syzbot


memory leak in rds_send_probe

Status: fixed on 2021/11/10 00:50
Reported-by: syzbot+5134cdf021c4ed5aaa5f@syzkaller.appspotmail.com
Fix commit: 49bfcbfd989a net: rds: fix memory leak in rds_recvmsg
First crash: 1294d, last: 751d

Cause bisection: introduced by (bisect log) :
commit af49a63e101eb62376cc1d6bd25b97eb8c691d54
Author: Matthew Wilcox <willy@linux.intel.com>
Date: Sat May 21 00:03:33 2016 +0000

  radix-tree: change naming conventions in radix_tree_shrink

Crash: memory leak in next_bio (log)
Repro: C syz .config
Last patch testing requests:
Created Duration User Patch Repo Result
2021/06/07 16:44 16m paskripkin@gmail.com patch upstream OK
2021/04/11 07:50 7m yildirim.fatih@gmail.com patch upstream report log
2021/03/12 15:34 7m yildirim.fatih@gmail.com upstream report log

Sample crash report:
Debian GNU/Linux 9 syzkaller ttyS0
Warning: Permanently added '10.128.0.146' (ECDSA) to the list of known hosts.
executing program
executing program
executing program
BUG: memory leak
unreferenced object 0xffff88810876c200 (size 512):
  comm "syz-executor350", pid 8483, jiffies 4294943292 (age 13.550s)
  hex dump (first 32 bytes):
    01 00 00 00 00 00 00 00 08 c2 76 08 81 88 ff ff  ..........v.....
    08 c2 76 08 81 88 ff ff 18 c2 76 08 81 88 ff ff  ..v.......v.....
  backtrace:
    [<00000000fbb10817>] kmalloc include/linux/slab.h:557 [inline]
    [<00000000fbb10817>] kzalloc include/linux/slab.h:682 [inline]
    [<00000000fbb10817>] rds_message_alloc+0x40/0xc0 net/rds/message.c:291
    [<000000001ac198e5>] rds_send_probe.constprop.0+0x42/0x3e0 net/rds/send.c:1434
    [<000000001bd1f2fa>] rds_recv_incoming+0x252/0x690 net/rds/recv.c:343
    [<00000000c65e3d21>] rds_loop_xmit+0xa3/0x120 net/rds/loop.c:96
    [<00000000ce7b6654>] rds_send_xmit+0x763/0xe20 net/rds/send.c:367
    [<00000000814997e7>] rds_sendmsg+0x16cd/0x1970 net/rds/send.c:1382
    [<0000000002df8577>] sock_sendmsg_nosec net/socket.c:652 [inline]
    [<0000000002df8577>] sock_sendmsg+0x56/0x80 net/socket.c:672
    [<000000004b22eb26>] __sys_sendto+0x15c/0x200 net/socket.c:1975
    [<000000005452504a>] __do_sys_sendto net/socket.c:1987 [inline]
    [<000000005452504a>] __se_sys_sendto net/socket.c:1983 [inline]
    [<000000005452504a>] __x64_sys_sendto+0x26/0x30 net/socket.c:1983
    [<000000007167884c>] do_syscall_64+0x2d/0x70 arch/x86/entry/common.c:46
    [<0000000073d9f733>] entry_SYSCALL_64_after_hwframe+0x44/0xa9


Crashes (27):
Manager Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets Title
ci-upstream-gce-leak 2021/01/16 03:16 upstream 5ee88057889b 65a7a854 .config console log report syz C
ci-upstream-gce-leak 2021/01/01 14:21 upstream f6e1ea196492 79264ae3 .config console log report syz C
ci-upstream-gce-leak 2020/11/30 16:50 upstream b65054597872 78d50c1d .config console log report syz C
ci-upstream-gce-leak 2020/09/04 00:36 upstream e28f0104343d abf9ba4f .config console log report syz C
ci-upstream-gce-leak 2020/07/04 10:30 upstream 7cc2a8ea1048 51095195 .config console log report syz C
ci-upstream-gce-leak 2020/05/17 00:44 upstream 3d1c1e5931ce 37bccd4e .config console log report syz C
ci-upstream-gce-leak 2020/04/07 14:55 upstream 7e63420847ae 99a96044 .config console log report syz C
ci-upstream-gce-leak 2020/03/19 05:48 upstream 5076190daded 0a96a13c .config console log report syz C
ci-upstream-gce-leak 2020/03/17 11:57 upstream fb33c6510d55 749688d2 .config console log report syz C
ci-upstream-gce-leak 2020/03/14 11:24 upstream fffb08b37df9 749688d2 .config console log report syz C
ci-upstream-gce-leak 2020/03/12 16:49 upstream e6e6ec48dd0f d850e9d0 .config console log report syz C
ci-upstream-gce-leak 2020/03/03 06:42 upstream 63623fd44972 c88c7b75 .config console log report syz C
ci-upstream-gce-leak 2020/02/26 17:06 upstream f8788d86ab28 59b57593 .config console log report syz C
ci-upstream-gce-leak 2020/02/08 06:01 upstream 41dcd67e8868 06150bf1 .config console log report syz C
ci-upstream-gce-leak 2020/01/31 11:16 upstream 9f68e3655aae 5ed23f9a .config console log report syz C
ci-upstream-gce-leak 2020/01/25 03:15 upstream 6381b442836e 2e95ab33 .config console log report syz C
ci-upstream-gce-leak 2020/01/10 21:15 upstream e69ec487b2c7 4de4e9f0 .config console log report syz C
ci-upstream-gce-leak 2020/01/10 18:38 upstream e69ec487b2c7 4de4e9f0 .config console log report syz C
ci-upstream-gce-leak 2019/12/26 13:03 upstream 46cf053efec6 be5c2c81 .config console log report syz C
ci-upstream-gce-leak 2019/10/31 17:51 upstream e472c64aa4fa a41ca8fa .config console log report syz C
ci-upstream-gce-leak 2019/10/11 11:43 upstream 9e208aa06c21 1a3bad90 .config console log report syz C
ci-upstream-gce-leak 2019/10/04 07:32 upstream cc3a7bfe62b9 fc17ba49 .config console log report syz C
ci-upstream-gce-leak 2019/10/04 06:54 upstream cc3a7bfe62b9 fc17ba49 .config console log report syz C
ci-upstream-gce-leak 2019/09/03 20:25 upstream 089cf7f6ecb2 48448e71 .config console log report syz C
ci-upstream-gce-leak 2019/08/28 01:16 upstream 6525771f58cb fd37b39e .config console log report syz C
ci-upstream-gce-leak 2019/07/23 11:19 upstream c6dd78fcb8ee 55e0c077 .config console log report syz C
ci-upstream-gce-leak 2020/04/10 23:16 upstream c0cc271173b2 a8c6a3f8 .config console log report syz
* Struck through repros no longer work on HEAD.