syzbot


memory leak in __ip6_append_data

Status: fixed on 2019/08/05 13:45
Subsystems: net
[Documentation on labels]
Fix commit: dc93f46bc4e0 inet: frags: fix use-after-free read in inet_frag_destroy_rcu
First crash: 1821d, last: 1795d
Similar bugs (1)
Kernel Title Repro Cause bisect Fix bisect Count Last Reported Patched Status
upstream memory leak in __ip6_append_data (2) net C 1 138d 198d 0/26 closed as invalid on 2024/02/29 13:26

Sample crash report:
executing program
executing program
executing program
executing program
executing program
BUG: memory leak
unreferenced object 0xffff88811e6eae00 (size 224):
  comm "syz-executor622", pid 6923, jiffies 4294947541 (age 18.940s)
  hex dump (first 32 bytes):
    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
  backtrace:
    [<000000001631bfb0>] kmemleak_alloc_recursive include/linux/kmemleak.h:43 [inline]
    [<000000001631bfb0>] slab_post_alloc_hook mm/slab.h:439 [inline]
    [<000000001631bfb0>] slab_alloc_node mm/slab.c:3269 [inline]
    [<000000001631bfb0>] kmem_cache_alloc_node+0x153/0x2a0 mm/slab.c:3579
    [<000000002eea3c7b>] __alloc_skb+0x6e/0x210 net/core/skbuff.c:194
    [<000000002c7a60e7>] alloc_skb include/linux/skbuff.h:1054 [inline]
    [<000000002c7a60e7>] __ip6_append_data.isra.0+0x1106/0x1180 net/ipv6/ip6_output.c:1454
    [<00000000317fe581>] ip6_append_data+0xf1/0x180 net/ipv6/ip6_output.c:1623
    [<000000002595a340>] rawv6_sendmsg+0x842/0x12e0 net/ipv6/raw.c:947
    [<00000000ac73e51d>] inet_sendmsg+0x64/0x120 net/ipv4/af_inet.c:798
    [<000000000568792d>] sock_sendmsg_nosec net/socket.c:646 [inline]
    [<000000000568792d>] sock_sendmsg+0x54/0x70 net/socket.c:665
    [<00000000a35fb28d>] ___sys_sendmsg+0x194/0x3c0 net/socket.c:2286
    [<00000000a4fdd4b4>] __sys_sendmmsg+0xf4/0x270 net/socket.c:2381
    [<00000000274c367a>] __do_sys_sendmmsg net/socket.c:2410 [inline]
    [<00000000274c367a>] __se_sys_sendmmsg net/socket.c:2407 [inline]
    [<00000000274c367a>] __x64_sys_sendmmsg+0x28/0x30 net/socket.c:2407
    [<00000000915749a0>] do_syscall_64+0x76/0x1a0 arch/x86/entry/common.c:301
    [<0000000045b52466>] entry_SYSCALL_64_after_hwframe+0x44/0xa9

BUG: memory leak
unreferenced object 0xffff88811e6eaf00 (size 224):
  comm "syz-executor622", pid 6927, jiffies 4294947563 (age 18.720s)
  hex dump (first 32 bytes):
    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
  backtrace:
    [<000000001631bfb0>] kmemleak_alloc_recursive include/linux/kmemleak.h:43 [inline]
    [<000000001631bfb0>] slab_post_alloc_hook mm/slab.h:439 [inline]
    [<000000001631bfb0>] slab_alloc_node mm/slab.c:3269 [inline]
    [<000000001631bfb0>] kmem_cache_alloc_node+0x153/0x2a0 mm/slab.c:3579
    [<000000002eea3c7b>] __alloc_skb+0x6e/0x210 net/core/skbuff.c:194
    [<000000002c7a60e7>] alloc_skb include/linux/skbuff.h:1054 [inline]
    [<000000002c7a60e7>] __ip6_append_data.isra.0+0x1106/0x1180 net/ipv6/ip6_output.c:1454
    [<00000000317fe581>] ip6_append_data+0xf1/0x180 net/ipv6/ip6_output.c:1623
    [<000000002595a340>] rawv6_sendmsg+0x842/0x12e0 net/ipv6/raw.c:947
    [<00000000ac73e51d>] inet_sendmsg+0x64/0x120 net/ipv4/af_inet.c:798
    [<000000000568792d>] sock_sendmsg_nosec net/socket.c:646 [inline]
    [<000000000568792d>] sock_sendmsg+0x54/0x70 net/socket.c:665
    [<00000000a35fb28d>] ___sys_sendmsg+0x194/0x3c0 net/socket.c:2286
    [<00000000a4fdd4b4>] __sys_sendmmsg+0xf4/0x270 net/socket.c:2381
    [<00000000274c367a>] __do_sys_sendmmsg net/socket.c:2410 [inline]
    [<00000000274c367a>] __se_sys_sendmmsg net/socket.c:2407 [inline]
    [<00000000274c367a>] __x64_sys_sendmmsg+0x28/0x30 net/socket.c:2407
    [<00000000915749a0>] do_syscall_64+0x76/0x1a0 arch/x86/entry/common.c:301
    [<0000000045b52466>] entry_SYSCALL_64_after_hwframe+0x44/0xa9

