[Open-scap] openscap does not collect the uuid property
Dragos Prisaca
dragos.prisaca at g2-inc.com
Tue May 10 09:40:22 UTC 2016
Hello Jan,
I run oscap as root.
Here are the steps to reproduce the issue:
1. Download the content from
https://scap.nist.gov/validation/downloads/SCAP1.2ValidationTestContent_1-2.1.0.0.zip
2. # unzip SCAP1.2ValidationTestContent_1-2.1.0.0.zip
3. # unzip validationTestSuites_1-2.1.0.0.zip
4. # cd linux_partition_test/configuration_scripts/
5. # dos2unix *.sh && chmod +x *.sh
6. # ./linux_partition_test_config1.sh
7. Run the linux_partition_test/linux_partition_test-datastream.xml with
oscap
8. Open the scan results and look for a partition item with the following
mount_point:
<lin-sys:partition_item id="10352435" status="exists">
<lin-sys:mount_point>/mnt/my_loop_device</lin-sys:mount_point>
<lin-sys:device>/dev/loop3</lin-sys:device>
<lin-sys:uuid status="not collected"/>
<lin-sys:fs_type>ext3</lin-sys:fs_type>
<lin-sys:mount_options>rw</lin-sys:mount_options>
<lin-sys:mount_options>seclabel</lin-sys:mount_options>
<lin-sys:mount_options>relatime</lin-sys:mount_options>
<lin-sys:mount_options>data=ordered</lin-sys:mount_options>
<lin-sys:mount_options>bind</lin-sys:mount_options>
<lin-sys:total_space datatype="int">240289</lin-sys:total_space>
<lin-sys:space_used datatype="int">311</lin-sys:space_used>
<lin-sys:space_left datatype="int">239978</lin-sys:space_left>
</lin-sys:partition_item>
Please let me know if there is anything else you need.
Thanks,
_Dragos.
-----Original Message-----
From: Jan Cerny [mailto:jcerny at redhat.com]
Sent: Tuesday, May 10, 2016 4:32 AM
To: Dragos Prisaca
Cc: open-scap-list at redhat.com
Subject: Re: [Open-scap] openscap does not collect the uuid property
Hi Dragos,
I'm sorry but unfortunately I can't reproduce your issue.
I created a loop device and the UUID is reported correctly for me.
The only case when UUID wasn't collected was when I run oscap as a normal
user, then oscap got data from old libblkid cache.
But when run as root, everything works OK to me.
Do you run oscap as root?
If yes, I would need more information from you (e.g. OVAL definition) to be
able to help you.
Thank you
Regards
Jan Černý
Security Technologies | Red Hat, Inc.
----- Original Message -----
> From: "Dragos Prisaca" <dragos.prisaca at g2-inc.com>
> To: "Jan Cerny" <jcerny at redhat.com>
> Cc: open-scap-list at redhat.com
> Sent: Monday, May 9, 2016 10:42:27 PM
> Subject: RE: [Open-scap] openscap does not collect the uuid property
>
> Hello Jan,
>
> The UUID is reported by blkid tool on both RHEL6 and 7:
> # blkid
> ...
> /dev/loop2: UUID="11111111-2222-3333-4444-555555555555" TYPE="ext3"
>
> Thanks,
> _Dragos.
>
>
> -----Original Message-----
> From: Jan Cerny [mailto:jcerny at redhat.com]
> Sent: Monday, May 09, 2016 11:42 AM
> To: Dragos Prisaca
> Cc: open-scap-list at redhat.com
> Subject: Re: [Open-scap] openscap does not collect the uuid property
>
> Hello Dragos,
>
> Is the UUID of your loop device reported by blkid tool?
> Or is it missing as well?
>
> Best regards
>
> Jan Černý
> Security Technologies | Red Hat, Inc.
>
> ----- Original Message -----
> > From: "Dragos Prisaca" <dragos.prisaca at g2-inc.com>
> > To: open-scap-list at redhat.com
> > Sent: Thursday, May 5, 2016 10:45:56 PM
> > Subject: [Open-scap] openscap does not collect the uuid property
> >
> >
> >
> > Hello,
> >
> >
> >
> > The OpenSCAP 1.2.10 does not collect the uuid property:
> >
> >
> >
> > <lin-sys:partition_item id = "10676517" status = "exists" >
> > <lin-sys:mount_point> /mnt/my_loop_device </lin-sys:mount_point>
> > <lin-sys:device> /dev/loop2 </lin-sys:device> <lin-sys:uuid status =
> > "not collected" /> <lin-sys:fs_type> ext3 </lin-sys:fs_type>
> > <lin-sys:mount_options> rw </lin-sys:mount_options>
> > <lin-sys:mount_options> seclabel </lin-sys:mount_options>
> > <lin-sys:mount_options> relatime </lin-sys:mount_options>
> > <lin-sys:mount_options> errors=continue </lin-sys:mount_options>
> > <lin-sys:mount_options> barrier=1 </lin-sys:mount_options>
> > <lin-sys:mount_options> data=ordered </lin-sys:mount_options>
> > <lin-sys:mount_options> bind </lin-sys:mount_options>
> > <lin-sys:total_space datatype = "int" > 244385
> > </lin-sys:total_space> <lin-sys:space_used datatype = "int" > 4407
> > </lin-sys:space_used> <lin-sys:space_left datatype = "int" > 239978
> > </lin-sys:space_left> </lin-sys:partition_item>
> >
> >
> >
> >
> > Thanks,
> >
> > _Dragos.
> >
> > _______________________________________________
> > Open-scap-list mailing list
> > Open-scap-list at redhat.com
> > https://www.redhat.com/mailman/listinfo/open-scap-list
>
More information about the Open-scap-list
mailing list