// https://syzkaller.appspot.com/bug?id=004b0f7b61d4901cbfecfc33de7996e8cbe0a278
// autogenerated by syzkaller (http://github.com/google/syzkaller)

#define _GNU_SOURCE
#include <endian.h>
#include <stdint.h>
#include <string.h>
#include <sys/syscall.h>
#include <unistd.h>

uint64_t r[1] = {0xffffffffffffffff};
void loop()
{
  long res = 0;
  res = syscall(__NR_socket, 0x2b, 1, 0);
  if (res != -1)
    r[0] = res;
  *(uint64_t*)0x20002b80 = 0x20000180;
  *(uint16_t*)0x20000180 = 0x26;
  memcpy((void*)0x20000182,
         "\x61\x65\x61\x64\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00", 14);
  *(uint32_t*)0x20000190 = 0;
  *(uint32_t*)0x20000194 = 0;
  memcpy((void*)0x20000198,
         "\x63\x63\x6d\x5f\x62\x61\x73\x65\x28\x63\x62\x63\x2d\x73\x65\x72\x70"
         "\x65\x6e\x74\x2d\x61\x76\x78\x2c\x73\x68\x61\x33\x2d\x35\x31\x32\x29"
         "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"
         "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00",
         64);
  *(uint32_t*)0x20002b88 = 0x80;
  *(uint64_t*)0x20002b90 = 0x20000440;
  *(uint64_t*)0x20000440 = 0x20000200;
  *(uint64_t*)0x20000448 = 0;
  *(uint64_t*)0x20000450 = 0x20000280;
  *(uint64_t*)0x20000458 = 0;
  *(uint64_t*)0x20000460 = 0x20000340;
  *(uint64_t*)0x20000468 = 0;
  *(uint64_t*)0x20002b98 = 3;
  *(uint64_t*)0x20002ba0 = 0x20000480;
  *(uint64_t*)0x20000480 = 0x10;
  *(uint32_t*)0x20000488 = 0x10a;
  *(uint32_t*)0x2000048c = 5;
  *(uint64_t*)0x20000490 = 0x10;
  *(uint32_t*)0x20000498 = 0x10e;
  *(uint32_t*)0x2000049c = 0;
  *(uint64_t*)0x20002ba8 = 0x20;
  *(uint32_t*)0x20002bb0 = 0x4854;
  *(uint32_t*)0x20002bb8 = 0x80000000;
  *(uint64_t*)0x20002bc0 = 0;
  *(uint32_t*)0x20002bc8 = 0;
  *(uint64_t*)0x20002bd0 = 0x20000c00;
  *(uint64_t*)0x20000c00 = 0x20000500;
  *(uint64_t*)0x20000c08 = 0;
  *(uint64_t*)0x20000c10 = 0x200005c0;
  *(uint64_t*)0x20000c18 = 0;
  *(uint64_t*)0x20000c20 = 0x20000640;
  *(uint64_t*)0x20000c28 = 0;
  *(uint64_t*)0x20000c30 = 0x20000740;
  *(uint64_t*)0x20000c38 = 0;
  *(uint64_t*)0x20000c40 = 0x20000780;
  *(uint64_t*)0x20000c48 = 0;
  *(uint64_t*)0x20000c50 = 0x20000800;
  *(uint64_t*)0x20000c58 = 0;
  *(uint64_t*)0x20000c60 = 0x200008c0;
  *(uint64_t*)0x20000c68 = 0;
  *(uint64_t*)0x20000c70 = 0x20000980;
  *(uint64_t*)0x20000c78 = 0;
  *(uint64_t*)0x20000c80 = 0x20000a00;
  *(uint64_t*)0x20000c88 = 0;
  *(uint64_t*)0x20000c90 = 0x20000b00;
  *(uint64_t*)0x20000c98 = 0;
  *(uint64_t*)0x20002bd8 = 0xa;
  *(uint64_t*)0x20002be0 = 0x20000cc0;
  *(uint64_t*)0x20000cc0 = 0x10;
  *(uint32_t*)0x20000cc8 = 0x102;
  *(uint32_t*)0x20000ccc = 0x401;
  *(uint64_t*)0x20000cd0 = 0x10;
  *(uint32_t*)0x20000cd8 = 0x29;
  *(uint32_t*)0x20000cdc = 0xa9;
  *(uint64_t*)0x20000ce0 = 0x10;
  *(uint32_t*)0x20000ce8 = 0x10d;
  *(uint32_t*)0x20000cec = 0x18;
  *(uint64_t*)0x20000cf0 = 0x10;
  *(uint32_t*)0x20000cf8 = 0x117;
  *(uint32_t*)0x20000cfc = 9;
  *(uint64_t*)0x20000d00 = 0x10;
  *(uint32_t*)0x20000d08 = 0x11f;
  *(uint32_t*)0x20000d0c = 4;
  *(uint64_t*)0x20000d10 = 0x10;
  *(uint32_t*)0x20000d18 = 0x187;
  *(uint32_t*)0x20000d1c = 0x7fffffff;
  *(uint64_t*)0x20000d20 = 0x10;
  *(uint32_t*)0x20000d28 = 0xff;
  *(uint32_t*)0x20000d2c = 1;
  *(uint64_t*)0x20000d30 = 0x10;
  *(uint32_t*)0x20000d38 = 0x11f;
  *(uint32_t*)0x20000d3c = 1;
  *(uint64_t*)0x20002be8 = 0x80;
  *(uint32_t*)0x20002bf0 = 0x40000;
  *(uint32_t*)0x20002bf8 = 0x1686;
  *(uint64_t*)0x20002c00 = 0x20001240;
  *(uint16_t*)0x20001240 = 0x1b;
  memcpy((void*)0x20001242,
         "\xf2\xa1\x93\x1f\x0c\x24\xae\xcb\x20\xfe\xb3\xb5\x25\x09\x0b\xf5\xf1"
         "\x30\x56\xcd\xe1\xec\xe6\x77\x5e\xf9\xbe\x5d\x25\x89\xb4\xc9\x9b\x3b"
         "\x83\xdb\x54\x1c\x87\x2d\x0e\x3c\x58\x27\xd1\x3c\x63\x61\x50\xe5\xb2"
         "\xb6\xaa\xf9\x05\x93\x94\x4f\xae\xe0\x09\xbf\x35\xd9\x86\xe3\x42\x1e"
         "\x0e\x72\x58\x24\x49\x00\xa7\x62\x16\x46\x3e\x8c\xf2\x6e\xec\x0e\x9b"
         "\x32\x9f\x26\x81\x68\x0b\x0d\x77\x7f\xf9\xc1\x71\x19\x08\x8c\xc8\x9d"
         "\x3b\x84\xd9\xe2\x70\x21\x19\x8d\x8c\x92\x39\x9b\xaf\x79\x44\x26\x14"
         "\x7c\x4a\x6a\xdb\x35\xcc\x49",
         126);
  *(uint32_t*)0x20002c08 = 0x80;
  *(uint64_t*)0x20002c10 = 0x20001880;
  *(uint64_t*)0x20001880 = 0x200012c0;
  *(uint64_t*)0x20001888 = 0;
  *(uint64_t*)0x20001890 = 0x20001300;
  *(uint64_t*)0x20001898 = 0;
  *(uint64_t*)0x200018a0 = 0x20001380;
  *(uint64_t*)0x200018a8 = 0;
  *(uint64_t*)0x200018b0 = 0x20001440;
  *(uint64_t*)0x200018b8 = 0;
  *(uint64_t*)0x200018c0 = 0x20001500;
  *(uint64_t*)0x200018c8 = 0;
  *(uint64_t*)0x200018d0 = 0x20001580;
  *(uint64_t*)0x200018d8 = 0;
  *(uint64_t*)0x200018e0 = 0x20001680;
  *(uint64_t*)0x200018e8 = 0;
  *(uint64_t*)0x200018f0 = 0x200016c0;
  *(uint64_t*)0x200018f8 = 0;
  *(uint64_t*)0x20001900 = 0x200017c0;
  *(uint64_t*)0x20001908 = 0;
  *(uint64_t*)0x20002c18 = 9;
  *(uint64_t*)0x20002c20 = 0x20001940;
  *(uint64_t*)0x20002c28 = 0;
  *(uint32_t*)0x20002c30 = 0x44000;
  *(uint32_t*)0x20002c38 = 9;
  syscall(__NR_sendmmsg, r[0], 0x20002b80, 3, 0x20004045);
}

int main()
{
  syscall(__NR_mmap, 0x20000000, 0x1000000, 3, 0x32, -1, 0);
  loop();
  return 0;
}