memory leak in ndisc_ns

Kernel	Title	Rank 🛈	Repro	Cause bisect	Fix bisect	Count	Last	Reported	Patched	Status
upstream	memory leak in ndisc_ns_create (2) net	3	syz			1	1007d	1007d	0/29	auto-obsoleted due to no activity on 2023/07/10 07:02

BUG: memory leak unreferenced object 0xffff8881134cea00 (size 512): comm "kworker/1:2", pid 140, jiffies 4295050537 (age 57.880s) hex dump (first 32 bytes): 00 00 33 33 ff 00 00 1b aa aa aa aa aa 1b 86 dd ..33............ 60 00 00 00 00 20 3a ff 00 00 00 00 00 00 00 00 `.... :......... backtrace: [<ffffffff838732bd>] kmalloc_reserve net/core/skbuff.c:358 [inline] [<ffffffff838732bd>] __alloc_skb+0xdd/0x270 net/core/skbuff.c:430 [<ffffffff83d30426>] alloc_skb include/linux/skbuff.h:1257 [inline] [<ffffffff83d30426>] ndisc_alloc_skb+0x56/0xe0 net/ipv6/ndisc.c:421 [<ffffffff83d30bd6>] ndisc_ns_create+0xa6/0x260 net/ipv6/ndisc.c:621 [<ffffffff83d34fbd>] ndisc_send_ns+0x4d/0xc0 net/ipv6/ndisc.c:663 [<ffffffff83d0ba8b>] addrconf_dad_work+0x63b/0x8f0 net/ipv6/addrconf.c:4167 [<ffffffff8127adda>] process_one_work+0x2ba/0x5f0 kernel/workqueue.c:2289 [<ffffffff8127b6f9>] worker_thread+0x59/0x5b0 kernel/workqueue.c:2436 [<ffffffff81284aa5>] kthread+0x125/0x160 kernel/kthread.c:376 [<ffffffff8100226f>] ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:306 BUG: memory leak unreferenced object 0xffff88811345a800 (size 2048): comm "kworker/1:2", pid 140, jiffies 4295050584 (age 57.410s) hex dump (first 32 bytes): 00 00 33 33 00 00 00 16 32 d7 1f 03 10 0b 86 dd ..33....2....... 60 00 00 00 00 24 00 01 00 00 00 00 00 00 00 00 `....$.......... backtrace: [<ffffffff838732bd>] kmalloc_reserve net/core/skbuff.c:358 [inline] [<ffffffff838732bd>] __alloc_skb+0xdd/0x270 net/core/skbuff.c:430 [<ffffffff83879dda>] alloc_skb include/linux/skbuff.h:1257 [inline] [<ffffffff83879dda>] alloc_skb_with_frags+0x6a/0x340 net/core/skbuff.c:6018 [<ffffffff8386c90f>] sock_alloc_send_pskb+0x39f/0x3d0 net/core/sock.c:2663 [<ffffffff83d455e1>] sock_alloc_send_skb include/net/sock.h:1841 [inline] [<ffffffff83d455e1>] mld_newpack.isra.0+0x81/0x200 net/ipv6/mcast.c:1748 [<ffffffff83d45806>] add_grhead+0xa6/0xc0 net/ipv6/mcast.c:1851 [<ffffffff83d45fdc>] add_grec+0x7bc/0x820 net/ipv6/mcast.c:1989 [<ffffffff83d47fc3>] mld_send_cr net/ipv6/mcast.c:2115 [inline] [<ffffffff83d47fc3>] mld_ifc_work+0x273/0x750 net/ipv6/mcast.c:2653 [<ffffffff8127adda>] process_one_work+0x2ba/0x5f0 kernel/workqueue.c:2289 [<ffffffff8127b6f9>] worker_thread+0x59/0x5b0 kernel/workqueue.c:2436 [<ffffffff81284aa5>] kthread+0x125/0x160 kernel/kthread.c:376 [<ffffffff8100226f>] ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:306 BUG: memory leak unreferenced object 0xffff8881135b4c00 (size 512): comm "kworker/1:2", pid 140, jiffies 4295050592 (age 57.330s) hex dump (first 32 bytes): 00 00 33 33 00 00 00 02 32 d7 1f 03 10 0b 86 dd ..33....2....... 60 00 00 00 00 10 3a ff fe 80 00 00 00 00 00 00 `.....:......... backtrace: [<ffffffff838732bd>] kmalloc_reserve net/core/skbuff.c:358 [inline] [<ffffffff838732bd>] __alloc_skb+0xdd/0x270 net/core/skbuff.c:430 [<ffffffff83d30426>] alloc_skb include/linux/skbuff.h:1257 [inline] [<ffffffff83d30426>] ndisc_alloc_skb+0x56/0xe0 net/ipv6/ndisc.c:421 [<ffffffff83d3535c>] ndisc_send_rs+0x1bc/0x2a0 net/ipv6/ndisc.c:702 [<ffffffff83d0b03e>] addrconf_dad_completed+0x17e/0x590 net/ipv6/addrconf.c:4244 [<ffffffff83d0b825>] addrconf_dad_work+0x3d5/0x8f0 net/ipv6/addrconf.c:4153 [<ffffffff8127adda>] process_one_work+0x2ba/0x5f0 kernel/workqueue.c:2289 [<ffffffff8127b6f9>] worker_thread+0x59/0x5b0 kernel/workqueue.c:2436 [<ffffffff81284aa5>] kthread+0x125/0x160 kernel/kthread.c:376 [<ffffffff8100226f>] ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:306 BUG: memory leak unreferenced object 0xffff8881133c6800 (size 2048): comm "kworker/1:2", pid 140, jiffies 4295050640 (age 56.850s) hex dump (first 32 bytes): 00 00 33 33 00 00 00 16 aa aa aa aa aa 1b 86 dd ..33............ 60 00 00 00 00 38 00 01 fe 80 00 00 00 00 00 00 `....8.......... backtrace: [<ffffffff838732bd>] kmalloc_reserve net/core/skbuff.c:358 [inline] [<ffffffff838732bd>] __alloc_skb+0xdd/0x270 net/core/skbuff.c:430 [<ffffffff83879dda>] alloc_skb include/linux/skbuff.h:1257 [inline] [<ffffffff83879dda>] alloc_skb_with_frags+0x6a/0x340 net/core/skbuff.c:6018 [<ffffffff8386c90f>] sock_alloc_send_pskb+0x39f/0x3d0 net/core/sock.c:2663 [<ffffffff83d455e1>] sock_alloc_send_skb include/net/sock.h:1841 [inline] [<ffffffff83d455e1>] mld_newpack.isra.0+0x81/0x200 net/ipv6/mcast.c:1748 [<ffffffff83d45806>] add_grhead+0xa6/0xc0 net/ipv6/mcast.c:1851 [<ffffffff83d45fdc>] add_grec+0x7bc/0x820 net/ipv6/mcast.c:1989 [<ffffffff83d46192>] mld_send_initial_cr.part.0.isra.0+0x52/0x80 net/ipv6/mcast.c:2236 [<ffffffff83d4854b>] mld_send_initial_cr net/ipv6/mcast.c:1232 [inline] [<ffffffff83d4854b>] mld_dad_work+0xab/0x340 net/ipv6/mcast.c:2262 [<ffffffff8127adda>] process_one_work+0x2ba/0x5f0 kernel/workqueue.c:2289 [<ffffffff8127b6f9>] worker_thread+0x59/0x5b0 kernel/workqueue.c:2436 [<ffffffff81284aa5>] kthread+0x125/0x160 kernel/kthread.c:376 [<ffffffff8100226f>] ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:306

Crashes (3):
Time	Kernel	Commit	Syzkaller	Config	Log	Report	Syz repro	C repro	Manager	Title
2022/08/12 13:13	upstream	7ebfc85e2cd7	402cd70d	.config	console log	report	syz	C	ci-upstream-gce-leak	memory leak in ndisc_ns_create
2022/07/08 07:07	upstream	e8a4e1c1bb69	bff65f44	.config	console log	report	syz	C	ci-upstream-gce-leak	memory leak in ndisc_ns_create
2022/08/20 08:07	upstream	4c2d0b039c5c	26a13b38	.config	console log	report	syz		ci-upstream-gce-leak	memory leak in ndisc_ns_create

Crashes (3):

Assets (help?)