syzbot

 sign-in | mailing list | source | docs
🐞 Open [978] Subsystems 🐞 Fixed [5235] 🐞 Invalid [12492] Missing Backports [83] 📈 Kernel Health 📈 Bug Lifetimes 📈 Fuzzing 📈 Crashes 💬 Send us feedback

memory leak in io_submit_sqes (2)

Status: fixed on 2021/04/09 19:46
Subsystems: fs io-uring
[Documentation on labels]
Reported-by: syzbot+91b4b56ead187d35c9d3@syzkaller.appspotmail.com
Fix commit: f01272541d2c io-wq: ensure all pending work is canceled on exit
First crash: 1147d, last: 1147d
Discussions (2)
Title Replies (including bot) Last reply
[PATCHSET 0/33] Fixes queued up for 5.12 36 (36) 2021/03/04 14:05
memory leak in io_submit_sqes (2) 2 (5) 2021/03/04 08:27
Similar bugs (3)
Kernel Title Repro Cause bisect Fix bisect Count Last Reported Patched Status
upstream memory leak in io_submit_sqes fs io-uring C 2 1331d 1350d 15/26 fixed on 2020/09/16 22:51
upstream memory leak in io_submit_sqes (4) io-uring C 1 471d 470d 22/26 fixed on 2023/06/08 14:41
upstream memory leak in io_submit_sqes (3) fs io-uring C 1 1061d 1060d 0/26 auto-obsoleted due to no activity on 2022/10/10 15:32
Last patch testing requests (2)
Created Duration User Patch Repo Result
2021/03/03 22:51 17m axboe@kernel.dk git://git.kernel.dk/linux-block leak OK
2021/03/03 18:56 8m axboe@kernel.dk git://git.kernel.dk/linux-block io_uring-5.12 report log

Sample crash report:
executing program
executing program
executing program
executing program
executing program
BUG: memory leak
unreferenced object 0xffff88810f335800 (size 232):
  comm "syz-executor079", pid 8386, jiffies 4294945178 (age 19.500s)
  hex dump (first 32 bytes):
    00 62 7e 01 81 88 ff ff 00 00 00 00 00 00 00 00  .b~.............
    f0 98 5f 81 ff ff ff ff 00 00 00 00 00 00 00 00  .._.............
  backtrace:
    [<000000008b690cb4>] io_alloc_req fs/io_uring.c:1680 [inline]
    [<000000008b690cb4>] io_submit_sqes+0x803/0x2340 fs/io_uring.c:6553
    [<000000007cfdba48>] __do_sys_io_uring_enter+0x86f/0x1110 fs/io_uring.c:9175
    [<00000000d605a0db>] do_syscall_64+0x2d/0x70 arch/x86/entry/common.c:46
    [<000000005fafd51e>] entry_SYSCALL_64_after_hwframe+0x44/0xae

BUG: memory leak
unreferenced object 0xffff88810f8c0300 (size 256):
  comm "syz-executor079", pid 8386, jiffies 4294945178 (age 19.500s)
  hex dump (first 32 bytes):
    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
  backtrace:
    [<00000000e2e0a7ef>] kmalloc include/linux/slab.h:559 [inline]
    [<00000000e2e0a7ef>] __io_alloc_async_data fs/io_uring.c:3104 [inline]
    [<00000000e2e0a7ef>] io_setup_async_rw fs/io_uring.c:3123 [inline]
    [<00000000e2e0a7ef>] io_setup_async_rw+0xa3/0x1e0 fs/io_uring.c:3116
    [<0000000066815854>] io_read+0x1fe/0x540 fs/io_uring.c:3299
    [<00000000cfdf0aa9>] io_issue_sqe+0xb6/0x1c50 fs/io_uring.c:5957
    [<00000000ae810f5a>] __io_queue_sqe+0x118/0x5c0 fs/io_uring.c:6226
    [<000000001fd21177>] io_queue_sqe+0x2af/0x4d0 fs/io_uring.c:6282
    [<00000000a078f546>] io_submit_sqe fs/io_uring.c:6452 [inline]
    [<00000000a078f546>] io_submit_sqes+0x2016/0x2340 fs/io_uring.c:6566
    [<000000007cfdba48>] __do_sys_io_uring_enter+0x86f/0x1110 fs/io_uring.c:9175
    [<00000000d605a0db>] do_syscall_64+0x2d/0x70 arch/x86/entry/common.c:46
    [<000000005fafd51e>] entry_SYSCALL_64_after_hwframe+0x44/0xae

BUG: memory leak
unreferenced object 0xffff888110916200 (size 232):
  comm "syz-executor079", pid 8398, jiffies 4294945179 (age 19.490s)
  hex dump (first 32 bytes):
    00 fa b7 0f 81 88 ff ff 00 00 00 00 00 00 00 00  ................
    f0 98 5f 81 ff ff ff ff 00 00 00 00 00 00 00 00  .._.............
  backtrace:
    [<000000008b690cb4>] io_alloc_req fs/io_uring.c:1680 [inline]
    [<000000008b690cb4>] io_submit_sqes+0x803/0x2340 fs/io_uring.c:6553
    [<000000007cfdba48>] __do_sys_io_uring_enter+0x86f/0x1110 fs/io_uring.c:9175
    [<00000000d605a0db>] do_syscall_64+0x2d/0x70 arch/x86/entry/common.c:46
    [<000000005fafd51e>] entry_SYSCALL_64_after_hwframe+0x44/0xae

BUG: memory leak
unreferenced object 0xffff88810f8c0200 (size 256):
  comm "syz-executor079", pid 8398, jiffies 4294945179 (age 19.490s)
  hex dump (first 32 bytes):
    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
  backtrace:
    [<00000000e2e0a7ef>] kmalloc include/linux/slab.h:559 [inline]
    [<00000000e2e0a7ef>] __io_alloc_async_data fs/io_uring.c:3104 [inline]
    [<00000000e2e0a7ef>] io_setup_async_rw fs/io_uring.c:3123 [inline]
    [<00000000e2e0a7ef>] io_setup_async_rw+0xa3/0x1e0 fs/io_uring.c:3116
    [<0000000066815854>] io_read+0x1fe/0x540 fs/io_uring.c:3299
    [<00000000cfdf0aa9>] io_issue_sqe+0xb6/0x1c50 fs/io_uring.c:5957
    [<00000000ae810f5a>] __io_queue_sqe+0x118/0x5c0 fs/io_uring.c:6226
    [<000000001fd21177>] io_queue_sqe+0x2af/0x4d0 fs/io_uring.c:6282
    [<00000000a078f546>] io_submit_sqe fs/io_uring.c:6452 [inline]
    [<00000000a078f546>] io_submit_sqes+0x2016/0x2340 fs/io_uring.c:6566
    [<000000007cfdba48>] __do_sys_io_uring_enter+0x86f/0x1110 fs/io_uring.c:9175
    [<00000000d605a0db>] do_syscall_64+0x2d/0x70 arch/x86/entry/common.c:46
    [<000000005fafd51e>] entry_SYSCALL_64_after_hwframe+0x44/0xae

BUG: memory leak
unreferenced object 0xffff88810f8a2800 (size 232):
  comm "syz-executor079", pid 8404, jiffies 4294945179 (age 19.490s)
  hex dump (first 32 bytes):
    00 5c 33 0f 81 88 ff ff 00 00 00 00 00 00 00 00  .\3.............
    f0 98 5f 81 ff ff ff ff 00 00 00 00 00 00 00 00  .._.............
  backtrace:
    [<000000008b690cb4>] io_alloc_req fs/io_uring.c:1680 [inline]
    [<000000008b690cb4>] io_submit_sqes+0x803/0x2340 fs/io_uring.c:6553
    [<000000007cfdba48>] __do_sys_io_uring_enter+0x86f/0x1110 fs/io_uring.c:9175
    [<00000000d605a0db>] do_syscall_64+0x2d/0x70 arch/x86/entry/common.c:46
    [<000000005fafd51e>] entry_SYSCALL_64_after_hwframe+0x44/0xae

