// https://syzkaller.appspot.com/bug?id=fdea41d98ec0a5856ebae47ad18f0c554610d6c0 // autogenerated by syzkaller (https://github.com/google/syzkaller) #define _GNU_SOURCE #include #include #include #include #include #include #include #include #include #include #include #include #include #include static unsigned long long procid; static void kill_and_wait(int pid, int* status) { kill(pid, SIGKILL); while (waitpid(-1, status, 0) != pid) { } } static void sleep_ms(uint64_t ms) { usleep(ms * 1000); } static uint64_t current_time_ms(void) { struct timespec ts; if (clock_gettime(CLOCK_MONOTONIC, &ts)) exit(1); return (uint64_t)ts.tv_sec * 1000 + (uint64_t)ts.tv_nsec / 1000000; } static void execute_one(void); #define WAIT_FLAGS 0 static void loop(void) { int iter = 0; for (;; iter++) { int pid = fork(); if (pid < 0) exit(1); if (pid == 0) { execute_one(); exit(0); } int status = 0; uint64_t start = current_time_ms(); for (;;) { if (waitpid(-1, &status, WNOHANG | WAIT_FLAGS) == pid) break; sleep_ms(1); if (current_time_ms() - start < 5000) { continue; } kill_and_wait(pid, &status); break; } } } #ifndef SYS_fdatasync #define SYS_fdatasync 241 #endif #ifndef SYS_ftruncate #define SYS_ftruncate 201 #endif #ifndef SYS_mmap #define SYS_mmap 197 #endif #ifndef SYS_open #define SYS_open 5 #endif #ifndef SYS_preadv #define SYS_preadv 289 #endif #ifndef SYS_write #define SYS_write 4 #endif uint64_t r[2] = {0xffffffffffffffff, 0xffffffffffffffff}; void execute_one(void) { intptr_t res = 0; memcpy((void*)0x20001240, "./file0\000", 8); res = syscall(SYS_open, 0x20001240ul, 0x40000400000002c2ul, 0ul); if (res != -1) r[0] = res; syscall(SYS_ftruncate, r[0], 0ul, 0x20002000008ul); syscall(SYS_ftruncate, r[0], 0ul, 1ul); memcpy((void*)0x20000000, "./file0\000", 8); res = syscall(SYS_open, 0x20000000ul, 0x80400000000206ul, 0ul); if (res != -1) r[1] = res; syscall(SYS_mmap, 0x20000000ul, 0x200000ul, 3ul, 0x20011ul, r[1], 0ul, 0ul); memcpy( (void*)0x20000040, "\x4a\xbe\xc4\x3c\x58\x75\x9b\xf1\x28\x4e\x33\x6b\xba\x94\x9c\x4f\x1d\x88" "\x9f\x07\xda\xa6\xe4\x74\xd6\xce\x9e\x78\x3d\x61\xbd\xef\x12\xea\x34\x71" "\x2c\x79\x81\x9f\x60\xad\xa4\x41\xf8\x00\x0d\x4e\xe5\x1d\x8b\x62\x5a\x0f" "\xac\x16\x84\xdc\x2a\xc8\x23\x4b\x37\x22\xa2\xf6\xff\x5c\x3e\xa9\x4d\x6f" "\x7f\xa5\xdd\xdb\x9c\x83\xe3\xa0\x21\x35\x2e\x6d\x41\xac\xdf\x95\x3f\x1b" "\x16\xbb\x9f\xa3\x42\xf6\xf1\x97\x1f\x5c\x09\x7d\x15\xe1\x3d\x9e\x8b\x16" "\x7d\x4f\x5b\xcf\x7a\x6d\xf8\x7a\x2a\xe