This commit adds an explicit openssl dependency for swagger as swagger brings in npm for build-depends which in turn needs libssl and friends which will error out if there is a mismatch of libssl versions (that is a separate bug ofc) but the point is that swagger depends on openssl so we should mark it as such.
This has potential to cause user confusion on fresh install
as the hostname will be appended as comment to SSH host keys.
Removing hostname file causes SSH host keys to have comment of
root@localhost.
During the upgrade process its possible for the syslog-ng cursor for
the systemd journal to advance beyond what is present in the newly
cloned logs dataset. This results in syslog-ng re-reading the same
messages and sending them a second time to remote syslog servers, our
audit databases, and local files.
For typical purposes the systemd journal is treated as ephemeral data,
but is not something we want to lose on reboot or upgrade. This means
that volatile storage is undesirable. As a compromise solution that
absolutely prevents duplicate entries we have settled on creating a new
dedicated systemd journal dataset on upgrades. The old journal contents
dataset are preserved in the previous boot environment.
This has the added advantage of allowing us to disable ACL support
on the logs dataset.
grub2 installs config generation scripts under /etc/grub.d/. If
update-grub cannot run those scripts, config generation fails and
update-grub errors out.
We should remove noexec for etc dataset. There has been an upstream
ZFS fix that enforces the correct mount options for Linux runtime.
To enable that patch, we should first remove noexec permission for
/etc, otherwise installation would break.
Signed-off-by: Umer Saleem <usaleem@ixsystems.com>
The syslog-ng.persist file contains information about last read
systemd journal message which will prevent duplicate audit table
insertions and sending duplicate messages to remote syslog server.
Added to ensure that we can choose to keep the iso's in a folder. this is important when running two make calls during a SCALE pipeline so that both a standard ISO and an Vendor ISO can be generated.
This commit adds changes to specify that libarchive-tools is required to build scale as we use a util which this provides i.e bsdtar in generating mtree of critical datasets.
