memory leak in __ip6_append

Kernel	Title	Repro	Cause bisect	Fix bisect	Count	Last	Reported	Patched	Status
upstream	memory leak in __ip6_append_data net	C			10	1779d	1805d	12/26	fixed on 2019/08/05 13:45

upstream

1779d

1805d

12/26

fixed on 2019/08/05 13:45


Created	Duration	User	Patch	Repo	Result
2024/01/05 17:32	24m	edumazet@google.com		upstream	report log
2023/11/20 22:59	11m	retest repro		upstream	report log

executing program executing program BUG: memory leak unreferenced object 0xffff88810e6d9600 (size 240): comm "syz-executor407", pid 5058, jiffies 4294960045 (age 31.330s) hex dump (first 32 bytes): 00 97 6d 0e 81 88 ff ff 00 00 00 00 00 00 00 00 ..m............. 00 80 62 01 81 88 ff ff 80 9c 2a 42 81 88 ff ff ..b.......*B.... backtrace: [<ffffffff81630d87>] kmemleak_alloc_recursive include/linux/kmemleak.h:42 [inline] [<ffffffff81630d87>] slab_post_alloc_hook mm/slab.h:766 [inline] [<ffffffff81630d87>] slab_alloc_node mm/slub.c:3478 [inline] [<ffffffff81630d87>] kmem_cache_alloc_node+0x2c7/0x450 mm/slub.c:3523 [<ffffffff83ed2c8f>] __alloc_skb+0x1ef/0x230 net/core/skbuff.c:641 [<ffffffff84378e36>] alloc_skb include/linux/skbuff.h:1286 [inline] [<ffffffff84378e36>] __ip6_append_data.isra.0+0x1ad6/0x1da0 net/ipv6/ip6_output.c:1647 [<ffffffff8437920c>] ip6_append_data+0x10c/0x2c0 net/ipv6/ip6_output.c:1832 [<ffffffff843c46f2>] rawv6_sendmsg+0xa72/0x1cf0 net/ipv6/raw.c:913 [<ffffffff8428f459>] inet_sendmsg+0x49/0x70 net/ipv4/af_inet.c:847 [<ffffffff83ebcdd2>] sock_sendmsg_nosec net/socket.c:730 [inline] [<ffffffff83ebcdd2>] __sock_sendmsg+0x52/0xa0 net/socket.c:745 [<ffffffff83ebd20e>] ____sys_sendmsg+0x14e/0x470 net/socket.c:2588 [<ffffffff83ec1149>] ___sys_sendmsg+0xc9/0x130 net/socket.c:2642 [<ffffffff83ec14fe>] __sys_sendmmsg+0x12e/0x330 net/socket.c:2728 [<ffffffff83ec1725>] __do_sys_sendmmsg net/socket.c:2757 [inline] [<ffffffff83ec1725>] __se_sys_sendmmsg net/socket.c:2754 [inline] [<ffffffff83ec1725>] __x64_sys_sendmmsg+0x25/0x30 net/socket.c:2754 [<ffffffff84b65d8f>] do_syscall_x64 arch/x86/entry/common.c:51 [inline] [<ffffffff84b65d8f>] do_syscall_64+0x3f/0x110 arch/x86/entry/common.c:82 [<ffffffff84c0008b>] entry_SYSCALL_64_after_hwframe+0x63/0x6b BUG: memory leak unreferenced object 0xffff88810dd92c80 (size 640): comm "syz-executor407", pid 5058, jiffies 4294960045 (age 31.330s) hex dump (first 32 bytes): 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ 00 00 00 00 00 00 86 dd 60 08 e8 27 00 00 03 40 ........`..'...@ backtrace: [<ffffffff81630d87>] kmemleak_alloc_recursive include/linux/kmemleak.h:42 [inline] [<ffffffff81630d87>] slab_post_alloc_hook mm/slab.h:766 [inline] [<ffffffff81630d87>] slab_alloc_node mm/slub.c:3478 [inline] [<ffffffff81630d87>] kmem_cache_alloc_node+0x2c7/0x450 mm/slub.c:3523 [<ffffffff83ecefe2>] kmalloc_reserve+0xe2/0x170 net/core/skbuff.c:560 [<ffffffff83ed2b75>] __alloc_skb+0xd5/0x230 net/core/skbuff.c:651 [<ffffffff84378e36>] alloc_skb include/linux/skbuff.h:1286 [inline] [<ffffffff84378e36>] __ip6_append_data.isra.0+0x1ad6/0x1da0 