// https://syzkaller.appspot.com/bug?id=6599b79e52059759a0af877a925ae07482a3dd64 // autogenerated by syzkaller (https://github.com/google/syzkaller) #define _GNU_SOURCE #include #include #include #include #include #include #include #include #ifndef __NR_mmap #define __NR_mmap 192 #endif #ifndef __NR_mprotect #define __NR_mprotect 125 #endif #ifndef __NR_setsockopt #define __NR_setsockopt 366 #endif #undef __NR_mmap #define __NR_mmap __NR_mmap2 int main(void) { syscall(__NR_mmap, 0x20000000, 0x1000000, 3, 0x32, -1, 0); memcpy((void*)0x20002000, "\x24\xb3\x8b\x20\xd0\xef\x32\x54\x11\x52\x23\xef\x6c\xf7\x58\x32\x75" "\x75\xc0\x41\xe0\x02\xa8\x08\x94\x96\x07\x9b\x1b\x45\x00\x93\x49\x04" "\x1e\xca\x72\x4f\xde\xc7\x3f\xab\x9b\x04\xe4\xa4\xa5\xaf\x1d\x03\x00" "\x00\x00\x00\x00\x00\x00\x7f\xaa\x62\xb9\xc0\xd2\x63\x27\x4f\x4a\x01" "\x0c\x4f\x93\xef\x85\x51\x6b\x04\x25\x11\xf3\x27\x64\x17\x1b\xa9\xbd" "\x27\x8c\xbe\x36\x0c\x22\xf1\x84\x07\x3f\xe2\x15\xde\xe0\x2f\xe3\x71" "\x61\x24\x63\x23\xee\x9c\x82\xc7\x90\xad\xd9\x05\xb9\x0a\x64\xad\xab" "\x9f\xef\x85\x5d\x72\xab\xb6\x37\xd4\x60\xfc\x6f\xb5\xa9\xee\xc5\x53" "\x5b\x11\x9c\x5d\xe0\x2a\xbe\x6f\x4b\xbf\x89\xc0\x8e\x23\x98\xc1\xb9" "\x38\xbe\x9d\xfb\xde\x3f\x76\x32\x3a\x5a\xf6\x34\xe4\x23\x5a\x33\xd5" "\x7e\x22\x64\x60\x10\x4c\xa0\xde\xdf\x1f\x0e\x83\x65\xcd\x43\xd1\x06" "\xc4\x1d\x00\x99\x76\x03\x4d\x65\x57\xbf\x89\x17\xca\xd6", 201); syscall(__NR_setsockopt, -1, 0x29, 0, 0x20002000, 0xc9); syscall(__NR_mprotect, 0x20000000, 0x800000, 0); return 0; }