openscap 0.4.9 → 0.5.1

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: c9d56737a95b91a18225def06b0f8a1d23a749e565b5dc302cc50e61f75ef87b
-  data.tar.gz: bd13f950489c98534bfbc4bc174196c449c1eece3c870dfb5dae4d88e2a11c0d
+  metadata.gz: 9c8eddf3fa5a4c04f1655827ba4f4b8422f32f314a20f888b36c5ef85e2e04cf
+  data.tar.gz: 3e9d497efc4543111a4fee03d8db323c85b96360e31e23cd9ebc4387ec354d17
 SHA512:
-  metadata.gz: a8315dd1675d6589d21a7324e9b125136c2a39dae45e1be4a30a47f5ea031d06e266aef58d4dee67e58515319173f547fb7bdfab2d7a68527fde27d952069e01
-  data.tar.gz: df5b605d6d6bb2e995bc7f7e0358134c57ef9c32b9fb154ddcbcb26875f376644c3f132ccac0cb13a73d5e21a1d63197d812b017eb87b9ac596307e1035e591f
+  metadata.gz: 601b6ee58372cd9f943918611c5f10df28cf1245d1149547d2889531e4b623b3787fb70cc06c1b4a17d4fca7e4202dd27dcacc7a69eba5c99d156fcc7e2529f3
+  data.tar.gz: 3a47312203579d8735b19032cfe427f76ede2467bbfb63b806dbd47edd79a8442ebd40fc61062fb4ece7b51742c38350e73c69d8677aafed5a5d8aef0d473db2

data/README.md

@@ -1,13 +1,13 @@
-![ruby-openscap icon](http://isimluk.fedorapeople.org/ruby-OpenSCAP-small.png) ruby-OpenSCAP
+ruby-OpenSCAP <img alt="icon" src="http://isimluk.fedorapeople.org/ruby-OpenSCAP-small.png" width="100">
 =============
 
 Description
 -------------
-A FFI wrapper around the OpenSCAP library.
+An FFI wrapper around the OpenSCAP library.
 
 Features/problems
 -------------
-Current version supports minimal set of functions needed to build own scanner. This module
+Current version supports minimal set of functions needed to build own scanner. This gem
 is self documented by its test suite.
 
 Sample Scanner Implementation
@@ -23,28 +23,17 @@ Sample Scanner Implementation
 
 Development Requirements
 -------------
-On Fedora, command is
+On Fedora, commands are
 
-    dnf install ruby-devel rubygem-rake rubygem-ffi rubygem-bundler openscap
-
-On RHEL you can install requirements by issuing
-
-    yum install ruby-devel rubygem-rake rubygem-bundler openscap
-    gem install ffi # or install rubygem-ffi RPM package from EPEL
+    dnf install openscap
+    bundle install
 
 
 Test Requirements
 -------------
 On Fedora, more packages are necessary, but rubocop can be of the latest version
 
-    dnf install rubygem-minitest rubygem-test-unit rubygems-devel bzip2
-    gem install rubocop
-
-For tests on RHEL7, you need minitest package and specific older version of rubocop.
-Newer versions of rubocop requires Ruby >= 2.1.0
-
-    yum install rubygem-minitest bzip2
-    gem install rubocop -v 0.50.0
+    dnf install bzip2
 
 Tests are then performed using script
 

data/Rakefile

@@ -2,10 +2,10 @@
 
 require 'bundler'
 
-Bundler::GemHelper.install_tasks :name => 'openscap'
+Bundler::GemHelper.install_tasks name: 'openscap'
 
 task :test do
   $LOAD_PATH.unshift('lib')
   $LOAD_PATH.unshift('test')
-  Dir.glob('./test/**/*_test.rb') { |f| require f }
+  Dir.glob('./test/**/*_test.rb').each { |f| require f }
 end

data/lib/openscap/all.rb

@@ -1,3 +1,3 @@
 # frozen_string_literal: true
 
-Dir.glob(File.join(File.dirname(__FILE__), '{xccdf,ds,}', '*.rb'), &method(:require))
+# Dir.glob(File.join(File.dirname(__FILE__), '{xccdf,ds,}', '*.rb')).each(&method(:require))

