syzbot


memory leak in atusb_probe

Status: fixed on 2021/11/10 00:50
Reported-by: syzbot+28a246747e0a465127f3@syzkaller.appspotmail.com
Fix commit: 6b9fbe169551 drivers: net: fix memory leak in atusb_probe
First crash: 683d, last: 537d
Patch testing requests:
Created Duration User Patch Repo Result
2021/03/31 20:07 17m paskripkin@gmail.com https://linux.googlesource.com/linux/kernel/git/torvalds/linux refs/changes/96/9796/1 OK

Sample crash report:
BUG: memory leak
unreferenced object 0xffff88810d920240 (size 192):
  comm "kworker/0:2", pid 3658, jiffies 4294943075 (age 13.270s)
  hex dump (first 32 bytes):
    01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
    00 00 00 00 00 00 00 00 58 02 92 0d 81 88 ff ff  ........X.......
  backtrace:
    [<ffffffff82ba0466>] kmalloc include/linux/slab.h:559 [inline]
    [<ffffffff82ba0466>] usb_alloc_urb+0x66/0xe0 drivers/usb/core/urb.c:74
    [<ffffffff82ad3888>] atusb_alloc_urbs drivers/net/ieee802154/atusb.c:362 [inline]
    [<ffffffff82ad3888>] atusb_probe+0x158/0x820 drivers/net/ieee802154/atusb.c:1038
    [<ffffffff82ba7b77>] usb_probe_interface+0x177/0x370 drivers/usb/core/driver.c:396
    [<ffffffff825f6019>] really_probe+0x159/0x4a0 drivers/base/dd.c:554
    [<ffffffff825f63e4>] driver_probe_device+0x84/0x100 drivers/base/dd.c:740
    [<ffffffff825f6afe>] __device_attach_driver+0xee/0x110 drivers/base/dd.c:846
    [<ffffffff825f2f97>] bus_for_each_drv+0xb7/0x100 drivers/base/bus.c:431
    [<ffffffff825f6692>] __device_attach+0x122/0x250 drivers/base/dd.c:914
    [<ffffffff825f4c36>] bus_probe_device+0xc6/0xe0 drivers/base/bus.c:491
    [<ffffffff825f1185>] device_add+0x5d5/0xc40 drivers/base/core.c:3242
    [<ffffffff82ba5119>] usb_set_configuration+0x9d9/0xb90 drivers/usb/core/message.c:2164
    [<ffffffff82bb557c>] usb_generic_driver_probe+0x8c/0xc0 drivers/usb/core/generic.c:238
    [<ffffffff82ba72dc>] usb_probe_device+0x5c/0x140 drivers/usb/core/driver.c:293
    [<ffffffff825f6019>] really_probe+0x159/0x4a0 drivers/base/dd.c:554
    [<ffffffff825f63e4>] driver_probe_device+0x84/0x100 drivers/base/dd.c:740
    [<ffffffff825f6afe>] __device_attach_driver+0xee/0x110 drivers/base/dd.c:846

BUG: memory leak
unreferenced object 0xffff888110fb0f00 (size 192):
  comm "kworker/1:1", pid 36, jiffies 4294943677 (age 7.250s)
  hex dump (first 32 bytes):
    01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
    00 00 00 00 00 00 00 00 18 0f fb 10 81 88 ff ff  ................
