syzbot

 sign-in | mailing list | source | docs
🐞 Open [968] Subsystems 🐞 Fixed [4559] 🐞 Invalid [10508] 📈 Kernel Health 📈 Bug Lifetimes 📈 Fuzzing 📈 Crashes 💬 Send us feedback

memory leak in usb_get_configuration

Status: upstream: reported C repro on 2022/03/09 23:54
Labels: usb (incorrect?)
Reported-by: syzbot+f0fae482604e6d9a87c9@syzkaller.appspotmail.com
First crash: 453d, last: 45d
Discussions (1)
Title Replies (including bot) Last reply
[syzbot] memory leak in usb_get_configuration 8 (12) 2022/03/12 16:02
Last patch testing requests (8)
Created Duration User Patch Repo Result
2023/04/17 22:40 27m retest repro upstream report log
2022/11/12 23:30 8m retest repro upstream report log
2022/08/26 14:57 7m mail@karthek.com patch https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git master report log
2022/08/25 02:00 9m mudongliangabcd@gmail.com patch git://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git -- report log
2022/08/24 16:37 8m mail@karthek.com patch https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git master report log
2022/08/24 12:40 8m mail@karthek.com patch https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git master report log
2022/03/11 21:01 7m stern@rowland.harvard.edu patch https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/ 0014404f9c18 report log
2022/03/10 09:51 14m oneukum@suse.com patch git://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git 0014404f9c18 error

Sample crash report:
BUG: memory leak
unreferenced object 0xffff88810e22dd00 (size 32):
  comm "kworker/0:1", pid 44, jiffies 4294946361 (age 15.290s)
  hex dump (first 32 bytes):
    09 02 12 00 01 00 00 00 00 09 04 00 00 00 1c d1  ................
    69 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  i...............
  backtrace:
    [<ffffffff82d7c1a7>] kmalloc include/linux/slab.h:605 [inline]
    [<ffffffff82d7c1a7>] usb_get_configuration+0x1c7/0x1ce0 drivers/usb/core/config.c:919
    [<ffffffff82d6a531>] usb_enumerate_device drivers/usb/core/hub.c:2398 [inline]
    [<ffffffff82d6a531>] usb_new_device+0x1b1/0x2f0 drivers/usb/core/hub.c:2536
    [<ffffffff82d6cf3b>] hub_port_connect drivers/usb/core/hub.c:5363 [inline]
    [<ffffffff82d6cf3b>] hub_port_connect_change drivers/usb/core/hub.c:5507 [inline]
    [<ffffffff82d6cf3b>] port_event drivers/usb/core/hub.c:5663 [inline]
    [<ffffffff82d6cf3b>] hub_event+0x130b/0x21d0 drivers/usb/core/hub.c:5745
    [<ffffffff81275dbf>] process_one_work+0x2bf/0x600 kernel/workqueue.c:2289
    [<ffffffff812766e9>] worker_thread+0x59/0x5b0 kernel/workqueue.c:2436
    [<ffffffff81280445>] kthread+0x125/0x160 kernel/kthread.c:376
    [<ffffffff8100225f>] ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:306

BUG: memory leak
unreferenced object 0xffff88810ee047c0 (size 64):
  comm "kworker/0:1", pid 44, jiffies 4294946367 (age 15.230s)
  hex dump (first 32 bytes):
    01 00 00 00 01 00 00 00 09 04 00 00 00 1c d1 69  ...............i
    00 00 00 00 00 00 00 00 12 dd 22 0e 81 88 ff ff  ..........".....
  backtrace:
    [<ffffffff82d7c7a0>] kmalloc include/linux/slab.h:605 [inline]
    [<ffffffff82d7c7a0>] kzalloc include/linux/slab.h:733 [inline]
    [<ffffffff82d7c7a0>] usb_parse_configuration drivers/usb/core/config.c:772 [inline]
    [<ffffffff82d7c7a0>] usb_get_configuration+0x7c0/0x1ce0 drivers/usb/core/config.c:944
    [<ffffffff82d6a531>] usb_enumerate_device drivers/usb/core/hub.c:2398 [inline]
    [<ffffffff82d6a531>] usb_new_device+0x1b1/0x2f0 drivers/usb/core/hub.c:2536
    [<ffffffff82d6cf3b>] hub_port_connect drivers/usb/core/hub.c:5363 [inline]
    [<ffffffff82d6cf3b>] hub_port_connect_change drivers/usb/core/hub.c:5507 [inline]
    [<ffffffff82d6cf3b>] port_event drivers/usb/core/hub.c:5663 [inline]
    [<ffffffff82d6cf3b>] hub_event+0x130b/0x21d0 drivers/usb/core/hub.c:5745
    [<ffffffff81275dbf>] process_one_work+0x2bf/0x600 kernel/workqueue.c:2289
    [<ffffffff812766e9>] worker_thread+0x59/0x5b0 kernel/workqueue.c:2436
    [<ffffffff81280445>] kthread+0x125/0x160 kernel/kthread.c:376
    [<ffffffff8100225f>] ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:306

BUG: memory leak
unreferenced object 0xffff88810ee04800 (size 64):
  comm "kworker/0:1", pid 44, jiffies 4294947050 (age 8.400s)
  hex dump (first 32 bytes):
    01 00 00 00 01 00 00 00 09 04 00 00 00 1c d1 69  ...............i
    00 00 00 00 00 00 00 00 d2 d1 22 0e 81 88 ff ff  ..........".....
  backtrace:
    [<ffffffff82d7c7a0>] kmalloc include/linux/slab.h:605 [inline]
    [<ffffffff82d7c7a0>] kzalloc include/linux/slab.h:733 [inline]
    [<ffffffff82d7c7a0>] usb_parse_configuration drivers/usb/core/config.c:772 [inline]
    [<ffffffff82d7c7a0>] usb_get_configuration+0x7c0/0x1ce0 drivers/usb/core/config.c:944
    [<ffffffff82d6a531>] usb_enumerate_device drivers/usb/core/hub.c:2398 [inline]
    [<ffffffff82d6a531>] usb_new_device+0x1b1/0x2f0 drivers/usb/core/hub.c:2536
    [<ffffffff82d6cf3b>] hub_port_connect drivers/usb/core/hub.c:5363 [inline]
    [<ffffffff82d6cf3b>] hub_port_connect_change drivers/usb/core/hub.c:5507 [inline]
    [<ffffffff82d6cf3b>] port_event drivers/usb/core/hub.c:5663 [inline]
    [<ffffffff82d6cf3b>] hub_event+0x130b/0x21d0 drivers/usb/core/hub.c:5745
    [<ffffffff81275dbf>] process_one_work+0x2bf/0x600 kernel/workqueue.c:2289
    [<ffffffff812766e9>] worker_thread+0x59/0x5b0 kernel/workqueue.c:2436
    [<ffffffff81280445>] kthread+0x125/0x160 kernel/kthread.c:376
    [<ffffffff8100225f>] ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:306

Crashes (2):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets Manager Title
2022/08/04 22:39 upstream b44f2fd87919 1c9013ac .config console log report syz C ci-upstream-gce-leak memory leak in usb_get_configuration
2022/03/05 23:45 upstream 0014404f9c18 7bdd8b2c .config console log report syz C ci-upstream-gce-leak memory leak in usb_get_configuration
* Struck through repros no longer work on HEAD.