From: syzbot <syzbot+050de9f900eb45b94ef9@syzkaller.appspotmail.com>
To: coreteam@netfilter.org, davem@davemloft.net, fw@strlen.de,
kadlec@netfilter.org, kuba@kernel.org,
linux-kernel@vger.kernel.org, netdev@vger.kernel.org,
netfilter-devel@vger.kernel.org, pablo@netfilter.org,
syzkaller-bugs@googlegroups.com
Subject: Re: [syzbot] memory leak in nf_hook_entries_grow (2)
Date: Tue, 04 May 2021 01:24:20 -0700 [thread overview]
Message-ID: <0000000000000a17bf05c17cceed@google.com> (raw)
In-Reply-To: <0000000000001d488205c1702d78@google.com>
syzbot has found a reproducer for the following issue on:
HEAD commit: 5e321ded Merge tag 'for-5.13/parisc' of git://git.kernel.o..
git tree: upstream
console output: https://syzkaller.appspot.com/x/log.txt?x=13f88f43d00000
kernel config: https://syzkaller.appspot.com/x/.config?x=38b336f6420141fd
dashboard link: https://syzkaller.appspot.com/bug?extid=050de9f900eb45b94ef9
syz repro: https://syzkaller.appspot.com/x/repro.syz?x=113d2ca5d00000
C reproducer: https://syzkaller.appspot.com/x/repro.c?x=167fa069d00000
IMPORTANT: if you fix the issue, please add the following tag to the commit:
Reported-by: syzbot+050de9f900eb45b94ef9@syzkaller.appspotmail.com
BUG: memory leak
unreferenced object 0xffff88811bef9340 (size 64):
comm "syz-executor097", pid 8413, jiffies 4294971728 (age 28.900s)
hex dump (first 32 bytes):
01 00 00 00 00 00 00 00 20 a8 a5 83 ff ff ff ff ........ .......
80 ef 42 1c 81 88 ff ff 00 b2 ed 1b 81 88 ff ff ..B.............
backtrace:
[<ffffffff8146f731>] kmalloc_node include/linux/slab.h:579 [inline]
[<ffffffff8146f731>] kvmalloc_node+0x61/0xf0 mm/util.c:587
[<ffffffff8381dc4b>] kvmalloc include/linux/mm.h:797 [inline]
[<ffffffff8381dc4b>] kvzalloc include/linux/mm.h:805 [inline]
[<ffffffff8381dc4b>] allocate_hook_entries_size net/netfilter/core.c:61 [inline]
[<ffffffff8381dc4b>] nf_hook_entries_grow+0x31b/0x370 net/netfilter/core.c:128
[<ffffffff8381dfad>] __nf_register_net_hook+0x8d/0x290 net/netfilter/core.c:407
[<ffffffff8381e26f>] nf_register_net_hook+0xbf/0x100 net/netfilter/core.c:541
[<ffffffff8381e309>] nf_register_net_hooks+0x59/0xc0 net/netfilter/core.c:557
[<ffffffff83a58262>] arpt_register_table+0x152/0x1e0 net/ipv4/netfilter/arp_tables.c:1548
[<ffffffff83a5a88d>] arptable_filter_table_init+0x3d/0x60 net/ipv4/netfilter/arptable_filter.c:50
[<ffffffff838ba3b9>] xt_find_table_lock+0x189/0x290 net/netfilter/x_tables.c:1244
[<ffffffff838ba4e7>] xt_request_find_table_lock+0x27/0xb0 net/netfilter/x_tables.c:1275
[<ffffffff83a593c2>] get_info+0xd2/0x430 net/ipv4/netfilter/arp_tables.c:807
[<ffffffff83a59944>] do_arpt_get_ctl+0x224/0x520 net/ipv4/netfilter/arp_tables.c:1443
[<ffffffff838201c7>] nf_getsockopt+0x57/0x80 net/netfilter/nf_sockopt.c:116
[<ffffffff839889aa>] ip_getsockopt net/ipv4/ip_sockglue.c:1777 [inline]
[<ffffffff839889aa>] ip_getsockopt+0xfa/0x140 net/ipv4/ip_sockglue.c:1756
[<ffffffff8399ce7b>] tcp_getsockopt+0x4b/0x80 net/ipv4/tcp.c:4251
[<ffffffff8366fa03>] __sys_getsockopt+0x133/0x2f0 net/socket.c:2161
[<ffffffff8366fbe2>] __do_sys_getsockopt net/socket.c:2176 [inline]
[<ffffffff8366fbe2>] __se_sys_getsockopt net/socket.c:2173 [inline]
[<ffffffff8366fbe2>] __x64_sys_getsockopt+0x22/0x30 net/socket.c:2173
BUG: memory leak
unreferenced object 0xffff88811c525e80 (size 64):
comm "syz-executor097", pid 8413, jiffies 4294971728 (age 28.900s)
hex dump (first 32 bytes):
01 00 00 00 00 00 00 00 20 a8 a5 83 ff ff ff ff ........ .......
80 ef 42 1c 81 88 ff ff 50 b2 ed 1b 81 88 ff ff ..B.....P.......
backtrace:
[<ffffffff8146f731>] kmalloc_node include/linux/slab.h:579 [inline]
[<ffffffff8146f731>] kvmalloc_node+0x61/0xf0 mm/util.c:587
[<ffffffff8381dc4b>] kvmalloc include/linux/mm.h:797 [inline]
[<ffffffff8381dc4b>] kvzalloc include/linux/mm.h:805 [inline]
[<ffffffff8381dc4b>] allocate_hook_entries_size net/netfilter/core.c:61 [inline]
[<ffffffff8381dc4b>] nf_hook_entries_grow+0x31b/0x370 net/netfilter/core.c:128
[<ffffffff8381dfad>] __nf_register_net_hook+0x8d/0x290 net/netfilter/core.c:407
[<ffffffff8381e26f>] nf_register_net_hook+0xbf/0x100 net/netfilter/core.c:541
[<ffffffff8381e309>] nf_register_net_hooks+0x59/0xc0 net/netfilter/core.c:557
[<ffffffff83a58262>] arpt_register_table+0x152/0x1e0 net/ipv4/netfilter/arp_tables.c:1548
[<ffffffff83a5a88d>] arptable_filter_table_init+0x3d/0x60 net/ipv4/netfilter/arptable_filter.c:50
[<ffffffff838ba3b9>] xt_find_table_lock+0x189/0x290 net/netfilter/x_tables.c:1244
[<ffffffff838ba4e7>] xt_request_find_table_lock+0x27/0xb0 net/netfilter/x_tables.c:1275
[<ffffffff83a593c2>] get_info+0xd2/0x430 net/ipv4/netfilter/arp_tables.c:807
[<ffffffff83a59944>] do_arpt_get_ctl+0x224/0x520 net/ipv4/netfilter/arp_tables.c:1443
[<ffffffff838201c7>] nf_getsockopt+0x57/0x80 net/netfilter/nf_sockopt.c:116
[<ffffffff839889aa>] ip_getsockopt net/ipv4/ip_sockglue.c:1777 [inline]
[<ffffffff839889aa>] ip_getsockopt+0xfa/0x140 net/ipv4/ip_sockglue.c:1756
[<ffffffff8399ce7b>] tcp_getsockopt+0x4b/0x80 net/ipv4/tcp.c:4251
[<ffffffff8366fa03>] __sys_getsockopt+0x133/0x2f0 net/socket.c:2161
[<ffffffff8366fbe2>] __do_sys_getsockopt net/socket.c:2176 [inline]
[<ffffffff8366fbe2>] __se_sys_getsockopt net/socket.c:2173 [inline]
[<ffffffff8366fbe2>] __x64_sys_getsockopt+0x22/0x30 net/socket.c:2173
BUG: memory leak
unreferenced object 0xffff88811bef9340 (size 64):
comm "syz-executor097", pid 8413, jiffies 4294971728 (age 28.980s)
hex dump (first 32 bytes):
01 00 00 00 00 00 00 00 20 a8 a5 83 ff ff ff ff ........ .......
80 ef 42 1c 81 88 ff ff 00 b2 ed 1b 81 88 ff ff ..B.............
backtrace:
[<ffffffff8146f731>] kmalloc_node include/linux/slab.h:579 [inline]
[<ffffffff8146f731>] kvmalloc_node+0x61/0xf0 mm/util.c:587
[<ffffffff8381dc4b>] kvmalloc include/linux/mm.h:797 [inline]
[<ffffffff8381dc4b>] kvzalloc include/linux/mm.h:805 [inline]
[<ffffffff8381dc4b>] allocate_hook_entries_size net/netfilter/core.c:61 [inline]
[<ffffffff8381dc4b>] nf_hook_entries_grow+0x31b/0x370 net/netfilter/core.c:128
[<ffffffff8381dfad>] __nf_register_net_hook+0x8d/0x290 net/netfilter/core.c:407
[<ffffffff8381e26f>] nf_register_net_hook+0xbf/0x100 net/netfilter/core.c:541
[<ffffffff8381e309>] nf_register_net_hooks+0x59/0xc0 net/netfilter/core.c:557
[<ffffffff83a58262>] arpt_register_table+0x152/0x1e0 net/ipv4/netfilter/arp_tables.c:1548
[<ffffffff83a5a88d>] arptable_filter_table_init+0x3d/0x60 net/ipv4/netfilter/arptable_filter.c:50
[<ffffffff838ba3b9>] xt_find_table_lock+0x189/0x290 net/netfilter/x_tables.c:1244
[<ffffffff838ba4e7>] xt_request_find_table_lock+0x27/0xb0 net/netfilter/x_tables.c:1275
[<ffffffff83a593c2>] get_info+0xd2/0x430 net/ipv4/netfilter/arp_tables.c:807
[<ffffffff83a59944>] do_arpt_get_ctl+0x224/0x520 net/ipv4/netfilter/arp_tables.c:1443
[<ffffffff838201c7>] nf_getsockopt+0x57/0x80 net/netfilter/nf_sockopt.c:116
[<ffffffff839889aa>] ip_getsockopt net/ipv4/ip_sockglue.c:1777 [inline]
[<ffffffff839889aa>] ip_getsockopt+0xfa/0x140 net/ipv4/ip_sockglue.c:1756
[<ffffffff8399ce7b>] tcp_getsockopt+0x4b/0x80 net/ipv4/tcp.c:4251
[<ffffffff8366fa03>] __sys_getsockopt+0x133/0x2f0 net/socket.c:2161
[<ffffffff8366fbe2>] __do_sys_getsockopt net/socket.c:2176 [inline]
[<ffffffff8366fbe2>] __se_sys_getsockopt net/socket.c:2173 [inline]
[<ffffffff8366fbe2>] __x64_sys_getsockopt+0x22/0x30 net/socket.c:2173
BUG: memory leak
unreferenced object 0xffff88811c525e80 (size 64):
comm "syz-executor097", pid 8413, jiffies 4294971728 (age 28.980s)
hex dump (first 32 bytes):
01 00 00 00 00 00 00 00 20 a8 a5 83 ff ff ff ff ........ .......
