syzbot


memory leak in __lookup_slow

Status: upstream: reported C repro on 2021/10/13 07:37
Subsystems: ext4 usb
[Documentation on labels]
Reported-by: syzbot+fa2fdb06a9489df021a7@syzkaller.appspotmail.com
First crash: 892d, last: 567d
Discussions (1)
Title Replies (including bot) Last reply
[syzbot] memory leak in __lookup_slow 0 (1) 2021/10/13 07:37
Last patch testing requests (8)
Created Duration User Patch Repo Result
2024/01/23 05:17 24m retest repro upstream report log
2023/11/11 01:07 22m retest repro upstream report log
2023/09/01 18:37 19m retest repro upstream report log
2023/06/23 12:47 15m retest repro upstream report log
2023/04/14 10:21 13m retest repro upstream report log
2022/12/08 00:31 14m retest repro upstream report log
2022/12/07 20:31 16m retest repro upstream OK log
2021/10/14 07:53 16m phind.uet@gmail.com linux-next OK

Sample crash report:
BUG: memory leak
unreferenced object 0xffff888110b11540 (size 192):
  comm "udevd", pid 3920, jiffies 4295102079 (age 13.720s)
  hex dump (first 32 bytes):
    44 80 00 00 02 00 00 00 00 00 00 00 00 00 00 00  D...............
    00 00 00 00 00 00 00 00 80 8d 1d 0d 81 88 ff ff  ................
  backtrace:
    [<ffffffff81612721>] __d_alloc+0x31/0x280 fs/dcache.c:1769
    [<ffffffff81612995>] d_alloc+0x25/0xd0 fs/dcache.c:1849
    [<ffffffff816178eb>] d_alloc_parallel+0x5b/0x680 fs/dcache.c:2647
    [<ffffffff815f9987>] __lookup_slow+0x77/0x1e0 fs/namei.c:1670
    [<ffffffff816000b4>] lookup_slow fs/namei.c:1702 [inline]
    [<ffffffff816000b4>] walk_component+0x194/0x240 fs/namei.c:1993
    [<ffffffff81600524>] link_path_walk.part.0+0x3c4/0x620 fs/namei.c:2320
    [<ffffffff81600d78>] link_path_walk fs/namei.c:2467 [inline]
    [<ffffffff81600d78>] path_lookupat+0x58/0x330 fs/namei.c:2473
    [<ffffffff81604e8f>] filename_lookup+0xff/0x2a0 fs/namei.c:2503
    [<ffffffff815ee8b6>] vfs_statx+0xd6/0x1f0 fs/stat.c:228
    [<ffffffff815eed3c>] vfs_fstatat+0x8c/0xb0 fs/stat.c:255
    [<ffffffff815ef163>] __do_sys_newfstatat+0x43/0xa0 fs/stat.c:425
    [<ffffffff845e6895>] do_syscall_x64 arch/x86/entry/common.c:50 [inline]
    [<ffffffff845e6895>] do_syscall_64+0x35/0xb0 arch/x86/entry/common.c:80
    [<ffffffff84800087>] entry_SYSCALL_64_after_hwframe+0x63/0xcd

BUG: memory leak
unreferenced object 0xffff888110b2e990 (size 1192):
  comm "syz-executor.0", pid 3710, jiffies 4295102176 (age 12.760s)
  hex dump (first 32 bytes):
    0a f3 00 00 04 00 00 00 00 00 00 00 00 00 00 00  ................
    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
  backtrace:
    [<ffffffff81805853>] alloc_inode_sb include/linux/fs.h:3103 [inline]
    [<ffffffff81805853>] ext4_alloc_inode+0x23/0x1b0 fs/ext4/super.c:1327
    [<ffffffff8161b909>] alloc_inode+0x29/0x110 fs/inode.c:260
    [<ffffffff8161ba13>] new_inode_pseudo fs/inode.c:1019 [inline]
    [<ffffffff8161ba13>] new_inode+0x23/0xf0 fs/inode.c:1047
    [<ffffffff8179c7a9>] __ext4_new_inode+0x119/0x25b0 fs/ext4/ialloc.c:960
    [<ffffffff817e4b6f>] ext4_mkdir+0x1ef/0x540 fs/ext4/namei.c:2979
    [<ffffffff815fcb73>] vfs_mkdir+0x223/0x340 fs/namei.c:4013
    [<ffffffff81605b55>] do_mkdirat+0x1a5/0x1e0 fs/namei.c:4038
    [<ffffffff81605bfb>] __do_sys_mkdirat fs/namei.c:4053 [inline]
    [<ffffffff81605bfb>] __se_sys_mkdirat fs/namei.c:4051 [inline]
    [<ffffffff81605bfb>] __x64_sys_mkdirat+0x6b/0x90 fs/namei.c:4051
    [<ffffffff845e6895>] do_syscall_x64 arch/x86/entry/common.c:50 [inline]
    [<ffffffff845e6895>] do_syscall_64+0x35/0xb0 arch/x86/entry/common.c:80
    [<ffffffff84800087>] entry_SYSCALL_64_after_hwframe+0x63/0xcd

BUG: memory leak
unreferenced object 0xffff8881191ccd40 (size 32):
  comm "syz-executor.0", pid 3710, jiffies 4295102176 (age 12.760s)
  hex dump (first 32 bytes):
    f0 eb b2 10 81 88 ff ff e0 55 22 82 ff ff ff ff  .........U".....
    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
  backtrace:
    [<ffffffff82226b2a>] kmem_cache_zalloc include/linux/slab.h:723 [inline]
    [<ffffffff82226b2a>] lsm_inode_alloc security/security.c:594 [inline]
    [<ffffffff82226b2a>] security_inode_alloc+0x2a/0xb0 security/security.c:1024
    [<ffffffff81618c44>] inode_init_always+0x114/0x230 fs/inode.c:195
    [<ffffffff8161b926>] alloc_inode+0x46/0x110 fs/inode.c:267
    [<ffffffff8161ba13>] new_inode_pseudo fs/inode.c:1019 [inline]
    [<ffffffff8161ba13>] new_inode+0x23/0xf0 fs/inode.c:1047
    [<ffffffff8179c7a9>] __ext4_new_inode+0x119/0x25b0 fs/ext4/ialloc.c:960
    [<ffffffff817e4b6f>] ext4_mkdir+0x1ef/0x540 fs/ext4/namei.c:2979
    [<ffffffff815fcb73>] vfs_mkdir+0x223/0x340 fs/namei.c:4013
    [<ffffffff81605b55>] do_mkdirat+0x1a5/0x1e0 fs/namei.c:4038
    [<ffffffff81605bfb>] __do_sys_mkdirat fs/namei.c:4053 [inline]
    [<ffffffff81605bfb>] __se_sys_mkdirat fs/namei.c:4051 [inline]
    [<ffffffff81605bfb>] __x64_sys_mkdirat+0x6b/0x90 fs/namei.c:4051
    [<ffffffff845e6895>] do_syscall_x64 arch/x86/entry/common.c:50 [inline]
    [<ffffffff845e6895>] do_syscall_64+0x35/0xb0 arch/x86/entry/common.c:80
    [<ffffffff84800087>] entry_SYSCALL_64_after_hwframe+0x63/0xcd

BUG: memory leak
unreferenced object 0xffff888110acdc00 (size 192):
  comm "udevd", pid 3919, jiffies 4295102177 (age 12.750s)
  hex dump (first 32 bytes):
    08 80 00 00 06 00 00 00 00 00 00 00 00 00 00 00  ................
    00 00 00 00 00 00 00 00 00 89 1f 0e 81 88 ff ff  ................
  backtrace:
    [<ffffffff81612721>] __d_alloc+0x31/0x280 fs/dcache.c:1769
    [<ffffffff81612995>] d_alloc+0x25/0xd0 fs/dcache.c:1849
    [<ffffffff815f9647>] __lookup_hash+0x77/0xd0 fs/namei.c:1597
    [<ffffffff81600bcd>] filename_create+0xed/0x240 fs/namei.c:3785
    [<ffffffff816067a9>] do_symlinkat+0x69/0x1c0 fs/namei.c:4397
    [<ffffffff816069dc>] __do_sys_symlink fs/namei.c:4429 [inline]
    [<ffffffff816069dc>] __se_sys_symlink fs/namei.c:4427 [inline]
    [<ffffffff816069dc>] __x64_sys_symlink+0x3c/0x50 fs/namei.c:4427
    [<ffffffff845e6895>] do_syscall_x64 arch/x86/entry/common.c:50 [inline]
    [<ffffffff845e6895>] do_syscall_64+0x35/0xb0 arch/x86/entry/common.c:80
    [<ffffffff84800087>] entry_SYSCALL_64_after_hwframe+0x63/0xcd

[ 1661.876172

Crashes (2):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2022/08/29 19:59 upstream b90cb1053190 5b44472d .config console log report syz ci-upstream-gce-leak memory leak in __lookup_slow
2021/10/09 07:32 upstream 741668ef7832 efe0f24d .config console log report syz C ci-upstream-gce-leak memory leak in __lookup_slow
* Struck through repros no longer work on HEAD.