net/ipv6/ip6_output.c:1647 [<ffffffff8437920c>] ip6_append_data+0x10c/0x2c0 net/ipv6/ip6_output.c:1832 [<ffffffff843c46f2>] rawv6_sendmsg+0xa72/0x1cf0 net/ipv6/raw.c:913 [<ffffffff8428f459>] inet_sendmsg+0x49/0x70 net/ipv4/af_inet.c:847 [<ffffffff83ebcdd2>] sock_sendmsg_nosec net/socket.c:730 [inline] [<ffffffff83ebcdd2>] __sock_sendmsg+0x52/0xa0 net/socket.c:745 [<ffffffff83ebd20e>] ____sys_sendmsg+0x14e/0x470 net/socket.c:2588 [<ffffffff83ec1149>] ___sys_sendmsg+0xc9/0x130 net/socket.c:2642 [<ffffffff83ec14fe>] __sys_sendmmsg+0x12e/0x330 net/socket.c:2728 [<ffffffff83ec1725>] __do_sys_sendmmsg net/socket.c:2757 [inline] [<ffffffff83ec1725>] __se_sys_sendmmsg net/socket.c:2754 [inline] [<ffffffff83ec1725>] __x64_sys_sendmmsg+0x25/0x30 net/socket.c:2754 [<ffffffff84b65d8f>] do_syscall_x64 arch/x86/entry/common.c:51 [inline] [<ffffffff84b65d8f>] do_syscall_64+0x3f/0x110 arch/x86/entry/common.c:82 [<ffffffff84c0008b>] entry_SYSCALL_64_after_hwframe+0x63/0x6b BUG: memory leak unreferenced object 0xffff88810e6d9700 (size 240): comm "syz-executor407", pid 5058, jiffies 4294960045 (age 31.330s) hex dump (first 32 bytes): 00 98 6d 0e 81 88 ff ff 00 00 00 00 00 00 00 00 ..m............. 00 80 62 01 81 88 ff ff 80 9c 2a 42 81 88 ff ff ..b.......*B.... backtrace: [<ffffffff81630d87>] kmemleak_alloc_recursive include/linux/kmemleak.h:42 [inline] [<ffffffff81630d87>] slab_post_alloc_hook mm/slab.h:766 [inline] [<ffffffff81630d87>] slab_alloc_node mm/slub.c:3478 [inline] [<ffffffff81630d87>] kmem_cache_alloc_node+0x2c7/0x450 mm/slub.c:3523 [<ffffffff83ed2c8f>] __alloc_skb+0x1ef/0x230 net/core/skbuff.c:641 [<ffffffff84378e36>] alloc_skb include/linux/skbuff.h:1286 [inline] [<ffffffff84378e36>] __ip6_append_data.isra.0+0x1ad6/0x1da0 net/ipv6/ip6_output.c:1647 [<ffffffff8437920c>] ip6_append_data+0x10c/0x2c0 net/ipv6/ip6_output.c:1832 [<ffffffff843c46f2>] rawv6_sendmsg+0xa72/0x1cf0 net/ipv6/raw.c:913 [<ffffffff8428f459>] inet_sendmsg+0x49/0x70 net/ipv4/af_inet.c:847 [<ffffffff83ebcdd2>] sock_sendmsg_nosec net/socket.c:730 [inline] [<ffffffff83ebcdd2>] __sock_sendmsg+0x52/0xa0 net/socket.c:745 [<ffffffff83ebd20e>] ____sys_sendmsg+0x14e/0x470 net/socket.c:2588 [<ffffffff83ec1149>] ___sys_sendmsg+0xc9/0x130 net/socket.c:2642 [<ffffffff83ec14fe>] __sys_sendmmsg+0x12e/0x330 net/socket.c:2728 [<ffffffff83ec1725>] __do_sys_sendmmsg net/socket.c:2757 [inline] [<ffffffff83ec1725>] __se_sys_sendmmsg net/socket.c:2754 [inline] [<ffffffff83ec1725>] __x64_sys_sendmmsg+0x25/0x30 net/socket.c:2754 [<ffffffff84b65d8f>] do_syscall_x64 arch/x86/entry/common.c:51 [inline] [<ffffffff84b65d8f>] do_syscall_64+0x3f/0x110 arch/x86/entry/common.c:82 [<ffffffff84c0008b>] entry_SYSCALL_64_after_hwframe+0x63/0x6b

Crashes (1):
Time	Kernel	Commit	Syzkaller	Config	Log	Report	Syz repro	C repro	VM info	Assets (help?)	Manager	Title
2023/11/06 21:50	upstream	d2f51b3516da	78fae24e	.config	console log	report	syz	C		[disk image] [vmlinux] [kernel image]	ci-upstream-gce-leak	memory leak in __ip6_append_data

Crashes (1):

Assets (help?)