data/lib/openscap/ds/arf.rb

@@ -58,8 +58,8 @@ module OpenSCAP
 
   attach_function :ds_rds_session_new_from_source, [:pointer], :pointer
   attach_function :ds_rds_session_free, [:pointer], :void
-  attach_function :ds_rds_session_select_report, [:pointer, :string], :pointer
-  attach_function :ds_rds_session_replace_report_with_source, [:pointer, :pointer], :int
-  attach_function :ds_rds_session_select_report_request, [:pointer, :string], :pointer
+  attach_function :ds_rds_session_select_report, %i[pointer string], :pointer
+  attach_function :ds_rds_session_replace_report_with_source, %i[pointer pointer], :int
+  attach_function :ds_rds_session_select_report_request, %i[pointer string], :pointer
   attach_function :ds_rds_session_get_html_report, [:pointer], :pointer
 end

data/lib/openscap/ds/sds.rb

@@ -15,6 +15,12 @@ module OpenSCAP
                  OpenSCAP.ds_sds_session_new_from_source param[:source].raw
                end
         OpenSCAP.raise! if @raw.null?
+
+        begin
+          yield self
+        ensure
+          destroy
+        end if block_given?
       end
 
       def select_checklist(p = {})
@@ -43,6 +49,6 @@ module OpenSCAP
 
   attach_function :ds_sds_session_new_from_source, [:pointer], :pointer
   attach_function :ds_sds_session_free, [:pointer], :void
-  attach_function :ds_sds_session_select_checklist, [:pointer, :string, :string, :string], :pointer
-  attach_function :ds_sds_session_get_html_guide, [:pointer, :string], :string
+  attach_function :ds_sds_session_select_checklist, %i[pointer string string string], :pointer
+  attach_function :ds_sds_session_get_html_guide, %i[pointer string], :string
 end

data/lib/openscap/openscap.rb

@@ -25,6 +25,15 @@ module OpenSCAP
     raise OpenSCAPError, err
   end
 
+  def self._iterate(over:, as:, &)
+    has_more_method = "#{as}_iterator_has_more"
+    next_method = "#{as}_iterator_next"
+    free_method = "#{as}_iterator_free"
+
+    yield send(next_method, over) while send(has_more_method, over)
+    send(free_method, over)
+  end
+
   attach_function :oscap_init, [], :void
   attach_function :oscap_cleanup, [], :void
   attach_function :oscap_get_version, [], :string

data/lib/openscap/source.rb

@@ -20,6 +20,12 @@ module OpenSCAP
         raise OpenSCAP::OpenSCAPError, "Cannot initialize #{self.class.name} with '#{param}'"
       end
       OpenSCAP.raise! if @raw.null?
+
+      begin
+        yield self
+      ensure
+        destroy
+      end if block_given?
     end
 
     def type
@@ -51,13 +57,13 @@ module OpenSCAP
   end
 
   attach_function :oscap_source_new_from_file, [:string], :pointer
-  attach_function :oscap_source_new_from_memory, [:pointer, :int, :string], :pointer
+  attach_function :oscap_source_new_from_memory, %i[pointer int string], :pointer
   attach_function :oscap_source_get_scap_type, [:pointer], :int
   attach_function :oscap_source_free, [:pointer], :void
-  attach_function :oscap_source_save_as, [:pointer, :string], :int
+  attach_function :oscap_source_save_as, %i[pointer string], :int
 
-  callback :xml_reporter, [:string, :int, :string, :pointer], :int
-  attach_function :oscap_source_validate, [:pointer, :xml_reporter, :pointer], :int
+  callback :xml_reporter, %i[string int string pointer], :int
+  attach_function :oscap_source_validate, %i[pointer xml_reporter pointer], :int
   XmlReporterCallback = proc do |filename, line_number, error_message, e|
     offset = e.get_string(0).length
     msg = "#{filename}:#{line_number}: #{error_message}"

data/lib/openscap/text.rb

@@ -4,8 +4,13 @@ module OpenSCAP
   class Text
     attr_reader :raw
 
-    def initialize
-      @raw = OpenSCAP.oscap_text_new
+    def initialize(t = nil)
+      @raw = case t
+             when FFI::Pointer
+               t
+             when nil
+               OpenSCAP.oscap_text_new
+             end
     end
 
     def text=(str)
@@ -13,7 +18,7 @@ module OpenSCAP
     end
 
     def text
-      OpenSCAP.oscap_text_get_text(raw)
+      OpenSCAP.oscap_text_get_text(@raw).force_encoding Encoding::UTF_8
     end
 
     def destroy
@@ -25,22 +30,46 @@ module OpenSCAP
   class TextList
     def initialize(oscap_text_iterator)
       @raw = oscap_text_iterator
+
+      begin
+        yield self
+      ensure
+        destroy
+      end if block_given?
     end
 
     def plaintext(lang = nil)
       OpenSCAP.oscap_textlist_get_preferred_plaintext @raw, lang
     end
 
