// https://syzkaller.appspot.com/bug?id=004b0f7b61d4901cbfecfc33de7996e8cbe0a278
// autogenerated by syzkaller (http://github.com/google/syzkaller)

#define _GNU_SOURCE
#include <endian.h>
#include <stdint.h>
#include <string.h>
#include <sys/syscall.h>
#include <unistd.h>

uint64_t r[1] = {0xffffffffffffffff};
void loop()
{
  long res = 0;
  res = syscall(__NR_socket, 0x2b, 1, 0);
  if (res != -1)
    r[0] = res;
  *(uint64_t*)0x200050c0 = 0x20000080;
  *(uint16_t*)0x20000080 = 0x1f;
  *(uint8_t*)0x20000082 = -1;
  *(uint8_t*)0x20000083 = 0x23;
  *(uint8_t*)0x20000084 = 0x1f;
  *(uint8_t*)0x20000085 = 5;
  *(uint8_t*)0x20000086 = 3;
  *(uint8_t*)0x20000087 = 5;
  *(uint32_t*)0x200050c8 = 0x80;
  *(uint64_t*)0x200050d0 = 0x20000580;
  *(uint64_t*)0x20000580 = 0x20000000;
  *(uint64_t*)0x20000588 = 0;
  *(uint64_t*)0x20000590 = 0x20000100;
  *(uint64_t*)0x20000598 = 0;
  *(uint64_t*)0x200005a0 = 0x20000180;
  *(uint64_t*)0x200005a8 = 0;
  *(uint64_t*)0x200005b0 = 0x20000280;
  *(uint64_t*)0x200005b8 = 0;
  *(uint64_t*)0x200005c0 = 0x20000340;
  *(uint64_t*)0x200005c8 = 0;
  *(uint64_t*)0x200005d0 = 0x20000400;
  *(uint64_t*)0x200005d8 = 0;
  *(uint64_t*)0x200005e0 = 0x20000480;
  *(uint64_t*)0x200005e8 = 0;
  *(uint64_t*)0x200005f0 = 0x20000500;
  *(uint64_t*)0x200005f8 = 0;
  *(uint64_t*)0x200050d8 = 8;
  *(uint64_t*)0x200050e0 = 0x20000600;
  *(uint64_t*)0x20000600 = 0x10;
  *(uint32_t*)0x20000608 = 0x3a;
  *(uint32_t*)0x2000060c = 0x401;
  *(uint64_t*)0x20000610 = 0x10;
  *(uint32_t*)0x20000618 = 0x31398298;
  *(uint32_t*)0x2000061c = 6;
  *(uint64_t*)0x200050e8 = 0x20;
  *(uint32_t*)0x200050f0 = 0x20000051;
  *(uint32_t*)0x200050f8 = 9;
  *(uint64_t*)0x20005100 = 0x20000740;
  *(uint16_t*)0x20000740 = 0x27;
  *(uint32_t*)0x20000744 = 0;
  *(uint32_t*)0x20000748 = 0;
  *(uint32_t*)0x2000074c = 6;
  *(uint32_t*)0x20005108 = 0x80;
  *(uint64_t*)0x20005110 = 0x20003c00;
  *(uint64_t*)0x20003c00 = 0x200007c0;
  *(uint64_t*)0x20003c08 = 0;
  *(uint64_t*)0x20003c10 = 0x200017c0;
  *(uint64_t*)0x20003c18 = 0;
  *(uint64_t*)0x20003c20 = 0x20001840;
  *(uint64_t*)0x20003c28 = 0;
  *(uint64_t*)0x20003c30 = 0x200018c0;
  *(uint64_t*)0x20003c38 = 0;
  *(uint64_t*)0x20003c40 = 0x20001980;
  *(uint64_t*)0x20003c48 = 0;
  *(uint64_t*)0x20003c50 = 0x20001a00;
  *(uint64_t*)0x20003c58 = 0;
