Age | Commit message (Collapse) | Author | Files | Lines | |
---|---|---|---|---|---|
2024-01-30 | netwatch-dns: use :jobname to get script name | Christian Hesse | 1 | -1/+3 | |
2024-01-30 | mode-button: use :jobname to get script name | Christian Hesse | 1 | -1/+3 | |
2024-01-30 | log-forward: use :jobname to get script name | Christian Hesse | 1 | -1/+3 | |
2024-01-30 | lease-script: use :jobname to get script name | Christian Hesse | 1 | -1/+3 | |
2024-01-30 | ipv6-update: use :jobname to get script name | Christian Hesse | 1 | -1/+3 | |
2024-01-30 | ipsec-to-dns: use :jobname to get script name | Christian Hesse | 1 | -1/+3 | |
2024-01-30 | hotspot-to-wpa-cleanup: use :jobname to get script name | Christian Hesse | 4 | -6/+5 | |
2024-01-30 | hotspot-to-wpa: use :jobname to get script name | Christian Hesse | 4 | -4/+12 | |
2024-01-30 | gps-track: use :jobname to get script name | Christian Hesse | 1 | -1/+3 | |
2024-01-30 | global-wait: use :jobname to get script name | Christian Hesse | 1 | -1/+3 | |
2024-01-30 | global-functions: use :jobname to get script name | Christian Hesse | 1 | -1/+1 | |
2024-01-30 | fw-addr-lists: use :jobname to get script name | Christian Hesse | 1 | -1/+3 | |
2024-01-30 | firmware-upgrade-reboot: use :jobname to get script name | Christian Hesse | 1 | -1/+3 | |
2024-01-30 | dhcp-to-dns: use :jobname to get script name | Christian Hesse | 1 | -1/+2 | |
2024-01-30 | dhcp-lease-comment: use :jobname to get script name | Christian Hesse | 5 | -5/+10 | |
2024-01-30 | daily-psk.capsman: use :jobname to get script name | Christian Hesse | 5 | -5/+15 | |
2024-01-30 | collect-wireless-mac: use :jobname to get script name | Christian Hesse | 5 | -5/+10 | |
2024-01-30 | check-routeros-update: use :jobname to get script name | Christian Hesse | 1 | -1/+3 | |
2024-01-30 | check-lte-firmware-upgrade: use :jobname to get script name | Christian Hesse | 1 | -1/+3 | |
2024-01-30 | check-health: use :jobname to get script name | Christian Hesse | 1 | -1/+3 | |
2024-01-30 | check-certificates: use :jobname to get script name | Christian Hesse | 1 | -1/+3 | |
2024-01-30 | certificate-renew-issued: use :jobname to get script name | Christian Hesse | 1 | -1/+3 | |
2024-01-30 | capsman-rolling-upgrade: use :jobname to get script name | Christian Hesse | 4 | -4/+8 | |
2024-01-30 | capsman-download-packages: use :jobname to get script name | Christian Hesse | 4 | -4/+12 | |
2024-01-30 | backup-upload: use :jobname to get script name | Christian Hesse | 1 | -1/+2 | |
2024-01-30 | backup-partition: use :jobname to get script name | Christian Hesse | 1 | -1/+2 | |
2024-01-30 | backup-email: use :jobname to get script name | Christian Hesse | 1 | -1/+2 | |
2024-01-30 | backup-cloud: use :jobname to get script name | Christian Hesse | 1 | -1/+2 | |
2024-01-30 | accesslist-duplicates: use :jobname to get script name | Christian Hesse | 5 | -5/+5 | |
2024-01-30 | Merge branch 'bump' into nextrouteros-7.12-2 | Christian Hesse | 11 | -13/+9 | |
2024-01-30 | mod/ssh-keys-import: bump RouterOS version dependency | Christian Hesse | 2 | -3/+1 | |
2024-01-30 | accesslist-duplicates: bump RouterOS version dependency | Christian Hesse | 6 | -7/+5 | |
2024-01-30 | hotspot-to-wpa-cleanup: bump RouterOS version dependency | Christian Hesse | 3 | -3/+3 | |
2024-01-30 | mod/notification-email: drop support for old property name | Christian Hesse | 1 | -2/+4 | |
