]>
git.ipfire.org Git - network.git/log
Michael Tremer [Sun, 23 Sep 2018 17:52:49 +0000 (19:52 +0200)]
hotplug: Do not attempt to remove special device ip_vti0
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Michael Tremer [Sun, 23 Sep 2018 17:51:26 +0000 (19:51 +0200)]
hotplug: Don't try to remove gre0
This device cannot be removed
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Michael Tremer [Sun, 23 Sep 2018 17:48:10 +0000 (19:48 +0200)]
Drop unused function: device_is_ipsec
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Michael Tremer [Sun, 23 Sep 2018 17:47:27 +0000 (19:47 +0200)]
device: Refactor check for device type
There is now one implementation for various types of devices
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Michael Tremer [Sun, 23 Sep 2018 17:30:11 +0000 (19:30 +0200)]
Cleanup code that deletes ports/zones
This is used for network reset and it wasn't clear
before if the command were successful
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Michael Tremer [Sun, 23 Sep 2018 16:13:07 +0000 (18:13 +0200)]
hotplug: Ignore all PPP interfaces
Those will come up when a PPP session is being established
with the pppoe-server.
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Michael Tremer [Sun, 23 Sep 2018 16:04:46 +0000 (18:04 +0200)]
lock: Accept names instead of paths
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Michael Tremer [Sun, 23 Sep 2018 15:53:46 +0000 (17:53 +0200)]
util: Parse command line correctly when running commands
Before, empty arguments where just dropped
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Michael Tremer [Sun, 23 Sep 2018 15:31:23 +0000 (17:31 +0200)]
pppoe-server: Remove line to enable kernel mode
This is enabled anyways since it is the only mode
we are supporting right now.
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Michael Tremer [Sun, 23 Sep 2018 15:30:29 +0000 (17:30 +0200)]
pppoe-server: Refactor pppoe_server_poolfile
Due to output of other functions changed, this function
needed to be slightly rewritten.
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Michael Tremer [Sun, 23 Sep 2018 15:29:41 +0000 (17:29 +0200)]
ipv4: Fix ipv4_range_explicit function
Inputs where not converted correctly and therefore
the function returned an invalid output.
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Michael Tremer [Sun, 23 Sep 2018 14:31:39 +0000 (16:31 +0200)]
Remove debugging line
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Michael Tremer [Sun, 23 Sep 2018 14:30:29 +0000 (16:30 +0200)]
wireless: Try to automatically enable HT40+/- on devices that support it
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Michael Tremer [Sun, 23 Sep 2018 13:27:41 +0000 (15:27 +0200)]
copy: Automatically create target directory when copying files
Fixes: #11663
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Michael Tremer [Sun, 23 Sep 2018 00:44:37 +0000 (02:44 +0200)]
libnetwork: Add function to check if a PHY supports a specific channel
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Michael Tremer [Sat, 22 Sep 2018 15:33:20 +0000 (16:33 +0100)]
Show driver name in device status
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Michael Tremer [Sat, 22 Sep 2018 14:24:23 +0000 (15:24 +0100)]
colors: Fix length of LISTENING label
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Michael Tremer [Sat, 22 Sep 2018 12:47:44 +0000 (13:47 +0100)]
hotplug: Let bridges create their ports in hotplug event
This patch changes that all ports are being created in the
hotplug event and allows us to start bridges at any time
with ports existing or being added later.
Fixes: #11360
Signed-off-by: Arne Fitzenreiter <arne.fitzenreiter@ipfire.org>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Michael Tremer [Sat, 22 Sep 2018 12:05:46 +0000 (13:05 +0100)]
boot: Fix bringing up zones when system is booting
An incorrect target was required and no zone was brought
up during boot.
Signed-off-by: Stefan Schantl <stefan.schantl@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne.fitzenreiter@ipfire.org>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Michael Tremer [Sat, 22 Sep 2018 12:05:06 +0000 (13:05 +0100)]
util: Fail silently when directory already exists
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Michael Tremer [Sat, 22 Sep 2018 11:55:10 +0000 (12:55 +0100)]
colors: Remove extra space character in BLOCKING msg
This message was not properly aligned
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Michael Tremer [Fri, 21 Sep 2018 21:58:01 +0000 (22:58 +0100)]
Move creating port configurations into network-hotplug-rename
This script is now actually creating a new configuration while
it is holding the lock.
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Michael Tremer [Fri, 21 Sep 2018 21:47:17 +0000 (22:47 +0100)]
Refactor network-hotplug-rename
This is now using a new locking mechanism that is working
faster and more reliable then looping for forever.
