- Open Vulnerability and Assessment Language -
Element Dictionary

The following is a description of the elements, types, and attributes that compose the Junos-specific tests found in Open Vulnerability and Assessment Language (OVAL). Each test is an extension of the standard test element defined in the Core Definition Schema. Through extension, each test inherits a set of elements and attributes that are shared amongst all OVAL tests. Each test is described in detail and should provide the information necessary to understand what each element and attribute represents. This document is intended for developers and assumes some familiarity with XML. A high level description of the interaction between the different tests and their relationship to the Core Definition Schema is not outlined here.

This schema was originally developed by David Solin at jOVAL.org. The OVAL Schema is maintained by The MITRE Corporation and developed by the public OVAL Community. For more information, including how to get involved in the project and how to submit change requests, please visit the OVAL website at http://oval.mitre.org.



< xml_config_test >

Extends: oval-def:TestType

Child Elements Type MinOccurs MaxOccurs
object oval-def:ObjectRefType 1 1
state oval-def:StateRefType 0 unbounded

< xml_config_object >

The xml_config_object element is used by an XML config test to define the object to be evaluated. For the most part this object checks for existence and is used without a state comparision. Each object extends the standard ObjectType as defined in the oval-definitions-schema and one should refer to the ObjectType description for more information. The common set element allows complex objects to be created using filters and set logic. Again, please refer to the description of the set element in the oval-definitions-schema.

Extends: oval-def:ObjectType

Child Elements Type MinOccurs MaxOccurs
xpath oval-def:EntityObjectStringType 1 1
An XPATH 1.0 expression that should be evaluated against the XML configuration file. Any valid XPATH 1.0 statement is usable with one exception, at most one field may be identified in the XPATH. This is because the value_of element in the data section is only designed to work against a single field. The only valid operator for xpath is equals since there is an infinite number of possible xpaths and determinining all those that do not equal a given xpath would be impossible.
oval-def:filter n/a 0 unbounded

< xml_config_state >

The xml_config_state element defines the different information that can be used to evaluate the result of an XPATH query against the XML configuration file. Please refer to the individual elements in the schema for more details about what each represents.

Extends: oval-def:StateType

Child Elements Type MinOccurs MaxOccurs
xpath oval-def:EntityStateStringType 0 1
An XPATH 1.0 expression that was evaluated against the XML config file.
value_of oval-def:EntityStateAnySimpleType 0 1
The result of the evaluation of the XPATH expression against the XML config file.



< show_test >

The show test is used to check the properties of specific output lines from a SHOW command, such as "show configuration". It extends the standard TestType as defined in the oval-definitions-schema and one should refer to the TestType description for more information. The required object element references a show_object and the optional state element specifies the data to check.

Extends: oval-def:TestType

Child Elements Type MinOccurs MaxOccurs
object oval-def:ObjectRefType 1 1
state oval-def:StateRefType 0 unbounded

< show_object >

The show_object element is used by a show test to define the object to be evaluated. Each object extends the standard ObjectType as defined in the oval-definitions-schema and one should refer to the ObjectType description for more information. The common set element allows complex objects to be created using filters and set logic. Again, please refer to the description of the set element in the oval-definitions-schema.

Extends: oval-def:ObjectType

Child Elements Type MinOccurs MaxOccurs
subcommand oval-def:EntityObjectStringType 1 1
The name of a SHOW sub-command to be tested.
oval-def:filter n/a 0 unbounded

< show_state >

The show_state element defines the different information that can be used to evaluate the result of a specific SHOW sub-command. This includes the name of the sub-command and the corresponding config output. Please refer to the individual elements in the schema for more details about what each represents.

Extends: oval-def:StateType

Child Elements Type MinOccurs MaxOccurs
subcommand oval-def:EntityStateStringType 0 1
The name of the SHOW sub-command.
value oval-def:EntityStateStringType 0 1
The value returned from by the specified SHOW sub-command. This may consist of multiple lines of information, whose raw form will be captured by the item.



< version_test >

The version_test is used to check the version of components of the JunOS operating system. It extends the standard TestType as defined in the oval-definitions-schema and one should refer to the TestType description for more information. The required object element references a version_object and the optional state element specifies the data to check.

