syzbot

 sign-in | mailing list | source | docs
🐞 Open [963] 🐞 Fixed [3805] 🐞 Invalid [8174] 📈 Kernel Health 📈 Bug Lifetimes 📈 Fuzzing 📈 Crashes

memory leak in new_inode_pseudo (2)
Status: upstream: reported C repro on 2019/07/16 07:38
Reported-by: syzbot+e682cca30bc101a4d9d9@syzkaller.appspotmail.com
First crash: 1045d, last: 34d

Cause bisection: introduced by (bisect log) :
commit a21f2a3ec62abe2e06500d6550659a0ff5624fbb
Author: Michael Callahan <michaelcallahan@fb.com>
Date: Tue May 3 15:12:49 2016 +0000

  block: Minor blk_account_io_start usage cleanup

Crash: memory leak in next_bio (log)
Repro: C syz .config
similar bugs (1):
Kernel Title Repro Cause bisect Fix bisect Count Last Reported Patched Status
upstream memory leak in new_inode_pseudo C 136 1050d 1099d 13/22 fixed on 2019/07/10 21:40
Patch testing requests:
Created Duration User Patch Repo Result
2021/04/08 15:25 16m esmethedev@gmail.com https://github.com/HayashiEsme/linux.git master OK

Sample crash report:
Warning: Permanently added '10.128.1.56' (ECDSA) to the list of known hosts.
executing program
executing program
BUG: memory leak
unreferenced object 0xffff88810ffc12a0 (size 608):
  comm "kworker/u4:6", pid 8374, jiffies 4294943260 (age 13.000s)
  hex dump (first 32 bytes):
    80 11 04 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
    ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff  ................
  backtrace:
    [<ffffffff8157b7be>] alloc_inode+0xbe/0x100 fs/inode.c:236
    [<ffffffff8157d823>] new_inode_pseudo+0x13/0x70 fs/inode.c:928
    [<ffffffff81559afb>] get_pipe_inode fs/pipe.c:855 [inline]
    [<ffffffff81559afb>] create_pipe_files+0x2b/0x2e0 fs/pipe.c:895
    [<ffffffff8126c86d>] umd_setup+0xad/0x220 kernel/usermode_driver.c:115
    [<ffffffff812535d4>] call_usermodehelper_exec_async+0xb4/0x1b0 kernel/umh.c:101
    [<ffffffff8100227f>] ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:294

BUG: memory leak
unreferenced object 0xffff88811209f318 (size 24):
  comm "kworker/u4:6", pid 8374, jiffies 4294943260 (age 13.000s)
  hex dump (first 24 bytes):
    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
    00 00 00 00 00 00 00 00                          ........
  backtrace:
    [<ffffffff820e0aea>] kmem_cache_zalloc include/linux/slab.h:674 [inline]
    [<ffffffff820e0aea>] lsm_inode_alloc security/security.c:590 [inline]
    [<ffffffff820e0aea>] security_inode_alloc+0x2a/0xb0 security/security.c:973
    [<ffffffff815792e4>] inode_init_always+0x114/0x250 fs/inode.c:171
    [<ffffffff8157b744>] alloc_inode+0x44/0x100 fs/inode.c:241
    [<ffffffff8157d823>] new_inode_pseudo+0x13/0x70 fs/inode.c:928
    [<ffffffff81559afb>] get_pipe_inode fs/pipe.c:855 [inline]
    [<ffffffff81559afb>] create_pipe_files+0x2b/0x2e0 fs/pipe.c:895
    [<ffffffff8126c86d>] umd_setup+0xad/0x220 kernel/usermode_driver.c:115
    [<ffffffff812535d4>] call_usermodehelper_exec_async+0xb4/0x1b0 kernel/umh.c:101
    [<ffffffff8100227f>] ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:294

BUG: memory leak
unreferenced object 0xffff88810e110a80 (size 192):
  comm "kworker/u4:6", pid 8374, jiffies 4294943260 (age 13.000s)
  hex dump (first 32 bytes):
    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
    90 0a 11 0e 81 88 ff ff 90 0a 11 0e 81 88 ff ff  ................
  backtrace:
    [<ffffffff815590cf>] kmalloc include/linux/slab.h:554 [inline]
    [<ffffffff815590cf>] kzalloc include/linux/slab.h:684 [inline]
    [<ffffffff815590cf>] alloc_pipe_info+0x8f/0x320 fs/pipe.c:774
    [<ffffffff81559b1d>] get_pipe_inode fs/pipe.c:863 [inline]
    [<ffffffff81559b1d>] create_pipe_files+0x4d/0x2e0 fs/pipe.c:895
    [<ffffffff8126c86d>] umd_setup+0xad/0x220 kernel/usermode_driver.c:115
    [<ffffffff812535d4>] call_usermodehelper_exec_async+0xb4/0x1b0 kernel/umh.c:101
    [<ffffffff8100227f>] ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:294

