// https://syzkaller.appspot.com/bug?id=912f70e859dfffd2533b7cfcd2c71e0dd6f71e9d // autogenerated by syzkaller (http://github.com/google/syzkaller) #define _GNU_SOURCE #include #include #include #include #include static void test(); void loop() { while (1) { test(); } } long r[3]; void test() { memset(r, -1, sizeof(r)); syscall(__NR_mmap, 0x20000000, 0xfff000, 3, 0x32, -1, 0); r[0] = syscall(__NR_socket, 0xa, 3, 7); memcpy((void*)0x2000fc00, "\x66\x69\x6c\x74\x65\x72\x00\x00\x00\x00\x00\x00" "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00" "\x00\x00\x00\x00\x00\x00\x00\x00", 32); *(uint32_t*)0x2000fc20 = 0xa; *(uint32_t*)0x2000fc24 = 4; *(uint32_t*)0x2000fc28 = 0x3a0; *(uint32_t*)0x2000fc2c = -1; *(uint32_t*)0x2000fc30 = 0; *(uint32_t*)0x2000fc34 = 0; *(uint32_t*)0x2000fc38 = 0; *(uint32_t*)0x2000fc3c = -1; *(uint32_t*)0x2000fc40 = -1; *(uint32_t*)0x2000fc44 = 0; *(uint32_t*)0x2000fc48 = 0; *(uint32_t*)0x2000fc4c = 0; *(uint32_t*)0x2000fc50 = -1; *(uint32_t*)0x2000fc54 = 4; *(uint64_t*)0x2000fc58 = 0x20012000; *(uint8_t*)0x2000fc60 = 0; *(uint8_t*)0x2000fc61 = 0; *(uint8_t*)0x2000fc62 = 0; *(uint8_t*)0x2000fc63 = 0; *(uint8_t*)0x2000fc64 = 0; *(uint8_t*)0x2000fc65 = 0; *(uint8_t*)0x2000fc66 = 0; *(uint8_t*)0x2000fc67 = 0; *(uint8_t*)0x2000fc68 = 0; *(uint8_t*)0x2000fc69 = 0; *(uint8_t*)0x2000fc6a = 0; *(uint8_t*)0x2000fc6b = 0; *(uint8_t*)0x2000fc6c = 0; *(uint8_t*)0x2000fc6d = 0; *(uint8_t*)0x2000fc6e = 0; *(uint8_t*)0x2000fc6f = 0; *(uint8_t*)0x2000fc70 = 0; *(uint8_t*)0x2000fc71 = 0; *(uint8_t*)0x2000fc72 = 0; *(uint8_t*)0x2000fc73 = 0; *(uint8_t*)0x2000fc74 = 0; *(uint8_t*)0x2000fc75 = 0; *(uint8_t*)0x2000fc76 = 0; *(uint8_t*)0x2000fc77 = 0; *(uint8_t*)0x2000fc78 = 0; *(uint8_t*)0x2000fc79 = 0; *(uint8_t*)0x2000fc7a = 0; *(uint8_t*)0x2000fc7b = 0; *(uint8_t*)0x2000fc7c = 0; *(uint8_t*)0x2000fc7d = 0; *(uint8_t*)0x2000fc7e = 0; *(uint8_t*)0x2000fc7f = 0; *(uint8_t*)0x2000fc80 = 0; *(uint8_t*)0x2000fc81 = 0; *(uint8_t*)0x2000fc82 = 0; *(uint8_t*)0x2000fc83 = 0; *(uint8_t*)0x2000fc84 = 0; *(uint8_t*)0x2000fc85 = 0; *(uint8_t*)0x2000fc86 = 0; *(uint8_t*)0x2000fc87 = 0; *(uint8_t*)0x2000fc88 = 0; *(uint8_t*)0x2000fc89 = 0; *(uint8_t*)0x2000fc8a = 0; *(uint8_t*)0x2000fc8b = 0; *(uint8_t*)0x2000fc8c = 0; *(uint8_t*)0x2000fc8d = 0; *(uint8_t*)0x2000fc8e = 0; *(uint8_t*)0x2000fc8f = 0; *(uint8_t*)0x2000fc90 = 0; *(uint8_t*)0x2000fc91 = 0; *(uint8_t*)0x2000fc92 = 0; *(uint8_t*)0x2000fc93 = 0; *(uint8_t*)0x2000fc94 = 0; *(uint8_t*)0x2000fc95 = 0; *(uint8_t*)0x2000fc96 = 0; *(uint8_t*)0x2000fc97 = 0; *(uint8_t*)0x2000fc98 = 0; *(uint8_t*)0x2000fc99 = 0; *(uint8_t*)0x2000fc9a = 0; *(uint8_t*)0x2000fc9b = 0; *(uint8_t*)0x2000fc9c = 0; *(uint8_t*)0x2000fc9d = 0; *(uint8_t*)0x2000fc9e = 0; *(uint8_t*)0x2000fc9f = 0; *(uint8_t*)0x2000fca0 = 0; *(uint8_t*)0x2000fca1 = 0; *(uint8_t*)0x2000fca2 = 0; *(uint8_t*)0x2000fca3 = 0; *(uint8_t*)0x2000fca4 = 0; *(uint8_t*)0x2000fca5 = 0; *(uint8_t*)0x2000fca6 = 0; *(uint8_t*)0x2000fca7 = 0; *(uint8_t*)0x2000fca8 = 0; *(uint8_t*)0x2000fca9 = 0; *(uint8_t*)0x2000fcaa = 0; *(uint8_t*)0x2000fcab = 0; *(uint8_t*)0x2000fcac = 0; *(uint8_t*)0x2000fcad = 0; *(uint8_t*)0x2000fcae = 0; *(uint8_t*)0x2000fcaf = 0; *(uint8_t*)0x2000fcb0 = 0; *(uint8_t*)0x2000fcb1 = 0; *(uint8_t*)0x2000fcb2 = 0; *(uint8_t*)0x2000fcb3 = 0; *(uint8_t*)0x2000fcb4 = 0; *(uint8_t*)0x2000fcb5 = 0; *(uint8_t*)0x2000fcb6 = 0; *(uint8_t*)0x2000fcb7 = 0; *(uint8_t*)0x2000fcb8 = 0; *(uint8_t*)0x2000fcb9 = 0; *(uint8_t*)0x2000fcba = 0; *(uint8_t*)0x2000fcbb = 0; *(uint8_t*)0x2000fcbc = 0; *(uint8_t*)0x2000fcbd = 0; *(uint8_t*)0x2000fcbe = 0; *(uint8_t*)0x2000fcbf = 