From 9e8ecee96491626b6bff97b6c7e16558b45ed8ef Mon Sep 17 00:00:00 2001
From: c59099 <marco.verschuur@nl.abnamro.com>
Date: Wed, 19 Jul 2023 17:30:54 +0200
Subject: [PATCH] - Added extra checks in using loop items in when statement -
 Fixed typo in handler name

Signed-off-by: Marco V <marco@osp.nl>
---
 tasks/section_1/cis_1.10.yml  | 2 +-
 tasks/section_6/cis_6.1.x.yml | 8 ++++----
 2 files changed, 5 insertions(+), 5 deletions(-)

diff --git a/tasks/section_1/cis_1.10.yml b/tasks/section_1/cis_1.10.yml
index ed6774d..adb25c1 100644
--- a/tasks/section_1/cis_1.10.yml
+++ b/tasks/section_1/cis_1.10.yml
@@ -10,7 +10,7 @@
         ansible.builtin.shell: |
             update-crypto-policies --set "{{ rhel9cis_full_crypto_policy }}"
             update-crypto-policies
-        notify: change_requires_reboot
+        notify: Change_requires_reboot
         when:
             - rhel9cis_system_wide_crypto_policy.stdout != rhel9cis_full_crypto_policy
   when:
diff --git a/tasks/section_6/cis_6.1.x.yml b/tasks/section_6/cis_6.1.x.yml
index 8da977d..69cf777 100644
--- a/tasks/section_6/cis_6.1.x.yml
+++ b/tasks/section_6/cis_6.1.x.yml
@@ -164,7 +164,7 @@
         ansible.builtin.set_fact:
             rhel_09_6_1_10_unowned_files_found: true
         loop: "{{ rhel_09_6_1_10_audit.results }}"
-        when: item.stdout | length > 0
+        when: item | length > 0 and item.stdout is defined and item.stdout | length > 0
 
       - name: "6.1.10 | AUDIT | Ensure no unowned files or directories exist | Displaying any unowned files or directories"
         ansible.builtin.debug:
@@ -205,7 +205,7 @@
         ansible.builtin.set_fact:
             rhel_09_6_1_11_ungrouped_files_found: true
         loop: "{{ rhel_09_6_1_11_audit.results }}"
-        when: item.stdout | length > 0
+        when: item | length > 0 and item.stdout is defined and item.stdout | length > 0
 
       - name: "6.1.11 | AUDIT | Ensure no ungrouped files or directories exist | Displaying all ungrouped files or directories"
         ansible.builtin.debug:
@@ -258,7 +258,7 @@
         ansible.builtin.set_fact:
             rhel9_6_1_13_suid_found: true
         loop: "{{ rhel_09_6_1_13_suid_perms.results }}"
-        when: item.stdout | length > 0
+        when: item | length > 0 and item.stdout is defined and item.stdout | length > 0
 
       - name: "6.1.13 | AUDIT | Audit SUID executables | Alert SUID executables exist"
         ansible.builtin.debug:
@@ -297,7 +297,7 @@
         ansible.builtin.set_fact:
             rhel9_6_1_14_sgid_found: true
         loop: "{{ rhel_09_6_1_14_sgid_perms.results }}"
-        when: item.stdout | length > 0
+        when: item | length > 0 and item.stdout is defined and item.stdout | length > 0
 
       - name: "6.1.14 | AUDIT | Audit SGID executables | Alert SGID executables exist"
         ansible.builtin.debug: