From mboxrd@z Thu Jan  1 00:00:00 1970
Path: news.gmane.org!not-for-mail
From: Bob Friesenhahn <bfriesen@simple.dallas.tx.us>
Newsgroups: gmane.lisp.guile.bugs,gmane.comp.gnu.libtool.bugs
Subject: Re: Mac OS X .dylib not working
Date: Thu, 3 Mar 2011 21:00:03 -0600 (CST)
Message-ID: <alpine.GSO.2.01.1103032045000.15305@freddy.simplesystems.org>
References: <AA43950B-8D76-4B05-B65F-7925BF94F493@telia.com>
NNTP-Posting-Host: lo.gmane.org
Mime-Version: 1.0
Content-Type: MULTIPART/MIXED;
	BOUNDARY="-559023410-761355704-1299207603=:15305"
X-Trace: dough.gmane.org 1299207627 16298 80.91.229.12 (4 Mar 2011 03:00:27 GMT)
X-Complaints-To: usenet@dough.gmane.org
NNTP-Posting-Date: Fri, 4 Mar 2011 03:00:27 +0000 (UTC)
Cc: Guile bug <bug-guile@gnu.org>,
	=?ISO-8859-15?Q?Ludovic_Court=E8s?= <ludo@gnu.org>, bug-libtool@gnu.org
To: =?ISO-8859-15?Q?Hans_=C5berg?= <hans.aberg-1@telia.com>
Original-X-From: bug-guile-bounces+guile-bugs=m.gmane.org@gnu.org Fri Mar 04 04:00:22 2011
Return-path: <bug-guile-bounces+guile-bugs=m.gmane.org@gnu.org>
Envelope-to: guile-bugs@m.gmane.org
Original-Received: from lists.gnu.org ([199.232.76.165])
	by lo.gmane.org with esmtp (Exim 4.69)
	(envelope-from <bug-guile-bounces+guile-bugs=m.gmane.org@gnu.org>)
	id 1PvLFb-0007qI-FT
	for guile-bugs@m.gmane.org; Fri, 04 Mar 2011 04:00:22 +0100
Original-Received: from localhost ([127.0.0.1]:44312 helo=lists.gnu.org)
	by lists.gnu.org with esmtp (Exim 4.43)
	id 1PvLFW-0005Dq-Qo
	for guile-bugs@m.gmane.org; Thu, 03 Mar 2011 22:00:14 -0500
Original-Received: from [140.186.70.92] (port=57326 helo=eggs.gnu.org)
	by lists.gnu.org with esmtp (Exim 4.43) id 1PvLFQ-0005Df-Jk
	for bug-guile@gnu.org; Thu, 03 Mar 2011 22:00:09 -0500
Original-Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71)
	(envelope-from <bfriesen@simple.dallas.tx.us>) id 1PvLFP-0004tg-H4
	for bug-guile@gnu.org; Thu, 03 Mar 2011 22:00:08 -0500
Original-Received: from blade.simplesystems.org ([65.66.246.74]:47760)
	by eggs.gnu.org with esmtp (Exim 4.71)
	(envelope-from <bfriesen@simple.dallas.tx.us>)
	id 1PvLFN-0004tD-BS; Thu, 03 Mar 2011 22:00:05 -0500
Original-Received: from freddy.simplesystems.org (freddy.simplesystems.org
	[65.66.246.65])
	by blade.simplesystems.org (8.14.4+Sun/8.14.4) with ESMTP id
	p24303bN009750; Thu, 3 Mar 2011 21:00:03 -0600 (CST)
X-X-Sender: bfriesen@freddy.simplesystems.org
In-Reply-To: <AA43950B-8D76-4B05-B65F-7925BF94F493@telia.com>
User-Agent: Alpine 2.01 (GSO 1266 2009-07-14)
X-Greylist: Sender IP whitelisted, not delayed by milter-greylist-4.2.2
	(blade.simplesystems.org [65.66.246.90]);
	Thu, 03 Mar 2011 21:00:03 -0600 (CST)
X-detected-operating-system: by eggs.gnu.org: Solaris 10 (beta)
X-Received-From: 65.66.246.74
X-BeenThere: bug-guile@gnu.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: "Bug reports for GUILE,
	GNU's Ubiquitous Extension Language" <bug-guile.gnu.org>
List-Unsubscribe: <http://lists.gnu.org/mailman/listinfo/bug-guile>,
	<mailto:bug-guile-request@gnu.org?subject=unsubscribe>
List-Archive: <http://lists.gnu.org/archive/html/bug-guile>
List-Post: <mailto:bug-guile@gnu.org>
List-Help: <mailto:bug-guile-request@gnu.org?subject=help>
List-Subscribe: <http://lists.gnu.org/mailman/listinfo/bug-guile>,
	<mailto:bug-guile-request@gnu.org?subject=subscribe>
Original-Sender: bug-guile-bounces+guile-bugs=m.gmane.org@gnu.org
Errors-To: bug-guile-bounces+guile-bugs=m.gmane.org@gnu.org
Xref: news.gmane.org gmane.lisp.guile.bugs:5274 gmane.comp.gnu.libtool.bugs:7713
Archived-At: <http://permalink.gmane.org/gmane.lisp.guile.bugs/5274>

  This message is in MIME format.  The first part should be readable text,
  while the remaining parts are likely unreadable without MIME-aware tools.

---559023410-761355704-1299207603=:15305
Content-Type: TEXT/PLAIN; charset=ISO-8859-15; format=flowed
Content-Transfer-Encoding: quoted-printable
X-MIME-Autoconverted: from 8bit to quoted-printable by blade.simplesystems.org id p24303bN009750

On Thu, 3 Mar 2011, Hans =C5berg wrote:
> So guile-2.0.0 using libltdl.7.dylib of libtool-2.4, can on Mac OS X=20
> 10.6.6 only open a dynamic library if the name of what it actually=20
> opens ends in .so (say by making a soft link using 'ln -s'); if it=20
> ends in .dylib, it cannot open it, even if the full name is given.
>
> See
>  http://lists.gnu.org/archive/html/bug-guile/2011-03/msg00008.html
>  http://lists.gnu.org/archive/html/guile-devel/2011-03/msg00021.html

Are you sure that libltdl from libtool-2.4 is being used?  The dtruss=20
trace (from Michael Ellis) at=20
http://lists.gnu.org/archive/html/bug-guile/2011-03/msg00020.html=20
shows insecure accesses more like I would expect from a libtool=20
version suffering from CVE-2009-3736, which is very dangerous under OS=20
X.  See

   http://cve.mitre.org/cgi-bin/cvename.cgi?name=3DCVE-2009-3736

The recommended portable way to load modules is via a libtool module=20
.la file.  It is also recommended to load modules via a full path=20
rather than via a search path because the search path might not be as=20
secure and predicable as you might like.

Bob
--=20
Bob Friesenhahn
bfriesen@simple.dallas.tx.us, http://www.simplesystems.org/users/bfriesen=
/
GraphicsMagick Maintainer,    http://www.GraphicsMagick.org/
---559023410-761355704-1299207603=:15305--