0; *(uint8_t*)0x2000fcc0 = 0; *(uint8_t*)0x2000fcc1 = 0; *(uint8_t*)0x2000fcc2 = 0; *(uint8_t*)0x2000fcc3 = 0; *(uint8_t*)0x2000fcc4 = 0; *(uint8_t*)0x2000fcc5 = 0; *(uint8_t*)0x2000fcc6 = 0; *(uint8_t*)0x2000fcc7 = 0; *(uint8_t*)0x2000fcc8 = 0; *(uint8_t*)0x2000fcc9 = 0; *(uint8_t*)0x2000fcca = 0; *(uint8_t*)0x2000fccb = 0; *(uint8_t*)0x2000fccc = 0; *(uint8_t*)0x2000fccd = 0; *(uint8_t*)0x2000fcce = 0; *(uint8_t*)0x2000fccf = 0; *(uint8_t*)0x2000fcd0 = 0; *(uint8_t*)0x2000fcd1 = 0; *(uint8_t*)0x2000fcd2 = 0; *(uint8_t*)0x2000fcd3 = 0; *(uint8_t*)0x2000fcd4 = 0; *(uint8_t*)0x2000fcd5 = 0; *(uint8_t*)0x2000fcd6 = 0; *(uint8_t*)0x2000fcd7 = 0; *(uint8_t*)0x2000fcd8 = 0; *(uint8_t*)0x2000fcd9 = 0; *(uint8_t*)0x2000fcda = 0; *(uint8_t*)0x2000fcdb = 0; *(uint8_t*)0x2000fcdc = 0; *(uint8_t*)0x2000fcdd = 0; *(uint8_t*)0x2000fcde = 0; *(uint8_t*)0x2000fcdf = 0; *(uint8_t*)0x2000fce0 = 0; *(uint8_t*)0x2000fce1 = 0; *(uint8_t*)0x2000fce2 = 0; *(uint8_t*)0x2000fce3 = 0; *(uint8_t*)0x2000fce4 = 0; *(uint8_t*)0x2000fce5 = 0; *(uint8_t*)0x2000fce6 = 0; *(uint8_t*)0x2000fce7 = 0; *(uint32_t*)0x2000fce8 = 0; *(uint16_t*)0x2000fcec = 0xa8; *(uint16_t*)0x2000fcee = 0xd0; *(uint32_t*)0x2000fcf0 = 0; *(uint64_t*)0x2000fcf8 = 0; *(uint64_t*)0x2000fd00 = 0; *(uint16_t*)0x2000fd08 = 0x28; memcpy((void*)0x2000fd0a, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00" "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00" "\x00\x00\x00\x00\x00", 29); *(uint8_t*)0x2000fd27 = 0; *(uint32_t*)0x2000fd28 = 0xfffffffe; *(uint8_t*)0x2000fd30 = 0; *(uint8_t*)0x2000fd31 = 0; *(uint8_t*)0x2000fd32 = 0; *(uint8_t*)0x2000fd33 = 0; *(uint8_t*)0x2000fd34 = 0; *(uint8_t*)0x2000fd35 = 0; *(uint8_t*)0x2000fd36 = 0; *(uint8_t*)0x2000fd37 = 0; *(uint8_t*)0x2000fd38 = 0; *(uint8_t*)0x2000fd39 = 0; *(uint8_t*)0x2000fd3a = 0; *(uint8_t*)0x2000fd3b = 0; *(uint8_t*)0x2000fd3c = 0; *(uint8_t*)0x2000fd3d = 0; *(uint8_t*)0x2000fd3e = 0; *(uint8_t*)0x2000fd3f = 0; *(uint8_t*)0x2000fd40 = 0; *(uint8_t*)0x2000fd41 = 0; *(uint8_t*)0x2000fd42 = 0; *(uint8_t*)0x2000fd43 = 0; *(uint8_t*)0x2000fd44 = 0; *(uint8_t*)0x2000fd45 = 0; *(uint8_t*)0x2000fd46 = 0; *(uint8_t*)0x2000fd47 = 0; *(uint8_t*)0x2000fd48 = 0; *(uint8_t*)0x2000fd49 = 0; *(uint8_t*)0x2000fd4a = 0; *(uint8_t*)0x2000fd4b = 0; *(uint8_t*)0x2000fd4c = 0; *(uint8_t*)0x2000fd4d = 0; *(uint8_t*)0x2000fd4e = 0; *(uint8_t*)0x2000fd4f = 0; *(uint8_t*)0x2000fd50 = 0; *(uint8_t*)0x2000fd51 = 0; *(uint8_t*)0x2000fd52 = 0; *(uint8_t*)0x2000fd53 = 0; *(uint8_t*)0x2000fd54 = 0; *(uint8_t*)0x2000fd55 = 0; *(uint8_t*)0x2000fd56 = 0; *(uint8_t*)0x2000fd57 = 0; *(uint8_t*)0x2000fd58 = 0; *(uint8_t*)0x2000fd59 = 0; *(uint8_t*)0x2000fd5a = 0; *(uint8_t*)0x2000fd5b = 0; *(uint8_t*)0x2000fd5c = 0; *(uint8_t*)0x2000fd5d = 0; *(uint8_t*)0x2000fd5e = 0; *(uint8_t*)0x2000fd5f = 0; *(uint8_t*)0x2000fd60 = 0; *(uint8_t*)0x2000fd61 = 0; *(uint8_t*)0x2000fd62 = 0; *(uint8_t*)0x2000fd63 = 0; *(uint8_t*)0x2000fd64 = 0; *(uint8_t*)0x2000fd65 = 0; *(uint8_t*)0x2000fd66 = 0; *(uint8_t*)0x2000fd67 = 0; *(uint8_t*)0x2000fd68 = 0; *(uint8_t*)0x2000fd69 = 0; *(uint8_t*)0x2000fd6a = 0; *(uint8_t*)0x2000fd6b = 0; *(uint8_t*)0x2000fd6c = 0; *(uint8_t*)0x2000fd6d = 0; *(uint8_t*)0x2000fd6e = 0; *(uint8_t*)0x2000fd6f = 0; *(uint8_t*)0x2000fd70 = 0; *(uint8_t*)0x2000fd71 = 0; *(uint8_t*)0x2000fd72 = 0; *(uint8_t*)0x2000fd73 = 0; *(uint8_t*)0x2000fd74 = 0; *(uint8_t*)0x2000fd75 = 0; *(uint8_t*)0x2000fd76 = 0; *(uint8_t*)0x2000fd77 = 0; *(uint8_t*)0x2000fd78 = 0; *(uint8_t*)0x2000fd79 = 0; *(uint8_t*)0x2000fd7a = 0; *(uint8_t*)0x2000fd7b = 0; *(uint8_t*)0x2000fd7c = 0; *(uint8_t*)0x2000fd7d = 