[*] Binary protection state of libavutil.so.56.31.100
Full RELRO Canary found NX enabled DSO No RPATH No RUNPATH No Symbols
[*] Function strcat tear down of libavutil.so.56.31.100
; assembly | /* r2dec pseudo code output */
| /* /logs/firmware/unblob_extracted/firmware_extract/4325012-58052244.squashfs_v4_le_extract/usr/lib/libavutil.so.56.31.100 @ 0x16d1c */
| #include <stdint.h>
|
; (fcn) sym.av_buffer_pool_get () | void av_buffer_pool_get () {
0x00016d1c lui gp, 0xa |
0x00016d20 addiu gp, gp, 0x63a4 |
0x00016d24 addu gp, gp, t9 | gp += t9;
0x00016d28 addiu sp, sp, -0x40 |
0x00016d2c lw t9, -0x7aa8(gp) | t9 = *((gp - 7850));
0x00016d30 sw s3, 0x38(sp) | *(var_38h) = s3;
0x00016d34 lw s3, -0x7a74(gp) | s3 = *((gp - 7837));
0x00016d38 sw s0, 0x2c(sp) | *(var_2ch) = s0;
0x00016d3c move s0, a0 | s0 = a0;
0x00016d40 lw v0, (s3) | v0 = *(s3);
0x00016d44 sw gp, 0x18(sp) | *(var_18h) = gp;
0x00016d48 sw s1, 0x30(sp) | *(var_30h) = s1;
0x00016d4c sw ra, 0x3c(sp) | *(var_3ch) = ra;
0x00016d50 sw s2, 0x34(sp) | *(var_34h) = s2;
0x00016d54 sw v0, 0x24(sp) | *(var_24h) = v0;
0x00016d58 jalr t9 | t9 ();
0x00016d5c nop |
0x00016d60 lw s1, 0x18(s0) | s1 = *((s0 + 6));
0x00016d64 lw gp, 0x18(sp) | gp = *(var_18h);
| if (s1 == 0) {
0x00016d68 beqz s1, 0x16e10 | goto label_4;
| }
0x00016d6c lw a2, -0x7fd8(gp) | a2 = *((gp - 8182));
0x00016d70 lw t9, -0x7e58(gp) | t9 = *((gp - 8086));
0x00016d74 lw a0, (s1) | a0 = *(s1);
0x00016d78 lw a1, 0x20(s0) | a1 = *((s0 + 8));
0x00016d7c move a3, s1 | a3 = s1;
0x00016d80 sw zero, 0x10(sp) | *(var_10h) = 0;
0x00016d84 addiu a2, a2, 0x6208 | a2 += 0x6208;
0x00016d88 bal 0x16348 | sym_av_buffer_create ();
0x00016d8c move s2, v0 | s2 = v0;
0x00016d90 lw gp, 0x18(sp) | gp = *(var_18h);
| if (v0 == 0) {
0x00016d94 beqz v0, 0x16dfc | goto label_0;
| }
0x00016d98 lw v0, 0x10(s1) | v0 = *((s1 + 4));
0x00016d9c sw v0, 0x18(s0) | *((s0 + 6)) = v0;
0x00016da0 sw zero, 0x10(s1) | *((s1 + 4)) = 0;
| label_1:
0x00016da4 lw t9, -0x7a28(gp) | t9 = *((gp - 7818));
0x00016da8 move a0, s0 | a0 = s0;
0x00016dac jalr t9 | t9 ();
0x00016db0 lw gp, 0x18(sp) | gp = *(var_18h);
0x00016db4 sync | __asm ("sync");
| do {
0x00016db8 ll at, 0x1c(s0) | __asm ("ll at, 0x1c(s0)");
0x00016dbc addiu at, at, 1 | at++;
0x00016dc0 sc at, 0x1c(s0) | __asm ("sc at, 0x1c(s0)");
0x00016dc4 beqz at, 0x16db8 |
| } while (at == 0);
0x00016dc8 nop |
0x00016dcc sync | __asm ("sync");
| do {
| label_3:
0x00016dd0 lw a0, 0x24(sp) | a0 = *(var_24h);
0x00016dd4 lw v1, (s3) | v1 = *(s3);
0x00016dd8 move v0, s2 | v0 = s2;
| if (a0 != v1) {
0x00016ddc bne a0, v1, 0x16ec0 | goto label_5;
| }
0x00016de0 lw ra, 0x3c(sp) | ra = *(var_3ch);
