syzbot


memory leak in sctp_sched_prio_set

Status: upstream: reported C repro on 2022/11/18 05:18
Reported-by: syzbot+29c402e56c4760763cc0@syzkaller.appspotmail.com
First crash: 222d, last: 3d09h
Patch testing requests:
Created Duration User Patch Repo Result
2022/11/20 11:15 8m eadavis@sina.com patch https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git b2d229d4ddb1 report log
2022/11/20 10:18 7m eadavis@sina.com patch https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git b2d229d4ddb1 report log
2022/11/20 08:54 6m eadavis@sina.com patch https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git b2d229d4ddb1 error
2022/11/20 07:33 8m eadavis@sina.com patch https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git b2d229d4ddb1 report log
2022/11/20 06:50 7m eadavis@sina.com patch https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git b2d229d4ddb1 report log
2022/11/20 06:27 3m eadavis@sina.com patch https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git b2d229d4ddb1 error
2022/11/04 19:30 8m upstream report log

Sample crash report:
BUG: memory leak
unreferenced object 0xffff88810c4a3440 (size 64):
  comm "syz-executor343", pid 3623, jiffies 4294944213 (age 7.640s)
  hex dump (first 32 bytes):
    40 34 4a 0c 81 88 ff ff 40 34 4a 0c 81 88 ff ff  @4J.....@4J.....
    50 34 4a 0c 81 88 ff ff 50 34 4a 0c 81 88 ff ff  P4J.....P4J.....
  backtrace:
    [<ffffffff814ed790>] kmalloc_trace+0x20/0x90 mm/slab_common.c:1045
    [<ffffffff84280de1>] kmalloc include/linux/slab.h:553 [inline]
    [<ffffffff84280de1>] sctp_sched_prio_new_head net/sctp/stream_sched_prio.c:33 [inline]
    [<ffffffff84280de1>] sctp_sched_prio_get_head net/sctp/stream_sched_prio.c:77 [inline]
    [<ffffffff84280de1>] sctp_sched_prio_set+0x2c1/0x370 net/sctp/stream_sched_prio.c:159
    [<ffffffff8427ad36>] sctp_stream_init_ext+0x86/0xf0 net/sctp/stream.c:163
    [<ffffffff84265d2b>] sctp_sendmsg_to_asoc+0x96b/0xa40 net/sctp/socket.c:1808
    [<ffffffff8426eb4f>] sctp_sendmsg+0x99f/0x1030 net/sctp/socket.c:2025
    [<ffffffff83e3c815>] inet_sendmsg+0x45/0x70 net/ipv4/af_inet.c:827
    [<ffffffff83a80ac6>] sock_sendmsg_nosec net/socket.c:714 [inline]
    [<ffffffff83a80ac6>] sock_sendmsg+0x56/0x80 net/socket.c:734
    [<ffffffff83a84468>] __sys_sendto+0x168/0x210 net/socket.c:2117
    [<ffffffff83a84536>] __do_sys_sendto net/socket.c:2129 [inline]
    [<ffffffff83a84536>] __se_sys_sendto net/socket.c:2125 [inline]
    [<ffffffff83a84536>] __x64_sys_sendto+0x26/0x30 net/socket.c:2125
    [<ffffffff8485b265>] do_syscall_x64 arch/x86/entry/common.c:50 [inline]
    [<ffffffff8485b265>] do_syscall_64+0x35/0xb0 arch/x86/entry/common.c:80
    [<ffffffff84a00087>] entry_SYSCALL_64_after_hwframe+0x63/0xcd


Crashes (2):
Manager Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Title
ci-upstream-gce-leak 2022/11/23 16:24 upstream eb7081409f94 75740b3f .config log report syz C memory leak in sctp_sched_prio_set
ci-upstream-gce-leak 2022/04/18 12:16 upstream b2d229d4ddb1 8bcc32a6 .config log report syz C memory leak in sctp_sched_prio_set
* Struck through repros no longer work on HEAD.