syzbot


memory leak in udf_process_sequence

Status: fixed on 2020/11/16 12:12
Reported-by: syzbot+128f4dd6e796c98b3760@syzkaller.appspotmail.com
Fix commit: a7be300de800 udf: Fix memory leak when mounting
First crash: 740d, last: 735d
Patch testing requests:
Created Duration User Patch Repo Result
2020/09/22 06:15 15m yepeilin.cs@gmail.com patch upstream OK

Sample crash report:
BUG: memory leak
unreferenced object 0xffff88811a2ed600 (size 512):
  comm "syz-executor502", pid 6490, jiffies 4294942165 (age 14.690s)
  hex dump (first 32 bytes):
    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
  backtrace:
    [<000000000f3f91a0>] kmalloc include/linux/slab.h:554 [inline]
    [<000000000f3f91a0>] kmalloc_array include/linux/slab.h:593 [inline]
    [<000000000f3f91a0>] kcalloc include/linux/slab.h:605 [inline]
    [<000000000f3f91a0>] udf_process_sequence+0x7e/0x1080 fs/udf/super.c:1676
    [<00000000671e9082>] udf_load_sequence fs/udf/super.c:1799 [inline]
    [<00000000671e9082>] udf_check_anchor_block+0x14a/0x1a0 fs/udf/super.c:1835
    [<00000000e962ebeb>] udf_scan_anchors+0x9e/0x240 fs/udf/super.c:1868
    [<000000001a6bf00c>] udf_find_anchor fs/udf/super.c:1925 [inline]
    [<000000001a6bf00c>] udf_load_vrs+0x1be/0x3b0 fs/udf/super.c:1990
    [<000000003bf77af6>] udf_fill_super+0x286/0x7a5 fs/udf/super.c:2183
    [<00000000a7dcada4>] mount_bdev+0x1d3/0x210 fs/super.c:1417
    [<000000002320066c>] legacy_get_tree+0x26/0x70 fs/fs_context.c:592
    [<00000000dcab156a>] vfs_get_tree+0x28/0xe0 fs/super.c:1547
    [<00000000e86f0702>] do_new_mount fs/namespace.c:2875 [inline]
    [<00000000e86f0702>] path_mount+0x90e/0xda0 fs/namespace.c:3192
    [<00000000cf8a82c1>] do_mount fs/namespace.c:3205 [inline]
    [<00000000cf8a82c1>] __do_sys_mount fs/namespace.c:3413 [inline]
    [<00000000cf8a82c1>] __se_sys_mount fs/namespace.c:3390 [inline]
    [<00000000cf8a82c1>] __x64_sys_mount+0x140/0x190 fs/namespace.c:3390
    [<00000000cd49928d>] do_syscall_64+0x2d/0x70 arch/x86/entry/common.c:46
    [<00000000143ed806>] entry_SYSCALL_64_after_hwframe+0x44/0xa9


Crashes (4):
Manager Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Title
ci-upstream-gce-leak 2020/09/25 07:32 upstream 171d4ff79f96 54289b08 .config log report syz C
ci-upstream-gce-leak 2020/09/22 06:16 upstream 98477740630f 9e1fa68e .config log report syz C
ci-upstream-gce-leak 2020/09/21 14:07 upstream ba4f184e126b 9e1fa68e .config log report syz C
ci-upstream-gce-leak 2020/09/20 14:25 upstream 325d0eab4f31 9564d2e9 .config log report syz C
* Struck through repros no longer work on HEAD.