Attachment 1088308 Details for Bug 1276909 – File: backtrace

File: backtrace

backtrace (text/plain), 45.73 KB, created by Michal Nowak on 2015-11-01 08:30:44 UTC

(hide)

Description:

Filename:

MIME Type:

Creator: Michal Nowak

Created: 2015-11-01 08:30:44 UTC

Size: 45.73 KB

patch

obsolete

>[New LWP 20882]
>[New LWP 20885]
>[Thread debugging using libthread_db enabled]
>Using host libthread_db library "/lib64/libthread_db.so.1".
>Core was generated by `SCX-3200-Series 635 newman nedele.pdf 1 TonerDensity=1 number-up=1 PageSize=A4'.
>Program terminated with signal SIGSEGV, Segmentation fault.
>#0  0x000000347667e513 in malloc_consolidate (av=av@entry=0x7f74f4000020) at malloc.c:4153
>4153		    unlink(av, p, bck, fwd);
>
>Thread 2 (Thread 0x7f74fb3f1700 (LWP 20885)):
>#0  pthread_cond_wait@@GLIBC_2.3.2 () at ../sysdeps/unix/sysv/linux/x86_64/pthread_cond_wait.S:185
>No locals.
>#1  0x000000000040848b in Semaphore::operator-- (this=this@entry=0x60f600 <_work>) at src/semaphore.cpp:73
>No locals.
>#2  0x0000000000407de0 in _cacheControllerThread (_exitVar=0x60f678 <_stopCacheControllerThread>) at src/cache.cpp:211
>        preloadPage = false
>        needToExit = 0x60f678 <_stopCacheControllerThread>
>#3  0x0000003476207555 in start_thread (arg=0x7f74fb3f1700) at pthread_create.c:333
>        __res = <optimized out>
>        pd = 0x7f74fb3f1700
>        now = <optimized out>
>        unwind_buf = {cancel_jmp_buf = {{jmp_buf = {140140408149760, -701274933232124202, 140724205141903, 140140408149760, 8388608, 0, 625266252235947734, -708052051951993130}, mask_was_saved = 0}}, priv = {pad = {0x0, 0x0, 0x0, 0x0}, data = {prev = 0x0, cleanup = 0x0, canceltype = 0}}}
>        not_first_call = <optimized out>
>        pagesize_m1 = <optimized out>
>        sp = <optimized out>
>        freesize = <optimized out>
>#4  0x0000003476702b9d in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:109
>No locals.
>
>Thread 1 (Thread 0x7f74fb3f2840 (LWP 20882)):
>#0  0x000000347667e513 in malloc_consolidate (av=av@entry=0x7f74f4000020) at malloc.c:4153
>        fb = 0x7f74f4000038
>        maxfb = 0x7f74f4000070
>        p = 0x7f74f4000950
>        nextp = 0x0
>        unsorted_bin = 0x7f74f4000078
>        first_unsorted = <optimized out>
>        nextchunk = 0x7f74f40140b0
>        size = 79712
>        nextsize = 96
>        prevsize = <optimized out>
>        nextinuse = <optimized out>
>        bck = 0x0
>        fwd = 0x7f74f40007f8
>#1  0x000000347668413b in _int_free (have_lock=0, p=<optimized out>, av=0x7f74f4000020) at malloc.c:4053
>        size = 88080
>        nextsize = 10000
>        nextinuse = <optimized out>
>        errstr = 0x0
>        nextchunk = <optimized out>
>        prevsize = <optimized out>
>        fwd = <optimized out>
>        locked = 1
>        fb = <optimized out>
>        bck = <optimized out>
>#2  __GI___libc_free (mem=<optimized out>) at malloc.c:2953
>        ar_ptr = 0x7f74f4000020
>        p = <optimized out>
>        hook = <optimized out>
>#3  0x000000347c68c1e5 in operator delete (ptr=<optimized out>) at ../../../../libstdc++-v3/libsupc++/del_op.cc:46
>No locals.
>#4  0x000000347c68c215 in operator delete[] (ptr=<optimized out>) at ../../../../libstdc++-v3/libsupc++/del_opv.cc:32
>No locals.
>#5  0x0000000000406f69 in ~BandPlane (this=0x7f74f4039530, __in_chrg=<optimized out>) at src/bandplane.cpp:38
>No locals.
>#6  BandPlane::~BandPlane (this=0x7f74f4039530, __in_chrg=<optimized out>) at src/bandplane.cpp:39
>No locals.
>#7  0x0000000000406c09 in Band::~Band (this=this@entry=0x7f74f4039570, __in_chrg=<optimized out>) at src/band.cpp:61
>        i = 0
>#8  0x0000000000406c3b in ~Band (this=0x7f74f4039570, __in_chrg=<optimized out>) at src/band.cpp:64
>No locals.
>#9  Band::~Band (this=this@entry=0x7f74f40394d0, __in_chrg=<optimized out>) at src/band.cpp:63
>No locals.
>#10 0x0000000000406c3b in ~Band (this=0x7f74f40394d0, __in_chrg=<optimized out>) at src/band.cpp:64
>No locals.
>#11 Band::~Band (this=this@entry=0x7f74f4037940, __in_chrg=<optimized out>) at src/band.cpp:63
>No locals.
>#12 0x0000000000406c3b in ~Band (this=0x7f74f4037940, __in_chrg=<optimized out>) at src/band.cpp:64
>No locals.
>#13 Band::~Band (this=this@entry=0x7f74f4036de0, __in_chrg=<optimized out>) at src/band.cpp:63
>No locals.
>#14 0x0000000000406c3b in ~Band (this=0x7f74f4036de0, __in_chrg=<optimized out>) at src/band.cpp:64
>No locals.
>#15 Band::~Band (this=this@entry=0x7f74f4035360, __in_chrg=<optimized out>) at src/band.cpp:63
>No locals.
>#16 0x0000000000406c3b in ~Band (this=0x7f74f4035360, __in_chrg=<optimized out>) at src/band.cpp:64
>No locals.
>#17 Band::~Band (this=this@entry=0x7f74f4032f40, __in_chrg=<optimized out>) at src/band.cpp:63
>No locals.
>#18 0x0000000000406c3b in ~Band (this=0x7f74f4032f40, __in_chrg=<optimized out>) at src/band.cpp:64
>No locals.
>#19 Band::~Band (this=this@entry=0x7f74f40328a0, __in_chrg=<optimized out>) at src/band.cpp:63
>No locals.
>#20 0x0000000000406c3b in ~Band (this=0x7f74f40328a0, __in_chrg=<optimized out>) at src/band.cpp:64
>No locals.
>#21 Band::~Band (this=this@entry=0x7f74f4032250, __in_chrg=<optimized out>) at src/band.cpp:63
>No locals.
>#22 0x0000000000406c3b in ~Band (this=0x7f74f4032250, __in_chrg=<optimized out>) at src/band.cpp:64
>No locals.
>#23 Band::~Band (this=this@entry=0x7f74f4030a40, __in_chrg=<optimized out>) at src/band.cpp:63
>No locals.
>#24 0x0000000000406c3b in ~Band (this=0x7f74f4030a40, __in_chrg=<optimized out>) at src/band.cpp:64
>No locals.
>#25 Band::~Band (this=this@entry=0x7f74f402ef40, __in_chrg=<optimized out>) at src/band.cpp:63
>No locals.
>#26 0x0000000000406c3b in ~Band (this=0x7f74f402ef40, __in_chrg=<optimized out>) at src/band.cpp:64
>No locals.
>#27 Band::~Band (this=this@entry=0x7f74f402d700, __in_chrg=<optimized out>) at src/band.cpp:63
>No locals.
>#28 0x0000000000406c3b in ~Band (this=0x7f74f402d700, __in_chrg=<optimized out>) at src/band.cpp:64
>No locals.
>#29 Band::~Band (this=this@entry=0x7f74f402b0a0, __in_chrg=<optimized out>) at src/band.cpp:63
>No locals.
>#30 0x0000000000406c3b in ~Band (this=0x7f74f402b0a0, __in_chrg=<optimized out>) at src/band.cpp:64
>No locals.
>#31 Band::~Band (this=this@entry=0x7f74f4028bf0, __in_chrg=<optimized out>) at src/band.cpp:63
>No locals.
>#32 0x0000000000406c3b in ~Band (this=0x7f74f4028bf0, __in_chrg=<optimized out>) at src/band.cpp:64
>No locals.
>#33 Band::~Band (this=this@entry=0x7f74f40283a0, __in_chrg=<optimized out>) at src/band.cpp:63
>No locals.
