syzbot


memory leak in ieee80211_add_key

Status: auto-obsoleted due to no activity on 2024/01/15 00:07
Subsystems: wireless
[Documentation on labels]
Reported-by: syzbot+c7f9b4282ce793ea2456@syzkaller.appspotmail.com
First crash: 139d, last: 139d
Discussions (1)
Title Replies (including bot) Last reply
[syzbot] [wireless?] [net?] memory leak in ieee80211_add_key 1 (2) 2023/10/11 06:59
Last patch testing requests (6)
Created Duration User Patch Repo Result
2023/10/21 01:16 18m retest repro upstream OK log
2023/10/12 01:37 21m lizhi.xu@windriver.com patch https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git af95dc6fdc25 report log
2023/10/12 00:55 30m lizhi.xu@windriver.com patch https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git af95dc6fdc25 report log
2023/10/11 13:35 11m eadavis@sina.com patch https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git af95dc6fdc25 report log
2023/10/11 06:04 59m eadavis@sina.com patch https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git af95dc6fdc25 error OK
2023/10/11 03:37 13m eadavis@sina.com patch https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git af95dc6fdc25 report log

Sample crash report:
executing program
executing program
BUG: memory leak
unreferenced object 0xffff8881419b3000 (size 1024):
  comm "syz-executor294", pid 5023, jiffies 4294944772 (age 13.090s)
  hex dump (first 32 bytes):
    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
    00 00 00 00 00 00 00 00 18 30 9b 41 81 88 ff ff  .........0.A....
  backtrace:
    [<ffffffff8157491b>] __do_kmalloc_node mm/slab_common.c:1022 [inline]
    [<ffffffff8157491b>] __kmalloc+0x4b/0x150 mm/slab_common.c:1036
    [<ffffffff848575dc>] kmalloc include/linux/slab.h:603 [inline]
    [<ffffffff848575dc>] kzalloc include/linux/slab.h:720 [inline]
    [<ffffffff848575dc>] ieee80211_key_alloc+0x5c/0x590 net/mac80211/key.c:603
    [<ffffffff8482b0d2>] ieee80211_add_key+0x162/0x540 net/mac80211/cfg.c:500
    [<ffffffff8477c375>] rdev_add_key net/wireless/rdev-ops.h:87 [inline]
    [<ffffffff8477c375>] nl80211_new_key+0x315/0x540 net/wireless/nl80211.c:4764
    [<ffffffff84033bb6>] genl_family_rcv_msg_doit+0x116/0x180 net/netlink/genetlink.c:971
    [<ffffffff840347dd>] genl_family_rcv_msg net/netlink/genetlink.c:1051 [inline]
    [<ffffffff840347dd>] genl_rcv_msg+0x2fd/0x440 net/netlink/genetlink.c:1066
    [<ffffffff84032191>] netlink_rcv_skb+0x91/0x1d0 net/netlink/af_netlink.c:2545
    [<ffffffff840335f8>] genl_rcv+0x28/0x40 net/netlink/genetlink.c:1075
    [<ffffffff84031092>] netlink_unicast_kernel net/netlink/af_netlink.c:1342 [inline]
    [<ffffffff84031092>] netlink_unicast+0x2c2/0x440 net/netlink/af_netlink.c:1368
    [<ffffffff840315b5>] netlink_sendmsg+0x3a5/0x740 net/netlink/af_netlink.c:1910
    [<ffffffff83e96c12>] sock_sendmsg_nosec net/socket.c:730 [inline]
    [<ffffffff83e96c12>] __sock_sendmsg+0x52/0xa0 net/socket.c:745
    [<ffffffff83e97265>] ____sys_sendmsg+0x365/0x470 net/socket.c:2558
    [<ffffffff83e9b6d9>] ___sys_sendmsg+0xc9/0x130 net/socket.c:2612
    [<ffffffff83e9b886>] __sys_sendmsg+0xa6/0x120 net/socket.c:2641
    [<ffffffff84b38548>] do_syscall_x64 arch/x86/entry/common.c:50 [inline]
    [<ffffffff84b38548>] do_syscall_64+0x38/0xb0 arch/x86/entry/common.c:80
    [<ffffffff84c0008b>] entry_SYSCALL_64_after_hwframe+0x63/0xcd

BUG: memory leak
unreferenced object 0xffff8881419b3400 (size 1024):
  comm "syz-executor294", pid 5025, jiffies 4294945317 (age 7.640s)
  hex dump (first 32 bytes):
    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
    00 00 00 00 00 00 00 00 18 34 9b 41 81 88 ff ff  .........4.A....
  backtrace:
    [<ffffffff8157491b>] __do_kmalloc_node mm/slab_common.c:1022 [inline]
    [<ffffffff8157491b>] __kmalloc+0x4b/0x150 mm/slab_common.c:1036
    [<ffffffff848575dc>] kmalloc include/linux/slab.h:603 [inline]
    [<ffffffff848575dc>] kzalloc include/linux/slab.h:720 [inline]
    [<ffffffff848575dc>] ieee80211_key_alloc+0x5c/0x590 net/mac80211/key.c:603
    [<ffffffff8482b0d2>] ieee80211_add_key+0x162/0x540 net/mac80211/cfg.c:500
    [<ffffffff8477c375>] rdev_add_key net/wireless/rdev-ops.h:87 [inline]
    [<ffffffff8477c375>] nl80211_new_key+0x315/0x540 net/wireless/nl80211.c:4764
    [<ffffffff84033bb6>] genl_family_rcv_msg_doit+0x116/0x180 net/netlink/genetlink.c:971
    [<ffffffff840347dd>] genl_family_rcv_msg net/netlink/genetlink.c:1051 [inline]
    [<ffffffff840347dd>] genl_rcv_msg+0x2fd/0x440 net/netlink/genetlink.c:1066
    [<ffffffff84032191>] netlink_rcv_skb+0x91/0x1d0 net/netlink/af_netlink.c:2545
    [<ffffffff840335f8>] genl_rcv+0x28/0x40 net/netlink/genetlink.c:1075
    [<ffffffff84031092>] netlink_unicast_kernel net/netlink/af_netlink.c:1342 [inline]
    [<ffffffff84031092>] netlink_unicast+0x2c2/0x440 net/netlink/af_netlink.c:1368
    [<ffffffff840315b5>] netlink_sendmsg+0x3a5/0x740 net/netlink/af_netlink.c:1910
    [<ffffffff83e96c12>] sock_sendmsg_nosec net/socket.c:730 [inline]
    [<ffffffff83e96c12>] __sock_sendmsg+0x52/0xa0 net/socket.c:745
    [<ffffffff83e97265>] ____sys_sendmsg+0x365/0x470 net/socket.c:2558
    [<ffffffff83e9b6d9>] ___sys_sendmsg+0xc9/0x130 net/socket.c:2612
    [<ffffffff83e9b886>] __sys_sendmsg+0xa6/0x120 net/socket.c:2641
    [<ffffffff84b38548>] do_syscall_x64 arch/x86/entry/common.c:50 [inline]
    [<ffffffff84b38548>] do_syscall_64+0x38/0xb0 arch/x86/entry/common.c:80
    [<ffffffff84c0008b>] entry_SYSCALL_64_after_hwframe+0x63/0xcd


Crashes (1):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2023/10/07 00:07 upstream af95dc6fdc25 ea12a918 .config console log report syz C [disk image] [vmlinux] [kernel image] ci-upstream-gce-leak memory leak in ieee80211_add_key
* Struck through repros no longer work on HEAD.