syzbot


memory leak in sctp_sched_prio_set

Status: fixed on 2023/02/24 13:50
Subsystems: sctp
[Documentation on labels]
Reported-by: syzbot+29c402e56c4760763cc0@syzkaller.appspotmail.com
Fix commit: 9ed7bfc79542 sctp: fix memory leak in sctp_stream_outq_migrate()
First crash: 724d, last: 505d
Discussions (5)
Title Replies (including bot) Last reply
[PATCH net v4] sctp: fix memory leak in sctp_stream_outq_migrate() 3 (3) 2022/11/29 17:00
[PATCH net v3] sctp: fix memory leak in sctp_stream_outq_migrate() 3 (3) 2022/11/26 02:05
[PATCH net] sctp: fix memory leak in sctp_stream_outq_migrate() 10 (10) 2022/11/24 04:35
[PATCH] sctp: relese sctp_stream_priorities at sctp_stream_outq_migrate() 3 (3) 2022/11/23 23:45
[syzbot] memory leak in sctp_sched_prio_set 0 (1) 2022/11/18 05:18
Last patch testing requests (8)
Created Duration User Patch Repo Result
2023/01/01 03:35 4m eadavis@sina.com patch https://git.kernel.org/pub/scm/linux/kernel/git/bpf/bpf.git 13e3c7793e2f error OK
2022/11/20 11:15 8m eadavis@sina.com patch https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git b2d229d4ddb1 report log
2022/11/20 10:18 7m eadavis@sina.com patch https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git b2d229d4ddb1 report log
2022/11/20 08:54 6m eadavis@sina.com patch https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git b2d229d4ddb1 error OK
2022/11/20 07:33 8m eadavis@sina.com patch https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git b2d229d4ddb1 report log
2022/11/20 06:50 7m eadavis@sina.com patch https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git b2d229d4ddb1 report log
2022/11/20 06:27 3m eadavis@sina.com patch https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git b2d229d4ddb1 error OK
2022/11/04 19:30 8m retest repro upstream report log

Sample crash report:
BUG: memory leak
unreferenced object 0xffff88810c4a3440 (size 64):
  comm "syz-executor343", pid 3623, jiffies 4294944213 (age 7.640s)
  hex dump (first 32 bytes):
    40 34 4a 0c 81 88 ff ff 40 34 4a 0c 81 88 ff ff  @4J.....@4J.....
    50 34 4a 0c 81 88 ff ff 50 34 4a 0c 81 88 ff ff  P4J.....P4J.....
  backtrace:
    [<ffffffff814ed790>] kmalloc_trace+0x20/0x90 mm/slab_common.c:1045
    [<ffffffff84280de1>] kmalloc include/linux/slab.h:553 [inline]
    [<ffffffff84280de1>] sctp_sched_prio_new_head net/sctp/stream_sched_prio.c:33 [inline]
    [<ffffffff84280de1>] sctp_sched_prio_get_head net/sctp/stream_sched_prio.c:77 [inline]
    [<ffffffff84280de1>] sctp_sched_prio_set+0x2c1/0x370 net/sctp/stream_sched_prio.c:159
    [<ffffffff8427ad36>] sctp_stream_init_ext+0x86/0xf0 net/sctp/stream.c:163
    [<ffffffff84265d2b>] sctp_sendmsg_to_asoc+0x96b/0xa40 net/sctp/socket.c:1808
    [<ffffffff8426eb4f>] sctp_sendmsg+0x99f/0x1030 net/sctp/socket.c:2025
    [<ffffffff83e3c815>] inet_sendmsg+0x45/0x70 net/ipv4/af_inet.c:827
    [<ffffffff83a80ac6>] sock_sendmsg_nosec net/socket.c:714 [inline]
    [<ffffffff83a80ac6>] sock_sendmsg+0x56/0x80 net/socket.c:734
    [<ffffffff83a84468>] __sys_sendto+0x168/0x210 net/socket.c:2117
    [<ffffffff83a84536>] __do_sys_sendto net/socket.c:2129 [inline]
    [<ffffffff83a84536>] __se_sys_sendto net/socket.c:2125 [inline]
    [<ffffffff83a84536>] __x64_sys_sendto+0x26/0x30 net/socket.c:2125
    [<ffffffff8485b265>] do_syscall_x64 arch/x86/entry/common.c:50 [inline]
    [<ffffffff8485b265>] do_syscall_64+0x35/0xb0 arch/x86/entry/common.c:80
    [<ffffffff84a00087>] entry_SYSCALL_64_after_hwframe+0x63/0xcd


Crashes (2):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2022/11/23 16:24 upstream eb7081409f94 75740b3f .config console log report syz C ci-upstream-gce-leak memory leak in sctp_sched_prio_set
2022/04/18 12:16 upstream b2d229d4ddb1 8bcc32a6 .config console log report syz C ci-upstream-gce-leak memory leak in sctp_sched_prio_set
* Struck through repros no longer work on HEAD.