[*] Binary protection state of dbus-daemon
Full RELRO Canary found NX disabled PIE enabled No RPATH No RUNPATH No Symbols
[*] Function printf tear down of dbus-daemon
jalr t9
move a0, s2
bnez v0, 0x16c8c
lw gp, 0x10(sp)
lw t9, -sym.imp._dbus_string_init(gp)
addiu s4, sp, 0x34
move a0, s4
sw zero, 0x2c(sp)
jalr t9
sw zero, 0x30(sp)
beqz v0, 0x16cac
lw gp, 0x10(sp)
lw t9, -sym.imp.dbus_connection_get_unix_user(gp)
addiu a1, sp, 0x24
jalr t9
move a0, s2
bnez v0, 0x16d54
lw gp, 0x10(sp)
lw t9, -sym.imp.dbus_connection_get_unix_process_id(gp)
addiu a1, sp, 0x28
jalr t9
move a0, s2
beqz v0, 0x16e08
lw gp, 0x10(sp)
lw a1, -0x7fc0(gp)
lw t9, -sym.imp._dbus_string_append_printf(gp)
lw a2, 0x28(sp)
addiu a1, a1, 0x66a4
jalr t9
move a0, s4
beqz v0, 0x16da4
lw gp, 0x10(sp)
lw t9, -0x7cc0(gp)
lw a0, 0x28(sp)
move a3, zero
addiu a2, zero, 0x32
bal 0x2cdf0
move a1, s4
lw gp, 0x10(sp)
addiu a1, zero, 0x22
lw t9, -sym.imp._dbus_string_append_byte(gp)
jalr t9
move a0, s4
beqz v0, 0x16da4
lw gp, 0x10(sp)
lw t9, -sym.imp.dbus_connection_get_windows_user(gp)
addiu a1, sp, 0x2c
jalr t9
move a0, s2
beqz v0, 0x16b78
lw gp, 0x10(sp)
lw t9, -sym.imp._dbus_string_append_byte(gp)
addiu a1, zero, 0x20
jalr t9
move a0, s4
beqz v0, 0x16da4
lw gp, 0x10(sp)
lw a1, -0x7fc0(gp)
lw t9, -sym.imp._dbus_string_append_printf(gp)
lw a2, 0x2c(sp)
addiu a1, a1, 0x66bc
jalr t9
move a0, s4
lw gp, 0x10(sp)
lw a0, 0x2c(sp)
lw t9, -0x7a78(gp)
jalr t9
move s5, v0
lw gp, 0x10(sp)
beqz s5, 0x16da4
sw zero, 0x2c(sp)
lw t9, -sym.imp._dbus_connection_get_linux_security_label(gp)
addiu a1, sp, 0x30
jalr t9
move a0, s2
beqz v0, 0x16be0
lw gp, 0x10(sp)
lw t9, -sym.imp._dbus_string_append_byte(gp)
addiu a1, zero, 0x20
jalr t9
move a0, s4
beqz v0, 0x16da4
lw gp, 0x10(sp)
lw a1, -0x7fc0(gp)
lw t9, -sym.imp._dbus_string_append_printf(gp)
lw a2, 0x30(sp)
addiu a1, a1, 0x66c8
jalr t9
move a0, s4
lw gp, 0x10(sp)
lw a0, 0x30(sp)
lw t9, -0x7a78(gp)
jalr t9
move s2, v0
lw gp, 0x10(sp)
beqz s2, 0x16da4
sw zero, 0x30(sp)
lw t9, -sym.imp._dbus_string_steal_data(gp)
addiu a1, s0, 0x30
jalr t9
move a0, s4
beqz v0, 0x16da4
lw gp, 0x10(sp)
