memory leak in r8712_init_recv

memory leak in r8712_init_recv_priv
Status: upstream: reported C repro on 2020/12/21 03:34
Reported-by: syzbot+1c46f3771695bccbdb3a@syzkaller.appspotmail.com
First crash: 223d, last: 33d

Patch testing requests:
Created	Duration	User	Repo	Result
2021/06/13 19:17	8m	paskripkin@gmail.com	https://github.com/pskrgag/linux.git rtl8712_memleak	report log
2021/05/24 07:50	8m	mudongliangabcd@gmail.com	https://github.com/mudongliang/linux 082e30b9ed6e17274e45f978337c2aeba5565b42	report log
2021/05/21 15:49	8m	mudongliangabcd@gmail.com	https://github.com/mudongliang/linux bugfix3	report log
2021/05/21 11:28	9m	mudongliangabcd@gmail.com	https://github.com/mudongliang/linux/ 94da8b19f806b97b79b06d9e8151e321d0a54b45	report log
2021/05/21 06:45	8m	mudongliangabcd@gmail.com	https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git master	report log

Sample crash report:

BUG: memory leak
unreferenced object 0xffff88810ff9be40 (size 192):
  comm "kworker/0:2", pid 3653, jiffies 4294942228 (age 8.250s)
  hex dump (first 32 bytes):
    01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
    00 00 00 00 00 00 00 00 58 be f9 0f 81 88 ff ff  ........X.......
  backtrace:
    [<00000000e0748eb7>] kmalloc include/linux/slab.h:557 [inline]
    [<00000000e0748eb7>] usb_alloc_urb+0x66/0xe0 drivers/usb/core/urb.c:74
    [<00000000fe5a9432>] r8712_os_recvbuf_resource_alloc+0x1b/0x80 drivers/staging/rtl8712/recv_linux.c:46
    [<00000000923fed72>] r8712_init_recv_priv+0x96/0x210 drivers/staging/rtl8712/rtl8712_recv.c:54
    [<000000000038512f>] _r8712_init_recv_priv+0x134/0x150 drivers/staging/rtl8712/rtl871x_recv.c:78
    [<0000000066e70a4e>] r8712_init_drv_sw+0xa0/0x1d0 drivers/staging/rtl8712/os_intfs.c:312
    [<000000001d2974c0>] r871xu_drv_init.cold+0x104/0x7d1 drivers/staging/rtl8712/usb_intf.c:391
    [<000000001d449ce2>] usb_probe_interface+0x177/0x370 drivers/usb/core/driver.c:396
    [<00000000cd123d34>] really_probe+0x159/0x4a0 drivers/base/dd.c:554
    [<00000000364585cc>] driver_probe_device+0x84/0x100 drivers/base/dd.c:740
    [<0000000048b74bde>] __device_attach_driver+0xee/0x110 drivers/base/dd.c:846
    [<00000000c358ab15>] bus_for_each_drv+0xb7/0x100 drivers/base/bus.c:431
    [<00000000bfa9b076>] __device_attach+0x122/0x250 drivers/base/dd.c:914
    [<0000000048fe302a>] bus_probe_device+0xc6/0xe0 drivers/base/bus.c:491
    [<000000002ceae175>] device_add+0x5be/0xc30 drivers/base/core.c:3109
    [<00000000e4813a0d>] usb_set_configuration+0x9d9/0xb90 drivers/usb/core/message.c:2164
    [<00000000cbb8c98f>] usb_generic_driver_probe+0x8c/0xc0 drivers/usb/core/generic.c:238

