source-git / openscap

Clone
Source Code
GIT

Blame utils/oscap-chroot

c8 c8s master
  1.   696f156261837e1bc5fb4a0f32a8f2a7339bec21
  2.   utils
  3.   oscap-chroot
Blob History Raw
Packit Service deda86 
#!/usr/bin/env bash
Packit 517ee8
Packit 517ee8 
# Copyright 2016 Red Hat Inc., Durham, North Carolina.
Packit 517ee8 
#
Packit 517ee8 
# This library is free software; you can redistribute it and/or
Packit 517ee8 
# modify it under the terms of the GNU Lesser General Public
Packit 517ee8 
# License as published by the Free Software Foundation; either
Packit 517ee8 
# version 2 of the License, or (at your option) any later version.
Packit 517ee8 
#
Packit 517ee8 
# This library is distributed in the hope that it will be useful,
Packit 517ee8 
# but WITHOUT ANY WARRANTY; without even the implied warranty of
Packit 517ee8 
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU
Packit 517ee8 
# Lesser General Public License for more details.
Packit 517ee8 
#
Packit 517ee8 
# You should have received a copy of the GNU Lesser General Public
Packit 517ee8 
# License along with this library; if not, write to the Free Software
Packit 517ee8 
# Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA
Packit 517ee8 
#
Packit 517ee8 
# Authors:
Packit 517ee8 
#      Martin Preisler <mpreisle@redhat.com>
Packit 517ee8
Packit 517ee8 
function die()
Packit 517ee8 
{
Packit 517ee8 
    echo "$*" >&2
Packit 517ee8 
    exit 1
Packit 517ee8 
}
Packit 517ee8
Packit 517ee8 
function invalid()
Packit 517ee8 
{
Packit 517ee8 
    echo -e "$*\n" >&2
Packit 517ee8 
    usage
Packit 517ee8 
    exit 1
Packit 517ee8 
}
Packit 517ee8
Packit 517ee8 
function usage()
Packit 517ee8 
{
Packit 517ee8 
    echo "oscap-chroot -- Tool for offline SCAP evaluation of filesystems mounted in arbitrary paths."
Packit 517ee8 
    echo
Packit 517ee8 
    echo "Usage:"
Packit 517ee8 
    echo
Packit 517ee8 
    echo "$ oscap-chroot CHROOT_PATH xccdf eval [options] INPUT_CONTENT"
Packit 517ee8 
    echo
Packit 517ee8 
    echo "supported oscap xccdf eval options are:"
Packit 517ee8 
    echo "  --profile"
Packit 517ee8 
    echo "  --tailoring-file"
Packit 517ee8 
    echo "  --tailoring-id"
Packit 517ee8 
    echo "  --cpe (external OVAL dependencies are not supported yet!)"
Packit 517ee8 
    echo "  --oval-results"
Packit 517ee8 
    echo "  --check-engine-results"
Packit 517ee8 
    echo "  --results"
Packit 517ee8 
    echo "  --results-arf"
Packit 517ee8 
    echo "  --report"
Packit 517ee8 
    echo "  --skip-valid"
Packit Bot 61bab5 
    echo "  --skip-validation"
Packit 517ee8 
    echo "  --fetch-remote-resources"
Packit 517ee8 
    echo "  --progress"
Packit 517ee8 
    echo "  --datastream-id"
Packit 517ee8 
    echo "  --xccdf-id"
Packit 517ee8 
    echo "  --benchmark-id"
Packit 517ee8 
    echo
Packit 517ee8 
    echo "$ oscap-chroot CHROOT_PATH oval eval [options] INPUT_CONTENT"
Packit 517ee8 
    echo
Packit 517ee8 
    echo "supported oscap oval eval options are:"
Packit 517ee8 
    echo "  --id"
Packit 517ee8 
    echo "  --variables"
Packit 517ee8 
    echo "  --directives"
Packit 517ee8 
    echo "  --results"
Packit 517ee8 
    echo "  --report"
Packit 517ee8 
    echo "  --skip-valid"
Packit Bot 61bab5 
    echo "  --skip-validation"
Packit 517ee8 
    echo "  --datastream-id"
Packit 517ee8 
    echo "  --oval-id"
Packit 517ee8 
    echo
Packit 517ee8 
    echo "$ oscap-chroot CHROOT_PATH oval collect [options] INPUT_CONTENT"
Packit 517ee8 
    echo
Packit 517ee8 
    echo "supported oscap oval collect options are:"
Packit 517ee8 
    echo "  --id"
Packit 517ee8 
    echo "  --syschar"
Packit 517ee8 
    echo "  --variables"
Packit 517ee8 
    echo "  --skip-valid"
Packit Bot 61bab5 
    echo "  --skip-validation"
Packit 517ee8 
    echo
Packit 517ee8 
    echo "See \`man oscap\` to learn more about semantics of these options."
Packit 517ee8 
}
Packit 517ee8
Packit 517ee8 
if [ $# -lt 1 ]; then
Packit 517ee8 
    invalid "No arguments provided."
Packit 517ee8 
elif [ "$1" == "-h" ] || [ "$1" == "--help" ]; then
Packit 517ee8 
    usage
Packit 517ee8 
    exit 0
Packit 517ee8 
elif [ "$#" -gt 1 ]; then
Packit 517ee8 
    true
Packit 517ee8 
else
Packit 517ee8 
    invalid "Invalid arguments provided."
Packit 517ee8 
fi
Packit 517ee8
Packit 517ee8 
# Learn more at https://www.redhat.com/archives/open-scap-list/2013-July/msg00000.html
Packit 517ee8 
export OSCAP_PROBE_ROOT
Packit 517ee8 
OSCAP_PROBE_ROOT="$(cd "$1" && pwd)" || die "Invalid CHROOT_PATH argument."
Packit 517ee8 
export OSCAP_EVALUATION_TARGET="chroot://$OSCAP_PROBE_ROOT"
Packit 517ee8 
shift 1
Packit 517ee8
Packit 517ee8 
oscap "$@"
Packit 517ee8 
EXIT_CODE=$?
Packit 517ee8
Packit 517ee8 
exit $EXIT_CODE

Powered by Pagure 5.14.1

SSH Hostkey/Fingerprint | Documentation