8\xaa\xf9\x86\x9b\xe4\x7c\x11\xd6" "\xb7\xd0\xd0\xa1\x74\x24\x69\x2d\xb4\x39\xac\x46\x2e\xb7\x4b\xab\xbd\x62" "\x5d\x9e\x56\xa8\x27\x19\x76\xa8\x35\x34\x86\xc7\x18\x75\x52\x48\x7e\xac" "\x9b\x38\x92\x94\xca\x9c\xaf\xda\x72\xe4\xc7\x3f\xf8\x8e\xee\x6a\x74\xcf" "\xe3\xa4\x3f\x8e\xea\x0f\x95\x33\x6a\x26\x04\x8e\x8f\xeb\x4d\x43\x68\xf7" "\x4b\x2a\x55\xec\x12\xbd\xc9\xa3\x47\x8b\xa6\xe6\x87\xd8\x65\x76\x46\x1f" "\x0e\xc0\x68\x88\x48\xbc\xb4\xd8\xde\x27\xa6\x8d\x7d\x63\xac\xc7\xfa\xdc" "\xa7\xf6\x5e\xd4\xa3\xf0\xfa\x50\x2b\x30\xaa\xba\xd0\xca\xb8\xa9\x73\xf4" "\x9d\xa3\x61\xf3\xb6\xdb\xaf\x3a\x91\xaa\x84\x7f\xd7\x5b\xab\xc9\x27\x33" "\x43\x42\xea\x31\x7e\x94\x8f\x06\x14\xa3\xef\xd6\x3f\x5b\x11\x06\x80\x34" "\x9d\x85\xa6\xd3\x74\x65\x7e\x22\xdf\xcd\x55\xe8\xc1\xca\xe5\xde\xe2\xf4" "\x9f\xf6\x3a\x97\x9a\x8f\x0a\xc8\x1f\xa4\x53\x2c\x6e\xe2\xe2\x94\x53\xcd" "\x56\x55\x4b\xc8\x1a\x5d\xe5\xc8\xa3\xd9\x31\xf9\x8f\x61\x98\x2d\x61\xa0" "\xbf\x87\x05\xaf\x73\xd1\x52\x58\x49\x81\x0d\x3c\x05\xc8\x1c\x77\x1a\x5f" "\x30\xaa\xee\xbf\xcd\x35\xc1\x77\x9a\x8e\x7e\x5f\xbc\x58\x56\xe2\xf8\x50" "\xb8\xfb\x20\x67\xb8\xf1\x03\x1e\x36\x80\x38\x15\x72\xf6\x1e\xf8\xa0\x24" "\xd2\x9b\x88\xf7\xcd\x83\x5f\x90\xe1\xc4\xf2\xd5\xe0\x92\x1c\x91\x47\x0d" "\x58\x44\x27\x0c\xdc\xab\x00\xca\x8f\xd8\x75\xd8\x4f\xd5\xbc\x60\xa5\xf7" "\xce\x04\x6c\xff\xe7\xef\xd2\x04\xcf\x36\xc8\x2d\x38\x24\xe5\x0b\x7f\xfa" "\x8e\xb5\xb6\x93\x52\x39\x3e\xaa\xbf\x1d\xed\x6f\x14\x27\x26\xb8\xb9\xa3" "\xfd\x32\xa4\xf7\xef\x0b\xb9\xa5\xbb\x35\x5c\xfb\x76\x3e\x7d\x16\xba\x21" "\xef\xdf\x1c\x6e\xe4\xfc\x39\xbe\xdb\xa5\x9d\x66\x20\x6a\x5c\xf9\x3b\x72" "\xe8\xbd\x60\x0b\xc3\x0c\x60\xc9\xdf\x0a\x58\xc4\x69\x1d\xfb\xa4\xa1\xf5" "\xd0\x8f\x9a\xc7\xdd\x34\xf7\xe3\x63\x98\x3a\xe9\xd1\x1c\xc5\x2d\x5a\x70" "\xec\xf8\x2c\x7c\x3e\xdf\xe7\xc2\x50\x58\x36\xeb\xcd\x99\x9e\x65\x4c\x90" "\x78\x7e\x2c\xb8\x98\x6e\xd4\xf9\x1c\x72\xa1\xe5\xd5\x52\x6b\x04\x74\x88" "\xe9\x4d\xa2\x1b\xde\x51\xb0\x42\xe7\x3c\x4a\xb1\x33\x3f\xc2\x16\x52\x1d" "\xff\xdc\xad\x59\x51\x4b\x12\xe4\x31\xf2\x36\xae\x25\x7b\xb8\x53\x9d\xf0" "\xa2\xfc\x91\xe7\xd6\x39\x1b\x2e\x65\xee\xa8\x66\x09\xac\x44\xe0\x6e\x00" "\xeb\xf1\x2d\xce\x23\x2b\x21\x8b\x24\xd3\x61\xce\x00\xab\xd8\x3e\xf8\xb6" "\x90\x9c\x92\xb0\xfc\x2d\xb6\x9e\x0f\x8f\x80\x90\x8f\xe5\x2c\xf6\xd2\x49" "\xc1\xc4\x6f\x0a\xbe\x2a\xed\xcc\xe0\x9d\x39\x2e\x33\x72\x7a\xbe\x6d\xb9" "\x14\x2b\xad\x7a\x7a\x55\x79\x1d\x58\xdf\x5f\xce\xf3\x8b\x94\xef\x79\xff" "\x57\x96\x8f\xed\x61