// https://syzkaller.appspot.com/bug?id=17830b94bc7916a77c38c6cce5aafb3285b0cd21 // autogenerated by syzkaller (http://github.com/google/syzkaller) #define _GNU_SOURCE #include #include #include #include #include void loop() { memcpy((void*)0x20000100, "big_key", 8); *(uint8_t*)0x20000140 = 0x73; *(uint8_t*)0x20000141 = 0x79; *(uint8_t*)0x20000142 = 0x7a; *(uint8_t*)0x20000143 = 0; *(uint8_t*)0x20000144 = 0; memcpy( (void*)0x20000180, "\x69\x6c\x5c\x1b\x0b\x94\x29\x88\x18\x9e\xa5\x9a\x34\x30\x11\x66\x7c\x0d" "\xc5\x5a\x30\x1c\xeb\x01\x2d\xf6\x57\x9d\x08\x01\xa6\xc9\x5e\x53\x53\xf7" "\xdc\xc6\xc2\xc7\xb5\x0d\x96\x65\x37\x42\x4b\xb7\xd2\x1f\xc6\x76\xb3\x43" "\x63\xc6\x0b\x38\xae\x23\x46\xe6\x38\xbb\xa2\xf9\xff\xec\x40\x5b\xc5\x6b" "\x84\xc9\xfe\x77\xa6\x0f\xb3\x70\x16\x89\xf3\x2d\x24\xfe\x33\x12\x9c\xe3" "\x31\xaa\x79\x7e\x72\xa5\x7a\x6e\xfd\x4f\x39\x40\x10\xc9\x0c\xfe\x3d\xed" "\x20\x1c\x69\x71\x95\xfb\xbd\xec\xca\xdf\xfa\x6a\xa4\x8c\x49\xe2\x6f\x1a" "\x33\x7a\xd1\x0a\xcf\xed\x02\xd7\xf5\x65\x2e\xf0\xb5\x30\xb0\x67\xab\xdb" "\x46\x0b\xa2\xea\x50\x1e\x0c\x74\x30\x8a\xc8\x28\xbb\x71\x7b\xcf\x79\x89" "\x3a\x2d\xd3\x73\xae\xf8\x89\xf2\x60\x00\x45\x65\x41\x2b\x69\x25\x3c\xf2" "\xc9\xae\x97\xf3\x50\xa7\x17\xb2\x75\xb7\xb3\x67\x6c\x27\x73\xf7\x02\x7b" "\x0b\x7c\x38\x15\x84\x79\x92\x2e\x44\xa9\x53\xe3\x13\x3f\x12\xc3\x7f\xb0" "\x3a\x09\x3d\xb9\x53\x92\xcb\x3f\xbc\x2b\xa1\x56\xbb\xaa\x50\x1c\x5d\xbc" "\xf0\xcb\x83\x30\x62\xef\xba\x23\x00\xec\xff\xbd\x29\xa4\xc4\xc9\x1c\xb7" "\xbf\x1f\x7a\x41\x29\x8a\xc6\x99\xda\xb7\x5d\xfd\xf2\x72\x44\xd2\x9d\xd8" "\x02\xf5\x99\x72\xfa\xbd\x68\xd3\x02\xfd\xeb\x68\x0c\xea\x4c\x69\x5f\xed" "\x14\x35\x08\x3e\x3b\xbd\x64\xbc\xa1\x1c\xcb\xd1\x5d\x96\xa2\x69\x2b\x3b" "\x3e\x6b\x85\xf6\x71\x16\x38\x65\xb9\x27\xb6\x73\x8d\xba\x23\x80\xbc\xde" "\x17\x89\x39\x91\x53\x77\x9a\x94\x27\xbe\xb1\x82\x46\xa0\x67\x09\x7e\xf4" "\x2b\xc4\x06\x5b\x1c\x9a\xee\xc6\xeb\xef\x5d\x19\xbe\x