2024-01-30 | README: note on required hardware and limitations by storage | Christian Hesse | 1 | -0/+8 | |
2024-01-30 | README: make required software a paragraph | Christian Hesse | 1 | -0/+2 | |
2024-01-30 | send a warning on storage sizechange-118 | Christian Hesse | 2 | -1/+7 | |
2024-01-30 | packages-update: support deferred reboot on auto-updatechange-117 | Christian Hesse | 5 | -1/+24 | |
Closes #56 | |||||
2024-01-30 | packages-update: schedule from local function | Christian Hesse | 1 | -8/+12 | |
2024-01-30 | telegram-chat: add (and increase) random delay on error | Christian Hesse | 1 | -0/+11 | |
Chances are that two devices schedule the script (nearly) simultaneously. Causing a lot of failures from fetch. Instead of forcing a retry on *every* invocating we add (and increase) a random delay, that is slowly decreasd on success. This should minimize failures... | |||||
2024-01-30 | telegram-chat: fix concatenation (and retry with delay) | Christian Hesse | 1 | -1/+1 | |
Ups... 😳 | |||||
2024-01-30 | global-functions: $RandomDelay: always scale to ms...routeros-7.12-1 | Christian Hesse | 2 | -3/+4 | |
... to randomize in friction of unit. This requires :tonsec from RouterOS 7.12. | |||||
2024-01-29 | global-functions: $RandomDelay: allow zero time, return immediately | Christian Hesse | 1 | -0/+4 | |
2024-01-29 | global-functions: $RandomDelay: name the parameters | Christian Hesse | 1 | -1/+4 | |
2024-01-25 | update list of contributors | Christian Hesse | 1 | -0/+1 | |
2024-01-25 | INITIAL-COMMANDS: fix existing installation | Christian Hesse | 1 | -0/+7 | |
2024-01-24 | doc/check-certificates: initial certificate import | Christian Hesse | 1 | -0/+10 | |
2024-01-24 | doc/check-certificates: add paragraph | Christian Hesse | 1 | -0/+2 | |
2024-01-24 | check-certificates: unbreak certificate download | Christian Hesse | 1 | -1/+1 | |
This was borked with a2749b276003a90b95b9723e287542be56c0d0c1. 😳 | |||||
2024-01-24 | INITIAL-COMMANDS: ... but rename the configuration overlay! | Christian Hesse | 1 | -0/+1 | |
This should not ultimately destroy user's configuration. | |||||
2024-01-24 | INITIAL-COMMANDS: remove before adding... | Christian Hesse | 1 | -0/+2 | |
... to make sure it does not fail on (partly) installed scripts. This should work to fix borked base installation now. | |||||
2024-01-22 | mod/notification-telegram: apply url encoding when sending | Christian Hesse | 1 | -5/+5 | |
2024-01-22 | mod/notification-matrix: drop declaration of unused function | Christian Hesse | 1 | -1/+0 | |
2024-01-20 | global-functions: $SymbolByUnicodeName: log warning on missing name | Christian Hesse | 1 | -0/+7 | |
2024-01-20 | global-functions: $SymbolByUnicodeName: name the parameter | Christian Hesse | 1 | -1/+3 | |
2024-01-19 | backup-upload: fix the upload symbol... | Christian Hesse | 1 | -1/+1 | |
... which broke with commit 080bef89a934980271a50eed25a494a0bc33d007. | |||||
2024-01-19 | fw-addr-lists: use prepared user-agent string with fetch | Christian Hesse | 1 | -1/+2 | |
2024-01-19 | check-certificates: use prepared user-agent string with fetch | Christian Hesse | 1 | -1/+2 | |
2024-01-18 | netwatch-dns: be move verbose on time to settle | Christian Hesse | 1 | -2/+3 | |
2024-01-18 | global-functions: log successful loading | Christian Hesse | 1 | -0/+5 | |
2024-01-18 | sms-forward: log warning just once | Christian Hesse | 1 | -1/+2 | |
2024-01-18 | global-functions: $LogPrintOnce: support exit | Christian Hesse | 3 | -4/+5 | |