  backtrace:
    [<ffffffff82ba0466>] kmalloc include/linux/slab.h:559 [inline]
    [<ffffffff82ba0466>] usb_alloc_urb+0x66/0xe0 drivers/usb/core/urb.c:74
    [<ffffffff82ad3888>] atusb_alloc_urbs drivers/net/ieee802154/atusb.c:362 [inline]
    [<ffffffff82ad3888>] atusb_probe+0x158/0x820 drivers/net/ieee802154/atusb.c:1038
    [<ffffffff82ba7b77>] usb_probe_interface+0x177/0x370 drivers/usb/core/driver.c:396
    [<ffffffff825f6019>] really_probe+0x159/0x4a0 drivers/base/dd.c:554
    [<ffffffff825f63e4>] driver_probe_device+0x84/0x100 drivers/base/dd.c:740
    [<ffffffff825f6afe>] __device_attach_driver+0xee/0x110 drivers/base/dd.c:846
    [<ffffffff825f2f97>] bus_for_each_drv+0xb7/0x100 drivers/base/bus.c:431
    [<ffffffff825f6692>] __device_attach+0x122/0x250 drivers/base/dd.c:914
    [<ffffffff825f4c36>] bus_probe_device+0xc6/0xe0 drivers/base/bus.c:491
    [<ffffffff825f1185>] device_add+0x5d5/0xc40 drivers/base/core.c:3242
    [<ffffffff82ba5119>] usb_set_configuration+0x9d9/0xb90 drivers/usb/core/message.c:2164
    [<ffffffff82bb557c>] usb_generic_driver_probe+0x8c/0xc0 drivers/usb/core/generic.c:238
    [<ffffffff82ba72dc>] usb_probe_device+0x5c/0x140 drivers/usb/core/driver.c:293
    [<ffffffff825f6019>] really_probe+0x159/0x4a0 drivers/base/dd.c:554
    [<ffffffff825f63e4>] driver_probe_device+0x84/0x100 drivers/base/dd.c:740
    [<ffffffff825f6afe>] __device_attach_driver+0xee/0x110 drivers/base/dd.c:846

BUG: memory leak
unreferenced object 0xffff888110fb00c0 (size 192):
  comm "kworker/1:1", pid 36, jiffies 4294943677 (age 7.250s)
  hex dump (first 32 bytes):
    01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
    00 00 00 00 00 00 00 00 d8 00 fb 10 81 88 ff ff  ................
  backtrace:
    [<ffffffff82ba0466>] kmalloc include/linux/slab.h:559 [inline]
    [<ffffffff82ba0466>] usb_alloc_urb+0x66/0xe0 drivers/usb/core/urb.c:74
    [<ffffffff82ad3888>] atusb_alloc_urbs drivers/net/ieee802154/atusb.c:362 [inline]
    [<ffffffff82ad3888>] atusb_probe+0x158/0x820 drivers/net/ieee802154/atusb.c:1038
    [<ffffffff82ba7b77>] usb_probe_interface+0x177/0x370 drivers/usb/core/driver.c:396
    [<ffffffff825f6019>] really_probe+0x159/0x4a0 drivers/base/dd.c:554
    [<ffffffff825f63e4>] driver_probe_device+0x84/0x100 drivers/base/dd.c:740
    [<ffffffff825f6afe>] __device_attach_driver+0xee/0x110 drivers/base/dd.c:846
    [<ffffffff825f2f97>] bus_for_each_drv+0xb7/0x100 drivers/base/bus.c:431
    [<ffffffff825f6692>] __device_attach+0x122/0x250 drivers/base/dd.c:914
    [<ffffffff825f4c36>] bus_probe_device+0xc6/0xe0 drivers/base/bus.c:491
    [<ffffffff825f1185>] device_add+0x5d5/0xc40 drivers/base/core.c:3242
    [<ffffffff82ba5119>] usb_set_configuration+0x9d9/0xb90 drivers/usb/core/message.c:2164
    [<ffffffff82bb557c>] usb_generic_driver_probe+0x8c/0xc0 drivers/usb/core/generic.c:238
    [<ffffffff82ba72dc>] usb_probe_device+0x5c/0x140 drivers/usb/core/driver.c:293
    [<ffffffff825f6019>] really_probe+0x159/0x4a0 drivers/base/dd.c:554
    [<ffffffff825f63e4>] driver_probe_device+0x84/0x100 drivers/base/dd.c:740
    [<ffffffff825f6afe>] __device_attach_driver+0xee/0x110 drivers/base/dd.c:846


Crashes (71):
Manager Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Title
ci-upstream-gce-leak 2021/03/27 06:50 upstream db24726bfefa a8529b82 .config log report syz C memory leak in atusb_probe
ci-upstream-gce-leak 2021/03/26 03:44 upstream e138138003eb 6a383ecf .config log report syz C memory leak in atusb_probe
ci-upstream-gce-leak 2021/03/21 02:10 upstream 1c273e10bc0c 17810eae .config log report syz C memory leak in atusb_probe
