On 2024-03-30 09:12, Neal Gompa wrote:
Note that dlopen() doesn't fix the problem of the giant
libsystemd in
the first place. It just obfuscates the true dependency graph of
libsystemd.
This isn't my area of expertise, but I am curious:
Why doesn't dlopen() solve the problem? As best I understand it,
liblzma was able to steal one (or more) of the symbols from
libcrypto.so.3 because it ran constructors at a point in time when the
GOT was still writable. After loading shared objects is complete, that
table is made read-only. If dlopen() is used after the program starts,
then even if the library is loaded, it can't steal symbols in the table
any more.
Or do I misunderstand this entirely?