+    def markup(lang:)
+      text_pointer = OpenSCAP.oscap_textlist_get_preferred_text @raw, lang
+      return nil if text_pointer.null?
+
+      Text.new(text_pointer).text
+    end
+
     def destroy
       OpenSCAP.oscap_text_iterator_free @raw
     end
+
+    def self.extract(pointer, lang:, markup:)
+      new(pointer) do |list|
+        if markup
+          return list.markup(lang:)
+        else
+          return list.plaintext(lang)
+        end
+      end
+    end
   end
 
   attach_function :oscap_text_new, [], :pointer
-  attach_function :oscap_text_set_text, [:pointer, :string], :bool
+  attach_function :oscap_text_set_text, %i[pointer string], :bool
   attach_function :oscap_text_get_text, [:pointer], :string
   attach_function :oscap_text_free, [:pointer], :void
 
-  attach_function :oscap_textlist_get_preferred_plaintext, [:pointer, :string], :string
+  attach_function :oscap_textlist_get_preferred_plaintext, %i[pointer string], :string
+  attach_function :oscap_textlist_get_preferred_text, %i[pointer string], :pointer
   attach_function :oscap_text_iterator_free, [:pointer], :void
 end

data/lib/openscap/version.rb

@@ -1,5 +1,5 @@
 # frozen_string_literal: true
 
 module OpenSCAP
-  VERSION = '0.4.9'
+  VERSION = '0.5.1'
 end

data/lib/openscap/xccdf/benchmark.rb

@@ -1,15 +1,19 @@
 # frozen_string_literal: true
 
 require 'openscap/source'
-require 'openscap/xccdf/profile'
-require 'openscap/xccdf/item'
+require_relative 'profile'
+require_relative 'item'
+require_relative 'item_common'
+require_relative 'value'
+require_relative 'status'
 
 module OpenSCAP
   module Xccdf
     class Benchmark
+      include ItemCommon
       attr_reader :raw
 
-      def initialize(p)
+      def initialize p
         case p
         when OpenSCAP::Source
           @raw = OpenSCAP.xccdf_benchmark_import_source p.raw
@@ -18,6 +22,20 @@ module OpenSCAP
                 "Cannot initialize OpenSCAP::Xccdf::Benchmark with '#{p}'"
         end
         OpenSCAP.raise! if @raw.null?
+
+        begin
+          yield self
+        ensure
+          destroy
+        end if block_given?
+      end
+
+      def resolved?
+        OpenSCAP.xccdf_benchmark_get_resolved @raw
+      end
+
+      def status_current
+        Status.new OpenSCAP.xccdf_benchmark_get_status_current(@raw)
       end
 
       def profiles
@@ -28,8 +46,40 @@ module OpenSCAP
         @items ||= items_init
       end
 
+      def each_item(&)
+        OpenSCAP._iterate over: OpenSCAP.xccdf_item_get_content(@raw), as: 'xccdf_item' do |pointer|
+          yield OpenSCAP::Xccdf::Item.build(pointer)
+        end
+      end
+
+      def each_profile(&)
+        OpenSCAP._iterate over: OpenSCAP.xccdf_benchmark_get_profiles(@raw), as: 'xccdf_profile' do |pointer|
+          yield OpenSCAP::Xccdf::Profile.new pointer
+        end
+      end
+
+      def each_value(&)
+        OpenSCAP._iterate over: OpenSCAP.xccdf_benchmark_get_values(@raw), as: 'xccdf_value' do |pointer|
+          yield OpenSCAP::Xccdf::Value.new pointer
+        end
+      end
+
+      def policy_model
+        @policy_model ||= PolicyModel.new self
+      end
+
+      def schema_version
+        pointer = OpenSCAP.xccdf_benchmark_get_schema_version @raw
+        OpenSCAP.xccdf_version_info_get_version pointer
+      end
+
       def destroy
-        OpenSCAP.xccdf_benchmark_free @raw
+        # Policy Model takes ownership of Xccdf::Benchmark. It is one of these lovely quirks of libopenscap
+        if @policy_model
+          @policy_model.destroy
+        else
+          OpenSCAP.xccdf_benchmark_free @raw
+        end
         @raw = nil
       end
 
