syzbot


memory leak in lapb_send_control

Status: upstream: reported C repro on 2022/04/15 21:55
Reported-by: syzbot+780995ea16fd2fad8f9b@syzkaller.appspotmail.com
First crash: 293d, last: 104d

Sample crash report:
executing program
executing program
executing program
executing program
executing program
BUG: memory leak
unreferenced object 0xffff88810db10500 (size 240):
  comm "softirq", pid 0, jiffies 4294942600 (age 86.590s)
  hex dump (first 32 bytes):
    e0 ec 97 0b 81 88 ff ff e0 ec 97 0b 81 88 ff ff  ................
    00 80 f3 10 81 88 ff ff 00 00 00 00 00 00 00 00  ................
  backtrace:
    [<ffffffff83850789>] __alloc_skb+0x1f9/0x270 net/core/skbuff.c:497
    [<ffffffff83e29ee4>] alloc_skb include/linux/skbuff.h:1267 [inline]
    [<ffffffff83e29ee4>] lapb_send_control+0x34/0x1b0 net/lapb/lapb_subr.c:227
    [<ffffffff83e2a4e6>] lapb_t1timer_expiry+0x266/0x2f0 net/lapb/lapb_timer.c:142
    [<ffffffff81308983>] call_timer_fn+0x33/0x1f0 kernel/time/timer.c:1474
    [<ffffffff81308e51>] expire_timers kernel/time/timer.c:1519 [inline]
    [<ffffffff81308e51>] __run_timers.part.0+0x311/0x420 kernel/time/timer.c:1790
    [<ffffffff81308fa4>] __run_timers kernel/time/timer.c:1768 [inline]
    [<ffffffff81308fa4>] run_timer_softirq+0x44/0x90 kernel/time/timer.c:1803
    [<ffffffff84a000eb>] __do_softirq+0xeb/0x2ef kernel/softirq.c:571
    [<ffffffff8124c9c6>] invoke_softirq kernel/softirq.c:445 [inline]
    [<ffffffff8124c9c6>] __irq_exit_rcu+0xc6/0x110 kernel/softirq.c:650
    [<ffffffff8460ad52>] sysvec_apic_timer_interrupt+0xa2/0xd0 arch/x86/kernel/apic/apic.c:1107
    [<ffffffff84800cc6>] asm_sysvec_apic_timer_interrupt+0x16/0x20 arch/x86/include/asm/idtentry.h:649
    [<ffffffff84620b79>] native_safe_halt arch/x86/include/asm/irqflags.h:51 [inline]
    [<ffffffff84620b79>] arch_safe_halt arch/x86/include/asm/irqflags.h:89 [inline]
    [<ffffffff84620b79>] acpi_safe_halt drivers/acpi/processor_idle.c:112 [inline]
    [<ffffffff84620b79>] acpi_idle_do_entry+0xc9/0xe0 drivers/acpi/processor_idle.c:572
    [<ffffffff84621090>] acpi_idle_enter+0x150/0x230 drivers/acpi/processor_idle.c:709
    [<ffffffff83430814>] cpuidle_enter_state+0xc4/0x740 drivers/cpuidle/cpuidle.c:239
    [<ffffffff83430ee9>] cpuidle_enter+0x29/0x40 drivers/cpuidle/cpuidle.c:356
    [<ffffffff812aa6d9>] call_cpuidle kernel/sched/idle.c:155 [inline]
    [<ffffffff812aa6d9>] cpuidle_idle_call kernel/sched/idle.c:236 [inline]
    [<ffffffff812aa6d9>] do_idle+0x1d9/0x260 kernel/sched/idle.c:303
    [<ffffffff812aa924>] cpu_startup_entry+0x14/0x20 kernel/sched/idle.c:400

