Hi All,
A strange situation. Throughout OVAL schema, if any object definition results
in multiple objects, those objects are treated individually.
But, in xmlfilecontent_test, my xpath matches 3 node attributes. But, each node
is NOT treated individually. Why so? The values are enumerated in the state.
Check this example from results (why just one item_id with 3 values? why not
one value per item_id?):
<ind-sys:xmlfilecontent_item id="1155872" status="exists">
<ind-sys:filepath>/opt/vmware/horizon/workspace/conf/server.xml</ind-sys:filepath>
<ind-sys:path>/opt/vmware/horizon/workspace/conf</ind-sys:path>
<ind-sys:filename>server.xml</ind-sys:filename>
<ind-sys:xpath>/Server/Service/Connector/@connectionTimeout</ind-sys:xpath>
<ind-sys:value_of>20000</ind-sys:value_of>
<ind-sys:value_of>20000</ind-sys:value_of>
<ind-sys:value_of>20000</ind-sys:value_of>
</ind-sys:xmlfilecontent_item>
As you see, the xpath /Server/Service/Connector/@connectionTimeout matches 3
connectors and values are pulled.
This is problematic because of 2 reasons:
1) How do I check the number of matches? Count does not work on state
definitions.
2) Suppose a user removed one of the xpaths, the test will still be true. I
cannot ensure that all the xpaths actually existed. If one matches, the test
passes.
Is this OVAL schema limitation or bug in OpenSCAP? Any help?
Thanks and regards,
Pravin Goyal
_______________________________________________
Open-scap-list mailing list
[email protected]
https://www.redhat.com/mailman/listinfo/open-scap-list