>#34 0x0000000000406c3b in ~Band (this=0x7f74f40283a0, __in_chrg=<optimized out>) at src/band.cpp:64
>No locals.
>#35 Band::~Band (this=this@entry=0x7f74f40278f0, __in_chrg=<optimized out>) at src/band.cpp:63
>No locals.
>#36 0x0000000000406c3b in ~Band (this=0x7f74f40278f0, __in_chrg=<optimized out>) at src/band.cpp:64
>No locals.
>#37 Band::~Band (this=this@entry=0x7f74f4027610, __in_chrg=<optimized out>) at src/band.cpp:63
>No locals.
>#38 0x0000000000406c3b in ~Band (this=0x7f74f4027610, __in_chrg=<optimized out>) at src/band.cpp:64
>No locals.
>#39 Band::~Band (this=this@entry=0x7f74f4027570, __in_chrg=<optimized out>) at src/band.cpp:63
>No locals.
>#40 0x0000000000406c3b in ~Band (this=0x7f74f4027570, __in_chrg=<optimized out>) at src/band.cpp:64
>No locals.
>#41 Band::~Band (this=this@entry=0x7f74f40274d0, __in_chrg=<optimized out>) at src/band.cpp:63
>No locals.
>#42 0x0000000000406c3b in ~Band (this=0x7f74f40274d0, __in_chrg=<optimized out>) at src/band.cpp:64
>No locals.
>#43 Band::~Band (this=this@entry=0x7f74f4027430, __in_chrg=<optimized out>) at src/band.cpp:63
>No locals.
>#44 0x0000000000406c3b in ~Band (this=0x7f74f4027430, __in_chrg=<optimized out>) at src/band.cpp:64
>No locals.
>#45 Band::~Band (this=this@entry=0x7f74f4027390, __in_chrg=<optimized out>) at src/band.cpp:63
>No locals.
>#46 0x0000000000406c3b in ~Band (this=0x7f74f4027390, __in_chrg=<optimized out>) at src/band.cpp:64
>No locals.
>#47 Band::~Band (this=this@entry=0x7f74f40272f0, __in_chrg=<optimized out>) at src/band.cpp:63
>No locals.
>#48 0x0000000000406c3b in ~Band (this=0x7f74f40272f0, __in_chrg=<optimized out>) at src/band.cpp:64
>No locals.
>#49 Band::~Band (this=this@entry=0x7f74f4027250, __in_chrg=<optimized out>) at src/band.cpp:63
>No locals.
>#50 0x0000000000406c3b in ~Band (this=0x7f74f4027250, __in_chrg=<optimized out>) at src/band.cpp:64
>No locals.
>#51 Band::~Band (this=this@entry=0x7f74f40271b0, __in_chrg=<optimized out>) at src/band.cpp:63
>No locals.
>#52 0x0000000000406c3b in ~Band (this=0x7f74f40271b0, __in_chrg=<optimized out>) at src/band.cpp:64
>No locals.
>#53 Band::~Band (this=this@entry=0x7f74f4026300, __in_chrg=<optimized out>) at src/band.cpp:63
>No locals.
>#54 0x0000000000406c3b in ~Band (this=0x7f74f4026300, __in_chrg=<optimized out>) at src/band.cpp:64
>No locals.
>#55 Band::~Band (this=this@entry=0x7f74f4024bf0, __in_chrg=<optimized out>) at src/band.cpp:63
>No locals.
>#56 0x0000000000406c3b in ~Band (this=0x7f74f4024bf0, __in_chrg=<optimized out>) at src/band.cpp:64
>No locals.
>#57 Band::~Band (this=this@entry=0x7f74f4023300, __in_chrg=<optimized out>) at src/band.cpp:63
>No locals.
>#58 0x0000000000406c3b in ~Band (this=0x7f74f4023300, __in_chrg=<optimized out>) at src/band.cpp:64
>No locals.
>#59 Band::~Band (this=this@entry=0x7f74f4022940, __in_chrg=<optimized out>) at src/band.cpp:63
>No locals.
>#60 0x0000000000406c3b in ~Band (this=0x7f74f4022940, __in_chrg=<optimized out>) at src/band.cpp:64
>No locals.
>#61 Band::~Band (this=this@entry=0x7f74f4022280, __in_chrg=<optimized out>) at src/band.cpp:63
>No locals.
>#62 0x0000000000406c3b in ~Band (this=0x7f74f4022280, __in_chrg=<optimized out>) at src/band.cpp:64
>No locals.
>#63 Band::~Band (this=this@entry=0x7f74f401fd30, __in_chrg=<optimized out>) at src/band.cpp:63
>No locals.
>#64 0x0000000000406c3b in ~Band (this=0x7f74f401fd30, __in_chrg=<optimized out>) at src/band.cpp:64
>No locals.
>#65 Band::~Band (this=this@entry=0x7f74f401d780, __in_chrg=<optimized out>) at src/band.cpp:63
>No locals.
>#66 0x0000000000406c3b in ~Band (this=0x7f74f401d780, __in_chrg=<optimized out>) at src/band.cpp:64
>No locals.
>#67 Band::~Band (this=this@entry=0x7f74f401b0c0, __in_chrg=<optimized out>) at src/band.cpp:63
>No locals.
>#68 0x0000000000406c3b in ~Band (this=0x7f74f401b0c0, __in_chrg=<optimized out>) at src/band.cpp:64
>No locals.
>#69 Band::~Band (this=this@entry=0x7f74f401a7b0, __in_chrg=<optimized out>) at src/band.cpp:63
>No locals.
>#70 0x0000000000406c3b in ~Band (this=0x7f74f401a7b0, __in_chrg=<optimized out>) at src/band.cpp:64
>No locals.
>#71 Band::~Band (this=this@entry=0x7f74f401a4b0, __in_chrg=<optimized out>) at src/band.cpp:63
>No locals.
>#72 0x0000000000406c3b in ~Band (this=0x7f74f401a4b0, __in_chrg=<optimized out>) at src/band.cpp:64
>No locals.
>#73 Band::~Band (this=this@entry=0x7f74f4019da0, __in_chrg=<optimized out>) at src/band.cpp:63
>No locals.
>#74 0x0000000000406c3b in ~Band (this=0x7f74f4019da0, __in_chrg=<optimized out>) at src/band.cpp:64
>No locals.
>#75 Band::~Band (this=this@entry=0x7f74f4019770, __in_chrg=<optimized out>) at src/band.cpp:63
>No locals.
>#76 0x0000000000406c3b in ~Band (this=0x7f74f4019770, __in_chrg=<optimized out>) at src/band.cpp:64
>No locals.
>#77 Band::~Band (this=this@entry=0x7f74f4018640, __in_chrg=<optimized out>) at src/band.cpp:63
>No locals.
>#78 0x0000000000406c3b in ~Band (this=0x7f74f4018640, __in_chrg=<optimized out>) at src/band.cpp:64
>No locals.
>#79 Band::~Band (this=this@entry=0x7f74f4016e90, __in_chrg=<optimized out>) at src/band.cpp:63
>No locals.
>#80 0x0000000000406c3b in ~Band (this=0x7f74f4016e90, __in_chrg=<optimized out>) at src/band.cpp:64
>No locals.
>#81 Band::~Band (this=this@entry=0x7f74f4016930, __in_chrg=<optimized out>) at src/band.cpp:63
>No locals.
>#82 0x0000000000406c3b in ~Band (this=0x7f74f4016930, __in_chrg=<optimized out>) at src/band.cpp:64
>No locals.
>#83 Band::~Band (this=this@entry=0x7f74f40140c0, __in_chrg=<optimized out>) at src/band.cpp:63
>No locals.
>#84 0x0000000000406c69 in Band::~Band (this=0x7f74f40140c0, __in_chrg=<optimized out>) at src/band.cpp:64
>No locals.
>#85 0x0000000000406642 in Page::~Page (this=this@entry=0x7f74f40008c0, __in_chrg=<optimized out>) at src/page.cpp:56
>No locals.
>#86 0x0000000000406669 in Page::~Page (this=0x7f74f40008c0, __in_chrg=<optimized out>) at src/page.cpp:59
>No locals.
