Bug 2056847

Summary: configure_bashrc_exec_tmux now errors during remediation
Product: Red Hat Enterprise Linux 9 Reporter: Jan Pazdziora (Red Hat) <jpazdziora>
Component: scap-security-guideAssignee: Watson Yuuma Sato <wsato>
Status: CLOSED ERRATA QA Contact: Milan Lysonek <mlysonek>
Severity: unspecified Docs Contact:
Priority: unspecified    
Version: 9.0CC: amusil, ggasparb, jpazdziora, mhaicman, mlysonek, openscap-maint, qe-baseos-security, vpolasek, wsato
Target Milestone: rcKeywords: Triaged
Target Release: ---Flags: pm-rhel: mirror+
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: scap-security-guide-0.1.60-5.el9 Doc Type: No Doc Update
Doc Text:
Story Points: ---
Clone Of: 2055860 Environment:
Last Closed: 2022-05-17 13:53:43 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On: 2055860    
Bug Blocks:    

Description Jan Pazdziora (Red Hat) 2022-02-22 08:11:55 UTC 
+++ This bug was initially created as a clone of Bug #2055860 +++

Description of problem:

The configure_bashrc_exec_tmux rule of ospp profile now errors during remediation.

Version-Release number of selected component (if applicable):

scap-security-guide-0.1.60-3.el8

How reproducible:

Deterministic.

Steps to Reproduce:
1. dnf install -y /usr/share/xml/scap/ssg/content/ssg-rhel8-ds.xml
2. oscap xccdf eval --remediate --profile xccdf_org.ssgproject.content_profile_ospp --rule xccdf_org.ssgproject.content_rule_configure_bashrc_exec_tmux /usr/share/xml/scap/ssg/content/ssg-rhel8-ds.xml

Actual results:

WARNING: Datastream component 'scap_org.open-scap_cref_security-data-oval-com.redhat.rhsa-RHEL8.xml.bz2' points out to the remote 'https://access.redhat.com/security/data/oval/com.redhat.rhsa-RHEL8.xml.bz2'. Use '--fetch-remote-resources' option to download it.
WARNING: Skipping 'https://access.redhat.com/security/data/oval/com.redhat.rhsa-RHEL8.xml.bz2' file which is referenced from datastream
WARNING: Skipping ./security-data-oval-com.redhat.rhsa-RHEL8.xml.bz2 file which is referenced from XCCDF content
--- Starting Evaluation ---

Title
	Support session locking with tmux
Rule
	xccdf_org.ssgproject.content_rule_configure_bashrc_exec_tmux
Ident
	CCE-82266-8
WARNING: Skipping ./security-data-oval-com.redhat.rhsa-RHEL8.xml.bz2 file which is referenced from XCCDF content
Result
	fail


--- Starting Remediation ---

Title
	Support session locking with tmux
Rule
	xccdf_org.ssgproject.content_rule_configure_bashrc_exec_tmux
Ident
	CCE-82266-8
Result
	error

Expected results:

WARNING: Datastream component 'scap_org.open-scap_cref_security-data-oval-com.redhat.rhsa-RHEL8.xml.bz2' points out to the remote 'https://access.redhat.com/security/data/oval/com.redhat.rhsa-RHEL8.xml.bz2'. Use '--fetch-remote-resources' option to download it.
WARNING: Skipping 'https://access.redhat.com/security/data/oval/com.redhat.rhsa-RHEL8.xml.bz2' file which is referenced from datastream
WARNING: Skipping ./security-data-oval-com.redhat.rhsa-RHEL8.xml.bz2 file which is referenced from XCCDF content
--- Starting Evaluation ---

Title
	Support session locking with tmux
Rule
	xccdf_org.ssgproject.content_rule_configure_bashrc_exec_tmux
Ident
	CCE-82266-8
WARNING: Skipping ./security-data-oval-com.redhat.rhsa-RHEL8.xml.bz2 file which is referenced from XCCDF content
Result
	fail


--- Starting Remediation ---

Title
	Support session locking with tmux
Rule
	xccdf_org.ssgproject.content_rule_configure_bashrc_exec_tmux
Ident
	CCE-82266-8
Result
	fixed

Additional info:

This is a regression against scap-security-guide-0.1.60-1.el8.
Comment 2 Vojtech Polasek 2022-02-22 10:19:18 UTC 
Fixed upstream: https://github.com/ComplianceAsCode/content/pull/8246
Comment 11 errata-xmlrpc 2022-05-17 13:53:43 UTC 
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory (new packages: scap-security-guide), and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://access.redhat.com/errata/RHBA-2022:2610