syzbot


memory leak in v9fs_cache_session_get_cookie

Status: fixed on 2019/10/15 23:40
Reported-by: syzbot+3a030a73b6c1e9833815@syzkaller.appspotmail.com
Fix commit: 962a991c5de1 9p/cache.c: Fix memory leak in v9fs_cache_session_get_cookie
First crash: 1179d, last: 1031d
similar bugs (1):
Kernel Title Repro Cause bisect Fix bisect Count Last Reported Patched Status
upstream memory leak in v9fs_cache_session_get_cookie (2) C 319 727d 1030d 0/23 upstream: reported C repro on 2019/10/16 19:52

Sample crash report:
BUG: memory leak
unreferenced object 0xffff888110b2bd20 (size 32):
  comm "syz-executor223", pid 6872, jiffies 4294947155 (age 16.570s)
  hex dump (first 32 bytes):
    34 32 39 34 39 34 37 31 35 35 00 00 00 00 00 00  4294947155......
    01 00 00 00 01 00 00 00 18 00 00 00 00 00 00 00  ................
  backtrace:
    [<00000000f8dcb684>] kmemleak_alloc_recursive include/linux/kmemleak.h:43 [inline]
    [<00000000f8dcb684>] slab_post_alloc_hook mm/slab.h:586 [inline]
    [<00000000f8dcb684>] slab_alloc mm/slab.c:3319 [inline]
    [<00000000f8dcb684>] kmem_cache_alloc_trace+0x145/0x2c0 mm/slab.c:3548
    [<000000006cc9bb19>] kmalloc include/linux/slab.h:556 [inline]
    [<000000006cc9bb19>] v9fs_random_cachetag fs/9p/cache.c:36 [inline]
    [<000000006cc9bb19>] v9fs_cache_session_get_cookie+0xa6/0x110 fs/9p/cache.c:52
    [<000000001a22cdee>] v9fs_session_init+0x5c3/0x880 fs/9p/v9fs.c:470
    [<0000000046303a68>] v9fs_mount+0x5e/0x3c0 fs/9p/vfs_super.c:124
    [<0000000041455dd8>] legacy_get_tree+0x27/0x80 fs/fs_context.c:647
    [<000000001fa6d22e>] vfs_get_tree+0x2d/0xe0 fs/super.c:1545
    [<00000000e19a7eeb>] do_new_mount fs/namespace.c:2823 [inline]
    [<00000000e19a7eeb>] do_mount+0x95f/0xc60 fs/namespace.c:3143
    [<00000000d41cbe4c>] ksys_mount+0xab/0x120 fs/namespace.c:3352
    [<0000000002d3db1b>] __do_sys_mount fs/namespace.c:3366 [inline]
    [<0000000002d3db1b>] __se_sys_mount fs/namespace.c:3363 [inline]
    [<0000000002d3db1b>] __x64_sys_mount+0x26/0x30 fs/namespace.c:3363
    [<000000006b6131cd>] do_syscall_64+0x73/0x1f0 arch/x86/entry/common.c:290
    [<0000000076d45a8a>] entry_SYSCALL_64_after_hwframe+0x44/0xa9

BUG: memory leak
unreferenced object 0xffff888112e548c0 (size 32):
  comm "syz-executor223", pid 6873, jiffies 4294947155 (age 16.570s)
  hex dump (first 32 bytes):
    34 32 39 34 39 34 37 31 35 35 00 00 00 00 00 00  4294947155......
    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
  backtrace:
    [<00000000f8dcb684>] kmemleak_alloc_recursive include/linux/kmemleak.h:43 [inline]
    [<00000000f8dcb684>] slab_post_alloc_hook mm/slab.h:586 [inline]
    [<00000000f8dcb684>] slab_alloc mm/slab.c:3319 [inline]
    [<00000000f8dcb684>] kmem_cache_alloc_trace+0x145/0x2c0 mm/slab.c:3548
    [<000000006cc9bb19>] kmalloc include/linux/slab.h:556 [inline]
    [<000000006cc9bb19>] v9fs_random_cachetag fs/9p/cache.c:36 [inline]
    [<000000006cc9bb19>] v9fs_cache_session_get_cookie+0xa6/0x110 fs/9p/cache.c:52
    [<000000001a22cdee>] v9fs_session_init+0x5c3/0x880 fs/9p/v9fs.c:470
    [<0000000046303a68>] v9fs_mount+0x5e/0x3c0 fs/9p/vfs_super.c:124
    [<0000000041455dd8>] legacy_get_tree+0x27/0x80 fs/fs_context.c:647
    [<000000001fa6d22e>] vfs_get_tree+0x2d/0xe0 fs/super.c:1545
    [<00000000e19a7eeb>] do_new_mount fs/namespace.c:2823 [inline]
    [<00000000e19a7eeb>] do_mount+0x95f/0xc60 fs/namespace.c:3143
    [<00000000d41cbe4c>] ksys_mount+0xab/0x120 fs/namespace.c:3352
    [<0000000002d3db1b>] __do_sys_mount fs/namespace.c:3366 [inline]
    [<0000000002d3db1b>] __se_sys_mount fs/namespace.c:3363 [inline]
    [<0000000002d3db1b>] __x64_sys_mount+0x26/0x30 fs/namespace.c:3363
    [<000000006b6131cd>] do_syscall_64+0x73/0x1f0 arch/x86/entry/common.c:290
    [<0000000076d45a8a>] entry_SYSCALL_64_after_hwframe+0x44/0xa9