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Michael Tremer [Fri, 21 Sep 2018 15:00:24 +0000 (17:00 +0200)]
port: ethernet: Correctly create new configurations
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Michael Tremer [Fri, 21 Sep 2018 14:31:12 +0000 (16:31 +0200)]
ports: Fix saving HOOK name
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Michael Tremer [Fri, 21 Sep 2018 14:27:58 +0000 (16:27 +0200)]
Refactor hotplug script
This script is doing the same as before, but has been refactored
to be cleaner and faster.
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Michael Tremer [Fri, 21 Sep 2018 13:44:44 +0000 (15:44 +0200)]
hotplug: Continue running through script for ipsec devices
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Michael Tremer [Fri, 21 Sep 2018 13:43:46 +0000 (15:43 +0200)]
zones: Drop unused commands
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Michael Tremer [Fri, 21 Sep 2018 13:19:58 +0000 (15:19 +0200)]
Extend "network status"
This now takes ports, devices and PHYs and prints the appropriate
status.
This is very handy and just a shortcut.
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Michael Tremer [Fri, 21 Sep 2018 13:06:53 +0000 (15:06 +0200)]
Speed up device_list() by removing the alphabetical sort
We are now returning all devices, then all PHYs, then all
serial devices.
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Michael Tremer [Fri, 21 Sep 2018 13:05:21 +0000 (15:05 +0200)]
Fix generating device_list()
It was returning values like bonding_masters which are not
an actual device.
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Michael Tremer [Fri, 21 Sep 2018 13:00:44 +0000 (15:00 +0200)]
Validate input for --offloading flag and throw an error when empty
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Michael Tremer [Fri, 21 Sep 2018 12:58:39 +0000 (14:58 +0200)]
ports: ethernet+bonding: Allow to disable all offloading
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Michael Tremer [Fri, 21 Sep 2018 12:50:12 +0000 (14:50 +0200)]
Move offloading code into an own file
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Michael Tremer [Fri, 21 Sep 2018 12:22:39 +0000 (14:22 +0200)]
Add support for hardware offloading
Hardware offloading will now be enabled on physical
and bonding devices automatically.
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Michael Tremer [Fri, 21 Sep 2018 11:35:30 +0000 (13:35 +0200)]
Move DEFAULT_MTU to constants
This is where it belongs
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Michael Tremer [Fri, 21 Sep 2018 11:33:33 +0000 (13:33 +0200)]
ipsec: Rewrite adding routes script
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Michael Tremer [Thu, 20 Sep 2018 12:51:36 +0000 (14:51 +0200)]
constants: Remove unused BATMAN variable
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Michael Tremer [Thu, 20 Sep 2018 23:18:45 +0000 (00:18 +0100)]
port: ethernet: Use combined setting for advertised link speeds
This patch removes the speed and duplex settings and replaces them
with a configuration option that allows to change advertised link
speeds to a certain speed.
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Michael Tremer [Thu, 20 Sep 2018 22:26:45 +0000 (23:26 +0100)]
port: ethernet: Allow setting duplex mode
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Michael Tremer [Thu, 20 Sep 2018 22:19:02 +0000 (23:19 +0100)]
port: ethernet: Allow setting link speed
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Michael Tremer [Thu, 20 Sep 2018 22:18:04 +0000 (23:18 +0100)]
port: ethernet: Bring back accidentially dropped hook_create function
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Michael Tremer [Thu, 20 Sep 2018 22:05:00 +0000 (23:05 +0100)]
port: ethernet: Return OK only to rename ports
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Michael Tremer [Thu, 20 Sep 2018 22:04:44 +0000 (23:04 +0100)]
port: ethernet: Use default hook_new() function
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Michael Tremer [Thu, 20 Sep 2018 22:04:21 +0000 (23:04 +0100)]
header-port: Start with empty set of settings
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Michael Tremer [Thu, 20 Sep 2018 22:01:42 +0000 (23:01 +0100)]
port: ethernet: Allow setting the MTU
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Michael Tremer [Thu, 20 Sep 2018 21:42:54 +0000 (22:42 +0100)]
Restart ports after edit to apply settings
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Michael Tremer [Thu, 20 Sep 2018 21:35:58 +0000 (22:35 +0100)]
header-port: Print errors if config could not be read/written
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Michael Tremer [Thu, 20 Sep 2018 21:33:07 +0000 (22:33 +0100)]
ports: ethernet: Allow changing MAC address
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Michael Tremer [Thu, 20 Sep 2018 21:16:00 +0000 (22:16 +0100)]
Add support for LEDs
This patch configures LEDs on some Wireless PHYs to flash
on activity. This makes debugging easier.
