memory leak in new_inode

memory leak in new_inode_pseudo (2)
Status: upstream: reported C repro on 2019/07/16 07:38
Reported-by: syzbot+e682cca30bc101a4d9d9@syzkaller.appspotmail.com
First crash: 600d, last: 16d

Cause bisection: introduced by (bisect log) :
commit a21f2a3ec62abe2e06500d6550659a0ff5624fbb
Author: Michael Callahan <michaelcallahan@fb.com>
Date: Tue May 3 15:12:49 2016 +0000

block: Minor blk_account_io_start usage cleanup

Crash: memory leak in next_bio (log)
Repro: C syz .config

similar bugs (1):
Kernel	Title	Repro	Cause bisect	Fix bisect	Count	Last	Reported	Patched	Status
upstream	memory leak in new_inode_pseudo	C			136	605d	654d	13/21	fixed on 2019/07/10 21:40

Sample crash report:

Warning: Permanently added '10.128.0.243' (ECDSA) to the list of known hosts.
executing program
BUG: memory leak
unreferenced object 0xffff88810fbcbbe0 (size 608):
  comm "kworker/u4:1", pid 8428, jiffies 4294966344 (age 8.430s)
  hex dump (first 32 bytes):
    80 11 04 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
    ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff  ................
  backtrace:
    [<000000004c3aa5af>] alloc_inode+0xbe/0x100 fs/inode.c:235
    [<000000004b11c791>] new_inode_pseudo+0x13/0x70 fs/inode.c:927
    [<00000000e814e070>] get_pipe_inode fs/pipe.c:855 [inline]
    [<00000000e814e070>] create_pipe_files+0x2b/0x2e0 fs/pipe.c:895
    [<00000000d8837ff0>] umd_setup+0x33/0x220 kernel/usermode_driver.c:104
    [<000000001a2022b4>] call_usermodehelper_exec_async+0xb4/0x1b0 kernel/umh.c:101
    [<0000000054a89bb8>] ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:296

BUG: memory leak
unreferenced object 0xffff8881103ee060 (size 24):
  comm "kworker/u4:1", pid 8428, jiffies 4294966344 (age 8.430s)
  hex dump (first 24 bytes):
    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
    00 00 00 00 00 00 00 00                          ........
  backtrace:
    [<00000000991a6311>] kmem_cache_zalloc include/linux/slab.h:672 [inline]
    [<00000000991a6311>] lsm_inode_alloc security/security.c:590 [inline]
    [<00000000991a6311>] security_inode_alloc+0x2a/0xb0 security/security.c:973
    [<0000000023a2e600>] inode_init_always+0x10c/0x250 fs/inode.c:170
    [<000000007880491f>] alloc_inode+0x44/0x100 fs/inode.c:240
    [<000000004b11c791>] new_inode_pseudo+0x13/0x70 fs/inode.c:927
    [<00000000e814e070>] get_pipe_inode fs/pipe.c:855 [inline]
    [<00000000e814e070>] create_pipe_files+0x2b/0x2e0 fs/pipe.c:895
    [<00000000d8837ff0>] umd_setup+0x33/0x220 kernel/usermode_driver.c:104
    [<000000001a2022b4>] call_usermodehelper_exec_async+0xb4/0x1b0 kernel/umh.c:101
    [<0000000054a89bb8>] ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:296

BUG: memory leak
unreferenced object 0xffff88810b890d80 (size 192):
  comm "kworker/u4:1", pid 8428, jiffies 4294966344 (age 8.430s)
  hex dump (first 32 bytes):
    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
    90 0d 89 0b 81 88 ff ff 90 0d 89 0b 81 88 ff ff  ................
  backtrace:
    [<000000003feba959>] kmalloc include/linux/slab.h:552 [inline]
    [<000000003feba959>] kzalloc include/linux/slab.h:682 [inline]
    [<000000003feba959>] alloc_pipe_info+0x8f/0x320 fs/pipe.c:774
    [<00000000c808b9bf>] get_pipe_inode fs/pipe.c:863 [inline]
    [<00000000c808b9bf>] create_pipe_files+0x4d/0x2e0 fs/pipe.c:895
    [<00000000d8837ff0>] umd_setup+0x33/0x220 kernel/usermode_driver.c:104
    [<000000001a2022b4>] call_usermodehelper_exec_async+0xb4/0x1b0 kernel/umh.c:101
    [<0000000054a89bb8>] ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:296

