BUG: memory leak unreferenced object 0xffff888113c22800 (size 2048): comm "syz-executor.0", pid 7258, jiffies 4294954767 (age 31.500s) hex dump (first 32 bytes): 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ 20 00 00 00 00 01 00 00 00 00 00 00 01 00 00 00 ............... backtrace: [<00000000603649c8>] kmemleak_alloc_recursive include/linux/kmemleak.h:43 [inline] [<00000000603649c8>] slab_post_alloc_hook mm/slab.h:586 [inline] [<00000000603649c8>] slab_alloc mm/slab.c:3320 [inline] [<00000000603649c8>] __do_kmalloc mm/slab.c:3654 [inline] [<00000000603649c8>] __kmalloc+0x169/0x300 mm/slab.c:3665 [<00000000ef14ca54>] kmalloc include/linux/slab.h:561 [inline] [<00000000ef14ca54>] bio_alloc_bioset+0x1b5/0x2c0 block/bio.c:443 [<00000000d540c4b8>] bio_kmalloc include/linux/bio.h:405 [inline] [<00000000d540c4b8>] bio_copy_user_iov+0x121/0x4d0 block/bio.c:1253 [<00000000ccb7988d>] __blk_rq_map_user_iov block/blk-map.c:73 [inline] [<00000000ccb7988d>] blk_rq_map_user_iov+0xc6/0x2b0 block/blk-map.c:142 [<00000000dfd01b17>] blk_rq_map_user+0x71/0xb0 block/blk-map.c:172 [<0000000024c821f8>] sg_start_req drivers/scsi/sg.c:1837 [inline] [<0000000024c821f8>] sg_common_write.isra.0+0x6c9/0xaf0 drivers/scsi/sg.c:807 [<0000000027660439>] sg_write.part.0+0x2dc/0x520 drivers/scsi/sg.c:713 [<00000000a4142fa1>] sg_write+0x44/0x64 drivers/scsi/sg.c:621 [<00000000056f3762>] __vfs_write+0x43/0xa0 fs/read_write.c:494 [<0000000069251d21>] vfs_write fs/read_write.c:558 [inline] [<0000000069251d21>] vfs_write+0xee/0x210 fs/read_write.c:542 [<00000000c0aa922d>] ksys_write+0x7c/0x130 fs/read_write.c:611 [<0000000084c26ec2>] __do_sys_write fs/read_write.c:623 [inline] [<0000000084c26ec2>] __se_sys_write fs/read_write.c:620 [inline] [<0000000084c26ec2>] __x64_sys_write+0x1e/0x30 fs/read_write.c:620 [<000000005d817fca>] do_syscall_64+0x73/0x220 arch/x86/entry/common.c:294 [<0000000071a04a4d>] entry_SYSCALL_64_after_hwframe+0x44/0xa9 BUG: memory leak unreferenced object 0xffff88810df2f800 (size 2048): comm "syz-executor.0", pid 7259, jiffies 4294954770 (age 31.470s) hex dump (first 32 bytes): 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ 20 00 00 00 00 01 00 00 00 00 00 00 01 00 00 00 ............... backtrace: [<00000000603649c8>] kmemleak_alloc_recursive include/linux/kmemleak.h:43 [inline] [<00000000603649c8>] slab_post_alloc_hook mm/slab.h:586 [inline] [<00000000603649c8>] slab_alloc mm/slab.c:3320 [inline] [<00000000603649c8>] __do_kmalloc mm/slab.c:3654 [inline] [<00000000603649c8>] __kmalloc+0x169/0x300 mm/slab.c:3665 [<00000000ef14ca54>] kmalloc include/linux/slab.h:561 [inline] [<00000000ef14ca54>] bio_alloc_bioset+0x1b5/0x2c0 block/bio.c:443 [<00000000d540c4b8>] bio_kmalloc include/linux/bio.h:405 [inline] [<00000000d540c4b8>] bio_copy_user_iov+0x121/0x4d0 block/bio.c:1253 [<00000000ccb7988d>] __blk_rq_map_user_iov block/blk-map.c:73 [inline] [<00000000ccb7988d>] blk_rq_map_user_iov+0xc6/0x2b0 