1.3.0_alpha1

@jan-cerny jan-cerny released this Jul 18, 2018 · 0 commits to maint-1.2 since this release

  • New features
    • Microsoft Windows support (issue #195)
    • new probes:
      • Windows registry probe
      • Windows accesstoken probe
      • Windows wmi57 probe
    • CMake is used as build system (issue #542)
    • CTest is used as test suite driver
  • Maintenance
    • probes are not separate processes, they are threads within oscap
    • OpenSCAP can be compiled using Visual Studio 2017
    • Dropped 53 deprecated API symbols (issue #1088)
    • Removed GNU Automake
    • Removed Python 2 support (issue #1034)
    • Ninja build is supported
    • Public API symbols are marked by OSCAP_API macro
    • Removed variable length arrays
    • Removed custom memory allocation functions (issue #1077)
    • Improved OS X build support
    • Fixed crash when deallocating red-black-tree node in Windows
    • Several large tests are splitted into smaller test cases
    • User manual is splitted in User and Developer manual
    • Many documentation updates (issue #1069, #1066)
    • Stopped using '\r' characters on stdout (issue #579, #1023)
    • Updated release tools to reflect CMake (issue #1036)
    • Dropped Cygwin support from User Manual (issue #1011)
    • source tarball does not contain build artifacts
    • Many small fixes

1.2.17

@jan-cerny jan-cerny released this May 29, 2018 · 34 commits to maint-1.2 since this release

  • New features
    • HTML Guide user experience improvements
    • New options in HTML report "Group By" menu
    • oscap-ssh supports --oval-results (issue #863)
  • Maintenance
    • Support comparing state record elements with item
    • Updated Bash completion
    • Make Bash role headers consistent with --help output
    • Fixed problems reported by Coverity (issue #909)
    • Fixed CVE schema to support 4 to 7 digits CVEs
    • Fix output of generated bash role missing fix message
    • Fix oscap-docker to clean up temporary image (RHBZ #1454637)
    • Fix Ansible remediations generation
    • Add a newline between ids in xccdf info (issue #968)
    • Fix unknown subtype handling in oval_subtype_parse (issue #986)
    • Outsourced the pthreads feature check and setup
    • Speed up in debug mode
    • Refactored the Python handling in build scripts
    • Prevent reading from host in offline mode (issue #1001)
    • Many probes use OWN offline mode
    • Improve offline mode logic in OVAL probes
    • Do not use chroot in system_info probe
    • Prevent a segfault in oscap_seterr on Solaris
    • Out of tree build is possible
    • Use chroot for RPM probes in offline mode
    • PEP8 accepts lines up to 99 characters
    • New configure parameter --with-oscap-temp-dir (issue #1016)
    • Fixed OVAL record elements namespace and SEXP conversion
    • Removed '\r' characters from help output (issue #1023)
    • Full Python 3 compatibility
    • Removed basic Python implementation of oval_probes.c
    • Added support for Travis CI and Sonar Cloud
    • Minor fixes inspired by Sonar Cloud
    • Added Fedora 29 CPE
    • New tests in upstream test suite (offline mode, Ansible, etc.)

1.2.16

@matejak matejak released this Nov 14, 2017 · 214 commits to maint-1.2 since this release

Stats

  • Over 350 commits from 12 distinct persons
  • 3 new contributors.
  • 66 Github issues fixed, 59 PRs merged.

New features

  • oscap can generate output that is compatible with STIG Viewer.
  • CVRF parsing and export has been implemented.
  • oscap info command has been expanded.
  • The AIX platform is supported.
  • Many documentation improvements.
  • Numerous other improvements of existing features.

Maintenance

  • Huge cross-platform improvements.
  • Memory leaks fixed (RHBZ#1485876).
  • SELinux fixes.
  • Many coverity fixes.
  • Numerous other bugfixes.

