// https://syzkaller.appspot.com/bug?id=004b0f7b61d4901cbfecfc33de7996e8cbe0a278
// autogenerated by syzkaller (http://github.com/google/syzkaller)

#define _GNU_SOURCE
#include <endian.h>
#include <stdint.h>
#include <string.h>
#include <sys/syscall.h>
#include <unistd.h>

uint64_t r[1] = {0xffffffffffffffff};
void loop()
{
  long res = 0;
  res = syscall(__NR_socket, 0x2b, 1, 0);
  if (res != -1)
    r[0] = res;
  *(uint64_t*)0x20003340 = 0x200001c0;
  *(uint16_t*)0x200001c0 = 0x1f;
  *(uint16_t*)0x200001c2 = 4;
  *(uint8_t*)0x200001c4 = 0;
  *(uint8_t*)0x200001c5 = 1;
  *(uint8_t*)0x200001c6 = 9;
  *(uint8_t*)0x200001c7 = 0x69;
  *(uint8_t*)0x200001c8 = 6;
  *(uint8_t*)0x200001c9 = 5;
  *(uint16_t*)0x200001ca = 1;
  *(uint8_t*)0x200001cc = 0xe7;
  *(uint32_t*)0x20003348 = 0x80;
  *(uint64_t*)0x20003350 = 0x20000700;
  *(uint64_t*)0x20000700 = 0x20000240;
  *(uint64_t*)0x20000708 = 0;
  *(uint64_t*)0x20000710 = 0x20000300;
  *(uint64_t*)0x20000718 = 0;
  *(uint64_t*)0x20000720 = 0x200003c0;
  *(uint64_t*)0x20000728 = 0;
  *(uint64_t*)0x20000730 = 0x200004c0;
  *(uint64_t*)0x20000738 = 0;
  *(uint64_t*)0x20000740 = 0x200005c0;
  *(uint64_t*)0x20000748 = 0;
  *(uint64_t*)0x20000750 = 0x20000600;
  *(uint64_t*)0x20000758 = 0;
  *(uint64_t*)0x20003358 = 6;
  *(uint64_t*)0x20003360 = 0x20003500;
  *(uint64_t*)0x20003368 = 0;
  *(uint32_t*)0x20003370 = 0x20000090;
  *(uint32_t*)0x20003378 = 0x99c;
  *(uint64_t*)0x20003380 = 0;
  *(uint32_t*)0x20003388 = 0;
  *(uint64_t*)0x20003390 = 0x20000ac0;
  *(uint64_t*)0x20000ac0 = 0x20000940;
  *(uint64_t*)0x20000ac8 = 0;
  *(uint64_t*)0x20000ad0 = 0x20000a00;
  *(uint64_t*)0x20000ad8 = 0;
  *(uint64_t*)0x20003398 = 2;
  *(uint64_t*)0x200033a0 = 0x20000b00;
  *(uint64_t*)0x20000b00 = 0x10;
  *(uint32_t*)0x20000b08 = 0x119;
  *(uint32_t*)0x20000b0c = 7;
  *(uint64_t*)0x20000b10 = 0x10;
  *(uint32_t*)0x20000b18 = 0x189;
  *(uint32_t*)0x20000b1c = 7;
  *(uint64_t*)0x200033a8 = 0x20;
  *(uint32_t*)0x200033b0 = 0x4000;
  *(uint32_t*)0x200033b8 = 0xad8;
  *(uint64_t*)0x200033c0 = 0x20000d00;
  *(uint16_t*)0x20000d00 = 0x18;
  *(uint32_t*)0x20000d02 = 2;
  *(uint16_t*)0x20000d06 = htobe16(0);
  *(uint32_t*)0x20000d0a = htobe32(-1);
  *(uint32_t*)0x200033c8 = 0x80;
  *(uint64_t*)0x200033d0 = 0x20001f80;
  *(uint64_t*)0x20001f80 = 0x20000d80;
  *(uint64_t*)0x20001f88 = 0;
  *(uint64_t*)0x20001f90 = 0x20001d80;
  *(uint64_t*)0x20001f98 = 0;
  *(uint64_t*)0x20001fa0 = 0x20001e40;
  *(uint64_t*)0x20001fa8 = 0;
  *(uint64_t*)0x20001fb0 = 0x20001f40;
  *(uint64_t*)0x20001fb8 = 0;
  *(uint64_t*)0x200033d8 = 4;
  *(uint64_t*)0x200033e0 = 0;