BUG: memory leak
unreferenced object 0xffff88810f8c0100 (size 256):
  comm "syz-executor079", pid 8404, jiffies 4294945179 (age 19.490s)
  hex dump (first 32 bytes):
    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
  backtrace:
    [<00000000e2e0a7ef>] kmalloc include/linux/slab.h:559 [inline]
    [<00000000e2e0a7ef>] __io_alloc_async_data fs/io_uring.c:3104 [inline]
    [<00000000e2e0a7ef>] io_setup_async_rw fs/io_uring.c:3123 [inline]
    [<00000000e2e0a7ef>] io_setup_async_rw+0xa3/0x1e0 fs/io_uring.c:3116
    [<0000000066815854>] io_read+0x1fe/0x540 fs/io_uring.c:3299
    [<00000000cfdf0aa9>] io_issue_sqe+0xb6/0x1c50 fs/io_uring.c:5957
    [<00000000ae810f5a>] __io_queue_sqe+0x118/0x5c0 fs/io_uring.c:6226
    [<000000001fd21177>] io_queue_sqe+0x2af/0x4d0 fs/io_uring.c:6282
    [<00000000a078f546>] io_submit_sqe fs/io_uring.c:6452 [inline]
    [<00000000a078f546>] io_submit_sqes+0x2016/0x2340 fs/io_uring.c:6566
    [<000000007cfdba48>] __do_sys_io_uring_enter+0x86f/0x1110 fs/io_uring.c:9175
    [<00000000d605a0db>] do_syscall_64+0x2d/0x70 arch/x86/entry/common.c:46
    [<000000005fafd51e>] entry_SYSCALL_64_after_hwframe+0x44/0xae

BUG: memory leak
unreferenced object 0xffff88810f335800 (size 232):
  comm "syz-executor079", pid 8386, jiffies 4294945178 (age 20.620s)
  hex dump (first 32 bytes):
    00 62 7e 01 81 88 ff ff 00 00 00 00 00 00 00 00  .b~.............
    f0 98 5f 81 ff ff ff ff 00 00 00 00 00 00 00 00  .._.............
  backtrace:
    [<000000008b690cb4>] io_alloc_req fs/io_uring.c:1680 [inline]
    [<000000008b690cb4>] io_submit_sqes+0x803/0x2340 fs/io_uring.c:6553
    [<000000007cfdba48>] __do_sys_io_uring_enter+0x86f/0x1110 fs/io_uring.c:9175
    [<00000000d605a0db>] do_syscall_64+0x2d/0x70 arch/x86/entry/common.c:46
    [<000000005fafd51e>] entry_SYSCALL_64_after_hwframe+0x44/0xae

BUG: memory leak
unreferenced object 0xffff88810f8c0300 (size 256):
  comm "syz-executor079", pid 8386, jiffies 4294945178 (age 20.620s)
  hex dump (first 32 bytes):
    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
  backtrace:
    [<00000000e2e0a7ef>] kmalloc include/linux/slab.h:559 [inline]
    [<00000000e2e0a7ef>] __io_alloc_async_data fs/io_uring.c:3104 [inline]
    [<00000000e2e0a7ef>] io_setup_async_rw fs/io_uring.c:3123 [inline]
    [<00000000e2e0a7ef>] io_setup_async_rw+0xa3/0x1e0 fs/io_uring.c:3116
    [<0000000066815854>] io_read+0x1fe/0x540 fs/io_uring.c:3299
    [<00000000cfdf0aa9>] io_issue_sqe+0xb6/0x1c50 fs/io_uring.c:5957
    [<00000000ae810f5a>] __io_queue_sqe+0x118/0x5c0 fs/io_uring.c:6226
    [<000000001fd21177>] io_queue_sqe+0x2af/0x4d0 fs/io_uring.c:6282
    [<00000000a078f546>] io_submit_sqe fs/io_uring.c:6452 [inline]
    [<00000000a078f546>] io_submit_sqes+0x2016/0x2340 fs/io_uring.c:6566
    [<000000007cfdba48>] __do_sys_io_uring_enter+0x86f/0x1110 fs/io_uring.c:9175
    [<00000000d605a0db>] do_syscall_64+0x2d/0x70 arch/x86/entry/common.c:46
    [<000000005fafd51e>] entry_SYSCALL_64_after_hwframe+0x44/0xae

BUG: memory leak
unreferenced object 0xffff888110916200 (size 232):
  comm "syz-executor079", pid 8398, jiffies 4294945179 (age 20.610s)
  hex dump (first 32 bytes):
    00 fa b7 0f 81 88 ff ff 00 00 00 00 00 00 00 00  ................
    f0 98 5f 81 ff ff ff ff 00 00 00 00 00 00 00 00  .._.............
  backtrace:
    [<000000008b690cb4>] io_alloc_req fs/io_uring.c:1680 [inline]
    [<000000008b690cb4>] io_submit_sqes+0x803/0x2340 fs/io_uring.c:6553
    [<000000007cfdba48>] __do_sys_io_uring_enter+0x86f/0x1110 fs/io_uring.c:9175
    [<00000000d605a0db>] do_syscall_64+0x2d/0x70 arch/x86/entry/common.c:46
    [<000000005fafd51e>] entry_SYSCALL_64_after_hwframe+0x44/0xae

BUG: memory leak
unreferenced object 0xffff88810f8c0200 (size 256):
  comm "syz-executor079", pid 8398, jiffies 4294945179 (age 20.610s)
  hex dump (first 32 bytes):
    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
  backtrace:
    [<00000000e2e0a7ef>] kmalloc include/linux/slab.h:559 [inline]
    [<00000000e2e0a7ef>] __io_alloc_async_data fs/io_uring.c:3104 [inline]
    [<00000000e2e0a7ef>] io_setup_async_rw fs/io_uring.c:3123 [inline]
    [<00000000e2e0a7ef>] io_setup_async_rw+0xa3/0x1e0 fs/io_uring.c:3116
    [<0000000066815854>] io_read+0x1fe/0x540 fs/io_uring.c:3299
    [<00000000cfdf0aa9>] io_issue_sqe+0xb6/0x1c50 fs/io_uring.c:5957
    [<00000000ae810f5a>] __io_queue_sqe+0x118/0x5c0 fs/io_uring.c:6226
    [<000000001fd21177>] io_queue_sqe+0x2af/0x4d0 fs/io_uring.c:6282
    [<00000000a078f546>] io_submit_sqe fs/io_uring.c:6452 [inline]
    [<00000000a078f546>] io_submit_sqes+0x2016/0x2340 fs/io_uring.c:6566
    [<000000007cfdba48>] __do_sys_io_uring_enter+0x86f/0x1110 fs/io_uring.c:9175
    [<00000000d605a0db>] do_syscall_64+0x2d/0x70 arch/x86/entry/common.c:46
    [<000000005fafd51e>] entry_SYSCALL_64_after_hwframe+0x44/0xae

BUG: memory leak
unreferenced object 0xffff88810f8a2800 (size 232):
  comm "syz-executor079", pid 8404, jiffies 4294945179 (age 20.610s)
  hex dump (first 32 bytes):
    00 5c 33 0f 81 88 ff ff 00 00 00 00 00 00 00 00  .\3.............
    f0 98 5f 81 ff ff ff ff 00 00 00 00 00 00 00 00  .._.............
  backtrace:
    [<000000008b690cb4>] io_alloc_req fs/io_uring.c:1680 [inline]
    [<000000008b690cb4>] io_submit_sqes+0x803/0x2340 fs/io_uring.c:6553
    [<000000007cfdba48>] __do_sys_io_uring_enter+0x86f/0x1110 fs/io_uring.c:9175
    [<00000000d605a0db>] do_syscall_64+0x2d/0x70 arch/x86/entry/common.c:46
    [<000000005fafd51e>] entry_SYSCALL_64_after_hwframe+0x44/0xae