0; *(uint8_t*)0x2000fd7e = 0; *(uint8_t*)0x2000fd7f = 0; *(uint8_t*)0x2000fd80 = 0; *(uint8_t*)0x2000fd81 = 0; *(uint8_t*)0x2000fd82 = 0; *(uint8_t*)0x2000fd83 = 0; *(uint8_t*)0x2000fd84 = 0; *(uint8_t*)0x2000fd85 = 0; *(uint8_t*)0x2000fd86 = 0; *(uint8_t*)0x2000fd87 = 0; *(uint8_t*)0x2000fd88 = 0; *(uint8_t*)0x2000fd89 = 0; *(uint8_t*)0x2000fd8a = 0; *(uint8_t*)0x2000fd8b = 0; *(uint8_t*)0x2000fd8c = 0; *(uint8_t*)0x2000fd8d = 0; *(uint8_t*)0x2000fd8e = 0; *(uint8_t*)0x2000fd8f = 0; *(uint8_t*)0x2000fd90 = 0; *(uint8_t*)0x2000fd91 = 0; *(uint8_t*)0x2000fd92 = 0; *(uint8_t*)0x2000fd93 = 0; *(uint8_t*)0x2000fd94 = 0; *(uint8_t*)0x2000fd95 = 0; *(uint8_t*)0x2000fd96 = 0; *(uint8_t*)0x2000fd97 = 0; *(uint8_t*)0x2000fd98 = 0; *(uint8_t*)0x2000fd99 = 0; *(uint8_t*)0x2000fd9a = 0; *(uint8_t*)0x2000fd9b = 0; *(uint8_t*)0x2000fd9c = 0; *(uint8_t*)0x2000fd9d = 0; *(uint8_t*)0x2000fd9e = 0; *(uint8_t*)0x2000fd9f = 0; *(uint8_t*)0x2000fda0 = 0; *(uint8_t*)0x2000fda1 = 0; *(uint8_t*)0x2000fda2 = 0; *(uint8_t*)0x2000fda3 = 0; *(uint8_t*)0x2000fda4 = 0; *(uint8_t*)0x2000fda5 = 0; *(uint8_t*)0x2000fda6 = 0; *(uint8_t*)0x2000fda7 = 0; *(uint8_t*)0x2000fda8 = 0; *(uint8_t*)0x2000fda9 = 0; *(uint8_t*)0x2000fdaa = 0; *(uint8_t*)0x2000fdab = 0; *(uint8_t*)0x2000fdac = 0; *(uint8_t*)0x2000fdad = 0; *(uint8_t*)0x2000fdae = 0; *(uint8_t*)0x2000fdaf = 0; *(uint8_t*)0x2000fdb0 = 0; *(uint8_t*)0x2000fdb1 = 0; *(uint8_t*)0x2000fdb2 = 0; *(uint8_t*)0x2000fdb3 = 0; *(uint8_t*)0x2000fdb4 = 0; *(uint8_t*)0x2000fdb5 = 0; *(uint8_t*)0x2000fdb6 = 0; *(uint8_t*)0x2000fdb7 = 0; *(uint32_t*)0x2000fdb8 = 0; *(uint16_t*)0x2000fdbc = 0xa8; *(uint16_t*)0x2000fdbe = 0xf0; *(uint32_t*)0x2000fdc0 = 0; *(uint64_t*)0x2000fdc4 = 0; *(uint64_t*)0x2000fdcc = 0; *(uint16_t*)0x2000fdd8 = 0x48; memcpy((void*)0x2000fdda, "\x49\x44\x4c\x45\x54\x49\x4d\x45\x52\x00\x00\x00" "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00" "\x00\x00\x00\x00\x00", 29); *(uint8_t*)0x2000fdf7 = 0; *(uint32_t*)0x2000fdf8 = 0x80000001; memcpy((void*)0x2000fdfc, "\x73\x79\x53\xfc\x00\x00\x80\x00\x00\x00\x00\x00" "\x00\x00\xff\xff\xff\x00\x80\x00\xd2\x00\x00\x00" "\x00\x00\x00\x00", 28); *(uint64_t*)0x2000fe18 = 0; *(uint8_t*)0x2000fe20 = 0xfe; *(uint8_t*)0x2000fe21 = 0x80; *(uint8_t*)0x2000fe22 = 0; *(uint8_t*)0x2000fe23 = 0; *(uint8_t*)0x2000fe24 = 0; *(uint8_t*)0x2000fe25 = 0; *(uint8_t*)0x2000fe26 = 0; *(uint8_t*)0x2000fe27 = 0; *(uint8_t*)0x2000fe28 = 0; *(uint8_t*)0x2000fe29 = 0; *(uint8_t*)0x2000fe2a = 0; *(uint8_t*)0x2000fe2b = 0; *(uint8_t*)0x2000fe2c = 0; *(uint8_t*)0x2000fe2d = 0; *(uint8_t*)0x2000fe2e = 0; *(uint8_t*)0x2000fe2f = 0xbb; *(uint8_t*)0x2000fe30 = 0; *(uint8_t*)0x2000fe31 = 0; *(uint8_t*)0x2000fe32 = 0; *(uint8_t*)0x2000fe33 = 0; *(uint8_t*)0x2000fe34 = 0; *(uint8_t*)0x2000fe35 = 0; *(uint8_t*)0x2000fe36 = 0; *(uint8_t*)0x2000fe37 = 0; *(uint8_t*)0x2000fe38 = 0; *(uint8_t*)0x2000fe39 = 0; *(uint8_t*)0x2000fe3a = 0; *(uint8_t*)0x2000fe3b = 0; *(uint8_t*)0x2000fe3c = 0; *(uint8_t*)0x2000fe3d = 0; *(uint8_t*)0x2000fe3e = 0; *(uint8_t*)0x2000fe3f = 0; *(uint32_t*)0x2000fe40 = htobe32(0); *(uint32_t*)0x2000fe44 = htobe32(0); *(uint32_t*)0x2000fe48 = htobe32(0); *(uint32_t*)0x2000fe4c = htobe32(0); *(uint32_t*)0x2000fe50 = htobe32(0); *(uint32_t*)0x2000fe54 = htobe32(0); *(uint32_t*)0x2000fe58 = htobe32(0); *(uint32_t*)0x2000fe5c = htobe32(0); memcpy((void*)0x2000fe60, "\x28\x44\x63\x31\x60\x5b\xfe\xfb\x40\xec\x55\xd8\x9c\xce\xfc\xf6", 16); memcpy((void*)0x2000fe70, "\x21\xbc\xf3\x5d\x5f\x3f\x02\xf3\x97\xf4\x12\x52\x77\xfa\xaf\x31", 16); *(uint8_t*)0x2000fe80 = 0; *(uint8_t*)0x2000fe81 = 0; *(uint8_t*)0x2000fe82 = 