openscap / openscap-daemon Goto Github PK

where scap-oval.xml is the OVAL Definition file and oval-results.xml is the OVAL Result file.

oscap ds sds-validate scap-ds.xml

oscap oval eval --results oval-results.xml scap-oval.xml

oscap oval eval --datastream-id ds.xml --oval-id xccdf.xml --results oval-results.xml scap-ds.xml

oscap xccdf eval --profile Desktop --results xccdf-results.xml --cpe cpe-dictionary.xml scap-xccdf.xml

oscap xccdf eval --datastream-id ds.xml --xccdf-id xccdf.xml --results xccdf-results.xml scap-ds.xml

oscap xccdf generate guide XCCDF-FILE > XCCDF-GUIDE-FILE

oscap xccdf generate guide --profile PROFILE XCCDF-FILE > XCCDF-GUIDE-FILE

oscap xccdf generate report XCCDF-RESULT-FILE > XCCDF-REPORT-FILE

python setup.py install

oscapd-cli task
# should cause dbus error

systemctl enable oscapd
systemctl start oscapd

# no error with no tasks specified
oscapd-cli task

oscapd-cli task_create -i
# put the necessary values in stdin to make the interactive task create finish

# check that the task exists and is saved
oscapd-cli task 1
oscapd-cli result 1 # should be empty

systemctl restart oscapd
# even after restart of the service
oscapd-cli task 1
oscapd-cli result 1 # should be empty

# this should fail, the task is disabled!
oscapd-cli task 1 run

oscapd-cli task 1 enable
# this should run fine
oscapd-cli task 1 run

# should have 1 result
oscapd-cli result 1
oscapd-cli result 1 1
oscapd-cli result 1 1 arf
oscapd-cli result 1 1 html
oscapd-cli result 1 1 stdout
oscapd-cli result 1 1 stderr
oscapd-cli result 1 1 exit_code

oscapd-cli result 1 1 remove

# this should run fine
oscapd-cli task 1 run
oscapd-cli result 1 remove

# and so on...

[root@localhost ~]# systemctl start oscapd
Failed to start oscapd.service: Unit docker.service failed to load: No such file or directory.

[root@localhost ~]# cat /usr/lib/systemd/system/oscapd.service
[Unit]
Description=OpenSCAP Daemon
Documentation=http://open-scap.org/tools/openscap-daemon
After=docker.service
Requires=docker.service

[root@localhost ~]# oscapd-cli task 1 set-title 
Traceback (most recent call last):
  File "/usr/bin/oscapd-cli", line 742, in <module>
    main()
  File "/usr/bin/oscapd-cli", line 728, in main
    cli_task(dbus_iface, task_accessor, args)
  File "/usr/bin/oscapd-cli", line 251, in cli_task
    dbus_iface, args.task_action, args.task_id, args.parameters[0]
  File "/usr/bin/oscapd-cli", line 92, in eval
    casted_args = TaskAccessor.get_string(args)
  File "/usr/bin/oscapd-cli", line 71, in get_string
    raise ValueError("Not expected parameters")
ValueError: Not expected parameters

[root@thinkpad jcerny]# oscapd-cli task-create
Traceback (most recent call last):
  File "/usr/bin/oscapd-cli", line 787, in <module>
    main()
  File "/usr/bin/oscapd-cli", line 775, in main
    cli_task_create(dbus_iface, args)
  File "/usr/bin/oscapd-cli", line 386, in cli_task_create
    raise NotImplementedError("Not yet!")
NotImplementedError: Not yet!

[root@localhost ~]# oscapd-cli task -h
usage: oscapd-cli task [-h] [-f] [-r]
                       [TASK_ID] [ACTION] [actions [actions ...]]

positional arguments:
  TASK_ID               ID of the task to display, if none is provided a
                        summary of all tasks is displayed
  ACTION
  actions               parameters

optional arguments:
  -h, --help            show this help message and exit
  -f, --force           remove task without confirmation
  -r, --remove-results  remove with results

[root@localhost Bureau]# oscapd-cli task-create -i 
Creating new task in interactive mode
Title: task
Target (empty for localhost): 
Found the following SCAP Security Guide content: 
    1:  /usr/share/xml/scap/ssg/content/ssg-firefox-ds.xml
    2:  /usr/share/xml/scap/ssg/content/ssg-jre-ds.xml
    3:  /usr/share/xml/scap/ssg/content/ssg-rhel6-ds.xml
    4:  /usr/share/xml/scap/ssg/content/ssg-rhel7-ds.xml
Choose SSG content by number (empty for custom content): 3
Tailoring file (absolute path, empty for no tailoring): 
Found the following possible profiles: 
Traceback (most recent call last):
  File "/usr/bin/oscapd-cli", line 787, in <module>
    main()
  File "/usr/bin/oscapd-cli", line 775, in main
    cli_task_create(dbus_iface, args)
  File "/usr/bin/oscapd-cli", line 313, in cli_task_create
    input_file, tailoring_file
  File "/usr/lib/python2.6/site-packages/dbus/proxies.py", line 140, in __call__
    **keywords)
  File "/usr/lib/python2.6/site-packages/dbus/connection.py", line 630, in call_blocking
    message, timeout)
dbus.exceptions.DBusException: org.freedesktop.DBus.Python.AttributeError: Traceback (most recent call last):
  File "/usr/lib/python2.6/site-packages/dbus/service.py", line 702, in _message_cb
    retval = candidate_method(self, *args, **keywords)
  File "/usr/lib/python2.6/site-packages/openscap_daemon/dbus_daemon.py", line 78, in GetProfileChoicesForInput
    input_file, tailoring_file
  File "/usr/lib/python2.6/site-packages/openscap_daemon/system.py", line 86, in get_profile_choices_for_input
    input_file, tailoring_file
  File "/usr/lib/python2.6/site-packages/openscap_daemon/oscap_helpers.py", line 96, in get_profile_choices_for_input
    input_tree, "http://checklists.nist.gov/xccdf/1.1", ret
  File "/usr/lib/python2.6/site-packages/openscap_daemon/oscap_helpers.py", line 82, in scrape_profiles
    for elem in tree.iter("{%s}Profile" % (namespace)):
AttributeError: ElementTree instance has no attribute 'iter'

# atomic scan --all

ERROR:dbus.proxies:Introspect error on :1.1837:/OpenSCAP/daemon: dbus.exceptions.DBusException: org.freedesktop.DBus.Error.NoReply: Did not receive a reply. Possible causes include: the remote application did not send a reply, the message bus security policy blocked the reply, the reply timeout expired, or the network connection was broken.

