Skip to content

H
hostCompiledSimulation
Commit 66a464a5 authored by Gaurav Kukreja's avatar Gaurav Kukreja
Browse files
Options

Removed the cfg_generator project, effectively renaming it to map_cfg 

Signed-off-by: Gaurav Kukreja's avatarGaurav Kukreja <gaurav@gauravk.in>
parent 8a19f227
Hide whitespace changes
Inline Side-by-side
Showing with 0 additions and 2302 deletions
cfg_generator/cfg.py deleted 100644 → 0
View file @ 8a19f227
import sys
class BBEdge:
def __init__(self, fromBlockIndex, toBlockIndex):
self.fromBlockIndex = fromBlockIndex;
self.toBlockIndex = toBlockIndex;
class BasicBlock:
def __init__(self, startLine, endLine, isReturning=0, listFuncCalls = None, name = None):
if name is None:
self.name = ""
else:
self.name = name
self.startLine = startLine
self.endLine = endLine
self.isReturning = isReturning
if listFuncCalls is None:
self.listFunctionCalls = []
else:
self.listFunctionCalls = listFuncCalls
class ControlFlowGraph:
def __init__(self, listBlocks, listEdges):
self.listBlocks = listBlocks
self.listEdges = listEdges
class FunctionDesc:
def __init__(self, functionName, fileName, startLine, endLine, cfg):
self.functionName = functionName
self.fileName = fileName
self.startLine = startLine
self.endLine = endLine
self.cfg = cfg
\ No newline at end of file
cfg_generator/cfg_binary.py deleted 100644 → 0
View file @ 8a19f227
#-----------------------------------------------------------------
# cfg_binary.py: Construct Control Flow Graph for Binary
#-----------------------------------------------------------------
import sys
import re
from cfg import *
re_sectionStart = re.compile('Disassembly of section .(.*):')
re_funcDef = re.compile('\s*([0-9a-f]*)\s*<(.*)>:')
re_instruction = re.compile('\s*([0-9a-f]*):\s*[0-9a-f]*\s*(.*)')
re_branchInst = re.compile('\s*(b(?:l|x|lx|xj)?(?:eq|ne|mi|pl|hi|ls|ge|lt|gt|le)?)\s*([0-9a-f]*)\s*<(.*)>')
re_unconditionalBranchInst = re.compile('\s*(b(?:l|x|lx|xj)?)\s*([0-9a-f]*)\s*<(.*)>')
re_conditionalBranchInst = re.compile('\s*(b(?:l|x|lx|xj)?(?:eq|ne|mi|pl|hi|ls|ge|lt|gt|le))\s*([0-9a-f]*)\s*<(.*)>')
re_returnInst = re.compile('\s*(bx)\s*(lr)')
listFunctionsIgnore = ['__cs3_interrupt_vector',
'__cs3_reset',
'__cs3_start_asm_sim',
'__cs3_heap_start_ptr',
'__cs3_start_c',
'__do_global_dtors_aux',
'frame_dummy',
'atexit',
'exit',
'__register_exitproc',
'__call_exitprocs',
'register_fini',
'__libc_fini_array',
'__cs3_premain',
'_exit',
'__cs3_isr_interrupt',
'__libc_init_array']
class ParseError(Exception):
def __init__(self, str):
self.value = str
def __str__(self):
return repr(self.value)
def print_usage():
print("Usage:")
print("\t %s <objdump_fileName>\n" % (sys.argv[0]))
def parse_binary(fileName):
'''
Returns a list of all the functions defined in the objdump, along with the
control flow graph of each of the function.
'''
# State Management Variables
inTextSection = 0 # is 1, when inside Text Section
inFuncBody = 0 # is 1, when inside Function Body
currFuncName = ""
currFuncFileName = ""
currFuncStartLine = 0
listCurrFuncBlockStartLineNum = []
listCurrFuncBlockEndLineNum = []
listCurrFuncBlockStartAddress = []
listCurrFuncBlockEndAddress = []
lineNumForAddress = {}
branchInstAtLine = {}
returnInstAtLine = {}
functionCallAtLine = {}
# list of functions that will be returned
listFunctions = []
file = open(fileName, 'r')
lineNum = 0
for line in file:
'''
Main loop that parses the objdump file line by line.
Algorithm:
1. We only care for the .text section. Ignore lines in other sections.
2. Inside text section, look for start of function definition.
3. Inside Function, look for branch instruction. At each branch inst.
a. End of block at branch instruction.
b. Start of block at target of branch instruction.
c. End of block at inst. before target of branch inst.
d. Start of block at inst. after branch inst.
4. Inside Function, also look for return instruction.
a. End of block at return instruction.
'''
lineNum = lineNum + 1;
# 1. Ignore sections other than .text sections
m = re_sectionStart.match(line);
if m == None and inTextSection == 0:
continue
elif (m != None and m.group(1) != "text"):
if(inTextSection == 1):
# was in text section, and text section ended
break
elif (m != None and m.group(1) == "text"):
inTextSection = 1
continue
elif m == None and inTextSection == 1:
# inside text section
# 2. Look for start of function definition.
m = re_funcDef.match(line)
if m is not None and m.group(2) not in listFunctionsIgnore:
inFuncBody = 1
currFuncName = m.group(2)
currFuncFileName = fileName
currFuncStartLine = lineNum + 1
listCurrFuncBlockStartLineNum.append(currFuncStartLine)
continue
if(inFuncBody == 1):
m = re_instruction.match(line)
if m is not None:
address = m.group(1)
lineNumForAddress[address] = lineNum;
inst = m.group(2)
m = re_branchInst.match(inst)
if m is not None and m.group(3).startswith(currFuncName):
# Branch Instruction
branchInstAtLine[lineNum] = inst
# 3.a End Block at Branch Inst.
listCurrFuncBlockEndAddress.append(address)
# 3.b Start Block at Target Address
targetAdd = m.group(2);
listCurrFuncBlockStartAddress.append(targetAdd)
# 3.c End Block before Target Address
listCurrFuncBlockEndAddress.append("%x" % (int(targetAdd, 16) - 4))
# 3.d Start Block after Branch Inst.
listCurrFuncBlockStartAddress.append("%x" % (int(address, 16) + 4))
continue
elif m is not None and not m.group(3).startswith(currFuncName):
# Function call
functionCallAtLine[lineNum] = inst
continue
m = re_returnInst.match(inst)
if m is not None:
# Return Instruction
returnInstAtLine[lineNum] = inst
listCurrFuncBlockEndAddress.append(address)
continue
continue
else:
# inside Function, instruction did not match i.e. end of
# function body.
# TODO: Explicitly check for a blank line
inFuncBody = 0
currFuncEndLine = lineNum - 1
# Construct the CFG here.
# Create list of line numbers
for add in listCurrFuncBlockStartAddress:
listCurrFuncBlockStartLineNum.append(lineNumForAddress[add])
for add in listCurrFuncBlockEndAddress:
listCurrFuncBlockEndLineNum.append(lineNumForAddress[add])
# Remove duplicates from the lists
listCurrFuncBlockStartLineNum = list(set(listCurrFuncBlockStartLineNum))
listCurrFuncBlockEndLineNum = list(set(listCurrFuncBlockEndLineNum))
# Sort the lists
listCurrFuncBlockStartLineNum.sort()
listCurrFuncBlockEndLineNum.sort()
# Ensure length of lists is equal
if len(listCurrFuncBlockStartLineNum) != len(listCurrFuncBlockEndLineNum):
raise ParseError("Length of lists of block start and end line numbers do not match for function %s" % (currFuncName))
# Create List of Blocks
listBlocks = []
for i in range(len(listCurrFuncBlockStartLineNum)):
listBlocks.append(BasicBlock(listCurrFuncBlockStartLineNum[i],
listCurrFuncBlockEndLineNum[i]))
# Create list of Edges
listEdges = []
for lNum in branchInstAtLine:
edgeStartBlockIndex = -1;
edgeEndBlockIndex = -1;
for i in range(len(listBlocks)):
if listBlocks[i].endLine == lNum:
edgeStartBlockIndex = i;
inst = branchInstAtLine[lNum]
m = re_branchInst.match(inst)
targetAdd = m.group(2)
targetLine = lineNumForAddress[targetAdd]
for i in range(len(listBlocks)):
if listBlocks[i].startLine == targetLine:
edgeEndBlockIndex = i;
if (edgeStartBlockIndex == -1 or edgeEndBlockIndex == -1):
raise ParseError("Matching edge for branch inst. could not be created in function %s" % (currFuncName))
listEdges.append(BBEdge(edgeStartBlockIndex,
edgeEndBlockIndex))
# For Conditional Branches, add an edge to next block
m = re_conditionalBranchInst.match(inst)
if m is not None:
listEdges.append(BBEdge(edgeStartBlockIndex,
edgeStartBlockIndex + 1))
# For Block End Line, which are not branch instructions,
# add edge to next block
for i in range(len(listBlocks)):
blockEndLine = listBlocks[i].endLine;
if blockEndLine not in branchInstAtLine and blockEndLine not in returnInstAtLine:
listEdges.append(BBEdge(i, i + 1))
# Mark the returning blocks
for lNum in returnInstAtLine:
for block in listBlocks:
if block.endLine == lNum:
block.isReturning = 1
# Add list of functions called in each block
for lNum in functionCallAtLine:
inst = functionCallAtLine[lNum]
m = re_branchInst.match(inst)
calledFuncName = m.group(3)
for block in listBlocks:
if block.startLine <= lNum and block.endLine >= lNum:
block.listFunctionCalls.append(calledFuncName)
# Add the current function and the CFG to the list of functions
listFunctions.append(FunctionDesc(currFuncName,
currFuncFileName,
currFuncStartLine,
currFuncEndLine,
ControlFlowGraph(listBlocks,
listEdges)))
# reset the state management variables
currFuncName = ""
currFuncFileName = ""
currFuncStartLine = 0
currFuncEndLine = 0
listCurrFuncBlockStartLineNum = []
listCurrFuncBlockEndLineNum = []
listCurrFuncBlockStartAddress = []
listCurrFuncBlockEndAddress = []
lineNumForAddress = {}
branchInstAtLine = {}
returnInstAtLine = {}
functionCallAtLine = {}
return listFunctions
def print_debug(listFunctions):
for func in listFunctions:
print("\nlFileName : %s" % (func.fileName))
print("Function : %s" % (func.functionName))
i = 0
for block in func.cfg.listBlocks:
print("\t Block %d: line %d - %d" % (i, block.startLine, block.endLine))
for funcCall in block.listFunctionCalls:
print("\t\t calls %s()" % (funcCall))
if block.isReturning == 1:
print("\t\t returns")
for edge in func.cfg.listEdges:
if edge.fromBlockIndex == i:
print("\t\t Edge to block %d" % (edge.toBlockIndex))
i = i + 1
if __name__ == "__main__":
if len(sys.argv) > 1:
fileName = sys.argv[1]
else:
print_usage()
exit(1)
listFunctions = parse_binary(fileName)
print_debug(listFunctions)
\ No newline at end of file
cfg_generator/cfg_isc.py deleted 100644 → 0
View file @ 8a19f227
#-----------------------------------------------------------------
# cfg_isc.py: Construct Control Flow Graph for Intermediate Source Code
#-----------------------------------------------------------------
import sys
import re
from cfg import *
# RE for function definition
# group(1) is function Name
# if group(2) == "){", single line definition
# elif group(2) == $, multi line definition
re_funcDef = re.compile('(?:\w*\s+)*\**(\w+)\s*\([\w\s,*]*($|\)\s*\{)')
re_funcDefArgLine = re.compile('[\w\s,]*($|\)\s*\{)')
re_basicBlockLabel = re.compile('\s*(\w*bb_[0-9]*):')
re_basicBlockStart = re.compile('\s*//\s*#\s*PRED:./*')
re_basicBlockEnd = re.compile('\s*//\s*#\s*SUCC:./*')
re_gotoLine = re.compile('\s*goto\s*(\w*bb_[0-9]*);')
re_funcCallLine = re.compile('\s*(\w*)\s*\([\w\s,]*\);')
re_returnLine = re.compile('\s*return\s*.*;')
re_funcDefEnd = re.compile('\s*\}')
class BasicBlockTargets:
def __init__(self, name, listTargets = None):
self.name = name
if listTargets == None:
self.listTargets = []
else:
self.listTargets = listTargets
class ParseError(Exception):
def __init__(self, str):
self.value = str
def __str__(self):
return repr(self.value)
def parse_isc(fileName):
listFunctions = []
# State Management
inFunctionBody = 0 # is 1, when inside Function Body
inFuncDefArgMultiLine = 0 # is 1, when inside multiline argument list for func Def.
currFuncName = ""
currFuncStartLine = 0
currFuncEndLine = 0
listCurrFuncBasicBlocks = []
listCurrFuncBasicBlockTargets = []
listCurrFuncBBEdges = []
inBasicBlock = 0
currBasicBlockName = ""
currBasicBlockStartLine = 0
currBasicBlockEndLine = 0
isCurrBasicBlockReturning = 0
listCurrBlockFuncCalls = []
listCurrBasicBlockTargets = []
lineNum = 0
file = open(fileName, 'r')
for line in file:
lineNum = lineNum + 1
'''
Loop to parse each line in the code.
Algorithm:
1. We only care about the code inside functions. Look for function
definitions.
a. Single Line Definition
b. Multiple Line Parameters
2. Inside the function body, we want to look for basic block labels,
function calls, goto instructions and return instructions.
a. Labels:
1. Record the name of the basic block.
2. Basic Block starts at next line with "// # PRED..."
3. Basic Block ends at line with "// # SUCC..."
b. Goto:
1. Keep list of targets of current basic block.
2. Keep a list of all basic blocks with list of their targets.
c. Function Calls:
1. Keep list of functions called by current block.
d. Return Instructions
1. Keep note if current Basic Block Returns.
'''
# 1. Look for function definition
m = re_funcDef.match(line)
if m is not None:
print "Here"
if m.group(2) == "":
# 1.b. Multi Line Function Arguments
inFuncDefArgMultiLine = 1
currFuncName = m.group(1)
continue
else:
# 1.a. Single Line Definition
inFunctionBody = 1
currFuncName = m.group(1)
currFuncStartLine = lineNum + 1
continue
if inFuncDefArgMultiLine == 1:
# 1.b. Multi Line Function Arguments
m = re_funcDefArgLine.match(line)
if m is not None:
if m.group(1) == "":
# Next line is still argument list
continue
else:
# End of Argument List. Start of function body in next line.
inFuncDefArgMultiLine = 0
inFunctionBody = 1
currFuncStartLine = lineNum + 1
continue
else:
raise ParseError("Not found the expected Multi Line Argument List at %s:%d." & (fileName, lineNum))
exit(1)
# 2. Inside Function Body
if inFunctionBody == 1:
# 2.a Look for labels
m = re_basicBlockLabel.match(line)
if m is not None:
# 2.a.1 Record name of Basic Block
currBasicBlockName = m.group(1)
continue
# 2.a.2. Look for start of Basic Block
m = re_basicBlockStart.match(line)
if m is not None:
inBasicBlock = 1
currBasicBlockStartLine = lineNum + 1
continue;
if inBasicBlock == 1:
# 2.a.3. Look for end of basic block
m = re_basicBlockEnd.match(line)
if m is not None:
inBasicBlock = 0
currBasicBlockEndLine = lineNum - 1
listCurrFuncBasicBlocks.append(BasicBlock(currBasicBlockStartLine,
currBasicBlockEndLine,
isCurrBasicBlockReturning,
listCurrBlockFuncCalls,
currBasicBlockName))
# 2.b.2. List of Basic Blocks with list of their targets
listCurrFuncBasicBlockTargets.append(BasicBlockTargets(currBasicBlockName,
listCurrBasicBlockTargets))
# Resetting state variabless
currBasicBlockName = ""
currBasicBlockStartLine = 0
currBasicBlockEndLine = 0
isCurrBasicBlockReturning = 0
listCurrBlockFuncCalls = []
listCurrBasicBlockTargets = []
continue;
# 2.b. look for goto instructions
m = re_gotoLine.match(line)
if m is not None:
# 2.b.1. List of targets of current basic block
targetBlock = m.group(1)
listCurrBasicBlockTargets.append(targetBlock)
continue
# 2.c. look for function calls
m = re_funcCallLine.match(line)
if m is not None:
# 2.c.1. List of functions called by current block
funcCallName = m.group(1)
listCurrBlockFuncCalls.append(funcCallName)
continue
# 2.d. look for return instructions
m = re_returnLine.match(line)
if m is not None:
# Flag to say current basic block returns
isCurrBasicBlockReturning = 1
continue
# look for end of function definition
m = re_funcDefEnd.match(line)
if m is not None:
currFuncEndLine = lineNum - 1
for blockTarget in listCurrFuncBasicBlockTargets:
startBlockIndex = -1
index = 0
for block in listCurrFuncBasicBlocks:
if block.name == blockTarget.name:
startBlockIndex = index
break
index = index + 1
if startBlockIndex == -1:
raise ParseError("Block %s with entry in listCurrFuncBasicBlockTargets not found in listCurrFuncBasicBlocks" % (blockTarget.name))
exit(1)
for target in blockTarget.listTargets:
endBlockIndex = -1
index = 0
for block in listCurrFuncBasicBlocks:
if block.name == target:
endBlockIndex = index
break
index = index + 1
if endBlockIndex == -1:
raise ParseError("Block %s, a target of block %s with entry in listCurrFuncBasicBlockTargets not found in listCurrFuncBasicBlocks" % (target, blockTarget.name))
exit(1)
listCurrFuncBBEdges.append(BBEdge(startBlockIndex,
endBlockIndex))
if not blockTarget.listTargets and listCurrFuncBasicBlocks[startBlockIndex].isReturning == 0:
# if current block had no targets, edge to next block
listCurrFuncBBEdges.append(BBEdge(startBlockIndex,
startBlockIndex + 1))
listFunctions.append(FunctionDesc(currFuncName,
fileName,
currFuncStartLine,
currFuncEndLine,
ControlFlowGraph(listCurrFuncBasicBlocks,
listCurrFuncBBEdges)))
# Resetting State Variables
inFunctionBody = 0
inFuncDefArgMultiLine = 0
currFuncName = ""
currFuncStartLine = 0
currFuncEndLine = 0
listCurrFuncBasicBlocks = []
listCurrFuncBasicBlockTargets = []
listCurrFuncBBEdges = []
continue
return listFunctions
def print_debug(listFunctions):
for func in listFunctions:
print("\nFileName : %s" % (func.fileName))
print("Function : %s" % (func.functionName))
i = 0
for block in func.cfg.listBlocks:
print("\t Block %s: line %d - %d" % (block.name, block.startLine, block.endLine))
for funcCall in block.listFunctionCalls:
print("\t\t calls %s()" % (funcCall))
if block.isReturning == 1:
print("\t\t returns")
for edge in func.cfg.listEdges:
if edge.fromBlockIndex == i:
print("\t\t Edge to block %s" % (func.cfg.listBlocks[edge.toBlockIndex].name))
i = i + 1
if __name__ == "__main__":
if len(sys.argv) > 1:
listFileNames = sys.argv[1:]
else:
print_usage()
exit(1)
listFunctions = []
for fileName in listFileNames:
listFunctions = listFunctions + parse_isc(fileName)
print_debug(listFunctions)
\ No newline at end of file
cfg_generator/examples/erat_sieve_no_print_IR.c deleted 100644 → 0
View file @ 8a19f227
/***********************************************************
Intermediate representation of
sieve/app_dir/erat_sieve_no_print.c
Converted by ir2c v0.1
***********************************************************/
#include <limits.h>
#include <stdint.h>
#include "ir2c.h"
#include <stdio.h>
#define N 500000
unsigned int results[N];
struct test {
unsigned int v;
unsigned int k;
} m = { 1, 1 };
void sieve() {
uintptr_t ivtmp_84;
int j_82;
int i_81;
uintptr_t ivtmp_77;
uintptr_t D_2271;
uintptr_t ivtmp_67;
uintptr_t D_2260;
uintptr_t ivtmp_58;
uintptr_t D_2248;
uintptr_t ivtmp_45;
int j;
int i;
unsigned int sieve[500000];
sievebb_2:
// # PRED: ENTRY [100.0%] (fallthru,exec)
ivtmp_77 = 0;
// # SUCC: 3 [100.0%] (fallthru,exec)
sievebb_3:
// # PRED: 3 [99.0%] (dfs_back,true,exec) 2 [100.0%] (fallthru,exec)
*(unsigned int*)((uintptr_t)&results + (uintptr_t)ivtmp_77) = 0;
*(unsigned int*)((uintptr_t)&sieve + (uintptr_t)ivtmp_77) = 1;
ivtmp_77 = ivtmp_77 + 4;
if (ivtmp_77 != 2000000)
goto sievebb_3;
else
goto sievebb_15;
// # SUCC: 3 [99.0%] (dfs_back,true,exec) 15 [1.0%] (false,exec)
sievebb_15:
// # PRED: 3 [1.0%] (false,exec)
ivtmp_84 = 6;
ivtmp_67 = 4;
i_81 = 2;
// # SUCC: 4 [100.0%] (fallthru)
sievebb_4:
// # PRED: 15 [100.0%] (fallthru) 7 [99.0%] (dfs_back,true,exec)
D_2271 = (unsigned int) i_81;
if (*(unsigned int*)((uintptr_t)&sieve + (uintptr_t)D_2271 * 4) != 0)
goto sievebb_5;
else
goto sievebb_7;
// # SUCC: 5 [50.0%] (true,exec) 7 [50.0%] (false,exec)
sievebb_5:
// # PRED: 4 [50.0%] (true,exec)
j_82 = (int) ivtmp_67;
if (j_82 <= 499999)
goto sievebb_16;
else
goto sievebb_7;
// # SUCC: 16 [91.0%] (true,exec) 7 [9.0%] (false,exec)
sievebb_16:
// # PRED: 5 [91.0%] (true,exec)
ivtmp_58 = ivtmp_84;
// # SUCC: 6 [100.0%] (fallthru)
sievebb_6:
// # PRED: 6 [91.0%] (dfs_back,true,exec) 16 [100.0%] (fallthru)
sieve[j_82] = 0;
D_2260 = (unsigned int) j_82 + D_2271;
j_82 = (int) D_2260;
ivtmp_58 = ivtmp_58 + D_2271;
if ((int) (ivtmp_58 - D_2271) <= 499999)
goto sievebb_6;
else
goto sievebb_7;
// # SUCC: 6 [91.0%] (dfs_back,true,exec) 7 [9.0%] (false,exec)
sievebb_7:
// # PRED: 4 [50.0%] (false,exec) 6 [9.0%] (false,exec) 5 [9.0%] (false,exec)
i_81 = i_81 + 1;
ivtmp_67 = ivtmp_67 + 2;
ivtmp_84 = ivtmp_84 + 3;
if (i_81 * i_81 <= 499999)
goto sievebb_4;
else
goto sievebb_8;
// # SUCC: 4 [99.0%] (dfs_back,true,exec) 8 [1.0%] (false,exec)
sievebb_8:
// # PRED: 7 [1.0%] (false,exec)
j = 2;
i = 0;
// # SUCC: 9 [100.0%] (fallthru,exec)
sievebb_9:
// # PRED: 11 [99.0%] (dfs_back,true,exec) 8 [100.0%] (fallthru,exec)
D_2248 = (unsigned int) j;
if (*(unsigned int*)((uintptr_t)&sieve + (uintptr_t)D_2248 * 4) != 0)
goto sievebb_10;
else
goto sievebb_11;
// # SUCC: 10 [50.0%] (true,exec) 11 [50.0%] (false,exec)
