// https://syzkaller.appspot.com/bug?id=004b0f7b61d4901cbfecfc33de7996e8cbe0a278
// autogenerated by syzkaller (http://github.com/google/syzkaller)

#define _GNU_SOURCE
#include <endian.h>
#include <stdint.h>
#include <string.h>
#include <sys/syscall.h>
#include <unistd.h>

uint64_t r[1] = {0xffffffffffffffff};
void loop()
{
  long res = 0;
  res = syscall(__NR_socket, 0x2b, 1, 0);
  if (res != -1)
    r[0] = res;
  *(uint64_t*)0x20002040 = 0x20000000;
  *(uint16_t*)0x20000000 = 0x18;
  *(uint32_t*)0x20000002 = 1;
  *(uint32_t*)0x20000006 = 0;
  *(uint32_t*)0x2000000a = r[0];
  *(uint16_t*)0x2000000e = 2;
  *(uint16_t*)0x20000010 = htobe16(0x4e24);
  *(uint32_t*)0x20000012 = htobe32(0xe0000001);
  *(uint8_t*)0x20000016 = 0;
  *(uint8_t*)0x20000017 = 0;
  *(uint8_t*)0x20000018 = 0;
  *(uint8_t*)0x20000019 = 0;
  *(uint8_t*)0x2000001a = 0;
  *(uint8_t*)0x2000001b = 0;
  *(uint8_t*)0x2000001c = 0;
  *(uint8_t*)0x2000001d = 0;
  *(uint32_t*)0x2000001e = 2;
  *(uint32_t*)0x20000022 = 3;
  *(uint32_t*)0x20000026 = 4;
  *(uint32_t*)0x2000002a = 4;
  *(uint32_t*)0x20002048 = 0x80;
  *(uint64_t*)0x20002050 = 0x20000100;
  *(uint64_t*)0x20000100 = 0x20000080;
  *(uint64_t*)0x20000108 = 0;
  *(uint64_t*)0x20000110 = 0x20000180;
  *(uint64_t*)0x20000118 = 0;
  *(uint64_t*)0x20000120 = 0x20000240;
  *(uint64_t*)0x20000128 = 0;
  *(uint64_t*)0x20000130 = 0x20000340;
  *(uint64_t*)0x20000138 = 0;
  *(uint64_t*)0x20002058 = 4;
  *(uint64_t*)0x20002060 = 0x200003c0;
  *(uint64_t*)0x200003c0 = 0x10;
  *(uint32_t*)0x200003c8 = 0x11f;
  *(uint32_t*)0x200003cc = 3;
  *(uint64_t*)0x20002068 = 0x10;
  *(uint32_t*)0x20002070 = 0x4000000;
  *(uint32_t*)0x20002078 = 9;
  *(uint64_t*)0x20002080 = 0x20000480;
  *(uint16_t*)0x20000480 = 0x18;
  *(uint32_t*)0x20000482 = 1;
  *(uint32_t*)0x20000486 = 0;
  *(uint32_t*)0x2000048a = r[0];
  *(uint16_t*)0x2000048e = 2;
  *(uint16_t*)0x20000490 = htobe16(0x4e23);
  *(uint32_t*)0x20000492 = htobe32(0xe0000002);
  *(uint8_t*)0x20000496 = 0;
  *(uint8_t*)0x20000497 = 0;
  *(uint8_t*)0x20000498 = 0;
  *(uint8_t*)0x20000499 = 0;
  *(uint8_t*)0x2000049a = 0;
  *(uint8_t*)0x2000049b = 0;
  *(uint8_t*)0x2000049c = 0;
  *(uint8_t*)0x2000049d = 0;
  *(uint16_t*)0x2000049e = 1;
  *(uint16_t*)0x200004a0 = 1;
  *(uint16_t*)0x200004a2 = 4;
  *(uint16_t*)0x200004a4 = 4;
  *(uint32_t*)0x20002088 = 0x80;
  *(uint64_t*)0x20002090 = 0x20001500;
  *(uint64_t*)0x20001500 = 0x20000500;
  *(uint64_t*)0x20001508 = 0;
  *(uint64_t*)0x20002098 = 1;
  *(uint64_t*)0x200020a0 = 0x20001540;
  *(uint64_t*)0x20001540 = 0x10;
  *(uint32_t*)0x20001548 = 0x10a;
  *(uint32_t*)0x2000154c = 8;
  *(uint64_t*)0x20001550 = 0x10;
  *(uint32_t*)0x20001558 = 0x12f;