  *(uint64_t*)0x20003c60 = 0x20002a00;
  *(uint64_t*)0x20003c68 = 0;
  *(uint64_t*)0x20003c70 = 0x20002ac0;
  *(uint64_t*)0x20003c78 = 0;
  *(uint64_t*)0x20003c80 = 0x20003ac0;
  *(uint64_t*)0x20003c88 = 0;
  *(uint64_t*)0x20003c90 = 0x20003b00;
  *(uint64_t*)0x20003c98 = 0;
  *(uint64_t*)0x20005118 = 0xa;
  *(uint64_t*)0x20005120 = 0x20003cc0;
  *(uint64_t*)0x20003cc0 = 0x10;
  *(uint32_t*)0x20003cc8 = 0x129;
  *(uint32_t*)0x20003ccc = 6;
  *(uint64_t*)0x20003cd0 = 0x10;
  *(uint32_t*)0x20003cd8 = 0x111;
  *(uint32_t*)0x20003cdc = -1;
  *(uint64_t*)0x20003ce0 = 0x10;
  *(uint32_t*)0x20003ce8 = 0x1bf;
  *(uint32_t*)0x20003cec = 1;
  *(uint64_t*)0x20005128 = 0x30;
  *(uint32_t*)0x20005130 = 0x20000080;
  *(uint32_t*)0x20005138 = -1;
  *(uint64_t*)0x20005140 = 0x20003f40;
  *(uint16_t*)0x20003f40 = 0x1d;
  *(uint32_t*)0x20003f44 = 0;
  *(uint32_t*)0x20003f48 = 0;
  *(uint32_t*)0x20003f4c = 0;
  *(uint32_t*)0x20005148 = 0x80;
  *(uint64_t*)0x20005150 = 0x20004000;
  *(uint64_t*)0x20004000 = 0x20003fc0;
  *(uint64_t*)0x20004008 = 0;
  *(uint64_t*)0x20005158 = 1;
  *(uint64_t*)0x20005160 = 0x20004040;
  *(uint64_t*)0x20004040 = 0x10;
  *(uint32_t*)0x20004048 = 0x11f;
  *(uint32_t*)0x2000404c = 0x10001;
  *(uint64_t*)0x20004050 = 0x10;
  *(uint32_t*)0x20004058 = 0x116;
  *(uint32_t*)0x2000405c = 2;
  *(uint64_t*)0x20004060 = 0x10;
  *(uint32_t*)0x20004068 = 0x11f;
  *(uint32_t*)0x2000406c = 0xd3;
  *(uint64_t*)0x20004070 = 0x10;
  *(uint32_t*)0x20004078 = 0x11f;
  *(uint32_t*)0x2000407c = 0x7fffffff;
  *(uint64_t*)0x20004080 = 0x10;
  *(uint32_t*)0x20004088 = 0x107;
  *(uint32_t*)0x2000408c = 0;
  *(uint64_t*)0x20004090 = 0x10;
  *(uint32_t*)0x20004098 = 6;
  *(uint32_t*)0x2000409c = 5;
  *(uint64_t*)0x200040a0 = 0x10;
  *(uint32_t*)0x200040a8 = 0x107;
  *(uint32_t*)0x200040ac = 9;
  *(uint64_t*)0x20005168 = 0x70;
  *(uint32_t*)0x20005170 = 0x4000000;
  *(uint32_t*)0x20005178 = 0x73b1;
  *(uint64_t*)0x20005180 = 0;
  *(uint32_t*)0x20005188 = 0;
  *(uint64_t*)0x20005190 = 0x20004900;
  *(uint64_t*)0x20004900 = 0x20004500;
  *(uint64_t*)0x20004908 = 0;
  *(uint64_t*)0x20004910 = 0x20004600;
  *(uint64_t*)0x20004918 = 0;
  *(uint64_t*)0x20004920 = 0x20004700;
  *(uint64_t*)0x20004928 = 0;
  *(uint64_t*)0x20004930 = 0x20004800;
  *(uint64_t*)0x20004938 = 0;
  *(uint64_t*)0x20004940 = 0x20004880;