0; *(uint8_t*)0x2000fe83 = 0; *(uint8_t*)0x2000fe84 = 0; *(uint8_t*)0x2000fe85 = 0; *(uint8_t*)0x2000fe86 = 0; *(uint8_t*)0x2000fe87 = 0; *(uint8_t*)0x2000fe88 = 0; *(uint8_t*)0x2000fe89 = 0; *(uint8_t*)0x2000fe8a = 0; *(uint8_t*)0x2000fe8b = 0; *(uint8_t*)0x2000fe8c = 0; *(uint8_t*)0x2000fe8d = 0; *(uint8_t*)0x2000fe8e = 0; *(uint8_t*)0x2000fe8f = 0; *(uint8_t*)0x2000fe90 = 0; *(uint8_t*)0x2000fe91 = 0; *(uint8_t*)0x2000fe92 = 0; *(uint8_t*)0x2000fe93 = 0; *(uint8_t*)0x2000fe94 = 0; *(uint8_t*)0x2000fe95 = 0; *(uint8_t*)0x2000fe96 = 0; *(uint8_t*)0x2000fe97 = 0; *(uint8_t*)0x2000fe98 = 0; *(uint8_t*)0x2000fe99 = 0; *(uint8_t*)0x2000fe9a = 0; *(uint8_t*)0x2000fe9b = 0; *(uint8_t*)0x2000fe9c = 0; *(uint8_t*)0x2000fe9d = 0; *(uint8_t*)0x2000fe9e = 0; *(uint8_t*)0x2000fe9f = 0; *(uint16_t*)0x2000fea0 = 0; *(uint8_t*)0x2000fea2 = 0; *(uint8_t*)0x2000fea3 = 0; *(uint8_t*)0x2000fea4 = 0; *(uint32_t*)0x2000fea8 = 0; *(uint16_t*)0x2000feac = 0xa8; *(uint16_t*)0x2000feae = 0xf0; *(uint32_t*)0x2000feb0 = 0; *(uint64_t*)0x2000feb4 = 0; *(uint64_t*)0x2000febc = 0; *(uint16_t*)0x2000fec8 = 0x48; memcpy((void*)0x2000feca, "\x4c\x45\x44\x00\x00\x00\x00\x00\x00\x00\x00\x00" "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00" "\x00\x00\x00\x00\x00", 29); *(uint8_t*)0x2000fee7 = 0; memcpy((void*)0x2000fee8, "\x73\x79\x7a\x31\x00\x00\x00\x00\x00\x00\x00\x00" "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00" "\x00\x00\x00", 27); *(uint8_t*)0x2000ff03 = 0; *(uint32_t*)0x2000ff04 = 0; *(uint64_t*)0x2000ff08 = 0; *(uint8_t*)0x2000ff10 = 0xfe; *(uint8_t*)0x2000ff11 = 0x80; *(uint8_t*)0x2000ff12 = 0; *(uint8_t*)0x2000ff13 = 0; *(uint8_t*)0x2000ff14 = 0; *(uint8_t*)0x2000ff15 = 0; *(uint8_t*)0x2000ff16 = 0; *(uint8_t*)0x2000ff17 = 0; *(uint8_t*)0x2000ff18 = 0; *(uint8_t*)0x2000ff19 = 0; *(uint8_t*)0x2000ff1a = 0; *(uint8_t*)0x2000ff1b = 0; *(uint8_t*)0x2000ff1c = 0; *(uint8_t*)0x2000ff1d = 0; *(uint8_t*)0x2000ff1e = 0; *(uint8_t*)0x2000ff1f = 0xbb; *(uint8_t*)0x2000ff20 = -1; *(uint8_t*)0x2000ff21 = 2; *(uint8_t*)0x2000ff22 = 0; *(uint8_t*)0x2000ff23 = 0; *(uint8_t*)0x2000ff24 = 0; *(uint8_t*)0x2000ff25 = 0; *(uint8_t*)0x2000ff26 = 0; *(uint8_t*)0x2000ff27 = 0; *(uint8_t*)0x2000ff28 = 0; *(uint8_t*)0x2000ff29 = 0; *(uint8_t*)0x2000ff2a = 0; *(uint8_t*)0x2000ff2b = 0; *(uint8_t*)0x2000ff2c = 0; *(uint8_t*)0x2000ff2d = 0; *(uint8_t*)0x2000ff2e = 0; *(uint8_t*)0x2000ff2f = 1; *(uint32_t*)0x2000ff30 = htobe32(0); *(uint32_t*)0x2000ff34 = htobe32(0); *(uint32_t*)0x2000ff38 = htobe32(0); *(uint32_t*)0x2000ff3c = htobe32(0); *(uint32_t*)0x2000ff40 = htobe32(0); *(uint32_t*)0x2000ff44 = htobe32(0); *(uint32_t*)0x2000ff48 = htobe32(0); *(uint32_t*)0x2000ff4c = htobe32(0); memcpy((void*)0x2000ff50, "\x83\xbd\x19\x9c\x30\xf1\x2b\x35\x9f\xd9\x40\xb9\x21\x30\xf3\xdf", 16); *(uint8_t*)0x2000ff60 = 0x73; *(uint8_t*)0x2000ff61 = 0x79; *(uint8_t*)0x2000ff62 = 0x7a; *(uint8_t*)0x2000ff63 = 0; *(uint8_t*)0x2000ff64 = 0; *(uint8_t*)0x2000ff70 = 0; *(uint8_t*)0x2000ff71 = 0; *(uint8_t*)0x2000ff72 = 0; *(uint8_t*)0x2000ff73 = 0; *(uint8_t*)0x2000ff74 = 0; *(uint8_t*)0x2000ff75 = 0; *(uint8_t*)0x2000ff76 = 0; *(uint8_t*)0x2000ff77 = 0; *(uint8_t*)0x2000ff78 = 0; *(uint8_t*)0x2000ff79 = 0; *(uint8_t*)0x2000ff7a = 0; *(uint8_t*)0x2000ff7b = 0; *(uint8_t*)0x2000ff7c = 0; *(uint8_t*)0x2000ff7d = 0; *(uint8_t*)0x2000ff7e = 0; *(uint8_t*)0x2000ff7f = 0; *(uint8_t*)0x2000ff80 = 0; *(uint8_t*)0x2000ff81 = 0; *(uint8_t*)0x2000ff82 = 0; *(uint8_t*)0x2000ff83 = 0; *(uint8_t*)0x2000ff84 = 0; *(uint8_t*)0x2000ff85 = 0; *(uint8_t*)0x2000ff86 = 0; *(uint8_t*)0x2000ff87 = 0; *(uint8_t*)0x2000ff88 = 0; *(uint8_t*)0x2000ff89 = 