lw t9, -sym.imp._dbus_string_free(gp)
jalr t9
--
sw zero, 0x2c(s0)
move v0, zero
lw a0, 0x44(sp)
lw v1, (s1)
bne a0, v1, 0x16e40
lw ra, 0x64(sp)
lw s5, 0x60(sp)
lw s4, 0x5c(sp)
lw s3, 0x58(sp)
lw s2, 0x54(sp)
lw s1, 0x50(sp)
lw s0, 0x4c(sp)
jr ra
addiu sp, sp, 0x68
lw a1, -0x7fc0(gp)
lw t9, -sym.imp.dbus_set_error_const(gp)
lw a2, -obj.bus_no_memory_message(gp)
sw v0, 0x1c(sp)
addiu a1, a1, 0x45a0
jalr t9
move a0, s3
lw gp, 0x10(sp)
b 0x16cfc
lw v0, 0x1c(sp)
lw a1, -0x7fc0(gp)
lw t9, -sym.imp._dbus_string_append_printf(gp)
lw a2, 0x24(sp)
addiu a1, a1, 0x66b4
jalr t9
move a0, s4
beqz v0, 0x16da4
lw gp, 0x10(sp)
lw t9, -sym.imp.dbus_connection_get_unix_process_id(gp)
addiu a1, sp, 0x28
jalr t9
move a0, s2
beqz v0, 0x16b10
lw gp, 0x10(sp)
lw t9, -sym.imp._dbus_string_append_byte(gp)
addiu a1, zero, 0x20
jalr t9
move a0, s4
bnez v0, 0x16abc
lw gp, 0x10(sp)
lw t9, -sym.imp._dbus_string_free(gp)
jalr t9
--
move a2, zero
jalr t9
move a0, s0
lw gp, 0x10(sp)
addiu s6, sp, 0x24
lw v1, -0x7fc0(gp)
lw v0, -0x7fc0(gp)
addiu v1, v1, 0x7244
addiu v0, v0, 0x7248
lw s2, -0x7fc0(gp)
lw s4, -0x7fc0(gp)
movn v0, v1, s3
move s3, v0
addiu s2, s2, 0x724c
b 0x1cc70
addiu s4, s4, 0x7270
lw t9, -sym.imp._dbus_type_reader_get_signature(gp)
move a3, s6
addiu a2, sp, 0x20
addiu a1, sp, 0x1c
jalr t9
move a0, s0
lw gp, 0x10(sp)
move a2, s3
move a1, s2
lw t9, -sym.imp._dbus_string_append_printf(gp)
jalr t9
move a0, s1
beqz v0, 0x1cc8c
lw gp, 0x10(sp)
lw v0, 0x1c(sp)
lw t9, -sym.imp._dbus_string_append_len(gp)
lw a2, 0x24(sp)
lw a1, (v0)
lw v0, 0x20(sp)
move a0, s1
jalr t9
addu a1, a1, v0
beqz v0, 0x1cc8c
lw gp, 0x10(sp)
lw t9, -sym.imp._dbus_string_append(gp)
move a1, s4
jalr t9
move a0, s1
beqz v0, 0x1cc8c
lw gp, 0x10(sp)
--
sw zero, 0x30(sp)
addiu v0, sp, 0x5c
sw v0, 0x2c(sp)
lw v0, -0x7fc0(gp)
addiu s7, sp, 0x58
addiu v0, v0, 0x76ac
sw v0, 0x38(sp)
addiu fp, sp, 0x114
lw s4, 8(s2)
lw s5, 8(s3)
lw t9, -sym.bus_activation_set_environment_variable(gp)
lw a0, 0x34(sp)
move a3, s6
move a2, s5
bal sym.bus_activation_set_environment_variable
move a1, s4
beqz v0, 0x1fa08
lw gp, 0x20(sp)
lw v0, 0x30(sp)
beqz v0, 0x1f73c
