lkft/linux-mainline-master - v6.16-rc4-13-g66701750d556 - log-parser-boot/kasan-bug-kasan-vmalloc-out-of-bounds-in-vmalloc_oob

Date

July 1, 2025, 11:08 a.m.

Environment
qemu-arm64

[   21.852461] ==================================================================
[   21.852601] BUG: KASAN: vmalloc-out-of-bounds in vmalloc_oob+0x578/0x5d0
[   21.852769] Read of size 1 at addr ffff8000800fe7f3 by task kunit_try_catch/270
[   21.852847] 
[   21.852893] CPU: 0 UID: 0 PID: 270 Comm: kunit_try_catch Tainted: G    B            N  6.16.0-rc4 #1 PREEMPT 
[   21.852989] Tainted: [B]=BAD_PAGE, [N]=TEST
[   21.853019] Hardware name: linux,dummy-virt (DT)
[   21.853060] Call trace:
[   21.853281]  show_stack+0x20/0x38 (C)
[   21.853677]  dump_stack_lvl+0x8c/0xd0
[   21.853790]  print_report+0x310/0x608
[   21.853954]  kasan_report+0xdc/0x128
[   21.854127]  __asan_report_load1_noabort+0x20/0x30
[   21.854353]  vmalloc_oob+0x578/0x5d0
[   21.854507]  kunit_try_run_case+0x170/0x3f0
[   21.854606]  kunit_generic_run_threadfn_adapter+0x88/0x100
[   21.854865]  kthread+0x328/0x630
[   21.854918]  ret_from_fork+0x10/0x20
[   21.855062] 
[   21.855102] The buggy address belongs to the virtual mapping at
[   21.855102]  [ffff8000800fe000, ffff800080100000) created by:
[   21.855102]  vmalloc_oob+0x98/0x5d0
[   21.855473] 
[   21.855503] The buggy address belongs to the physical page:
[   21.855544] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x1076d4
[   21.855609] flags: 0xbfffe0000000000(node=0|zone=2|lastcpupid=0x1ffff)
[   21.855693] raw: 0bfffe0000000000 0000000000000000 dead000000000122 0000000000000000
[   21.855848] raw: 0000000000000000 0000000000000000 00000001ffffffff 0000000000000000
[   21.855941] page dumped because: kasan: bad access detected
[   21.855979] 
[   21.856024] Memory state around the buggy address:
[   21.856079]  ffff8000800fe680: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   21.856168]  ffff8000800fe700: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   21.856220] >ffff8000800fe780: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 03 f8
[   21.856266]                                                              ^
[   21.856314]  ffff8000800fe800: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[   21.856435]  ffff8000800fe880: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[   21.856484] ==================================================================
[   21.857791] ==================================================================
[   21.857854] BUG: KASAN: vmalloc-out-of-bounds in vmalloc_oob+0x51c/0x5d0
[   21.857911] Read of size 1 at addr ffff8000800fe7f8 by task kunit_try_catch/270
[   21.857969] 
[   21.858206] CPU: 0 UID: 0 PID: 270 Comm: kunit_try_catch Tainted: G    B            N  6.16.0-rc4 #1 PREEMPT 
[   21.858556] Tainted: [B]=BAD_PAGE, [N]=TEST
[   21.858819] Hardware name: linux,dummy-virt (DT)
[   21.858905] Call trace:
[   21.859045]  show_stack+0x20/0x38 (C)
[   21.859117]  dump_stack_lvl+0x8c/0xd0
[   21.859186]  print_report+0x310/0x608
[   21.859268]  kasan_report+0xdc/0x128
[   21.859320]  __asan_report_load1_noabort+0x20/0x30
[   21.859474]  vmalloc_oob+0x51c/0x5d0
[   21.859529]  kunit_try_run_case+0x170/0x3f0
[   21.859602]  kunit_generic_run_threadfn_adapter+0x88/0x100
[   21.859693]  kthread+0x328/0x630
[   21.859754]  ret_from_fork+0x10/0x20
[   21.859920] 
[   21.859953] The buggy address belongs to the virtual mapping at
[   21.859953]  [ffff8000800fe000, ffff800080100000) created by:
[   21.859953]  vmalloc_oob+0x98/0x5d0
[   21.860079] 
[   21.860249] The buggy address belongs to the physical page:
[   21.860468] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x1076d4
[   21.860562] flags: 0xbfffe0000000000(node=0|zone=2|lastcpupid=0x1ffff)
[   21.860648] raw: 0bfffe0000000000 0000000000000000 dead000000000122 0000000000000000
[   21.860760] raw: 0000000000000000 0000000000000000 00000001ffffffff 0000000000000000
[   21.860810] page dumped because: kasan: bad access detected
[   21.860916] 
[   21.860981] Memory state around the buggy address:
[   21.861027]  ffff8000800fe680: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   21.861244]  ffff8000800fe700: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   21.861318] >ffff8000800fe780: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 03 f8
[   21.861363]                                                                 ^
[   21.861499]  ffff8000800fe800: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[   21.861548]  ffff8000800fe880: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[   21.861594] ==================================================================

Metadata Full log Test run details

arch

arm64

host

x86_64

plan

2zGr6Ce6Ri2B5pZnaXSzRDbxhyc

job_id

TEST:linaro@lkft#2zGrALjnpHgW8eWeNu7OhsmdqQI

job_url

https://tuxapi.tuxsuite.com/v1/groups/linaro/projects/lkft/tests/2zGrALjnpHgW8eWeNu7OhsmdqQI

artefacts

kernel

url	https://storage.tuxsuite.com/public/linaro/lkft/builds/2zGr7BGRYbYig5LdRleNR5RdPjT/Image.gz
sha256sum	5a02784fbab48390be9171d4f1e523abdd150bc80f088fc7c2fb05b24554e195

rootfs

url	https://storage.tuxboot.com/debian/20250617/trixie/arm64/rootfs.ext4.xz
sha256sum	1eaaae772692e22cefec5345d642e254407cec1431dd51a20007af2a1819b610

modules

url	https://storage.tuxsuite.com/public/linaro/lkft/builds/2zGr7BGRYbYig5LdRleNR5RdPjT/modules.tar.xz
sha256sum	213360982ceced70a8982889efd2a9532dbadabc32c48aa9381566c7566bb32e

durations

tests

boot	0
kunit	203.39

host_arch

amd64

build_name

gcc-13-lkftconfig-kunit

job_status

Complete

qemu_version

1:10.0.0+ds-1

Metadata

Failure - qemu-arm64 - gcc-13-lkftconfig-kunit