syzbot


memory leak in sctp_v4_create_accept_sk

Status: fixed on 2019/07/29 13:39
Subsystems: sctp
[Documentation on labels]
Reported-by: syzbot+afabda3890cc2f765041@syzkaller.appspotmail.com
Fix commit: 25bff6d5478b sctp: change to hold sk after auth shkey is created successfully
First crash: 1991d, last: 1991d
Discussions (9)
Title Replies (including bot) Last reply
[PATCH 3.16 00/87] 3.16.75-rc1 review 99 (99) 2019/11/19 14:49
[PATCH 4.14 00/43] 4.14.132-stable review 57 (57) 2019/08/03 07:11
[PATCH 4.9 000/102] 4.9.185-stable review 108 (108) 2019/07/10 06:11
[PATCH 4.4 00/73] 4.4.185-stable review 79 (79) 2019/07/10 06:10
[PATCH 4.19 00/72] 4.19.57-stable review 84 (84) 2019/07/04 05:29
[PATCH 5.1 00/55] 5.1.16-stable review 69 (69) 2019/07/04 05:27
[PATCH net] sctp: change to hold sk after auth shkey is created successfully 3 (3) 2019/06/27 02:30
Reminder: 14 open syzbot bugs in "net/sctp" subsystem 1 (1) 2019/06/25 05:49
memory leak in sctp_v4_create_accept_sk 1 (2) 2019/06/24 13:11

Sample crash report:
ffffffffda RBX: 00000000006fbc38 RCX: 0000000000446a79
BUG: memory leak
unreferenced object 0xffff888118137680 (size 1352):
  comm "syz-executor360", pid 7164, jiffies 4294941839 (age 13.960s)
  hex dump (first 32 bytes):
    ac 14 ff aa 0a 80 01 1a 00 00 00 00 00 00 00 00  ................
    02 00 07 40 00 00 00 00 00 00 00 00 00 00 00 00  ...@............
  backtrace:
    [<000000006c358063>] kmemleak_alloc_recursive include/linux/kmemleak.h:43 [inline]
    [<000000006c358063>] slab_post_alloc_hook mm/slab.h:439 [inline]
    [<000000006c358063>] slab_alloc mm/slab.c:3326 [inline]
    [<000000006c358063>] kmem_cache_alloc+0x134/0x270 mm/slab.c:3488
    [<00000000f2fb26e7>] sk_prot_alloc+0x41/0x170 net/core/sock.c:1596
    [<000000003c036edc>] sk_alloc+0x35/0x2f0 net/core/sock.c:1656
    [<00000000c25725a4>] sctp_v4_create_accept_sk+0x32/0xb0 net/sctp/protocol.c:556
    [<0000000049bd7e55>] sctp_accept+0x1df/0x290 net/sctp/socket.c:4913
    [<00000000d287a63e>] inet_accept+0x4e/0x1d0 net/ipv4/af_inet.c:734
    [<00000000acb0fc20>] __sys_accept4+0x12a/0x280 net/socket.c:1760
    [<00000000bbdaf60b>] __do_sys_accept4 net/socket.c:1795 [inline]
    [<00000000bbdaf60b>] __se_sys_accept4 net/socket.c:1792 [inline]
    [<00000000bbdaf60b>] __x64_sys_accept4+0x22/0x30 net/socket.c:1792
    [<000000006da547ee>] do_syscall_64+0x76/0x1a0 arch/x86/entry/common.c:301
    [<00000000025f5c93>] entry_SYSCALL_64_after_hwframe+0x44/0xa9


Crashes (1):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2019/06/22 11:49 upstream abf02e2964b3 34bf9440 .config console log report syz C ci-upstream-gce-leak
* Struck through repros no longer work on HEAD.