BUG: memory leak
unreferenced object 0xffff88810f8c0100 (size 256):
  comm "syz-executor079", pid 8404, jiffies 4294945179 (age 20.610s)
  hex dump (first 32 bytes):
    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
  backtrace:
    [<00000000e2e0a7ef>] kmalloc include/linux/slab.h:559 [inline]
    [<00000000e2e0a7ef>] __io_alloc_async_data fs/io_uring.c:3104 [inline]
    [<00000000e2e0a7ef>] io_setup_async_rw fs/io_uring.c:3123 [inline]
    [<00000000e2e0a7ef>] io_setup_async_rw+0xa3/0x1e0 fs/io_uring.c:3116
    [<0000000066815854>] io_read+0x1fe/0x540 fs/io_uring.c:3299
    [<00000000cfdf0aa9>] io_issue_sqe+0xb6/0x1c50 fs/io_uring.c:5957
    [<00000000ae810f5a>] __io_queue_sqe+0x118/0x5c0 fs/io_uring.c:6226
    [<000000001fd21177>] io_queue_sqe+0x2af/0x4d0 fs/io_uring.c:6282
    [<00000000a078f546>] io_submit_sqe fs/io_uring.c:6452 [inline]
    [<00000000a078f546>] io_submit_sqes+0x2016/0x2340 fs/io_uring.c:6566
    [<000000007cfdba48>] __do_sys_io_uring_enter+0x86f/0x1110 fs/io_uring.c:9175
    [<00000000d605a0db>] do_syscall_64+0x2d/0x70 arch/x86/entry/common.c:46
    [<000000005fafd51e>] entry_SYSCALL_64_after_hwframe+0x44/0xae

BUG: memory leak
unreferenced object 0xffff88810f335800 (size 232):
  comm "syz-executor079", pid 8386, jiffies 4294945178 (age 21.750s)
  hex dump (first 32 bytes):
    00 62 7e 01 81 88 ff ff 00 00 00 00 00 00 00 00  .b~.............
    f0 98 5f 81 ff ff ff ff 00 00 00 00 00 00 00 00  .._.............
  backtrace:
    [<000000008b690cb4>] io_alloc_req fs/io_uring.c:1680 [inline]
    [<000000008b690cb4>] io_submit_sqes+0x803/0x2340 fs/io_uring.c:6553
    [<000000007cfdba48>] __do_sys_io_uring_enter+0x86f/0x1110 fs/io_uring.c:9175
    [<00000000d605a0db>] do_syscall_64+0x2d/0x70 arch/x86/entry/common.c:46
    [<000000005fafd51e>] entry_SYSCALL_64_after_hwframe+0x44/0xae

BUG: memory leak
unreferenced object 0xffff88810f8c0300 (size 256):
  comm "syz-executor079", pid 8386, jiffies 4294945178 (age 21.750s)
  hex dump (first 32 bytes):
    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
  backtrace:
    [<00000000e2e0a7ef>] kmalloc include/linux/slab.h:559 [inline]
    [<00000000e2e0a7ef>] __io_alloc_async_data fs/io_uring.c:3104 [inline]
    [<00000000e2e0a7ef>] io_setup_async_rw fs/io_uring.c:3123 [inline]
    [<00000000e2e0a7ef>] io_setup_async_rw+0xa3/0x1e0 fs/io_uring.c:3116
    [<0000000066815854>] io_read+0x1fe/0x540 fs/io_uring.c:3299
    [<00000000cfdf0aa9>] io_issue_sqe+0xb6/0x1c50 fs/io_uring.c:5957
    [<00000000ae810f5a>] __io_queue_sqe+0x118/0x5c0 fs/io_uring.c:6226
    [<000000001fd21177>] io_queue_sqe+0x2af/0x4d0 fs/io_uring.c:6282
    [<00000000a078f546>] io_submit_sqe fs/io_uring.c:6452 [inline]
    [<00000000a078f546>] io_submit_sqes+0x2016/0x2340 fs/io_uring.c:6566
    [<000000007cfdba48>] __do_sys_io_uring_enter+0x86f/0x1110 fs/io_uring.c:9175
    [<00000000d605a0db>] do_syscall_64+0x2d/0x70 arch/x86/entry/common.c:46
    [<000000005fafd51e>] entry_SYSCALL_64_after_hwframe+0x44/0xae

BUG: memory leak
unreferenced object 0xffff888110916200 (size 232):
  comm "syz-executor079", pid 8398, jiffies 4294945179 (age 21.740s)
  hex dump (first 32 bytes):
    00 fa b7 0f 81 88 ff ff 00 00 00 00 00 00 00 00  ................
    f0 98 5f 81 ff ff ff ff 00 00 00 00 00 00 00 00  .._.............
  backtrace:
    [<000000008b690cb4>] io_alloc_req fs/io_uring.c:1680 [inline]
    [<000000008b690cb4>] io_submit_sqes+0x803/0x2340 fs/io_uring.c:6553
    [<000000007cfdba48>] __do_sys_io_uring_enter+0x86f/0x1110 fs/io_uring.c:9175
    [<00000000d605a0db>] do_syscall_64+0x2d/0x70 arch/x86/entry/common.c:46
    [<000000005fafd51e>] entry_SYSCALL_64_after_hwframe+0x44/0xae

BUG: memory leak
unreferenced object 0xffff88810f8c0200 (size 256):
  comm "syz-executor079", pid 8398, jiffies 4294945179 (age 21.740s)
  hex dump (first 32 bytes):
    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
  backtrace:
    [<00000000e2e0a7ef>] kmalloc include/linux/slab.h:559 [inline]
    [<00000000e2e0a7ef>] __io_alloc_async_data fs/io_uring.c:3104 [inline]
    [<00000000e2e0a7ef>] io_setup_async_rw fs/io_uring.c:3123 [inline]
    [<00000000e2e0a7ef>] io_setup_async_rw+0xa3/0x1e0 fs/io_uring.c:3116
    [<0000000066815854>] io_read+0x1fe/0x540 fs/io_uring.c:3299
    [<00000000cfdf0aa9>] io_issue_sqe+0xb6/0x1c50 fs/io_uring.c:5957
    [<00000000ae810f5a>] __io_queue_sqe+0x118/0x5c0 fs/io_uring.c:6226
    [<000000001fd21177>] io_queue_sqe+0x2af/0x4d0 fs/io_uring.c:6282
    [<00000000a078f546>] io_submit_sqe fs/io_uring.c:6452 [inline]
    [<00000000a078f546>] io_submit_sqes+0x2016/0x2340 fs/io_uring.c:6566
    [<000000007cfdba48>] __do_sys_io_uring_enter+0x86f/0x1110 fs/io_uring.c:9175
    [<00000000d605a0db>] do_syscall_64+0x2d/0x70 arch/x86/entry/common.c:46
    [<000000005fafd51e>] entry_SYSCALL_64_after_hwframe+0x44/0xae

BUG: memory leak
unreferenced object 0xffff88810f8a2800 (size 232):
  comm "syz-executor079", pid 8404, jiffies 4294945179 (age 21.740s)
  hex dump (first 32 bytes):
    00 5c 33 0f 81 88 ff ff 00 00 00 00 00 00 00 00  .\3.............
    f0 98 5f 81 ff ff ff ff 00 00 00 00 00 00 00 00  .._.............
  backtrace:
    [<000000008b690cb4>] io_alloc_req fs/io_uring.c:1680 [inline]
    [<000000008b690cb4>] io_submit_sqes+0x803/0x2340 fs/io_uring.c:6553
    [<000000007cfdba48>] __do_sys_io_uring_enter+0x86f/0x1110 fs/io_uring.c:9175
    [<00000000d605a0db>] do_syscall_64+0x2d/0x70 arch/x86/entry/common.c:46
    [<000000005fafd51e>] entry_SYSCALL_64_after_hwframe+0x44/0xae

BUG: memory leak
unreferenced object 0xffff88810f8c0100 (size 256):
  comm "syz-executor079", pid 8404, jiffies 4294945179 (age 21.740s)
  hex dump (first 32 bytes):
    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
  backtrace:
    [<00000000e2e0a7ef>] kmalloc include/linux/slab.h:559 [inline]
    [<00000000e2e0a7ef>] __io_alloc_async_data fs/io_uring.c:3104 [inline]
    [<00000000e2e0a7ef>] io_setup_async_rw fs/io_uring.c:3123 [inline]
    [<00000000e2e0a7ef>] io_setup_async_rw+0xa3/0x1e0 fs/io_uring.c:3116
    [<0000000066815854>] io_read+0x1fe/0x540 fs/io_uring.c:3299
    [<00000000cfdf0aa9>] io_issue_sqe+0xb6/0x1c50 fs/io_uring.c:5957
    [<00000000ae810f5a>] __io_queue_sqe+0x118/0x5c0 fs/io_uring.c:6226
    [<000000001fd21177>] io_queue_sqe+0x2af/0x4d0 fs/io_uring.c:6282
    [<00000000a078f546>] io_submit_sqe fs/io_uring.c:6452 [inline]
    [<00000000a078f546>] io_submit_sqes+0x2016/0x2340 fs/io_uring.c:6566
    [<000000007cfdba48>] __do_sys_io_uring_enter+0x86f/0x1110 fs/io_uring.c:9175
    [<00000000d605a0db>] do_syscall_64+0x2d/0x70 arch/x86/entry/common.c:46
    [<000000005fafd51e>] entry_SYSCALL_64_after_hwframe+0x44/0xae

BUG: memory leak
unreferenced object 0xffff88810f335800 (size 232):
  comm "syz-executor079", pid 8386, jiffies 4294945178 (age 22.860s)
  hex dump (first 32 bytes):
    00 62 7e 01 81 88 ff ff 00 00 00 00 00 00 00 00  .b~.............
    f0 98 5f 81 ff ff ff ff 00 00 00 00 00 00 00 00  .._.............
  backtrace:
    [<000000008b690cb4>] io_alloc_req fs/io_uring.c:1680 [inline]
    [<000000008b690cb4>] io_submit_sqes+0x803/0x2340 fs/io_uring.c:6553
    [<000000007cfdba48>] __do_sys_io_uring_enter+0x86f/0x1110 fs/io_uring.c:9175
    [<00000000d605a0db>] do_syscall_64+0x2d/0x70 arch/x86/entry/common.c:46
    [<000000005fafd51e>] entry_SYSCALL_64_after_hwframe+0x44/0xae

BUG: memory leak
unreferenced object 0xffff88810f8c0300 (size 256):
  comm "syz-executor079", pid 8386, jiffies 4294945178 (age 22.860s)
  hex dump (first 32 bytes):
    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
  backtrace:
    [<00000000e2e0a7ef>] kmalloc include/linux/slab.h:559 [inline]
    [<00000000e2e0a7ef>] __io_alloc_async_data fs/io_uring.c:3104 [inline]
    [<00000000e2e0a7ef>] io_setup_async_rw fs/io_uring.c:3123 [inline]
    [<00000000e2e0a7ef>] io_setup_async_rw+0xa3/0x1e0 fs/io_uring.c:3116
    [<0000000066815854>] io_read+0x1fe/0x540 fs/io_uring.c:3299
    [<00000000cfdf0aa9>] io_issue_sqe+0xb6/0x1c50 fs/io_uring.c:5957
    [<00000000ae810f5a>] __io_queue_sqe+0x118/0x5c0 fs/io_uring.c:6226
    [<000000001fd21177>] io_queue_sqe+0x2af/0x4d0 fs/io_uring.c:6282
    [<00000000a078f546>] io_submit_sqe fs/io_uring.c:6452 [inline]
    [<00000000a078f546>] io_submit_sqes+0x2016/0x2340 fs/io_uring.c:6566
    [<000000007cfdba48>] __do_sys_io_uring_enter+0x86f/0x1110 fs/io_uring.c:9175
    [<00000000d605a0db>] do_syscall_64+0x2d/0x70 arch/x86/entry/common.c:46
    [<000000005fafd51e>] entry_SYSCALL_64_after_hwframe+0x44/0xae

BUG: memory leak
unreferenced object 0xffff888110916200 (size 232):
  comm "syz-executor079", pid 8398, jiffies 4294945179 (age 22.850s)
  hex dump (first 32 bytes):
    00 fa b7 0f 81 88 ff ff 00 00 00 00 00 00 00 00  ................
    f0 98 5f 81 ff ff ff ff 00 00 00 00 00 00 00 00  .._.............
  backtrace:
    [<000000008b690cb4>] io_alloc_req fs/io_uring.c:1680 [inline]
    [<000000008b690cb4>] io_submit_sqes+0x803/0x2340 fs/io_uring.c:6553
    [<000000007cfdba48>] __do_sys_io_uring_enter+0x86f/0x1110 fs/io_uring.c:9175
    [<00000000d605a0db>] do_syscall_64+0x2d/0x70 arch/x86/entry/common.c:46
    [<000000005fafd51e>] entry_SYSCALL_64_after_hwframe+0x44/0xae

BUG: memory leak
unreferenced object 0xffff88810f8c0200 (size 256):
  comm "syz-executor079", pid 8398, jiffies 4294945179 (age 22.850s)
  hex dump (first 32 bytes):
    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
  backtrace:
    [<00000000e2e0a7ef>] kmalloc include/linux/slab.h:559 [inline]
    [<00000000e2e0a7ef>] __io_alloc_async_data fs/io_uring.c:3104 [inline]
    [<00000000e2e0a7ef>] io_setup_async_rw fs/io_uring.c:3123 [inline]
    [<00000000e2e0a7ef>] io_setup_async_rw+0xa3/0x1e0 fs/io_uring.c:3116
    [<0000000066815854>] io_read+0x1fe/0x540 fs/io_uring.c:3299
    [<00000000cfdf0aa9>] io_issue_sqe+0xb6/0x1c50 fs/io_uring.c:5957
    [<00000000ae810f5a>] __io_queue_sqe+0x118/0x5c0 fs/io_uring.c:6226
    [<000000001fd21177>] io_queue_sqe+0x2af/0x4d0 fs/io_uring.c:6282
    [<00000000a078f546>] io_submit_sqe fs/io_uring.c:6452 [inline]
    [<00000000a078f546>] io_submit_sqes+0x2016/0x2340 fs/io_uring.c:6566
    [<000000007cfdba48>] __do_sys_io_uring_enter+0x86f/0x1110 fs/io_uring.c:9175
    [<00000000d605a0db>] do_syscall_64+0x2d/0x70 arch/x86/entry/common.c:46
    [<000000005fafd51e>] entry_SYSCALL_64_after_hwframe+0x44/0xae

BUG: memory leak
unreferenced object 0xffff88810f8a2800 (size 232):
  comm "syz-executor079", pid 8404, jiffies 4294945179 (age 22.850s)
  hex dump (first 32 bytes):
    00 5c 33 0f 81 88 ff ff 00 00 00 00 00 00 00 00  .\3.............
    f0 98 5f 81 ff ff ff ff 00 00 00 00 00 00 00 00  .._.............
  backtrace:
    [<000000008b690cb4>] io_alloc_req fs/io_uring.c:1680 [inline]
    [<000000008b690cb4>] io_submit_sqes+0x803/0x2340 fs/io_uring.c:6553
    [<000000007cfdba48>] __do_sys_io_uring_enter+0x86f/0x1110 fs/io_uring.c:9175
    [<00000000d605a0db>] do_syscall_64+0x2d/0x70 arch/x86/entry/common.c:46
    [<000000005fafd51e>] entry_SYSCALL_64_after_hwframe+0x44/0xae

BUG: memory leak
unreferenced object 0xffff88810f8c0100 (size 256):
  comm "syz-executor079", pid 8404, jiffies 4294945179 (age 22.850s)
  hex dump (first 32 bytes):
    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
  backtrace:
    [<00000000e2e0a7ef>] kmalloc include/linux/slab.h:559 [inline]
    [<00000000e2e0a7ef>] __io_alloc_async_data fs/io_uring.c:3104 [inline]
    [<00000000e2e0a7ef>] io_setup_async_rw fs/io_uring.c:3123 [inline]
    [<00000000e2e0a7ef>] io_setup_async_rw+0xa3/0x1e0 fs/io_uring.c:3116
    [<0000000066815854>] io_read+0x1fe/0x540 fs/io_uring.c:3299
    [<00000000cfdf0aa9>] io_issue_sqe+0xb6/0x1c50 fs/io_uring.c:5957
    [<00000000ae810f5a>] __io_queue_sqe+0x118/0x5c0 fs/io_uring.c:6226
    [<000000001fd21177>] io_queue_sqe+0x2af/0x4d0 fs/io_uring.c:6282
    [<00000000a078f546>] io_submit_sqe fs/io_uring.c:6452 [inline]
    [<00000000a078f546>] io_submit_sqes+0x2016/0x2340 fs/io_uring.c:6566
    [<000000007cfdba48>] __do_sys_io_uring_enter+0x86f/0x1110 fs/io_uring.c:9175
    [<00000000d605a0db>] do_syscall_64+0x2d/0x70 arch/x86/entry/common.c:46
    [<000000005fafd51e>] entry_SYSCALL_64_after_hwframe+0x44/0xae

