Re: [syzbot] memory leak in __get_metapage

All of lore.kernel.org
 help / color / mirror / Atom feed

From: syzbot <syzbot+389b82b29093b3e2640a@syzkaller.appspotmail.com>
To: akpm@linux-foundation.org, fmdefrancesco@gmail.com,
	 linux-kernel@vger.kernel.org, linux-mm@kvack.org,
	 syzkaller-bugs@googlegroups.com
Subject: Re: [syzbot] memory leak in __get_metapage
Date: Tue, 11 Oct 2022 04:00:23 -0700	[thread overview]
Message-ID: <000000000000cbe1c005eac02e1a@google.com> (raw)
In-Reply-To: <4449089.LvFx2qVVIh@mypc>

Hello,

syzbot has tested the proposed patch but the reproducer is still triggering an issue:
memory leak in __get_metapage

BUG: memory leak
unreferenced object 0xffff888115b53800 (size 128):
  comm "syz-executor.0", pid 4198, jiffies 4294944352 (age 13.760s)
  hex dump (first 32 bytes):
    00 10 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
  backtrace:
    [<ffffffff8148f373>] mempool_alloc+0x73/0x230 mm/mempool.c:392
    [<ffffffff81c4f24e>] alloc_metapage fs/jfs/jfs_metapage.c:176 [inline]
    [<ffffffff81c4f24e>] __get_metapage+0x3ae/0xae0 fs/jfs/jfs_metapage.c:651
    [<ffffffff81c37cc2>] diNewExt+0x3f2/0x9d0 fs/jfs/jfs_imap.c:2265
    [<ffffffff81c396b4>] diAllocExt fs/jfs/jfs_imap.c:1945 [inline]
    [<ffffffff81c396b4>] diAllocAG+0x9a4/0xd50 fs/jfs/jfs_imap.c:1662
    [<ffffffff81c3b4df>] diAlloc+0x31f/0x900 fs/jfs/jfs_imap.c:1583
    [<ffffffff81c4c1da>] ialloc+0x6a/0x3a0 fs/jfs/jfs_inode.c:56
    [<ffffffff81c2e937>] jfs_mkdir+0xf7/0x480 fs/jfs/namei.c:225
    [<ffffffff815f0df3>] vfs_mkdir+0x223/0x340 fs/namei.c:4035
    [<ffffffff815f9d65>] do_mkdirat+0x1a5/0x1e0 fs/namei.c:4060
    [<ffffffff815f9ed9>] __do_sys_mkdir fs/namei.c:4080 [inline]
    [<ffffffff815f9ed9>] __se_sys_mkdir fs/namei.c:4078 [inline]
    [<ffffffff815f9ed9>] __x64_sys_mkdir+0x69/0x90 fs/namei.c:4078
    [<ffffffff845fee85>] do_syscall_x64 arch/x86/entry/common.c:50 [inline]
    [<ffffffff845fee85>] do_syscall_64+0x35/0xb0 arch/x86/entry/common.c:80
    [<ffffffff84800087>] entry_SYSCALL_64_after_hwframe+0x63/0xcd

BUG: memory leak
unreferenced object 0xffff888115b53880 (size 128):
  comm "syz-executor.0", pid 4198, jiffies 4294944352 (age 13.760s)
  hex dump (first 32 bytes):
    00 10 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
  backtrace:
    [<ffffffff8148f373>] mempool_alloc+0x73/0x230 mm/mempool.c:392
    [<ffffffff81c4f24e>] alloc_metapage fs/jfs/jfs_metapage.c:176 [inline]
    [<ffffffff81c4f24e>] __get_metapage+0x3ae/0xae0 fs/jfs/jfs_metapage.c:651
    [<ffffffff81c37cc2>] diNewExt+0x3f2/0x9d0 fs/jfs/jfs_imap.c:2265
    [<ffffffff81c396b4>] diAllocExt fs/jfs/jfs_imap.c:1945 [inline]
    [<ffffffff81c396b4>] diAllocAG+0x9a4/0xd50 fs/jfs/jfs_imap.c:1662
    [<ffffffff81c3b4df>] diAlloc+0x31f/0x900 fs/jfs/jfs_imap.c:1583
    [<ffffffff81c4c1da>] ialloc+0x6a/0x3a0 fs/jfs/jfs_inode.c:56
    [<ffffffff81c2e937>] jfs_mkdir+0xf7/0x480 fs/jfs/namei.c:225
    [<ffffffff815f0df3>] vfs_mkdir+0x223/0x340 fs/namei.c:4035
    [<ffffffff815f9d65>] do_mkdirat+0x1a5/0x1e0 fs/namei.c:4060
    [<ffffffff815f9ed9>] __do_sys_mkdir fs/namei.c:4080 [inline]
    [<ffffffff815f9ed9>] __se_sys_mkdir fs/namei.c:4078 [inline]
    [<ffffffff815f9ed9>] __x64_sys_mkdir+0x69/0x90 fs/namei.c:4078
    [<ffffffff845fee85>] do_syscall_x64 arch/x86/entry/common.c:50 [inline]
    [<ffffffff845fee85>] do_syscall_64+0x35/0xb0 arch/x86/entry/common.c:80
    [<ffffffff84800087>] entry_SYSCALL_64_after_hwframe+0x63/0xcd