\x75\x7c\xfd\xd0\x0f\xa2\x5a\x4d\x46\x7d\x94\xf4\x5f" "\x79\x77\x74\xb9\x9e\x60\x8c\xd9\xd4\x22\x26\xd1\xf3\xa5\x40\xe4\xc9\x9b" "\xdd\x22\xd0\xb1\x6c\x51\x3e\x1e\xc3\x05\x50\x79\x98\xba\x99\xcd\xe6\xa4" "\x2f\x30\xc9\x25\x14\xa2\x36\xfc\x71\x8b\x06\x5a\x51\x38\x9f\xb2\xff\x26" "\x96\xeb\x4d\x5b\xa2\x27\x4a\xbc\x9a\x4e\x33\x54\xd9\x3c\x68\xa8\xab\xe6" "\xb3\x36\x29\x3a\xb5\x9f\x56\x6d\x1f\x44\x27\xcb\x90\x85\x14\x26\x08\xd8" "\xeb\x24\x13\x33\x83\xd2\x63\xc6\xb8\x4d\x39\x97\x78\x44\xab\x36\x22\xe7" "\x21\x01\x69\x56\xa6\xd3\x45\x16\xd2\x81\xc0\x16\x4f\x49\xdc\x33\x26\x0f" "\xf5\x6f\xd9\x15\x7e\x4c\xd6\xae\x1b\x68\xeb\x5a\x31\xe8\x55\x94\x32\x79" "\xf1\x02\x58\x90\x86\x31\xd9\x28\xa7\xbd\xae\x59\x26\x79\xf1\x0f\xad\x37" "\xe8\x2c\xf6\xb7\xa0\x81\xbd\x15\x94\x2d\x34\xe6\x23\x45\xec\xb0\x7f\xb9" "\x45\xed\x23\xcb\xbe\x83\xb7\xe5\xf6\x06\x6a\x07\xc7\x01\xc4\x3a\x42\x72" "\xce\x02\x7e\xb0\x40\xe5\xdd\x6a\x0f\x98\x33\x62\x5d\xd7\xe6\xdb\xad\x47" "\x54\xb7\x12\x64\x9e\xa0\x04\x4d\x8c\x85\xfa\x41\x3d\xf8\xb5\x39\x21\xed" "\x8f\xbf\x11\x5e\xad\xba\xb7\x7f\x1e\x95\x95\x73\x3e\x8f\x78\xe2\x4b\x61" "\x24\x3a\x77\xf1\x24\x0e\x4c\x1e\xce\xd3\xdf\xc8\x60\x5b\x56\x6d\xae\x36" "\x86\xf7\x7d\xb0\xf8\xad\xcf\x11\x57\xab\xd1\x75\x46\xf9\x6c\x7b\x9c\x0d" "\x68\x28\x2b\xbe\xe6\xc3\x86\x4d\xe4\x5b\xb0\x0b\x12\xa9\xbe\xbf\xc6\x75" "\x79\xe6\x6f\xbe\x09\x3f\xfd\x63\x78\xf3\x5d\x16\x83\xd5\x5f\xbe\x37\x86" "\xa2\xd2\x2a\x65\x21\x15\x88\xdb\x4b\x2f\xc7\x19\x49\xc2\x0a\x90\xcf\xbb" "\xe1\xe9\x90\x73\x54\x16\xaa\xca\xc7\x7d\x25\xd9\xe8\x24\xfd\x35\x7c\x04" "\x31\xc2\x7d\xa7\x59\x70\x2e\xfa\x10\xe0\xdc\x72\x6e\x28\x76\x94\xb3\x8f" "\x32\x5b\xa5\xfd\xa6\x06\xbd\xc6\x3d\xa1\x10\x0d\xf4\xa8\xd4\xaf\x54\xa0" "\x40\x86\xd8\xd5\x79\x32\xda\xe7\x69\xd2\x52\xbc\x5e\xbc\xea\xcb\xaf\x33" "\xc9\x2a\x5c\x54\x9b\x92\x7a\x57\x4d\x9f\x56\x02\x2d\x9a\x51\x52\xf5\x2f" "\xef\x95\xf9\x38\x85\x2c\xa3\x6d\x1b\x5c\x7a\xe1\xbd\xac\x65\x50\xfd\x85" "\x1f\x54\xb2\x61\x5f\xc4\xb1\x94\xd5\x22\xea\x6b\x8f\x53\x55\x69\x1c\xa3" "\x8b\xf2\xb4\xb6\x3f\xc9\x62\x74\x25\xa0\x81\x62\xb5\x32\x3e\x0a\x31\x37" "\x27\xc0\x2b\x85\xaa\x48\x13\xc3\x1c\xbc\xa1\x29\x75\x9d\x3e\xcf\xe0\x8c" "\x73\x3c\x1b\xf5\xae\xba\xc4\xb7\x66\xfb\x5f\x8d\x96\x81\x64\x6b\x5e\x9c" "\x0e\x6d\xed\x49\x0e\xd8\xbf\x25\xb9\x25\x5c\xc6\x89\x70\x65\xf2\x0c\x52" "\x9b\x64\xd4\x95\x86\xfe\x41\x87\x92\xfb\x08\x29\xf4\x93\x3a\xb6\x04\x2a" "\xa6\x89\xda\x48\xc5\x64\xec\x19\x35\x00\x0b\x51\x14\xc5\x37\xbf\x23\x38" "