// https://syzkaller.appspot.com/bug?id=5b9d1e3232dc19d61832a76821bc5fc9b914b4cd // autogenerated by syzkaller (http://github.com/google/syzkaller) #define _GNU_SOURCE #include #include #include #include #include #include #include #include #include #include #include #include #include #include __attribute__((noreturn)) static void doexit(int status) { volatile unsigned i; syscall(__NR_exit_group, status); for (i = 0;; i++) { } } #include #include const int kFailStatus = 67; const int kRetryStatus = 69; static void fail(const char* msg, ...) { int e = errno; va_list args; va_start(args, msg); vfprintf(stderr, msg, args); va_end(args); fprintf(stderr, " (errno %d)\n", e); doexit((e == ENOMEM || e == EAGAIN) ? kRetryStatus : kFailStatus); } static uint64_t current_time_ms() { struct timespec ts; if (clock_gettime(CLOCK_MONOTONIC, &ts)) fail("clock_gettime failed"); return (uint64_t)ts.tv_sec * 1000 + (uint64_t)ts.tv_nsec / 1000000; } #define XT_TABLE_SIZE 1536 #define XT_MAX_ENTRIES 10 struct xt_counters { uint64_t pcnt, bcnt; }; struct ipt_getinfo { char name[32]; unsigned int valid_hooks; unsigned int hook_entry[5]; unsigned int underflow[5]; unsigned int num_entries; unsigned int size; }; struct ipt_get_entries { char name[32]; unsigned int size; void* entrytable[XT_TABLE_SIZE / sizeof(void*)]; }; struct ipt_replace { char name[32]; unsigned int valid_hooks; unsigned int num_entries; unsigned int size; unsigned int hook_entry[5]; unsigned int underflow[5]; unsigned int num_counters; struct xt_counters* counters; char entrytable[XT_TABLE_SIZE]; }; struct ipt_table_desc { const char* name; struct ipt_getinfo info; struct ipt_replace replace; }; static struct ipt_table_desc ipv4_tables[] = { {.name = "filter"}, {.name = "nat"}, {.name = "mangle"}, {.name = "raw"}, {.name = "security"}, }; static struct ipt_table_desc ipv6_tables[] = { {.name = "filter"}, {.name = "nat"}, {.name = "mangle"}, {.name = "raw"}, {.name = "security"}, }; #define IPT_BASE_CTL 64 #define IPT_SO_SET_REPLACE (IPT_BASE_CTL) #define IPT_SO_GET_INFO (IPT_BASE_CTL) #define IPT_SO_GET_ENTRIES (IPT_BASE_CTL + 1) struct arpt_getinfo { char name[32]; unsigned int valid_hooks; unsigned int hook_entry[3]; unsigned int underflow[3]; unsigned int num_entries; unsigned int size; }; struct arpt_get_entries { char name[32]; unsigned int size; void* entrytable[XT_TABLE_SIZE / sizeof(void*)]; }; struct arpt_replace { char name[32]; unsigned int valid_hooks; unsigned int num_entries; unsigned int size; unsigned int hook_entry[3]; unsigned int underflow[3]; unsigned int num_counters; struct xt_counters* counters; char entrytable[XT_TABLE_SIZE]; }; struct arpt_table_desc { const char* name; struct arpt_getinfo info; struct arpt_replace replace; }; static struct arpt_table_desc arpt_tables[] = { {.name = "filter"}, }; #define ARPT_BASE_CTL 96 #define ARPT_SO_SET_REPLACE (ARPT_BASE_CTL) #define ARPT_SO_GET_INFO (ARPT_BASE_CTL) #define ARPT_SO_GET_ENTRIES (ARPT_BASE_CTL + 1) static void checkpoint_iptables(struct ipt_table_desc* tables, int num_tables, int family, int level) { struct ipt_get_entries entries; socklen_t optlen; int fd, i; fd = socket(family, SOCK_STREAM, IPPROTO_TCP); if (fd == -1) fail("socket(%d, SOCK_STREAM, IPPROTO_TCP)", family); for (i = 0; i < num_tables; i++) { struct ipt_table_desc* table = &tables[i]; strcpy(table->info.name, table->name); strcpy(table->replace.name, table->name); optlen = sizeof(table->info); if (getsockopt(fd, level, IPT_SO_GET_INFO, &table->info, &optlen)) { switch (errno) { case EPERM: case ENOENT: case ENOPROTOOPT: continue; } fail("getsockopt(IPT_SO_GET_INFO)"); } if (table->info.size > sizeof(table->replace.entrytable)) fail("table size is too large: %u", table->info.size); if (table->info.num_entries > XT_MAX_ENTRIES) fail("too many counters: %u", table->info.num_entries); memset(&entries, 0, sizeof(entries)); strcpy(entries.name, table->name); entries.size = table->info.size; optlen = sizeof(entries) - sizeof(entries.entrytable) + table->info.size; if (getsockopt(fd, level, IPT_SO_GET_ENTRIES, &entries, &optlen)) fail("getsockopt(IPT_SO_GET_ENTRIES)"); table->replace.valid_hooks = table->info.valid_hooks; table->replace.num_entries = table->info.num_entries; table->replace.size = table->info.size; memcpy(table->replace.hook_entry, table->info.hook_entry, sizeof(table->replace.hook_entry)); memcpy(table->replace.underflow, table->info.underflow, sizeof(table->replace.underflow)); memcpy(table->replace.entrytable, entries.entrytable, table->info.size); } close(fd); } static void reset_iptables(struct ipt_table_desc* tables, int num_tables, int family, int level) { struct xt_counters counters[XT_MAX_ENTRIES]; struct ipt_get_entries entries; struct ipt_getinfo info; socklen_t optlen; int fd, i; fd = socket(family, SOCK_STREAM, IPPROTO_TCP); if (fd == -1) fail("socket(%d, SOCK_STREAM, IPPROTO_TCP)", family); for (i = 0; i < num_tables; i++) { struct ipt_table_desc* table = &tables[i]; if (table->info.valid_hooks == 0) continue; memset(&info, 0, sizeof(info)); strcpy(info.name, table->name); optlen = sizeof(info); if (getsockopt(fd, level, IPT_SO_GET_INFO, &info, &optlen)) fail("getsockopt(IPT_SO_GET_INFO)"); if (memcmp(&table->info, &info, sizeof(table->info)) == 0) { memset(&entries, 0, sizeof(entries)); strcpy(entries.name, table->name); entries.size = table->info.size; optlen = sizeof(entries) - sizeof(entries.entrytable) + entries.size; if (getsockopt(fd, level, IPT_SO_GET_ENTRIES, &entries, &optlen)) fail("getsockopt(IPT_SO_GET_ENTRIES)"); if (memcmp(table->replace.entrytable, entries.entrytable, table->info.size) == 0) continue; } table->replace.num_counters = info.num_entries; table->replace.counters = counters; optlen = sizeof(table->replace) - sizeof(table->replace.entrytable) + table->replace.size; if (setsockopt(fd, level, IPT_SO_SET_REPLACE, &table->replace, optlen)) fail("setsockopt(IPT_SO_SET_REPLACE)"); } close(fd); } static void checkpoint_arptables(void) { struct arpt_get_entries entries; socklen_t optlen; unsigned i; int fd; fd = socket(AF_INET, SOCK_STREAM, IPPROTO_TCP); if (fd == -1) fail("socket(AF_INET, SOCK_STREAM, IPPROTO_TCP)"); for (i = 0; i < sizeof(arpt_tables) / sizeof(arpt_tables[0]); i++) { struct arpt_table_desc* table = &arpt_tables[i]; strcpy(table->info.name, table->name); strcpy(table->replace.name, table->name); optlen = sizeof(table->info); if (getsockopt(fd, SOL_IP, ARPT_SO_GET_INFO, &table->info, &optlen)) { switch (errno) { case EPERM: case ENOENT: case ENOPROTOOPT: continue; } fail("getsockopt(ARPT_SO_GET_INFO)"); } if (table->info.size > sizeof(table->replace.entrytable)) fail("table size is too large: %u", table->info.size); if (table->info.num_entries > XT_MAX_ENTRIES) fail("too many counters: %u", table->info.num_entries); memset(&entries, 0, sizeof(entries)); strcpy(entries.name, table->name); entries.size = table->info.size; optlen = sizeof(entries) - sizeof(entries.entrytable) + table->info.size; if (getsockopt(fd, SOL_IP, ARPT_SO_GET_ENTRIES, &entries, &optlen)) fail("getsockopt(ARPT_SO_GET_ENTRIES)"); table->replace.valid_hooks = table->info.valid_hooks; table->replace.num_entries = table->info.num_entries; table->replace.size = table->info.size; memcpy(table->replace.hook_entry, table->info.hook_entry, sizeof(table->replace.hook_entry)); memcpy(table->replace.underflow, table->info.underflow, sizeof(table->replace.underflow)); memcpy(table->replace.entrytable, entries.entrytable, table->info.size); } close(fd); } static void reset_arptables() { struct xt_counters counters[XT_MAX_ENTRIES]; struct arpt_get_entries entries; struct arpt_getinfo info; socklen_t optlen; unsigned i; int fd; fd = socket(AF_INET, SOCK_STREAM, IPPROTO_TCP); if (fd == -1) fail("socket(AF_INET, SOCK_STREAM, IPPROTO_TCP)"); for (i = 0; i < sizeof(arpt_tables) / sizeof(arpt_tables[0]); i++) { struct arpt_table_desc* table = &arpt_tables[i]; if (table->info.valid_hooks == 0) continue; memset(&info, 0, sizeof(info)); strcpy(info.name, table->name); optlen = sizeof(info); if (getsockopt(fd, SOL_IP, ARPT_SO_GET_INFO, &info, &optlen)) fail("getsockopt(ARPT_SO_GET_INFO)"); if (memcmp(&table->info, &info, sizeof(table->info)) == 0) { memset(&entries, 0, sizeof(entries)); strcpy(entries.name, table->name); entries.size = table->info.size; optlen = sizeof(entries) - sizeof(entries.entrytable) + entries.size; if (getsockopt(fd, SOL_IP, ARPT_SO_GET_ENTRIES, &entries, &optlen)) fail("getsockopt(ARPT_SO_GET_ENTRIES)"); if (memcmp(table->replace.entrytable, entries.entrytable, table->info.size) == 0) continue; } table->replace.num_counters = info.num_entries; table->replace.counters = counters; optlen = sizeof(table->replace) - sizeof(table->replace.entrytable) + table->replace.size; if (setsockopt(fd, SOL_IP, ARPT_SO_SET_REPLACE, &table->replace, optlen)) fail("setsockopt(ARPT_SO_SET_REPLACE)"); } close(fd); } static void checkpoint_net_namespace(void) { checkpoint_arptables(); checkpoint_iptables(ipv4_tables, sizeof(ipv4_tables) / sizeof(ipv4_tables[0]), AF_INET, SOL_IP); checkpoint_iptables(ipv6_tables, sizeof(ipv6_tables) / sizeof(ipv6_tables[0]), AF_INET6, SOL_IPV6); } static void reset_net_namespace(void) { reset_arptables(); reset_iptables(ipv4_tables, sizeof(ipv4_tables) / sizeof(ipv4_tables[0]), AF_INET, SOL_IP); reset_iptables(ipv6_tables, sizeof(ipv6_tables) / sizeof(ipv6_tables[0]), AF_INET6, SOL_IPV6); } static void test(); void loop() { int iter; checkpoint_net_namespace(); for (iter = 0;; iter++) { int pid = fork(); if (pid < 0) fail("loop fork failed"); if (pid == 0) { prctl(PR_SET_PDEATHSIG, SIGKILL, 0, 0, 0); setpgrp(); test(); doexit(0); } int status = 0; uint64_t start = current_time_ms(); for (;;) { int res = waitpid(-1, &status, __WALL | WNOHANG); if (res == pid) break; usleep(1000); if (current_time_ms() - start > 5 * 1000) { kill(-pid, SIGKILL); kill(pid, SIGKILL); while (waitpid(-1, &status, __WALL) != pid) { } break; } } reset_net_namespace(); } } long r[2]; void test() { memset(r, -1, sizeof(r)); syscall(__NR_mmap, 0x20000000, 0x99c000, 3, 0x32, -1, 0); r[0] = syscall(__NR_socket, 0xa, 5, 0); memcpy((void*)0x2000a000, "\xff\x04\x00\x00\x65\x72\x00\x00\x00\x00\x00\x00" "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00" "\x00\x00\x00\x00\x00\x00\x00\x00", 32); *(uint32_t*)0x2000a020 = 0xe; *(uint32_t*)0x2000a024 = 4; *(uint32_t*)0x2000a028 = 0x440; *(uint32_t*)0x2000a02c = -1; *(uint32_t*)0x2000a030 = 0; *(uint32_t*)0x2000a034 = 0xa8; *(uint32_t*)0x2000a038 = 0xa8; *(uint32_t*)0x2000a03c = -1; *(uint32_t*)0x2000a040 = -1; *(uint32_t*)0x2000a044 = 0; *(uint32_t*)0x2000a048 = 0; *(uint32_t*)0x2000a04c = 0; *(uint32_t*)0x2000a050 = -1; *(uint32_t*)0x2000a054 = 4; *(uint64_t*)0x2000a058 = 0x20004000; *(uint8_t*)0x2000a060 = 0; *(uint8_t*)0x2000a061 = 0; *(uint8_t*)0x2000a062 = 0; *(uint8_t*)0x2000a063 = 0; *(uint8_t*)0x2000a064 = 0; *(uint8_t*)0x2000a065 = 0; *(uint8_t*)0x2000a066 = 0; *(uint8_t*)0x2000a067 = 0; *(uint8_t*)0x2000a068 = 0; *(uint8_t*)0x2000a069 = 0; *(uint8_t*)0x2000a06a = 0; *(uint8_t*)0x2000a06b = 0; *(uint8_t*)0x2000a06c = 0; *(uint8_t*)0x2000a06d = 0; *(uint8_t*)0x2000a06e = 0; *(uint8_t*)0x2000a06f = 0; *(uint8_t*)0x2000a070 = 0; *(uint8_t*)0x2000a071 = 0; *(uint8_t*)0x2000a072 = 0; *(uint8_t*)0x2000a073 = 0; *(uint8_t*)0x2000a074 = 0; *(uint8_t*)0x2000a075 = 0; *(uint8_t*)0x2000a076 = 0; *(uint8_t*)0x2000a077 = 0; *(uint8_t*)0x2000a078 = 0; *(uint8_t*)0x2000a079 = 0; *(uint8_t*)0x2000a07a = 0; *(uint8_t*)0x2000a07b = 0; *(uint8_t*)0x2000a07c = 0; *(uint8_t*)0x2000a07d = 0; *(uint8_t*)0x2000a07e = 0; *(uint8_t*)0x2000a07f = 0; *(uint8_t*)0x2000a080 = 0; *(uint8_t*)0x2000a081 = 0; *(uint8_t*)0x2000a082 = 0; *(uint8_t*)0x2000a083 = 0; *(uint8_t*)0x2000a084 = 0; *(uint8_t*)0x2000a085 = 0; *(uint8_t*)0x2000a086 = 0; *(uint8_t*)0x2000a087 = 0; *(uint8_t*)0x2000a088 = 0; *(uint8_t*)0x2000a089 = 0; *(uint8_t*)0x2000a08a = 0; *(uint8_t*)0x2000a08b = 0; *(uint8_t*)0x2000a08c = 0; *(uint8_t*)0x2000a08d = 0; *(uint8_t*)0x2000a08e = 0; *(uint8_t*)0x2000a08f = 0; *(uint8_t*)0x2000a090 = 0; *(uint8_t*)0x2000a091 = 0; *(uint8_t*)0x2000a092 = 0; *(uint8_t*)0x2000a093 = 0; *(uint8_t*)0x2000a094 = 0; *(uint8_t*)0x2000a095 = 0; *(uint8_t*)0x2000a096 = 0; *(uint8_t*)0x2000a097 = 0; *(uint8_t*)0x2000a098 = 0; *(uint8_t*)0x2000a099 = 0; *(uint8_t*)0x2000a09a = 0; *(uint8_t*)0x2000a09b = 0; *(uint8_t*)0x2000a09c = 0; *(uint8_t*)0x2000a09d = 0; *(uint8_t*)0x2000a09e = 0; *(uint8_t*)0x2000a09f = 0; *(uint8_t*)0x2000a0a0 = 0; *(uint8_t*)0x2000a0a1 = 0; *(uint8_t*)0x2000a0a2 = 0; *(uint8_t*)0x2000a0a3 = 0; *(uint8_t*)0x2000a0a4 = 0; *(uint8_t*)0x2000a0a5 = 0; *(uint8_t*)0x2000a0a6 = 0; *(uint8_t*)0x2000a0a7 = 0; *(uint8_t*)0x2000a0a8 = 0; *(uint8_t*)0x2000a0a9 = 0; *(uint8_t*)0x2000a0aa = 0; *(uint8_t*)0x2000a0ab = 0; *(uint8_t*)0x2000a0ac = 0; *(uint8_t*)0x2000a0ad = 0; *(uint8_t*)0x2000a0ae = 0; *(uint8_t*)0x2000a0af = 0; *(uint8_t*)0x2000a0b0 = 0; *(uint8_t*)0x2000a0b1 = 0; *(uint8_t*)0x2000a0b2 = 0; *(uint8_t*)0x2000a0b3 = 0; *(uint8_t*)0x2000a0b4 = 0; *(uint8_t*)0x2000a0b5 = 0; *(uint8_t*)0x2000a0b6 = 0; *(uint8_t*)0x2000a0b7 = 0; *(uint8_t*)0x2000a0b8 = 0; *(uint8_t*)0x2000a0b9 = 0; *(uint8_t*)0x2000a0ba = 0; *(uint8_t*)0x2000a0bb = 0; *(uint8_t*)0x2000a0bc = 0; *(uint8_t*)0x2000a0bd = 0; *(uint8_t*)0x2000a0be = 0; *(uint8_t*)0x2000a0bf = 0; *(uint8_t*)0x2000a0c0 = 0; *(uint8_t*)0x2000a0c1 = 0; *(uint8_t*)0x2000a0c2 = 0; *(uint8_t*)0x2000a0c3 = 0; *(uint8_t*)0x2000a0c4 = 0; *(uint8_t*)0x2000a0c5 = 0; *(uint8_t*)0x2000a0c6 = 0; *(uint8_t*)0x2000a0c7 = 0; *(uint8_t*)0x2000a0c8 = 0; *(uint8_t*)0x2000a0c9 = 0; *(uint8_t*)0x2000a0ca = 0; *(uint8_t*)0x2000a0cb = 0; *(uint8_t*)0x2000a0cc = 0; *(uint8_t*)0x2000a0cd = 0; *(uint8_t*)0x2000a0ce = 0; *(uint8_t*)0x2000a0cf = 0; *(uint8_t*)0x2000a0d0 = 0; *(uint8_t*)0x2000a0d1 = 0; *(uint8_t*)0x2000a0d2 = 0; *(uint8_t*)0x2000a0d3 = 0; *(uint8_t*)0x2000a0d4 = 0; *(uint8_t*)0x2000a0d5 = 0; *(uint8_t*)0x2000a0d6 = 0; *(uint8_t*)0x2000a0d7 = 0; *(uint8_t*)0x2000a0d8 = 0; *(uint8_t*)0x2000a0d9 = 0; *(uint8_t*)0x2000a0da = 0; *(uint8_t*)0x2000a0db = 0; *(uint8_t*)0x2000a0dc = 0; *(uint8_t*)0x2000a0dd = 0; *(uint8_t*)0x2000a0de = 0; *(uint8_t*)0x2000a0df = 0; *(uint8_t*)0x2000a0e0 = 0; *(uint8_t*)0x2000a0e1 = 0; *(uint8_t*)0x2000a0e2 = 0; *(uint8_t*)0x2000a0e3 = 0; *(uint8_t*)0x2000a0e4 = 0; *(uint8_t*)0x2000a0e5 = 0; *(uint8_t*)0x2000a0e6 = 0; *(uint8_t*)0x2000a0e7 = 0; *(uint32_t*)0x2000a0e8 = 0; *(uint16_t*)0x2000a0ec = 0xa8; *(uint16_t*)0x2000a0ee = 0xd0; *(uint32_t*)0x2000a0f0 = 0; *(uint64_t*)0x2000a0f8 = 0; *(uint64_t*)0x2000a100 = 0; *(uint16_t*)0x2000a108 = 0x28; memcpy((void*)0x2000a10a, "\x52\x45\x4a\x45\x43\x54\x00\x00\x00\x00\x00\x00" "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00" "\x00\x00\x00\x00\x00", 29); *(uint8_t*)0x2000a127 = 0; *(uint32_t*)0x2000a128 = 0; *(uint8_t*)0x2000a130 = 0; *(uint8_t*)0x2000a131 = 0; *(uint8_t*)0x2000a132 = 0; *(uint8_t*)0x2000a133 = 0; *(uint8_t*)0x2000a134 = 0; *(uint8_t*)0x2000a135 = 0; *(uint8_t*)0x2000a136 = 0; *(uint8_t*)0x2000a137 = 0; *(uint8_t*)0x2000a138 = 0; *(uint8_t*)0x2000a139 = 0; *(uint8_t*)0x2000a13a = 0; *(uint8_t*)0x2000a13b = 0; *(uint8_t*)0x2000a13c = 0; *(uint8_t*)0x2000a13d = 0; *(uint8_t*)0x2000a13e = 0; *(uint8_t*)0x2000a13f = 0; *(uint8_t*)0x2000a140 = 0; *(uint8_t*)0x2000a141 = 0; *(uint8_t*)0x2000a142 = 0; *(uint8_t*)0x2000a143 = 0; *(uint8_t*)0x2000a144 = 0; *(uint8_t*)0x2000a145 = 0; *(uint8_t*)0x2000a146 = 0; *(uint8_t*)0x2000a147 = 0; *(uint8_t*)0x2000a148 = 0; *(uint8_t*)0x2000a149 = 