BUG: memory leak
unreferenced object 0xffff888115b53900 (size 128):
  comm "syz-executor.0", pid 4198, jiffies 4294944352 (age 13.760s)
  hex dump (first 32 bytes):
    00 10 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
  backtrace:
    [<ffffffff8148f373>] mempool_alloc+0x73/0x230 mm/mempool.c:392
    [<ffffffff81c4f24e>] alloc_metapage fs/jfs/jfs_metapage.c:176 [inline]
    [<ffffffff81c4f24e>] __get_metapage+0x3ae/0xae0 fs/jfs/jfs_metapage.c:651
    [<ffffffff81c37cc2>] diNewExt+0x3f2/0x9d0 fs/jfs/jfs_imap.c:2265
    [<ffffffff81c396b4>] diAllocExt fs/jfs/jfs_imap.c:1945 [inline]
    [<ffffffff81c396b4>] diAllocAG+0x9a4/0xd50 fs/jfs/jfs_imap.c:1662
    [<ffffffff81c3b4df>] diAlloc+0x31f/0x900 fs/jfs/jfs_imap.c:1583
    [<ffffffff81c4c1da>] ialloc+0x6a/0x3a0 fs/jfs/jfs_inode.c:56
    [<ffffffff81c2e937>] jfs_mkdir+0xf7/0x480 fs/jfs/namei.c:225
    [<ffffffff815f0df3>] vfs_mkdir+0x223/0x340 fs/namei.c:4035
    [<ffffffff815f9d65>] do_mkdirat+0x1a5/0x1e0 fs/namei.c:4060
    [<ffffffff815f9ed9>] __do_sys_mkdir fs/namei.c:4080 [inline]
    [<ffffffff815f9ed9>] __se_sys_mkdir fs/namei.c:4078 [inline]
    [<ffffffff815f9ed9>] __x64_sys_mkdir+0x69/0x90 fs/namei.c:4078
    [<ffffffff845fee85>] do_syscall_x64 arch/x86/entry/common.c:50 [inline]
    [<ffffffff845fee85>] do_syscall_64+0x35/0xb0 arch/x86/entry/common.c:80
    [<ffffffff84800087>] entry_SYSCALL_64_after_hwframe+0x63/0xcd