0x00016de4 lw s3, 0x38(sp) | s3 = *(var_38h);
0x00016de8 lw s2, 0x34(sp) | s2 = *(var_34h);
0x00016dec lw s1, 0x30(sp) | s1 = *(var_30h);
0x00016df0 lw s0, 0x2c(sp) | s0 = *(var_2ch);
0x00016df4 addiu sp, sp, 0x40 |
0x00016df8 jr ra | return v0;
| label_0:
0x00016dfc lw t9, -0x7a28(gp) | t9 = *((gp - 7818));
0x00016e00 move a0, s0 | a0 = s0;
0x00016e04 jalr t9 | t9 ();
0x00016e08 lw gp, 0x18(sp) | gp = *(var_18h);
0x00016e0c b 0x16dd0 |
| } while (1);
| label_4:
0x00016e10 lw t9, 0x2c(s0) | t9 = *((s0 + 11));
0x00016e14 lw a1, 0x20(s0) | a1 = *((s0 + 8));
| if (t9 == 0) {
0x00016e18 beqz t9, 0x16e80 | goto label_6;
| }
0x00016e1c lw a0, 0x24(s0) | a0 = *((s0 + 9));
0x00016e20 jalr t9 | t9 ();
0x00016e24 lw gp, 0x18(sp) | gp = *(var_18h);
0x00016e28 move s2, v0 | s2 = v0;
| label_2:
0x00016e2c sw s2, 0x20(sp) | *(var_20h) = s2;
| if (s2 == 0) {
0x00016e30 beqz s2, 0x16dfc | goto label_0;
| }
0x00016e34 lw t9, -0x7fe8(gp) | t9 = *((gp - 8186));
0x00016e38 addiu a0, zero, 0x14 | a0 = 0x14;
0x00016e3c bal 0x302d8 | sym_av_mallocz ();
0x00016e40 lw gp, 0x18(sp) | gp = *(var_18h);
| if (v0 != 0) {
0x00016e44 beqz v0, 0x16e98 |
0x00016e48 lw s2, 0x20(sp) | s2 = *(var_20h);
0x00016e4c lw v1, (s2) | v1 = *(s2);
0x00016e50 lw a1, 0x10(v1) | a1 = *((v1 + 4));
0x00016e54 lw a0, 0xc(v1) | a0 = *((v1 + 3));
0x00016e58 lw a2, (v1) | a2 = *(v1);
0x00016e5c sw a1, 4(v0) | *((v0 + 1)) = a1;
0x00016e60 sw a2, (v0) | *(v0) = a2;
0x00016e64 sw a0, 8(v0) | *((v0 + 2)) = a0;
0x00016e68 sw s0, 0xc(v0) | *((v0 + 3)) = s0;
0x00016e6c sw v0, 0x10(v1) | *((v1 + 4)) = v0;
0x00016e70 lw v0, -0x7fd8(gp) | v0 = *((gp - 8182));
0x00016e74 addiu v0, v0, 0x6208 | v0 += 0x6208;
0x00016e78 sw v0, 0xc(v1) | *((v1 + 3)) = v0;
0x00016e7c b 0x16da4 | goto label_1;
| label_6:
0x00016e80 lw t9, 0x28(s0) | t9 = *((s0 + 10));
0x00016e84 move a0, a1 | a0 = a1;
0x00016e88 jalr t9 | t9 ();
0x00016e8c move s2, v0 | s2 = v0;
0x00016e90 lw gp, 0x18(sp) | gp = *(var_18h);
0x00016e94 b 0x16e2c | goto label_2;
| }
0x00016e98 lw t9, -0x7e4c(gp) | t9 = *((gp - 8083));
0x00016e9c addiu a0, sp, 0x20 | a0 = sp + 0x20;
0x00016ea0 bal 0x16608 | sym_av_buffer_unref ();
0x00016ea4 lw gp, 0x18(sp) | gp = *(var_18h);
0x00016ea8 move a0, s0 | a0 = s0;
0x00016eac lw t9, -0x7a28(gp) | t9 = *((gp - 7818));
0x00016eb0 move s2, zero | s2 = 0;
0x00016eb4 jalr t9 | t9 ();
0x00016eb8 lw gp, 0x18(sp) | gp = *(var_18h);
0x00016ebc b 0x16dd0 | goto label_3;
| label_5:
0x00016ec0 lw t9, -0x7aa0(gp) | t9 = *((gp - 7848));
0x00016ec4 jalr t9 | t9 ();
0x00016ec8 nop |
0x00016ecc nop |
| }
[*] Function strcat used 1 times libavutil.so.56.31.100
