Google Git
Sign in
kernel / pub / scm / linux / kernel / git / shuah / linux-arts / 07759b820a9cbf01333d861d8eb2613b20d1ede4 / . / syzkaller-repros / linux / e04d20105b9f4c4f38f0f94fbb16595ac807321d.c
blob: 81d147ecb4846c47f1462805a73f78932eaa575e [file] [log] [blame]
// BUG: using __this_cpu_read() in preemptible [ADDR] code: syzkaller2NUM/3354
// https://syzkaller.appspot.com/bug?id=e04d20105b9f4c4f38f0f94fbb16595ac807321d
// status:invalid
// autogenerated by syzkaller (http://github.com/google/syzkaller)
#define _GNU_SOURCE
#include <sys/syscall.h>
#include <unistd.h>
#include <stdint.h>
#include <string.h>
static void test();
void loop()
{
while (1) {
test();
}
}
long r[60];
void test()
{
memset(r, -1, sizeof(r));
r[0] = syscall(__NR_mmap, 0x20000000ul, 0x903000ul, 0x3ul, 0x32ul,
0xfffffffffffffffful, 0x0ul);
r[1] = syscall(__NR_socket, 0xful, 0x3ul, 0x2ul);
*(uint64_t*)0x205f5000 = (uint64_t)0x0;
*(uint32_t*)0x205f5008 = (uint32_t)0x0;
*(uint64_t*)0x205f5010 = (uint64_t)0x208feff0;
*(uint64_t*)0x205f5018 = (uint64_t)0x1;
*(uint64_t*)0x205f5020 = (uint64_t)0x0;
*(uint64_t*)0x205f5028 = (uint64_t)0x0;
*(uint32_t*)0x205f5030 = (uint32_t)0x0;
*(uint64_t*)0x208feff0 = (uint64_t)0x208fe000;
*(uint64_t*)0x208feff8 = (uint64_t)0x50;
*(uint8_t*)0x208fe000 = (uint8_t)0x2;
*(uint8_t*)0x208fe001 = (uint8_t)0x3;
*(uint8_t*)0x208fe002 = (uint8_t)0x0;
*(uint8_t*)0x208fe003 = (uint8_t)0x9;
*(uint16_t*)0x208fe004 = (uint16_t)0xa;
*(uint16_t*)0x208fe006 = (uint16_t)0x0;
*(uint32_t*)0x208fe008 = (uint32_t)0x3;
*(uint32_t*)0x208fe00c = (uint32_t)0x0;
*(uint16_t*)0x208fe010 = (uint16_t)0x3;
*(uint16_t*)0x208fe012 = (uint16_t)0x6;
*(uint8_t*)0x208fe014 = (uint8_t)0x0;
*(uint8_t*)0x208fe015 = (uint8_t)0x0;
*(uint16_t*)0x208fe016 = (uint16_t)0x0;
*(uint16_t*)0x208fe018 = (uint16_t)0x2;
*(uint16_t*)0x208fe01a = (uint16_t)0x204e;
*(uint32_t*)0x208fe01c = (uint32_t)0x1020000;
*(uint8_t*)0x208fe020 = (uint8_t)0x0;
*(uint8_t*)0x208fe021 = (uint8_t)0x0;
*(uint8_t*)0x208fe022 = (uint8_t)0x0;
*(uint8_t*)0x208fe023 = (uint8_t)0x0;
*(uint8_t*)0x208fe024 = (uint8_t)0x0;
*(uint8_t*)0x208fe025 = (uint8_t)0x0;
*(uint8_t*)0x208fe026 = (uint8_t)0x0;
*(uint8_t*)0x208fe027 = (uint8_t)0x0;
*(uint16_t*)0x208fe028 = (uint16_t)0x2;
*(uint16_t*)0x208fe02a = (uint16_t)0x1;
*(uint32_t*)0x208fe02c = (uint32_t)0x0;
*(uint8_t*)0x208fe030 = (uint8_t)0x0;
*(uint8_t*)0x208fe031 = (uint8_t)0x0;
*(uint8_t*)0x208fe032 = (uint8_t)0x0;
*(uint8_t*)0x208fe033 = (uint8_t)0x2;
*(uint32_t*)0x208fe034 = (uint32_t)0x0;
*(uint16_t*)0x208fe038 = (uint16_t)0x3;
*(uint16_t*)0x208fe03a = (uint16_t)0x2000000005;
*(uint8_t*)0x208fe03c = (uint8_t)0x0;
*(uint8_t*)0x208fe03d = (uint8_t)0x0;
*(uint16_t*)0x208fe03e = (uint16_t)0x0;
*(uint16_t*)0x208fe040 = (uint16_t)0x2;
*(uint16_t*)0x208fe042 = (uint16_t)0x204e;
*(uint32_t*)0x208fe044 = (uint32_t)0x100007f;
*(uint8_t*)0x208fe048 = (uint8_t)0x0;
*(uint8_t*)0x208fe049 = (uint8_t)0x0;
*(uint8_t*)0x208fe04a = (uint8_t)0x0;
*(uint8_t*)0x208fe04b = (uint8_t)0x0;
*(uint8_t*)0x208fe04c = (uint8_t)0x0;
*(uint8_t*)0x208fe04d = (uint8_t)0x0;
*(uint8_t*)0x208fe04e = (uint8_t)0x0;
*(uint8_t*)0x208fe04f = (uint8_t)0x0;
r[59] = syscall(__NR_sendmsg, r[1], 0x205f5000ul, 0x0ul);
}
int main()
{
loop();
return 0;
}