BUG: memory leak
unreferenced object 0xffff888112e54700 (size 32):
  comm "syz-executor223", pid 6874, jiffies 4294947155 (age 16.570s)
  hex dump (first 32 bytes):
    34 32 39 34 39 34 37 31 35 35 00 72 00 70 69 70  4294947155.r.pip
    65 3a 5b 32 36 32 34 37 5d 00 00 00 00 00 00 00  e:[26247].......
  backtrace:
    [<00000000f8dcb684>] kmemleak_alloc_recursive include/linux/kmemleak.h:43 [inline]
    [<00000000f8dcb684>] slab_post_alloc_hook mm/slab.h:586 [inline]
    [<00000000f8dcb684>] slab_alloc mm/slab.c:3319 [inline]
    [<00000000f8dcb684>] kmem_cache_alloc_trace+0x145/0x2c0 mm/slab.c:3548
    [<000000006cc9bb19>] kmalloc include/linux/slab.h:556 [inline]
    [<000000006cc9bb19>] v9fs_random_cachetag fs/9p/cache.c:36 [inline]
    [<000000006cc9bb19>] v9fs_cache_session_get_cookie+0xa6/0x110 fs/9p/cache.c:52
    [<000000001a22cdee>] v9fs_session_init+0x5c3/0x880 fs/9p/v9fs.c:470
    [<0000000046303a68>] v9fs_mount+0x5e/0x3c0 fs/9p/vfs_super.c:124
    [<0000000041455dd8>] legacy_get_tree+0x27/0x80 fs/fs_context.c:647
    [<000000001fa6d22e>] vfs_get_tree+0x2d/0xe0 fs/super.c:1545
    [<00000000e19a7eeb>] do_new_mount fs/namespace.c:2823 [inline]
    [<00000000e19a7eeb>] do_mount+0x95f/0xc60 fs/namespace.c:3143
    [<00000000d41cbe4c>] ksys_mount+0xab/0x120 fs/namespace.c:3352
    [<0000000002d3db1b>] __do_sys_mount fs/namespace.c:3366 [inline]
    [<0000000002d3db1b>] __se_sys_mount fs/namespace.c:3363 [inline]
    [<0000000002d3db1b>] __x64_sys_mount+0x26/0x30 fs/namespace.c:3363
    [<000000006b6131cd>] do_syscall_64+0x73/0x1f0 arch/x86/entry/common.c:290
    [<0000000076d45a8a>] entry_SYSCALL_64_after_hwframe+0x44/0xa9

BUG: memory leak
unreferenced object 0xffff888112e54b00 (size 32):
  comm "syz-executor223", pid 6876, jiffies 4294947160 (age 16.520s)
  hex dump (first 32 bytes):
    34 32 39 34 39 34 37 31 36 30 00 00 00 00 00 00  4294947160......
    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
  backtrace:
    [<00000000f8dcb684>] kmemleak_alloc_recursive include/linux/kmemleak.h:43 [inline]
    [<00000000f8dcb684>] slab_post_alloc_hook mm/slab.h:586 [inline]
    [<00000000f8dcb684>] slab_alloc mm/slab.c:3319 [inline]
    [<00000000f8dcb684>] kmem_cache_alloc_trace+0x145/0x2c0 mm/slab.c:3548
    [<000000006cc9bb19>] kmalloc include/linux/slab.h:556 [inline]
    [<000000006cc9bb19>] v9fs_random_cachetag fs/9p/cache.c:36 [inline]
    [<000000006cc9bb19>] v9fs_cache_session_get_cookie+0xa6/0x110 fs/9p/cache.c:52
    [<000000001a22cdee>] v9fs_session_init+0x5c3/0x880 fs/9p/v9fs.c:470
    [<0000000046303a68>] v9fs_mount+0x5e/0x3c0 fs/9p/vfs_super.c:124
    [<0000000041455dd8>] legacy_get_tree+0x27/0x80 fs/fs_context.c:647
    [<000000001fa6d22e>] vfs_get_tree+0x2d/0xe0 fs/super.c:1545
    [<00000000e19a7eeb>] do_new_mount fs/namespace.c:2823 [inline]
    [<00000000e19a7eeb>] do_mount+0x95f/0xc60 fs/namespace.c:3143
    [<00000000d41cbe4c>] ksys_mount+0xab/0x120 fs/namespace.c:3352
    [<0000000002d3db1b>] __do_sys_mount fs/namespace.c:3366 [inline]
    [<0000000002d3db1b>] __se_sys_mount fs/namespace.c:3363 [inline]
    [<0000000002d3db1b>] __x64_sys_mount+0x26/0x30 fs/namespace.c:3363
    [<000000006b6131cd>] do_syscall_64+0x73/0x1f0 arch/x86/entry/common.c:290
    [<0000000076d45a8a>] entry_SYSCALL_64_after_hwframe+0x44/0xa9