sievebb_10:
// # PRED: 9 [50.0%] (true,exec)
results[i] = D_2248;
i = i + 1;
// # SUCC: 11 [100.0%] (fallthru,exec)
sievebb_11:
// # PRED: 9 [50.0%] (false,exec) 10 [100.0%] (fallthru,exec)
j = j + 1;
if (j != 500000)
goto sievebb_9;
else
goto sievebb_17;
// # SUCC: 9 [99.0%] (dfs_back,true,exec) 17 [1.0%] (false,exec)
sievebb_17:
// # PRED: 11 [1.0%] (false,exec)
ivtmp_45 = 0;
// # SUCC: 12 [100.0%] (fallthru)
sievebb_12:
// # PRED: 17 [100.0%] (fallthru) 13 [98.9%] (dfs_back,true,exec)
if (*(unsigned int*)((uintptr_t)&results + (uintptr_t)ivtmp_45) == 0)
goto sievebb_14;
else
goto sievebb_13;
// # SUCC: 14 [4.5%] (true,exec) 13 [95.5%] (false,exec)
sievebb_13:
// # PRED: 12 [95.5%] (false,exec)
ivtmp_45 = ivtmp_45 + 4;
if (ivtmp_45 != 2000000)
goto sievebb_12;
else
goto sievebb_14;
// # SUCC: 12 [98.9%] (dfs_back,true,exec) 14 [1.1%] (false,exec)
sievebb_14:
// # PRED: 12 [4.5%] (true,exec) 13 [1.1%] (false,exec)
m.v = 0;
return;
// # SUCC: EXIT [100.0%]
}
int main(void) {
mainbb_2:
// # PRED: ENTRY [100.0%] (fallthru,exec)
sieve ();
return 0;
// # SUCC: EXIT [100.0%]
}
cfg_generator/examples/erat_sieve_no_print_IR.objdump deleted 100644 → 0
View file @ 8a19f227
erat_sieve_no_print_IR.elf: file format elf32-littlearm
Disassembly of section .text:
00000000 <__cs3_interrupt_vector>:
0: e59ff018 ldr pc, [pc, #24] ; 20 <__cs3_region_num+0x1f>
4: e59ff018 ldr pc, [pc, #24] ; 24 <__cs3_region_num+0x23>
8: e59ff018 ldr pc, [pc, #24] ; 28 <__cs3_region_num+0x27>
c: e59ff018 ldr pc, [pc, #24] ; 2c <__cs3_region_num+0x2b>
10: e59ff018 ldr pc, [pc, #24] ; 30 <__cs3_region_num+0x2f>
14: e59ff018 ldr pc, [pc, #24] ; 34 <__cs3_region_num+0x33>
18: e59ff018 ldr pc, [pc, #24] ; 38 <__cs3_region_num+0x37>
1c: e59ff018 ldr pc, [pc, #24] ; 3c <__cs3_region_num+0x3b>
20: 00000040 andeq r0, r0, r0, asr #32
24: 000006e0 andeq r0, r0, r0, ror #13
28: 000006e0 andeq r0, r0, r0, ror #13
2c: 000006e0 andeq r0, r0, r0, ror #13
30: 000006e0 andeq r0, r0, r0, ror #13
34: 000006e0 andeq r0, r0, r0, ror #13
38: 000006e0 andeq r0, r0, r0, ror #13
3c: 000006e0 andeq r0, r0, r0, ror #13
00000040 <__cs3_reset>:
40: eaffffff b 44 <__cs3_start_asm_sim>
00000044 <__cs3_start_asm_sim>:
44: e28f103c add r1, pc, #60 ; 0x3c
48: e3a00016 mov r0, #22
4c: ef123456 svc 0x00123456
50: e3500000 cmp r0, #0
54: ba000008 blt 7c <__cs3_start_asm_sim+0x38>
58: e59f2028 ldr r2, [pc, #40] ; 88 <__cs3_heap_start_ptr>
5c: e59fd01c ldr sp, [pc, #28] ; 80 <__cs3_start_asm_sim+0x3c>
60: e5920008 ldr r0, [r2, #8]
64: e3500000 cmp r0, #0
68: 11a0d000 movne sp, r0
6c: e59f1010 ldr r1, [pc, #16] ; 84 <__cs3_start_asm_sim+0x40>
70: e5920004 ldr r0, [r2, #4]
74: e3500000 cmp r0, #0
78: 15810000 strne r0, [r1]
7c: ea000002 b 8c <__cs3_start_c>
80: 002e9400 eoreq r9, lr, r0, lsl #8
84: 00000c00 andeq r0, r0, r0, lsl #24
00000088 <__cs3_heap_start_ptr>:
88: 001e9090 mulseq lr, r0, r0
0000008c <__cs3_start_c>:
8c: e59f5114 ldr r5, [pc, #276] ; 1a8 <__cs3_start_c+0x11c>
90: e3550000 cmp r5, #0
94: e92d4888 push {r3, r7, fp, lr}
98: 0a000041 beq 1a4 <__cs3_start_c+0x118>
9c: e59f4108 ldr r4, [pc, #264] ; 1ac <__cs3_start_c+0x120>
a0: e3a0b000 mov fp, #0
a4: e3a0c000 mov ip, #0
a8: e9944005 ldmib r4, {r0, r2, lr}
ac: e1500002 cmp r0, r2
b0: 0082200e addeq r2, r2, lr
b4: 0a00001e beq 134 <__cs3_start_c+0xa8>
b8: e35e0000 cmp lr, #0
bc: 0a00001c beq 134 <__cs3_start_c+0xa8>
c0: e24e1008 sub r1, lr, #8
c4: e89000c0 ldm r0, {r6, r7}
c8: e3a03008 mov r3, #8
cc: e1a011a1 lsr r1, r1, #3
d0: e15e0003 cmp lr, r3
d4: e8a200c0 stmia r2!, {r6, r7}
d8: e2011001 and r1, r1, #1
dc: 0a000014 beq 134 <__cs3_start_c+0xa8>
e0: e3510000 cmp r1, #0
e4: 0a000005 beq 100 <__cs3_start_c+0x74>
e8: e0803003 add r3, r0, r3
ec: e89300c0 ldm r3, {r6, r7}
f0: e3a03010 mov r3, #16
f4: e15e0003 cmp lr, r3
f8: e8a200c0 stmia r2!, {r6, r7}
fc: 0a00000c beq 134 <__cs3_start_c+0xa8>
100: e0801003 add r1, r0, r3
104: e89100c0 ldm r1, {r6, r7}
108: e1a01002 mov r1, r2
10c: e8a100c0 stmia r1!, {r6, r7}
110: e2833008 add r3, r3, #8
114: e0806003 add r6, r0, r3
118: e89600c0 ldm r6, {r6, r7}
11c: e2833008 add r3, r3, #8
120: e15e0003 cmp lr, r3
124: e5826008 str r6, [r2, #8]
128: e582700c str r7, [r2, #12]
12c: e2812008 add r2, r1, #8
130: 1afffff2 bne 100 <__cs3_start_c+0x74>
134: e5940010 ldr r0, [r4, #16]
138: e3500000 cmp r0, #0
13c: 0a000015 beq 198 <__cs3_start_c+0x10c>
140: e2406008 sub r6, r0, #8
144: e3a01008 mov r1, #8
148: e1a0e1a6 lsr lr, r6, #3
14c: e1a03002 mov r3, r2
150: e1500001 cmp r0, r1
154: e20ee001 and lr, lr, #1
158: e8a31800 stmia r3!, {fp, ip}
15c: 0a00000d beq 198 <__cs3_start_c+0x10c>
160: e35e0000 cmp lr, #0
164: 0a000003 beq 178 <__cs3_start_c+0xec>
168: e3a01010 mov r1, #16
16c: e1500001 cmp r0, r1
170: e8a31800 stmia r3!, {fp, ip}
174: 0a000007 beq 198 <__cs3_start_c+0x10c>
178: e1a02003 mov r2, r3
17c: e8a21800 stmia r2!, {fp, ip}
180: e2811010 add r1, r1, #16
184: e1500001 cmp r0, r1
188: e583b008 str fp, [r3, #8]
18c: e583c00c str ip, [r3, #12]
190: e2823008 add r3, r2, #8
194: 1afffff7 bne 178 <__cs3_start_c+0xec>
198: e2555001 subs r5, r5, #1
19c: 12844014 addne r4, r4, #20
1a0: 1affffc0 bne a8 <__cs3_start_c+0x1c>
1a4: eb000135 bl 680 <__cs3_premain>
1a8: 00000001 andeq r0, r0, r1
1ac: 000007a8 andeq r0, r0, r8, lsr #15
000001b0 <__do_global_dtors_aux>:
1b0: e59f3010 ldr r3, [pc, #16] ; 1c8 <__do_global_dtors_aux+0x18>
1b4: e5d32000 ldrb r2, [r3]
1b8: e3520000 cmp r2, #0
1bc: 03a02001 moveq r2, #1
1c0: 05c32000 strbeq r2, [r3]
1c4: e12fff1e bx lr
1c8: 00000c08 andeq r0, r0, r8, lsl #24
000001cc <frame_dummy>:
1cc: e59f0024 ldr r0, [pc, #36] ; 1f8 <frame_dummy+0x2c>
1d0: e92d4008 push {r3, lr}
1d4: e5903000 ldr r3, [r0]
1d8: e3530000 cmp r3, #0
1dc: 0a000003 beq 1f0 <frame_dummy+0x24>
1e0: e59f3014 ldr r3, [pc, #20] ; 1fc <frame_dummy+0x30>
1e4: e3530000 cmp r3, #0
1e8: 11a0e00f movne lr, pc
1ec: 112fff13 bxne r3
1f0: e8bd4008 pop {r3, lr}
1f4: e12fff1e bx lr
1f8: 000007c0 andeq r0, r0, r0, asr #15
1fc: 00000000 andeq r0, r0, r0
00000200 <sieve>:
200: e92d05f0 push {r4, r5, r6, r7, r8, sl}
204: e24dd97a sub sp, sp, #1998848 ; 0x1e8000
208: e24ddd12 sub sp, sp, #1152 ; 0x480
20c: e3a03000 mov r3, #0
210: e3a0597a mov r5, #1998848 ; 0x1e8000
214: e59f1140 ldr r1, [pc, #320] ; 35c <sieve+0x15c>
218: e2855d12 add r5, r5, #1152 ; 0x480
21c: e1a00003 mov r0, r3
220: e1a0400d mov r4, sp
224: e3a0c001 mov ip, #1
228: e2832004 add r2, r3, #4
22c: e7830001 str r0, [r3, r1]
230: e784c003 str ip, [r4, r3]
234: e2823004 add r3, r2, #4
238: e1530005 cmp r3, r5
23c: e7820001 str r0, [r2, r1]
240: e784c002 str ip, [r4, r2]
244: 1afffff7 bne 228 <sieve+0x28>
248: e3a04a7a mov r4, #499712 ; 0x7a000
24c: e2843f47 add r3, r4, #284 ; 0x11c
250: e2835003 add r5, r3, #3
254: e3a07004 mov r7, #4
258: e3a03002 mov r3, #2
25c: e3a08006 mov r8, #6
260: e1a0a00d mov sl, sp
264: e79ac103 ldr ip, [sl, r3, lsl #2]
268: e35c0000 cmp ip, #0
26c: 0a00000e beq 2ac <sieve+0xac>
270: e1570005 cmp r7, r5
274: e1a0c007 mov ip, r7
278: ca00000b bgt 2ac <sieve+0xac>
27c: e1a04008 mov r4, r8
280: e28d297a add r2, sp, #1998848 ; 0x1e8000
284: e2826d12 add r6, r2, #1152 ; 0x480
288: e086210c add r2, r6, ip, lsl #2
28c: e0844003 add r4, r4, r3
290: e242297a sub r2, r2, #1998848 ; 0x1e8000
294: e0636004 rsb r6, r3, r4
298: e2422d12 sub r2, r2, #1152 ; 0x480
29c: e1560005 cmp r6, r5
2a0: e5820000 str r0, [r2]
2a4: e083c00c add ip, r3, ip
2a8: dafffff4 ble 280 <sieve+0x80>
2ac: e2833001 add r3, r3, #1
2b0: e0040393 mul r4, r3, r3
2b4: e1540005 cmp r4, r5
2b8: d2877002 addle r7, r7, #2
2bc: d2888003 addle r8, r8, #3
2c0: daffffe7 ble 264 <sieve+0x64>
2c4: e3a00a7a mov r0, #499712 ; 0x7a000
2c8: e2805e12 add r5, r0, #288 ; 0x120
2cc: e3a03002 mov r3, #2
2d0: e3a00000 mov r0, #0
2d4: e1a0c00d mov ip, sp
2d8: e79c4103 ldr r4, [ip, r3, lsl #2]
2dc: e3540000 cmp r4, #0
2e0: 17813100 strne r3, [r1, r0, lsl #2]
2e4: e2832001 add r2, r3, #1
2e8: e79c3102 ldr r3, [ip, r2, lsl #2]
2ec: 12800001 addne r0, r0, #1
2f0: e3530000 cmp r3, #0
2f4: 17812100 strne r2, [r1, r0, lsl #2]
2f8: 12800001 addne r0, r0, #1
2fc: e2823001 add r3, r2, #1
300: e1530005 cmp r3, r5
304: 1afffff3 bne 2d8 <sieve+0xd8>
308: e3a0c97a mov ip, #1998848 ; 0x1e8000
30c: e28ccd12 add ip, ip, #1152 ; 0x480
310: e3a03000 mov r3, #0
314: ea000004 b 32c <sieve+0x12c>
318: e7922001 ldr r2, [r2, r1]
31c: e3520000 cmp r2, #0