ci-upstream-gce-leak 2021/03/11 13:16 upstream a74e6a014c9d c2ca1f2a .config log report syz C memory leak in atusb_probe
ci-upstream-gce-leak 2021/02/23 20:25 upstream 3b9cdafb5358 fcc6d71b .config log report syz C memory leak in atusb_probe
ci-upstream-gce-leak 2021/02/19 20:36 upstream f40ddce88593 f689d40a .config log report syz C memory leak in atusb_probe
ci-upstream-gce-leak 2021/02/18 10:35 upstream f40ddce88593 14052202 .config log report syz C memory leak in atusb_probe
ci-upstream-gce-leak 2021/02/17 15:15 upstream f40ddce88593 052f8d9f .config log report syz C memory leak in atusb_probe
ci-upstream-gce-leak 2021/02/17 10:12 upstream f40ddce88593 052f8d9f .config log report syz C memory leak in atusb_probe
ci-upstream-gce-leak 2021/02/15 05:42 upstream f40ddce88593 98682e5e .config log report syz C memory leak in atusb_probe
ci-upstream-gce-leak 2021/02/14 19:29 upstream 358feceebbf6 98682e5e .config log report syz C memory leak in atusb_probe
ci-upstream-gce-leak 2021/02/14 03:55 upstream ac30d8ce28d6 98682e5e .config log report syz C memory leak in atusb_probe
ci-upstream-gce-leak 2021/02/13 13:58 upstream c6d8570e4d64 98682e5e .config log report syz C memory leak in atusb_probe
ci-upstream-gce-leak 2021/02/12 12:42 upstream dcc0b49040c7 a5f86b15 .config log report syz C memory leak in atusb_probe
ci-upstream-gce-leak 2021/02/12 12:13 upstream dcc0b49040c7 a5f86b15 .config log report syz C memory leak in atusb_probe
ci-upstream-gce-leak 2021/02/09 04:45 upstream e0756cfc7d7c 2bd9619f .config log report syz C memory leak in atusb_probe
ci-upstream-gce-leak 2021/02/08 17:32 upstream 92bf22614b21 2ce644fc .config log report syz C memory leak in atusb_probe
ci-upstream-gce-leak 2021/02/07 10:16 upstream 825b5991a46e 2ce644fc .config log report syz C memory leak in atusb_probe
ci-upstream-gce-leak 2021/02/04 02:10 upstream 3afe9076a7c1 624dad51 .config log report syz C memory leak in atusb_probe
ci-upstream-gce-leak 2021/02/03 02:54 upstream 3aaf0a27ffc2 624dad51 .config log report syz C memory leak in atusb_probe
ci-upstream-gce-leak 2021/02/02 01:09 upstream 1048ba83fb1c e6b95f32 .config log report syz C memory leak in atusb_probe
ci-upstream-gce-leak 2021/02/01 10:10 upstream 1048ba83fb1c fc9fd31e .config log report syz C memory leak in atusb_probe
ci-upstream-gce-leak 2021/01/31 15:10 upstream 6642d600b541 fc9fd31e .config log report syz C memory leak in atusb_probe
ci-upstream-gce-leak 2021/01/31 05:21 upstream 8c947645151c fc9fd31e .config log report syz C memory leak in atusb_probe
ci-upstream-gce-leak 2021/01/30 14:37 upstream 0e9bcda5d286 fc9fd31e .config log report syz C memory leak in atusb_probe
ci-upstream-gce-leak 2021/01/29 19:46 upstream bec4c2968fce 6593fd32 .config log report syz C memory leak in atusb_probe
ci-upstream-gce-leak 2021/01/29 19:16 upstream bec4c2968fce 6593fd32 .config log report syz C memory leak in atusb_probe
ci-upstream-gce-leak 2021/01/29 16:23 upstream bec4c2968fce 6593fd32 .config log report syz C memory leak in atusb_probe
ci-upstream-gce-leak 2021/01/28 21:48 upstream e5ff2cb9cf67 7df34f59 .config log report syz C memory leak in atusb_probe
ci-upstream-gce-leak 2021/01/28 06:11 upstream 76c057c84d28 eefc07f2 .config log report syz C memory leak in atusb_probe
ci-upstream-gce-leak 2021/01/27 11:31 upstream 2ab38c17aac1 a0ebf917 .config log report syz C memory leak in atusb_probe
ci-upstream-gce-leak 2021/01/27 03:57 upstream 13391c60da33 55a7d4df .config log report syz C memory leak in atusb_probe
ci-upstream-gce-leak 2021/01/25 21:14 upstream 6ee1d745b7c9 52e37319 .config log report syz C memory leak in atusb_probe
