Blame SOURCES/scap-security-guide-0.1.58-add_rhel_minor_check-PR_7251.patch

9be3b2
From b814fc94d0fb360ef53a6b735e9520df5b484589 Mon Sep 17 00:00:00 2001
9be3b2
From: Matthew Burket <mburket@redhat.com>
9be3b2
Date: Wed, 14 Jul 2021 12:52:13 -0500
9be3b2
Subject: [PATCH 1/3] Add Jinja-based RHEL 8 minor check
9be3b2
9be3b2
---
9be3b2
 shared/checks/oval/installed_OS_is_rhel8.xml | 29 ++++++++++++++++++++
9be3b2
 1 file changed, 29 insertions(+)
9be3b2
9be3b2
diff --git a/shared/checks/oval/installed_OS_is_rhel8.xml b/shared/checks/oval/installed_OS_is_rhel8.xml
9be3b2
index a9699411ce7..fdd3c870d43 100644
9be3b2
--- a/shared/checks/oval/installed_OS_is_rhel8.xml
9be3b2
+++ b/shared/checks/oval/installed_OS_is_rhel8.xml
9be3b2
@@ -44,6 +44,35 @@
9be3b2
     <linux:name>redhat-release</linux:name>
9be3b2
   </linux:rpminfo_object>
9be3b2
 
9be3b2
+  {{% for minorversion in range(0, 9) %}}
9be3b2
+  <definition class="inventory" id="installed_OS_is_rhel8_{{{ minorversion }}}" version="1">
9be3b2
+    <metadata>
9be3b2
+      <title>Red Hat Enterprise Linux 8.{{{ minorversion }}}</title>
9be3b2
+      <affected family="unix">
9be3b2
+        <platform>Red Hat Enterprise Linux 8.{{{ minorversion }}}</platform>
9be3b2
+      </affected>
9be3b2
+      <reference ref_id="cpe:/o:redhat:enterprise_linux:8.{{{ minorversion }}}" source="CPE" />
9be3b2
+      <description>The operating system installed on the system is Red Hat Enterprise Linux 8.{{{  minorversion}}}</description>
9be3b2
+    </metadata>
9be3b2
+  </definition>
9be3b2
+
9be3b2
+  <criteria>
9be3b2
+    <criterion comment="RHEL.{{{ minorversion }}} 8 is installed" test_ref="test_rhel8_{{{ minorversion }}}" />
9be3b2
+  </criteria>
9be3b2
+
9be3b2
+  
9be3b2
+   id="test_rhel8_{{{ minorversion }}}" version="1">
9be3b2
+    <linux:object object_ref="obj_rhel8_{{{ minorversion }}}" />
9be3b2
+    <linux:state state_ref="state_rhel8_{{{ minorversion }}}" />
9be3b2
+  </linux:rpminfo_test>
9be3b2
+  <linux:rpminfo_state id="state_rhel8_{{{ minorversion }}}" version="1">
9be3b2
+    <linux:version operation="pattern match">^8.{{{ minorversion }}}*$</linux:version>
9be3b2
+  </linux:rpminfo_state>
9be3b2
+  <linux:rpminfo_object id="obj_rhel8_{{{ minorversion }}}" version="1">
9be3b2
+    <linux:name>redhat-release</linux:name>
9be3b2
+  </linux:rpminfo_object>
9be3b2
+  {{% endfor %}}
9be3b2
+
9be3b2
   <ind:textfilecontent54_test check="all" comment="RHEVH base RHEL is version 8" id="test_rhevh_rhel8_version" version="1">
9be3b2
     <ind:object object_ref="obj_rhevh_rhel8_version" />
9be3b2
     <ind:state state_ref="state_rhevh_rhel8_version" />
9be3b2
9be3b2
From d37d303654be74758c19615ef027b3bafa2d7217 Mon Sep 17 00:00:00 2001
9be3b2
From: Carlos Matos <cmatos@redhat.com>
9be3b2
Date: Wed, 14 Jul 2021 15:30:02 -0400
9be3b2
Subject: [PATCH 2/3] Adding cpe's to product.yml
9be3b2
9be3b2
---
9be3b2
 products/rhel8/product.yml | 45 ++++++++++++++++++++++++++++++++++++++
9be3b2
 1 file changed, 45 insertions(+)
9be3b2
9be3b2
diff --git a/products/rhel8/product.yml b/products/rhel8/product.yml
9be3b2
index 3278207fcb4..14336bfddf1 100644
9be3b2
--- a/products/rhel8/product.yml
9be3b2
+++ b/products/rhel8/product.yml
9be3b2
@@ -27,6 +27,51 @@ cpes:
9be3b2
       title: "Red Hat Enterprise Linux 8"
9be3b2
       check_id: installed_OS_is_rhel8
9be3b2
 