BUG: memory leak
unreferenced object 0xffff88810ff9b3c0 (size 192):
  comm "kworker/0:2", pid 3653, jiffies 4294942228 (age 8.250s)
  hex dump (first 32 bytes):
    01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
    00 00 00 00 00 00 00 00 d8 b3 f9 0f 81 88 ff ff  ................
  backtrace:
    [<00000000e0748eb7>] kmalloc include/linux/slab.h:557 [inline]
    [<00000000e0748eb7>] usb_alloc_urb+0x66/0xe0 drivers/usb/core/urb.c:74
    [<00000000fe5a9432>] r8712_os_recvbuf_resource_alloc+0x1b/0x80 drivers/staging/rtl8712/recv_linux.c:46
    [<00000000923fed72>] r8712_init_recv_priv+0x96/0x210 drivers/staging/rtl8712/rtl8712_recv.c:54
    [<000000000038512f>] _r8712_init_recv_priv+0x134/0x150 drivers/staging/rtl8712/rtl871x_recv.c:78
    [<0000000066e70a4e>] r8712_init_drv_sw+0xa0/0x1d0 drivers/staging/rtl8712/os_intfs.c:312
    [<000000001d2974c0>] r871xu_drv_init.cold+0x104/0x7d1 drivers/staging/rtl8712/usb_intf.c:391
    [<000000001d449ce2>] usb_probe_interface+0x177/0x370 drivers/usb/core/driver.c:396
    [<00000000cd123d34>] really_probe+0x159/0x4a0 drivers/base/dd.c:554
    [<00000000364585cc>] driver_probe_device+0x84/0x100 drivers/base/dd.c:740
    [<0000000048b74bde>] __device_attach_driver+0xee/0x110 drivers/base/dd.c:846
    [<00000000c358ab15>] bus_for_each_drv+0xb7/0x100 drivers/base/bus.c:431
    [<00000000bfa9b076>] __device_attach+0x122/0x250 drivers/base/dd.c:914
    [<0000000048fe302a>] bus_probe_device+0xc6/0xe0 drivers/base/bus.c:491
    [<000000002ceae175>] device_add+0x5be/0xc30 drivers/base/core.c:3109
    [<00000000e4813a0d>] usb_set_configuration+0x9d9/0xb90 drivers/usb/core/message.c:2164
    [<00000000cbb8c98f>] usb_generic_driver_probe+0x8c/0xc0 drivers/usb/core/generic.c:238

BUG: memory leak
unreferenced object 0xffff88810ff9b540 (size 192):
  comm "kworker/0:2", pid 3653, jiffies 4294942228 (age 8.250s)
  hex dump (first 32 bytes):
    01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
    00 00 00 00 00 00 00 00 58 b5 f9 0f 81 88 ff ff  ........X.......
  backtrace:
    [<00000000e0748eb7>] kmalloc include/linux/slab.h:557 [inline]
    [<00000000e0748eb7>] usb_alloc_urb+0x66/0xe0 drivers/usb/core/urb.c:74
    [<00000000fe5a9432>] r8712_os_recvbuf_resource_alloc+0x1b/0x80 drivers/staging/rtl8712/recv_linux.c:46
    [<00000000923fed72>] r8712_init_recv_priv+0x96/0x210 drivers/staging/rtl8712/rtl8712_recv.c:54
    [<000000000038512f>] _r8712_init_recv_priv+0x134/0x150 drivers/staging/rtl8712/rtl871x_recv.c:78
    [<0000000066e70a4e>] r8712_init_drv_sw+0xa0/0x1d0 drivers/staging/rtl8712/os_intfs.c:312
    [<000000001d2974c0>] r871xu_drv_init.cold+0x104/0x7d1 drivers/staging/rtl8712/usb_intf.c:391
    [<000000001d449ce2>] usb_probe_interface+0x177/0x370 drivers/usb/core/driver.c:396
    [<00000000cd123d34>] really_probe+0x159/0x4a0 drivers/base/dd.c:554
    [<00000000364585cc>] driver_probe_device+0x84/0x100 drivers/base/dd.c:740
    [<0000000048b74bde>] __device_attach_driver+0xee/0x110 drivers/base/dd.c:846
    [<00000000c358ab15>] bus_for_each_drv+0xb7/0x100 drivers/base/bus.c:431
    [<00000000bfa9b076>] __device_attach+0x122/0x250 drivers/base/dd.c:914
    [<0000000048fe302a>] bus_probe_device+0xc6/0xe0 drivers/base/bus.c:491
    [<000000002ceae175>] device_add+0x5be/0xc30 drivers/base/core.c:3109
    [<00000000e4813a0d>] usb_set_configuration+0x9d9/0xb90 drivers/usb/core/message.c:2164
    [<00000000cbb8c98f>] usb_generic_driver_probe+0x8c/0xc0 drivers/usb/core/generic.c:238

