30 lines
1003 B
Diff
30 lines
1003 B
Diff
|
From d1c2810ca3ba0cea44cc70db34eb80e313408cb5 Mon Sep 17 00:00:00 2001
|
||
|
|
From: Gabriel Becker <ggasparb@redhat.com>
|
||
|
|
Date: Wed, 25 Aug 2021 10:59:11 +0200
|
||
|
|
Subject: [PATCH] Remove package applicability from s390x_arch generated
|
||
|
|
remediations.
|
||
|
|
|
||
|
|
This makes sure that there will be no package applicability check in the
|
||
|
|
remediations of rules that use the s390x_arch platform applicability,
|
||
|
|
since the check is made by checking a line in file instead. At this
|
||
|
|
moment the build system does not allow doing such checks. The side
|
||
|
|
effect is that Bash and Ansible roles will apply this remediation even
|
||
|
|
on a system that is not s390_arch, so using OpenSCAP scanner is highly
|
||
|
|
recommended.
|
||
|
|
---
|
||
|
|
ssg/constants.py | 1 +
|
||
|
|
1 file changed, 1 insertion(+)
|
||
|
|
|
||
|
|
diff --git a/ssg/constants.py b/ssg/constants.py
|
||
|
|
index 9bb4e1b5f4..adb76bfa8f 100644
|
||
|
|
--- a/ssg/constants.py
|
||
|
|
+++ b/ssg/constants.py
|
||
|
|
@@ -353,6 +353,7 @@
|
||
|
|
"uefi": None,
|
||
|
|
"non-uefi": None,
|
||
|
|
"not_s390x_arch": None,
|
||
|
|
+ "s390x_arch": None,
|
||
|
|
}
|
||
|
|
|
||
|
|
# _version_name_map = {
|