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Michael Tremer [Wed, 19 Sep 2018 16:45:32 +0000 (17:45 +0100)]
hostapd: Add support for 802.11ac
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Michael Tremer [Wed, 19 Sep 2018 15:01:34 +0000 (16:01 +0100)]
hostapd: Always enable 802.11d
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Michael Tremer [Wed, 19 Sep 2018 14:59:53 +0000 (15:59 +0100)]
hostapd: Write VHT capabilities to configuration
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Michael Tremer [Wed, 19 Sep 2018 14:56:33 +0000 (15:56 +0100)]
libnetwork: Actually store index
Index was always zero and therefore only the first PHY could
be queried only.
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Michael Tremer [Wed, 19 Sep 2018 14:46:21 +0000 (15:46 +0100)]
libnetwork: Remove debug output
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Michael Tremer [Wed, 19 Sep 2018 14:42:20 +0000 (15:42 +0100)]
libnetwork: Fix typo in RX-LDPC HT capability
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Michael Tremer [Wed, 19 Sep 2018 14:41:16 +0000 (15:41 +0100)]
libnetwork: Fix looping though HT capabilities
The last capability was never looped through
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Michael Tremer [Wed, 19 Sep 2018 14:39:48 +0000 (15:39 +0100)]
ibnetwork: Add command to show available VHT capabilities of phys
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Michael Tremer [Wed, 19 Sep 2018 13:02:09 +0000 (14:02 +0100)]
hostapd: Always enable all HT caps
Signed-off-by: Arne Fitzenreiter <arne.fitzenreiter@ipfire.org>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Michael Tremer [Wed, 19 Sep 2018 12:10:41 +0000 (14:10 +0200)]
ip-tunnel: Make --peer optional
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Michael Tremer [Wed, 19 Sep 2018 11:46:53 +0000 (13:46 +0200)]
ipsec: VTI keys are static now and don't need to be updated
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Michael Tremer [Wed, 19 Sep 2018 11:43:58 +0000 (13:43 +0200)]
ipsec: GRE/VTI connections are now possible as on-demand
This change implements using zones as GRE/VTI devices so that
we can use IPsec connections in on-demand mode, too.
The device will be created first (as a zone) and might trigger
an IPsec connection. If that happens, the settings of the device
will be updated automatically.
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Michael Tremer [Tue, 18 Sep 2018 12:01:12 +0000 (14:01 +0200)]
ip-tunnel: Add support for VTI interfaces
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Michael Tremer [Tue, 18 Sep 2018 11:33:30 +0000 (13:33 +0200)]
ipsec: Show ZONE setting when configuration is being dumped
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Michael Tremer [Tue, 18 Sep 2018 11:30:17 +0000 (13:30 +0200)]
ipsec: Change mode to transport/tunnel only
VTI is being removed and will be possible via the new
zone command.
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Michael Tremer [Tue, 18 Sep 2018 11:21:19 +0000 (13:21 +0200)]
ipsec: Allow adding a zone to a VPN connection
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Michael Tremer [Tue, 18 Sep 2018 10:16:02 +0000 (12:16 +0200)]
ipsec: security policies: Fix typos in plural variables
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Michael Tremer [Mon, 17 Sep 2018 15:23:44 +0000 (16:23 +0100)]
nitsi: Add tests for ip-tunnels in GRE mode
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Michael Tremer [Mon, 17 Sep 2018 14:54:45 +0000 (16:54 +0200)]
Makefile: Forgot to remove 6to4-tunnel hook
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Michael Tremer [Mon, 17 Sep 2018 14:46:16 +0000 (15:46 +0100)]
Merge remote-tracking branch 'jschlag/master'
Michael Tremer [Mon, 17 Sep 2018 14:30:17 +0000 (16:30 +0200)]
Drop 6to4-tunnel hook which is (partly) replaced by ip-tunnel
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Michael Tremer [Mon, 17 Sep 2018 14:06:38 +0000 (16:06 +0200)]
man: Add documentation for IP tunnel hook
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Michael Tremer [Mon, 17 Sep 2018 13:30:00 +0000 (15:30 +0200)]
Add generic IP tunnel zone hook
This is useful to create GRE connections and can easily
be extended to do more later.