0; *(uint8_t*)0x2000ff8a = 0; *(uint8_t*)0x2000ff8b = 0; *(uint8_t*)0x2000ff8c = 0; *(uint8_t*)0x2000ff8d = 0; *(uint8_t*)0x2000ff8e = 0; *(uint8_t*)0x2000ff8f = 0; *(uint16_t*)0x2000ff90 = 0; *(uint8_t*)0x2000ff92 = 0; *(uint8_t*)0x2000ff93 = 0; *(uint8_t*)0x2000ff94 = 0; *(uint32_t*)0x2000ff98 = 0; *(uint16_t*)0x2000ff9c = 0xa8; *(uint16_t*)0x2000ff9e = 0xf0; *(uint32_t*)0x2000ffa0 = 0; *(uint64_t*)0x2000ffa4 = 0; *(uint64_t*)0x2000ffac = 0; *(uint16_t*)0x2000ffb8 = 0x48; memcpy((void*)0x2000ffba, "\x4c\x45\x44\x00\x00\x00\x00\x00\x00\x00\x00\x00" "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00" "\x00\x00\x00\x00\x00", 29); *(uint8_t*)0x2000ffd7 = 0; memcpy((void*)0x2000ffd8, "\x73\x79\x7a\x30\x00\x00\x00\x00\x00\x00\x00\x00" "\x00\x00\x00\x00\x09\x00\x00\x01\x00\x00\x00\x00" "\x00\x00\x00", 27); *(uint8_t*)0x2000fff3 = 0; *(uint32_t*)0x2000fff4 = 0; *(uint64_t*)0x2000fff8 = 0; *(uint64_t*)0x20012000 = 0; *(uint64_t*)0x20012008 = 0; *(uint64_t*)0x20012010 = 0; *(uint64_t*)0x20012018 = 0; *(uint64_t*)0x20012020 = 0; *(uint64_t*)0x20012028 = 0; *(uint64_t*)0x20012030 = 0; *(uint64_t*)0x20012038 = 0; syscall(__NR_setsockopt, r[0], 0x29, 0x40, 0x2000fc00, 0x400); r[1] = syscall(__NR_socket, 0xa, 1, 0); *(uint8_t*)0x200aa000 = 0xfe; *(uint8_t*)0x200aa001 = 0x80; *(uint8_t*)0x200aa002 = 0; *(uint8_t*)0x200aa003 = 0; *(uint8_t*)0x200aa004 = 0; *(uint8_t*)0x200aa005 = 0; *(uint8_t*)0x200aa006 = 0; *(uint8_t*)0x200aa007 = 0; *(uint8_t*)0x200aa008 = 0; *(uint8_t*)0x200aa009 = 0; *(uint8_t*)0x200aa00a = 0; *(uint8_t*)0x200aa00b = 0; *(uint8_t*)0x200aa00c = 0; *(uint8_t*)0x200aa00d = 0; *(uint8_t*)0x200aa00e = 0; *(uint8_t*)0x200aa00f = 0xbb; *(uint32_t*)0x200aa010 = 0; *(uint8_t*)0x200aa014 = 0; *(uint8_t*)0x200aa015 = 0; *(uint16_t*)0x200aa016 = 0; *(uint16_t*)0x200aa018 = 0; *(uint16_t*)0x200aa01a = 0; *(uint32_t*)0x200aa01c = 0; syscall(__NR_setsockopt, r[1], 0x29, 0x1b, 0x200aa000, 0x20); r[2] = syscall(__NR_socket, 2, 0x80005, 0); memcpy((void*)0x2002ccf8, "\x66\x69\x6c\x74\x65\x72\x00\x00\x00\x00\x00\x00" "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00" "\x00\x00\x00\x00\x00\x00\x00\x00", 32); *(uint32_t*)0x2002cd18 = 0xe; *(uint32_t*)0x2002cd1c = 4; *(uint32_t*)0x2002cd20 = 0x2a8; *(uint32_t*)0x2002cd24 = -1; *(uint32_t*)0x2002cd28 = 0; *(uint32_t*)0x2002cd2c = 0; *(uint32_t*)0x2002cd30 = 0; *(uint32_t*)0x2002cd34 = -1; *(uint32_t*)0x2002cd38 = -1; *(uint32_t*)0x2002cd3c = 0; *(uint32_t*)0x2002cd40 = 0; *(uint32_t*)0x2002cd44 = 0; *(uint32_t*)0x2002cd48 = -1; *(uint32_t*)0x2002cd4c = 4; *(uint64_t*)0x2002cd50 = 0x20001000; *(uint8_t*)0x2002cd58 = 0; *(uint8_t*)0x2002cd59 = 0; *(uint8_t*)0x2002cd5a = 0; *(uint8_t*)0x2002cd5b = 0; *(uint8_t*)0x2002cd5c = 0; *(uint8_t*)0x2002cd5d = 0; *(uint8_t*)0x2002cd5e = 0; *(uint8_t*)0x2002cd5f = 0; *(uint8_t*)0x2002cd60 = 0; *(uint8_t*)0x2002cd61 = 0; *(uint8_t*)0x2002cd62 = 0; *(uint8_t*)0x2002cd63 = 0; *(uint8_t*)0x2002cd64 = 0; *(uint8_t*)0x2002cd65 = 0; *(uint8_t*)0x2002cd66 = 0; *(uint8_t*)0x2002cd67 = 0; *(uint8_t*)0x2002cd68 = 0; *(uint8_t*)0x2002cd69 = 0; *(uint8_t*)0x2002cd6a = 0; *(uint8_t*)0x2002cd6b = 0; *(uint8_t*)0x2002cd6c = 0; *(uint8_t*)0x2002cd6d = 0; *(uint8_t*)0x2002cd6e = 0; *(uint8_t*)0x2002cd6f = 0; *(uint8_t*)0x2002cd70 = 0; *(uint8_t*)0x2002cd71 = 0; *(uint8_t*)0x2002cd72 = 0; *(uint8_t*)0x2002cd73 = 0; *(uint8_t*)0x2002cd74 = 0; *(uint8_t*)0x2002cd75 = 0; *(uint8_t*)0x2002cd76 = 0; *(uint8_t*)0x2002cd77 = 0; *(uint8_t*)0x2002cd78 = 0; *(uint8_t*)0x2002cd79 = 0; *(uint8_t*)0x2002cd7a = 0; *(uint8_t*)0x2002cd7b = 0; *(uint8_t*)0x2002cd7c = 0; *(uint8_t*)0x2002cd7d = 0; *(uint8_t*)0x2002cd7e = 0; *(uint8_t*)0x2002cd7f = 0; *(uint8_t*)0x2002cd80 = 0; *(uint8_t*)0x2002cd81 = 0; *(uint8_t*)0x2002cd82 = 0; *(uint8_t*)0x2002cd83 = 0; *(uint8_t*)0x2002cd84 = 0; *(uint8_t*)0x2002cd85 = 0; *(uint8_t*)0x2002cd86 = 0; *(uint8_t*)0x2002cd87 = 0; *(uint8_t*)0x2002cd88 = 0; *(uint8_t*)0x2002cd89 = 0; *(uint8_t*)0x2002cd8a = 0; *(uint8_t*)0x2002cd8b = 0; *(uint8_t*)0x2002cd8c = 0; *(uint8_t*)0x2002cd8d = 0; *(uint8_t*)0x2002cd8e = 0; *(uint8_t*)0x2002cd8f = 0; *(uint8_t*)0x2002cd90 = 0; *(uint8_t*)0x2002cd91 = 0; *(uint8_t*)0x2002cd92 = 0; *(uint8_t*)0x2002cd93 = 0; *(uint8_t*)0x2002cd94 = 0; *(uint8_t*)0x2002cd95 = 0; *(uint8_t*)0x2002cd96 = 0; *(uint8_t*)0x2002cd97 = 0; *(uint8_t*)0x2002cd98 = 0; *(uint8_t*)0x2002cd99 = 0; *(uint8_t*)0x2002cd9a = 0; *(uint8_t*)0x2002cd9b = 0; *(uint8_t*)0x2002cd9c = 0; *(uint8_t*)0x2002cd9d = 0; *(uint8_t*)0x2002cd9e = 0; *(uint8_t*)0x2002cd9f = 0; *(uint8_t*)0x2002cda0 = 0; *(uint8_t*)0x2002cda1 = 0; *(uint8_t*)0x2002cda2 = 0; *(uint8_t*)0x2002cda3 = 0; *(uint8_t*)0x2002cda4 = 0; *(uint8_t*)0x2002cda5 = 0; *(uint8_t*)0x2002cda6 = 0; *(uint8_t*)0x2002cda7 = 0; *(uint8_t*)0x2002cda8 = 0; *(uint8_t*)0x2002cda9 = 0; *(uint8_t*)0x2002cdaa = 0; *(uint8_t*)0x2002cdab = 0; *(uint32_t*)0x2002cdac = 0; *(uint16_t*)0x2002cdb0 = 0x70; *(uint16_t*)0x2002cdb2 = 0x98; *(uint32_t*)0x2002cdb4 = 0; *(uint64_t*)0x2002cdb8 = 0; *(uint64_t*)0x2002cdc0 = 0; *(uint16_t*)0x2002cdc8 = 0x28; memcpy((void*)0x2002cdca, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00" "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00" "\x00\x00\x00\x00\x00", 29); *(uint8_t*)0x2002cde7 = 0; *(uint32_t*)0x2002cde8 = 0xfffffffe; *(uint8_t*)0x2002cdf0 = 0; *(uint8_t*)0x2002cdf1 = 0; *(uint8_t*)0x2002cdf2 = 0; *(uint8_t*)0x2002cdf3 = 0; *(uint8_t*)0x2002cdf4 = 0; *(uint8_t*)0x2002cdf5 = 0; *(uint8_t*)0x2002cdf6 = 0; *(uint8_t*)0x2002cdf7 = 0; *(uint8_t*)0x2002cdf8 = 0; *(uint8_t*)0x2002cdf9 = 0; *(uint8_t*)0x2002cdfa = 0; *(uint8_t*)0x2002cdfb = 0; *(uint8_t*)0x2002cdfc = 0; *(uint8_t*)0x2002cdfd = 0; *(uint8_t*)0x2002cdfe = 0; *(uint8_t*)0x2002cdff = 0; *(uint8_t*)0x2002ce00 = 0; *(uint8_t*)0x2002ce01 = 0; *(uint8_t*)0x2002ce02 = 0; *(uint8_t*)0x2002ce03 = 0; *(uint8_t*)0x2002ce04 = 0; *(uint8_t*)0x2002ce05 = 0; *(uint8_t*)0x2002ce06 = 0; *(uint8_t*)0x2002ce07 = 0; *(uint8_t*)0x2002ce08 = 0; *(uint8_t*)0x2002ce09 = 0; *(uint8_t*)0x2002ce0a = 0; *(uint8_t*)0x2002ce0b = 0; *(uint8_t*)0x2002ce0c = 0; *(uint8_t*)0x2002ce0d = 0; *(uint8_t*)0x2002ce0e = 0; *(uint8_t*)0x2002ce0f = 0; *(uint8_t*)0x2002ce10 = 0; *(uint8_t*)0x2002ce11 = 0; *(uint8_t*)0x2002ce12 = 0; *(uint8_t*)0x2002ce13 = 0; *(uint8_t*)0x2002ce14 = 0; *(uint8_t*)0x2002ce15 = 0; *(uint8_t*)0x2002ce16 = 0; *(uint8_t*)0x2002ce17 = 0; *(uint8_t*)0x2002ce18 = 0; *(uint8_t*)0x2002ce19 = 0; *(uint8_t*)0x2002ce1a = 0; *(uint8_t*)0x2002ce1b = 0; *(uint8_t*)0x2002ce1c = 0; *(uint8_t*)0x2002ce1d = 0; *(uint8_t*)0x2002ce1e = 0; *(uint8_t*)0x2002ce1f = 0; *(uint8_t*)0x2002ce20 = 0; *(uint8_t*)0x2002ce21 = 0; *(uint8_t*)0x2002ce22 = 0; *(uint8_t*)0x2002ce23 = 0; *(uint8_t*)0x2002ce24 = 0; *(uint8_t*)0x2002ce25 = 0; *(uint8_t*)0x2002ce26 = 0; *(uint8_t*)0x2002ce27 = 0; *(uint8_t*)0x2002ce28 = 0; *(uint8_t*)0x2002ce29 = 0; *(uint8_t*)0x2002ce2a = 0; *(uint8_t*)0x2002ce2b = 0; *(uint8_t*)0x2002ce2c = 0; *(uint8_t*)0x2002ce2d = 0; *(uint8_t*)0x2002ce2e = 0; *(uint8_t*)0x2002ce2f = 0; *(uint8_t*)0x2002ce30 = 0; *(uint8_t*)0x2002ce31 = 0; *(uint8_t*)0x2002ce32 = 0; *(uint8_t*)0x2002ce33 = 0; *(uint8_t*)0x2002ce34 = 0; *(uint8_t*)0x2002ce35 = 0; *(uint8_t*)0x2002ce36 = 0; *(uint8_t*)0x2002ce37 = 0; *(uint8_t*)0x2002ce38 = 