// https://syzkaller.appspot.com/bug?id=abb6cc54bd2802dfdeb0978f7adf870325b80f92
// autogenerated by syzkaller (http://github.com/google/syzkaller)

#define _GNU_SOURCE

#include <sys/syscall.h>
#include <unistd.h>

#include <stdint.h>
#include <string.h>

long r[16];
void loop()
{
  memset(r, -1, sizeof(r));
  r[0] = syscall(__NR_mmap, 0x20000000ul, 0x9000ul, 0x3ul, 0x32ul,
                 0xfffffffffffffffful, 0x0ul);
  memcpy((void*)0x20d6aff4,
         "\x63\x69\x66\x73\x2e\x73\x70\x6e\x65\x67\x6f\x00", 12);
  *(uint8_t*)0x200fd000 = (uint8_t)0x73;
  *(uint8_t*)0x200fd001 = (uint8_t)0x79;
  *(uint8_t*)0x200fd002 = (uint8_t)0x7a;
  *(uint8_t*)0x200fd003 = (uint8_t)0x22;
  *(uint8_t*)0x200fd004 = (uint8_t)0x0;
  memcpy((void*)0x20000000, "\x00", 1);
  r[8] = syscall(__NR_request_key, 0x20d6aff4ul, 0x200fd000ul,
                 0x20000000ul, 0xfffffffffffffff9ul);
  memcpy((void*)0x20001000,
         "\x70\x6b\x63\x73\x37\x5f\x74\x65\x73\x74\x00", 11);
  *(uint8_t*)0x20000000 = (uint8_t)0x73;
  *(uint8_t*)0x20000001 = (uint8_t)0x79;
  *(uint8_t*)0x20000002 = (uint8_t)0x7a;
  *(uint8_t*)0x20000003 = (uint8_t)0x21;
  *(uint8_t*)0x20000004 = (uint8_t)0x0;
  r[15] = syscall(__NR_add_key, 0x20001000ul, 0x20000000ul,
                  0x20000000ul, 0x0ul, r[8]);
}

int main()
{
  loop();
  return 0;
}