[*] Binary protection state of libevent_extra-2.1.so.6.0.2
Partial RELRO No Canary found NX disabled DSO No RPATH No RUNPATH No Symbols
[*] Function printf tear down of libevent_extra-2.1.so.6.0.2
bl loc.imp.event_mm_free_
mov r0, 0
pop {r4, r5, r6, r7, r8, pc}
andeq r4, r2, r4, lsl 31
andeq r0, r0, ip, asr r3
push {r1, r2, r3}
push {r4, r5, r6, lr}
ldr r5, [0x0000624c]
sub sp, sp, 0x20c
add r5, pc, r5
ldr r1, [r5]
add r3, sp, 0x220
cmp r1, 0
str r3, [sp, 4]
beq 0x6240
add r4, sp, 8
mov r6, r0
mov r1, 0x200
ldr r2, [sp, 0x21c]
mov r0, r4
bl loc.imp.evutil_vsnprintf
sub r0, r6, 2
clz r0, r0
--
mov r5, r0
sub sp, sp, 0x38
mov r6, r3
beq 0xa1c8
ldr r0, [r1]
bl 0x17988
ldr r2, [0x0000a208]
add r4, sp, 0x18
add r2, pc, r2
mov r1, 0x20
lsr r3, r0, 0x18
str r3, [sp, 8]
lsr r3, r0, 0x10
and r3, r3, 0xff
str r3, [sp, 4]
lsr r3, r0, 8
and r3, r3, 0xff
str r3, [sp]
and r3, r0, 0xff
mov r0, r4
bl loc.imp.evutil_snprintf
mov r2, r4
mvn r1, 0
--
ldr r0, [0x0000c2dc]
bl loc.imp.event_errx
mov r6, r0
ldr r0, [r1]
mov r8, r3
bl 0x17988
ldr r2, [0x0000c2e0]
add r7, sp, 0x10
add r2, pc, r2
mov r1, 0x20
lsr r3, r0, 0x18
str r3, [sp, 8]
lsr r3, r0, 0x10
and r3, r3, 0xff
str r3, [sp, 4]
lsr r3, r0, 8
and r3, r3, 0xff
str r3, [sp]
and r3, r0, 0xff
mov r0, r7
bl loc.imp.evutil_snprintf
mov r1, 0x1c
mov r0, 1
--
beq 0xcbd8
ldrb r3, [sb, 4]
tst r3, 1
movne sb, 0x42
moveq sb, 0x46
b 0xc994
ldr r3, [r4, 0x70]
ldr r2, [r4, 0xc]
ldr r3, [r3, 0x2c]
cmp r2, r3
bge 0xc9b0
mov r0, sb
bl 0x5490
ldr r2, [0x0000cde4]
add r5, sp, 0x10
mov r3, sb
add r2, pc, r2
mov r1, 0x40
str r0, [sp]
mov r0, r5
bl loc.imp.evutil_snprintf
mov r1, r5
ldr r0, [r4, 0x1c]
--
mov r4, r0
mov r0, r4
add sp, sp, 0x48
pop {r4, r5, r6, pc}
mov r5, r0
mov r6, r2
add r0, sp, 0xc
mov r2, 0x1c
str r1, [sp, 4]
bl sym.imp.memset
mov r3, 1
ldr r2, [0x00010cc8]
str r3, [sp, 0x10]
mov r3, 0x21
str r3, [sp, 8]
mov r3, r4
add r4, sp, 0x28
add r2, pc, r2
mov r1, 0x20
mov r0, r4
bl loc.imp.evutil_snprintf
add r3, sp, 4
add r2, sp, 8
--
cmp r3, 0x10
beq 0x11b54
bhi 0x11b18
cmp r3, 2
beq 0x11db4
bhi 0x11afc
cmp r3, 1
beq 0x11b78
ldr r5, [0x00011dc4]
add r5, pc, r5
ldr r0, [r7, 0xc]
bl loc.imp.bufferevent_get_output
ldrb r3, [r4, 0x3d]
ldr r1, [0x00011dc8]
str r3, [sp, 4]
ldrb r3, [r4, 0x3c]
mov r2, r5
str r3, [sp]
add r1, pc, r1
ldr r3, [r4, 0x34]
bl loc.imp.evbuffer_add_printf
ldr r3, [r4, 0x28]
cmp r3, 8
cmpne r3, 2
bne 0x11a98
ldr r7, [0x00011dcc]
ldr r0, [r4, 0x14]
add r7, pc, r7
mov r1, r7
bl 0x522c
cmp r0, 0
bne 0x11a98
ldr r0, [r4, 0x5c]
bl loc.imp.evbuffer_get_length
ldr r2, [0x00011dd0]
add r5, sp, 0xc
add r2, pc, r2
mov r1, 0x16
mov r3, r0
mov r0, r5
bl loc.imp.evutil_snprintf
mov r2, r5
mov r1, r7
--
b 0x11a0c
ldr r5, [0x00011df4]
add r5, pc, r5
b 0x11a0c
ldr r5, [0x00011df8]
add r5, pc, r5
b 0x11a0c
ldr r0, [r4, 0x10]
bl 0x116d8
mov r5, r0
ldr r0, [r7, 0xc]
bl loc.imp.bufferevent_get_output
ldr r1, [r4, 0x44]
ldrb r3, [r4, 0x3d]
str r1, [sp, 4]
ldr r1, [r4, 0x40]
ldrb r2, [r4, 0x3c]
str r1, [sp]
ldr r1, [0x00011dfc]
add r1, pc, r1
bl loc.imp.evbuffer_add_printf
ldrb r3, [r4, 0x3c]
cmp r3, 1
--
ldr r1, [0x00011e0c]
add r1, pc, r1
mov r5, r0
