- Open Vulnerability and Assessment Language -
Element Dictionary

The following is a description of the elements, types, and attributes that compose the Junos-specific system characteristic items found in Open Vulnerability and Assessment Language (OVAL). Each item is an extension of the standard item element defined in the Core System Characteristic Schema. Through extension, each item inherits a set of elements and attributes that are shared amongst all OVAL Items. Each item is described in detail and should provide the information necessary to understand what each element and attribute represents. This document is intended for developers and assumes some familiarity with XML. A high level description of the interaction between the different tests and their relationship to the Core System Characteristic Schema is not outlined here.

This schema was originally developed by David Solin at jOVAL.org. The OVAL Schema is maintained by The MITRE Corporation and developed by the public OVAL Community. For more information, including how to get involved in the project and how to submit change requests, please visit the OVAL website at http://oval.mitre.org.



< xml_config_item >

Stores information about the existence of a particular XPATH query result from the JunOS XML config file.

Extends: oval-sc:ItemType

Child Elements Type MinOccurs MaxOccurs
xpath oval-sc:EntityItemStringType 0 1
An XPATH 1.0 expression that was evaluated against the XML config file.
value_of oval-sc:EntityItemAnySimpleType 0 unbounded
The result of the evaluation of the XPATH expression against the XML config file.



< show_item >

Stores the resulting configuration data provided by the execution of a specific show command.

Extends: oval-sc:ItemType

Child Elements Type MinOccurs MaxOccurs
subcommand oval-sc:EntityItemStringType 0 1
The name of the SHOW sub-command.
value oval-sc:EntityItemStringType 0 1
The value returned from by the specified SHOW sub-command. This may consist of multiple lines of information.



< version_item >

The version_item holds information about the version of a particular component of the JunOS operating system. It extends the standard ItemType as defined in the oval-system-characteristics schema and one should refer to the ItemType description for more information.

Extends: oval-sc:ItemType

Child Elements Type MinOccurs MaxOccurs
component oval-sc:EntityItemStringType 0 1
The name of the JunOS component whose version should be retrieved.
raw_release oval-sc:EntityItemStringType 0 1
The raw release version string for the component.
major_version oval-sc:EntityItemVersionType 0 1
The part of the release version of the component corresponding to the [year].[quarter] in which the release occurred. For example, the major_version for 12.2R6.1 would be 12.2.
release_type junos-sc:EntityItemJunosReleaseTypeType 0 1
The release type embedded in the version of the component.
revision oval-sc:EntityItemVersionType 0 1
The revision and build number (AKA spin number) information of the component's version. For example, the revision for 12.2R6.1 would be 6.1.
builder oval-sc:EntityItemStringType 0 1
The string identifying the builder of the component.
build_date oval-sc:EntityItemIntType 0 1
The build date of the component, specified in milliseconds since the Epoch (midnight, January 1, 1970 GMT).



< xml_show_item >

Stores the result of the application of an XPATH query applied to the JunOS configuration data provided by the execution of a specific show command, which has been piped to "display xml".

Extends: oval-sc:ItemType

Child Elements Type MinOccurs MaxOccurs
subcommand oval-sc:EntityItemStringType 0 1
The name of a SHOW sub-command to be tested.
xpath oval-sc:EntityItemStringType 0 1
An XPATH 1.0 expression that should be evaluated against the XML data resulting from the XML show subcommand.
value_of oval-sc:EntityItemAnySimpleType 0 unbounded
The result of the evaluation of the XPATH expression against the XML data returned from the XML show subcommand.

== EntityItemJunosReleaseTypeType ==

The EntityItemJunosReleaseTypeType complex type defines the different values that are valid for the release_type entity of a system_metric state. These values describe the release type specified in the raw version string.

Restricts: oval-sc:EntityItemStringType

Value Description

Indicates a normal release.

Indicates a service release.

Indicates a beta release.

Indicates a release of the SRX branch.

 

The empty string value is permitted here to allow for empty elements associated with error conditions.