mobile wallpaper 1mobile wallpaper 2mobile wallpaper 3
Profile Image of the Author
0xV3n0m
Announcement
Welcome To My Personal Blog
Tags
221 words
1 minute
CH1.10 - Almost Empty Function
2025-11-11
Re4B
Reverse Engineering
/
Books
/
Assembly

Almost Empty Function

The author began by saying that this is a real code example he found in Boolector. 

// Forward declaration of the function. This function exists in another file:
int boolector_main (int argc, char **argv);


// The executable program
int main (int argc, char **argv)
{
    return boolector_main (argc, argv);
}

Here, the author talked about a very simple function, almost empty, called main(). All it really does is call another function named boolector_main and passes it the same parameters.

In other words, instead of writing all the code inside main, he made main just an intermediary that calls boolector_main and returns its result.

The author mentioned that the reason could be that the actual function (boolector_main) is stored in another file or library (like a DLL or a shared library).

This is useful, for example, when the main program is being tested by a test suite, and that test suite needs to call main just like the system normally does.

Then he explained that when this code is compiled before optimization, it looks like this: 

main:
    push  rbp                  ; save base pointer of previous stack frame
    mov   rbp, rsp             ; set base pointer for current stack frame
    sub   rsp, 16              ; allocate 16 bytes on the stack for local variables
    mov   DWORD PTR -4[rbp], edi  ; move first argument (argc) to local variable
    mov   QWORD PTR -16[rbp], rsi ; move second argument (argv) to local variable
    mov   rdx, QWORD PTR -16[rbp] ; prepare rsi argument for call
    mov   eax, DWORD PTR -4[rbp]  ; prepare edi argument for call
    mov   rsi, rdx             ; move argv to rsi register
    mov   edi, eax             ; move argc to edi register
    call  boolector_main       ; call the actual main function
    leave                       ; restore previous stack frame
    ret                         ; return to caller

But let’s take a look at the optimized version:

Listing 1.46: Optimizing GCC 8.2 x64 (Assembly Output with Comments) 

main:
    jmp boolector_main    ; jump directly to the address of boolector_main, skipping prologue/epilogue

Very simply, the stack and registers are untouched, and boolector_main() receives the same arguments. So all we need to do is just pass the execution flow to another address.

This is quite similar to the concept of a thunk function — a function that only performs redirection or forwarding.

Share

If this article helped you, please share it with others!

CH1.10 - Almost Empty Function
https://v3nn00m.github.io/posts/re4b/chapter1_10/
Author
0xV3n0m
Published at
2025-11-11

Some information may be outdated

CH1.11 - printf() With Several Arguments (Part 1)
CH1.9 - Stack
Related Posts Smart
1
CH1.3 & CH1.4 - Empty Function & Returning Values
Re4B Exploring what compilers generate for empty functions and how return values are handled in assembly
2
CH1.28 Manipulating specific bit(s) (Part1)
Re4B How compilers check and manipulate individual bits using TEST, AND, flags, and real-world examples from Win32 API and Linux kernel
3
CH1.27 Example: a bug in Angband
Re4B A real-world array overflow bug in the classic rogue-like game Angband and how players exploited it
4
CH1.26 (part2) Array of Pointers to Strings
Re4B A look at how arrays of pointers to strings work across different architectures and what happens when the array boundary is exceeded
5
CH1.6 - CH1.8 - Function Prologue and Epilogue
Re4B Understanding function prologue and epilogue patterns generated by compilers in x86/x64 assembly
Random Posts Random
1
CH1.11 - printf() With Several Arguments (Part 2)
Re4B 2025-11-22
2
CH1.9 - Stack
Re4B 2025-10-31
3
CH1.22 - Replacing Arithmetic Instructions to Other Ones
Re4B 2026-02-05
4
CH1.15 - Pointers
Re4B 2025-12-18
5
CH1.12 - scanf() (Part 1)
Re4B 2025-11-27
© 2026 0xV3n0m. All Rights Reserved.

Table of Contents