From 02fb066fa4c073e22d56b51ad7ee76956fad1f22 Mon Sep 17 00:00:00 2001
From: Eduardo Barretto <eduardo.barretto@canonical.com>
Date: Thu, 10 Feb 2022 15:30:37 +0100
Subject: [PATCH] Add missing_file_pass to owner/group-owner rules

With commit fe36b355 file_groupowner and file_owner started to filter/
exclude symlinks. Unfortunately the rules touched here, have some main
paths that are actually a symlink (e.g. /lib64 on Ubuntu) and the filter
together with the all_exist rule in their OVAL, make the rule evaluation
to fail. By adding missing_file_pass, we change it to any_exist.
---
 .../dir_group_ownership_library_dirs/rule.yml                    | 1 +
 .../dir_groupownership_binary_dirs/rule.yml                      | 1 +
 .../dir_ownership_binary_dirs/rule.yml                           | 1 +
 .../dir_ownership_library_dirs/rule.yml                          | 1 +
 .../file_ownership_library_dirs/rule.yml                         | 1 +
 .../root_permissions_syslibrary_files/rule.yml                   | 1 +
 6 files changed, 6 insertions(+)

diff --git a/linux_os/guide/system/permissions/files/permissions_within_important_dirs/dir_group_ownership_library_dirs/rule.yml b/linux_os/guide/system/permissions/files/permissions_within_important_dirs/dir_group_ownership_library_dirs/rule.yml
index 3a6167a57177..a0f0446adeb0 100644
--- a/linux_os/guide/system/permissions/files/permissions_within_important_dirs/dir_group_ownership_library_dirs/rule.yml
+++ b/linux_os/guide/system/permissions/files/permissions_within_important_dirs/dir_group_ownership_library_dirs/rule.yml
@@ -66,3 +66,4 @@ template:
             - /usr/lib64/
         recursive: 'true'
         filegid: '0'
+        missing_file_pass: 'true'
diff --git a/linux_os/guide/system/permissions/files/permissions_within_important_dirs/dir_groupownership_binary_dirs/rule.yml b/linux_os/guide/system/permissions/files/permissions_within_important_dirs/dir_groupownership_binary_dirs/rule.yml
index 655b2cd1aef7..55c028a2624b 100644
--- a/linux_os/guide/system/permissions/files/permissions_within_important_dirs/dir_groupownership_binary_dirs/rule.yml
+++ b/linux_os/guide/system/permissions/files/permissions_within_important_dirs/dir_groupownership_binary_dirs/rule.yml
@@ -63,3 +63,4 @@ template:
             - /usr/local/sbin/
         recursive: 'true'
         filegid: '0'
+        missing_file_pass: 'true'
diff --git a/linux_os/guide/system/permissions/files/permissions_within_important_dirs/dir_ownership_binary_dirs/rule.yml b/linux_os/guide/system/permissions/files/permissions_within_important_dirs/dir_ownership_binary_dirs/rule.yml
index ba923d8ac557..4d25ab5f2056 100644
--- a/linux_os/guide/system/permissions/files/permissions_within_important_dirs/dir_ownership_binary_dirs/rule.yml
+++ b/linux_os/guide/system/permissions/files/permissions_within_important_dirs/dir_ownership_binary_dirs/rule.yml
@@ -53,3 +53,4 @@ template:
             - /usr/local/sbin/
         recursive: 'true'
         fileuid: '0'
+        missing_file_pass: 'true'
diff --git a/linux_os/guide/system/permissions/files/permissions_within_important_dirs/dir_ownership_library_dirs/rule.yml b/linux_os/guide/system/permissions/files/permissions_within_important_dirs/dir_ownership_library_dirs/rule.yml
index f0781b307b35..ff88b1a445e0 100644
--- a/linux_os/guide/system/permissions/files/permissions_within_important_dirs/dir_ownership_library_dirs/rule.yml
+++ b/linux_os/guide/system/permissions/files/permissions_within_important_dirs/dir_ownership_library_dirs/rule.yml
@@ -63,3 +63,4 @@ template:
             - /usr/lib64/
         recursive: 'true'
         fileuid: '0'
+        missing_file_pass: 'true'
diff --git a/linux_os/guide/system/permissions/files/permissions_within_important_dirs/file_ownership_library_dirs/rule.yml b/linux_os/guide/system/permissions/files/permissions_within_important_dirs/file_ownership_library_dirs/rule.yml
index b6bc18e8310f..0472565fb681 100644
--- a/linux_os/guide/system/permissions/files/permissions_within_important_dirs/file_ownership_library_dirs/rule.yml
+++ b/linux_os/guide/system/permissions/files/permissions_within_important_dirs/file_ownership_library_dirs/rule.yml
@@ -71,3 +71,4 @@ template:
             - /usr/lib64/
         file_regex: ^.*$
         fileuid: '0'
+        missing_file_pass: 'true'
diff --git a/linux_os/guide/system/permissions/files/permissions_within_important_dirs/root_permissions_syslibrary_files/rule.yml b/linux_os/guide/system/permissions/files/permissions_within_important_dirs/root_permissions_syslibrary_files/rule.yml
index ec135b5279c4..0c5565bc02a8 100644
--- a/linux_os/guide/system/permissions/files/permissions_within_important_dirs/root_permissions_syslibrary_files/rule.yml
+++ b/linux_os/guide/system/permissions/files/permissions_within_important_dirs/root_permissions_syslibrary_files/rule.yml
@@ -71,3 +71,4 @@ template:
             - /usr/lib64/
         file_regex: ^.*$
         filegid: '0'
+        missing_file_pass: 'true'