// https://syzkaller.appspot.com/bug?id=7f89ee40d35beb6d8f3fc3d122e43287cc3825cd
// autogenerated by syzkaller (http://github.com/google/syzkaller)

#define _GNU_SOURCE
#include <endian.h>
#include <stdint.h>
#include <stdio.h>
#include <string.h>
#include <sys/syscall.h>
#include <unistd.h>

uint64_t r[2] = {0xffffffffffffffff, 0xffffffffffffffff};
void loop()
{
  long res = 0;
  res = syscall(__NR_pipe2, 0x20000380, 0);
  if (res != -1) {
    r[0] = *(uint32_t*)0x20000380;
    r[1] = *(uint32_t*)0x20000384;
  }
  memcpy((void*)0x200006c0, "./file0", 8);
  syscall(__NR_mkdir, 0x200006c0, 0);
  memcpy((void*)0x20000000, "./file0", 8);
  memcpy((void*)0x20000040, "9p", 3);
  memcpy((void*)0x20000080, "trans=fd,rfdno=", 15);
  sprintf((char*)0x2000008f, "0x%016llx", (long long)r[0]);
  memcpy((void*)0x200000a1, ",wfdno=", 7);
  sprintf((char*)0x200000a8, "0x%016llx", (long long)r[1]);
  memcpy((void*)0x200000ba, "\x2c\x63\x61\x63\x68\x65\x74\x61\x67\x3d\x70\x6f"
                            "\x73\x69\x6d\xb8\x78\xd8\x6c\x5f\x61\x63\x63\x65"
                            "\x73\x73\x26\x74\x72\x75\x73\x74\x4b\x5a\xfe\x65"
                            "\xc7\x46\x0e\xf1\x30\x78\x30\x30\x30\x30\x30\x00"
                            "\x30\x30\x30\x30\x30\x30\x30\x30\x30\x75\x4f\x27",
         60);
  syscall(__NR_mount, 0, 0x20000000, 0x20000040, 0, 0x20000080);
}

int main()
{
  syscall(__NR_mmap, 0x20000000, 0x1000000, 3, 0x32, -1, 0);
  loop();
  return 0;
}