lw t9, -sym.imp._dbus_string_init(gp)
jalr t9
lw a0, 0x2c(sp)
beqz v0, 0x1f8f8
lw gp, 0x20(sp)
lw t9, -sym.imp._dbus_string_append_printf(gp)
lw a1, 0x38(sp)
lw a0, 0x2c(sp)
move a3, s5
jalr t9
move a2, s4
beqz v0, 0x1f8f8
lw gp, 0x20(sp)
lw v0, 0x5c(sp)
lw t9, -sym.imp.dbus_message_iter_append_basic(gp)
move a2, s7
addiu a1, zero, 0x73
move a0, fp
jalr t9
sw v0, 0x58(sp)
move s4, fp
beqz v0, 0x1f8fc
lw gp, 0x20(sp)
lw t9, -sym.imp._dbus_string_free(gp)
jalr t9
lw a0, 0x2c(sp)
--
lw a2, (s5)
bnez a2, 0x1fc6c
nop
beqz fp, 0x1fcd0
lw a1, -0x7fc0(gp)
lw t9, -sym.imp.dbus_message_has_path(gp)
addiu a1, a1, 0x7884
jalr t9
move a0, fp
beqz v0, 0x1fe30
lw gp, 0x10(sp)
lw a1, -0x7fc0(gp)
lw t9, -sym.imp._dbus_string_append(gp)
addiu a1, a1, 0x7888
jalr t9
move a0, s1
beqz v0, 0x1fbe8
lw gp, 0x10(sp)
lw a1, -0x7fc0(gp)
lw t9, -sym.imp._dbus_string_append(gp)
addiu a1, a1, 0x7878
jalr t9
move a0, s1
b 0x1fbec
sltu v0, zero, v0
lw t9, -sym.imp._dbus_string_append_printf(gp)
addiu a1, v0, 0x7784
jalr t9
move a0, s1
beqz v0, 0x1fbe8
lw gp, 0x10(sp)
lw s0, 4(s5)
lw a2, (s0)
beqz a2, 0x1fda0
lw s3, -0x7fc0(gp)
lw s4, -0x7fc0(gp)
addiu s3, s3, 0x77a0
b 0x1fd7c
addiu s4, s4, 0x77b8
move t9, s2
bal 0x1cb40
lw a1, 4(s0)
move a2, zero
beqz v0, 0x1fbe8
move a0, s1
addiu s0, s0, 0x14
move t9, s2
bal 0x1cb40
lw a1, -0xc(s0)
lw gp, 0x10(sp)
move a1, s4
move a0, s1
beqz v0, 0x1fbe8
lw t9, -sym.imp._dbus_string_append(gp)
jalr t9
nop
beqz v0, 0x1fbe8
lw gp, 0x10(sp)
lw a2, (s0)
beql a2, zero, 0x1fde8
lw s0, 0x10(s5)
lw t9, -sym.imp._dbus_string_append_printf(gp)
move a0, s1
jalr t9
move a1, s3
addiu a2, zero, 1
bnez v0, 0x1fd24
move a0, s1
b 0x1fbec
move v0, zero
b 0x1fde8
lw s0, 0x10(s5)
beqz a2, 0x1fdf0
lw t9, -sym.imp._dbus_string_append_printf(gp)
lw a3, 4(s0)
move a1, s7
jalr t9
move a0, s1
lw gp, 0x10(sp)
lw a1, 0x18(sp)
move a0, s1
addiu s0, s0, 0xc
beqz v0, 0x1fbe8
lw t9, -sym.imp._dbus_string_append(gp)
jalr t9
nop
beqz v0, 0x1fbe8
lw gp, 0x10(sp)
bnel s0, zero, 0x1fda8
lw a2, (s0)
lw a1, 8(s5)
beqz a1, 0x1fe0c
lw t9, -sym.imp._dbus_string_append(gp)
jalr t9
--
lw t9, -sym.bus_service_get_primary_owners_connection(gp)
