Clarification about socks and issue with restarting

[r4nd0mus3r]

Hello, Although this is not an issue I just wanted to clarify something. When running setup_get_root(void *sk) to fill in the payload the *sk is the pointer to the sk struct inside sock, not to the actual sock struct, right?

Also, I am running this on a Samsung phone and even if I comment out the call to close_icmp_socket(socks[i]) in do_get_root(socks) a kernel panic is caused when I exit the code. Any idea what is wrong? I have even tried instead of branching to another function to go to a "bx lr" instruction since inet_release invokes "blx r3" to see if it makes any difference but still the device restarted.