Stephen Gran <[EMAIL PROTECTED]> writes:
> I have pointed one of the upstream developers at your patches and
> asked for comment. What I have heard back so far is that they look
> ok to the person I pointed them to, but he will need to discuss with
> the project lead before adding dlopen() to the infrastructure, since
> that has been explicitly avoided in the past.
Have they decided anything yet?
Even if dlopen() has been avoided in the past, there is a comment in
libclamunrar_iface/unrar_iface.c that hints to an implementation
similar to the one I provided:
/* TODO: Add support for dlopen()&Co. */
Are you aware of any reason why they are so reluctant to use dlopen()?
If neither upstream nor you decide to include the patch, Debian will
end up distributing clamav packages that give users a false sense of
security by the time 0.94 is released because RAR archives would be
flagged okay, egardless of their contents. (This is already the case
today for RAR archives with self-extraction code and for RAR archives
that have been given wrong extensions that would be handled just fine
on Windows clients with WinZip installed.)
As Torsten and I use clamav at work, we have essentially two options:
Either recompile the clamav packages or contribute to a solution that
is useful for other users. Both options mean about the same amount of
work for us in the long run and we are well capable of maintaining the
patch I posted.
Cheers,
-Hilko
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