BUG: memory leak
unreferenced object 0xffff888110b2bd20 (size 32):
  comm "syz-executor223", pid 6872, jiffies 4294947155 (age 16.630s)
  hex dump (first 32 bytes):
    34 32 39 34 39 34 37 31 35 35 00 00 00 00 00 00  4294947155......
    01 00 00 00 01 00 00 00 18 00 00 00 00 00 00 00  ................
  backtrace:
    [<00000000f8dcb684>] kmemleak_alloc_recursive include/linux/kmemleak.h:43 [inline]
    [<00000000f8dcb684>] slab_post_alloc_hook mm/slab.h:586 [inline]
    [<00000000f8dcb684>] slab_alloc mm/slab.c:3319 [inline]
    [<00000000f8dcb684>] kmem_cache_alloc_trace+0x145/0x2c0 mm/slab.c:3548
    [<000000006cc9bb19>] kmalloc include/linux/slab.h:556 [inline]
    [<000000006cc9bb19>] v9fs_random_cachetag fs/9p/cache.c:36 [inline]
    [<000000006cc9bb19>] v9fs_cache_session_get_cookie+0xa6/0x110 fs/9p/cache.c:52
    [<000000001a22cdee>] v9fs_session_init+0x5c3/0x880 fs/9p/v9fs.c:470
    [<0000000046303a68>] v9fs_mount+0x5e/0x3c0 fs/9p/vfs_super.c:124
    [<0000000041455dd8>] legacy_get_tree+0x27/0x80 fs/fs_context.c:647
    [<000000001fa6d22e>] vfs_get_tree+0x2d/0xe0 fs/super.c:1545
    [<00000000e19a7eeb>] do_new_mount fs/namespace.c:2823 [inline]
    [<00000000e19a7eeb>] do_mount+0x95f/0xc60 fs/namespace.c:3143
    [<00000000d41cbe4c>] ksys_mount+0xab/0x120 fs/namespace.c:3352
    [<0000000002d3db1b>] __do_sys_mount fs/namespace.c:3366 [inline]
    [<0000000002d3db1b>] __se_sys_mount fs/namespace.c:3363 [inline]
    [<0000000002d3db1b>] __x64_sys_mount+0x26/0x30 fs/namespace.c:3363
    [<000000006b6131cd>] do_syscall_64+0x73/0x1f0 arch/x86/entry/common.c:290
    [<0000000076d45a8a>] entry_SYSCALL_64_after_hwframe+0x44/0xa9

BUG: memory leak
unreferenced object 0xffff888112e548c0 (size 32):
  comm "syz-executor223", pid 6873, jiffies 4294947155 (age 16.630s)
  hex dump (first 32 bytes):
    34 32 39 34 39 34 37 31 35 35 00 00 00 00 00 00  4294947155......
    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
  backtrace:
    [<00000000f8dcb684>] kmemleak_alloc_recursive include/linux/kmemleak.h:43 [inline]
    [<00000000f8dcb684>] slab_post_alloc_hook mm/slab.h:586 [inline]
    [<00000000f8dcb684>] slab_alloc mm/slab.c:3319 [inline]
    [<00000000f8dcb684>] kmem_cache_alloc_trace+0x145/0x2c0 mm/slab.c:3548
    [<000000006cc9bb19>] kmalloc include/linux/slab.h:556 [inline]
    [<000000006cc9bb19>] v9fs_random_cachetag fs/9p/cache.c:36 [inline]
    [<000000006cc9bb19>] v9fs_cache_session_get_cookie+0xa6/0x110 fs/9p/cache.c:52
    [<000000001a22cdee>] v9fs_session_init+0x5c3/0x880 fs/9p/v9fs.c:470
    [<0000000046303a68>] v9fs_mount+0x5e/0x3c0 fs/9p/vfs_super.c:124
    [<0000000041455dd8>] legacy_get_tree+0x27/0x80 fs/fs_context.c:647
    [<000000001fa6d22e>] vfs_get_tree+0x2d/0xe0 fs/super.c:1545
    [<00000000e19a7eeb>] do_new_mount fs/namespace.c:2823 [inline]
    [<00000000e19a7eeb>] do_mount+0x95f/0xc60 fs/namespace.c:3143
    [<00000000d41cbe4c>] ksys_mount+0xab/0x120 fs/namespace.c:3352
    [<0000000002d3db1b>] __do_sys_mount fs/namespace.c:3366 [inline]
    [<0000000002d3db1b>] __se_sys_mount fs/namespace.c:3363 [inline]
    [<0000000002d3db1b>] __x64_sys_mount+0x26/0x30 fs/namespace.c:3363
    [<000000006b6131cd>] do_syscall_64+0x73/0x1f0 arch/x86/entry/common.c:290
    [<0000000076d45a8a>] entry_SYSCALL_64_after_hwframe+0x44/0xa9

BUG: memory leak
unreferenced object 0xffff888112e54700 (size 32):
  comm "syz-executor223", pid 6874, jiffies 4294947155 (age 16.630s)
  hex dump (first 32 bytes):
    34 32 39 34 39 34 37 31 35 35 00 72 00 70 69 70  4294947155.r.pip
    65 3a 5b 32 36 32 34 37 5d 00 00 00 00 00 00 00  e:[26247].......
  backtrace:
    [<00000000f8dcb684>] kmemleak_alloc_recursive include/linux/kmemleak.h:43 [inline]
    [<00000000f8dcb684>] slab_post_alloc_hook mm/slab.h:586 [inline]
    [<00000000f8dcb684>] slab_alloc mm/slab.c:3319 [inline]
    [<00000000f8dcb684>] kmem_cache_alloc_trace+0x145/0x2c0 mm/slab.c:3548
    [<000000006cc9bb19>] kmalloc include/linux/slab.h:556 [inline]
    [<000000006cc9bb19>] v9fs_random_cachetag fs/9p/cache.c:36 [inline]
    [<000000006cc9bb19>] v9fs_cache_session_get_cookie+0xa6/0x110 fs/9p/cache.c:52
    [<000000001a22cdee>] v9fs_session_init+0x5c3/0x880 fs/9p/v9fs.c:470
    [<0000000046303a68>] v9fs_mount+0x5e/0x3c0 fs/9p/vfs_super.c:124
    [<0000000041455dd8>] legacy_get_tree+0x27/0x80 fs/fs_context.c:647
    [<000000001fa6d22e>] vfs_get_tree+0x2d/0xe0 fs/super.c:1545
    [<00000000e19a7eeb>] do_new_mount fs/namespace.c:2823 [inline]
    [<00000000e19a7eeb>] do_mount+0x95f/0xc60 fs/namespace.c:3143
    [<00000000d41cbe4c>] ksys_mount+0xab/0x120 fs/namespace.c:3352
    [<0000000002d3db1b>] __do_sys_mount fs/namespace.c:3366 [inline]
    [<0000000002d3db1b>] __se_sys_mount fs/namespace.c:3363 [inline]
    [<0000000002d3db1b>] __x64_sys_mount+0x26/0x30 fs/namespace.c:3363
    [<000000006b6131cd>] do_syscall_64+0x73/0x1f0 arch/x86/entry/common.c:290
    [<0000000076d45a8a>] entry_SYSCALL_64_after_hwframe+0x44/0xa9

