[*] Binary protection state of mtdinfo
Partial RELRO No Canary found NX disabled No PIE No RPATH No RUNPATH No Symbols
[*] Function sprintf tear down of mtdinfo
127f8: e5904000 ldr r4, [r0]
127fc: e5960000 ldr r0, [r6]
12800: ebfff8ad bl 10abc <fprintf@plt>
12804: e5965000 ldr r5, [r6]
12808: e1a00004 mov r0, r4
1280c: ebfff886 bl 10a2c <strerror@plt>
12810: e58d4000 str r4, [sp]
12814: e59f308c ldr r3, [pc, #140] ; 128a8 <free@plt+0x1cb4>
12818: e3a02008 mov r2, #8
1281c: e59f1088 ldr r1, [pc, #136] ; 128ac <free@plt+0x1cb8>
12820: e58d0004 str r0, [sp, #4]
12824: e1a00005 mov r0, r5
12828: eaffffc6 b 12748 <free@plt+0x1b54>
1282c: e3e06000 mvn r6, #0
12830: eaffffe7 b 127d4 <free@plt+0x1be0>
12834: e3760001 cmn r6, #1
12838: 0affffda beq 127a8 <free@plt+0x1bb4>
1283c: e1a02006 mov r2, r6
12840: e595100c ldr r1, [r5, #12]
12844: e1a00007 mov r0, r7
12848: ebfff8c8 bl 10b70 <sprintf@plt>
1284c: e3a01702 mov r1, #524288 ; 0x80000
12850: e1a00007 mov r0, r7
--
12bec: 00015fdb ldrdeq r5, [r1], -fp
12bf0: 00016c41 andeq r6, r1, r1, asr #24
12bf4: 00017b82 andeq r7, r1, r2, lsl #23
12bf8: 00016ca6 andeq r6, r1, r6, lsr #25
12bfc: 00016cd2 ldrdeq r6, [r1], -r2
12c00: 00016c01 andeq r6, r1, r1, lsl #24
12c04: e92d48f0 push {r4, r5, r6, r7, fp, lr}
12c08: e28db014 add fp, sp, #20
12c0c: e24dd018 sub sp, sp, #24
12c10: e1a07001 mov r7, r1
12c14: e1a06000 mov r6, r0
12c18: e1a05002 mov r5, r2
12c1c: ebfff7df bl 10ba0 <strlen@plt>
12c20: e1a02007 mov r2, r7
12c24: e1a01006 mov r1, r6
12c28: e2800039 add r0, r0, #57 ; 0x39
12c2c: e3c00007 bic r0, r0, #7
12c30: e04dd000 sub sp, sp, r0
12c34: e28d4010 add r4, sp, #16
12c38: e1a00004 mov r0, r4
12c3c: ebfff7cb bl 10b70 <sprintf@plt>
12c40: e24b101c sub r1, fp, #28
12c44: e1a00004 mov r0, r4
--
13084: 00016b88 andeq r6, r1, r8, lsl #23
13088: 00016ee0 andeq r6, r1, r0, ror #29
1308c: 00016cd1 ldrdeq r6, [r1], -r1
13090: 00015fdb ldrdeq r5, [r1], -fp
13094: e92d49f0 push {r4, r5, r6, r7, r8, fp, lr}
13098: e28db018 add fp, sp, #24
1309c: e24dd044 sub sp, sp, #68 ; 0x44
130a0: e5907000 ldr r7, [r0]
130a4: e1a08001 mov r8, r1
130a8: e1a00007 mov r0, r7
130ac: e1a06003 mov r6, r3
130b0: e1a05002 mov r5, r2
130b4: ebfff6b9 bl 10ba0 <strlen@plt>
130b8: e1a02008 mov r2, r8
130bc: e1a01007 mov r1, r7
130c0: e2800039 add r0, r0, #57 ; 0x39
130c4: e3c00007 bic r0, r0, #7
130c8: e04dd000 sub sp, sp, r0
130cc: e28d4008 add r4, sp, #8
130d0: e1a00004 mov r0, r4
130d4: ebfff6a5 bl 10b70 <sprintf@plt>
130d8: e3a02032 mov r2, #50 ; 0x32
130dc: e24b1050 sub r1, fp, #80 ; 0x50
--
1374c: e1a05001 mov r5, r1
13750: e3130001 tst r3, #1
13754: 1a000006 bne 13774 <free@plt+0x2b80>
13758: e1a00001 mov r0, r1
1375c: eb0006e7 bl 15300 <free@plt+0x470c>
13760: e2400001 sub r0, r0, #1
