Enhance OVAL check for applicability in bootc env

[vojtapolasek]

Description:

• check also for presence of /run/ostree-booted file
• I made modifications to both OVAL files - one in shared/applicability/oval, another in shared/checks/oval, I am not sure when the shared/checks/oval/bootc.xml is used, but I think it is a good idea to keep them in sync

Rationale:

• current conditions can be quite easily met by regular OS not actually running from ostree, just by installing / removing appropriate packages

• this PR makes the applicability stricter, although not bulletproof

• Fixes Bootc detection easily matches non-bootc systems #13990

Review Hints:

Build content not including this PR:

1. Run a RHEL VM, install rpm-ostree, bootc
2. oscap xccdf eval --profile stig --rule xccdf_org.ssgproject.content_rule_enable_dracut_fips_module ssg-rhel9-ds.xml

This should result in "not applicable", although it should be applicable.

Build the content with this PR and repeat steps above.

The result will be probably "fail", but definitely not "not applicable".

[vojtapolasek]

I added the Bash and Ansible conditional. Both confirmed with SMEs and also manually checked on regular vs bootc system. They work.

[openshift-ci]

@vojtapolasek: The following tests failed, say /retest to rerun all failed tests or /retest-required to rerun all mandatory failed tests:

Test name	Commit	Details	Required	Rerun command
ci/prow/e2e-aws-openshift-platform-compliance	117421d	link	true	/test e2e-aws-openshift-platform-compliance
ci/prow/e2e-aws-openshift-node-compliance	117421d	link	true	/test e2e-aws-openshift-node-compliance

Full PR test history. Your PR dashboard.

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository. I understand the commands that are listed here.

[comps]

LGTM. Per my testing, it does seem to fix #13990 filed by me.