  *(uint64_t*)0x20004948 = 0;
  *(uint64_t*)0x20005198 = 5;
  *(uint64_t*)0x200051a0 = 0x20004980;
  *(uint64_t*)0x20004980 = 0x10;
  *(uint32_t*)0x20004988 = 0;
  *(uint32_t*)0x2000498c = 0x12b7123f;
  *(uint64_t*)0x200051a8 = 0x10;
  *(uint32_t*)0x200051b0 = 0x20000000;
  *(uint32_t*)0x200051b8 = 9;
  *(uint64_t*)0x200051c0 = 0x20004b80;
  *(uint16_t*)0x20004b80 = 0x1f;
  *(uint32_t*)0x20004b84 = 0;
  *(uint16_t*)0x20004b88 = 3;
  *(uint32_t*)0x200051c8 = 0x80;
  *(uint64_t*)0x200051d0 = 0x20004c00;
  *(uint64_t*)0x200051d8 = 0;
  *(uint64_t*)0x200051e0 = 0x20004c40;
  *(uint64_t*)0x20004c40 = 0x10;
  *(uint32_t*)0x20004c48 = 0x11b;
  *(uint32_t*)0x20004c4c = 0xdf;
  *(uint64_t*)0x20004c50 = 0x10;
  *(uint32_t*)0x20004c58 = 0x116;
  *(uint32_t*)0x20004c5c = 0x103;
  *(uint64_t*)0x20004c60 = 0x10;
  *(uint32_t*)0x20004c68 = 0x195;
  *(uint32_t*)0x20004c6c = 5;
  *(uint64_t*)0x200051e8 = 0x30;
  *(uint32_t*)0x200051f0 = 0x20000000;
  *(uint32_t*)0x200051f8 = 1;
  *(uint64_t*)0x20005200 = 0x20004d00;
  *(uint16_t*)0x20004d00 = 0x18;
  *(uint32_t*)0x20004d02 = 0;
  *(uint16_t*)0x20004d06 = 3;
  *(uint8_t*)0x20004d08 = 0xaa;
  *(uint8_t*)0x20004d09 = 0xaa;
  *(uint8_t*)0x20004d0a = 0xaa;
  *(uint8_t*)0x20004d0b = 0xaa;
  *(uint8_t*)0x20004d0c = 0xaa;
  *(uint8_t*)0x20004d0d = 0xaa;
  memcpy((void*)0x20004d0e,
         "\x62\x63\x73\x68\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00",
         16);
  *(uint32_t*)0x20005208 = 0x80;
  *(uint64_t*)0x20005210 = 0x20004f40;
  *(uint64_t*)0x20004f40 = 0x20004d80;
  *(uint64_t*)0x20004f48 = 0;
  *(uint64_t*)0x20004f50 = 0x20004dc0;
  *(uint64_t*)0x20004f58 = 0;
  *(uint64_t*)0x20004f60 = 0x20004e80;
  *(uint64_t*)0x20004f68 = 0;
  *(uint64_t*)0x20005218 = 3;
  *(uint64_t*)0x20005220 = 0x20004f80;
  *(uint64_t*)0x20004f80 = 0x10;
  *(uint32_t*)0x20004f88 = 0xff;
  *(uint32_t*)0x20004f8c = 0x5a8c;
  *(uint64_t*)0x20004f90 = 0x10;
  *(uint32_t*)0x20004f98 = 0x18e;
  *(uint32_t*)0x20004f9c = 0xfffffffb;
  *(uint64_t*)0x20004fa0 = 0x10;
  *(uint32_t*)0x20004fa8 = 0x10f;
  *(uint32_t*)0x20004fac = 3;
  *(uint64_t*)0x20005228 = 0x30;
  *(uint32_t*)0x20005230 = 0x20008005;
  *(uint32_t*)0x20005238 = 0x9f;
  syscall(__NR_sendmmsg, r[0], 0x200050c0, 6, 0x24000005);
}

int main()
{
  syscall(__NR_mmap, 0x20000000, 0x1000000, 3, 0x32, -1, 0);
  loop();
  return 0;
}