5a\x1c\xb3\x55\x52" "\xe9\xa5\xb6\x5b\x1c\xaa\xbe\xcf\x5e\x87\x15\x65\xa0\x5c\xd2\xf4\x74\xbc" "\x67\x32\xa7\xac\xc6\x49\xb4\x05\x35\xfe\xde\xe9\x89\x76\xb4\x48\x2a\x7c" "\x52\xee\xa8\xab\xbf\x1f\xf5\x77\xad\x20\x13\x43\x91\x2b\x16\x70\x05\xd8" "\x18\xaf\x59\x93\x33\xb6\xd4\xdc\x77\xcf\xac\x78\x98\xb5\x1e\x8d\x1d\x8f" "\x63\x9c\x45\xb6\x03\xe4\x77\x14\x81\xcd\xab\xb0\x54\x36\x64\x75\x38\x8c" "\xe6\x72\xdc\x01\x3c\x25\xb2\x96\x1c\xc3\xad\x2b\xf4\xea\x90\xfb\xc7\x6a" "\xae\x87\x6b\xb8\xdf\x71\x0e\x10\x47\xf4\x76\x86\x73\xf6\x23\xba\x3d\x0e" "\xb5\x04\x73\xbb\x54\xa1\x99\x9a\xad\xd1\xb9\xc5\xf8\x6c\x0c\xec\xa7\x30" "\x49\x0e\xd5\x5d\xd6\x03\x32\xfe\x7b\x6d\x3d\x0a\x12\xf5\x2b\x0e\xe1\x2a" "\x9d\x09\xb0\xe7\x97\xcc\xc6\x14\x21\x68\xf6\x1a\xb4\x7b\x2f\xc6\xc7\xb8" "\x14\x83\x80\x8a\xdd\x9f\x49\x78\x57\xce\x2a\xe1\xec\xe0\x94\x17\xe5\x7c" "\x0d\x37\x10\x96\x21\xbd\x0b\xcb\xa9\xf7\x78\xb8\x0a\xe8\x25\x52\x09\xb6" "\x70\x86\xfb\xba\x0e\x47\x50\x96\xa8\x22\x47\x8a\x1a\x6a\xbd\x2c\x12\xc2" "\x00\x52\xe2\xcc\x64\x1c\xc4\x7d\xd9\x63\x71\x52\xeb\x1b\xef\xa2\xbc\x72" "\x9d\xa8\x7c\x43\x62\xac\xf6\x51\xca\xff\x2d\x68\xfc\x23\x73\xee\x76\x07" "\xb4\x82\x48\x40\x43\xbe\x5d\xc2\x73\x1d\x22\xb1\x7f\xf1\x2c\x63\x24\x87" "\x02\x0b\x22\x9f\x74\xf2\x64\x98\x69\x7b\x7b\xe8\x42\x41\xb0\x95\xae\x63" "\x6b\x70\x63\x8b\xaa\x4b\xa5\xbf\x0c\x36\xd2\x72\x8b\x97\x0d\x90\xa3\xbc" "\x7f\xb8\x49\x2e\x39\x4d\xc1\x58\xb4\x07\xef\x14\xb3\xdd\x23\x11\x33\x91" "\x33\x98\xfd\x60\xec\x7e\xf6\x13\xae\x84\x13\xbf\xbb\xcb\xcc\xbe\xa8\xf9" "\x70\xf6\x79\xb0\x52\xd6\x6b\xe1\xb2\xfb\x79\x8b\xdd\xe0\xa6\xc5\xf5\x5f" "\xe8\xca\x41\xa4\xec\x9a\xa8\x95\xa2\xbf\x77\xf2\xcf\xbd\x92\x16\xe0\x74" "\xd9\x49\x83\xe6\x8f\x3b\xe3\x10\x12\x15\x6a\x26\x5b\xf3\xf3\xcc\xe0\xba" "\xe5\x30\x23\xa9\x0f\x1b\xc2\x17\x2f\x9c\x23\xb8\x60\x06\xb8\xaa\xe9\x7b" "\xb5\xf8\xdc\x12\xc0\x63\x4f\x03\xf4\x39\x0c\x24\xe4\x02\x96\xec\x90\xb4" "\x3f\x59\xe6\x59\x2d\xd