BUG: memory leak
unreferenced object 0xffff88810f335800 (size 232):
  comm "syz-executor079", pid 8386, jiffies 4294945178 (age 23.970s)
  hex dump (first 32 bytes):
    00 62 7e 01 81 88 ff ff 00 00 00 00 00 00 00 00  .b~.............
    f0 98 5f 81 ff ff ff ff 00 00 00 00 00 00 00 00  .._.............
  backtrace:
    [<000000008b690cb4>] io_alloc_req fs/io_uring.c:1680 [inline]
    [<000000008b690cb4>] io_submit_sqes+0x803/0x2340 fs/io_uring.c:6553
    [<000000007cfdba48>] __do_sys_io_uring_enter+0x86f/0x1110 fs/io_uring.c:9175
    [<00000000d605a0db>] do_syscall_64+0x2d/0x70 arch/x86/entry/common.c:46
    [<000000005fafd51e>] entry_SYSCALL_64_after_hwframe+0x44/0xae

BUG: memory leak
unreferenced object 0xffff88810f8c0300 (size 256):
  comm "syz-executor079", pid 8386, jiffies 4294945178 (age 23.970s)
  hex dump (first 32 bytes):
    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
  backtrace:
    [<00000000e2e0a7ef>] kmalloc include/linux/slab.h:559 [inline]
    [<00000000e2e0a7ef>] __io_alloc_async_data fs/io_uring.c:3104 [inline]
    [<00000000e2e0a7ef>] io_setup_async_rw fs/io_uring.c:3123 [inline]
    [<00000000e2e0a7ef>] io_setup_async_rw+0xa3/0x1e0 fs/io_uring.c:3116
    [<0000000066815854>] io_read+0x1fe/0x540 fs/io_uring.c:3299
    [<00000000cfdf0aa9>] io_issue_sqe+0xb6/0x1c50 fs/io_uring.c:5957
    [<00000000ae810f5a>] __io_queue_sqe+0x118/0x5c0 fs/io_uring.c:6226
    [<000000001fd21177>] io_queue_sqe+0x2af/0x4d0 fs/io_uring.c:6282
    [<00000000a078f546>] io_submit_sqe fs/io_uring.c:6452 [inline]
    [<00000000a078f546>] io_submit_sqes+0x2016/0x2340 fs/io_uring.c:6566
    [<000000007cfdba48>] __do_sys_io_uring_enter+0x86f/0x1110 fs/io_uring.c:9175
    [<00000000d605a0db>] do_syscall_64+0x2d/0x70 arch/x86/entry/common.c:46
    [<000000005fafd51e>] entry_SYSCALL_64_after_hwframe+0x44/0xae

BUG: memory leak
unreferenced object 0xffff888110916200 (size 232):
  comm "syz-executor079", pid 8398, jiffies 4294945179 (age 23.960s)
  hex dump (first 32 bytes):
    00 fa b7 0f 81 88 ff ff 00 00 00 00 00 00 00 00  ................
    f0 98 5f 81 ff ff ff ff 00 00 00 00 00 00 00 00  .._.............
  backtrace:
    [<000000008b690cb4>] io_alloc_req fs/io_uring.c:1680 [inline]
    [<000000008b690cb4>] io_submit_sqes+0x803/0x2340 fs/io_uring.c:6553
    [<000000007cfdba48>] __do_sys_io_uring_enter+0x86f/0x1110 fs/io_uring.c:9175
    [<00000000d605a0db>] do_syscall_64+0x2d/0x70 arch/x86/entry/common.c:46
    [<000000005fafd51e>] entry_SYSCALL_64_after_hwframe+0x44/0xae

BUG: memory leak
unreferenced object 0xffff88810f8c0200 (size 256):
  comm "syz-executor079", pid 8398, jiffies 4294945179 (age 23.960s)
  hex dump (first 32 bytes):
    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
  backtrace:
    [<00000000e2e0a7ef>] kmalloc include/linux/slab.h:559 [inline]
    [<00000000e2e0a7ef>] __io_alloc_async_data fs/io_uring.c:3104 [inline]
    [<00000000e2e0a7ef>] io_setup_async_rw fs/io_uring.c:3123 [inline]
    [<00000000e2e0a7ef>] io_setup_async_rw+0xa3/0x1e0 fs/io_uring.c:3116
    [<0000000066815854>] io_read+0x1fe/0x540 fs/io_uring.c:3299
    [<00000000cfdf0aa9>] io_issue_sqe+0xb6/0x1c50 fs/io_uring.c:5957
    [<00000000ae810f5a>] __io_queue_sqe+0x118/0x5c0 fs/io_uring.c:6226
    [<000000001fd21177>] io_queue_sqe+0x2af/0x4d0 fs/io_uring.c:6282
    [<00000000a078f546>] io_submit_sqe fs/io_uring.c:6452 [inline]
    [<00000000a078f546>] io_submit_sqes+0x2016/0x2340 fs/io_uring.c:6566
    [<000000007cfdba48>] __do_sys_io_uring_enter+0x86f/0x1110 fs/io_uring.c:9175
    [<00000000d605a0db>] do_syscall_64+0x2d/0x70 arch/x86/entry/common.c:46
    [<000000005fafd51e>] entry_SYSCALL_64_after_hwframe+0x44/0xae

BUG: memory leak
unreferenced object 0xffff88810f8a2800 (size 232):
  comm "syz-executor079", pid 8404, jiffies 4294945179 (age 23.960s)
  hex dump (first 32 bytes):
    00 5c 33 0f 81 88 ff ff 00 00 00 00 00 00 00 00  .\3.............
    f0 98 5f 81 ff ff ff ff 00 00 00 00 00 00 00 00  .._.............
  backtrace:
    [<000000008b690cb4>] io_alloc_req fs/io_uring.c:1680 [inline]
    [<000000008b690cb4>] io_submit_sqes+0x803/0x2340 fs/io_uring.c:6553
    [<000000007cfdba48>] __do_sys_io_uring_enter+0x86f/0x1110 fs/io_uring.c:9175
    [<00000000d605a0db>] do_syscall_64+0x2d/0x70 arch/x86/entry/common.c:46
    [<000000005fafd51e>] entry_SYSCALL_64_after_hwframe+0x44/0xae

BUG: memory leak
unreferenced object 0xffff88810f8c0100 (size 256):
  comm "syz-executor079", pid 8404, jiffies 4294945179 (age 23.960s)
  hex dump (first 32 bytes):
    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
  backtrace:
    [<00000000e2e0a7ef>] kmalloc include/linux/slab.h:559 [inline]
    [<00000000e2e0a7ef>] __io_alloc_async_data fs/io_uring.c:3104 [inline]
    [<00000000e2e0a7ef>] io_setup_async_rw fs/io_uring.c:3123 [inline]
    [<00000000e2e0a7ef>] io_setup_async_rw+0xa3/0x1e0 fs/io_uring.c:3116
    [<0000000066815854>] io_read+0x1fe/0x540 fs/io_uring.c:3299
    [<00000000cfdf0aa9>] io_issue_sqe+0xb6/0x1c50 fs/io_uring.c:5957
    [<00000000ae810f5a>] __io_queue_sqe+0x118/0x5c0 fs/io_uring.c:6226
    [<000000001fd21177>] io_queue_sqe+0x2af/0x4d0 fs/io_uring.c:6282
    [<00000000a078f546>] io_submit_sqe fs/io_uring.c:6452 [inline]
    [<00000000a078f546>] io_submit_sqes+0x2016/0x2340 fs/io_uring.c:6566
    [<000000007cfdba48>] __do_sys_io_uring_enter+0x86f/0x1110 fs/io_uring.c:9175
    [<00000000d605a0db>] do_syscall_64+0x2d/0x70 arch/x86/entry/common.c:46
    [<000000005fafd51e>] entry_SYSCALL_64_after_hwframe+0x44/0xae