320: 0a000006 beq 340 <sieve+0x140>
324: e153000c cmp r3, ip
328: 0a000004 beq 340 <sieve+0x140>
32c: e7930001 ldr r0, [r3, r1]
330: e2832004 add r2, r3, #4
334: e3500000 cmp r0, #0
338: e2823004 add r3, r2, #4
33c: 1afffff5 bne 318 <sieve+0x118>
340: e59f3018 ldr r3, [pc, #24] ; 360 <sieve+0x160>
344: e3a01000 mov r1, #0
348: e5831000 str r1, [r3]
34c: e28ddd12 add sp, sp, #1152 ; 0x480
350: e28dd97a add sp, sp, #1998848 ; 0x1e8000
354: e8bd05f0 pop {r4, r5, r6, r7, r8, sl}
358: e12fff1e bx lr
35c: 00000c0c andeq r0, r0, ip, lsl #24
360: 000007c8 andeq r0, r0, r8, asr #15
00000364 <main>:
364: e92d4008 push {r3, lr}
368: ebffffa4 bl 200 <sieve>
36c: e3a00000 mov r0, #0
370: e8bd4008 pop {r3, lr}
374: e12fff1e bx lr
00000378 <atexit>:
378: e1a01000 mov r1, r0
37c: e3a00000 mov r0, #0
380: e92d4008 push {r3, lr}
384: e1a02000 mov r2, r0
388: e1a03000 mov r3, r0
38c: eb00000e bl 3cc <__register_exitproc>
390: e8bd4008 pop {r3, lr}
394: e12fff1e bx lr
00000398 <exit>:
398: e92d4008 push {r3, lr}
39c: e3a01000 mov r1, #0
3a0: e1a04000 mov r4, r0
3a4: eb000047 bl 4c8 <__call_exitprocs>
3a8: e59f3018 ldr r3, [pc, #24] ; 3c8 <exit+0x30>
3ac: e5930000 ldr r0, [r3]
3b0: e590303c ldr r3, [r0, #60] ; 0x3c
3b4: e3530000 cmp r3, #0
3b8: 11a0e00f movne lr, pc
3bc: 112fff13 bxne r3
3c0: e1a00004 mov r0, r4
3c4: eb0000bf bl 6c8 <_exit>
3c8: 00000764 andeq r0, r0, r4, ror #14
000003cc <__register_exitproc>:
3cc: e59fc0ec ldr ip, [pc, #236] ; 4c0 <__register_exitproc+0xf4>
3d0: e92d40f0 push {r4, r5, r6, r7, lr}
3d4: e59c5000 ldr r5, [ip]
3d8: e595c148 ldr ip, [r5, #328] ; 0x148
3dc: e35c0000 cmp ip, #0
3e0: 0285cf53 addeq ip, r5, #332 ; 0x14c
3e4: e1a04000 mov r4, r0
3e8: e59c0004 ldr r0, [ip, #4]
3ec: 0585c148 streq ip, [r5, #328] ; 0x148
3f0: e350001f cmp r0, #31
3f4: e24dd014 sub sp, sp, #20
3f8: ca000019 bgt 464 <__register_exitproc+0x98>
3fc: e3540000 cmp r4, #0
400: 1a000007 bne 424 <__register_exitproc+0x58>
404: e2803001 add r3, r0, #1
408: e58c3004 str r3, [ip, #4]
40c: e2800002 add r0, r0, #2
410: e78c1100 str r1, [ip, r0, lsl #2]
414: e3a00000 mov r0, #0
418: e28dd014 add sp, sp, #20
41c: e8bd40f0 pop {r4, r5, r6, r7, lr}
420: e12fff1e bx lr
424: e59c5004 ldr r5, [ip, #4]
428: e3a06001 mov r6, #1
42c: e1a06516 lsl r6, r6, r5
430: e59c7188 ldr r7, [ip, #392] ; 0x188
434: e3540002 cmp r4, #2
438: e1874006 orr r4, r7, r6
43c: e2857042 add r7, r5, #66 ; 0x42
440: e78c3107 str r3, [ip, r7, lsl #2]
444: 059c318c ldreq r3, [ip, #396] ; 0x18c
448: e2800022 add r0, r0, #34 ; 0x22
44c: 01836006 orreq r6, r3, r6
450: e78c2100 str r2, [ip, r0, lsl #2]
454: e58c4188 str r4, [ip, #392] ; 0x188
458: 058c618c streq r6, [ip, #396] ; 0x18c
45c: e1a00005 mov r0, r5
460: eaffffe7 b 404 <__register_exitproc+0x38>
464: e59f0058 ldr r0, [pc, #88] ; 4c4 <__register_exitproc+0xf8>
468: e3500000 cmp r0, #0
46c: 1a000001 bne 478 <__register_exitproc+0xac>
470: e3e00000 mvn r0, #0
474: eaffffe7 b 418 <__register_exitproc+0x4c>
478: e3a00e19 mov r0, #400 ; 0x190
47c: e58d100c str r1, [sp, #12]
480: e58d2008 str r2, [sp, #8]
484: e58d3004 str r3, [sp, #4]
488: e1a00000 nop ; (mov r0, r0)
48c: e250c000 subs ip, r0, #0
490: e59d100c ldr r1, [sp, #12]
494: e59d2008 ldr r2, [sp, #8]
498: e59d3004 ldr r3, [sp, #4]
49c: 0afffff3 beq 470 <__register_exitproc+0xa4>
4a0: e5956148 ldr r6, [r5, #328] ; 0x148
4a4: e3a00000 mov r0, #0
4a8: e58c6000 str r6, [ip]
4ac: e58c0004 str r0, [ip, #4]
4b0: e585c148 str ip, [r5, #328] ; 0x148
4b4: e58c0188 str r0, [ip, #392] ; 0x188
4b8: e58c018c str r0, [ip, #396] ; 0x18c
4bc: eaffffce b 3fc <__register_exitproc+0x30>
4c0: 00000764 andeq r0, r0, r4, ror #14
4c4: 00000000 andeq r0, r0, r0
000004c8 <__call_exitprocs>:
4c8: e92d4ff0 push {r4, r5, r6, r7, r8, r9, sl, fp, lr}
4cc: e59f313c ldr r3, [pc, #316] ; 610 <__call_exitprocs+0x148>
4d0: e24dd00c sub sp, sp, #12
4d4: e593a000 ldr sl, [r3]
4d8: e58d0004 str r0, [sp, #4]
4dc: e1a07001 mov r7, r1
4e0: e28abf52 add fp, sl, #328 ; 0x148
4e4: e59a6148 ldr r6, [sl, #328] ; 0x148
4e8: e3560000 cmp r6, #0
4ec: 0a000010 beq 534 <__call_exitprocs+0x6c>
4f0: e1a0900b mov r9, fp
4f4: e5965004 ldr r5, [r6, #4]
4f8: e2554001 subs r4, r5, #1
4fc: 4a000009 bmi 528 <__call_exitprocs+0x60>
500: e2855042 add r5, r5, #66 ; 0x42
504: e0865105 add r5, r6, r5, lsl #2
508: e3570000 cmp r7, #0
50c: 0a00000b beq 540 <__call_exitprocs+0x78>
510: e5153004 ldr r3, [r5, #-4]
514: e1530007 cmp r3, r7
518: 0a000008 beq 540 <__call_exitprocs+0x78>
51c: e2544001 subs r4, r4, #1
520: e2455004 sub r5, r5, #4
524: 5afffff7 bpl 508 <__call_exitprocs+0x40>
528: e59f20e4 ldr r2, [pc, #228] ; 614 <__call_exitprocs+0x14c>
52c: e3520000 cmp r2, #0
530: 1a000026 bne 5d0 <__call_exitprocs+0x108>
534: e28dd00c add sp, sp, #12
538: e8bd4ff0 pop {r4, r5, r6, r7, r8, r9, sl, fp, lr}
53c: e12fff1e bx lr
540: e5963004 ldr r3, [r6, #4]
544: e2433001 sub r3, r3, #1
548: e1530004 cmp r3, r4
54c: e5153104 ldr r3, [r5, #-260] ; 0x104
550: 13a01000 movne r1, #0
554: 05864004 streq r4, [r6, #4]
558: 15051104 strne r1, [r5, #-260] ; 0x104
55c: e3530000 cmp r3, #0
560: 0affffed beq 51c <__call_exitprocs+0x54>
564: e3a01001 mov r1, #1
568: e1a02411 lsl r2, r1, r4
56c: e5961188 ldr r1, [r6, #392] ; 0x188
570: e1120001 tst r2, r1
574: e5968004 ldr r8, [r6, #4]
578: 0a00000d beq 5b4 <__call_exitprocs+0xec>
57c: e596118c ldr r1, [r6, #396] ; 0x18c
580: e1120001 tst r2, r1
584: 1a00000d bne 5c0 <__call_exitprocs+0xf8>
588: e59d0004 ldr r0, [sp, #4]
58c: e5151084 ldr r1, [r5, #-132] ; 0x84
590: e1a0e00f mov lr, pc
594: e12fff13 bx r3
598: e5963004 ldr r3, [r6, #4]
59c: e1530008 cmp r3, r8
5a0: 1affffcf bne 4e4 <__call_exitprocs+0x1c>
5a4: e5993000 ldr r3, [r9]
5a8: e1530006 cmp r3, r6
5ac: 1affffcc bne 4e4 <__call_exitprocs+0x1c>
5b0: eaffffd9 b 51c <__call_exitprocs+0x54>
5b4: e1a0e00f mov lr, pc
5b8: e12fff13 bx r3
5bc: eafffff5 b 598 <__call_exitprocs+0xd0>
5c0: e5150084 ldr r0, [r5, #-132] ; 0x84
5c4: e1a0e00f mov lr, pc
5c8: e12fff13 bx r3
5cc: eafffff1 b 598 <__call_exitprocs+0xd0>
5d0: e5963004 ldr r3, [r6, #4]
5d4: e3530000 cmp r3, #0
5d8: e5963000 ldr r3, [r6]
5dc: 1a000008 bne 604 <__call_exitprocs+0x13c>
5e0: e3530000 cmp r3, #0
5e4: 0a000006 beq 604 <__call_exitprocs+0x13c>
5e8: e1a00006 mov r0, r6
5ec: e5893000 str r3, [r9]
5f0: e1a00000 nop ; (mov r0, r0)
5f4: e5996000 ldr r6, [r9]
5f8: e3560000 cmp r6, #0
5fc: 1affffbc bne 4f4 <__call_exitprocs+0x2c>
600: eaffffcb b 534 <__call_exitprocs+0x6c>
604: e1a09006 mov r9, r6
608: e1a06003 mov r6, r3
60c: eafffff9 b 5f8 <__call_exitprocs+0x130>
610: 00000764 andeq r0, r0, r4, ror #14
614: 00000000 andeq r0, r0, r0
00000618 <register_fini>:
618: e92d4008 push {r3, lr}
61c: e59f3010 ldr r3, [pc, #16] ; 634 <register_fini+0x1c>
620: e3530000 cmp r3, #0
624: 159f000c ldrne r0, [pc, #12] ; 638 <register_fini+0x20>
628: 1bffff52 blne 378 <atexit>
62c: e8bd4008 pop {r3, lr}
630: e12fff1e bx lr
634: 0000078c andeq r0, r0, ip, lsl #15
638: 0000063c andeq r0, r0, ip, lsr r6
0000063c <__libc_fini_array>:
63c: e92d4038 push {r3, r4, r5, lr}
640: e59f5030 ldr r5, [pc, #48] ; 678 <__libc_fini_array+0x3c>
644: e59f4030 ldr r4, [pc, #48] ; 67c <__libc_fini_array+0x40>
648: e0654004 rsb r4, r5, r4
64c: e1b04144 asrs r4, r4, #2
650: 0a000005 beq 66c <__libc_fini_array+0x30>
654: e0855104 add r5, r5, r4, lsl #2
658: e5353004 ldr r3, [r5, #-4]!
65c: e1a0e00f mov lr, pc
660: e12fff13 bx r3
664: e2544001 subs r4, r4, #1
668: 1afffffa bne 658 <__libc_fini_array+0x1c>
66c: eb000046 bl 78c <__libc_fini>
670: e8bd4038 pop {r3, r4, r5, lr}
674: e12fff1e bx lr
678: 000007a4 andeq r0, r0, r4, lsr #15
67c: 000007a8 andeq r0, r0, r8, lsr #15
00000680 <__cs3_premain>:
680: e92d4008 push {r3, lr}
684: eb000016 bl 6e4 <__libc_init_array>
688: e59f102c ldr r1, [pc, #44] ; 6bc <__cs3_premain+0x3c>
68c: e3510000 cmp r1, #0
690: 01a00001 moveq r0, r1
694: 15910000 ldrne r0, [r1]
698: e59f1020 ldr r1, [pc, #32] ; 6c0 <__cs3_premain+0x40>
69c: e3510000 cmp r1, #0
6a0: 15911000 ldrne r1, [r1]
6a4: e3a02000 mov r2, #0
6a8: ebffff2d bl 364 <main>
6ac: e59f3010 ldr r3, [pc, #16] ; 6c4 <__cs3_premain+0x44>
6b0: e3530000 cmp r3, #0
6b4: 1bffff37 blne 398 <exit>
6b8: eafffffe b 6b8 <__cs3_premain+0x38>
...
6c4: 00000398 muleq r0, r8, r3
000006c8 <_exit>:
6c8: e3a01802 mov r1, #131072 ; 0x20000
6cc: e52de004 push {lr} ; (str lr, [sp, #-4]!)
