syzbot


memory leak in xskq_create

Status: fixed on 2021/03/10 01:49
Subsystems: bpf net
[Documentation on labels]
Reported-by: syzbot+cfa88ddd0655afa88763@syzkaller.appspotmail.com
Fix commit: 8bee68338408 xsk: Fix memory leak for failed bind
First crash: 1458d, last: 1434d
Discussions (3)
Title Replies (including bot) Last reply
[PATCH 5.10 000/145] 5.10.7-rc1 review 152 (152) 2021/01/11 19:59
[PATCH bpf] xsk: fix memory leak for failed bind 6 (6) 2020/12/17 21:51
memory leak in xskq_create 3 (4) 2020/12/17 07:50
Last patch testing requests (1)
Created Duration User Patch Repo Result
2020/12/16 17:50 14m yepeilin.cs@gmail.com patch upstream report log

Sample crash report:
Warning: Permanently added '10.128.0.234' (ECDSA) to the list of known hosts.
executing program
executing program
BUG: memory leak
unreferenced object 0xffff88811019b200 (size 64):
  comm "syz-executor230", pid 8464, jiffies 4294942137 (age 13.840s)
  hex dump (first 32 bytes):
    7f 00 00 00 80 00 00 00 00 00 00 00 00 00 00 00  ................
    00 00 c6 10 81 88 ff ff 00 00 00 00 00 00 00 00  ................
  backtrace:
    [<00000000ba1b7b82>] xskq_create+0x23/0xd0 include/linux/slab.h:552
    [<000000003abba384>] xsk_init_queue net/xdp/xsk.c:626 [inline]
    [<000000003abba384>] xsk_setsockopt+0x1c4/0x590 net/xdp/xsk.c:993
    [<000000000db5babf>] __sys_setsockopt+0x1b0/0x360 net/socket.c:2115
    [<0000000040bfae54>] __do_sys_setsockopt net/socket.c:2126 [inline]
    [<0000000040bfae54>] __se_sys_setsockopt net/socket.c:2123 [inline]
    [<0000000040bfae54>] __x64_sys_setsockopt+0x22/0x30 net/socket.c:2123
    [<000000008a43ffd5>] do_syscall_64+0x2d/0x70 arch/x86/entry/common.c:46
    [<0000000094838940>] entry_SYSCALL_64_after_hwframe+0x44/0xa9

BUG: memory leak
unreferenced object 0xffff88811019b180 (size 64):
  comm "syz-executor230", pid 8465, jiffies 4294942137 (age 13.840s)
  hex dump (first 32 bytes):
    ff ff 00 00 00 00 01 00 00 00 00 00 00 00 00 00  ................
    00 00 00 13 81 88 ff ff 00 00 00 00 00 00 00 00  ................
  backtrace:
    [<00000000ba1b7b82>] xskq_create+0x23/0xd0 include/linux/slab.h:552
    [<000000003abba384>] xsk_init_queue net/xdp/xsk.c:626 [inline]
    [<000000003abba384>] xsk_setsockopt+0x1c4/0x590 net/xdp/xsk.c:993
    [<000000000db5babf>] __sys_setsockopt+0x1b0/0x360 net/socket.c:2115
    [<0000000040bfae54>] __do_sys_setsockopt net/socket.c:2126 [inline]
    [<0000000040bfae54>] __se_sys_setsockopt net/socket.c:2123 [inline]
    [<0000000040bfae54>] __x64_sys_setsockopt+0x22/0x30 net/socket.c:2123
    [<000000008a43ffd5>] do_syscall_64+0x2d/0x70 arch/x86/entry/common.c:46
    [<0000000094838940>] entry_SYSCALL_64_after_hwframe+0x44/0xa9

BUG: memory leak
unreferenced object 0xffff888110a3f6c0 (size 64):
  comm "syz-executor230", pid 8467, jiffies 4294942732 (age 7.890s)
  hex dump (first 32 bytes):
    7f 00 00 00 80 00 00 00 00 00 00 00 00 00 00 00  ................
    00 d0 c8 01 81 88 ff ff 00 00 00 00 00 00 00 00  ................
  backtrace:
    [<00000000ba1b7b82>] xskq_create+0x23/0xd0 include/linux/slab.h:552
    [<000000003abba384>] xsk_init_queue net/xdp/xsk.c:626 [inline]
    [<000000003abba384>] xsk_setsockopt+0x1c4/0x590 net/xdp/xsk.c:993
    [<000000000db5babf>] __sys_setsockopt+0x1b0/0x360 net/socket.c:2115
    [<0000000040bfae54>] __do_sys_setsockopt net/socket.c:2126 [inline]
    [<0000000040bfae54>] __se_sys_setsockopt net/socket.c:2123 [inline]
    [<0000000040bfae54>] __x64_sys_setsockopt+0x22/0x30 net/socket.c:2123
    [<000000008a43ffd5>] do_syscall_64+0x2d/0x70 arch/x86/entry/common.c:46
    [<0000000094838940>] entry_SYSCALL_64_after_hwframe+0x44/0xa9


Crashes (7):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2021/01/03 03:56 upstream 3516bd729358 79264ae3 .config console log report syz C ci-upstream-gce-leak
2020/12/19 02:50 upstream a409ed156a90 04201c06 .config console log report syz C ci-upstream-gce-leak
2020/12/15 11:56 upstream 148842c98a24 97183ed7 .config console log report syz C ci-upstream-gce-leak
2020/12/10 06:07 upstream a68a0262abda c090b4da .config console log report syz C ci-upstream-gce-leak
2020/12/09 14:51 upstream 7d8761ba27fc 40cc414d .config console log report syz C ci-upstream-gce-leak
2020/12/24 15:26 upstream 58cf05f597b0 c2c1d1dd .config console log report syz ci-upstream-gce-leak
2020/12/13 11:29 upstream 7b1b868e1d91 bca53db9 .config console log report syz ci-upstream-gce-leak
* Struck through repros no longer work on HEAD.