journalctl -u oscapd 

Nov 26 10:31:29 zmoravec-thinkpad oscapd[16330]: DEBUG:Scanning chroot 95338760b9fb132fe29d6b9369a2333ea48ec8b71ef0e688d078a765aeac60a6
Nov 26 10:31:29 zmoravec-thinkpad oscapd[16330]: DEBUG:Starting evaluation with command 'oscap oval eval --report /var/tmp/image-scanner/reports/95338760b9fb132fe29d6b9369a2333ea48ec8b71ef0e688d078a765aeac60a6.html --results /var/tmp/image-scanner/reports/95338760b9fb132fe29d6b9369a2333ea48ec8b71ef0e688d078a765aeac60a6.xml /var/tmp/image-scanner/com.redhat.rhsa-RHEL7.xml.bz2'.
Nov 26 10:31:31 zmoravec-thinkpad oscapd[16330]: DEBUG:"POST /run/docker.sock/v1.17/commit?container=844af2ebf856b595fee7de44f06276f08ed857eac8d880ffc7eeaeb6f476a7c0 HTTP/1.1" 201 74
Nov 26 10:31:31 zmoravec-thinkpad oscapd[16330]: DEBUG:Scanned chroot for image 7ad37622e7b6a1747b3b61448bf747f05d3d84d1d7b04f83aa58d3c8d5b00829 completed in 1.77401304245 seconds
Nov 26 10:31:31 zmoravec-thinkpad oscapd[16330]: DEBUG:Scanned chroot for image 95338760b9fb132fe29d6b9369a2333ea48ec8b71ef0e688d078a765aeac60a6 completed in 1.89656019211 seconds
Nov 26 10:31:31 zmoravec-thinkpad oscapd[16330]: DEBUG:"POST /run/docker.sock/v1.17/containers/create HTTP/1.1" 201 90
Nov 26 10:31:31 zmoravec-thinkpad oscapd[16330]: DEBUG:"GET /run/docker.sock/v1.17/containers/77372c1ed2f51ed2274d5306b69b75c775c2bff6dcb813d6f0b55173c99573f3/json HTTP/1.1" 200 None
Nov 26 10:31:32 zmoravec-thinkpad oscapd[16330]: DEBUG:Created scanning chroot in 6.61336708069 seconds
Nov 26 10:31:32 zmoravec-thinkpad oscapd[16330]: INFO:844af2ebf856b595fee7de44f06276f08ed857eac8d880ffc7eeaeb6f476a7c0 is Fedora release 22 (Twenty Two)
Nov 26 10:31:32 zmoravec-thinkpad oscapd[16330]: Exception in thread 844af2ebf856b595fee7de44f06276f08ed857eac8d880ffc7eeaeb6f476a7c0:
Nov 26 10:31:32 zmoravec-thinkpad oscapd[16330]: Traceback (most recent call last):
Nov 26 10:31:32 zmoravec-thinkpad oscapd[16330]: File "/usr/lib64/python2.7/threading.py", line 813, in __bootstrap_inner
Nov 26 10:31:32 zmoravec-thinkpad oscapd[16330]: self.run()
Nov 26 10:31:32 zmoravec-thinkpad oscapd[16330]: File "/usr/lib64/python2.7/threading.py", line 766, in run
Nov 26 10:31:32 zmoravec-thinkpad oscapd[16330]: self.__target(*self.__args, **self.__kwargs)
Nov 26 10:31:32 zmoravec-thinkpad oscapd[16330]: File "/usr/lib/python2.7/site-packages/openscap_daemon/cve_scanner/cve_scanner.py", line 301, in search_containers
Nov 26 10:31:32 zmoravec-thinkpad oscapd[16330]: f.DM.unmount_path(f.dest)
Nov 26 10:31:32 zmoravec-thinkpad oscapd[16330]: File "build/bdist.linux-x86_64/egg/Atomic/mount.py", line 162, in unmount_path
Nov 26 10:31:32 zmoravec-thinkpad oscapd[16330]: raise ValueError(r.stderr)
Nov 26 10:31:32 zmoravec-thinkpad oscapd[16330]: ValueError: umount: /tmp/77372c1ed2f51ed2274d: target is busy
Nov 26 10:31:32 zmoravec-thinkpad oscapd[16330]: (In some cases useful info about processes that
Nov 26 10:31:32 zmoravec-thinkpad oscapd[16330]: use the device is found by lsof(8) or fuser(1).)
Nov 26 10:31:32 zmoravec-thinkpad oscapd[16330]: DEBUG:"DELETE /run/docker.sock/v1.17/containers/037537c89f5b93c2a12e?link=False&force=False&v=False HTTP/1.1" 204 0
Nov 26 10:31:33 zmoravec-thinkpad oscapd[16330]: DEBUG:"DELETE /run/docker.sock/v1.17/containers/36f8514e03f5a86d8f5b?link=False&force=False&v=False HTTP/1.1" 204 0

/dev/mapper/docker-253:2-2622353-2a0168f5e564072a8a40e59c402cefa872bcddc465c050069b4a484ae6403aaf on /tmp/2a0168f5e564072a8a40 type ext4 (ro,nosuid,nodev,relatime,context="system_u:object_r:svirt_sandbox_file_t:s0:c287,c651",stripe=16,data=ordered)

# cat /etc/redhat-release 
Fedora release 23 (Twenty Three)
# git clone https://github.com/OpenSCAP/openscap-daemon.git
# cd openscap-daemon/
# python setup.py bdist_rpm
# rpm -i dist/openscap_daemon-0.1.1-1.noarch.rpm
# service oscapd restart
Redirecting to /bin/systemctl restart  oscapd.service
Warning: oscapd.service changed on disk. Run 'systemctl daemon-reload' to reload units.
Job for oscapd.service failed because the control process exited with error code. See "systemctl status oscapd.service" and "journalctl -xe" for details.