BUG: memory leak
unreferenced object 0xffff88811e6eae00 (size 224):
  comm "syz-executor622", pid 6923, jiffies 4294947541 (age 19.950s)
  hex dump (first 32 bytes):
    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
  backtrace:
    [<000000001631bfb0>] kmemleak_alloc_recursive include/linux/kmemleak.h:43 [inline]
    [<000000001631bfb0>] slab_post_alloc_hook mm/slab.h:439 [inline]
    [<000000001631bfb0>] slab_alloc_node mm/slab.c:3269 [inline]
    [<000000001631bfb0>] kmem_cache_alloc_node+0x153/0x2a0 mm/slab.c:3579
    [<000000002eea3c7b>] __alloc_skb+0x6e/0x210 net/core/skbuff.c:194
    [<000000002c7a60e7>] alloc_skb include/linux/skbuff.h:1054 [inline]
    [<000000002c7a60e7>] __ip6_append_data.isra.0+0x1106/0x1180 net/ipv6/ip6_output.c:1454
    [<00000000317fe581>] ip6_append_data+0xf1/0x180 net/ipv6/ip6_output.c:1623
    [<000000002595a340>] rawv6_sendmsg+0x842/0x12e0 net/ipv6/raw.c:947
    [<00000000ac73e51d>] inet_sendmsg+0x64/0x120 net/ipv4/af_inet.c:798
    [<000000000568792d>] sock_sendmsg_nosec net/socket.c:646 [inline]
    [<000000000568792d>] sock_sendmsg+0x54/0x70 net/socket.c:665
    [<00000000a35fb28d>] ___sys_sendmsg+0x194/0x3c0 net/socket.c:2286
    [<00000000a4fdd4b4>] __sys_sendmmsg+0xf4/0x270 net/socket.c:2381
    [<00000000274c367a>] __do_sys_sendmmsg net/socket.c:2410 [inline]
    [<00000000274c367a>] __se_sys_sendmmsg net/socket.c:2407 [inline]
    [<00000000274c367a>] __x64_sys_sendmmsg+0x28/0x30 net/socket.c:2407
    [<00000000915749a0>] do_syscall_64+0x76/0x1a0 arch/x86/entry/common.c:301
    [<0000000045b52466>] entry_SYSCALL_64_after_hwframe+0x44/0xa9

BUG: memory leak
unreferenced object 0xffff88811e6eaf00 (size 224):
  comm "syz-executor622", pid 6927, jiffies 4294947563 (age 19.730s)
  hex dump (first 32 bytes):
    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
  backtrace:
    [<000000001631bfb0>] kmemleak_alloc_recursive include/linux/kmemleak.h:43 [inline]
    [<000000001631bfb0>] slab_post_alloc_hook mm/slab.h:439 [inline]
    [<000000001631bfb0>] slab_alloc_node mm/slab.c:3269 [inline]
    [<000000001631bfb0>] kmem_cache_alloc_node+0x153/0x2a0 mm/slab.c:3579
    [<000000002eea3c7b>] __alloc_skb+0x6e/0x210 net/core/skbuff.c:194
    [<000000002c7a60e7>] alloc_skb include/linux/skbuff.h:1054 [inline]
    [<000000002c7a60e7>] __ip6_append_data.isra.0+0x1106/0x1180 net/ipv6/ip6_output.c:1454
    [<00000000317fe581>] ip6_append_data+0xf1/0x180 net/ipv6/ip6_output.c:1623
    [<000000002595a340>] rawv6_sendmsg+0x842/0x12e0 net/ipv6/raw.c:947
    [<00000000ac73e51d>] inet_sendmsg+0x64/0x120 net/ipv4/af_inet.c:798
    [<000000000568792d>] sock_sendmsg_nosec net/socket.c:646 [inline]
    [<000000000568792d>] sock_sendmsg+0x54/0x70 net/socket.c:665
    [<00000000a35fb28d>] ___sys_sendmsg+0x194/0x3c0 net/socket.c:2286
    [<00000000a4fdd4b4>] __sys_sendmmsg+0xf4/0x270 net/socket.c:2381
    [<00000000274c367a>] __do_sys_sendmmsg net/socket.c:2410 [inline]
    [<00000000274c367a>] __se_sys_sendmmsg net/socket.c:2407 [inline]
    [<00000000274c367a>] __x64_sys_sendmmsg+0x28/0x30 net/socket.c:2407
    [<00000000915749a0>] do_syscall_64+0x76/0x1a0 arch/x86/entry/common.c:301
    [<0000000045b52466>] entry_SYSCALL_64_after_hwframe+0x44/0xa9

BUG: memory leak
unreferenced object 0xffff88811e6eae00 (size 224):
  comm "syz-executor622", pid 6923, jiffies 4294947541 (age 20.980s)
  hex dump (first 32 bytes):
    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
  backtrace:
    [<000000001631bfb0>] kmemleak_alloc_recursive include/linux/kmemleak.h:43 [inline]
    [<000000001631bfb0>] slab_post_alloc_hook mm/slab.h:439 [inline]
    [<000000001631bfb0>] slab_alloc_node mm/slab.c:3269 [inline]
    [<000000001631bfb0>] kmem_cache_alloc_node+0x153/0x2a0 mm/slab.c:3579
    [<000000002eea3c7b>] __alloc_skb+0x6e/0x210 net/core/skbuff.c:194
    [<000000002c7a60e7>] alloc_skb include/linux/skbuff.h:1054 [inline]
    [<000000002c7a60e7>] __ip6_append_data.isra.0+0x1106/0x1180 net/ipv6/ip6_output.c:1454
    [<00000000317fe581>] ip6_append_data+0xf1/0x180 net/ipv6/ip6_output.c:1623
    [<000000002595a340>] rawv6_sendmsg+0x842/0x12e0 net/ipv6/raw.c:947
    [<00000000ac73e51d>] inet_sendmsg+0x64/0x120 net/ipv4/af_inet.c:798
    [<000000000568792d>] sock_sendmsg_nosec net/socket.c:646 [inline]
    [<000000000568792d>] sock_sendmsg+0x54/0x70 net/socket.c:665
    [<00000000a35fb28d>] ___sys_sendmsg+0x194/0x3c0 net/socket.c:2286
    [<00000000a4fdd4b4>] __sys_sendmmsg+0xf4/0x270 net/socket.c:2381
    [<00000000274c367a>] __do_sys_sendmmsg net/socket.c:2410 [inline]
    [<00000000274c367a>] __se_sys_sendmmsg net/socket.c:2407 [inline]
    [<00000000274c367a>] __x64_sys_sendmmsg+0x28/0x30 net/socket.c:2407
    [<00000000915749a0>] do_syscall_64+0x76/0x1a0 arch/x86/entry/common.c:301
    [<0000000045b52466>] entry_SYSCALL_64_after_hwframe+0x44/0xa9

BUG: memory leak
unreferenced object 0xffff88811e6eaf00 (size 224):
  comm "syz-executor622", pid 6927, jiffies 4294947563 (age 20.760s)
  hex dump (first 32 bytes):
    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
  backtrace:
    [<000000001631bfb0>] kmemleak_alloc_recursive include/linux/kmemleak.h:43 [inline]
    [<000000001631bfb0>] slab_post_alloc_hook mm/slab.h:439 [inline]
    [<000000001631bfb0>] slab_alloc_node mm/slab.c:3269 [inline]
    [<000000001631bfb0>] kmem_cache_alloc_node+0x153/0x2a0 mm/slab.c:3579
    [<000000002eea3c7b>] __alloc_skb+0x6e/0x210 net/core/skbuff.c:194
    [<000000002c7a60e7>] alloc_skb include/linux/skbuff.h:1054 [inline]
    [<000000002c7a60e7>] __ip6_append_data.isra.0+0x1106/0x1180 net/ipv6/ip6_output.c:1454
    [<00000000317fe581>] ip6_append_data+0xf1/0x180 net/ipv6/ip6_output.c:1623
    [<000000002595a340>] rawv6_sendmsg+0x842/0x12e0 net/ipv6/raw.c:947
    [<00000000ac73e51d>] inet_sendmsg+0x64/0x120 net/ipv4/af_inet.c:798
    [<000000000568792d>] sock_sendmsg_nosec net/socket.c:646 [inline]
    [<000000000568792d>] sock_sendmsg+0x54/0x70 net/socket.c:665
    [<00000000a35fb28d>] ___sys_sendmsg+0x194/0x3c0 net/socket.c:2286
    [<00000000a4fdd4b4>] __sys_sendmmsg+0xf4/0x270 net/socket.c:2381
    [<00000000274c367a>] __do_sys_sendmmsg net/socket.c:2410 [inline]
    [<00000000274c367a>] __se_sys_sendmmsg net/socket.c:2407 [inline]
    [<00000000274c367a>] __x64_sys_sendmmsg+0x28/0x30 net/socket.c:2407
    [<00000000915749a0>] do_syscall_64+0x76/0x1a0 arch/x86/entry/common.c:301
    [<0000000045b52466>] entry_SYSCALL_64_after_hwframe+0x44/0xa9

