syzbot


memory leak in video_usercopy

Status: fixed on 2021/04/09 19:46
Subsystems: media
[Documentation on labels]
Reported-by: syzbot+1115e79c8df6472c612b@syzkaller.appspotmail.com
Fix commit: fb18802a338b media: v4l: ioctl: Fix memory leak in video_usercopy
First crash: 1397d, last: 1331d
Discussions (10)
Title Replies (including bot) Last reply
[PATCH 4.9 00/41] 4.9.260-rc1 review 47 (47) 2021/03/12 20:24
[PATCH 5.10 000/102] 5.10.21-rc1 review 119 (119) 2021/03/08 13:21
[PATCH 4.19 00/52] 4.19.179-rc1 review 57 (57) 2021/03/07 22:57
[PATCH 4.4 00/30] 4.4.260-rc1 review 40 (40) 2021/03/07 20:18
[PATCH 5.4 00/72] 5.4.103-rc1 review 80 (80) 2021/03/06 16:33
[PATCH 4.14 00/39] 4.14.224-rc1 review 42 (42) 2021/03/06 16:30
[PATCH 5.11 000/775] 5.11.3-rc1 review 776 (776) 2021/03/01 16:15
[PATCH v2 1/1] v4l: ioctl: Fix memory leak in video_usercopy 3 (3) 2021/01/14 04:59
[PATCH 1/1] v4l: ioctl: Fix memory leak in video_usercopy 6 (6) 2020/12/20 20:03
memory leak in video_usercopy 2 (3) 2020/12/19 22:41

Sample crash report:
Warning: Permanently added '10.128.0.94' (ECDSA) to the list of known hosts.
executing program
executing program
BUG: memory leak
unreferenced object 0xffff888110b6ed00 (size 256):
  comm "syz-executor564", pid 8411, jiffies 4294943071 (age 12.430s)
  hex dump (first 32 bytes):
    03 00 00 00 2f 76 69 6d 00 00 00 00 00 00 00 00  ..../vim........
    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
  backtrace:
    [<0000000060b2ad67>] kmalloc_node include/linux/slab.h:575 [inline]
    [<0000000060b2ad67>] kvmalloc_node+0x61/0xf0 mm/util.c:587
    [<000000005a7657b9>] kvmalloc include/linux/mm.h:781 [inline]
    [<000000005a7657b9>] video_usercopy+0x991/0xa50 drivers/media/v4l2-core/v4l2-ioctl.c:3303
    [<000000000dfd971e>] v4l2_ioctl+0x77/0x90 drivers/media/v4l2-core/v4l2-dev.c:360
    [<0000000077cf910f>] vfs_ioctl fs/ioctl.c:48 [inline]
    [<0000000077cf910f>] __do_sys_ioctl fs/ioctl.c:753 [inline]
    [<0000000077cf910f>] __se_sys_ioctl fs/ioctl.c:739 [inline]
    [<0000000077cf910f>] __x64_sys_ioctl+0xfc/0x140 fs/ioctl.c:739
    [<00000000605faed9>] do_syscall_64+0x2d/0x70 arch/x86/entry/common.c:46
    [<00000000514fcce3>] entry_SYSCALL_64_after_hwframe+0x44/0xa9


Crashes (19):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2021/02/20 09:13 upstream f40ddce88593 f689d40a .config console log report syz C ci-upstream-gce-leak memory leak in video_usercopy
2021/02/12 03:32 upstream 291009f656e8 a5f86b15 .config console log report syz C ci-upstream-gce-leak memory leak in video_usercopy
2021/02/04 20:28 upstream 61556703b610 42b90a7c .config console log report syz C ci-upstream-gce-leak memory leak in video_usercopy
2021/01/30 08:54 upstream 0e9bcda5d286 fc9fd31e .config console log report syz C ci-upstream-gce-leak memory leak in video_usercopy
2021/01/25 17:58 upstream 6ee1d745b7c9 52e37319 .config console log report syz C ci-upstream-gce-leak memory leak in video_usercopy
2021/01/22 16:27 upstream 9f29bd8b2e71 d4f4eca5 .config console log report syz C ci-upstream-gce-leak memory leak in video_usercopy
2021/01/20 12:20 upstream 45dfb8a5659a d4f4eca5 .config console log report syz C ci-upstream-gce-leak memory leak in video_usercopy
2021/01/18 06:53 upstream a1339d6355ac fd103621 .config console log report syz C ci-upstream-gce-leak memory leak in video_usercopy
2021/01/17 04:35 upstream 0da0a8a0a0e1 65a7a854 .config console log report syz C ci-upstream-gce-leak
2021/01/14 14:27 upstream 65f0d2414b70 269d24e8 .config console log report syz C ci-upstream-gce-leak
2021/01/14 13:39 upstream 65f0d2414b70 269d24e8 .config console log report syz C ci-upstream-gce-leak
2021/01/11 09:05 upstream 0653161f0fac 2c1f2513 .config console log report syz C ci-upstream-gce-leak
2021/01/10 16:12 upstream 2ff90100ace8 2c1f2513 .config console log report syz C ci-upstream-gce-leak
2021/01/03 03:53 upstream 3516bd729358 79264ae3 .config console log report syz C ci-upstream-gce-leak
2020/12/27 22:11 upstream f838f8d2b694 2242f77f .config console log report syz C ci-upstream-gce-leak
2020/12/27 05:03 upstream f838f8d2b694 821e0b09 .config console log report syz C ci-upstream-gce-leak
2020/12/19 00:21 upstream a409ed156a90 04201c06 .config console log report syz C ci-upstream-gce-leak
2020/12/17 23:10 upstream accefff5b547 04201c06 .config console log report syz C ci-upstream-gce-leak
2020/12/15 13:10 upstream 148842c98a24 97183ed7 .config console log report syz C ci-upstream-gce-leak
* Struck through repros no longer work on HEAD.