2024-01-18 | doc/hotspot-to-wpa: reference as WPA only... | Christian Hesse | 3 | -8/+8 | |
... as this works with WPA3 as well. 😜 | |||||
2024-01-17 | doc/hotspot-to-wpa: fix property name | Christian Hesse | 1 | -5/+5 | |
2024-01-16 | global-functions: $HexToNum: use :tonum | Christian Hesse | 1 | -7/+5 | |
2024-01-16 | INITIAL-COMMANDS: set script owner on initial creation | Christian Hesse | 1 | -1/+1 | |
2024-01-16 | README: set script owner on initial creation | Christian Hesse | 1 | -1/+1 | |
2024-01-15 | netwatch-dns: check DoH server with fetch | Christian Hesse | 1 | -15/+25 | |
This way we do not have to configure possibly non-functional servers to check. The query is for doh-check.eworm.de of type TXT, the expected answer is 'doh-check-OK'. % dig TXT doh-check.eworm.de +https @1.1.1.1 ; <<>> DiG 9.18.21 <<>> TXT doh-check.eworm.de +https @1.1.1.1 ;; global options: +cmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 42226 ;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 1 ;; OPT PSEUDOSECTION: ; EDNS: version: 0, flags:; udp: 1232 ;; QUESTION SECTION: ;doh-check.eworm.de. IN TXT ;; ANSWER SECTION: doh-check.eworm.de. 63791 IN TXT "doh-check-OK" ;; Query time: 16 msec ;; SERVER: 1.1.1.1#443(1.1.1.1) (HTTPS) ;; WHEN: Mon Jan 15 13:55:36 CET 2024 ;; MSG SIZE rcvd: 72 | |||||
2024-01-11 | netwatch-dns: check DoH server functionality... | Christian Hesse | 1 | -21/+31 | |
... and try all servers one after another. | |||||
2024-01-11 | netwatch-dns: enable DoH certificate verification... | Christian Hesse | 1 | -1/+3 | |
... if a certificate is named in configuration. | |||||
2024-01-09 | doc/netwatch-dns: use new certificate for Cloudflare | Christian Hesse | 1 | -1/+1 | |
2024-01-09 | certs: add new DigiCert certificates... | Christian Hesse | 1 | -0/+182 | |
... used by Cloudflare. | |||||
2024-01-08 | global-functions: $CertificateDownload: move delay up | Christian Hesse | 1 | -1/+1 | |
We still had cases where fetch misbehaves... But this was permanent. Perhaps we should not touch the certificate too early... | |||||
2024-01-07 | check-lte-firmware-upgrade: unbreak terminal detectiono | Christian Hesse | 1 | -4/+5 | |
This broke with commit 50d7e1fa41b8f8a6a1379de5521798346fd1ae9f... 🫣 | |||||
2024-01-05 | check-lte-firmware-upgrade: fail on empty version string | Christian Hesse | 1 | -0/+5 | |
2024-01-01 | update copyright for 2024 | Christian Hesse | 85 | -85/+85 | |
2023-12-22 | global-functions: $GetMacVendor: get new certificate | Christian Hesse | 2 | -1/+239 | |
The service now uses: GTS CA 1P5 -> GTS Root R1 | |||||
2023-12-21 | mod/ssh-keys-import: unbreak import from file | Christian Hesse | 1 | -1/+1 | |
Looks like this broke in c3045f372350bd8dd0a8f10efb8a4b938e896145 where a non-existent variable name was used. | |||||
2023-12-20 | capsman-download-packages: avaiable packages only... | Christian Hesse | 3 | -3/+7 | |
... as things became more complicated with 'wifi-qcom*'. | |||||
2023-12-20 | capsman-download-packages: use default set for legacy capsman... | Christian Hesse | 3 | -55/+16 | |
... as well - now that 'wireless' package has been split from 'routeros' guessing kind of broke. It required several attempts and intermittent errors in logs to get things right. | |||||
2023-12-14 | doc/mode-button: document required type of led | Christian Hesse | 1 | -1/+1 | |
2023-12-13 | fw-addr-lists: warn on possible truncation | Christian Hesse | 1 | -0/+5 | |