# systemctl status oscapd
● oscapd.service - OpenSCAP Daemon
   Loaded: loaded (/usr/lib/systemd/system/oscapd.service; disabled; vendor preset: disabled)
   Active: failed (Result: exit-code) since Tue 2015-12-22 17:46:01 CET; 33s ago
     Docs: http://open-scap.org/tools/openscap-daemon
  Process: 10167 ExecStart=/usr/bin/oscapd (code=exited, status=1/FAILURE)
 Main PID: 10167 (code=exited, status=1/FAILURE)

Dec 22 17:46:01 localhost.localdomain oscapd[10167]: from openscap_daemon.cve_scanner.cve_scanner import Worker
Dec 22 17:46:01 localhost.localdomain oscapd[10167]: File "/usr/lib/python2.7/site-packages/openscap_daemon/cve_scanner/cve_scanner.py", line 22, in <module>
Dec 22 17:46:01 localhost.localdomain oscapd[10167]: from openscap_daemon.cve_scanner.scan import Scan
Dec 22 17:46:01 localhost.localdomain oscapd[10167]: File "/usr/lib/python2.7/site-packages/openscap_daemon/cve_scanner/scan.py", line 28, in <module>
Dec 22 17:46:01 localhost.localdomain oscapd[10167]: from oscap_docker_python.get_cve_input import getInputCVE
Dec 22 17:46:01 localhost.localdomain oscapd[10167]: ImportError: No module named oscap_docker_python.get_cve_input
Dec 22 17:46:01 localhost.localdomain systemd[1]: oscapd.service: Main process exited, code=exited, status=1/FAILURE
Dec 22 17:46:01 localhost.localdomain systemd[1]: Failed to start OpenSCAP Daemon.
Dec 22 17:46:01 localhost.localdomain systemd[1]: oscapd.service: Unit entered failed state.
Dec 22 17:46:01 localhost.localdomain systemd[1]: oscapd.service: Failed with result 'exit-code'.
Warning: oscapd.service changed on disk. Run 'systemctl daemon-reload' to reload units.
# which python
/usr/bin/python
# file /usr/bin/python
/usr/bin/python: symbolic link to python2

sudo docker images -q | sort > /tmp/old_images
sudo atomic scan 90fe1348ce60  # id of container
sudo docker images -q | sort > /tmp/new_images

$ diff /tmp/old_images /tmp/new_images
28a29
> e682a7bac56d

$ docker inspect e682a7bac56d
[
{
    "Id": "e682a7bac56d474645218b9f198dcc87e4717ed5de70befd521193b00fca7ca8",
    "Parent": "6883d5422f4ec2810e1312c0e3e5a902142e2a8185cd3a1124b459a7c38dc55b",
    "Comment": "",
    "Created": "2015-11-30T14:35:56.72295542Z",
    "Container": "90fe1348ce60a311ac5b3e203f60f509fea92d66a9028b61b06873e872d11b11",
    "ContainerConfig": {
        "Hostname": "90fe1348ce60",
        "Domainname": "",
        "User": "",
        "AttachStdin": true,
        "AttachStdout": true,
        "AttachStderr": true,
        "ExposedPorts": null,
        "PublishService": "",
        "Tty": true,
        "OpenStdin": true,
        "StdinOnce": true,
        "Env": [
            "container=docker",
            "PATH=/usr/local/bin:/usr/bin:/bin:/usr/local/sbin:/usr/sbin"
        ],
        "Cmd": [
            "/bin/sleep",
            "7d"
        ],
        "Image": "docker.io/rhel7",
        "Volumes": {
            "/run": {}
        },
        "VolumeDriver": "",
        "WorkingDir": "",
        "Entrypoint": null,
        "NetworkDisabled": false,
        "MacAddress": "",
        "OnBuild": null,
        "Labels": {}
    },
    "DockerVersion": "1.8.2-fc22",
    "Author": "",
    "Config": {
        "Hostname": "",
        "Domainname": "",
        "User": "",
        "AttachStdin": false,
        "AttachStdout": false,
        "AttachStderr": false,
        "ExposedPorts": null,
        "PublishService": "",
        "Tty": false,
        "OpenStdin": false,
        "StdinOnce": false,
        "Env": [
            "container=docker",
            "PATH=/usr/local/bin:/usr/bin:/bin:/usr/local/sbin:/usr/sbin"
        ],
        "Cmd": [
            "/bin/sleep",
            "7d"
        ],
        "Image": "",
        "Volumes": {
            "/run": {}
        },
        "VolumeDriver": "",
        "WorkingDir": "",
        "Entrypoint": null,
        "NetworkDisabled": false,
        "MacAddress": "",
        "OnBuild": null,
        "Labels": {
            "io.projectatomic.Temporary": "true"
        }
    },
    "Architecture": "amd64",
    "Os": "linux",
    "Size": 0,
    "VirtualSize": 201663804,
    "GraphDriver": {
        "Name": "devicemapper",
        "Data": {
            "DeviceId": "7492",
            "DeviceName": "docker-253:2-2622353-e682a7bac56d474645218b9f198dcc87e4717ed5de70befd521193b00fca7ca8",
            "DeviceSize": "10737418240"
        }
    }
}
]