BUG: memory leak
unreferenced object 0xffff888110903c00 (size 1024):
  comm "kworker/u4:1", pid 8428, jiffies 4294966344 (age 8.430s)
  hex dump (first 32 bytes):
    c0 b0 33 04 00 ea ff ff 04 00 00 00 00 00 00 00  ..3.............
    00 00 00 00 00 00 00 00 10 00 00 00 00 00 00 00  ................
  backtrace:
    [<000000002f541cf2>] kcalloc include/linux/slab.h:621 [inline]
    [<000000002f541cf2>] alloc_pipe_info+0x154/0x320 fs/pipe.c:791
    [<00000000c808b9bf>] get_pipe_inode fs/pipe.c:863 [inline]
    [<00000000c808b9bf>] create_pipe_files+0x4d/0x2e0 fs/pipe.c:895
    [<00000000d8837ff0>] umd_setup+0x33/0x220 kernel/usermode_driver.c:104
    [<000000001a2022b4>] call_usermodehelper_exec_async+0xb4/0x1b0 kernel/umh.c:101
    [<0000000054a89bb8>] ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:296

BUG: memory leak
unreferenced object 0xffff88810fb79f00 (size 192):
  comm "kworker/u4:1", pid 8428, jiffies 4294966344 (age 8.430s)
  hex dump (first 32 bytes):
    00 00 50 40 02 00 00 00 00 00 00 00 00 00 00 00  ..P@............
    00 00 00 00 00 00 00 00 00 9f b7 0f 81 88 ff ff  ................
  backtrace:
    [<00000000b2466ca3>] __d_alloc+0x2a/0x270 fs/dcache.c:1716
    [<000000001033a820>] d_alloc_pseudo+0x19/0x40 fs/dcache.c:1845
    [<00000000df09ab08>] alloc_file_pseudo+0x5f/0x140 fs/file_table.c:225
    [<00000000876a4da2>] create_pipe_files+0x138/0x2e0 fs/pipe.c:911
    [<00000000d8837ff0>] umd_setup+0x33/0x220 kernel/usermode_driver.c:104
    [<000000001a2022b4>] call_usermodehelper_exec_async+0xb4/0x1b0 kernel/umh.c:101
    [<0000000054a89bb8>] ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:296

BUG: memory leak
unreferenced object 0xffff88810192f400 (size 232):
  comm "kworker/u4:1", pid 8428, jiffies 4294966344 (age 8.430s)
  hex dump (first 32 bytes):
    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
    e0 17 04 01 81 88 ff ff 00 9f b7 0f 81 88 ff ff  ................
  backtrace:
    [<00000000f569ebba>] kmem_cache_zalloc include/linux/slab.h:672 [inline]
    [<00000000f569ebba>] __alloc_file+0x1f/0xf0 fs/file_table.c:101
    [<0000000049bdee35>] alloc_empty_file+0x69/0x120 fs/file_table.c:150
    [<0000000024a8c7da>] alloc_file+0x33/0x1b0 fs/file_table.c:192
    [<00000000fd1699c8>] alloc_file_pseudo+0xb2/0x140 fs/file_table.c:232
    [<00000000876a4da2>] create_pipe_files+0x138/0x2e0 fs/pipe.c:911
    [<00000000d8837ff0>] umd_setup+0x33/0x220 kernel/usermode_driver.c:104
    [<000000001a2022b4>] call_usermodehelper_exec_async+0xb4/0x1b0 kernel/umh.c:101
    [<0000000054a89bb8>] ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:296

Crashes (151):
Manager	Time	Kernel	Commit	Syzkaller	Config	Log	Report	Syz repro	C repro	Title
ci-upstream-gce-leak	2021/02/18 04:56	upstream	f40ddce8	14052202	.config	log	report	syz	C	memory leak in new_inode_pseudo
ci-upstream-gce-leak	2021/02/17 11:21	upstream	f40ddce8	052f8d9f	.config	log	report	syz	C	memory leak in new_inode_pseudo
ci-upstream-gce-leak	2021/02/08 01:27	upstream	b75dba7f	2ce644fc	.config	log	report	syz	C	memory leak in new_inode_pseudo
ci-upstream-gce-leak	2021/02/04 01:03	upstream	3afe9076	624dad51	.config	log	report	syz	C	memory leak in new_inode_pseudo
ci-upstream-gce-leak	2019/10/30 23:47	upstream	320000e7	a41ca8fa	.config	log	report	syz	C
ci-upstream-gce-leak	2019/10/28 21:27	upstream	9e5eefba	439d7b14	.config	log	report	syz	C
ci-upstream-gce-leak	2019/10/28 01:03	upstream	d6d5df1d	25bb509e	.config	log	report	syz	C
ci-upstream-gce-leak	2019/10/28 00:33	upstream	d6d5df1d	25bb509e	.config	log	report	syz	C
ci-upstream-gce-leak	2019/10/28 00:11	upstream	d6d5df1d	25bb509e	.config	log	report	syz	C
ci-upstream-gce-leak	2019/10/27 22:24	upstream	d6d5df1d	25bb509e	.config	log	report	syz	C
ci-upstream-gce-leak	2019/10/25 09:37	upstream	39a38bcb	d01bb02a	.config	log	report	syz	C
ci-upstream-gce-leak	2019/10/23 17:48	upstream	13b86bc4	b602d64b	.config	log	report	syz	C
ci-upstream-gce-leak	2019/10/23 06:50	upstream	3b7c59a1	d0686497	.config	log	report	syz	C
ci-upstream-gce-leak	2019/10/22 10:31	upstream	7d194c21	c59a7cd8	.config	log	report	syz	C
ci-upstream-gce-leak	2019/10/21 16:33	upstream	7d194c21	b24d2b8a	.config	log	report	syz	C
ci-upstream-gce-leak	2019/10/21 15:49	upstream	7d194c21	b24d2b8a	.config	log	report	syz	C
ci-upstream-gce-leak	2019/10/20 19:22	upstream	4fe34d61	8c88c9c1	.config	log	report	syz	C
ci-upstream-gce-leak	2019/10/19 17:38	upstream	998d7551	8c88c9c1	.config	log	report	syz	C
ci-upstream-gce-leak	2019/10/18 11:11	upstream	283ea345	8c88c9c1	.config	log	report	syz	C
ci-upstream-gce-leak	2019/10/18 10:51	upstream	283ea345	8c88c9c1	.config	log	report	syz	C
ci-upstream-gce-leak	2019/10/18 05:22	upstream	283ea345	8c88c9c1	.config	log	report	syz	C
ci-upstream-gce-leak	2019/10/18 04:50	upstream	283ea345	8c88c9c1	.config	log	report	syz	C
ci-upstream-gce-leak	2019/10/16 17:26	upstream	3b1f00ac	d4ea592f	.config	log	report	syz	C
ci-upstream-gce-leak	2019/10/15 01:11	upstream	4f5cafb5	05ad7292	.config	log	report	syz	C
ci-upstream-gce-leak	2019/10/14 01:27	upstream	da940012	2f661ec4	.config	log	report	syz	C
ci-upstream-gce-leak	2019/10/13 12:51	upstream	da940012	2f661ec4	.config	log	report	syz	C
ci-upstream-gce-leak	2019/10/13 05:28	upstream	328fefad	426631dd	.config	log	report	syz	C
ci-upstream-gce-leak	2019/10/11 04:09	upstream	9e208aa0	1a3bad90	.config	log	report	syz	C
ci-upstream-gce-leak	2019/10/10 05:12	upstream	8a8c600d	c4b9981b	.config	log	report	syz	C
ci-upstream-gce-leak	2019/10/09 14:38	upstream	e3280b54	312c6a5a	.config	log	report	syz	C
ci-upstream-gce-leak	2019/10/06 14:40	upstream	43b815c6	f3f7d9c8	.config	log	report	syz	C
ci-upstream-gce-leak	2019/10/06 13:06	upstream	43b815c6	f3f7d9c8	.config	log	report	syz	C
ci-upstream-gce-leak	2019/10/05 16:05	upstream	4ea65534	f3f7d9c8	.config	log	report	syz	C
ci-upstream-gce-leak	2019/10/05 15:37	upstream	4ea65534	f3f7d9c8	.config	log	report	syz	C
ci-upstream-gce-leak	2019/10/05 01:13	upstream	b145b0eb	f3f7d9c8	.config	log	report	syz	C
ci-upstream-gce-leak	2019/10/04 14:32	upstream	cc3a7bfe	b2f369e5	.config	log	report	syz	C
ci-upstream-gce-leak	2019/10/04 04:08	upstream	cc3a7bfe	fc17ba49	.config	log	report	syz	C
ci-upstream-gce-leak	2019/10/04 03:40	upstream	cc3a7bfe	fc17ba49	.config	log	report	syz	C
ci-upstream-gce-leak	2019/10/03 07:55	upstream	65aa35c9	2e29b534	.config	log	report	syz	C
ci-upstream-gce-leak	2019/10/03 07:34	upstream	65aa35c9	2e29b534	.config	log	report	syz	C
ci-upstream-gce-leak	2019/07/16 08:27	upstream	be8454af	6732e2c0	.config	log	report	syz	C
ci-upstream-gce-leak	2020/12/10 04:26	upstream	a68a0262	c090b4da	.config	log	report	syz
ci-upstream-gce-leak	2019/10/29 00:00	upstream	9e5eefba	439d7b14	.config	log	report	syz
ci-upstream-gce-leak	2019/10/25 17:51	upstream	39a38bcb	c2e837da	.config	log	report	syz
ci-upstream-gce-leak	2019/07/15 17:20	upstream	fec88ab0	139ac68a	.config	log	report	syz