FHS: Check for correct location and permission of shared objects

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>

diff --git a/src/libpakfire/fhs.c b/src/libpakfire/fhs.c
index c8f8b48e5cdc08e5a871078e2a29269c604886e5..4a84b677fd3b6b1f177fb03806c6dba2e6f506f0 100644 (file)
--- a/src/libpakfire/fhs.c
+++ b/src/libpakfire/fhs.c
@@ -65,6 +65,13 @@ static const struct pakfire_fhs_check {
        { "/usr/bin/*",           S_IFREG, 0755, "root", "root", 0 },
        { "/usr/sbin/*",          S_IFREG, 0755, "root", "root", 0 },
 
+       // Shared Libraries must be executable
+       { "/usr/lib64/*.so.*",    S_IFREG, 0755, "root", "root", 0 },
+       { "/usr/lib64/**/*.so",   S_IFREG, 0755, "root", "root", 0 },
+
+       // Shared Libraries must not exist in /usr/lib
+       { "/usr/lib/*.so*",       S_IFREG,    0,   NULL,   NULL, PAKFIRE_FHS_MUSTNOTEXIST },
+
        // /usr/include: Ensure that:
        //   * All files are non-executable and belong to root
        //   * All directories have 0755 and belong to root