Extends: oval-def:TestType

Child Elements Type MinOccurs MaxOccurs
object oval-def:ObjectRefType 1 1
state oval-def:StateRefType 0 unbounded

< version_object >

The version_object element is used by a version_test to define the different version information associated with a JunOS system.

Extends: oval-def:ObjectType

Child Elements Type MinOccurs MaxOccurs
component oval-def:EntityObjectStringType 1 1
The name of the JunOS component whose version should be retrieved.
oval-def:filter n/a 0 unbounded

< version_state >

The version_state element defines the version information held by a JunOS component.

Extends: oval-def:StateType

Child Elements Type MinOccurs MaxOccurs
component oval-def:EntityStateStringType 0 1
The name of the JunOS component whose version should be retrieved.
raw_release oval-def:EntityStateStringType 1 1
The raw release version string for the component.
major_version oval-def:EntityStateVersionType 1 1
The part of the release version of the component corresponding to the [year].[quarter] in which the release occurred. For example, the major_version for 12.2R6.1 would be 12.2.
release_type junos-def:EntityStateJunosReleaseTypeType 1 1
The release type embedded in the version of the component.
revision oval-def:EntityStateVersionType 0 1
The revision and build number (AKA spin number) information of the component's version. For example, the revision for 12.2R6.1 would be 6.1.
builder oval-def:EntityStateStringType 0 1
The string identifying the builder of the component.
build_date oval-def:EntityStateIntType 0 1
The build date of the component, specified in milliseconds since the Epoch (midnight, January 1, 1970 GMT).



< xml_show_test >

The XML show test is used to check the properties of specific output from an XML SHOW command, such as "show configuration | display xml". It extends the standard TestType as defined in the oval-definitions-schema and one should refer to the TestType description for more information. The required object element references a xml_show_object and the optional state element specifies the data to check.

Extends: oval-def:TestType

Child Elements Type MinOccurs MaxOccurs
object oval-def:ObjectRefType 1 1
state oval-def:StateRefType 0 unbounded

< xml_show_object >

The xml_show_object element is used by an XML show test to define the object to be evaluated. Each object extends the standard ObjectType as defined in the oval-definitions-schema and one should refer to the ObjectType description for more information. The common set element allows complex objects to be created using filters and set logic. Again, please refer to the description of the set element in the oval-definitions-schema.

Extends: oval-def:ObjectType

Child Elements Type MinOccurs MaxOccurs
subcommand oval-def:EntityObjectStringType 1 1
The name of a SHOW sub-command to be tested.
xpath oval-def:EntityObjectStringType 1 1
An XPATH 1.0 expression that should be evaluated against the XML data resulting from the XML show subcommand. Any valid XPATH 1.0 statement is usable with one exception, at most one field may be identified in the XPATH. This is because the value_of element in the data section is only designed to work against a single field. The only valid operator for xpath is equals since there is an infinite number of possible xpaths and determinining all those that do not equal a given xpath would be impossible.
oval-def:filter n/a 0 unbounded

< xml_show_state >

The xml_show_state element defines the different information that can be used to evaluate the result of a specific XML SHOW sub-command. This includes the name of the sub-command, the XPATH and the corresponding XPATH query result. Please refer to the individual elements in the schema for more details about what each represents.

Extends: oval-def:StateType

Child Elements Type MinOccurs MaxOccurs
subcommand oval-def:EntityStateStringType 0 1
The name of a SHOW sub-command to be tested.
xpath oval-def:EntityStateStringType 0 1
An XPATH 1.0 expression that should be evaluated against the XML data resulting from the XML show subcommand.
value_of oval-def:EntityStateAnySimpleType 0 1
The result of the evaluation of the XPATH expression against the XML data returned from the XML show subcommand.

== EntityStateJunosReleaseTypeType ==

The EntityStateJunosReleaseTypeType complex type defines the different values that are valid for the release_type entity of a system_metric state. These values describe the release type specified in the raw version string.

Restricts: oval-def:EntityStateStringType

Value Description

Indicates a normal release.

Indicates a service release.

Indicates a beta release.

Indicates a release of the SRX branch.

 

The empty string value is permitted here to allow for empty elements associated with variable references.