BUG: memory leak
unreferenced object 0xffff88810f335800 (size 232):
  comm "syz-executor079", pid 8386, jiffies 4294945178 (age 25.110s)
  hex dump (first 32 bytes):
    00 62 7e 01 81 88 ff ff 00 00 00 00 00 00 00 00  .b~.............
    f0 98 5f 81 ff ff ff ff 00 00 00 00 00 00 00 00  .._.............
  backtrace:
    [<000000008b690cb4>] io_alloc_req fs/io_uring.c:1680 [inline]
    [<000000008b690cb4>] io_submit_sqes+0x803/0x2340 fs/io_uring.c:6553
    [<000000007cfdba48>] __do_sys_io_uring_enter+0x86f/0x1110 fs/io_uring.c:9175
    [<00000000d605a0db>] do_syscall_64+0x2d/0x70 arch/x86/entry/common.c:46
    [<000000005fafd51e>] entry_SYSCALL_64_after_hwframe+0x44/0xae

BUG: memory leak
unreferenced object 0xffff88810f8c0300 (size 256):
  comm "syz-executor079", pid 8386, jiffies 4294945178 (age 25.110s)
  hex dump (first 32 bytes):
    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
  backtrace:
    [<00000000e2e0a7ef>] kmalloc include/linux/slab.h:559 [inline]
    [<00000000e2e0a7ef>] __io_alloc_async_data fs/io_uring.c:3104 [inline]
    [<00000000e2e0a7ef>] io_setup_async_rw fs/io_uring.c:3123 [inline]
    [<00000000e2e0a7ef>] io_setup_async_rw+0xa3/0x1e0 fs/io_uring.c:3116
    [<0000000066815854>] io_read+0x1fe/0x540 fs/io_uring.c:3299
    [<00000000cfdf0aa9>] io_issue_sqe+0xb6/0x1c50 fs/io_uring.c:5957
    [<00000000ae810f5a>] __io_queue_sqe+0x118/0x5c0 fs/io_uring.c:6226
    [<000000001fd21177>] io_queue_sqe+0x2af/0x4d0 fs/io_uring.c:6282
    [<00000000a078f546>] io_submit_sqe fs/io_uring.c:6452 [inline]
    [<00000000a078f546>] io_submit_sqes+0x2016/0x2340 fs/io_uring.c:6566
    [<000000007cfdba48>] __do_sys_io_uring_enter+0x86f/0x1110 fs/io_uring.c:9175
    [<00000000d605a0db>] do_syscall_64+0x2d/0x70 arch/x86/entry/common.c:46
    [<000000005fafd51e>] entry_SYSCALL_64_after_hwframe+0x44/0xae

BUG: memory leak
unreferenced object 0xffff888110916200 (size 232):
  comm "syz-executor079", pid 8398, jiffies 4294945179 (age 25.100s)
  hex dump (first 32 bytes):
    00 fa b7 0f 81 88 ff ff 00 00 00 00 00 00 00 00  ................
    f0 98 5f 81 ff ff ff ff 00 00 00 00 00 00 00 00  .._.............
  backtrace:
    [<000000008b690cb4>] io_alloc_req fs/io_uring.c:1680 [inline]
    [<000000008b690cb4>] io_submit_sqes+0x803/0x2340 fs/io_uring.c:6553
    [<000000007cfdba48>] __do_sys_io_uring_enter+0x86f/0x1110 fs/io_uring.c:9175
    [<00000000d605a0db>] do_syscall_64+0x2d/0x70 arch/x86/entry/common.c:46
    [<000000005fafd51e>] entry_SYSCALL_64_after_hwframe+0x44/0xae

BUG: memory leak
unreferenced object 0xffff88810f8c0200 (size 256):
  comm "syz-executor079", pid 8398, jiffies 4294945179 (age 25.100s)
  hex dump (first 32 bytes):
    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
  backtrace:
    [<00000000e2e0a7ef>] kmalloc include/linux/slab.h:559 [inline]
    [<00000000e2e0a7ef>] __io_alloc_async_data fs/io_uring.c:3104 [inline]
    [<00000000e2e0a7ef>] io_setup_async_rw fs/io_uring.c:3123 [inline]
    [<00000000e2e0a7ef>] io_setup_async_rw+0xa3/0x1e0 fs/io_uring.c:3116
    [<0000000066815854>] io_read+0x1fe/0x540 fs/io_uring.c:3299
    [<00000000cfdf0aa9>] io_issue_sqe+0xb6/0x1c50 fs/io_uring.c:5957
    [<00000000ae810f5a>] __io_queue_sqe+0x118/0x5c0 fs/io_uring.c:6226
    [<000000001fd21177>] io_queue_sqe+0x2af/0x4d0 fs/io_uring.c:6282
    [<00000000a078f546>] io_submit_sqe fs/io_uring.c:6452 [inline]
    [<00000000a078f546>] io_submit_sqes+0x2016/0x2340 fs/io_uring.c:6566
    [<000000007cfdba48>] __do_sys_io_uring_enter+0x86f/0x1110 fs/io_uring.c:9175
    [<00000000d605a0db>] do_syscall_64+0x2d/0x70 arch/x86/entry/common.c:46
    [<000000005fafd51e>] entry_SYSCALL_64_after_hwframe+0x44/0xae

BUG: memory leak
unreferenced object 0xffff88810f8a2800 (size 232):
  comm "syz-executor079", pid 8404, jiffies 4294945179 (age 25.100s)
  hex dump (first 32 bytes):
    00 5c 33 0f 81 88 ff ff 00 00 00 00 00 00 00 00  .\3.............
    f0 98 5f 81 ff ff ff ff 00 00 00 00 00 00 00 00  .._.............
  backtrace:
    [<000000008b690cb4>] io_alloc_req fs/io_uring.c:1680 [inline]
    [<000000008b690cb4>] io_submit_sqes+0x803/0x2340 fs/io_uring.c:6553
    [<000000007cfdba48>] __do_sys_io_uring_enter+0x86f/0x1110 fs/io_uring.c:9175
    [<00000000d605a0db>] do_syscall_64+0x2d/0x70 arch/x86/entry/common.c:46
    [<000000005fafd51e>] entry_SYSCALL_64_after_hwframe+0x44/0xae

BUG: memory leak
unreferenced object 0xffff88810f8c0100 (size 256):
  comm "syz-executor079", pid 8404, jiffies 4294945179 (age 25.100s)
  hex dump (first 32 bytes):
    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
  backtrace:
    [<00000000e2e0a7ef>] kmalloc include/linux/slab.h:559 [inline]
    [<00000000e2e0a7ef>] __io_alloc_async_data fs/io_uring.c:3104 [inline]
    [<00000000e2e0a7ef>] io_setup_async_rw fs/io_uring.c:3123 [inline]
    [<00000000e2e0a7ef>] io_setup_async_rw+0xa3/0x1e0 fs/io_uring.c:3116
    [<0000000066815854>] io_read+0x1fe/0x540 fs/io_uring.c:3299
    [<00000000cfdf0aa9>] io_issue_sqe+0xb6/0x1c50 fs/io_uring.c:5957
    [<00000000ae810f5a>] __io_queue_sqe+0x118/0x5c0 fs/io_uring.c:6226
    [<000000001fd21177>] io_queue_sqe+0x2af/0x4d0 fs/io_uring.c:6282
    [<00000000a078f546>] io_submit_sqe fs/io_uring.c:6452 [inline]
    [<00000000a078f546>] io_submit_sqes+0x2016/0x2340 fs/io_uring.c:6566
    [<000000007cfdba48>] __do_sys_io_uring_enter+0x86f/0x1110 fs/io_uring.c:9175
    [<00000000d605a0db>] do_syscall_64+0x2d/0x70 arch/x86/entry/common.c:46
    [<000000005fafd51e>] entry_SYSCALL_64_after_hwframe+0x44/0xae

