[*] Binary protection state of liblogserver.so
No RELRO No Canary found NX disabled DSO No RPATH No RUNPATH No Symbols
[*] Function popen tear down of liblogserver.so
; assembly | /* r2dec pseudo code output */
| /* /logs/firmware/unblob_extracted/firmware_extract/6225984-11075644.jffs2_new_extract/lib/liblogserver.so @ 0x1430 */
| #include <stdint.h>
|
; (fcn) fcn.00001430 () | void fcn_00001430 () {
0x00001430 lui gp, 2 |
0x00001434 addiu gp, gp, -0x42f0 |
0x00001438 addu gp, gp, t9 | gp += t9;
0x0000143c addiu sp, sp, -0x30 |
0x00001440 sw s3, 0x28(sp) | *(var_28h) = s3;
0x00001444 lw s3, -0x7fe4(gp) | s3 = *((gp - 8185));
0x00001448 sw gp, 0x10(sp) | *(var_10h) = gp;
0x0000144c sw ra, 0x2c(sp) | *(var_2ch) = ra;
0x00001450 lbu v0, 0x5320(s3) | v0 = *((s3 + 21280));
0x00001454 sw s2, 0x24(sp) | *(var_24h) = s2;
0x00001458 sw s1, 0x20(sp) | *(var_20h) = s1;
0x0000145c sw s0, 0x1c(sp) | *(var_1ch) = s0;
0x00001460 lw v0, -0x7e48(gp) | v0 = *((gp - 8082));
| if (v0 != 0) {
0x00001464 bnez v0, 0x151c | goto label_1;
| }
0x00001468 lw v0, -0x7fe0(gp) | v0 = *((gp - 8184));
| if (v0 != 0) {
0x0000146c beqz v0, 0x1480 |
0x00001470 lw t9, -0x7e48(gp) | t9 = *((gp - 8082));
0x00001474 lw a0, (v0) | a0 = *(v0);
0x00001478 jalr t9 | t9 ();
0x0000147c lw gp, 0x10(sp) | gp = *(var_10h);
| }
0x00001480 lw s2, -0x7fe4(gp) | s2 = *((gp - 8185));
0x00001484 lw s0, -0x7fe4(gp) | s0 = *((gp - 8185));
0x00001488 lw s1, -0x7fdc(gp) | s1 = *((gp - 8183));
0x0000148c addiu s2, s2, 0x513c | s2 += 0x513c;
0x00001490 lw v0, 0x5324(s0) | v0 = *((s0 + 5321));
0x00001494 subu s1, s1, s2 | __asm ("subu s1, s1, s2");
0x00001498 sra s1, s1, 2 | s1 >>= 2;
0x0000149c addiu s1, s1, -1 | s1 += -1;
0x000014a0 sltu v1, v0, s1 | v1 = (v0 < s1) ? 1 : 0;
0x000014a4 lw t9, -0x7fd8(gp) | t9 = *((gp - 8182));
| if (v1 == 0) {
0x000014a8 beqz v1, 0x14d8 | goto label_2;
| }
| do {
0x000014ac addiu v0, v0, 1 | v0++;
0x000014b0 sll v1, v0, 2 | v1 = v0 << 2;
0x000014b4 addu v1, s2, v1 | v1 = s2 + v1;
0x000014b8 lw t9, (v1) | t9 = *(v1);
0x000014bc sw v0, 0x5324(s0) | *((s0 + 5321)) = v0;
0x000014c0 jalr t9 | t9 ();
0x000014c4 lw v0, 0x5324(s0) | v0 = *((s0 + 5321));
0x000014c8 sltu v1, v0, s1 | v1 = (v0 < s1) ? 1 : 0;
0x000014cc lw gp, 0x10(sp) | gp = *(var_10h);
0x000014d0 bnez v1, 0x14ac |
| } while (v1 != 0);
0x000014d4 lw t9, -0x7fd8(gp) | t9 = *((gp - 8182));
| label_2:
0x000014d8 addiu t9, t9, 0x13a0 | t9 += entry0;
0x000014dc bal 0x13a0 | entry0 ();
0x000014e0 nop |
0x000014e4 lw gp, 0x10(sp) | gp = *(var_10h);
0x000014e8 lw v0, -0x7f70(gp) | v0 = *((gp - 8156));
0x000014ec lw a0, -0x7f90(gp) | a0 = *((gp - 8164));
| if (v0 == 0) {
0x000014f0 beqz v0, 0x1538 | goto label_3;
| }
0x000014f4 lw v0, -0x7e94(gp) | v0 = *((gp - 8101));
| if (a0 == 0) {
0x000014f8 beqz a0, 0x153c | goto label_4;
| }
0x000014fc lb v0, (a0) | v0 = *(a0);
0x00001500 slti v0, v0, 2 | v0 = (v0 < 2) ? 1 : 0;
0x00001504 lw t9, -0x7e94(gp) | t9 = *((gp - 8101));
| if (v0 != 0) {
0x00001508 bnez v0, 0x1538 | goto label_3;
| }
0x0000150c jalr t9 | t9 ();
0x00001510 nop |
| do {
0x00001514 addiu v0, zero, 1 | v0 = 1;
| label_0:
0x00001518 sb v0, 0x5320(s3) | *((s3 + 21280)) = v0;
| label_1:
0x0000151c lw ra, 0x2c(sp) | ra = *(var_2ch);
0x00001520 lw s3, 0x28(sp) | s3 = *(var_28h);
0x00001524 lw s2, 0x24(sp) | s2 = *(var_24h);
0x00001528 lw s1, 0x20(sp) | s1 = *(var_20h);
0x0000152c lw s0, 0x1c(sp) | s0 = *(var_1ch);
0x00001530 addiu sp, sp, 0x30 |
0x00001534 jr ra | return v0;
| label_3:
0x00001538 lw v0, -0x7e94(gp) | v0 = *((gp - 8101));
| label_4:
0x0000153c lw a0, -0x7fd8(gp) | a0 = *((gp - 8182));
0x00001540 beqz v0, 0x1514 |
| } while (v0 == 0);
0x00001544 lw t9, -0x7e94(gp) | t9 = *((gp - 8101));
0x00001548 addiu a0, a0, 0x5130 | a0 += section..eh_frame;
0x0000154c jalr t9 | t9 ();
0x00001550 addiu v0, zero, 1 | v0 = 1;
0x00001554 b 0x1518 | goto label_0;
| }
[*] Function popen used 1 times liblogserver.so