13764: e16f0f10 clz r0, r0
13768: e1a002a0 lsr r0, r0, #5
1376c: e24bd010 sub sp, fp, #16
13770: e8bd8870 pop {r4, r5, r6, fp, pc}
13774: e5904004 ldr r4, [r0, #4]
13778: e1a0600d mov r6, sp
1377c: e1a00004 mov r0, r4
13780: ebfff506 bl 10ba0 <strlen@plt>
13784: e1a02005 mov r2, r5
13788: e1a01004 mov r1, r4
1378c: e2800011 add r0, r0, #17
13790: e3c00007 bic r0, r0, #7
13794: e04dd000 sub sp, sp, r0
13798: e1a0000d mov r0, sp
1379c: ebfff4f3 bl 10b70 <sprintf@plt>
137a0: e1a0000d mov r0, sp
137a4: e24b107c sub r1, fp, #124 ; 0x7c
--
1387c: e2843008 add r3, r4, #8
13880: e1a02006 mov r2, r6
13884: e1a01005 mov r1, r5
13888: e2870008 add r0, r7, #8
1388c: ebfffe00 bl 13094 <free@plt+0x24a0>
13890: e250a000 subs sl, r0, #0
13894: 1affffec bne 1384c <free@plt+0x2c58>
13898: e597800c ldr r8, [r7, #12]
1389c: e1a0900d mov r9, sp
138a0: e1a00008 mov r0, r8
138a4: ebfff4bd bl 10ba0 <strlen@plt>
138a8: e1a02005 mov r2, r5
138ac: e1a01008 mov r1, r8
138b0: e2846051 add r6, r4, #81 ; 0x51
138b4: e280006b add r0, r0, #107 ; 0x6b
138b8: e3c00007 bic r0, r0, #7
138bc: e04dd000 sub sp, sp, r0
138c0: e28d3010 add r3, sp, #16
138c4: e1a00003 mov r0, r3
138c8: e50b3068 str r3, [fp, #-104] ; 0xffffff98
138cc: ebfff4a7 bl 10b70 <sprintf@plt>
138d0: e51b3068 ldr r3, [fp, #-104] ; 0xffffff98
138d4: e3a02080 mov r2, #128 ; 0x80
138d8: e1a01006 mov r1, r6
138dc: e1a00003 mov r0, r3
138e0: ebfffbf5 bl 128bc <free@plt+0x1cc8>
138e4: e1a0d009 mov sp, r9
138e8: e3500000 cmp r0, #0
138ec: baffffd6 blt 1384c <free@plt+0x2c58>
138f0: e0866000 add r6, r6, r0
138f4: e546a001 strb sl, [r6, #-1]
138f8: e5976010 ldr r6, [r7, #16]
138fc: e2848010 add r8, r4, #16
13900: e1a00006 mov r0, r6
13904: ebfff4a5 bl 10ba0 <strlen@plt>
13908: e1a02005 mov r2, r5
1390c: e1a01006 mov r1, r6
13910: e280006b add r0, r0, #107 ; 0x6b
13914: e3c00007 bic r0, r0, #7
13918: e04dd000 sub sp, sp, r0
1391c: e28d3010 add r3, sp, #16
13920: e1a00003 mov r0, r3
13924: e50b3068 str r3, [fp, #-104] ; 0xffffff98
13928: ebfff490 bl 10b70 <sprintf@plt>
1392c: e51b3068 ldr r3, [fp, #-104] ; 0xffffff98
13930: e3a02041 mov r2, #65 ; 0x41
--
13944: e3500000 cmp r0, #0
13948: baffffbf blt 1384c <free@plt+0x2c58>
1394c: e0880000 add r0, r8, r0
13950: e540a001 strb sl, [r0, #-1]
13954: e28420e4 add r2, r4, #228 ; 0xe4
13958: e1a01005 mov r1, r5
1395c: e5970014 ldr r0, [r7, #20]
13960: ebfffca7 bl 12c04 <free@plt+0x2010>
13964: e3500000 cmp r0, #0
13968: 1affffb7 bne 1384c <free@plt+0x2c58>
1396c: e597a018 ldr sl, [r7, #24]
13970: e1a0000a mov r0, sl
13974: ebfff489 bl 10ba0 <strlen@plt>
13978: e1a02005 mov r2, r5
1397c: e1a0100a mov r1, sl
13980: e2800039 add r0, r0, #57 ; 0x39
13984: e3c00007 bic r0, r0, #7
13988: e04dd000 sub sp, sp, r0
1398c: e28d6010 add r6, sp, #16
