[Open-scap] Issue with XCCDF variable set-value not being passed to SCE.

[Jacob Varughese]

Hi All,
         Found an issue with XCCDF variable set-value overrides not 
being passed to SCE script. The refine-value is being
passed to XCCDF, but not the set-value override. Attaching the sample 
xccdf and sce script.

When you run oscap xccdf eval --result result.xml --profile Baseline 
xccdf.xml
The result.xml shows the variable Value_1 is set to fail (done using 
refine-value in Baseline profile).

When you run oscap xccdf eval --result result.xml --profile Layered 
xccdf.xml
The result.xml shows the variable Value_1 is set to fail (done using 
refine-value).
The result.xml should have showed Value_1 is set to pass (done using the 
set-value in the Layered Profile).

Thank you,
Jacob.


-------------- next part --------------
#!/bin/sh
#
# Copyright (c) 2013, Oracle and/or its affiliates. All rights reserved.
#
# dummy-test-negative.sh

# Check nothing and return fail immediately
sleep 5
pf=${XCCDF_VALUE_VALUE_1}
echo "this is output of dummy-value-test.sh"
echo "this should '$pf'"
env
case X$pf in
Xpass)	exit $XCCDF_RESULT_PASS;;
Xfail)	exit $XCCDF_RESULT_FAIL;;
*)	exit $XCCDF_RESULT_ERROR;;
esac

-------------- next part --------------
A non-text attachment was scrubbed...
Name: xccdf.xml
Type: text/xml
Size: 2679 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/open-scap-list/attachments/20150731/b346c373/attachment.xml>