEXb7cedf359f09: op-mode:T6015:Fix the charon file generated by ipsec debug script (authored by SrividyaA).
GitHub <[email protected]> committed rVYOSONEXb10d1c0bd60d: Merge pull request #2942 from srividya0208/debug-ipsec (authored by Viacheslav).
jestabro moved T6018: smoketest: updating http-api framework requires a pause before test from Open to Finished on the VyOS 1.4 Sagitta board.
jestabro closed T6018: smoketest: updating http-api framework requires a pause before test as Resolved.
jestabro moved T6017: Update vyos-http-api-tools for security advisory from Open to Finished on the VyOS 1.4 Sagitta board.
jestabro moved T6017: Update vyos-http-api-tools for security advisory from Open to Finished on the VyOS 1.5 Circinus board.
GitHub <[email protected]> committed rVYOSONEXc1be1713ae1e: Merge pull request #2939 from vyos/mergify/bp/sagitta/pr-2936 (authored by c-po).
Mergify <37929162+mergify[bot]@users.noreply.github.com> committed rVYOSONEX1d8414c9dabd: init: T2044: always start/stop rpki during system boot (authored by c-po).
Mergify <37929162+mergify[bot]@users.noreply.github.com> committed rVYOSONEXa32b2a9e8649: rpki: T6011: known-hosts-file is no longer supported by FRR (authored by c-po).
GitHub <[email protected]> committed rVYOSONEXc1d0a778f9b2: Merge pull request #2936 from c-po/rpki-T6011 (authored by dmbaturin).
GitHub <[email protected]> committed rVYOSONEXf2cefce3714c: Merge pull request #2935 from c-po/rpki (authored by dmbaturin).
Feb 5 2024
Feb 5 2024
GitHub <[email protected]> committed rVYOSONEX48be2429b831: Merge pull request #2938 from vyos/mergify/bp/sagitta/pr-2937 (authored by jestabro).
What version? Can you upgrade to 1.4?
One of my router heavily affected by this issue, so if you will wrote a fix - you may ask me to test the fix.
Mergify <37929162+mergify[bot]@users.noreply.github.com> committed rVYOSONEX217b6b8894d8: T6018: adjust smoketest for update to FastAPI web framework (authored by jestabro).
GitHub <[email protected]> committed rVYOSONEXcf1a7ee4599c: Merge pull request #2937 from jestabro/overhead-advisory-update (authored by jestabro).
jestabro triaged T6018: smoketest: updating http-api framework requires a pause before test as Normal priority.
jestabro triaged T6016: Resolve intermittent failures in cleanup function after failed image install as High priority.
It seems FRR (9.0.2-36-g31dec1951) does not support this.
The route can be added, but no route is in the routing table.
vyos@r4:~$ vtysh -c "conf t" -c "ip route 192.0.2.0/24 2001:db8::1" vyos@r4:~$ vyos@r4:~$ vtysh -c "show run" | match 192.0.2.0 ip route 192.0.2.0/24 2001:db8::1 vyos@r4:~$ vyos@r4:~$ vyos@r4:~$ show ip route 192.0.2.0/24 % Network not in table vyos@r4:~$
n.fort changed the status of T6009: Firewall - Time not working properly when not using UTC from Confirmed to In progress.
PR for 1.5 https://github.com/vyos/vyos-build/pull/493
PR for 1.3 https://github.com/vyos/vyos-build/pull/494
a.apostoliuk updated the task description for T5960: Rewriting authentication section in accel-ppp services.
Update supports via whitespace
r4(config-router)# neighbor foo path-attribute discard 23 24
Viacheslav triaged T6010: Support setting multiple values in BGP path-attribute as Wishlist priority.
FRR does not support it
r4# conf t r4(config)# router bgp 65001 r4(config-router)# no bgp ebgp-requires-policy r4(config-router)# no bgp default ipv4-unicast r4(config-router)# no bgp network import-check r4(config-router)# neighbor foo peer-group r4(config-router)# neighbor foo path-attribute discard 24 r4(config-router)# neighbor foo path-attribute discard 23,24 % Unknown command: neighbor foo path-attribute discard 23,24 r4(config-router)#
Viacheslav triaged T6011: rpki: known-hosts-file is no longer supported by FRR CLI - remove VyOS CLI node as Normal priority.