[root@localhost ~]# oscapd-cli
Traceback (most recent call last):
  File "/usr/bin/oscapd-cli", line 752, in <module>
    main()
  File "/usr/bin/oscapd-cli", line 698, in main
    if args.version:
AttributeError: 'Namespace' object has no attribute 'version'

docker --images
...
docker.io/rhel7            latest              6c3a84d798dc        10 weeks ago        201.7 MB
...

 atomic scan --images --detail
...
6c3a84d798dc
  OS        : Fedora release 23 (Twenty Three)
  Moderate  : 4
...

$ oscapd-cli eval
ERROR:dbus.proxies:Introspect error on :1.115:/OpenSCAP/daemon: dbus.exceptions.DBusException: org.freedesktop.DBus.Error.AccessDenied: Rejected send message, 3 matched rules; type="method_call", sender=":1.124" (uid=1000 pid=5269 comm="/bin/python3 /usr/bin/oscapd-cli eval ") interface="org.freedesktop.DBus.Introspectable" member="Introspect" error name="(unset)" requested_reply="0" destination=":1.115" (uid=0 pid=4904 comm="/bin/python3 /usr/bin/oscapd ")
Traceback (most recent call last):
  File "/usr/bin/oscapd-cli", line 787, in <module>
    main()
  File "/usr/bin/oscapd-cli", line 752, in main
    dbus_iface.GetVersion()
  File "/usr/lib64/python3.4/site-packages/dbus/proxies.py", line 70, in __call__
    return self._proxy_method(*args, **keywords)
  File "/usr/lib64/python3.4/site-packages/dbus/proxies.py", line 145, in __call__
    **keywords)
  File "/usr/lib64/python3.4/site-packages/dbus/connection.py", line 651, in call_blocking
    message, timeout)
dbus.exceptions.DBusException: org.freedesktop.DBus.Error.AccessDenied: Rejected send message, 2 matched rules; type="method_call", sender=":1.124" (uid=1000 pid=5269 comm="/bin/python3 /usr/bin/oscapd-cli eval ") interface="org.OpenSCAP.daemon.Interface" member="GetVersion" error name="(unset)" requested_reply="0" destination=":1.115" (uid=0 pid=4904 comm="/bin/python3 /usr/bin/oscapd ")