... as fetch truncates data at about 64kB, reported in SUP-132297. | |||||
2023-12-05 | doc/capsman-download-packages: mention package-path | Christian Hesse | 1 | -1/+5 | |
2023-12-05 | mention the donation hint...change-116 | Christian Hesse | 2 | -1/+8 | |
2023-12-05 | celebrating ✨⭐ 1.000 stars ⭐✨ on Github!change-115 | Christian Hesse | 2 | -1/+4 | |
2023-12-05 | mod/notification-email: $NotificationFunctions->"email": support hook for ↵ | Christian Hesse | 1 | -1/+2 | |
signature You can compose your own signature by creating a function: :global NotificationEMailSignature do={ :global EitherOr; :local RouterBoard [ /system/routerboard/get ]; :return ( \ [ $EitherOr ($RouterBoard->"board-name") ($RouterBoard->"model") ] . " s/n " . $RouterBoard->"serial-number" . " | " . \ "RouterOS " . [ /system/package/update/get installed-version ] . " | " . \ "IP " . [ /ip/cloud/get public-address ]); } | |||||
2023-12-05 | check-certificates: properly renew from template | Christian Hesse | 1 | -1/+1 | |
2023-12-05 | check-certificates: improve wording | Christian Hesse | 1 | -3/+2 | |
2023-12-04 | check-certificates: add workaround for broken certificates... | Christian Hesse | 1 | -2/+4 | |
... where the issuer array is borked. Or is this a RouterOS issue? [eworm@carpo] > $InspectVar [ $ParseKeyValueStore [ /certificate/get ISRG-Root-X2 issuer ] ] -type-> array -key-> C -type-> str -value-> US,O=Internet Security Research Group,CN=ISRG Root X2 A good certificate looks like this: [eworm@carpo] > $InspectVar [ $ParseKeyValueStore [ /certificate/get [ find where name~"eworm.net" ] issuer ] ] -type-> array -key-> C -type-> str -value-> US -key-> CN -type-> str -value-> E1 -key-> O -type-> str -value-> Let's Encrypt | |||||
2023-12-04 | check-certificates: prevent infinte loop | Christian Hesse | 1 | -1/+2 | |
2023-12-04 | check-certificates: give full certificate chain | Christian Hesse | 1 | -7/+28 | |
2023-12-04 | check-certificates: fix typo and syntax | Christian Hesse | 1 | -2/+2 | |
2023-12-04 | mod/notification-email: $QuotedPrintable: also encode question mark | Christian Hesse | 1 | -1/+1 | |
Following the RFC it is not required, but looks like Thunderbird has an issue here... https://datatracker.ietf.org/doc/html/rfc2045#section-6.7 | |||||
2023-12-04 | mod/notification-email: $QuotedPrintable: minor rework | Christian Hesse | 1 | -10/+11 | |
We have to encode all characters from 0x00 to 0x1f as well... Also the equal sign is nothing special here, just adding to list. | |||||
2023-12-04 | global-functions: $FormatLine: use $CharacterMultiply | Christian Hesse | 1 | -1/+3 | |
2023-12-04 | global-functions: $AlignRight: use $CharacterMultiply | Christian Hesse | 1 | -1/+2 | |
2023-12-04 | global-functions: introduce $CharacterMultiply | Christian Hesse | 1 | -0/+10 | |
2023-12-04 | global-functions: $DeviceInfo: add SNMP location and contact | Christian Hesse | 1 | -1/+6 | |
2023-11-30 | fw-addr-lists: support timeout per list | Christian Hesse | 2 | -7/+9 | |
This works with something like this: :global FwAddrLists { "allow"={ { url="https://eworm.de/ros/fw-addr-lists/allow"; cert="E1"; timeout=1w }; }; ... } All urls for one named list should have the same timeout! With different timeout values and identical addresses the behavior is besically undefined, depending on order. | |||||
2023-11-30 | global-functions: introduce $MIN | Christian Hesse | 1 | -0/+7 | |