BUG: memory leak
unreferenced object 0xffff888116622700 (size 128):
  comm "syz-executor.0", pid 4739, jiffies 4294944954 (age 7.740s)
  hex dump (first 32 bytes):
    00 10 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
  backtrace:
    [<ffffffff8148f373>] mempool_alloc+0x73/0x230 mm/mempool.c:392
    [<ffffffff81c4f24e>] alloc_metapage fs/jfs/jfs_metapage.c:176 [inline]
    [<ffffffff81c4f24e>] __get_metapage+0x3ae/0xae0 fs/jfs/jfs_metapage.c:651
    [<ffffffff81c37cc2>] diNewExt+0x3f2/0x9d0 fs/jfs/jfs_imap.c:2265
    [<ffffffff81c396b4>] diAllocExt fs/jfs/jfs_imap.c:1945 [inline]
    [<ffffffff81c396b4>] diAllocAG+0x9a4/0xd50 fs/jfs/jfs_imap.c:1662
    [<ffffffff81c3b4df>] diAlloc+0x31f/0x900 fs/jfs/jfs_imap.c:1583
    [<ffffffff81c4c1da>] ialloc+0x6a/0x3a0 fs/jfs/jfs_inode.c:56
    [<ffffffff81c2e937>] jfs_mkdir+0xf7/0x480 fs/jfs/namei.c:225
    [<ffffffff815f0df3>] vfs_mkdir+0x223/0x340 fs/namei.c:4035
    [<ffffffff815f9d65>] do_mkdirat+0x1a5/0x1e0 fs/namei.c:4060
    [<ffffffff815f9ed9>] __do_sys_mkdir fs/namei.c:4080 [inline]
    [<ffffffff815f9ed9>] __se_sys_mkdir fs/namei.c:4078 [inline]
    [<ffffffff815f9ed9>] __x64_sys_mkdir+0x69/0x90 fs/namei.c:4078
    [<ffffffff845fee85>] do_syscall_x64 arch/x86/entry/common.c:50 [inline]
    [<ffffffff845fee85>] do_syscall_64+0x35/0xb0 arch/x86/entry/common.c:80
    [<ffffffff84800087>] entry_SYSCALL_64_after_hwframe+0x63/0xcd



Tested on:

commit:         60bb8154 Merge tag 'xfs-6.1-for-linus' of git://git.ke..
git tree:       git://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git --
console output: https://syzkaller.appspot.com/x/log.txt?x=171a96dc880000
kernel config:  https://syzkaller.appspot.com/x/.config?x=589d84e4754dd2fa
dashboard link: https://syzkaller.appspot.com/bug?extid=389b82b29093b3e2640a
compiler:       gcc (Debian 10.2.1-6) 10.2.1 20210110, GNU ld (GNU Binutils for Debian) 2.35.2
patch:          https://syzkaller.appspot.com/x/patch.diff?x=1095fc78880000

next prev parent reply	other threads:[~2022-10-11 11:00 UTC|newest]

Thread overview: 17+ messages / expand[flat|nested]  mbox.gz  Atom feed  top
2022-10-04  8:49 [syzbot] memory leak in __get_metapage syzbot
2022-10-04  8:52 ` Dmitry Vyukov
2022-10-06  1:15 ` Fabio M. De Francesco
2022-10-06  1:16   ` syzbot
2022-10-11 11:00   ` syzbot [this message]
2022-10-06  1:20 ` Fabio M. De Francesco
2022-10-06  1:20   ` syzbot
2022-10-11 10:32   ` syzbot
2022-10-06  1:23 ` Fabio M. De Francesco
2022-10-06  1:23   ` syzbot
2022-10-11 10:32   ` syzbot
2022-10-06  1:28 ` Fabio M. De Francesco
2022-10-06  9:43   ` syzbot
2022-10-06 19:43 ` Fabio M. De Francesco
2022-10-06 22:03   ` syzbot
2022-10-06 23:26 ` Fabio M. De Francesco
2022-10-06 23:54   ` syzbot

Reply instructions:

You may reply publicly to this message via plain-text email
using any one of the following methods:

* Save the following mbox file, import it into your mail client,
  and reply-to-all from there: mbox

  Avoid top-posting and favor interleaved quoting:
  https://en.wikipedia.org/wiki/Posting_style#Interleaved_style

* Reply using the --to, --cc, and --in-reply-to
  switches of git-send-email(1):

  git send-email \
    --in-reply-to=000000000000cbe1c005eac02e1a@google.com \
    --to=syzbot+389b82b29093b3e2640a@syzkaller.appspotmail.com \
    --cc=akpm@linux-foundation.org \
    --cc=fmdefrancesco@gmail.com \
    --cc=linux-kernel@vger.kernel.org \
    --cc=linux-mm@kvack.org \
    --cc=syzkaller-bugs@googlegroups.com \
    /path/to/YOUR_REPLY

  https://kernel.org/pub/software/scm/git/docs/git-send-email.html

* If your mail client supports setting the In-Reply-To header
  via mailto: links, try the mailto: link

Be sure your reply has a Subject: header at the top and a blank line before the message body.

This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.