Feb 4 2024
Feb 4 2024
This type of configuration works perfectly fine with VyOS 1.5 when receiving routes from a BGP peer (v4 routes with v6 nexthop), so it would be very nice to be able to manually install routes in the same way.
Feb 3 2024
Feb 3 2024
GitHub <[email protected]> committed rVYOSONEX22a15d828e1d: Merge pull request #2934 from vyos/mergify/bp/sagitta/pr-2932 (authored by c-po).
c-po renamed T6011: rpki: known-hosts-file is no longer supported by FRR CLI - remove VyOS CLI node from rpki: known-hosts-file is no longer supported bxy FRR CLI - remove VyOS CLI node to rpki: known-hosts-file is no longer supported by FRR CLI - remove VyOS CLI node.
c-po changed the status of T6011: rpki: known-hosts-file is no longer supported by FRR CLI - remove VyOS CLI node from Open to In progress.
Mergify <37929162+mergify[bot]@users.noreply.github.com> committed rVYOSONEX4edc0611ec0a: ipsec: T5998: add replay-windows setting (authored by c-po).
Apachez added a comment to T5424: Routes vanishes when using FRR with ECMP and one of the ECMP paths is no longer available.
Its not clear if its fixed or not:
GitHub <[email protected]> committed rVYOSONEX630a242cecae: Merge pull request #2932 from c-po/ipsec-T5998 (authored by c-po).
c-po added a parent task for T2044: RPKI doesn't boot properly: T6004: Missing RPKI boot priority prevents it from loading.
c-po added a subtask for T6004: Missing RPKI boot priority prevents it from loading: T2044: RPKI doesn't boot properly.
GitHub <[email protected]> committed rVYOSONEX088dcfd35af2: Merge pull request #2933 from vyos/mergify/bp/sagitta/pr-2931 (authored by c-po).
Mergify <37929162+mergify[bot]@users.noreply.github.com> committed rVYOSONEXc224be5a55f6: configdict: T5894: preserve old behavior when dealing with PKI (authored by c-po).
GitHub <[email protected]> committed rVYOSONEX1d23d921deb0: Merge pull request #2931 from c-po/configdict-bugfix (authored by Viacheslav).
Feb 2 2024
Feb 2 2024
c-po moved T6003: Add 'show rpki as-number' and 'show rpki prefix' from Open to Finished on the VyOS 1.4 Sagitta board.
c-po moved T6003: Add 'show rpki as-number' and 'show rpki prefix' from Open to Finished on the VyOS 1.5 Circinus board.
c-po moved T5998: replay_window setting under vpn in config from Open to Finished on the VyOS 1.5 Circinus board.
Viacheslav edited projects for T973: Create Prometheus Exporter for VyOS , added: VyOS 1.5 Circinus; removed VyOS 1.3 Equuleus (1.3.6).
Viacheslav closed T2459: Migrate vyatta-show-nat-rules.pl to Python, a subtask of T2198: Rewrite NAT in new XML/Python style, as Not Applicable.
Viacheslav closed T2459: Migrate vyatta-show-nat-rules.pl to Python, a subtask of T3355: Remove all remaining legacy Vyatta code, as Not Applicable.
It won't be implemented for 1.3.x
Have this for 1.4/1.5
GitHub <[email protected]> committed rVYOSONEX2d8a7bda382f: Merge pull request #2930 from vyos/mergify/bp/sagitta/pr-2748 (authored by c-po).
Viacheslav changed the status of T4816: IPv4-mapped and IPv4-compatible IPv6 addresses not valid anymore from Open to Confirmed.
Viacheslav edited projects for T5153: OpenConnect route restriction via iptables is ignored, added: VyOS 1.5 Circinus; removed VyOS 1.3 Equuleus (1.3.6).
Viacheslav moved T5739: Password recovery does not work if public keys are configured from Need Triage to Finished on the VyOS 1.3 Equuleus (1.3.6) board.
Viacheslav moved T5739: Password recovery does not work if public keys are configured from Open to Finished on the VyOS 1.4 Sagitta board.