6d0: e2811026 add r1, r1, #38 ; 0x26
6d4: e3a00018 mov r0, #24
6d8: ef123456 svc 0x00123456
6dc: eafffffe b 6dc <_exit+0x14>
000006e0 <__cs3_isr_interrupt>:
6e0: eafffffe b 6e0 <__cs3_isr_interrupt>
000006e4 <__libc_init_array>:
6e4: e92d4070 push {r4, r5, r6, lr}
6e8: e59f5064 ldr r5, [pc, #100] ; 754 <__libc_init_array+0x70>
6ec: e59f6064 ldr r6, [pc, #100] ; 758 <__libc_init_array+0x74>
6f0: e0656006 rsb r6, r5, r6
6f4: e1b06146 asrs r6, r6, #2
6f8: 0a000006 beq 718 <__libc_init_array+0x34>
6fc: e3a04000 mov r4, #0
700: e795c104 ldr ip, [r5, r4, lsl #2]
704: e1a0e00f mov lr, pc
708: e12fff1c bx ip
70c: e2844001 add r4, r4, #1
710: e1560004 cmp r6, r4
714: 8afffff9 bhi 700 <__libc_init_array+0x1c>
718: e59f503c ldr r5, [pc, #60] ; 75c <__libc_init_array+0x78>
71c: e59f603c ldr r6, [pc, #60] ; 760 <__libc_init_array+0x7c>
720: e0656006 rsb r6, r5, r6
724: eb000010 bl 76c <_init>
728: e1b06146 asrs r6, r6, #2
72c: 0a000006 beq 74c <__libc_init_array+0x68>
730: e3a04000 mov r4, #0
734: e795c104 ldr ip, [r5, r4, lsl #2]
738: e1a0e00f mov lr, pc
73c: e12fff1c bx ip
740: e2844001 add r4, r4, #1
744: e1560004 cmp r6, r4
748: 8afffff9 bhi 734 <__libc_init_array+0x50>
74c: e8bd4070 pop {r4, r5, r6, lr}
750: e12fff1e bx lr
754: 00000784 andeq r0, r0, r4, lsl #15
758: 00000784 andeq r0, r0, r4, lsl #15
75c: 00000784 andeq r0, r0, r4, lsl #15
760: 0000078c andeq r0, r0, ip, lsl #15
Disassembly of section .rodata:
00000764 <_global_impure_ptr>:
764: 000007d8 ldrdeq r0, [r0], -r8
768: 00000043 andeq r0, r0, r3, asr #32
0000076c <_init>:
76c: e1a0c00d mov ip, sp
770: e92ddff8 push {r3, r4, r5, r6, r7, r8, r9, sl, fp, ip, lr, pc}
774: e24cb004 sub fp, ip, #4
778: e24bd028 sub sp, fp, #40 ; 0x28
77c: e89d6ff0 ldm sp, {r4, r5, r6, r7, r8, r9, sl, fp, sp, lr}
780: e12fff1e bx lr
00000784 <__init_array_start>:
784: 00000618 andeq r0, r0, r8, lsl r6
00000788 <__frame_dummy_init_array_entry>:
788: 000001cc andeq r0, r0, ip, asr #3
0000078c <__libc_fini>:
78c: e1a0c00d mov ip, sp
790: e92ddff8 push {r3, r4, r5, r6, r7, r8, r9, sl, fp, ip, lr, pc}
794: e24cb004 sub fp, ip, #4
798: e24bd028 sub sp, fp, #40 ; 0x28
79c: e89d6ff0 ldm sp, {r4, r5, r6, r7, r8, r9, sl, fp, sp, lr}
7a0: e12fff1e bx lr
000007a4 <__fini_array_start>:
7a4: 000001b0 strheq r0, [r0], -r0
000007a8 <__cs3_regions>:
...
7b4: 00000c08 andeq r0, r0, r8, lsl #24
7b8: 001e8488 andseq r8, lr, r8, lsl #9
000007bc <__cs3_regions_end>:
7bc: 00000000 andeq r0, r0, r0
Disassembly of section .data:
000007c0 <__JCR_END__>:
7c0: 00000000 andeq r0, r0, r0
000007c4 <__dso_handle>:
7c4: 00000000 andeq r0, r0, r0
000007c8 <m>:
7c8: 00000001 andeq r0, r0, r1
7cc: 00000001 andeq r0, r0, r1
000007d0 <_impure_ptr>:
7d0: 000007d8 ldrdeq r0, [r0], -r8
7d4: 00000000 andeq r0, r0, r0
000007d8 <impure_data>:
7d8: 00000000 andeq r0, r0, r0
7dc: 00000ac4 andeq r0, r0, r4, asr #21
7e0: 00000b2c andeq r0, r0, ip, lsr #22
7e4: 00000b94 muleq r0, r4, fp
...
80c: 00000768 andeq r0, r0, r8, ror #14
...
880: 00000001 andeq r0, r0, r1
884: 00000000 andeq r0, r0, r0
888: abcd330e blge ff34d4c8 <__cs3_heap_end+0xff0640c8>
88c: e66d1234 undefined instruction 0xe66d1234
890: 0005deec andeq sp, r5, ip, ror #29
894: 0000000b andeq r0, r0, fp
...
00000c00 <__cs3_heap_limit>:
c00: 002e9400 eoreq r9, lr, r0, lsl #8
c04: 00000000 andeq r0, r0, r0
Disassembly of section .bss:
00000c08 <completed.4678>:
c08: 00000000 andeq r0, r0, r0
00000c0c <results>:
...
Disassembly of section .comment:
00000000 <.comment>:
0: 43434700 movtmi r4, #14080 ; 0x3700
4: 5328203a teqpl r8, #58 ; 0x3a
8: 6372756f cmnvs r2, #465567744 ; 0x1bc00000
c: 20797265 rsbscs r7, r9, r5, ror #4
10: 202b2b47 eorcs r2, fp, r7, asr #22
14: 6574694c ldrbvs r6, [r4, #-2380]! ; 0x94c
18: 31303220 teqcc r0, r0, lsr #4
1c: 2d317130 ldfcss f7, [r1, #-192]! ; 0xffffff40
20: 29383831 ldmdbcs r8!, {r0, r4, r5, fp, ip, sp}
24: 342e3420 strtcc r3, [lr], #-1056 ; 0x420
28: Address 0x00000028 is out of bounds.
Disassembly of section .debug_frame:
00000000 <.debug_frame>:
0: 0000000c andeq r0, r0, ip
4: ffffffff undefined instruction 0xffffffff
8: 7c020001 stcvc 0, cr0, [r2], {1}
c: 000d0c0e andeq r0, sp, lr, lsl #24
10: 00000014 andeq r0, r0, r4, lsl r0
14: 00000000 andeq r0, r0, r0
18: 00000378 andeq r0, r0, r8, ror r3
1c: 00000020 andeq r0, r0, r0, lsr #32
20: 44080e46 strmi r0, [r8], #-3654 ; 0xe46
24: 0283018e addeq r0, r3, #-2147483613 ; 0x80000023
28: 0000000c andeq r0, r0, ip
2c: ffffffff undefined instruction 0xffffffff
30: 7c020001 stcvc 0, cr0, [r2], {1}
34: 000d0c0e andeq r0, sp, lr, lsl #24
38: 00000014 andeq r0, r0, r4, lsl r0
3c: 00000028 andeq r0, r0, r8, lsr #32
40: 00000398 muleq r0, r8, r3
44: 00000034 andeq r0, r0, r4, lsr r0
48: 44080e42 strmi r0, [r8], #-3650 ; 0xe42
4c: 0283018e addeq r0, r3, #-2147483613 ; 0x80000023
50: 0000000c andeq r0, r0, ip
54: ffffffff undefined instruction 0xffffffff
58: 7c020001 stcvc 0, cr0, [r2], {1}
5c: 000d0c0e andeq r0, sp, lr, lsl #24
60: 00000020 andeq r0, r0, r0, lsr #32
64: 00000050 andeq r0, r0, r0, asr r0
68: 000003cc andeq r0, r0, ip, asr #7
6c: 000000fc strdeq r0, [r0], -ip
70: 42140e44 andsmi r0, r4, #68, 28 ; 0x440
74: 0287018e addeq r0, r7, #-2147483613 ; 0x80000023
78: 04850386 streq r0, [r5], #902 ; 0x386
7c: 0e500584 cdpeq 5, 5, cr0, cr0, cr4, {4}
80: 00000028 andeq r0, r0, r8, lsr #32
84: 0000000c andeq r0, r0, ip
88: ffffffff undefined instruction 0xffffffff
8c: 7c020001 stcvc 0, cr0, [r2], {1}
90: 000d0c0e andeq r0, sp, lr, lsl #24
94: 00000028 andeq r0, r0, r8, lsr #32
98: 00000084 andeq r0, r0, r4, lsl #1
9c: 000004c8 andeq r0, r0, r8, asr #9
a0: 00000150 andeq r0, r0, r0, asr r1
a4: 44240e42 strtmi r0, [r4], #-3650 ; 0xe42
a8: 8e42300e cdphi 0, 4, cr3, cr2, cr14, {0}
ac: 8a028b01 bhi a2cb8 <results+0xa20ac>
b0: 88048903 stmdahi r4, {r0, r1, r8, fp, pc}
b4: 86068705 strhi r8, [r6], -r5, lsl #14
b8: 84088507 strhi r8, [r8], #-1287 ; 0x507
bc: 00000009 andeq r0, r0, r9
c0: 00000014 andeq r0, r0, r4, lsl r0
c4: 00000084 andeq r0, r0, r4, lsl #1
c8: 00000618 andeq r0, r0, r8, lsl r6
cc: 00000024 andeq r0, r0, r4, lsr #32
d0: 42080e42 andmi r0, r8, #1056 ; 0x420
d4: 0283018e addeq r0, r3, #-2147483613 ; 0x80000023
d8: 0000000c andeq r0, r0, ip
dc: ffffffff undefined instruction 0xffffffff
e0: 7c020001 stcvc 0, cr0, [r2], {1}
e4: 000d0c0e andeq r0, sp, lr, lsl #24
e8: 00000018 andeq r0, r0, r8, lsl r0
ec: 000000d8 ldrdeq r0, [r0], -r8
f0: 0000063c andeq r0, r0, ip, lsr r6
f4: 00000044 andeq r0, r0, r4, asr #32
f8: 42100e42 andsmi r0, r0, #1056 ; 0x420
fc: 0285018e addeq r0, r5, #-2147483613 ; 0x80000023
100: 04830384 streq r0, [r3], #900 ; 0x384
104: 0000000c andeq r0, r0, ip
108: ffffffff undefined instruction 0xffffffff
10c: 7c020001 stcvc 0, cr0, [r2], {1}
110: 000d0c0e andeq r0, sp, lr, lsl #24
114: 00000014 andeq r0, r0, r4, lsl r0
118: 00000104 andeq r0, r0, r4, lsl #2
11c: 00000680 andeq r0, r0, r0, lsl #13
120: 00000048 andeq r0, r0, r8, asr #32
124: 8e080e42 cdphi 14, 0, cr0, cr8, cr2, {2}
128: 00028301 andeq r8, r2, r1, lsl #6
12c: 00000018 andeq r0, r0, r8, lsl r0
130: 00000104 andeq r0, r0, r4, lsl #2
134: 0000008c andeq r0, r0, ip, lsl #1
138: 00000124 andeq r0, r0, r4, lsr #2
13c: 42100e46 andsmi r0, r0, #1120 ; 0x460
140: 028b018e addeq r0, fp, #-2147483613 ; 0x80000023
144: 04830387 streq r0, [r3], #903 ; 0x387
148: 0000000c andeq r0, r0, ip
14c: ffffffff undefined instruction 0xffffffff
150: 7c020001 stcvc 0, cr0, [r2], {1}
154: 000d0c0e andeq r0, sp, lr, lsl #24
158: 00000014 andeq r0, r0, r4, lsl r0
15c: 00000148 andeq r0, r0, r8, asr #2
160: 000006c8 andeq r0, r0, r8, asr #13
164: 00000018 andeq r0, r0, r8, lsl r0
168: 48040e44 stmdami r4, {r2, r6, r9, sl, fp}
16c: 0000018e andeq r0, r0, lr, lsl #3
170: 0000000c andeq r0, r0, ip
174: ffffffff undefined instruction 0xffffffff
178: 7c020001 stcvc 0, cr0, [r2], {1}
17c: 000d0c0e andeq r0, sp, lr, lsl #24
180: 00000018 andeq r0, r0, r8, lsl r0
184: 00000170 andeq r0, r0, r0, ror r1
188: 000006e4 andeq r0, r0, r4, ror #13
18c: 00000080 andeq r0, r0, r0, lsl #1
190: 42100e42 andsmi r0, r0, #1056 ; 0x420
194: 0286018e addeq r0, r6, #-2147483613 ; 0x80000023
198: 04840385 streq r0, [r4], #901 ; 0x385
Disassembly of section .ARM.attributes:
00000000 <.ARM.attributes>:
0: 00002d41 andeq r2, r0, r1, asr #26
4: 61656100 cmnvs r5, r0, lsl #2
8: 01006962 tsteq r0, r2, ror #18
c: 00000023 andeq r0, r0, r3, lsr #32
10: 4d524105 ldfmie f4, [r2, #-20] ; 0xffffffec
14: 4d445437 cfstrdmi mvd5, [r4, #-220] ; 0xffffff24
18: 02060049 andeq r0, r6, #73 ; 0x49
1c: 01090108 tsteq r9, r8, lsl #2
20: 01140412 tsteq r4, r2, lsl r4
24: 03170115 tsteq r7, #1073741829 ; 0x40000005
28: 011a0118 tsteq sl, r8, lsl r1
2c: Address 0x0000002c is out of bounds.