>#87 0x00000000004081f9 in render (request=...) at src/rendering.cpp:151
>        manualDuplex = <optimized out>
>        checkLastPage = false
>        threads = {140140399757056, 140140391364352}
>        lastPage = false
>        page = 0x7f74f40008c0
>#88 0x0000000000401e0a in main (argc=<optimized out>, argv=<optimized out>) at src/rastertoqpdl.cpp:84
>        file = 0x0
>        request = {_vptr.Request = 0x40a3b0 <vtable for Request+16>, _ppd = 0x7ffce8424030, _username = 0x7ffce8424af5 "newman", _jobname = 0x7ffce8424af1 "635", _jobtitle = 0x7ffce8424afc "nedele.pdf", _copiesNr = 1, _printer = {_vptr.Printer = 0x40ac30 <vtable for Printer+16>, _manufacturer = 0x1244710 "Samsung", _model = 0x1245520 "Samsung SCX-3200", _beginPJL = 0x12448b0 "\033%-12345X", _endPJL = 0x1245040 "\t\033%-12345X", _color = false, _qpdlVersion = 3, _bandHeight = 128, _packetSize = 0, _paperType = 2 '\002', _paperSource = 1 '\001', _paperWidth = 0, _paperHeight = 5.93532857e-39, _unknownByte1 = 0 '\000', _unknownByte2 = 0 '\000', _unknownByte3 = 1 '\001', _pageWidth = 595, _pageHeight = 842, _hardMarginX = 10.75, _hardMarginY = 15}, _duplex = Request::Simplex, _reverseDuplex = false}
>        jobid = 0x7ffce8424af1 "635"
>        user = 0x7ffce8424af5 "newman"
>        title = 0x7ffce8424afc "nedele.pdf"
>        options = 0x7ffce8424b09 "TonerDensity=1 number-up=1 PageSize=A4 Resolution=600dpi InputSlot=Auto EconoMode=ON noJamRecovery Altitude=LOW MediaType=NORMAL PowerSave=5 job-uuid=urn:uuid:ed65fde9-00cc-3137-4437-a348d3352311 medi"...
>        ppdFile = <optimized out>
>        copies = 1
>        ppd = {_vptr.PPDFile = 0x40b310 <vtable for PPDFile+16>, _ppd = 0x12741f0}
>From                To                  Syms Read   Shared Object Library
>                                        No          linux-vdso.so.1
>0x000000348b21b980  0x000000348b262067  Yes         /lib64/libcups.so.2
>0x0000003488e0c030  0x0000003488e3d8c2  Yes         /lib64/libgssapi_krb5.so.2
>0x0000003489224af0  0x000000348928a7b4  Yes         /lib64/libkrb5.so.3
>0x0000003489a04770  0x0000003489a2213e  Yes         /lib64/libk5crypto.so.3
>0x0000003482601570  0x0000003482602133  Yes         /lib64/libcom_err.so.2
>0x0000003477202200  0x000000347720e729  Yes         /lib64/libz.so.1
>0x0000003476205a00  0x00000034762121b1  Yes         /lib64/libpthread.so.0
>0x000000348f600e50  0x000000348f605128  Yes         /lib64/libcrypt.so.1
>0x0000003478201320  0x0000003478205bb3  Yes         /lib64/libcupsimage.so.2
>0x0000003478a00ad0  0x0000003478a03091  Yes         /lib64/libjbig85.so.2.1
>0x000000347c689fa0  0x000000347c735dd9  Yes         /lib64/libstdc++.so.6
>0x0000003476a05550  0x0000003476a7723a  Yes         /lib64/libm.so.6
>0x0000003477e02af0  0x0000003477e12845  Yes         /lib64/libgcc_s.so.1
>0x000000347661f4d0  0x000000347676d474  Yes         /lib64/libc.so.6
>0x0000003495e26240  0x0000003495ee30a6  Yes         /lib64/libgnutls.so.28
>0x000000349a003530  0x000000349a008659  Yes         /lib64/libavahi-common.so.3
>0x0000003499c039d0  0x0000003499c0b9f7  Yes         /lib64/libavahi-client.so.3
>0x0000003486e036e0  0x0000003486e0a85d  Yes         /lib64/libkrb5support.so.0
>0x0000003476e00e60  0x0000003476e01a4e  Yes         /lib64/libdl.so.2
>0x0000003486a01570  0x0000003486a02194  Yes         /lib64/libkeyutils.so.1
>0x0000003478603980  0x0000003478612ff1  Yes         /lib64/libresolv.so.2
>0x0000003475e00ad0  0x0000003475e1b020  Yes         /lib64/ld-linux-x86-64.so.2
>0x000000348ee03900  0x000000348ee57a6d  Yes         /lib64/libfreebl3.so
>0x0000003490211840  0x00000034902400b7  Yes         /lib64/libp11-kit.so.0
>0x0000003494418e60  0x0000003494458172  Yes         /lib64/libtspi.so.1
>0x0000003494c02d10  0x0000003494c0de8b  Yes         /lib64/libtasn1.so.6
>0x0000003495006360  0x0000003495021eba  Yes         /lib64/libnettle.so.4
>0x0000003496206850  0x000000349621151f  Yes         /lib64/libhogweed.so.2
>0x000000349160c480  0x000000349165f1c8  Yes         /lib64/libgmp.so.10
>0x000000347d207920  0x000000347d2322f4  Yes         /lib64/libdbus-1.so.3
>0x0000003477a06300  0x0000003477a18eeb  Yes         /lib64/libselinux.so.1
>0x0000003479201870  0x000000347920600c  Yes         /lib64/libffi.so.6
>0x0000003485a682c0  0x0000003485b5953f  Yes         /lib64/libcrypto.so.10
>0x000000348e6185d0  0x000000348e6546ae  Yes         /lib64/libssl.so.10
>0x00000034776016f0  0x0000003477650456  Yes         /lib64/libpcre.so.1
>$1 = 0x0
>rax            0x0	0
>rbx            0x7f74f4000950	140140286576976
>rcx            0x7ffce8423990	140724205140368
>rdx            0x2811	10257
>rsi            0x0	0
>rdi            0x7f74f4000020	140140286574624
>rbp            0x13760	0x13760
>rsp            0x7ffce8423940	0x7ffce8423940
>r8             0x7f74f405b3a0	140140286948256
>r9             0x7f74f4000078	140140286574712
>r10            0x0	0
>r11            0x7f74f40007f8	140140286576632
>r12            0x7f74f40140b0	140140286656688
>r13            0x60	96
>r14            0x7f74f4000020	140140286574624
>r15            0x7f74f4000078	140140286574712
>rip            0x347667e513	0x347667e513 <malloc_consolidate+339>
>eflags         0x10246	[ PF ZF IF RF ]
>cs             0x33	51
>ss             0x2b	43
>ds             0x0	0
>es             0x0	0
>fs             0x0	0
>gs             0x0	0
>Dump of assembler code for function malloc_consolidate:
>   0x000000347667e3c0 <+0>:	cmpq   $0x0,0x33e478(%rip)        # 0x34769bc840 <global_max_fast>
>   0x000000347667e3c8 <+8>:	je     0x347667e91f <malloc_consolidate+1375>
>   0x000000347667e3ce <+14>:	push   %r15
>   0x000000347667e3d0 <+16>:	push   %r14
>   0x000000347667e3d2 <+18>:	mov    %rdi,%r14
>   0x000000347667e3d5 <+21>:	push   %r13
>   0x000000347667e3d7 <+23>:	push   %r12
>   0x000000347667e3d9 <+25>:	push   %rbp
>   0x000000347667e3da <+26>:	push   %rbx
>   0x000000347667e3db <+27>:	sub    $0x78,%rsp
>   0x000000347667e3df <+31>:	cmpl   $0x0,%fs:0x18