80 ef 42 1c 81 88 ff ff 50 b2 ed 1b 81 88 ff ff ..B.....P.......
backtrace:
[<ffffffff8146f731>] kmalloc_node include/linux/slab.h:579 [inline]
[<ffffffff8146f731>] kvmalloc_node+0x61/0xf0 mm/util.c:587
[<ffffffff8381dc4b>] kvmalloc include/linux/mm.h:797 [inline]
[<ffffffff8381dc4b>] kvzalloc include/linux/mm.h:805 [inline]
[<ffffffff8381dc4b>] allocate_hook_entries_size net/netfilter/core.c:61 [inline]
[<ffffffff8381dc4b>] nf_hook_entries_grow+0x31b/0x370 net/netfilter/core.c:128
[<ffffffff8381dfad>] __nf_register_net_hook+0x8d/0x290 net/netfilter/core.c:407
[<ffffffff8381e26f>] nf_register_net_hook+0xbf/0x100 net/netfilter/core.c:541
[<ffffffff8381e309>] nf_register_net_hooks+0x59/0xc0 net/netfilter/core.c:557
[<ffffffff83a58262>] arpt_register_table+0x152/0x1e0 net/ipv4/netfilter/arp_tables.c:1548
[<ffffffff83a5a88d>] arptable_filter_table_init+0x3d/0x60 net/ipv4/netfilter/arptable_filter.c:50
[<ffffffff838ba3b9>] xt_find_table_lock+0x189/0x290 net/netfilter/x_tables.c:1244
[<ffffffff838ba4e7>] xt_request_find_table_lock+0x27/0xb0 net/netfilter/x_tables.c:1275
[<ffffffff83a593c2>] get_info+0xd2/0x430 net/ipv4/netfilter/arp_tables.c:807
[<ffffffff83a59944>] do_arpt_get_ctl+0x224/0x520 net/ipv4/netfilter/arp_tables.c:1443
[<ffffffff838201c7>] nf_getsockopt+0x57/0x80 net/netfilter/nf_sockopt.c:116
[<ffffffff839889aa>] ip_getsockopt net/ipv4/ip_sockglue.c:1777 [inline]
[<ffffffff839889aa>] ip_getsockopt+0xfa/0x140 net/ipv4/ip_sockglue.c:1756
[<ffffffff8399ce7b>] tcp_getsockopt+0x4b/0x80 net/ipv4/tcp.c:4251
[<ffffffff8366fa03>] __sys_getsockopt+0x133/0x2f0 net/socket.c:2161
[<ffffffff8366fbe2>] __do_sys_getsockopt net/socket.c:2176 [inline]
[<ffffffff8366fbe2>] __se_sys_getsockopt net/socket.c:2173 [inline]
[<ffffffff8366fbe2>] __x64_sys_getsockopt+0x22/0x30 net/socket.c:2173
BUG: memory leak
unreferenced object 0xffff88811bef9340 (size 64):
comm "syz-executor097", pid 8413, jiffies 4294971728 (age 29.060s)
hex dump (first 32 bytes):
01 00 00 00 00 00 00 00 20 a8 a5 83 ff ff ff ff ........ .......
80 ef 42 1c 81 88 ff ff 00 b2 ed 1b 81 88 ff ff ..B.............
backtrace:
[<ffffffff8146f731>] kmalloc_node include/linux/slab.h:579 [inline]
[<ffffffff8146f731>] kvmalloc_node+0x61/0xf0 mm/util.c:587
[<ffffffff8381dc4b>] kvmalloc include/linux/mm.h:797 [inline]
[<ffffffff8381dc4b>] kvzalloc include/linux/mm.h:805 [inline]
[<ffffffff8381dc4b>] allocate_hook_entries_size net/netfilter/core.c:61 [inline]
[<ffffffff8381dc4b>] nf_hook_entries_grow+0x31b/0x370 net/netfilter/core.c:128
[<ffffffff8381dfad>] __nf_register_net_hook+0x8d/0x290 net/netfilter/core.c:407
[<ffffffff8381e26f>] nf_register_net_hook+0xbf/0x100 net/netfilter/core.c:541
[<ffffffff8381e309>] nf_register_net_hooks+0x59/0xc0 net/netfilter/core.c:557
[<ffffffff83a58262>] arpt_register_table+0x152/0x1e0 net/ipv4/netfilter/arp_tables.c:1548
[<ffffffff83a5a88d>] arptable_filter_table_init+0x3d/0x60 net/ipv4/netfilter/arptable_filter.c:50
[<ffffffff838ba3b9>] xt_find_table_lock+0x189/0x290 net/netfilter/x_tables.c:1244
[<ffffffff838ba4e7>] xt_request_find_table_lock+0x27/0xb0 net/netfilter/x_tables.c:1275
[<ffffffff83a593c2>] get_info+0xd2/0x430 net/ipv4/netfilter/arp_tables.c:807
[<ffffffff83a59944>] do_arpt_get_ctl+0x224/0x520 net/ipv4/netfilter/arp_tables.c:1443
[<ffffffff838201c7>] nf_getsockopt+0x57/0x80 net/netfilter/nf_sockopt.c:116
[<ffffffff839889aa>] ip_getsockopt net/ipv4/ip_sockglue.c:1777 [inline]
[<ffffffff839889aa>] ip_getsockopt+0xfa/0x140 net/ipv4/ip_sockglue.c:1756
[<ffffffff8399ce7b>] tcp_getsockopt+0x4b/0x80 net/ipv4/tcp.c:4251
[<ffffffff8366fa03>] __sys_getsockopt+0x133/0x2f0 net/socket.c:2161
[<ffffffff8366fbe2>] __do_sys_getsockopt net/socket.c:2176 [inline]
[<ffffffff8366fbe2>] __se_sys_getsockopt net/socket.c:2173 [inline]
[<ffffffff8366fbe2>] __x64_sys_getsockopt+0x22/0x30 net/socket.c:2173
BUG: memory leak
unreferenced object 0xffff88811c525e80 (size 64):
comm "syz-executor097", pid 8413, jiffies 4294971728 (age 29.060s)
hex dump (first 32 bytes):
01 00 00 00 00 00 00 00 20 a8 a5 83 ff ff ff ff ........ .......