BUG: memory leak
unreferenced object 0xffff88810d851400 (size 240):
  comm "softirq", pid 0, jiffies 4294946461 (age 47.980s)
  hex dump (first 32 bytes):
    e0 94 96 0b 81 88 ff ff e0 94 96 0b 81 88 ff ff  ................
    00 80 f3 10 81 88 ff ff 00 00 00 00 00 00 00 00  ................
  backtrace:
    [<ffffffff8385051b>] napi_skb_cache_get+0x6b/0x90 net/core/skbuff.c:258
    [<ffffffff83850555>] __napi_build_skb+0x15/0x50 net/core/skbuff.c:387
    [<ffffffff83850929>] __napi_alloc_skb+0x129/0x260 net/core/skbuff.c:691
    [<ffffffff82a1cadf>] napi_alloc_skb include/linux/skbuff.h:3212 [inline]
    [<ffffffff82a1cadf>] page_to_skb+0x11f/0x770 drivers/net/virtio_net.c:499
    [<ffffffff82a1feee>] receive_mergeable drivers/net/virtio_net.c:1122 [inline]
    [<ffffffff82a1feee>] receive_buf+0x6ae/0x2d70 drivers/net/virtio_net.c:1261
    [<ffffffff82a227fe>] virtnet_receive drivers/net/virtio_net.c:1556 [inline]
    [<ffffffff82a227fe>] virtnet_poll+0x24e/0x6f0 drivers/net/virtio_net.c:1674
    [<ffffffff8388705d>] __napi_poll+0x3d/0x290 net/core/dev.c:6494
    [<ffffffff8388788c>] napi_poll net/core/dev.c:6561 [inline]
    [<ffffffff8388788c>] net_rx_action+0x3ac/0x490 net/core/dev.c:6672
    [<ffffffff84a000eb>] __do_softirq+0xeb/0x2ef kernel/softirq.c:571
    [<ffffffff8124c9c6>] invoke_softirq kernel/softirq.c:445 [inline]
    [<ffffffff8124c9c6>] __irq_exit_rcu+0xc6/0x110 kernel/softirq.c:650
    [<ffffffff846078b8>] common_interrupt+0xb8/0xd0 arch/x86/kernel/irq.c:240
    [<ffffffff84800c22>] asm_common_interrupt+0x22/0x40 arch/x86/include/asm/idtentry.h:640
    [<ffffffff844065d5>] strncpy+0x15/0x30 lib/string.c:115
    [<ffffffff815b238b>] strncpy include/linux/fortify-string.h:131 [inline]
    [<ffffffff815b238b>] __create_object+0x2bb/0x3c0 mm/kmemleak.c:652
    [<ffffffff81579b1e>] kmemleak_alloc_recursive include/linux/kmemleak.h:42 [inline]
    [<ffffffff81579b1e>] slab_post_alloc_hook mm/slab.h:740 [inline]
    [<ffffffff81579b1e>] slab_alloc_node mm/slab.c:3257 [inline]
    [<ffffffff81579b1e>] slab_alloc mm/slab.c:3265 [inline]
    [<ffffffff81579b1e>] __kmem_cache_alloc_lru mm/slab.c:3442 [inline]
    [<ffffffff81579b1e>] kmem_cache_alloc+0x17e/0x340 mm/slab.c:3461
    [<ffffffff8164be70>] kmem_cache_zalloc include/linux/slab.h:702 [inline]
    [<ffffffff8164be70>] alloc_buffer_head+0x20/0xe0 fs/buffer.c:2899


Crashes (9):
Manager Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets Title
ci-upstream-gce-leak 2022/10/19 21:03 upstream aae703b02f92 b31320fc .config console log report syz C [disk image] [vmlinux] memory leak in lapb_send_control
ci-upstream-gce-leak 2022/09/27 02:52 upstream 3800a713b607 10323ddf .config console log report syz C [disk image] [vmlinux] memory leak in lapb_send_control
ci-upstream-gce-leak 2022/09/16 07:55 upstream 3245cb65fd91 dd9a85ff .config console log report syz C [disk image] [vmlinux] memory leak in lapb_send_control
ci-upstream-gce-leak 2022/09/07 04:34 upstream d2ec799d1c1b 5fc30c37 .config console log report syz C memory leak in lapb_send_control
ci-upstream-gce-leak 2022/09/03 20:14 upstream d895ec7938c4 28811d0a .config console log report syz C [disk image] [vmlinux] memory leak in lapb_send_control
ci-upstream-gce-leak 2022/08/10 13:32 upstream d4252071b97d c2a623d6 .config console log report syz C memory leak in lapb_send_control
ci-upstream-gce-leak 2022/08/04 20:03 upstream b44f2fd87919 1c9013ac .config console log report syz C memory leak in lapb_send_control
ci-upstream-gce-leak 2022/04/14 12:57 upstream a19944809fe9 b17b2923 .config console log report syz C memory leak in lapb_send_control
ci-upstream-gce-leak 2022/09/16 21:33 upstream 6879c2d3b960 dd9a85ff .config console log report syz [disk image] [vmlinux] memory leak in lapb_send_control
* Struck through repros no longer work on HEAD.