>   0x000000347667e3e8 <+40>:	je     0x347667e3eb <malloc_consolidate+43>
>   0x000000347667e3ea <+42>:	lock orl $0x1,0x4(%rdi)
>   0x000000347667e3ef <+47>:	lea    0x50(%rdi),%rax
>   0x000000347667e3f3 <+51>:	lea    0x50(%rsp),%rcx
>   0x000000347667e3f8 <+56>:	lea    0x58(%rdi),%r9
>   0x000000347667e3fc <+60>:	lea    0x8(%rdi),%r10
>   0x000000347667e400 <+64>:	mov    %rax,0x8(%rsp)
>   0x000000347667e405 <+69>:	mov    $0x1,%eax
>   0x000000347667e40a <+74>:	mov    %rcx,0x10(%rsp)
>   0x000000347667e40f <+79>:	sub    %rcx,%rax
>   0x000000347667e412 <+82>:	mov    %rax,0x18(%rsp)
>   0x000000347667e417 <+87>:	lea    0x4f(%rsp),%rax
>   0x000000347667e41c <+92>:	mov    %rax,0x20(%rsp)
>   0x000000347667e421 <+97>:	nopl   0x0(%rax)
>   0x000000347667e428 <+104>:	xor    %ebx,%ebx
>   0x000000347667e42a <+106>:	xchg   %rbx,(%r10)
>   0x000000347667e42d <+109>:	test   %rbx,%rbx
>   0x000000347667e430 <+112>:	je     0x347667e587 <malloc_consolidate+455>
>   0x000000347667e436 <+118>:	mov    %r10,(%rsp)
>   0x000000347667e43a <+122>:	mov    %r9,%r15
>   0x000000347667e43d <+125>:	jmpq   0x347667e4d8 <malloc_consolidate+280>
>   0x000000347667e442 <+130>:	nopw   0x0(%rax,%rax,1)
>   0x000000347667e448 <+136>:	add    %r13,%rbp
>   0x000000347667e44b <+139>:	mov    0x10(%r12),%r13
>   0x000000347667e450 <+144>:	mov    0x18(%r12),%rax
>   0x000000347667e455 <+149>:	cmp    0x18(%r13),%r12
>   0x000000347667e459 <+153>:	jne    0x347667e640 <malloc_consolidate+640>
>   0x000000347667e45f <+159>:	cmp    0x10(%rax),%r12
>   0x000000347667e463 <+163>:	jne    0x347667e640 <malloc_consolidate+640>
>   0x000000347667e469 <+169>:	cmpq   $0x3ff,0x8(%r12)
>   0x000000347667e472 <+178>:	mov    %rax,0x18(%r13)
>   0x000000347667e476 <+182>:	mov    %r13,0x10(%rax)
>   0x000000347667e47a <+186>:	jbe    0x347667e490 <malloc_consolidate+208>
>   0x000000347667e47c <+188>:	mov    0x20(%r12),%rax
>   0x000000347667e481 <+193>:	test   %rax,%rax
>   0x000000347667e484 <+196>:	jne    0x347667e890 <malloc_consolidate+1232>
>   0x000000347667e48a <+202>:	nopw   0x0(%rax,%rax,1)
>   0x000000347667e490 <+208>:	mov    0x68(%r14),%rax
>   0x000000347667e494 <+212>:	cmp    $0x3ff,%rbp
>   0x000000347667e49b <+219>:	mov    %rbx,0x68(%r14)
>   0x000000347667e49f <+223>:	mov    %rbx,0x18(%rax)
>   0x000000347667e4a3 <+227>:	jbe    0x347667e4b5 <malloc_consolidate+245>
>   0x000000347667e4a5 <+229>:	movq   $0x0,0x20(%rbx)
>   0x000000347667e4ad <+237>:	movq   $0x0,0x28(%rbx)
>   0x000000347667e4b5 <+245>:	mov    %rbp,%rdx
>   0x000000347667e4b8 <+248>:	mov    %r15,0x18(%rbx)
>   0x000000347667e4bc <+252>:	mov    %rax,0x10(%rbx)
>   0x000000347667e4c0 <+256>:	or     $0x1,%rdx
>   0x000000347667e4c4 <+260>:	test   %r10,%r10
>   0x000000347667e4c7 <+263>:	mov    %rdx,0x8(%rbx)
>   0x000000347667e4cb <+267>:	mov    %rbp,(%rbx,%rbp,1)
>   0x000000347667e4cf <+271>:	mov    %r10,%rbx
>   0x000000347667e4d2 <+274>:	je     0x347667e580 <malloc_consolidate+448>
>   0x000000347667e4d8 <+280>:	mov    0x8(%rbx),%rax
>   0x000000347667e4dc <+284>:	mov    0x10(%rbx),%r10
>   0x000000347667e4e0 <+288>:	mov    %rax,%rbp
>   0x000000347667e4e3 <+291>:	and    $0xfffffffffffffffa,%rbp
>   0x000000347667e4e7 <+295>:	lea    (%rbx,%rbp,1),%r12
>   0x000000347667e4eb <+299>:	mov    0x8(%r12),%r13
>   0x000000347667e4f0 <+304>:	and    $0xfffffffffffffff8,%r13
>   0x000000347667e4f4 <+308>:	test   $0x1,%al
>   0x000000347667e4f6 <+310>:	jne    0x347667e540 <malloc_consolidate+384>
>   0x000000347667e4f8 <+312>:	mov    (%rbx),%rax
>   0x000000347667e4fb <+315>:	sub    %rax,%rbx
>   0x000000347667e4fe <+318>:	add    %rax,%rbp
>   0x000000347667e501 <+321>:	mov    0x10(%rbx),%r11
>   0x000000347667e505 <+325>:	mov    0x18(%rbx),%rax
>   0x000000347667e509 <+329>:	cmp    0x18(%r11),%rbx
>   0x000000347667e50d <+333>:	jne    0x347667e5b0 <malloc_consolidate+496>
>=> 0x000000347667e513 <+339>:	cmp    0x10(%rax),%rbx
>   0x000000347667e517 <+343>:	jne    0x347667e5b0 <malloc_consolidate+496>
>   0x000000347667e51d <+349>:	cmpq   $0x3ff,0x8(%rbx)
>   0x000000347667e525 <+357>:	mov    %rax,0x18(%r11)
>   0x000000347667e529 <+361>:	mov    %r11,0x10(%rax)
>   0x000000347667e52d <+365>:	jbe    0x347667e540 <malloc_consolidate+384>
>   0x000000347667e52f <+367>:	mov    0x20(%rbx),%rax
>   0x000000347667e533 <+371>:	test   %rax,%rax
>   0x000000347667e536 <+374>:	jne    0x347667e858 <malloc_consolidate+1176>
>   0x000000347667e53c <+380>:	nopl   0x0(%rax)
>   0x000000347667e540 <+384>:	cmp    0x58(%r14),%r12
>   0x000000347667e544 <+388>:	je     0x347667e560 <malloc_consolidate+416>
>   0x000000347667e546 <+390>:	testb  $0x1,0x8(%r12,%r13,1)
>   0x000000347667e54c <+396>:	je     0x347667e448 <malloc_consolidate+136>
>   0x000000347667e552 <+402>:	andq   $0xfffffffffffffffe,0x8(%r12)
>   0x000000347667e558 <+408>:	jmpq   0x347667e490 <malloc_consolidate+208>
>   0x000000347667e55d <+413>:	nopl   (%rax)
>   0x000000347667e560 <+416>:	add    %r13,%rbp
>   0x000000347667e563 <+419>:	or     $0x1,%rbp
>   0x000000347667e567 <+423>:	test   %r10,%r10
>   0x000000347667e56a <+426>:	mov    %rbp,0x8(%rbx)
>   0x000000347667e56e <+430>:	mov    %rbx,0x58(%r14)
>   0x000000347667e572 <+434>:	mov    %r10,%rbx
>   0x000000347667e575 <+437>:	jne    0x347667e4d8 <malloc_consolidate+280>
>   0x000000347667e57b <+443>:	nopl   0x0(%rax,%rax,1)
>   0x000000347667e580 <+448>:	mov    (%rsp),%r10
>   0x000000347667e584 <+452>:	mov    %r15,%r9
>   0x000000347667e587 <+455>:	add    $0x8,%r10
>   0x000000347667e58b <+459>:	lea    -0x8(%r10),%rax
>   0x000000347667e58f <+463>:	cmp    %rax,0x8(%rsp)
>   0x000000347667e594 <+468>:	jne    0x347667e428 <malloc_consolidate+104>
>   0x000000347667e59a <+474>:	add    $0x78,%rsp
>   0x000000347667e59e <+478>:	pop    %rbx
>   0x000000347667e59f <+479>:	pop    %rbp
>   0x000000347667e5a0 <+480>:	pop    %r12
>   0x000000347667e5a2 <+482>:	pop    %r13
>   0x000000347667e5a4 <+484>:	pop    %r14
