Component-Def/component/protocol/port-range start and end points are not identified.

Question

Component-Def/component/protocol/port-range start and end points are not identified.

RS-Credentive opened this issue 4 months ago · 3 comments

Describe the bug

If a component definition has a port range with a start and end, eg:

                        "port-ranges": [
                            {
                                "start": 80,
                                "end": 80,
                                "transport": "TCP"
                            }
                        ]

oscal CLI reports the following:

[WARNING] [/component-definition/component[X]/protocol[X]/port-range[X]] A start port exists, but an end point does not. To define a single port, the start and end should be the same value.
[WARNING] [/component-definition/component[X]/protocol[X]/port-range[X]] An end point exists, but a start port does not. To define a single port, the start and end should be the same value.

Who is the bug affecting?

Me

What is affected by this bug?

component-def validation

When does this occur?

When passed the attached component definition
rails-puma-component-def.json

How do we replicate the issue?

oscal-cli component-definition validate rails-puma-component-def.json

Expected behavior (i.e. solution)

Document should validate

Answer 1 · 2024-06-14T15:19:54.000Z

@RS-Credentive - Hi Rob - this is a known-to-NIST error in the OSCAL definitions (the constraints). We will have it corrected in the next OSCAL release, but to ensure traceably at your end, do you mind moving this issue to OSCAL repo? Thank you.

Answer 2 · 2024-06-15T12:20:00.000Z

I will do this. Thanks!

Answer 3 · 2024-06-17T17:35:55.000Z

Issue usnistgov/OSCAL#2023 addresses the core problem of this issue, and future releases of oscal-cli will not exhibit this error after the usnistgov/OSCAL#2023 is closed.