BUG: memory leak
unreferenced object 0xffff88810f335800 (size 232):
  comm "syz-executor079", pid 8386, jiffies 4294945178 (age 26.240s)
  hex dump (first 32 bytes):
    00 62 7e 01 81 88 ff ff 00 00 00 00 00 00 00 00  .b~.............
    f0 98 5f 81 ff ff ff ff 00 00 00 00 00 00 00 00  .._.............
  backtrace:
    [<000000008b690cb4>] io_alloc_req fs/io_uring.c:1680 [inline]
    [<000000008b690cb4>] io_submit_sqes+0x803/0x2340 fs/io_uring.c:6553
    [<000000007cfdba48>] __do_sys_io_uring_enter+0x86f/0x1110 fs/io_uring.c:9175
    [<00000000d605a0db>] do_syscall_64+0x2d/0x70 arch/x86/entry/common.c:46
    [<000000005fafd51e>] entry_SYSCALL_64_after_hwframe+0x44/0xae

BUG: memory leak
unreferenced object 0xffff88810f8c0300 (size 256):
  comm "syz-executor079", pid 8386, jiffies 4294945178 (age 26.240s)
  hex dump (first 32 bytes):
    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
  backtrace:
    [<00000000e2e0a7ef>] kmalloc include/linux/slab.h:559 [inline]
    [<00000000e2e0a7ef>] __io_alloc_async_data fs/io_uring.c:3104 [inline]
    [<00000000e2e0a7ef>] io_setup_async_rw fs/io_uring.c:3123 [inline]
    [<00000000e2e0a7ef>] io_setup_async_rw+0xa3/0x1e0 fs/io_uring.c:3116
    [<0000000066815854>] io_read+0x1fe/0x540 fs/io_uring.c:3299
    [<00000000cfdf0aa9>] io_issue_sqe+0xb6/0x1c50 fs/io_uring.c:5957
    [<00000000ae810f5a>] __io_queue_sqe+0x118/0x5c0 fs/io_uring.c:6226
    [<000000001fd21177>] io_queue_sqe+0x2af/0x4d0 fs/io_uring.c:6282
    [<00000000a078f546>] io_submit_sqe fs/io_uring.c:6452 [inline]
    [<00000000a078f546>] io_submit_sqes+0x2016/0x2340 fs/io_uring.c:6566
    [<000000007cfdba48>] __do_sys_io_uring_enter+0x86f/0x1110 fs/io_uring.c:9175
    [<00000000d605a0db>] do_syscall_64+0x2d/0x70 arch/x86/entry/common.c:46
    [<000000005fafd51e>] entry_SYSCALL_64_after_hwframe+0x44/0xae

BUG: memory leak
unreferenced object 0xffff888110916200 (size 232):
  comm "syz-executor079", pid 8398, jiffies 4294945179 (age 26.230s)
  hex dump (first 32 bytes):
    00 fa b7 0f 81 88 ff ff 00 00 00 00 00 00 00 00  ................
    f0 98 5f 81 ff ff ff ff 00 00 00 00 00 00 00 00  .._.............
  backtrace:
    [<000000008b690cb4>] io_alloc_req fs/io_uring.c:1680 [inline]
    [<000000008b690cb4>] io_submit_sqes+0x803/0x2340 fs/io_uring.c:6553
    [<000000007cfdba48>] __do_sys_io_uring_enter+0x86f/0x1110 fs/io_uring.c:9175
    [<00000000d605a0db>] do_syscall_64+0x2d/0x70 arch/x86/entry/common.c:46
    [<000000005fafd51e>] entry_SYSCALL_64_after_hwframe+0x44/0xae

BUG: memory leak
unreferenced object 0xffff88810f8c0200 (size 256):
  comm "syz-executor079", pid 8398, jiffies 4294945179 (age 26.230s)
  hex dump (first 32 bytes):
    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
  backtrace:
    [<00000000e2e0a7ef>] kmalloc include/linux/slab.h:559 [inline]
    [<00000000e2e0a7ef>] __io_alloc_async_data fs/io_uring.c:3104 [inline]
    [<00000000e2e0a7ef>] io_setup_async_rw fs/io_uring.c:3123 [inline]
    [<00000000e2e0a7ef>] io_setup_async_rw+0xa3/0x1e0 fs/io_uring.c:3116
    [<0000000066815854>] io_read+0x1fe/0x540 fs/io_uring.c:3299
    [<00000000cfdf0aa9>] io_issue_sqe+0xb6/0x1c50 fs/io_uring.c:5957
    [<00000000ae810f5a>] __io_queue_sqe+0x118/0x5c0 fs/io_uring.c:6226
    [<000000001fd21177>] io_queue_sqe+0x2af/0x4d0 fs/io_uring.c:6282
    [<00000000a078f546>] io_submit_sqe fs/io_uring.c:6452 [inline]
    [<00000000a078f546>] io_submit_sqes+0x2016/0x2340 fs/io_uring.c:6566
    [<000000007cfdba48>] __do_sys_io_uring_enter+0x86f/0x1110 fs/io_uring.c:9175
    [<00000000d605a0db>] do_syscall_64+0x2d/0x70 arch/x86/entry/common.c:46
    [<000000005fafd51e>] entry_SYSCALL_64_after_hwframe+0x44/0xae

BUG: memory leak
unreferenced object 0xffff88810f8a2800 (size 232):
  comm "syz-executor079", pid 8404, jiffies 4294945179 (age 26.230s)
  hex dump (first 32 bytes):
    00 5c 33 0f 81 88 ff ff 00 00 00 00 00 00 00 00  .\3.............
    f0 98 5f 81 ff ff ff ff 00 00 00 00 00 00 00 00  .._.............
  backtrace:
    [<000000008b690cb4>] io_alloc_req fs/io_uring.c:1680 [inline]
    [<000000008b690cb4>] io_submit_sqes+0x803/0x2340 fs/io_uring.c:6553
    [<000000007cfdba48>] __do_sys_io_uring_enter+0x86f/0x1110 fs/io_uring.c:9175
    [<00000000d605a0db>] do_syscall_64+0x2d/0x70 arch/x86/entry/common.c:46
    [<000000005fafd51e>] entry_SYSCALL_64_after_hwframe+0x44/0xae

BUG: memory leak
unreferenced object 0xffff88810f8c0100 (size 256):
  comm "syz-executor079", pid 8404, jiffies 4294945179 (age 26.230s)
  hex dump (first 32 bytes):
    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
  backtrace:
    [<00000000e2e0a7ef>] kmalloc include/linux/slab.h:559 [inline]
    [<00000000e2e0a7ef>] __io_alloc_async_data fs/io_uring.c:3104 [inline]
    [<00000000e2e0a7ef>] io_setup_async_rw fs/io_uring.c:3123 [inline]
    [<00000000e2e0a7ef>] io_setup_async_rw+0xa3/0x1e0 fs/io_uring.c:3116
    [<0000000066815854>] io_read+0x1fe/0x540 fs/io_uring.c:3299
    [<00000000cfdf0aa9>] io_issue_sqe+0xb6/0x1c50 fs/io_uring.c:5957
    [<00000000ae810f5a>] __io_queue_sqe+0x118/0x5c0 fs/io_uring.c:6226
    [<000000001fd21177>] io_queue_sqe+0x2af/0x4d0 fs/io_uring.c:6282
    [<00000000a078f546>] io_submit_sqe fs/io_uring.c:6452 [inline]
    [<00000000a078f546>] io_submit_sqes+0x2016/0x2340 fs/io_uring.c:6566
    [<000000007cfdba48>] __do_sys_io_uring_enter+0x86f/0x1110 fs/io_uring.c:9175
    [<00000000d605a0db>] do_syscall_64+0x2d/0x70 arch/x86/entry/common.c:46
    [<000000005fafd51e>] entry_SYSCALL_64_after_hwframe+0x44/0xae

