Ansible playbook fatal error Could not find the requested service systemd-coredump: host"
#9815
Labels
productization-issue
Issue found in upstream stabilization process.
Description of problem:
ansible-playbook
fails on findingsystemd-coredump
service and exits on fatal error:SCAP Security Guide Version:
4413901
Operating System Version:
RHEL8, RHEL9
Steps to Reproduce:
ansible-playbook -i "localhost," -c local /usr/share/scap-security-guide/ansible/rhel9-playbook-ospp.yml
Actual Results:
Expected Results:
ansible-playbook
finishesAdditional Information/Debugging Steps:
The problem was introduced by
service_disabled
alignment toservice_enabled
- #9806 Where I didn't realized there might be service rules that are for sockets, not for services.Previously,
service_disabled
template was doing both, disabling service and disabling socket. Is it correct approach?Is it expected that both are being disabled if exist? Or every time only a one of them should disable?
If the latter, then rules for sockets should specify the
socket
suffix in theservicename
, for exampleservicename: systemd-coredump.socket
inhttps://github.com/ComplianceAsCode/content/blob/master/linux_os/guide/system/permissions/restrictions/coredumps/service_systemd-coredump_disabled/rule.yml#L53
The text was updated successfully, but these errors were encountered: