memory leak in ndisc_ns

Kernel	Title	Repro	Cause bisect	Fix bisect	Count	Last	Reported	Patched	Status
upstream	memory leak in ndisc_ns_create (2) net	syz			1	417d	417d	0/26	auto-obsoleted due to no activity on 2023/07/10 07:02

BUG: memory leak
unreferenced object 0xffff8881134cea00 (size 512):
  comm "kworker/1:2", pid 140, jiffies 4295050537 (age 57.880s)
  hex dump (first 32 bytes):
    00 00 33 33 ff 00 00 1b aa aa aa aa aa 1b 86 dd  ..33............
    60 00 00 00 00 20 3a ff 00 00 00 00 00 00 00 00  `.... :.........
  backtrace:
    [<ffffffff838732bd>] kmalloc_reserve net/core/skbuff.c:358 [inline]
    [<ffffffff838732bd>] __alloc_skb+0xdd/0x270 net/core/skbuff.c:430
    [<ffffffff83d30426>] alloc_skb include/linux/skbuff.h:1257 [inline]
    [<ffffffff83d30426>] ndisc_alloc_skb+0x56/0xe0 net/ipv6/ndisc.c:421
    [<ffffffff83d30bd6>] ndisc_ns_create+0xa6/0x260 net/ipv6/ndisc.c:621
    [<ffffffff83d34fbd>] ndisc_send_ns+0x4d/0xc0 net/ipv6/ndisc.c:663
    [<ffffffff83d0ba8b>] addrconf_dad_work+0x63b/0x8f0 net/ipv6/addrconf.c:4167
    [<ffffffff8127adda>] process_one_work+0x2ba/0x5f0 kernel/workqueue.c:2289
    [<ffffffff8127b6f9>] worker_thread+0x59/0x5b0 kernel/workqueue.c:2436
    [<ffffffff81284aa5>] kthread+0x125/0x160 kernel/kthread.c:376
    [<ffffffff8100226f>] ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:306

BUG: memory leak
unreferenced object 0xffff88811345a800 (size 2048):
  comm "kworker/1:2", pid 140, jiffies 4295050584 (age 57.410s)
  hex dump (first 32 bytes):
    00 00 33 33 00 00 00 16 32 d7 1f 03 10 0b 86 dd  ..33....2.......
    60 00 00 00 00 24 00 01 00 00 00 00 00 00 00 00  `....$..........
  backtrace:
    [<ffffffff838732bd>] kmalloc_reserve net/core/skbuff.c:358 [inline]
    [<ffffffff838732bd>] __alloc_skb+0xdd/0x270 net/core/skbuff.c:430
    [<ffffffff83879dda>] alloc_skb include/linux/skbuff.h:1257 [inline]
    [<ffffffff83879dda>] alloc_skb_with_frags+0x6a/0x340 net/core/skbuff.c:6018
    [<ffffffff8386c90f>] sock_alloc_send_pskb+0x39f/0x3d0 net/core/sock.c:2663
    [<ffffffff83d455e1>] sock_alloc_send_skb include/net/sock.h:1841 [inline]
    [<ffffffff83d455e1>] mld_newpack.isra.0+0x81/0x200 net/ipv6/mcast.c:1748
    [<ffffffff83d45806>] add_grhead+0xa6/0xc0 net/ipv6/mcast.c:1851
    [<ffffffff83d45fdc>] add_grec+0x7bc/0x820 net/ipv6/mcast.c:1989
    [<ffffffff83d47fc3>] mld_send_cr net/ipv6/mcast.c:2115 [inline]
    [<ffffffff83d47fc3>] mld_ifc_work+0x273/0x750 net/ipv6/mcast.c:2653
    [<ffffffff8127adda>] process_one_work+0x2ba/0x5f0 kernel/workqueue.c:2289
    [<ffffffff8127b6f9>] worker_thread+0x59/0x5b0 kernel/workqueue.c:2436
    [<ffffffff81284aa5>] kthread+0x125/0x160 kernel/kthread.c:376
    [<ffffffff8100226f>] ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:306