cfg_generator/examples/simple_IR.c deleted 100644 → 0
View file @ 8a19f227
/***********************************************************
Intermediate representation of
simple/app_dir/simple.c
Converted by ir2c v0.1
***********************************************************/
#include <limits.h>
#include <stdint.h>
#include "ir2c.h"
#define FIB_MAX_NUM 15
int a=0, b=1;
int i;
int main(int argc, char* argv) {
int prephitmp_52;
int prephitmp_51;
int prephitmp_50;
uintptr_t ivtmp_43;
int prephitmp_28;
mainbb_2:
// # PRED: ENTRY [100.0%] (fallthru,exec)
prephitmp_51 = b;
prephitmp_50 = a;
ivtmp_43 = 0;
// # SUCC: 3 [100.0%] (fallthru,exec)
mainbb_3:
// # PRED: 5 [100.0%] (fallthru) 2 [100.0%] (fallthru,exec)
prephitmp_28 = prephitmp_50 + prephitmp_51;
ivtmp_43 = ivtmp_43 + 1;
if (ivtmp_43 != 98)
goto mainbb_5;
else
goto mainbb_6;
// # SUCC: 5 [91.0%] (dfs_back,true,exec) 6 [9.0%] (false,exec)
mainbb_5:
// # PRED: 3 [91.0%] (dfs_back,true,exec)
prephitmp_50 = prephitmp_51;
prephitmp_51 = prephitmp_28;
goto mainbb_3;
// # SUCC: 3 [100.0%] (fallthru)
mainbb_6:
// # PRED: 3 [9.0%] (false,exec)
prephitmp_52 = prephitmp_28;
// # SUCC: 4 [100.0%] (fallthru)
mainbb_4:
// # PRED: 6 [100.0%] (fallthru)
b = prephitmp_28;
a = prephitmp_51;
i = 101;
return prephitmp_52;
// # SUCC: EXIT [100.0%]
}
cfg_generator/examples/simple_IR.objdump deleted 100644 → 0
View file @ 8a19f227
simple_IR.elf: file format elf32-littlearm
Disassembly of section .text:
00000000 <__cs3_interrupt_vector>:
0: e59ff018 ldr pc, [pc, #24] ; 20 <__cs3_region_zero_size_ram+0x10>
4: e59ff018 ldr pc, [pc, #24] ; 24 <__cs3_region_zero_size_ram+0x14>
8: e59ff018 ldr pc, [pc, #24] ; 28 <__cs3_region_zero_size_ram+0x18>
c: e59ff018 ldr pc, [pc, #24] ; 2c <__cs3_region_zero_size_ram+0x1c>
10: e59ff018 ldr pc, [pc, #24] ; 30 <__cs3_region_zero_size_ram+0x20>
14: e59ff018 ldr pc, [pc, #24] ; 34 <__cs3_region_zero_size_ram+0x24>
18: e59ff018 ldr pc, [pc, #24] ; 38 <__cs3_region_zero_size_ram+0x28>
1c: e59ff018 ldr pc, [pc, #24] ; 3c <__cs3_region_zero_size_ram+0x2c>
20: 00000040 andeq r0, r0, r0, asr #32
24: 000005c0 andeq r0, r0, r0, asr #11
28: 000005c0 andeq r0, r0, r0, asr #11
2c: 000005c0 andeq r0, r0, r0, asr #11
30: 000005c0 andeq r0, r0, r0, asr #11
34: 000005c0 andeq r0, r0, r0, asr #11
38: 000005c0 andeq r0, r0, r0, asr #11
3c: 000005c0 andeq r0, r0, r0, asr #11
00000040 <__cs3_reset>:
40: eaffffff b 44 <__cs3_start_asm_sim>
00000044 <__cs3_start_asm_sim>:
44: e28f103c add r1, pc, #60 ; 0x3c
48: e3a00016 mov r0, #22
4c: ef123456 svc 0x00123456
50: e3500000 cmp r0, #0
54: ba000008 blt 7c <__cs3_start_asm_sim+0x38>
58: e59f2028 ldr r2, [pc, #40] ; 88 <__cs3_heap_start_ptr>
5c: e59fd01c ldr sp, [pc, #28] ; 80 <__cs3_start_asm_sim+0x3c>
60: e5920008 ldr r0, [r2, #8]
64: e3500000 cmp r0, #0
68: 11a0d000 movne sp, r0
6c: e59f1010 ldr r1, [pc, #16] ; 84 <__cs3_start_asm_sim+0x40>
70: e5920004 ldr r0, [r2, #4]
74: e3500000 cmp r0, #0
78: 15810000 strne r0, [r1]
7c: ea000002 b 8c <__cs3_start_c>
80: 00100c00 andseq r0, r0, r0, lsl #24
84: 00000ae0 andeq r0, r0, r0, ror #21
00000088 <__cs3_heap_start_ptr>:
88: 00000af8 strdeq r0, [r0], -r8
0000008c <__cs3_start_c>:
8c: e59f5114 ldr r5, [pc, #276] ; 1a8 <__cs3_start_c+0x11c>
90: e3550000 cmp r5, #0
94: e92d4888 push {r3, r7, fp, lr}
98: 0a000041 beq 1a4 <__cs3_start_c+0x118>
9c: e59f4108 ldr r4, [pc, #264] ; 1ac <__cs3_start_c+0x120>
a0: e3a0b000 mov fp, #0
a4: e3a0c000 mov ip, #0
a8: e9944005 ldmib r4, {r0, r2, lr}
ac: e1500002 cmp r0, r2
b0: 0082200e addeq r2, r2, lr
b4: 0a00001e beq 134 <__cs3_start_c+0xa8>
b8: e35e0000 cmp lr, #0
bc: 0a00001c beq 134 <__cs3_start_c+0xa8>
c0: e24e1008 sub r1, lr, #8
c4: e89000c0 ldm r0, {r6, r7}
c8: e3a03008 mov r3, #8
cc: e1a011a1 lsr r1, r1, #3
d0: e15e0003 cmp lr, r3
d4: e8a200c0 stmia r2!, {r6, r7}
d8: e2011001 and r1, r1, #1
dc: 0a000014 beq 134 <__cs3_start_c+0xa8>
e0: e3510000 cmp r1, #0
e4: 0a000005 beq 100 <__cs3_start_c+0x74>
e8: e0803003 add r3, r0, r3
ec: e89300c0 ldm r3, {r6, r7}
f0: e3a03010 mov r3, #16
f4: e15e0003 cmp lr, r3
f8: e8a200c0 stmia r2!, {r6, r7}
fc: 0a00000c beq 134 <__cs3_start_c+0xa8>
100: e0801003 add r1, r0, r3
104: e89100c0 ldm r1, {r6, r7}
108: e1a01002 mov r1, r2
10c: e8a100c0 stmia r1!, {r6, r7}
110: e2833008 add r3, r3, #8
114: e0806003 add r6, r0, r3
118: e89600c0 ldm r6, {r6, r7}
11c: e2833008 add r3, r3, #8
120: e15e0003 cmp lr, r3
124: e5826008 str r6, [r2, #8]
128: e582700c str r7, [r2, #12]
12c: e2812008 add r2, r1, #8
130: 1afffff2 bne 100 <__cs3_start_c+0x74>
134: e5940010 ldr r0, [r4, #16]
138: e3500000 cmp r0, #0
13c: 0a000015 beq 198 <__cs3_start_c+0x10c>
140: e2406008 sub r6, r0, #8
144: e3a01008 mov r1, #8
148: e1a0e1a6 lsr lr, r6, #3
14c: e1a03002 mov r3, r2
150: e1500001 cmp r0, r1
154: e20ee001 and lr, lr, #1
158: e8a31800 stmia r3!, {fp, ip}
15c: 0a00000d beq 198 <__cs3_start_c+0x10c>
160: e35e0000 cmp lr, #0
164: 0a000003 beq 178 <__cs3_start_c+0xec>
168: e3a01010 mov r1, #16
16c: e1500001 cmp r0, r1
170: e8a31800 stmia r3!, {fp, ip}
174: 0a000007 beq 198 <__cs3_start_c+0x10c>
178: e1a02003 mov r2, r3
17c: e8a21800 stmia r2!, {fp, ip}
180: e2811010 add r1, r1, #16
184: e1500001 cmp r0, r1
188: e583b008 str fp, [r3, #8]
18c: e583c00c str ip, [r3, #12]
190: e2823008 add r3, r2, #8
194: 1afffff7 bne 178 <__cs3_start_c+0xec>
198: e2555001 subs r5, r5, #1
19c: 12844014 addne r4, r4, #20
1a0: 1affffc0 bne a8 <__cs3_start_c+0x1c>
1a4: eb0000ed bl 560 <__cs3_premain>
1a8: 00000001 andeq r0, r0, r1
1ac: 00000688 andeq r0, r0, r8, lsl #13
000001b0 <__do_global_dtors_aux>:
1b0: e59f3010 ldr r3, [pc, #16] ; 1c8 <__do_global_dtors_aux+0x18>
1b4: e5d32000 ldrb r2, [r3]
1b8: e3520000 cmp r2, #0
1bc: 03a02001 moveq r2, #1
1c0: 05c32000 strbeq r2, [r3]
1c4: e12fff1e bx lr
1c8: 00000ae8 andeq r0, r0, r8, ror #21
000001cc <frame_dummy>:
1cc: e59f0024 ldr r0, [pc, #36] ; 1f8 <frame_dummy+0x2c>
1d0: e92d4008 push {r3, lr}
1d4: e5903000 ldr r3, [r0]
1d8: e3530000 cmp r3, #0
1dc: 0a000003 beq 1f0 <frame_dummy+0x24>
1e0: e59f3014 ldr r3, [pc, #20] ; 1fc <frame_dummy+0x30>
1e4: e3530000 cmp r3, #0
1e8: 11a0e00f movne lr, pc
1ec: 112fff13 bxne r3
1f0: e8bd4008 pop {r3, lr}
1f4: e12fff1e bx lr
1f8: 000006a0 andeq r0, r0, r0, lsr #13
1fc: 00000000 andeq r0, r0, r0
00000200 <main>:
200: e52d4004 push {r4} ; (str r4, [sp, #-4]!)
