From 532455000aae8b9b1fa6a01975a1478292027d22 Mon Sep 17 00:00:00 2001
From: Stefan Schantl <stefan.schantl@ipfire.org>
Date: Mon, 20 Mar 2023 12:36:51 +0100
Subject: [PATCH] FHS: Drop /usr/bin/su from list of allowed SUID binaries

In the Makefile (util-linx.nm) we specify some capabilities to avoid setting
the suid bit.

Signed-off-by: Stefan Schantl <stefan.schantl@ipfire.org>
---
 src/libpakfire/fhs.c | 1 -
 1 file changed, 1 deletion(-)

diff --git a/src/libpakfire/fhs.c b/src/libpakfire/fhs.c
index f0ddc37c..8e85f29d 100644
--- a/src/libpakfire/fhs.c
+++ b/src/libpakfire/fhs.c
@@ -69,7 +69,6 @@ static const struct pakfire_fhs_check {
 	{ "/usr/bin/ksu",         S_IFREG, S_ISUID|0755, "root", "root", 0 },
 	{ "/usr/bin/passwd",      S_IFREG, S_ISUID|0755, "root", "root", 0 },
 	{ "/usr/bin/pkexec",      S_IFREG, S_ISUID|0755, "root", "root", 0 },
-	{ "/usr/bin/su",          S_IFREG, S_ISUID|0755, "root", "root", 0 },
 	{ "/usr/bin/sudo",        S_IFREG, S_ISUID|0755, "root", "root", 0 },
 
 	// Any files in /usr/{,s}bin must be owned by root and have 0755
-- 
2.47.3