0; *(uint8_t*)0x2000a14a = 0; *(uint8_t*)0x2000a14b = 0; *(uint8_t*)0x2000a14c = 0; *(uint8_t*)0x2000a14d = 0; *(uint8_t*)0x2000a14e = 0; *(uint8_t*)0x2000a14f = 0; *(uint8_t*)0x2000a150 = 0; *(uint8_t*)0x2000a151 = 0; *(uint8_t*)0x2000a152 = 0; *(uint8_t*)0x2000a153 = 0; *(uint8_t*)0x2000a154 = 0; *(uint8_t*)0x2000a155 = 0; *(uint8_t*)0x2000a156 = 0; *(uint8_t*)0x2000a157 = 0; *(uint8_t*)0x2000a158 = 0; *(uint8_t*)0x2000a159 = 0; *(uint8_t*)0x2000a15a = 0; *(uint8_t*)0x2000a15b = 0; *(uint8_t*)0x2000a15c = 0; *(uint8_t*)0x2000a15d = 0; *(uint8_t*)0x2000a15e = 0; *(uint8_t*)0x2000a15f = 0; *(uint8_t*)0x2000a160 = 0; *(uint8_t*)0x2000a161 = 0; *(uint8_t*)0x2000a162 = 0; *(uint8_t*)0x2000a163 = 0; *(uint8_t*)0x2000a164 = 0; *(uint8_t*)0x2000a165 = 0; *(uint8_t*)0x2000a166 = 0; *(uint8_t*)0x2000a167 = 0; *(uint8_t*)0x2000a168 = 0; *(uint8_t*)0x2000a169 = 0; *(uint8_t*)0x2000a16a = 0; *(uint8_t*)0x2000a16b = 0; *(uint8_t*)0x2000a16c = 0; *(uint8_t*)0x2000a16d = 0; *(uint8_t*)0x2000a16e = 0; *(uint8_t*)0x2000a16f = 0; *(uint8_t*)0x2000a170 = 0; *(uint8_t*)0x2000a171 = 0; *(uint8_t*)0x2000a172 = 0; *(uint8_t*)0x2000a173 = 0; *(uint8_t*)0x2000a174 = 0; *(uint8_t*)0x2000a175 = 0; *(uint8_t*)0x2000a176 = 0; *(uint8_t*)0x2000a177 = 0; *(uint8_t*)0x2000a178 = 0; *(uint8_t*)0x2000a179 = 0; *(uint8_t*)0x2000a17a = 0; *(uint8_t*)0x2000a17b = 0; *(uint8_t*)0x2000a17c = 0; *(uint8_t*)0x2000a17d = 0; *(uint8_t*)0x2000a17e = 0; *(uint8_t*)0x2000a17f = 0; *(uint8_t*)0x2000a180 = 0; *(uint8_t*)0x2000a181 = 0; *(uint8_t*)0x2000a182 = 0; *(uint8_t*)0x2000a183 = 0; *(uint8_t*)0x2000a184 = 0; *(uint8_t*)0x2000a185 = 0; *(uint8_t*)0x2000a186 = 0; *(uint8_t*)0x2000a187 = 0; *(uint8_t*)0x2000a188 = 0; *(uint8_t*)0x2000a189 = 0; *(uint8_t*)0x2000a18a = 0; *(uint8_t*)0x2000a18b = 0; *(uint8_t*)0x2000a18c = 0; *(uint8_t*)0x2000a18d = 0; *(uint8_t*)0x2000a18e = 0; *(uint8_t*)0x2000a18f = 0; *(uint8_t*)0x2000a190 = 0; *(uint8_t*)0x2000a191 = 0; *(uint8_t*)0x2000a192 = 0; *(uint8_t*)0x2000a193 = 0; *(uint8_t*)0x2000a194 = 0; *(uint8_t*)0x2000a195 = 0; *(uint8_t*)0x2000a196 = 0; *(uint8_t*)0x2000a197 = 0; *(uint8_t*)0x2000a198 = 0; *(uint8_t*)0x2000a199 = 0; *(uint8_t*)0x2000a19a = 0; *(uint8_t*)0x2000a19b = 0; *(uint8_t*)0x2000a19c = 0; *(uint8_t*)0x2000a19d = 0; *(uint8_t*)0x2000a19e = 0; *(uint8_t*)0x2000a19f = 0; *(uint8_t*)0x2000a1a0 = 0; *(uint8_t*)0x2000a1a1 = 0; *(uint8_t*)0x2000a1a2 = 0; *(uint8_t*)0x2000a1a3 = 0; *(uint8_t*)0x2000a1a4 = 0; *(uint8_t*)0x2000a1a5 = 0; *(uint8_t*)0x2000a1a6 = 0; *(uint8_t*)0x2000a1a7 = 0; *(uint8_t*)0x2000a1a8 = 0; *(uint8_t*)0x2000a1a9 = 0; *(uint8_t*)0x2000a1aa = 0; *(uint8_t*)0x2000a1ab = 0; *(uint8_t*)0x2000a1ac = 0; *(uint8_t*)0x2000a1ad = 0; *(uint8_t*)0x2000a1ae = 0; *(uint8_t*)0x2000a1af = 0; *(uint8_t*)0x2000a1b0 = 0; *(uint8_t*)0x2000a1b1 = 0; *(uint8_t*)0x2000a1b2 = 0; *(uint8_t*)0x2000a1b3 = 0; *(uint8_t*)0x2000a1b4 = 0; *(uint8_t*)0x2000a1b5 = 0; *(uint8_t*)0x2000a1b6 = 0; *(uint8_t*)0x2000a1b7 = 0; *(uint32_t*)0x2000a1b8 = 0; *(uint16_t*)0x2000a1bc = 0xa8; *(uint16_t*)0x2000a1be = 0xd0; *(uint32_t*)0x2000a1c0 = 0; *(uint64_t*)0x2000a1c8 = 0; *(uint64_t*)0x2000a1d0 = 0; *(uint16_t*)0x2000a1d8 = 0x28; memcpy((void*)0x2000a1da, "\x52\x45\x4a\x45\x43\x54\x00\x00\x00\x00\x00\x00" "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00" "\x00\x00\x00\x00\x00", 29); *(uint8_t*)0x2000a1f7 = 0; *(uint32_t*)0x2000a1f8 = 0; *(uint64_t*)0x2000a200 = htobe64(0); *(uint64_t*)0x2000a208 = htobe64(1); *(uint8_t*)0x2000a210 = -1; *(uint8_t*)0x2000a211 = 2; *(uint8_t*)0x2000a212 = 0; *(uint8_t*)0x2000a213 = 0; *(uint8_t*)0x2000a214 = 0; *(uint8_t*)0x2000a215 = 0; *(uint8_t*)0x2000a216 = 0; *(uint8_t*)0x2000a217 = 0; *(uint8_t*)0x2000a218 = 0; *(uint8_t*)0x2000a219 = 0; *(uint8_t*)0x2000a21a = 0; *(uint8_t*)0x2000a21b = 0; *(uint8_t*)0x2000a21c = 0; *(uint8_t*)0x2000a21d = 0; *(uint8_t*)0x2000a21e = 0; *(uint8_t*)0x2000a21f = 1; *(uint32_t*)0x2000a220 = htobe32(0); *(uint32_t*)0x2000a224 = htobe32(0); *(uint32_t*)0x2000a228 = htobe32(0); *(uint32_t*)0x2000a22c = htobe32(0); *(uint32_t*)0x2000a230 = htobe32(0); *(uint32_t*)0x2000a234 = htobe32(0); *(uint32_t*)0x2000a238 = htobe32(0); *(uint32_t*)0x2000a23c = htobe32(0); memcpy((void*)0x2000a240, "\x64\x75\x6d\x6d\x79\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00", 16); *(uint8_t*)0x2000a250 = 0x73; *(uint8_t*)0x2000a251 = 0x79; *(uint8_t*)0x2000a252 = 0x7a; *(uint8_t*)0x2000a253 = 0; *(uint8_t*)0x2000a254 = 0; *(uint8_t*)0x2000a260 = 0; *(uint8_t*)0x2000a261 = 0; *(uint8_t*)0x2000a262 = 0; *(uint8_t*)0x2000a263 = 0; *(uint8_t*)0x2000a264 = 0; *(uint8_t*)0x2000a265 = 0; *(uint8_t*)0x2000a266 = 0; *(uint8_t*)0x2000a267 = 0; *(uint8_t*)0x2000a268 = 0; *(uint8_t*)0x2000a269 = 0; *(uint8_t*)0x2000a26a = 0; *(uint8_t*)0x2000a26b = 0; *(uint8_t*)0x2000a26c = 0; *(uint8_t*)0x2000a26d = 0; *(uint8_t*)0x2000a26e = 0; *(uint8_t*)0x2000a26f = 0; *(uint8_t*)0x2000a270 = 0; *(uint8_t*)0x2000a271 = 0; *(uint8_t*)0x2000a272 = 0; *(uint8_t*)0x2000a273 = 0; *(uint8_t*)0x2000a274 = 0; *(uint8_t*)0x2000a275 = 0; *(uint8_t*)0x2000a276 = 0; *(uint8_t*)0x2000a277 = 0; *(uint8_t*)0x2000a278 = 0; *(uint8_t*)0x2000a279 = 0; *(uint8_t*)0x2000a27a = 