BUG: memory leak
unreferenced object 0xffff88810f335800 (size 232):
  comm "syz-executor079", pid 8386, jiffies 4294945178 (age 27.390s)
  hex dump (first 32 bytes):
    00 62 7e 01 81 88 ff ff 00 00 00 00 00 00 00 00  .b~.............
    f0 98 5f 81 ff ff ff ff 00 00 00 00 00 00 00 00  .._.............
  backtrace:
    [<000000008b690cb4>] io_alloc_req fs/io_uring.c:1680 [inline]
    [<000000008b690cb4>] io_submit_sqes+0x803/0x2340 fs/io_uring.c:6553
    [<000000007cfdba48>] __do_sys_io_uring_enter+0x86f/0x1110 fs/io_uring.c:9175
    [<00000000d605a0db>] do_syscall_64+0x2d/0x70 arch/x86/entry/common.c:46
    [<000000005fafd51e>] entry_SYSCALL_64_after_hwframe+0x44/0xae

BUG: memory leak
unreferenced object 0xffff88810f8c0300 (size 256):
  comm "syz-executor079", pid 8386, jiffies 4294945178 (age 27.390s)
  hex dump (first 32 bytes):
    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
  backtrace:
    [<00000000e2e0a7ef>] kmalloc include/linux/slab.h:559 [inline]
    [<00000000e2e0a7ef>] __io_alloc_async_data fs/io_uring.c:3104 [inline]
    [<00000000e2e0a7ef>] io_setup_async_rw fs/io_uring.c:3123 [inline]
    [<00000000e2e0a7ef>] io_setup_async_rw+0xa3/0x1e0 fs/io_uring.c:3116
    [<0000000066815854>] io_read+0x1fe/0x540 fs/io_uring.c:3299
    [<00000000cfdf0aa9>] io_issue_sqe+0xb6/0x1c50 fs/io_uring.c:5957
    [<00000000ae810f5a>] __io_queue_sqe+0x118/0x5c0 fs/io_uring.c:6226
    [<000000001fd21177>] io_queue_sqe+0x2af/0x4d0 fs/io_uring.c:6282
    [<00000000a078f546>] io_submit_sqe fs/io_uring.c:6452 [inline]
    [<00000000a078f546>] io_submit_sqes+0x2016/0x2340 fs/io_uring.c:6566
    [<000000007cfdba48>] __do_sys_io_uring_enter+0x86f/0x1110 fs/io_uring.c:9175
    [<00000000d605a0db>] do_syscall_64+0x2d/0x70 arch/x86/entry/common.c:46
    [<000000005fafd51e>] entry_SYSCALL_64_after_hwframe+0x44/0xae

BUG: memory leak
unreferenced object 0xffff888110916200 (size 232):
  comm "syz-executor079", pid 8398, jiffies 4294945179 (age 27.380s)
  hex dump (first 32 bytes):
    00 fa b7 0f 81 88 ff ff 00 00 00 00 00 00 00 00  ................
    f0 98 5f 81 ff ff ff ff 00 00 00 00 00 00 00 00  .._.............
  backtrace:
    [<000000008b690cb4>] io_alloc_req fs/io_uring.c:1680 [inline]
    [<000000008b690cb4>] io_submit_sqes+0x803/0x2340 fs/io_uring.c:6553
    [<000000007cfdba48>] __do_sys_io_uring_enter+0x86f/0x1110 fs/io_uring.c:9175
    [<00000000d605a0db>] do_syscall_64+0x2d/0x70 arch/x86/entry/common.c:46
    [<000000005fafd51e>] entry_SYSCALL_64_after_hwframe+0x44/0xae

BUG: memory leak
unreferenced object 0xffff88810f8c0200 (size 256):
  comm "syz-executor079", pid 8398, jiffies 4294945179 (age 27.380s)
  hex dump (first 32 bytes):
    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
  backtrace:
    [<00000000e2e0a7ef>] kmalloc include/linux/slab.h:559 [inline]
    [<00000000e2e0a7ef>] __io_alloc_async_data fs/io_uring.c:3104 [inline]
    [<00000000e2e0a7ef>] io_setup_async_rw fs/io_uring.c:3123 [inline]
    [<00000000e2e0a7ef>] io_setup_async_rw+0xa3/0x1e0 fs/io_uring.c:3116
    [<0000000066815854>] io_read+0x1fe/0x540 fs/io_uring.c:3299
    [<00000000cfdf0aa9>] io_issue_sqe+0xb6/0x1c50 fs/io_uring.c:5957
    [<00000000ae810f5a>] __io_queue_sqe+0x118/0x5c0 fs/io_uring.c:6226
    [<000000001fd21177>] io_queue_sqe+0x2af/0x4d0 fs/io_uring.c:6282
    [<00000000a078f546>] io_submit_sqe fs/io_uring.c:6452 [inline]
    [<00000000a078f546>] io_submit_sqes+0x2016/0x2340 fs/io_uring.c:6566
    [<000000007cfdba48>] __do_sys_io_uring_enter+0x86f/0x1110 fs/io_uring.c:9175
    [<00000000d605a0db>] do_syscall_64+0x2d/0x70 arch/x86/entry/common.c:46
    [<000000005fafd51e>] entry_SYSCALL_64_after_hwframe+0x44/0xae

BUG: memory leak
unreferenced object 0xffff88810f8a2800 (size 232):
  comm "syz-executor079", pid 8404, jiffies 4294945179 (age 27.380s)
  hex dump (first 32 bytes):
    00 5c 33 0f 81 88 ff ff 00 00 00 00 00 00 00 00  .\3.............
    f0 98 5f 81 ff ff ff ff 00 00 00 00 00 00 00 00  .._.............
  backtrace:
    [<000000008b690cb4>] io_alloc_req fs/io_uring.c:1680 [inline]
    [<000000008b690cb4>] io_submit_sqes+0x803/0x2340 fs/io_uring.c:6553
    [<000000007cfdba48>] __do_sys_io_uring_enter+0x86f/0x1110 fs/io_uring.c:9175
    [<00000000d605a0db>] do_syscall_64+0x2d/0x70 arch/x86/entry/common.c:46
    [<000000005fafd51e>] entry_SYSCALL_64_after_hwframe+0x44/0xae

BUG: memory leak
unreferenced object 0xffff88810f8c0100 (size 256):
  comm "syz-executor079", pid 8404, jiffies 4294945179 (age 27.380s)
  hex dump (first 32 bytes):
    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
  backtrace:
    [<00000000e2e0a7ef>] kmalloc include/linux/slab.h:559 [inline]
    [<00000000e2e0a7ef>] __io_alloc_async_data fs/io_uring.c:3104 [inline]
    [<00000000e2e0a7ef>] io_setup_async_rw fs/io_uring.c:3123 [inline]
    [<00000000e2e0a7ef>] io_setup_async_rw+0xa3/0x1e0 fs/io_uring.c:3116
    [<0000000066815854>] io_read+0x1fe/0x540 fs/io_uring.c:3299
    [<00000000cfdf0aa9>] io_issue_sqe+0xb6/0x1c50 fs/io_uring.c:5957
    [<00000000ae810f5a>] __io_queue_sqe+0x118/0x5c0 fs/io_uring.c:6226
    [<000000001fd21177>] io_queue_sqe+0x2af/0x4d0 fs/io_uring.c:6282
    [<00000000a078f546>] io_submit_sqe fs/io_uring.c:6452 [inline]
    [<00000000a078f546>] io_submit_sqes+0x2016/0x2340 fs/io_uring.c:6566
    [<000000007cfdba48>] __do_sys_io_uring_enter+0x86f/0x1110 fs/io_uring.c:9175
    [<00000000d605a0db>] do_syscall_64+0x2d/0x70 arch/x86/entry/common.c:46
    [<000000005fafd51e>] entry_SYSCALL_64_after_hwframe+0x44/0xae

Crashes (1):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2021/03/02 21:16 upstream 7a7fd0de4a98 92ead296 .config console log report syz C ci-upstream-gce-leak memory leak in io_submit_sqes
* Struck through repros no longer work on HEAD.