Crashes (25):
Manager	Time	Kernel	Commit	Syzkaller	Config	Log	Report	Syz repro	C repro	Title
ci-upstream-gce-leak	2021/02/18 03:34	upstream	f40ddce88593	14052202	.config	log	report	syz	C	memory leak in r8712_init_recv_priv
ci-upstream-gce-leak	2021/02/15 05:20	upstream	f40ddce88593	98682e5e	.config	log	report	syz	C	memory leak in r8712_init_recv_priv
ci-upstream-gce-leak	2021/02/14 06:34	upstream	ac30d8ce28d6	98682e5e	.config	log	report	syz	C	memory leak in r8712_init_recv_priv
ci-upstream-gce-leak	2021/02/10 03:52	upstream	e0756cfc7d7c	2bd9619f	.config	log	report	syz	C	memory leak in r8712_init_recv_priv
ci-upstream-gce-leak	2021/02/04 15:23	upstream	61556703b610	42b90a7c	.config	log	report	syz	C	memory leak in r8712_init_recv_priv
ci-upstream-gce-leak	2021/01/31 10:18	upstream	8c947645151c	fc9fd31e	.config	log	report	syz	C	memory leak in r8712_init_recv_priv
ci-upstream-gce-leak	2021/01/28 09:21	upstream	76c057c84d28	eefc07f2	.config	log	report	syz	C	memory leak in r8712_init_recv_priv
ci-upstream-gce-leak	2021/01/26 23:15	upstream	13391c60da33	55a7d4df	.config	log	report	syz	C	memory leak in r8712_init_recv_priv
ci-upstream-gce-leak	2021/01/07 01:14	upstream	9f1abbe97c08	c104d4a3	.config	log	report	syz	C
ci-upstream-gce-leak	2021/01/07 01:01	upstream	9f1abbe97c08	c104d4a3	.config	log	report	syz	C
ci-upstream-gce-leak	2020/12/26 09:05	upstream	5814bc2d4cc2	821e0b09	.config	log	report	syz	C
ci-upstream-gce-leak	2020/12/25 14:37	upstream	71c5f03154ac	b982b3ea	.config	log	report	syz	C
ci-upstream-gce-leak	2020/12/24 20:38	upstream	58cf05f597b0	c2c1d1dd	.config	log	report	syz	C
ci-upstream-gce-leak	2020/12/22 15:48	upstream	8653b778e454	04201c06	.config	log	report	syz	C
ci-upstream-gce-leak	2020/12/20 12:33	upstream	467f8165a2b0	04201c06	.config	log	report	syz	C
ci-upstream-gce-leak	2020/12/19 01:07	upstream	a409ed156a90	04201c06	.config	log	report	syz	C
ci-upstream-gce-leak	2020/12/17 18:13	upstream	accefff5b547	04201c06	.config	log	report	syz	C
ci-upstream-gce-leak	2020/12/17 03:28	upstream	5e60366d56c6	04201c06	.config	log	report	syz	C
ci-upstream-gce-leak	2021/06/25 07:35	upstream	4a09d388f2ab	0edbbe31	.config	log	report	syz		memory leak in r8712_init_recv_priv
ci-upstream-gce-leak	2021/06/24 03:37	upstream	7266f2030eb0	fe4ab389	.config	log	report	syz		memory leak in r8712_init_recv_priv
ci-upstream-gce-leak	2021/06/19 05:36	upstream	b1edae0d5f2e	aba2b2fb	.config	log	report	syz		memory leak in r8712_init_recv_priv
ci-upstream-gce-leak	2021/06/15 20:11	upstream	009c9aa5be65	58636922	.config	log	report	syz		memory leak in r8712_init_recv_priv
ci-upstream-gce-leak	2021/06/09 15:50	upstream	368094df48e6	84fe5d96	.config	log	report	syz		memory leak in r8712_init_recv_priv
ci-upstream-gce-leak	2021/06/03 07:18	upstream	324c92e5e0ee	0740de69	.config	log	report	syz		memory leak in r8712_init_recv_priv
ci-upstream-gce-leak	2021/03/27 22:24	upstream	0f4498cef9f5	a8529b82	.config	log	report	syz		memory leak in r8712_init_recv_priv