0; *(uint8_t*)0x2000a27b = 0; *(uint8_t*)0x2000a27c = 0; *(uint8_t*)0x2000a27d = 0; *(uint8_t*)0x2000a27e = 0; *(uint8_t*)0x2000a27f = 0; *(uint16_t*)0x2000a280 = 0; *(uint8_t*)0x2000a282 = 0; *(uint8_t*)0x2000a283 = 0; *(uint8_t*)0x2000a284 = 0; *(uint32_t*)0x2000a288 = 0; *(uint16_t*)0x2000a28c = 0xa8; *(uint16_t*)0x2000a28e = 0x1d0; *(uint32_t*)0x2000a290 = 0; *(uint64_t*)0x2000a298 = 0; *(uint64_t*)0x2000a2a0 = 0; *(uint16_t*)0x2000a2a8 = 0x128; memcpy((void*)0x2000a2aa, "\x53\x45\x43\x4d\x41\x52\x4b\x00\x00\x00\x00\x00" "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00" "\x00\x00\x00\x00\x00", 29); *(uint8_t*)0x2000a2c7 = 0; *(uint8_t*)0x2000a2c8 = 0; *(uint32_t*)0x2000a2cc = 0; memcpy((void*)0x2000a2d0, "\x73\x79\x73\x74\x65\x6d\x5f\x75\x3a\x6f\x62\x6a\x65\x63\x74\x5f\x72" "\x3a\x73\x73\x68\x5f\x61\x67\x65\x6e\x74\x5f\x65\x78\x65\x63\x5f\x74" "\x3a\x73\x44\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00" "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00" "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00" "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00" "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00" "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00" "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00" "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00" "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00" "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00" "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00" "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00" "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00" "\x00", 256); *(uint8_t*)0x2000a3d0 = 0; *(uint8_t*)0x2000a3d1 = 0; *(uint8_t*)0x2000a3d2 = 0; *(uint8_t*)0x2000a3d3 = 0; *(uint8_t*)0x2000a3d4 = 0; *(uint8_t*)0x2000a3d5 = 0; *(uint8_t*)0x2000a3d6 = 0; *(uint8_t*)0x2000a3d7 = 0; *(uint8_t*)0x2000a3d8 = 0; *(uint8_t*)0x2000a3d9 = 0; *(uint8_t*)0x2000a3da = 0; *(uint8_t*)0x2000a3db = 0; *(uint8_t*)0x2000a3dc = 0; *(uint8_t*)0x2000a3dd = 0; *(uint8_t*)0x2000a3de = 0; *(uint8_t*)0x2000a3df = 0; *(uint8_t*)0x2000a3e0 = 0; *(uint8_t*)0x2000a3e1 = 0; *(uint8_t*)0x2000a3e2 = 0; *(uint8_t*)0x2000a3e3 = 0; *(uint8_t*)0x2000a3e4 = 0; *(uint8_t*)0x2000a3e5 = 0; *(uint8_t*)0x2000a3e6 = 0; *(uint8_t*)0x2000a3e7 = 0; *(uint8_t*)0x2000a3e8 = 0; *(uint8_t*)0x2000a3e9 = 0; *(uint8_t*)0x2000a3ea = 0; *(uint8_t*)0x2000a3eb = 0; *(uint8_t*)0x2000a3ec = 0; *(uint8_t*)0x2000a3ed = 0; *(uint8_t*)0x2000a3ee = 0; *(uint8_t*)0x2000a3ef = 0; *(uint8_t*)0x2000a3f0 = 0; *(uint8_t*)0x2000a3f1 = 0; *(uint8_t*)0x2000a3f2 = 0; *(uint8_t*)0x2000a3f3 = 0; *(uint8_t*)0x2000a3f4 = 0; *(uint8_t*)0x2000a3f5 = 0; *(uint8_t*)0x2000a3f6 = 0; *(uint8_t*)0x2000a3f7 = 0; *(uint8_t*)0x2000a3f8 = 0; *(uint8_t*)0x2000a3f9 = 0; *(uint8_t*)0x2000a3fa = 0; *(uint8_t*)0x2000a3fb = 0; *(uint8_t*)0x2000a3fc = 0; *(uint8_t*)0x2000a3fd = 0; *(uint8_t*)0x2000a3fe = 0; *(uint8_t*)0x2000a3ff = 0; *(uint8_t*)0x2000a400 = 0; *(uint8_t*)0x2000a401 = 0; *(uint8_t*)0x2000a402 = 0; *(uint8_t*)0x2000a403 = 0; *(uint8_t*)0x2000a404 = 0; *(uint8_t*)0x2000a405 = 0; *(uint8_t*)0x2000a406 = 0; *(uint8_t*)0x2000a407 = 0; *(uint8_t*)0x2000a408 = 0; *(uint8_t*)0x2000a409 = 0; *(uint8_t*)0x2000a40a = 0; *(uint8_t*)0x2000a40b = 0; *(uint8_t*)0x2000a40c = 0; *(uint8_t*)0x2000a40d = 0; *(uint8_t*)0x2000a40e = 0; *(uint8_t*)0x2000a40f = 0; *(uint8_t*)0x2000a410 = 0; *(uint8_t*)0x2000a411 = 0; *(uint8_t*)0x2000a412 = 0; *(uint8_t*)0x2000a413 = 0; *(uint8_t*)0x2000a414 = 0; *(uint8_t*)0x2000a415 = 0; *(uint8_t*)0x2000a416 = 0; *(uint8_t*)0x2000a417 = 0; *(uint8_t*)0x2000a418 = 0; *(uint8_t*)0x2000a419 = 0; *(uint8_t*)0x2000a41a = 0; *(uint8_t*)0x2000a41b = 0; *(uint8_t*)0x2000a41c = 0; *(uint8_t*)0x2000a41d = 0; *(uint8_t*)0x2000a41e = 0; *(uint8_t*)0x2000a41f = 0; *(uint8_t*)0x2000a420 = 0; *(uint8_t*)0x2000a421 = 0; *(uint8_t*)0x2000a422 = 0; *(uint8_t*)0x2000a423 = 0; *(uint8_t*)0x2000a424 = 0; *(uint8_t*)0x2000a425 = 0; *(uint8_t*)0x2000a426 = 0; *(uint8_t*)0x2000a427 = 0; *(uint8_t*)0x2000a428 = 0; *(uint8_t*)0x2000a429 = 0; *(uint8_t*)0x2000a42a = 0; *(uint8_t*)0x2000a42b = 0; *(uint8_t*)0x2000a42c = 0; *(uint8_t*)0x2000a42d = 0; *(uint8_t*)0x2000a42e = 0; *(uint8_t*)0x2000a42f = 0; *(uint8_t*)0x2000a430 = 0; *(uint8_t*)0x2000a431 = 0; *(uint8_t*)0x2000a432 = 0; *(uint8_t*)0x2000a433 = 0; *(uint8_t*)0x2000a434 = 0; *(uint8_t*)0x2000a435 = 0; *(uint8_t*)0x2000a436 = 0; *(uint8_t*)0x2000a437 = 0; *(uint8_t*)0x2000a438 = 0; *(uint8_t*)0x2000a439 = 0; *(uint8_t*)0x2000a43a = 0; *(uint8_t*)0x2000a43b = 0; *(uint8_t*)0x2000a43c = 0; *(uint8_t*)0x2000a43d = 0; *(uint8_t*)0x2000a43e = 0; *(uint8_t*)0x2000a43f = 0; *(uint8_t*)0x2000a440 = 0; *(uint8_t*)0x2000a441 = 0; *(uint8_t*)0x2000a442 = 0; *(uint8_t*)0x2000a443 = 0; *(uint8_t*)0x2000a444 = 0; *(uint8_t*)0x2000a445 = 0; *(uint8_t*)0x2000a446 = 0; *(uint8_t*)0x2000a447 = 0; *(uint8_t*)0x2000a448 = 0; *(uint8_t*)0x2000a449 = 0; *(uint8_t*)0x2000a44a = 0; *(uint8_t*)0x2000a44b = 0; *(uint8_t*)0x2000a44c = 0; *(uint8_t*)0x2000a44d = 0; *(uint8_t*)0x2000a44e = 0; *(uint8_t*)0x2000a44f = 0; *(uint8_t*)0x2000a450 = 0; *(uint8_t*)0x2000a451 = 0; *(uint8_t*)0x2000a452 = 