Login
[x]
Log in using an account from:
Fedora Account System
Red Hat Associate
Red Hat Customer
Or login using a Red Hat Bugzilla account
Forgot Password
Login:
Hide Forgot
Create an Account
Red Hat Bugzilla – Attachment 614861 Details for
Bug 859027
repeated client_migrate_info caused freeing invalid pointer, followed ultimately by segfault in _int_malloc
[?]
New
Simple Search
Advanced Search
My Links
Browse
Requests
Reports
Current State
Search
Tabular reports
Graphical reports
Duplicates
Other Reports
User Changes
Plotly Reports
Bug Status
Bug Severity
Non-Defaults
|
Product Dashboard
Help
Page Help!
Bug Writing Guidelines
What's new
Browser Support Policy
5.0.4.rh83 Release notes
FAQ
Guides index
User guide
Web Services
Contact
Legal
This site requires JavaScript to be enabled to function correctly, please enable it.
qemu backtrace
qemu_backtrace (text/plain), 78.63 KB, created by
David Jaša
on 2012-09-20 11:57:20 UTC
(
hide
)
Description:
qemu backtrace
Filename:
MIME Type:
Creator:
David Jaša
Created:
2012-09-20 11:57:20 UTC
Size:
78.63 KB
patch
obsolete
>Missing separate debuginfo for >Try: yum --disablerepo='*' --enablerepo='*-debug*' install /usr/lib/debug/.build-id/8b/db0269df53af3b4d79dda664c40a75c5de589a /var/cache/abrt-di/usr/lib/debug/.build-id/8b/db0269df53af3b4d79dda664c40a75c5de589a >[New Thread 5452] >[New Thread 5455] >[New Thread 5454] >[Thread debugging using libthread_db enabled] >Core was generated by `qemu-kvm -monitor stdio -spice addr=::,tls-port=5811,x509-dir=/etc/pki/libvirt-'. >Program terminated with signal 11, Segmentation fault. >#0 _int_malloc (av=0x7f6a09a84e80, bytes=<value optimized out>) at malloc.c:4455 >4455 bck->fd = unsorted_chunks(av); > >Thread 3 (Thread 0x7f6a02ed2700 (LWP 5454)): >#0 0x00007f6a097d6a47 in ioctl () at ../sysdeps/unix/syscall-template.S:82 >No locals. >#1 0x00007f6a0bde145a in kvm_run (env=0x7f6a0e3536c0) at /usr/src/debug/qemu-kvm-0.12.1.2/qemu-kvm.c:1015 > r = 0 > kvm = 0x7f6a0e310000 > run = 0x7f6a0bd4e000 > fd = 11 >#2 0x00007f6a0bde1909 in kvm_cpu_exec (env=<value optimized out>) at /usr/src/debug/qemu-kvm-0.12.1.2/qemu-kvm.c:1743 > r = <value optimized out> >#3 0x00007f6a0bde27ed in kvm_main_loop_cpu (_env=0x7f6a0e3536c0) at /usr/src/debug/qemu-kvm-0.12.1.2/qemu-kvm.c:2004 > run_cpu = <value optimized out> >#4 ap_main_loop (_env=0x7f6a0e3536c0) at /usr/src/debug/qemu-kvm-0.12.1.2/qemu-kvm.c:2060 > env = 0x7f6a0e3536c0 > signals = {__val = {18446744067267100671, 18446744073709551615 <repeats 15 times>}} > data = <value optimized out> >#5 0x00007f6a0b71b851 in start_thread (arg=0x7f6a02ed2700) at pthread_create.c:301 > __res = <value optimized out> > pd = 0x7f6a02ed2700 > now = <value optimized out> > unwind_buf = {cancel_jmp_buf = {{jmp_buf = {140093292357376, -7247763459826456264, 140093435302400, 140093292358080, 0, 3, 7331508704518138168, 7331529703826450744}, mask_was_saved = 0}}, priv = {pad = {0x0, 0x0, 0x0, 0x0}, data = {prev = 0x0, cleanup = 0x0, canceltype = 0}}} > not_first_call = <value optimized out> > pagesize_m1 = <value optimized out> > sp = <value optimized out> > freesize = <value optimized out> >#6 0x00007f6a097de90d in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:115 >No locals. > >Thread 2 (Thread 0x7f69f7f6a700 (LWP 5455)): >#0 0x00007f6a097d5253 in __poll (fds=<value optimized out>, nfds=<value optimized out>, timeout=<value optimized out>) at ../sysdeps/unix/sysv/linux/poll.c:87 > __arg2 = 20 > _a3 = -1 > _a1 = 140093096009800 > resultvar = <value optimized out> > __arg3 = -1 > __arg1 = 140093096009800 > _a2 = 20 > resultvar = <value optimized out> > oldtype = 0 > result = <value optimized out> >#1 0x00007f6a09f5c21e in red_worker_main (arg=<value optimized out>) at red_worker.c:11732 > i = <value optimized out> > num_events = <value optimized out> > worker = 0x7f69f7392010 > __FUNCTION__ = "red_worker_main" >#2 0x00007f6a0b71b851 in start_thread (arg=0x7f69f7f6a700) at pthread_create.c:301 > __res = <value optimized out> > pd = 0x7f69f7f6a700 > now = <value optimized out> > unwind_buf = {cancel_jmp_buf = {{jmp_buf = {140093108430592, -7247763459826456264, 140093435302400, 140093108431296, 0, 3, 7329936484494797112, 7331529703826450744}, mask_was_saved = 0}}, priv = {pad = {0x0, 0x0, 0x0, 0x0}, data = {prev = 0x0, cleanup = 0x0, canceltype = 0}}} > not_first_call = <value optimized out> > pagesize_m1 = <value optimized out> > sp = <value optimized out> > freesize = <value optimized out> >#3 0x00007f6a097de90d in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:115 >No locals. > >Thread 1 (Thread 0x7f6a0bd18980 (LWP 5452)): >#0 _int_malloc (av=0x7f6a09a84e80, bytes=<value optimized out>) at malloc.c:4455 > iters = <value optimized out> > nb = 4144 > idx = 99 > bin = <value optimized out> > victim = 0x7f6a0e43a700 > size = 128 > victim_index = <value optimized out> > remainder = <value optimized out> > remainder_size = <value optimized out> > block = <value optimized out> > bit = <value optimized out> > map = <value optimized out> > fwd = <value optimized out> > bck = 0x0 > errstr = 0x0 >#1 0x00007f6a097721d8 in malloc_check (sz=4120, caller=<value optimized out>) at hooks.c:266 > victim = <value optimized out> >#2 0x00007f6a0bdeead5 in qemu_malloc (size=4120) at qemu-malloc.c:57 > ptr = <value optimized out> >#3 0x00007f6a0bdeebc6 in qemu_mallocz (size=4120) at qemu-malloc.c:76 > ptr = <value optimized out> >#4 0x00007f6a0be159de in qdict_new () at qdict.c:38 > qdict = 0x7f6a09a84fd8 >#5 0x00007f6a0be44f2d in channel_event (event=3, info=0x7f6a0e548840) at ui/spice-core.c:289 > qevent = {0, 11, 12, 13} > server = <value optimized out> > client = <value optimized out> > data = <value optimized out> > need_lock = false >#6 0x00007f6a09f42abd in main_dispatcher_self_handle_channel_event (event=3, info=0x7f6a0e548840) at main_dispatcher.c:61 >No locals. >#7 0x00007f6a09f42bba in main_dispatcher_channel_event (event=3, info=0x7f6a0e548840) at main_dispatcher.c:81 > msg = {event = 240289712, info = 0x7f6a0e3f9d00} >#8 0x00007f6a09f62f54 in reds_stream_channel_event (s=0x7f6a0e43b010) at reds.c:353 >No locals. >#9 reds_stream_free (s=0x7f6a0e43b010) at reds.c:4578 > __FUNCTION__ = "reds_stream_free" >#10 0x00007f6a09f3d57c in red_channel_client_disconnect (rcc=0x7f6a0e5436c0) at red_channel.c:1460 > __FUNCTION__ = "red_channel_client_disconnect" >#11 0x00007f6a09f40205 in red_client_destroy (client=0x7f6a0e3f9d00) at red_channel.c:1722 > link = 0x7f6a0e5436d0 > next = 0x7f6a0e5287b0 > rcc = 0x7f6a0e5436c0 > __FUNCTION__ = "red_client_destroy" >#12 0x00007f6a09f6a3d4 in reds_client_disconnect (client=0x7f6a0e3f9d00) at reds.c:709 > mig_client = <value optimized out> > __FUNCTION__ = "reds_client_disconnect" >#13 0x00007f6a09f3c251 in red_peer_handle_incoming (rcc=0x7f6a0e5287a0) at red_channel.c:285 > ret_handle = <value optimized out> > bytes_read = <value optimized out> > msg_type = <value optimized out> > parsed = <value optimized out> > parsed_free = 0x7fff64c22c40 > msg_size = <value optimized out> >#14 red_channel_client_receive (rcc=0x7f6a0e5287a0) at red_channel.c:294 >No locals. >#15 0x00007f6a09f3c9dc in red_channel_client_event (fd=<value optimized out>, event=<value optimized out>, data=0x7f6a0e5287a0) at red_channel.c:1204 > rcc = 0x7f6a0e5287a0 >#16 0x00007f6a0bdbe06f in main_loop_wait (timeout=1000) at /usr/src/debug/qemu-kvm-0.12.1.2/vl.c:3999 > pioh = <value optimized out> > ioh = 0x7f6a0e3f91f0 > rfds = {fds_bits = {131072, 0 <repeats 15 times>}} > wfds = {fds_bits = {0 <repeats 16 times>}} > xfds = {fds_bits = {0 <repeats 16 times>}} > ret = 1 > nfds = <value optimized out> > tv = {tv_sec = 0, tv_usec = 998977} >#17 0x00007f6a0bddf9aa in kvm_main_loop () at /usr/src/debug/qemu-kvm-0.12.1.2/qemu-kvm.c:2244 > fds = {14, 15} > mask = {__val = {268443712, 0 <repeats 15 times>}} > sigfd = 16 >#18 0x00007f6a0bdc0bfc in main_loop (argc=20, argv=<value optimized out>, envp=<value optimized out>) at /usr/src/debug/qemu-kvm-0.12.1.2/vl.c:4211 > r = <value optimized out> >#19 main (argc=20, argv=<value optimized out>, envp=<value optimized out>) at /usr/src/debug/qemu-kvm-0.12.1.2/vl.c:6445 > gdbstub_dev = 0x0 > i = <value optimized out> > snapshot = 0 > linux_boot = 0 > initrd_filename = 0x0 > kernel_filename = 0x0 > kernel_cmdline = 0x7f6a0bf68f4f "" > boot_devices = "cad", '\000' <repeats 29 times> > ds = <value optimized out> > dcl = <value optimized out> > cyls = 0 > heads = 0 > secs = 0 > translation = 0 > hda_opts = 0x0 > opts = <value optimized out> > olist = <value optimized out> > optind = 5 > optarg = 0x7fff64c2643a "addr=::,tls-port=5811,x509-dir=/etc/pki/libvirt-spice,seamless-migration=on,disable-ticketing" > loadvm = 0x0 > machine = 0x7f6a0c2b8300 > cpu_model = 0x0 > fds = {198344704, 32618} > tb_size = 0 > pid_file = 0x0 > incoming = 0x0 > fd = 0 > pwd = 0x0 > chroot_dir = 0x0 > run_as = 0x0 > env = <value optimized out> > show_vnc_port = 0 > defconfig = <value optimized out> > defconfig_verbose = <value optimized out> >From To Syms Read Shared Object Library >0x00007f6a0b933140 0x00007f6a0b9364f8 Yes /lib64/librt-2.12.so >0x00007f6a0b719660 0x00007f6a0b724eb8 Yes /lib64/libpthread-2.12.so >0x00007f6a0b442470 0x00007f6a0b4b90c8 Yes /lib64/libglib-2.0.so.0.2200.5 >0x00007f6a0b22e570 0x00007f6a0b22e721 Yes /lib64/libaio.so.1.0.1 >0x00007f6a0b02a570 0x00007f6a0b02c788 Yes /usr/lib64/libusbredirparser.so.0.0.0 >0x00007f6a0ae26e10 0x00007f6a0ae27688 Yes /lib64/libutil-2.12.so >0x00007f6a0ab68de0 0x00007f6a0abe9d68 Yes /lib64/libasound.so.2.0.0 >0x00007f6a0a903e50 0x00007f6a0a92b3d8 Yes /usr/lib64/libpulse.so.0.12.2 >0x00007f6a0a6f6490 0x00007f6a0a6f76a8 Yes /usr/lib64/libpulse-simple.so.0.0.3 >0x00007f6a0a4df6e0 0x00007f6a0a4ef578 Yes /usr/lib64/libsasl2.so.2.0.23 >0x00007f6a0a24fd80 0x00007f6a0a2b9b58 Yes /usr/lib64/libgnutls.so.26.14.12 >0x00007f6a09f2b300 0x00007f6a09ff8ca8 Yes /usr/lib64/libspice-server.so.1.3.0 >0x00007f6a09ca2e70 0x00007f6a09ce2ec8 Yes /lib64/libm-2.12.so >0x00007f6a09a8af30 0x00007f6a09a961b8 Yes /lib64/libz.so.1.2.3 >0x00007f6a09714a20 0x00007f6a0983572c Yes /lib64/libc-2.12.so >0x00007f6a0bb39b00 0x00007f6a0bb5285b Yes /lib64/ld-2.12.so >0x00007f6a094f2de0 0x00007f6a094f3998 Yes /lib64/libdl-2.12.so >0x00007f6a092b24a0 0x00007f6a092dd898 Yes /usr/lib64/libpulsecommon-0.9.21.so >0x00007f6a08f83cf0 0x00007f6a0900dd38 Yes /usr/lib64/libX11.so.6.3.0 >0x00007f6a08d5fa40 0x00007f6a08d640c8 Yes /usr/lib64/libSM.so.6.0.1 >0x00007f6a08b46d70 0x00007f6a08b557a8 Yes /usr/lib64/libICE.so.6.3.0 >0x00007f6a0893d3b0 0x00007f6a089403b8 Yes /usr/lib64/libXtst.so.6.1.0 >0x00007f6a08733f10 0x00007f6a08737ab8 Yes /lib64/libwrap.so.0.7.6 >0x00007f6a084d2560 0x00007f6a08513df8 Yes /usr/lib64/libsndfile.so.1.0.20 >0x00007f6a082c91c0 0x00007f6a082cb7e8 Yes /usr/lib64/libasyncns.so.0.3.1 >0x00007f6a0808e090 0x00007f6a080b5538 Yes /lib64/libdbus-1.so.3.4.0 >0x00007f6a07e70930 0x00007f6a07e7f938 Yes /lib64/libresolv-2.12.so >0x00007f6a07c36c00 0x00007f6a07c3b9a8 Yes /lib64/libcrypt-2.12.so >0x00007f6a07a27a50 0x00007f6a07a32f08 Yes /usr/lib64/libtasn1.so.3.1.6 >0x00007f6a077b7e00 0x00007f6a07801278 Yes /lib64/libgcrypt.so.11.5.3 >0x00007f6a075a2e40 0x00007f6a075adfb8 Yes /usr/lib64/libcelt051.so.0.0.0 >0x00007f6a073814a0 0x00007f6a0739afe8 Yes /usr/lib64/libjpeg.so.62.0.0 >0x00007f6a07100020 0x00007f6a0716b268 Yes /usr/lib64/libpixman-1.so.0.26.2 >0x00007f6a06eaf570 0x00007f6a06ee10c8 Yes /usr/lib64/libssl.so.1.0.0 >0x00007f6a06b5da00 0x00007f6a06c251b8 Yes /usr/lib64/libcrypto.so.1.0.0 >0x00007f6a068ec860 0x00007f6a068f8808 Yes /usr/lib64/libxcb.so.1.1.0 >0x00007f6a066e05a0 0x00007f6a066e1cc8 Yes /lib64/libuuid.so.1.3.0 >0x00007f6a064cf6c0 0x00007f6a064dafc8 Yes /usr/lib64/libXext.so.6.4.0 >0x00007f6a062bf030 0x00007f6a062c9338 Yes /usr/lib64/libXi.so.6.1.0 >0x00007f6a060a8070 0x00007f6a060b59f8 Yes /lib64/libnsl-2.12.so >0x00007f6a05e75e70 0x00007f6a05e9ae08 Yes /usr/lib64/libFLAC.so.8.2.0 >0x00007f6a05aa6a30 0x00007f6a05aa8ed8 Yes /usr/lib64/libvorbisenc.so.2.0.6 >0x00007f6a05867ae0 0x00007f6a0587e9b8 Yes /usr/lib64/libvorbis.so.0.4.3 >0x00007f6a0565f8d0 0x00007f6a05661ce8 Yes /usr/lib64/libogg.so.0.6.0 >0x00007f6a053ff2b0 0x00007f6a0543e078 Yes /lib64/libfreebl3.so >0x00007f6a051f8820 0x00007f6a051f8d88 Yes /lib64/libgpg-error.so.0.5.0 >0x00007f6a04fbfe20 0x00007f6a04fec968 Yes /lib64/libgssapi_krb5.so.2.2 >0x00007f6a04cf1610 0x00007f6a04d667c8 Yes /lib64/libkrb5.so.3.3 >0x00007f6a04ad43f0 0x00007f6a04ad4fc8 Yes /lib64/libcom_err.so.2.1 >0x00007f6a048ab7c0 0x00007f6a048c5468 Yes /lib64/libk5crypto.so.3.1 >0x00007f6a046a4dd0 0x00007f6a046a5b58 Yes /usr/lib64/libXau.so.6.0.0 >0x00007f6a0449b840 0x00007f6a044a0a08 Yes /lib64/libkrb5support.so.0.1 >0x00007f6a04296bf0 0x00007f6a042971d8 Yes /lib64/libkeyutils.so.1.3 >0x00007f6a0407c850 0x00007f6a0408cc78 Yes /lib64/libselinux.so.1 >0x00007f6a03e73040 0x00007f6a03e74ea8 Yes /usr/lib64/sasl2/liblogin.so.2.0.23 >0x00007f6a03c66a00 0x00007f6a03c6e698 Yes /usr/lib64/sasl2/libdigestmd5.so.2.0.23 >0x00007f6a03a61050 0x00007f6a03a62ea8 Yes /usr/lib64/sasl2/libplain.so.2.0.23 >0x00007f6a03859890 0x00007f6a0385dbc8 Yes /usr/lib64/sasl2/libgssapiv2.so.2.0.23 >0x00007f6a03654040 0x00007f6a03655d08 Yes /usr/lib64/sasl2/libanonymous.so.2.0.23 >0x00007f6a0344e150 0x00007f6a03450638 Yes /usr/lib64/sasl2/libcrammd5.so.2.0.23 >0x00007f6a032483a0 0x00007f6a0324b018 Yes /usr/lib64/sasl2/libsasldb.so.2.0.23 >0x00007f6a02efb6a0 0x00007f6a030119f8 Yes /lib64/libdb-4.7.so >$1 = 0x0 >No symbol "__glib_assert_msg" in current context. >rax 0x7f6a09a84fd8 140093405286360 >rbx 0x0 0 >rcx 0x20000 131072 >rdx 0x80 128 >rsi 0x0 0 >rdi 0x7f6a09a85668 140093405288040 >rbp 0x7f6a0e43a700 0x7f6a0e43a700 >rsp 0x7fff64c22a00 0x7fff64c22a00 >r8 0x7f6a09a84ee8 140093405286120 >r9 0x1 1 >r10 0x1019 4121 >r11 0x7f6a09779c62 140093402094690 >r12 0x7f6a09a84ed8 140093405286104 >r13 0x7f6a09a84e80 140093405286016 >r14 0x16 22 >r15 0x1030 4144 >rip 0x7f6a0976f4b2 0x7f6a0976f4b2 <_int_malloc+722> >eflags 0x10202 [ IF RF ] >cs 0x33 51 >ss 0x2b 43 >ds 0x0 0 >es 0x0 0 >fs 0x0 0 >gs 0x0 0 >Dump of assembler code for function _int_malloc: > 0x00007f6a0976f1e0 <+0>: push %r15 > 0x00007f6a0976f1e2 <+2>: mov %rsi,%r10 > 0x00007f6a0976f1e5 <+5>: push %r14 > 0x00007f6a0976f1e7 <+7>: push %r13 > 0x00007f6a0976f1e9 <+9>: push %r12 > 0x00007f6a0976f1eb <+11>: push %rbp > 0x00007f6a0976f1ec <+12>: push %rbx > 0x00007f6a0976f1ed <+13>: mov %rdi,%rbx > 0x00007f6a0976f1f0 <+16>: sub $0x78,%rsp > 0x00007f6a0976f1f4 <+20>: cmp $0xffffffffffffffbf,%rsi > 0x00007f6a0976f1f8 <+24>: ja 0x7f6a0976f988 <_int_malloc+1960> > 0x00007f6a0976f1fe <+30>: lea 0x17(%rsi),%rax > 0x00007f6a0976f202 <+34>: mov $0x20,%r15d > 0x00007f6a0976f208 <+40>: mov %rax,%rdx > 0x00007f6a0976f20b <+43>: and $0xfffffffffffffff0,%rdx > 0x00007f6a0976f20f <+47>: cmp $0x1f,%rax > 0x00007f6a0976f213 <+51>: cmova %rdx,%r15 > 0x00007f6a0976f217 <+55>: cmp 0x316562(%rip),%r15 # 0x7f6a09a85780 <global_max_fast> > 0x00007f6a0976f21e <+62>: ja 0x7f6a0976f2d0 <_int_malloc+240> > 0x00007f6a0976f224 <+68>: mov %r15d,%r8d > 0x00007f6a0976f227 <+71>: shr $0x4,%r8d > 0x00007f6a0976f22b <+75>: sub $0x2,%r8d > 0x00007f6a0976f22f <+79>: mov %r8d,%eax > 0x00007f6a0976f232 <+82>: mov 0x8(%rdi,%rax,8),%rcx > 0x00007f6a0976f237 <+87>: test %rcx,%rcx > 0x00007f6a0976f23a <+90>: je 0x7f6a0976f2d0 <_int_malloc+240> > 0x00007f6a0976f240 <+96>: lea (%rdi,%rax,8),%rsi > 0x00007f6a0976f244 <+100>: mov 0x10(%rcx),%rdi > 0x00007f6a0976f248 <+104>: mov %rcx,%rax > 0x00007f6a0976f24b <+107>: lea 0x8(%rsi),%rdx > 0x00007f6a0976f24f <+111>: cmpl $0x0,%fs:0x18 > 0x00007f6a0976f258 <+120>: je 0x7f6a0976f25b <_int_malloc+123> > 0x00007f6a0976f25a <+122>: lock cmpxchg %rdi,0x8(%rsi) > 0x00007f6a0976f260 <+128>: cmp %rax,%rcx > 0x00007f6a0976f263 <+131>: mov %rax,%rbp > 0x00007f6a0976f266 <+134>: jne 0x7f6a0976f273 <_int_malloc+147> > 0x00007f6a0976f268 <+136>: jmpq 0x7f6a0976faab <_int_malloc+2251> > 0x00007f6a0976f26d <+141>: nopl (%rax) > 0x00007f6a0976f270 <+144>: mov %rax,%rbp > 0x00007f6a0976f273 <+147>: test %rbp,%rbp > 0x00007f6a0976f276 <+150>: je 0x7f6a0976f2d0 <_int_malloc+240> > 0x00007f6a0976f278 <+152>: mov 0x10(%rbp),%rcx > 0x00007f6a0976f27c <+156>: mov %rbp,%rax > 0x00007f6a0976f27f <+159>: cmpl $0x0,%fs:0x18 > 0x00007f6a0976f288 <+168>: je 0x7f6a0976f28b <_int_malloc+171> > 0x00007f6a0976f28a <+170>: lock cmpxchg %rcx,(%rdx) > 0x00007f6a0976f28f <+175>: cmp %rbp,%rax > 0x00007f6a0976f292 <+178>: jne 0x7f6a0976f270 <_int_malloc+144> > 0x00007f6a0976f294 <+180>: mov 0x8(%rbp),%rax > 0x00007f6a0976f298 <+184>: shr $0x4,%eax > 0x00007f6a0976f29b <+187>: sub $0x2,%eax > 0x00007f6a0976f29e <+190>: cmp %eax,%r8d > 0x00007f6a0976f2a1 <+193>: jne 0x7f6a0976fe6d <_int_malloc+3213> > 0x00007f6a0976f2a7 <+199>: mov 0x3164db(%rip),%eax # 0x7f6a09a85788 <perturb_byte> > 0x00007f6a0976f2ad <+205>: add $0x10,%rbp > 0x00007f6a0976f2b1 <+209>: test %eax,%eax > 0x00007f6a0976f2b3 <+211>: jne 0x7f6a097703b1 <_int_malloc+4561> > 0x00007f6a0976f2b9 <+217>: add $0x78,%rsp > 0x00007f6a0976f2bd <+221>: mov %rbp,%rax > 0x00007f6a0976f2c0 <+224>: pop %rbx > 0x00007f6a0976f2c1 <+225>: pop %rbp > 0x00007f6a0976f2c2 <+226>: pop %r12 > 0x00007f6a0976f2c4 <+228>: pop %r13 > 0x00007f6a0976f2c6 <+230>: pop %r14 > 0x00007f6a0976f2c8 <+232>: pop %r15 > 0x00007f6a0976f2ca <+234>: retq > 0x00007f6a0976f2cb <+235>: nopl 0x0(%rax,%rax,1) > 0x00007f6a0976f2d0 <+240>: cmp $0x3ff,%r15 > 0x00007f6a0976f2d7 <+247>: ja 0x7f6a0976f340 <_int_malloc+352> > 0x00007f6a0976f2d9 <+249>: mov %r15d,%edx > 0x00007f6a0976f2dc <+252>: lea 0x68(%rbx),%r8 > 0x00007f6a0976f2e0 <+256>: shr $0x4,%edx > 0x00007f6a0976f2e3 <+259>: lea -0x2(%rdx,%rdx,1),%eax > 0x00007f6a0976f2e7 <+263>: mov %edx,0x20(%rsp) > 0x00007f6a0976f2eb <+267>: mov %eax,%eax > 0x00007f6a0976f2ed <+269>: lea -0x10(%r8,%rax,8),%rax > 0x00007f6a0976f2f2 <+274>: mov 0x18(%rax),%rbp > 0x00007f6a0976f2f6 <+278>: cmp %rax,%rbp > 0x00007f6a0976f2f9 <+281>: je 0x7f6a0976f38f <_int_malloc+431> > 0x00007f6a0976f2ff <+287>: test %rbp,%rbp > 0x00007f6a0976f302 <+290>: je 0x7f6a0976fada <_int_malloc+2298> > 0x00007f6a0976f308 <+296>: mov 0x18(%rbp),%rdx > 0x00007f6a0976f30c <+300>: cmp 0x10(%rdx),%rbp > 0x00007f6a0976f310 <+304>: jne 0x7f6a097703c6 <_int_malloc+4582> > 0x00007f6a0976f316 <+310>: mov %rdx,0x18(%rax) > 0x00007f6a0976f31a <+314>: mov %rax,0x10(%rdx) > 0x00007f6a0976f31e <+318>: lea 0x315b5b(%rip),%rax # 0x7f6a09a84e80 <main_arena> > 0x00007f6a0976f325 <+325>: orq $0x1,0x8(%rbp,%r15,1) > 0x00007f6a0976f32b <+331>: cmp %rax,%rbx > 0x00007f6a0976f32e <+334>: je 0x7f6a0976f2a7 <_int_malloc+199> > 0x00007f6a0976f334 <+340>: orq $0x4,0x8(%rbp) > 0x00007f6a0976f339 <+345>: jmpq 0x7f6a0976f2a7 <_int_malloc+199> > 0x00007f6a0976f33e <+350>: xchg %ax,%ax > 0x00007f6a0976f340 <+352>: mov %r15,%rax > 0x00007f6a0976f343 <+355>: shr $0x6,%rax > 0x00007f6a0976f347 <+359>: cmp $0x30,%rax > 0x00007f6a0976f34b <+363>: jbe 0x7f6a0976f97c <_int_malloc+1948> > 0x00007f6a0976f351 <+369>: mov %r15,%rax > 0x00007f6a0976f354 <+372>: shr $0x9,%rax > 0x00007f6a0976f358 <+376>: cmp $0x14,%rax > 0x00007f6a0976f35c <+380>: ja 0x7f6a0976fa85 <_int_malloc+2213> > 0x00007f6a0976f362 <+386>: add $0x5b,%eax > 0x00007f6a0976f365 <+389>: mov %eax,0x20(%rsp) > 0x00007f6a0976f369 <+393>: testb $0x1,0x4(%rbx) > 0x00007f6a0976f36d <+397>: lea 0x68(%rbx),%r8 > 0x00007f6a0976f371 <+401>: jne 0x7f6a0976f38f <_int_malloc+431> > 0x00007f6a0976f373 <+403>: mov %rbx,%rdi > 0x00007f6a0976f376 <+406>: mov %r8,0x10(%rsp) > 0x00007f6a0976f37b <+411>: mov %r10,0x8(%rsp) > 0x00007f6a0976f380 <+416>: callq 0x7f6a0976c110 <malloc_consolidate> > 0x00007f6a0976f385 <+421>: mov 0x8(%rsp),%r10 > 0x00007f6a0976f38a <+426>: mov 0x10(%rsp),%r8 > 0x00007f6a0976f38f <+431>: mov %r15,%rbp > 0x00007f6a0976f392 <+434>: mov %r15d,%ecx > 0x00007f6a0976f395 <+437>: mov %r15,%rax > 0x00007f6a0976f398 <+440>: shr $0x6,%rbp > 0x00007f6a0976f39c <+444>: shr $0x4,%ecx > 0x00007f6a0976f39f <+447>: shr $0x9,%rax > 0x00007f6a0976f3a3 <+451>: mov %rbp,0x28(%rsp) > 0x00007f6a0976f3a8 <+456>: add $0x30,%ebp > 0x00007f6a0976f3ab <+459>: mov %ecx,0x58(%rsp) > 0x00007f6a0976f3af <+463>: mov %ebp,0x5c(%rsp) > 0x00007f6a0976f3b3 <+467>: mov %rax,0x30(%rsp) > 0x00007f6a0976f3b8 <+472>: mov %r15,%rdx > 0x00007f6a0976f3bb <+475>: add $0x5b,%eax > 0x00007f6a0976f3be <+478>: mov %r15,%rcx > 0x00007f6a0976f3c1 <+481>: mov %r15,%rbp > 0x00007f6a0976f3c4 <+484>: shr $0xc,%rdx > 0x00007f6a0976f3c8 <+488>: shr $0xf,%rcx > 0x00007f6a0976f3cc <+492>: shr $0x12,%rbp > 0x00007f6a0976f3d0 <+496>: mov %eax,0x60(%rsp) > 0x00007f6a0976f3d4 <+500>: lea 0x20(%r15),%rax > 0x00007f6a0976f3d8 <+504>: mov %rdx,0x50(%rsp) > 0x00007f6a0976f3dd <+509>: mov %rcx,0x48(%rsp) > 0x00007f6a0976f3e2 <+514>: add $0x6e,%edx > 0x00007f6a0976f3e5 <+517>: add $0x77,%ecx > 0x00007f6a0976f3e8 <+520>: mov %rbp,0x40(%rsp) > 0x00007f6a0976f3ed <+525>: lea 0x58(%rbx),%r12 > 0x00007f6a0976f3f1 <+529>: add $0x7c,%ebp > 0x00007f6a0976f3f4 <+532>: mov %edx,0x6c(%rsp) > 0x00007f6a0976f3f8 <+536>: mov %ecx,0x68(%rsp) > 0x00007f6a0976f3fc <+540>: mov $0x1,%r9d > 0x00007f6a0976f402 <+546>: mov %ebp,0x64(%rsp) > 0x00007f6a0976f406 <+550>: mov %rax,0x38(%rsp) > 0x00007f6a0976f40b <+555>: xor %r14d,%r14d > 0x00007f6a0976f40e <+558>: mov %rbx,%r13 > 0x00007f6a0976f411 <+561>: jmp 0x7f6a0976f467 <_int_malloc+647> > 0x00007f6a0976f413 <+563>: nopl 0x0(%rax,%rax,1) > 0x00007f6a0976f418 <+568>: shr $0x4,%edx > 0x00007f6a0976f41b <+571>: lea -0x2(%rdx,%rdx,1),%eax > 0x00007f6a0976f41f <+575>: mov %edx,%ecx > 0x00007f6a0976f421 <+577>: mov %edx,%esi > 0x00007f6a0976f423 <+579>: and $0x1f,%ecx > 0x00007f6a0976f426 <+582>: mov %r9d,%edx > 0x00007f6a0976f429 <+585>: sar $0x5,%esi > 0x00007f6a0976f42c <+588>: cltq > 0x00007f6a0976f42e <+590>: shl %cl,%edx > 0x00007f6a0976f430 <+592>: lea -0x10(%r8,%rax,8),%rbx > 0x00007f6a0976f435 <+597>: mov %edx,%ecx > 0x00007f6a0976f437 <+599>: mov 0x10(%rbx),%rax > 0x00007f6a0976f43b <+603>: movslq %esi,%rsi > 0x00007f6a0976f43e <+606>: add $0x1,%r14d > 0x00007f6a0976f442 <+610>: mov %rbx,0x18(%rbp) > 0x00007f6a0976f446 <+614>: or %ecx,0x858(%r13,%rsi,4) > 0x00007f6a0976f44e <+622>: cmp $0x2710,%r14d > 0x00007f6a0976f455 <+629>: mov %rax,0x10(%rbp) > 0x00007f6a0976f459 <+633>: mov %rbp,0x18(%rax) > 0x00007f6a0976f45d <+637>: mov %rbp,0x10(%rbx) > 0x00007f6a0976f461 <+641>: je 0x7f6a0976f6c0 <_int_malloc+1248> > 0x00007f6a0976f467 <+647>: mov 0x18(%r12),%rbp > 0x00007f6a0976f46c <+652>: cmp %rbp,%r12 > 0x00007f6a0976f46f <+655>: je 0x7f6a0976f6c0 <_int_malloc+1248> > 0x00007f6a0976f475 <+661>: mov 0x8(%rbp),%rdx > 0x00007f6a0976f479 <+665>: mov 0x18(%rbp),%rbx > 0x00007f6a0976f47d <+669>: cmp $0x10,%rdx > 0x00007f6a0976f481 <+673>: jbe 0x7f6a0976fb1f <_int_malloc+2367> > 0x00007f6a0976f487 <+679>: cmp 0x878(%r13),%rdx > 0x00007f6a0976f48e <+686>: ja 0x7f6a0976fb1f <_int_malloc+2367> > 0x00007f6a0976f494 <+692>: and $0xfffffffffffffff8,%rdx > 0x00007f6a0976f498 <+696>: cmp $0x3ff,%r15 > 0x00007f6a0976f49f <+703>: ja 0x7f6a0976f4aa <_int_malloc+714> > 0x00007f6a0976f4a1 <+705>: cmp %rbx,%r12 > 0x00007f6a0976f4a4 <+708>: je 0x7f6a0976f5e8 <_int_malloc+1032> > 0x00007f6a0976f4aa <+714>: cmp %rdx,%r15 > 0x00007f6a0976f4ad <+717>: mov %rbx,0x18(%r12) >=> 0x00007f6a0976f4b2 <+722>: mov %r12,0x10(%rbx) > 0x00007f6a0976f4b6 <+726>: je 0x7f6a0976f860 <_int_malloc+1664> > 0x00007f6a0976f4bc <+732>: cmp $0x3ff,%rdx > 0x00007f6a0976f4c3 <+739>: jbe 0x7f6a0976f418 <_int_malloc+568> > 0x00007f6a0976f4c9 <+745>: mov %rdx,%rax > 0x00007f6a0976f4cc <+748>: shr $0x6,%rax > 0x00007f6a0976f4d0 <+752>: cmp $0x30,%rax > 0x00007f6a0976f4d4 <+756>: ja 0x7f6a0976f570 <_int_malloc+912> > 0x00007f6a0976f4da <+762>: lea 0x30(%rax),%ecx > 0x00007f6a0976f4dd <+765>: lea 0x5e(%rax,%rax,1),%eax > 0x00007f6a0976f4e1 <+769>: mov %ecx,%esi > 0x00007f6a0976f4e3 <+771>: cltq > 0x00007f6a0976f4e5 <+773>: and $0x1f,%ecx > 0x00007f6a0976f4e8 <+776>: mov %r9d,%ebx > 0x00007f6a0976f4eb <+779>: lea -0x10(,%rax,8),%rax > 0x00007f6a0976f4f3 <+787>: sar $0x5,%esi > 0x00007f6a0976f4f6 <+790>: shl %cl,%ebx > 0x00007f6a0976f4f8 <+792>: mov %ebx,%ecx > 0x00007f6a0976f4fa <+794>: lea (%r8,%rax,1),%rdi > 0x00007f6a0976f4fe <+798>: mov 0x10(%rdi),%rax > 0x00007f6a0976f502 <+802>: cmp %rdi,%rax > 0x00007f6a0976f505 <+805>: je 0x7f6a0976f5d5 <_int_malloc+1013> > 0x00007f6a0976f50b <+811>: mov 0x18(%rdi),%rbx > 0x00007f6a0976f50f <+815>: or $0x1,%rdx > 0x00007f6a0976f513 <+819>: cmp 0x8(%rbx),%rdx > 0x00007f6a0976f517 <+823>: jae 0x7f6a0976f53c <_int_malloc+860> > 0x00007f6a0976f519 <+825>: mov 0x28(%rax),%rdx > 0x00007f6a0976f51d <+829>: mov %rax,0x20(%rbp) > 0x00007f6a0976f521 <+833>: mov %rdx,0x28(%rbp) > 0x00007f6a0976f525 <+837>: mov %rbp,0x20(%rdx) > 0x00007f6a0976f529 <+841>: mov %rbp,0x28(%rax) > 0x00007f6a0976f52d <+845>: mov %rdi,%rax > 0x00007f6a0976f530 <+848>: jmpq 0x7f6a0976f43b <_int_malloc+603> > 0x00007f6a0976f535 <+853>: nopl (%rax) > 0x00007f6a0976f538 <+856>: mov 0x20(%rax),%rax > 0x00007f6a0976f53c <+860>: mov 0x8(%rax),%rbx > 0x00007f6a0976f540 <+864>: cmp %rbx,%rdx > 0x00007f6a0976f543 <+867>: jb 0x7f6a0976f538 <_int_malloc+856> > 0x00007f6a0976f545 <+869>: cmp %rbx,%rdx > 0x00007f6a0976f548 <+872>: je 0x7f6a0976f6b0 <_int_malloc+1232> > 0x00007f6a0976f54e <+878>: mov 0x28(%rax),%rdx > 0x00007f6a0976f552 <+882>: mov %rax,0x20(%rbp) > 0x00007f6a0976f556 <+886>: mov %rdx,0x28(%rbp) > 0x00007f6a0976f55a <+890>: mov %rbp,0x28(%rax) > 0x00007f6a0976f55e <+894>: mov 0x28(%rbp),%rdx > 0x00007f6a0976f562 <+898>: mov %rbp,0x20(%rdx) > 0x00007f6a0976f566 <+902>: mov 0x18(%rax),%rbx > 0x00007f6a0976f56a <+906>: jmpq 0x7f6a0976f43b <_int_malloc+603> > 0x00007f6a0976f56f <+911>: nop > 0x00007f6a0976f570 <+912>: mov %rdx,%rax > 0x00007f6a0976f573 <+915>: shr $0x9,%rax > 0x00007f6a0976f577 <+919>: cmp $0x14,%rax > 0x00007f6a0976f57b <+923>: ja 0x7f6a0976f590 <_int_malloc+944> > 0x00007f6a0976f57d <+925>: lea 0x5b(%rax),%ecx > 0x00007f6a0976f580 <+928>: lea 0xb4(%rax,%rax,1),%eax > 0x00007f6a0976f587 <+935>: jmpq 0x7f6a0976f4e1 <_int_malloc+769> > 0x00007f6a0976f58c <+940>: nopl 0x0(%rax) > 0x00007f6a0976f590 <+944>: mov %rdx,%rax > 0x00007f6a0976f593 <+947>: shr $0xc,%rax > 0x00007f6a0976f597 <+951>: cmp $0xa,%rax > 0x00007f6a0976f59b <+955>: ja 0x7f6a0976f688 <_int_malloc+1192> > 0x00007f6a0976f5a1 <+961>: lea 0x6e(%rax),%ecx > 0x00007f6a0976f5a4 <+964>: lea 0xda(%rax,%rax,1),%eax > 0x00007f6a0976f5ab <+971>: cltq > 0x00007f6a0976f5ad <+973>: and $0x1f,%ecx > 0x00007f6a0976f5b0 <+976>: mov %r9d,%ebx > 0x00007f6a0976f5b3 <+979>: lea -0x10(,%rax,8),%rax > 0x00007f6a0976f5bb <+987>: shl %cl,%ebx > 0x00007f6a0976f5bd <+989>: mov $0x3,%esi > 0x00007f6a0976f5c2 <+994>: mov %ebx,%ecx > 0x00007f6a0976f5c4 <+996>: lea (%r8,%rax,1),%rdi > 0x00007f6a0976f5c8 <+1000>: mov 0x10(%rdi),%rax > 0x00007f6a0976f5cc <+1004>: cmp %rdi,%rax > 0x00007f6a0976f5cf <+1007>: jne 0x7f6a0976f50b <_int_malloc+811> > 0x00007f6a0976f5d5 <+1013>: mov %rbp,0x28(%rbp) > 0x00007f6a0976f5d9 <+1017>: mov %rbp,0x20(%rbp) > 0x00007f6a0976f5dd <+1021>: mov %rax,%rbx > 0x00007f6a0976f5e0 <+1024>: jmpq 0x7f6a0976f43b <_int_malloc+603> > 0x00007f6a0976f5e5 <+1029>: nopl (%rax) > 0x00007f6a0976f5e8 <+1032>: mov 0x60(%r13),%rax > 0x00007f6a0976f5ec <+1036>: cmp %rbp,%rax > 0x00007f6a0976f5ef <+1039>: jne 0x7f6a0976f4aa <_int_malloc+714> > 0x00007f6a0976f5f5 <+1045>: cmp 0x38(%rsp),%rdx > 0x00007f6a0976f5fa <+1050>: jbe 0x7f6a0976f4aa <_int_malloc+714> > 0x00007f6a0976f600 <+1056>: sub %r15,%rdx > 0x00007f6a0976f603 <+1059>: add %r15,%rbp > 0x00007f6a0976f606 <+1062>: mov %r13,%rbx > 0x00007f6a0976f609 <+1065>: cmp $0x3ff,%rdx > 0x00007f6a0976f610 <+1072>: mov %rbp,0x10(%r12) > 0x00007f6a0976f615 <+1077>: mov %rbp,0x18(%r12) > 0x00007f6a0976f61a <+1082>: mov %rbp,0x60(%r13) > 0x00007f6a0976f61e <+1086>: mov %r12,0x10(%rbp) > 0x00007f6a0976f622 <+1090>: mov %r12,0x18(%rbp) > 0x00007f6a0976f626 <+1094>: jbe 0x7f6a0976f638 <_int_malloc+1112> > 0x00007f6a0976f628 <+1096>: movq $0x0,0x20(%rbp) > 0x00007f6a0976f630 <+1104>: movq $0x0,0x28(%rbp) > 0x00007f6a0976f638 <+1112>: lea 0x315841(%rip),%rcx # 0x7f6a09a84e80 <main_arena> > 0x00007f6a0976f63f <+1119>: mov %rdx,0x0(%rbp,%rdx,1) > 0x00007f6a0976f644 <+1124>: cmp %rcx,%rbx > 0x00007f6a0976f647 <+1127>: lea 0x10(%rax),%rbx > 0x00007f6a0976f64b <+1131>: setne %cl > 0x00007f6a0976f64e <+1134>: or $0x1,%r15 > 0x00007f6a0976f652 <+1138>: movzbl %cl,%ecx > 0x00007f6a0976f655 <+1141>: shl $0x2,%rcx > 0x00007f6a0976f659 <+1145>: or %rcx,%r15 > 0x00007f6a0976f65c <+1148>: mov %rdx,%rcx > 0x00007f6a0976f65f <+1151>: mov %r15,0x8(%rax) > 0x00007f6a0976f663 <+1155>: mov 0x31611f(%rip),%eax # 0x7f6a09a85788 <perturb_byte> > 0x00007f6a0976f669 <+1161>: or $0x1,%rcx > 0x00007f6a0976f66d <+1165>: mov %rcx,0x8(%rbp) > 0x00007f6a0976f671 <+1169>: mov %rbx,%rbp > 0x00007f6a0976f674 <+1172>: test %eax,%eax > 0x00007f6a0976f676 <+1174>: je 0x7f6a0976f2b9 <_int_malloc+217> > 0x00007f6a0976f67c <+1180>: jmpq 0x7f6a0976f94e <_int_malloc+1902> > 0x00007f6a0976f681 <+1185>: nopl 0x0(%rax) > 0x00007f6a0976f688 <+1192>: mov %rdx,%rax > 0x00007f6a0976f68b <+1195>: shr $0xf,%rax > 0x00007f6a0976f68f <+1199>: cmp $0x4,%rax > 0x00007f6a0976f693 <+1203>: ja 0x7f6a0976f770 <_int_malloc+1424> > 0x00007f6a0976f699 <+1209>: lea 0x77(%rax),%ecx > 0x00007f6a0976f69c <+1212>: lea 0xec(%rax,%rax,1),%eax > 0x00007f6a0976f6a3 <+1219>: jmpq 0x7f6a0976f5ab <_int_malloc+971> > 0x00007f6a0976f6a8 <+1224>: nopl 0x0(%rax,%rax,1) > 0x00007f6a0976f6b0 <+1232>: mov 0x10(%rax),%rax > 0x00007f6a0976f6b4 <+1236>: jmpq 0x7f6a0976f566 <_int_malloc+902> > 0x00007f6a0976f6b9 <+1241>: nopl 0x0(%rax) > 0x00007f6a0976f6c0 <+1248>: cmp $0x3ff,%r15 > 0x00007f6a0976f6c7 <+1255>: mov %r13,%rbx > 0x00007f6a0976f6ca <+1258>: ja 0x7f6a0976f880 <_int_malloc+1696> > 0x00007f6a0976f6d0 <+1264>: mov 0x20(%rsp),%ecx > 0x00007f6a0976f6d4 <+1268>: mov %r9d,%ebp > 0x00007f6a0976f6d7 <+1271>: add $0x1,%ecx > 0x00007f6a0976f6da <+1274>: mov %ecx,%esi > 0x00007f6a0976f6dc <+1276>: lea -0x2(%rcx,%rcx,1),%eax > 0x00007f6a0976f6e0 <+1280>: and $0x1f,%ecx > 0x00007f6a0976f6e3 <+1283>: shr $0x5,%esi > 0x00007f6a0976f6e6 <+1286>: shl %cl,%ebp > 0x00007f6a0976f6e8 <+1288>: mov %esi,%edi > 0x00007f6a0976f6ea <+1290>: mov %eax,%eax > 0x00007f6a0976f6ec <+1292>: mov %ebp,%ecx > 0x00007f6a0976f6ee <+1294>: mov 0x858(%rbx,%rdi,4),%edx > 0x00007f6a0976f6f5 <+1301>: lea -0x10(%r8,%rax,8),%rax > 0x00007f6a0976f6fa <+1306>: nopw 0x0(%rax,%rax,1) > 0x00007f6a0976f700 <+1312>: test %ecx,%ecx > 0x00007f6a0976f702 <+1314>: je 0x7f6a0976f710 <_int_malloc+1328> > 0x00007f6a0976f704 <+1316>: cmp %edx,%ecx > 0x00007f6a0976f706 <+1318>: jbe 0x7f6a0976f746 <_int_malloc+1382> > 0x00007f6a0976f708 <+1320>: nopl 0x0(%rax,%rax,1) > 0x00007f6a0976f710 <+1328>: add $0x1,%esi > 0x00007f6a0976f713 <+1331>: cmp $0x3,%esi > 0x00007f6a0976f716 <+1334>: ja 0x7f6a0976f790 <_int_malloc+1456> > 0x00007f6a0976f718 <+1336>: mov %esi,%edi > 0x00007f6a0976f71a <+1338>: mov 0x858(%rbx,%rdi,4),%edx > 0x00007f6a0976f721 <+1345>: test %edx,%edx > 0x00007f6a0976f723 <+1347>: je 0x7f6a0976f710 <_int_malloc+1328> > 0x00007f6a0976f725 <+1349>: mov %esi,%eax > 0x00007f6a0976f727 <+1351>: mov $0x1,%ecx > 0x00007f6a0976f72c <+1356>: shl $0x6,%eax > 0x00007f6a0976f72f <+1359>: sub $0x2,%eax > 0x00007f6a0976f732 <+1362>: test %edx,%ecx > 0x00007f6a0976f734 <+1364>: mov %eax,%eax > 0x00007f6a0976f736 <+1366>: lea -0x10(%r8,%rax,8),%rax > 0x00007f6a0976f73b <+1371>: jne 0x7f6a0976f74a <_int_malloc+1386> > 0x00007f6a0976f73d <+1373>: nopl (%rax) > 0x00007f6a0976f740 <+1376>: add $0x10,%rax > 0x00007f6a0976f744 <+1380>: add %ecx,%ecx > 0x00007f6a0976f746 <+1382>: test %edx,%ecx > 0x00007f6a0976f748 <+1384>: je 0x7f6a0976f740 <_int_malloc+1376> > 0x00007f6a0976f74a <+1386>: mov 0x18(%rax),%rbp > 0x00007f6a0976f74e <+1390>: cmp %rax,%rbp > 0x00007f6a0976f751 <+1393>: jne 0x7f6a0976f99d <_int_malloc+1981> > 0x00007f6a0976f757 <+1399>: mov %ecx,%ebp > 0x00007f6a0976f759 <+1401>: add $0x10,%rax > 0x00007f6a0976f75d <+1405>: add %ecx,%ecx > 0x00007f6a0976f75f <+1407>: not %ebp > 0x00007f6a0976f761 <+1409>: and %ebp,%edx > 0x00007f6a0976f763 <+1411>: mov %edx,0x858(%rbx,%rdi,4) > 0x00007f6a0976f76a <+1418>: jmp 0x7f6a0976f700 <_int_malloc+1312> > 0x00007f6a0976f76c <+1420>: nopl 0x0(%rax) > 0x00007f6a0976f770 <+1424>: mov %rdx,%rax > 0x00007f6a0976f773 <+1427>: shr $0x12,%rax > 0x00007f6a0976f777 <+1431>: cmp $0x2,%rax > 0x00007f6a0976f77b <+1435>: ja 0x7f6a0976f968 <_int_malloc+1928> > 0x00007f6a0976f781 <+1441>: lea 0x7c(%rax),%ecx > 0x00007f6a0976f784 <+1444>: lea 0xf6(%rax,%rax,1),%eax > 0x00007f6a0976f78b <+1451>: jmpq 0x7f6a0976f5ab <_int_malloc+971> > 0x00007f6a0976f790 <+1456>: mov 0x58(%rbx),%rbp > 0x00007f6a0976f794 <+1460>: mov 0x8(%rbp),%r13 > 0x00007f6a0976f798 <+1464>: mov %rbp,%r14 > 0x00007f6a0976f79b <+1467>: and $0xfffffffffffffff8,%r13 > 0x00007f6a0976f79f <+1471>: cmp 0x38(%rsp),%r13 > 0x00007f6a0976f7a4 <+1476>: jae 0x7f6a0976fd2c <_int_malloc+2892> > 0x00007f6a0976f7aa <+1482>: testb $0x1,0x4(%rbx) > 0x00007f6a0976f7ae <+1486>: jne 0x7f6a0976fba3 <_int_malloc+2499> > 0x00007f6a0976f7b4 <+1492>: mov %rbx,%rdi > 0x00007f6a0976f7b7 <+1495>: mov %r8,0x10(%rsp) > 0x00007f6a0976f7bc <+1500>: mov %r9d,0x18(%rsp) > 0x00007f6a0976f7c1 <+1505>: mov %r10,0x8(%rsp) > 0x00007f6a0976f7c6 <+1510>: callq 0x7f6a0976c110 <malloc_consolidate> > 0x00007f6a0976f7cb <+1515>: mov 0x58(%rsp),%eax > 0x00007f6a0976f7cf <+1519>: cmp $0x3ff,%r15 > 0x00007f6a0976f7d6 <+1526>: mov 0x10(%rsp),%r8 > 0x00007f6a0976f7db <+1531>: mov 0x18(%rsp),%r9d > 0x00007f6a0976f7e0 <+1536>: mov 0x8(%rsp),%r10 > 0x00007f6a0976f7e5 <+1541>: mov %eax,0x20(%rsp) > 0x00007f6a0976f7e9 <+1545>: jbe 0x7f6a0976f40b <_int_malloc+555> > 0x00007f6a0976f7ef <+1551>: cmpq $0x30,0x28(%rsp) > 0x00007f6a0976f7f5 <+1557>: mov 0x5c(%rsp),%edx > 0x00007f6a0976f7f9 <+1561>: mov %edx,0x20(%rsp) > 0x00007f6a0976f7fd <+1565>: jbe 0x7f6a0976f40b <_int_malloc+555> > 0x00007f6a0976f803 <+1571>: cmpq $0x14,0x30(%rsp) > 0x00007f6a0976f809 <+1577>: mov 0x60(%rsp),%ecx > 0x00007f6a0976f80d <+1581>: mov %ecx,0x20(%rsp) > 0x00007f6a0976f811 <+1585>: jbe 0x7f6a0976f40b <_int_malloc+555> > 0x00007f6a0976f817 <+1591>: cmpq $0xa,0x50(%rsp) > 0x00007f6a0976f81d <+1597>: mov 0x6c(%rsp),%ebp > 0x00007f6a0976f821 <+1601>: mov %ebp,0x20(%rsp) > 0x00007f6a0976f825 <+1605>: jbe 0x7f6a0976f40b <_int_malloc+555> > 0x00007f6a0976f82b <+1611>: cmpq $0x4,0x48(%rsp) > 0x00007f6a0976f831 <+1617>: mov 0x68(%rsp),%eax > 0x00007f6a0976f835 <+1621>: mov %eax,0x20(%rsp) > 0x00007f6a0976f839 <+1625>: jbe 0x7f6a0976f40b <_int_malloc+555> > 0x00007f6a0976f83f <+1631>: cmpq $0x3,0x40(%rsp) > 0x00007f6a0976f845 <+1637>: mov $0x7e,%edx > 0x00007f6a0976f84a <+1642>: cmovb 0x64(%rsp),%edx > 0x00007f6a0976f84f <+1647>: mov %edx,0x20(%rsp) > 0x00007f6a0976f853 <+1651>: jmpq 0x7f6a0976f40b <_int_malloc+555> > 0x00007f6a0976f858 <+1656>: nopl 0x0(%rax,%rax,1) > 0x00007f6a0976f860 <+1664>: lea 0x315619(%rip),%rax # 0x7f6a09a84e80 <main_arena> > 0x00007f6a0976f867 <+1671>: orq $0x1,0x8(%rbp,%r15,1) > 0x00007f6a0976f86d <+1677>: cmp %rax,%r13 > 0x00007f6a0976f870 <+1680>: je 0x7f6a0976f2a7 <_int_malloc+199> > 0x00007f6a0976f876 <+1686>: orq $0x4,0x8(%rbp) > 0x00007f6a0976f87b <+1691>: jmpq 0x7f6a0976f2a7 <_int_malloc+199> > 0x00007f6a0976f880 <+1696>: mov 0x20(%rsp),%ebp > 0x00007f6a0976f884 <+1700>: lea -0x2(%rbp,%rbp,1),%eax > 0x00007f6a0976f888 <+1704>: mov %eax,%eax > 0x00007f6a0976f88a <+1706>: lea -0x10(%r8,%rax,8),%rax > 0x00007f6a0976f88f <+1711>: mov 0x10(%rax),%rdx > 0x00007f6a0976f893 <+1715>: cmp %rax,%rdx > 0x00007f6a0976f896 <+1718>: je 0x7f6a0976f6d0 <_int_malloc+1264> > 0x00007f6a0976f89c <+1724>: cmp 0x8(%rdx),%r15 > 0x00007f6a0976f8a0 <+1728>: ja 0x7f6a0976f6d0 <_int_malloc+1264> > 0x00007f6a0976f8a6 <+1734>: mov 0x28(%rdx),%rdx > 0x00007f6a0976f8aa <+1738>: mov 0x8(%rdx),%rcx > 0x00007f6a0976f8ae <+1742>: mov %rcx,%r13 > 0x00007f6a0976f8b1 <+1745>: and $0xfffffffffffffff8,%r13 > 0x00007f6a0976f8b5 <+1749>: cmp %r13,%r15 > 0x00007f6a0976f8b8 <+1752>: ja 0x7f6a0976f8a6 <_int_malloc+1734> > 0x00007f6a0976f8ba <+1754>: mov 0x18(%rax),%rbp > 0x00007f6a0976f8be <+1758>: cmp %rdx,%rbp > 0x00007f6a0976f8c1 <+1761>: je 0x7f6a0976ffa7 <_int_malloc+3527> > 0x00007f6a0976f8c7 <+1767>: mov 0x10(%rdx),%rbp > 0x00007f6a0976f8cb <+1771>: cmp %rcx,0x8(%rbp) > 0x00007f6a0976f8cf <+1775>: je 0x7f6a0976ff9e <_int_malloc+3518> > 0x00007f6a0976f8d5 <+1781>: mov %rbp,%rax > 0x00007f6a0976f8d8 <+1784>: mov %rdx,%rbp > 0x00007f6a0976f8db <+1787>: mov %r13,%r14 > 0x00007f6a0976f8de <+1790>: mov 0x18(%rbp),%rdx > 0x00007f6a0976f8e2 <+1794>: sub %r15,%r14 > 0x00007f6a0976f8e5 <+1797>: cmp 0x18(%rax),%rbp > 0x00007f6a0976f8e9 <+1801>: jne 0x7f6a0976ff39 <_int_malloc+3417> > 0x00007f6a0976f8ef <+1807>: cmp 0x10(%rdx),%rbp > 0x00007f6a0976f8f3 <+1811>: jne 0x7f6a0976ff39 <_int_malloc+3417> > 0x00007f6a0976f8f9 <+1817>: cmpq $0x3ff,0x8(%rbp) > 0x00007f6a0976f901 <+1825>: mov %rdx,0x18(%rax) > 0x00007f6a0976f905 <+1829>: mov %rax,0x10(%rdx) > 0x00007f6a0976f909 <+1833>: jbe 0x7f6a0976f918 <_int_malloc+1848> > 0x00007f6a0976f90b <+1835>: mov 0x20(%rbp),%rdx > 0x00007f6a0976f90f <+1839>: test %rdx,%rdx > 0x00007f6a0976f912 <+1842>: jne 0x7f6a0976ffb0 <_int_malloc+3536> > 0x00007f6a0976f918 <+1848>: cmp $0x1f,%r14 > 0x00007f6a0976f91c <+1852>: ja 0x7f6a0976fdf9 <_int_malloc+3097> > 0x00007f6a0976f922 <+1858>: lea 0x315557(%rip),%rax # 0x7f6a09a84e80 <main_arena> > 0x00007f6a0976f929 <+1865>: orq $0x1,0x8(%rbp,%r13,1) > 0x00007f6a0976f92f <+1871>: cmp %rax,%rbx > 0x00007f6a0976f932 <+1874>: je 0x7f6a0976f939 <_int_malloc+1881> > 0x00007f6a0976f934 <+1876>: orq $0x4,0x8(%rbp) > 0x00007f6a0976f939 <+1881>: lea 0x10(%rbp),%rbx > 0x00007f6a0976f93d <+1885>: mov 0x315e45(%rip),%eax # 0x7f6a09a85788 <perturb_byte> > 0x00007f6a0976f943 <+1891>: mov %rbx,%rbp > 0x00007f6a0976f946 <+1894>: test %eax,%eax > 0x00007f6a0976f948 <+1896>: je 0x7f6a0976f2b9 <_int_malloc+217> > 0x00007f6a0976f94e <+1902>: not %eax > 0x00007f6a0976f950 <+1904>: mov %r10,%rdx > 0x00007f6a0976f953 <+1907>: mov %rbx,%rdi > 0x00007f6a0976f956 <+1910>: movzbl %al,%esi > 0x00007f6a0976f959 <+1913>: callq 0x7f6a09779b90 <__memset_sse2> > 0x00007f6a0976f95e <+1918>: jmpq 0x7f6a0976f2b9 <_int_malloc+217> > 0x00007f6a0976f963 <+1923>: nopl 0x0(%rax,%rax,1) > 0x00007f6a0976f968 <+1928>: mov $0x40000000,%ecx > 0x00007f6a0976f96d <+1933>: mov $0x3,%esi > 0x00007f6a0976f972 <+1938>: mov $0x7c0,%eax > 0x00007f6a0976f977 <+1943>: jmpq 0x7f6a0976f4fa <_int_malloc+794> > 0x00007f6a0976f97c <+1948>: add $0x30,%eax > 0x00007f6a0976f97f <+1951>: mov %eax,0x20(%rsp) > 0x00007f6a0976f983 <+1955>: jmpq 0x7f6a0976f369 <_int_malloc+393> > 0x00007f6a0976f988 <+1960>: mov 0x313611(%rip),%rax # 0x7f6a09a82fa0 > 0x00007f6a0976f98f <+1967>: xor %ebp,%ebp > 0x00007f6a0976f991 <+1969>: movl $0xc,%fs:(%rax) > 0x00007f6a0976f998 <+1976>: jmpq 0x7f6a0976f2b9 <_int_malloc+217> > 0x00007f6a0976f99d <+1981>: mov 0x8(%rbp),%r13 > 0x00007f6a0976f9a1 <+1985>: mov 0x10(%rbp),%rax > 0x00007f6a0976f9a5 <+1989>: mov 0x18(%rbp),%rdx > 0x00007f6a0976f9a9 <+1993>: and $0xfffffffffffffff8,%r13 > 0x00007f6a0976f9ad <+1997>: mov %r13,%r14 > 0x00007f6a0976f9b0 <+2000>: sub %r15,%r14 > 0x00007f6a0976f9b3 <+2003>: cmp 0x18(%rax),%rbp > 0x00007f6a0976f9b7 <+2007>: jne 0x7f6a0976fed4 <_int_malloc+3316> > 0x00007f6a0976f9bd <+2013>: cmp %rbp,0x10(%rdx) > 0x00007f6a0976f9c1 <+2017>: jne 0x7f6a0976fed4 <_int_malloc+3316> > 0x00007f6a0976f9c7 <+2023>: cmpq $0x3ff,0x8(%rbp) > 0x00007f6a0976f9cf <+2031>: mov %rdx,0x18(%rax) > 0x00007f6a0976f9d3 <+2035>: mov %rax,0x10(%rdx) > 0x00007f6a0976f9d7 <+2039>: jbe 0x7f6a0976f9fd <_int_malloc+2077> > 0x00007f6a0976f9d9 <+2041>: mov 0x20(%rbp),%rdx > 0x00007f6a0976f9dd <+2045>: test %rdx,%rdx > 0x00007f6a0976f9e0 <+2048>: je 0x7f6a0976f9fd <_int_malloc+2077> > 0x00007f6a0976f9e2 <+2050>: cmpq $0x0,0x20(%rax) > 0x00007f6a0976f9e7 <+2055>: je 0x7f6a0977038b <_int_malloc+4523> > 0x00007f6a0976f9ed <+2061>: mov 0x28(%rbp),%rax > 0x00007f6a0976f9f1 <+2065>: mov %rax,0x28(%rdx) > 0x00007f6a0976f9f5 <+2069>: mov 0x28(%rbp),%rax > 0x00007f6a0976f9f9 <+2073>: mov %rdx,0x20(%rax) > 0x00007f6a0976f9fd <+2077>: cmp $0x1f,%r14 > 0x00007f6a0976fa01 <+2081>: jbe 0x7f6a0976fab3 <_int_malloc+2259> > 0x00007f6a0976fa07 <+2087>: mov 0x10(%r12),%rdx > 0x00007f6a0976fa0c <+2092>: cmp %r12,0x18(%rdx) > 0x00007f6a0976fa10 <+2096>: jne 0x7f6a0976fecb <_int_malloc+3307> > 0x00007f6a0976fa16 <+2102>: lea 0x0(%rbp,%r15,1),%rax > 0x00007f6a0976fa1b <+2107>: cmp $0x3ff,%r15 > 0x00007f6a0976fa22 <+2114>: mov %r12,0x18(%rax) > 0x00007f6a0976fa26 <+2118>: mov %rdx,0x10(%rax) > 0x00007f6a0976fa2a <+2122>: mov %rax,0x18(%rdx) > 0x00007f6a0976fa2e <+2126>: mov %rax,0x10(%r12) > 0x00007f6a0976fa33 <+2131>: ja 0x7f6a0976fa39 <_int_malloc+2137> > 0x00007f6a0976fa35 <+2133>: mov %rax,0x60(%rbx) > 0x00007f6a0976fa39 <+2137>: cmp $0x3ff,%r14 > 0x00007f6a0976fa40 <+2144>: jbe 0x7f6a0976fa52 <_int_malloc+2162> > 0x00007f6a0976fa42 <+2146>: movq $0x0,0x20(%rax) > 0x00007f6a0976fa4a <+2154>: movq $0x0,0x28(%rax) > 0x00007f6a0976fa52 <+2162>: lea 0x315427(%rip),%rdx # 0x7f6a09a84e80 <main_arena> > 0x00007f6a0976fa59 <+2169>: mov %r14,(%rax,%r14,1) > 0x00007f6a0976fa5d <+2173>: cmp %rdx,%rbx > 0x00007f6a0976fa60 <+2176>: setne %dl > 0x00007f6a0976fa63 <+2179>: or $0x1,%r15 > 0x00007f6a0976fa67 <+2183>: movzbl %dl,%edx > 0x00007f6a0976fa6a <+2186>: shl $0x2,%rdx > 0x00007f6a0976fa6e <+2190>: or %rdx,%r15 > 0x00007f6a0976fa71 <+2193>: mov %r14,%rdx > 0x00007f6a0976fa74 <+2196>: or $0x1,%rdx > 0x00007f6a0976fa78 <+2200>: mov %r15,0x8(%rbp) > 0x00007f6a0976fa7c <+2204>: mov %rdx,0x8(%rax) > 0x00007f6a0976fa80 <+2208>: jmpq 0x7f6a0976f2a7 <_int_malloc+199> > 0x00007f6a0976fa85 <+2213>: mov %r15,%rax > 0x00007f6a0976fa88 <+2216>: shr $0xc,%rax > 0x00007f6a0976fa8c <+2220>: cmp $0xa,%rax > 0x00007f6a0976fa90 <+2224>: jbe 0x7f6a0976face <_int_malloc+2286> > 0x00007f6a0976fa92 <+2226>: mov %r15,%rax > 0x00007f6a0976fa95 <+2229>: shr $0xf,%rax > 0x00007f6a0976fa99 <+2233>: cmp $0x4,%rax > 0x00007f6a0976fa9d <+2237>: ja 0x7f6a0976fafb <_int_malloc+2331> > 0x00007f6a0976fa9f <+2239>: add $0x77,%eax > 0x00007f6a0976faa2 <+2242>: mov %eax,0x20(%rsp) > 0x00007f6a0976faa6 <+2246>: jmpq 0x7f6a0976f369 <_int_malloc+393> > 0x00007f6a0976faab <+2251>: mov %rcx,%rbp > 0x00007f6a0976faae <+2254>: jmpq 0x7f6a0976f294 <_int_malloc+180> > 0x00007f6a0976fab3 <+2259>: lea 0x3153c6(%rip),%rax # 0x7f6a09a84e80 <main_arena> > 0x00007f6a0976faba <+2266>: orq $0x1,0x8(%rbp,%r13,1) > 0x00007f6a0976fac0 <+2272>: cmp %rax,%rbx > 0x00007f6a0976fac3 <+2275>: jne 0x7f6a0976f334 <_int_malloc+340> > 0x00007f6a0976fac9 <+2281>: jmpq 0x7f6a0976f2a7 <_int_malloc+199> > 0x00007f6a0976face <+2286>: add $0x6e,%eax > 0x00007f6a0976fad1 <+2289>: mov %eax,0x20(%rsp) > 0x00007f6a0976fad5 <+2293>: jmpq 0x7f6a0976f369 <_int_malloc+393> > 0x00007f6a0976fada <+2298>: mov %rbx,%rdi > 0x00007f6a0976fadd <+2301>: mov %r8,0x10(%rsp) > 0x00007f6a0976fae2 <+2306>: mov %r10,0x8(%rsp) > 0x00007f6a0976fae7 <+2311>: callq 0x7f6a0976c110 <malloc_consolidate> > 0x00007f6a0976faec <+2316>: mov 0x10(%rsp),%r8 > 0x00007f6a0976faf1 <+2321>: mov 0x8(%rsp),%r10 > 0x00007f6a0976faf6 <+2326>: jmpq 0x7f6a0976f38f <_int_malloc+431> > 0x00007f6a0976fafb <+2331>: mov %r15,%rax > 0x00007f6a0976fafe <+2334>: movl $0x7e,0x20(%rsp) > 0x00007f6a0976fb06 <+2342>: shr $0x12,%rax > 0x00007f6a0976fb0a <+2346>: lea 0x7c(%rax),%edx > 0x00007f6a0976fb0d <+2349>: cmp $0x3,%rax > 0x00007f6a0976fb11 <+2353>: cmovae 0x20(%rsp),%edx > 0x00007f6a0976fb16 <+2358>: mov %edx,0x20(%rsp) > 0x00007f6a0976fb1a <+2362>: jmpq 0x7f6a0976f369 <_int_malloc+393> > 0x00007f6a0976fb1f <+2367>: cmpl $0x0,0x318b4a(%rip) # 0x7f6a09a88670 <__libc_multiple_threads> > 0x00007f6a0976fb26 <+2374>: je 0x7f6a0976fb35 <_int_malloc+2389> > 0x00007f6a0976fb28 <+2376>: lock decl 0x0(%r13) > 0x00007f6a0976fb2d <+2381>: jne 0x7f6a0977312a <_L_unlock_7748> > 0x00007f6a0976fb33 <+2387>: jmp 0x7f6a0976fb3f <_int_malloc+2399> > 0x00007f6a0976fb35 <+2389>: decl 0x0(%r13) > 0x00007f6a0976fb39 <+2393>: jne 0x7f6a0977312a <_L_unlock_7748> > 0x00007f6a0976fb3f <+2399>: mov 0x3135a3(%rip),%edi # 0x7f6a09a830e8 <check_action> > 0x00007f6a0976fb45 <+2405>: lea 0x10(%rbp),%rdx > 0x00007f6a0976fb49 <+2409>: lea 0xdc569(%rip),%rsi # 0x7f6a0984c0b9 > 0x00007f6a0976fb50 <+2416>: mov %r9d,0x18(%rsp) > 0x00007f6a0976fb55 <+2421>: mov %r8,0x10(%rsp) > 0x00007f6a0976fb5a <+2426>: mov %r10,0x8(%rsp) > 0x00007f6a0976fb5f <+2431>: callq 0x7f6a0976c030 <malloc_printerr> > 0x00007f6a0976fb64 <+2436>: mov 0x18(%rsp),%r9d > 0x00007f6a0976fb69 <+2441>: xor %eax,%eax > 0x00007f6a0976fb6b <+2443>: mov %r9d,%esi > 0x00007f6a0976fb6e <+2446>: cmpl $0x0,0x318afb(%rip) # 0x7f6a09a88670 <__libc_multiple_threads> > 0x00007f6a0976fb75 <+2453>: je 0x7f6a0976fb85 <_int_malloc+2469> > 0x00007f6a0976fb77 <+2455>: lock cmpxchg %esi,0x0(%r13) > 0x00007f6a0976fb7d <+2461>: jne 0x7f6a09773146 <_L_lock_7761> > 0x00007f6a0976fb83 <+2467>: jmp 0x7f6a0976fb90 <_int_malloc+2480> > 0x00007f6a0976fb85 <+2469>: cmpxchg %esi,0x0(%r13) > 0x00007f6a0976fb8a <+2474>: jne 0x7f6a09773146 <_L_lock_7761> > 0x00007f6a0976fb90 <+2480>: mov 0x8(%rbp),%rdx > 0x00007f6a0976fb94 <+2484>: mov 0x8(%rsp),%r10 > 0x00007f6a0976fb99 <+2489>: mov 0x10(%rsp),%r8 > 0x00007f6a0976fb9e <+2494>: jmpq 0x7f6a0976f494 <_int_malloc+692> > 0x00007f6a0976fba3 <+2499>: mov 0x315baf(%rip),%eax # 0x7f6a09a85758 <mp_+56> > 0x00007f6a0976fba9 <+2505>: sub $0x1,%eax > 0x00007f6a0976fbac <+2508>: cmp 0x315b7d(%rip),%r15 # 0x7f6a09a85730 <mp_+16> > 0x00007f6a0976fbb3 <+2515>: mov %rax,0x20(%rsp) > 0x00007f6a0976fbb8 <+2520>: jb 0x7f6a0976fdef <_int_malloc+3087> > 0x00007f6a0976fbbe <+2526>: mov 0x315b84(%rip),%eax # 0x7f6a09a85748 <mp_+40> > 0x00007f6a0976fbc4 <+2532>: cmp 0x315b82(%rip),%eax # 0x7f6a09a8574c <mp_+44> > 0x00007f6a0976fbca <+2538>: jge 0x7f6a0976fdef <_int_malloc+3087> > 0x00007f6a0976fbd0 <+2544>: mov 0x20(%rsp),%rcx > 0x00007f6a0976fbd5 <+2549>: lea 0x8(%rcx,%r15,1),%rbp > 0x00007f6a0976fbda <+2554>: mov %rcx,%rax > 0x00007f6a0976fbdd <+2557>: not %rax > 0x00007f6a0976fbe0 <+2560>: and %rax,%rbp > 0x00007f6a0976fbe3 <+2563>: cmp %rbp,%r15 > 0x00007f6a0976fbe6 <+2566>: jb 0x7f6a09770425 <_int_malloc+4677> > 0x00007f6a0976fbec <+2572>: mov 0x58(%rbx),%rbp > 0x00007f6a0976fbf0 <+2576>: movb $0x1,0x28(%rsp) > 0x00007f6a0976fbf5 <+2581>: mov 0x8(%rbp),%r13 > 0x00007f6a0976fbf9 <+2585>: mov %rbp,%r14 > 0x00007f6a0976fbfc <+2588>: and $0xfffffffffffffff8,%r13 > 0x00007f6a0976fc00 <+2592>: lea 0x315279(%rip),%rax # 0x7f6a09a84e80 <main_arena> > 0x00007f6a0976fc07 <+2599>: cmp %rax,%rbx > 0x00007f6a0976fc0a <+2602>: je 0x7f6a0976ffd0 <_int_malloc+3568> > 0x00007f6a0976fc10 <+2608>: mov %rbp,%r12 > 0x00007f6a0976fc13 <+2611>: and $0xfffffffffc000000,%r12 > 0x00007f6a0976fc1a <+2618>: mov 0x10(%r12),%rdx > 0x00007f6a0976fc1f <+2623>: mov %rdx,0x30(%rsp) > 0x00007f6a0976fc24 <+2628>: mov 0x38(%rsp),%rdx > 0x00007f6a0976fc29 <+2633>: sub %r13,%rdx > 0x00007f6a0976fc2c <+2636>: test %rdx,%rdx > 0x00007f6a0976fc2f <+2639>: jle 0x7f6a0976fd66 <_int_malloc+2950> > 0x00007f6a0976fc35 <+2645>: mov %rdx,0x10(%rsp) > 0x00007f6a0976fc3a <+2650>: mov %r10,0x8(%rsp) > 0x00007f6a0976fc3f <+2655>: callq 0x7f6a097d72e0 <__getpagesize> > 0x00007f6a0976fc44 <+2660>: mov 0x10(%rsp),%rdx > 0x00007f6a0976fc49 <+2665>: sub $0x1,%eax > 0x00007f6a0976fc4c <+2668>: mov 0x8(%rsp),%r10 > 0x00007f6a0976fc51 <+2673>: cltq > 0x00007f6a0976fc53 <+2675>: mov %rax,%rcx > 0x00007f6a0976fc56 <+2678>: not %rcx > 0x00007f6a0976fc59 <+2681>: add %rdx,%rax > 0x00007f6a0976fc5c <+2684>: and %rax,%rcx > 0x00007f6a0976fc5f <+2687>: add 0x30(%rsp),%rcx > 0x00007f6a0976fc64 <+2692>: cmp $0x4000000,%rcx > 0x00007f6a0976fc6b <+2699>: ja 0x7f6a0976fd66 <_int_malloc+2950> > 0x00007f6a0976fc71 <+2705>: mov 0x18(%r12),%rdi > 0x00007f6a0976fc76 <+2710>: cmp %rdi,%rcx > 0x00007f6a0976fc79 <+2713>: ja 0x7f6a09770352 <_int_malloc+4466> > 0x00007f6a0976fc7f <+2719>: mov %rcx,0x10(%r12) > 0x00007f6a0976fc84 <+2724>: sub 0x30(%rsp),%rcx > 0x00007f6a0976fc89 <+2729>: add %rcx,0x878(%rbx) > 0x00007f6a0976fc90 <+2736>: mov 0x10(%r12),%rdx > 0x00007f6a0976fc95 <+2741>: mov %rdx,%rax > 0x00007f6a0976fc98 <+2744>: add 0x315b01(%rip),%rax # 0x7f6a09a857a0 <arena_mem> > 0x00007f6a0976fc9f <+2751>: add %rdx,%r12 > 0x00007f6a0976fca2 <+2754>: sub 0x30(%rsp),%rax > 0x00007f6a0976fca7 <+2759>: sub %r14,%r12 > 0x00007f6a0976fcaa <+2762>: or $0x1,%r12 > 0x00007f6a0976fcae <+2766>: mov %rax,0x315aeb(%rip) # 0x7f6a09a857a0 <arena_mem> > 0x00007f6a0976fcb5 <+2773>: mov %r12,0x8(%r14) > 0x00007f6a0976fcb9 <+2777>: mov 0x878(%rbx),%rax > 0x00007f6a0976fcc0 <+2784>: cmp 0x880(%rbx),%rax > 0x00007f6a0976fcc7 <+2791>: jbe 0x7f6a0976fcd0 <_int_malloc+2800> > 0x00007f6a0976fcc9 <+2793>: mov %rax,0x880(%rbx) > 0x00007f6a0976fcd0 <+2800>: mov 0x8(%rbp),%rax > 0x00007f6a0976fcd4 <+2804>: and $0xfffffffffffffff8,%rax > 0x00007f6a0976fcd8 <+2808>: cmp %rax,0x38(%rsp) > 0x00007f6a0976fcdd <+2813>: ja 0x7f6a0976f988 <_int_malloc+1960> > 0x00007f6a0976fce3 <+2819>: lea 0x315196(%rip),%rdx # 0x7f6a09a84e80 <main_arena> > 0x00007f6a0976fcea <+2826>: xor %ecx,%ecx > 0x00007f6a0976fcec <+2828>: lea 0x0(%rbp,%r15,1),%rsi > 0x00007f6a0976fcf1 <+2833>: cmp %rdx,%rbx > 0x00007f6a0976fcf4 <+2836>: mov %r15,%rdx > 0x00007f6a0976fcf7 <+2839>: mov %rsi,0x58(%rbx) > 0x00007f6a0976fcfb <+2843>: setne %cl > 0x00007f6a0976fcfe <+2846>: or $0x1,%rdx > 0x00007f6a0976fd02 <+2850>: sub %r15,%rax > 0x00007f6a0976fd05 <+2853>: shl $0x2,%rcx > 0x00007f6a0976fd09 <+2857>: or $0x1,%rax > 0x00007f6a0976fd0d <+2861>: lea 0x10(%rbp),%rbx > 0x00007f6a0976fd11 <+2865>: or %rcx,%rdx > 0x00007f6a0976fd14 <+2868>: mov %rdx,0x8(%rbp) > 0x00007f6a0976fd18 <+2872>: mov %rax,0x8(%rsi) > 0x00007f6a0976fd1c <+2876>: xor %ebp,%ebp > 0x00007f6a0976fd1e <+2878>: test %rbx,%rbx > 0x00007f6a0976fd21 <+2881>: jne 0x7f6a0976f93d <_int_malloc+1885> > 0x00007f6a0976fd27 <+2887>: jmpq 0x7f6a0976f2b9 <_int_malloc+217> > 0x00007f6a0976fd2c <+2892>: lea 0x31514d(%rip),%rax # 0x7f6a09a84e80 <main_arena> > 0x00007f6a0976fd33 <+2899>: xor %edx,%edx > 0x00007f6a0976fd35 <+2901>: lea 0x0(%rbp,%r15,1),%rcx > 0x00007f6a0976fd3a <+2906>: cmp %rax,%rbx > 0x00007f6a0976fd3d <+2909>: mov %r15,%rax > 0x00007f6a0976fd40 <+2912>: mov %rcx,0x58(%rbx) > 0x00007f6a0976fd44 <+2916>: setne %dl > 0x00007f6a0976fd47 <+2919>: or $0x1,%rax > 0x00007f6a0976fd4b <+2923>: sub %r15,%r13 > 0x00007f6a0976fd4e <+2926>: shl $0x2,%rdx > 0x00007f6a0976fd52 <+2930>: or $0x1,%r13 > 0x00007f6a0976fd56 <+2934>: or %rdx,%rax > 0x00007f6a0976fd59 <+2937>: mov %rax,0x8(%rbp) > 0x00007f6a0976fd5d <+2941>: mov %r13,0x8(%rcx) > 0x00007f6a0976fd61 <+2945>: jmpq 0x7f6a0976f939 <_int_malloc+1881> > 0x00007f6a0976fd66 <+2950>: mov 0x3159bb(%rip),%rsi # 0x7f6a09a85728 <mp_+8> > 0x00007f6a0976fd6d <+2957>: lea 0x40(%r15),%rdi > 0x00007f6a0976fd71 <+2961>: mov %r10,0x8(%rsp) > 0x00007f6a0976fd76 <+2966>: callq 0x7f6a0976d440 <new_heap> > 0x00007f6a0976fd7b <+2971>: test %rax,%rax > 0x00007f6a0976fd7e <+2974>: mov 0x8(%rsp),%r10 > 0x00007f6a0976fd83 <+2979>: je 0x7f6a09770415 <_int_malloc+4661> > 0x00007f6a0976fd89 <+2985>: mov 0x10(%rax),%rdx > 0x00007f6a0976fd8d <+2989>: add %rdx,0x878(%rbx) > 0x00007f6a0976fd94 <+2996>: lea -0x20(%r13),%rsi > 0x00007f6a0976fd98 <+3000>: mov 0x10(%rax),%rdx > 0x00007f6a0976fd9c <+3004>: add %rdx,0x3159fd(%rip) # 0x7f6a09a857a0 <arena_mem> > 0x00007f6a0976fda3 <+3011>: lea 0x10(%rsi),%rcx > 0x00007f6a0976fda7 <+3015>: mov %rbx,(%rax) > 0x00007f6a0976fdaa <+3018>: mov %r12,0x8(%rax) > 0x00007f6a0976fdae <+3022>: add $0x20,%rax > 0x00007f6a0976fdb2 <+3026>: sub $0x20,%rdx > 0x00007f6a0976fdb6 <+3030>: or $0x1,%rdx > 0x00007f6a0976fdba <+3034>: cmp $0x1f,%rsi > 0x00007f6a0976fdbe <+3038>: mov %rax,0x58(%rbx) > 0x00007f6a0976fdc2 <+3042>: mov %rdx,0x8(%rax) > 0x00007f6a0976fdc6 <+3046>: lea 0x0(%rbp,%rcx,1),%rdx > 0x00007f6a0976fdcb <+3051>: movq $0x1,0x8(%rdx) > 0x00007f6a0976fdd3 <+3059>: ja 0x7f6a097703df <_int_malloc+4607> > 0x00007f6a0976fdd9 <+3065>: mov %rcx,%rsi > 0x00007f6a0976fddc <+3068>: mov %rcx,(%rdx) > 0x00007f6a0976fddf <+3071>: or $0x1,%rsi > 0x00007f6a0976fde3 <+3075>: mov %rsi,0x8(%rbp) > 0x00007f6a0976fde7 <+3079>: mov %rax,%rbp > 0x00007f6a0976fdea <+3082>: jmpq 0x7f6a0976fcb9 <_int_malloc+2777> > 0x00007f6a0976fdef <+3087>: movb $0x0,0x28(%rsp) > 0x00007f6a0976fdf4 <+3092>: jmpq 0x7f6a0976fc00 <_int_malloc+2592> > 0x00007f6a0976fdf9 <+3097>: mov 0x10(%r12),%rdx > 0x00007f6a0976fdfe <+3102>: lea 0xde583(%rip),%rsi # 0x7f6a0984e388 > 0x00007f6a0976fe05 <+3109>: cmp %r12,0x18(%rdx) > 0x00007f6a0976fe09 <+3113>: jne 0x7f6a0976fe74 <_int_malloc+3220> > 0x00007f6a0976fe0b <+3115>: lea 0x0(%rbp,%r15,1),%rax > 0x00007f6a0976fe10 <+3120>: cmp $0x3ff,%r14 > 0x00007f6a0976fe17 <+3127>: mov %r12,0x18(%rax) > 0x00007f6a0976fe1b <+3131>: mov %rdx,0x10(%rax) > 0x00007f6a0976fe1f <+3135>: mov %rax,0x18(%rdx) > 0x00007f6a0976fe23 <+3139>: mov %rax,0x10(%r12) > 0x00007f6a0976fe28 <+3144>: jbe 0x7f6a0976fe3a <_int_malloc+3162> > 0x00007f6a0976fe2a <+3146>: movq $0x0,0x20(%rax) > 0x00007f6a0976fe32 <+3154>: movq $0x0,0x28(%rax) > 0x00007f6a0976fe3a <+3162>: lea 0x31503f(%rip),%rdx # 0x7f6a09a84e80 <main_arena> > 0x00007f6a0976fe41 <+3169>: mov %r14,(%rax,%r14,1) > 0x00007f6a0976fe45 <+3173>: cmp %rdx,%rbx > 0x00007f6a0976fe48 <+3176>: setne %dl > 0x00007f6a0976fe4b <+3179>: or $0x1,%r15 > 0x00007f6a0976fe4f <+3183>: movzbl %dl,%edx > 0x00007f6a0976fe52 <+3186>: shl $0x2,%rdx > 0x00007f6a0976fe56 <+3190>: or %rdx,%r15 > 0x00007f6a0976fe59 <+3193>: mov %r14,%rdx > 0x00007f6a0976fe5c <+3196>: or $0x1,%rdx > 0x00007f6a0976fe60 <+3200>: mov %r15,0x8(%rbp) > 0x00007f6a0976fe64 <+3204>: mov %rdx,0x8(%rax) > 0x00007f6a0976fe68 <+3208>: jmpq 0x7f6a0976f939 <_int_malloc+1881> > 0x00007f6a0976fe6d <+3213>: lea 0xde4bc(%rip),%rsi # 0x7f6a0984e330 > 0x00007f6a0976fe74 <+3220>: cmpl $0x0,0x3187f5(%rip) # 0x7f6a09a88670 <__libc_multiple_threads> > 0x00007f6a0976fe7b <+3227>: je 0x7f6a0976fe88 <_int_malloc+3240> > 0x00007f6a0976fe7d <+3229>: lock decl (%rbx) > 0x00007f6a0976fe80 <+3232>: jne 0x7f6a09773162 <_L_unlock_8185> > 0x00007f6a0976fe86 <+3238>: jmp 0x7f6a0976fe90 <_int_malloc+3248> > 0x00007f6a0976fe88 <+3240>: decl (%rbx) > 0x00007f6a0976fe8a <+3242>: jne 0x7f6a09773162 <_L_unlock_8185> > 0x00007f6a0976fe90 <+3248>: mov 0x313252(%rip),%edi # 0x7f6a09a830e8 <check_action> > 0x00007f6a0976fe96 <+3254>: lea 0x10(%rbp),%rdx > 0x00007f6a0976fe9a <+3258>: callq 0x7f6a0976c030 <malloc_printerr> > 0x00007f6a0976fe9f <+3263>: mov $0x1,%esi > 0x00007f6a0976fea4 <+3268>: xor %eax,%eax > 0x00007f6a0976fea6 <+3270>: cmpl $0x0,0x3187c3(%rip) # 0x7f6a09a88670 <__libc_multiple_threads> > 0x00007f6a0976fead <+3277>: je 0x7f6a0976febb <_int_malloc+3291> > 0x00007f6a0976feaf <+3279>: lock cmpxchg %esi,(%rbx) > 0x00007f6a0976feb3 <+3283>: jne 0x7f6a0977317d <_L_lock_8194> > 0x00007f6a0976feb9 <+3289>: jmp 0x7f6a0976fec4 <_int_malloc+3300> > 0x00007f6a0976febb <+3291>: cmpxchg %esi,(%rbx) > 0x00007f6a0976febe <+3294>: jne 0x7f6a0977317d <_L_lock_8194> > 0x00007f6a0976fec4 <+3300>: xor %ebp,%ebp > 0x00007f6a0976fec6 <+3302>: jmpq 0x7f6a0976f2b9 <_int_malloc+217> > 0x00007f6a0976fecb <+3307>: lea 0xde4de(%rip),%rsi # 0x7f6a0984e3b0 > 0x00007f6a0976fed2 <+3314>: jmp 0x7f6a0976fe74 <_int_malloc+3220> > 0x00007f6a0976fed4 <+3316>: cmpl $0x0,0x318795(%rip) # 0x7f6a09a88670 <__libc_multiple_threads> > 0x00007f6a0976fedb <+3323>: je 0x7f6a0976fee8 <_int_malloc+3336> > 0x00007f6a0976fedd <+3325>: lock decl (%rbx) > 0x00007f6a0976fee0 <+3328>: jne 0x7f6a09773198 <_L_unlock_8224> > 0x00007f6a0976fee6 <+3334>: jmp 0x7f6a0976fef0 <_int_malloc+3344> > 0x00007f6a0976fee8 <+3336>: decl (%rbx) > 0x00007f6a0976feea <+3338>: jne 0x7f6a09773198 <_L_unlock_8224> > 0x00007f6a0976fef0 <+3344>: mov 0x3131f2(%rip),%edi # 0x7f6a09a830e8 <check_action> > 0x00007f6a0976fef6 <+3350>: lea 0xdc041(%rip),%rsi # 0x7f6a0984bf3e > 0x00007f6a0976fefd <+3357>: mov %rbp,%rdx > 0x00007f6a0976ff00 <+3360>: mov %r10,0x8(%rsp) > 0x00007f6a0976ff05 <+3365>: callq 0x7f6a0976c030 <malloc_printerr> > 0x00007f6a0976ff0a <+3370>: mov $0x1,%esi > 0x00007f6a0976ff0f <+3375>: xor %eax,%eax > 0x00007f6a0976ff11 <+3377>: cmpl $0x0,0x318758(%rip) # 0x7f6a09a88670 <__libc_multiple_threads> > 0x00007f6a0976ff18 <+3384>: je 0x7f6a0976ff26 <_int_malloc+3398> > 0x00007f6a0976ff1a <+3386>: lock cmpxchg %esi,(%rbx) > 0x00007f6a0976ff1e <+3390>: jne 0x7f6a097731b3 <_L_lock_8240> > 0x00007f6a0976ff24 <+3396>: jmp 0x7f6a0976ff2f <_int_malloc+3407> > 0x00007f6a0976ff26 <+3398>: cmpxchg %esi,(%rbx) > 0x00007f6a0976ff29 <+3401>: jne 0x7f6a097731b3 <_L_lock_8240> > 0x00007f6a0976ff2f <+3407>: mov 0x8(%rsp),%r10 > 0x00007f6a0976ff34 <+3412>: jmpq 0x7f6a0976f9fd <_int_malloc+2077> > 0x00007f6a0976ff39 <+3417>: cmpl $0x0,0x318730(%rip) # 0x7f6a09a88670 <__libc_multiple_threads> > 0x00007f6a0976ff40 <+3424>: je 0x7f6a0976ff4d <_int_malloc+3437> > 0x00007f6a0976ff42 <+3426>: lock decl (%rbx) > 0x00007f6a0976ff45 <+3429>: jne 0x7f6a097731ce <_L_unlock_8259> > 0x00007f6a0976ff4b <+3435>: jmp 0x7f6a0976ff55 <_int_malloc+3445> > 0x00007f6a0976ff4d <+3437>: decl (%rbx) > 0x00007f6a0976ff4f <+3439>: jne 0x7f6a097731ce <_L_unlock_8259> > 0x00007f6a0976ff55 <+3445>: mov 0x31318d(%rip),%edi # 0x7f6a09a830e8 <check_action> > 0x00007f6a0976ff5b <+3451>: lea 0xdbfdc(%rip),%rsi # 0x7f6a0984bf3e > 0x00007f6a0976ff62 <+3458>: mov %rbp,%rdx > 0x00007f6a0976ff65 <+3461>: mov %r10,0x8(%rsp) > 0x00007f6a0976ff6a <+3466>: callq 0x7f6a0976c030 <malloc_printerr> > 0x00007f6a0976ff6f <+3471>: mov $0x1,%esi > 0x00007f6a0976ff74 <+3476>: xor %eax,%eax > 0x00007f6a0976ff76 <+3478>: cmpl $0x0,0x3186f3(%rip) # 0x7f6a09a88670 <__libc_multiple_threads> > 0x00007f6a0976ff7d <+3485>: je 0x7f6a0976ff8b <_int_malloc+3499> > 0x00007f6a0976ff7f <+3487>: lock cmpxchg %esi,(%rbx) > 0x00007f6a0976ff83 <+3491>: jne 0x7f6a097731e9 <_L_lock_8272> > 0x00007f6a0976ff89 <+3497>: jmp 0x7f6a0976ff94 <_int_malloc+3508> > 0x00007f6a0976ff8b <+3499>: cmpxchg %esi,(%rbx) > 0x00007f6a0976ff8e <+3502>: jne 0x7f6a097731e9 <_L_lock_8272> > 0x00007f6a0976ff94 <+3508>: mov 0x8(%rsp),%r10 > 0x00007f6a0976ff99 <+3513>: jmpq 0x7f6a0976f918 <_int_malloc+1848> > 0x00007f6a0976ff9e <+3518>: mov 0x10(%rbp),%rax > 0x00007f6a0976ffa2 <+3522>: jmpq 0x7f6a0976f8db <_int_malloc+1787> > 0x00007f6a0976ffa7 <+3527>: mov 0x10(%rdx),%rax > 0x00007f6a0976ffab <+3531>: jmpq 0x7f6a0976f8db <_int_malloc+1787> > 0x00007f6a0976ffb0 <+3536>: cmpq $0x0,0x20(%rax) > 0x00007f6a0976ffb5 <+3541>: je 0x7f6a097704a3 <_int_malloc+4803> > 0x00007f6a0976ffbb <+3547>: mov 0x28(%rbp),%rax > 0x00007f6a0976ffbf <+3551>: mov %rax,0x28(%rdx) > 0x00007f6a0976ffc3 <+3555>: mov 0x28(%rbp),%rax > 0x00007f6a0976ffc7 <+3559>: mov %rdx,0x20(%rax) > 0x00007f6a0976ffcb <+3563>: jmpq 0x7f6a0976f918 <_int_malloc+1848> > 0x00007f6a0976ffd0 <+3568>: mov 0x315751(%rip),%rax # 0x7f6a09a85728 <mp_+8> > 0x00007f6a0976ffd7 <+3575>: mov 0x20(%rsp),%r14 > 0x00007f6a0976ffdc <+3580>: lea 0x20(%r15,%rax,1),%rdx > 0x00007f6a0976ffe1 <+3585>: mov 0x314e9d(%rip),%eax # 0x7f6a09a84e84 <main_arena+4> > 0x00007f6a0976ffe7 <+3591>: mov %rdx,%rcx > 0x00007f6a0976ffea <+3594>: sub %r13,%rcx > 0x00007f6a0976ffed <+3597>: and $0x2,%eax > 0x00007f6a0976fff0 <+3600>: cmove %rcx,%rdx > 0x00007f6a0976fff4 <+3604>: mov 0x20(%rsp),%rcx > 0x00007f6a0976fff9 <+3609>: lea (%rdx,%r14,1),%r14 > 0x00007f6a0976fffd <+3613>: not %rcx > 0x00007f6a09770000 <+3616>: and %rcx,%r14 > 0x00007f6a09770003 <+3619>: mov %rcx,0x28(%rsp) > 0x00007f6a09770008 <+3624>: test %r14,%r14 > 0x00007f6a0977000b <+3627>: mov %r14,%rdx > 0x00007f6a0977000e <+3630>: jle 0x7f6a097700ac <_int_malloc+3788> > 0x00007f6a09770014 <+3636>: mov 0x312efd(%rip),%rax # 0x7f6a09a82f18 > 0x00007f6a0977001b <+3643>: mov %r10,0x8(%rsp) > 0x00007f6a09770020 <+3648>: mov %r14,%rdi > 0x00007f6a09770023 <+3651>: mov %r14,0x10(%rsp) > 0x00007f6a09770028 <+3656>: callq *(%rax) > 0x00007f6a0977002a <+3658>: test %rax,%rax > 0x00007f6a0977002d <+3661>: mov %rax,%r12 > 0x00007f6a09770030 <+3664>: mov 0x10(%rsp),%rdx > 0x00007f6a09770035 <+3669>: mov 0x8(%rsp),%r10 > 0x00007f6a0977003a <+3674>: je 0x7f6a097700a3 <_int_malloc+3779> > 0x00007f6a0977003c <+3676>: mov 0x312d65(%rip),%rax # 0x7f6a09a82da8 > 0x00007f6a09770043 <+3683>: mov (%rax),%rax > 0x00007f6a09770046 <+3686>: test %rax,%rax > 0x00007f6a09770049 <+3689>: je 0x7f6a09770057 <_int_malloc+3703> > 0x00007f6a0977004b <+3691>: mov %r10,0x8(%rsp) > 0x00007f6a09770050 <+3696>: callq *%rax > 0x00007f6a09770052 <+3698>: mov 0x8(%rsp),%r10 > 0x00007f6a09770057 <+3703>: mov $0x1,%ecx > 0x00007f6a0977005c <+3708>: xor %eax,%eax > 0x00007f6a0977005e <+3710>: cmpq $0x0,0x315712(%rip) # 0x7f6a09a85778 <mp_+88> > 0x00007f6a09770066 <+3718>: jne 0x7f6a0977006f <_int_malloc+3727> > 0x00007f6a09770068 <+3720>: mov %r12,0x315709(%rip) # 0x7f6a09a85778 <mp_+88> > 0x00007f6a0977006f <+3727>: mov %r14,%rdi > 0x00007f6a09770072 <+3730>: add 0x31567f(%rip),%rdi # 0x7f6a09a856f8 <main_arena+2168> > 0x00007f6a09770079 <+3737>: lea 0x0(%rbp,%r13,1),%rsi > 0x00007f6a0977007e <+3742>: cmp %r12,%rsi > 0x00007f6a09770081 <+3745>: mov %rdi,0x315670(%rip) # 0x7f6a09a856f8 <main_arena+2168> > 0x00007f6a09770088 <+3752>: jne 0x7f6a097700e5 <_int_malloc+3845> > 0x00007f6a0977008a <+3754>: test %cl,%cl > 0x00007f6a0977008c <+3756>: je 0x7f6a097700e5 <_int_malloc+3845> > 0x00007f6a0977008e <+3758>: lea (%r14,%r13,1),%r13 > 0x00007f6a09770092 <+3762>: or $0x1,%r13 > 0x00007f6a09770096 <+3766>: mov %r13,0x8(%rbp) > 0x00007f6a0977009a <+3770>: mov 0x58(%rbx),%rbp > 0x00007f6a0977009e <+3774>: jmpq 0x7f6a0976fcb9 <_int_malloc+2777> > 0x00007f6a097700a3 <+3779>: mov 0x314ddb(%rip),%eax # 0x7f6a09a84e84 <main_arena+4> > 0x00007f6a097700a9 <+3785>: and $0x2,%eax > 0x00007f6a097700ac <+3788>: test %eax,%eax > 0x00007f6a097700ae <+3790>: jne 0x7f6a097700c2 <_int_malloc+3810> > 0x00007f6a097700b0 <+3792>: mov 0x20(%rsp),%rdx > 0x00007f6a097700b5 <+3797>: lea 0x0(%r13,%rdx,1),%rdx > 0x00007f6a097700ba <+3802>: add %r14,%rdx > 0x00007f6a097700bd <+3805>: and 0x28(%rsp),%rdx > 0x00007f6a097700c2 <+3810>: cmp $0xfffff,%rdx > 0x00007f6a097700c9 <+3817>: mov $0x100000,%r14d > 0x00007f6a097700cf <+3823>: cmova %rdx,%r14 > 0x00007f6a097700d3 <+3827>: cmp %r14,%r15 > 0x00007f6a097700d6 <+3830>: jb 0x7f6a09770305 <_int_malloc+4389> > 0x00007f6a097700dc <+3836>: mov 0x58(%rbx),%rbp > 0x00007f6a097700e0 <+3840>: jmpq 0x7f6a0976fcb9 <_int_malloc+2777> > 0x00007f6a097700e5 <+3845>: mov 0x314d99(%rip),%edx # 0x7f6a09a84e84 <main_arena+4> > 0x00007f6a097700eb <+3851>: shr %edx > 0x00007f6a097700ed <+3853>: xor $0x1,%edx > 0x00007f6a097700f0 <+3856>: and $0x1,%edx > 0x00007f6a097700f3 <+3859>: test %r13,%r13 > 0x00007f6a097700f6 <+3862>: setne 0x30(%rsp) > 0x00007f6a097700fb <+3867>: je 0x7f6a097702d5 <_int_malloc+4341> > 0x00007f6a09770101 <+3873>: test %dl,%dl > 0x00007f6a09770103 <+3875>: je 0x7f6a097702dd <_int_malloc+4349> > 0x00007f6a09770109 <+3881>: cmp %r12,%rsi > 0x00007f6a0977010c <+3884>: ja 0x7f6a0977025d <_int_malloc+4221> > 0x00007f6a09770112 <+3890>: mov %r12,%rax > 0x00007f6a09770115 <+3893>: sub %rsi,%rax > 0x00007f6a09770118 <+3896>: lea (%rax,%rdi,1),%rdi > 0x00007f6a0977011c <+3900>: mov %rdi,0x3155d5(%rip) # 0x7f6a09a856f8 <main_arena+2168> > 0x00007f6a09770123 <+3907>: mov %r12,%rdx > 0x00007f6a09770126 <+3910>: and $0xf,%edx > 0x00007f6a09770129 <+3913>: jne 0x7f6a0977024c <_int_malloc+4204> > 0x00007f6a0977012f <+3919>: mov %r12,%rdx > 0x00007f6a09770132 <+3922>: xor %eax,%eax > 0x00007f6a09770134 <+3924>: lea (%rax,%r13,1),%rcx > 0x00007f6a09770138 <+3928>: mov %rdx,0x10(%rsp) > 0x00007f6a0977013d <+3933>: mov %r10,0x8(%rsp) > 0x00007f6a09770142 <+3938>: lea (%rcx,%r14,1),%rax > 0x00007f6a09770146 <+3942>: mov 0x312dcb(%rip),%r14 # 0x7f6a09a82f18 > 0x00007f6a0977014d <+3949>: lea (%r12,%rax,1),%rax > 0x00007f6a09770151 <+3953>: sub %rax,%rcx > 0x00007f6a09770154 <+3956>: add 0x20(%rsp),%rax > 0x00007f6a09770159 <+3961>: and 0x28(%rsp),%rax > 0x00007f6a0977015e <+3966>: lea (%rcx,%rax,1),%r12 > 0x00007f6a09770162 <+3970>: mov %r12,%rdi > 0x00007f6a09770165 <+3973>: callq *(%r14) > 0x00007f6a09770168 <+3976>: test %rax,%rax > 0x00007f6a0977016b <+3979>: mov 0x10(%rsp),%rdx > 0x00007f6a09770170 <+3984>: mov 0x8(%rsp),%r10 > 0x00007f6a09770175 <+3989>: je 0x7f6a0977022a <_int_malloc+4170> > 0x00007f6a0977017b <+3995>: mov 0x312c26(%rip),%rcx # 0x7f6a09a82da8 > 0x00007f6a09770182 <+4002>: mov (%rcx),%rcx > 0x00007f6a09770185 <+4005>: test %rcx,%rcx > 0x00007f6a09770188 <+4008>: je 0x7f6a097701aa <_int_malloc+4042> > 0x00007f6a0977018a <+4010>: mov %rax,0x18(%rsp) > 0x00007f6a0977018f <+4015>: mov %rdx,0x10(%rsp) > 0x00007f6a09770194 <+4020>: mov %r10,0x8(%rsp) > 0x00007f6a09770199 <+4025>: callq *%rcx > 0x00007f6a0977019b <+4027>: mov 0x18(%rsp),%rax > 0x00007f6a097701a0 <+4032>: mov 0x10(%rsp),%rdx > 0x00007f6a097701a5 <+4037>: mov 0x8(%rsp),%r10 > 0x00007f6a097701aa <+4042>: mov %r12,%rcx > 0x00007f6a097701ad <+4045>: add %r12,%rax > 0x00007f6a097701b0 <+4048>: mov %rdx,0x314d21(%rip) # 0x7f6a09a84ed8 <main_arena+88> > 0x00007f6a097701b7 <+4055>: sub %rdx,%rax > 0x00007f6a097701ba <+4058>: or $0x1,%rax > 0x00007f6a097701be <+4062>: mov %rax,0x8(%rdx) > 0x00007f6a097701c2 <+4066>: add %rcx,0x31552f(%rip) # 0x7f6a09a856f8 <main_arena+2168> > 0x00007f6a097701c9 <+4073>: cmpb $0x0,0x30(%rsp) > 0x00007f6a097701ce <+4078>: je 0x7f6a097700dc <_int_malloc+3836> > 0x00007f6a097701d4 <+4084>: sub $0x20,%r13 > 0x00007f6a097701d8 <+4088>: and $0xfffffffffffffff0,%r13 > 0x00007f6a097701dc <+4092>: mov %r13,%rax > 0x00007f6a097701df <+4095>: or $0x1,%rax > 0x00007f6a097701e3 <+4099>: cmp $0x1f,%r13 > 0x00007f6a097701e7 <+4103>: mov %rax,0x8(%rbp) > 0x00007f6a097701eb <+4107>: movq $0x11,0x8(%rbp,%r13,1) > 0x00007f6a097701f4 <+4116>: movq $0x11,0x18(%rbp,%r13,1) > 0x00007f6a097701fd <+4125>: jbe 0x7f6a097700dc <_int_malloc+3836> > 0x00007f6a09770203 <+4131>: lea 0x314c76(%rip),%rdi # 0x7f6a09a84e80 <main_arena> > 0x00007f6a0977020a <+4138>: mov %rbp,%rsi > 0x00007f6a0977020d <+4141>: mov $0x1,%edx > 0x00007f6a09770212 <+4146>: mov %r10,0x8(%rsp) > 0x00007f6a09770217 <+4151>: callq 0x7f6a0976e570 <_int_free> > 0x00007f6a0977021c <+4156>: mov 0x58(%rbx),%rbp > 0x00007f6a09770220 <+4160>: mov 0x8(%rsp),%r10 > 0x00007f6a09770225 <+4165>: jmpq 0x7f6a0976fcb9 <_int_malloc+2777> > 0x00007f6a0977022a <+4170>: xor %edi,%edi > 0x00007f6a0977022c <+4172>: callq *(%r14) > 0x00007f6a0977022f <+4175>: mov 0x10(%rsp),%rdx > 0x00007f6a09770234 <+4180>: mov 0x8(%rsp),%r10 > 0x00007f6a09770239 <+4185>: test %rax,%rax > 0x00007f6a0977023c <+4188>: je 0x7f6a097700dc <_int_malloc+3836> > 0x00007f6a09770242 <+4194>: xor %ecx,%ecx > 0x00007f6a09770244 <+4196>: xor %r12d,%r12d > 0x00007f6a09770247 <+4199>: jmpq 0x7f6a097701ad <_int_malloc+4045> > 0x00007f6a0977024c <+4204>: mov $0x10,%eax > 0x00007f6a09770251 <+4209>: sub %rdx,%rax > 0x00007f6a09770254 <+4212>: lea (%r12,%rax,1),%rdx > 0x00007f6a09770258 <+4216>: jmpq 0x7f6a09770134 <_int_malloc+3924> > 0x00007f6a0977025d <+4221>: cmpl $0x0,0x31840c(%rip) # 0x7f6a09a88670 <__libc_multiple_threads> > 0x00007f6a09770264 <+4228>: je 0x7f6a09770275 <_int_malloc+4245> > 0x00007f6a09770266 <+4230>: lock decl 0x314c13(%rip) # 0x7f6a09a84e80 <main_arena> > 0x00007f6a0977026d <+4237>: jne 0x7f6a09773204 <_L_unlock_8673> > 0x00007f6a09770273 <+4243>: jmp 0x7f6a09770281 <_int_malloc+4257> > 0x00007f6a09770275 <+4245>: decl 0x314c05(%rip) # 0x7f6a09a84e80 <main_arena> > 0x00007f6a0977027b <+4251>: jne 0x7f6a09773204 <_L_unlock_8673> > 0x00007f6a09770281 <+4257>: lea 0xde150(%rip),%rsi # 0x7f6a0984e3d8 > 0x00007f6a09770288 <+4264>: mov %r12,%rdx > 0x00007f6a0977028b <+4267>: mov $0x3,%edi > 0x00007f6a09770290 <+4272>: mov %r10,0x8(%rsp) > 0x00007f6a09770295 <+4277>: callq 0x7f6a0976c030 <malloc_printerr> > 0x00007f6a0977029a <+4282>: mov $0x1,%esi > 0x00007f6a0977029f <+4287>: xor %eax,%eax > 0x00007f6a097702a1 <+4289>: cmpl $0x0,0x3183c8(%rip) # 0x7f6a09a88670 <__libc_multiple_threads> > 0x00007f6a097702a8 <+4296>: je 0x7f6a097702ba <_int_malloc+4314> > 0x00007f6a097702aa <+4298>: lock cmpxchg %esi,0x314bce(%rip) # 0x7f6a09a84e80 <main_arena> > 0x00007f6a097702b2 <+4306>: jne 0x7f6a09773223 <_L_lock_8683> > 0x00007f6a097702b8 <+4312>: jmp 0x7f6a097702c7 <_int_malloc+4327> > 0x00007f6a097702ba <+4314>: cmpxchg %esi,0x314bbf(%rip) # 0x7f6a09a84e80 <main_arena> > 0x00007f6a097702c1 <+4321>: jne 0x7f6a09773223 <_L_lock_8683> > 0x00007f6a097702c7 <+4327>: mov 0x58(%rbx),%rbp > 0x00007f6a097702cb <+4331>: mov 0x8(%rsp),%r10 > 0x00007f6a097702d0 <+4336>: jmpq 0x7f6a0976fcb9 <_int_malloc+2777> > 0x00007f6a097702d5 <+4341>: test %dl,%dl > 0x00007f6a097702d7 <+4343>: jne 0x7f6a09770123 <_int_malloc+3907> > 0x00007f6a097702dd <+4349>: test %cl,%cl > 0x00007f6a097702df <+4351>: mov %r12,%rdx > 0x00007f6a097702e2 <+4354>: je 0x7f6a09770239 <_int_malloc+4185> > 0x00007f6a097702e8 <+4360>: mov 0x312c29(%rip),%rax # 0x7f6a09a82f18 > 0x00007f6a097702ef <+4367>: mov %r10,0x8(%rsp) > 0x00007f6a097702f4 <+4372>: xor %edi,%edi > 0x00007f6a097702f6 <+4374>: callq *(%rax) > 0x00007f6a097702f8 <+4376>: mov %r12,%rdx > 0x00007f6a097702fb <+4379>: mov 0x8(%rsp),%r10 > 0x00007f6a09770300 <+4384>: jmpq 0x7f6a09770239 <_int_malloc+4185> > 0x00007f6a09770305 <+4389>: xor %r9d,%r9d > 0x00007f6a09770308 <+4392>: or $0xffffffffffffffff,%r8d > 0x00007f6a0977030c <+4396>: xor %edi,%edi > 0x00007f6a0977030e <+4398>: mov $0x22,%ecx > 0x00007f6a09770313 <+4403>: mov $0x3,%edx > 0x00007f6a09770318 <+4408>: mov %r14,%rsi > 0x00007f6a0977031b <+4411>: mov %r10,0x8(%rsp) > 0x00007f6a09770320 <+4416>: callq 0x7f6a097db450 <mmap64> > 0x00007f6a09770325 <+4421>: cmp $0xffffffffffffffff,%rax > 0x00007f6a09770329 <+4425>: mov %rax,%r12 > 0x00007f6a0977032c <+4428>: mov 0x8(%rsp),%r10 > 0x00007f6a09770331 <+4433>: je 0x7f6a097700dc <_int_malloc+3836> > 0x00007f6a09770337 <+4439>: orl $0x2,0x314b46(%rip) # 0x7f6a09a84e84 <main_arena+4> > 0x00007f6a0977033e <+4446>: test %rax,%rax > 0x00007f6a09770341 <+4449>: je 0x7f6a097700dc <_int_malloc+3836> > 0x00007f6a09770347 <+4455>: add %r14,%rax > 0x00007f6a0977034a <+4458>: sete %cl > 0x00007f6a0977034d <+4461>: jmpq 0x7f6a0977005e <_int_malloc+3710> > 0x00007f6a09770352 <+4466>: mov %rcx,%rsi > 0x00007f6a09770355 <+4469>: mov $0x3,%edx > 0x00007f6a0977035a <+4474>: mov %rcx,0x18(%rsp) > 0x00007f6a0977035f <+4479>: sub %rdi,%rsi > 0x00007f6a09770362 <+4482>: lea (%r12,%rdi,1),%rdi > 0x00007f6a09770366 <+4486>: callq 0x7f6a097db4b0 <mprotect> > 0x00007f6a0977036b <+4491>: test %eax,%eax > 0x00007f6a0977036d <+4493>: mov 0x18(%rsp),%rcx > 0x00007f6a09770372 <+4498>: mov 0x8(%rsp),%r10 > 0x00007f6a09770377 <+4503>: jne 0x7f6a0976fd66 <_int_malloc+2950> > 0x00007f6a0977037d <+4509>: mov %rcx,0x18(%r12) > 0x00007f6a09770382 <+4514>: mov 0x58(%rbx),%rbp > 0x00007f6a09770386 <+4518>: jmpq 0x7f6a0976fc7f <_int_malloc+2719> > 0x00007f6a0977038b <+4523>: cmp %rdx,%rbp > 0x00007f6a0977038e <+4526>: je 0x7f6a097703d2 <_int_malloc+4594> > 0x00007f6a09770390 <+4528>: mov %rdx,0x20(%rax) > 0x00007f6a09770394 <+4532>: mov 0x28(%rbp),%rdx > 0x00007f6a09770398 <+4536>: mov %rdx,0x28(%rax) > 0x00007f6a0977039c <+4540>: mov 0x20(%rbp),%rdx > 0x00007f6a097703a0 <+4544>: mov %rax,0x28(%rdx) > 0x00007f6a097703a4 <+4548>: mov 0x28(%rbp),%rdx > 0x00007f6a097703a8 <+4552>: mov %rax,0x20(%rdx) > 0x00007f6a097703ac <+4556>: jmpq 0x7f6a0976f9fd <_int_malloc+2077> > 0x00007f6a097703b1 <+4561>: not %eax > 0x00007f6a097703b3 <+4563>: mov %r10,%rdx > 0x00007f6a097703b6 <+4566>: mov %rbp,%rdi > 0x00007f6a097703b9 <+4569>: movzbl %al,%esi > 0x00007f6a097703bc <+4572>: callq 0x7f6a09779b90 <__memset_sse2> > 0x00007f6a097703c1 <+4577>: jmpq 0x7f6a0976f2b9 <_int_malloc+217> > 0x00007f6a097703c6 <+4582>: lea 0xddf8b(%rip),%rsi # 0x7f6a0984e358 > 0x00007f6a097703cd <+4589>: jmpq 0x7f6a0976fe74 <_int_malloc+3220> > 0x00007f6a097703d2 <+4594>: mov %rax,0x28(%rax) > 0x00007f6a097703d6 <+4598>: mov %rax,0x20(%rax) > 0x00007f6a097703da <+4602>: jmpq 0x7f6a0976f9fd <_int_malloc+2077> > 0x00007f6a097703df <+4607>: or $0x5,%rsi > 0x00007f6a097703e3 <+4611>: movq $0x11,-0x18(%rbp,%r13,1) > 0x00007f6a097703ec <+4620>: movq $0x10,(%rdx) > 0x00007f6a097703f3 <+4627>: mov %rsi,0x8(%rbp) > 0x00007f6a097703f7 <+4631>: mov $0x1,%edx > 0x00007f6a097703fc <+4636>: mov %rbp,%rsi > 0x00007f6a097703ff <+4639>: mov %rbx,%rdi > 0x00007f6a09770402 <+4642>: callq 0x7f6a0976e570 <_int_free> > 0x00007f6a09770407 <+4647>: mov 0x58(%rbx),%rbp > 0x00007f6a0977040b <+4651>: mov 0x8(%rsp),%r10 > 0x00007f6a09770410 <+4656>: jmpq 0x7f6a0976fcb9 <_int_malloc+2777> > 0x00007f6a09770415 <+4661>: cmpb $0x0,0x28(%rsp) > 0x00007f6a0977041a <+4666>: je 0x7f6a0976fbd0 <_int_malloc+2544> > 0x00007f6a09770420 <+4672>: jmpq 0x7f6a097700dc <_int_malloc+3836> > 0x00007f6a09770425 <+4677>: xor %r9d,%r9d > 0x00007f6a09770428 <+4680>: or $0xffffffffffffffff,%r8d > 0x00007f6a0977042c <+4684>: xor %edi,%edi > 0x00007f6a0977042e <+4686>: mov $0x22,%ecx > 0x00007f6a09770433 <+4691>: mov $0x3,%edx > 0x00007f6a09770438 <+4696>: mov %rbp,%rsi > 0x00007f6a0977043b <+4699>: mov %r10,0x8(%rsp) > 0x00007f6a09770440 <+4704>: callq 0x7f6a097db450 <mmap64> > 0x00007f6a09770445 <+4709>: cmp $0xffffffffffffffff,%rax > 0x00007f6a09770449 <+4713>: mov 0x8(%rsp),%r10 > 0x00007f6a0977044e <+4718>: je 0x7f6a0976fbec <_int_malloc+2572> > 0x00007f6a09770454 <+4724>: mov %rbp,%rdx > 0x00007f6a09770457 <+4727>: or $0x2,%rdx > 0x00007f6a0977045b <+4731>: mov %rdx,0x8(%rax) > 0x00007f6a0977045f <+4735>: mov 0x3152e3(%rip),%edx # 0x7f6a09a85748 <mp_+40> > 0x00007f6a09770465 <+4741>: add $0x1,%edx > 0x00007f6a09770468 <+4744>: cmp 0x3152e2(%rip),%edx # 0x7f6a09a85750 <mp_+48> > 0x00007f6a0977046e <+4750>: mov %edx,0x3152d4(%rip) # 0x7f6a09a85748 <mp_+40> > 0x00007f6a09770474 <+4756>: jle 0x7f6a0977047c <_int_malloc+4764> > 0x00007f6a09770476 <+4758>: mov %edx,0x3152d4(%rip) # 0x7f6a09a85750 <mp_+48> > 0x00007f6a0977047c <+4764>: add 0x3152dd(%rip),%rbp # 0x7f6a09a85760 <mp_+64> > 0x00007f6a09770483 <+4771>: cmp 0x3152de(%rip),%rbp # 0x7f6a09a85768 <mp_+72> > 0x00007f6a0977048a <+4778>: mov %rbp,0x3152cf(%rip) # 0x7f6a09a85760 <mp_+64> > 0x00007f6a09770491 <+4785>: jbe 0x7f6a0977049a <_int_malloc+4794> > 0x00007f6a09770493 <+4787>: mov %rbp,0x3152ce(%rip) # 0x7f6a09a85768 <mp_+72> > 0x00007f6a0977049a <+4794>: lea 0x10(%rax),%rbx > 0x00007f6a0977049e <+4798>: jmpq 0x7f6a0976fd1c <_int_malloc+2876> > 0x00007f6a097704a3 <+4803>: cmp %rdx,%rbp > 0x00007f6a097704a6 <+4806>: je 0x7f6a097704c9 <_int_malloc+4841> > 0x00007f6a097704a8 <+4808>: mov %rdx,0x20(%rax) > 0x00007f6a097704ac <+4812>: mov 0x28(%rbp),%rdx > 0x00007f6a097704b0 <+4816>: mov %rdx,0x28(%rax) > 0x00007f6a097704b4 <+4820>: mov 0x20(%rbp),%rdx > 0x00007f6a097704b8 <+4824>: mov %rax,0x28(%rdx) > 0x00007f6a097704bc <+4828>: mov 0x28(%rbp),%rdx > 0x00007f6a097704c0 <+4832>: mov %rax,0x20(%rdx) > 0x00007f6a097704c4 <+4836>: jmpq 0x7f6a0976f918 <_int_malloc+1848> > 0x00007f6a097704c9 <+4841>: mov %rax,0x28(%rax) > 0x00007f6a097704cd <+4845>: mov %rax,0x20(%rax) > 0x00007f6a097704d1 <+4849>: jmpq 0x7f6a0976f918 <_int_malloc+1848> >End of assembler dump. >
<b>You cannot view the attachment while viewing its details because your browser does not support IFRAMEs. <a href="attachment.cgi?id=614861">View the attachment on a separate page</a>.</b>
View Attachment As Raw
Actions:
View
Attachments on
bug 859027
: 614861