\x15\x3f\x93\xd2\xc6\xce\x8d\xfd\xcb\x92\x53\xf1\xf3\xb4\xac\x12\xc3\xc0" "\x34\xb4\x84\x72\xe2\xcd\xc0\x6e\x5c\x05\x6f\x40\x8e\x41\x91\xbd\x7b\xa8" "\xf1\x5b\x95\xb6\x0c\xb7\x44\x48\xbb\xea\xae\x90\x18\x03\xfb\xb9\xd5\x6a" "\x87\xbb\x22\xf5\xc7\xce\x20\xf1\x2a\xc8\xc8\xf7\x85\x0b\xa2\x38\x4d\x8b" "\x36\xe9\x8c\xa3\xe7\xac\x58\xf8\x3f\x5c\x78\x3d\xc7\xa6\xf8\x41\x03\x77" "\xd7\x9e\x5c\xda\xd5\x0c\x29\x53\x6e\x43\x90\x15\xb8\x06\xf3\x87\xf7\x9f" "\x6b\x06\xa0\xe9\x6f\x83\x20\x2c\x17\x8e\x7d\x56\x77\x42\x26\x41\xcd\xd5" "\x24\x58\xf6\xa7\xe2\x32\xd0\xfd\x71\x4e\xa4\x3d\x43\x9c\xe2\x27\x02\x0b" "\x23\x43\x9b\xf1\xd6\x72\x78\xaf\x0e\x8d\xc8\xfb\x32\xdf\xdb\x68\x69\xd4" "\xb6\xf3\x51\xa7\x5b\xa0\x10\x70\xb1\xb7\x08\x58\x19\x72\x65\x0e\xc3\xc5" "\x3b\x0a\x60\xcf\x7e\xd9\xde\xd0\xc1\x04\xd3\xc9\xf3\x89\x55\x6c\x54\xdf" "\x50\x9e\xa1\x07\x6a\x50\xdc\xd2\x00\xb1\x68\xe6\xb4\xa5\x7a\xb9\x4c\x23" "\xee\x15\x81\x04\x73\x57\x51\xd5\xd9\x84\x5f\xfb\x97\x2b\xc8\x08\x20\xa6" "\xd8\xe9\xbd\xab\xfd\x07\xf7\xe3\xd5\x27\x63\x40\x42\x5c\xe1\x07\xf7\xd8" "\x56\x08\x78\x32\x0f\xd4\x8a\x03\x5d\xa2\x53\x57\xee\x9b\x11\x26\x23\xe4" "\x79\xda\xb8\x33\xd4\x28\x45\x04\x5e\x05\xdf\x16\xf4\x77\x2c\x6a\xa6\xd1" "\x20\x10\xde\x02\x87\x63\x3b\x42\x28\x17\xdc\x0a\x3b\xf5\x38\x0c\xf1\x89" "\x6a\x4a\xba\x48\x06\x66\x2c\x52\xb1\xb1\xc4\x58\xf8\x17\xb9\x43\xc1\xe2" "\x7c\x5c\xb7\x6b\x16\xd3\x00\xda\x77\xde\xb1\xf0\x3d\x41\xde\xf4\xca\xac" "\x77\x4b\xef\xaf\xdd\xe9\xba\x6a\x82\xb7\xb7\x77\xe3\x1a\x0f\xf1\x0b\x1a" "\x57\x8c\x52\x23\xce\x24\xf4\x1e\xcf\x33\xe3\x3d\xff\x72\xff\x49\x79\x48" "\x9e\xa2\x69\x33\x83\xc6\xc2\x57\xa8\x1d\x61\x94\x92\xaf\x19\xf4\xe9\x80" "\xb1\xfc\xcf\x35\x39\xd2\x19\x51\x5b\x47\x92\x24\xde\xd6\x98\xe9\x9a\x88" "\x2e\xbf\xd1\x60\xe4\xab\xff\xcb\x1b\x4c\x5e\x62\x2d\x08\x82\x0b\xb4\x54" "\x9b\x44\xbc\x20\xc5\xa4\x63\xb9\x5d\xfa\x3c\x61\xea\xd2\x82\x76\xc7\x00" "\xa0\x3d\x1c\x89\xa9\xb7\xd1\xac\x73\x30\x22\xb7\x34\xc3\x5e\xed\xc2\xda" "\x99\xf7\x4d\x6c\xfa\x1c\xe9\x28\xfc\x41\x22\xfe\x36\x87\x3a\x66\x06\xda" "\x7e\xfd\xb8\xc3\x38\x6b\x70\x03\xab\xa7\x3f\xf6\x28\xeb\xee\x4c\xe1\x08" "\xd1\x82\x1a\xfd\x89\x3e\x0d\xb3\x39\x36\xee\x06\x5f\x8a\x00\x6e\xe1\x8c" "\x50\x0b\x9b\x73\xc4\x19\x5c\x85\x72\xc8\xd3\x3e\x2f\xc6\x94\x0a\x90\xc0" "\xe1\xe8\x9b\xe0\xd6\x17\xc0\x6b\xa9\xaa\x70\xbc\xa1\xed\x83\xe1\xc1\x3a" "\x43\x66\xf6\xda\x35\x3b\xc9\x11\xd4\xa0\x35\x35\x69\x78\x6e\x0f\x8b\xbe" "\x0a\x33\x11\xfc\x46\xc2\x72\xfb\xfa\x66\x08\xb5\xdc\x6a