0; *(uint8_t*)0x2002ce39 = 0; *(uint8_t*)0x2002ce3a = 0; *(uint8_t*)0x2002ce3b = 0; *(uint8_t*)0x2002ce3c = 0; *(uint8_t*)0x2002ce3d = 0; *(uint8_t*)0x2002ce3e = 0; *(uint8_t*)0x2002ce3f = 0; *(uint8_t*)0x2002ce40 = 0; *(uint8_t*)0x2002ce41 = 0; *(uint8_t*)0x2002ce42 = 0; *(uint8_t*)0x2002ce43 = 0; *(uint32_t*)0x2002ce44 = 0; *(uint16_t*)0x2002ce48 = 0x70; *(uint16_t*)0x2002ce4a = 0x98; *(uint32_t*)0x2002ce4c = 0; *(uint64_t*)0x2002ce50 = 0; *(uint64_t*)0x2002ce58 = 0; *(uint16_t*)0x2002ce60 = 0x28; memcpy((void*)0x2002ce62, "\x52\x45\x4a\x45\x43\x54\x00\x00\x00\x00\x00\x00" "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00" "\x00\x00\x00\x00\x00", 29); *(uint8_t*)0x2002ce7f = 0; *(uint32_t*)0x2002ce80 = 0; *(uint8_t*)0x2002ce88 = 0; *(uint8_t*)0x2002ce89 = 0; *(uint8_t*)0x2002ce8a = 0; *(uint8_t*)0x2002ce8b = 0; *(uint8_t*)0x2002ce8c = 0; *(uint8_t*)0x2002ce8d = 0; *(uint8_t*)0x2002ce8e = 0; *(uint8_t*)0x2002ce8f = 0; *(uint8_t*)0x2002ce90 = 0; *(uint8_t*)0x2002ce91 = 0; *(uint8_t*)0x2002ce92 = 0; *(uint8_t*)0x2002ce93 = 0; *(uint8_t*)0x2002ce94 = 0; *(uint8_t*)0x2002ce95 = 0; *(uint8_t*)0x2002ce96 = 0; *(uint8_t*)0x2002ce97 = 0; *(uint8_t*)0x2002ce98 = 0; *(uint8_t*)0x2002ce99 = 0; *(uint8_t*)0x2002ce9a = 0; *(uint8_t*)0x2002ce9b = 0; *(uint8_t*)0x2002ce9c = 0; *(uint8_t*)0x2002ce9d = 0; *(uint8_t*)0x2002ce9e = 0; *(uint8_t*)0x2002ce9f = 0; *(uint8_t*)0x2002cea0 = 0; *(uint8_t*)0x2002cea1 = 0; *(uint8_t*)0x2002cea2 = 0; *(uint8_t*)0x2002cea3 = 0; *(uint8_t*)0x2002cea4 = 0; *(uint8_t*)0x2002cea5 = 0; *(uint8_t*)0x2002cea6 = 0; *(uint8_t*)0x2002cea7 = 0; *(uint8_t*)0x2002cea8 = 0; *(uint8_t*)0x2002cea9 = 0; *(uint8_t*)0x2002ceaa = 0; *(uint8_t*)0x2002ceab = 0; *(uint8_t*)0x2002ceac = 0; *(uint8_t*)0x2002cead = 0; *(uint8_t*)0x2002ceae = 0; *(uint8_t*)0x2002ceaf = 0; *(uint8_t*)0x2002ceb0 = 0; *(uint8_t*)0x2002ceb1 = 0; *(uint8_t*)0x2002ceb2 = 0; *(uint8_t*)0x2002ceb3 = 0; *(uint8_t*)0x2002ceb4 = 0; *(uint8_t*)0x2002ceb5 = 0; *(uint8_t*)0x2002ceb6 = 0; *(uint8_t*)0x2002ceb7 = 0; *(uint8_t*)0x2002ceb8 = 0; *(uint8_t*)0x2002ceb9 = 0; *(uint8_t*)0x2002ceba = 0; *(uint8_t*)0x2002cebb = 0; *(uint8_t*)0x2002cebc = 0; *(uint8_t*)0x2002cebd = 0; *(uint8_t*)0x2002cebe = 0; *(uint8_t*)0x2002cebf = 0; *(uint8_t*)0x2002cec0 = 0; *(uint8_t*)0x2002cec1 = 0; *(uint8_t*)0x2002cec2 = 0; *(uint8_t*)0x2002cec3 = 0; *(uint8_t*)0x2002cec4 = 0; *(uint8_t*)0x2002cec5 = 0; *(uint8_t*)0x2002cec6 = 0; *(uint8_t*)0x2002cec7 = 0; *(uint8_t*)0x2002cec8 = 0; *(uint8_t*)0x2002cec9 = 0; *(uint8_t*)0x2002ceca = 0; *(uint8_t*)0x2002cecb = 0; *(uint8_t*)0x2002cecc = 0; *(uint8_t*)0x2002cecd = 0; *(uint8_t*)0x2002cece = 0; *(uint8_t*)0x2002cecf = 0; *(uint8_t*)0x2002ced0 = 0; *(uint8_t*)0x2002ced1 = 0; *(uint8_t*)0x2002ced2 = 0; *(uint8_t*)0x2002ced3 = 0; *(uint8_t*)0x2002ced4 = 0; *(uint8_t*)0x2002ced5 = 0; *(uint8_t*)0x2002ced6 = 0; *(uint8_t*)0x2002ced7 = 0; *(uint8_t*)0x2002ced8 = 0; *(uint8_t*)0x2002ced9 = 0; *(uint8_t*)0x2002ceda = 0; *(uint8_t*)0x2002cedb = 0; *(uint32_t*)0x2002cedc = 0; *(uint16_t*)0x2002cee0 = 0x98; *(uint16_t*)0x2002cee2 = 0xc0; *(uint32_t*)0x2002cee4 = 0; *(uint64_t*)0x2002cee8 = 0; *(uint64_t*)0x2002cef0 = 0; *(uint16_t*)0x2002cef8 = 0x28; memcpy((void*)0x2002cefa, "\x63\x6f\x6e\x6e\x6c\x61\x62\x65\x6c\x00\x00\x00" "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00" "\x00\x00\x00\x00\x00", 29); *(uint8_t*)0x2002cf17 = 0; *(uint16_t*)0x2002cf18 = 0; *(uint16_t*)0x2002cf1a = 0; *(uint16_t*)0x2002cf20 = 0x28; memcpy((void*)0x2002cf22, "\x52\x45\x4a\x45\x43\x54\x00\x00\x00\x00\x00\x00" "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00" "\x00\x00\x00\x00\x00", 