0; *(uint8_t*)0x2000a453 = 0; *(uint8_t*)0x2000a454 = 0; *(uint8_t*)0x2000a455 = 0; *(uint8_t*)0x2000a456 = 0; *(uint8_t*)0x2000a457 = 0; *(uint32_t*)0x2000a458 = 0; *(uint16_t*)0x2000a45c = 0xa8; *(uint16_t*)0x2000a45e = 0xd0; *(uint32_t*)0x2000a460 = 0; *(uint64_t*)0x2000a468 = 0; *(uint64_t*)0x2000a470 = 0; *(uint16_t*)0x2000a478 = 0x28; memcpy((void*)0x2000a47a, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00" "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00" "\x00\x00\x00\x00\x00", 29); *(uint8_t*)0x2000a497 = 0; *(uint32_t*)0x2000a498 = 0xa8; syscall(__NR_setsockopt, r[0], 0x29, 0x14, 0x2000a000, 0x4a0); r[1] = syscall(__NR_socket, 0xa, 3, 1); memcpy((void*)0x20010c40, "\x66\x69\x6c\x74\x65\x72\x00\x00\x00\x00\x00\x00" "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00" "\x00\x00\x00\x00\x00\x00\x00\x00", 32); *(uint32_t*)0x20010c60 = 0xe; *(uint32_t*)0x20010c64 = 4; *(uint32_t*)0x20010c68 = 0x360; *(uint32_t*)0x20010c6c = -1; *(uint32_t*)0x20010c70 = 0; *(uint32_t*)0x20010c74 = 0x1a0; *(uint32_t*)0x20010c78 = 0xd0; *(uint32_t*)0x20010c7c = -1; *(uint32_t*)0x20010c80 = -1; *(uint32_t*)0x20010c84 = 0x290; *(uint32_t*)0x20010c88 = 0x290; *(uint32_t*)0x20010c8c = 0x290; *(uint32_t*)0x20010c90 = -1; *(uint32_t*)0x20010c94 = 4; *(uint64_t*)0x20010c98 = 0x2000b000; *(uint8_t*)0x20010ca0 = 0; *(uint8_t*)0x20010ca1 = 0; *(uint8_t*)0x20010ca2 = 0; *(uint8_t*)0x20010ca3 = 0; *(uint8_t*)0x20010ca4 = 0; *(uint8_t*)0x20010ca5 = 0; *(uint8_t*)0x20010ca6 = 0; *(uint8_t*)0x20010ca7 = 0; *(uint8_t*)0x20010ca8 = 0; *(uint8_t*)0x20010ca9 = 0; *(uint8_t*)0x20010caa = 0; *(uint8_t*)0x20010cab = 0; *(uint8_t*)0x20010cac = 0; *(uint8_t*)0x20010cad = 0; *(uint8_t*)0x20010cae = 0; *(uint8_t*)0x20010caf = 0; *(uint8_t*)0x20010cb0 = 0; *(uint8_t*)0x20010cb1 = 0; *(uint8_t*)0x20010cb2 = 0; *(uint8_t*)0x20010cb3 = 0; *(uint8_t*)0x20010cb4 = 0; *(uint8_t*)0x20010cb5 = 0; *(uint8_t*)0x20010cb6 = 0; *(uint8_t*)0x20010cb7 = 0; *(uint8_t*)0x20010cb8 = 0; *(uint8_t*)0x20010cb9 = 0; *(uint8_t*)0x20010cba = 0; *(uint8_t*)0x20010cbb = 0; *(uint8_t*)0x20010cbc = 0; *(uint8_t*)0x20010cbd = 0; *(uint8_t*)0x20010cbe = 0; *(uint8_t*)0x20010cbf = 0; *(uint8_t*)0x20010cc0 = 0; *(uint8_t*)0x20010cc1 = 0; *(uint8_t*)0x20010cc2 = 0; *(uint8_t*)0x20010cc3 = 0; *(uint8_t*)0x20010cc4 = 0; *(uint8_t*)0x20010cc5 = 0; *(uint8_t*)0x20010cc6 = 0; *(uint8_t*)0x20010cc7 = 0; *(uint8_t*)0x20010cc8 = 0; *(uint8_t*)0x20010cc9 = 0; *(uint8_t*)0x20010cca = 0; *(uint8_t*)0x20010ccb = 0; *(uint8_t*)0x20010ccc = 0; *(uint8_t*)0x20010ccd = 0; *(uint8_t*)0x20010cce = 0; *(uint8_t*)0x20010ccf = 0; *(uint8_t*)0x20010cd0 = 0; *(uint8_t*)0x20010cd1 = 0; *(uint8_t*)0x20010cd2 = 0; *(uint8_t*)0x20010cd3 = 0; *(uint8_t*)0x20010cd4 = 0; *(uint8_t*)0x20010cd5 = 0; *(uint8_t*)0x20010cd6 = 0; *(uint8_t*)0x20010cd7 = 0; *(uint8_t*)0x20010cd8 = 0; *(uint8_t*)0x20010cd9 = 0; *(uint8_t*)0x20010cda = 0; *(uint8_t*)0x20010cdb = 0; *(uint8_t*)0x20010cdc = 0; *(uint8_t*)0x20010cdd = 0; *(uint8_t*)0x20010cde = 0; *(uint8_t*)0x20010cdf = 0; *(uint8_t*)0x20010ce0 = 0; *(uint8_t*)0x20010ce1 = 0; *(uint8_t*)0x20010ce2 = 0; *(uint8_t*)0x20010ce3 = 0; *(uint8_t*)0x20010ce4 = 0; *(uint8_t*)0x20010ce5 = 0; *(uint8_t*)0x20010ce6 = 0; *(uint8_t*)0x20010ce7 = 0; *(uint8_t*)0x20010ce8 = 0; *(uint8_t*)0x20010ce9 = 0; *(uint8_t*)0x20010cea = 0; *(uint8_t*)0x20010ceb = 0; *(uint8_t*)0x20010cec = 0; *(uint8_t*)0x20010ced = 0; *(uint8_t*)0x20010cee = 0; *(uint8_t*)0x20010cef = 0; *(uint8_t*)0x20010cf0 = 0; *(uint8_t*)0x20010cf1 = 0; *(uint8_t*)0x20010cf2 = 0; *(uint8_t*)0x20010cf3 = 0; *(uint8_t*)0x20010cf4 = 0; *(uint8_t*)0x20010cf5 = 0; *(uint8_t*)0x20010cf6 = 0; *(uint8_t*)0x20010cf7 = 0; *(uint8_t*)0x20010cf8 = 0; *(uint8_t*)0x20010cf9 = 0; *(uint8_t*)0x20010cfa = 0; *(uint8_t*)0x20010cfb = 0; *(uint8_t*)0x20010cfc = 0; *(uint8_t*)0x20010cfd = 0; *(uint8_t*)0x20010cfe = 0; *(uint8_t*)0x20010cff = 0; *(uint8_t*)0x20010d00 = 0; *(uint8_t*)0x20010d01 = 0; *(uint8_t*)0x20010d02 = 0; *(uint8_t*)0x20010d03 = 0; *(uint8_t*)0x20010d04 = 0; *(uint8_t*)0x20010d05 = 0; *(uint8_t*)0x20010d06 = 0; *(uint8_t*)0x20010d07 = 0; *(uint8_t*)0x20010d08 = 0; *(uint8_t*)0x20010d09 = 0; *(uint8_t*)0x20010d0a = 0; *(uint8_t*)0x20010d0b = 0; *(uint8_t*)0x20010d0c = 0; *(uint8_t*)0x20010d0d = 0; *(uint8_t*)0x20010d0e = 0; *(uint8_t*)0x20010d0f = 0; *(uint8_t*)0x20010d10 = 0; *(uint8_t*)0x20010d11 = 0; *(uint8_t*)0x20010d12 = 0; *(uint8_t*)0x20010d13 = 0; *(uint8_t*)0x20010d14 = 0; *(uint8_t*)0x20010d15 = 0; *(uint8_t*)0x20010d16 = 0; *(uint8_t*)0x20010d17 = 0; *(uint8_t*)0x20010d18 = 0; *(uint8_t*)0x20010d19 = 0; *(uint8_t*)0x20010d1a = 0; *(uint8_t*)0x20010d1b = 0; *(uint8_t*)0x20010d1c = 0; *(uint8_t*)0x20010d1d = 0; *(uint8_t*)0x20010d1e = 0; *(uint8_t*)0x20010d1f = 0; *(uint8_t*)0x20010d20 = 0; *(uint8_t*)0x20010d21 = 0; *(uint8_t*)0x20010d22 = 0; *(uint8_t*)0x20010d23 = 0; *(uint8_t*)0x20010d24 = 0; *(uint8_t*)0x20010d25 = 0; *(uint8_t*)0x20010d26 = 0; *(uint8_t*)0x20010d27 = 0; *(uint32_t*)0x20010d28 = 0; *(uint16_t*)0x20010d2c = 0xa8; *(uint16_t*)0x20010d2e = 0xd0; *(uint32_t*)0x20010d30 = 0; *(uint64_t*)0x20010d38 = 0; *(uint64_t*)0x20010d40 = 0; *(uint16_t*)0x20010d48 = 