BUG: memory leak
unreferenced object 0xffff88811e6eae00 (size 224):
  comm "syz-executor622", pid 6923, jiffies 4294947541 (age 21.980s)
  hex dump (first 32 bytes):
    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
  backtrace:
    [<000000001631bfb0>] kmemleak_alloc_recursive include/linux/kmemleak.h:43 [inline]
    [<000000001631bfb0>] slab_post_alloc_hook mm/slab.h:439 [inline]
    [<000000001631bfb0>] slab_alloc_node mm/slab.c:3269 [inline]
    [<000000001631bfb0>] kmem_cache_alloc_node+0x153/0x2a0 mm/slab.c:3579
    [<000000002eea3c7b>] __alloc_skb+0x6e/0x210 net/core/skbuff.c:194
    [<000000002c7a60e7>] alloc_skb include/linux/skbuff.h:1054 [inline]
    [<000000002c7a60e7>] __ip6_append_data.isra.0+0x1106/0x1180 net/ipv6/ip6_output.c:1454
    [<00000000317fe581>] ip6_append_data+0xf1/0x180 net/ipv6/ip6_output.c:1623
    [<000000002595a340>] rawv6_sendmsg+0x842/0x12e0 net/ipv6/raw.c:947
    [<00000000ac73e51d>] inet_sendmsg+0x64/0x120 net/ipv4/af_inet.c:798
    [<000000000568792d>] sock_sendmsg_nosec net/socket.c:646 [inline]
    [<000000000568792d>] sock_sendmsg+0x54/0x70 net/socket.c:665
    [<00000000a35fb28d>] ___sys_sendmsg+0x194/0x3c0 net/socket.c:2286
    [<00000000a4fdd4b4>] __sys_sendmmsg+0xf4/0x270 net/socket.c:2381
    [<00000000274c367a>] __do_sys_sendmmsg net/socket.c:2410 [inline]
    [<00000000274c367a>] __se_sys_sendmmsg net/socket.c:2407 [inline]
    [<00000000274c367a>] __x64_sys_sendmmsg+0x28/0x30 net/socket.c:2407
    [<00000000915749a0>] do_syscall_64+0x76/0x1a0 arch/x86/entry/common.c:301
    [<0000000045b52466>] entry_SYSCALL_64_after_hwframe+0x44/0xa9

BUG: memory leak
unreferenced object 0xffff88811e6eaf00 (size 224):
  comm "syz-executor622", pid 6927, jiffies 4294947563 (age 21.760s)
  hex dump (first 32 bytes):
    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
  backtrace:
    [<000000001631bfb0>] kmemleak_alloc_recursive include/linux/kmemleak.h:43 [inline]
    [<000000001631bfb0>] slab_post_alloc_hook mm/slab.h:439 [inline]
    [<000000001631bfb0>] slab_alloc_node mm/slab.c:3269 [inline]
    [<000000001631bfb0>] kmem_cache_alloc_node+0x153/0x2a0 mm/slab.c:3579
    [<000000002eea3c7b>] __alloc_skb+0x6e/0x210 net/core/skbuff.c:194
    [<000000002c7a60e7>] alloc_skb include/linux/skbuff.h:1054 [inline]
    [<000000002c7a60e7>] __ip6_append_data.isra.0+0x1106/0x1180 net/ipv6/ip6_output.c:1454
    [<00000000317fe581>] ip6_append_data+0xf1/0x180 net/ipv6/ip6_output.c:1623
    [<000000002595a340>] rawv6_sendmsg+0x842/0x12e0 net/ipv6/raw.c:947
    [<00000000ac73e51d>] inet_sendmsg+0x64/0x120 net/ipv4/af_inet.c:798
    [<000000000568792d>] sock_sendmsg_nosec net/socket.c:646 [inline]
    [<000000000568792d>] sock_sendmsg+0x54/0x70 net/socket.c:665
    [<00000000a35fb28d>] ___sys_sendmsg+0x194/0x3c0 net/socket.c:2286
    [<00000000a4fdd4b4>] __sys_sendmmsg+0xf4/0x270 net/socket.c:2381
    [<00000000274c367a>] __do_sys_sendmmsg net/socket.c:2410 [inline]
    [<00000000274c367a>] __se_sys_sendmmsg net/socket.c:2407 [inline]
    [<00000000274c367a>] __x64_sys_sendmmsg+0x28/0x30 net/socket.c:2407
    [<00000000915749a0>] do_syscall_64+0x76/0x1a0 arch/x86/entry/common.c:301
    [<0000000045b52466>] entry_SYSCALL_64_after_hwframe+0x44/0xa9