\xe2\xd3\x5f\x7e" "\xa8\xae\xfc\xb2\x5d\xc3\xbd\x2b\x98\x38\x99\x9a\x17\xc6\x30\xd0\x13\xa4" "\xc3\x57\xaa\x42\xde\x42\xa1\xd0\x9e\x67\x7c\x45\x78\xeb\x2b\x67\x8d\xf1" "\xbe\xcc\x89\xb3\x91\xc1\x63\x5d\x65\x86\xdc\x4a\xdc\xd4\x99\x94\x29\x0b" "\x01\xbe\x90\x59\x8d\x18\xc3\x9c\xc9\xbe\x10\x7e\x88\xe9\x4f\xb5\xa5\xe1" "\xc2\x09\x71\xdc\xc4\x97\x2d\xbe\xde\xbc\x89\xa9\xd2\xc8\x0e\x6a\x7a\x80" "\x95\xf2\x81\x6d\x1c\x4a\x9e\xab\x52\xf8\x0d\x1f\xc3\x36\x01\x8a\xe3\x58" "\x17\xdd\xa8\x09\x87\x4c\x35\x7d\xab\x57\x40\x54\x9a\xa7\x67\x8a\xbb\xf1" "\xfa\xe7\x2c\xb7\xcc\x9a\xe0\x20\xf9\xf8\xed\x41\x05\x47\x10\x2a\x6b\x41" "\x1f\x92\xd8\x0a\x46\xf1\xa9\x3e\xb8\xcb\x4f\xff\x4c\x45\x41\xd2\x79\x11" "\xd9\x7e\x89\x8c\x8b\x80\xbf\x6a\x4a\x4b\x6c\x15\x7b\xf6\xe9\x79\x92\x49" "\xec\xf1\x78\x82\x3a\x23\x55\xa3\xb1\x73\xc1\xfd\xfc\x29\x10\xbf\x59\x7e" "\x47\xc0\x5d\x12\x0f\x6f\x3c\xb8\xa3\xb1\xf1\xc7\xa7\x24\xdc\xd1\xce\xfe" "\x5a\x6c\x93\xe1\x99\x04\xc6\x8a\xbd\x3b\x24\xf6\xcd\x5e\xd2\x23\xf2\xf7" "\x39\x12\x10\x1d\xeb\x56\xd6\xcc\x66\x92\x19\xf5\x46\x0d\x1f\x27\x23\x6b" "\x17\x82\xa2\xe0\x5b\x75\x3c\x89\x1e\x53\x02\xf2\x3e\x5f\xbd\x54\x9d\xf1" "\xa7\xe9\x82\x06\x51\x4f\x09\x4b\x5e\xcf\x51\xbb\x1c\x13\x75\xcf\xf9\x05" "\xf9\x58\xa9\x21\x5d\x8a\x59\xd2\xba\xcd\x3b\x44\x39\x9d\x55\x57\xee\xb3" "\xcb\xc9\x34\xe7\xe3\x66\xbd\xcd\xb7\x9b\x69\x57\x10\x46\x95\x96\x1d\xa0" "\xfb\x55\x5e\xb2\x70\x54\xb2\x85\x30\x7d\xe0\x8b\xa0\x8d\xda\x3f\x54\x66" "\x89\xa5\xbb\x3a\xe8\x22\xcc\x02\xd9\x0b\xb2\xa9\x69\x00\xf5\xc1\x78\xec" "\x54\x35\xea\x18\xaa\x38\xe4\xff\x65\xad\x9d\x5e\x13\x64\xab\x15\x59\xcf" "\xae\xd8\x76\xe6\x11\x8c\x47\x86\xbe\x35\xc7\x24\x9f\xde\xf6\x04\xda\xea" "\x51\x7d\x49\xa2\x05\x8e\x4c\x5f\x4a\xf9\x15\xe2\x78\x9f\x3e\xd4\x7c\x49" "\xfd\x84\x92\x7b\xd9\x6a\x2f\x24\xc8\x42\x27\x52\x54\x7d\xbe\x1d\xa6\x25" "\x7e\x79\xdc\xf5\xcb\xe8\xef\xb9\x89\x41\x76\xff\x9f\x07\x59\x37\x16\xaf" "\x1e\xf6\x02\x49\xec\xb4\xe3\x24\xf5\xd7\x1a\x79\x73\x61\x3b\x19\xb3\xba" "\x77\x2b\x2a\xbb\xf0\x7f\xc9\x43\x32\x9b\xa5\x66\x8c\x8b\xbf\xf4\x90\xd7" "\xed\xb7\x26\x57\xad\xb5\xdf\xd0\x8b\x01\xf1\xc4\x15\xa2\xf3\x86\x22\x0a" "\x8e\x62\xfa\xe5\xb9\x50\x13\x13\x42\xc4\x19\x47\x9a\xea\x78\x61\x0a\xa9" "\x65\x31\x1f\x51\xb9\x90\xe6\xba\xff\x3d\xf7\x00\xe0\x53\xfd\xda\xd2\x82" "\x6e\xf9\x76\x1a\xb2\x56\x44\x80\x15\x9d\x55\xef\x8f\x32\xa4\xb8\xf3\x4b" "\xe6\xba\x70\xa3\x02\x19\xde\xff\x77\xdd\xb4\x7b\x08\x7e\xaa\x2f\x77\x8b" "\x92\xb7\xc4\xa0\x6a\x69\x1c\x4d\xde\