  *(uint64_t*)0x200033e8 = 0;
  *(uint32_t*)0x200033f0 = 0x4000801;
  *(uint32_t*)0x200033f8 = 1;
  *(uint64_t*)0x20003400 = 0x20001fc0;
  *(uint16_t*)0x20001fc0 = 0x18;
  *(uint32_t*)0x20001fc2 = 1;
  *(uint32_t*)0x20001fc6 = 0;
  *(uint32_t*)0x20001fca = r[0];
  *(uint32_t*)0x20001fce = 0;
  *(uint32_t*)0x20001fd2 = 1;
  *(uint32_t*)0x20001fd6 = 4;
  *(uint32_t*)0x20001fda = 0;
  *(uint16_t*)0x20001fde = 0xa;
  *(uint16_t*)0x20001fe0 = htobe16(0x4e20);
  *(uint32_t*)0x20001fe2 = 5;
  *(uint8_t*)0x20001fe6 = 0;
  *(uint8_t*)0x20001fe7 = 0;
  *(uint8_t*)0x20001fe8 = 0;
  *(uint8_t*)0x20001fe9 = 0;
  *(uint8_t*)0x20001fea = 0;
  *(uint8_t*)0x20001feb = 0;
  *(uint8_t*)0x20001fec = 0;
  *(uint8_t*)0x20001fed = 0;
  *(uint8_t*)0x20001fee = 0;
  *(uint8_t*)0x20001fef = 0;
  *(uint8_t*)0x20001ff0 = -1;
  *(uint8_t*)0x20001ff1 = -1;
  *(uint32_t*)0x20001ff2 = htobe32(0x7f000001);
  *(uint32_t*)0x20001ff6 = 2;
  *(uint32_t*)0x20003408 = 0x80;
  *(uint64_t*)0x20003410 = 0x20002140;
  *(uint64_t*)0x20002140 = 0x20002040;
  *(uint64_t*)0x20002148 = 0;
  *(uint64_t*)0x20003418 = 1;
  *(uint64_t*)0x20003420 = 0x20002180;
  *(uint64_t*)0x20002180 = 0x10;
  *(uint32_t*)0x20002188 = 0x84;
  *(uint32_t*)0x2000218c = 9;
  *(uint64_t*)0x20002190 = 0x10;
  *(uint32_t*)0x20002198 = 0;
  *(uint32_t*)0x2000219c = 4;
  *(uint64_t*)0x200021a0 = 0x10;
  *(uint32_t*)0x200021a8 = 0x199;
  *(uint32_t*)0x200021ac = 9;
  *(uint64_t*)0x200021b0 = 0x10;
  *(uint32_t*)0x200021b8 = 1;
  *(uint32_t*)0x200021bc = 9;
  *(uint64_t*)0x200021c0 = 0x10;
  *(uint32_t*)0x200021c8 = 0x102;
  *(uint32_t*)0x200021cc = 0x8000;
  *(uint64_t*)0x200021d0 = 0x10;
  *(uint32_t*)0x200021d8 = 0;
  *(uint32_t*)0x200021dc = 0x200;
  *(uint64_t*)0x200021e0 = 0x10;
  *(uint32_t*)0x200021e8 = 0x10e;
  *(uint32_t*)0x200021ec = 0x355;
  *(uint64_t*)0x200021f0 = 0x10;
  *(uint32_t*)0x200021f8 = 0x115;
  *(uint32_t*)0x200021fc = 1;
  *(uint64_t*)0x20002200 = 0x10;
  *(uint32_t*)0x20002208 = 0xff;
  *(uint32_t*)0x2000220c = 0x10000;
  *(uint64_t*)0x20003428 = 0x90;
  *(uint32_t*)0x20003430 = 0x84;
  *(uint32_t*)0x20003438 = 9;
  *(uint64_t*)0x20003440 = 0x20002840;
  *(uint16_t*)0x20002840 = 0x11;
  *(uint16_t*)0x20002842 = htobe16(0);
  *(uint32_t*)0x20002844 = 0;
  *(uint16_t*)0x20002848 = 1;
  *(uint8_t*)0x2000284a = 0;
  *(uint8_t*)0x2000284b = 6;
  *(uint8_t*)0x2000284c = 0xaa;
  *(uint8_t*)0x2000284d = 0xaa;
  *(uint8_t*)0x2000284e = 0xaa;
  *(uint8_t*)0x2000284f = 0xaa;
  *(uint8_t*)0x20002850 = 0xaa;
  *(uint8_t*)0x20002851 = 0x1e;
  *(uint8_t*)0x20002852 = 0;
  *(uint8_t*)0x20002853 = 0;
  *(uint32_t*)0x20003448 = 0x80;