Fixes: #11607
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Michael Tremer [Mon, 17 Sep 2018 13:29:32 +0000 (15:29 +0200)]
ip-tunnel: Create a function that determines if all IP addresses match
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Michael Tremer [Mon, 17 Sep 2018 13:25:55 +0000 (15:25 +0200)]
ip-tunnel: Fix protocol detection when local address is empty
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Michael Tremer [Mon, 17 Sep 2018 11:49:24 +0000 (13:49 +0200)]
ipsec: security policies: Add documentation for pseudo-random-functions command
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Michael Tremer [Mon, 17 Sep 2018 11:45:49 +0000 (13:45 +0200)]
CLI: Fix destroying zones
The old delayed removal process doesn't exist any more
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Jonatan Schlag [Sun, 16 Sep 2018 14:16:43 +0000 (16:16 +0200)]
Merge remote-tracking branch 'upstream/master'
Michael Tremer [Sun, 16 Sep 2018 14:15:53 +0000 (15:15 +0100)]
ipsec: security policies: Make integrity command plural
References: #11446
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Jonatan Schlag [Sun, 16 Sep 2018 14:15:52 +0000 (16:15 +0200)]
Merge remote-tracking branch 'upstream/master'
Jonatan Schlag [Sun, 16 Sep 2018 14:13:56 +0000 (16:13 +0200)]
Move vpn tests into an own directory structure
Signed-off-by: Jonatan Schlag <jonatan.schlag@ipfire.org>
Michael Tremer [Sun, 16 Sep 2018 14:11:36 +0000 (15:11 +0100)]
ipsec: security policies: Make group type command plural
References: #11446
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Jonatan Schlag [Sun, 16 Sep 2018 14:00:00 +0000 (16:00 +0200)]
Adjust include paths because of the new include path feature
Signed-off-by: Jonatan Schlag <jonatan.schlag@ipfire.org>
Michael Tremer [Sun, 16 Sep 2018 14:00:42 +0000 (16:00 +0200)]
ipsec: security policies: Show PRFs when dumping SecPol conf
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Michael Tremer [Sun, 16 Sep 2018 13:57:31 +0000 (15:57 +0200)]
ipsec: security polices: Make cipher command plural
References: #11446
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Jonatan Schlag [Sun, 16 Sep 2018 13:54:04 +0000 (15:54 +0200)]
Use new include path feature of nitsi
Signed-off-by: Jonatan Schlag <jonatan.schlag@ipfire.org>
Michael Tremer [Sun, 16 Sep 2018 13:51:31 +0000 (15:51 +0200)]
ipsec: security-policies: Make PRF command plural
References: #11446
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Michael Tremer [Sun, 16 Sep 2018 13:45:45 +0000 (15:45 +0200)]
ipsec: security-policies: Add CLI to modify PRFs
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Michael Tremer [Sun, 16 Sep 2018 13:19:55 +0000 (15:19 +0200)]
ipsec: Generate IKE proposals with PRFs
This is now a requirement for AEAD ciphers and strongswan
refuses to start.
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Jonatan Schlag [Sun, 16 Sep 2018 12:36:26 +0000 (14:36 +0200)]
Nitsi: port vlan test- check if detach works
Signed-off-by: Jonatan Schlag <jonatan.schlag@ipfire.org>
Jonatan Schlag [Sun, 16 Sep 2018 12:03:37 +0000 (14:03 +0200)]
Add vlan port test for nitsi
Signed-off-by: Jonatan Schlag <jonatan.schlag@ipfire.org>
Michael Tremer [Sun, 16 Sep 2018 11:53:53 +0000 (12:53 +0100)]
Merge remote-tracking branch 'jschlag/master'
Michael Tremer [Sun, 16 Sep 2018 11:52:39 +0000 (12:52 +0100)]
nitsi: Add test for PPPoE server/client
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Michael Tremer [Sun, 16 Sep 2018 11:50:30 +0000 (12:50 +0100)]
pppoe: Bring up port when zone is coming up
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Jonatan Schlag [Sun, 16 Sep 2018 11:16:23 +0000 (13:16 +0200)]
Add VPN n2n tests for vti
Signed-off-by: Jonatan Schlag <jonatan.schlag@ipfire.org>
Jonatan Schlag [Sun, 16 Sep 2018 11:13:43 +0000 (13:13 +0200)]
Use new phase1 and setup recipes in vpn tests
Signed-off-by: Jonatan Schlag <jonatan.schlag@ipfire.org>
Michael Tremer [Sun, 16 Sep 2018 08:21:53 +0000 (09:21 +0100)]
nitsi: Make sure that we are always running with the most recent source
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Michael Tremer [Sun, 16 Sep 2018 08:16:21 +0000 (09:16 +0100)]
nitsi: Automatically drop to a shell in case a test fails
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Michael Tremer [Sun, 16 Sep 2018 09:26:22 +0000 (11:26 +0200)]
pppoe-server: Run with absolute path
Because PATH has been changed this script is executing
itself recursively
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Michael Tremer [Sun, 16 Sep 2018 09:24:28 +0000 (11:24 +0200)]
pppoe-server: Read configuration again
This was broken since config IDs have been introduced
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>