BUG: memory leak unreferenced object 0xffff88810b693800 (size 2048): comm "syz-executor285", pid 7239, jiffies 4294949137 (age 61.000s) hex dump (first 32 bytes): 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ 20 00 00 00 80 00 00 00 00 00 00 00 00 00 00 00 ............... backtrace: [<000000005ae762d7>] kmemleak_alloc_recursive include/linux/kmemleak.h:43 [inline] [<000000005ae762d7>] slab_post_alloc_hook mm/slab.h:522 [inline] [<000000005ae762d7>] slab_alloc mm/slab.c:3319 [inline] [<000000005ae762d7>] __do_kmalloc mm/slab.c:3653 [inline] [<000000005ae762d7>] __kmalloc+0x169/0x300 mm/slab.c:3664 [<000000003999c7aa>] kmalloc include/linux/slab.h:557 [inline] [<000000003999c7aa>] bio_alloc_bioset+0x1b8/0x2c0 block/bio.c:440 [<00000000e8d891ae>] bio_kmalloc include/linux/bio.h:405 [inline] [<00000000e8d891ae>] bio_copy_user_iov+0x112/0x4b0 block/bio.c:1263 [<00000000f00b3b2f>] __blk_rq_map_user_iov block/blk-map.c:73 [inline] [<00000000f00b3b2f>] blk_rq_map_user_iov+0xc6/0x2b0 block/blk-map.c:142 [<00000000cdf698eb>] blk_rq_map_user+0x71/0xb0 block/blk-map.c:172 [<0000000012688a38>] sg_start_req drivers/scsi/sg.c:1813 [inline] [<0000000012688a38>] sg_common_write.isra.0+0x619/0xa10 drivers/scsi/sg.c:809 [<0000000072a8a4db>] sg_write.part.0+0x325/0x570 drivers/scsi/sg.c:709 [<00000000d4067eae>] sg_write+0x44/0x64 drivers/scsi/sg.c:617 [<0000000056f15bef>] do_loop_readv_writev fs/read_write.c:717 [inline] [<0000000056f15bef>] do_loop_readv_writev fs/read_write.c:701 [inline] [<0000000056f15bef>] do_iter_write fs/read_write.c:972 [inline] [<0000000056f15bef>] do_iter_write+0x1da/0x230 fs/read_write.c:951 [<000000005e715f3c>] vfs_writev+0xcb/0x130 fs/read_write.c:1015 [<00000000fcda4707>] do_writev+0x89/0x180 fs/read_write.c:1058 [<000000002a5e3d83>] __do_sys_writev fs/read_write.c:1131 [inline] [<000000002a5e3d83>] __se_sys_writev fs/read_write.c:1128 [inline] [<000000002a5e3d83>] __x64_sys_writev+0x20/0x30 fs/read_write.c:1128 [<0000000091ab016e>] do_syscall_64+0x76/0x1a0 arch/x86/entry/common.c:296 [<00000000dd297e66>] entry_SYSCALL_64_after_hwframe+0x44/0xa9 BUG: memory leak unreferenced object 0xffff88810bb01800 (size 2048): comm "syz-executor285", pid 7242, jiffies 4294949142 (age 60.950s) hex dump (first 32 bytes): 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ 20 00 00 00 80 00 00 00 00 00 00 00 00 00 00 00 ............... backtrace: [<000000005ae762d7>] kmemleak_alloc_recursive include/linux/kmemleak.h:43 [inline] [<000000005ae762d7>] slab_post_alloc_hook mm/slab.h:522 [inline] [<000000005ae762d7>] slab_alloc mm/slab.c:3319 [inline] [<000000005ae762d7>] __do_kmalloc mm/slab.c:3653 [inline] [<000000005ae762d7>] __kmalloc+0x169/0x300 mm/slab.c:3664 [<000000003999c7aa>] kmalloc include/linux/slab.h:557 [inline] [<000000003999c7aa>] bio_alloc_bioset+0x1b8/0x2c0 block/bio.c:440 [<00000000e8d891ae>] bio_kmalloc include/linux/bio.h:405 [inline] [<00000000e8d891ae>] bio_copy_user_iov+0x112/0x4b0 block/bio.c:1263 [<00000000f00b3b2f>] __blk_rq_map_user_iov block/blk-map.c:73 [inline] [<00000000f00b3b2f>] blk_rq_map_user_iov+0xc6/0x2b0 block/blk-map.c:142 [<00000000cdf698eb>] blk_rq_map_user+0x71/0xb0 block/blk-map.c:172 [<0000000012688a38>] sg_start_req drivers/scsi/sg.c:1813 [inline] [<0000000012688a38>] sg_common_write.isra.0+0x619/0xa10 drivers/scsi/sg.c:809 [<0000000072a8a4db>] sg_write.part.0+0x325/0x570 drivers/scsi/sg.c:709 [<00000000d4067eae>] sg_write+0x44/0x64 drivers/scsi/sg.c:617 [<0000000056f15bef>] do_loop_readv_writev fs/read_write.c:717 [inline] [<0000000056f15bef>] do_loop_readv_writev fs/read_write.c:701 [inline] [<0000000056f15bef>] do_iter_write fs/read_write.c:972 [inline] [<0000000056f15bef>] do_iter_write+0x1da/0x230 fs/read_write.c:951 [<000000005e715f3c>] vfs_writev+0xcb/0x130 fs/read_write.c:1015 [<00000000fcda4707>] do_writev+0x89/0x180 fs/read_write.c:1058 [<000000002a5e3d83>] __do_sys_writev fs/read_write.c:1131 [inline] [<000000002a5e3d83>] __se_sys_writev fs/read_write.c:1128 [inline] [<000000002a5e3d83>] __x64_sys_writev+0x20/0x30 fs/read_write.c:1128 [<0000000091ab016e>] do_syscall_64+0x76/0x1a0 arch/x86/entry/common.c:296 [<00000000dd297e66>] entry_SYSCALL_64_after_hwframe+0x44/0xa9 executing program executing program