80 ef 42 1c 81 88 ff ff 50 b2 ed 1b 81 88 ff ff ..B.....P.......
backtrace:
[<ffffffff8146f731>] kmalloc_node include/linux/slab.h:579 [inline]
[<ffffffff8146f731>] kvmalloc_node+0x61/0xf0 mm/util.c:587
[<ffffffff8381dc4b>] kvmalloc include/linux/mm.h:797 [inline]
[<ffffffff8381dc4b>] kvzalloc include/linux/mm.h:805 [inline]
[<ffffffff8381dc4b>] allocate_hook_entries_size net/netfilter/core.c:61 [inline]
[<ffffffff8381dc4b>] nf_hook_entries_grow+0x31b/0x370 net/netfilter/core.c:128
[<ffffffff8381dfad>] __nf_register_net_hook+0x8d/0x290 net/netfilter/core.c:407
[<ffffffff8381e26f>] nf_register_net_hook+0xbf/0x100 net/netfilter/core.c:541
[<ffffffff8381e309>] nf_register_net_hooks+0x59/0xc0 net/netfilter/core.c:557
[<ffffffff83a58262>] arpt_register_table+0x152/0x1e0 net/ipv4/netfilter/arp_tables.c:1548
[<ffffffff83a5a88d>] arptable_filter_table_init+0x3d/0x60 net/ipv4/netfilter/arptable_filter.c:50
[<ffffffff838ba3b9>] xt_find_table_lock+0x189/0x290 net/netfilter/x_tables.c:1244
[<ffffffff838ba4e7>] xt_request_find_table_lock+0x27/0xb0 net/netfilter/x_tables.c:1275
[<ffffffff83a593c2>] get_info+0xd2/0x430 net/ipv4/netfilter/arp_tables.c:807
[<ffffffff83a59944>] do_arpt_get_ctl+0x224/0x520 net/ipv4/netfilter/arp_tables.c:1443
[<ffffffff838201c7>] nf_getsockopt+0x57/0x80 net/netfilter/nf_sockopt.c:116
[<ffffffff839889aa>] ip_getsockopt net/ipv4/ip_sockglue.c:1777 [inline]
[<ffffffff839889aa>] ip_getsockopt+0xfa/0x140 net/ipv4/ip_sockglue.c:1756
[<ffffffff8399ce7b>] tcp_getsockopt+0x4b/0x80 net/ipv4/tcp.c:4251
[<ffffffff8366fa03>] __sys_getsockopt+0x133/0x2f0 net/socket.c:2161
[<ffffffff8366fbe2>] __do_sys_getsockopt net/socket.c:2176 [inline]
[<ffffffff8366fbe2>] __se_sys_getsockopt net/socket.c:2173 [inline]
[<ffffffff8366fbe2>] __x64_sys_getsockopt+0x22/0x30 net/socket.c:2173
BUG: memory leak
unreferenced object 0xffff88811bef9340 (size 64):
comm "syz-executor097", pid 8413, jiffies 4294971728 (age 29.130s)
hex dump (first 32 bytes):
01 00 00 00 00 00 00 00 20 a8 a5 83 ff ff ff ff ........ .......
80 ef 42 1c 81 88 ff ff 00 b2 ed 1b 81 88 ff ff ..B.............
backtrace:
[<ffffffff8146f731>] kmalloc_node include/linux/slab.h:579 [inline]
[<ffffffff8146f731>] kvmalloc_node+0x61/0xf0 mm/util.c:587
[<ffffffff8381dc4b>] kvmalloc include/linux/mm.h:797 [inline]
[<ffffffff8381dc4b>] kvzalloc include/linux/mm.h:805 [inline]
[<ffffffff8381dc4b>] allocate_hook_entries_size net/netfilter/core.c:61 [inline]
[<ffffffff8381dc4b>] nf_hook_entries_grow+0x31b/0x370 net/netfilter/core.c:128
[<ffffffff8381dfad>] __nf_register_net_hook+0x8d/0x290 net/netfilter/core.c:407
[<ffffffff8381e26f>] nf_register_net_hook+0xbf/0x100 net/netfilter/core.c:541
[<ffffffff8381e309>] nf_register_net_hooks+0x59/0xc0 net/netfilter/core.c:557
[<ffffffff83a58262>] arpt_register_table+0x152/0x1e0 net/ipv4/netfilter/arp_tables.c:1548
[<ffffffff83a5a88d>] arptable_filter_table_init+0x3d/0x60 net/ipv4/netfilter/arptable_filter.c:50
[<ffffffff838ba3b9>] xt_find_table_lock+0x189/0x290 net/netfilter/x_tables.c:1244
[<ffffffff838ba4e7>] xt_request_find_table_lock+0x27/0xb0 net/netfilter/x_tables.c:1275
[<ffffffff83a593c2>] get_info+0xd2/0x430 net/ipv4/netfilter/arp_tables.c:807
[<ffffffff83a59944>] do_arpt_get_ctl+0x224/0x520 net/ipv4/netfilter/arp_tables.c:1443
[<ffffffff838201c7>] nf_getsockopt+0x57/0x80 net/netfilter/nf_sockopt.c:116
[<ffffffff839889aa>] ip_getsockopt net/ipv4/ip_sockglue.c:1777 [inline]
[<ffffffff839889aa>] ip_getsockopt+0xfa/0x140 net/ipv4/ip_sockglue.c:1756
[<ffffffff8399ce7b>] tcp_getsockopt+0x4b/0x80 net/ipv4/tcp.c:4251
[<ffffffff8366fa03>] __sys_getsockopt+0x133/0x2f0 net/socket.c:2161
[<ffffffff8366fbe2>] __do_sys_getsockopt net/socket.c:2176 [inline]
[<ffffffff8366fbe2>] __se_sys_getsockopt net/socket.c:2173 [inline]
[<ffffffff8366fbe2>] __x64_sys_getsockopt+0x22/0x30 net/socket.c:2173
BUG: memory leak
unreferenced object 0xffff88811c525e80 (size 64):
comm "syz-executor097", pid 8413, jiffies 4294971728 (age 29.130s)
hex dump (first 32 bytes):
01 00 00 00 00 00 00 00 20 a8 a5 83 ff ff ff ff ........ .......