BUG: memory leak
unreferenced object 0xffff888110c51800 (size 1024):
  comm "kworker/u4:6", pid 8374, jiffies 4294943260 (age 13.000s)
  hex dump (first 32 bytes):
    c0 99 38 04 00 ea ff ff 28 00 00 00 00 00 00 00  ..8.....(.......
    00 00 00 00 00 00 00 00 10 00 00 00 00 00 00 00  ................
  backtrace:
    [<ffffffff81559194>] kcalloc include/linux/slab.h:623 [inline]
    [<ffffffff81559194>] alloc_pipe_info+0x154/0x320 fs/pipe.c:791
    [<ffffffff81559b1d>] get_pipe_inode fs/pipe.c:863 [inline]
    [<ffffffff81559b1d>] create_pipe_files+0x4d/0x2e0 fs/pipe.c:895
    [<ffffffff8126c86d>] umd_setup+0xad/0x220 kernel/usermode_driver.c:115
    [<ffffffff812535d4>] call_usermodehelper_exec_async+0xb4/0x1b0 kernel/umh.c:101
    [<ffffffff8100227f>] ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:294

BUG: memory leak
unreferenced object 0xffff88810ffd5e40 (size 192):
  comm "kworker/u4:6", pid 8374, jiffies 4294943260 (age 13.000s)
  hex dump (first 32 bytes):
    00 00 50 40 02 00 00 00 00 00 00 00 00 00 00 00  ..P@............
    00 00 00 00 00 00 00 00 40 5e fd 0f 81 88 ff ff  ........@^......
  backtrace:
    [<ffffffff81572d4a>] __d_alloc+0x2a/0x270 fs/dcache.c:1742
    [<ffffffff815779e9>] d_alloc_pseudo+0x19/0x40 fs/dcache.c:1871
    [<ffffffff8154b4bf>] alloc_file_pseudo+0x5f/0x140 fs/file_table.c:225
    [<ffffffff81559c08>] create_pipe_files+0x138/0x2e0 fs/pipe.c:911
    [<ffffffff8126c86d>] umd_setup+0xad/0x220 kernel/usermode_driver.c:115
    [<ffffffff812535d4>] call_usermodehelper_exec_async+0xb4/0x1b0 kernel/umh.c:101
    [<ffffffff8100227f>] ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:294

BUG: memory leak
unreferenced object 0xffff888110c17c00 (size 232):
  comm "kworker/u4:6", pid 8374, jiffies 4294943260 (age 13.000s)
  hex dump (first 32 bytes):
    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
    e0 e7 04 01 81 88 ff ff 40 5e fd 0f 81 88 ff ff  ........@^......
  backtrace:
    [<ffffffff8154aabf>] kmem_cache_zalloc include/linux/slab.h:674 [inline]
    [<ffffffff8154aabf>] __alloc_file+0x1f/0xf0 fs/file_table.c:101
    [<ffffffff8154b1f9>] alloc_empty_file+0x69/0x120 fs/file_table.c:150
    [<ffffffff8154b2e3>] alloc_file+0x33/0x1b0 fs/file_table.c:192
    [<ffffffff8154b612>] alloc_file_clone+0x22/0x70 fs/file_table.c:244
    [<ffffffff81559c52>] create_pipe_files+0x182/0x2e0 fs/pipe.c:922
    [<ffffffff8126c86d>] umd_setup+0xad/0x220 kernel/usermode_driver.c:115
    [<ffffffff812535d4>] call_usermodehelper_exec_async+0xb4/0x1b0 kernel/umh.c:101
    [<ffffffff8100227f>] ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:294

Crashes (154):
Manager Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Title
ci-upstream-gce-leak 2021/03/19 06:57 upstream bf152b0b41dc 380dcc3e .config log report syz C memory leak in new_inode_pseudo
ci-upstream-gce-leak 2021/02/18 04:56 upstream f40ddce88593 14052202 .config log report syz C memory leak in new_inode_pseudo
ci-upstream-gce-leak 2021/02/17 11:21 upstream f40ddce88593 052f8d9f .config log report syz C memory leak in new_inode_pseudo
ci-upstream-gce-leak 2021/02/08 01:27 upstream b75dba7f472c 2ce644fc .config log report syz C memory leak in new_inode_pseudo
ci-upstream-gce-leak 2021/02/04 01:03 upstream 3afe9076a7c1 624dad51 .config log report syz C memory leak in new_inode_pseudo
ci-upstream-gce-leak 2019/10/30 23:47 upstream 320000e72ec0 a41ca8fa .config log report syz C
ci-upstream-gce-leak 2019/10/28 21:27 upstream 9e5eefba3d09 439d7b14 .config log report syz C
ci-upstream-gce-leak 2019/10/28 01:03 upstream d6d5df1db6e9 25bb509e .config log report syz C
ci-upstream-gce-leak 2019/10/28 00:33 upstream d6d5df1db6e9 25bb509e .config log report syz C
ci-upstream-gce-leak 2019/10/28 00:11 upstream d6d5df1db6e9 25bb509e .config log report syz C
ci-upstream-gce-leak 2019/10/27 22:24 upstream d6d5df1db6e9 25bb509e .config log report syz C
ci-upstream-gce-leak 2019/10/25 09:37 upstream 39a38bcba4ab d01bb02a .config log report syz C
ci-upstream-gce-leak 2019/10/23 17:48 upstream 13b86bc4cd64 b602d64b .config log report syz C
ci-upstream-gce-leak 2019/10/23 06:50 upstream 3b7c59a1950c d0686497 .config log report syz C
ci-upstream-gce-leak 2019/10/22 10:31 upstream 7d194c2100ad c59a7cd8 .config log report syz C
ci-upstream-gce-leak 2019/10/21 16:33 upstream 7d194c2100ad b24d2b8a .config log report syz C
ci-upstream-gce-leak 2019/10/21 15:49 upstream 7d194c2100ad b24d2b8a .config log report syz C
ci-upstream-gce-leak 2019/10/20 19:22 upstream 4fe34d61a3a9 8c88c9c1 .config log report syz C
ci-upstream-gce-leak 2019/10/19 17:38 upstream 998d75510e37 8c88c9c1 .config log report syz C
ci-upstream-gce-leak 2019/10/18 11:11 upstream 283ea345934d 8c88c9c1 .config log report syz C
ci-upstream-gce-leak 2019/10/18 10:51 upstream 283ea345934d 8c88c9c1 .config log report syz C
ci-upstream-gce-leak 2019/10/18 05:22 upstream 283ea345934d 8c88c9c1 .config log report syz C
ci-upstream-gce-leak 2019/10/18 04:50 upstream 283ea345934d 8c88c9c1 .config log report syz C
ci-upstream-gce-leak 2019/10/16 17:26 upstream 3b1f00aceb7a d4ea592f .config log report syz C
ci-upstream-gce-leak 2019/10/15 01:11 upstream 4f5cafb5cb84 05ad7292 .config log report syz C
ci-upstream-gce-leak 2019/10/14 01:27 upstream da94001239cc 2f661ec4 .config log report syz C
ci-upstream-gce-leak 2019/10/13 12:51 upstream da94001239cc 2f661ec4 .config log report syz C
ci-upstream-gce-leak 2019/10/13 05:28 upstream 328fefadd9cf 426631dd .config log report syz C
ci-upstream-gce-leak 2019/10/11 04:09 upstream 9e208aa06c21 1a3bad90 .config log report syz C
ci-upstream-gce-leak 2019/10/10 05:12 upstream 8a8c600de5dc c4b9981b .config log report syz C
ci-upstream-gce-leak 2019/10/09 14:38 upstream e3280b54afed 312c6a5a .config log report syz C
ci-upstream-gce-leak 2019/10/06 14:40 upstream 43b815c6a8e7 f3f7d9c8 .config log report syz C
ci-upstream-gce-leak 2019/10/06 13:06 upstream 43b815c6a8e7 f3f7d9c8 .config log report syz C
ci-upstream-gce-leak 2019/10/05 16:05 upstream 4ea655343ce4 f3f7d9c8 .config log report syz C
ci-upstream-gce-leak 2019/10/05 15:37 upstream 4ea655343ce4 f3f7d9c8 .config log report syz C
ci-upstream-gce-leak 2019/10/05 01:13 upstream b145b0eb2031 f3f7d9c8 .config log report syz C
ci-upstream-gce-leak 2019/10/04 14:32 upstream cc3a7bfe62b9 b2f369e5 .config log report syz C
ci-upstream-gce-leak 2019/10/04 04:08 upstream cc3a7bfe62b9 fc17ba49 .config log report syz C
ci-upstream-gce-leak 2019/10/04 03:40 upstream cc3a7bfe62b9 fc17ba49 .config log report syz C
ci-upstream-gce-leak 2019/10/03 07:55 upstream 65aa35c93cc0 2e29b534 .config log report syz C
ci-upstream-gce-leak 2019/10/03 07:34 upstream 65aa35c93cc0 2e29b534 .config log report syz C
ci-upstream-gce-leak 2019/07/16 08:27 upstream be8454afc50f 6732e2c0 .config log report syz C
ci-upstream-gce-leak 2022/04/21 07:02 upstream b253435746d9 d4befee1 .config log report syz memory leak in new_inode_pseudo
ci-upstream-gce-leak 2021/05/23 05:40 upstream 23d729263037 3c7fef33 .config log report syz memory leak in new_inode_pseudo
ci-upstream-gce-leak 2020/12/10 04:26 upstream a68a0262abda c090b4da .config log report syz
ci-upstream-gce-leak 2019/10/29 00:00 upstream 9e5eefba3d09 439d7b14 .config log report syz
ci-upstream-gce-leak 2019/10/25 17:51 upstream 39a38bcba4ab c2e837da .config log report syz
ci-upstream-gce-leak 2019/07/15 17:20 upstream fec88ab0af97 139ac68a .config log report syz