9be3b2
+  - rhel8.0:
9be3b2
+      name: "cpe:/o:redhat:enterprise_linux:8.0"
9be3b2
+      title: "Red Hat Enterprise Linux 8.0"
9be3b2
+      check_id: installed_OS_is_rhel8_0
9be3b2
+
9be3b2
+  - rhel8.1:
9be3b2
+      name: "cpe:/o:redhat:enterprise_linux:8.1"
9be3b2
+      title: "Red Hat Enterprise Linux 8.1"
9be3b2
+      check_id: installed_OS_is_rhel8_1
9be3b2
+
9be3b2
+  - rhel8.2:
9be3b2
+      name: "cpe:/o:redhat:enterprise_linux:8.2"
9be3b2
+      title: "Red Hat Enterprise Linux 8.2"
9be3b2
+      check_id: installed_OS_is_rhel8_2
9be3b2
+
9be3b2
+  - rhel8.3:
9be3b2
+      name: "cpe:/o:redhat:enterprise_linux:8.3"
9be3b2
+      title: "Red Hat Enterprise Linux 8.3"
9be3b2
+      check_id: installed_OS_is_rhel8_3
9be3b2
+
9be3b2
+  - rhel8.4:
9be3b2
+      name: "cpe:/o:redhat:enterprise_linux:8.4"
9be3b2
+      title: "Red Hat Enterprise Linux 8.4"
9be3b2
+      check_id: installed_OS_is_rhel8_4
9be3b2
+
9be3b2
+  - rhel8.5:
9be3b2
+      name: "cpe:/o:redhat:enterprise_linux:8.5"
9be3b2
+      title: "Red Hat Enterprise Linux 8.5"
9be3b2
+      check_id: installed_OS_is_rhel8_5
9be3b2
+
9be3b2
+  - rhel8.6:
9be3b2
+      name: "cpe:/o:redhat:enterprise_linux:8.6"
9be3b2
+      title: "Red Hat Enterprise Linux 8.6"
9be3b2
+      check_id: installed_OS_is_rhel8_6
9be3b2
+
9be3b2
+  - rhel8.7:
9be3b2
+      name: "cpe:/o:redhat:enterprise_linux:8.7"
9be3b2
+      title: "Red Hat Enterprise Linux 8.7"
9be3b2
+      check_id: installed_OS_is_rhel8_7
9be3b2
+
9be3b2
+  - rhel8.8:
9be3b2
+      name: "cpe:/o:redhat:enterprise_linux:8.8"
9be3b2
+      title: "Red Hat Enterprise Linux 8.8"
9be3b2
+      check_id: installed_OS_is_rhel8_8
9be3b2
+
9be3b2
 # Mapping of CPE platform to package
9be3b2
 platform_package_overrides:
9be3b2
   login_defs: "shadow-utils"
9be3b2
9be3b2
From c4e4fd7b0449ba4655020fc0dc99ae3c4523b8cc Mon Sep 17 00:00:00 2001
9be3b2
From: Matthew Burket <mburket@redhat.com>
9be3b2
Date: Mon, 19 Jul 2021 08:12:34 -0500
9be3b2
Subject: [PATCH 3/3] Add checks to go up to RHEL 8.10
9be3b2
9be3b2
This also makes the checks work.
9be3b2
---
9be3b2
 products/rhel8/product.yml                   | 10 ++++++++++
9be3b2
 shared/checks/oval/installed_OS_is_rhel8.xml | 10 +++++-----
9be3b2
 2 files changed, 15 insertions(+), 5 deletions(-)
9be3b2
9be3b2
diff --git a/products/rhel8/product.yml b/products/rhel8/product.yml
9be3b2
index 14336bfddf1..78c987b2457 100644
9be3b2
--- a/products/rhel8/product.yml
9be3b2
+++ b/products/rhel8/product.yml
9be3b2
@@ -72,6 +72,16 @@ cpes:
9be3b2
       title: "Red Hat Enterprise Linux 8.8"
9be3b2
       check_id: installed_OS_is_rhel8_8
9be3b2
 
