Closed yu410621 closed 2 months ago
yu410621
commented
2 months ago Hello all,
I'm new to the content project and I'm wondering if it's problematic to compile a single SCE rule individually. Could you please share your experiences and insights on this?
Thank you!
Mab879
commented
2 months ago Thanks for reporting this issue. It seems that the thin data streams code doesn't like SCE.
You scan still compile a normal data stream and use oscap's --rule to limit what is scanned.
However, this should be fixed at some point.
yu410621
commented
2 months ago Thanks for reporting this issue. It seems that the thin data streams code doesn't like SCE.
You scan still compile a normal data stream and use
oscap's--ruleto limit what is scanned.However, this should be fixed at some point.
@Mab879 Thank you for your guidance.
Hello
Description of problem:
I am encountering an error when attempting to compile a SCAP content using the --rule-id parameter to specify a single Security Content Automation Protocol (SCE) rule.
Steps to Reproduce:
1.Select any existing SCE rule within the project. 2.Compile the content while specifically targeting this rule using the following command:
ADDITIONAL_CMAKE_OPTIONS="-DSSG_SCE_ENABLED=ON" ./build_product fedora --rule-id set_ip6tables_default_rule3.The compilation process fails with the following error message:[ 53%] [fedora-content] generating ssg-fedora-oval.xmlError copying file "/root/github/content/build/fedora/ssg-fedora-oval.xml" to "/root/github/content/build/ssg-fedora-oval.xml".make[3]: *** [fedora/CMakeFiles/generate-ssg-fedora-oval.xml.dir/build.make:75:ssg-fedora-oval.xml] Error 1make[2]: *** [CMakeFiles/Makefile2:695:fedora/CMakeFiles/generate-ssg-fedora-oval.xml.dir/all] Error 2Additional Information:
I understand that OVAL rules are generally preferred within this project, but there are certain scenarios where SCE rules are necessary. I encountered this issue while attempting to compile a custom SCE rule.