// https://syzkaller.appspot.com/bug?id=54f4ce6239e6e0d0d5583488421c6fa3ba7ed6b4 // autogenerated by syzkaller (http://github.com/google/syzkaller) #define _GNU_SOURCE #include #include #include #include #include static void test(); void loop() { while (1) { test(); } } long r[1]; void test() { memset(r, -1, sizeof(r)); syscall(__NR_mmap, 0x20000000, 0xfff000, 3, 0x32, -1, 0); r[0] = syscall(__NR_socket, 0xf, 3, 2); *(uint64_t*)0x20f56000 = 0; *(uint32_t*)0x20f56008 = 0; *(uint64_t*)0x20f56010 = 0x208feff0; *(uint64_t*)0x20f56018 = 1; *(uint64_t*)0x20f56020 = 0; *(uint64_t*)0x20f56028 = 0; *(uint32_t*)0x20f56030 = 0; *(uint64_t*)0x208feff0 = 0x20da9000; *(uint64_t*)0x208feff8 = 0x70; *(uint8_t*)0x20da9000 = 2; *(uint8_t*)0x20da9001 = 3; *(uint8_t*)0x20da9002 = 0; *(uint8_t*)0x20da9003 = 9; *(uint16_t*)0x20da9004 = 0xe; *(uint16_t*)0x20da9006 = 0; *(uint32_t*)0x20da9008 = 0; *(uint32_t*)0x20da900c = 0; *(uint16_t*)0x20da9010 = 5; *(uint16_t*)0x20da9012 = 6; *(uint8_t*)0x20da9014 = 0; *(uint8_t*)0x20da9015 = 0; *(uint16_t*)0x20da9016 = 0; *(uint16_t*)0x20da9018 = 0xa; *(uint16_t*)0x20da901a = 0; *(uint32_t*)0x20da901c = 0; *(uint8_t*)0x20da9020 = 0; *(uint8_t*)0x20da9021 = 0; *(uint8_t*)0x20da9022 = 0; *(uint8_t*)0x20da9023 = 0; *(uint8_t*)0x20da9024 = 0; *(uint8_t*)0x20da9025 = 0; *(uint8_t*)0x20da9026 = 0; *(uint8_t*)0x20da9027 = 0; *(uint8_t*)0x20da9028 = 0; *(uint8_t*)0x20da9029 = 0; *(uint8_t*)0x20da902a = 0; *(uint8_t*)0x20da902b = 0; *(uint8_t*)0x20da902c = 0; *(uint8_t*)0x20da902d = 0; *(uint8_t*)0x20da902e = 0; *(uint8_t*)0x20da902f = 0; *(uint32_t*)0x20da9030 = 0; *(uint16_t*)0x20da9038 = 2; *(uint16_t*)0x20da903a = 1; *(uint32_t*)0x20da903c = 0; *(uint8_t*)0x20da9040 = 0; *(uint8_t*)0x20da9041 = 0; *(uint8_t*)0x20da9042 = 0; *(uint8_t*)0x20da9043 = 2; *(uint32_t*)0x20da9044 = 0; *(uint16_t*)0x20da9048 = 5; *(uint16_t*)0x20da904a = 5; *(uint8_t*)0x20da904c = 0; *(uint8_t*)0x20da904d = 0; *(uint16_t*)0x20da904e = 0; *(uint16_t*)0x20da9050 = 0xa; *(uint16_t*)0x20da9052 = 0; *(uint32_t*)0x20da9054 = 0; *(uint8_t*)0x20da9058 = -1; *(uint8_t*)0x20da9059 = 1; *(uint8_t*)0x20da905a = 0; *(uint8_t*)0x20da905b = 0; *(uint8_t*)0x20da905c = 0; *(uint8_t*)0x20da905d = 0; *(uint8_t*)0x20da905e = 0; *(uint8_t*)0x20da905f = 0; *(uint8_t*)0x20da9060 = 0; *(uint8_t*)0x20da9061 = 0; *(uint8_t*)0x20da9062 = 0; *(uint8_t*)0x20da9063 = 0; *(uint8_t*)0x20da9064 = 0; *(uint8_t*)0x20da9065 = 0; *(uint8_t*)0x20da9066 = 0; *(uint8_t*)0x20da9067 = 1; *(uint32_t*)0x20da9068 = 0; syscall(__NR_sendmsg, r[0], 0x20f56000, 0); } int main() { for (;;) { loop(); } }