BUG: memory leak
unreferenced object 0xffff888112e54b00 (size 32):
  comm "syz-executor223", pid 6876, jiffies 4294947160 (age 16.580s)
  hex dump (first 32 bytes):
    34 32 39 34 39 34 37 31 36 30 00 00 00 00 00 00  4294947160......
    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
  backtrace:
    [<00000000f8dcb684>] kmemleak_alloc_recursive include/linux/kmemleak.h:43 [inline]
    [<00000000f8dcb684>] slab_post_alloc_hook mm/slab.h:586 [inline]
    [<00000000f8dcb684>] slab_alloc mm/slab.c:3319 [inline]
    [<00000000f8dcb684>] kmem_cache_alloc_trace+0x145/0x2c0 mm/slab.c:3548
    [<000000006cc9bb19>] kmalloc include/linux/slab.h:556 [inline]
    [<000000006cc9bb19>] v9fs_random_cachetag fs/9p/cache.c:36 [inline]
    [<000000006cc9bb19>] v9fs_cache_session_get_cookie+0xa6/0x110 fs/9p/cache.c:52
    [<000000001a22cdee>] v9fs_session_init+0x5c3/0x880 fs/9p/v9fs.c:470
    [<0000000046303a68>] v9fs_mount+0x5e/0x3c0 fs/9p/vfs_super.c:124
    [<0000000041455dd8>] legacy_get_tree+0x27/0x80 fs/fs_context.c:647
    [<000000001fa6d22e>] vfs_get_tree+0x2d/0xe0 fs/super.c:1545
    [<00000000e19a7eeb>] do_new_mount fs/namespace.c:2823 [inline]
    [<00000000e19a7eeb>] do_mount+0x95f/0xc60 fs/namespace.c:3143
    [<00000000d41cbe4c>] ksys_mount+0xab/0x120 fs/namespace.c:3352
    [<0000000002d3db1b>] __do_sys_mount fs/namespace.c:3366 [inline]
    [<0000000002d3db1b>] __se_sys_mount fs/namespace.c:3363 [inline]
    [<0000000002d3db1b>] __x64_sys_mount+0x26/0x30 fs/namespace.c:3363
    [<000000006b6131cd>] do_syscall_64+0x73/0x1f0 arch/x86/entry/common.c:290
    [<0000000076d45a8a>] entry_SYSCALL_64_after_hwframe+0x44/0xa9

BUG: memory leak
unreferenced object 0xffff888110b2bd20 (size 32):
  comm "syz-executor223", pid 6872, jiffies 4294947155 (age 17.560s)
  hex dump (first 32 bytes):
    34 32 39 34 39 34 37 31 35 35 00 00 00 00 00 00  4294947155......
    01 00 00 00 01 00 00 00 18 00 00 00 00 00 00 00  ................
  backtrace:
    [<00000000f8dcb684>] kmemleak_alloc_recursive include/linux/kmemleak.h:43 [inline]
    [<00000000f8dcb684>] slab_post_alloc_hook mm/slab.h:586 [inline]
    [<00000000f8dcb684>] slab_alloc mm/slab.c:3319 [inline]
    [<00000000f8dcb684>] kmem_cache_alloc_trace+0x145/0x2c0 mm/slab.c:3548
    [<000000006cc9bb19>] kmalloc include/linux/slab.h:556 [inline]
    [<000000006cc9bb19>] v9fs_random_cachetag fs/9p/cache.c:36 [inline]
    [<000000006cc9bb19>] v9fs_cache_session_get_cookie+0xa6/0x110 fs/9p/cache.c:52
    [<000000001a22cdee>] v9fs_session_init+0x5c3/0x880 fs/9p/v9fs.c:470
    [<0000000046303a68>] v9fs_mount+0x5e/0x3c0 fs/9p/vfs_super.c:124
    [<0000000041455dd8>] legacy_get_tree+0x27/0x80 fs/fs_context.c:647
    [<000000001fa6d22e>] vfs_get_tree+0x2d/0xe0 fs/super.c:1545
    [<00000000e19a7eeb>] do_new_mount fs/namespace.c:2823 [inline]
    [<00000000e19a7eeb>] do_mount+0x95f/0xc60 fs/namespace.c:3143
    [<00000000d41cbe4c>] ksys_mount+0xab/0x120 fs/namespace.c:3352
    [<0000000002d3db1b>] __do_sys_mount fs/namespace.c:3366 [inline]
    [<0000000002d3db1b>] __se_sys_mount fs/namespace.c:3363 [inline]
    [<0000000002d3db1b>] __x64_sys_mount+0x26/0x30 fs/namespace.c:3363
    [<000000006b6131cd>] do_syscall_64+0x73/0x1f0 arch/x86/entry/common.c:290
    [<0000000076d45a8a>] entry_SYSCALL_64_after_hwframe+0x44/0xa9

BUG: memory leak
unreferenced object 0xffff888112e548c0 (size 32):
  comm "syz-executor223", pid 6873, jiffies 4294947155 (age 17.560s)
  hex dump (first 32 bytes):
    34 32 39 34 39 34 37 31 35 35 00 00 00 00 00 00  4294947155......
    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
  backtrace:
    [<00000000f8dcb684>] kmemleak_alloc_recursive include/linux/kmemleak.h:43 [inline]
    [<00000000f8dcb684>] slab_post_alloc_hook mm/slab.h:586 [inline]
    [<00000000f8dcb684>] slab_alloc mm/slab.c:3319 [inline]
    [<00000000f8dcb684>] kmem_cache_alloc_trace+0x145/0x2c0 mm/slab.c:3548
    [<000000006cc9bb19>] kmalloc include/linux/slab.h:556 [inline]
    [<000000006cc9bb19>] v9fs_random_cachetag fs/9p/cache.c:36 [inline]
    [<000000006cc9bb19>] v9fs_cache_session_get_cookie+0xa6/0x110 fs/9p/cache.c:52
    [<000000001a22cdee>] v9fs_session_init+0x5c3/0x880 fs/9p/v9fs.c:470
    [<0000000046303a68>] v9fs_mount+0x5e/0x3c0 fs/9p/vfs_super.c:124
    [<0000000041455dd8>] legacy_get_tree+0x27/0x80 fs/fs_context.c:647
    [<000000001fa6d22e>] vfs_get_tree+0x2d/0xe0 fs/super.c:1545
    [<00000000e19a7eeb>] do_new_mount fs/namespace.c:2823 [inline]
    [<00000000e19a7eeb>] do_mount+0x95f/0xc60 fs/namespace.c:3143
    [<00000000d41cbe4c>] ksys_mount+0xab/0x120 fs/namespace.c:3352
    [<0000000002d3db1b>] __do_sys_mount fs/namespace.c:3366 [inline]
    [<0000000002d3db1b>] __se_sys_mount fs/namespace.c:3363 [inline]
    [<0000000002d3db1b>] __x64_sys_mount+0x26/0x30 fs/namespace.c:3363
    [<000000006b6131cd>] do_syscall_64+0x73/0x1f0 arch/x86/entry/common.c:290
    [<0000000076d45a8a>] entry_SYSCALL_64_after_hwframe+0x44/0xa9

BUG: memory leak
unreferenced object 0xffff888112e54700 (size 32):
  comm "syz-executor223", pid 6874, jiffies 4294947155 (age 17.560s)
  hex dump (first 32 bytes):
    34 32 39 34 39 34 37 31 35 35 00 72 00 70 69 70  4294947155.r.pip
    65 3a 5b 32 36 32 34 37 5d 00 00 00 00 00 00 00  e:[26247].......
  backtrace:
    [<00000000f8dcb684>] kmemleak_alloc_recursive include/linux/kmemleak.h:43 [inline]
    [<00000000f8dcb684>] slab_post_alloc_hook mm/slab.h:586 [inline]
    [<00000000f8dcb684>] slab_alloc mm/slab.c:3319 [inline]
    [<00000000f8dcb684>] kmem_cache_alloc_trace+0x145/0x2c0 mm/slab.c:3548
    [<000000006cc9bb19>] kmalloc include/linux/slab.h:556 [inline]
    [<000000006cc9bb19>] v9fs_random_cachetag fs/9p/cache.c:36 [inline]
    [<000000006cc9bb19>] v9fs_cache_session_get_cookie+0xa6/0x110 fs/9p/cache.c:52
    [<000000001a22cdee>] v9fs_session_init+0x5c3/0x880 fs/9p/v9fs.c:470
    [<0000000046303a68>] v9fs_mount+0x5e/0x3c0 fs/9p/vfs_super.c:124
    [<0000000041455dd8>] legacy_get_tree+0x27/0x80 fs/fs_context.c:647
    [<000000001fa6d22e>] vfs_get_tree+0x2d/0xe0 fs/super.c:1545
    [<00000000e19a7eeb>] do_new_mount fs/namespace.c:2823 [inline]
    [<00000000e19a7eeb>] do_mount+0x95f/0xc60 fs/namespace.c:3143
    [<00000000d41cbe4c>] ksys_mount+0xab/0x120 fs/namespace.c:3352
    [<0000000002d3db1b>] __do_sys_mount fs/namespace.c:3366 [inline]
    [<0000000002d3db1b>] __se_sys_mount fs/namespace.c:3363 [inline]
    [<0000000002d3db1b>] __x64_sys_mount+0x26/0x30 fs/namespace.c:3363
    [<000000006b6131cd>] do_syscall_64+0x73/0x1f0 arch/x86/entry/common.c:290
    [<0000000076d45a8a>] entry_SYSCALL_64_after_hwframe+0x44/0xa9

BUG: memory leak
unreferenced object 0xffff888112e54b00 (size 32):
  comm "syz-executor223", pid 6876, jiffies 4294947160 (age 17.510s)
  hex dump (first 32 bytes):
    34 32 39 34 39 34 37 31 36 30 00 00 00 00 00 00  4294947160......
    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
  backtrace:
    [<00000000f8dcb684>] kmemleak_alloc_recursive include/linux/kmemleak.h:43 [inline]
    [<00000000f8dcb684>] slab_post_alloc_hook mm/slab.h:586 [inline]
    [<00000000f8dcb684>] slab_alloc mm/slab.c:3319 [inline]
    [<00000000f8dcb684>] kmem_cache_alloc_trace+0x145/0x2c0 mm/slab.c:3548
    [<000000006cc9bb19>] kmalloc include/linux/slab.h:556 [inline]
    [<000000006cc9bb19>] v9fs_random_cachetag fs/9p/cache.c:36 [inline]
    [<000000006cc9bb19>] v9fs_cache_session_get_cookie+0xa6/0x110 fs/9p/cache.c:52
    [<000000001a22cdee>] v9fs_session_init+0x5c3/0x880 fs/9p/v9fs.c:470
    [<0000000046303a68>] v9fs_mount+0x5e/0x3c0 fs/9p/vfs_super.c:124
    [<0000000041455dd8>] legacy_get_tree+0x27/0x80 fs/fs_context.c:647
    [<000000001fa6d22e>] vfs_get_tree+0x2d/0xe0 fs/super.c:1545
    [<00000000e19a7eeb>] do_new_mount fs/namespace.c:2823 [inline]
    [<00000000e19a7eeb>] do_mount+0x95f/0xc60 fs/namespace.c:3143
    [<00000000d41cbe4c>] ksys_mount+0xab/0x120 fs/namespace.c:3352
    [<0000000002d3db1b>] __do_sys_mount fs/namespace.c:3366 [inline]
    [<0000000002d3db1b>] __se_sys_mount fs/namespace.c:3363 [inline]
    [<0000000002d3db1b>] __x64_sys_mount+0x26/0x30 fs/namespace.c:3363
    [<000000006b6131cd>] do_syscall_64+0x73/0x1f0 arch/x86/entry/common.c:290
    [<0000000076d45a8a>] entry_SYSCALL_64_after_hwframe+0x44/0xa9

BUG: memory leak
unreferenced object 0xffff888110b2bd20 (size 32):
  comm "syz-executor223", pid 6872, jiffies 4294947155 (age 18.480s)
  hex dump (first 32 bytes):
    34 32 39 34 39 34 37 31 35 35 00 00 00 00 00 00  4294947155......
    01 00 00 00 01 00 00 00 18 00 00 00 00 00 00 00  ................
  backtrace:
    [<00000000f8dcb684>] kmemleak_alloc_recursive include/linux/kmemleak.h:43 [inline]
    [<00000000f8dcb684>] slab_post_alloc_hook mm/slab.h:586 [inline]
    [<00000000f8dcb684>] slab_alloc mm/slab.c:3319 [inline]
    [<00000000f8dcb684>] kmem_cache_alloc_trace+0x145/0x2c0 mm/slab.c:3548
    [<000000006cc9bb19>] kmalloc include/linux/slab.h:556 [inline]
    [<000000006cc9bb19>] v9fs_random_cachetag fs/9p/cache.c:36 [inline]
    [<000000006cc9bb19>] v9fs_cache_session_get_cookie+0xa6/0x110 fs/9p/cache.c:52
    [<000000001a22cdee>] v9fs_session_init+0x5c3/0x880 fs/9p/v9fs.c:470
    [<0000000046303a68>] v9fs_mount+0x5e/0x3c0 fs/9p/vfs_super.c:124
    [<0000000041455dd8>] legacy_get_tree+0x27/0x80 fs/fs_context.c:647
    [<000000001fa6d22e>] vfs_get_tree+0x2d/0xe0 fs/super.c:1545
    [<00000000e19a7eeb>] do_new_mount fs/namespace.c:2823 [inline]
    [<00000000e19a7eeb>] do_mount+0x95f/0xc60 fs/namespace.c:3143
    [<00000000d41cbe4c>] ksys_mount+0xab/0x120 fs/namespace.c:3352
    [<0000000002d3db1b>] __do_sys_mount fs/namespace.c:3366 [inline]
    [<0000000002d3db1b>] __se_sys_mount fs/namespace.c:3363 [inline]
    [<0000000002d3db1b>] __x64_sys_mount+0x26/0x30 fs/namespace.c:3363
    [<000000006b6131cd>] do_syscall_64+0x73/0x1f0 arch/x86/entry/common.c:290
    [<0000000076d45a8a>] entry_SYSCALL_64_after_hwframe+0x44/0xa9

BUG: memory leak
unreferenced object 0xffff888112e548c0 (size 32):
  comm "syz-executor223", pid 6873, jiffies 4294947155 (age 18.480s)
  hex dump (first 32 bytes):
    34 32 39 34 39 34 37 31 35 35 00 00 00 00 00 00  4294947155......
    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
  backtrace:
    [<00000000f8dcb684>] kmemleak_alloc_recursive include/linux/kmemleak.h:43 [inline]
    [<00000000f8dcb684>] slab_post_alloc_hook mm/slab.h:586 [inline]
    [<00000000f8dcb684>] slab_alloc mm/slab.c:3319 [inline]
    [<00000000f8dcb684>] kmem_cache_alloc_trace+0x145/0x2c0 mm/slab.c:3548
    [<000000006cc9bb19>] kmalloc include/linux/slab.h:556 [inline]
    [<000000006cc9bb19>] v9fs_random_cachetag fs/9p/cache.c:36 [inline]
    [<000000006cc9bb19>] v9fs_cache_session_get_cookie+0xa6/0x110 fs/9p/cache.c:52
    [<000000001a22cdee>] v9fs_session_init+0x5c3/0x880 fs/9p/v9fs.c:470
    [<0000000046303a68>] v9fs_mount+0x5e/0x3c0 fs/9p/vfs_super.c:124
    [<0000000041455dd8>] legacy_get_tree+0x27/0x80 fs/fs_context.c:647
    [<000000001fa6d22e>] vfs_get_tree+0x2d/0xe0 fs/super.c:1545
    [<00000000e19a7eeb>] do_new_mount fs/namespace.c:2823 [inline]
    [<00000000e19a7eeb>] do_mount+0x95f/0xc60 fs/namespace.c:3143
    [<00000000d41cbe4c>] ksys_mount+0xab/0x120 fs/namespace.c:3352
    [<0000000002d3db1b>] __do_sys_mount fs/namespace.c:3366 [inline]
    [<0000000002d3db1b>] __se_sys_mount fs/namespace.c:3363 [inline]
    [<0000000002d3db1b>] __x64_sys_mount+0x26/0x30 fs/namespace.c:3363
    [<000000006b6131cd>] do_syscall_64+0x73/0x1f0 arch/x86/entry/common.c:290
    [<0000000076d45a8a>] entry_SYSCALL_64_after_hwframe+0x44/0xa9

BUG: memory leak
unreferenced object 0xffff888112e54700 (size 32):
  comm "syz-executor223", pid 6874, jiffies 4294947155 (age 18.480s)
  hex dump (first 32 bytes):
    34 32 39 34 39 34 37 31 35 35 00 72 00 70 69 70  4294947155.r.pip
    65 3a 5b 32 36 32 34 37 5d 00 00 00 00 00 00 00  e:[26247].......
  backtrace:
    [<00000000f8dcb684>] kmemleak_alloc_recursive include/linux/kmemleak.h:43 [inline]
    [<00000000f8dcb684>] slab_post_alloc_hook mm/slab.h:586 [inline]
    [<00000000f8dcb684>] slab_alloc mm/slab.c:3319 [inline]
    [<00000000f8dcb684>] kmem_cache_alloc_trace+0x145/0x2c0 mm/slab.c:3548
    [<000000006cc9bb19>] kmalloc include/linux/slab.h:556 [inline]
    [<000000006cc9bb19>] v9fs_random_cachetag fs/9p/cache.c:36 [inline]
    [<000000006cc9bb19>] v9fs_cache_session_get_cookie+0xa6/0x110 fs/9p/cache.c:52
    [<000000001a22cdee>] v9fs_session_init+0x5c3/0x880 fs/9p/v9fs.c:470
    [<0000000046303a68>] v9fs_mount+0x5e/0x3c0 fs/9p/vfs_super.c:124
    [<0000000041455dd8>] legacy_get_tree+0x27/0x80 fs/fs_context.c:647
    [<000000001fa6d22e>] vfs_get_tree+0x2d/0xe0 fs/super.c:1545
    [<00000000e19a7eeb>] do_new_mount fs/namespace.c:2823 [inline]
    [<00000000e19a7eeb>] do_mount+0x95f/0xc60 fs/namespace.c:3143
    [<00000000d41cbe4c>] ksys_mount+0xab/0x120 fs/namespace.c:3352
    [<0000000002d3db1b>] __do_sys_mount fs/namespace.c:3366 [inline]
    [<0000000002d3db1b>] __se_sys_mount fs/namespace.c:3363 [inline]
    [<0000000002d3db1b>] __x64_sys_mount+0x26/0x30 fs/namespace.c:3363
    [<000000006b6131cd>] do_syscall_64+0x73/0x1f0 arch/x86/entry/common.c:290
    [<0000000076d45a8a>] entry_SYSCALL_64_after_hwframe+0x44/0xa9

BUG: memory leak
unreferenced object 0xffff888112e54b00 (size 32):
  comm "syz-executor223", pid 6876, jiffies 4294947160 (age 18.430s)
  hex dump (first 32 bytes):
    34 32 39 34 39 34 37 31 36 30 00 00 00 00 00 00  4294947160......
    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
  backtrace:
    [<00000000f8dcb684>] kmemleak_alloc_recursive include/linux/kmemleak.h:43 [inline]
    [<00000000f8dcb684>] slab_post_alloc_hook mm/slab.h:586 [inline]
    [<00000000f8dcb684>] slab_alloc mm/slab.c:3319 [inline]
    [<00000000f8dcb684>] kmem_cache_alloc_trace+0x145/0x2c0 mm/slab.c:3548
    [<000000006cc9bb19>] kmalloc include/linux/slab.h:556 [inline]
    [<000000006cc9bb19>] v9fs_random_cachetag fs/9p/cache.c:36 [inline]
    [<000000006cc9bb19>] v9fs_cache_session_get_cookie+0xa6/0x110 fs/9p/cache.c:52
    [<000000001a22cdee>] v9fs_session_init+0x5c3/0x880 fs/9p/v9fs.c:470
    [<0000000046303a68>] v9fs_mount+0x5e/0x3c0 fs/9p/vfs_super.c:124
    [<0000000041455dd8>] legacy_get_tree+0x27/0x80 fs/fs_context.c:647
    [<000000001fa6d22e>] vfs_get_tree+0x2d/0xe0 fs/super.c:1545
    [<00000000e19a7eeb>] do_new_mount fs/namespace.c:2823 [inline]
    [<00000000e19a7eeb>] do_mount+0x95f/0xc60 fs/namespace.c:3143
    [<00000000d41cbe4c>] ksys_mount+0xab/0x120 fs/namespace.c:3352
    [<0000000002d3db1b>] __do_sys_mount fs/namespace.c:3366 [inline]
    [<0000000002d3db1b>] __se_sys_mount fs/namespace.c:3363 [inline]
    [<0000000002d3db1b>] __x64_sys_mount+0x26/0x30 fs/namespace.c:3363
    [<000000006b6131cd>] do_syscall_64+0x73/0x1f0 arch/x86/entry/common.c:290
    [<0000000076d45a8a>] entry_SYSCALL_64_after_hwframe+0x44/0xa9

executing program
executing program
executing program
executing program

Crashes (242):
Manager Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Title
ci-upstream-gce-leak 2019/10/15 12:48 upstream 5bc52f64e884 b5268b89 .config log report syz C
ci-upstream-gce-leak 2019/10/14 21:13 upstream 4f5cafb5cb84 05ad7292 .config log report syz C
ci-upstream-gce-leak 2019/10/14 19:29 upstream 4f5cafb5cb84 05ad7292 .config log report syz C
ci-upstream-gce-leak 2019/10/14 12:48 upstream d4615e5a4680 a6aef847 .config log report syz C
ci-upstream-gce-leak 2019/10/14 06:59 upstream d4615e5a4680 2f661ec4 .config log report syz C
ci-upstream-gce-leak 2019/10/13 16:00 upstream da94001239cc 2f661ec4 .config log report syz C
ci-upstream-gce-leak 2019/10/13 00:35 upstream 328fefadd9cf 426631dd .config log report syz C
ci-upstream-gce-leak 2019/10/12 22:29 upstream 1c0cc5f1ae5e 426631dd .config log report syz C
ci-upstream-gce-leak 2019/10/12 16:50 upstream 1c0cc5f1ae5e 426631dd .config log report syz C
ci-upstream-gce-leak 2019/10/12 11:39 upstream 1c0cc5f1ae5e 426631dd .config log report syz C
ci-upstream-gce-leak 2019/10/11 23:59 upstream 9892f9f6cf83 426631dd .config log report syz C
ci-upstream-gce-leak 2019/10/11 23:40 upstream 9892f9f6cf83 426631dd .config log report syz C
ci-upstream-gce-leak 2019/10/11 00:43 upstream 9e208aa06c21 1a3bad90 .config log report syz C
ci-upstream-gce-leak 2019/10/10 20:50 upstream fb20da6af705 a4efa8c0 .config log report syz C
ci-upstream-gce-leak 2019/10/10 11:59 upstream 8a8c600de5dc a4efa8c0 .config log report syz C
ci-upstream-gce-leak 2019/10/10 07:02 upstream 8a8c600de5dc c4b9981b .config log report syz C
ci-upstream-gce-leak 2019/10/08 21:31 upstream eda57a0e4299 b1ebbfef .config log report syz C
ci-upstream-gce-leak 2019/10/08 15:45 upstream eda57a0e4299 137e37ca .config log report syz C
ci-upstream-gce-leak 2019/10/06 23:35 upstream 7cdb85df6061 f3f7d9c8 .config log report syz C
ci-upstream-gce-leak 2019/10/05 23:19 upstream 4ea655343ce4 f3f7d9c8 .config log report syz C
ci-upstream-gce-leak 2019/10/05 11:10 upstream b145b0eb2031 f3f7d9c8 .config log report syz C
ci-upstream-gce-leak 2019/10/05 10:33 upstream b145b0eb2031 f3f7d9c8 .config log report syz C
ci-upstream-gce-leak 2019/10/05 06:20 upstream b145b0eb2031 f3f7d9c8 .config log report syz C
ci-upstream-gce-leak 2019/10/04 18:15 upstream cc3a7bfe62b9 3e1e84d4 .config log report syz C
ci-upstream-gce-leak 2019/10/03 16:24 upstream 0f1a7b3fac05 fc17ba49 .config log report syz C
ci-upstream-gce-leak 2019/10/03 15:43 upstream 0f1a7b3fac05 fc17ba49 .config log report syz C
ci-upstream-gce-leak 2019/10/03 05:33 upstream 65aa35c93cc0 2e29b534 .config log report syz C
ci-upstream-gce-leak 2019/10/03 02:30 upstream 65aa35c93cc0 2e29b534 .config log report syz C
ci-upstream-gce-leak 2019/10/02 14:16 upstream 54ecb8f7028c 2e29b534 .config log report syz C
ci-upstream-gce-leak 2019/10/02 13:38 upstream 54ecb8f7028c 2e29b534 .config log report syz C
ci-upstream-gce-leak 2019/10/01 03:45 upstream 54ecb8f7028c c7a4fb99 .config log report syz C
ci-upstream-gce-leak 2019/09/30 00:26 upstream a3c0e7b1fe1f c1ad5441 .config log report syz C
ci-upstream-gce-leak 2019/09/29 23:51 upstream a3c0e7b1fe1f c1ad5441 .config log report syz C
ci-upstream-gce-leak 2019/09/29 15:44 upstream 02dc96ef6c25 c1ad5441 .config log report syz C
ci-upstream-gce-leak 2019/09/28 17:05 upstream f1f2f614d535 eb6b9855 .config log report syz C
ci-upstream-gce-leak 2019/09/28 09:58 upstream 8f744bdee4fe d8074e0b .config log report syz C
ci-upstream-gce-leak 2019/09/28 04:05 upstream 8f744bdee4fe d8074e0b .config log report syz C
ci-upstream-gce-leak 2019/09/27 17:18 upstream da05b5ea12c1 d8074e0b .config log report syz C
ci-upstream-gce-leak 2019/09/27 11:20 upstream da05b5ea12c1 2f1548bc .config log report syz C
ci-upstream-gce-leak 2019/09/27 00:22 upstream cbafe18c7102 2f1548bc .config log report syz C
ci-upstream-gce-leak 2019/09/26 21:43 upstream cbafe18c7102 2f1548bc .config log report syz C
ci-upstream-gce-leak 2019/05/20 20:49 upstream f49aa1de9836 8285069f .config log report syz C
ci-upstream-gce-leak 2019/09/30 13:48 upstream 97f9a3c4eee5 c7a4fb99 .config log report syz