13990: e1a00006 mov r0, r6
13994: ebfff475 bl 10b70 <sprintf@plt>
13998: e28410d8 add r1, r4, #216 ; 0xd8
1399c: e1a00006 mov r0, r6
--
13a1c: b3a03000 movlt r3, #0
13a20: a58400f4 strge r0, [r4, #244] ; 0xf4
13a24: b58430f4 strlt r3, [r4, #244] ; 0xf4
13a28: e28420f8 add r2, r4, #248 ; 0xf8
13a2c: e1a01005 mov r1, r5
13a30: e597002c ldr r0, [r7, #44] ; 0x2c
13a34: ebfffc72 bl 12c04 <free@plt+0x2010>
13a38: e2506000 subs r6, r0, #0
13a3c: 1affff82 bne 1384c <free@plt+0x2c58>
13a40: e5977030 ldr r7, [r7, #48] ; 0x30
13a44: e1a0a00d mov sl, sp
13a48: e1a00007 mov r0, r7
13a4c: ebfff453 bl 10ba0 <strlen@plt>
13a50: e1a02005 mov r2, r5
13a54: e1a01007 mov r1, r7
13a58: e2800039 add r0, r0, #57 ; 0x39
13a5c: e3c00007 bic r0, r0, #7
13a60: e04dd000 sub sp, sp, r0
13a64: e28d9010 add r9, sp, #16
13a68: e1a00009 mov r0, r9
13a6c: ebfff43f bl 10b70 <sprintf@plt>
13a70: e3a01702 mov r1, #524288 ; 0x80000
13a74: e1a00009 mov r0, r9
--
15520: e58d0004 str r0, [sp, #4]
15524: e1a00007 mov r0, r7
15528: ebffed63 bl 10abc <fprintf@plt>
1552c: e1a00004 mov r0, r4
15530: ebffeda9 bl 10bdc <close@plt>
15534: e1a04006 mov r4, r6
15538: eaffffb9 b 15424 <free@plt+0x4830>
1553c: 000280c4 andeq r8, r2, r4, asr #1
15540: 00016b88 andeq r6, r1, r8, lsl #23
15544: 00016b8f andeq r6, r1, pc, lsl #23
15548: 00016cd1 ldrdeq r6, [r1], -r1
1554c: 00015fdb ldrdeq r5, [r1], -fp
15550: 00017077 andeq r7, r1, r7, ror r0
15554: 81484d11 cmphi r8, r1, lsl sp
15558: 000179b9 ; <UNDEFINED> instruction: 0x000179b9
1555c: e52de004 push {lr} ; (str lr, [sp, #-4]!)
15560: e59f101c ldr r1, [pc, #28] ; 15584 <free@plt+0x4990>
15564: e24dd024 sub sp, sp, #36 ; 0x24
15568: e1a02000 mov r2, r0
1556c: e1a0000d mov r0, sp
15570: ebffed7e bl 10b70 <sprintf@plt>
15574: e1a0000d mov r0, sp
15578: ebffff8f bl 153bc <free@plt+0x47c8>
--
15a3c: 00017ac3 andeq r7, r1, r3, asr #21
15a40: 00017aec andeq r7, r1, ip, ror #21
15a44: 00017b25 andeq r7, r1, r5, lsr #22
15a48: 00017b5b andeq r7, r1, fp, asr fp
15a4c: 00017b88 andeq r7, r1, r8, lsl #23
15a50: 00017040 andeq r7, r1, r0, asr #32
15a54: 00017964 andeq r7, r1, r4, ror #18
15a58: 00017bc0 andeq r7, r1, r0, asr #23
15a5c: 0001702b andeq r7, r1, fp, lsr #32
15a60: 00017027 andeq r7, r1, r7, lsr #32
15a64: 00017022 andeq r7, r1, r2, lsr #32
15a68: 0001701e andeq r7, r1, lr, lsl r0
15a6c: 00017036 andeq r7, r1, r6, lsr r0
15a70: 00017044 andeq r7, r1, r4, asr #32
15a74: e92d4010 push {r4, lr}
15a78: e24dd020 sub sp, sp, #32
15a7c: e1a02000 mov r2, r0
15a80: e1a04001 mov r4, r1
15a84: e1a0000d mov r0, sp
15a88: e59f1014 ldr r1, [pc, #20] ; 15aa4 <free@plt+0x4eb0>
15a8c: ebffec37 bl 10b70 <sprintf@plt>
15a90: e1a01004 mov r1, r4
15a94: e1a0000d mov r0, sp
[*] Function sprintf used 10 times mtdinfo