204: e59fc040 ldr ip, [pc, #64] ; 24c <main+0x4c>
208: e59f4040 ldr r4, [pc, #64] ; 250 <main+0x50>
20c: e59c0000 ldr r0, [ip]
210: e5943000 ldr r3, [r4]
214: e3a02000 mov r2, #0
218: e0831000 add r1, r3, r0
21c: e2822003 add r2, r2, #3
220: e0803001 add r3, r0, r1
224: e3520063 cmp r2, #99 ; 0x63
228: e0810003 add r0, r1, r3
22c: 1afffff9 bne 218 <main+0x18>
230: e5843000 str r3, [r4]
234: e59f3018 ldr r3, [pc, #24] ; 254 <main+0x54>
238: e3a02066 mov r2, #102 ; 0x66
23c: e5832000 str r2, [r3]
240: e58c0000 str r0, [ip]
244: e49d4004 pop {r4} ; (ldr r4, [sp], #4)
248: e12fff1e bx lr
24c: 000006a8 andeq r0, r0, r8, lsr #13
250: 00000aec andeq r0, r0, ip, ror #21
254: 00000af0 strdeq r0, [r0], -r0
00000258 <atexit>:
258: e1a01000 mov r1, r0
25c: e3a00000 mov r0, #0
260: e92d4008 push {r3, lr}
264: e1a02000 mov r2, r0
268: e1a03000 mov r3, r0
26c: eb00000e bl 2ac <__register_exitproc>
270: e8bd4008 pop {r3, lr}
274: e12fff1e bx lr
00000278 <exit>:
278: e92d4008 push {r3, lr}
27c: e3a01000 mov r1, #0
280: e1a04000 mov r4, r0
284: eb000047 bl 3a8 <__call_exitprocs>
288: e59f3018 ldr r3, [pc, #24] ; 2a8 <exit+0x30>
28c: e5930000 ldr r0, [r3]
290: e590303c ldr r3, [r0, #60] ; 0x3c
294: e3530000 cmp r3, #0
298: 11a0e00f movne lr, pc
29c: 112fff13 bxne r3
2a0: e1a00004 mov r0, r4
2a4: eb0000bf bl 5a8 <_exit>
2a8: 00000644 andeq r0, r0, r4, asr #12
000002ac <__register_exitproc>:
2ac: e59fc0ec ldr ip, [pc, #236] ; 3a0 <__register_exitproc+0xf4>
2b0: e92d40f0 push {r4, r5, r6, r7, lr}
2b4: e59c5000 ldr r5, [ip]
2b8: e595c148 ldr ip, [r5, #328] ; 0x148
2bc: e35c0000 cmp ip, #0
2c0: 0285cf53 addeq ip, r5, #332 ; 0x14c
2c4: e1a04000 mov r4, r0
2c8: e59c0004 ldr r0, [ip, #4]
2cc: 0585c148 streq ip, [r5, #328] ; 0x148
2d0: e350001f cmp r0, #31
2d4: e24dd014 sub sp, sp, #20
2d8: ca000019 bgt 344 <__register_exitproc+0x98>
2dc: e3540000 cmp r4, #0
2e0: 1a000007 bne 304 <__register_exitproc+0x58>
2e4: e2803001 add r3, r0, #1
2e8: e58c3004 str r3, [ip, #4]
2ec: e2800002 add r0, r0, #2
2f0: e78c1100 str r1, [ip, r0, lsl #2]
2f4: e3a00000 mov r0, #0
2f8: e28dd014 add sp, sp, #20
2fc: e8bd40f0 pop {r4, r5, r6, r7, lr}
300: e12fff1e bx lr
304: e59c5004 ldr r5, [ip, #4]
308: e3a06001 mov r6, #1
30c: e1a06516 lsl r6, r6, r5
310: e59c7188 ldr r7, [ip, #392] ; 0x188
314: e3540002 cmp r4, #2
318: e1874006 orr r4, r7, r6
31c: e2857042 add r7, r5, #66 ; 0x42
320: e78c3107 str r3, [ip, r7, lsl #2]
324: 059c318c ldreq r3, [ip, #396] ; 0x18c
328: e2800022 add r0, r0, #34 ; 0x22
32c: 01836006 orreq r6, r3, r6
330: e78c2100 str r2, [ip, r0, lsl #2]
334: e58c4188 str r4, [ip, #392] ; 0x188
338: 058c618c streq r6, [ip, #396] ; 0x18c
33c: e1a00005 mov r0, r5
340: eaffffe7 b 2e4 <__register_exitproc+0x38>
344: e59f0058 ldr r0, [pc, #88] ; 3a4 <__register_exitproc+0xf8>
348: e3500000 cmp r0, #0
34c: 1a000001 bne 358 <__register_exitproc+0xac>
350: e3e00000 mvn r0, #0
354: eaffffe7 b 2f8 <__register_exitproc+0x4c>
358: e3a00e19 mov r0, #400 ; 0x190
35c: e58d100c str r1, [sp, #12]
360: e58d2008 str r2, [sp, #8]
364: e58d3004 str r3, [sp, #4]
368: e1a00000 nop ; (mov r0, r0)
36c: e250c000 subs ip, r0, #0
370: e59d100c ldr r1, [sp, #12]
374: e59d2008 ldr r2, [sp, #8]
378: e59d3004 ldr r3, [sp, #4]
37c: 0afffff3 beq 350 <__register_exitproc+0xa4>
380: e5956148 ldr r6, [r5, #328] ; 0x148
384: e3a00000 mov r0, #0
388: e58c6000 str r6, [ip]
38c: e58c0004 str r0, [ip, #4]
390: e585c148 str ip, [r5, #328] ; 0x148
394: e58c0188 str r0, [ip, #392] ; 0x188
398: e58c018c str r0, [ip, #396] ; 0x18c
39c: eaffffce b 2dc <__register_exitproc+0x30>
3a0: 00000644 andeq r0, r0, r4, asr #12
3a4: 00000000 andeq r0, r0, r0
000003a8 <__call_exitprocs>:
3a8: e92d4ff0 push {r4, r5, r6, r7, r8, r9, sl, fp, lr}
3ac: e59f313c ldr r3, [pc, #316] ; 4f0 <__call_exitprocs+0x148>
3b0: e24dd00c sub sp, sp, #12
3b4: e593a000 ldr sl, [r3]
3b8: e58d0004 str r0, [sp, #4]
3bc: e1a07001 mov r7, r1
3c0: e28abf52 add fp, sl, #328 ; 0x148
3c4: e59a6148 ldr r6, [sl, #328] ; 0x148
3c8: e3560000 cmp r6, #0
3cc: 0a000010 beq 414 <__call_exitprocs+0x6c>
3d0: e1a0900b mov r9, fp
3d4: e5965004 ldr r5, [r6, #4]
3d8: e2554001 subs r4, r5, #1
3dc: 4a000009 bmi 408 <__call_exitprocs+0x60>
3e0: e2855042 add r5, r5, #66 ; 0x42
3e4: e0865105 add r5, r6, r5, lsl #2
3e8: e3570000 cmp r7, #0
3ec: 0a00000b beq 420 <__call_exitprocs+0x78>
3f0: e5153004 ldr r3, [r5, #-4]
3f4: e1530007 cmp r3, r7
3f8: 0a000008 beq 420 <__call_exitprocs+0x78>
3fc: e2544001 subs r4, r4, #1
400: e2455004 sub r5, r5, #4
404: 5afffff7 bpl 3e8 <__call_exitprocs+0x40>
408: e59f20e4 ldr r2, [pc, #228] ; 4f4 <__call_exitprocs+0x14c>
40c: e3520000 cmp r2, #0
410: 1a000026 bne 4b0 <__call_exitprocs+0x108>
414: e28dd00c add sp, sp, #12
418: e8bd4ff0 pop {r4, r5, r6, r7, r8, r9, sl, fp, lr}
41c: e12fff1e bx lr
420: e5963004 ldr r3, [r6, #4]
424: e2433001 sub r3, r3, #1
428: e1530004 cmp r3, r4
42c: e5153104 ldr r3, [r5, #-260] ; 0x104
430: 13a01000 movne r1, #0
434: 05864004 streq r4, [r6, #4]
438: 15051104 strne r1, [r5, #-260] ; 0x104
43c: e3530000 cmp r3, #0
440: 0affffed beq 3fc <__call_exitprocs+0x54>
444: e3a01001 mov r1, #1
448: e1a02411 lsl r2, r1, r4
44c: e5961188 ldr r1, [r6, #392] ; 0x188
450: e1120001 tst r2, r1
454: e5968004 ldr r8, [r6, #4]
458: 0a00000d beq 494 <__call_exitprocs+0xec>
45c: e596118c ldr r1, [r6, #396] ; 0x18c
460: e1120001 tst r2, r1
464: 1a00000d bne 4a0 <__call_exitprocs+0xf8>
468: e59d0004 ldr r0, [sp, #4]
46c: e5151084 ldr r1, [r5, #-132] ; 0x84
470: e1a0e00f mov lr, pc
474: e12fff13 bx r3
478: e5963004 ldr r3, [r6, #4]
47c: e1530008 cmp r3, r8
480: 1affffcf bne 3c4 <__call_exitprocs+0x1c>
484: e5993000 ldr r3, [r9]
488: e1530006 cmp r3, r6
48c: 1affffcc bne 3c4 <__call_exitprocs+0x1c>
490: eaffffd9 b 3fc <__call_exitprocs+0x54>
494: e1a0e00f mov lr, pc
498: e12fff13 bx r3
49c: eafffff5 b 478 <__call_exitprocs+0xd0>
4a0: e5150084 ldr r0, [r5, #-132] ; 0x84
4a4: e1a0e00f mov lr, pc
4a8: e12fff13 bx r3
4ac: eafffff1 b 478 <__call_exitprocs+0xd0>
4b0: e5963004 ldr r3, [r6, #4]
4b4: e3530000 cmp r3, #0
4b8: e5963000 ldr r3, [r6]
4bc: 1a000008 bne 4e4 <__call_exitprocs+0x13c>
4c0: e3530000 cmp r3, #0
4c4: 0a000006 beq 4e4 <__call_exitprocs+0x13c>
4c8: e1a00006 mov r0, r6
4cc: e5893000 str r3, [r9]
4d0: e1a00000 nop ; (mov r0, r0)
4d4: e5996000 ldr r6, [r9]
4d8: e3560000 cmp r6, #0
4dc: 1affffbc bne 3d4 <__call_exitprocs+0x2c>
4e0: eaffffcb b 414 <__call_exitprocs+0x6c>
4e4: e1a09006 mov r9, r6
4e8: e1a06003 mov r6, r3
4ec: eafffff9 b 4d8 <__call_exitprocs+0x130>
4f0: 00000644 andeq r0, r0, r4, asr #12
4f4: 00000000 andeq r0, r0, r0
000004f8 <register_fini>:
4f8: e92d4008 push {r3, lr}
4fc: e59f3010 ldr r3, [pc, #16] ; 514 <register_fini+0x1c>
500: e3530000 cmp r3, #0
504: 159f000c ldrne r0, [pc, #12] ; 518 <register_fini+0x20>
508: 1bffff52 blne 258 <atexit>
50c: e8bd4008 pop {r3, lr}
510: e12fff1e bx lr
514: 0000066c andeq r0, r0, ip, ror #12
518: 0000051c andeq r0, r0, ip, lsl r5
0000051c <__libc_fini_array>:
51c: e92d4038 push {r3, r4, r5, lr}
520: e59f5030 ldr r5, [pc, #48] ; 558 <__libc_fini_array+0x3c>
524: e59f4030 ldr r4, [pc, #48] ; 55c <__libc_fini_array+0x40>
528: e0654004 rsb r4, r5, r4
52c: e1b04144 asrs r4, r4, #2
530: 0a000005 beq 54c <__libc_fini_array+0x30>
534: e0855104 add r5, r5, r4, lsl #2
538: e5353004 ldr r3, [r5, #-4]!
53c: e1a0e00f mov lr, pc
540: e12fff13 bx r3
544: e2544001 subs r4, r4, #1
548: 1afffffa bne 538 <__libc_fini_array+0x1c>
54c: eb000046 bl 66c <__libc_fini>
550: e8bd4038 pop {r3, r4, r5, lr}
554: e12fff1e bx lr
558: 00000684 andeq r0, r0, r4, lsl #13
55c: 00000688 andeq r0, r0, r8, lsl #13
00000560 <__cs3_premain>:
560: e92d4008 push {r3, lr}
564: eb000016 bl 5c4 <__libc_init_array>
568: e59f102c ldr r1, [pc, #44] ; 59c <__cs3_premain+0x3c>
56c: e3510000 cmp r1, #0
570: 01a00001 moveq r0, r1
574: 15910000 ldrne r0, [r1]
578: e59f1020 ldr r1, [pc, #32] ; 5a0 <__cs3_premain+0x40>
57c: e3510000 cmp r1, #0
580: 15911000 ldrne r1, [r1]
584: e3a02000 mov r2, #0
588: ebffff1c bl 200 <main>
58c: e59f3010 ldr r3, [pc, #16] ; 5a4 <__cs3_premain+0x44>
590: e3530000 cmp r3, #0
594: 1bffff37 blne 278 <exit>
598: eafffffe b 598 <__cs3_premain+0x38>
...
5a4: 00000278 andeq r0, r0, r8, ror r2
000005a8 <_exit>:
5a8: e3a01802 mov r1, #131072 ; 0x20000
5ac: e52de004 push {lr} ; (str lr, [sp, #-4]!)
5b0: e2811026 add r1, r1, #38 ; 0x26
5b4: e3a00018 mov r0, #24
5b8: ef123456 svc 0x00123456
5bc: eafffffe b 5bc <_exit+0x14>
000005c0 <__cs3_isr_interrupt>:
5c0: eafffffe b 5c0 <__cs3_isr_interrupt>
000005c4 <__libc_init_array>:
5c4: e92d4070 push {r4, r5, r6, lr}
5c8: e59f5064 ldr r5, [pc, #100] ; 634 <__libc_init_array+0x70>
5cc: e59f6064 ldr r6, [pc, #100] ; 638 <__libc_init_array+0x74>
5d0: e0656006 rsb r6, r5, r6
5d4: e1b06146 asrs r6, r6, #2
5d8: 0a000006 beq 5f8 <__libc_init_array+0x34>
5dc: e3a04000 mov r4, #0
5e0: e795c104 ldr ip, [r5, r4, lsl #2]
5e4: e1a0e00f mov lr, pc
5e8: e12fff1c bx ip
5ec: e2844001 add r4, r4, #1
5f0: e1560004 cmp r6, r4
5f4: 8afffff9 bhi 5e0 <__libc_init_array+0x1c>
5f8: e59f503c ldr r5, [pc, #60] ; 63c <__libc_init_array+0x78>
5fc: e59f603c ldr r6, [pc, #60] ; 640 <__libc_init_array+0x7c>
600: e0656006 rsb r6, r5, r6
604: eb000010 bl 64c <_init>
608: e1b06146 asrs r6, r6, #2
60c: 0a000006 beq 62c <__libc_init_array+0x68>
610: e3a04000 mov r4, #0
614: e795c104 ldr ip, [r5, r4, lsl #2]
618: e1a0e00f mov lr, pc
61c: e12fff1c bx ip
620: e2844001 add r4, r4, #1
624: e1560004 cmp r6, r4
628: 8afffff9 bhi 614 <__libc_init_array+0x50>
62c: e8bd4070 pop {r4, r5, r6, lr}
630: e12fff1e bx lr
634: 00000664 andeq r0, r0, r4, ror #12
638: 00000664 andeq r0, r0, r4, ror #12
63c: 00000664 andeq r0, r0, r4, ror #12
640: 0000066c andeq r0, r0, ip, ror #12
Disassembly of section .rodata:
00000644 <_global_impure_ptr>:
644: 000006b8 strheq r0, [r0], -r8
648: 00000043 andeq r0, r0, r3, asr #32
0000064c <_init>:
64c: e1a0c00d mov ip, sp
650: e92ddff8 push {r3, r4, r5, r6, r7, r8, r9, sl, fp, ip, lr, pc}
654: e24cb004 sub fp, ip, #4
658: e24bd028 sub sp, fp, #40 ; 0x28
65c: e89d6ff0 ldm sp, {r4, r5, r6, r7, r8, r9, sl, fp, sp, lr}
660: e12fff1e bx lr
00000664 <__init_array_start>:
664: 000004f8 strdeq r0, [r0], -r8
00000668 <__frame_dummy_init_array_entry>:
668: 000001cc andeq r0, r0, ip, asr #3
0000066c <__libc_fini>:
66c: e1a0c00d mov ip, sp
670: e92ddff8 push {r3, r4, r5, r6, r7, r8, r9, sl, fp, ip, lr, pc}
674: e24cb004 sub fp, ip, #4
678: e24bd028 sub sp, fp, #40 ; 0x28
67c: e89d6ff0 ldm sp, {r4, r5, r6, r7, r8, r9, sl, fp, sp, lr}
680: e12fff1e bx lr
00000684 <__fini_array_start>:
684: 000001b0 strheq r0, [r0], -r0
00000688 <__cs3_regions>:
...
