Date
July 11, 2025, 11:09 p.m.
| Environment | |
|---|---|
| qemu-arm64 |
[ 16.744820] ================================================================== [ 16.745246] BUG: KASAN: slab-out-of-bounds in kmalloc_oob_memset_16+0x150/0x2f8 [ 16.745421] Write of size 16 at addr fff00000c6f3f869 by task kunit_try_catch/179 [ 16.745472] [ 16.745507] CPU: 0 UID: 0 PID: 179 Comm: kunit_try_catch Tainted: G B N 6.16.0-rc5 #1 PREEMPT [ 16.745596] Tainted: [B]=BAD_PAGE, [N]=TEST [ 16.745718] Hardware name: linux,dummy-virt (DT) [ 16.746081] Call trace: [ 16.746284] show_stack+0x20/0x38 (C) [ 16.746385] dump_stack_lvl+0x8c/0xd0 [ 16.746430] print_report+0x118/0x608 [ 16.746869] kasan_report+0xdc/0x128 [ 16.746915] kasan_check_range+0x100/0x1a8 [ 16.746962] __asan_memset+0x34/0x78 [ 16.747003] kmalloc_oob_memset_16+0x150/0x2f8 [ 16.747047] kunit_try_run_case+0x170/0x3f0 [ 16.747093] kunit_generic_run_threadfn_adapter+0x88/0x100 [ 16.747142] kthread+0x328/0x630 [ 16.747184] ret_from_fork+0x10/0x20 [ 16.747510] [ 16.747532] Allocated by task 179: [ 16.747580] kasan_save_stack+0x3c/0x68 [ 16.747623] kasan_save_track+0x20/0x40 [ 16.747935] kasan_save_alloc_info+0x40/0x58 [ 16.748015] __kasan_kmalloc+0xd4/0xd8 [ 16.748089] __kmalloc_cache_noprof+0x16c/0x3c0 [ 16.748127] kmalloc_oob_memset_16+0xb0/0x2f8 [ 16.748474] kunit_try_run_case+0x170/0x3f0 [ 16.748522] kunit_generic_run_threadfn_adapter+0x88/0x100 [ 16.748565] kthread+0x328/0x630 [ 16.748640] ret_from_fork+0x10/0x20 [ 16.748676] [ 16.748696] The buggy address belongs to the object at fff00000c6f3f800 [ 16.748696] which belongs to the cache kmalloc-128 of size 128 [ 16.748751] The buggy address is located 105 bytes inside of [ 16.748751] allocated 120-byte region [fff00000c6f3f800, fff00000c6f3f878) [ 16.748820] [ 16.748849] The buggy address belongs to the physical page: [ 16.748880] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x106f3f [ 16.749242] flags: 0xbfffe0000000000(node=0|zone=2|lastcpupid=0x1ffff) [ 16.749558] page_type: f5(slab) [ 16.749790] raw: 0bfffe0000000000 fff00000c0001a00 dead000000000122 0000000000000000 [ 16.749890] raw: 0000000000000000 0000000080100010 00000000f5000000 0000000000000000 [ 16.749935] page dumped because: kasan: bad access detected [ 16.750069] [ 16.750106] Memory state around the buggy address: [ 16.750137] fff00000c6f3f700: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 16.750242] fff00000c6f3f780: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 16.750283] >fff00000c6f3f800: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 fc [ 16.750365] ^ [ 16.750451] fff00000c6f3f880: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 16.750492] fff00000c6f3f900: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 16.750584] ==================================================================