Received: by 2002:a25:8b91:0:0:0:0:0 with SMTP id j17csp1552348ybl; Fri, 10 Jan 2020 21:24:48 -0800 (PST) X-Google-Smtp-Source: APXvYqwcrRi1YLSAujV3GKfofNr3PkoS7Vu6rg+oB5vam49LypnUXLV7QwC4vyHt/EfmZ9XgKIXz X-Received: by 2002:a9d:4b05:: with SMTP id q5mr5326757otf.174.1578720288804; Fri, 10 Jan 2020 21:24:48 -0800 (PST) ARC-Seal: i=1; a=rsa-sha256; t=1578720288; cv=none; d=google.com; s=arc-20160816; b=qtc5EfmnkPh/7Ow773bIiNcJ9JcuWUFXeRErEhDdPsKMElRsy5PtM76pydIup1B8Dz 9Ej9hhKRY7JhjvASE2ujz0XIbL9+vC4ThbgPa8zXo3Jtrqmb0A0pmzLg2b9FOSwH70oQ k9SrvlGXgbezVgk0+AHoIw2A9Z+kwj5yeVJWNJjrXBHw5DBqjXfUX37wi2S+jqZFq5Fp 4CxbSgk/KUtPBeM0NAzWG2qcy83ADNowe7vRvBHegy3Tlhx+Y3ZNHjFnM/uwDnr6bGNs aUlpjWhMxWkVwvJHdmck0t7sXZj8fV3B5FGqaV+C2aANWDMitaoJ1PykRCNCm8RyieJz MmSA== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:sender:cc:to:subject:message-id:date:from :in-reply-to:references:mime-version:dkim-signature; bh=ulN2oU6xZjaVScLYbWPyLshfWZ9NLYCBI301oK8HmTc=; b=ZDXSVwRxYWPHG6DnJzMpwj/y2ygnQdRk6k0Vu7vB9wKJLGaFx2xEPN/ue+TPUbSqim sY7Vwc4H2LSQcwaNrE3WkamB6Rt64qRnMo+1krFKWIG5f8r9CMyxgclaFo4nX2yWJIFz ZGUEBCXYxvPHiApyAeLbFZa0VTGc7SuLIjonqh49Hn5+e/dpHEydsJDMIIXhhb+PgNfD qdR8nk1a2yEzb9QxkIjgrw45yrW1AovSI5ePPVr6QGa7WYE54F3tpuj1FKrumEjll+wU QgSquf4CxH7lzN6oqai/NDcO/goJZW/KD/Vh2ZszAlcy/neYMd9vOLteAX8b1cjDjQ8+ LLjw== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@gmail.com header.s=20161025 header.b=KKkDsIox; spf=pass (google.com: best guess record for domain of linux-wireless-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-wireless-owner@vger.kernel.org; dmarc=pass (p=NONE sp=QUARANTINE dis=NONE) header.from=gmail.com Return-Path: Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67]) by mx.google.com with ESMTP id 44si3066582otu.77.2020.01.10.21.24.23; Fri, 10 Jan 2020 21:24:48 -0800 (PST) Received-SPF: pass (google.com: best guess record for domain of linux-wireless-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67; Authentication-Results: mx.google.com; dkim=pass header.i=@gmail.com header.s=20161025 header.b=KKkDsIox; spf=pass (google.com: best guess record for domain of linux-wireless-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-wireless-owner@vger.kernel.org; dmarc=pass (p=NONE sp=QUARANTINE dis=NONE) header.from=gmail.com Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1726246AbgAKFYL (ORCPT + 99 others); Sat, 11 Jan 2020 00:24:11 -0500 Received: from mail-ot1-f67.google.com ([209.85.210.67]:35062 "EHLO mail-ot1-f67.google.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1726213AbgAKFYL (ORCPT ); Sat, 11 Jan 2020 00:24:11 -0500 Received: by mail-ot1-f67.google.com with SMTP id i15so4135098oto.2; Fri, 10 Jan 2020 21:24:11 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=ulN2oU6xZjaVScLYbWPyLshfWZ9NLYCBI301oK8HmTc=; b=KKkDsIoxY+z4pfkRvdwVhz06iHBeS+Km6wMD5Gd9lKk8HfdIe7tyFqNXw8B4M/pYSs rBNAE/kV7AMQn/yjzTTrPfOZik3TFDGcOvBi4xK6sdMy4GSPYPCsb0jZIGTM0HJfTVi0 clqWSA4oPnvxYRN6plRnrQrONZ2v5/emp7HaaYs8TRO4NsfZb9Y3Ii5xiwDnjvyBE7io 807pKvWH/9vgKwkAxvy/3nT4FKwkh8y6pcw56IG43tASV7twVeyumj/x1JPad3iOUrue 1II8kD7pyUGAweXuFUpbL04JtsjJoAJVaHOxkgU81+Jznj4RkgbRdckZNGjFkNA5KML0 O7Jg== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=ulN2oU6xZjaVScLYbWPyLshfWZ9NLYCBI301oK8HmTc=; b=ddHVPldLrDGlOR0ts0YciT07f3j7aEO8V4FzL9z5ZrKGJeoK5xvVuhEv488205xHVM ItwM2FnM1XG02lj6XzuMpcYYB2jHRyiGN8Lt1Qj5q0tv0rqJrcP8Wnd2+DEQBeqVr9t/ 34FX6YUE6FVoTbz797xHfXaqmnvG9qJP0AahjNdBtM8PjXrTqCGY1EsWK8Mk90fMwYBD ZrqAyCHkPbt2mHm71h/MUoypy093NJ+6mdyiOpkWIHQdLwvJJg1dHQkui4R38wBOj97a IMtjfoW4dAB59GmZTL9q2596/e2mFhX4utFKXKKl0XRl8YBimtIgotRWYSRUvRFCPyel q+dg== X-Gm-Message-State: APjAAAX6VdjL7zlMOlVQl+9Ov377eHXfmDTVoWC9+CBG9Hx8bSP6KbZK oxjzeh1PmUkujQEIv+XGXtz8r6coxKvIWVcn5XcLxj/IuUHwgw== X-Received: by 2002:a05:6830:1515:: with SMTP id k21mr5241169otp.177.1578720250672; Fri, 10 Jan 2020 21:24:10 -0800 (PST) MIME-Version: 1.0 References: <00000000000073b469059bcde315@google.com> In-Reply-To: From: Justin Capella Date: Fri, 10 Jan 2020 21:23:57 -0800 Message-ID: Subject: Re: BUG: unable to handle kernel NULL pointer dereference in cfg80211_wext_siwrts To: Johannes Berg Cc: syzbot , "David S. Miller" , LKML , linux-wireless@vger.kernel.org, netdev@vger.kernel.org, syzkaller-bugs@googlegroups.com, Cody Schuffelen Content-Type: text/plain; charset="UTF-8" Sender: linux-wireless-owner@vger.kernel.org Precedence: bulk List-ID: X-Mailing-List: linux-wireless@vger.kernel.org I noticed pfifo_qdisc_ops is exported as default_qdisc_ops is it possible this is how rdev->ops is NULL Seems unlikely, but thought I'd point it out. On Fri, Jan 10, 2020 at 11:13 AM Johannes Berg wrote: > > On Fri, 2020-01-10 at 11:11 -0800, syzbot wrote: > > Hello, > > > > syzbot found the following crash on: > > > > HEAD commit: 2f806c2a Merge branch 'net-ungraft-prio' > > git tree: net > > console output: https://syzkaller.appspot.com/x/log.txt?x=1032069ee00000 > > kernel config: https://syzkaller.appspot.com/x/.config?x=5c90cac8f1f8c619 > > dashboard link: https://syzkaller.appspot.com/bug?extid=34b582cf32c1db008f8e > > compiler: gcc (GCC) 9.0.0 20181231 (experimental) > > > > Unfortunately, I don't have any reproducer for this crash yet. > > It's quite likely also in virt_wifi, evidently that has some issues. > > Cody, did you take a look at the previous report by any chance? > > johannes >