bal sym.bus_service_get_primary_owners_connection
move a0, v0
xor v0, s0, v0
lw gp, 0x10(sp)
sltiu v0, v0, 1
lw a0, 0x34(sp)
lw v1, (s2)
bne a0, v1, 0x24ec8
lw ra, 0x4c(sp)
lw s3, 0x48(sp)
lw s2, 0x44(sp)
lw s1, 0x40(sp)
lw s0, 0x3c(sp)
jr ra
addiu sp, sp, 0x50
b 0x24e98
move v0, zero
lw t9, -sym.imp.__stack_chk_fail(gp)
jalr t9
nop
lui gp, 3
addiu gp, gp, -0x2db4
addu gp, gp, t9
addiu sp, sp, -0x30
lw t9, -sym.imp._dbus_string_append_printf(gp)
sw s1, 0x1c(sp)
move s1, a2
move a2, a1
lw a1, -0x7fd8(gp)
sw gp, 0x10(sp)
sw s2, 0x20(sp)
sw ra, 0x2c(sp)
sw s4, 0x28(sp)
sw s3, 0x24(sp)
sw s0, 0x18(sp)
addiu a1, a1, -0x7e1c
jalr t9
move s2, a0
beqz v0, 0x24ff8
lw gp, 0x10(sp)
lb v0, (s1)
beqz v0, 0x24fc4
lw s3, -0x7fd8(gp)
lw s4, -0x7fd8(gp)
addiu s3, s3, -0x7e14
b 0x24f78
addiu s4, s4, -0x7e0c
jalr t9
nop
lw gp, 0x10(sp)
move a1, s4
move a0, s2
beqz v0, 0x24ff8
lw t9, -sym.imp._dbus_string_append_printf(gp)
jalr t9
nop
beqz v0, 0x24ff8
lw gp, 0x10(sp)
lb v0, 1(s0)
beqz v0, 0x24fc4
addiu s1, s0, 1
lw t9, -sym.imp.strchr(gp)
move a0, s1
jalr t9
addiu a1, zero, 0x27
lw gp, 0x10(sp)
move a3, s1
move a1, s3
move a0, s2
move s0, v0
subu a2, v0, s1
bnez v0, 0x24f40
lw t9, -sym.imp._dbus_string_append_printf(gp)
lw a1, -0x7fd8(gp)
lw t9, -sym.imp._dbus_string_append_printf(gp)
move a2, s1
jalr t9
addiu a1, a1, -0x6a20
beqz v0, 0x24ff8
lw gp, 0x10(sp)
lw t9, -sym.imp._dbus_string_append_byte(gp)
move a0, s2
jalr t9
addiu a1, zero, 0x27
lw ra, 0x2c(sp)
lw s4, 0x28(sp)
lw s3, 0x24(sp)
lw s2, 0x20(sp)
lw s1, 0x1c(sp)
lw s0, 0x18(sp)
sltu v0, zero, v0
jr ra
addiu sp, sp, 0x30
lw ra, 0x2c(sp)
lw s4, 0x28(sp)
--
addiu t9, t9, 0x4ed4
bal 0x24ed4
move a0, s2
beqz v0, 0x2539c
lw gp, 0x10(sp)
lw v0, 8(s0)
andi v1, v0, 0x100
bnel v1, zero, 0x25424
lw v0, 0x28(sp)
andi v0, v0, 0x40
beqz v0, 0x2548c
lw t9, -sym.imp._dbus_string_steal_data(gp)
lw a0, 0x2c(s0)
blez a0, 0x2548c
lw s7, -0x7fd8(gp)
lw s4, -0x7d24(gp)
lw s6, -0x7fc0(gp)
addiu v0, s7, -0x7ad4
lw fp, -0x7fd8(gp)
lw s5, -0x7fd8(gp)
move s1, zero
addiu s4, s4, 0x4ed4
sw v0, 0x1c(sp)
b 0x252f4
addiu s6, s6, 0x55d4
lw t9, -sym.imp._dbus_string_append_printf(gp)