@@ -37,27 +87,18 @@ module OpenSCAP
 
       def profiles_init
         profiles = {}
-        profit = OpenSCAP.xccdf_benchmark_get_profiles raw
-        while OpenSCAP.xccdf_profile_iterator_has_more profit
-          profile_p = OpenSCAP.xccdf_profile_iterator_next profit
-          profile = OpenSCAP::Xccdf::Profile.new profile_p
+        each_profile do |profile|
           profiles[profile.id] = profile
         end
-        OpenSCAP.xccdf_profile_iterator_free profit
         profiles
       end
 
       def items_init
         items = {}
-        items_it = OpenSCAP.xccdf_item_get_content raw
-        while OpenSCAP.xccdf_item_iterator_has_more items_it
-          item_p = OpenSCAP.xccdf_item_iterator_next items_it
-          item = OpenSCAP::Xccdf::Item.build item_p
+        each_item do |item|
           items.merge! item.sub_items
           items[item.id] = item
-          # TODO: iterate through childs
         end
-        OpenSCAP.xccdf_item_iterator_free items_it
         items
       end
     end
@@ -66,8 +107,19 @@ module OpenSCAP
   attach_function :xccdf_benchmark_import_source, [:pointer], :pointer
   attach_function :xccdf_benchmark_free, [:pointer], :void
 
+  attach_function :xccdf_benchmark_get_status_current, [:pointer], :pointer
+  attach_function :xccdf_benchmark_get_resolved, [:pointer], :pointer
   attach_function :xccdf_benchmark_get_profiles, [:pointer], :pointer
   attach_function :xccdf_profile_iterator_has_more, [:pointer], :bool
   attach_function :xccdf_profile_iterator_next, [:pointer], :pointer
   attach_function :xccdf_profile_iterator_free, [:pointer], :void
+  attach_function :xccdf_benchmark_get_values, [:pointer], :pointer
+  attach_function :xccdf_value_iterator_has_more, [:pointer], :bool
+  attach_function :xccdf_value_iterator_next, [:pointer], :pointer
+  attach_function :xccdf_value_iterator_free, [:pointer], :void
+
+  attach_function :xccdf_benchmark_get_schema_version, [:pointer], :pointer
+  attach_function :xccdf_version_info_get_version, [:pointer], :string
 end
+
+require_relative 'policy_model'

data/lib/openscap/xccdf/fix.rb

@@ -3,37 +3,30 @@
 module OpenSCAP
   module Xccdf
     class Fix
-      def initialize(raw)
-        raise OpenSCAP::OpenSCAPError, "Cannot initialize #{self.class.name} with '#{raw}'" \
-          unless raw.is_a?(FFI::Pointer)
+      def initialize raw
+        raise OpenSCAP::OpenSCAPError, "Cannot initialize #{self.class.name} with '#{raw}'" unless raw.is_a? FFI::Pointer
 
         @raw = raw
       end
 
       def id
-        OpenSCAP.xccdf_fix_get_id(@raw)
+        OpenSCAP.xccdf_fix_get_id @raw
       end
 
       def platform
-        OpenSCAP.xccdf_fix_get_platform(@raw)
+        OpenSCAP.xccdf_fix_get_platform @raw
       end
 
-      # system is a reserved word in Rails, so didn't use it
       def fix_system
-        OpenSCAP.xccdf_fix_get_system(@raw)
+        OpenSCAP.xccdf_fix_get_system @raw
       end
 
       def content
-        OpenSCAP.xccdf_fix_get_content(@raw)
+        OpenSCAP.xccdf_fix_get_content @raw
       end
 
       def to_hash
-        {
-          :id => id,
-          :platform => platform,
-          :system => fix_system,
-          :content => content
-        }
+        { id:, platform:, system: fix_system, content: }
       end
     end
   end

data/lib/openscap/xccdf/fixtext.rb

@@ -0,0 +1,19 @@
+# frozen_string_literal: true
+
+module OpenSCAP
+  module Xccdf
+    class Fixtext
+      def initialize(raw)
+        raise OpenSCAP::OpenSCAPError, "Cannot initialize #{self.class.name} with '#{raw}'" unless raw.is_a?(FFI::Pointer)
+
+        @raw = raw
+      end
+
+      def text
+        Text.new(OpenSCAP.xccdf_fixtext_get_text(@raw)).text
+      end
+    end
+  end
+
+  attach_function :xccdf_fixtext_get_text, [:pointer], :pointer
+end