x2c\xdd\x42\x5a\x74\x8b\x21\x43\xdb" "\x58\x8f\x9b\xf5\xbc\x66\x68\x4c\xbf\x94\x58\x90\xfb\x88\x39\x9d\x3f\x37" "\x03\x12\x91\x21\xdd\x55\xd5\xff\xe8\xfd\xd3\xed\xb0\x75\x00\x13\x43\xd3" "\x04\x19\xbd\xf3\x9c\x66\x5d\x22\x24\x10\x67\xf3\x9f\x5b\x2a\x9c\x17\x3d" "\xd7\xbd\x2c\x13\x5e\x53\x31\xed\x61\xe0\x1a\xe7\x40\xc8\xe3\x2f\x38\x84" "\x1d\x9e\x86\x1a\x3c\x59\x20\x8d\x77\x9c\x15\xef\xdb\xd8\xec\xe9\x7c\x02" "\x6c\xaa\x07\xdb\x41\x1b\x24\xac\x33\x3e\x8f\x42\xc2\xbd\x45\xd6\xea\xda" "\x68\x45\xd1\xd0\x71\xe9\x14\x8e\x1e\xf0\x43\x6d\x99\x8d\xdd\x48\x10\xe0" "\x83\x4c\x2d\xc9\x4d\x43\x9e\x87\x5c\x4a\xaf\xb0\xc9\x14\x61\xa0\x19\x07" "\xb3\x94\xdb\x70\x23\x18\xfc\xf5\xc7\xd9\x6d\x9d\xdd\xc5\xf8\x65\x95\x05" "\xe6\x3a\x15\xa6\x83\x75\x56\xfa\xfb\x21\xa2\x05\x12\xcb\x43\x9e\x2f\x7f" "\x06\xe2\x75\xd9\xad\x67\xfa\x34\x46\xfd\x8c\xd4\x0d\x05\x39\x12\x6d\xb2" "\x84\x5f\x4c\x17\xa4\xe0\x4e\xb5\xba\xf7\x7a\x58\xbb\x3f\xc0\x3d\x65\x0c" "\x49\x0f\x3b\x12\xab\x68\xe1\x5a\x7a\x21\x51\xe4\x9c\xb0\x5b\x22\x14\x3d" "\xbc\xb9\xd6\xa4\xf6\x94\x99\xd0\x78\xb1\x22\x6a\xd4\xed\x8d\x19\x9b\x96" "\x86\x4e\x58\xf9\x49\xdd\x95\xb1\x76\x3b\x74\x01\x98\xf4\xc5\xfd\x54\xe6" "\x96\x80\x65\x77\xe2\x9e\xe7\xfa\xc6\x25\xa1\x5c\x86\x00\x7a\x7e\x8f\x8b" "\xec\x48\x83\x61\xe1\xe3\xdd\xfa\x68\x4a\xce\xe2\x02\xcc\x45\x5a\x97\x5d" "\x9e\x9c\xa5\xbe\xe6\xf8\x38\xd5\x04\xb3\x7a\x12\xc3\x33\xbc\xd3\x43\x0e" "\x02\xd5\x0b\x8f\x58\x96\x6b\x6e\x9a\xc7\x84\x7e\x81\x15\x3c\x9e\x7a\x54" "\x84\xeb\x09\x4d\x1b\x66\xa5\xdd\xe7\xfb\xcd\xcc\x02\x9e\x95\x96\x12\xd5" "\x0c\x48\x05\x45\xb5\xba\x85\xab\x1c\x19\x6e\xab\x2a\xe4\x78\xac\xd5\xef" "\x0e\xcf\xda\xcd\xf2\x6e\x2e\x85\x4e\xc0\xa4\x78\xc0\xf1\x46\x10\x74\xee" "\xd5\x58\x67\x42\x81\xf4\xee\xed\x21\x94\x8b\x36\x35\x00\x2e\x13\xb7\x66" "\x2e\x65\x67\xfe\x8e\xf0\x53\x9b\xb8\x3a\xca\x44\x23\x6b\x22\x6f\x40\xd2" "\xcf\xc5\x2a\xae\x7c\x3c\xf9\xd8\xf3\x14\x18\xa2\x46\x21\x7e\xef\xc0\x0e" "\x86\x1e\x38\x90\x23\xeb\xd8\x4d\x6e\x53\x6c\x5d\xac\xaa\xca\x10\x4f\x26" "\xc7\x51\xd7\x7a\x37\x67\x90\x18\x41\x89\xce\x6e\xb2\xf1\x83\xe6\xfa\xb1" "\xbd\x2e\x50\x7c\xab\xe0\x78\x37\xf3\xa1\x4f\x0b\xf8\x3f\x9b\xc2\x07\x09" "\xd8\xf4\x0e\x48\xba\xc8\x68\x0b\x37\x8d\x56\x9b\xbc\xb0\xcc\xcf\xd2\x47" "\x69\xaf\xa9\xc8\x12\x71\x40\xe4\xc8\x0d\x12\x80\xe4\xda\x33\xb7\x45\x7f" "\x8e\x3b\xa0\x96\xbd\x5c\x78\xc2\xf1\xe4\xd5\x99\xa8\x0f\x56\xfd\x1b\x2c" "\xd4\xd3\x0b\x02\xe6\xd9\x50\x71\x16\x81\xb3\x5b\x96\xb5\x9d\x72\x6f\x48" "\x74\x76\x5d\x16\