9be3b2
+  - rhel8.9:
9be3b2
+      name: "cpe:/o:redhat:enterprise_linux:8.9"
9be3b2
+      title: "Red Hat Enterprise Linux 8.9"
9be3b2
+      check_id: installed_OS_is_rhel8_9
9be3b2
+
9be3b2
+  - rhel8.10:
9be3b2
+      name: "cpe:/o:redhat:enterprise_linux:8.10"
9be3b2
+      title: "Red Hat Enterprise Linux 8.10"
9be3b2
+      check_id: installed_OS_is_rhel8_10
9be3b2
+
9be3b2
 # Mapping of CPE platform to package
9be3b2
 platform_package_overrides:
9be3b2
   login_defs: "shadow-utils"
9be3b2
diff --git a/shared/checks/oval/installed_OS_is_rhel8.xml b/shared/checks/oval/installed_OS_is_rhel8.xml
9be3b2
index fdd3c870d43..feab963b941 100644
9be3b2
--- a/shared/checks/oval/installed_OS_is_rhel8.xml
9be3b2
+++ b/shared/checks/oval/installed_OS_is_rhel8.xml
9be3b2
@@ -44,7 +44,7 @@
9be3b2
     <linux:name>redhat-release</linux:name>
9be3b2
   </linux:rpminfo_object>
9be3b2
 
9be3b2
-  {{% for minorversion in range(0, 9) %}}
9be3b2
+  {{% for minorversion in range(0, 11) %}}
9be3b2
   <definition class="inventory" id="installed_OS_is_rhel8_{{{ minorversion }}}" version="1">
9be3b2
     <metadata>
9be3b2
       <title>Red Hat Enterprise Linux 8.{{{ minorversion }}}</title>
9be3b2
@@ -52,13 +52,13 @@
9be3b2
         <platform>Red Hat Enterprise Linux 8.{{{ minorversion }}}</platform>
9be3b2
       </affected>
9be3b2
       <reference ref_id="cpe:/o:redhat:enterprise_linux:8.{{{ minorversion }}}" source="CPE" />
9be3b2
-      <description>The operating system installed on the system is Red Hat Enterprise Linux 8.{{{  minorversion}}}</description>
9be3b2
+      <description>The operating system installed on the system is Red Hat Enterprise Linux 8.{{{ minorversion }}}</description>
9be3b2
     </metadata>
9be3b2
+    <criteria>
9be3b2
+      <criterion comment="RHEL 8.{{{ minorversion }}} is installed" test_ref="test_rhel8_{{{ minorversion }}}" />
9be3b2
+    </criteria>
9be3b2
   </definition>
9be3b2
 
9be3b2
-  <criteria>
9be3b2
-    <criterion comment="RHEL.{{{ minorversion }}} 8 is installed" test_ref="test_rhel8_{{{ minorversion }}}" />
9be3b2
-  </criteria>
9be3b2
 
9be3b2
   
9be3b2
    id="test_rhel8_{{{ minorversion }}}" version="1">