3\x6e\xf1\xde\x5b\x3c\xd7\x7e\x64\xea\x29\x99\xe8" "\xa9\xb0\xbb\xca\x63\xb2\xec\xdd\x68\x5b\xe7\x06\xb3\x69\x83\x8d\x19\x88" "\x41\xc4\xda\x71\x72\xfa\x78\x38\xec\x14\x60\xc5\xda\x07\xaa\x94\xac\xe6" "\xb6\xd9\x5b\xdb\x09\x40\xca\x56\x8e\x08\x50\x77\x3c\x73\x47\x85\x8d\xea" "\x60\x25\x45\x9f\xa6\x68\xac\x6f\x97\x42\xba\x2a\xed\x41\x9d\x04\x61\xaf" "\xac\xdb\xc4\x56\x9e\x14\x12\xa1\x55\xff\x2b\x9e\x59\x60\x1c\x04\xe8\x9d" "\x79\x5c\xec\xbb\x32\xd8\x12\x01\xac\x87\x19\x25\x59\x92\x71\x7b\xd3\x03" "\x0d\x49\xf7\x92\x2e\x14\x0d\xf0\xec\x0c\xc8\x8b\x2a\xfe\x37\x92\xf3\x29" "\x2a\x91\x83\x6b\xa7\xa6\x48\xf8\xa7\xdd\x0b\x0a\x5a\xd9\xb9\x6a\x39\x3f" "\xbb\xf2\x60\x91\x1f\x13\xc6\x8d\xdb\xc8\x07\x22\x41\x7b\xf1\x62\x78\x92" "\x08\x5c\xff\xa6\xf4\x57\x9a\xdc\x4d\x20\x29\xdc\x78\xcb\x7a\x86\x8c\x65" "\xe5\xeb\xd6\x95\xea\x55\xe7\x7e\xc5\xbe\x05\xa7\x98\x8f\xa2\x28\x51\xc6" "\xcc\xb5\x51\x51\x19\x30\x5e\x27\xf0\x02\x9e\x2f\xa4\xcd\xc3\xa1\xa9\xf6" "\xb1\x58\xcf\x67\xfe\xce\x59\x64\x51\x26\x8d\x68\x29\x09\x2b\x3c\x07\xf5" "\xd0\x9b\x12\xd2\xbb\x89\x3e\xb5\x4e\xdf\xfe\xbb\xa3\xba\xab\x50\xba\x76" "\x5e\x9f\xc4\x87\x4d\x5d\xe0\xa0\xca\x91\xab\x1b\x69\xf2\xdb\xf2\x1f\x3f" "\xcb\x33\x82\x57\x82\x74\x8f\x5c\x1f\xf8\xca\x0f\x8c\x31\x15\x88\xc6\x59" "\x91\x4b\x86\xbd\x31\x17\x7b\x85\xf0\xa3\x46\xcd\x3f\xfd\xce\x8a\xef\x41" "\x61\x73\xfb\xd8\x41\x52\xf5\xbe\xbb\xf9\x1d\x55\xc0\x64\xfa\xbc\xfe\x25" "\x24\xd6\x62\xb7\xf3\x6f\x81\x92\x48\x40\x86\x7c\xbf\xc8\x61\xfe\xd7\xbf" "\xc1\x6d\x7a\x55\xd2\x3c\x0e\xa8\xfc\x38\xf3\x5f\xb6\x9c\x24\x54\x1b\x2b" "\x4c\x38\x34\x22\x7f\x34\x46\x4c\x43\xd0\x2e\xbe\x49\x1a\x77\x3c\x5f\xd6" "\x98\x97\x80\xe6\xac\x69\xe5\x1a\x30\xfc\x92\xa8\x7e\x65\x33\xa7\x41\x9a" "\x3e\xea\x7a\xf5\x90\xb0\xd3\xa4\xc9", 1233); syscall(__NR_add_key, 0x20000100, 0x20000140, 0x20000180, 0x4d1, 0xfffffffc); } int main() { syscall(__NR_mmap, 0x20000000, 0x1000000, 3, 0x32, -1, 0); loop(); return 0; }