Update roles/wazuh/ansible-wazuh-agent/tasks/Debian.yml
fix(ansible): Adapt installation of OpenSCAP to support Ubuntu 24.04+ - Updated OpenSCAP installation task to handle differences in package availability between Ubuntu versions. - Ubuntu 24.04+ uses `openscap-scanner` instead of `libopenscap8`. - Conditional logic added to detect Ubuntu version and choose the correct package(s). - Simplified package installation with a loop for clarity. - Adjusted version check commands to handle different package names depending on Ubuntu version.
This commit is contained in:
parent
e1b2c475b7
commit
2696d5ed8c
@ -93,30 +93,38 @@
|
|||||||
tags:
|
tags:
|
||||||
- init
|
- init
|
||||||
|
|
||||||
- name: Debian/Ubuntu | Install OpenScap
|
- name: Debian/Ubuntu | Install OpenScap
|
||||||
apt:
|
apt:
|
||||||
name:
|
name: "{{ item }}"
|
||||||
- libopenscap8
|
state: present
|
||||||
- xsltproc
|
loop: "{{ openscap_packages }}"
|
||||||
state: present
|
when: wazuh_agent_config.openscap.disable == 'no'
|
||||||
when: wazuh_agent_config.openscap.disable == 'no'
|
tags:
|
||||||
tags:
|
- init
|
||||||
- init
|
register: wazuh_agent_OpenScap_package_install
|
||||||
register: wazuh_agent_OpenScap_package_install
|
until: wazuh_agent_OpenScap_package_install is succeeded
|
||||||
until: wazuh_agent_OpenScap_package_install is succeeded
|
vars:
|
||||||
|
openscap_packages: "{{
|
||||||
|
(ansible_distribution_version is version('24.04', '>=')) | ternary(
|
||||||
|
['openscap-scanner', 'xsltproc'],
|
||||||
|
['libopenscap8', 'xsltproc']
|
||||||
|
)
|
||||||
|
}}"
|
||||||
|
|
||||||
- name: Debian/Ubuntu | Get OpenScap installed version
|
- name: Debian/Ubuntu | Get OpenScap installed version
|
||||||
shell: "dpkg-query --showformat='${Version}' --show libopenscap8"
|
shell: "dpkg-query --showformat='${Version}' --show {{ openscap_package_name }}"
|
||||||
register: openscap_version
|
register: openscap_version
|
||||||
changed_when: false
|
changed_when: false
|
||||||
when: wazuh_agent_config.openscap.disable == 'no'
|
when: wazuh_agent_config.openscap.disable == 'no'
|
||||||
tags:
|
vars:
|
||||||
|
openscap_package_name: "{{ (ansible_distribution_version is version('24.04', '>=')) | ternary('openscap-scanner', 'libopenscap8') }}"
|
||||||
|
tags:
|
||||||
- config
|
- config
|
||||||
|
|
||||||
- name: Debian/Ubuntu | Check OpenScap version
|
- name: Debian/Ubuntu | Check OpenScap version
|
||||||
shell: "dpkg --compare-versions '{{ openscap_version.stdout }}' '>=' '1.2'; echo $?"
|
shell: "dpkg --compare-versions '{{ openscap_version.stdout }}' '>=' '1.2'; echo $?"
|
||||||
register: openscap_version_valid
|
register: openscap_version_valid
|
||||||
changed_when: false
|
changed_when: false
|
||||||
when: wazuh_agent_config.openscap.disable == 'no'
|
when: wazuh_agent_config.openscap.disable == 'no'
|
||||||
tags:
|
tags:
|
||||||
- config
|
- config
|
||||||
|
|||||||
Loading…
Reference in New Issue
Block a user