mov r0, r8
bl 0x522c
cmp r0, 0
bne 0x11cf4
ldr sb, [0x00011e10]
mov r0, r8
add sb, pc, sb
mov r1, sb
bl 0x522c
cmp r0, 0
bne 0x11cf4
ldr r2, [0x00011e14]
mov r3, r5
add r5, sp, 0xc
add r2, pc, r2
mov r1, 0x16
mov r0, r5
bl loc.imp.evutil_snprintf
mov r2, r5
mov r1, sb
--
add r5, pc, r5
mov r1, r5
bl 0x4ed8
ldr r3, [r4, 0xc]
tst r3, 2
bne 0x11d84
ldr r2, [0x00011e20]
mov r1, r5
add r2, pc, r2
ldr r0, [r4, 0x14]
bl 0x5514
ldr r1, [0x00011e24]
ldr r0, [r4, 0x14]
add r1, pc, r1
bl 0x4ed8
b 0x11a98
ldr r3, [r5, 0xc]
ldr r2, [r5, 8]
mov r1, r7
mov r0, r6
bl loc.imp.evbuffer_add_printf
ldr r5, [r5]
b 0x11aa8
--
mov r7, r2
bl loc.imp.bufferevent_get_output
mov sb, r0
mov r0, r5
bl loc.imp.evbuffer_get_length
cmp r0, 0
popeq {r4, r5, r6, r7, r8, sb, sl, pc}
mov r0, r4
bl 0x10628
cmp r0, 0
popeq {r4, r5, r6, r7, r8, sb, sl, pc}
ldrb r3, [r4, 0x58]
tst r3, 1
beq 0x124d0
mov r0, r5
bl loc.imp.evbuffer_get_length
ldr r1, [0x00012510]
add r1, pc, r1
mov r2, r0
mov r0, sb
bl loc.imp.evbuffer_add_printf
mov r1, r5
mov r0, sb
--
ldrb r2, [r5], 1
add r3, r8, r2
ldrb r3, [r3, 0x14]
cmp r3, 0
movne r2, 1
bne 0x12734
cmp r7, 0
sub r3, r2, 0x20
clz r3, r3
lsr r3, r3, 5
moveq r3, 0
cmp r3, 0
beq 0x12740
mov r2, 1
mov r1, sl
mov r0, r4
bl loc.imp.evbuffer_add
b 0x1269c
mov r1, sb
mov r0, r4
bl loc.imp.evbuffer_add_printf
b 0x1269c
andeq r6, r0, r7, asr 13
--
bne 0x14bc4
ldr r0, [r6, 8]
add sp, sp, 0xc
pop {r4, r5, r6, r7, lr}
b 0x5568
cmp r4, 0
bne 0x14bd8
mov r0, r7
bl 0x10674
mov r4, r0
mov r2, r4
mov r1, r7
mov r0, r6
bl 0x4f8c
ldr r1, [0x00014c20]
mov r3, r4
mov r2, r7
str r4, [sp]
add r1, pc, r1
mov r0, r5
bl loc.imp.evbuffer_add_printf
mov r0, r6
mov r1, r5
--
cmpeq r0, r2
bhs 0x14e30
mov r1, r4
mov r0, r5
bl 0x13f30
b 0x14de0
ldr r0, [r5, 0xc]
bl loc.imp.bufferevent_get_input
bl loc.imp.evbuffer_get_length
subs r6, r0, 0
bne 0x14cd0
mov r1, 4
ldr r0, [r5, 0xc]
bl loc.imp.bufferevent_enable
ldr r0, [r5, 0xc]
bl loc.imp.bufferevent_get_output
ldr r1, [0x00014f54]
ldrb r3, [r4, 0x3d]
ldrb r2, [r4, 0x3c]
add r1, pc, r1
bl loc.imp.evbuffer_add_printf
ldr r3, [0x00014f58]
ldr r2, [0x00014f5c]
--
bl loc.imp.evbuffer_add
mov r0, r4
bl loc.imp.evbuffer_get_length
cmp r8, r0
mov r2, r0
bhs 0x15e78
mov r0, r4
bl loc.imp.evbuffer_free
b 0x15cb0
ldr r1, [0x00015ea4]
mov r2, 2
add r1, pc, r1
mov r0, r4
bl loc.imp.evbuffer_add
ldr r2, [r5, 8]
cmp r2, 0
beq 0x15e00
ldr r1, [0x00015ea8]
mov r0, r4
add r1, pc, r1
bl loc.imp.evbuffer_add_printf
ldr r7, [r5, 0xc]
mov r0, r7
bl sym.imp.strlen
mov r1, r7
mov r2, r0
mov r0, r4
bl loc.imp.evbuffer_add
ldr r2, [r5, 0x10]
cmp r2, 0
blt 0x15e38
ldr r1, [0x00015eac]
mov r0, r4
add r1, pc, r1
bl loc.imp.evbuffer_add_printf
ldr r3, [r5, 0x14]
cmp r3, 0
--
subs r6, r0, 0
bne 0x16854
ldr r0, [r4, 8]
bl 0x5568
b 0x1673c
bl loc.imp.evbuffer_new
subs r5, r0, 0
bne 0x1686c
mov r0, r6
bl loc.imp.event_mm_free_
b 0x16848
ldr r2, [0x000168c4]
mov r0, r4
add r2, pc, r2
mov r1, 0x194
bl 0x4f8c
ldr r1, [0x000168c8]
mov r2, r6
add r1, pc, r1
mov r0, r5
bl loc.imp.evbuffer_add_printf
mov r0, r6
bl loc.imp.event_mm_free_
[*] Function printf used 17 times libevent_extra-2.1.so.6.0.2