>   0x000000347667e5a6 <+486>:	pop    %r15
>   0x000000347667e5a8 <+488>:	retq   
>   0x000000347667e5a9 <+489>:	nopl   0x0(%rax)
>   0x000000347667e5b0 <+496>:	cmpl   $0x0,0x341209(%rip)        # 0x34769bf7c0 <__libc_multiple_threads>
>   0x000000347667e5b7 <+503>:	je     0x347667e5c1 <malloc_consolidate+513>
>   0x000000347667e5b9 <+505>:	lock decl (%r14)
>   0x000000347667e5bd <+509>:	jne    0x347667e5c6 <malloc_consolidate+518>
>   0x000000347667e5bf <+511>:	jmp    0x347667e5dc <malloc_consolidate+540>
>   0x000000347667e5c1 <+513>:	decl   (%r14)
>   0x000000347667e5c4 <+516>:	je     0x347667e5dc <malloc_consolidate+540>
>   0x000000347667e5c6 <+518>:	lea    (%r14),%rdi
>   0x000000347667e5c9 <+521>:	sub    $0x80,%rsp
>   0x000000347667e5d0 <+528>:	callq  0x3476710610 <__lll_unlock_wake_private>
>   0x000000347667e5d5 <+533>:	add    $0x80,%rsp
>   0x000000347667e5dc <+540>:	mov    0x33bb6d(%rip),%r11d        # 0x34769ba150 <check_action>
>   0x000000347667e5e3 <+547>:	mov    %r11d,%eax
>   0x000000347667e5e6 <+550>:	and    $0x5,%eax
>   0x000000347667e5e9 <+553>:	cmp    $0x5,%eax
>   0x000000347667e5ec <+556>:	je     0x347667e8cb <malloc_consolidate+1291>
>   0x000000347667e5f2 <+562>:	test   $0x1,%r11b
>   0x000000347667e5f6 <+566>:	jne    0x347667e6d0 <malloc_consolidate+784>
>   0x000000347667e5fc <+572>:	and    $0x2,%r11d
>   0x000000347667e600 <+576>:	jne    0x347667e98c <malloc_consolidate+1484>
>   0x000000347667e606 <+582>:	mov    $0x1,%esi
>   0x000000347667e60b <+587>:	xor    %eax,%eax
>   0x000000347667e60d <+589>:	cmpl   $0x0,0x3411ac(%rip)        # 0x34769bf7c0 <__libc_multiple_threads>
>   0x000000347667e614 <+596>:	je     0x347667e61f <malloc_consolidate+607>
>   0x000000347667e616 <+598>:	lock cmpxchg %esi,(%r14)
>   0x000000347667e61b <+603>:	jne    0x347667e625 <malloc_consolidate+613>
>   0x000000347667e61d <+605>:	jmp    0x347667e63b <malloc_consolidate+635>
>   0x000000347667e61f <+607>:	cmpxchg %esi,(%r14)
>   0x000000347667e623 <+611>:	je     0x347667e63b <malloc_consolidate+635>
>   0x000000347667e625 <+613>:	lea    (%r14),%rdi
>   0x000000347667e628 <+616>:	sub    $0x80,%rsp
>   0x000000347667e62f <+623>:	callq  0x34767105e0 <__lll_lock_wait_private>
>   0x000000347667e634 <+628>:	add    $0x80,%rsp
>   0x000000347667e63b <+635>:	jmpq   0x347667e540 <malloc_consolidate+384>
>   0x000000347667e640 <+640>:	cmpl   $0x0,0x341179(%rip)        # 0x34769bf7c0 <__libc_multiple_threads>
>   0x000000347667e647 <+647>:	je     0x347667e651 <malloc_consolidate+657>
>   0x000000347667e649 <+649>:	lock decl (%r14)
>   0x000000347667e64d <+653>:	jne    0x347667e656 <malloc_consolidate+662>
>   0x000000347667e64f <+655>:	jmp    0x347667e66c <malloc_consolidate+684>
>   0x000000347667e651 <+657>:	decl   (%r14)
>   0x000000347667e654 <+660>:	je     0x347667e66c <malloc_consolidate+684>
>   0x000000347667e656 <+662>:	lea    (%r14),%rdi
>   0x000000347667e659 <+665>:	sub    $0x80,%rsp
>   0x000000347667e660 <+672>:	callq  0x3476710610 <__lll_unlock_wake_private>
>   0x000000347667e665 <+677>:	add    $0x80,%rsp
>   0x000000347667e66c <+684>:	mov    0x33badd(%rip),%r13d        # 0x34769ba150 <check_action>
>   0x000000347667e673 <+691>:	mov    %r13d,%eax
>   0x000000347667e676 <+694>:	and    $0x5,%eax
>   0x000000347667e679 <+697>:	cmp    $0x5,%eax
>   0x000000347667e67c <+700>:	je     0x347667e8f5 <malloc_consolidate+1333>
>   0x000000347667e682 <+706>:	test   $0x1,%r13b
>   0x000000347667e686 <+710>:	jne    0x347667e7a0 <malloc_consolidate+992>
>   0x000000347667e68c <+716>:	and    $0x2,%r13d
>   0x000000347667e690 <+720>:	jne    0x347667e98c <malloc_consolidate+1484>
>   0x000000347667e696 <+726>:	mov    $0x1,%esi
>   0x000000347667e69b <+731>:	xor    %eax,%eax
>   0x000000347667e69d <+733>:	cmpl   $0x0,0x34111c(%rip)        # 0x34769bf7c0 <__libc_multiple_threads>
>   0x000000347667e6a4 <+740>:	je     0x347667e6af <malloc_consolidate+751>
>   0x000000347667e6a6 <+742>:	lock cmpxchg %esi,(%r14)
>   0x000000347667e6ab <+747>:	jne    0x347667e6b5 <malloc_consolidate+757>
>   0x000000347667e6ad <+749>:	jmp    0x347667e6cb <malloc_consolidate+779>
>   0x000000347667e6af <+751>:	cmpxchg %esi,(%r14)
>   0x000000347667e6b3 <+755>:	je     0x347667e6cb <malloc_consolidate+779>
>   0x000000347667e6b5 <+757>:	lea    (%r14),%rdi
>   0x000000347667e6b8 <+760>:	sub    $0x80,%rsp
>   0x000000347667e6bf <+767>:	callq  0x34767105e0 <__lll_lock_wait_private>
>   0x000000347667e6c4 <+772>:	add    $0x80,%rsp
>   0x000000347667e6cb <+779>:	jmpq   0x347667e490 <malloc_consolidate+208>
>   0x000000347667e6d0 <+784>:	mov    0x10(%rsp),%rax
>   0x000000347667e6d5 <+789>:	xor    %ecx,%ecx
>   0x000000347667e6d7 <+791>:	mov    $0x10,%edx
>   0x000000347667e6dc <+796>:	mov    %rbx,%rdi
>   0x000000347667e6df <+799>:	mov    %r11d,0x30(%rsp)
>   0x000000347667e6e4 <+804>:	mov    %r10,0x28(%rsp)
>   0x000000347667e6e9 <+809>:	movb   $0x0,0x60(%rsp)
>   0x000000347667e6ee <+814>:	lea    0x10(%rax),%rsi
>   0x000000347667e6f2 <+818>:	callq  0x3476649080 <_itoa_word>
>   0x000000347667e6f7 <+823>:	cmp    0x10(%rsp),%rax
>   0x000000347667e6fc <+828>:	mov    %rax,%r8
>   0x000000347667e6ff <+831>:	mov    0x28(%rsp),%r10
>   0x000000347667e704 <+836>:	mov    0x30(%rsp),%r11d
>   0x000000347667e709 <+841>:	jbe    0x347667e75b <malloc_consolidate+923>
>   0x000000347667e70b <+843>:	lea    -0x1(%rax),%rcx
>   0x000000347667e70f <+847>:	mov    0x18(%rsp),%rax
>   0x000000347667e714 <+852>:	mov    %r8,%rdi
>   0x000000347667e717 <+855>:	mov    $0x30,%esi
>   0x000000347667e71c <+860>:	mov    %r11d,0x40(%rsp)
>   0x000000347667e721 <+865>:	mov    %r10,0x38(%rsp)
>   0x000000347667e726 <+870>:	mov    %rcx,0x30(%rsp)
>   0x000000347667e72b <+875>:	mov    %r8,0x28(%rsp)
>   0x000000347667e730 <+880>:	lea    (%rax,%rcx,1),%rdx
>   0x000000347667e734 <+884>:	sub    %rdx,%rdi
>   0x000000347667e737 <+887>:	callq  0x347668ebb0 <__memset_sse2>
>   0x000000347667e73c <+892>:	mov    0x20(%rsp),%rax
>   0x000000347667e741 <+897>:	mov    0x30(%rsp),%rcx
>   0x000000347667e746 <+902>:	mov    0x28(%rsp),%r8
>   0x000000347667e74b <+907>:	mov    0x40(%rsp),%r11d
>   0x000000347667e750 <+912>:	mov    0x38(%rsp),%r10
>   0x000000347667e755 <+917>:	sub    %rcx,%rax
>   0x000000347667e758 <+920>:	add    %rax,%r8
>   0x000000347667e75b <+923>:	mov    0x340bce(%rip),%rax        # 0x34769bf330 <__libc_argv>
>   0x000000347667e762 <+930>:	lea    0x109950(%rip),%rdx        # 0x34767880b9
>   0x000000347667e769 <+937>:	mov    %r11d,%edi
>   0x000000347667e76c <+940>:	lea    0x10996d(%rip),%rcx        # 0x34767880e0
>   0x000000347667e773 <+947>:	lea    0x10c066(%rip),%rsi        # 0x347678a7e0
>   0x000000347667e77a <+954>:	mov    %r10,0x28(%rsp)
>   0x000000347667e77f <+959>:	mov    (%rax),%rax
>   0x000000347667e782 <+962>:	test   %rax,%rax
>   0x000000347667e785 <+965>:	cmovne %rax,%rdx
>   0x000000347667e789 <+969>:	and    $0x2,%edi
>   0x000000347667e78c <+972>:	xor    %eax,%eax
>   0x000000347667e78e <+974>:	callq  0x34766777d0 <__libc_message>
>   0x000000347667e793 <+979>:	mov    0x28(%rsp),%r10
>   0x000000347667e798 <+984>:	jmpq   0x347667e606 <malloc_consolidate+582>
>   0x000000347667e79d <+989>:	nopl   (%rax)
>   0x000000347667e7a0 <+992>:	mov    0x10(%rsp),%rax
>   0x000000347667e7a5 <+997>:	xor    %ecx,%ecx
>   0x000000347667e7a7 <+999>:	mov    %r12,%rdi
>   0x000000347667e7aa <+1002>:	mov    $0x10,%edx
>   0x000000347667e7af <+1007>:	mov    %r10,0x28(%rsp)
>   0x000000347667e7b4 <+1012>:	movb   $0x0,0x60(%rsp)
>   0x000000347667e7b9 <+1017>:	lea    0x10(%rax),%rsi
>   0x000000347667e7bd <+1021>:	callq  0x3476649080 <_itoa_word>
>   0x000000347667e7c2 <+1026>:	cmp    0x10(%rsp),%rax
>   0x000000347667e7c7 <+1031>:	mov    %rax,%r12
>   0x000000347667e7ca <+1034>:	mov    0x28(%rsp),%r10
>   0x000000347667e7cf <+1039>:	jbe    0x347667e80d <malloc_consolidate+1101>
>   0x000000347667e7d1 <+1041>:	lea    -0x1(%rax),%rcx
>   0x000000347667e7d5 <+1045>:	mov    0x18(%rsp),%rax
>   0x000000347667e7da <+1050>:	mov    %r12,%rdi
>   0x000000347667e7dd <+1053>:	mov    $0x30,%esi
>   0x000000347667e7e2 <+1058>:	mov    %r10,0x30(%rsp)
>   0x000000347667e7e7 <+1063>:	mov    %rcx,0x28(%rsp)
>   0x000000347667e7ec <+1068>:	lea    (%rax,%rcx,1),%rdx
>   0x000000347667e7f0 <+1072>:	sub    %rdx,%rdi
>   0x000000347667e7f3 <+1075>:	callq  0x347668ebb0 <__memset_sse2>
>   0x000000347667e7f8 <+1080>:	mov    0x20(%rsp),%rax
>   0x000000347667e7fd <+1085>:	mov    0x28(%rsp),%rcx
>   0x000000347667e802 <+1090>:	mov    0x30(%rsp),%r10
>   0x000000347667e807 <+1095>:	sub    %rcx,%rax
>   0x000000347667e80a <+1098>:	add    %rax,%r12
>   0x000000347667e80d <+1101>:	mov    0x340b1c(%rip),%rax        # 0x34769bf330 <__libc_argv>
>   0x000000347667e814 <+1108>:	lea    0x10989e(%rip),%rdx        # 0x34767880b9
>   0x000000347667e81b <+1115>:	mov    %r13d,%edi
>   0x000000347667e81e <+1118>:	lea    0x1098bb(%rip),%rcx        # 0x34767880e0
>   0x000000347667e825 <+1125>:	lea    0x10bfb4(%rip),%rsi        # 0x347678a7e0
>   0x000000347667e82c <+1132>:	mov    %r12,%r8
>   0x000000347667e82f <+1135>:	mov    %r10,0x28(%rsp)
>   0x000000347667e834 <+1140>:	mov    (%rax),%rax
>   0x000000347667e837 <+1143>:	test   %rax,%rax
>   0x000000347667e83a <+1146>:	cmovne %rax,%rdx
>   0x000000347667e83e <+1150>:	and    $0x2,%edi
>   0x000000347667e841 <+1153>:	xor    %eax,%eax
>   0x000000347667e843 <+1155>:	callq  0x34766777d0 <__libc_message>
>   0x000000347667e848 <+1160>:	mov    0x28(%rsp),%r10
>   0x000000347667e84d <+1165>:	jmpq   0x347667e696 <malloc_consolidate+726>
>   0x000000347667e852 <+1170>:	nopw   0x0(%rax,%rax,1)
>   0x000000347667e858 <+1176>:	cmp    0x28(%rax),%rbx
>   0x000000347667e85c <+1180>:	jne    0x347667e962 <malloc_consolidate+1442>
>   0x000000347667e862 <+1186>:	mov    0x28(%rbx),%rdx
>   0x000000347667e866 <+1190>:	cmp    0x20(%rdx),%rbx
>   0x000000347667e86a <+1194>:	jne    0x347667e962 <malloc_consolidate+1442>
>   0x000000347667e870 <+1200>:	cmpq   $0x0,0x20(%r11)
>   0x000000347667e875 <+1205>:	je     0x347667e9f6 <malloc_consolidate+1590>
>   0x000000347667e87b <+1211>:	mov    0x28(%rbx),%rdx
>   0x000000347667e87f <+1215>:	mov    %rdx,0x28(%rax)
>   0x000000347667e883 <+1219>:	mov    0x28(%rbx),%rdx
>   0x000000347667e887 <+1223>:	mov    %rax,0x20(%rdx)
>   0x000000347667e88b <+1227>:	jmpq   0x347667e540 <malloc_consolidate+384>
>   0x000000347667e890 <+1232>:	cmp    0x28(%rax),%r12
>   0x000000347667e894 <+1236>:	jne    0x347667e998 <malloc_consolidate+1496>
>   0x000000347667e89a <+1242>:	mov    0x28(%r12),%rdx
>   0x000000347667e89f <+1247>:	cmp    0x20(%rdx),%r12
>   0x000000347667e8a3 <+1251>:	jne    0x347667e998 <malloc_consolidate+1496>
>   0x000000347667e8a9 <+1257>:	cmpq   $0x0,0x20(%r13)
>   0x000000347667e8ae <+1262>:	je     0x347667e9c9 <malloc_consolidate+1545>
>   0x000000347667e8b4 <+1268>:	mov    0x28(%r12),%rdx
>   0x000000347667e8b9 <+1273>:	mov    %rdx,0x28(%rax)
>   0x000000347667e8bd <+1277>:	mov    0x28(%r12),%rdx
>   0x000000347667e8c2 <+1282>:	mov    %rax,0x20(%rdx)
>   0x000000347667e8c6 <+1286>:	jmpq   0x347667e490 <malloc_consolidate+208>
>   0x000000347667e8cb <+1291>:	mov    %r11d,%edi
>   0x000000347667e8ce <+1294>:	lea    0x10980b(%rip),%rdx        # 0x34767880e0
>   0x000000347667e8d5 <+1301>:	lea    0x10ade4(%rip),%rsi        # 0x34767896c0
>   0x000000347667e8dc <+1308>:	and    $0x2,%edi
>   0x000000347667e8df <+1311>:	xor    %eax,%eax
>   0x000000347667e8e1 <+1313>:	mov    %r10,0x28(%rsp)
>   0x000000347667e8e6 <+1318>:	callq  0x34766777d0 <__libc_message>
>   0x000000347667e8eb <+1323>:	mov    0x28(%rsp),%r10
>   0x000000347667e8f0 <+1328>:	jmpq   0x347667e606 <malloc_consolidate+582>
>   0x000000347667e8f5 <+1333>:	mov    %r13d,%edi
>   0x000000347667e8f8 <+1336>:	lea    0x1097e1(%rip),%rdx        # 0x34767880e0
>   0x000000347667e8ff <+1343>:	lea    0x10adba(%rip),%rsi        # 0x34767896c0
