Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Rule ensure_redhat_gpgkey_installed is evaluated as notchecked on RHEL-10 #12407

Open
matusmarhefka opened this issue Sep 19, 2024 · 1 comment
Open

Rule ensure_redhat_gpgkey_installed is evaluated as notchecked on RHEL-10 #12407

matusmarhefka opened this issue Sep 19, 2024 · 1 comment
Labels
RHEL10 Red Hat Enterprise Linux 10 product related.

Comments

@matusmarhefka
Copy link
Member

Description of problem:

The rule ensure_redhat_gpgkey_installed evaluates as notchecked (No candidate or applicable check found) on RHEL-10 which when combined with other gpgcheck rules in SCAP profiles (gpgcheck_globally_activated, gpgcheck_never_disabled, etc.) causes that it is not possible to install or update packages on hardened RHEL-10 system.

SCAP Security Guide Version:

db7b59b

Operating System Version:

RHEL-10
@matusmarhefka matusmarhefka added the RHEL10 Red Hat Enterprise Linux 10 product related. label Sep 19, 2024
@Mab879
Copy link
Member

Mab879 commented Sep 19, 2024

Once we fill the following in products/rhel10/product.yml that should resolve the issues.

pkg_release: ""
pkg_version: ""
aux_pkg_release: ""
aux_pkg_version: ""

release_key_fingerprint: ""
auxiliary_key_fingerprint: ""

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
RHEL10 Red Hat Enterprise Linux 10 product related.
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@Mab879 @matusmarhefka