BUG: memory leak
unreferenced object 0xffff8881135b4c00 (size 512):
  comm "kworker/1:2", pid 140, jiffies 4295050592 (age 57.330s)
  hex dump (first 32 bytes):
    00 00 33 33 00 00 00 02 32 d7 1f 03 10 0b 86 dd  ..33....2.......
    60 00 00 00 00 10 3a ff fe 80 00 00 00 00 00 00  `.....:.........
  backtrace:
    [<ffffffff838732bd>] kmalloc_reserve net/core/skbuff.c:358 [inline]
    [<ffffffff838732bd>] __alloc_skb+0xdd/0x270 net/core/skbuff.c:430
    [<ffffffff83d30426>] alloc_skb include/linux/skbuff.h:1257 [inline]
    [<ffffffff83d30426>] ndisc_alloc_skb+0x56/0xe0 net/ipv6/ndisc.c:421
    [<ffffffff83d3535c>] ndisc_send_rs+0x1bc/0x2a0 net/ipv6/ndisc.c:702
    [<ffffffff83d0b03e>] addrconf_dad_completed+0x17e/0x590 net/ipv6/addrconf.c:4244
    [<ffffffff83d0b825>] addrconf_dad_work+0x3d5/0x8f0 net/ipv6/addrconf.c:4153
    [<ffffffff8127adda>] process_one_work+0x2ba/0x5f0 kernel/workqueue.c:2289
    [<ffffffff8127b6f9>] worker_thread+0x59/0x5b0 kernel/workqueue.c:2436
    [<ffffffff81284aa5>] kthread+0x125/0x160 kernel/kthread.c:376
    [<ffffffff8100226f>] ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:306

BUG: memory leak
unreferenced object 0xffff8881133c6800 (size 2048):
  comm "kworker/1:2", pid 140, jiffies 4295050640 (age 56.850s)
  hex dump (first 32 bytes):
    00 00 33 33 00 00 00 16 aa aa aa aa aa 1b 86 dd  ..33............
    60 00 00 00 00 38 00 01 fe 80 00 00 00 00 00 00  `....8..........
  backtrace:
    [<ffffffff838732bd>] kmalloc_reserve net/core/skbuff.c:358 [inline]
    [<ffffffff838732bd>] __alloc_skb+0xdd/0x270 net/core/skbuff.c:430
    [<ffffffff83879dda>] alloc_skb include/linux/skbuff.h:1257 [inline]
    [<ffffffff83879dda>] alloc_skb_with_frags+0x6a/0x340 net/core/skbuff.c:6018
    [<ffffffff8386c90f>] sock_alloc_send_pskb+0x39f/0x3d0 net/core/sock.c:2663
    [<ffffffff83d455e1>] sock_alloc_send_skb include/net/sock.h:1841 [inline]
    [<ffffffff83d455e1>] mld_newpack.isra.0+0x81/0x200 net/ipv6/mcast.c:1748
    [<ffffffff83d45806>] add_grhead+0xa6/0xc0 net/ipv6/mcast.c:1851
    [<ffffffff83d45fdc>] add_grec+0x7bc/0x820 net/ipv6/mcast.c:1989
    [<ffffffff83d46192>] mld_send_initial_cr.part.0.isra.0+0x52/0x80 net/ipv6/mcast.c:2236
    [<ffffffff83d4854b>] mld_send_initial_cr net/ipv6/mcast.c:1232 [inline]
    [<ffffffff83d4854b>] mld_dad_work+0xab/0x340 net/ipv6/mcast.c:2262
    [<ffffffff8127adda>] process_one_work+0x2ba/0x5f0 kernel/workqueue.c:2289
    [<ffffffff8127b6f9>] worker_thread+0x59/0x5b0 kernel/workqueue.c:2436
    [<ffffffff81284aa5>] kthread+0x125/0x160 kernel/kthread.c:376
    [<ffffffff8100226f>] ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:306

Time	Kernel	Commit	Syzkaller	Config	Log	Report	Syz repro	C repro	Manager	Title
2022/08/12 13:13	upstream	7ebfc85e2cd7	402cd70d	.config	console log	report	syz	C	ci-upstream-gce-leak	memory leak in ndisc_ns_create
2022/07/08 07:07	upstream	e8a4e1c1bb69	bff65f44	.config	console log	report	syz	C	ci-upstream-gce-leak	memory leak in ndisc_ns_create
2022/08/20 08:07	upstream	4c2d0b039c5c	26a13b38	.config	console log	report	syz		ci-upstream-gce-leak	memory leak in ndisc_ns_create