// https://syzkaller.appspot.com/bug?id=18ea4982789de0c2d4e215eaabaf89d727449a34 // autogenerated by syzkaller (https://github.com/google/syzkaller) #define _GNU_SOURCE #include #include #include #include #include #include #include #include uint64_t r[1] = {0xffffffffffffffff}; int main(void) { syscall(__NR_mmap, 0x20000000ul, 0x1000000ul, 3ul, 0x32ul, -1, 0); intptr_t res = 0; res = syscall(__NR_socket, 0x10ul, 3ul, 0xcul); if (res != -1) r[0] = res; *(uint64_t*)0x20000280 = 0; *(uint32_t*)0x20000288 = 0; *(uint64_t*)0x20000290 = 0x20000240; *(uint64_t*)0x20000240 = 0x200002c0; *(uint32_t*)0x200002c0 = 0xac; *(uint8_t*)0x200002c4 = 0; *(uint8_t*)0x200002c5 = 1; *(uint16_t*)0x200002c6 = 0x519; *(uint32_t*)0x200002c8 = 0; *(uint32_t*)0x200002cc = 0; *(uint8_t*)0x200002d0 = 0x25; *(uint8_t*)0x200002d1 = 0; *(uint16_t*)0x200002d2 = htobe16(0); *(uint16_t*)0x200002d4 = 0x3c; *(uint16_t*)0x200002d6 = 1; *(uint16_t*)0x200002d8 = 0x2c; *(uint16_t*)0x200002da = 1; *(uint16_t*)0x200002dc = 0x14; *(uint16_t*)0x200002de = 3; memcpy((void*)0x200002e0, "\x16\xf8\xbc\xd3\x83\xaf\x9b\x15\x77\xde\xf1\x3e\xda\xd6\xb8\xbf", 16); *(uint16_t*)0x200002f0 = 0x14; *(uint16_t*)0x200002f2 = 4; *(uint8_t*)0x200002f4 = 0xfe; *(uint8_t*)0x200002f5 = 0x80; *(uint8_t*)0x200002f6 = 0; *(uint8_t*)0x200002f7 = 0; *(uint8_t*)0x200002f8 = 0; *(uint8_t*)0x200002f9 = 0; *(uint8_t*)0x200002fa = 0; *(uint8_t*)0x200002fb = 0; *(uint8_t*)0x200002fc = 0; *(uint8_t*)0x200002fd = 0; *(uint8_t*)0x200002fe = 0; *(uint8_t*)0x200002ff = 0; *(uint8_t*)0x20000300 = 0; *(uint8_t*)0x20000301 = 0; *(uint8_t*)0x20000302 = 0; *(uint8_t*)0x20000303 = 0xbb; *(uint16_t*)0x20000304 = 0xc; *(uint16_t*)0x20000306 = 2; *(uint16_t*)0x20000308 = 5; *(uint16_t*)0x2000030a = 1; *(uint8_t*)0x2000030c = 0; *(uint16_t*)0x20000310 = 0x3c; *(uint16_t*)0x20000312 = 2; *(uint16_t*)0x20000314 = 0xc; *(uint16_t*)0x20000316 = 2; *(uint16_t*)0x20000318 = 5; *(uint16_t*)0x2000031a = 1; *(uint8_t*)0x2000031c = 0; *(uint16_t*)0x20000320 = 0x2c; *(uint16_t*)0x20000322 = 1; *(uint16_t*)0x20000324 = 0x14; *(uint16_t*)0x20000326 = 3; *(uint8_t*)0x20000328 = 0xfe; *(uint8_t*)0x20000329 = 0x88; *(uint8_t*)0x2000032a = 0; *(uint8_t*)0x2000032b = 0; *(uint8_t*)0x2000032c = 0; *(uint8_t*)0x2000032d = 0; *(uint8_t*)0x2000032e = 0; *(uint8_t*)0x2000032f = 0; *(uint8_t*)0x20000330 = 0; *(uint8_t*)0x20000331 = 0; *(uint8_t*)0x20000332 = 0; *(uint8_t*)0x20000333 = 0; *(uint8_t*)0x20000334 = 0; *(uint8_t*)0x20000335 = 0; *(uint8_t*)0x20000336 = 0; *(uint8_t*)0x20000337 = 1; *(uint16_t*)0x20000338 = 0x14; *(uint16_t*)0x2000033a = 4; *(uint8_t*)0x2000033c = -1; *(uint8_t*)0x2000033d = 1; *(uint8_t*)0x2000033e = 0; *(uint8_t*)0x2000033f = 0; *(uint8_t*)0x20000340 = 0; *(uint8_t*)0x20000341 = 0; *(uint8_t*)0x20000342 = 0; *(uint8_t*)0x20000343 = 0; *(uint8_t*)0x20000344 = 0; *(uint8_t*)0x20000345 = 0; *(uint8_t*)0x20000346 = 0; *(uint8_t*)0x20000347 = 0; *(uint8_t*)0x20000348 = 0; *(uint8_t*)0x20000349 = 0; *(uint8_t*)0x2000034a = 0; *(uint8_t*)0x2000034b = 1; *(uint16_t*)0x2000034c = 8; *(uint16_t*)0x2000034e = 7; *(uint32_t*)0x20000350 = htobe32(0); *(uint16_t*)0x20000354 = 0x18; *(uint16_t*)0x20000356 = 6; *(uint16_t*)0x20000358 = 0x14; *(uint16_t*)0x2000035a = 3; *(uint16_t*)0x2000035c = 6; *(uint16_t*)0x2000035e = 1; *(uint16_t*)0x20000360 = htobe16(0); *(uint16_t*)0x20000364 = 5; *(uint16_t*)0x20000366 = 2; *(uint16_t*)0x20000368 = htobe16(0); *(uint64_t*)0x20000248 = 0xac; *(uint64_t*)0x20000298 = 1; *(uint64_t*)0x200002a0 = 0; *(uint64_t*)0x200002a8 = 0; *(uint32_t*)0x200002b0 = 0; syscall(__NR_sendmsg, r[0], 0x20000280ul, 0ul); return 0; }