x7a\x59\x39\xef\x77\xe3\x05\x7c\x3e\x0c\xca\x87\xd3\x26" "\x3c\x5f\x5b\xe0\x02\xe9\xd1\xb3\x0a\xf6\x90\xdd\xa2\xdd\x0d\x1d\x0b\xf8" "\x05\xe2\xa1\x43\x7f\x62\xdd\x17\xef\xdf\x7a\x26\x32\xd1\xde\x94\xbf\x73" "\xeb\xe8\xd4\xf5\x45\xd8\x32\x66\x2f\x85\xbf\x60\xec\x72\xc4\xe7\xd7\x14" "\x13\x33\x12\x32\xdf\x42\xc0\x92\xca\x59\x21\x66\xfe\x7c\x35\xec\x05\xa4" "\x64\xa6\xdc\x36\x39\x81\x29\xc1\xbc\xd1\x1d\x5a\x18\xa9\xd5\xbc\x1b\x6b" "\x6d\xd8\xf4\xa6\x01\x7c\xed\x69\xc8\x3f\x85\x34\x3d\x36\xee\x2a\x47\x64" "\x8b\x64\x7f\x02\x03\xba\xf1\x3f\xfa\x3e\xae\xde\xef\x80\xe7\x18\xf1\xf0" "\xd8\xd5\x9d\xa5\x0f\x7b\xfd\xbd\x79\xb6\x96\x7f\x34\xf0\xa9\xd9\x74\x18" "\x53\xed\xad\x23\x9c\x87\x2b\x01\x7c\xf1\xb8\x5b\x90\x82\x02\x8d\x61\xa7" "\xff\xf7\xa7\x84\x08\xbd\x19\x88\xa6\x71\x9c\x89\xa7\x35\x45\x0e\xe5\x1e" "\x38\x5d\x04\xd3\x15\xb1\x4d\xcd\x93\xab\xaa\x67\x0c\x5d\x7d\x31\x8a\x7a" "\x36\xcd\x7c\xb0\xad\x36\x9d\x20\x76\x7a\xf7\x35\xc0\x96\xdf\x31\xf1\xd7" "\x98\x93\x35\x48\x32\x1b\xef\x79\x9b\x38\xff\x56\xf1\x1e\xa9\xe3\x22\x02" "\x65\xfc\x87\x4f\xf4\x5d\xe6\x82\x89\xac\x93\x2a\xbf\x6f\x15\x6c\x59\x93" "\x07\x09\x19\xec\x27\x7f\x80\x4e\x46\xc7\x08\x13\x79\x8c\xca\x96\x06\x14" "\x65\x68\xd7\xb2\x9b\xd0\xe2\x9b\xdd\x97\xb0\x5f\xdc\x27\x5d\x08\x54\xf0" "\xbb\xf2\xf3\xcb\x08\x42\xa0\x06\x63\x57\x95\x7e\x6a\x67\x6f\xb5\x32\xbf" "\x78\x9d\x6e\x54\x32\xa3\xd8\x48\xa4\x78\xc0\xc7\xe3\x5d\xfd\x91\x30\xab" "\xdf\x10\xea\x18\xe6\x8c\x45\xa2\x75\x7d\x65\x0d\x68\x24\x3c\x09\x0b\x8e" "\x83\x70\x13\xfe\x6d\x60\xb4\xba\x97\x66\x60\x37\x26\xa1\x45\x22\xf6\xf0" "\x22\xc0\x48\x54\xd3\xc2\x72\x04\x1a\x83\xff\xdb\x14\x92\x7d\x42\x7c\xa4" "\xe4\xcc\x0f\xa7\x7e\xed\xae\x2d\x9f\x69\xec\xcf\x2e\xbd\xad\xca\x4e\xda" "\x86\x20\x75\x27\x95\x41\x1d\xcf\x6d\x44\xce\xee\xa4\x6b\xd7\x9c\x32\x2b" "\xce\x62\x05\x75\x82\x39\x5a\xd1\x88\x5a\x14\x33\x58\xe6\xc1\xf8\x80\x90" "\x7e\xb5\x42\xb8\x32\x71\xc8\x2b\x29\x3c\xf8\xe6\x43\x6c\x4f\xd1\xe3\xc1" "\x4b\xdf\xf7\x2c\x72\x1c\x76\x5c\xd2\xcc\xbc\x54\xba\x31\x86\x45\xed\xa1" "\x1d\x63\xc7\xa5\x21\xe8\x0e\x5a\xe0\x67\x31\xc5\xa0\xbe\x87\x97\x11\x17" "\x98\x82\xef\xd9\x1c\x04\xb7\xe4\x0d\x73\x5f\x96\xea\xbc\x85\x41\x9b\x54" "\xc4\x9a\x39\x59\x9d\xd6\x5a\xed\x9c\x82\x45\x91\xb6\x6b\x1e\xce\xb8\xd0" "\x35\xc2\x9f\x3f\x96\x70\x88\xe4\x30\x4d\x1e\x19\x0e\x72\xc2\x22\x54\xdc" "\x07\x47\xf8\x2e\x76\xea\x33\x80\xab\x15\x53\x23\x17\x3f\x9a\x7d\xbd\x1b" "\x64\xcc\xb3\xad\xd7\xc8\x64\xb0\x52\xf6\x03\x7e\x84\x6a\x52\x75\x69\x55" "\x8e\x83\x30\x8e\x1f\x21\xb0\xc9\x59\x75\xba\x14\xc1\x34\x3e\x40\x73\x77" "\xeb\x6a\x9a\x56\xf3\xef\x94\x24\x99\x10\x2a\x48\xa3\xa2\x6d\xc3\x05\x3e" "\xf2\xdd\x41\x8d\x66\xa3\xdb\x0f\x3d\xc2\xd7\xa2\x5f\x65\x1a\xc7\xe4\xc5" "\x85\xd4\x07\x12\xa0\xc2\x7a\x06\x93\x51\x99\xda\xf6\xeb\xc3\xe9\x87\xc3" "\x1a\xaf\x0a\x14\x51\xcf\x07\x6a\x5f\x72\x14\x76\x7d\xff\x02\x41\xef\x8d" "\x0c\x0e\x6c\x50\x7a\x97\x8d\x94\xbd\x52\xbc\x72\xe8\x33\x94\x80\xa1\x10" "\x1d\x5b\xed\x8a\x34\x22\xcf\x9b\xe2\x2f\x8d\xa3\xc5\x82\x0c\x4d\x8c\xc2" "\x74\x6e\xf9\x46\xf4\xc8\xec\x6f\xa8\xb7\x56\x70\xa0\x83\x4b\xc2\x6f\x52" "\x8c\xd4\x01\x45\x1e\xa5\x0a\x62\x9c\x5d\x74\xc4\xbc\x95\x29\x57\xd6\x95" "\xc0\xeb\x5f\x97\x19\x5d\x24\x56\xd8\xb7\x34\x54\x7f\x84\xb3\x4e\xe2\x23" "\x1e\x3c\x19\x14\x73\xa7\x35\xad\x86\xba\x72\x6f\x1a\x5f\x8d\x91\x41\x8d" "\xff\xb4\xdd\x6a\x0b\xd6\xe3\x44\x0c\x9f\xfb\x82\xa0\x7e\xee\xba\x3f\x33" "\x7f\x06\x9d\xc8\x6e\x49\xa6\xa3\xcd\x05\x15\xba\xc7\x55\xe6\x8a\x23\x70" "\x58\xf1\xfd\x7e\xc1\xef\x63\x36\x80\x13\xb1\x9d\xed\xeb\xb7\x4c\x88\xcd" "\x99\xad\x94\x00\x05\xb3\x04\xc8\xe7\x0d\x94\x74\xf9\x69\x7b\x0b\xb9\x47" "\xd3\x50\xd8\x18\x2f\xc4\xb8\xdf\x91\xc5\x36\xb3\x09\xc1\x1e\xdb\x21\x66" "\xc0\xf4\xc6\x31\x31\xa3\x6a\x6c\x7b\x5f\xbb\x9f\x24\x90\xb1\x7b\x55\x08" "\x94\xe7\xda\xd0\x74\xf2\xec\x43\xcb\x39\x18\x92\xb2\x93\x95\x53\x31\x22" "\x09\x84\xcb\xe8\x2c\x9d\x91\x0a\x2a\xe9\xbc\xc6\x10\x11\x78\x65\x3f\xf6" "\x8d\x60\x0b\xbf\x28\xcb\xdc\x35\x2c\x04\xfc\x8f\x1e\xf4\x87\x67\x18\xe9" "\xce\x35\x30\x82\x8c\xd1\x5e\xe2\xbb\xc9\x9e\xc9\xe1\x3f\xe2\xfc\x31\x01" "\xe1\x56\xcb\xb5\xc2\x4d\xc2\x5a\xc3\x15\xbd\xd9\x20\xb0\x64\x0d\xd6\xe0" "\x0f\xff\xc7\x8f\xf2\xf9\x22\x09\x5a\x6a\xb2\x25\x5b\x3b\x3c\xb0\x2a\xc9" "\xaf\x1d\x80\x2b\x3e\xed\x15\x4c\x62\xb8\x2c\xeb\x37\xfb\xe4\x32\xbc\xbf" "\x99\xf4\x65\x2d\x2f\x2e\x85\xbe\xc9\xfc", 4096); syscall(SYS_write, r[0], 0x20000040ul, 0x1000ul); *(uint64_t*)0x20001380 = 0; *(uint64_t*)0x20001388 = 0; *(uint64_t*)0x20001390 = 0; *(uint64_t*)0x20001398 = 0; *(uint64_t*)0x200013a0 = 0; *(uint64_t*)0x200013a8 = 0; *(uint64_t*)0x200013b0 = 0; *(uint64_t*)0x200013b8 = 0; *(uint64_t*)0x200013c0 = 0; *(uint64_t*)0x200013c8 = 0; syscall(SYS_preadv, r[1], 0x20001380ul, 5ul, 0ul); syscall(SYS_fdatasync, r[0]); } int main(void) { syscall(SYS_mmap, 0x20000000ul, 0x1000000ul, 3ul, 0x1012ul, -1, 0ul, 0ul); for (procid = 0; procid < 6; procid++) { if (fork() == 0) { loop(); } } sleep(1000000); return 0; }