From b5416a4f7850add14000c5e5ba26ca69d469926b Mon Sep 17 00:00:00 2001 From: Michael Tremer Date: Fri, 17 Mar 2023 10:53:50 +0000 Subject: [PATCH] FHS: Check permissions of files in /usr/include Signed-off-by: Michael Tremer --- src/libpakfire/fhs.c | 6 ++++++ 1 file changed, 6 insertions(+) diff --git a/src/libpakfire/fhs.c b/src/libpakfire/fhs.c index bf4ad3e8..a4352a65 100644 --- a/src/libpakfire/fhs.c +++ b/src/libpakfire/fhs.c @@ -64,6 +64,12 @@ static const struct pakfire_fhs_check { { "/usr/bin/*", S_IFREG, 0, 0755, "root", "root" }, { "/usr/sbin/*", S_IFREG, 0, 0755, "root", "root" }, + // /usr/include: Ensure that: + // * All files are non-executable and belong to root + // * All directories have 0755 and belong to root + { "/usr/include/**", S_IFREG, 0, 0644, "root", "root" }, + { "/usr/include/**", S_IFDIR, 0, 0755, "root", "root" }, + // /var { "/var", S_IFDIR, 0, 0755, "root", "root" }, { "/var/cache", S_IFDIR, 0, 0755, "root", "root" }, -- 2.47.3