memory leak in ip_mc_add_src ( Not tainted 5.8.0-rc3+)

1 view
Skip to first unread message

cH3332 XR

unread,
Jul 10, 2020, 2:18:17 AM7/10/20
to linu...@kvack.org, syzk...@googlegroups.com
Hi,
SYZKALLER found the following Memory leak 

-----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
BUG: memory leak
unreferenced object 0xffff955412ff9e00 (size 32):
  comm "syz-executor.3", pid 4726, jiffies 4294777846 (age 3098.168s)
  hex dump (first 32 bytes):
    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
    06 00 00 00 00 00 00 00 ac 1e 00 04 00 00 00 00  ................
  backtrace:
    [<000000002976d53e>] ip_mc_add_src+0x35f/0x3e0
    [<00000000f22fc984>] ip_mc_source+0x2db/0x4e0
    [<00000000a814b668>] do_ip_setsockopt.isra.14+0x541/0x11c0
    [<0000000071f25adf>] ip_setsockopt+0x33/0xa0
    [<00000000a49ec12e>] udp_setsockopt+0x40/0x90
    [<000000002cc8a42f>] __sys_setsockopt+0x99/0x120
    [<00000000167d1a29>] __x64_sys_setsockopt+0x22/0x30
    [<00000000971d38a0>] do_syscall_64+0x3e/0x70
    [<00000000b19407da>] entry_SYSCALL_64_after_hwframe+0x44/0xa9

BUG: memory leak
unreferenced object 0xffff955412ff9280 (size 32):
  comm "syz-executor.3", pid 4726, jiffies 4294777846 (age 3098.168s)
  hex dump (first 32 bytes):
    20 0d 77 0c 54 95 ff ff 00 00 00 00 00 00 00 00   .w.T...........
    07 00 00 00 00 00 00 00 ac 1e 00 04 00 01 00 00  ................
  backtrace:
    [<000000002976d53e>] ip_mc_add_src+0x35f/0x3e0
    [<00000000f22fc984>] ip_mc_source+0x2db/0x4e0
    [<00000000a814b668>] do_ip_setsockopt.isra.14+0x541/0x11c0
    [<0000000071f25adf>] ip_setsockopt+0x33/0xa0
    [<00000000a49ec12e>] udp_setsockopt+0x40/0x90
    [<000000002cc8a42f>] __sys_setsockopt+0x99/0x120
    [<00000000167d1a29>] __x64_sys_setsockopt+0x22/0x30
    [<00000000971d38a0>] do_syscall_64+0x3e/0x70
    [<00000000b19407da>] entry_SYSCALL_64_after_hwframe+0x44/0xa9

BUG: memory leak
unreferenced object 0xffff95540c770d20 (size 32):
  comm "syz-executor.3", pid 27224, jiffies 4297068116 (age 807.903s)
  hex dump (first 32 bytes):
    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
    01 00 00 00 00 00 00 00 ac 1e 01 04 00 01 00 00  ................
  backtrace:
    [<00000000a201d800>] ip_mc_add_src+0x1b2/0x3e0
    [<00000000f22fc984>] ip_mc_source+0x2db/0x4e0
    [<00000000a814b668>] do_ip_setsockopt.isra.14+0x541/0x11c0
    [<0000000071f25adf>] ip_setsockopt+0x33/0xa0
    [<00000000a49ec12e>] udp_setsockopt+0x40/0x90
    [<000000002cc8a42f>] __sys_setsockopt+0x99/0x120
    [<00000000167d1a29>] __x64_sys_setsockopt+0x22/0x30
    [<00000000971d38a0>] do_syscall_64+0x3e/0x70
    [<00000000b19407da>] entry_SYSCALL_64_after_hwframe+0x44/0xa9

BUG: leak checking failed

---------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
Execute Syzkaller programs
https://github.com/google/syzkaller/blob/master/docs/executing_syzkaller_programs.md


syz.config
syzrepro.prog

Eric Biggers

unread,
Jul 10, 2020, 2:28:29 AM7/10/20
to cH3332 XR, linu...@kvack.org, syzk...@googlegroups.com
On Fri, Jul 10, 2020 at 11:47:07AM +0530, cH3332 XR wrote:
> Hi,
> SYZKALLER found the following Memory leak
>
> -----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
> BUG: memory leak
> unreferenced object 0xffff955412ff9e00 (size 32):
> comm "syz-executor.3", pid 4726, jiffies 4294777846 (age 3098.168s)
> hex dump (first 32 bytes):
> 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
> 06 00 00 00 00 00 00 00 ac 1e 00 04 00 00 00 00 ................
> backtrace:
> [<000000002976d53e>] ip_mc_add_src+0x35f/0x3e0
> [<00000000f22fc984>] ip_mc_source+0x2db/0x4e0
> [<00000000a814b668>] do_ip_setsockopt.isra.14+0x541/0x11c0
> [<0000000071f25adf>] ip_setsockopt+0x33/0xa0
> [<00000000a49ec12e>] udp_setsockopt+0x40/0x90
> [<000000002cc8a42f>] __sys_setsockopt+0x99/0x120
> [<00000000167d1a29>] __x64_sys_setsockopt+0x22/0x30
> [<00000000971d38a0>] do_syscall_64+0x3e/0x70
> [<00000000b19407da>] entry_SYSCALL_64_after_hwframe+0x44/0xa9

This looks like a bug in networking code, so you'd probably have better luck
sending this to net...@vger.kernel.org instead of linu...@kvack.org. Also if
you can please send a patch.

- Eric

cH3332 XR

unread,
Jul 10, 2020, 2:32:54 AM7/10/20
to net...@vger.kernel.org, syzk...@googlegroups.com
syz.config
syzrepro.prog

cH3332 XR

unread,
Jul 10, 2020, 2:44:00 AM7/10/20
to net...@vger.kernel.org, syzk...@googlegroups.com
syz.config
syzrepro.prog

Dmitry Vyukov

unread,
Jul 10, 2020, 2:44:25 AM7/10/20
to cH3332 XR, netdev, syzkaller
On Fri, Jul 10, 2020 at 8:32 AM cH3332 XR <ch33...@gmail.com> wrote:
>
>
> Hi,
> SYZKALLER found the following Memory leak

FWIW also reported by syzbot a year ago:
https://syzkaller.appspot.com/bug?id=c2e9e4f014f416e492dd46a41c068af268169d8e
> --
> You received this message because you are subscribed to the Google Groups "syzkaller" group.
> To unsubscribe from this group and stop receiving emails from it, send an email to syzkaller+...@googlegroups.com.
> To view this discussion on the web visit https://groups.google.com/d/msgid/syzkaller/CAJ5WPnGbWOqn7%3DWzYn4Kh-C9uCkBv%3DgTAmv%2Bb%2BofigVwoiUVbw%40mail.gmail.com.

cH3332 XR

unread,
Jul 10, 2020, 2:47:50 AM7/10/20
to net...@vger.kernel.org, syzk...@googlegroups.com
Hi,
SYZKALLER found the following Memory leak

syz.config
syzrepro.prog
Reply all
Reply to author
Forward
0 new messages