You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
E: oscap: (../../../src/source/oscap_source.c:221:oscap_source_get_xmlDoc()) Unable to open file: '/usr/share/openscap/cpe/openscap-cpe-dict.xml'
E: oscap: (../../../src/CPE/cpe_session.c:57:cpe_session_new()) Failed to add default CPE to newly created CPE Session.
E: oscap: (../../../src/XCCDF_POLICY/check_engine_plugin.c:66:check_engine_plugin_load()) Failed to load extra check engine from 'libopenscap_sce.so.8'. Details: 'libopenscap_sce.so.8: cannot open shared object file: No such file or directory'.
The miss of the default CPE dict is a bug of the openscap package from Debian (you can post a bug report on Debian directy) as no default CPE dict exists in the cpe/ dir. Nevertheless, here is how to correct it:
configure openscap to specify its cpe dir to point to scap-security-guide dir, this will permit openscap to use the scap-security-guide cpe files for the xccdf evaluation
OR copy the scap-security-guide ssg-ubuntu1604-cpe*.xml in the default openscap cpe dir (/usr/share/openscap/cpe)
This will resolve the xccdf execution, but the info will still generate an error on the default cpe dict. As you ar targetting an ubuntu, you can use the ssg-ubuntu1604-cpe-dict.xml as default dict (using a link or copying the file to the corresponding file name), because oscap will search for openscap-cpe-dict.xml
Description of problem:
I'm using the lastest ssg policy and the latest oscap package. I'm not able to run a scan.
oscap info ssg-ubuntu1604-ds.xml
oscap xccdf eval --verbose INFO --verbose-log-file log.txt ssg-ubuntu1604-ds.xml
cat log.txt | grep -P ^E
SCAP Security Guide Version:
scap-security-guide-0.1.35
ssg-ubuntu1604-ds.xml
Operating System Version:
cat /etc/os-release
NAME="Ubuntu"
VERSION="16.04.2 LTS (Xenial Xerus)"
ID=ubuntu
ID_LIKE=debian
PRETTY_NAME="Ubuntu 16.04.2 LTS"
VERSION_ID="16.04"
HOME_URL="http://www.ubuntu.com/"
SUPPORT_URL="http://help.ubuntu.com/"
BUG_REPORT_URL="http://bugs.launchpad.net/ubuntu/"
VERSION_CODENAME=xenial
UBUNTU_CODENAME=xenial
Openscap version
oscap version
dpkg -l | grep -i openscap
The text was updated successfully, but these errors were encountered: