Wiki
Clone wikiBindead / Analysis Output from Command Line
Below the output of the analyzer when invoked from the command line.
The analyzed binary is a compiled version of this simple C code:
```
#!C
int f (int z);
int a (int x);
int b (int y);
int f (int i) {
return i;
}
int a (int x) {
f(x);
return x;
}
int b (int y) {
f(y);
return y;
}
int main (void) {
int result = 0;
a(0);
b(1);
return result;
}
```
The disassembled native code as displayed by the analyzer (analysis starts at the entry of the `main` function):
```
#!text
Analyzed native (x86-32) code (25 instructions):
f:
080483ec: 8b 44 24 04 mov eax, DWORD PTR [esp+0x4]
080483f0: c3 ret
a:
080483f1: 83 ec 04 sub esp, 0x4
080483f4: 8b 44 24 08 mov eax, DWORD PTR [esp+0x8]
080483f8: 89 04 24 mov DWORD PTR [esp], eax
080483fb: e8 ec ff ff ff call 0x80483ec <f>
08048400: 8b 44 24 08 mov eax, DWORD PTR [esp+0x8]
08048404: 83 c4 04 add esp, 0x4
08048407: c3 ret
b:
08048408: 83 ec 04 sub esp, 0x4
0804840b: 8b 44 24 08 mov eax, DWORD PTR [esp+0x8]
0804840f: 89 04 24 mov DWORD PTR [esp], eax
08048412: e8 d5 ff ff ff call 0x80483ec <f>
08048417: 8b 44 24 08 mov eax, DWORD PTR [esp+0x8]
0804841b: 83 c4 04 add esp, 0x4
0804841e: c3 ret
main:
0804841f: 83 ec 14 sub esp, 0x14
08048422: c7 44 24 10 00 00 00 00 mov DWORD PTR [esp+0x10], 0x0
0804842a: c7 04 24 00 00 00 00 mov DWORD PTR [esp], 0x0
08048431: e8 bb ff ff ff call 0x80483f1 <a>
08048436: c7 04 24 01 00 00 00 mov DWORD PTR [esp], 0x1
0804843d: e8 c6 ff ff ff call 0x8048408 <b>
08048442: 8b 44 24 10 mov eax, DWORD PTR [esp+0x10]
08048446: 83 c4 14 add esp, 0x14
08048449: c3 ret
```
The corresponding RREIL code (the horizontal lines separate groups of RREIL instructions that represent one single native instruction). The numbers behind each variable denote the bit-size of the variable.
```
#!text
Analyzed RREIL code (114 instructions):
------------------------------------
080483ec.00: add t0:32, 4:32, esp:32
080483ec.01: load t1:32, [t0:32]
080483ec.02: mov eax:32, t1:32
---------------------------------
080483f0.00: load t0:32, [esp:32]
080483f0.01: add esp:32, esp:32, 4:32
080483f0.02: return t0:32
------------------------------------
080483f1.00: sub t0:32, esp:32, 4:32
080483f1.01: cmpltu CF:1, esp:32, 4:32
080483f1.02: cmpleu BE:1, esp:32, 4:32
080483f1.03: cmplts LT:1, esp:32, 4:32
080483f1.04: cmples LE:1, esp:32, 4:32
080483f1.05: cmpeq ZF:1, esp:32, 4:32
080483f1.06: cmplts SF:1, t0:32, 0:32
080483f1.07: xor OF:1, LT:1, SF:1
080483f1.08: mov esp:32, t0:32
------------------------------------
080483f4.00: add t0:32, 8:32, esp:32
080483f4.01: load t1:32, [t0:32]
080483f4.02: mov eax:32, t1:32
-----------------------------------
080483f8.00: store [esp:32], eax:32
-------------------------------------
080483fb.00: sub esp:32, esp:32, 4:32
080483fb.01: store [esp:32], 134513664:32
080483fb.02: call 80483ec:32
------------------------------------
08048400.00: add t0:32, 8:32, esp:32
08048400.01: load t1:32, [t0:32]
08048400.02: mov eax:32, t1:32
------------------------------------
08048404.00: add t0:32, esp:32, 4:32
08048404.01: sub t1:32, -1:32, 4:32
08048404.02: cmpltu CF:1, t1:32, esp:32
08048404.03: cmpeq ZF:1, t0:32, 0:32
08048404.04: cmplts SF:1, t0:32, 0:32
08048404.05: xor t2:32, t0:32, esp:32
08048404.06: xor t3:32, t0:32, 4:32
08048404.07: and t4:32, t2:32, t3:32
08048404.08: cmplts OF:1, t4:32, 0:32
08048404.09: or BE:1, CF:1, ZF:1
08048404.0a: xor LT:1, SF:1, OF:1
08048404.0b: or LE:1, LT:1, ZF:1
08048404.0c: mov esp:32, t0:32
---------------------------------
08048407.00: load t0:32, [esp:32]
08048407.01: add esp:32, esp:32, 4:32
08048407.02: return t0:32
------------------------------------
08048408.00: sub t0:32, esp:32, 4:32
08048408.01: cmpltu CF:1, esp:32, 4:32
08048408.02: cmpleu BE:1, esp:32, 4:32
08048408.03: cmplts LT:1, esp:32, 4:32
08048408.04: cmples LE:1, esp:32, 4:32
08048408.05: cmpeq ZF:1, esp:32, 4:32
08048408.06: cmplts SF:1, t0:32, 0:32
08048408.07: xor OF:1, LT:1, SF:1
08048408.08: mov esp:32, t0:32
------------------------------------
0804840b.00: add t0:32, 8:32, esp:32
0804840b.01: load t1:32, [t0:32]
0804840b.02: mov eax:32, t1:32
-----------------------------------
0804840f.00: store [esp:32], eax:32
-------------------------------------
08048412.00: sub esp:32, esp:32, 4:32
08048412.01: store [esp:32], 134513687:32
08048412.02: call 80483ec:32
------------------------------------
08048417.00: add t0:32, 8:32, esp:32
08048417.01: load t1:32, [t0:32]
08048417.02: mov eax:32, t1:32
------------------------------------
0804841b.00: add t0:32, esp:32, 4:32
0804841b.01: sub t1:32, -1:32, 4:32
0804841b.02: cmpltu CF:1, t1:32, esp:32
0804841b.03: cmpeq ZF:1, t0:32, 0:32
0804841b.04: cmplts SF:1, t0:32, 0:32
0804841b.05: xor t2:32, t0:32, esp:32
0804841b.06: xor t3:32, t0:32, 4:32
0804841b.07: and t4:32, t2:32, t3:32
0804841b.08: cmplts OF:1, t4:32, 0:32
0804841b.09: or BE:1, CF:1, ZF:1
0804841b.0a: xor LT:1, SF:1, OF:1
0804841b.0b: or LE:1, LT:1, ZF:1
0804841b.0c: mov esp:32, t0:32
---------------------------------
0804841e.00: load t0:32, [esp:32]
0804841e.01: add esp:32, esp:32, 4:32
0804841e.02: return t0:32
-------------------------------------
0804841f.00: sub t0:32, esp:32, 20:32
0804841f.01: cmpltu CF:1, esp:32, 20:32
0804841f.02: cmpleu BE:1, esp:32, 20:32
0804841f.03: cmplts LT:1, esp:32, 20:32
0804841f.04: cmples LE:1, esp:32, 20:32
0804841f.05: cmpeq ZF:1, esp:32, 20:32
0804841f.06: cmplts SF:1, t0:32, 0:32
0804841f.07: xor OF:1, LT:1, SF:1
0804841f.08: mov esp:32, t0:32
-------------------------------------
08048422.00: add t0:32, 16:32, esp:32
08048422.01: store [t0:32], 0:32
---------------------------------
0804842a.00: store [esp:32], 0:32
-------------------------------------
08048431.00: sub esp:32, esp:32, 4:32
08048431.01: store [esp:32], 134513718:32
08048431.02: call 80483f1:32
---------------------------------
08048436.00: store [esp:32], 1:32
-------------------------------------
0804843d.00: sub esp:32, esp:32, 4:32
0804843d.01: store [esp:32], 134513730:32
0804843d.02: call 8048408:32
-------------------------------------
08048442.00: add t0:32, 16:32, esp:32
08048442.01: load t1:32, [t0:32]
08048442.02: mov eax:32, t1:32
-------------------------------------
08048446.00: add t0:32, esp:32, 20:32
08048446.01: sub t1:32, -1:32, 20:32
08048446.02: cmpltu CF:1, t1:32, esp:32
08048446.03: cmpeq ZF:1, t0:32, 0:32
08048446.04: cmplts SF:1, t0:32, 0:32
08048446.05: xor t2:32, t0:32, esp:32
08048446.06: xor t3:32, t0:32, 20:32
08048446.07: and t4:32, t2:32, t3:32
08048446.08: cmplts OF:1, t4:32, 0:32
08048446.09: or BE:1, CF:1, ZF:1
08048446.0a: xor LT:1, SF:1, OF:1
08048446.0b: or LE:1, LT:1, ZF:1
08048446.0c: mov esp:32, t0:32
---------------------------------
08048449.00: load t0:32, [esp:32]
08048449.01: add esp:32, esp:32, 4:32
08048449.02: return t0:32
```
Next, the trace showing each of the analysis steps (the complete output is shortened for brevity). It displays the inferred values before and after executing a RREIL instruction for the input and output arguments of the instruction.
```
#!text
esp = [0, +oo] pts: {v20*activeFrame(a1) (#v21)}
________________________
main: sub esp, 0x14
‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾
#1 0804841f.00 | sub t0:32, esp:32, 20:32 » Next(804841f.01)
t0 = [-20, +oo] pts: {v24*activeFrame(a1) (#v25)}
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
esp = [0, +oo] pts: {v20*activeFrame(a1) (#v21)}
#1 0804841f.01 | cmpltu CF:1, esp:32, 20:32 » Next(804841f.02)
CF = [0, 1] pts: {}
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
esp = [0, +oo] pts: {v20*activeFrame(a1) (#v21)}
#1 0804841f.02 | cmpleu BE:1, esp:32, 20:32 » Next(804841f.03)
BE = [0, 1] pts: {}
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
esp = [0, +oo] pts: {v20*activeFrame(a1) (#v21)}
#1 0804841f.03 | cmplts LT:1, esp:32, 20:32 » Next(804841f.04)
LT = [0, 1] pts: {}
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
esp = [0, +oo] pts: {v20*activeFrame(a1) (#v21)}
#1 0804841f.04 | cmples LE:1, esp:32, 20:32 » Next(804841f.05)
LE = [0, 1] pts: {}
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
esp = [0, +oo] pts: {v20*activeFrame(a1) (#v21)}
#1 0804841f.05 | cmpeq ZF:1, esp:32, 20:32 » Next(804841f.06)
ZF = [0, 1] pts: {}
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
t0 = [-20, +oo] pts: {v24*activeFrame(a1) (#v25)}
#1 0804841f.06 | cmplts SF:1, t0:32, 0:32 » Next(804841f.07)
SF = [0, 1] pts: {}
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
LT = [0, 1] pts: {} SF = [0, 1] pts: {}
#1 0804841f.07 | xor OF:1, LT:1, SF:1 » Next(804841f.08)
OF = [0, 1] pts: {}
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
t0 = [-20, +oo] pts: {v24*activeFrame(a1) (#v25)}
#1 0804841f.08 | mov esp:32, t0:32 » Next(8048422)
esp = [-20, +oo] pts: {v33*activeFrame(a1) (#v34)}
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
esp = [-20, +oo] pts: {v33*activeFrame(a1) (#v34)}
________________________________________
main: mov DWORD PTR [esp+0x10], 0x0
‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾
#1 08048422.00 | add t0:32, 16:32, esp:32 » Next(8048422.01)
t0 = [-4, +oo] pts: {v35*activeFrame(a1) (#v36)}
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
t0 = [-4, +oo] pts: {v35*activeFrame(a1) (#v36)}
#1 08048422.01 | store [t0:32], 0:32 » Next(804842a)
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
esp = [-20, +oo] pts: {v33*activeFrame(a1) (#v34)}
___________________________________
main: mov DWORD PTR [esp], 0x0
‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾
#1 0804842a.00 | store [esp:32], 0:32 » Next(8048431)
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
esp = [-20, +oo] pts: {v33*activeFrame(a1) (#v34)}
____________________________
main: call 0x80483f1 <a>
‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾
#1 08048431.00 | sub esp:32, esp:32, 4:32 » Next(8048431.01)
esp = [-24, +oo] pts: {v39*activeFrame(a1) (#v40)}
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
esp = [-24, +oo] pts: {v39*activeFrame(a1) (#v40)}
#1 08048431.01 | store [esp:32], 134513718:32 » Next(8048431.02)
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
#1 08048431.02 | call 80483f1:32 <a> » Call(80483f1) <a>
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
esp = [0, +oo] pts: {v54*activeFrame(a1) (#v55)}
____________________
a: sub esp, 0x4
‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾
#1 080483f1.00 | sub t0:32, esp:32, 4:32 » Next(80483f1.01)
t0 = [-4, +oo] pts: {v57*activeFrame(a1) (#v58)}
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
esp = [0, +oo] pts: {v54*activeFrame(a1) (#v55)}
#1 080483f1.01 | cmpltu CF:1, esp:32, 4:32 » Next(80483f1.02)
CF = [0, 1] pts: {}
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
esp = [0, +oo] pts: {v54*activeFrame(a1) (#v55)}
#1 080483f1.02 | cmpleu BE:1, esp:32, 4:32 » Next(80483f1.03)
BE = [0, 1] pts: {}
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
esp = [0, +oo] pts: {v54*activeFrame(a1) (#v55)}
#1 080483f1.03 | cmplts LT:1, esp:32, 4:32 » Next(80483f1.04)
LT = [0, 1] pts: {}
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
esp = [0, +oo] pts: {v54*activeFrame(a1) (#v55)}
#1 080483f1.04 | cmples LE:1, esp:32, 4:32 » Next(80483f1.05)
LE = [0, 1] pts: {}
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
esp = [0, +oo] pts: {v54*activeFrame(a1) (#v55)}
#1 080483f1.05 | cmpeq ZF:1, esp:32, 4:32 » Next(80483f1.06)
ZF = [0, 1] pts: {}
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
t0 = [-4, +oo] pts: {v57*activeFrame(a1) (#v58)}
#1 080483f1.06 | cmplts SF:1, t0:32, 0:32 » Next(80483f1.07)
SF = [0, 1] pts: {}
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
LT = [0, 1] pts: {} SF = [0, 1] pts: {}
#1 080483f1.07 | xor OF:1, LT:1, SF:1 » Next(80483f1.08)
OF = [0, 1] pts: {}
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
t0 = [-4, +oo] pts: {v57*activeFrame(a1) (#v58)}
#1 080483f1.08 | mov esp:32, t0:32 » Next(80483f4)
esp = [-4, +oo] pts: {v59*activeFrame(a1) (#v60)}
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
esp = [-4, +oo] pts: {v59*activeFrame(a1) (#v60)}
____________________________________
a: mov eax, DWORD PTR [esp+0x8]
‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾
#1 080483f4.00 | add t0:32, 8:32, esp:32 » Next(80483f4.01)
t0 = [4, +oo] pts: {v61*activeFrame(a1) (#v62)}
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
t0 = [4, +oo] pts: {v61*activeFrame(a1) (#v62)}
#1 080483f4.01 | load t1:32, [t0:32] » Next(80483f4.02)
t1 = [0] eqs: t1(v63)=0 pts: {}
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
t1 = [0] eqs: t1(v63)=0 pts: {}
#1 080483f4.02 | mov eax:32, t1:32 » Next(80483f8)
eax = [0] eqs: eax(v64)=0 pts: {}
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
esp = [-4, +oo] pts: {v59*activeFrame(a1) (#v60)} eax = [0] eqs: eax(v64)=0 pts: {}
________________________________
a: mov DWORD PTR [esp], eax
‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾
#1 080483f8.00 | store [esp:32], eax:32 » Next(80483fb)
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
esp = [-4, +oo] pts: {v59*activeFrame(a1) (#v60)}
_________________________
a: call 0x80483ec <f>
‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾
#1 080483fb.00 | sub esp:32, esp:32, 4:32 » Next(80483fb.01)
esp = [-8, +oo] pts: {v66*activeFrame(a1) (#v67)}
```
[ .... middle part removed for brevity .... ]
```
#!text
____________
a: ret
‾‾‾‾‾‾‾‾‾‾‾‾
#2 08048407.00 | load t0:32, [esp:32] » Next(8048407.01)
t0 = [134513718] eqs: t0(v23)=134513718 pts: {}
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
esp = [0, +oo] pts: {v183*activeFrame(a1) (#v184)}
#2 08048407.01 | add esp:32, esp:32, 4:32 » Next(8048407.02)
esp = [4, +oo] pts: {v185*activeFrame(a1) (#v186)}
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
t0 = [134513718] eqs: t0(v23)=134513718 pts: {}
#2 08048407.02 | return t0:32 » Return(8048436)
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
esp = [-20, +oo] pts: {v190*activeFrame(a1) (#v191)}
___________________________________
main: mov DWORD PTR [esp], 0x1
‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾
#2 08048436.00 | store [esp:32], 1:32 » Next(804843d)
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
esp = [-20, +oo] pts: {v190*activeFrame(a1) (#v191)}
____________________________
main: call 0x8048408 <b>
‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾
#2 0804843d.00 | sub esp:32, esp:32, 4:32 » Next(804843d.01)
esp = [-24, +oo] pts: {v195*activeFrame(a1) (#v196)}
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
esp = [-24, +oo] pts: {v195*activeFrame(a1) (#v196)}
#2 0804843d.01 | store [esp:32], 134513730:32 » Next(804843d.02)
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
#2 0804843d.02 | call 8048408:32 <b> STABLE: » Call(8048408) <b>
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
esp = [-4, +oo] pts: {v175*activeFrame(a1) (#v176)}
____________________________________
b: mov eax, DWORD PTR [esp+0x8]
‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾
#1 08048417.00 | add t0:32, 8:32, esp:32 » Next(8048417.01)
t0 = [4, +oo] pts: {v217*activeFrame(a1) (#v218)}
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
t0 = [4, +oo] pts: {v217*activeFrame(a1) (#v218)}
#1 08048417.01 | load t1:32, [t0:32] » Next(8048417.02)
t1 = [1] eqs: t1(v63)=1 pts: {}
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
t1 = [1] eqs: t1(v63)=1 pts: {}
#1 08048417.02 | mov eax:32, t1:32 » Next(804841b)
eax = [1] eqs: eax(v64)=1 pts: {}
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
esp = [-4, +oo] pts: {v175*activeFrame(a1) (#v176)}
____________________
b: add esp, 0x4
‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾
#1 0804841b.00 | add t0:32, esp:32, 4:32 » Next(804841b.01)
t0 = [0, +oo] pts: {v219*activeFrame(a1) (#v220)}
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
#1 0804841b.01 | sub t1:32, -1:32, 4:32 » Next(804841b.02)
t1 = [-5] eqs: t1(v63)=-5 pts: {}
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
t1 = [-5] eqs: t1(v63)=-5 pts: {} esp = [-4, +oo] pts: {v175*activeFrame(a1) (#v176)}
#1 0804841b.02 | cmpltu CF:1, t1:32, esp:32 » Next(804841b.03)
CF = [0, 1] pts: {}
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
t0 = [0, +oo] pts: {v219*activeFrame(a1) (#v220)}
#1 0804841b.03 | cmpeq ZF:1, t0:32, 0:32 » Next(804841b.04)
ZF = [0, 1] pts: {}
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
t0 = [0, +oo] pts: {v219*activeFrame(a1) (#v220)}
#1 0804841b.04 | cmplts SF:1, t0:32, 0:32 » Next(804841b.05)
SF = [0, 1] pts: {}
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
t0 = [0, +oo] pts: {v219*activeFrame(a1) (#v220)} esp = [-4, +oo] pts: {v175*activeFrame(a1) (#v176)}
#1 0804841b.05 | xor t2:32, t0:32, esp:32 » Next(804841b.06)
t2 = [-oo, +oo] pts: {}
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
t0 = [0, +oo] pts: {v219*activeFrame(a1) (#v220)}
#1 0804841b.06 | xor t3:32, t0:32, 4:32 » Next(804841b.07)
t3 = [-oo, +oo] pts: {}
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
t2 = [-oo, +oo] pts: {} t3 = [-oo, +oo] pts: {}
#1 0804841b.07 | and t4:32, t2:32, t3:32 » Next(804841b.08)
t4 = [0, 4294967295] pts: {}
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
t4 = [0, 4294967295] pts: {}
#1 0804841b.08 | cmplts OF:1, t4:32, 0:32 » Next(804841b.09)
OF = [0, 1] pts: {}
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
CF = [0, 1] pts: {} ZF = [0, 1] pts: {}
#1 0804841b.09 | or BE:1, CF:1, ZF:1 » Next(804841b.0a)
BE = [0, 1] pts: {}
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
SF = [0, 1] pts: {} OF = [0, 1] pts: {}
#1 0804841b.0a | xor LT:1, SF:1, OF:1 » Next(804841b.0b)
LT = [0, 1] pts: {}
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
LT = [0, 1] pts: {} ZF = [0, 1] pts: {}
#1 0804841b.0b | or LE:1, LT:1, ZF:1 » Next(804841b.0c)
LE = [0, 1] pts: {}
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
t0 = [0, +oo] pts: {v219*activeFrame(a1) (#v220)}
#1 0804841b.0c | mov esp:32, t0:32 » Next(804841e)
esp = [0, +oo] pts: {v221*activeFrame(a1) (#v222)}
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
esp = [0, +oo] pts: {v221*activeFrame(a1) (#v222)}
____________
b: ret
‾‾‾‾‾‾‾‾‾‾‾‾
#1 0804841e.00 | load t0:32, [esp:32] » Next(804841e.01)
t0 = [134513730] eqs: t0(v23)=134513730 pts: {}
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
esp = [0, +oo] pts: {v221*activeFrame(a1) (#v222)}
#1 0804841e.01 | add esp:32, esp:32, 4:32 » Next(804841e.02)
esp = [4, +oo] pts: {v223*activeFrame(a1) (#v224)}
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
t0 = [134513730] eqs: t0(v23)=134513730 pts: {}
#1 0804841e.02 | return t0:32 » Return(8048442)
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
esp = [-20, +oo] pts: {v228*activeFrame(a1) (#v229)}
________________________________________
main: mov eax, DWORD PTR [esp+0x10]
‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾
#1 08048442.00 | add t0:32, 16:32, esp:32 » Next(8048442.01)
t0 = [-4, +oo] pts: {v233*activeFrame(a1) (#v234)}
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
t0 = [-4, +oo] pts: {v233*activeFrame(a1) (#v234)}
#1 08048442.01 | load t1:32, [t0:32] » Next(8048442.02)
t1 = [0] eqs: t1(v63)=0 pts: {}
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
t1 = [0] eqs: t1(v63)=0 pts: {}
#1 08048442.02 | mov eax:32, t1:32 » Next(8048446)
eax = [0] eqs: eax(v64)=0 pts: {}
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
esp = [-20, +oo] pts: {v228*activeFrame(a1) (#v229)}
________________________
main: add esp, 0x14
‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾
#1 08048446.00 | add t0:32, esp:32, 20:32 » Next(8048446.01)
t0 = [0, +oo] pts: {v235*activeFrame(a1) (#v236)}
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
#1 08048446.01 | sub t1:32, -1:32, 20:32 » Next(8048446.02)
t1 = [-21] eqs: t1(v63)=-21 pts: {}
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
t1 = [-21] eqs: t1(v63)=-21 pts: {} esp = [-20, +oo] pts: {v228*activeFrame(a1) (#v229)}
#1 08048446.02 | cmpltu CF:1, t1:32, esp:32 » Next(8048446.03)
CF = [0, 1] pts: {}
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
t0 = [0, +oo] pts: {v235*activeFrame(a1) (#v236)}
#1 08048446.03 | cmpeq ZF:1, t0:32, 0:32 » Next(8048446.04)
ZF = [0, 1] pts: {}
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
t0 = [0, +oo] pts: {v235*activeFrame(a1) (#v236)}
#1 08048446.04 | cmplts SF:1, t0:32, 0:32 » Next(8048446.05)
SF = [0, 1] pts: {}
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
t0 = [0, +oo] pts: {v235*activeFrame(a1) (#v236)} esp = [-20, +oo] pts: {v228*activeFrame(a1) (#v229)}
#1 08048446.05 | xor t2:32, t0:32, esp:32 » Next(8048446.06)
t2 = [-oo, +oo] pts: {}
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
t0 = [0, +oo] pts: {v235*activeFrame(a1) (#v236)}
#1 08048446.06 | xor t3:32, t0:32, 20:32 » Next(8048446.07)
t3 = [-oo, +oo] pts: {}
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
t2 = [-oo, +oo] pts: {} t3 = [-oo, +oo] pts: {}
#1 08048446.07 | and t4:32, t2:32, t3:32 » Next(8048446.08)
t4 = [0, 4294967295] pts: {}
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
t4 = [0, 4294967295] pts: {}
#1 08048446.08 | cmplts OF:1, t4:32, 0:32 » Next(8048446.09)
OF = [0, 1] pts: {}
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
CF = [0, 1] pts: {} ZF = [0, 1] pts: {}
#1 08048446.09 | or BE:1, CF:1, ZF:1 » Next(8048446.0a)
BE = [0, 1] pts: {}
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
SF = [0, 1] pts: {} OF = [0, 1] pts: {}
#1 08048446.0a | xor LT:1, SF:1, OF:1 » Next(8048446.0b)
LT = [0, 1] pts: {}
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
LT = [0, 1] pts: {} ZF = [0, 1] pts: {}
#1 08048446.0b | or LE:1, LT:1, ZF:1 » Next(8048446.0c)
LE = [0, 1] pts: {}
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
t0 = [0, +oo] pts: {v235*activeFrame(a1) (#v236)}
#1 08048446.0c | mov esp:32, t0:32 » Next(8048449)
esp = [0, +oo] pts: {v237*activeFrame(a1) (#v238)}
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
esp = [0, +oo] pts: {v237*activeFrame(a1) (#v238)}
_______________
main: ret
‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾
#1 08048449.00 | load t0:32, [esp:32] » Next(8048449.01)
t0 = [134513695] eqs: t0(v23)=134513695 pts: {}
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
esp = [0, +oo] pts: {v237*activeFrame(a1) (#v238)}
#1 08048449.01 | add esp:32, esp:32, 4:32 » Next(8048449.02)
esp = [4, +oo] pts: {v239*activeFrame(a1) (#v240)}
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
t0 = [134513695] eqs: t0(v23)=134513695 pts: {}
#1 08048449.02 | return t0:32 NO SUCCESSORS
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
Analysis steps: 143
Warnings: 0
```
At last, the most verbose debug output printing the complete state of the abstract domains before executing a RREIL instruction (again, only part of the trace output is shown for the sake of brevity).
```
#!text
esp = [0, +oo] pts: {v20*activeFrame(a1) (#v21)}
@ 0804841f.00: SEGMEM: Processor: {esp}
Stack: parents: {00000000.00}; callsites: {00000000.00={00000000.00=frame_0(a12)}}; frames: {00000000.00={00000000.00}, 0804841f.00={0804841f.00}}
Data: Absolute: {[134512980:19]=_interp, [134513000:32]=_note_ABI_tag, [134513032:36]=_note_gnu_build_id, [134513068:32]=_gnu_hash, [134513100:64]=_dynsym, [134513164:69]=_dynstr, [134513234:8]=_gnu_version, [134513244:32]=_gnu_version_r, [134513276:8]=_rel_dyn, [134513284:16]=_rel_plt, [134513300:35]=_init, [134513344:48]=_plt, [134513392:468]=_text, [134513860:20]=_fini, [134513880:8]=_rodata, [134513888:68]=_eh_frame_hdr, [134513956:236]=_eh_frame, [134520584:4]=_init_array, [134520588:4]=_fini_array, [134520592:4]=_jcr, [134520596:232]=_dynamic, [134520828:4]=_got, [134520832:20]=_got_plt, [134520852:8]=_data, [134520860:4]=_bss}
UNDEF: {}
fPREDICATES: #0 {}
POINTSTO: #6 {esp(v4)={v20*activeFrame(a1) (#v21)}, SPdiff@0(v14)={v19*frame_0(a12) (#v17)}}
AFFINE: #10 {BP|SP(v2)=0, esp(v4)=0, BP|SP@0(v13)=0, SPdiff@0(v14)=-4, [SP@0-4](v15)=134513695, v17=0, v19=0, v20=1, v21=1, f(804841f->0)(f22)=1}
CONGRUENCES: #12 {activeFrame(a1)*1, BP|SP(v2)=0, esp(v4)=0, frame_0(a12)*1, BP|SP@0(v13)=0, SPdiff@0(v14)=-4, [SP@0-4](v15)=134513695, v17=0, v19=0, v20=1, v21=1, f(804841f->0)(f22)=1}
INTERVALS: #12 {activeFrame(a1)=[0, +oo], BP|SP(v2)=[0], esp(v4)=[0], frame_0(a12)=[0, +oo], BP|SP@0(v13)=[0], SPdiff@0(v14)=[-4], [SP@0-4](v15)=[134513695], v17=[0], v19=[0], v20=[1], v21=[1], f(804841f->0)(f22)=[1]}
________________________
main: sub esp, 0x14
‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾
#1 0804841f.00 | sub t0:32, esp:32, 20:32 » Next(804841f.01)
t0 = [-20, +oo] pts: {v24*activeFrame(a1) (#v25)}
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
esp = [0, +oo] pts: {v20*activeFrame(a1) (#v21)}
@ 0804841f.01: SEGMEM: Processor: {esp, t0}
Stack: parents: {00000000.00}; callsites: {00000000.00={00000000.00=frame_0(a12)}}; frames: {00000000.00={00000000.00}, 0804841f.00={0804841f.00}}
Data: Absolute: {[134512980:19]=_interp, [134513000:32]=_note_ABI_tag, [134513032:36]=_note_gnu_build_id, [134513068:32]=_gnu_hash, [134513100:64]=_dynsym, [134513164:69]=_dynstr, [134513234:8]=_gnu_version, [134513244:32]=_gnu_version_r, [134513276:8]=_rel_dyn, [134513284:16]=_rel_plt, [134513300:35]=_init, [134513344:48]=_plt, [134513392:468]=_text, [134513860:20]=_fini, [134513880:8]=_rodata, [134513888:68]=_eh_frame_hdr, [134513956:236]=_eh_frame, [134520584:4]=_init_array, [134520588:4]=_fini_array, [134520592:4]=_jcr, [134520596:232]=_dynamic, [134520828:4]=_got, [134520832:20]=_got_plt, [134520852:8]=_data, [134520860:4]=_bss}
UNDEF: {}
fPREDICATES: #0 {}
POINTSTO: #9 {esp(v4)={v20*activeFrame(a1) (#v21)}, SPdiff@0(v14)={v19*frame_0(a12) (#v17)}, t0(v23)={v24*activeFrame(a1) (#v25)}}
AFFINE: #13 {BP|SP(v2)=0, esp(v4)=0, BP|SP@0(v13)=0, SPdiff@0(v14)=-4, [SP@0-4](v15)=134513695, v17=0, v19=0, v20=1, v21=1, f(804841f->0)(f22)=1, t0(v23)=-20, v24=1, v25=1}
CONGRUENCES: #15 {activeFrame(a1)*1, BP|SP(v2)=0, esp(v4)=0, frame_0(a12)*1, BP|SP@0(v13)=0, SPdiff@0(v14)=-4, [SP@0-4](v15)=134513695, v17=0, v19=0, v20=1, v21=1, f(804841f->0)(f22)=1, t0(v23)=-20, v24=1, v25=1}
INTERVALS: #15 {activeFrame(a1)=[0, +oo], BP|SP(v2)=[0], esp(v4)=[0], frame_0(a12)=[0, +oo], BP|SP@0(v13)=[0], SPdiff@0(v14)=[-4], [SP@0-4](v15)=[134513695], v17=[0], v19=[0], v20=[1], v21=[1], f(804841f->0)(f22)=[1], t0(v23)=[-20], v24=[1], v25=[1]}
#1 0804841f.01 | cmpltu CF:1, esp:32, 20:32 » Next(804841f.02)
CF = [0, 1] pts: {}
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
esp = [0, +oo] pts: {v20*activeFrame(a1) (#v21)}
@ 0804841f.02: SEGMEM: Processor: {esp, t0, CF}
Stack: parents: {00000000.00}; callsites: {00000000.00={00000000.00=frame_0(a12)}}; frames: {00000000.00={00000000.00}, 0804841f.00={0804841f.00}}
Data: Absolute: {[134512980:19]=_interp, [134513000:32]=_note_ABI_tag, [134513032:36]=_note_gnu_build_id, [134513068:32]=_gnu_hash, [134513100:64]=_dynsym, [134513164:69]=_dynstr, [134513234:8]=_gnu_version, [134513244:32]=_gnu_version_r, [134513276:8]=_rel_dyn, [134513284:16]=_rel_plt, [134513300:35]=_init, [134513344:48]=_plt, [134513392:468]=_text, [134513860:20]=_fini, [134513880:8]=_rodata, [134513888:68]=_eh_frame_hdr, [134513956:236]=_eh_frame, [134520584:4]=_init_array, [134520588:4]=_fini_array, [134520592:4]=_jcr, [134520596:232]=_dynamic, [134520828:4]=_got, [134520832:20]=_got_plt, [134520852:8]=_data, [134520860:4]=_bss}
UNDEF: {}
fPREDICATES: #2 {CF(v26)→{esp(v4)<u20} ¬CF(v26)→{20≤uesp(v4)}}
POINTSTO: #9 {esp(v4)={v20*activeFrame(a1) (#v21)}, SPdiff@0(v14)={v19*frame_0(a12) (#v17)}, t0(v23)={v24*activeFrame(a1) (#v25)}}
AFFINE: #13 {BP|SP(v2)=0, esp(v4)=0, BP|SP@0(v13)=0, SPdiff@0(v14)=-4, [SP@0-4](v15)=134513695, v17=0, v19=0, v20=1, v21=1, f(804841f->0)(f22)=1, t0(v23)=-20, v24=1, v25=1}
CONGRUENCES: #16 {activeFrame(a1)*1, BP|SP(v2)=0, esp(v4)=0, frame_0(a12)*1, BP|SP@0(v13)=0, SPdiff@0(v14)=-4, [SP@0-4](v15)=134513695, v17=0, v19=0, v20=1, v21=1, f(804841f->0)(f22)=1, t0(v23)=-20, v24=1, v25=1, CF(v26)*1}
INTERVALS: #16 {activeFrame(a1)=[0, +oo], BP|SP(v2)=[0], esp(v4)=[0], frame_0(a12)=[0, +oo], BP|SP@0(v13)=[0], SPdiff@0(v14)=[-4], [SP@0-4](v15)=[134513695], v17=[0], v19=[0], v20=[1], v21=[1], f(804841f->0)(f22)=[1], t0(v23)=[-20], v24=[1], v25=[1], CF(v26)=[0, 1]}
#1 0804841f.02 | cmpleu BE:1, esp:32, 20:32 » Next(804841f.03)
BE = [0, 1] pts: {}
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
esp = [0, +oo] pts: {v20*activeFrame(a1) (#v21)}
@ 0804841f.03: SEGMEM: Processor: {esp, t0, CF, BE}
Stack: parents: {00000000.00}; callsites: {00000000.00={00000000.00=frame_0(a12)}}; frames: {00000000.00={00000000.00}, 0804841f.00={0804841f.00}}
Data: Absolute: {[134512980:19]=_interp, [134513000:32]=_note_ABI_tag, [134513032:36]=_note_gnu_build_id, [134513068:32]=_gnu_hash, [134513100:64]=_dynsym, [134513164:69]=_dynstr, [134513234:8]=_gnu_version, [134513244:32]=_gnu_version_r, [134513276:8]=_rel_dyn, [134513284:16]=_rel_plt, [134513300:35]=_init, [134513344:48]=_plt, [134513392:468]=_text, [134513860:20]=_fini, [134513880:8]=_rodata, [134513888:68]=_eh_frame_hdr, [134513956:236]=_eh_frame, [134520584:4]=_init_array, [134520588:4]=_fini_array, [134520592:4]=_jcr, [134520596:232]=_dynamic, [134520828:4]=_got, [134520832:20]=_got_plt, [134520852:8]=_data, [134520860:4]=_bss}
UNDEF: {}
fPREDICATES: #4 {CF(v26)→{esp(v4)<u20} ¬CF(v26)→{20≤uesp(v4)}, BE(v27)→{esp(v4)≤u20} ¬BE(v27)→{20<uesp(v4)}}
POINTSTO: #9 {esp(v4)={v20*activeFrame(a1) (#v21)}, SPdiff@0(v14)={v19*frame_0(a12) (#v17)}, t0(v23)={v24*activeFrame(a1) (#v25)}}
AFFINE: #13 {BP|SP(v2)=0, esp(v4)=0, BP|SP@0(v13)=0, SPdiff@0(v14)=-4, [SP@0-4](v15)=134513695, v17=0, v19=0, v20=1, v21=1, f(804841f->0)(f22)=1, t0(v23)=-20, v24=1, v25=1}
CONGRUENCES: #17 {activeFrame(a1)*1, BP|SP(v2)=0, esp(v4)=0, frame_0(a12)*1, BP|SP@0(v13)=0, SPdiff@0(v14)=-4, [SP@0-4](v15)=134513695, v17=0, v19=0, v20=1, v21=1, f(804841f->0)(f22)=1, t0(v23)=-20, v24=1, v25=1, CF(v26)*1, BE(v27)*1}
INTERVALS: #17 {activeFrame(a1)=[0, +oo], BP|SP(v2)=[0], esp(v4)=[0], frame_0(a12)=[0, +oo], BP|SP@0(v13)=[0], SPdiff@0(v14)=[-4], [SP@0-4](v15)=[134513695], v17=[0], v19=[0], v20=[1], v21=[1], f(804841f->0)(f22)=[1], t0(v23)=[-20], v24=[1], v25=[1], CF(v26)=[0, 1], BE(v27)=[0, 1]}
#1 0804841f.03 | cmplts LT:1, esp:32, 20:32 » Next(804841f.04)
LT = [0, 1] pts: {}
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
esp = [0, +oo] pts: {v20*activeFrame(a1) (#v21)}
@ 0804841f.04: SEGMEM: Processor: {esp, t0, CF, BE, LT}
Stack: parents: {00000000.00}; callsites: {00000000.00={00000000.00=frame_0(a12)}}; frames: {00000000.00={00000000.00}, 0804841f.00={0804841f.00}}
Data: Absolute: {[134512980:19]=_interp, [134513000:32]=_note_ABI_tag, [134513032:36]=_note_gnu_build_id, [134513068:32]=_gnu_hash, [134513100:64]=_dynsym, [134513164:69]=_dynstr, [134513234:8]=_gnu_version, [134513244:32]=_gnu_version_r, [134513276:8]=_rel_dyn, [134513284:16]=_rel_plt, [134513300:35]=_init, [134513344:48]=_plt, [134513392:468]=_text, [134513860:20]=_fini, [134513880:8]=_rodata, [134513888:68]=_eh_frame_hdr, [134513956:236]=_eh_frame, [134520584:4]=_init_array, [134520588:4]=_fini_array, [134520592:4]=_jcr, [134520596:232]=_dynamic, [134520828:4]=_got, [134520832:20]=_got_plt, [134520852:8]=_data, [134520860:4]=_bss}
UNDEF: {}
fPREDICATES: #6 {CF(v26)→{esp(v4)<u20} ¬CF(v26)→{20≤uesp(v4)}, BE(v27)→{esp(v4)≤u20} ¬BE(v27)→{20<uesp(v4)}, LT(v28)→{esp(v4)<s20} ¬LT(v28)→{20≤sesp(v4)}}
POINTSTO: #9 {esp(v4)={v20*activeFrame(a1) (#v21)}, SPdiff@0(v14)={v19*frame_0(a12) (#v17)}, t0(v23)={v24*activeFrame(a1) (#v25)}}
AFFINE: #13 {BP|SP(v2)=0, esp(v4)=0, BP|SP@0(v13)=0, SPdiff@0(v14)=-4, [SP@0-4](v15)=134513695, v17=0, v19=0, v20=1, v21=1, f(804841f->0)(f22)=1, t0(v23)=-20, v24=1, v25=1}
CONGRUENCES: #18 {activeFrame(a1)*1, BP|SP(v2)=0, esp(v4)=0, frame_0(a12)*1, BP|SP@0(v13)=0, SPdiff@0(v14)=-4, [SP@0-4](v15)=134513695, v17=0, v19=0, v20=1, v21=1, f(804841f->0)(f22)=1, t0(v23)=-20, v24=1, v25=1, CF(v26)*1, BE(v27)*1, LT(v28)*1}
INTERVALS: #18 {activeFrame(a1)=[0, +oo], BP|SP(v2)=[0], esp(v4)=[0], frame_0(a12)=[0, +oo], BP|SP@0(v13)=[0], SPdiff@0(v14)=[-4], [SP@0-4](v15)=[134513695], v17=[0], v19=[0], v20=[1], v21=[1], f(804841f->0)(f22)=[1], t0(v23)=[-20], v24=[1], v25=[1], CF(v26)=[0, 1], BE(v27)=[0, 1], LT(v28)=[0, 1]}
#1 0804841f.04 | cmples LE:1, esp:32, 20:32 » Next(804841f.05)
LE = [0, 1] pts: {}
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
esp = [0, +oo] pts: {v20*activeFrame(a1) (#v21)}
@ 0804841f.05: SEGMEM: Processor: {esp, t0, CF, BE, LT, LE}
Stack: parents: {00000000.00}; callsites: {00000000.00={00000000.00=frame_0(a12)}}; frames: {00000000.00={00000000.00}, 0804841f.00={0804841f.00}}
Data: Absolute: {[134512980:19]=_interp, [134513000:32]=_note_ABI_tag, [134513032:36]=_note_gnu_build_id, [134513068:32]=_gnu_hash, [134513100:64]=_dynsym, [134513164:69]=_dynstr, [134513234:8]=_gnu_version, [134513244:32]=_gnu_version_r, [134513276:8]=_rel_dyn, [134513284:16]=_rel_plt, [134513300:35]=_init, [134513344:48]=_plt, [134513392:468]=_text, [134513860:20]=_fini, [134513880:8]=_rodata, [134513888:68]=_eh_frame_hdr, [134513956:236]=_eh_frame, [134520584:4]=_init_array, [134520588:4]=_fini_array, [134520592:4]=_jcr, [134520596:232]=_dynamic, [134520828:4]=_got, [134520832:20]=_got_plt, [134520852:8]=_data, [134520860:4]=_bss}
UNDEF: {}
fPREDICATES: #8 {CF(v26)→{esp(v4)<u20} ¬CF(v26)→{20≤uesp(v4)}, BE(v27)→{esp(v4)≤u20} ¬BE(v27)→{20<uesp(v4)}, LT(v28)→{esp(v4)<s20} ¬LT(v28)→{20≤sesp(v4)}, LE(v29)→{esp(v4)≤s20} ¬LE(v29)→{20<sesp(v4)}}
POINTSTO: #9 {esp(v4)={v20*activeFrame(a1) (#v21)}, SPdiff@0(v14)={v19*frame_0(a12) (#v17)}, t0(v23)={v24*activeFrame(a1) (#v25)}}
AFFINE: #13 {BP|SP(v2)=0, esp(v4)=0, BP|SP@0(v13)=0, SPdiff@0(v14)=-4, [SP@0-4](v15)=134513695, v17=0, v19=0, v20=1, v21=1, f(804841f->0)(f22)=1, t0(v23)=-20, v24=1, v25=1}
CONGRUENCES: #19 {activeFrame(a1)*1, BP|SP(v2)=0, esp(v4)=0, frame_0(a12)*1, BP|SP@0(v13)=0, SPdiff@0(v14)=-4, [SP@0-4](v15)=134513695, v17=0, v19=0, v20=1, v21=1, f(804841f->0)(f22)=1, t0(v23)=-20, v24=1, v25=1, CF(v26)*1, BE(v27)*1, LT(v28)*1, LE(v29)*1}
INTERVALS: #19 {activeFrame(a1)=[0, +oo], BP|SP(v2)=[0], esp(v4)=[0], frame_0(a12)=[0, +oo], BP|SP@0(v13)=[0], SPdiff@0(v14)=[-4], [SP@0-4](v15)=[134513695], v17=[0], v19=[0], v20=[1], v21=[1], f(804841f->0)(f22)=[1], t0(v23)=[-20], v24=[1], v25=[1], CF(v26)=[0, 1], BE(v27)=[0, 1], LT(v28)=[0, 1], LE(v29)=[0, 1]}
#1 0804841f.05 | cmpeq ZF:1, esp:32, 20:32 » Next(804841f.06)
ZF = [0, 1] pts: {}
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
t0 = [-20, +oo] pts: {v24*activeFrame(a1) (#v25)}
@ 0804841f.06: SEGMEM: Processor: {esp, t0, CF, BE, LT, LE, ZF}
Stack: parents: {00000000.00}; callsites: {00000000.00={00000000.00=frame_0(a12)}}; frames: {00000000.00={00000000.00}, 0804841f.00={0804841f.00}}
Data: Absolute: {[134512980:19]=_interp, [134513000:32]=_note_ABI_tag, [134513032:36]=_note_gnu_build_id, [134513068:32]=_gnu_hash, [134513100:64]=_dynsym, [134513164:69]=_dynstr, [134513234:8]=_gnu_version, [134513244:32]=_gnu_version_r, [134513276:8]=_rel_dyn, [134513284:16]=_rel_plt, [134513300:35]=_init, [134513344:48]=_plt, [134513392:468]=_text, [134513860:20]=_fini, [134513880:8]=_rodata, [134513888:68]=_eh_frame_hdr, [134513956:236]=_eh_frame, [134520584:4]=_init_array, [134520588:4]=_fini_array, [134520592:4]=_jcr, [134520596:232]=_dynamic, [134520828:4]=_got, [134520832:20]=_got_plt, [134520852:8]=_data, [134520860:4]=_bss}
UNDEF: {}
fPREDICATES: #10 {CF(v26)→{esp(v4)<u20} ¬CF(v26)→{20≤uesp(v4)}, BE(v27)→{esp(v4)≤u20} ¬BE(v27)→{20<uesp(v4)}, LT(v28)→{esp(v4)<s20} ¬LT(v28)→{20≤sesp(v4)}, LE(v29)→{esp(v4)≤s20} ¬LE(v29)→{20<sesp(v4)}, ZF(v30)→{esp(v4)=20} ¬ZF(v30)→{esp(v4)≠20}}
POINTSTO: #9 {esp(v4)={v20*activeFrame(a1) (#v21)}, SPdiff@0(v14)={v19*frame_0(a12) (#v17)}, t0(v23)={v24*activeFrame(a1) (#v25)}}
AFFINE: #13 {BP|SP(v2)=0, esp(v4)=0, BP|SP@0(v13)=0, SPdiff@0(v14)=-4, [SP@0-4](v15)=134513695, v17=0, v19=0, v20=1, v21=1, f(804841f->0)(f22)=1, t0(v23)=-20, v24=1, v25=1}
CONGRUENCES: #20 {activeFrame(a1)*1, BP|SP(v2)=0, esp(v4)=0, frame_0(a12)*1, BP|SP@0(v13)=0, SPdiff@0(v14)=-4, [SP@0-4](v15)=134513695, v17=0, v19=0, v20=1, v21=1, f(804841f->0)(f22)=1, t0(v23)=-20, v24=1, v25=1, CF(v26)*1, BE(v27)*1, LT(v28)*1, LE(v29)*1, ZF(v30)*1}
INTERVALS: #20 {activeFrame(a1)=[0, +oo], BP|SP(v2)=[0], esp(v4)=[0], frame_0(a12)=[0, +oo], BP|SP@0(v13)=[0], SPdiff@0(v14)=[-4], [SP@0-4](v15)=[134513695], v17=[0], v19=[0], v20=[1], v21=[1], f(804841f->0)(f22)=[1], t0(v23)=[-20], v24=[1], v25=[1], CF(v26)=[0, 1], BE(v27)=[0, 1], LT(v28)=[0, 1], LE(v29)=[0, 1], ZF(v30)=[0, 1]}
#1 0804841f.06 | cmplts SF:1, t0:32, 0:32 » Next(804841f.07)
SF = [0, 1] pts: {}
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
LT = [0, 1] pts: {} SF = [0, 1] pts: {}
@ 0804841f.07: SEGMEM: Processor: {esp, t0, CF, BE, LT, LE, ZF, SF}
Stack: parents: {00000000.00}; callsites: {00000000.00={00000000.00=frame_0(a12)}}; frames: {00000000.00={00000000.00}, 0804841f.00={0804841f.00}}
Data: Absolute: {[134512980:19]=_interp, [134513000:32]=_note_ABI_tag, [134513032:36]=_note_gnu_build_id, [134513068:32]=_gnu_hash, [134513100:64]=_dynsym, [134513164:69]=_dynstr, [134513234:8]=_gnu_version, [134513244:32]=_gnu_version_r, [134513276:8]=_rel_dyn, [134513284:16]=_rel_plt, [134513300:35]=_init, [134513344:48]=_plt, [134513392:468]=_text, [134513860:20]=_fini, [134513880:8]=_rodata, [134513888:68]=_eh_frame_hdr, [134513956:236]=_eh_frame, [134520584:4]=_init_array, [134520588:4]=_fini_array, [134520592:4]=_jcr, [134520596:232]=_dynamic, [134520828:4]=_got, [134520832:20]=_got_plt, [134520852:8]=_data, [134520860:4]=_bss}
UNDEF: {}
fPREDICATES: #12 {CF(v26)→{esp(v4)<u20} ¬CF(v26)→{20≤uesp(v4)}, BE(v27)→{esp(v4)≤u20} ¬BE(v27)→{20<uesp(v4)}, LT(v28)→{esp(v4)<s20} ¬LT(v28)→{20≤sesp(v4)}, LE(v29)→{esp(v4)≤s20} ¬LE(v29)→{20<sesp(v4)}, ZF(v30)→{esp(v4)=20} ¬ZF(v30)→{esp(v4)≠20}, SF(v31)→{t0(v23)<s0} ¬SF(v31)→{0≤st0(v23)}}
POINTSTO: #9 {esp(v4)={v20*activeFrame(a1) (#v21)}, SPdiff@0(v14)={v19*frame_0(a12) (#v17)}, t0(v23)={v24*activeFrame(a1) (#v25)}}
AFFINE: #13 {BP|SP(v2)=0, esp(v4)=0, BP|SP@0(v13)=0, SPdiff@0(v14)=-4, [SP@0-4](v15)=134513695, v17=0, v19=0, v20=1, v21=1, f(804841f->0)(f22)=1, t0(v23)=-20, v24=1, v25=1}
CONGRUENCES: #21 {activeFrame(a1)*1, BP|SP(v2)=0, esp(v4)=0, frame_0(a12)*1, BP|SP@0(v13)=0, SPdiff@0(v14)=-4, [SP@0-4](v15)=134513695, v17=0, v19=0, v20=1, v21=1, f(804841f->0)(f22)=1, t0(v23)=-20, v24=1, v25=1, CF(v26)*1, BE(v27)*1, LT(v28)*1, LE(v29)*1, ZF(v30)*1, SF(v31)*1}
INTERVALS: #21 {activeFrame(a1)=[0, +oo], BP|SP(v2)=[0], esp(v4)=[0], frame_0(a12)=[0, +oo], BP|SP@0(v13)=[0], SPdiff@0(v14)=[-4], [SP@0-4](v15)=[134513695], v17=[0], v19=[0], v20=[1], v21=[1], f(804841f->0)(f22)=[1], t0(v23)=[-20], v24=[1], v25=[1], CF(v26)=[0, 1], BE(v27)=[0, 1], LT(v28)=[0, 1], LE(v29)=[0, 1], ZF(v30)=[0, 1], SF(v31)=[0, 1]}
#1 0804841f.07 | xor OF:1, LT:1, SF:1 » Next(804841f.08)
OF = [0, 1] pts: {}
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
t0 = [-20, +oo] pts: {v24*activeFrame(a1) (#v25)}
@ 0804841f.08: SEGMEM: Processor: {esp, t0, CF, BE, LT, LE, ZF, SF, OF}
Stack: parents: {00000000.00}; callsites: {00000000.00={00000000.00=frame_0(a12)}}; frames: {00000000.00={00000000.00}, 0804841f.00={0804841f.00}}
Data: Absolute: {[134512980:19]=_interp, [134513000:32]=_note_ABI_tag, [134513032:36]=_note_gnu_build_id, [134513068:32]=_gnu_hash, [134513100:64]=_dynsym, [134513164:69]=_dynstr, [134513234:8]=_gnu_version, [134513244:32]=_gnu_version_r, [134513276:8]=_rel_dyn, [134513284:16]=_rel_plt, [134513300:35]=_init, [134513344:48]=_plt, [134513392:468]=_text, [134513860:20]=_fini, [134513880:8]=_rodata, [134513888:68]=_eh_frame_hdr, [134513956:236]=_eh_frame, [134520584:4]=_init_array, [134520588:4]=_fini_array, [134520592:4]=_jcr, [134520596:232]=_dynamic, [134520828:4]=_got, [134520832:20]=_got_plt, [134520852:8]=_data, [134520860:4]=_bss}
UNDEF: {}
fPREDICATES: #12 {CF(v26)→{esp(v4)<u20} ¬CF(v26)→{20≤uesp(v4)}, BE(v27)→{esp(v4)≤u20} ¬BE(v27)→{20<uesp(v4)}, LT(v28)→{esp(v4)<s20} ¬LT(v28)→{20≤sesp(v4)}, LE(v29)→{esp(v4)≤s20} ¬LE(v29)→{20<sesp(v4)}, ZF(v30)→{esp(v4)=20} ¬ZF(v30)→{esp(v4)≠20}, SF(v31)→{t0(v23)<s0} ¬SF(v31)→{0≤st0(v23)}}
POINTSTO: #9 {esp(v4)={v20*activeFrame(a1) (#v21)}, SPdiff@0(v14)={v19*frame_0(a12) (#v17)}, t0(v23)={v24*activeFrame(a1) (#v25)}}
AFFINE: #13 {BP|SP(v2)=0, esp(v4)=0, BP|SP@0(v13)=0, SPdiff@0(v14)=-4, [SP@0-4](v15)=134513695, v17=0, v19=0, v20=1, v21=1, f(804841f->0)(f22)=1, t0(v23)=-20, v24=1, v25=1}
CONGRUENCES: #22 {activeFrame(a1)*1, BP|SP(v2)=0, esp(v4)=0, frame_0(a12)*1, BP|SP@0(v13)=0, SPdiff@0(v14)=-4, [SP@0-4](v15)=134513695, v17=0, v19=0, v20=1, v21=1, f(804841f->0)(f22)=1, t0(v23)=-20, v24=1, v25=1, CF(v26)*1, BE(v27)*1, LT(v28)*1, LE(v29)*1, ZF(v30)*1, SF(v31)*1, OF(v32)*1}
INTERVALS: #22 {activeFrame(a1)=[0, +oo], BP|SP(v2)=[0], esp(v4)=[0], frame_0(a12)=[0, +oo], BP|SP@0(v13)=[0], SPdiff@0(v14)=[-4], [SP@0-4](v15)=[134513695], v17=[0], v19=[0], v20=[1], v21=[1], f(804841f->0)(f22)=[1], t0(v23)=[-20], v24=[1], v25=[1], CF(v26)=[0, 1], BE(v27)=[0, 1], LT(v28)=[0, 1], LE(v29)=[0, 1], ZF(v30)=[0, 1], SF(v31)=[0, 1], OF(v32)=[0, 1]}
#1 0804841f.08 | mov esp:32, t0:32 » Next(8048422)
esp = [-20, +oo] pts: {v33*activeFrame(a1) (#v34)}
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
esp = [-20, +oo] pts: {v33*activeFrame(a1) (#v34)}
@ 08048422.00: SEGMEM: Processor: {esp, t0, CF, BE, LT, LE, ZF, SF, OF}
Stack: parents: {00000000.00}; callsites: {00000000.00={00000000.00=frame_0(a12)}}; frames: {00000000.00={00000000.00}, 0804841f.00={0804841f.00}}
Data: Absolute: {[134512980:19]=_interp, [134513000:32]=_note_ABI_tag, [134513032:36]=_note_gnu_build_id, [134513068:32]=_gnu_hash, [134513100:64]=_dynsym, [134513164:69]=_dynstr, [134513234:8]=_gnu_version, [134513244:32]=_gnu_version_r, [134513276:8]=_rel_dyn, [134513284:16]=_rel_plt, [134513300:35]=_init, [134513344:48]=_plt, [134513392:468]=_text, [134513860:20]=_fini, [134513880:8]=_rodata, [134513888:68]=_eh_frame_hdr, [134513956:236]=_eh_frame, [134520584:4]=_init_array, [134520588:4]=_fini_array, [134520592:4]=_jcr, [134520596:232]=_dynamic, [134520828:4]=_got, [134520832:20]=_got_plt, [134520852:8]=_data, [134520860:4]=_bss}
UNDEF: {}
fPREDICATES: #2 {SF(v31)→{t0(v23)<s0} ¬SF(v31)→{0≤st0(v23)}}
POINTSTO: #9 {esp(v4)={v33*activeFrame(a1) (#v34)}, SPdiff@0(v14)={v19*frame_0(a12) (#v17)}, t0(v23)={v24*activeFrame(a1) (#v25)}}
AFFINE: #13 {BP|SP(v2)=0, esp(v4)=-20, BP|SP@0(v13)=0, SPdiff@0(v14)=-4, [SP@0-4](v15)=134513695, v17=0, v19=0, f(804841f->0)(f22)=1, t0(v23)=-20, v24=1, v25=1, v33=1, v34=1}
CONGRUENCES: #22 {activeFrame(a1)*1, BP|SP(v2)=0, esp(v4)=-20, frame_0(a12)*1, BP|SP@0(v13)=0, SPdiff@0(v14)=-4, [SP@0-4](v15)=134513695, v17=0, v19=0, f(804841f->0)(f22)=1, t0(v23)=-20, v24=1, v25=1, CF(v26)*1, BE(v27)*1, LT(v28)*1, LE(v29)*1, ZF(v30)*1, SF(v31)*1, OF(v32)*1, v33=1, v34=1}
INTERVALS: #22 {activeFrame(a1)=[0, +oo], BP|SP(v2)=[0], esp(v4)=[-20], frame_0(a12)=[0, +oo], BP|SP@0(v13)=[0], SPdiff@0(v14)=[-4], [SP@0-4](v15)=[134513695], v17=[0], v19=[0], f(804841f->0)(f22)=[1], t0(v23)=[-20], v24=[1], v25=[1], CF(v26)=[0, 1], BE(v27)=[0, 1], LT(v28)=[0, 1], LE(v29)=[0, 1], ZF(v30)=[0, 1], SF(v31)=[0, 1], OF(v32)=[0, 1], v33=[1], v34=[1]}
________________________________________
main: mov DWORD PTR [esp+0x10], 0x0
‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾
#1 08048422.00 | add t0:32, 16:32, esp:32 » Next(8048422.01)
t0 = [-4, +oo] pts: {v35*activeFrame(a1) (#v36)}
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
t0 = [-4, +oo] pts: {v35*activeFrame(a1) (#v36)}
@ 08048422.01: SEGMEM: Processor: {esp, t0, CF, BE, LT, LE, ZF, SF, OF}
Stack: parents: {00000000.00}; callsites: {00000000.00={00000000.00=frame_0(a12)}}; frames: {00000000.00={00000000.00}, 0804841f.00={0804841f.00}}
Data: Absolute: {[134512980:19]=_interp, [134513000:32]=_note_ABI_tag, [134513032:36]=_note_gnu_build_id, [134513068:32]=_gnu_hash, [134513100:64]=_dynsym, [134513164:69]=_dynstr, [134513234:8]=_gnu_version, [134513244:32]=_gnu_version_r, [134513276:8]=_rel_dyn, [134513284:16]=_rel_plt, [134513300:35]=_init, [134513344:48]=_plt, [134513392:468]=_text, [134513860:20]=_fini, [134513880:8]=_rodata, [134513888:68]=_eh_frame_hdr, [134513956:236]=_eh_frame, [134520584:4]=_init_array, [134520588:4]=_fini_array, [134520592:4]=_jcr, [134520596:232]=_dynamic, [134520828:4]=_got, [134520832:20]=_got_plt, [134520852:8]=_data, [134520860:4]=_bss}
UNDEF: {}
fPREDICATES: #0 {}
POINTSTO: #9 {esp(v4)={v33*activeFrame(a1) (#v34)}, SPdiff@0(v14)={v19*frame_0(a12) (#v17)}, t0(v23)={v35*activeFrame(a1) (#v36)}}
AFFINE: #13 {BP|SP(v2)=0, esp(v4)=-20, BP|SP@0(v13)=0, SPdiff@0(v14)=-4, [SP@0-4](v15)=134513695, v17=0, v19=0, f(804841f->0)(f22)=1, t0(v23)=-4, v33=1, v34=1, v35=1, v36=1}
CONGRUENCES: #22 {activeFrame(a1)*1, BP|SP(v2)=0, esp(v4)=-20, frame_0(a12)*1, BP|SP@0(v13)=0, SPdiff@0(v14)=-4, [SP@0-4](v15)=134513695, v17=0, v19=0, f(804841f->0)(f22)=1, t0(v23)=-4, CF(v26)*1, BE(v27)*1, LT(v28)*1, LE(v29)*1, ZF(v30)*1, SF(v31)*1, OF(v32)*1, v33=1, v34=1, v35=1, v36=1}
INTERVALS: #22 {activeFrame(a1)=[0, +oo], BP|SP(v2)=[0], esp(v4)=[-20], frame_0(a12)=[0, +oo], BP|SP@0(v13)=[0], SPdiff@0(v14)=[-4], [SP@0-4](v15)=[134513695], v17=[0], v19=[0], f(804841f->0)(f22)=[1], t0(v23)=[-4], CF(v26)=[0, 1], BE(v27)=[0, 1], LT(v28)=[0, 1], LE(v29)=[0, 1], ZF(v30)=[0, 1], SF(v31)=[0, 1], OF(v32)=[0, 1], v33=[1], v34=[1], v35=[1], v36=[1]}
#1 08048422.01 | store [t0:32], 0:32 » Next(804842a)
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
esp = [-20, +oo] pts: {v33*activeFrame(a1) (#v34)}
@ 0804842a.00: SEGMEM: Processor: {esp, t0, CF, BE, LT, LE, ZF, SF, OF}
Stack: parents: {00000000.00}; callsites: {00000000.00={00000000.00=frame_0(a12)}}; frames: {00000000.00={00000000.00}, 0804841f.00={0804841f.00}}
Data: Absolute: {[134512980:19]=_interp, [134513000:32]=_note_ABI_tag, [134513032:36]=_note_gnu_build_id, [134513068:32]=_gnu_hash, [134513100:64]=_dynsym, [134513164:69]=_dynstr, [134513234:8]=_gnu_version, [134513244:32]=_gnu_version_r, [134513276:8]=_rel_dyn, [134513284:16]=_rel_plt, [134513300:35]=_init, [134513344:48]=_plt, [134513392:468]=_text, [134513860:20]=_fini, [134513880:8]=_rodata, [134513888:68]=_eh_frame_hdr, [134513956:236]=_eh_frame, [134520584:4]=_init_array, [134520588:4]=_fini_array, [134520592:4]=_jcr, [134520596:232]=_dynamic, [134520828:4]=_got, [134520832:20]=_got_plt, [134520852:8]=_data, [134520860:4]=_bss}
UNDEF: {}
fPREDICATES: #0 {}
POINTSTO: #9 {esp(v4)={v33*activeFrame(a1) (#v34)}, SPdiff@0(v14)={v19*frame_0(a12) (#v17)}, t0(v23)={v35*activeFrame(a1) (#v36)}}
AFFINE: #14 {BP|SP(v2)=0, esp(v4)=-20, BP|SP@0(v13)=0, SPdiff@0(v14)=-4, [SP@0-4](v15)=134513695, v17=0, v19=0, f(804841f->0)(f22)=1, t0(v23)=-4, v33=1, v34=1, v35=1, v36=1, [SP-4](v37)=0}
CONGRUENCES: #23 {activeFrame(a1)*1, BP|SP(v2)=0, esp(v4)=-20, frame_0(a12)*1, BP|SP@0(v13)=0, SPdiff@0(v14)=-4, [SP@0-4](v15)=134513695, v17=0, v19=0, f(804841f->0)(f22)=1, t0(v23)=-4, CF(v26)*1, BE(v27)*1, LT(v28)*1, LE(v29)*1, ZF(v30)*1, SF(v31)*1, OF(v32)*1, v33=1, v34=1, v35=1, v36=1, [SP-4](v37)=0}
INTERVALS: #23 {activeFrame(a1)=[0, +oo], BP|SP(v2)=[0], esp(v4)=[-20], frame_0(a12)=[0, +oo], BP|SP@0(v13)=[0], SPdiff@0(v14)=[-4], [SP@0-4](v15)=[134513695], v17=[0], v19=[0], f(804841f->0)(f22)=[1], t0(v23)=[-4], CF(v26)=[0, 1], BE(v27)=[0, 1], LT(v28)=[0, 1], LE(v29)=[0, 1], ZF(v30)=[0, 1], SF(v31)=[0, 1], OF(v32)=[0, 1], v33=[1], v34=[1], v35=[1], v36=[1], [SP-4](v37)=[0]}
___________________________________
main: mov DWORD PTR [esp], 0x0
‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾
#1 0804842a.00 | store [esp:32], 0:32 » Next(8048431)
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
esp = [-20, +oo] pts: {v33*activeFrame(a1) (#v34)}
@ 08048431.00: SEGMEM: Processor: {esp, t0, CF, BE, LT, LE, ZF, SF, OF}
Stack: parents: {00000000.00}; callsites: {00000000.00={00000000.00=frame_0(a12)}}; frames: {00000000.00={00000000.00}, 0804841f.00={0804841f.00}}
Data: Absolute: {[134512980:19]=_interp, [134513000:32]=_note_ABI_tag, [134513032:36]=_note_gnu_build_id, [134513068:32]=_gnu_hash, [134513100:64]=_dynsym, [134513164:69]=_dynstr, [134513234:8]=_gnu_version, [134513244:32]=_gnu_version_r, [134513276:8]=_rel_dyn, [134513284:16]=_rel_plt, [134513300:35]=_init, [134513344:48]=_plt, [134513392:468]=_text, [134513860:20]=_fini, [134513880:8]=_rodata, [134513888:68]=_eh_frame_hdr, [134513956:236]=_eh_frame, [134520584:4]=_init_array, [134520588:4]=_fini_array, [134520592:4]=_jcr, [134520596:232]=_dynamic, [134520828:4]=_got, [134520832:20]=_got_plt, [134520852:8]=_data, [134520860:4]=_bss}
UNDEF: {}
fPREDICATES: #0 {}
POINTSTO: #9 {esp(v4)={v33*activeFrame(a1) (#v34)}, SPdiff@0(v14)={v19*frame_0(a12) (#v17)}, t0(v23)={v35*activeFrame(a1) (#v36)}}
AFFINE: #15 {BP|SP(v2)=0, esp(v4)=-20, BP|SP@0(v13)=0, SPdiff@0(v14)=-4, [SP@0-4](v15)=134513695, v17=0, v19=0, f(804841f->0)(f22)=1, t0(v23)=-4, v33=1, v34=1, v35=1, v36=1, [SP-4](v37)=0, [SP-20](v38)=0}
CONGRUENCES: #24 {activeFrame(a1)*1, BP|SP(v2)=0, esp(v4)=-20, frame_0(a12)*1, BP|SP@0(v13)=0, SPdiff@0(v14)=-4, [SP@0-4](v15)=134513695, v17=0, v19=0, f(804841f->0)(f22)=1, t0(v23)=-4, CF(v26)*1, BE(v27)*1, LT(v28)*1, LE(v29)*1, ZF(v30)*1, SF(v31)*1, OF(v32)*1, v33=1, v34=1, v35=1, v36=1, [SP-4](v37)=0, [SP-20](v38)=0}
INTERVALS: #24 {activeFrame(a1)=[0, +oo], BP|SP(v2)=[0], esp(v4)=[-20], frame_0(a12)=[0, +oo], BP|SP@0(v13)=[0], SPdiff@0(v14)=[-4], [SP@0-4](v15)=[134513695], v17=[0], v19=[0], f(804841f->0)(f22)=[1], t0(v23)=[-4], CF(v26)=[0, 1], BE(v27)=[0, 1], LT(v28)=[0, 1], LE(v29)=[0, 1], ZF(v30)=[0, 1], SF(v31)=[0, 1], OF(v32)=[0, 1], v33=[1], v34=[1], v35=[1], v36=[1], [SP-4](v37)=[0], [SP-20](v38)=[0]}
____________________________
main: call 0x80483f1 <a>
‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾
#1 08048431.00 | sub esp:32, esp:32, 4:32 » Next(8048431.01)
esp = [-24, +oo] pts: {v39*activeFrame(a1) (#v40)}
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
esp = [-24, +oo] pts: {v39*activeFrame(a1) (#v40)}
@ 08048431.01: SEGMEM: Processor: {esp, t0, CF, BE, LT, LE, ZF, SF, OF}
Stack: parents: {00000000.00}; callsites: {00000000.00={00000000.00=frame_0(a12)}}; frames: {00000000.00={00000000.00}, 0804841f.00={0804841f.00}}
Data: Absolute: {[134512980:19]=_interp, [134513000:32]=_note_ABI_tag, [134513032:36]=_note_gnu_build_id, [134513068:32]=_gnu_hash, [134513100:64]=_dynsym, [134513164:69]=_dynstr, [134513234:8]=_gnu_version, [134513244:32]=_gnu_version_r, [134513276:8]=_rel_dyn, [134513284:16]=_rel_plt, [134513300:35]=_init, [134513344:48]=_plt, [134513392:468]=_text, [134513860:20]=_fini, [134513880:8]=_rodata, [134513888:68]=_eh_frame_hdr, [134513956:236]=_eh_frame, [134520584:4]=_init_array, [134520588:4]=_fini_array, [134520592:4]=_jcr, [134520596:232]=_dynamic, [134520828:4]=_got, [134520832:20]=_got_plt, [134520852:8]=_data, [134520860:4]=_bss}
UNDEF: {}
fPREDICATES: #0 {}
POINTSTO: #9 {esp(v4)={v39*activeFrame(a1) (#v40)}, SPdiff@0(v14)={v19*frame_0(a12) (#v17)}, t0(v23)={v35*activeFrame(a1) (#v36)}}
AFFINE: #15 {BP|SP(v2)=0, esp(v4)=-24, BP|SP@0(v13)=0, SPdiff@0(v14)=-4, [SP@0-4](v15)=134513695, v17=0, v19=0, f(804841f->0)(f22)=1, t0(v23)=-4, v35=1, v36=1, [SP-4](v37)=0, [SP-20](v38)=0, v39=1, v40=1}
CONGRUENCES: #24 {activeFrame(a1)*1, BP|SP(v2)=0, esp(v4)=-24, frame_0(a12)*1, BP|SP@0(v13)=0, SPdiff@0(v14)=-4, [SP@0-4](v15)=134513695, v17=0, v19=0, f(804841f->0)(f22)=1, t0(v23)=-4, CF(v26)*1, BE(v27)*1, LT(v28)*1, LE(v29)*1, ZF(v30)*1, SF(v31)*1, OF(v32)*1, v35=1, v36=1, [SP-4](v37)=0, [SP-20](v38)=0, v39=1, v40=1}
INTERVALS: #24 {activeFrame(a1)=[0, +oo], BP|SP(v2)=[0], esp(v4)=[-24], frame_0(a12)=[0, +oo], BP|SP@0(v13)=[0], SPdiff@0(v14)=[-4], [SP@0-4](v15)=[134513695], v17=[0], v19=[0], f(804841f->0)(f22)=[1], t0(v23)=[-4], CF(v26)=[0, 1], BE(v27)=[0, 1], LT(v28)=[0, 1], LE(v29)=[0, 1], ZF(v30)=[0, 1], SF(v31)=[0, 1], OF(v32)=[0, 1], v35=[1], v36=[1], [SP-4](v37)=[0], [SP-20](v38)=[0], v39=[1], v40=[1]}
#1 08048431.01 | store [esp:32], 134513718:32 » Next(8048431.02)
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
@ 08048431.02: SEGMEM: Processor: {esp, t0, CF, BE, LT, LE, ZF, SF, OF}
Stack: parents: {00000000.00}; callsites: {00000000.00={00000000.00=frame_0(a12)}}; frames: {00000000.00={00000000.00}, 0804841f.00={0804841f.00}}
Data: Absolute: {[134512980:19]=_interp, [134513000:32]=_note_ABI_tag, [134513032:36]=_note_gnu_build_id, [134513068:32]=_gnu_hash, [134513100:64]=_dynsym, [134513164:69]=_dynstr, [134513234:8]=_gnu_version, [134513244:32]=_gnu_version_r, [134513276:8]=_rel_dyn, [134513284:16]=_rel_plt, [134513300:35]=_init, [134513344:48]=_plt, [134513392:468]=_text, [134513860:20]=_fini, [134513880:8]=_rodata, [134513888:68]=_eh_frame_hdr, [134513956:236]=_eh_frame, [134520584:4]=_init_array, [134520588:4]=_fini_array, [134520592:4]=_jcr, [134520596:232]=_dynamic, [134520828:4]=_got, [134520832:20]=_got_plt, [134520852:8]=_data, [134520860:4]=_bss}
UNDEF: {}
fPREDICATES: #0 {}
POINTSTO: #9 {esp(v4)={v39*activeFrame(a1) (#v40)}, SPdiff@0(v14)={v19*frame_0(a12) (#v17)}, t0(v23)={v35*activeFrame(a1) (#v36)}}
AFFINE: #16 {BP|SP(v2)=0, esp(v4)=-24, BP|SP@0(v13)=0, SPdiff@0(v14)=-4, [SP@0-4](v15)=134513695, v17=0, v19=0, f(804841f->0)(f22)=1, t0(v23)=-4, v35=1, v36=1, [SP-4](v37)=0, [SP-20](v38)=0, v39=1, v40=1, [SP-24](v41)=134513718}
CONGRUENCES: #25 {activeFrame(a1)*1, BP|SP(v2)=0, esp(v4)=-24, frame_0(a12)*1, BP|SP@0(v13)=0, SPdiff@0(v14)=-4, [SP@0-4](v15)=134513695, v17=0, v19=0, f(804841f->0)(f22)=1, t0(v23)=-4, CF(v26)*1, BE(v27)*1, LT(v28)*1, LE(v29)*1, ZF(v30)*1, SF(v31)*1, OF(v32)*1, v35=1, v36=1, [SP-4](v37)=0, [SP-20](v38)=0, v39=1, v40=1, [SP-24](v41)=134513718}
INTERVALS: #25 {activeFrame(a1)=[0, +oo], BP|SP(v2)=[0], esp(v4)=[-24], frame_0(a12)=[0, +oo], BP|SP@0(v13)=[0], SPdiff@0(v14)=[-4], [SP@0-4](v15)=[134513695], v17=[0], v19=[0], f(804841f->0)(f22)=[1], t0(v23)=[-4], CF(v26)=[0, 1], BE(v27)=[0, 1], LT(v28)=[0, 1], LE(v29)=[0, 1], ZF(v30)=[0, 1], SF(v31)=[0, 1], OF(v32)=[0, 1], v35=[1], v36=[1], [SP-4](v37)=[0], [SP-20](v38)=[0], v39=[1], v40=[1], [SP-24](v41)=[134513718]}
#1 08048431.02 | call 80483f1:32 <a> » Call(80483f1) <a>
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
esp = [0, +oo] pts: {v54*activeFrame(a1) (#v55)}
@ 080483f1.00: SEGMEM: Processor: {esp, t0, CF, BE, LT, LE, ZF, SF, OF}
Stack: parents: {08048431.02}; callsites: {00000000.00={00000000.00=frame_0(a12)}, 0804841f.00={08048431.02=frame_8048431.02(a42)}}; frames: {00000000.00={00000000.00}, 080483f1.00={080483f1.00}, 0804841f.00={0804841f.00, 08048431.02}}
Data: Absolute: {[134512980:19]=_interp, [134513000:32]=_note_ABI_tag, [134513032:36]=_note_gnu_build_id, [134513068:32]=_gnu_hash, [134513100:64]=_dynsym, [134513164:69]=_dynstr, [134513234:8]=_gnu_version, [134513244:32]=_gnu_version_r, [134513276:8]=_rel_dyn, [134513284:16]=_rel_plt, [134513300:35]=_init, [134513344:48]=_plt, [134513392:468]=_text, [134513860:20]=_fini, [134513880:8]=_rodata, [134513888:68]=_eh_frame_hdr, [134513956:236]=_eh_frame, [134520584:4]=_init_array, [134520588:4]=_fini_array, [134520592:4]=_jcr, [134520596:232]=_dynamic, [134520828:4]=_got, [134520832:20]=_got_plt, [134520852:8]=_data, [134520860:4]=_bss}
UNDEF: {}
fPREDICATES: #0 {}
POINTSTO: #12 {esp(v4)={v54*activeFrame(a1) (#v55)}, SPdiff@0(v14)={v19*frame_0(a12) (#v17)}, t0(v23)={v52*frame_8048431.02(a42) (#v36)}, SPdiff@8048431.02(v44)={v53*frame_8048431.02(a42) (#v50)}}
AFFINE: #21 {BP|SP(v2)=0, esp(v4)=0, BP|SP@0(v13)=0, SPdiff@0(v14)=-4, [SP@0-4](v15)=134513695, v17=0, v19=0, t0(v23)=-4, v36=1, BP|SP@8048431.02(v43)=0, SPdiff@8048431.02(v44)=-24, [SP@8048431.02-24](v45)=134513718, [SP@8048431.02-20](v46)=0, [SP@8048431.02-4](v47)=0, f(8048431.02->0)(f48)=1, v50=0, v52=1, v53=0, v54=1, v55=1, f(80483f1->8048431.02)(f56)=1}
CONGRUENCES: #31 {activeFrame(a1)*1, BP|SP(v2)=0, esp(v4)=0, frame_0(a12)*1, BP|SP@0(v13)=0, SPdiff@0(v14)=-4, [SP@0-4](v15)=134513695, v17=0, v19=0, t0(v23)=-4, CF(v26)*1, BE(v27)*1, LT(v28)*1, LE(v29)*1, ZF(v30)*1, SF(v31)*1, OF(v32)*1, v36=1, frame_8048431.02(a42)*1, BP|SP@8048431.02(v43)=0, SPdiff@8048431.02(v44)=-24, [SP@8048431.02-24](v45)=134513718, [SP@8048431.02-20](v46)=0, [SP@8048431.02-4](v47)=0, f(8048431.02->0)(f48)=1, v50=0, v52=1, v53=0, v54=1, v55=1, f(80483f1->8048431.02)(f56)=1}
INTERVALS: #31 {activeFrame(a1)=[0, +oo], BP|SP(v2)=[0], esp(v4)=[0], frame_0(a12)=[0, +oo], BP|SP@0(v13)=[0], SPdiff@0(v14)=[-4], [SP@0-4](v15)=[134513695], v17=[0], v19=[0], t0(v23)=[-4], CF(v26)=[0, 1], BE(v27)=[0, 1], LT(v28)=[0, 1], LE(v29)=[0, 1], ZF(v30)=[0, 1], SF(v31)=[0, 1], OF(v32)=[0, 1], v36=[1], frame_8048431.02(a42)=[0, +oo], BP|SP@8048431.02(v43)=[0], SPdiff@8048431.02(v44)=[-24], [SP@8048431.02-24](v45)=[134513718], [SP@8048431.02-20](v46)=[0], [SP@8048431.02-4](v47)=[0], f(8048431.02->0)(f48)=[1], v50=[0], v52=[1], v53=[0], v54=[1], v55=[1], f(80483f1->8048431.02)(f56)=[1]}
____________________
a: sub esp, 0x4
‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾
#1 080483f1.00 | sub t0:32, esp:32, 4:32 » Next(80483f1.01)
t0 = [-4, +oo] pts: {v57*activeFrame(a1) (#v58)}
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
esp = [0, +oo] pts: {v54*activeFrame(a1) (#v55)}
@ 080483f1.01: SEGMEM: Processor: {esp, t0, CF, BE, LT, LE, ZF, SF, OF}
Stack: parents: {08048431.02}; callsites: {00000000.00={00000000.00=frame_0(a12)}, 0804841f.00={08048431.02=frame_8048431.02(a42)}}; frames: {00000000.00={00000000.00}, 080483f1.00={080483f1.00}, 0804841f.00={0804841f.00, 08048431.02}}
Data: Absolute: {[134512980:19]=_interp, [134513000:32]=_note_ABI_tag, [134513032:36]=_note_gnu_build_id, [134513068:32]=_gnu_hash, [134513100:64]=_dynsym, [134513164:69]=_dynstr, [134513234:8]=_gnu_version, [134513244:32]=_gnu_version_r, [134513276:8]=_rel_dyn, [134513284:16]=_rel_plt, [134513300:35]=_init, [134513344:48]=_plt, [134513392:468]=_text, [134513860:20]=_fini, [134513880:8]=_rodata, [134513888:68]=_eh_frame_hdr, [134513956:236]=_eh_frame, [134520584:4]=_init_array, [134520588:4]=_fini_array, [134520592:4]=_jcr, [134520596:232]=_dynamic, [134520828:4]=_got, [134520832:20]=_got_plt, [134520852:8]=_data, [134520860:4]=_bss}
UNDEF: {}
fPREDICATES: #0 {}
POINTSTO: #12 {esp(v4)={v54*activeFrame(a1) (#v55)}, SPdiff@0(v14)={v19*frame_0(a12) (#v17)}, t0(v23)={v57*activeFrame(a1) (#v58)}, SPdiff@8048431.02(v44)={v53*frame_8048431.02(a42) (#v50)}}
AFFINE: #21 {BP|SP(v2)=0, esp(v4)=0, BP|SP@0(v13)=0, SPdiff@0(v14)=-4, [SP@0-4](v15)=134513695, v17=0, v19=0, t0(v23)=-4, BP|SP@8048431.02(v43)=0, SPdiff@8048431.02(v44)=-24, [SP@8048431.02-24](v45)=134513718, [SP@8048431.02-20](v46)=0, [SP@8048431.02-4](v47)=0, f(8048431.02->0)(f48)=1, v50=0, v53=0, v54=1, v55=1, f(80483f1->8048431.02)(f56)=1, v57=1, v58=1}
CONGRUENCES: #31 {activeFrame(a1)*1, BP|SP(v2)=0, esp(v4)=0, frame_0(a12)*1, BP|SP@0(v13)=0, SPdiff@0(v14)=-4, [SP@0-4](v15)=134513695, v17=0, v19=0, t0(v23)=-4, CF(v26)*1, BE(v27)*1, LT(v28)*1, LE(v29)*1, ZF(v30)*1, SF(v31)*1, OF(v32)*1, frame_8048431.02(a42)*1, BP|SP@8048431.02(v43)=0, SPdiff@8048431.02(v44)=-24, [SP@8048431.02-24](v45)=134513718, [SP@8048431.02-20](v46)=0, [SP@8048431.02-4](v47)=0, f(8048431.02->0)(f48)=1, v50=0, v53=0, v54=1, v55=1, f(80483f1->8048431.02)(f56)=1, v57=1, v58=1}
INTERVALS: #31 {activeFrame(a1)=[0, +oo], BP|SP(v2)=[0], esp(v4)=[0], frame_0(a12)=[0, +oo], BP|SP@0(v13)=[0], SPdiff@0(v14)=[-4], [SP@0-4](v15)=[134513695], v17=[0], v19=[0], t0(v23)=[-4], CF(v26)=[0, 1], BE(v27)=[0, 1], LT(v28)=[0, 1], LE(v29)=[0, 1], ZF(v30)=[0, 1], SF(v31)=[0, 1], OF(v32)=[0, 1], frame_8048431.02(a42)=[0, +oo], BP|SP@8048431.02(v43)=[0], SPdiff@8048431.02(v44)=[-24], [SP@8048431.02-24](v45)=[134513718], [SP@8048431.02-20](v46)=[0], [SP@8048431.02-4](v47)=[0], f(8048431.02->0)(f48)=[1], v50=[0], v53=[0], v54=[1], v55=[1], f(80483f1->8048431.02)(f56)=[1], v57=[1], v58=[1]}
#1 080483f1.01 | cmpltu CF:1, esp:32, 4:32 » Next(80483f1.02)
CF = [0, 1] pts: {}
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
esp = [0, +oo] pts: {v54*activeFrame(a1) (#v55)}
@ 080483f1.02: SEGMEM: Processor: {esp, t0, CF, BE, LT, LE, ZF, SF, OF}
Stack: parents: {08048431.02}; callsites: {00000000.00={00000000.00=frame_0(a12)}, 0804841f.00={08048431.02=frame_8048431.02(a42)}}; frames: {00000000.00={00000000.00}, 080483f1.00={080483f1.00}, 0804841f.00={0804841f.00, 08048431.02}}
Data: Absolute: {[134512980:19]=_interp, [134513000:32]=_note_ABI_tag, [134513032:36]=_note_gnu_build_id, [134513068:32]=_gnu_hash, [134513100:64]=_dynsym, [134513164:69]=_dynstr, [134513234:8]=_gnu_version, [134513244:32]=_gnu_version_r, [134513276:8]=_rel_dyn, [134513284:16]=_rel_plt, [134513300:35]=_init, [134513344:48]=_plt, [134513392:468]=_text, [134513860:20]=_fini, [134513880:8]=_rodata, [134513888:68]=_eh_frame_hdr, [134513956:236]=_eh_frame, [134520584:4]=_init_array, [134520588:4]=_fini_array, [134520592:4]=_jcr, [134520596:232]=_dynamic, [134520828:4]=_got, [134520832:20]=_got_plt, [134520852:8]=_data, [134520860:4]=_bss}
UNDEF: {}
fPREDICATES: #2 {CF(v26)→{esp(v4)<u4} ¬CF(v26)→{4≤uesp(v4)}}
POINTSTO: #12 {esp(v4)={v54*activeFrame(a1) (#v55)}, SPdiff@0(v14)={v19*frame_0(a12) (#v17)}, t0(v23)={v57*activeFrame(a1) (#v58)}, SPdiff@8048431.02(v44)={v53*frame_8048431.02(a42) (#v50)}}
AFFINE: #21 {BP|SP(v2)=0, esp(v4)=0, BP|SP@0(v13)=0, SPdiff@0(v14)=-4, [SP@0-4](v15)=134513695, v17=0, v19=0, t0(v23)=-4, BP|SP@8048431.02(v43)=0, SPdiff@8048431.02(v44)=-24, [SP@8048431.02-24](v45)=134513718, [SP@8048431.02-20](v46)=0, [SP@8048431.02-4](v47)=0, f(8048431.02->0)(f48)=1, v50=0, v53=0, v54=1, v55=1, f(80483f1->8048431.02)(f56)=1, v57=1, v58=1}
CONGRUENCES: #31 {activeFrame(a1)*1, BP|SP(v2)=0, esp(v4)=0, frame_0(a12)*1, BP|SP@0(v13)=0, SPdiff@0(v14)=-4, [SP@0-4](v15)=134513695, v17=0, v19=0, t0(v23)=-4, CF(v26)*1, BE(v27)*1, LT(v28)*1, LE(v29)*1, ZF(v30)*1, SF(v31)*1, OF(v32)*1, frame_8048431.02(a42)*1, BP|SP@8048431.02(v43)=0, SPdiff@8048431.02(v44)=-24, [SP@8048431.02-24](v45)=134513718, [SP@8048431.02-20](v46)=0, [SP@8048431.02-4](v47)=0, f(8048431.02->0)(f48)=1, v50=0, v53=0, v54=1, v55=1, f(80483f1->8048431.02)(f56)=1, v57=1, v58=1}
INTERVALS: #31 {activeFrame(a1)=[0, +oo], BP|SP(v2)=[0], esp(v4)=[0], frame_0(a12)=[0, +oo], BP|SP@0(v13)=[0], SPdiff@0(v14)=[-4], [SP@0-4](v15)=[134513695], v17=[0], v19=[0], t0(v23)=[-4], CF(v26)=[0, 1], BE(v27)=[0, 1], LT(v28)=[0, 1], LE(v29)=[0, 1], ZF(v30)=[0, 1], SF(v31)=[0, 1], OF(v32)=[0, 1], frame_8048431.02(a42)=[0, +oo], BP|SP@8048431.02(v43)=[0], SPdiff@8048431.02(v44)=[-24], [SP@8048431.02-24](v45)=[134513718], [SP@8048431.02-20](v46)=[0], [SP@8048431.02-4](v47)=[0], f(8048431.02->0)(f48)=[1], v50=[0], v53=[0], v54=[1], v55=[1], f(80483f1->8048431.02)(f56)=[1], v57=[1], v58=[1]}
#1 080483f1.02 | cmpleu BE:1, esp:32, 4:32 » Next(80483f1.03)
BE = [0, 1] pts: {}
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
esp = [0, +oo] pts: {v54*activeFrame(a1) (#v55)}
@ 080483f1.03: SEGMEM: Processor: {esp, t0, CF, BE, LT, LE, ZF, SF, OF}
Stack: parents: {08048431.02}; callsites: {00000000.00={00000000.00=frame_0(a12)}, 0804841f.00={08048431.02=frame_8048431.02(a42)}}; frames: {00000000.00={00000000.00}, 080483f1.00={080483f1.00}, 0804841f.00={0804841f.00, 08048431.02}}
Data: Absolute: {[134512980:19]=_interp, [134513000:32]=_note_ABI_tag, [134513032:36]=_note_gnu_build_id, [134513068:32]=_gnu_hash, [134513100:64]=_dynsym, [134513164:69]=_dynstr, [134513234:8]=_gnu_version, [134513244:32]=_gnu_version_r, [134513276:8]=_rel_dyn, [134513284:16]=_rel_plt, [134513300:35]=_init, [134513344:48]=_plt, [134513392:468]=_text, [134513860:20]=_fini, [134513880:8]=_rodata, [134513888:68]=_eh_frame_hdr, [134513956:236]=_eh_frame, [134520584:4]=_init_array, [134520588:4]=_fini_array, [134520592:4]=_jcr, [134520596:232]=_dynamic, [134520828:4]=_got, [134520832:20]=_got_plt, [134520852:8]=_data, [134520860:4]=_bss}
UNDEF: {}
fPREDICATES: #4 {CF(v26)→{esp(v4)<u4} ¬CF(v26)→{4≤uesp(v4)}, BE(v27)→{esp(v4)≤u4} ¬BE(v27)→{4<uesp(v4)}}
POINTSTO: #12 {esp(v4)={v54*activeFrame(a1) (#v55)}, SPdiff@0(v14)={v19*frame_0(a12) (#v17)}, t0(v23)={v57*activeFrame(a1) (#v58)}, SPdiff@8048431.02(v44)={v53*frame_8048431.02(a42) (#v50)}}
AFFINE: #21 {BP|SP(v2)=0, esp(v4)=0, BP|SP@0(v13)=0, SPdiff@0(v14)=-4, [SP@0-4](v15)=134513695, v17=0, v19=0, t0(v23)=-4, BP|SP@8048431.02(v43)=0, SPdiff@8048431.02(v44)=-24, [SP@8048431.02-24](v45)=134513718, [SP@8048431.02-20](v46)=0, [SP@8048431.02-4](v47)=0, f(8048431.02->0)(f48)=1, v50=0, v53=0, v54=1, v55=1, f(80483f1->8048431.02)(f56)=1, v57=1, v58=1}
CONGRUENCES: #31 {activeFrame(a1)*1, BP|SP(v2)=0, esp(v4)=0, frame_0(a12)*1, BP|SP@0(v13)=0, SPdiff@0(v14)=-4, [SP@0-4](v15)=134513695, v17=0, v19=0, t0(v23)=-4, CF(v26)*1, BE(v27)*1, LT(v28)*1, LE(v29)*1, ZF(v30)*1, SF(v31)*1, OF(v32)*1, frame_8048431.02(a42)*1, BP|SP@8048431.02(v43)=0, SPdiff@8048431.02(v44)=-24, [SP@8048431.02-24](v45)=134513718, [SP@8048431.02-20](v46)=0, [SP@8048431.02-4](v47)=0, f(8048431.02->0)(f48)=1, v50=0, v53=0, v54=1, v55=1, f(80483f1->8048431.02)(f56)=1, v57=1, v58=1}
INTERVALS: #31 {activeFrame(a1)=[0, +oo], BP|SP(v2)=[0], esp(v4)=[0], frame_0(a12)=[0, +oo], BP|SP@0(v13)=[0], SPdiff@0(v14)=[-4], [SP@0-4](v15)=[134513695], v17=[0], v19=[0], t0(v23)=[-4], CF(v26)=[0, 1], BE(v27)=[0, 1], LT(v28)=[0, 1], LE(v29)=[0, 1], ZF(v30)=[0, 1], SF(v31)=[0, 1], OF(v32)=[0, 1], frame_8048431.02(a42)=[0, +oo], BP|SP@8048431.02(v43)=[0], SPdiff@8048431.02(v44)=[-24], [SP@8048431.02-24](v45)=[134513718], [SP@8048431.02-20](v46)=[0], [SP@8048431.02-4](v47)=[0], f(8048431.02->0)(f48)=[1], v50=[0], v53=[0], v54=[1], v55=[1], f(80483f1->8048431.02)(f56)=[1], v57=[1], v58=[1]}
#1 080483f1.03 | cmplts LT:1, esp:32, 4:32 » Next(80483f1.04)
LT = [0, 1] pts: {}
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
esp = [0, +oo] pts: {v54*activeFrame(a1) (#v55)}
@ 080483f1.04: SEGMEM: Processor: {esp, t0, CF, BE, LT, LE, ZF, SF, OF}
Stack: parents: {08048431.02}; callsites: {00000000.00={00000000.00=frame_0(a12)}, 0804841f.00={08048431.02=frame_8048431.02(a42)}}; frames: {00000000.00={00000000.00}, 080483f1.00={080483f1.00}, 0804841f.00={0804841f.00, 08048431.02}}
Data: Absolute: {[134512980:19]=_interp, [134513000:32]=_note_ABI_tag, [134513032:36]=_note_gnu_build_id, [134513068:32]=_gnu_hash, [134513100:64]=_dynsym, [134513164:69]=_dynstr, [134513234:8]=_gnu_version, [134513244:32]=_gnu_version_r, [134513276:8]=_rel_dyn, [134513284:16]=_rel_plt, [134513300:35]=_init, [134513344:48]=_plt, [134513392:468]=_text, [134513860:20]=_fini, [134513880:8]=_rodata, [134513888:68]=_eh_frame_hdr, [134513956:236]=_eh_frame, [134520584:4]=_init_array, [134520588:4]=_fini_array, [134520592:4]=_jcr, [134520596:232]=_dynamic, [134520828:4]=_got, [134520832:20]=_got_plt, [134520852:8]=_data, [134520860:4]=_bss}
UNDEF: {}
fPREDICATES: #6 {CF(v26)→{esp(v4)<u4} ¬CF(v26)→{4≤uesp(v4)}, BE(v27)→{esp(v4)≤u4} ¬BE(v27)→{4<uesp(v4)}, LT(v28)→{esp(v4)<s4} ¬LT(v28)→{4≤sesp(v4)}}
POINTSTO: #12 {esp(v4)={v54*activeFrame(a1) (#v55)}, SPdiff@0(v14)={v19*frame_0(a12) (#v17)}, t0(v23)={v57*activeFrame(a1) (#v58)}, SPdiff@8048431.02(v44)={v53*frame_8048431.02(a42) (#v50)}}
AFFINE: #21 {BP|SP(v2)=0, esp(v4)=0, BP|SP@0(v13)=0, SPdiff@0(v14)=-4, [SP@0-4](v15)=134513695, v17=0, v19=0, t0(v23)=-4, BP|SP@8048431.02(v43)=0, SPdiff@8048431.02(v44)=-24, [SP@8048431.02-24](v45)=134513718, [SP@8048431.02-20](v46)=0, [SP@8048431.02-4](v47)=0, f(8048431.02->0)(f48)=1, v50=0, v53=0, v54=1, v55=1, f(80483f1->8048431.02)(f56)=1, v57=1, v58=1}
CONGRUENCES: #31 {activeFrame(a1)*1, BP|SP(v2)=0, esp(v4)=0, frame_0(a12)*1, BP|SP@0(v13)=0, SPdiff@0(v14)=-4, [SP@0-4](v15)=134513695, v17=0, v19=0, t0(v23)=-4, CF(v26)*1, BE(v27)*1, LT(v28)*1, LE(v29)*1, ZF(v30)*1, SF(v31)*1, OF(v32)*1, frame_8048431.02(a42)*1, BP|SP@8048431.02(v43)=0, SPdiff@8048431.02(v44)=-24, [SP@8048431.02-24](v45)=134513718, [SP@8048431.02-20](v46)=0, [SP@8048431.02-4](v47)=0, f(8048431.02->0)(f48)=1, v50=0, v53=0, v54=1, v55=1, f(80483f1->8048431.02)(f56)=1, v57=1, v58=1}
INTERVALS: #31 {activeFrame(a1)=[0, +oo], BP|SP(v2)=[0], esp(v4)=[0], frame_0(a12)=[0, +oo], BP|SP@0(v13)=[0], SPdiff@0(v14)=[-4], [SP@0-4](v15)=[134513695], v17=[0], v19=[0], t0(v23)=[-4], CF(v26)=[0, 1], BE(v27)=[0, 1], LT(v28)=[0, 1], LE(v29)=[0, 1], ZF(v30)=[0, 1], SF(v31)=[0, 1], OF(v32)=[0, 1], frame_8048431.02(a42)=[0, +oo], BP|SP@8048431.02(v43)=[0], SPdiff@8048431.02(v44)=[-24], [SP@8048431.02-24](v45)=[134513718], [SP@8048431.02-20](v46)=[0], [SP@8048431.02-4](v47)=[0], f(8048431.02->0)(f48)=[1], v50=[0], v53=[0], v54=[1], v55=[1], f(80483f1->8048431.02)(f56)=[1], v57=[1], v58=[1]}
#1 080483f1.04 | cmples LE:1, esp:32, 4:32 » Next(80483f1.05)
LE = [0, 1] pts: {}
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
esp = [0, +oo] pts: {v54*activeFrame(a1) (#v55)}
@ 080483f1.05: SEGMEM: Processor: {esp, t0, CF, BE, LT, LE, ZF, SF, OF}
Stack: parents: {08048431.02}; callsites: {00000000.00={00000000.00=frame_0(a12)}, 0804841f.00={08048431.02=frame_8048431.02(a42)}}; frames: {00000000.00={00000000.00}, 080483f1.00={080483f1.00}, 0804841f.00={0804841f.00, 08048431.02}}
Data: Absolute: {[134512980:19]=_interp, [134513000:32]=_note_ABI_tag, [134513032:36]=_note_gnu_build_id, [134513068:32]=_gnu_hash, [134513100:64]=_dynsym, [134513164:69]=_dynstr, [134513234:8]=_gnu_version, [134513244:32]=_gnu_version_r, [134513276:8]=_rel_dyn, [134513284:16]=_rel_plt, [134513300:35]=_init, [134513344:48]=_plt, [134513392:468]=_text, [134513860:20]=_fini, [134513880:8]=_rodata, [134513888:68]=_eh_frame_hdr, [134513956:236]=_eh_frame, [134520584:4]=_init_array, [134520588:4]=_fini_array, [134520592:4]=_jcr, [134520596:232]=_dynamic, [134520828:4]=_got, [134520832:20]=_got_plt, [134520852:8]=_data, [134520860:4]=_bss}
UNDEF: {}
fPREDICATES: #8 {CF(v26)→{esp(v4)<u4} ¬CF(v26)→{4≤uesp(v4)}, BE(v27)→{esp(v4)≤u4} ¬BE(v27)→{4<uesp(v4)}, LT(v28)→{esp(v4)<s4} ¬LT(v28)→{4≤sesp(v4)}, LE(v29)→{esp(v4)≤s4} ¬LE(v29)→{4<sesp(v4)}}
POINTSTO: #12 {esp(v4)={v54*activeFrame(a1) (#v55)}, SPdiff@0(v14)={v19*frame_0(a12) (#v17)}, t0(v23)={v57*activeFrame(a1) (#v58)}, SPdiff@8048431.02(v44)={v53*frame_8048431.02(a42) (#v50)}}
AFFINE: #21 {BP|SP(v2)=0, esp(v4)=0, BP|SP@0(v13)=0, SPdiff@0(v14)=-4, [SP@0-4](v15)=134513695, v17=0, v19=0, t0(v23)=-4, BP|SP@8048431.02(v43)=0, SPdiff@8048431.02(v44)=-24, [SP@8048431.02-24](v45)=134513718, [SP@8048431.02-20](v46)=0, [SP@8048431.02-4](v47)=0, f(8048431.02->0)(f48)=1, v50=0, v53=0, v54=1, v55=1, f(80483f1->8048431.02)(f56)=1, v57=1, v58=1}
CONGRUENCES: #31 {activeFrame(a1)*1, BP|SP(v2)=0, esp(v4)=0, frame_0(a12)*1, BP|SP@0(v13)=0, SPdiff@0(v14)=-4, [SP@0-4](v15)=134513695, v17=0, v19=0, t0(v23)=-4, CF(v26)*1, BE(v27)*1, LT(v28)*1, LE(v29)*1, ZF(v30)*1, SF(v31)*1, OF(v32)*1, frame_8048431.02(a42)*1, BP|SP@8048431.02(v43)=0, SPdiff@8048431.02(v44)=-24, [SP@8048431.02-24](v45)=134513718, [SP@8048431.02-20](v46)=0, [SP@8048431.02-4](v47)=0, f(8048431.02->0)(f48)=1, v50=0, v53=0, v54=1, v55=1, f(80483f1->8048431.02)(f56)=1, v57=1, v58=1}
INTERVALS: #31 {activeFrame(a1)=[0, +oo], BP|SP(v2)=[0], esp(v4)=[0], frame_0(a12)=[0, +oo], BP|SP@0(v13)=[0], SPdiff@0(v14)=[-4], [SP@0-4](v15)=[134513695], v17=[0], v19=[0], t0(v23)=[-4], CF(v26)=[0, 1], BE(v27)=[0, 1], LT(v28)=[0, 1], LE(v29)=[0, 1], ZF(v30)=[0, 1], SF(v31)=[0, 1], OF(v32)=[0, 1], frame_8048431.02(a42)=[0, +oo], BP|SP@8048431.02(v43)=[0], SPdiff@8048431.02(v44)=[-24], [SP@8048431.02-24](v45)=[134513718], [SP@8048431.02-20](v46)=[0], [SP@8048431.02-4](v47)=[0], f(8048431.02->0)(f48)=[1], v50=[0], v53=[0], v54=[1], v55=[1], f(80483f1->8048431.02)(f56)=[1], v57=[1], v58=[1]}
#1 080483f1.05 | cmpeq ZF:1, esp:32, 4:32 » Next(80483f1.06)
ZF = [0, 1] pts: {}
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
t0 = [-4, +oo] pts: {v57*activeFrame(a1) (#v58)}
@ 080483f1.06: SEGMEM: Processor: {esp, t0, CF, BE, LT, LE, ZF, SF, OF}
Stack: parents: {08048431.02}; callsites: {00000000.00={00000000.00=frame_0(a12)}, 0804841f.00={08048431.02=frame_8048431.02(a42)}}; frames: {00000000.00={00000000.00}, 080483f1.00={080483f1.00}, 0804841f.00={0804841f.00, 08048431.02}}
Data: Absolute: {[134512980:19]=_interp, [134513000:32]=_note_ABI_tag, [134513032:36]=_note_gnu_build_id, [134513068:32]=_gnu_hash, [134513100:64]=_dynsym, [134513164:69]=_dynstr, [134513234:8]=_gnu_version, [134513244:32]=_gnu_version_r, [134513276:8]=_rel_dyn, [134513284:16]=_rel_plt, [134513300:35]=_init, [134513344:48]=_plt, [134513392:468]=_text, [134513860:20]=_fini, [134513880:8]=_rodata, [134513888:68]=_eh_frame_hdr, [134513956:236]=_eh_frame, [134520584:4]=_init_array, [134520588:4]=_fini_array, [134520592:4]=_jcr, [134520596:232]=_dynamic, [134520828:4]=_got, [134520832:20]=_got_plt, [134520852:8]=_data, [134520860:4]=_bss}
UNDEF: {}
fPREDICATES: #10 {CF(v26)→{esp(v4)<u4} ¬CF(v26)→{4≤uesp(v4)}, BE(v27)→{esp(v4)≤u4} ¬BE(v27)→{4<uesp(v4)}, LT(v28)→{esp(v4)<s4} ¬LT(v28)→{4≤sesp(v4)}, LE(v29)→{esp(v4)≤s4} ¬LE(v29)→{4<sesp(v4)}, ZF(v30)→{esp(v4)=4} ¬ZF(v30)→{esp(v4)≠4}}
POINTSTO: #12 {esp(v4)={v54*activeFrame(a1) (#v55)}, SPdiff@0(v14)={v19*frame_0(a12) (#v17)}, t0(v23)={v57*activeFrame(a1) (#v58)}, SPdiff@8048431.02(v44)={v53*frame_8048431.02(a42) (#v50)}}
AFFINE: #21 {BP|SP(v2)=0, esp(v4)=0, BP|SP@0(v13)=0, SPdiff@0(v14)=-4, [SP@0-4](v15)=134513695, v17=0, v19=0, t0(v23)=-4, BP|SP@8048431.02(v43)=0, SPdiff@8048431.02(v44)=-24, [SP@8048431.02-24](v45)=134513718, [SP@8048431.02-20](v46)=0, [SP@8048431.02-4](v47)=0, f(8048431.02->0)(f48)=1, v50=0, v53=0, v54=1, v55=1, f(80483f1->8048431.02)(f56)=1, v57=1, v58=1}
CONGRUENCES: #31 {activeFrame(a1)*1, BP|SP(v2)=0, esp(v4)=0, frame_0(a12)*1, BP|SP@0(v13)=0, SPdiff@0(v14)=-4, [SP@0-4](v15)=134513695, v17=0, v19=0, t0(v23)=-4, CF(v26)*1, BE(v27)*1, LT(v28)*1, LE(v29)*1, ZF(v30)*1, SF(v31)*1, OF(v32)*1, frame_8048431.02(a42)*1, BP|SP@8048431.02(v43)=0, SPdiff@8048431.02(v44)=-24, [SP@8048431.02-24](v45)=134513718, [SP@8048431.02-20](v46)=0, [SP@8048431.02-4](v47)=0, f(8048431.02->0)(f48)=1, v50=0, v53=0, v54=1, v55=1, f(80483f1->8048431.02)(f56)=1, v57=1, v58=1}
INTERVALS: #31 {activeFrame(a1)=[0, +oo], BP|SP(v2)=[0], esp(v4)=[0], frame_0(a12)=[0, +oo], BP|SP@0(v13)=[0], SPdiff@0(v14)=[-4], [SP@0-4](v15)=[134513695], v17=[0], v19=[0], t0(v23)=[-4], CF(v26)=[0, 1], BE(v27)=[0, 1], LT(v28)=[0, 1], LE(v29)=[0, 1], ZF(v30)=[0, 1], SF(v31)=[0, 1], OF(v32)=[0, 1], frame_8048431.02(a42)=[0, +oo], BP|SP@8048431.02(v43)=[0], SPdiff@8048431.02(v44)=[-24], [SP@8048431.02-24](v45)=[134513718], [SP@8048431.02-20](v46)=[0], [SP@8048431.02-4](v47)=[0], f(8048431.02->0)(f48)=[1], v50=[0], v53=[0], v54=[1], v55=[1], f(80483f1->8048431.02)(f56)=[1], v57=[1], v58=[1]}
#1 080483f1.06 | cmplts SF:1, t0:32, 0:32 » Next(80483f1.07)
SF = [0, 1] pts: {}
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
LT = [0, 1] pts: {} SF = [0, 1] pts: {}
@ 080483f1.07: SEGMEM: Processor: {esp, t0, CF, BE, LT, LE, ZF, SF, OF}
Stack: parents: {08048431.02}; callsites: {00000000.00={00000000.00=frame_0(a12)}, 0804841f.00={08048431.02=frame_8048431.02(a42)}}; frames: {00000000.00={00000000.00}, 080483f1.00={080483f1.00}, 0804841f.00={0804841f.00, 08048431.02}}
Data: Absolute: {[134512980:19]=_interp, [134513000:32]=_note_ABI_tag, [134513032:36]=_note_gnu_build_id, [134513068:32]=_gnu_hash, [134513100:64]=_dynsym, [134513164:69]=_dynstr, [134513234:8]=_gnu_version, [134513244:32]=_gnu_version_r, [134513276:8]=_rel_dyn, [134513284:16]=_rel_plt, [134513300:35]=_init, [134513344:48]=_plt, [134513392:468]=_text, [134513860:20]=_fini, [134513880:8]=_rodata, [134513888:68]=_eh_frame_hdr, [134513956:236]=_eh_frame, [134520584:4]=_init_array, [134520588:4]=_fini_array, [134520592:4]=_jcr, [134520596:232]=_dynamic, [134520828:4]=_got, [134520832:20]=_got_plt, [134520852:8]=_data, [134520860:4]=_bss}
UNDEF: {}
fPREDICATES: #12 {CF(v26)→{esp(v4)<u4} ¬CF(v26)→{4≤uesp(v4)}, BE(v27)→{esp(v4)≤u4} ¬BE(v27)→{4<uesp(v4)}, LT(v28)→{esp(v4)<s4} ¬LT(v28)→{4≤sesp(v4)}, LE(v29)→{esp(v4)≤s4} ¬LE(v29)→{4<sesp(v4)}, ZF(v30)→{esp(v4)=4} ¬ZF(v30)→{esp(v4)≠4}, SF(v31)→{t0(v23)<s0} ¬SF(v31)→{0≤st0(v23)}}
POINTSTO: #12 {esp(v4)={v54*activeFrame(a1) (#v55)}, SPdiff@0(v14)={v19*frame_0(a12) (#v17)}, t0(v23)={v57*activeFrame(a1) (#v58)}, SPdiff@8048431.02(v44)={v53*frame_8048431.02(a42) (#v50)}}
AFFINE: #21 {BP|SP(v2)=0, esp(v4)=0, BP|SP@0(v13)=0, SPdiff@0(v14)=-4, [SP@0-4](v15)=134513695, v17=0, v19=0, t0(v23)=-4, BP|SP@8048431.02(v43)=0, SPdiff@8048431.02(v44)=-24, [SP@8048431.02-24](v45)=134513718, [SP@8048431.02-20](v46)=0, [SP@8048431.02-4](v47)=0, f(8048431.02->0)(f48)=1, v50=0, v53=0, v54=1, v55=1, f(80483f1->8048431.02)(f56)=1, v57=1, v58=1}
CONGRUENCES: #31 {activeFrame(a1)*1, BP|SP(v2)=0, esp(v4)=0, frame_0(a12)*1, BP|SP@0(v13)=0, SPdiff@0(v14)=-4, [SP@0-4](v15)=134513695, v17=0, v19=0, t0(v23)=-4, CF(v26)*1, BE(v27)*1, LT(v28)*1, LE(v29)*1, ZF(v30)*1, SF(v31)*1, OF(v32)*1, frame_8048431.02(a42)*1, BP|SP@8048431.02(v43)=0, SPdiff@8048431.02(v44)=-24, [SP@8048431.02-24](v45)=134513718, [SP@8048431.02-20](v46)=0, [SP@8048431.02-4](v47)=0, f(8048431.02->0)(f48)=1, v50=0, v53=0, v54=1, v55=1, f(80483f1->8048431.02)(f56)=1, v57=1, v58=1}
INTERVALS: #31 {activeFrame(a1)=[0, +oo], BP|SP(v2)=[0], esp(v4)=[0], frame_0(a12)=[0, +oo], BP|SP@0(v13)=[0], SPdiff@0(v14)=[-4], [SP@0-4](v15)=[134513695], v17=[0], v19=[0], t0(v23)=[-4], CF(v26)=[0, 1], BE(v27)=[0, 1], LT(v28)=[0, 1], LE(v29)=[0, 1], ZF(v30)=[0, 1], SF(v31)=[0, 1], OF(v32)=[0, 1], frame_8048431.02(a42)=[0, +oo], BP|SP@8048431.02(v43)=[0], SPdiff@8048431.02(v44)=[-24], [SP@8048431.02-24](v45)=[134513718], [SP@8048431.02-20](v46)=[0], [SP@8048431.02-4](v47)=[0], f(8048431.02->0)(f48)=[1], v50=[0], v53=[0], v54=[1], v55=[1], f(80483f1->8048431.02)(f56)=[1], v57=[1], v58=[1]}
#1 080483f1.07 | xor OF:1, LT:1, SF:1 » Next(80483f1.08)
OF = [0, 1] pts: {}
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
t0 = [-4, +oo] pts: {v57*activeFrame(a1) (#v58)}
@ 080483f1.08: SEGMEM: Processor: {esp, t0, CF, BE, LT, LE, ZF, SF, OF}
Stack: parents: {08048431.02}; callsites: {00000000.00={00000000.00=frame_0(a12)}, 0804841f.00={08048431.02=frame_8048431.02(a42)}}; frames: {00000000.00={00000000.00}, 080483f1.00={080483f1.00}, 0804841f.00={0804841f.00, 08048431.02}}
Data: Absolute: {[134512980:19]=_interp, [134513000:32]=_note_ABI_tag, [134513032:36]=_note_gnu_build_id, [134513068:32]=_gnu_hash, [134513100:64]=_dynsym, [134513164:69]=_dynstr, [134513234:8]=_gnu_version, [134513244:32]=_gnu_version_r, [134513276:8]=_rel_dyn, [134513284:16]=_rel_plt, [134513300:35]=_init, [134513344:48]=_plt, [134513392:468]=_text, [134513860:20]=_fini, [134513880:8]=_rodata, [134513888:68]=_eh_frame_hdr, [134513956:236]=_eh_frame, [134520584:4]=_init_array, [134520588:4]=_fini_array, [134520592:4]=_jcr, [134520596:232]=_dynamic, [134520828:4]=_got, [134520832:20]=_got_plt, [134520852:8]=_data, [134520860:4]=_bss}
UNDEF: {}
fPREDICATES: #12 {CF(v26)→{esp(v4)<u4} ¬CF(v26)→{4≤uesp(v4)}, BE(v27)→{esp(v4)≤u4} ¬BE(v27)→{4<uesp(v4)}, LT(v28)→{esp(v4)<s4} ¬LT(v28)→{4≤sesp(v4)}, LE(v29)→{esp(v4)≤s4} ¬LE(v29)→{4<sesp(v4)}, ZF(v30)→{esp(v4)=4} ¬ZF(v30)→{esp(v4)≠4}, SF(v31)→{t0(v23)<s0} ¬SF(v31)→{0≤st0(v23)}}
POINTSTO: #12 {esp(v4)={v54*activeFrame(a1) (#v55)}, SPdiff@0(v14)={v19*frame_0(a12) (#v17)}, t0(v23)={v57*activeFrame(a1) (#v58)}, SPdiff@8048431.02(v44)={v53*frame_8048431.02(a42) (#v50)}}
AFFINE: #21 {BP|SP(v2)=0, esp(v4)=0, BP|SP@0(v13)=0, SPdiff@0(v14)=-4, [SP@0-4](v15)=134513695, v17=0, v19=0, t0(v23)=-4, BP|SP@8048431.02(v43)=0, SPdiff@8048431.02(v44)=-24, [SP@8048431.02-24](v45)=134513718, [SP@8048431.02-20](v46)=0, [SP@8048431.02-4](v47)=0, f(8048431.02->0)(f48)=1, v50=0, v53=0, v54=1, v55=1, f(80483f1->8048431.02)(f56)=1, v57=1, v58=1}
CONGRUENCES: #31 {activeFrame(a1)*1, BP|SP(v2)=0, esp(v4)=0, frame_0(a12)*1, BP|SP@0(v13)=0, SPdiff@0(v14)=-4, [SP@0-4](v15)=134513695, v17=0, v19=0, t0(v23)=-4, CF(v26)*1, BE(v27)*1, LT(v28)*1, LE(v29)*1, ZF(v30)*1, SF(v31)*1, OF(v32)*1, frame_8048431.02(a42)*1, BP|SP@8048431.02(v43)=0, SPdiff@8048431.02(v44)=-24, [SP@8048431.02-24](v45)=134513718, [SP@8048431.02-20](v46)=0, [SP@8048431.02-4](v47)=0, f(8048431.02->0)(f48)=1, v50=0, v53=0, v54=1, v55=1, f(80483f1->8048431.02)(f56)=1, v57=1, v58=1}
INTERVALS: #31 {activeFrame(a1)=[0, +oo], BP|SP(v2)=[0], esp(v4)=[0], frame_0(a12)=[0, +oo], BP|SP@0(v13)=[0], SPdiff@0(v14)=[-4], [SP@0-4](v15)=[134513695], v17=[0], v19=[0], t0(v23)=[-4], CF(v26)=[0, 1], BE(v27)=[0, 1], LT(v28)=[0, 1], LE(v29)=[0, 1], ZF(v30)=[0, 1], SF(v31)=[0, 1], OF(v32)=[0, 1], frame_8048431.02(a42)=[0, +oo], BP|SP@8048431.02(v43)=[0], SPdiff@8048431.02(v44)=[-24], [SP@8048431.02-24](v45)=[134513718], [SP@8048431.02-20](v46)=[0], [SP@8048431.02-4](v47)=[0], f(8048431.02->0)(f48)=[1], v50=[0], v53=[0], v54=[1], v55=[1], f(80483f1->8048431.02)(f56)=[1], v57=[1], v58=[1]}
#1 080483f1.08 | mov esp:32, t0:32 » Next(80483f4)
esp = [-4, +oo] pts: {v59*activeFrame(a1) (#v60)}
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
esp = [-4, +oo] pts: {v59*activeFrame(a1) (#v60)}
@ 080483f4.00: SEGMEM: Processor: {esp, t0, CF, BE, LT, LE, ZF, SF, OF}
Stack: parents: {08048431.02}; callsites: {00000000.00={00000000.00=frame_0(a12)}, 0804841f.00={08048431.02=frame_8048431.02(a42)}}; frames: {00000000.00={00000000.00}, 080483f1.00={080483f1.00}, 0804841f.00={0804841f.00, 08048431.02}}
Data: Absolute: {[134512980:19]=_interp, [134513000:32]=_note_ABI_tag, [134513032:36]=_note_gnu_build_id, [134513068:32]=_gnu_hash, [134513100:64]=_dynsym, [134513164:69]=_dynstr, [134513234:8]=_gnu_version, [134513244:32]=_gnu_version_r, [134513276:8]=_rel_dyn, [134513284:16]=_rel_plt, [134513300:35]=_init, [134513344:48]=_plt, [134513392:468]=_text, [134513860:20]=_fini, [134513880:8]=_rodata, [134513888:68]=_eh_frame_hdr, [134513956:236]=_eh_frame, [134520584:4]=_init_array, [134520588:4]=_fini_array, [134520592:4]=_jcr, [134520596:232]=_dynamic, [134520828:4]=_got, [134520832:20]=_got_plt, [134520852:8]=_data, [134520860:4]=_bss}
UNDEF: {}
fPREDICATES: #2 {SF(v31)→{t0(v23)<s0} ¬SF(v31)→{0≤st0(v23)}}
POINTSTO: #12 {esp(v4)={v59*activeFrame(a1) (#v60)}, SPdiff@0(v14)={v19*frame_0(a12) (#v17)}, t0(v23)={v57*activeFrame(a1) (#v58)}, SPdiff@8048431.02(v44)={v53*frame_8048431.02(a42) (#v50)}}
AFFINE: #21 {BP|SP(v2)=0, esp(v4)=-4, BP|SP@0(v13)=0, SPdiff@0(v14)=-4, [SP@0-4](v15)=134513695, v17=0, v19=0, t0(v23)=-4, BP|SP@8048431.02(v43)=0, SPdiff@8048431.02(v44)=-24, [SP@8048431.02-24](v45)=134513718, [SP@8048431.02-20](v46)=0, [SP@8048431.02-4](v47)=0, f(8048431.02->0)(f48)=1, v50=0, v53=0, f(80483f1->8048431.02)(f56)=1, v57=1, v58=1, v59=1, v60=1}
CONGRUENCES: #31 {activeFrame(a1)*1, BP|SP(v2)=0, esp(v4)=-4, frame_0(a12)*1, BP|SP@0(v13)=0, SPdiff@0(v14)=-4, [SP@0-4](v15)=134513695, v17=0, v19=0, t0(v23)=-4, CF(v26)*1, BE(v27)*1, LT(v28)*1, LE(v29)*1, ZF(v30)*1, SF(v31)*1, OF(v32)*1, frame_8048431.02(a42)*1, BP|SP@8048431.02(v43)=0, SPdiff@8048431.02(v44)=-24, [SP@8048431.02-24](v45)=134513718, [SP@8048431.02-20](v46)=0, [SP@8048431.02-4](v47)=0, f(8048431.02->0)(f48)=1, v50=0, v53=0, f(80483f1->8048431.02)(f56)=1, v57=1, v58=1, v59=1, v60=1}
INTERVALS: #31 {activeFrame(a1)=[0, +oo], BP|SP(v2)=[0], esp(v4)=[-4], frame_0(a12)=[0, +oo], BP|SP@0(v13)=[0], SPdiff@0(v14)=[-4], [SP@0-4](v15)=[134513695], v17=[0], v19=[0], t0(v23)=[-4], CF(v26)=[0, 1], BE(v27)=[0, 1], LT(v28)=[0, 1], LE(v29)=[0, 1], ZF(v30)=[0, 1], SF(v31)=[0, 1], OF(v32)=[0, 1], frame_8048431.02(a42)=[0, +oo], BP|SP@8048431.02(v43)=[0], SPdiff@8048431.02(v44)=[-24], [SP@8048431.02-24](v45)=[134513718], [SP@8048431.02-20](v46)=[0], [SP@8048431.02-4](v47)=[0], f(8048431.02->0)(f48)=[1], v50=[0], v53=[0], f(80483f1->8048431.02)(f56)=[1], v57=[1], v58=[1], v59=[1], v60=[1]}
____________________________________
a: mov eax, DWORD PTR [esp+0x8]
‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾
#1 080483f4.00 | add t0:32, 8:32, esp:32 » Next(80483f4.01)
t0 = [4, +oo] pts: {v61*activeFrame(a1) (#v62)}
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
t0 = [4, +oo] pts: {v61*activeFrame(a1) (#v62)}
@ 080483f4.01: SEGMEM: Processor: {esp, t0, CF, BE, LT, LE, ZF, SF, OF}
Stack: parents: {08048431.02}; callsites: {00000000.00={00000000.00=frame_0(a12)}, 0804841f.00={08048431.02=frame_8048431.02(a42)}}; frames: {00000000.00={00000000.00}, 080483f1.00={080483f1.00}, 0804841f.00={0804841f.00, 08048431.02}}
Data: Absolute: {[134512980:19]=_interp, [134513000:32]=_note_ABI_tag, [134513032:36]=_note_gnu_build_id, [134513068:32]=_gnu_hash, [134513100:64]=_dynsym, [134513164:69]=_dynstr, [134513234:8]=_gnu_version, [134513244:32]=_gnu_version_r, [134513276:8]=_rel_dyn, [134513284:16]=_rel_plt, [134513300:35]=_init, [134513344:48]=_plt, [134513392:468]=_text, [134513860:20]=_fini, [134513880:8]=_rodata, [134513888:68]=_eh_frame_hdr, [134513956:236]=_eh_frame, [134520584:4]=_init_array, [134520588:4]=_fini_array, [134520592:4]=_jcr, [134520596:232]=_dynamic, [134520828:4]=_got, [134520832:20]=_got_plt, [134520852:8]=_data, [134520860:4]=_bss}
UNDEF: {}
fPREDICATES: #0 {}
POINTSTO: #12 {esp(v4)={v59*activeFrame(a1) (#v60)}, SPdiff@0(v14)={v19*frame_0(a12) (#v17)}, t0(v23)={v61*activeFrame(a1) (#v62)}, SPdiff@8048431.02(v44)={v53*frame_8048431.02(a42) (#v50)}}
AFFINE: #21 {BP|SP(v2)=0, esp(v4)=-4, BP|SP@0(v13)=0, SPdiff@0(v14)=-4, [SP@0-4](v15)=134513695, v17=0, v19=0, t0(v23)=4, BP|SP@8048431.02(v43)=0, SPdiff@8048431.02(v44)=-24, [SP@8048431.02-24](v45)=134513718, [SP@8048431.02-20](v46)=0, [SP@8048431.02-4](v47)=0, f(8048431.02->0)(f48)=1, v50=0, v53=0, f(80483f1->8048431.02)(f56)=1, v59=1, v60=1, v61=1, v62=1}
CONGRUENCES: #31 {activeFrame(a1)*1, BP|SP(v2)=0, esp(v4)=-4, frame_0(a12)*1, BP|SP@0(v13)=0, SPdiff@0(v14)=-4, [SP@0-4](v15)=134513695, v17=0, v19=0, t0(v23)=4, CF(v26)*1, BE(v27)*1, LT(v28)*1, LE(v29)*1, ZF(v30)*1, SF(v31)*1, OF(v32)*1, frame_8048431.02(a42)*1, BP|SP@8048431.02(v43)=0, SPdiff@8048431.02(v44)=-24, [SP@8048431.02-24](v45)=134513718, [SP@8048431.02-20](v46)=0, [SP@8048431.02-4](v47)=0, f(8048431.02->0)(f48)=1, v50=0, v53=0, f(80483f1->8048431.02)(f56)=1, v59=1, v60=1, v61=1, v62=1}
INTERVALS: #31 {activeFrame(a1)=[0, +oo], BP|SP(v2)=[0], esp(v4)=[-4], frame_0(a12)=[0, +oo], BP|SP@0(v13)=[0], SPdiff@0(v14)=[-4], [SP@0-4](v15)=[134513695], v17=[0], v19=[0], t0(v23)=[4], CF(v26)=[0, 1], BE(v27)=[0, 1], LT(v28)=[0, 1], LE(v29)=[0, 1], ZF(v30)=[0, 1], SF(v31)=[0, 1], OF(v32)=[0, 1], frame_8048431.02(a42)=[0, +oo], BP|SP@8048431.02(v43)=[0], SPdiff@8048431.02(v44)=[-24], [SP@8048431.02-24](v45)=[134513718], [SP@8048431.02-20](v46)=[0], [SP@8048431.02-4](v47)=[0], f(8048431.02->0)(f48)=[1], v50=[0], v53=[0], f(80483f1->8048431.02)(f56)=[1], v59=[1], v60=[1], v61=[1], v62=[1]}
#1 080483f4.01 | load t1:32, [t0:32] » Next(80483f4.02)
t1 = [0] eqs: t1(v63)=0 pts: {}
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
t1 = [0] eqs: t1(v63)=0 pts: {}
@ 080483f4.02: SEGMEM: Processor: {esp, t0, CF, BE, LT, LE, ZF, SF, OF, t1}
Stack: parents: {08048431.02}; callsites: {00000000.00={00000000.00=frame_0(a12)}, 0804841f.00={08048431.02=frame_8048431.02(a42)}}; frames: {00000000.00={00000000.00}, 080483f1.00={080483f1.00}, 0804841f.00={0804841f.00, 08048431.02}}
Data: Absolute: {[134512980:19]=_interp, [134513000:32]=_note_ABI_tag, [134513032:36]=_note_gnu_build_id, [134513068:32]=_gnu_hash, [134513100:64]=_dynsym, [134513164:69]=_dynstr, [134513234:8]=_gnu_version, [134513244:32]=_gnu_version_r, [134513276:8]=_rel_dyn, [134513284:16]=_rel_plt, [134513300:35]=_init, [134513344:48]=_plt, [134513392:468]=_text, [134513860:20]=_fini, [134513880:8]=_rodata, [134513888:68]=_eh_frame_hdr, [134513956:236]=_eh_frame, [134520584:4]=_init_array, [134520588:4]=_fini_array, [134520592:4]=_jcr, [134520596:232]=_dynamic, [134520828:4]=_got, [134520832:20]=_got_plt, [134520852:8]=_data, [134520860:4]=_bss}
UNDEF: {}
fPREDICATES: #0 {}
POINTSTO: #12 {esp(v4)={v59*activeFrame(a1) (#v60)}, SPdiff@0(v14)={v19*frame_0(a12) (#v17)}, t0(v23)={v61*activeFrame(a1) (#v62)}, SPdiff@8048431.02(v44)={v53*frame_8048431.02(a42) (#v50)}}
AFFINE: #22 {BP|SP(v2)=0, esp(v4)=-4, BP|SP@0(v13)=0, SPdiff@0(v14)=-4, [SP@0-4](v15)=134513695, v17=0, v19=0, t0(v23)=4, BP|SP@8048431.02(v43)=0, SPdiff@8048431.02(v44)=-24, [SP@8048431.02-24](v45)=134513718, [SP@8048431.02-20](v46)=0, [SP@8048431.02-4](v47)=0, f(8048431.02->0)(f48)=1, v50=0, v53=0, f(80483f1->8048431.02)(f56)=1, v59=1, v60=1, v61=1, v62=1, t1(v63)=0}
CONGRUENCES: #32 {activeFrame(a1)*1, BP|SP(v2)=0, esp(v4)=-4, frame_0(a12)*1, BP|SP@0(v13)=0, SPdiff@0(v14)=-4, [SP@0-4](v15)=134513695, v17=0, v19=0, t0(v23)=4, CF(v26)*1, BE(v27)*1, LT(v28)*1, LE(v29)*1, ZF(v30)*1, SF(v31)*1, OF(v32)*1, frame_8048431.02(a42)*1, BP|SP@8048431.02(v43)=0, SPdiff@8048431.02(v44)=-24, [SP@8048431.02-24](v45)=134513718, [SP@8048431.02-20](v46)=0, [SP@8048431.02-4](v47)=0, f(8048431.02->0)(f48)=1, v50=0, v53=0, f(80483f1->8048431.02)(f56)=1, v59=1, v60=1, v61=1, v62=1, t1(v63)=0}
INTERVALS: #32 {activeFrame(a1)=[0, +oo], BP|SP(v2)=[0], esp(v4)=[-4], frame_0(a12)=[0, +oo], BP|SP@0(v13)=[0], SPdiff@0(v14)=[-4], [SP@0-4](v15)=[134513695], v17=[0], v19=[0], t0(v23)=[4], CF(v26)=[0, 1], BE(v27)=[0, 1], LT(v28)=[0, 1], LE(v29)=[0, 1], ZF(v30)=[0, 1], SF(v31)=[0, 1], OF(v32)=[0, 1], frame_8048431.02(a42)=[0, +oo], BP|SP@8048431.02(v43)=[0], SPdiff@8048431.02(v44)=[-24], [SP@8048431.02-24](v45)=[134513718], [SP@8048431.02-20](v46)=[0], [SP@8048431.02-4](v47)=[0], f(8048431.02->0)(f48)=[1], v50=[0], v53=[0], f(80483f1->8048431.02)(f56)=[1], v59=[1], v60=[1], v61=[1], v62=[1], t1(v63)=[0]}
```
[ ..... middle part removed for brevity ..... ]
```
#!text
____________
b: ret
‾‾‾‾‾‾‾‾‾‾‾‾
#1 0804841e.00 | load t0:32, [esp:32] » Next(804841e.01)
t0 = [134513730] eqs: t0(v23)=134513730 pts: {}
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
esp = [0, +oo] pts: {v221*activeFrame(a1) (#v222)}
@ 0804841e.01: SEGMEM: Processor: {esp, t0, CF, BE, LT, LE, ZF, SF, OF, t1, eax, t2, t3, t4}
Stack: parents: {0804843d.02}; callsites: {00000000.00={00000000.00=frame_0(a12)}, 080483f1.00={}, 08048408.00={}, 0804841f.00={0804843d.02=frame_804843d.02(a115)}}; frames: {00000000.00={00000000.00}, 080483ec.00={080483ec.00}, 080483f1.00={080483f1.00, 080483fb.02}, 08048408.00={08048408.00, 08048412.02}, 0804841f.00={0804841f.00, 08048431.02, 0804843d.02}}
Data: Absolute: {[134512980:19]=_interp, [134513000:32]=_note_ABI_tag, [134513032:36]=_note_gnu_build_id, [134513068:32]=_gnu_hash, [134513100:64]=_dynsym, [134513164:69]=_dynstr, [134513234:8]=_gnu_version, [134513244:32]=_gnu_version_r, [134513276:8]=_rel_dyn, [134513284:16]=_rel_plt, [134513300:35]=_init, [134513344:48]=_plt, [134513392:468]=_text, [134513860:20]=_fini, [134513880:8]=_rodata, [134513888:68]=_eh_frame_hdr, [134513956:236]=_eh_frame, [134520584:4]=_init_array, [134520588:4]=_fini_array, [134520592:4]=_jcr, [134520596:232]=_dynamic, [134520828:4]=_got, [134520832:20]=_got_plt, [134520852:8]=_data, [134520860:4]=_bss}
UNDEF: {}
fPREDICATES: #2 {OF(v32)→{t4(v100)<s0} ¬OF(v32)→{0≤st4(v100)}}
POINTSTO: #9 {esp(v4)={v221*activeFrame(a1) (#v222)}, SPdiff@0(v14)={v19*frame_0(a12) (#v17)}, SPdiff@804843d.02(v117)={v125*frame_804843d.02(a115) (#v123)}}
AFFINE: #23 {BP|SP(v2)=0, esp(v4)=0, BP|SP@0(v13)=0, SPdiff@0(v14)=-4, [SP@0-4](v15)=134513695, v17=0, v19=0, t0(v23)=134513730, t1(v63)=-5, eax(v64)=1, BP|SP@804843d.02(v116)=0, SPdiff@804843d.02(v117)=-24, [SP@804843d.02-24](v118)=134513730, [SP@804843d.02-20](v119)=1, [SP@804843d.02-4](v120)=0, f(804843d.02->0)(f121)=1, v123=0, v125=0, f(8048412.02->804843d.02)(f144)=1, [SP-8](v177)=134513687, [SP-4](v178)=1, v221=1, v222=1}
CONGRUENCES: #36 {activeFrame(a1)*1, BP|SP(v2)=0, esp(v4)=0, frame_0(a12)*1, BP|SP@0(v13)=0, SPdiff@0(v14)=-4, [SP@0-4](v15)=134513695, v17=0, v19=0, t0(v23)=134513730, CF(v26)*1, BE(v27)*1, LT(v28)*1, LE(v29)*1, ZF(v30)*1, SF(v31)*1, OF(v32)*1, t1(v63)=-5, eax(v64)=1, t2(v98)*1, t3(v99)*1, t4(v100)*1, frame_804843d.02(a115)*1, BP|SP@804843d.02(v116)=0, SPdiff@804843d.02(v117)=-24, [SP@804843d.02-24](v118)=134513730, [SP@804843d.02-20](v119)=1, [SP@804843d.02-4](v120)=0, f(804843d.02->0)(f121)=1, v123=0, v125=0, f(8048412.02->804843d.02)(f144)=1, [SP-8](v177)=134513687, [SP-4](v178)=1, v221=1, v222=1}
INTERVALS: #36 {activeFrame(a1)=[0, +oo], BP|SP(v2)=[0], esp(v4)=[0], frame_0(a12)=[0, +oo], BP|SP@0(v13)=[0], SPdiff@0(v14)=[-4], [SP@0-4](v15)=[134513695], v17=[0], v19=[0], t0(v23)=[134513730], CF(v26)=[0, 1], BE(v27)=[0, 1], LT(v28)=[0, 1], LE(v29)=[0, 1], ZF(v30)=[0, 1], SF(v31)=[0, 1], OF(v32)=[0, 1], t1(v63)=[-5], eax(v64)=[1], t2(v98)=[0, 4294967295], t3(v99)=[0, 4294967295], t4(v100)=[0, 4294967295], frame_804843d.02(a115)=[0, +oo], BP|SP@804843d.02(v116)=[0], SPdiff@804843d.02(v117)=[-24], [SP@804843d.02-24](v118)=[134513730], [SP@804843d.02-20](v119)=[1], [SP@804843d.02-4](v120)=[0], f(804843d.02->0)(f121)=[1], v123=[0], v125=[0], f(8048412.02->804843d.02)(f144)=[1], [SP-8](v177)=[134513687], [SP-4](v178)=[1], v221=[1], v222=[1]}
#1 0804841e.01 | add esp:32, esp:32, 4:32 » Next(804841e.02)
esp = [4, +oo] pts: {v223*activeFrame(a1) (#v224)}
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
t0 = [134513730] eqs: t0(v23)=134513730 pts: {}
@ 0804841e.02: SEGMEM: Processor: {esp, t0, CF, BE, LT, LE, ZF, SF, OF, t1, eax, t2, t3, t4}
Stack: parents: {0804843d.02}; callsites: {00000000.00={00000000.00=frame_0(a12)}, 080483f1.00={}, 08048408.00={}, 0804841f.00={0804843d.02=frame_804843d.02(a115)}}; frames: {00000000.00={00000000.00}, 080483ec.00={080483ec.00}, 080483f1.00={080483f1.00, 080483fb.02}, 08048408.00={08048408.00, 08048412.02}, 0804841f.00={0804841f.00, 08048431.02, 0804843d.02}}
Data: Absolute: {[134512980:19]=_interp, [134513000:32]=_note_ABI_tag, [134513032:36]=_note_gnu_build_id, [134513068:32]=_gnu_hash, [134513100:64]=_dynsym, [134513164:69]=_dynstr, [134513234:8]=_gnu_version, [134513244:32]=_gnu_version_r, [134513276:8]=_rel_dyn, [134513284:16]=_rel_plt, [134513300:35]=_init, [134513344:48]=_plt, [134513392:468]=_text, [134513860:20]=_fini, [134513880:8]=_rodata, [134513888:68]=_eh_frame_hdr, [134513956:236]=_eh_frame, [134520584:4]=_init_array, [134520588:4]=_fini_array, [134520592:4]=_jcr, [134520596:232]=_dynamic, [134520828:4]=_got, [134520832:20]=_got_plt, [134520852:8]=_data, [134520860:4]=_bss}
UNDEF: {}
fPREDICATES: #2 {OF(v32)→{t4(v100)<s0} ¬OF(v32)→{0≤st4(v100)}}
POINTSTO: #9 {esp(v4)={v223*activeFrame(a1) (#v224)}, SPdiff@0(v14)={v19*frame_0(a12) (#v17)}, SPdiff@804843d.02(v117)={v125*frame_804843d.02(a115) (#v123)}}
AFFINE: #23 {BP|SP(v2)=0, esp(v4)=4, BP|SP@0(v13)=0, SPdiff@0(v14)=-4, [SP@0-4](v15)=134513695, v17=0, v19=0, t0(v23)=134513730, t1(v63)=-5, eax(v64)=1, BP|SP@804843d.02(v116)=0, SPdiff@804843d.02(v117)=-24, [SP@804843d.02-24](v118)=134513730, [SP@804843d.02-20](v119)=1, [SP@804843d.02-4](v120)=0, f(804843d.02->0)(f121)=1, v123=0, v125=0, f(8048412.02->804843d.02)(f144)=1, [SP-8](v177)=134513687, [SP-4](v178)=1, v223=1, v224=1}
CONGRUENCES: #36 {activeFrame(a1)*1, BP|SP(v2)=0, esp(v4)=4, frame_0(a12)*1, BP|SP@0(v13)=0, SPdiff@0(v14)=-4, [SP@0-4](v15)=134513695, v17=0, v19=0, t0(v23)=134513730, CF(v26)*1, BE(v27)*1, LT(v28)*1, LE(v29)*1, ZF(v30)*1, SF(v31)*1, OF(v32)*1, t1(v63)=-5, eax(v64)=1, t2(v98)*1, t3(v99)*1, t4(v100)*1, frame_804843d.02(a115)*1, BP|SP@804843d.02(v116)=0, SPdiff@804843d.02(v117)=-24, [SP@804843d.02-24](v118)=134513730, [SP@804843d.02-20](v119)=1, [SP@804843d.02-4](v120)=0, f(804843d.02->0)(f121)=1, v123=0, v125=0, f(8048412.02->804843d.02)(f144)=1, [SP-8](v177)=134513687, [SP-4](v178)=1, v223=1, v224=1}
INTERVALS: #36 {activeFrame(a1)=[0, +oo], BP|SP(v2)=[0], esp(v4)=[4], frame_0(a12)=[0, +oo], BP|SP@0(v13)=[0], SPdiff@0(v14)=[-4], [SP@0-4](v15)=[134513695], v17=[0], v19=[0], t0(v23)=[134513730], CF(v26)=[0, 1], BE(v27)=[0, 1], LT(v28)=[0, 1], LE(v29)=[0, 1], ZF(v30)=[0, 1], SF(v31)=[0, 1], OF(v32)=[0, 1], t1(v63)=[-5], eax(v64)=[1], t2(v98)=[0, 4294967295], t3(v99)=[0, 4294967295], t4(v100)=[0, 4294967295], frame_804843d.02(a115)=[0, +oo], BP|SP@804843d.02(v116)=[0], SPdiff@804843d.02(v117)=[-24], [SP@804843d.02-24](v118)=[134513730], [SP@804843d.02-20](v119)=[1], [SP@804843d.02-4](v120)=[0], f(804843d.02->0)(f121)=[1], v123=[0], v125=[0], f(8048412.02->804843d.02)(f144)=[1], [SP-8](v177)=[134513687], [SP-4](v178)=[1], v223=[1], v224=[1]}
#1 0804841e.02 | return t0:32 » Return(8048442)
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
esp = [-20, +oo] pts: {v228*activeFrame(a1) (#v229)}
@ 08048442.00: SEGMEM: Processor: {esp, t0, CF, BE, LT, LE, ZF, SF, OF, t1, eax, t2, t3, t4}
Stack: parents: {00000000.00}; callsites: {00000000.00={00000000.00=frame_0(a12)}, 080483f1.00={}, 08048408.00={}, 0804841f.00={}}; frames: {00000000.00={00000000.00}, 080483ec.00={080483ec.00}, 080483f1.00={080483f1.00, 080483fb.02}, 08048408.00={08048408.00, 08048412.02}, 0804841f.00={0804841f.00, 08048431.02, 0804843d.02}}
Data: Absolute: {[134512980:19]=_interp, [134513000:32]=_note_ABI_tag, [134513032:36]=_note_gnu_build_id, [134513068:32]=_gnu_hash, [134513100:64]=_dynsym, [134513164:69]=_dynstr, [134513234:8]=_gnu_version, [134513244:32]=_gnu_version_r, [134513276:8]=_rel_dyn, [134513284:16]=_rel_plt, [134513300:35]=_init, [134513344:48]=_plt, [134513392:468]=_text, [134513860:20]=_fini, [134513880:8]=_rodata, [134513888:68]=_eh_frame_hdr, [134513956:236]=_eh_frame, [134520584:4]=_init_array, [134520588:4]=_fini_array, [134520592:4]=_jcr, [134520596:232]=_dynamic, [134520828:4]=_got, [134520832:20]=_got_plt, [134520852:8]=_data, [134520860:4]=_bss}
UNDEF: {}
fPREDICATES: #2 {OF(v32)→{t4(v100)<s0} ¬OF(v32)→{0≤st4(v100)}}
POINTSTO: #6 {esp(v4)={v228*activeFrame(a1) (#v229)}, SPdiff@0(v14)={v19*frame_0(a12) (#v17)}}
AFFINE: #16 {BP|SP(v2)=0, esp(v4)=-20, BP|SP@0(v13)=0, SPdiff@0(v14)=-4, [SP@0-4](v15)=134513695, v17=0, v19=0, t0(v23)=134513730, t1(v63)=-5, eax(v64)=1, f(804843d.02->0)(f121)=1, v228=1, v229=1, [SP-24](v230)=134513730, [SP-20](v231)=1, [SP-4](v232)=0}
CONGRUENCES: #28 {activeFrame(a1)*1, BP|SP(v2)=0, esp(v4)=-20, frame_0(a12)*1, BP|SP@0(v13)=0, SPdiff@0(v14)=-4, [SP@0-4](v15)=134513695, v17=0, v19=0, t0(v23)=134513730, CF(v26)*1, BE(v27)*1, LT(v28)*1, LE(v29)*1, ZF(v30)*1, SF(v31)*1, OF(v32)*1, t1(v63)=-5, eax(v64)=1, t2(v98)*1, t3(v99)*1, t4(v100)*1, f(804843d.02->0)(f121)=1, v228=1, v229=1, [SP-24](v230)=134513730, [SP-20](v231)=1, [SP-4](v232)=0}
INTERVALS: #28 {activeFrame(a1)=[0, +oo], BP|SP(v2)=[0], esp(v4)=[-20], frame_0(a12)=[0, +oo], BP|SP@0(v13)=[0], SPdiff@0(v14)=[-4], [SP@0-4](v15)=[134513695], v17=[0], v19=[0], t0(v23)=[134513730], CF(v26)=[0, 1], BE(v27)=[0, 1], LT(v28)=[0, 1], LE(v29)=[0, 1], ZF(v30)=[0, 1], SF(v31)=[0, 1], OF(v32)=[0, 1], t1(v63)=[-5], eax(v64)=[1], t2(v98)=[0, 4294967295], t3(v99)=[0, 4294967295], t4(v100)=[0, 4294967295], f(804843d.02->0)(f121)=[1], v228=[1], v229=[1], [SP-24](v230)=[134513730], [SP-20](v231)=[1], [SP-4](v232)=[0]}
________________________________________
main: mov eax, DWORD PTR [esp+0x10]
‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾
#1 08048442.00 | add t0:32, 16:32, esp:32 » Next(8048442.01)
t0 = [-4, +oo] pts: {v233*activeFrame(a1) (#v234)}
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
t0 = [-4, +oo] pts: {v233*activeFrame(a1) (#v234)}
@ 08048442.01: SEGMEM: Processor: {esp, t0, CF, BE, LT, LE, ZF, SF, OF, t1, eax, t2, t3, t4}
Stack: parents: {00000000.00}; callsites: {00000000.00={00000000.00=frame_0(a12)}, 080483f1.00={}, 08048408.00={}, 0804841f.00={}}; frames: {00000000.00={00000000.00}, 080483ec.00={080483ec.00}, 080483f1.00={080483f1.00, 080483fb.02}, 08048408.00={08048408.00, 08048412.02}, 0804841f.00={0804841f.00, 08048431.02, 0804843d.02}}
Data: Absolute: {[134512980:19]=_interp, [134513000:32]=_note_ABI_tag, [134513032:36]=_note_gnu_build_id, [134513068:32]=_gnu_hash, [134513100:64]=_dynsym, [134513164:69]=_dynstr, [134513234:8]=_gnu_version, [134513244:32]=_gnu_version_r, [134513276:8]=_rel_dyn, [134513284:16]=_rel_plt, [134513300:35]=_init, [134513344:48]=_plt, [134513392:468]=_text, [134513860:20]=_fini, [134513880:8]=_rodata, [134513888:68]=_eh_frame_hdr, [134513956:236]=_eh_frame, [134520584:4]=_init_array, [134520588:4]=_fini_array, [134520592:4]=_jcr, [134520596:232]=_dynamic, [134520828:4]=_got, [134520832:20]=_got_plt, [134520852:8]=_data, [134520860:4]=_bss}
UNDEF: {}
fPREDICATES: #2 {OF(v32)→{t4(v100)<s0} ¬OF(v32)→{0≤st4(v100)}}
POINTSTO: #9 {esp(v4)={v228*activeFrame(a1) (#v229)}, SPdiff@0(v14)={v19*frame_0(a12) (#v17)}, t0(v23)={v233*activeFrame(a1) (#v234)}}
AFFINE: #18 {BP|SP(v2)=0, esp(v4)=-20, BP|SP@0(v13)=0, SPdiff@0(v14)=-4, [SP@0-4](v15)=134513695, v17=0, v19=0, t0(v23)=-4, t1(v63)=-5, eax(v64)=1, f(804843d.02->0)(f121)=1, v228=1, v229=1, [SP-24](v230)=134513730, [SP-20](v231)=1, [SP-4](v232)=0, v233=1, v234=1}
CONGRUENCES: #30 {activeFrame(a1)*1, BP|SP(v2)=0, esp(v4)=-20, frame_0(a12)*1, BP|SP@0(v13)=0, SPdiff@0(v14)=-4, [SP@0-4](v15)=134513695, v17=0, v19=0, t0(v23)=-4, CF(v26)*1, BE(v27)*1, LT(v28)*1, LE(v29)*1, ZF(v30)*1, SF(v31)*1, OF(v32)*1, t1(v63)=-5, eax(v64)=1, t2(v98)*1, t3(v99)*1, t4(v100)*1, f(804843d.02->0)(f121)=1, v228=1, v229=1, [SP-24](v230)=134513730, [SP-20](v231)=1, [SP-4](v232)=0, v233=1, v234=1}
INTERVALS: #30 {activeFrame(a1)=[0, +oo], BP|SP(v2)=[0], esp(v4)=[-20], frame_0(a12)=[0, +oo], BP|SP@0(v13)=[0], SPdiff@0(v14)=[-4], [SP@0-4](v15)=[134513695], v17=[0], v19=[0], t0(v23)=[-4], CF(v26)=[0, 1], BE(v27)=[0, 1], LT(v28)=[0, 1], LE(v29)=[0, 1], ZF(v30)=[0, 1], SF(v31)=[0, 1], OF(v32)=[0, 1], t1(v63)=[-5], eax(v64)=[1], t2(v98)=[0, 4294967295], t3(v99)=[0, 4294967295], t4(v100)=[0, 4294967295], f(804843d.02->0)(f121)=[1], v228=[1], v229=[1], [SP-24](v230)=[134513730], [SP-20](v231)=[1], [SP-4](v232)=[0], v233=[1], v234=[1]}
#1 08048442.01 | load t1:32, [t0:32] » Next(8048442.02)
t1 = [0] eqs: t1(v63)=0 pts: {}
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
t1 = [0] eqs: t1(v63)=0 pts: {}
@ 08048442.02: SEGMEM: Processor: {esp, t0, CF, BE, LT, LE, ZF, SF, OF, t1, eax, t2, t3, t4}
Stack: parents: {00000000.00}; callsites: {00000000.00={00000000.00=frame_0(a12)}, 080483f1.00={}, 08048408.00={}, 0804841f.00={}}; frames: {00000000.00={00000000.00}, 080483ec.00={080483ec.00}, 080483f1.00={080483f1.00, 080483fb.02}, 08048408.00={08048408.00, 08048412.02}, 0804841f.00={0804841f.00, 08048431.02, 0804843d.02}}
Data: Absolute: {[134512980:19]=_interp, [134513000:32]=_note_ABI_tag, [134513032:36]=_note_gnu_build_id, [134513068:32]=_gnu_hash, [134513100:64]=_dynsym, [134513164:69]=_dynstr, [134513234:8]=_gnu_version, [134513244:32]=_gnu_version_r, [134513276:8]=_rel_dyn, [134513284:16]=_rel_plt, [134513300:35]=_init, [134513344:48]=_plt, [134513392:468]=_text, [134513860:20]=_fini, [134513880:8]=_rodata, [134513888:68]=_eh_frame_hdr, [134513956:236]=_eh_frame, [134520584:4]=_init_array, [134520588:4]=_fini_array, [134520592:4]=_jcr, [134520596:232]=_dynamic, [134520828:4]=_got, [134520832:20]=_got_plt, [134520852:8]=_data, [134520860:4]=_bss}
UNDEF: {}
fPREDICATES: #2 {OF(v32)→{t4(v100)<s0} ¬OF(v32)→{0≤st4(v100)}}
POINTSTO: #9 {esp(v4)={v228*activeFrame(a1) (#v229)}, SPdiff@0(v14)={v19*frame_0(a12) (#v17)}, t0(v23)={v233*activeFrame(a1) (#v234)}}
AFFINE: #18 {BP|SP(v2)=0, esp(v4)=-20, BP|SP@0(v13)=0, SPdiff@0(v14)=-4, [SP@0-4](v15)=134513695, v17=0, v19=0, t0(v23)=-4, t1(v63)=0, eax(v64)=1, f(804843d.02->0)(f121)=1, v228=1, v229=1, [SP-24](v230)=134513730, [SP-20](v231)=1, [SP-4](v232)=0, v233=1, v234=1}
CONGRUENCES: #30 {activeFrame(a1)*1, BP|SP(v2)=0, esp(v4)=-20, frame_0(a12)*1, BP|SP@0(v13)=0, SPdiff@0(v14)=-4, [SP@0-4](v15)=134513695, v17=0, v19=0, t0(v23)=-4, CF(v26)*1, BE(v27)*1, LT(v28)*1, LE(v29)*1, ZF(v30)*1, SF(v31)*1, OF(v32)*1, t1(v63)=0, eax(v64)=1, t2(v98)*1, t3(v99)*1, t4(v100)*1, f(804843d.02->0)(f121)=1, v228=1, v229=1, [SP-24](v230)=134513730, [SP-20](v231)=1, [SP-4](v232)=0, v233=1, v234=1}
INTERVALS: #30 {activeFrame(a1)=[0, +oo], BP|SP(v2)=[0], esp(v4)=[-20], frame_0(a12)=[0, +oo], BP|SP@0(v13)=[0], SPdiff@0(v14)=[-4], [SP@0-4](v15)=[134513695], v17=[0], v19=[0], t0(v23)=[-4], CF(v26)=[0, 1], BE(v27)=[0, 1], LT(v28)=[0, 1], LE(v29)=[0, 1], ZF(v30)=[0, 1], SF(v31)=[0, 1], OF(v32)=[0, 1], t1(v63)=[0], eax(v64)=[1], t2(v98)=[0, 4294967295], t3(v99)=[0, 4294967295], t4(v100)=[0, 4294967295], f(804843d.02->0)(f121)=[1], v228=[1], v229=[1], [SP-24](v230)=[134513730], [SP-20](v231)=[1], [SP-4](v232)=[0], v233=[1], v234=[1]}
#1 08048442.02 | mov eax:32, t1:32 » Next(8048446)
eax = [0] eqs: eax(v64)=0 pts: {}
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
esp = [-20, +oo] pts: {v228*activeFrame(a1) (#v229)}
@ 08048446.00: SEGMEM: Processor: {esp, t0, CF, BE, LT, LE, ZF, SF, OF, t1, eax, t2, t3, t4}
Stack: parents: {00000000.00}; callsites: {00000000.00={00000000.00=frame_0(a12)}, 080483f1.00={}, 08048408.00={}, 0804841f.00={}}; frames: {00000000.00={00000000.00}, 080483ec.00={080483ec.00}, 080483f1.00={080483f1.00, 080483fb.02}, 08048408.00={08048408.00, 08048412.02}, 0804841f.00={0804841f.00, 08048431.02, 0804843d.02}}
Data: Absolute: {[134512980:19]=_interp, [134513000:32]=_note_ABI_tag, [134513032:36]=_note_gnu_build_id, [134513068:32]=_gnu_hash, [134513100:64]=_dynsym, [134513164:69]=_dynstr, [134513234:8]=_gnu_version, [134513244:32]=_gnu_version_r, [134513276:8]=_rel_dyn, [134513284:16]=_rel_plt, [134513300:35]=_init, [134513344:48]=_plt, [134513392:468]=_text, [134513860:20]=_fini, [134513880:8]=_rodata, [134513888:68]=_eh_frame_hdr, [134513956:236]=_eh_frame, [134520584:4]=_init_array, [134520588:4]=_fini_array, [134520592:4]=_jcr, [134520596:232]=_dynamic, [134520828:4]=_got, [134520832:20]=_got_plt, [134520852:8]=_data, [134520860:4]=_bss}
UNDEF: {}
fPREDICATES: #2 {OF(v32)→{t4(v100)<s0} ¬OF(v32)→{0≤st4(v100)}}
POINTSTO: #9 {esp(v4)={v228*activeFrame(a1) (#v229)}, SPdiff@0(v14)={v19*frame_0(a12) (#v17)}, t0(v23)={v233*activeFrame(a1) (#v234)}}
AFFINE: #18 {BP|SP(v2)=0, esp(v4)=-20, BP|SP@0(v13)=0, SPdiff@0(v14)=-4, [SP@0-4](v15)=134513695, v17=0, v19=0, t0(v23)=-4, t1(v63)=0, eax(v64)=0, f(804843d.02->0)(f121)=1, v228=1, v229=1, [SP-24](v230)=134513730, [SP-20](v231)=1, [SP-4](v232)=0, v233=1, v234=1}
CONGRUENCES: #30 {activeFrame(a1)*1, BP|SP(v2)=0, esp(v4)=-20, frame_0(a12)*1, BP|SP@0(v13)=0, SPdiff@0(v14)=-4, [SP@0-4](v15)=134513695, v17=0, v19=0, t0(v23)=-4, CF(v26)*1, BE(v27)*1, LT(v28)*1, LE(v29)*1, ZF(v30)*1, SF(v31)*1, OF(v32)*1, t1(v63)=0, eax(v64)=0, t2(v98)*1, t3(v99)*1, t4(v100)*1, f(804843d.02->0)(f121)=1, v228=1, v229=1, [SP-24](v230)=134513730, [SP-20](v231)=1, [SP-4](v232)=0, v233=1, v234=1}
INTERVALS: #30 {activeFrame(a1)=[0, +oo], BP|SP(v2)=[0], esp(v4)=[-20], frame_0(a12)=[0, +oo], BP|SP@0(v13)=[0], SPdiff@0(v14)=[-4], [SP@0-4](v15)=[134513695], v17=[0], v19=[0], t0(v23)=[-4], CF(v26)=[0, 1], BE(v27)=[0, 1], LT(v28)=[0, 1], LE(v29)=[0, 1], ZF(v30)=[0, 1], SF(v31)=[0, 1], OF(v32)=[0, 1], t1(v63)=[0], eax(v64)=[0], t2(v98)=[0, 4294967295], t3(v99)=[0, 4294967295], t4(v100)=[0, 4294967295], f(804843d.02->0)(f121)=[1], v228=[1], v229=[1], [SP-24](v230)=[134513730], [SP-20](v231)=[1], [SP-4](v232)=[0], v233=[1], v234=[1]}
________________________
main: add esp, 0x14
‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾
#1 08048446.00 | add t0:32, esp:32, 20:32 » Next(8048446.01)
t0 = [0, +oo] pts: {v235*activeFrame(a1) (#v236)}
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
@ 08048446.01: SEGMEM: Processor: {esp, t0, CF, BE, LT, LE, ZF, SF, OF, t1, eax, t2, t3, t4}
Stack: parents: {00000000.00}; callsites: {00000000.00={00000000.00=frame_0(a12)}, 080483f1.00={}, 08048408.00={}, 0804841f.00={}}; frames: {00000000.00={00000000.00}, 080483ec.00={080483ec.00}, 080483f1.00={080483f1.00, 080483fb.02}, 08048408.00={08048408.00, 08048412.02}, 0804841f.00={0804841f.00, 08048431.02, 0804843d.02}}
Data: Absolute: {[134512980:19]=_interp, [134513000:32]=_note_ABI_tag, [134513032:36]=_note_gnu_build_id, [134513068:32]=_gnu_hash, [134513100:64]=_dynsym, [134513164:69]=_dynstr, [134513234:8]=_gnu_version, [134513244:32]=_gnu_version_r, [134513276:8]=_rel_dyn, [134513284:16]=_rel_plt, [134513300:35]=_init, [134513344:48]=_plt, [134513392:468]=_text, [134513860:20]=_fini, [134513880:8]=_rodata, [134513888:68]=_eh_frame_hdr, [134513956:236]=_eh_frame, [134520584:4]=_init_array, [134520588:4]=_fini_array, [134520592:4]=_jcr, [134520596:232]=_dynamic, [134520828:4]=_got, [134520832:20]=_got_plt, [134520852:8]=_data, [134520860:4]=_bss}
UNDEF: {}
fPREDICATES: #2 {OF(v32)→{t4(v100)<s0} ¬OF(v32)→{0≤st4(v100)}}
POINTSTO: #9 {esp(v4)={v228*activeFrame(a1) (#v229)}, SPdiff@0(v14)={v19*frame_0(a12) (#v17)}, t0(v23)={v235*activeFrame(a1) (#v236)}}
AFFINE: #18 {BP|SP(v2)=0, esp(v4)=-20, BP|SP@0(v13)=0, SPdiff@0(v14)=-4, [SP@0-4](v15)=134513695, v17=0, v19=0, t0(v23)=0, t1(v63)=0, eax(v64)=0, f(804843d.02->0)(f121)=1, v228=1, v229=1, [SP-24](v230)=134513730, [SP-20](v231)=1, [SP-4](v232)=0, v235=1, v236=1}
CONGRUENCES: #30 {activeFrame(a1)*1, BP|SP(v2)=0, esp(v4)=-20, frame_0(a12)*1, BP|SP@0(v13)=0, SPdiff@0(v14)=-4, [SP@0-4](v15)=134513695, v17=0, v19=0, t0(v23)=0, CF(v26)*1, BE(v27)*1, LT(v28)*1, LE(v29)*1, ZF(v30)*1, SF(v31)*1, OF(v32)*1, t1(v63)=0, eax(v64)=0, t2(v98)*1, t3(v99)*1, t4(v100)*1, f(804843d.02->0)(f121)=1, v228=1, v229=1, [SP-24](v230)=134513730, [SP-20](v231)=1, [SP-4](v232)=0, v235=1, v236=1}
INTERVALS: #30 {activeFrame(a1)=[0, +oo], BP|SP(v2)=[0], esp(v4)=[-20], frame_0(a12)=[0, +oo], BP|SP@0(v13)=[0], SPdiff@0(v14)=[-4], [SP@0-4](v15)=[134513695], v17=[0], v19=[0], t0(v23)=[0], CF(v26)=[0, 1], BE(v27)=[0, 1], LT(v28)=[0, 1], LE(v29)=[0, 1], ZF(v30)=[0, 1], SF(v31)=[0, 1], OF(v32)=[0, 1], t1(v63)=[0], eax(v64)=[0], t2(v98)=[0, 4294967295], t3(v99)=[0, 4294967295], t4(v100)=[0, 4294967295], f(804843d.02->0)(f121)=[1], v228=[1], v229=[1], [SP-24](v230)=[134513730], [SP-20](v231)=[1], [SP-4](v232)=[0], v235=[1], v236=[1]}
#1 08048446.01 | sub t1:32, -1:32, 20:32 » Next(8048446.02)
t1 = [-21] eqs: t1(v63)=-21 pts: {}
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
t1 = [-21] eqs: t1(v63)=-21 pts: {} esp = [-20, +oo] pts: {v228*activeFrame(a1) (#v229)}
@ 08048446.02: SEGMEM: Processor: {esp, t0, CF, BE, LT, LE, ZF, SF, OF, t1, eax, t2, t3, t4}
Stack: parents: {00000000.00}; callsites: {00000000.00={00000000.00=frame_0(a12)}, 080483f1.00={}, 08048408.00={}, 0804841f.00={}}; frames: {00000000.00={00000000.00}, 080483ec.00={080483ec.00}, 080483f1.00={080483f1.00, 080483fb.02}, 08048408.00={08048408.00, 08048412.02}, 0804841f.00={0804841f.00, 08048431.02, 0804843d.02}}
Data: Absolute: {[134512980:19]=_interp, [134513000:32]=_note_ABI_tag, [134513032:36]=_note_gnu_build_id, [134513068:32]=_gnu_hash, [134513100:64]=_dynsym, [134513164:69]=_dynstr, [134513234:8]=_gnu_version, [134513244:32]=_gnu_version_r, [134513276:8]=_rel_dyn, [134513284:16]=_rel_plt, [134513300:35]=_init, [134513344:48]=_plt, [134513392:468]=_text, [134513860:20]=_fini, [134513880:8]=_rodata, [134513888:68]=_eh_frame_hdr, [134513956:236]=_eh_frame, [134520584:4]=_init_array, [134520588:4]=_fini_array, [134520592:4]=_jcr, [134520596:232]=_dynamic, [134520828:4]=_got, [134520832:20]=_got_plt, [134520852:8]=_data, [134520860:4]=_bss}
UNDEF: {}
fPREDICATES: #2 {OF(v32)→{t4(v100)<s0} ¬OF(v32)→{0≤st4(v100)}}
POINTSTO: #9 {esp(v4)={v228*activeFrame(a1) (#v229)}, SPdiff@0(v14)={v19*frame_0(a12) (#v17)}, t0(v23)={v235*activeFrame(a1) (#v236)}}
AFFINE: #18 {BP|SP(v2)=0, esp(v4)=-20, BP|SP@0(v13)=0, SPdiff@0(v14)=-4, [SP@0-4](v15)=134513695, v17=0, v19=0, t0(v23)=0, t1(v63)=-21, eax(v64)=0, f(804843d.02->0)(f121)=1, v228=1, v229=1, [SP-24](v230)=134513730, [SP-20](v231)=1, [SP-4](v232)=0, v235=1, v236=1}
CONGRUENCES: #30 {activeFrame(a1)*1, BP|SP(v2)=0, esp(v4)=-20, frame_0(a12)*1, BP|SP@0(v13)=0, SPdiff@0(v14)=-4, [SP@0-4](v15)=134513695, v17=0, v19=0, t0(v23)=0, CF(v26)*1, BE(v27)*1, LT(v28)*1, LE(v29)*1, ZF(v30)*1, SF(v31)*1, OF(v32)*1, t1(v63)=-21, eax(v64)=0, t2(v98)*1, t3(v99)*1, t4(v100)*1, f(804843d.02->0)(f121)=1, v228=1, v229=1, [SP-24](v230)=134513730, [SP-20](v231)=1, [SP-4](v232)=0, v235=1, v236=1}
INTERVALS: #30 {activeFrame(a1)=[0, +oo], BP|SP(v2)=[0], esp(v4)=[-20], frame_0(a12)=[0, +oo], BP|SP@0(v13)=[0], SPdiff@0(v14)=[-4], [SP@0-4](v15)=[134513695], v17=[0], v19=[0], t0(v23)=[0], CF(v26)=[0, 1], BE(v27)=[0, 1], LT(v28)=[0, 1], LE(v29)=[0, 1], ZF(v30)=[0, 1], SF(v31)=[0, 1], OF(v32)=[0, 1], t1(v63)=[-21], eax(v64)=[0], t2(v98)=[0, 4294967295], t3(v99)=[0, 4294967295], t4(v100)=[0, 4294967295], f(804843d.02->0)(f121)=[1], v228=[1], v229=[1], [SP-24](v230)=[134513730], [SP-20](v231)=[1], [SP-4](v232)=[0], v235=[1], v236=[1]}
#1 08048446.02 | cmpltu CF:1, t1:32, esp:32 » Next(8048446.03)
CF = [0, 1] pts: {}
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
t0 = [0, +oo] pts: {v235*activeFrame(a1) (#v236)}
@ 08048446.03: SEGMEM: Processor: {esp, t0, CF, BE, LT, LE, ZF, SF, OF, t1, eax, t2, t3, t4}
Stack: parents: {00000000.00}; callsites: {00000000.00={00000000.00=frame_0(a12)}, 080483f1.00={}, 08048408.00={}, 0804841f.00={}}; frames: {00000000.00={00000000.00}, 080483ec.00={080483ec.00}, 080483f1.00={080483f1.00, 080483fb.02}, 08048408.00={08048408.00, 08048412.02}, 0804841f.00={0804841f.00, 08048431.02, 0804843d.02}}
Data: Absolute: {[134512980:19]=_interp, [134513000:32]=_note_ABI_tag, [134513032:36]=_note_gnu_build_id, [134513068:32]=_gnu_hash, [134513100:64]=_dynsym, [134513164:69]=_dynstr, [134513234:8]=_gnu_version, [134513244:32]=_gnu_version_r, [134513276:8]=_rel_dyn, [134513284:16]=_rel_plt, [134513300:35]=_init, [134513344:48]=_plt, [134513392:468]=_text, [134513860:20]=_fini, [134513880:8]=_rodata, [134513888:68]=_eh_frame_hdr, [134513956:236]=_eh_frame, [134520584:4]=_init_array, [134520588:4]=_fini_array, [134520592:4]=_jcr, [134520596:232]=_dynamic, [134520828:4]=_got, [134520832:20]=_got_plt, [134520852:8]=_data, [134520860:4]=_bss}
UNDEF: {}
fPREDICATES: #4 {CF(v26)→{t1(v63)<uesp(v4)} ¬CF(v26)→{esp(v4)≤ut1(v63)}, OF(v32)→{t4(v100)<s0} ¬OF(v32)→{0≤st4(v100)}}
POINTSTO: #9 {esp(v4)={v228*activeFrame(a1) (#v229)}, SPdiff@0(v14)={v19*frame_0(a12) (#v17)}, t0(v23)={v235*activeFrame(a1) (#v236)}}
AFFINE: #18 {BP|SP(v2)=0, esp(v4)=-20, BP|SP@0(v13)=0, SPdiff@0(v14)=-4, [SP@0-4](v15)=134513695, v17=0, v19=0, t0(v23)=0, t1(v63)=-21, eax(v64)=0, f(804843d.02->0)(f121)=1, v228=1, v229=1, [SP-24](v230)=134513730, [SP-20](v231)=1, [SP-4](v232)=0, v235=1, v236=1}
CONGRUENCES: #30 {activeFrame(a1)*1, BP|SP(v2)=0, esp(v4)=-20, frame_0(a12)*1, BP|SP@0(v13)=0, SPdiff@0(v14)=-4, [SP@0-4](v15)=134513695, v17=0, v19=0, t0(v23)=0, CF(v26)*1, BE(v27)*1, LT(v28)*1, LE(v29)*1, ZF(v30)*1, SF(v31)*1, OF(v32)*1, t1(v63)=-21, eax(v64)=0, t2(v98)*1, t3(v99)*1, t4(v100)*1, f(804843d.02->0)(f121)=1, v228=1, v229=1, [SP-24](v230)=134513730, [SP-20](v231)=1, [SP-4](v232)=0, v235=1, v236=1}
INTERVALS: #30 {activeFrame(a1)=[0, +oo], BP|SP(v2)=[0], esp(v4)=[-20], frame_0(a12)=[0, +oo], BP|SP@0(v13)=[0], SPdiff@0(v14)=[-4], [SP@0-4](v15)=[134513695], v17=[0], v19=[0], t0(v23)=[0], CF(v26)=[0, 1], BE(v27)=[0, 1], LT(v28)=[0, 1], LE(v29)=[0, 1], ZF(v30)=[0, 1], SF(v31)=[0, 1], OF(v32)=[0, 1], t1(v63)=[-21], eax(v64)=[0], t2(v98)=[0, 4294967295], t3(v99)=[0, 4294967295], t4(v100)=[0, 4294967295], f(804843d.02->0)(f121)=[1], v228=[1], v229=[1], [SP-24](v230)=[134513730], [SP-20](v231)=[1], [SP-4](v232)=[0], v235=[1], v236=[1]}
#1 08048446.03 | cmpeq ZF:1, t0:32, 0:32 » Next(8048446.04)
ZF = [0, 1] pts: {}
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
t0 = [0, +oo] pts: {v235*activeFrame(a1) (#v236)}
@ 08048446.04: SEGMEM: Processor: {esp, t0, CF, BE, LT, LE, ZF, SF, OF, t1, eax, t2, t3, t4}
Stack: parents: {00000000.00}; callsites: {00000000.00={00000000.00=frame_0(a12)}, 080483f1.00={}, 08048408.00={}, 0804841f.00={}}; frames: {00000000.00={00000000.00}, 080483ec.00={080483ec.00}, 080483f1.00={080483f1.00, 080483fb.02}, 08048408.00={08048408.00, 08048412.02}, 0804841f.00={0804841f.00, 08048431.02, 0804843d.02}}
Data: Absolute: {[134512980:19]=_interp, [134513000:32]=_note_ABI_tag, [134513032:36]=_note_gnu_build_id, [134513068:32]=_gnu_hash, [134513100:64]=_dynsym, [134513164:69]=_dynstr, [134513234:8]=_gnu_version, [134513244:32]=_gnu_version_r, [134513276:8]=_rel_dyn, [134513284:16]=_rel_plt, [134513300:35]=_init, [134513344:48]=_plt, [134513392:468]=_text, [134513860:20]=_fini, [134513880:8]=_rodata, [134513888:68]=_eh_frame_hdr, [134513956:236]=_eh_frame, [134520584:4]=_init_array, [134520588:4]=_fini_array, [134520592:4]=_jcr, [134520596:232]=_dynamic, [134520828:4]=_got, [134520832:20]=_got_plt, [134520852:8]=_data, [134520860:4]=_bss}
UNDEF: {}
fPREDICATES: #6 {CF(v26)→{t1(v63)<uesp(v4)} ¬CF(v26)→{esp(v4)≤ut1(v63)}, ZF(v30)→{t0(v23)=0} ¬ZF(v30)→{t0(v23)≠0}, OF(v32)→{t4(v100)<s0} ¬OF(v32)→{0≤st4(v100)}}
POINTSTO: #9 {esp(v4)={v228*activeFrame(a1) (#v229)}, SPdiff@0(v14)={v19*frame_0(a12) (#v17)}, t0(v23)={v235*activeFrame(a1) (#v236)}}
AFFINE: #18 {BP|SP(v2)=0, esp(v4)=-20, BP|SP@0(v13)=0, SPdiff@0(v14)=-4, [SP@0-4](v15)=134513695, v17=0, v19=0, t0(v23)=0, t1(v63)=-21, eax(v64)=0, f(804843d.02->0)(f121)=1, v228=1, v229=1, [SP-24](v230)=134513730, [SP-20](v231)=1, [SP-4](v232)=0, v235=1, v236=1}
CONGRUENCES: #30 {activeFrame(a1)*1, BP|SP(v2)=0, esp(v4)=-20, frame_0(a12)*1, BP|SP@0(v13)=0, SPdiff@0(v14)=-4, [SP@0-4](v15)=134513695, v17=0, v19=0, t0(v23)=0, CF(v26)*1, BE(v27)*1, LT(v28)*1, LE(v29)*1, ZF(v30)*1, SF(v31)*1, OF(v32)*1, t1(v63)=-21, eax(v64)=0, t2(v98)*1, t3(v99)*1, t4(v100)*1, f(804843d.02->0)(f121)=1, v228=1, v229=1, [SP-24](v230)=134513730, [SP-20](v231)=1, [SP-4](v232)=0, v235=1, v236=1}
INTERVALS: #30 {activeFrame(a1)=[0, +oo], BP|SP(v2)=[0], esp(v4)=[-20], frame_0(a12)=[0, +oo], BP|SP@0(v13)=[0], SPdiff@0(v14)=[-4], [SP@0-4](v15)=[134513695], v17=[0], v19=[0], t0(v23)=[0], CF(v26)=[0, 1], BE(v27)=[0, 1], LT(v28)=[0, 1], LE(v29)=[0, 1], ZF(v30)=[0, 1], SF(v31)=[0, 1], OF(v32)=[0, 1], t1(v63)=[-21], eax(v64)=[0], t2(v98)=[0, 4294967295], t3(v99)=[0, 4294967295], t4(v100)=[0, 4294967295], f(804843d.02->0)(f121)=[1], v228=[1], v229=[1], [SP-24](v230)=[134513730], [SP-20](v231)=[1], [SP-4](v232)=[0], v235=[1], v236=[1]}
#1 08048446.04 | cmplts SF:1, t0:32, 0:32 » Next(8048446.05)
SF = [0, 1] pts: {}
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
t0 = [0, +oo] pts: {v235*activeFrame(a1) (#v236)} esp = [-20, +oo] pts: {v228*activeFrame(a1) (#v229)}
@ 08048446.05: SEGMEM: Processor: {esp, t0, CF, BE, LT, LE, ZF, SF, OF, t1, eax, t2, t3, t4}
Stack: parents: {00000000.00}; callsites: {00000000.00={00000000.00=frame_0(a12)}, 080483f1.00={}, 08048408.00={}, 0804841f.00={}}; frames: {00000000.00={00000000.00}, 080483ec.00={080483ec.00}, 080483f1.00={080483f1.00, 080483fb.02}, 08048408.00={08048408.00, 08048412.02}, 0804841f.00={0804841f.00, 08048431.02, 0804843d.02}}
Data: Absolute: {[134512980:19]=_interp, [134513000:32]=_note_ABI_tag, [134513032:36]=_note_gnu_build_id, [134513068:32]=_gnu_hash, [134513100:64]=_dynsym, [134513164:69]=_dynstr, [134513234:8]=_gnu_version, [134513244:32]=_gnu_version_r, [134513276:8]=_rel_dyn, [134513284:16]=_rel_plt, [134513300:35]=_init, [134513344:48]=_plt, [134513392:468]=_text, [134513860:20]=_fini, [134513880:8]=_rodata, [134513888:68]=_eh_frame_hdr, [134513956:236]=_eh_frame, [134520584:4]=_init_array, [134520588:4]=_fini_array, [134520592:4]=_jcr, [134520596:232]=_dynamic, [134520828:4]=_got, [134520832:20]=_got_plt, [134520852:8]=_data, [134520860:4]=_bss}
UNDEF: {}
fPREDICATES: #8 {CF(v26)→{t1(v63)<uesp(v4)} ¬CF(v26)→{esp(v4)≤ut1(v63)}, ZF(v30)→{t0(v23)=0} ¬ZF(v30)→{t0(v23)≠0}, SF(v31)→{t0(v23)<s0} ¬SF(v31)→{0≤st0(v23)}, OF(v32)→{t4(v100)<s0} ¬OF(v32)→{0≤st4(v100)}}
POINTSTO: #9 {esp(v4)={v228*activeFrame(a1) (#v229)}, SPdiff@0(v14)={v19*frame_0(a12) (#v17)}, t0(v23)={v235*activeFrame(a1) (#v236)}}
AFFINE: #18 {BP|SP(v2)=0, esp(v4)=-20, BP|SP@0(v13)=0, SPdiff@0(v14)=-4, [SP@0-4](v15)=134513695, v17=0, v19=0, t0(v23)=0, t1(v63)=-21, eax(v64)=0, f(804843d.02->0)(f121)=1, v228=1, v229=1, [SP-24](v230)=134513730, [SP-20](v231)=1, [SP-4](v232)=0, v235=1, v236=1}
CONGRUENCES: #30 {activeFrame(a1)*1, BP|SP(v2)=0, esp(v4)=-20, frame_0(a12)*1, BP|SP@0(v13)=0, SPdiff@0(v14)=-4, [SP@0-4](v15)=134513695, v17=0, v19=0, t0(v23)=0, CF(v26)*1, BE(v27)*1, LT(v28)*1, LE(v29)*1, ZF(v30)*1, SF(v31)*1, OF(v32)*1, t1(v63)=-21, eax(v64)=0, t2(v98)*1, t3(v99)*1, t4(v100)*1, f(804843d.02->0)(f121)=1, v228=1, v229=1, [SP-24](v230)=134513730, [SP-20](v231)=1, [SP-4](v232)=0, v235=1, v236=1}
INTERVALS: #30 {activeFrame(a1)=[0, +oo], BP|SP(v2)=[0], esp(v4)=[-20], frame_0(a12)=[0, +oo], BP|SP@0(v13)=[0], SPdiff@0(v14)=[-4], [SP@0-4](v15)=[134513695], v17=[0], v19=[0], t0(v23)=[0], CF(v26)=[0, 1], BE(v27)=[0, 1], LT(v28)=[0, 1], LE(v29)=[0, 1], ZF(v30)=[0, 1], SF(v31)=[0, 1], OF(v32)=[0, 1], t1(v63)=[-21], eax(v64)=[0], t2(v98)=[0, 4294967295], t3(v99)=[0, 4294967295], t4(v100)=[0, 4294967295], f(804843d.02->0)(f121)=[1], v228=[1], v229=[1], [SP-24](v230)=[134513730], [SP-20](v231)=[1], [SP-4](v232)=[0], v235=[1], v236=[1]}
#1 08048446.05 | xor t2:32, t0:32, esp:32 » Next(8048446.06)
t2 = [-oo, +oo] pts: {}
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
t0 = [0, +oo] pts: {v235*activeFrame(a1) (#v236)}
@ 08048446.06: SEGMEM: Processor: {esp, t0, CF, BE, LT, LE, ZF, SF, OF, t1, eax, t2, t3, t4}
Stack: parents: {00000000.00}; callsites: {00000000.00={00000000.00=frame_0(a12)}, 080483f1.00={}, 08048408.00={}, 0804841f.00={}}; frames: {00000000.00={00000000.00}, 080483ec.00={080483ec.00}, 080483f1.00={080483f1.00, 080483fb.02}, 08048408.00={08048408.00, 08048412.02}, 0804841f.00={0804841f.00, 08048431.02, 0804843d.02}}
Data: Absolute: {[134512980:19]=_interp, [134513000:32]=_note_ABI_tag, [134513032:36]=_note_gnu_build_id, [134513068:32]=_gnu_hash, [134513100:64]=_dynsym, [134513164:69]=_dynstr, [134513234:8]=_gnu_version, [134513244:32]=_gnu_version_r, [134513276:8]=_rel_dyn, [134513284:16]=_rel_plt, [134513300:35]=_init, [134513344:48]=_plt, [134513392:468]=_text, [134513860:20]=_fini, [134513880:8]=_rodata, [134513888:68]=_eh_frame_hdr, [134513956:236]=_eh_frame, [134520584:4]=_init_array, [134520588:4]=_fini_array, [134520592:4]=_jcr, [134520596:232]=_dynamic, [134520828:4]=_got, [134520832:20]=_got_plt, [134520852:8]=_data, [134520860:4]=_bss}
UNDEF: {}
fPREDICATES: #8 {CF(v26)→{t1(v63)<uesp(v4)} ¬CF(v26)→{esp(v4)≤ut1(v63)}, ZF(v30)→{t0(v23)=0} ¬ZF(v30)→{t0(v23)≠0}, SF(v31)→{t0(v23)<s0} ¬SF(v31)→{0≤st0(v23)}, OF(v32)→{t4(v100)<s0} ¬OF(v32)→{0≤st4(v100)}}
POINTSTO: #9 {esp(v4)={v228*activeFrame(a1) (#v229)}, SPdiff@0(v14)={v19*frame_0(a12) (#v17)}, t0(v23)={v235*activeFrame(a1) (#v236)}}
AFFINE: #18 {BP|SP(v2)=0, esp(v4)=-20, BP|SP@0(v13)=0, SPdiff@0(v14)=-4, [SP@0-4](v15)=134513695, v17=0, v19=0, t0(v23)=0, t1(v63)=-21, eax(v64)=0, f(804843d.02->0)(f121)=1, v228=1, v229=1, [SP-24](v230)=134513730, [SP-20](v231)=1, [SP-4](v232)=0, v235=1, v236=1}
CONGRUENCES: #30 {activeFrame(a1)*1, BP|SP(v2)=0, esp(v4)=-20, frame_0(a12)*1, BP|SP@0(v13)=0, SPdiff@0(v14)=-4, [SP@0-4](v15)=134513695, v17=0, v19=0, t0(v23)=0, CF(v26)*1, BE(v27)*1, LT(v28)*1, LE(v29)*1, ZF(v30)*1, SF(v31)*1, OF(v32)*1, t1(v63)=-21, eax(v64)=0, t2(v98)*1, t3(v99)*1, t4(v100)*1, f(804843d.02->0)(f121)=1, v228=1, v229=1, [SP-24](v230)=134513730, [SP-20](v231)=1, [SP-4](v232)=0, v235=1, v236=1}
INTERVALS: #30 {activeFrame(a1)=[0, +oo], BP|SP(v2)=[0], esp(v4)=[-20], frame_0(a12)=[0, +oo], BP|SP@0(v13)=[0], SPdiff@0(v14)=[-4], [SP@0-4](v15)=[134513695], v17=[0], v19=[0], t0(v23)=[0], CF(v26)=[0, 1], BE(v27)=[0, 1], LT(v28)=[0, 1], LE(v29)=[0, 1], ZF(v30)=[0, 1], SF(v31)=[0, 1], OF(v32)=[0, 1], t1(v63)=[-21], eax(v64)=[0], t2(v98)=[-oo, +oo], t3(v99)=[0, 4294967295], t4(v100)=[0, 4294967295], f(804843d.02->0)(f121)=[1], v228=[1], v229=[1], [SP-24](v230)=[134513730], [SP-20](v231)=[1], [SP-4](v232)=[0], v235=[1], v236=[1]}
#1 08048446.06 | xor t3:32, t0:32, 20:32 » Next(8048446.07)
t3 = [-oo, +oo] pts: {}
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
t2 = [-oo, +oo] pts: {} t3 = [-oo, +oo] pts: {}
@ 08048446.07: SEGMEM: Processor: {esp, t0, CF, BE, LT, LE, ZF, SF, OF, t1, eax, t2, t3, t4}
Stack: parents: {00000000.00}; callsites: {00000000.00={00000000.00=frame_0(a12)}, 080483f1.00={}, 08048408.00={}, 0804841f.00={}}; frames: {00000000.00={00000000.00}, 080483ec.00={080483ec.00}, 080483f1.00={080483f1.00, 080483fb.02}, 08048408.00={08048408.00, 08048412.02}, 0804841f.00={0804841f.00, 08048431.02, 0804843d.02}}
Data: Absolute: {[134512980:19]=_interp, [134513000:32]=_note_ABI_tag, [134513032:36]=_note_gnu_build_id, [134513068:32]=_gnu_hash, [134513100:64]=_dynsym, [134513164:69]=_dynstr, [134513234:8]=_gnu_version, [134513244:32]=_gnu_version_r, [134513276:8]=_rel_dyn, [134513284:16]=_rel_plt, [134513300:35]=_init, [134513344:48]=_plt, [134513392:468]=_text, [134513860:20]=_fini, [134513880:8]=_rodata, [134513888:68]=_eh_frame_hdr, [134513956:236]=_eh_frame, [134520584:4]=_init_array, [134520588:4]=_fini_array, [134520592:4]=_jcr, [134520596:232]=_dynamic, [134520828:4]=_got, [134520832:20]=_got_plt, [134520852:8]=_data, [134520860:4]=_bss}
UNDEF: {}
fPREDICATES: #8 {CF(v26)→{t1(v63)<uesp(v4)} ¬CF(v26)→{esp(v4)≤ut1(v63)}, ZF(v30)→{t0(v23)=0} ¬ZF(v30)→{t0(v23)≠0}, SF(v31)→{t0(v23)<s0} ¬SF(v31)→{0≤st0(v23)}, OF(v32)→{t4(v100)<s0} ¬OF(v32)→{0≤st4(v100)}}
POINTSTO: #9 {esp(v4)={v228*activeFrame(a1) (#v229)}, SPdiff@0(v14)={v19*frame_0(a12) (#v17)}, t0(v23)={v235*activeFrame(a1) (#v236)}}
AFFINE: #18 {BP|SP(v2)=0, esp(v4)=-20, BP|SP@0(v13)=0, SPdiff@0(v14)=-4, [SP@0-4](v15)=134513695, v17=0, v19=0, t0(v23)=0, t1(v63)=-21, eax(v64)=0, f(804843d.02->0)(f121)=1, v228=1, v229=1, [SP-24](v230)=134513730, [SP-20](v231)=1, [SP-4](v232)=0, v235=1, v236=1}
CONGRUENCES: #30 {activeFrame(a1)*1, BP|SP(v2)=0, esp(v4)=-20, frame_0(a12)*1, BP|SP@0(v13)=0, SPdiff@0(v14)=-4, [SP@0-4](v15)=134513695, v17=0, v19=0, t0(v23)=0, CF(v26)*1, BE(v27)*1, LT(v28)*1, LE(v29)*1, ZF(v30)*1, SF(v31)*1, OF(v32)*1, t1(v63)=-21, eax(v64)=0, t2(v98)*1, t3(v99)*1, t4(v100)*1, f(804843d.02->0)(f121)=1, v228=1, v229=1, [SP-24](v230)=134513730, [SP-20](v231)=1, [SP-4](v232)=0, v235=1, v236=1}
INTERVALS: #30 {activeFrame(a1)=[0, +oo], BP|SP(v2)=[0], esp(v4)=[-20], frame_0(a12)=[0, +oo], BP|SP@0(v13)=[0], SPdiff@0(v14)=[-4], [SP@0-4](v15)=[134513695], v17=[0], v19=[0], t0(v23)=[0], CF(v26)=[0, 1], BE(v27)=[0, 1], LT(v28)=[0, 1], LE(v29)=[0, 1], ZF(v30)=[0, 1], SF(v31)=[0, 1], OF(v32)=[0, 1], t1(v63)=[-21], eax(v64)=[0], t2(v98)=[-oo, +oo], t3(v99)=[-oo, +oo], t4(v100)=[0, 4294967295], f(804843d.02->0)(f121)=[1], v228=[1], v229=[1], [SP-24](v230)=[134513730], [SP-20](v231)=[1], [SP-4](v232)=[0], v235=[1], v236=[1]}
#1 08048446.07 | and t4:32, t2:32, t3:32 » Next(8048446.08)
t4 = [0, 4294967295] pts: {}
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
t4 = [0, 4294967295] pts: {}
@ 08048446.08: SEGMEM: Processor: {esp, t0, CF, BE, LT, LE, ZF, SF, OF, t1, eax, t2, t3, t4}
Stack: parents: {00000000.00}; callsites: {00000000.00={00000000.00=frame_0(a12)}, 080483f1.00={}, 08048408.00={}, 0804841f.00={}}; frames: {00000000.00={00000000.00}, 080483ec.00={080483ec.00}, 080483f1.00={080483f1.00, 080483fb.02}, 08048408.00={08048408.00, 08048412.02}, 0804841f.00={0804841f.00, 08048431.02, 0804843d.02}}
Data: Absolute: {[134512980:19]=_interp, [134513000:32]=_note_ABI_tag, [134513032:36]=_note_gnu_build_id, [134513068:32]=_gnu_hash, [134513100:64]=_dynsym, [134513164:69]=_dynstr, [134513234:8]=_gnu_version, [134513244:32]=_gnu_version_r, [134513276:8]=_rel_dyn, [134513284:16]=_rel_plt, [134513300:35]=_init, [134513344:48]=_plt, [134513392:468]=_text, [134513860:20]=_fini, [134513880:8]=_rodata, [134513888:68]=_eh_frame_hdr, [134513956:236]=_eh_frame, [134520584:4]=_init_array, [134520588:4]=_fini_array, [134520592:4]=_jcr, [134520596:232]=_dynamic, [134520828:4]=_got, [134520832:20]=_got_plt, [134520852:8]=_data, [134520860:4]=_bss}
UNDEF: {}
fPREDICATES: #6 {CF(v26)→{t1(v63)<uesp(v4)} ¬CF(v26)→{esp(v4)≤ut1(v63)}, ZF(v30)→{t0(v23)=0} ¬ZF(v30)→{t0(v23)≠0}, SF(v31)→{t0(v23)<s0} ¬SF(v31)→{0≤st0(v23)}}
POINTSTO: #9 {esp(v4)={v228*activeFrame(a1) (#v229)}, SPdiff@0(v14)={v19*frame_0(a12) (#v17)}, t0(v23)={v235*activeFrame(a1) (#v236)}}
AFFINE: #18 {BP|SP(v2)=0, esp(v4)=-20, BP|SP@0(v13)=0, SPdiff@0(v14)=-4, [SP@0-4](v15)=134513695, v17=0, v19=0, t0(v23)=0, t1(v63)=-21, eax(v64)=0, f(804843d.02->0)(f121)=1, v228=1, v229=1, [SP-24](v230)=134513730, [SP-20](v231)=1, [SP-4](v232)=0, v235=1, v236=1}
CONGRUENCES: #30 {activeFrame(a1)*1, BP|SP(v2)=0, esp(v4)=-20, frame_0(a12)*1, BP|SP@0(v13)=0, SPdiff@0(v14)=-4, [SP@0-4](v15)=134513695, v17=0, v19=0, t0(v23)=0, CF(v26)*1, BE(v27)*1, LT(v28)*1, LE(v29)*1, ZF(v30)*1, SF(v31)*1, OF(v32)*1, t1(v63)=-21, eax(v64)=0, t2(v98)*1, t3(v99)*1, t4(v100)*1, f(804843d.02->0)(f121)=1, v228=1, v229=1, [SP-24](v230)=134513730, [SP-20](v231)=1, [SP-4](v232)=0, v235=1, v236=1}
INTERVALS: #30 {activeFrame(a1)=[0, +oo], BP|SP(v2)=[0], esp(v4)=[-20], frame_0(a12)=[0, +oo], BP|SP@0(v13)=[0], SPdiff@0(v14)=[-4], [SP@0-4](v15)=[134513695], v17=[0], v19=[0], t0(v23)=[0], CF(v26)=[0, 1], BE(v27)=[0, 1], LT(v28)=[0, 1], LE(v29)=[0, 1], ZF(v30)=[0, 1], SF(v31)=[0, 1], OF(v32)=[0, 1], t1(v63)=[-21], eax(v64)=[0], t2(v98)=[0, 4294967295], t3(v99)=[0, 4294967295], t4(v100)=[0, 4294967295], f(804843d.02->0)(f121)=[1], v228=[1], v229=[1], [SP-24](v230)=[134513730], [SP-20](v231)=[1], [SP-4](v232)=[0], v235=[1], v236=[1]}
#1 08048446.08 | cmplts OF:1, t4:32, 0:32 » Next(8048446.09)
OF = [0, 1] pts: {}
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
CF = [0, 1] pts: {} ZF = [0, 1] pts: {}
@ 08048446.09: SEGMEM: Processor: {esp, t0, CF, BE, LT, LE, ZF, SF, OF, t1, eax, t2, t3, t4}
Stack: parents: {00000000.00}; callsites: {00000000.00={00000000.00=frame_0(a12)}, 080483f1.00={}, 08048408.00={}, 0804841f.00={}}; frames: {00000000.00={00000000.00}, 080483ec.00={080483ec.00}, 080483f1.00={080483f1.00, 080483fb.02}, 08048408.00={08048408.00, 08048412.02}, 0804841f.00={0804841f.00, 08048431.02, 0804843d.02}}
Data: Absolute: {[134512980:19]=_interp, [134513000:32]=_note_ABI_tag, [134513032:36]=_note_gnu_build_id, [134513068:32]=_gnu_hash, [134513100:64]=_dynsym, [134513164:69]=_dynstr, [134513234:8]=_gnu_version, [134513244:32]=_gnu_version_r, [134513276:8]=_rel_dyn, [134513284:16]=_rel_plt, [134513300:35]=_init, [134513344:48]=_plt, [134513392:468]=_text, [134513860:20]=_fini, [134513880:8]=_rodata, [134513888:68]=_eh_frame_hdr, [134513956:236]=_eh_frame, [134520584:4]=_init_array, [134520588:4]=_fini_array, [134520592:4]=_jcr, [134520596:232]=_dynamic, [134520828:4]=_got, [134520832:20]=_got_plt, [134520852:8]=_data, [134520860:4]=_bss}
UNDEF: {}
fPREDICATES: #8 {CF(v26)→{t1(v63)<uesp(v4)} ¬CF(v26)→{esp(v4)≤ut1(v63)}, ZF(v30)→{t0(v23)=0} ¬ZF(v30)→{t0(v23)≠0}, SF(v31)→{t0(v23)<s0} ¬SF(v31)→{0≤st0(v23)}, OF(v32)→{t4(v100)<s0} ¬OF(v32)→{0≤st4(v100)}}
POINTSTO: #9 {esp(v4)={v228*activeFrame(a1) (#v229)}, SPdiff@0(v14)={v19*frame_0(a12) (#v17)}, t0(v23)={v235*activeFrame(a1) (#v236)}}
