From b3c8a073df98bcce599788694752419ae8a1f787 Mon Sep 17 00:00:00 2001
From: Michael Tremer <michael.tremer@ipfire.org>
Date: Fri, 17 Mar 2023 10:23:51 +0000
Subject: [PATCH] FHS: Do not allow any more files in /usr and /usr/src

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
---
 src/libpakfire/fhs.c | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/src/libpakfire/fhs.c b/src/libpakfire/fhs.c
index 4b4d3203..979bca7a 100644
--- a/src/libpakfire/fhs.c
+++ b/src/libpakfire/fhs.c
@@ -51,6 +51,10 @@ static const struct pakfire_fhs_check {
 	{ "/usr/share",   0, S_IFDIR|0755, "root", "root" },
 	{ "/usr/src",     0, S_IFDIR|0755, "root", "root" },
 
+	// Allow no further files in /usr & /usr/src
+	{ "/usr/*",       PAKFIRE_FHS_MUSTNOTEXIST, 0, NULL, NULL },
+	{ "/usr/src/**",  PAKFIRE_FHS_MUSTNOTEXIST, 0, NULL, NULL },
+
 	// /var
 	{ "/var",         0, S_IFDIR|0755, "root", "root" },
 	{ "/var/cache",   0, S_IFDIR|0755, "root", "root" },
-- 
2.47.3