  *(uint32_t*)0x2000155c = 0x1000;
  *(uint64_t*)0x200020a8 = 0x20;
  *(uint32_t*)0x200020b0 = 1;
  *(uint32_t*)0x200020b8 = 0x3c00;
  *(uint64_t*)0x200020c0 = 0x20001680;
  *(uint16_t*)0x20001680 = 0x1a;
  *(uint16_t*)0x20001682 = 0x308;
  *(uint8_t*)0x20001684 = 3;
  *(uint8_t*)0x20001685 = 0;
  *(uint8_t*)0x20001686 = 7;
  *(uint8_t*)0x20001687 = 9;
  memcpy((void*)0x20001688, "\x8e\xa4\x17\xea\x85\xb1", 6);
  *(uint32_t*)0x200020c8 = 0x80;
  *(uint64_t*)0x200020d0 = 0x20001900;
  *(uint64_t*)0x20001900 = 0x20001700;
  *(uint64_t*)0x20001908 = 0;
  *(uint64_t*)0x20001910 = 0x20001780;
  *(uint64_t*)0x20001918 = 0;
  *(uint64_t*)0x20001920 = 0x200017c0;
  *(uint64_t*)0x20001928 = 0;
  *(uint64_t*)0x20001930 = 0x20001840;
  *(uint64_t*)0x20001938 = 0;
  *(uint64_t*)0x200020d8 = 4;
  *(uint64_t*)0x200020e0 = 0;
  *(uint64_t*)0x200020e8 = 0;
  *(uint32_t*)0x200020f0 = 0x24008080;
  *(uint32_t*)0x200020f8 = 9;
  *(uint64_t*)0x20002100 = 0x20001940;
  *(uint16_t*)0x20001940 = 0x10;
  memcpy((void*)0x20001942,
         "\xad\x03\x29\xc1\x8d\xbf\x99\xb0\xb8\x8d\xd1\xd0\x9b\xb8\x4a\x9b\x64"
         "\x8f\x5f\x6d\x6c\x23\xd1\x4f\x29\x46\x1f\x8c\xde\x7c\xcd\xe4\x98\x52"
         "\xec\x81\x32\x77\x75\xb4\xf8\xe4\x1e\x02\xfc\x28\xfb\x0c\xe5\xc0\x9a"
         "\x6d\x48\x8c\x72\x5e\xc1\x7b\x59\x61\x92\x02\x9d\x85\xb6\x05\xf7\xeb"
         "\x5a\x73\x70\xa1\xc8\x92\x36\x08\xab\x93\xa7\xec\x52\x24\xa0\xfd\xe5"
         "\x8d\x35\x22\xcd\x58\xd9\xcd\x76\xca\x50\xdd\x74\x6d\x4b\x9b\x5b\x0a"
         "\x01\x97\x7d\x21\x34\x73\x34\x9a\xa1\x31\x24\xc5\x42\xe1\x9a\x18\x16"
         "\x44\x9f\x2a\x6c\x27\xe7\xac",
         126);
  *(uint32_t*)0x20002108 = 0x80;
  *(uint64_t*)0x20002110 = 0x20001d40;
  *(uint64_t*)0x20001d40 = 0x200019c0;
  *(uint64_t*)0x20001d48 = 0;
  *(uint64_t*)0x20001d50 = 0x20001a40;
  *(uint64_t*)0x20001d58 = 0;
  *(uint64_t*)0x20001d60 = 0x20001ac0;
  *(uint64_t*)0x20001d68 = 0;
  *(uint64_t*)0x20001d70 = 0x20001b80;
  *(uint64_t*)0x20001d78 = 0;
  *(uint64_t*)0x20001d80 = 0x20001c40;
  *(uint64_t*)0x20001d88 = 0;
  *(uint64_t*)0x20002118 = 5;
  *(uint64_t*)0x20002120 = 0x20002140;
  *(uint64_t*)0x20002140 = 0x10;
  *(uint32_t*)0x20002148 = 0;
  *(uint32_t*)0x2000214c = 0;
  *(uint64_t*)0x20002150 = 0x10;
  *(uint32_t*)0x20002158 = 0;
  *(uint32_t*)0x2000215c = 3;
  *(uint64_t*)0x20002160 = 0x10;
  *(uint32_t*)0x20002168 = 0x118;
  *(uint32_t*)0x2000216c = 7;
  *(uint64_t*)0x20002128 = 0x30;
  *(uint32_t*)0x20002130 = 0x20000080;
  *(uint32_t*)0x20002138 = 8;
  syscall(__NR_sendmmsg, r[0], 0x20002040, 4, 0x2004c080);
}

int main()
{
  syscall(__NR_mmap, 0x20000000, 0x1000000, 3, 0x32, -1, 0);
  loop();
  return 0;
}