80 ef 42 1c 81 88 ff ff 50 b2 ed 1b 81 88 ff ff ..B.....P.......
backtrace:
[<ffffffff8146f731>] kmalloc_node include/linux/slab.h:579 [inline]
[<ffffffff8146f731>] kvmalloc_node+0x61/0xf0 mm/util.c:587
[<ffffffff8381dc4b>] kvmalloc include/linux/mm.h:797 [inline]
[<ffffffff8381dc4b>] kvzalloc include/linux/mm.h:805 [inline]
[<ffffffff8381dc4b>] allocate_hook_entries_size net/netfilter/core.c:61 [inline]
[<ffffffff8381dc4b>] nf_hook_entries_grow+0x31b/0x370 net/netfilter/core.c:128
[<ffffffff8381dfad>] __nf_register_net_hook+0x8d/0x290 net/netfilter/core.c:407
[<ffffffff8381e26f>] nf_register_net_hook+0xbf/0x100 net/netfilter/core.c:541
[<ffffffff8381e309>] nf_register_net_hooks+0x59/0xc0 net/netfilter/core.c:557
[<ffffffff83a58262>] arpt_register_table+0x152/0x1e0 net/ipv4/netfilter/arp_tables.c:1548
[<ffffffff83a5a88d>] arptable_filter_table_init+0x3d/0x60 net/ipv4/netfilter/arptable_filter.c:50
[<ffffffff838ba3b9>] xt_find_table_lock+0x189/0x290 net/netfilter/x_tables.c:1244
[<ffffffff838ba4e7>] xt_request_find_table_lock+0x27/0xb0 net/netfilter/x_tables.c:1275
[<ffffffff83a593c2>] get_info+0xd2/0x430 net/ipv4/netfilter/arp_tables.c:807
[<ffffffff83a59944>] do_arpt_get_ctl+0x224/0x520 net/ipv4/netfilter/arp_tables.c:1443
[<ffffffff838201c7>] nf_getsockopt+0x57/0x80 net/netfilter/nf_sockopt.c:116
[<ffffffff839889aa>] ip_getsockopt net/ipv4/ip_sockglue.c:1777 [inline]
[<ffffffff839889aa>] ip_getsockopt+0xfa/0x140 net/ipv4/ip_sockglue.c:1756
[<ffffffff8399ce7b>] tcp_getsockopt+0x4b/0x80 net/ipv4/tcp.c:4251
[<ffffffff8366fa03>] __sys_getsockopt+0x133/0x2f0 net/socket.c:2161
[<ffffffff8366fbe2>] __do_sys_getsockopt net/socket.c:2176 [inline]
[<ffffffff8366fbe2>] __se_sys_getsockopt net/socket.c:2173 [inline]
[<ffffffff8366fbe2>] __x64_sys_getsockopt+0x22/0x30 net/socket.c:2173
BUG: memory leak
unreferenced object 0xffff88811bef9340 (size 64):
comm "syz-executor097", pid 8413, jiffies 4294971728 (age 29.210s)
hex dump (first 32 bytes):
01 00 00 00 00 00 00 00 20 a8 a5 83 ff ff ff ff ........ .......
80 ef 42 1c 81 88 ff ff 00 b2 ed 1b 81 88 ff ff ..B.............
backtrace:
[<ffffffff8146f731>] kmalloc_node include/linux/slab.h:579 [inline]
[<ffffffff8146f731>] kvmalloc_node+0x61/0xf0 mm/util.c:587
[<ffffffff8381dc4b>] kvmalloc include/linux/mm.h:797 [inline]
[<ffffffff8381dc4b>] kvzalloc include/linux/mm.h:805 [inline]
[<ffffffff8381dc4b>] allocate_hook_entries_size net/netfilter/core.c:61 [inline]
[<ffffffff8381dc4b>] nf_hook_entries_grow+0x31b/0x370 net/netfilter/core.c:128
[<ffffffff8381dfad>] __nf_register_net_hook+0x8d/0x290 net/netfilter/core.c:407
[<ffffffff8381e26f>] nf_register_net_hook+0xbf/0x100 net/netfilter/core.c:541
[<ffffffff8381e309>] nf_register_net_hooks+0x59/0xc0 net/netfilter/core.c:557
[<ffffffff83a58262>] arpt_register_table+0x152/0x1e0 net/ipv4/netfilter/arp_tables.c:1548
[<ffffffff83a5a88d>] arptable_filter_table_init+0x3d/0x60 net/ipv4/netfilter/arptable_filter.c:50
[<ffffffff838ba3b9>] xt_find_table_lock+0x189/0x290 net/netfilter/x_tables.c:1244
[<ffffffff838ba4e7>] xt_request_find_table_lock+0x27/0xb0 net/netfilter/x_tables.c:1275
[<ffffffff83a593c2>] get_info+0xd2/0x430 net/ipv4/netfilter/arp_tables.c:807
[<ffffffff83a59944>] do_arpt_get_ctl+0x224/0x520 net/ipv4/netfilter/arp_tables.c:1443
[<ffffffff838201c7>] nf_getsockopt+0x57/0x80 net/netfilter/nf_sockopt.c:116
[<ffffffff839889aa>] ip_getsockopt net/ipv4/ip_sockglue.c:1777 [inline]
[<ffffffff839889aa>] ip_getsockopt+0xfa/0x140 net/ipv4/ip_sockglue.c:1756
[<ffffffff8399ce7b>] tcp_getsockopt+0x4b/0x80 net/ipv4/tcp.c:4251
[<ffffffff8366fa03>] __sys_getsockopt+0x133/0x2f0 net/socket.c:2161
[<ffffffff8366fbe2>] __do_sys_getsockopt net/socket.c:2176 [inline]
[<ffffffff8366fbe2>] __se_sys_getsockopt net/socket.c:2173 [inline]
[<ffffffff8366fbe2>] __x64_sys_getsockopt+0x22/0x30 net/socket.c:2173
BUG: memory leak
unreferenced object 0xffff88811c525e80 (size 64):
comm "syz-executor097", pid 8413, jiffies 4294971728 (age 29.210s)
hex dump (first 32 bytes):
01 00 00 00 00 00 00 00 20 a8 a5 83 ff ff ff ff ........ .......