21e884e
Jan 21 08:32:02 nec-em18.rhts.eng.bos.redhat.com systemd[1]: Starting OpenSCAP Daemon...
Jan 21 08:32:02 nec-em18.rhts.eng.bos.redhat.com oscapd[10409]: Traceback (most recent call last):
Jan 21 08:32:02 nec-em18.rhts.eng.bos.redhat.com oscapd[10409]: File "/usr/bin/oscapd", line 22, in <module>
Jan 21 08:32:02 nec-em18.rhts.eng.bos.redhat.com oscapd[10409]: from openscap_daemon import dbus_daemon
Jan 21 08:32:02 nec-em18.rhts.eng.bos.redhat.com oscapd[10409]: File "/usr/lib/python2.7/site-packages/openscap_daemon/dbus_daemon.py", line 23, in <module>
Jan 21 08:32:02 nec-em18.rhts.eng.bos.redhat.com oscapd[10409]: from openscap_daemon.cve_scanner.cve_scanner import Worker
Jan 21 08:32:02 nec-em18.rhts.eng.bos.redhat.com oscapd[10409]: File "/usr/lib/python2.7/site-packages/openscap_daemon/cve_scanner/cve_scanner.py", line 23, in <module>
Jan 21 08:32:02 nec-em18.rhts.eng.bos.redhat.com oscapd[10409]: from openscap_daemon.cve_scanner.generate_summary import Create_Summary
Jan 21 08:32:02 nec-em18.rhts.eng.bos.redhat.com oscapd[10409]: File "/usr/lib/python2.7/site-packages/openscap_daemon/cve_scanner/generate_summary.py", line 27, in <module>
Jan 21 08:32:02 nec-em18.rhts.eng.bos.redhat.com oscapd[10409]: from openscap_daemon.cve_scanner.image_scanner_client import Client
Jan 21 08:32:02 nec-em18.rhts.eng.bos.redhat.com oscapd[10409]: File "/usr/lib/python2.7/site-packages/openscap_daemon/cve_scanner/image_scanner_client.py", line 37, in <module>
Jan 21 08:32:02 nec-em18.rhts.eng.bos.redhat.com oscapd[10409]: import requests
Jan 21 08:32:02 nec-em18.rhts.eng.bos.redhat.com oscapd[10409]: ImportError: No module named requests
Jan 21 08:32:03 nec-em18.rhts.eng.bos.redhat.com systemd[1]: oscapd.service: main process exited, code=exited, status=1/FAILURE
Jan 21 08:32:03 nec-em18.rhts.eng.bos.redhat.com systemd[1]: Failed to start OpenSCAP Daemon.

Starting OpenSCAP Daemon...
INFO:OpenSCAP Daemon 0.1.3
Started OpenSCAP Daemon.
DEBUG:Initialized AsyncManager, 4 workers
INFO:Loading configuration from '/etc/oscapd/config.ini'.
detected unhandled Python exception in '/usr/bin/oscapd'
Traceback (most recent call last):
File "/usr/bin/oscapd", line 70, in <module>
main()
File "/usr/bin/oscapd", line 64, in main
obj = dbus_daemon.OpenSCAPDaemonDbus(bus, config_file)
File "/usr/lib/python3.4/site-packages/openscap_daemon/dbus_daemon.py", line 42, in __init__
self.system = system.System(config_file)
File "/usr/lib/python3.4/site-packages/openscap_daemon/system.py", line 47, in __init__
self.config.load(config_file)
File "/usr/lib/python3.4/site-packages/openscap_daemon/config.py", line 154, in load
config.read(config_file)
File "/usr/lib64/python3.4/configparser.py", line 672, in read
self._read(fp, filename)
File "/usr/lib64/python3.4/configparser.py", line 1058, in _read
raise MissingSectionHeaderError(fpname, lineno, line)
configparser.MissingSectionHeaderError: File contains no section headers.
file: '/etc/oscapd/config.ini', line: 1 
'faoghaio\n'

# remove result of id Y of task of id X
$ oscapd-cli result X Y remove
# remove all results of task of id X
$ oscapd-cli result X remove

