BUG: memory leak unreferenced object 0xffff88810ef52800 (size 2048): comm "syz-executor.6", pid 7083, jiffies 4294950625 (age 29.250s) hex dump (first 32 bytes): 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ 20 00 00 00 80 00 00 00 00 00 00 00 00 00 00 00 ............... backtrace: [<00000000fcbb3de1>] kmemleak_alloc_recursive include/linux/kmemleak.h:43 [inline] [<00000000fcbb3de1>] slab_post_alloc_hook mm/slab.h:522 [inline] [<00000000fcbb3de1>] slab_alloc mm/slab.c:3319 [inline] [<00000000fcbb3de1>] __do_kmalloc mm/slab.c:3653 [inline] [<00000000fcbb3de1>] __kmalloc+0x16d/0x2d0 mm/slab.c:3664 [<000000000cce64b2>] kmalloc include/linux/slab.h:557 [inline] [<000000000cce64b2>] bio_alloc_bioset+0x1b8/0x2c0 block/bio.c:440 [<0000000026c4bd6b>] bio_kmalloc include/linux/bio.h:405 [inline] [<0000000026c4bd6b>] bio_copy_user_iov+0x112/0x4b0 block/bio.c:1263 [<0000000098ed14f5>] __blk_rq_map_user_iov block/blk-map.c:73 [inline] [<0000000098ed14f5>] blk_rq_map_user_iov+0xc6/0x2b0 block/blk-map.c:142 [<0000000036730313>] blk_rq_map_user+0x71/0xb0 block/blk-map.c:172 [<000000004ec4d18f>] sg_start_req drivers/scsi/sg.c:1813 [inline] [<000000004ec4d18f>] sg_common_write.isra.0+0x619/0xa10 drivers/scsi/sg.c:809 [<000000004c45ee2e>] sg_write.part.0+0x325/0x570 drivers/scsi/sg.c:709 [<0000000095d6c8a7>] sg_write+0x44/0x64 drivers/scsi/sg.c:617 [<00000000af01714f>] __vfs_write+0x43/0xa0 fs/read_write.c:494 [<0000000018ee4d9e>] vfs_write fs/read_write.c:558 [inline] [<0000000018ee4d9e>] vfs_write+0xee/0x210 fs/read_write.c:542 [<00000000a2c538b8>] ksys_write+0x7c/0x130 fs/read_write.c:611 [<00000000e69c087d>] __do_sys_write fs/read_write.c:623 [inline] [<00000000e69c087d>] __se_sys_write fs/read_write.c:620 [inline] [<00000000e69c087d>] __x64_sys_write+0x1e/0x30 fs/read_write.c:620 [<00000000eb3538f9>] do_syscall_64+0x76/0x1a0 arch/x86/entry/common.c:296 [<000000005fb80c6d>] entry_SYSCALL_64_after_hwframe+0x44/0xa9 BUG: memory leak unreferenced object 0xffff88810fa8c800 (size 2048): comm "syz-executor.4", pid 7087, jiffies 4294950628 (age 29.220s) hex dump (first 32 bytes): 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ 20 00 00 00 80 00 00 00 00 00 00 00 00 00 00 00 ............... backtrace: [<00000000fcbb3de1>] kmemleak_alloc_recursive include/linux/kmemleak.h:43 [inline] [<00000000fcbb3de1>] slab_post_alloc_hook mm/slab.h:522 [inline] [<00000000fcbb3de1>] slab_alloc mm/slab.c:3319 [inline] [<00000000fcbb3de1>] __do_kmalloc mm/slab.c:3653 [inline] [<00000000fcbb3de1>] __kmalloc+0x16d/0x2d0 mm/slab.c:3664 [<000000000cce64b2>] kmalloc include/linux/slab.h:557 [inline] [<000000000cce64b2>] bio_alloc_bioset+0x1b8/0x2c0 block/bio.c:440 [<0000000026c4bd6b>] bio_kmalloc include/linux/bio.h:405 [inline] [<0000000026c4bd6b>] bio_copy_user_iov+0x112/0x4b0 block/bio.c:1263 [<0000000098ed14f5>] __blk_rq_map_user_iov block/blk-map.c:73 [inline] [<0000000098ed14f5>] blk_rq_map_user_iov+0xc6/0x2b0 