29); *(uint8_t*)0x2002cf3f = 0; *(uint32_t*)0x2002cf40 = 0; *(uint8_t*)0x2002cf48 = 0; *(uint8_t*)0x2002cf49 = 0; *(uint8_t*)0x2002cf4a = 0; *(uint8_t*)0x2002cf4b = 0; *(uint8_t*)0x2002cf4c = 0; *(uint8_t*)0x2002cf4d = 0; *(uint8_t*)0x2002cf4e = 0; *(uint8_t*)0x2002cf4f = 0; *(uint8_t*)0x2002cf50 = 0; *(uint8_t*)0x2002cf51 = 0; *(uint8_t*)0x2002cf52 = 0; *(uint8_t*)0x2002cf53 = 0; *(uint8_t*)0x2002cf54 = 0; *(uint8_t*)0x2002cf55 = 0; *(uint8_t*)0x2002cf56 = 0; *(uint8_t*)0x2002cf57 = 0; *(uint8_t*)0x2002cf58 = 0; *(uint8_t*)0x2002cf59 = 0; *(uint8_t*)0x2002cf5a = 0; *(uint8_t*)0x2002cf5b = 0; *(uint8_t*)0x2002cf5c = 0; *(uint8_t*)0x2002cf5d = 0; *(uint8_t*)0x2002cf5e = 0; *(uint8_t*)0x2002cf5f = 0; *(uint8_t*)0x2002cf60 = 0; *(uint8_t*)0x2002cf61 = 0; *(uint8_t*)0x2002cf62 = 0; *(uint8_t*)0x2002cf63 = 0; *(uint8_t*)0x2002cf64 = 0; *(uint8_t*)0x2002cf65 = 0; *(uint8_t*)0x2002cf66 = 0; *(uint8_t*)0x2002cf67 = 0; *(uint8_t*)0x2002cf68 = 0; *(uint8_t*)0x2002cf69 = 0; *(uint8_t*)0x2002cf6a = 0; *(uint8_t*)0x2002cf6b = 0; *(uint8_t*)0x2002cf6c = 0; *(uint8_t*)0x2002cf6d = 0; *(uint8_t*)0x2002cf6e = 0; *(uint8_t*)0x2002cf6f = 0; *(uint8_t*)0x2002cf70 = 0; *(uint8_t*)0x2002cf71 = 0; *(uint8_t*)0x2002cf72 = 0; *(uint8_t*)0x2002cf73 = 0; *(uint8_t*)0x2002cf74 = 0; *(uint8_t*)0x2002cf75 = 0; *(uint8_t*)0x2002cf76 = 0; *(uint8_t*)0x2002cf77 = 0; *(uint8_t*)0x2002cf78 = 0; *(uint8_t*)0x2002cf79 = 0; *(uint8_t*)0x2002cf7a = 0; *(uint8_t*)0x2002cf7b = 0; *(uint8_t*)0x2002cf7c = 0; *(uint8_t*)0x2002cf7d = 0; *(uint8_t*)0x2002cf7e = 0; *(uint8_t*)0x2002cf7f = 0; *(uint8_t*)0x2002cf80 = 0; *(uint8_t*)0x2002cf81 = 0; *(uint8_t*)0x2002cf82 = 0; *(uint8_t*)0x2002cf83 = 0; *(uint8_t*)0x2002cf84 = 0; *(uint8_t*)0x2002cf85 = 0; *(uint8_t*)0x2002cf86 = 0; *(uint8_t*)0x2002cf87 = 0; *(uint8_t*)0x2002cf88 = 0; *(uint8_t*)0x2002cf89 = 0; *(uint8_t*)0x2002cf8a = 0; *(uint8_t*)0x2002cf8b = 0; *(uint8_t*)0x2002cf8c = 0; *(uint8_t*)0x2002cf8d = 0; *(uint8_t*)0x2002cf8e = 0; *(uint8_t*)0x2002cf8f = 0; *(uint8_t*)0x2002cf90 = 0; *(uint8_t*)0x2002cf91 = 0; *(uint8_t*)0x2002cf92 = 0; *(uint8_t*)0x2002cf93 = 0; *(uint8_t*)0x2002cf94 = 0; *(uint8_t*)0x2002cf95 = 0; *(uint8_t*)0x2002cf96 = 0; *(uint8_t*)0x2002cf97 = 0; *(uint8_t*)0x2002cf98 = 0; *(uint8_t*)0x2002cf99 = 0; *(uint8_t*)0x2002cf9a = 0; *(uint8_t*)0x2002cf9b = 0; *(uint32_t*)0x2002cf9c = 0; *(uint16_t*)0x2002cfa0 = 0x70; *(uint16_t*)0x2002cfa2 = 0xb8; *(uint32_t*)0x2002cfa4 = 0; *(uint64_t*)0x2002cfa8 = 0; *(uint64_t*)0x2002cfb0 = 0; *(uint16_t*)0x2002cfb8 = 0x48; memcpy((void*)0x2002cfba, "\x54\x45\x45\x00\x00\x00\x00\x00\x00\x00\x00\x00" "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00" "\x00\x00\x00\x00\x00", 29); *(uint8_t*)0x2002cfd7 = 1; *(uint8_t*)0x2002cfd8 = 0xfe; *(uint8_t*)0x2002cfd9 = 0x80; *(uint8_t*)0x2002cfda = 0; *(uint8_t*)0x2002cfdb = 0; *(uint8_t*)0x2002cfdc = 0; *(uint8_t*)0x2002cfdd = 0; *(uint8_t*)0x2002cfde = 0; *(uint8_t*)0x2002cfdf = 0; *(uint8_t*)0x2002cfe0 = 0; *(uint8_t*)0x2002cfe1 = 0; *(uint8_t*)0x2002cfe2 = 0; *(uint8_t*)0x2002cfe3 = 0; *(uint8_t*)0x2002cfe4 = 0; *(uint8_t*)0x2002cfe5 = 0; *(uint8_t*)0x2002cfe6 = 0; *(uint8_t*)0x2002cfe7 = 0xbb; memcpy((void*)0x2002cfe8, "\x64\x75\x6d\x6d\x79\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00", 16); *(uint64_t*)0x2002cff8 = 0; *(uint64_t*)0x20001000 = 0; *(uint64_t*)0x20001008 = 0; *(uint64_t*)0x20001010 = 0; *(uint64_t*)0x20001018 = 0; *(uint64_t*)0x20001020 = 0; *(uint64_t*)0x20001028 = 0; *(uint64_t*)0x20001030 = 0; *(uint64_t*)0x20001038 = 0; syscall(__NR_setsockopt, r[2], 0, 0x40, 0x2002ccf8, 0x308); } int main() { for (;;) { loop(); } }