BUG: memory leak
unreferenced object 0xffff88811e6eae00 (size 224):
  comm "syz-executor622", pid 6923, jiffies 4294947541 (age 22.990s)
  hex dump (first 32 bytes):
    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
  backtrace:
    [<000000001631bfb0>] kmemleak_alloc_recursive include/linux/kmemleak.h:43 [inline]
    [<000000001631bfb0>] slab_post_alloc_hook mm/slab.h:439 [inline]
    [<000000001631bfb0>] slab_alloc_node mm/slab.c:3269 [inline]
    [<000000001631bfb0>] kmem_cache_alloc_node+0x153/0x2a0 mm/slab.c:3579
    [<000000002eea3c7b>] __alloc_skb+0x6e/0x210 net/core/skbuff.c:194
    [<000000002c7a60e7>] alloc_skb include/linux/skbuff.h:1054 [inline]
    [<000000002c7a60e7>] __ip6_append_data.isra.0+0x1106/0x1180 net/ipv6/ip6_output.c:1454
    [<00000000317fe581>] ip6_append_data+0xf1/0x180 net/ipv6/ip6_output.c:1623
    [<000000002595a340>] rawv6_sendmsg+0x842/0x12e0 net/ipv6/raw.c:947
    [<00000000ac73e51d>] inet_sendmsg+0x64/0x120 net/ipv4/af_inet.c:798
    [<000000000568792d>] sock_sendmsg_nosec net/socket.c:646 [inline]
    [<000000000568792d>] sock_sendmsg+0x54/0x70 net/socket.c:665
    [<00000000a35fb28d>] ___sys_sendmsg+0x194/0x3c0 net/socket.c:2286
    [<00000000a4fdd4b4>] __sys_sendmmsg+0xf4/0x270 net/socket.c:2381
    [<00000000274c367a>] __do_sys_sendmmsg net/socket.c:2410 [inline]
    [<00000000274c367a>] __se_sys_sendmmsg net/socket.c:2407 [inline]
    [<00000000274c367a>] __x64_sys_sendmmsg+0x28/0x30 net/socket.c:2407
    [<00000000915749a0>] do_syscall_64+0x76/0x1a0 arch/x86/entry/common.c:301
    [<0000000045b52466>] entry_SYSCALL_64_after_hwframe+0x44/0xa9

BUG: memory leak
unreferenced object 0xffff88811e6eaf00 (size 224):
  comm "syz-executor622", pid 6927, jiffies 4294947563 (age 22.770s)
  hex dump (first 32 bytes):
    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
  backtrace:
    [<000000001631bfb0>] kmemleak_alloc_recursive include/linux/kmemleak.h:43 [inline]
    [<000000001631bfb0>] slab_post_alloc_hook mm/slab.h:439 [inline]
    [<000000001631bfb0>] slab_alloc_node mm/slab.c:3269 [inline]
    [<000000001631bfb0>] kmem_cache_alloc_node+0x153/0x2a0 mm/slab.c:3579
    [<000000002eea3c7b>] __alloc_skb+0x6e/0x210 net/core/skbuff.c:194
    [<000000002c7a60e7>] alloc_skb include/linux/skbuff.h:1054 [inline]
    [<000000002c7a60e7>] __ip6_append_data.isra.0+0x1106/0x1180 net/ipv6/ip6_output.c:1454
    [<00000000317fe581>] ip6_append_data+0xf1/0x180 net/ipv6/ip6_output.c:1623
    [<000000002595a340>] rawv6_sendmsg+0x842/0x12e0 net/ipv6/raw.c:947
    [<00000000ac73e51d>] inet_sendmsg+0x64/0x120 net/ipv4/af_inet.c:798
    [<000000000568792d>] sock_sendmsg_nosec net/socket.c:646 [inline]
    [<000000000568792d>] sock_sendmsg+0x54/0x70 net/socket.c:665
    [<00000000a35fb28d>] ___sys_sendmsg+0x194/0x3c0 net/socket.c:2286
    [<00000000a4fdd4b4>] __sys_sendmmsg+0xf4/0x270 net/socket.c:2381
    [<00000000274c367a>] __do_sys_sendmmsg net/socket.c:2410 [inline]
    [<00000000274c367a>] __se_sys_sendmmsg net/socket.c:2407 [inline]
    [<00000000274c367a>] __x64_sys_sendmmsg+0x28/0x30 net/socket.c:2407
    [<00000000915749a0>] do_syscall_64+0x76/0x1a0 arch/x86/entry/common.c:301
    [<0000000045b52466>] entry_SYSCALL_64_after_hwframe+0x44/0xa9

BUG: memory leak
unreferenced object 0xffff88811e6eae00 (size 224):
  comm "syz-executor622", pid 6923, jiffies 4294947541 (age 23.990s)
  hex dump (first 32 bytes):
    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
  backtrace:
    [<000000001631bfb0>] kmemleak_alloc_recursive include/linux/kmemleak.h:43 [inline]
    [<000000001631bfb0>] slab_post_alloc_hook mm/slab.h:439 [inline]
    [<000000001631bfb0>] slab_alloc_node mm/slab.c:3269 [inline]
    [<000000001631bfb0>] kmem_cache_alloc_node+0x153/0x2a0 mm/slab.c:3579
    [<000000002eea3c7b>] __alloc_skb+0x6e/0x210 net/core/skbuff.c:194
    [<000000002c7a60e7>] alloc_skb include/linux/skbuff.h:1054 [inline]
    [<000000002c7a60e7>] __ip6_append_data.isra.0+0x1106/0x1180 net/ipv6/ip6_output.c:1454
    [<00000000317fe581>] ip6_append_data+0xf1/0x180 net/ipv6/ip6_output.c:1623
    [<000000002595a340>] rawv6_sendmsg+0x842/0x12e0 net/ipv6/raw.c:947
    [<00000000ac73e51d>] inet_sendmsg+0x64/0x120 net/ipv4/af_inet.c:798
    [<000000000568792d>] sock_sendmsg_nosec net/socket.c:646 [inline]
    [<000000000568792d>] sock_sendmsg+0x54/0x70 net/socket.c:665
    [<00000000a35fb28d>] ___sys_sendmsg+0x194/0x3c0 net/socket.c:2286
    [<00000000a4fdd4b4>] __sys_sendmmsg+0xf4/0x270 net/socket.c:2381
    [<00000000274c367a>] __do_sys_sendmmsg net/socket.c:2410 [inline]
    [<00000000274c367a>] __se_sys_sendmmsg net/socket.c:2407 [inline]
    [<00000000274c367a>] __x64_sys_sendmmsg+0x28/0x30 net/socket.c:2407
    [<00000000915749a0>] do_syscall_64+0x76/0x1a0 arch/x86/entry/common.c:301
    [<0000000045b52466>] entry_SYSCALL_64_after_hwframe+0x44/0xa9

BUG: memory leak
unreferenced object 0xffff88811e6eaf00 (size 224):
  comm "syz-executor622", pid 6927, jiffies 4294947563 (age 23.770s)
  hex dump (first 32 bytes):
    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
  backtrace:
    [<000000001631bfb0>] kmemleak_alloc_recursive include/linux/kmemleak.h:43 [inline]
    [<000000001631bfb0>] slab_post_alloc_hook mm/slab.h:439 [inline]
    [<000000001631bfb0>] slab_alloc_node mm/slab.c:3269 [inline]
    [<000000001631bfb0>] kmem_cache_alloc_node+0x153/0x2a0 mm/slab.c:3579
    [<000000002eea3c7b>] __alloc_skb+0x6e/0x210 net/core/skbuff.c:194
    [<000000002c7a60e7>] alloc_skb include/linux/skbuff.h:1054 [inline]
    [<000000002c7a60e7>] __ip6_append_data.isra.0+0x1106/0x1180 net/ipv6/ip6_output.c:1454
    [<00000000317fe581>] ip6_append_data+0xf1/0x180 net/ipv6/ip6_output.c:1623
    [<000000002595a340>] rawv6_sendmsg+0x842/0x12e0 net/ipv6/raw.c:947
    [<00000000ac73e51d>] inet_sendmsg+0x64/0x120 net/ipv4/af_inet.c:798
    [<000000000568792d>] sock_sendmsg_nosec net/socket.c:646 [inline]
    [<000000000568792d>] sock_sendmsg+0x54/0x70 net/socket.c:665
    [<00000000a35fb28d>] ___sys_sendmsg+0x194/0x3c0 net/socket.c:2286
    [<00000000a4fdd4b4>] __sys_sendmmsg+0xf4/0x270 net/socket.c:2381
    [<00000000274c367a>] __do_sys_sendmmsg net/socket.c:2410 [inline]
    [<00000000274c367a>] __se_sys_sendmmsg net/socket.c:2407 [inline]
    [<00000000274c367a>] __x64_sys_sendmmsg+0x28/0x30 net/socket.c:2407
    [<00000000915749a0>] do_syscall_64+0x76/0x1a0 arch/x86/entry/common.c:301
    [<0000000045b52466>] entry_SYSCALL_64_after_hwframe+0x44/0xa9

BUG: memory leak
unreferenced object 0xffff88811e6eae00 (size 224):
  comm "syz-executor622", pid 6923, jiffies 4294947541 (age 25.000s)
  hex dump (first 32 bytes):
    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
  backtrace:
    [<000000001631bfb0>] kmemleak_alloc_recursive include/linux/kmemleak.h:43 [inline]
    [<000000001631bfb0>] slab_post_alloc_hook mm/slab.h:439 [inline]
    [<000000001631bfb0>] slab_alloc_node mm/slab.c:3269 [inline]
    [<000000001631bfb0>] kmem_cache_alloc_node+0x153/0x2a0 mm/slab.c:3579
    [<000000002eea3c7b>] __alloc_skb+0x6e/0x210 net/core/skbuff.c:194
    [<000000002c7a60e7>] alloc_skb include/linux/skbuff.h:1054 [inline]
    [<000000002c7a60e7>] __ip6_append_data.isra.0+0x1106/0x1180 net/ipv6/ip6_output.c:1454
    [<00000000317fe581>] ip6_append_data+0xf1/0x180 net/ipv6/ip6_output.c:1623
    [<000000002595a340>] rawv6_sendmsg+0x842/0x12e0 net/ipv6/raw.c:947
    [<00000000ac73e51d>] inet_sendmsg+0x64/0x120 net/ipv4/af_inet.c:798
    [<000000000568792d>] sock_sendmsg_nosec net/socket.c:646 [inline]
    [<000000000568792d>] sock_sendmsg+0x54/0x70 net/socket.c:665
    [<00000000a35fb28d>] ___sys_sendmsg+0x194/0x3c0 net/socket.c:2286
    [<00000000a4fdd4b4>] __sys_sendmmsg+0xf4/0x270 net/socket.c:2381
    [<00000000274c367a>] __do_sys_sendmmsg net/socket.c:2410 [inline]
    [<00000000274c367a>] __se_sys_sendmmsg net/socket.c:2407 [inline]
    [<00000000274c367a>] __x64_sys_sendmmsg+0x28/0x30 net/socket.c:2407
    [<00000000915749a0>] do_syscall_64+0x76/0x1a0 arch/x86/entry/common.c:301
    [<0000000045b52466>] entry_SYSCALL_64_after_hwframe+0x44/0xa9

BUG: memory leak
unreferenced object 0xffff88811e6eaf00 (size 224):
  comm "syz-executor622", pid 6927, jiffies 4294947563 (age 24.780s)
  hex dump (first 32 bytes):
    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
  backtrace:
    [<000000001631bfb0>] kmemleak_alloc_recursive include/linux/kmemleak.h:43 [inline]
    [<000000001631bfb0>] slab_post_alloc_hook mm/slab.h:439 [inline]
    [<000000001631bfb0>] slab_alloc_node mm/slab.c:3269 [inline]
    [<000000001631bfb0>] kmem_cache_alloc_node+0x153/0x2a0 mm/slab.c:3579
    [<000000002eea3c7b>] __alloc_skb+0x6e/0x210 net/core/skbuff.c:194
    [<000000002c7a60e7>] alloc_skb include/linux/skbuff.h:1054 [inline]
    [<000000002c7a60e7>] __ip6_append_data.isra.0+0x1106/0x1180 net/ipv6/ip6_output.c:1454
    [<00000000317fe581>] ip6_append_data+0xf1/0x180 net/ipv6/ip6_output.c:1623
    [<000000002595a340>] rawv6_sendmsg+0x842/0x12e0 net/ipv6/raw.c:947
    [<00000000ac73e51d>] inet_sendmsg+0x64/0x120 net/ipv4/af_inet.c:798
    [<000000000568792d>] sock_sendmsg_nosec net/socket.c:646 [inline]
    [<000000000568792d>] sock_sendmsg+0x54/0x70 net/socket.c:665
    [<00000000a35fb28d>] ___sys_sendmsg+0x194/0x3c0 net/socket.c:2286
    [<00000000a4fdd4b4>] __sys_sendmmsg+0xf4/0x270 net/socket.c:2381
    [<00000000274c367a>] __do_sys_sendmmsg net/socket.c:2410 [inline]
    [<00000000274c367a>] __se_sys_sendmmsg net/socket.c:2407 [inline]
    [<00000000274c367a>] __x64_sys_sendmmsg+0x28/0x30 net/socket.c:2407
    [<00000000915749a0>] do_syscall_64+0x76/0x1a0 arch/x86/entry/common.c:301
    [<0000000045b52466>] entry_SYSCALL_64_after_hwframe+0x44/0xa9