  *(uint64_t*)0x20003450 = 0x20002c00;
  *(uint64_t*)0x20002c00 = 0x200028c0;
  *(uint64_t*)0x20002c08 = 0;
  *(uint64_t*)0x20002c10 = 0x20002980;
  *(uint64_t*)0x20002c18 = 0;
  *(uint64_t*)0x20002c20 = 0x20002a00;
  *(uint64_t*)0x20002c28 = 0;
  *(uint64_t*)0x20002c30 = 0x20002a80;
  *(uint64_t*)0x20002c38 = 0;
  *(uint64_t*)0x20002c40 = 0x20002b00;
  *(uint64_t*)0x20002c48 = 0;
  *(uint64_t*)0x20003458 = 5;
  *(uint64_t*)0x20003460 = 0x20002c80;
  *(uint64_t*)0x20003468 = 0;
  *(uint32_t*)0x20003470 = 0x4000000;
  *(uint32_t*)0x20003478 = 6;
  *(uint64_t*)0x20003480 = 0x20002d40;
  *(uint16_t*)0x20002d40 = 0x1a;
  *(uint16_t*)0x20002d42 = 0x338;
  *(uint8_t*)0x20002d44 = 0;
  *(uint8_t*)0x20002d45 = 0x42;
  *(uint8_t*)0x20002d46 = 3;
  *(uint8_t*)0x20002d47 = 0x40;
  *(uint8_t*)0x20002d48 = 0xaa;
  *(uint8_t*)0x20002d49 = 0xaa;
  *(uint8_t*)0x20002d4a = 0xaa;
  *(uint8_t*)0x20002d4b = 0xaa;
  *(uint8_t*)0x20002d4c = 0xaa;
  *(uint8_t*)0x20002d4d = 0xbb;
  *(uint32_t*)0x20003488 = 0x80;
  *(uint64_t*)0x20003490 = 0x20002ec0;
  *(uint64_t*)0x20002ec0 = 0x20002dc0;
  *(uint64_t*)0x20002ec8 = 0;
  *(uint64_t*)0x20003498 = 1;
  *(uint64_t*)0x200034a0 = 0;
  *(uint64_t*)0x200034a8 = 0;
  *(uint32_t*)0x200034b0 = 0x40;
  *(uint32_t*)0x200034b8 = 0xad07;
  *(uint64_t*)0x200034c0 = 0x20002f00;
  *(uint16_t*)0x20002f00 = 0x27;
  *(uint32_t*)0x20002f04 = 1;
  *(uint32_t*)0x20002f08 = 2;
  *(uint32_t*)0x20002f0c = 5;
  *(uint8_t*)0x20002f10 = 8;
  *(uint8_t*)0x20002f11 = 0;
  memcpy((void*)0x20002f12,
         "\x5b\x5b\x9d\x13\x80\x86\x07\xde\xd7\x8d\xf7\xf0\x44\x3f\x1c\x11\x70"
         "\x46\x78\x85\x42\xc9\x1f\x0f\xb6\x0a\xf4\xd3\x81\x66\x8e\xac\x1d\xa1"
         "\x9b\xb4\x94\xdb\xfb\x58\x86\x33\x31\xfc\x1f\xa8\x4c\xba\x9f\x82\x70"
         "\x74\xa2\xe5\xf6\x76\xd6\x53\x3b\xcc\x2d\x2c\x99",
         63);
  *(uint64_t*)0x20002f58 = 0x27;
  *(uint32_t*)0x200034c8 = 0x80;
  *(uint64_t*)0x200034d0 = 0x200032c0;
  *(uint64_t*)0x200032c0 = 0x20002f80;
  *(uint64_t*)0x200032c8 = 0;
  *(uint64_t*)0x200032d0 = 0x20003000;
  *(uint64_t*)0x200032d8 = 0;
  *(uint64_t*)0x200032e0 = 0x20003080;
  *(uint64_t*)0x200032e8 = 0;
  *(uint64_t*)0x200032f0 = 0x20003100;
  *(uint64_t*)0x200032f8 = 0;
  *(uint64_t*)0x20003300 = 0x200031c0;
  *(uint64_t*)0x20003308 = 0;
  *(uint64_t*)0x200034d8 = 5;
  *(uint64_t*)0x200034e0 = 0;
  *(uint64_t*)0x200034e8 = 0;
  *(uint32_t*)0x200034f0 = 0x40;
  *(uint32_t*)0x200034f8 = 2;
  syscall(__NR_sendmmsg, r[0], 0x20003340, 7, 0x20040800);
}

int main()
{
  syscall(__NR_mmap, 0x20000000, 0x1000000, 3, 0x32, -1, 0);
  loop();
  return 0;
}