0x28; memcpy((void*)0x20010d4a, "\x52\x45\x4a\x45\x43\x54\x00\x00\x00\x00\x00\x00" "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00" "\x00\x00\x00\x00\x00", 29); *(uint8_t*)0x20010d67 = 0; *(uint32_t*)0x20010d68 = 0; *(uint8_t*)0x20010d70 = 0; *(uint8_t*)0x20010d71 = 0; *(uint8_t*)0x20010d72 = 0; *(uint8_t*)0x20010d73 = 0; *(uint8_t*)0x20010d74 = 0; *(uint8_t*)0x20010d75 = 0; *(uint8_t*)0x20010d76 = 0; *(uint8_t*)0x20010d77 = 0; *(uint8_t*)0x20010d78 = 0; *(uint8_t*)0x20010d79 = 0; *(uint8_t*)0x20010d7a = -1; *(uint8_t*)0x20010d7b = -1; *(uint8_t*)0x20010d7c = 0xac; *(uint8_t*)0x20010d7d = 0x14; *(uint8_t*)0x20010d7e = 0; *(uint8_t*)0x20010d7f = 0xaa; *(uint8_t*)0x20010d80 = 0xfe; *(uint8_t*)0x20010d81 = 0x80; *(uint8_t*)0x20010d82 = 0; *(uint8_t*)0x20010d83 = 0; *(uint8_t*)0x20010d84 = 0; *(uint8_t*)0x20010d85 = 0; *(uint8_t*)0x20010d86 = 0; *(uint8_t*)0x20010d87 = 0; *(uint8_t*)0x20010d88 = 0; *(uint8_t*)0x20010d89 = 0; *(uint8_t*)0x20010d8a = 0; *(uint8_t*)0x20010d8b = 0; *(uint8_t*)0x20010d8c = 0; *(uint8_t*)0x20010d8d = 0; *(uint8_t*)0x20010d8e = 0; *(uint8_t*)0x20010d8f = 0xbb; *(uint32_t*)0x20010d90 = htobe32(0); *(uint32_t*)0x20010d94 = htobe32(0); *(uint32_t*)0x20010d98 = htobe32(0); *(uint32_t*)0x20010d9c = htobe32(0xff000000); *(uint32_t*)0x20010da0 = htobe32(0); *(uint32_t*)0x20010da4 = htobe32(0); *(uint32_t*)0x20010da8 = htobe32(0); *(uint32_t*)0x20010dac = htobe32(0); *(uint8_t*)0x20010db0 = 0x73; *(uint8_t*)0x20010db1 = 0x79; *(uint8_t*)0x20010db2 = 0x7a; *(uint8_t*)0x20010db3 = 0; *(uint8_t*)0x20010db4 = 0; memcpy((void*)0x20010dc0, "\xdd\x13\x59\x6b\x28\x24\x8e\x27\x9b\xfd\x57\x25\x4f\x84\xcf\xd0", 16); *(uint8_t*)0x20010dd0 = 0; *(uint8_t*)0x20010dd1 = 0; *(uint8_t*)0x20010dd2 = 0; *(uint8_t*)0x20010dd3 = 0; *(uint8_t*)0x20010dd4 = 0; *(uint8_t*)0x20010dd5 = 0; *(uint8_t*)0x20010dd6 = 0; *(uint8_t*)0x20010dd7 = 0; *(uint8_t*)0x20010dd8 = 0; *(uint8_t*)0x20010dd9 = 0; *(uint8_t*)0x20010dda = 0; *(uint8_t*)0x20010ddb = 0; *(uint8_t*)0x20010ddc = 0; *(uint8_t*)0x20010ddd = 0; *(uint8_t*)0x20010dde = 0; *(uint8_t*)0x20010ddf = 0; *(uint8_t*)0x20010de0 = -1; *(uint8_t*)0x20010de1 = 0; *(uint8_t*)0x20010de2 = 0; *(uint8_t*)0x20010de3 = 0; *(uint8_t*)0x20010de4 = 0; *(uint8_t*)0x20010de5 = 0; *(uint8_t*)0x20010de6 = 0; *(uint8_t*)0x20010de7 = 0; *(uint8_t*)0x20010de8 = 0; *(uint8_t*)0x20010de9 = 0; *(uint8_t*)0x20010dea = 0; *(uint8_t*)0x20010deb = 0; *(uint8_t*)0x20010dec = 0; *(uint8_t*)0x20010ded = 0; *(uint8_t*)0x20010dee = 0; *(uint8_t*)0x20010def = 0; *(uint16_t*)0x20010df0 = 0x87; *(uint8_t*)0x20010df2 = 0; *(uint8_t*)0x20010df3 = 5; *(uint8_t*)0x20010df4 = 0x6e; *(uint32_t*)0x20010df8 = 0; *(uint16_t*)0x20010dfc = 0xa8; *(uint16_t*)0x20010dfe = 0xd0; *(uint32_t*)0x20010e00 = 0; *(uint64_t*)0x20010e08 = 0; *(uint64_t*)0x20010e10 = 0; *(uint16_t*)0x20010e18 = 0x28; memcpy((void*)0x20010e1a, "\x4e\x46\x51\x55\x45\x55\x45\x00\x00\x00\x00\x00" "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00" "\x00\x00\x00\x00\x00", 29); *(uint8_t*)0x20010e37 = 1; *(uint16_t*)0x20010e38 = 0; *(uint16_t*)0x20010e3a = 8; *(uint8_t*)0x20010e40 = -1; *(uint8_t*)0x20010e41 = 1; *(uint8_t*)0x20010e42 = 0; *(uint8_t*)0x20010e43 = 0; *(uint8_t*)0x20010e44 = 0; *(uint8_t*)0x20010e45 = 0; *(uint8_t*)0x20010e46 = 0; *(uint8_t*)0x20010e47 = 0; *(uint8_t*)0x20010e48 = 0; *(uint8_t*)0x20010e49 = 0; *(uint8_t*)0x20010e4a = 0; *(uint8_t*)0x20010e4b = 0; *(uint8_t*)0x20010e4c = 0; *(uint8_t*)0x20010e4d = 0; *(uint8_t*)0x20010e4e = 0; *(uint8_t*)0x20010e4f = 1; *(uint8_t*)0x20010e50 = 0xfe; *(uint8_t*)0x20010e51 = 0x80; *(uint8_t*)0x20010e52 = 0; *(uint8_t*)0x20010e53 = 0; *(uint8_t*)0x20010e54 = 0; *(uint8_t*)0x20010e55 = 0; *(uint8_t*)0x20010e56 = 0; *(uint8_t*)0x20010e57 = 0; *(uint8_t*)0x20010e58 = 0; *(uint8_t*)0x20010e59 = 0; *(uint8_t*)0x20010e5a = 0; *(uint8_t*)0x20010e5b = 0; *(uint8_t*)0x20010e5c = 0; *(uint8_t*)0x20010e5d = 0; *(uint8_t*)0x20010e5e = 0; *(uint8_t*)0x20010e5f = 0xbb; *(uint32_t*)0x20010e60 = htobe32(0); *(uint32_t*)0x20010e64 = htobe32(0); *(uint32_t*)0x20010e68 = htobe32(0); *(uint32_t*)0x20010e6c = htobe32(0); *(uint32_t*)0x20010e70 = htobe32(0); *(uint32_t*)0x20010e74 = htobe32(0); *(uint32_t*)0x20010e78 = htobe32(0); *(uint32_t*)0x20010e7c = htobe32(0); *(uint8_t*)0x20010e80 = 0x73; *(uint8_t*)0x20010e81 = 0x79; *(uint8_t*)0x20010e82 = 0x7a; *(uint8_t*)0x20010e83 = 0; *(uint8_t*)0x20010e84 = 0; memcpy((void*)0x20010e90, "\x34\x45\x56\x59\x41\x58\x95\x32\xe5\xa0\x69\x58\xc0\xf0\xd2\xc4", 16); *(uint8_t*)0x20010ea0 = 0; *(uint8_t*)0x20010ea1 = 0; *(uint8_t*)0x20010ea2 = 0; *(uint8_t*)0x20010ea3 = 0; *(uint8_t*)0x20010ea4 = 0; *(uint8_t*)0x20010ea5 = 0; *(uint8_t*)0x20010ea6 = 0; *(uint8_t*)0x20010ea7 = 0; *(uint8_t*)0x20010ea8 = 0; *(uint8_t*)0x20010ea9 = 0; *(uint8_t*)0x20010eaa = 0; *(uint8_t*)0x20010eab = 0; *(uint8_t*)0x20010eac = 0; *(uint8_t*)0x20010ead = 0; *(uint8_t*)0x20010eae = 0; *(uint8_t*)0x20010eaf = 0; *(uint8_t*)0x20010eb0 = 0; *(uint8_t*)0x20010eb1 = 0; *(uint8_t*)0x20010eb2 = 0; *(uint8_t*)0x20010eb3 = 0; *(uint8_t*)0x20010eb4 = 0; *(uint8_t*)0x20010eb5 = 0; *(uint8_t*)0x20010eb6 = 0; *(uint8_t*)0x20010eb7 = 0; *(uint8_t*)0x20010eb8 = 0; *(uint8_t*)0x20010eb9 = 0; *(uint8_t*)0x20010eba = 0; *(uint8_t*)0x20010ebb = 0; *(uint8_t*)0x20010ebc = 0; *(uint8_t*)0x20010ebd = 0; *(uint8_t*)0x20010ebe = 0; *(uint8_t*)0x20010ebf = 0; *(uint16_t*)0x20010ec0 = 0; *(uint8_t*)0x20010ec2 = 0; *(uint8_t*)0x20010ec3 = 0; *(uint8_t*)0x20010ec4 = 0; *(uint32_t*)0x20010ec8 = 0; *(uint16_t*)0x20010ecc = 0xa8; *(uint16_t*)0x20010ece = 0xf0; *(uint32_t*)0x20010ed0 = 0; *(uint64_t*)0x20010ed8 = 0; *(uint64_t*)0x20010ee0 = 0; *(uint16_t*)0x20010ee8 = 0x48; memcpy((void*)0x20010eea, "\x54\x45\x45\x00\x00\x00\x00\x00\x00\x00\x00\x00" "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00" "\x00\x00\x00\x00\x00", 29); *(uint8_t*)0x20010f07 = 1; *(uint8_t*)0x20010f08 = 0xac; *(uint8_t*)0x20010f09 = 0x14; *(uint8_t*)0x20010f0a = 0; *(uint8_t*)0x20010f0b = 0xaa; *(uint8_t*)0x20010f18 = 0x73; *(uint8_t*)0x20010f19 = 0x79; *(uint8_t*)0x20010f1a = 0x7a; *(uint8_t*)0x20010f1b = 0; *(uint8_t*)0x20010f1c = 0; *(uint64_t*)0x20010f28 = 0; *(uint8_t*)0x20010f30 = 0; *(uint8_t*)0x20010f31 = 0; *(uint8_t*)0x20010f32 = 0; *(uint8_t*)0x20010f33 = 0; *(uint8_t*)0x20010f34 = 0; *(uint8_t*)0x20010f35 = 0; *(uint8_t*)0x20010f36 = 0; *(uint8_t*)0x20010f37 = 0; *(uint8_t*)0x20010f38 = 0; *(uint8_t*)0x20010f39 = 0; *(uint8_t*)0x20010f3a = 0; *(uint8_t*)0x20010f3b = 0; *(uint8_t*)0x20010f3c = 0; *(uint8_t*)0x20010f3d = 0; *(uint8_t*)0x20010f3e = 0; *(uint8_t*)0x20010f3f = 0; *(uint8_t*)0x20010f40 = 0; *(uint8_t*)0x20010f41 = 0; *(uint8_t*)0x20010f42 = 0; *(uint8_t*)0x20010f43 = 0; *(uint8_t*)0x20010f44 = 0; *(uint8_t*)0x20010f45 = 0; *(uint8_t*)0x20010f46 = 0; *(uint8_t*)0x20010f47 = 0; *(uint8_t*)0x20010f48 = 0; *(uint8_t*)0x20010f49 = 0; *(uint8_t*)0x20010f4a = 0; *(uint8_t*)0x20010f4b = 0; *(uint8_t*)0x20010f4c = 0; *(uint8_t*)0x20010f4d = 0; *(uint8_t*)0x20010f4e = 0; *(uint8_t*)0x20010f4f = 0; *(uint8_t*)0x20010f50 = 0; *(uint8_t*)0x20010f51 = 0; *(uint8_t*)0x20010f52 = 0; *(uint8_t*)0x20010f53 = 0; *(uint8_t*)0x20010f54 = 0; *(uint8_t*)0x20010f55 = 0; *(uint8_t*)0x20010f56 = 0; *(uint8_t*)0x20010f57 = 0; *(uint8_t*)0x20010f58 = 0; *(uint8_t*)0x20010f59 = 0; *(uint8_t*)0x20010f5a = 0; *(uint8_t*)0x20010f5b = 0; *(uint8_t*)0x20010f5c = 0; *(uint8_t*)0x20010f5d = 0; *(uint8_t*)0x20010f5e = 0; *(uint8_t*)0x20010f5f = 0; *(uint8_t*)0x20010f60 = 0; *(uint8_t*)0x20010f61 = 0; *(uint8_t*)0x20010f62 = 0; *(uint8_t*)0x20010f63 = 0; *(uint8_t*)0x20010f64 = 0; *(uint8_t*)0x20010f65 = 0; *(uint8_t*)0x20010f66 = 0; *(uint8_t*)0x20010f67 = 0; *(uint8_t*)0x20010f68 = 0; *(uint8_t*)0x20010f69 = 0; *(uint8_t*)0x20010f6a = 0; *(uint8_t*)0x20010f6b = 0; *(uint8_t*)0x20010f6c = 0; *(uint8_t*)0x20010f6d = 0; *(uint8_t*)0x20010f6e = 0; *(uint8_t*)0x20010f6f = 0; *(uint8_t*)0x20010f70 = 0; *(uint8_t*)0x20010f71 = 0; *(uint8_t*)0x20010f72 = 0; *(uint8_t*)0x20010f73 = 0; *(uint8_t*)0x20010f74 = 0; *(uint8_t*)0x20010f75 = 0; *(uint8_t*)0x20010f76 = 0; *(uint8_t*)0x20010f77 = 0; *(uint8_t*)0x20010f78 = 0; *(uint8_t*)0x20010f79 = 0; *(uint8_t*)0x20010f7a = 0; *(uint8_t*)0x20010f7b = 0; *(uint8_t*)0x20010f7c = 0; *(uint8_t*)0x20010f7d = 0; *(uint8_t*)0x20010f7e = 0; *(uint8_t*)0x20010f7f = 0; *(uint8_t*)0x20010f80 = 0; *(uint8_t*)0x20010f81 = 0; *(uint8_t*)0x20010f82 = 0; *(uint8_t*)0x20010f83 = 0; *(uint8_t*)0x20010f84 = 0; *(uint8_t*)0x20010f85 = 0; *(uint8_t*)0x20010f86 = 0; *(uint8_t*)0x20010f87 = 0; *(uint8_t*)0x20010f88 = 0; *(uint8_t*)0x20010f89 = 0; *(uint8_t*)0x20010f8a = 0; *(uint8_t*)0x20010f8b = 0; *(uint8_t*)0x20010f8c = 0; *(uint8_t*)0x20010f8d = 0; *(uint8_t*)0x20010f8e = 0; *(uint8_t*)0x20010f8f = 0; *(uint8_t*)0x20010f90 = 0; *(uint8_t*)0x20010f91 = 0; *(uint8_t*)0x20010f92 = 0; *(uint8_t*)0x20010f93 = 0; *(uint8_t*)0x20010f94 = 0; *(uint8_t*)0x20010f95 = 0; *(uint8_t*)0x20010f96 = 0; *(uint8_t*)0x20010f97 = 0; *(uint8_t*)0x20010f98 = 0; *(uint8_t*)0x20010f99 = 0; *(uint8_t*)0x20010f9a = 0; *(uint8_t*)0x20010f9b = 0; *(uint8_t*)0x20010f9c = 0; *(uint8_t*)0x20010f9d = 0; *(uint8_t*)0x20010f9e = 0; *(uint8_t*)0x20010f9f = 0; *(uint8_t*)0x20010fa0 = 0; *(uint8_t*)0x20010fa1 = 0; *(uint8_t*)0x20010fa2 = 0; *(uint8_t*)0x20010fa3 = 0; *(uint8_t*)0x20010fa4 = 0; *(uint8_t*)0x20010fa5 = 0; *(uint8_t*)0x20010fa6 = 0; *(uint8_t*)0x20010fa7 = 0; *(uint8_t*)0x20010fa8 = 0; *(uint8_t*)0x20010fa9 = 0; *(uint8_t*)0x20010faa = 0; *(uint8_t*)0x20010fab = 0; *(uint8_t*)0x20010fac = 0; *(uint8_t*)0x20010fad = 0; *(uint8_t*)0x20010fae = 0; *(uint8_t*)0x20010faf = 0; *(uint8_t*)0x20010fb0 = 0; *(uint8_t*)0x20010fb1 = 0; *(uint8_t*)0x20010fb2 = 0; *(uint8_t*)0x20010fb3 = 0; *(uint8_t*)0x20010fb4 = 0; *(uint8_t*)0x20010fb5 = 0; *(uint8_t*)0x20010fb6 = 0; *(uint8_t*)0x20010fb7 = 0; *(uint32_t*)0x20010fb8 = 0; *(uint16_t*)0x20010fbc = 0xa8; *(uint16_t*)0x20010fbe = 0xd0; *(uint32_t*)0x20010fc0 = 0; *(uint64_t*)0x20010fc8 = 0; *(uint64_t*)0x20010fd0 = 0; *(uint16_t*)0x20010fd8 = 0x28; memcpy((void*)0x20010fda, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00" "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00" "\x00\x00\x00\x00\x00", 29); *(uint8_t*)0x20010ff7 = 0; *(uint32_t*)0x20010ff8 = 0xfffffffe; syscall(__NR_setsockopt, r[1], 0x29, 0x40, 0x20010c40, 0x3c0); } int main() { for (;;) { loop(); } }