694: 00000ae8 andeq r0, r0, r8, ror #21
698: 00000010 andeq r0, r0, r0, lsl r0
0000069c <__cs3_regions_end>:
69c: 00000000 andeq r0, r0, r0
Disassembly of section .data:
000006a0 <__JCR_END__>:
6a0: 00000000 andeq r0, r0, r0
000006a4 <__dso_handle>:
6a4: 00000000 andeq r0, r0, r0
000006a8 <b>:
6a8: 00000001 andeq r0, r0, r1
6ac: 00000000 andeq r0, r0, r0
000006b0 <_impure_ptr>:
6b0: 000006b8 strheq r0, [r0], -r8
6b4: 00000000 andeq r0, r0, r0
000006b8 <impure_data>:
6b8: 00000000 andeq r0, r0, r0
6bc: 000009a4 andeq r0, r0, r4, lsr #19
6c0: 00000a0c andeq r0, r0, ip, lsl #20
6c4: 00000a74 andeq r0, r0, r4, ror sl
...
6ec: 00000648 andeq r0, r0, r8, asr #12
...
760: 00000001 andeq r0, r0, r1
764: 00000000 andeq r0, r0, r0
768: abcd330e blge ff34d3a8 <__cs3_heap_end+0xff24c7a8>
76c: e66d1234 undefined instruction 0xe66d1234
770: 0005deec andeq sp, r5, ip, ror #29
774: 0000000b andeq r0, r0, fp
...
00000ae0 <__cs3_heap_limit>:
ae0: 00100c00 andseq r0, r0, r0, lsl #24
ae4: 00000000 andeq r0, r0, r0
Disassembly of section .bss:
00000ae8 <completed.4678>:
ae8: 00000000 andeq r0, r0, r0
00000aec <a>:
aec: 00000000 andeq r0, r0, r0
00000af0 <i>:
...
Disassembly of section .comment:
00000000 <.comment>:
0: 43434700 movtmi r4, #14080 ; 0x3700
4: 5328203a teqpl r8, #58 ; 0x3a
8: 6372756f cmnvs r2, #465567744 ; 0x1bc00000
c: 20797265 rsbscs r7, r9, r5, ror #4
10: 202b2b47 eorcs r2, fp, r7, asr #22
14: 6574694c ldrbvs r6, [r4, #-2380]! ; 0x94c
18: 31303220 teqcc r0, r0, lsr #4
1c: 2d317130 ldfcss f7, [r1, #-192]! ; 0xffffff40
20: 29383831 ldmdbcs r8!, {r0, r4, r5, fp, ip, sp}
24: 342e3420 strtcc r3, [lr], #-1056 ; 0x420
28: Address 0x00000028 is out of bounds.
Disassembly of section .debug_frame:
00000000 <.debug_frame>:
0: 0000000c andeq r0, r0, ip
4: ffffffff undefined instruction 0xffffffff
8: 7c020001 stcvc 0, cr0, [r2], {1}
c: 000d0c0e andeq r0, sp, lr, lsl #24
10: 00000014 andeq r0, r0, r4, lsl r0
14: 00000000 andeq r0, r0, r0
18: 00000258 andeq r0, r0, r8, asr r2
1c: 00000020 andeq r0, r0, r0, lsr #32
20: 44080e46 strmi r0, [r8], #-3654 ; 0xe46
24: 0283018e addeq r0, r3, #-2147483613 ; 0x80000023
28: 0000000c andeq r0, r0, ip
2c: ffffffff undefined instruction 0xffffffff
30: 7c020001 stcvc 0, cr0, [r2], {1}
34: 000d0c0e andeq r0, sp, lr, lsl #24
38: 00000014 andeq r0, r0, r4, lsl r0
3c: 00000028 andeq r0, r0, r8, lsr #32
40: 00000278 andeq r0, r0, r8, ror r2
44: 00000034 andeq r0, r0, r4, lsr r0
48: 44080e42 strmi r0, [r8], #-3650 ; 0xe42
4c: 0283018e addeq r0, r3, #-2147483613 ; 0x80000023
50: 0000000c andeq r0, r0, ip
54: ffffffff undefined instruction 0xffffffff
58: 7c020001 stcvc 0, cr0, [r2], {1}
5c: 000d0c0e andeq r0, sp, lr, lsl #24
60: 00000020 andeq r0, r0, r0, lsr #32
64: 00000050 andeq r0, r0, r0, asr r0
68: 000002ac andeq r0, r0, ip, lsr #5
6c: 000000fc strdeq r0, [r0], -ip
70: 42140e44 andsmi r0, r4, #68, 28 ; 0x440
74: 0287018e addeq r0, r7, #-2147483613 ; 0x80000023
78: 04850386 streq r0, [r5], #902 ; 0x386
7c: 0e500584 cdpeq 5, 5, cr0, cr0, cr4, {4}
80: 00000028 andeq r0, r0, r8, lsr #32
84: 0000000c andeq r0, r0, ip
88: ffffffff undefined instruction 0xffffffff
8c: 7c020001 stcvc 0, cr0, [r2], {1}
90: 000d0c0e andeq r0, sp, lr, lsl #24
94: 00000028 andeq r0, r0, r8, lsr #32
98: 00000084 andeq r0, r0, r4, lsl #1
9c: 000003a8 andeq r0, r0, r8, lsr #7
a0: 00000150 andeq r0, r0, r0, asr r1
a4: 44240e42 strtmi r0, [r4], #-3650 ; 0xe42
a8: 8e42300e cdphi 0, 4, cr3, cr2, cr14, {0}
ac: 8a028b01 bhi a2cb8 <__cs3_heap_start+0xa21c0>
b0: 88048903 stmdahi r4, {r0, r1, r8, fp, pc}
b4: 86068705 strhi r8, [r6], -r5, lsl #14
b8: 84088507 strhi r8, [r8], #-1287 ; 0x507
bc: 00000009 andeq r0, r0, r9
c0: 00000014 andeq r0, r0, r4, lsl r0
c4: 00000084 andeq r0, r0, r4, lsl #1
c8: 000004f8 strdeq r0, [r0], -r8
cc: 00000024 andeq r0, r0, r4, lsr #32
d0: 42080e42 andmi r0, r8, #1056 ; 0x420
d4: 0283018e addeq r0, r3, #-2147483613 ; 0x80000023
d8: 0000000c andeq r0, r0, ip
dc: ffffffff undefined instruction 0xffffffff
e0: 7c020001 stcvc 0, cr0, [r2], {1}
e4: 000d0c0e andeq r0, sp, lr, lsl #24
e8: 00000018 andeq r0, r0, r8, lsl r0
ec: 000000d8 ldrdeq r0, [r0], -r8
f0: 0000051c andeq r0, r0, ip, lsl r5
f4: 00000044 andeq r0, r0, r4, asr #32
f8: 42100e42 andsmi r0, r0, #1056 ; 0x420
fc: 0285018e addeq r0, r5, #-2147483613 ; 0x80000023
100: 04830384 streq r0, [r3], #900 ; 0x384
104: 0000000c andeq r0, r0, ip
108: ffffffff undefined instruction 0xffffffff
10c: 7c020001 stcvc 0, cr0, [r2], {1}
110: 000d0c0e andeq r0, sp, lr, lsl #24
114: 00000014 andeq r0, r0, r4, lsl r0
118: 00000104 andeq r0, r0, r4, lsl #2
11c: 00000560 andeq r0, r0, r0, ror #10
120: 00000048 andeq r0, r0, r8, asr #32
124: 8e080e42 cdphi 14, 0, cr0, cr8, cr2, {2}
128: 00028301 andeq r8, r2, r1, lsl #6
12c: 00000018 andeq r0, r0, r8, lsl r0
130: 00000104 andeq r0, r0, r4, lsl #2
134: 0000008c andeq r0, r0, ip, lsl #1
138: 00000124 andeq r0, r0, r4, lsr #2
13c: 42100e46 andsmi r0, r0, #1120 ; 0x460
140: 028b018e addeq r0, fp, #-2147483613 ; 0x80000023
144: 04830387 streq r0, [r3], #903 ; 0x387
148: 0000000c andeq r0, r0, ip
14c: ffffffff undefined instruction 0xffffffff
150: 7c020001 stcvc 0, cr0, [r2], {1}
154: 000d0c0e andeq r0, sp, lr, lsl #24
158: 00000014 andeq r0, r0, r4, lsl r0
15c: 00000148 andeq r0, r0, r8, asr #2
160: 000005a8 andeq r0, r0, r8, lsr #11
164: 00000018 andeq r0, r0, r8, lsl r0
168: 48040e44 stmdami r4, {r2, r6, r9, sl, fp}
16c: 0000018e andeq r0, r0, lr, lsl #3
170: 0000000c andeq r0, r0, ip
174: ffffffff undefined instruction 0xffffffff
178: 7c020001 stcvc 0, cr0, [r2], {1}
17c: 000d0c0e andeq r0, sp, lr, lsl #24
180: 00000018 andeq r0, r0, r8, lsl r0
184: 00000170 andeq r0, r0, r0, ror r1
188: 000005c4 andeq r0, r0, r4, asr #11
18c: 00000080 andeq r0, r0, r0, lsl #1
190: 42100e42 andsmi r0, r0, #1056 ; 0x420
194: 0286018e addeq r0, r6, #-2147483613 ; 0x80000023
198: 04840385 streq r0, [r4], #901 ; 0x385
Disassembly of section .ARM.attributes:
00000000 <.ARM.attributes>:
0: 00002d41 andeq r2, r0, r1, asr #26
4: 61656100 cmnvs r5, r0, lsl #2
8: 01006962 tsteq r0, r2, ror #18
c: 00000023 andeq r0, r0, r3, lsr #32
10: 4d524105 ldfmie f4, [r2, #-20] ; 0xffffffec
14: 4d445437 cfstrdmi mvd5, [r4, #-220] ; 0xffffff24
18: 02060049 andeq r0, r6, #73 ; 0x49
1c: 01090108 tsteq r9, r8, lsl #2
20: 01140412 tsteq r4, r2, lsl r4
24: 03170115 tsteq r7, #1073741829 ; 0x40000005
28: 011a0118 tsteq sl, r8, lsl r1
2c: Address 0x0000002c is out of bounds.
cfg_generator/map_cfg.py deleted 100644 → 0
View file @ 8a19f227
#-----------------------------------------------------------------
# map_cfg.py: Map Control Flow Graphs from Binary and ISC
#-----------------------------------------------------------------
from optparse import OptionParser
from cfg_binary import parse_binary, print_debug_binary
from cfg_isc import parse_isc, print_debug_isc
import logging
from collections import deque
listISCFileNames = []
listObjdumpFileNames = []
def map_cfg(listISCFileNames, listObjdumpFileNames):
listISCFunctions = []
listFunctionNames = []
listObjdumpFunctions = []
# Parse the ISC files
for ISCFileName in listISCFileNames:
listISCFunctions = listISCFunctions + parse_isc(ISCFileName)
for function in listISCFunctions:
listFunctionNames.append(function.functionName)
# Parse the objdump files
for ObjdumpFileName in listObjdumpFileNames:
listObjdumpFunctions = listObjdumpFunctions + parse_binary(ObjdumpFileName,
listFunctionNames)
print_debug_isc (listISCFunctions)
print_debug_binary (listObjdumpFunctions)
# Check that we found all functions in ISC in Objdump
if len(listISCFunctions) != len(listObjdumpFunctions):
raise ParseError("all functions in ISC file not found in Objdump file!")
for function in listISCFunctions:
logging.debug("Computing flow for function %s from file %s" % (function.functionName, function.fileName))
function.cfg.computeFlow()
for function in listObjdumpFunctions:
logging.debug("Computing flow for function %s from file %s" % (function.functionName, function.fileName))
function.cfg.computeFlow()
if __name__ == "__main__":
# listISCFileNames = []
# listObjdumpFileNames = []
logging.basicConfig(level=logging.DEBUG)
optparser = OptionParser()
optparser.add_option("-i", "--isc", action="append", dest="listISCFileNames",
type="string", help="ISC Filenamel. For multiple files, use -i <filename> multiple times.",
metavar="FILE")
optparser.add_option("-o", "--objdump", action="append",
type="string", dest="listObjdumpFileNames",
help="Objdump Filename. For multiple files, use -o <filename> multiple times.",
metavar="FILE")
(options, args) = optparser.parse_args()
if (len(args) > 0):
print "Addtional arguments are being ignored"
listISCFileNames = options.listISCFileNames
listObjdumpFileNames = options.listObjdumpFileNames
map_cfg(listISCFileNames, listObjdumpFileNames)
\ No newline at end of file
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment