Description of problem: ----------------------- Current part of the code does 'dracut -vf' twice to regenerate initramfs and that's not the right way to achieve the result. As per RHEL 8 documentation[1] suggest to regenerate initramfs using the following command: # dracut -fv --regenerate-all [1] - https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/8/html-single/security_hardening/index#configuring-manual-enrollment-of-volumes-using-clevis_configuring-automated-unlocking-of-encrypted-volumes-using-policy-based-decryption Version-Release number of selected component (if applicable): ------------------------------------------------------------- gluster-ansible-infra-1.0.4-5.el8rhgs.noarch.rpm How reproducible: ----------------- Always Steps to Reproduce: ------------------- 1. Run the playbook to achieve NBDE Actual results: --------------- 'dracut -fv' is called twice to regenerate initramfs Expected results: ----------------- 'dracut -fv --regenerate-all' should be used to regenerate initramfs as per RHEL 8 security hardening document
Verified with gluster-ansible-infra-1.0.4-6 initramfs is regenerated in the right way using 'dracut -vf --regenerate-all'
Since the problem described in this bug report should be resolved in a recent advisory, it has been closed with a resolution of ERRATA. For information on the advisory, and where to find the updated files, follow the link below. If the solution does not work for you, open a new bug report. https://access.redhat.com/errata/RHEA-2020:2575