>   0x000000347667e906 <+1350>:	and    $0x2,%edi
>   0x000000347667e909 <+1353>:	xor    %eax,%eax
>   0x000000347667e90b <+1355>:	mov    %r10,0x28(%rsp)
>   0x000000347667e910 <+1360>:	callq  0x34766777d0 <__libc_message>
>   0x000000347667e915 <+1365>:	mov    0x28(%rsp),%r10
>   0x000000347667e91a <+1370>:	jmpq   0x347667e696 <malloc_consolidate+726>
>   0x000000347667e91f <+1375>:	lea    0x58(%rdi),%rcx
>   0x000000347667e923 <+1379>:	lea    0x848(%rdi),%rdx
>   0x000000347667e92a <+1386>:	mov    %rcx,%rax
>   0x000000347667e92d <+1389>:	nopl   (%rax)
>   0x000000347667e930 <+1392>:	mov    %rax,0x18(%rax)
>   0x000000347667e934 <+1396>:	mov    %rax,0x10(%rax)
>   0x000000347667e938 <+1400>:	add    $0x10,%rax
>   0x000000347667e93c <+1404>:	cmp    %rax,%rdx
>   0x000000347667e93f <+1407>:	jne    0x347667e930 <malloc_consolidate+1392>
>   0x000000347667e941 <+1409>:	lea    0x33c1d8(%rip),%rax        # 0x34769bab20 <main_arena>
>   0x000000347667e948 <+1416>:	cmp    %rax,%rdi
>   0x000000347667e94b <+1419>:	je     0x347667ebe4 <malloc_consolidate+2084>
>   0x000000347667e951 <+1425>:	mov    0x4(%rdi),%eax
>   0x000000347667e954 <+1428>:	or     $0x2,%eax
>   0x000000347667e957 <+1431>:	or     $0x1,%eax
>   0x000000347667e95a <+1434>:	mov    %rcx,0x58(%rdi)
>   0x000000347667e95e <+1438>:	mov    %eax,0x4(%rdi)
>   0x000000347667e961 <+1441>:	retq   
>   0x000000347667e962 <+1442>:	mov    0x33b7e7(%rip),%r8d        # 0x34769ba150 <check_action>
>   0x000000347667e969 <+1449>:	mov    %r8d,%edx
>   0x000000347667e96c <+1452>:	and    $0x5,%edx
>   0x000000347667e96f <+1455>:	cmp    $0x5,%edx
>   0x000000347667e972 <+1458>:	je     0x347667ec04 <malloc_consolidate+2116>
>   0x000000347667e978 <+1464>:	test   $0x1,%r8b
>   0x000000347667e97c <+1468>:	jne    0x347667ea20 <malloc_consolidate+1632>
>   0x000000347667e982 <+1474>:	and    $0x2,%r8d
>   0x000000347667e986 <+1478>:	je     0x347667e870 <malloc_consolidate+1200>
>   0x000000347667e98c <+1484>:	callq  0x34766364f0 <__GI_abort>
>   0x000000347667e991 <+1489>:	nopl   0x0(%rax)
>   0x000000347667e998 <+1496>:	mov    0x33b7b1(%rip),%r11d        # 0x34769ba150 <check_action>
>   0x000000347667e99f <+1503>:	mov    %r11d,%edx
>   0x000000347667e9a2 <+1506>:	and    $0x5,%edx
>   0x000000347667e9a5 <+1509>:	cmp    $0x5,%edx
>   0x000000347667e9a8 <+1512>:	je     0x347667ec49 <malloc_consolidate+2185>
>   0x000000347667e9ae <+1518>:	test   $0x1,%r11b
>   0x000000347667e9b2 <+1522>:	jne    0x347667eb12 <malloc_consolidate+1874>
>   0x000000347667e9b8 <+1528>:	and    $0x2,%r11d
>   0x000000347667e9bc <+1532>:	jne    0x347667e98c <malloc_consolidate+1484>
>   0x000000347667e9be <+1534>:	cmpq   $0x0,0x20(%r13)
>   0x000000347667e9c3 <+1539>:	jne    0x347667e8b4 <malloc_consolidate+1268>
>   0x000000347667e9c9 <+1545>:	cmp    %rax,%r12
>   0x000000347667e9cc <+1548>:	je     0x347667ec3c <malloc_consolidate+2172>
>   0x000000347667e9d2 <+1554>:	mov    %rax,0x20(%r13)
>   0x000000347667e9d6 <+1558>:	mov    0x28(%r12),%rax
>   0x000000347667e9db <+1563>:	mov    %rax,0x28(%r13)
>   0x000000347667e9df <+1567>:	mov    0x20(%r12),%rax
>   0x000000347667e9e4 <+1572>:	mov    %r13,0x28(%rax)
>   0x000000347667e9e8 <+1576>:	mov    0x28(%r12),%rax
>   0x000000347667e9ed <+1581>:	mov    %r13,0x20(%rax)
>   0x000000347667e9f1 <+1585>:	jmpq   0x347667e490 <malloc_consolidate+208>
>   0x000000347667e9f6 <+1590>:	cmp    %rax,%rbx
>   0x000000347667e9f9 <+1593>:	je     0x347667ebf7 <malloc_consolidate+2103>
>   0x000000347667e9ff <+1599>:	mov    %rax,0x20(%r11)
>   0x000000347667ea03 <+1603>:	mov    0x28(%rbx),%rax
>   0x000000347667ea07 <+1607>:	mov    %rax,0x28(%r11)
>   0x000000347667ea0b <+1611>:	mov    0x20(%rbx),%rax
>   0x000000347667ea0f <+1615>:	mov    %r11,0x28(%rax)
>   0x000000347667ea13 <+1619>:	mov    0x28(%rbx),%rax
>   0x000000347667ea17 <+1623>:	mov    %r11,0x20(%rax)
>   0x000000347667ea1b <+1627>:	jmpq   0x347667e540 <malloc_consolidate+384>
>   0x000000347667ea20 <+1632>:	mov    0x10(%rsp),%rax
>   0x000000347667ea25 <+1637>:	xor    %ecx,%ecx
>   0x000000347667ea27 <+1639>:	mov    $0x10,%edx
>   0x000000347667ea2c <+1644>:	mov    %rbx,%rdi
>   0x000000347667ea2f <+1647>:	mov    %r8d,0x38(%rsp)
>   0x000000347667ea34 <+1652>:	mov    %r11,0x30(%rsp)
>   0x000000347667ea39 <+1657>:	mov    %r10,0x28(%rsp)
>   0x000000347667ea3e <+1662>:	movb   $0x0,0x60(%rsp)
>   0x000000347667ea43 <+1667>:	lea    0x10(%rax),%rsi
>   0x000000347667ea47 <+1671>:	callq  0x3476649080 <_itoa_word>
>   0x000000347667ea4c <+1676>:	cmp    0x10(%rsp),%rax
>   0x000000347667ea51 <+1681>:	mov    %rax,%rcx
>   0x000000347667ea54 <+1684>:	mov    0x28(%rsp),%r10
>   0x000000347667ea59 <+1689>:	mov    0x30(%rsp),%r11
>   0x000000347667ea5e <+1694>:	mov    0x38(%rsp),%r8d
>   0x000000347667ea63 <+1699>:	jbe    0x347667eabf <malloc_consolidate+1791>
>   0x000000347667ea65 <+1701>:	lea    -0x1(%rax),%r9
>   0x000000347667ea69 <+1705>:	mov    0x18(%rsp),%rax
>   0x000000347667ea6e <+1710>:	mov    %rcx,%rdi
>   0x000000347667ea71 <+1713>:	mov    $0x30,%esi
>   0x000000347667ea76 <+1718>:	mov    %r8d,0x4c(%rsp)
>   0x000000347667ea7b <+1723>:	mov    %r11,0x40(%rsp)
>   0x000000347667ea80 <+1728>:	mov    %r10,0x38(%rsp)
>   0x000000347667ea85 <+1733>:	mov    %r9,0x30(%rsp)
>   0x000000347667ea8a <+1738>:	lea    (%rax,%r9,1),%rdx
>   0x000000347667ea8e <+1742>:	mov    %rcx,0x28(%rsp)
>   0x000000347667ea93 <+1747>:	sub    %rdx,%rdi
>   0x000000347667ea96 <+1750>:	callq  0x347668ebb0 <__memset_sse2>
>   0x000000347667ea9b <+1755>:	mov    0x20(%rsp),%rax
>   0x000000347667eaa0 <+1760>:	mov    0x30(%rsp),%r9
>   0x000000347667eaa5 <+1765>:	mov    0x28(%rsp),%rcx
>   0x000000347667eaaa <+1770>:	mov    0x4c(%rsp),%r8d
>   0x000000347667eaaf <+1775>:	mov    0x40(%rsp),%r11
>   0x000000347667eab4 <+1780>:	mov    0x38(%rsp),%r10
>   0x000000347667eab9 <+1785>:	sub    %r9,%rax
>   0x000000347667eabc <+1788>:	add    %rax,%rcx
