[BugFix] [Infrastructure] Fix 'test_attestation' links in the produced OVAL documents "ssg-$(PROD)-oval.xml" to be valid URLs pointing to GH SSG Contributors wiki page#581
Merged
redhatrises merged 1 commit intoComplianceAsCode:masterfrom Jun 19, 2015
Conversation
OVAL documents "ssg-$(PROD)-oval.xml" to be valid URLs and point to the SCAP Security Guide Contributors GitHub wiki page. It has been reported via downstream bug: [1] https://bugzilla.redhat.com/show_bug.cgi?id=1155809 that the 'test_attestation' links we produce in XCCDF and OVAL documents are not valid links when inspected via tools like e.g. "linklint". The XCCDF part has been already corrected via PR: [2] ComplianceAsCode#580 This commit is fixing the very same issue but for the OVAL "ssg-$(PROD)-oval.xml" documents generated for the different products yet. Testing report: --------------- The proposed change has been tested manually (see also testing scenario in corresponding PR to see the difference) and works fine.
iankko
added
bugfix
redhatrises
added a commit
that referenced
this pull request
Jun 19, 2015
…o_have_valid_url [BugFix] [Infrastructure] Fix 'test_attestation' links in the produced OVAL documents "ssg-$(PROD)-oval.xml" to be valid URLs pointing to GH SSG Contributors wiki page
Contributor
|
LGTM. Ack and thanks @iankko! |
Author
|
Thank you too, Gabe! |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
3 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
It has been reported via downstream bug:
[1] https://bugzilla.redhat.com/show_bug.cgi?id=1155809
that the 'test_attestation' links we produce in XCCDF and OVAL documents
are not valid links when inspected via tools like e.g. "linklint".
The XCCDF part has been already corrected via PR:
[2] #580
This commit is fixing the very same issue but for the OVAL "ssg-$(PROD)-oval.xml"
documents generated for the different products yet.
The original problem as reported in [1] can be for the OVAL documents reproduced
e.g. as follows (it assumes the linklint executable is accessible on the system in question via the
$LINKLINTvariable):Current result on unfixed
test_attestationlinks:Note: It's visible in the above output
linklintwas unable to found link to/test_attestationResult on fixed OVAL
test_attestationlinks (result on the same scenario when this patch is applied):Note: In this case it's visble that
linklintreported zero files have broken links. Also the working links can be verified manually by openingoval_report.htmlfile in the browser and following some of the links e.g.RHEL7_20150605for theservice_abrtd_disabledrule that visiting them will point the user to the Contributors page:[3] https://github.com/OpenSCAP/scap-security-guide/wiki/Contributors
Please review.
Thank you, Jan.
P.S.: Note:
The newly added
oval-fix-test-attestation-urls.xsltXSLT transformation fixing the links have been intentionally placed under thetransforms/location on per-product basis (copy of the very same file multiple times for each affected product). I have tried to place it into theshared/directory, but since it depends on / requires alsoconstants.xsltXSLT change, would need to moveconstants.xlsttoshared/directory too. But this is not possible to do right now, because yet other product specific XSLT transformations, like e.g.shorthand2xccdf.xsltalso depends onconstants.xslt-- require it to be present in the product specific/transformsdirectory. Therefore to be able to move the newoval-fix-test-attestation-urls.xsltXSLT tranformation intoshared/directory, I would need to move all of the existing various XSLT transformations intoshared/directory. While by itself it is not unfeasible, but requires more time that I have currently got (0.1.23 release is very close), for now I have decided to put a separate product copy ofoval-fix-test-attestation-urls.xsltinto each product, and will merge the existing XSLT transformations later (can't dedicate time to it right now).