ci-upstream-gce-leak 2021/01/10 08:08 upstream 2ff90100ace8 2c1f2513 .config log report syz C
ci-upstream-gce-leak 2021/01/09 23:20 upstream 996e435fd401 2c1f2513 .config log report syz C
ci-upstream-gce-leak 2021/01/09 13:32 upstream 996e435fd401 a6c52263 .config log report syz C
ci-upstream-gce-leak 2021/01/07 23:08 upstream 71c061d24438 c104d4a3 .config log report syz C
ci-upstream-gce-leak 2021/01/07 22:49 upstream 71c061d24438 c104d4a3 .config log report syz C
ci-upstream-gce-leak 2021/01/07 22:23 upstream 71c061d24438 c104d4a3 .config log report syz C
ci-upstream-gce-leak 2021/01/04 23:32 upstream 36bbbd0e234d 2a28ff1f .config log report syz C
ci-upstream-gce-leak 2021/01/04 04:01 upstream e71ba9452f0b 79264ae3 .config log report syz C
ci-upstream-gce-leak 2021/01/02 01:32 upstream eda809aef534 79264ae3 .config log report syz C
ci-upstream-gce-leak 2021/01/01 04:46 upstream f6e1ea196492 79264ae3 .config log report syz C
ci-upstream-gce-leak 2020/12/30 19:58 upstream 139711f033f6 ecb8c012 .config log report syz C
ci-upstream-gce-leak 2020/12/30 06:09 upstream 139711f033f6 0fa352f2 .config log report syz C
ci-upstream-gce-leak 2020/12/29 17:58 upstream dea8dcf2a9fa 80910769 .config log report syz C
ci-upstream-gce-leak 2020/12/28 18:45 upstream 5c8fe583cce5 8259d56c .config log report syz C
ci-upstream-gce-leak 2020/12/27 17:05 upstream f838f8d2b694 2242f77f .config log report syz C
ci-upstream-gce-leak 2020/12/27 05:40 upstream f838f8d2b694 821e0b09 .config log report syz C
ci-upstream-gce-leak 2020/12/26 23:57 upstream 40f78232f973 821e0b09 .config log report syz C
ci-upstream-gce-leak 2020/12/26 08:27 upstream 5814bc2d4cc2 821e0b09 .config log report syz C
ci-upstream-gce-leak 2020/12/25 14:20 upstream 71c5f03154ac b982b3ea .config log report syz C
ci-upstream-gce-leak 2020/12/23 13:35 upstream 614cb5894306 c2c1d1dd .config log report syz C
ci-upstream-gce-leak 2020/12/23 03:48 upstream 614cb5894306 04201c06 .config log report syz C
ci-upstream-gce-leak 2020/12/21 21:18 upstream e37b12e4bb21 04201c06 .config log report syz C
ci-upstream-gce-leak 2020/12/20 11:46 upstream 467f8165a2b0 04201c06 .config log report syz C
ci-upstream-gce-leak 2020/12/18 23:49 upstream a409ed156a90 04201c06 .config log report syz C
ci-upstream-gce-leak 2020/12/17 18:34 upstream accefff5b547 04201c06 .config log report syz C
ci-upstream-gce-leak 2020/12/16 06:34 upstream d635a69dd498 f213e07e .config log report syz C
ci-upstream-gce-leak 2020/12/15 10:43 upstream 148842c98a24 97183ed7 .config log report syz C
ci-upstream-gce-leak 2020/12/08 19:22 upstream cd796ed33450 a7f7f4a4 .config log report syz C
ci-upstream-gce-leak 2020/12/04 20:40 upstream e87297fa080a 20366b87 .config log report syz C
ci-upstream-gce-leak 2020/12/02 08:18 upstream 509a15421674 c42a35e9 .config log report syz C
ci-upstream-gce-leak 2020/12/01 16:32 upstream b65054597872 07bfe8a5 .config log report syz C
ci-upstream-gce-leak 2020/12/01 13:02 upstream b65054597872 b3a34598 .config log report syz C
ci-upstream-gce-leak 2020/11/30 13:00 upstream b65054597872 a0092f9d .config log report syz C
ci-upstream-gce-leak 2020/11/29 04:35 upstream 45e885c439e8 a0092f9d .config log report syz C
ci-upstream-gce-leak 2020/11/24 06:03 upstream d5beb3140f91 1ab681a4 .config log report syz C
ci-upstream-gce-leak 2020/11/17 15:22 upstream 9c87c9f41245 bd2a760b .config log report syz C
ci-upstream-gce-leak 2020/11/13 00:37 upstream af5043c89a8e 16fca0c8 .config log report syz C
ci-upstream-gce-leak 2021/04/07 19:55 upstream 2d743660786e 6a81331a .config log report syz memory leak in atusb_probe
* Struck through repros no longer work on HEAD.