block/blk-map.c:142 [<00000000dfd01b17>] blk_rq_map_user+0x71/0xb0 block/blk-map.c:172 [<0000000024c821f8>] sg_start_req drivers/scsi/sg.c:1837 [inline] [<0000000024c821f8>] sg_common_write.isra.0+0x6c9/0xaf0 drivers/scsi/sg.c:807 [<0000000027660439>] sg_write.part.0+0x2dc/0x520 drivers/scsi/sg.c:713 [<00000000a4142fa1>] sg_write+0x44/0x64 drivers/scsi/sg.c:621 [<00000000056f3762>] __vfs_write+0x43/0xa0 fs/read_write.c:494 [<0000000069251d21>] vfs_write fs/read_write.c:558 [inline] [<0000000069251d21>] vfs_write+0xee/0x210 fs/read_write.c:542 [<00000000c0aa922d>] ksys_write+0x7c/0x130 fs/read_write.c:611 [<0000000084c26ec2>] __do_sys_write fs/read_write.c:623 [inline] [<0000000084c26ec2>] __se_sys_write fs/read_write.c:620 [inline] [<0000000084c26ec2>] __x64_sys_write+0x1e/0x30 fs/read_write.c:620 [<000000005d817fca>] do_syscall_64+0x73/0x220 arch/x86/entry/common.c:294 [<0000000071a04a4d>] entry_SYSCALL_64_after_hwframe+0x44/0xa9 BUG: memory leak unreferenced object 0xffff88810dfaf800 (size 2048): comm "syz-executor.0", pid 7263, jiffies 4294954777 (age 31.400s) hex dump (first 32 bytes): 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ 20 00 00 00 00 01 00 00 00 00 00 00 01 00 00 00 ............... backtrace: [<00000000603649c8>] kmemleak_alloc_recursive include/linux/kmemleak.h:43 [inline] [<00000000603649c8>] slab_post_alloc_hook mm/slab.h:586 [inline] [<00000000603649c8>] slab_alloc mm/slab.c:3320 [inline] [<00000000603649c8>] __do_kmalloc mm/slab.c:3654 [inline] [<00000000603649c8>] __kmalloc+0x169/0x300 mm/slab.c:3665 [<00000000ef14ca54>] kmalloc include/linux/slab.h:561 [inline] [<00000000ef14ca54>] bio_alloc_bioset+0x1b5/0x2c0 block/bio.c:443 [<00000000d540c4b8>] bio_kmalloc include/linux/bio.h:405 [inline] [<00000000d540c4b8>] bio_copy_user_iov+0x121/0x4d0 block/bio.c:1253 [<00000000ccb7988d>] __blk_rq_map_user_iov block/blk-map.c:73 [inline] [<00000000ccb7988d>] blk_rq_map_user_iov+0xc6/0x2b0 block/blk-map.c:142 [<00000000dfd01b17>] blk_rq_map_user+0x71/0xb0 block/blk-map.c:172 [<0000000024c821f8>] sg_start_req drivers/scsi/sg.c:1837 [inline] [<0000000024c821f8>] sg_common_write.isra.0+0x6c9/0xaf0 drivers/scsi/sg.c:807 [<0000000027660439>] sg_write.part.0+0x2dc/0x520 drivers/scsi/sg.c:713 [<00000000a4142fa1>] sg_write+0x44/0x64 drivers/scsi/sg.c:621 [<00000000056f3762>] __vfs_write+0x43/0xa0 fs/read_write.c:494 [<0000000069251d21>] vfs_write fs/read_write.c:558 [inline] [<0000000069251d21>] vfs_write+0xee/0x210 fs/read_write.c:542 [<00000000c0aa922d>] ksys_write+0x7c/0x130 fs/read_write.c:611 [<0000000084c26ec2>] __do_sys_write fs/read_write.c:623 [inline] [<0000000084c26ec2>] __se_sys_write fs/read_write.c:620 [inline] [<0000000084c26ec2>] __x64_sys_write+0x1e/0x30 fs/read_write.c:620 [<000000005d817fca>] do_syscall_64+0x73/0x220 arch/x86/entry/common.c:294 [<0000000071a04a4d>] entry_SYSCALL_64_after_hwframe+0x44/0xa9