move a2, s1
addiu a1, s5, -0x7de4
jalr t9
move a0, s2
beqz v0, 0x2539c
lw gp, 0x10(sp)
lw a2, 0x28(s0)
lw a1, -0x7fc0(gp)
move a0, s2
lwx a2, s7(a2)
move t9, s4
bal 0x24ed4
addiu a1, a1, 0x7a60
beqz v0, 0x2539c
lw gp, 0x10(sp)
lw a0, 0x2c(s0)
addiu s1, s1, 1
slt v0, s1, a0
beqz v0, 0x2548c
lw t9, -sym.imp._dbus_string_steal_data(gp)
--
sw s6, 0x68(sp)
sw s5, 0x64(sp)
sw s4, 0x60(sp)
sw s2, 0x58(sp)
sw s0, 0x50(sp)
sw ra, 0x6c(sp)
sw s3, 0x5c(sp)
lw v0, (s1)
addiu s0, sp, 0x2c
move s5, a0
sw v0, 0x4c(sp)
move a0, s0
move s4, a1
move s6, a2
jalr t9
move s2, a3
beqz v0, 0x2cf98
lw gp, 0x18(sp)
lw t9, -sym.imp._dbus_string_init(gp)
addiu s3, sp, 0x3c
jalr t9
move a0, s3
beqz v0, 0x2cf2c
lw gp, 0x18(sp)
lw a1, -0x7fd8(gp)
lw t9, -sym.imp._dbus_string_append_printf(gp)
move a2, s5
addiu a1, a1, -0x6cd8
jalr t9
move a0, s0
beqz v0, 0x2cfe4
lw gp, 0x18(sp)
lw t9, -sym.imp.open64(gp)
lw a0, 0x2c(sp)
jalr t9
move a1, zero
move s5, v0
bltz v0, 0x2d034
lw gp, 0x18(sp)
lw t9, -sym.imp._dbus_read(gp)
move a2, s6
move a1, s3
jalr t9
move a0, v0
beqz v0, 0x2d098
lw gp, 0x18(sp)
--
addiu s3, sp, 0x24
jalr t9
move a0, s3
beqz v0, 0x2d280
lw gp, 0x10(sp)
lw t9, -sym.imp._dbus_string_init(gp)
addiu s4, sp, 0x44
jalr t9
move a0, s4
beqz v0, 0x2d34c
lw gp, 0x10(sp)
lw s7, -0x7fd8(gp)
lw t9, -sym.imp._dbus_getenv(gp)
jalr t9
addiu a0, s7, -0x6ca4
move s6, v0
beqz v0, 0x2d2fc
lw gp, 0x10(sp)
lw t9, -sym.imp._dbus_string_append(gp)
move a1, v0
jalr t9
move a0, s4
beqz v0, 0x2d258
lw gp, 0x10(sp)
lw a1, -0x7fd8(gp)
lw t9, -sym.imp._dbus_string_append_printf(gp)
move a2, s6
addiu a1, a1, -0x6c94
jalr t9
move a0, s1
beqz v0, 0x2d258
lw gp, 0x10(sp)
lw a1, -0x7fd8(gp)
lw t9, -sym.imp._dbus_string_append_printf(gp)
move a2, s6
addiu a1, a1, -0x6c88
jalr t9
move a0, s3
bnez v0, 0x2d36c
lw gp, 0x10(sp)
lw v0, -0x7668(gp)
lw a1, -0x7fc0(gp)
lw t9, -sym.imp.dbus_set_error_const(gp)
lw a2, (v0)
addiu a1, a1, 0x45a0
jalr t9
move a0, s2
lw gp, 0x10(sp)
b 0x2d300
move v0, zero
lw t9, -sym.imp._dbus_string_free(gp)
sw v0, 0x1c(sp)
move a0, s1
jalr t9
[*] Function printf used 17 times dbus-daemon