block/blk-map.c:142 [<0000000036730313>] blk_rq_map_user+0x71/0xb0 block/blk-map.c:172 [<000000004ec4d18f>] sg_start_req drivers/scsi/sg.c:1813 [inline] [<000000004ec4d18f>] sg_common_write.isra.0+0x619/0xa10 drivers/scsi/sg.c:809 [<000000004c45ee2e>] sg_write.part.0+0x325/0x570 drivers/scsi/sg.c:709 [<0000000095d6c8a7>] sg_write+0x44/0x64 drivers/scsi/sg.c:617 [<00000000af01714f>] __vfs_write+0x43/0xa0 fs/read_write.c:494 [<0000000018ee4d9e>] vfs_write fs/read_write.c:558 [inline] [<0000000018ee4d9e>] vfs_write+0xee/0x210 fs/read_write.c:542 [<00000000a2c538b8>] ksys_write+0x7c/0x130 fs/read_write.c:611 [<00000000e69c087d>] __do_sys_write fs/read_write.c:623 [inline] [<00000000e69c087d>] __se_sys_write fs/read_write.c:620 [inline] [<00000000e69c087d>] __x64_sys_write+0x1e/0x30 fs/read_write.c:620 [<00000000eb3538f9>] do_syscall_64+0x76/0x1a0 arch/x86/entry/common.c:296 [<000000005fb80c6d>] entry_SYSCALL_64_after_hwframe+0x44/0xa9 BUG: memory leak unreferenced object 0xffff88810edf2800 (size 2048): comm "syz-executor.5", pid 7118, jiffies 4294951194 (age 23.560s) hex dump (first 32 bytes): 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ 20 00 00 00 80 00 00 00 00 00 00 00 00 00 00 00 ............... backtrace: [<00000000fcbb3de1>] kmemleak_alloc_recursive include/linux/kmemleak.h:43 [inline] [<00000000fcbb3de1>] slab_post_alloc_hook mm/slab.h:522 [inline] [<00000000fcbb3de1>] slab_alloc mm/slab.c:3319 [inline] [<00000000fcbb3de1>] __do_kmalloc mm/slab.c:3653 [inline] [<00000000fcbb3de1>] __kmalloc+0x16d/0x2d0 mm/slab.c:3664 [<000000000cce64b2>] kmalloc include/linux/slab.h:557 [inline] [<000000000cce64b2>] bio_alloc_bioset+0x1b8/0x2c0 block/bio.c:440 [<0000000026c4bd6b>] bio_kmalloc include/linux/bio.h:405 [inline] [<0000000026c4bd6b>] bio_copy_user_iov+0x112/0x4b0 block/bio.c:1263 [<0000000098ed14f5>] __blk_rq_map_user_iov block/blk-map.c:73 [inline] [<0000000098ed14f5>] blk_rq_map_user_iov+0xc6/0x2b0 block/blk-map.c:142 [<0000000036730313>] blk_rq_map_user+0x71/0xb0 block/blk-map.c:172 [<000000004ec4d18f>] sg_start_req drivers/scsi/sg.c:1813 [inline] [<000000004ec4d18f>] sg_common_write.isra.0+0x619/0xa10 drivers/scsi/sg.c:809 [<000000004c45ee2e>] sg_write.part.0+0x325/0x570 drivers/scsi/sg.c:709 [<0000000095d6c8a7>] sg_write+0x44/0x64 drivers/scsi/sg.c:617 [<00000000af01714f>] __vfs_write+0x43/0xa0 fs/read_write.c:494 [<0000000018ee4d9e>] vfs_write fs/read_write.c:558 [inline] [<0000000018ee4d9e>] vfs_write+0xee/0x210 fs/read_write.c:542 [<00000000a2c538b8>] ksys_write+0x7c/0x130 fs/read_write.c:611 [<00000000e69c087d>] __do_sys_write fs/read_write.c:623 [inline] [<00000000e69c087d>] __se_sys_write fs/read_write.c:620 [inline] [<00000000e69c087d>] __x64_sys_write+0x1e/0x30 fs/read_write.c:620 [<00000000eb3538f9>] do_syscall_64+0x76/0x1a0 arch/x86/entry/common.c:296 [<000000005fb80c6d>] entry_SYSCALL_64_after_hwframe+0x44/0xa9