80 ef 42 1c 81 88 ff ff 50 b2 ed 1b 81 88 ff ff ..B.....P.......
backtrace:
[<ffffffff8146f731>] kmalloc_node include/linux/slab.h:579 [inline]
[<ffffffff8146f731>] kvmalloc_node+0x61/0xf0 mm/util.c:587
[<ffffffff8381dc4b>] kvmalloc include/linux/mm.h:797 [inline]
[<ffffffff8381dc4b>] kvzalloc include/linux/mm.h:805 [inline]
[<ffffffff8381dc4b>] allocate_hook_entries_size net/netfilter/core.c:61 [inline]
[<ffffffff8381dc4b>] nf_hook_entries_grow+0x31b/0x370 net/netfilter/core.c:128
[<ffffffff8381dfad>] __nf_register_net_hook+0x8d/0x290 net/netfilter/core.c:407
[<ffffffff8381e26f>] nf_register_net_hook+0xbf/0x100 net/netfilter/core.c:541
[<ffffffff8381e309>] nf_register_net_hooks+0x59/0xc0 net/netfilter/core.c:557
[<ffffffff83a58262>] arpt_register_table+0x152/0x1e0 net/ipv4/netfilter/arp_tables.c:1548
[<ffffffff83a5a88d>] arptable_filter_table_init+0x3d/0x60 net/ipv4/netfilter/arptable_filter.c:50
[<ffffffff838ba3b9>] xt_find_table_lock+0x189/0x290 net/netfilter/x_tables.c:1244
[<ffffffff838ba4e7>] xt_request_find_table_lock+0x27/0xb0 net/netfilter/x_tables.c:1275
[<ffffffff83a593c2>] get_info+0xd2/0x430 net/ipv4/netfilter/arp_tables.c:807
[<ffffffff83a59944>] do_arpt_get_ctl+0x224/0x520 net/ipv4/netfilter/arp_tables.c:1443
[<ffffffff838201c7>] nf_getsockopt+0x57/0x80 net/netfilter/nf_sockopt.c:116
[<ffffffff839889aa>] ip_getsockopt net/ipv4/ip_sockglue.c:1777 [inline]
[<ffffffff839889aa>] ip_getsockopt+0xfa/0x140 net/ipv4/ip_sockglue.c:1756
[<ffffffff8399ce7b>] tcp_getsockopt+0x4b/0x80 net/ipv4/tcp.c:4251
[<ffffffff8366fa03>] __sys_getsockopt+0x133/0x2f0 net/socket.c:2161
[<ffffffff8366fbe2>] __do_sys_getsockopt net/socket.c:2176 [inline]
[<ffffffff8366fbe2>] __se_sys_getsockopt net/socket.c:2173 [inline]
[<ffffffff8366fbe2>] __x64_sys_getsockopt+0x22/0x30 net/socket.c:2173
BUG: memory leak
unreferenced object 0xffff88811bef9340 (size 64):
comm "syz-executor097", pid 8413, jiffies 4294971728 (age 29.290s)
hex dump (first 32 bytes):
01 00 00 00 00 00 00 00 20 a8 a5 83 ff ff ff ff ........ .......
80 ef 42 1c 81 88 ff ff 00 b2 ed 1b 81 88 ff ff ..B.............
backtrace:
[<ffffffff8146f731>] kmalloc_node include/linux/slab.h:579 [inline]
[<ffffffff8146f731>] kvmalloc_node+0x61/0xf0 mm/util.c:587
[<ffffffff8381dc4b>] kvmalloc include/linux/mm.h:797 [inline]
[<ffffffff8381dc4b>] kvzalloc include/linux/mm.h:805 [inline]
[<ffffffff8381dc4b>] allocate_hook_entries_size net/netfilter/core.c:61 [inline]
[<ffffffff8381dc4b>] nf_hook_entries_grow+0x31b/0x370 net/netfilter/core.c:128
[<ffffffff8381dfad>] __nf_register_net_hook+0x8d/0x290 net/netfilter/core.c:407
[<ffffffff8381e26f>] nf_register_net_hook+0xbf/0x100 net/netfilter/core.c:541
[<ffffffff8381e309>] nf_register_net_hooks+0x59/0xc0 net/netfilter/core.c:557
[<ffffffff83a58262>] arpt_register_table+0x152/0x1e0 net/ipv4/netfilter/arp_tables.c:1548
[<ffffffff83a5a88d>] arptable_filter_table_init+0x3d/0x60 net/ipv4/netfilter/arptable_filter.c:50
[<ffffffff838ba3b9>] xt_find_table_lock+0x189/0x290 net/netfilter/x_tables.c:1244
[<ffffffff838ba4e7>] xt_request_find_table_lock+0x27/0xb0 net/netfilter/x_tables.c:1275
[<ffffffff83a593c2>] get_info+0xd2/0x430 net/ipv4/netfilter/arp_tables.c:807
[<ffffffff83a59944>] do_arpt_get_ctl+0x224/0x520 net/ipv4/netfilter/arp_tables.c:1443
[<ffffffff838201c7>] nf_getsockopt+0x57/0x80 net/netfilter/nf_sockopt.c:116
[<ffffffff839889aa>] ip_getsockopt net/ipv4/ip_sockglue.c:1777 [inline]
[<ffffffff839889aa>] ip_getsockopt+0xfa/0x140 net/ipv4/ip_sockglue.c:1756
[<ffffffff8399ce7b>] tcp_getsockopt+0x4b/0x80 net/ipv4/tcp.c:4251
[<ffffffff8366fa03>] __sys_getsockopt+0x133/0x2f0 net/socket.c:2161
[<ffffffff8366fbe2>] __do_sys_getsockopt net/socket.c:2176 [inline]
[<ffffffff8366fbe2>] __se_sys_getsockopt net/socket.c:2173 [inline]
[<ffffffff8366fbe2>] __x64_sys_getsockopt+0x22/0x30 net/socket.c:2173
BUG: memory leak
unreferenced object 0xffff88811c525e80 (size 64):
comm "syz-executor097", pid 8413, jiffies 4294971728 (age 29.290s)
hex dump (first 32 bytes):
01 00 00 00 00 00 00 00 20 a8 a5 83 ff ff ff ff ........ .......
80 ef 42 1c 81 88 ff ff 50 b2 ed 1b 81 88 ff ff ..B.....P.......
backtrace:
[<ffffffff8146f731>] kmalloc_node include/linux/slab.h:579 [inline]
[<ffffffff8146f731>] kvmalloc_node+0x61/0xf0 mm/util.c:587
[<ffffffff8381dc4b>] kvmalloc include/linux/mm.h:797 [inline]
[<ffffffff8381dc4b>] kvzalloc include/linux/mm.h:805 [inline]
[<ffffffff8381dc4b>] allocate_hook_entries_size net/netfilter/core.c:61 [inline]
[<ffffffff8381dc4b>] nf_hook_entries_grow+0x31b/0x370 net/netfilter/core.c:128
[<ffffffff8381dfad>] __nf_register_net_hook+0x8d/0x290 net/netfilter/core.c:407
[<ffffffff8381e26f>] nf_register_net_hook+0xbf/0x100 net/netfilter/core.c:541
[<ffffffff8381e309>] nf_register_net_hooks+0x59/0xc0 net/netfilter/core.c:557
[<ffffffff83a58262>] arpt_register_table+0x152/0x1e0 net/ipv4/netfilter/arp_tables.c:1548
[<ffffffff83a5a88d>] arptable_filter_table_init+0x3d/0x60 net/ipv4/netfilter/arptable_filter.c:50
[<ffffffff838ba3b9>] xt_find_table_lock+0x189/0x290 net/netfilter/x_tables.c:1244
[<ffffffff838ba4e7>] xt_request_find_table_lock+0x27/0xb0 net/netfilter/x_tables.c:1275
[<ffffffff83a593c2>] get_info+0xd2/0x430 net/ipv4/netfilter/arp_tables.c:807
[<ffffffff83a59944>] do_arpt_get_ctl+0x224/0x520 net/ipv4/netfilter/arp_tables.c:1443
[<ffffffff838201c7>] nf_getsockopt+0x57/0x80 net/netfilter/nf_sockopt.c:116
[<ffffffff839889aa>] ip_getsockopt net/ipv4/ip_sockglue.c:1777 [inline]
[<ffffffff839889aa>] ip_getsockopt+0xfa/0x140 net/ipv4/ip_sockglue.c:1756
[<ffffffff8399ce7b>] tcp_getsockopt+0x4b/0x80 net/ipv4/tcp.c:4251
[<ffffffff8366fa03>] __sys_getsockopt+0x133/0x2f0 net/socket.c:2161
[<ffffffff8366fbe2>] __do_sys_getsockopt net/socket.c:2176 [inline]
[<ffffffff8366fbe2>] __se_sys_getsockopt net/socket.c:2173 [inline]
[<ffffffff8366fbe2>] __x64_sys_getsockopt+0x22/0x30 net/socket.c:2173
BUG: memory leak
unreferenced object 0xffff88811bef9340 (size 64):
comm "syz-executor097", pid 8413, jiffies 4294971728 (age 29.370s)
hex dump (first 32 bytes):
01 00 00 00 00 00 00 00 20 a8 a5 83 ff ff ff ff ........ .......
80 ef 42 1c 81 88 ff ff 00 b2 ed 1b 81 88 ff ff ..B.............
backtrace:
[<ffffffff8146f731>] kmalloc_node include/linux/slab.h:579 [inline]
[<ffffffff8146f731>] kvmalloc_node+0x61/0xf0 mm/util.c:587
[<ffffffff8381dc4b>] kvmalloc include/linux/mm.h:797 [inline]
[<ffffffff8381dc4b>] kvzalloc include/linux/mm.h:805 [inline]
[<ffffffff8381dc4b>] allocate_hook_entries_size net/netfilter/core.c:61 [inline]
[<ffffffff8381dc4b>] nf_hook_entries_grow+0x31b/0x370 net/netfilter/core.c:128
[<ffffffff8381dfad>] __nf_register_net_hook+0x8d/0x290 net/netfilter/core.c:407
[<ffffffff8381e26f>] nf_register_net_hook+0xbf/0x100 net/netfilter/core.c:541
[<ffffffff8381e309>] nf_register_net_hooks+0x59/0xc0 net/netfilter/core.c:557
[<ffffffff83a58262>] arpt_register_table+0x152/0x1e0 net/ipv4/netfilter/arp_tables.c:1548
[<ffffffff83a5a88d>] arptable_filter_table_init+0x3d/0x60 net/ipv4/netfilter/arptable_filter.c:50
[<ffffffff838ba3b9>] xt_find_table_lock+0x189/0x290 net/netfilter/x_tables.c:1244
[<ffffffff838ba4e7>] xt_request_find_table_lock+0x27/0xb0 net/netfilter/x_tables.c:1275
[<ffffffff83a593c2>] get_info+0xd2/0x430 net/ipv4/netfilter/arp_tables.c:807
[<ffffffff83a59944>] do_arpt_get_ctl+0x224/0x520 net/ipv4/netfilter/arp_tables.c:1443
[<ffffffff838201c7>] nf_getsockopt+0x57/0x80 net/netfilter/nf_sockopt.c:116
[<ffffffff839889aa>] ip_getsockopt net/ipv4/ip_sockglue.c:1777 [inline]
[<ffffffff839889aa>] ip_getsockopt+0xfa/0x140 net/ipv4/ip_sockglue.c:1756
[<ffffffff8399ce7b>] tcp_getsockopt+0x4b/0x80 net/ipv4/tcp.c:4251
[<ffffffff8366fa03>] __sys_getsockopt+0x133/0x2f0 net/socket.c:2161
[<ffffffff8366fbe2>] __do_sys_getsockopt net/socket.c:2176 [inline]
[<ffffffff8366fbe2>] __se_sys_getsockopt net/socket.c:2173 [inline]
[<ffffffff8366fbe2>] __x64_sys_getsockopt+0x22/0x30 net/socket.c:2173
BUG: memory leak
unreferenced object 0xffff88811c525e80 (size 64):
comm "syz-executor097", pid 8413, jiffies 4294971728 (age 29.370s)
hex dump (first 32 bytes):
01 00 00 00 00 00 00 00 20 a8 a5 83 ff ff ff ff ........ .......
80 ef 42 1c 81 88 ff ff 50 b2 ed 1b 81 88 ff ff ..B.....P.......
backtrace:
[<ffffffff8146f731>] kmalloc_node include/linux/slab.h:579 [inline]
[<ffffffff8146f731>] kvmalloc_node+0x61/0xf0 mm/util.c:587
[<ffffffff8381dc4b>] kvmalloc include/linux/mm.h:797 [inline]
[<ffffffff8381dc4b>] kvzalloc include/linux/mm.h:805 [inline]
[<ffffffff8381dc4b>] allocate_hook_entries_size net/netfilter/core.c:61 [inline]
[<ffffffff8381dc4b>] nf_hook_entries_grow+0x31b/0x370 net/netfilter/core.c:128
[<ffffffff8381dfad>] __nf_register_net_hook+0x8d/0x290 net/netfilter/core.c:407
[<ffffffff8381e26f>] nf_register_net_hook+0xbf/0x100 net/netfilter/core.c:541
[<ffffffff8381e309>] nf_register_net_hooks+0x59/0xc0 net/netfilter/core.c:557
[<ffffffff83a58262>] arpt_register_table+0x152/0x1e0 net/ipv4/netfilter/arp_tables.c:1548
[<ffffffff83a5a88d>] arptable_filter_table_init+0x3d/0x60 net/ipv4/netfilter/arptable_filter.c:50
[<ffffffff838ba3b9>] xt_find_table_lock+0x189/0x290 net/netfilter/x_tables.c:1244
[<ffffffff838ba4e7>] xt_request_find_table_lock+0x27/0xb0 net/netfilter/x_tables.c:1275
[<ffffffff83a593c2>] get_info+0xd2/0x430 net/ipv4/netfilter/arp_tables.c:807
[<ffffffff83a59944>] do_arpt_get_ctl+0x224/0x520 net/ipv4/netfilter/arp_tables.c:1443
[<ffffffff838201c7>] nf_getsockopt+0x57/0x80 net/netfilter/nf_sockopt.c:116
[<ffffffff839889aa>] ip_getsockopt net/ipv4/ip_sockglue.c:1777 [inline]
[<ffffffff839889aa>] ip_getsockopt+0xfa/0x140 net/ipv4/ip_sockglue.c:1756
[<ffffffff8399ce7b>] tcp_getsockopt+0x4b/0x80 net/ipv4/tcp.c:4251
[<ffffffff8366fa03>] __sys_getsockopt+0x133/0x2f0 net/socket.c:2161
[<ffffffff8366fbe2>] __do_sys_getsockopt net/socket.c:2176 [inline]
[<ffffffff8366fbe2>] __se_sys_getsockopt net/socket.c:2173 [inline]
[<ffffffff8366fbe2>] __x64_sys_getsockopt+0x22/0x30 net/socket.c:2173
write to /proc/sys/kernel/hung_task_check_interval_secs failed: No such file or directory
write to /proc/sys/kernel/softlockup_all_cpu_backtrace failed: No such file or directory
write to /proc/sys/kernel/hung_task_check_interval_secs failed: No such file or directory
write to /proc/sys/kernel/softlockup_all_cpu_backtrace failed: No such file or directory
write to /proc/sys/kernel/hung_task_check_interval_secs failed: No such file or directory
write to /proc/sys/kernel/softlockup_all_cpu_backtrace failed: No such file or directory
write to /proc/sys/kernel/hung_task_check_interval_secs failed: No such file or directory
write to /proc/sys/kernel/softlockup_all_cpu_backtrace failed: No such file or directory
write to /proc/sys/kernel/hung_task_check_interval_secs failed: No such file or directory
write to /proc/sys/kernel/softlockup_all_cpu_backtrace failed: No such file or directory
write to /proc/sys/kernel/hung_task_check_interval_secs failed: No such file or directory
write to /proc/sys/kernel/softlockup_all_cpu_backtrace failed: No such file or directory
write to /proc/sys/kernel/hung_task_check_interval_secs failed: No such file or directory
write to /proc/sys/kernel/softlockup_all_cpu_backtrace failed: No such file or directory
next prev parent reply other threads:[~2021-05-04 8:24 UTC|newest]
Thread overview: 3+ messages / expand[flat|nested] mbox.gz Atom feed top
2021-05-03 17:20 [syzbot] memory leak in nf_hook_entries_grow (2) syzbot
2021-05-04 8:24 ` syzbot [this message]
2021-05-04 8:25 ` Florian Westphal
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=0000000000000a17bf05c17cceed@google.com \
--to=syzbot+050de9f900eb45b94ef9@syzkaller.appspotmail.com \
--cc=coreteam@netfilter.org \
--cc=davem@davemloft.net \
--cc=fw@strlen.de \
--cc=kadlec@netfilter.org \
--cc=kuba@kernel.org \
--cc=linux-kernel@vger.kernel.org \
--cc=netdev@vger.kernel.org \
--cc=netfilter-devel@vger.kernel.org \
--cc=pablo@netfilter.org \
--cc=syzkaller-bugs@googlegroups.com \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.