usnistgov/macos_security
1
0
Fork 0
mirror of https://github.com/usnistgov/macos_security.git synced 2026-02-03 14:03:24 +00:00
Code Issues 21 Actions Packages Projects Releases Wiki Activity

mismatched test and mobileconfig for Monterey os_burn_support_disable #253

New Issue
Closed
opened 2026-01-19 18:29:49 +00:00 by michael · 2 comments
michael commented 2026-01-19 18:29:49 +00:00
Owner
Copy Link

Originally created by @bernstei on GitHub.

1b03ed4b0d/rules/os/os_burn_support_disable.yaml (L11)

I think that the ProhibitBurn test should look for the value 1, not 0, and (on my machine at least) the BurnSupport returns off, not "off", so the test fails to recognize it.

Originally created by @bernstei on GitHub. https://github.com/usnistgov/macos_security/blob/1b03ed4b0d0760e7e1e66893df293859d54fa23f/rules/os/os_burn_support_disable.yaml#L11 I think that the `ProhibitBurn` test should look for the value 1, not 0, and (on my machine at least) the BurnSupport returns `off`, not `"off"`, so the test fails to recognize it.
michael commented 2026-01-19 18:29:49 +00:00
Author
Owner
Copy Link

@robertgendler commented on GitHub:

These are on the OS branches, if you do a pull from there that and many other things are fixed and updated. Our next release and merge into main will be when Ventura is released.

@robertgendler commented on GitHub: These are on the OS branches, if you do a pull from there that and many other things are fixed and updated. Our next release and merge into main will be when Ventura is released.
michael commented 2026-01-19 18:29:49 +00:00
Author
Owner
Copy Link

@marcindulak commented on GitHub:

The issue is still present in the latest main 06cc0d2614.
When the fixes will be merged?

sw_vers
# Output:
# ProductName:      macOS
# ProductVersion:   12.5.1
# BuildVersion:     21G83

# os_burn_support_disable failed (Result: 0, Expected: {integer: 2})
sudo /usr/bin/profiles -P -o stdout | /usr/bin/grep -E 'ProhibitBurn|BurnSupport'
# Output:
#                         ProhibitBurn = 1;
#                        BurnSupport = off;
@marcindulak commented on GitHub: The issue is still present in the latest main https://github.com/usnistgov/macos_security/commit/06cc0d2614da5b6f478b6f1ff45b059bb7c6aa5a. When the fixes will be merged? ``` sw_vers # Output: # ProductName:      macOS # ProductVersion:   12.5.1 # BuildVersion:     21G83 ``` ``` # os_burn_support_disable failed (Result: 0, Expected: {integer: 2}) sudo /usr/bin/profiles -P -o stdout | /usr/bin/grep -E 'ProhibitBurn|BurnSupport' # Output: # ProhibitBurn = 1; # BurnSupport = off; ```
Sign in to join this conversation.
No Branch/Tag Specified
Branches Tags
Labels
No items
No Label
Milestone
No items
No Milestone
Projects
Clear projects
No project
Assignees
Clear assignees
michael
No Assignees
1 Participants
Notifications
Due Date
No due date set.
Dependencies

No dependencies set.

Reference: usnistgov/macos_security#253
Delete Branch "%!s()"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?