BUG: memory leak
unreferenced object 0xffff88811e6eae00 (size 224):
  comm "syz-executor622", pid 6923, jiffies 4294947541 (age 25.060s)
  hex dump (first 32 bytes):
    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
  backtrace:
    [<000000001631bfb0>] kmemleak_alloc_recursive include/linux/kmemleak.h:43 [inline]
    [<000000001631bfb0>] slab_post_alloc_hook mm/slab.h:439 [inline]
    [<000000001631bfb0>] slab_alloc_node mm/slab.c:3269 [inline]
    [<000000001631bfb0>] kmem_cache_alloc_node+0x153/0x2a0 mm/slab.c:3579
    [<000000002eea3c7b>] __alloc_skb+0x6e/0x210 net/core/skbuff.c:194
    [<000000002c7a60e7>] alloc_skb include/linux/skbuff.h:1054 [inline]
    [<000000002c7a60e7>] __ip6_append_data.isra.0+0x1106/0x1180 net/ipv6/ip6_output.c:1454
    [<00000000317fe581>] ip6_append_data+0xf1/0x180 net/ipv6/ip6_output.c:1623
    [<000000002595a340>] rawv6_sendmsg+0x842/0x12e0 net/ipv6/raw.c:947
    [<00000000ac73e51d>] inet_sendmsg+0x64/0x120 net/ipv4/af_inet.c:798
    [<000000000568792d>] sock_sendmsg_nosec net/socket.c:646 [inline]
    [<000000000568792d>] sock_sendmsg+0x54/0x70 net/socket.c:665
    [<00000000a35fb28d>] ___sys_sendmsg+0x194/0x3c0 net/socket.c:2286
    [<00000000a4fdd4b4>] __sys_sendmmsg+0xf4/0x270 net/socket.c:2381
    [<00000000274c367a>] __do_sys_sendmmsg net/socket.c:2410 [inline]
    [<00000000274c367a>] __se_sys_sendmmsg net/socket.c:2407 [inline]
    [<00000000274c367a>] __x64_sys_sendmmsg+0x28/0x30 net/socket.c:2407
    [<00000000915749a0>] do_syscall_64+0x76/0x1a0 arch/x86/entry/common.c:301
    [<0000000045b52466>] entry_SYSCALL_64_after_hwframe+0x44/0xa9

BUG: memory leak
unreferenced object 0xffff88811e6eaf00 (size 224):
  comm "syz-executor622", pid 6927, jiffies 4294947563 (age 24.840s)
  hex dump (first 32 bytes):
    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
  backtrace:
    [<000000001631bfb0>] kmemleak_alloc_recursive include/linux/kmemleak.h:43 [inline]
    [<000000001631bfb0>] slab_post_alloc_hook mm/slab.h:439 [inline]
    [<000000001631bfb0>] slab_alloc_node mm/slab.c:3269 [inline]
    [<000000001631bfb0>] kmem_cache_alloc_node+0x153/0x2a0 mm/slab.c:3579
    [<000000002eea3c7b>] __alloc_skb+0x6e/0x210 net/core/skbuff.c:194
    [<000000002c7a60e7>] alloc_skb include/linux/skbuff.h:1054 [inline]
    [<000000002c7a60e7>] __ip6_append_data.isra.0+0x1106/0x1180 net/ipv6/ip6_output.c:1454
    [<00000000317fe581>] ip6_append_data+0xf1/0x180 net/ipv6/ip6_output.c:1623
    [<000000002595a340>] rawv6_sendmsg+0x842/0x12e0 net/ipv6/raw.c:947
    [<00000000ac73e51d>] inet_sendmsg+0x64/0x120 net/ipv4/af_inet.c:798
    [<000000000568792d>] sock_sendmsg_nosec net/socket.c:646 [inline]
    [<000000000568792d>] sock_sendmsg+0x54/0x70 net/socket.c:665
    [<00000000a35fb28d>] ___sys_sendmsg+0x194/0x3c0 net/socket.c:2286
    [<00000000a4fdd4b4>] __sys_sendmmsg+0xf4/0x270 net/socket.c:2381
    [<00000000274c367a>] __do_sys_sendmmsg net/socket.c:2410 [inline]
    [<00000000274c367a>] __se_sys_sendmmsg net/socket.c:2407 [inline]
    [<00000000274c367a>] __x64_sys_sendmmsg+0x28/0x30 net/socket.c:2407
    [<00000000915749a0>] do_syscall_64+0x76/0x1a0 arch/x86/entry/common.c:301
    [<0000000045b52466>] entry_SYSCALL_64_after_hwframe+0x44/0xa9


Crashes (10):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2019/06/23 19:58 upstream 241e39004581 472f0082 .config console log report syz C ci-upstream-gce-leak
2019/06/20 22:22 upstream abf02e2964b3 34bf9440 .config console log report syz C ci-upstream-gce-leak
2019/06/16 07:07 upstream e01e060fe00d 442206d7 .config console log report syz C ci-upstream-gce-leak
2019/06/15 03:29 upstream fd6b99fa41dd 442206d7 .config console log report syz C ci-upstream-gce-leak
2019/06/13 19:58 upstream c11fb13a117e a139f92f .config console log report syz C ci-upstream-gce-leak
2019/06/12 20:44 upstream 35110e38e6c5 794a1ad7 .config console log report syz C ci-upstream-gce-leak
2019/06/09 21:54 upstream d1fdb6d8f6a4 0159583c .config console log report syz C ci-upstream-gce-leak
2019/06/05 08:58 upstream 788a024921c4 bfb4a51e .config console log report syz C ci-upstream-gce-leak
2019/06/02 21:18 upstream 9221dced3069 53c81ea5 .config console log report syz C ci-upstream-gce-leak
2019/05/28 13:32 upstream cd6c84d8f0cd 6bd61501 .config console log report syz C ci-upstream-gce-leak
* Struck through repros no longer work on HEAD.