data/lib/openscap/xccdf/group.rb

@@ -2,11 +2,37 @@
 
 require 'openscap/exceptions'
 require 'openscap/xccdf'
-require 'openscap/xccdf/item'
+require_relative 'item'
 
 module OpenSCAP
   module Xccdf
     class Group < Item
+      def each_child(&)
+        OpenSCAP._iterate over: OpenSCAP.xccdf_item_get_content(@raw), as: 'xccdf_item' do |pointer|
+          yield OpenSCAP::Xccdf::Item.build pointer
+        end
+      end
+
+      def each_value(&)
+        OpenSCAP._iterate over: OpenSCAP.xccdf_group_get_values(@raw), as: 'xccdf_value' do |pointer|
+          yield OpenSCAP::Xccdf::Value.new pointer
+        end
+      end
+
+      def sub_items
+        @sub_items ||= {}.tap do |sub_items|
+          each_child do |item|
+            sub_items.merge! item.sub_items
+            sub_items[item.id] = item
+          end
+        end
+      end
     end
   end
+
+  attach_function :xccdf_item_get_content, [:pointer], :pointer
+  attach_function :xccdf_item_iterator_has_more, [:pointer], :bool
+  attach_function :xccdf_item_iterator_next, [:pointer], :pointer
+  attach_function :xccdf_item_iterator_free, [:pointer], :void
+  attach_function :xccdf_group_get_values, [:pointer], :pointer
 end

data/lib/openscap/xccdf/ident.rb

@@ -3,20 +3,14 @@
 module OpenSCAP
   module Xccdf
     class Ident
-      def initialize(raw)
-        raise OpenSCAP::OpenSCAPError, "Cannot initialize #{self.class.name} with '#{raw}'" \
-          unless raw.is_a?(FFI::Pointer)
+      def initialize raw
+        raise OpenSCAP::OpenSCAPError, "Cannot initialize #{self.class.name} with '#{raw}'" unless raw.is_a?(FFI::Pointer)
 
         @raw = raw
       end
 
-      def system
-        OpenSCAP.xccdf_ident_get_system(@raw)
-      end
-
-      def id
-        OpenSCAP.xccdf_ident_get_id(@raw)
-      end
+      def system = OpenSCAP.xccdf_ident_get_system @raw
+      def id = OpenSCAP.xccdf_ident_get_id @raw
     end
   end
   attach_function :xccdf_ident_get_system, [:pointer], :string

data/lib/openscap/xccdf/item.rb

@@ -2,14 +2,16 @@
 
 require 'openscap/exceptions'
 require 'openscap/text'
-require 'openscap/xccdf/group'
-require 'openscap/xccdf/rule'
-require 'openscap/xccdf/reference'
+require_relative 'item_common'
+require_relative 'group'
+require_relative 'rule'
 
 module OpenSCAP
   module Xccdf
     class Item
-      def self.build(t)
+      include ItemCommon # reflects OpenSCAP's struct xccdf_item (thus operates with Benchmark, Profile, Group, Rule, and Value)
+
+      def self.build t
         raise OpenSCAP::OpenSCAPError, "Cannot initialize #{self.class.name} with #{t}" \
           unless t.is_a?(FFI::Pointer)
 
@@ -24,81 +26,37 @@ module OpenSCAP
         end
       end
 
-      def initialize(t)
-        if self.class == OpenSCAP::Xccdf::Item
-          raise OpenSCAP::OpenSCAPError, "Cannot initialize #{self.class.name} abstract base class."
-        end
+      def initialize t
+        raise OpenSCAP::OpenSCAPError, "Cannot initialize #{self.class.name} abstract base class." if instance_of?(OpenSCAP::Xccdf::Item)
 
         @raw = t
       end
 
-      def id
-        OpenSCAP.xccdf_item_get_id @raw
-      end
-
-      def title(prefered_lang = nil)
-        textlist = OpenSCAP::TextList.new(OpenSCAP.xccdf_item_get_title(@raw))
-        title = textlist.plaintext(prefered_lang)
-        textlist.destroy
-        title
+      def rationale prefered_lang = nil, markup: false
+        TextList.extract(OpenSCAP.xccdf_item_get_rationale(@raw), lang: prefered_lang, markup:)
       end
 
