[gentoo-commits] repo/gentoo:master commit in: sys-fs/fuse-common/files/, sys-fs/fuse-common/

Wed, 17 Dec 2025 09:50:33 -0800 

commit:     50c6d383bf6f600c33fdf9bcf64fa932752cae11
Author:     Michał Górny <mgorny <AT> gentoo <DOT> org>
AuthorDate: Sat Dec 13 19:15:07 2025 +0000
Commit:     Michał Górny <mgorny <AT> gentoo <DOT> org>
CommitDate: Wed Dec 17 17:47:47 2025 +0000
URL:        https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=50c6d383

sys-fs/fuse-common: Grant /dev/cuse access to cuse group

Install rules to grant cuse group permissions to /dev/use.  Unlike
/dev/fuse, we don't want this device to be world-accessible because of
potential security concerns, starting with the fact that CUSE is not
widely tested, and ending with CVE-2016-1233 which indicates that
programs using CUSE can modify memory of processes opening CUSE devices.

Bug: https://bugs.gentoo.org/967033
Signed-off-by: Michał Górny <mgorny <AT> gentoo.org>
Part-of: https://codeberg.org/gentoo/gentoo/pulls/2
Signed-off-by: Michał Górny <mgorny <AT> gentoo.org>

 sys-fs/fuse-common/files/99-cuse.rules          |  1 +
 sys-fs/fuse-common/fuse-common-3.10.4-r1.ebuild | 36 +++++++++++++++++++++++++
 2 files changed, 37 insertions(+)

diff --git a/sys-fs/fuse-common/files/99-cuse.rules 
b/sys-fs/fuse-common/files/99-cuse.rules
new file mode 100644
index 000000000000..7ef4a5bdacc9
--- /dev/null
+++ b/sys-fs/fuse-common/files/99-cuse.rules
@@ -0,0 +1 @@
+KERNEL=="cuse", GROUP="cuse"

diff --git a/sys-fs/fuse-common/fuse-common-3.10.4-r1.ebuild 
b/sys-fs/fuse-common/fuse-common-3.10.4-r1.ebuild
new file mode 100644
index 000000000000..a95ac810dca2
--- /dev/null
+++ b/sys-fs/fuse-common/fuse-common-3.10.4-r1.ebuild
@@ -0,0 +1,36 @@
+# Copyright 1999-2025 Gentoo Authors
+# Distributed under the terms of the GNU General Public License v2
+
+EAPI=8
+
+inherit udev
+
+MY_P=fuse-${PV}
+DESCRIPTION="Common files for multiple slots of sys-fs/fuse"
+HOMEPAGE="https://github.com/libfuse/libfuse";
+SRC_URI="https://github.com/libfuse/libfuse/releases/download/${MY_P}/${MY_P}.tar.xz";
+S=${WORKDIR}/${MY_P}
+
+LICENSE="GPL-2 LGPL-2.1"
+SLOT="0"
+KEYWORDS="~alpha ~amd64 ~arm ~arm64 ~hppa ~loong ~m68k ~mips ~ppc ~ppc64 
~riscv ~s390 ~sparc ~x86"
+
+BDEPEND="virtual/pkgconfig"
+RDEPEND="
+       acct-group/cuse
+       !<sys-fs/fuse-2.9.7-r1:0
+"
+
+src_install() {
+       udev_newrules util/udev.rules 99-fuse.rules
+       udev_dorules "${FILESDIR}"/99-cuse.rules
+
+       if use kernel_linux ; then
+               newinitd "${FILESDIR}"/fuse.init fuse
+       else
+               die "We don't know what init code install for your kernel, 
please file a bug."
+       fi
+
+       insinto /etc
+       doins util/fuse.conf
+}

Reply via email to