1.2.15

@jan-cerny jan-cerny released this Aug 25, 2017 · 569 commits to maint-1.2 since this release

  • New features
    • short profile names can be used instead of long IDs
    • new option --rule allows to evaluate only a single rule
    • new option --fix-type in "oscap xccdf generate fix" allows choosing
      remediation script type without typing long URL
    • "oscap info" shows profile titles
    • OVAL details in HTML report are easier to read
    • HTML report is smaller because unselected rules are removed
    • HTML report supports NIST 800-171 and CJIS
    • remediation scripts contain headers with useful information
    • remediation scripts report progress when they run
    • basic support for Oracle Linux (CPEs, runlevels)
    • remediation scripts can be generated from datastreams that contain
      multiple XCCDF benchmarks (issue #772)
    • basic support for OVAL 5.11.2 (only schemas, no features)
    • enabled offline RPM database in rpminfo probe (issue #778)
    • added Fedora 28 CPE
  • Maintenance
    • fixed oscap-docker with Docker >= 2.0 (issue #794)
    • fixed behavior of sysctl probe to be consistent with sysctl tool
    • fixed generating remediation scripts (issue #723, #773)
    • severity of tailored rules is not discarded (issue #739)
    • fixed errors in RPM probes initialization
    • oscap-docker shows all warnings reported by oscap (issue #713)
    • small improvements in verbose mode
    • standard C operations are used instead of custom OpenSCAP operations
    • fixed compiler warnings
    • fixed missing header files
    • fixed resource leaks (issue #715)
    • fixed pkgconfig file (RHBZ #1414777)
    • refactoring
    • documentation fixes and improvements

1.2.14

@jan-cerny jan-cerny released this Mar 21, 2017 · 813 commits to maint-1.2 since this release

  • New features
    • Detailed information about ARF files in 'oscap info' (issue #664)
    • XSLT template creating XCCDF files from OVAL files
    • Generating remediation scripts from ARF
    • Significant improvements of User Manual (issue #249, #513)
    • HTML report UX improvements (issue #601, #620, #622, #655)
    • Warnings are shown by default
    • Verbose mode is available in 'xccdf remediate' module (issue #520)
    • Added Fedora 26, Fedora 27 and OpenSUSE 42.2 CPEs (issue #698)
    • Support for Anaconda remediation in HTML report
  • Maintenance
    • Fixed CPE dictionary to identify RHEVH as RHEL7 (RHBZ #1420038)
    • Fixed systemd probes crashes inside containers (RHBZ #1431186, issue #700)
    • Added a warning on non-existing XCCDF Benchmarks (issue #614)
    • Fixed output on terminals with white background (RHBZ #1365911, issue #512)
    • Error handling in oscap-vm (RHBZ #1391754)
    • Fixed SCE stderr stalling (RHBZ #1420811)
    • Fixed Android OVAL schema (issue #279)
    • Fixed absolute filepath parsing in OVAL (RHBZ #1312831, #1312824)
    • Fixes based on Coverity scan report (issue #581, #634, #681)
    • Fixed duplicated error messages (issue #707)
    • Fixed XCCDF score calculation (issue #617)
    • Fixed segmentation faults in RPM probes (RHBZ #1414303, #1414312)
    • Fixed failing DataStream build if "@" is in filepath
    • Fixed missing header in result-oriented Ansible remediations
    • Memory leak and resource leak fixes (issue #635, #636)
    • New upstream tests
    • Many minor fixes and improvements

1.2.13

@mpreisler mpreisler released this Jan 5, 2017 · 1024 commits to maint-1.2 since this release

openscap-1.2.13

  • Maintenance
    • we always build system_info OVAL probe, fixed configure output accordingly
    • warn when the user requests to generate an ARF from XCCDF 1.1
    • fixed a segfault when loading an OVAL file with invalid family attribute
    • added --thin-results CLI override to oscap xccdf eval
    • added --without-syschar CLI override to oscap xccdf eval
    • fixed a segfault when freeing xccdf_policy of the default profile
    • removed ARF schematron workaround when there are no applicable checks
    • fixed verbose output in oscap xccdf generate fix
    • do not filter fix by applicability when generating remediations from results
    • fixed memory leaks, resource leaks and other minor issues

1.2.12

@jan-cerny jan-cerny released this Nov 16, 2016 · 1134 commits to maint-1.2 since this release

openscap-1.2.12

1.2.11

@jan-cerny jan-cerny released this Oct 14, 2016 · 1197 commits to maint-1.2 since this release

openscap-1.2.11

1.2.10

@jan-cerny jan-cerny released this Jun 30, 2016 · 1401 commits to maint-1.2 since this release

openscap-1.2.10

1.2.9

@jan-cerny jan-cerny released this Apr 22, 2016 · 1493 commits to maint-1.2 since this release

openscap-1.2.9