-      def description(prefered_lang = nil)
-        textlist = OpenSCAP::TextList.new(OpenSCAP.xccdf_item_get_description(@raw))
-        description = textlist.plaintext(prefered_lang)
-        textlist.destroy
-        description
-      end
-
-      def rationale(prefered_lang = nil)
-        textlist = OpenSCAP::TextList.new(OpenSCAP.xccdf_item_get_rationale(@raw))
-        rationale = textlist.plaintext(prefered_lang)
-        textlist.destroy
-        rationale
-      end
-
-      def references
-        refs = []
-        refs_it = OpenSCAP.xccdf_item_get_references(@raw)
-        while OpenSCAP.oscap_reference_iterator_has_more refs_it
-          ref = OpenSCAP::Xccdf::Reference.new(OpenSCAP.oscap_reference_iterator_next(refs_it))
-          refs << ref
+      def warnings
+        @warnings ||= [].tap do |warns|
+          OpenSCAP._iterate over: OpenSCAP.xccdf_item_get_warnings(@raw), as: 'xccdf_warning' do |pointer|
+            warns << {
+              category: OpenSCAP.xccdf_warning_get_category(pointer),
+              text: Text.new(OpenSCAP.xccdf_warning_get_text(pointer))
+            }
+          end
         end
-        OpenSCAP.oscap_reference_iterator_free refs_it
-        refs
       end
 
-      def sub_items
-        @sub_items ||= sub_items_init
-      end
+      def sub_items = {}
 
       def destroy
         OpenSCAP.xccdf_item_free @raw
         @raw = nil
       end
-
-      private
-
-      def sub_items_init
-        collect = {}
-        items_it = OpenSCAP.xccdf_item_get_content @raw
-        while OpenSCAP.xccdf_item_iterator_has_more items_it
-          item_p = OpenSCAP.xccdf_item_iterator_next items_it
-          item = OpenSCAP::Xccdf::Item.build item_p
-          collect.merge! item.sub_items
-          collect[item.id] = item
-        end
-        OpenSCAP.xccdf_item_iterator_free items_it
-        collect
-      end
     end
   end
 
-  attach_function :xccdf_item_get_id, [:pointer], :string
-  attach_function :xccdf_item_get_content, [:pointer], :pointer
   attach_function :xccdf_item_free, [:pointer], :void
-  attach_function :xccdf_item_get_title, [:pointer], :pointer
-  attach_function :xccdf_item_get_description, [:pointer], :pointer
   attach_function :xccdf_item_get_rationale, [:pointer], :pointer
 
   XccdfItemType = enum(:benchmark, 0x0100,
@@ -109,11 +67,25 @@ module OpenSCAP
                        :value, 0x4000)
   attach_function :xccdf_item_get_type, [:pointer], XccdfItemType
 
-  attach_function :xccdf_item_iterator_has_more, [:pointer], :bool
-  attach_function :xccdf_item_iterator_next, [:pointer], :pointer
-  attach_function :xccdf_item_iterator_free, [:pointer], :void
+  enum :xccdf_warning_category_t, [
+    :not_specified, # empty value
+    :general, # General-purpose warning
+    :functionality, # Warning about possible impacts to functionality
+    :performance, # Warning about changes to target system performance
+    :hardware, # Warning about hardware restrictions or possible impacts to hardware
+    :legal, # Warning about legal implications
+    :regulatory,	# Warning about regulatory obligations
+    :management, # Warning about impacts to the mgmt or administration of the target system
+    :audit, # Warning about impacts to audit or logging
+    :dependency # Warning about dependencies between this Rule and other parts of the target system
+  ]
+  attach_function :xccdf_item_get_warnings, [:pointer], :pointer
+  attach_function :xccdf_warning_iterator_has_more, [:pointer], :bool
+  attach_function :xccdf_warning_iterator_next, [:pointer], :pointer
+  attach_function :xccdf_warning_iterator_free, [:pointer], :void
+  attach_function :xccdf_warning_get_category, [:pointer], :xccdf_warning_category_t
+  attach_function :xccdf_warning_get_text, [:pointer], :pointer
 
-  attach_function :xccdf_item_get_references, [:pointer], :pointer
   attach_function :oscap_reference_iterator_has_more, [:pointer], :bool
   attach_function :oscap_reference_iterator_next, [:pointer], :pointer
   attach_function :oscap_reference_iterator_free, [:pointer], :void