>   0x000000347667eabf <+1791>:	mov    0x34086a(%rip),%rax        # 0x34769bf330 <__libc_argv>
>   0x000000347667eac6 <+1798>:	lea    0x1095ec(%rip),%rdx        # 0x34767880b9
>   0x000000347667eacd <+1805>:	mov    %r8d,%edi
>   0x000000347667ead0 <+1808>:	lea    0x10bd09(%rip),%rsi        # 0x347678a7e0
>   0x000000347667ead7 <+1815>:	mov    %rcx,%r8
>   0x000000347667eada <+1818>:	lea    0x10bd47(%rip),%rcx        # 0x347678a828
>   0x000000347667eae1 <+1825>:	mov    %r11,0x30(%rsp)
>   0x000000347667eae6 <+1830>:	mov    %r10,0x28(%rsp)
>   0x000000347667eaeb <+1835>:	mov    (%rax),%rax
>   0x000000347667eaee <+1838>:	test   %rax,%rax
>   0x000000347667eaf1 <+1841>:	cmovne %rax,%rdx
>   0x000000347667eaf5 <+1845>:	xor    %eax,%eax
>   0x000000347667eaf7 <+1847>:	and    $0x2,%edi
>   0x000000347667eafa <+1850>:	callq  0x34766777d0 <__libc_message>
>   0x000000347667eaff <+1855>:	mov    0x20(%rbx),%rax
>   0x000000347667eb03 <+1859>:	mov    0x28(%rsp),%r10
>   0x000000347667eb08 <+1864>:	mov    0x30(%rsp),%r11
>   0x000000347667eb0d <+1869>:	jmpq   0x347667e870 <malloc_consolidate+1200>
>   0x000000347667eb12 <+1874>:	mov    0x10(%rsp),%rax
>   0x000000347667eb17 <+1879>:	xor    %ecx,%ecx
>   0x000000347667eb19 <+1881>:	mov    $0x10,%edx
>   0x000000347667eb1e <+1886>:	mov    %r12,%rdi
>   0x000000347667eb21 <+1889>:	mov    %r11d,0x30(%rsp)
>   0x000000347667eb26 <+1894>:	mov    %r10,0x28(%rsp)
>   0x000000347667eb2b <+1899>:	movb   $0x0,0x60(%rsp)
>   0x000000347667eb30 <+1904>:	lea    0x10(%rax),%rsi
>   0x000000347667eb34 <+1908>:	callq  0x3476649080 <_itoa_word>
>   0x000000347667eb39 <+1913>:	cmp    0x10(%rsp),%rax
>   0x000000347667eb3e <+1918>:	mov    %rax,%r8
>   0x000000347667eb41 <+1921>:	mov    0x28(%rsp),%r10
>   0x000000347667eb46 <+1926>:	mov    0x30(%rsp),%r11d
>   0x000000347667eb4b <+1931>:	jbe    0x347667eb9d <malloc_consolidate+2013>
>   0x000000347667eb4d <+1933>:	lea    -0x1(%rax),%rcx
>   0x000000347667eb51 <+1937>:	mov    0x18(%rsp),%rax
>   0x000000347667eb56 <+1942>:	mov    %r8,%rdi
>   0x000000347667eb59 <+1945>:	mov    $0x30,%esi
>   0x000000347667eb5e <+1950>:	mov    %r11d,0x40(%rsp)
>   0x000000347667eb63 <+1955>:	mov    %r10,0x38(%rsp)
>   0x000000347667eb68 <+1960>:	mov    %rcx,0x30(%rsp)
>   0x000000347667eb6d <+1965>:	mov    %r8,0x28(%rsp)
>   0x000000347667eb72 <+1970>:	lea    (%rax,%rcx,1),%rdx
>   0x000000347667eb76 <+1974>:	sub    %rdx,%rdi
>   0x000000347667eb79 <+1977>:	callq  0x347668ebb0 <__memset_sse2>
>   0x000000347667eb7e <+1982>:	mov    0x20(%rsp),%rax
>   0x000000347667eb83 <+1987>:	mov    0x30(%rsp),%rcx
>   0x000000347667eb88 <+1992>:	mov    0x28(%rsp),%r8
>   0x000000347667eb8d <+1997>:	mov    0x40(%rsp),%r11d
>   0x000000347667eb92 <+2002>:	mov    0x38(%rsp),%r10
>   0x000000347667eb97 <+2007>:	sub    %rcx,%rax
>   0x000000347667eb9a <+2010>:	add    %rax,%r8
>   0x000000347667eb9d <+2013>:	mov    0x34078c(%rip),%rax        # 0x34769bf330 <__libc_argv>
>   0x000000347667eba4 <+2020>:	lea    0x10950e(%rip),%rdx        # 0x34767880b9
>   0x000000347667ebab <+2027>:	mov    %r11d,%edi
>   0x000000347667ebae <+2030>:	lea    0x10bc73(%rip),%rcx        # 0x347678a828
>   0x000000347667ebb5 <+2037>:	lea    0x10bc24(%rip),%rsi        # 0x347678a7e0
>   0x000000347667ebbc <+2044>:	mov    %r10,0x28(%rsp)
>   0x000000347667ebc1 <+2049>:	mov    (%rax),%rax
>   0x000000347667ebc4 <+2052>:	test   %rax,%rax
>   0x000000347667ebc7 <+2055>:	cmovne %rax,%rdx
>   0x000000347667ebcb <+2059>:	xor    %eax,%eax
>   0x000000347667ebcd <+2061>:	and    $0x2,%edi
>   0x000000347667ebd0 <+2064>:	callq  0x34766777d0 <__libc_message>
>   0x000000347667ebd5 <+2069>:	mov    0x20(%r12),%rax
>   0x000000347667ebda <+2074>:	mov    0x28(%rsp),%r10
>   0x000000347667ebdf <+2079>:	jmpq   0x347667e8a9 <malloc_consolidate+1257>
>   0x000000347667ebe4 <+2084>:	movq   $0x80,0x33dc51(%rip)        # 0x34769bc840 <global_max_fast>
>   0x000000347667ebef <+2095>:	mov    0x4(%rdi),%eax
>   0x000000347667ebf2 <+2098>:	jmpq   0x347667e957 <malloc_consolidate+1431>
>   0x000000347667ebf7 <+2103>:	mov    %r11,0x28(%r11)
>   0x000000347667ebfb <+2107>:	mov    %r11,0x20(%r11)
>   0x000000347667ebff <+2111>:	jmpq   0x347667e540 <malloc_consolidate+384>
>   0x000000347667ec04 <+2116>:	mov    %r8d,%edi
>   0x000000347667ec07 <+2119>:	lea    0x10bc1a(%rip),%rdx        # 0x347678a828
>   0x000000347667ec0e <+2126>:	lea    0x10aaab(%rip),%rsi        # 0x34767896c0
>   0x000000347667ec15 <+2133>:	xor    %eax,%eax
>   0x000000347667ec17 <+2135>:	and    $0x2,%edi
>   0x000000347667ec1a <+2138>:	mov    %r11,0x30(%rsp)
>   0x000000347667ec1f <+2143>:	mov    %r10,0x28(%rsp)
>   0x000000347667ec24 <+2148>:	callq  0x34766777d0 <__libc_message>
>   0x000000347667ec29 <+2153>:	mov    0x20(%rbx),%rax
>   0x000000347667ec2d <+2157>:	mov    0x28(%rsp),%r10
>   0x000000347667ec32 <+2162>:	mov    0x30(%rsp),%r11
>   0x000000347667ec37 <+2167>:	jmpq   0x347667e870 <malloc_consolidate+1200>
>   0x000000347667ec3c <+2172>:	mov    %r13,0x28(%r13)
>   0x000000347667ec40 <+2176>:	mov    %r13,0x20(%r13)
>   0x000000347667ec44 <+2180>:	jmpq   0x347667e490 <malloc_consolidate+208>
>   0x000000347667ec49 <+2185>:	mov    %r11d,%edi
>   0x000000347667ec4c <+2188>:	lea    0x10bbd5(%rip),%rdx        # 0x347678a828
>   0x000000347667ec53 <+2195>:	lea    0x10aa66(%rip),%rsi        # 0x34767896c0
>   0x000000347667ec5a <+2202>:	xor    %eax,%eax
>   0x000000347667ec5c <+2204>:	and    $0x2,%edi
>   0x000000347667ec5f <+2207>:	mov    %r10,0x28(%rsp)
>   0x000000347667ec64 <+2212>:	callq  0x34766777d0 <__libc_message>
>   0x000000347667ec69 <+2217>:	mov    0x20(%r12),%rax
>   0x000000347667ec6e <+2222>:	mov    0x28(%rsp),%r10
>   0x000000347667ec73 <+2227>:	jmpq   0x347667e8a9 <malloc_consolidate+1257>
>End of assembler dump.
>== EXPLOITABLE ==

Actions: View

Attachments on bug 1276909: 1088308 | 1088309 | 1088310 | 1088311 | 1088312 | 1088313 | 1088314 | 1088315 | 1088316 | 1088317 | 1088318