Exception in thread ed695b131d039f3608c0da4335572f2e1a0ef490b9b67664d046cd6c835655de:
Traceback (most recent call last):
File "/usr/lib/python3.4/site-packages/docker/client.py", line 138, in _raise_for_status
response.raise_for_status()
File "/usr/lib/python3.4/site-packages/requests/models.py", line 840, in raise_for_status
raise HTTPError(http_error_msg, response=self)
requests.exceptions.HTTPError: 404 Client Error: Not Found for url: http+docker://localunixsocket/v1.20/containers/012d2e837331e17768b5f2df5
During handling of the above exception, another exception occurred:
Traceback (most recent call last):
File "/usr/lib64/python3.4/threading.py", line 920, in _bootstrap_inner
self.run()
File "/usr/lib64/python3.4/threading.py", line 868, in run
self._target(*self._args, **self._kwargs)
File "/usr/lib/python3.4/site-packages/openscap_daemon/cve_scanner/cve_scanner.py", line 280, in search_containers
f = Scan(image, cids, output, self.ac)
File "/usr/lib/python3.4/site-packages/openscap_daemon/cve_scanner/scan.py", line 53, in __init__
self.dm_results = self.DM.mount(image_uuid)
File "/usr/lib/python3.4/site-packages/Atomic/mount.py", line 302, in mount
cid, dev_name = self._get_cid_from_mountpoint(self.mountpoint)
File "/usr/lib/python3.4/site-packages/Atomic/mount.py", line 494, in _get_cid_from_mountpoint
graph = self.client.inspect_container(c)["GraphDriver"]
File "/usr/lib/python3.4/site-packages/docker/utils/decorators.py", line 21, in wrapped
return f(self, resource_id, *args, **kwargs)
File "/usr/lib/python3.4/site-packages/docker/api/container.py", line 172, in inspect_container
self._get(self._url("/containers/{0}/json", container)), True
File "/usr/lib/python3.4/site-packages/docker/client.py", line 146, in _result
self._raise_for_status(response)
File "/usr/lib/python3.4/site-packages/docker/client.py", line 141, in _raise_for_status
raise errors.NotFound(e, response, explanation=explanation)
docker.errors.NotFound: 404 Client Error: Not Found ("b'no such id: 012d2e837331e17768b5f2df593a2a4471f8d5a87e7de35391eba2d35e6f4b24'")

    def SetTaskTitle(self, task_id, title):
    def SetTaskEnabled(self, task_id, enabled):
    def SetTaskTarget(self, task_id, target):
    def SetTaskInput(self, task_id, input_):
    def SetTaskTailoring(self, task_id, tailoring):
    def SetTaskProfileID(self, task_id, profile_id):
    def SetTaskOnlineRemediation(self, task_id, online_remediation):
    def SetTaskScheduleNotBefore(self, task_id, schedule_not_before_str):
    def SetTaskScheduleRepeatAfter(self, task_id, schedule_repeat_after):

[root@thinkpad openscap-daemon]# python3 bin/oscapd-evaluate spec --input tests/testing_data/ssg-fedora-ds.xml 
INFO:OpenSCAP Daemon one-off evaluator 0.1.3
INFO:Successfully imported 'docker' and 'Atomic.mount', container scanning enabled.
Traceback (most recent call last):
  File "bin/oscapd-evaluate", line 373, in <module>
    main()
  File "bin/oscapd-evaluate", line 239, in main
    spec.input_.set_contents(args.input_.read().decode("utf-8"))
AttributeError: 'str' object has no attribute 'decode'

/usr/bin/oscapd:66: PyGIDeprecationWarning: GObject.MainLoop is deprecated; use GLib.MainLoop instead
  loop = gobject.MainLoop()

# remove task of ID X
$ oscapd-cli task X remove

[root@localhost ~]# oscapd-cli
Traceback (most recent call last):
  File "/usr/bin/oscapd-cli", line 750, in <module>
    main()
  File "/usr/bin/oscapd-cli", line 731, in main
    if args.action == "status":
AttributeError: 'Namespace' object has no attribute 'action'

ret.extend([config.oscap_ssh_path, '--sudo', host, str(port)])

openscap / openscap-daemon Goto Github PK

openscap-daemon's Introduction

OpenSCAP

About

Contributing

Microsoft Windows Support

Use cases

SCAP Content Validation

Scanning

Document generation

openscap-daemon's People

Contributors

Stargazers

Watchers

Forkers

openscap-daemon's Issues

Recommend Projects

Recommend Topics

Recommend Org