function query_cpe_in_chroot(){
local image_root=$1; shift
local cpe=$1
local cpe_dict=/usr/share/openscap/cpe/openscap-cpe-oval.xml
oscap_chroot "image" "noname" $image_root oval eval --id $cpe $cpe_dict
2>&1 > /dev/null
}
I have replaced the cpe files in the desired location with the latest cpe files
that come with openscap. Still the results are not applicable.
Do I need to update the files somewhere else?
________________________________
From: Pravin Goyal <[email protected]>
Sent: Tuesday, December 27, 2016 5:09:27 PM
To: [email protected]
Subject: Legacy oscap-docker
Hi All,
I am on Ubuntu and hence cannot use atomic based oscap-docker.
The legacy oscap-docker is available at
https://github.com/OpenSCAP/container-compliance
This seems to be working.
oscap-docker image rhel7 oval eval sample-oval-content.xml
But, for some reason all evaluations are coming as "not applicable".
In the above, if I change it to
oscap-docker image ubuntu oval eval sample-oval-content.xml
I see a few true, a few false, a few unknown and a few not applicable.
I need to get it working for rhel7 or any other image.
Is there something that can be done?
Please help.
Thanks and regards,
Pravin Goyal
_______________________________________________
Open-scap-list mailing list
[email protected]
https://www.redhat.com/mailman/listinfo/open-scap-list
