Re: BUG: unable to handle kernel NULL pointer dereference in sock_poll

From: Tetsuo Handa
Date: Sat Jun 09 2018 - 21:38:53 EST

Next message: Allen Hubbe: "Re: [PATCH 0/8] Fix breakage caused by the NTB multi-port patchset"
Previous message: Sebastian Reichel: "Re: [PATCH] bluetooth: remove unused bt-nokia-h4p.h header"
In reply to: syzbot: "BUG: unable to handle kernel NULL pointer dereference in sock_poll"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On 2018/06/10 4:57, syzbot wrote:
> Hello,
>
> syzbot found the following crash on:
>
> HEAD commit:ÂÂÂ 7d3bf613e99a Merge tag 'libnvdimm-for-4.18' of git://git.k..
> git tree:ÂÂÂÂÂÂ upstream
> console output: https://syzkaller.appspot.com/x/log.txt?x=1188a05f800000
> kernel config:Â https://syzkaller.appspot.com/x/.config?x=f04d8d0a2afb789a
> dashboard link: https://syzkaller.appspot.com/bug?extid=344bb0f46d7719cd9483
> compiler:ÂÂÂÂÂÂ gcc (GCC) 8.0.1 20180413 (experimental)
> syzkaller repro:https://syzkaller.appspot.com/x/repro.syz?x=12b5841f800000
> C reproducer:ÂÂ https://syzkaller.appspot.com/x/repro.c?x=17f4005f800000

This is a same report except s/epoll/poll/ .

----------
#include <sys/socket.h>
#include <sys/poll.h>
#define PF_SMC 43

int main(int argc, char *argv[])
{
int sfd = socket(PF_SMC, SOCK_STREAM, 0);
struct pollfd pfd = { .fd = sfd };
poll(&pfd, 1, 0);
return 0;
}
----------

#syz dup: BUG: unable to handle kernel NULL pointer dereference in corrupted

Next message: Allen Hubbe: "Re: [PATCH 0/8] Fix breakage caused by the NTB multi-port patchset"
Previous message: Sebastian Reichel: "Re: [PATCH] bluetooth: remove unused bt-nokia-h4p.h header"
In reply to: syzbot: "BUG: unable to handle kernel NULL pointer dereference in sock_poll"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]