AFFINE: #18 {BP|SP(v2)=0, esp(v4)=-20, BP|SP@0(v13)=0, SPdiff@0(v14)=-4, [SP@0-4](v15)=134513695, v17=0, v19=0, t0(v23)=0, t1(v63)=-21, eax(v64)=0, f(804843d.02->0)(f121)=1, v228=1, v229=1, [SP-24](v230)=134513730, [SP-20](v231)=1, [SP-4](v232)=0, v235=1, v236=1}
CONGRUENCES: #30 {activeFrame(a1)*1, BP|SP(v2)=0, esp(v4)=-20, frame_0(a12)*1, BP|SP@0(v13)=0, SPdiff@0(v14)=-4, [SP@0-4](v15)=134513695, v17=0, v19=0, t0(v23)=0, CF(v26)*1, BE(v27)*1, LT(v28)*1, LE(v29)*1, ZF(v30)*1, SF(v31)*1, OF(v32)*1, t1(v63)=-21, eax(v64)=0, t2(v98)*1, t3(v99)*1, t4(v100)*1, f(804843d.02->0)(f121)=1, v228=1, v229=1, [SP-24](v230)=134513730, [SP-20](v231)=1, [SP-4](v232)=0, v235=1, v236=1}
INTERVALS: #30 {activeFrame(a1)=[0, +oo], BP|SP(v2)=[0], esp(v4)=[-20], frame_0(a12)=[0, +oo], BP|SP@0(v13)=[0], SPdiff@0(v14)=[-4], [SP@0-4](v15)=[134513695], v17=[0], v19=[0], t0(v23)=[0], CF(v26)=[0, 1], BE(v27)=[0, 1], LT(v28)=[0, 1], LE(v29)=[0, 1], ZF(v30)=[0, 1], SF(v31)=[0, 1], OF(v32)=[0, 1], t1(v63)=[-21], eax(v64)=[0], t2(v98)=[0, 4294967295], t3(v99)=[0, 4294967295], t4(v100)=[0, 4294967295], f(804843d.02->0)(f121)=[1], v228=[1], v229=[1], [SP-24](v230)=[134513730], [SP-20](v231)=[1], [SP-4](v232)=[0], v235=[1], v236=[1]}
#1 08048446.09 | or BE:1, CF:1, ZF:1 » Next(8048446.0a)
BE = [0, 1] pts: {}
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
SF = [0, 1] pts: {} OF = [0, 1] pts: {}
@ 08048446.0a: SEGMEM: Processor: {esp, t0, CF, BE, LT, LE, ZF, SF, OF, t1, eax, t2, t3, t4}
Stack: parents: {00000000.00}; callsites: {00000000.00={00000000.00=frame_0(a12)}, 080483f1.00={}, 08048408.00={}, 0804841f.00={}}; frames: {00000000.00={00000000.00}, 080483ec.00={080483ec.00}, 080483f1.00={080483f1.00, 080483fb.02}, 08048408.00={08048408.00, 08048412.02}, 0804841f.00={0804841f.00, 08048431.02, 0804843d.02}}
Data: Absolute: {[134512980:19]=_interp, [134513000:32]=_note_ABI_tag, [134513032:36]=_note_gnu_build_id, [134513068:32]=_gnu_hash, [134513100:64]=_dynsym, [134513164:69]=_dynstr, [134513234:8]=_gnu_version, [134513244:32]=_gnu_version_r, [134513276:8]=_rel_dyn, [134513284:16]=_rel_plt, [134513300:35]=_init, [134513344:48]=_plt, [134513392:468]=_text, [134513860:20]=_fini, [134513880:8]=_rodata, [134513888:68]=_eh_frame_hdr, [134513956:236]=_eh_frame, [134520584:4]=_init_array, [134520588:4]=_fini_array, [134520592:4]=_jcr, [134520596:232]=_dynamic, [134520828:4]=_got, [134520832:20]=_got_plt, [134520852:8]=_data, [134520860:4]=_bss}
UNDEF: {}
fPREDICATES: #8 {CF(v26)→{t1(v63)<uesp(v4)} ¬CF(v26)→{esp(v4)≤ut1(v63)}, ZF(v30)→{t0(v23)=0} ¬ZF(v30)→{t0(v23)≠0}, SF(v31)→{t0(v23)<s0} ¬SF(v31)→{0≤st0(v23)}, OF(v32)→{t4(v100)<s0} ¬OF(v32)→{0≤st4(v100)}}
POINTSTO: #9 {esp(v4)={v228*activeFrame(a1) (#v229)}, SPdiff@0(v14)={v19*frame_0(a12) (#v17)}, t0(v23)={v235*activeFrame(a1) (#v236)}}
AFFINE: #18 {BP|SP(v2)=0, esp(v4)=-20, BP|SP@0(v13)=0, SPdiff@0(v14)=-4, [SP@0-4](v15)=134513695, v17=0, v19=0, t0(v23)=0, t1(v63)=-21, eax(v64)=0, f(804843d.02->0)(f121)=1, v228=1, v229=1, [SP-24](v230)=134513730, [SP-20](v231)=1, [SP-4](v232)=0, v235=1, v236=1}
CONGRUENCES: #30 {activeFrame(a1)*1, BP|SP(v2)=0, esp(v4)=-20, frame_0(a12)*1, BP|SP@0(v13)=0, SPdiff@0(v14)=-4, [SP@0-4](v15)=134513695, v17=0, v19=0, t0(v23)=0, CF(v26)*1, BE(v27)*1, LT(v28)*1, LE(v29)*1, ZF(v30)*1, SF(v31)*1, OF(v32)*1, t1(v63)=-21, eax(v64)=0, t2(v98)*1, t3(v99)*1, t4(v100)*1, f(804843d.02->0)(f121)=1, v228=1, v229=1, [SP-24](v230)=134513730, [SP-20](v231)=1, [SP-4](v232)=0, v235=1, v236=1}
INTERVALS: #30 {activeFrame(a1)=[0, +oo], BP|SP(v2)=[0], esp(v4)=[-20], frame_0(a12)=[0, +oo], BP|SP@0(v13)=[0], SPdiff@0(v14)=[-4], [SP@0-4](v15)=[134513695], v17=[0], v19=[0], t0(v23)=[0], CF(v26)=[0, 1], BE(v27)=[0, 1], LT(v28)=[0, 1], LE(v29)=[0, 1], ZF(v30)=[0, 1], SF(v31)=[0, 1], OF(v32)=[0, 1], t1(v63)=[-21], eax(v64)=[0], t2(v98)=[0, 4294967295], t3(v99)=[0, 4294967295], t4(v100)=[0, 4294967295], f(804843d.02->0)(f121)=[1], v228=[1], v229=[1], [SP-24](v230)=[134513730], [SP-20](v231)=[1], [SP-4](v232)=[0], v235=[1], v236=[1]}
#1 08048446.0a | xor LT:1, SF:1, OF:1 » Next(8048446.0b)
LT = [0, 1] pts: {}
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
LT = [0, 1] pts: {} ZF = [0, 1] pts: {}
@ 08048446.0b: SEGMEM: Processor: {esp, t0, CF, BE, LT, LE, ZF, SF, OF, t1, eax, t2, t3, t4}
Stack: parents: {00000000.00}; callsites: {00000000.00={00000000.00=frame_0(a12)}, 080483f1.00={}, 08048408.00={}, 0804841f.00={}}; frames: {00000000.00={00000000.00}, 080483ec.00={080483ec.00}, 080483f1.00={080483f1.00, 080483fb.02}, 08048408.00={08048408.00, 08048412.02}, 0804841f.00={0804841f.00, 08048431.02, 0804843d.02}}
Data: Absolute: {[134512980:19]=_interp, [134513000:32]=_note_ABI_tag, [134513032:36]=_note_gnu_build_id, [134513068:32]=_gnu_hash, [134513100:64]=_dynsym, [134513164:69]=_dynstr, [134513234:8]=_gnu_version, [134513244:32]=_gnu_version_r, [134513276:8]=_rel_dyn, [134513284:16]=_rel_plt, [134513300:35]=_init, [134513344:48]=_plt, [134513392:468]=_text, [134513860:20]=_fini, [134513880:8]=_rodata, [134513888:68]=_eh_frame_hdr, [134513956:236]=_eh_frame, [134520584:4]=_init_array, [134520588:4]=_fini_array, [134520592:4]=_jcr, [134520596:232]=_dynamic, [134520828:4]=_got, [134520832:20]=_got_plt, [134520852:8]=_data, [134520860:4]=_bss}
UNDEF: {}
fPREDICATES: #8 {CF(v26)→{t1(v63)<uesp(v4)} ¬CF(v26)→{esp(v4)≤ut1(v63)}, ZF(v30)→{t0(v23)=0} ¬ZF(v30)→{t0(v23)≠0}, SF(v31)→{t0(v23)<s0} ¬SF(v31)→{0≤st0(v23)}, OF(v32)→{t4(v100)<s0} ¬OF(v32)→{0≤st4(v100)}}
POINTSTO: #9 {esp(v4)={v228*activeFrame(a1) (#v229)}, SPdiff@0(v14)={v19*frame_0(a12) (#v17)}, t0(v23)={v235*activeFrame(a1) (#v236)}}
AFFINE: #18 {BP|SP(v2)=0, esp(v4)=-20, BP|SP@0(v13)=0, SPdiff@0(v14)=-4, [SP@0-4](v15)=134513695, v17=0, v19=0, t0(v23)=0, t1(v63)=-21, eax(v64)=0, f(804843d.02->0)(f121)=1, v228=1, v229=1, [SP-24](v230)=134513730, [SP-20](v231)=1, [SP-4](v232)=0, v235=1, v236=1}
CONGRUENCES: #30 {activeFrame(a1)*1, BP|SP(v2)=0, esp(v4)=-20, frame_0(a12)*1, BP|SP@0(v13)=0, SPdiff@0(v14)=-4, [SP@0-4](v15)=134513695, v17=0, v19=0, t0(v23)=0, CF(v26)*1, BE(v27)*1, LT(v28)*1, LE(v29)*1, ZF(v30)*1, SF(v31)*1, OF(v32)*1, t1(v63)=-21, eax(v64)=0, t2(v98)*1, t3(v99)*1, t4(v100)*1, f(804843d.02->0)(f121)=1, v228=1, v229=1, [SP-24](v230)=134513730, [SP-20](v231)=1, [SP-4](v232)=0, v235=1, v236=1}
INTERVALS: #30 {activeFrame(a1)=[0, +oo], BP|SP(v2)=[0], esp(v4)=[-20], frame_0(a12)=[0, +oo], BP|SP@0(v13)=[0], SPdiff@0(v14)=[-4], [SP@0-4](v15)=[134513695], v17=[0], v19=[0], t0(v23)=[0], CF(v26)=[0, 1], BE(v27)=[0, 1], LT(v28)=[0, 1], LE(v29)=[0, 1], ZF(v30)=[0, 1], SF(v31)=[0, 1], OF(v32)=[0, 1], t1(v63)=[-21], eax(v64)=[0], t2(v98)=[0, 4294967295], t3(v99)=[0, 4294967295], t4(v100)=[0, 4294967295], f(804843d.02->0)(f121)=[1], v228=[1], v229=[1], [SP-24](v230)=[134513730], [SP-20](v231)=[1], [SP-4](v232)=[0], v235=[1], v236=[1]}
#1 08048446.0b | or LE:1, LT:1, ZF:1 » Next(8048446.0c)
LE = [0, 1] pts: {}
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
t0 = [0, +oo] pts: {v235*activeFrame(a1) (#v236)}
@ 08048446.0c: SEGMEM: Processor: {esp, t0, CF, BE, LT, LE, ZF, SF, OF, t1, eax, t2, t3, t4}
Stack: parents: {00000000.00}; callsites: {00000000.00={00000000.00=frame_0(a12)}, 080483f1.00={}, 08048408.00={}, 0804841f.00={}}; frames: {00000000.00={00000000.00}, 080483ec.00={080483ec.00}, 080483f1.00={080483f1.00, 080483fb.02}, 08048408.00={08048408.00, 08048412.02}, 0804841f.00={0804841f.00, 08048431.02, 0804843d.02}}
Data: Absolute: {[134512980:19]=_interp, [134513000:32]=_note_ABI_tag, [134513032:36]=_note_gnu_build_id, [134513068:32]=_gnu_hash, [134513100:64]=_dynsym, [134513164:69]=_dynstr, [134513234:8]=_gnu_version, [134513244:32]=_gnu_version_r, [134513276:8]=_rel_dyn, [134513284:16]=_rel_plt, [134513300:35]=_init, [134513344:48]=_plt, [134513392:468]=_text, [134513860:20]=_fini, [134513880:8]=_rodata, [134513888:68]=_eh_frame_hdr, [134513956:236]=_eh_frame, [134520584:4]=_init_array, [134520588:4]=_fini_array, [134520592:4]=_jcr, [134520596:232]=_dynamic, [134520828:4]=_got, [134520832:20]=_got_plt, [134520852:8]=_data, [134520860:4]=_bss}
UNDEF: {}
fPREDICATES: #8 {CF(v26)→{t1(v63)<uesp(v4)} ¬CF(v26)→{esp(v4)≤ut1(v63)}, ZF(v30)→{t0(v23)=0} ¬ZF(v30)→{t0(v23)≠0}, SF(v31)→{t0(v23)<s0} ¬SF(v31)→{0≤st0(v23)}, OF(v32)→{t4(v100)<s0} ¬OF(v32)→{0≤st4(v100)}}
POINTSTO: #9 {esp(v4)={v228*activeFrame(a1) (#v229)}, SPdiff@0(v14)={v19*frame_0(a12) (#v17)}, t0(v23)={v235*activeFrame(a1) (#v236)}}
AFFINE: #18 {BP|SP(v2)=0, esp(v4)=-20, BP|SP@0(v13)=0, SPdiff@0(v14)=-4, [SP@0-4](v15)=134513695, v17=0, v19=0, t0(v23)=0, t1(v63)=-21, eax(v64)=0, f(804843d.02->0)(f121)=1, v228=1, v229=1, [SP-24](v230)=134513730, [SP-20](v231)=1, [SP-4](v232)=0, v235=1, v236=1}
CONGRUENCES: #30 {activeFrame(a1)*1, BP|SP(v2)=0, esp(v4)=-20, frame_0(a12)*1, BP|SP@0(v13)=0, SPdiff@0(v14)=-4, [SP@0-4](v15)=134513695, v17=0, v19=0, t0(v23)=0, CF(v26)*1, BE(v27)*1, LT(v28)*1, LE(v29)*1, ZF(v30)*1, SF(v31)*1, OF(v32)*1, t1(v63)=-21, eax(v64)=0, t2(v98)*1, t3(v99)*1, t4(v100)*1, f(804843d.02->0)(f121)=1, v228=1, v229=1, [SP-24](v230)=134513730, [SP-20](v231)=1, [SP-4](v232)=0, v235=1, v236=1}
INTERVALS: #30 {activeFrame(a1)=[0, +oo], BP|SP(v2)=[0], esp(v4)=[-20], frame_0(a12)=[0, +oo], BP|SP@0(v13)=[0], SPdiff@0(v14)=[-4], [SP@0-4](v15)=[134513695], v17=[0], v19=[0], t0(v23)=[0], CF(v26)=[0, 1], BE(v27)=[0, 1], LT(v28)=[0, 1], LE(v29)=[0, 1], ZF(v30)=[0, 1], SF(v31)=[0, 1], OF(v32)=[0, 1], t1(v63)=[-21], eax(v64)=[0], t2(v98)=[0, 4294967295], t3(v99)=[0, 4294967295], t4(v100)=[0, 4294967295], f(804843d.02->0)(f121)=[1], v228=[1], v229=[1], [SP-24](v230)=[134513730], [SP-20](v231)=[1], [SP-4](v232)=[0], v235=[1], v236=[1]}
#1 08048446.0c | mov esp:32, t0:32 » Next(8048449)
esp = [0, +oo] pts: {v237*activeFrame(a1) (#v238)}
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
esp = [0, +oo] pts: {v237*activeFrame(a1) (#v238)}
@ 08048449.00: SEGMEM: Processor: {esp, t0, CF, BE, LT, LE, ZF, SF, OF, t1, eax, t2, t3, t4}
Stack: parents: {00000000.00}; callsites: {00000000.00={00000000.00=frame_0(a12)}, 080483f1.00={}, 08048408.00={}, 0804841f.00={}}; frames: {00000000.00={00000000.00}, 080483ec.00={080483ec.00}, 080483f1.00={080483f1.00, 080483fb.02}, 08048408.00={08048408.00, 08048412.02}, 0804841f.00={0804841f.00, 08048431.02, 0804843d.02}}
Data: Absolute: {[134512980:19]=_interp, [134513000:32]=_note_ABI_tag, [134513032:36]=_note_gnu_build_id, [134513068:32]=_gnu_hash, [134513100:64]=_dynsym, [134513164:69]=_dynstr, [134513234:8]=_gnu_version, [134513244:32]=_gnu_version_r, [134513276:8]=_rel_dyn, [134513284:16]=_rel_plt, [134513300:35]=_init, [134513344:48]=_plt, [134513392:468]=_text, [134513860:20]=_fini, [134513880:8]=_rodata, [134513888:68]=_eh_frame_hdr, [134513956:236]=_eh_frame, [134520584:4]=_init_array, [134520588:4]=_fini_array, [134520592:4]=_jcr, [134520596:232]=_dynamic, [134520828:4]=_got, [134520832:20]=_got_plt, [134520852:8]=_data, [134520860:4]=_bss}
UNDEF: {}
fPREDICATES: #6 {ZF(v30)→{t0(v23)=0} ¬ZF(v30)→{t0(v23)≠0}, SF(v31)→{t0(v23)<s0} ¬SF(v31)→{0≤st0(v23)}, OF(v32)→{t4(v100)<s0} ¬OF(v32)→{0≤st4(v100)}}
POINTSTO: #9 {esp(v4)={v237*activeFrame(a1) (#v238)}, SPdiff@0(v14)={v19*frame_0(a12) (#v17)}, t0(v23)={v235*activeFrame(a1) (#v236)}}
AFFINE: #18 {BP|SP(v2)=0, esp(v4)=0, BP|SP@0(v13)=0, SPdiff@0(v14)=-4, [SP@0-4](v15)=134513695, v17=0, v19=0, t0(v23)=0, t1(v63)=-21, eax(v64)=0, f(804843d.02->0)(f121)=1, [SP-24](v230)=134513730, [SP-20](v231)=1, [SP-4](v232)=0, v235=1, v236=1, v237=1, v238=1}
CONGRUENCES: #30 {activeFrame(a1)*1, BP|SP(v2)=0, esp(v4)=0, frame_0(a12)*1, BP|SP@0(v13)=0, SPdiff@0(v14)=-4, [SP@0-4](v15)=134513695, v17=0, v19=0, t0(v23)=0, CF(v26)*1, BE(v27)*1, LT(v28)*1, LE(v29)*1, ZF(v30)*1, SF(v31)*1, OF(v32)*1, t1(v63)=-21, eax(v64)=0, t2(v98)*1, t3(v99)*1, t4(v100)*1, f(804843d.02->0)(f121)=1, [SP-24](v230)=134513730, [SP-20](v231)=1, [SP-4](v232)=0, v235=1, v236=1, v237=1, v238=1}
INTERVALS: #30 {activeFrame(a1)=[0, +oo], BP|SP(v2)=[0], esp(v4)=[0], frame_0(a12)=[0, +oo], BP|SP@0(v13)=[0], SPdiff@0(v14)=[-4], [SP@0-4](v15)=[134513695], v17=[0], v19=[0], t0(v23)=[0], CF(v26)=[0, 1], BE(v27)=[0, 1], LT(v28)=[0, 1], LE(v29)=[0, 1], ZF(v30)=[0, 1], SF(v31)=[0, 1], OF(v32)=[0, 1], t1(v63)=[-21], eax(v64)=[0], t2(v98)=[0, 4294967295], t3(v99)=[0, 4294967295], t4(v100)=[0, 4294967295], f(804843d.02->0)(f121)=[1], [SP-24](v230)=[134513730], [SP-20](v231)=[1], [SP-4](v232)=[0], v235=[1], v236=[1], v237=[1], v238=[1]}
_______________
main: ret
‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾
#1 08048449.00 | load t0:32, [esp:32] » Next(8048449.01)
t0 = [134513695] eqs: t0(v23)=134513695 pts: {}
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
esp = [0, +oo] pts: {v237*activeFrame(a1) (#v238)}
@ 08048449.01: SEGMEM: Processor: {esp, t0, CF, BE, LT, LE, ZF, SF, OF, t1, eax, t2, t3, t4}
Stack: parents: {00000000.00}; callsites: {00000000.00={00000000.00=frame_0(a12)}, 080483f1.00={}, 08048408.00={}, 0804841f.00={}}; frames: {00000000.00={00000000.00}, 080483ec.00={080483ec.00}, 080483f1.00={080483f1.00, 080483fb.02}, 08048408.00={08048408.00, 08048412.02}, 0804841f.00={0804841f.00, 08048431.02, 0804843d.02}}
Data: Absolute: {[134512980:19]=_interp, [134513000:32]=_note_ABI_tag, [134513032:36]=_note_gnu_build_id, [134513068:32]=_gnu_hash, [134513100:64]=_dynsym, [134513164:69]=_dynstr, [134513234:8]=_gnu_version, [134513244:32]=_gnu_version_r, [134513276:8]=_rel_dyn, [134513284:16]=_rel_plt, [134513300:35]=_init, [134513344:48]=_plt, [134513392:468]=_text, [134513860:20]=_fini, [134513880:8]=_rodata, [134513888:68]=_eh_frame_hdr, [134513956:236]=_eh_frame, [134520584:4]=_init_array, [134520588:4]=_fini_array, [134520592:4]=_jcr, [134520596:232]=_dynamic, [134520828:4]=_got, [134520832:20]=_got_plt, [134520852:8]=_data, [134520860:4]=_bss}
UNDEF: {}
fPREDICATES: #2 {OF(v32)→{t4(v100)<s0} ¬OF(v32)→{0≤st4(v100)}}
POINTSTO: #6 {esp(v4)={v237*activeFrame(a1) (#v238)}, SPdiff@0(v14)={v19*frame_0(a12) (#v17)}}
AFFINE: #16 {BP|SP(v2)=0, esp(v4)=0, BP|SP@0(v13)=0, SPdiff@0(v14)=-4, [SP@0-4](v15)=134513695, v17=0, v19=0, t0(v23)=134513695, t1(v63)=-21, eax(v64)=0, f(804843d.02->0)(f121)=1, [SP-24](v230)=134513730, [SP-20](v231)=1, [SP-4](v232)=0, v237=1, v238=1}
CONGRUENCES: #28 {activeFrame(a1)*1, BP|SP(v2)=0, esp(v4)=0, frame_0(a12)*1, BP|SP@0(v13)=0, SPdiff@0(v14)=-4, [SP@0-4](v15)=134513695, v17=0, v19=0, t0(v23)=134513695, CF(v26)*1, BE(v27)*1, LT(v28)*1, LE(v29)*1, ZF(v30)*1, SF(v31)*1, OF(v32)*1, t1(v63)=-21, eax(v64)=0, t2(v98)*1, t3(v99)*1, t4(v100)*1, f(804843d.02->0)(f121)=1, [SP-24](v230)=134513730, [SP-20](v231)=1, [SP-4](v232)=0, v237=1, v238=1}
INTERVALS: #28 {activeFrame(a1)=[0, +oo], BP|SP(v2)=[0], esp(v4)=[0], frame_0(a12)=[0, +oo], BP|SP@0(v13)=[0], SPdiff@0(v14)=[-4], [SP@0-4](v15)=[134513695], v17=[0], v19=[0], t0(v23)=[134513695], CF(v26)=[0, 1], BE(v27)=[0, 1], LT(v28)=[0, 1], LE(v29)=[0, 1], ZF(v30)=[0, 1], SF(v31)=[0, 1], OF(v32)=[0, 1], t1(v63)=[-21], eax(v64)=[0], t2(v98)=[0, 4294967295], t3(v99)=[0, 4294967295], t4(v100)=[0, 4294967295], f(804843d.02->0)(f121)=[1], [SP-24](v230)=[134513730], [SP-20](v231)=[1], [SP-4](v232)=[0], v237=[1], v238=[1]}
#1 08048449.01 | add esp:32, esp:32, 4:32 » Next(8048449.02)
esp = [4, +oo] pts: {v239*activeFrame(a1) (#v240)}
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
t0 = [134513695] eqs: t0(v23)=134513695 pts: {}
@ 08048449.02: SEGMEM: Processor: {esp, t0, CF, BE, LT, LE, ZF, SF, OF, t1, eax, t2, t3, t4}
Stack: parents: {00000000.00}; callsites: {00000000.00={00000000.00=frame_0(a12)}, 080483f1.00={}, 08048408.00={}, 0804841f.00={}}; frames: {00000000.00={00000000.00}, 080483ec.00={080483ec.00}, 080483f1.00={080483f1.00, 080483fb.02}, 08048408.00={08048408.00, 08048412.02}, 0804841f.00={0804841f.00, 08048431.02, 0804843d.02}}
Data: Absolute: {[134512980:19]=_interp, [134513000:32]=_note_ABI_tag, [134513032:36]=_note_gnu_build_id, [134513068:32]=_gnu_hash, [134513100:64]=_dynsym, [134513164:69]=_dynstr, [134513234:8]=_gnu_version, [134513244:32]=_gnu_version_r, [134513276:8]=_rel_dyn, [134513284:16]=_rel_plt, [134513300:35]=_init, [134513344:48]=_plt, [134513392:468]=_text, [134513860:20]=_fini, [134513880:8]=_rodata, [134513888:68]=_eh_frame_hdr, [134513956:236]=_eh_frame, [134520584:4]=_init_array, [134520588:4]=_fini_array, [134520592:4]=_jcr, [134520596:232]=_dynamic, [134520828:4]=_got, [134520832:20]=_got_plt, [134520852:8]=_data, [134520860:4]=_bss}
UNDEF: {}
fPREDICATES: #2 {OF(v32)→{t4(v100)<s0} ¬OF(v32)→{0≤st4(v100)}}
POINTSTO: #6 {esp(v4)={v239*activeFrame(a1) (#v240)}, SPdiff@0(v14)={v19*frame_0(a12) (#v17)}}
AFFINE: #16 {BP|SP(v2)=0, esp(v4)=4, BP|SP@0(v13)=0, SPdiff@0(v14)=-4, [SP@0-4](v15)=134513695, v17=0, v19=0, t0(v23)=134513695, t1(v63)=-21, eax(v64)=0, f(804843d.02->0)(f121)=1, [SP-24](v230)=134513730, [SP-20](v231)=1, [SP-4](v232)=0, v239=1, v240=1}
CONGRUENCES: #28 {activeFrame(a1)*1, BP|SP(v2)=0, esp(v4)=4, frame_0(a12)*1, BP|SP@0(v13)=0, SPdiff@0(v14)=-4, [SP@0-4](v15)=134513695, v17=0, v19=0, t0(v23)=134513695, CF(v26)*1, BE(v27)*1, LT(v28)*1, LE(v29)*1, ZF(v30)*1, SF(v31)*1, OF(v32)*1, t1(v63)=-21, eax(v64)=0, t2(v98)*1, t3(v99)*1, t4(v100)*1, f(804843d.02->0)(f121)=1, [SP-24](v230)=134513730, [SP-20](v231)=1, [SP-4](v232)=0, v239=1, v240=1}
INTERVALS: #28 {activeFrame(a1)=[0, +oo], BP|SP(v2)=[0], esp(v4)=[4], frame_0(a12)=[0, +oo], BP|SP@0(v13)=[0], SPdiff@0(v14)=[-4], [SP@0-4](v15)=[134513695], v17=[0], v19=[0], t0(v23)=[134513695], CF(v26)=[0, 1], BE(v27)=[0, 1], LT(v28)=[0, 1], LE(v29)=[0, 1], ZF(v30)=[0, 1], SF(v31)=[0, 1], OF(v32)=[0, 1], t1(v63)=[-21], eax(v64)=[0], t2(v98)=[0, 4294967295], t3(v99)=[0, 4294967295], t4(v100)=[0, 4294967295], f(804843d.02->0)(f121)=[1], [SP-24](v230)=[134513730], [SP-20](v231)=[1], [SP-4](v232)=[0], v239=[1], v240=[1]}
#1 08048449.02 | return t0:32 NO SUCCESSORS
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
Analysis steps: 143
Warnings: 0
```
Out abstract domains can be serialized into an XML representation that is more suitable to post-processing. It is currently only used in the GUI to display the abstract domain values formatted as HTML.
Updated