memory leak in r8712_init_recv

memory leak in r8712_init_recv_priv
Status: upstream: reported C repro on 2020/12/21 03:34
Reported-by: syzbot+1c46f3771695bccbdb3a@syzkaller.appspotmail.com
First crash: 39d, last: 18d

Sample crash report:

BUG: memory leak
unreferenced object 0xffff888105903180 (size 192):
  comm "kworker/0:2", pid 3640, jiffies 4294942266 (age 8.160s)
  hex dump (first 32 bytes):
    01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
    00 00 00 00 00 00 00 00 98 31 90 05 81 88 ff ff  .........1......
  backtrace:
    [<00000000f479acf3>] kmalloc include/linux/slab.h:557 [inline]
    [<00000000f479acf3>] usb_alloc_urb+0x66/0xe0 drivers/usb/core/urb.c:74
    [<00000000d192f922>] r8712_os_recvbuf_resource_alloc+0x1b/0x80 drivers/staging/rtl8712/recv_linux.c:46
    [<000000002a5d2b78>] r8712_init_recv_priv+0x96/0x210 drivers/staging/rtl8712/rtl8712_recv.c:54
    [<000000007cd2818b>] _r8712_init_recv_priv+0x134/0x150 drivers/staging/rtl8712/rtl871x_recv.c:78
    [<00000000982a7686>] r8712_init_drv_sw+0xa0/0x1d0 drivers/staging/rtl8712/os_intfs.c:312
    [<000000006a98bade>] r871xu_drv_init.cold+0x104/0x7d1 drivers/staging/rtl8712/usb_intf.c:391
    [<00000000a108fbc7>] usb_probe_interface+0x177/0x370 drivers/usb/core/driver.c:396
    [<000000007d7ca145>] really_probe+0x159/0x480 drivers/base/dd.c:561
    [<000000004bc28a1c>] driver_probe_device+0x84/0x100 drivers/base/dd.c:745
    [<000000006279acc7>] __device_attach_driver+0xee/0x110 drivers/base/dd.c:851
    [<00000000039d78a2>] bus_for_each_drv+0xb7/0x100 drivers/base/bus.c:431
    [<00000000e2f3f443>] __device_attach+0x122/0x250 drivers/base/dd.c:919
    [<000000005cc7fe44>] bus_probe_device+0xc6/0xe0 drivers/base/bus.c:491
    [<000000004224f8bf>] device_add+0x5be/0xc30 drivers/base/core.c:3091
    [<00000000aa90f0ae>] usb_set_configuration+0x9d9/0xb90 drivers/usb/core/message.c:2164
    [<00000000baaa3f52>] usb_generic_driver_probe+0x8c/0xc0 drivers/usb/core/generic.c:238

BUG: memory leak
unreferenced object 0xffff8881059030c0 (size 192):
  comm "kworker/0:2", pid 3640, jiffies 4294942266 (age 8.160s)
  hex dump (first 32 bytes):
    01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
    00 00 00 00 00 00 00 00 d8 30 90 05 81 88 ff ff  .........0......
  backtrace:
    [<00000000f479acf3>] kmalloc include/linux/slab.h:557 [inline]
    [<00000000f479acf3>] usb_alloc_urb+0x66/0xe0 drivers/usb/core/urb.c:74
    [<00000000d192f922>] r8712_os_recvbuf_resource_alloc+0x1b/0x80 drivers/staging/rtl8712/recv_linux.c:46
    [<000000002a5d2b78>] r8712_init_recv_priv+0x96/0x210 drivers/staging/rtl8712/rtl8712_recv.c:54
    [<000000007cd2818b>] _r8712_init_recv_priv+0x134/0x150 drivers/staging/rtl8712/rtl871x_recv.c:78
    [<00000000982a7686>] r8712_init_drv_sw+0xa0/0x1d0 drivers/staging/rtl8712/os_intfs.c:312
    [<000000006a98bade>] r871xu_drv_init.cold+0x104/0x7d1 drivers/staging/rtl8712/usb_intf.c:391
    [<00000000a108fbc7>] usb_probe_interface+0x177/0x370 drivers/usb/core/driver.c:396
    [<000000007d7ca145>] really_probe+0x159/0x480 drivers/base/dd.c:561
    [<000000004bc28a1c>] driver_probe_device+0x84/0x100 drivers/base/dd.c:745
    [<000000006279acc7>] __device_attach_driver+0xee/0x110 drivers/base/dd.c:851
    [<00000000039d78a2>] bus_for_each_drv+0xb7/0x100 drivers/base/bus.c:431
    [<00000000e2f3f443>] __device_attach+0x122/0x250 drivers/base/dd.c:919
    [<000000005cc7fe44>] bus_probe_device+0xc6/0xe0 drivers/base/bus.c:491
    [<000000004224f8bf>] device_add+0x5be/0xc30 drivers/base/core.c:3091
    [<00000000aa90f0ae>] usb_set_configuration+0x9d9/0xb90 drivers/usb/core/message.c:2164
    [<00000000baaa3f52>] usb_generic_driver_probe+0x8c/0xc0 drivers/usb/core/generic.c:238

BUG: memory leak
unreferenced object 0xffff888109bc4f00 (size 192):
  comm "kworker/0:2", pid 3640, jiffies 4294942266 (age 8.160s)
  hex dump (first 32 bytes):
    01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
    00 00 00 00 00 00 00 00 18 4f bc 09 81 88 ff ff  .........O......
  backtrace:
    [<00000000f479acf3>] kmalloc include/linux/slab.h:557 [inline]
    [<00000000f479acf3>] usb_alloc_urb+0x66/0xe0 drivers/usb/core/urb.c:74
    [<00000000d192f922>] r8712_os_recvbuf_resource_alloc+0x1b/0x80 drivers/staging/rtl8712/recv_linux.c:46
    [<000000002a5d2b78>] r8712_init_recv_priv+0x96/0x210 drivers/staging/rtl8712/rtl8712_recv.c:54
    [<000000007cd2818b>] _r8712_init_recv_priv+0x134/0x150 drivers/staging/rtl8712/rtl871x_recv.c:78
    [<00000000982a7686>] r8712_init_drv_sw+0xa0/0x1d0 drivers/staging/rtl8712/os_intfs.c:312
    [<000000006a98bade>] r871xu_drv_init.cold+0x104/0x7d1 drivers/staging/rtl8712/usb_intf.c:391
    [<00000000a108fbc7>] usb_probe_interface+0x177/0x370 drivers/usb/core/driver.c:396
    [<000000007d7ca145>] really_probe+0x159/0x480 drivers/base/dd.c:561
    [<000000004bc28a1c>] driver_probe_device+0x84/0x100 drivers/base/dd.c:745
    [<000000006279acc7>] __device_attach_driver+0xee/0x110 drivers/base/dd.c:851
    [<00000000039d78a2>] bus_for_each_drv+0xb7/0x100 drivers/base/bus.c:431
    [<00000000e2f3f443>] __device_attach+0x122/0x250 drivers/base/dd.c:919
    [<000000005cc7fe44>] bus_probe_device+0xc6/0xe0 drivers/base/bus.c:491
    [<000000004224f8bf>] device_add+0x5be/0xc30 drivers/base/core.c:3091
    [<00000000aa90f0ae>] usb_set_configuration+0x9d9/0xb90 drivers/usb/core/message.c:2164
    [<00000000baaa3f52>] usb_generic_driver_probe+0x8c/0xc0 drivers/usb/core/generic.c:238

Crashes (10):
Manager	Time	Kernel	Commit	Syzkaller	Config	Log	Report	Syz repro	C repro	Maintainers
ci-upstream-gce-leak	2021/01/07 01:14	upstream	9f1abbe9	c104d4a3	.config	log	report	syz	C	Larry.Finger@lwfinger.net, devel@driverdev.osuosl.org, florian.c.schilhabel@googlemail.com, gregkh@linuxfoundation.org, linux-kernel@vger.kernel.org
ci-upstream-gce-leak	2021/01/07 01:01	upstream	9f1abbe9	c104d4a3	.config	log	report	syz	C	Larry.Finger@lwfinger.net, devel@driverdev.osuosl.org, florian.c.schilhabel@googlemail.com, gregkh@linuxfoundation.org, linux-kernel@vger.kernel.org
ci-upstream-gce-leak	2020/12/26 09:05	upstream	5814bc2d	821e0b09	.config	log	report	syz	C	Larry.Finger@lwfinger.net, devel@driverdev.osuosl.org, florian.c.schilhabel@googlemail.com, gregkh@linuxfoundation.org, linux-kernel@vger.kernel.org
ci-upstream-gce-leak	2020/12/25 14:37	upstream	71c5f031	b982b3ea	.config	log	report	syz	C	Larry.Finger@lwfinger.net, devel@driverdev.osuosl.org, florian.c.schilhabel@googlemail.com, gregkh@linuxfoundation.org, linux-kernel@vger.kernel.org
ci-upstream-gce-leak	2020/12/24 20:38	upstream	58cf05f5	c2c1d1dd	.config	log	report	syz	C	Larry.Finger@lwfinger.net, devel@driverdev.osuosl.org, florian.c.schilhabel@googlemail.com, gregkh@linuxfoundation.org, linux-kernel@vger.kernel.org
ci-upstream-gce-leak	2020/12/22 15:48	upstream	8653b778	04201c06	.config	log	report	syz	C	Larry.Finger@lwfinger.net, devel@driverdev.osuosl.org, florian.c.schilhabel@googlemail.com, gregkh@linuxfoundation.org, linux-kernel@vger.kernel.org
ci-upstream-gce-leak	2020/12/20 12:33	upstream	467f8165	04201c06	.config	log	report	syz	C	Larry.Finger@lwfinger.net, devel@driverdev.osuosl.org, florian.c.schilhabel@googlemail.com, gregkh@linuxfoundation.org, linux-kernel@vger.kernel.org
ci-upstream-gce-leak	2020/12/19 01:07	upstream	a409ed15	04201c06	.config	log	report	syz	C	Larry.Finger@lwfinger.net, devel@driverdev.osuosl.org, florian.c.schilhabel@googlemail.com, gregkh@linuxfoundation.org, linux-kernel@vger.kernel.org
ci-upstream-gce-leak	2020/12/17 18:13	upstream	accefff5	04201c06	.config	log	report	syz	C	Larry.Finger@lwfinger.net, devel@driverdev.osuosl.org, florian.c.schilhabel@googlemail.com, gregkh@linuxfoundation.org, linux-kernel@vger.kernel.org
ci-upstream-gce-leak	2020/12/17 03:28	upstream	5e60366d	04201c06	.config	log	report	syz	C	Larry.Finger@lwfinger.net, devel@driverdev.osuosl.org, florian.c.schilhabel@googlemail.com, gregkh@linuxfoundation.org, linux-kernel@vger.kernel.org