lkft/linux-next-master - next-20241120 - log-parser-boot/kasan-bug-kasan-vmalloc-out-of-bounds-in-vmalloc_oob

Date

Nov. 20, 2024, 6:35 a.m.

Environment
qemu-arm64

[   43.252021] ==================================================================
[   43.253415] BUG: KASAN: vmalloc-out-of-bounds in vmalloc_oob+0x578/0x5d0
[   43.254901] Read of size 1 at addr ffff80008010b7f3 by task kunit_try_catch/258
[   43.255777] 
[   43.256099] CPU: 1 UID: 0 PID: 258 Comm: kunit_try_catch Tainted: G    B            N 6.12.0-next-20241120 #1
[   43.257171] Tainted: [B]=BAD_PAGE, [N]=TEST
[   43.257991] Hardware name: linux,dummy-virt (DT)
[   43.258904] Call trace:
[   43.259338]  show_stack+0x20/0x38 (C)
[   43.260028]  dump_stack_lvl+0x8c/0xd0
[   43.260672]  print_report+0x2fc/0x5e0
[   43.261586]  kasan_report+0xc8/0x118
[   43.262218]  __asan_report_load1_noabort+0x20/0x30
[   43.262835]  vmalloc_oob+0x578/0x5d0
[   43.263406]  kunit_try_run_case+0x14c/0x3d0
[   43.264068]  kunit_generic_run_threadfn_adapter+0x88/0x100
[   43.264742]  kthread+0x24c/0x2d0
[   43.265521]  ret_from_fork+0x10/0x20
[   43.266309] 
[   43.266657] The buggy address belongs to the virtual mapping at
[   43.266657]  [ffff80008010b000, ffff80008010d000) created by:
[   43.266657]  vmalloc_oob+0x98/0x5d0
[   43.268089] 
[   43.268420] The buggy address belongs to the physical page:
[   43.269112] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x10655e
[   43.270056] flags: 0xbfffe0000000000(node=0|zone=2|lastcpupid=0x1ffff)
[   43.271053] raw: 0bfffe0000000000 0000000000000000 dead000000000122 0000000000000000
[   43.271775] raw: 0000000000000000 0000000000000000 00000001ffffffff 0000000000000000
[   43.272617] page dumped because: kasan: bad access detected
[   43.273188] 
[   43.274189] Memory state around the buggy address:
[   43.274758]  ffff80008010b680: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   43.275650]  ffff80008010b700: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   43.276363] >ffff80008010b780: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 03 f8
[   43.277065]                                                              ^
[   43.278487]  ffff80008010b800: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[   43.279397]  ffff80008010b880: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[   43.280183] ==================================================================
[   43.283062] ==================================================================
[   43.283765] BUG: KASAN: vmalloc-out-of-bounds in vmalloc_oob+0x51c/0x5d0
[   43.284878] Read of size 1 at addr ffff80008010b7f8 by task kunit_try_catch/258
[   43.286522] 
[   43.286942] CPU: 1 UID: 0 PID: 258 Comm: kunit_try_catch Tainted: G    B            N 6.12.0-next-20241120 #1
[   43.288322] Tainted: [B]=BAD_PAGE, [N]=TEST
[   43.289038] Hardware name: linux,dummy-virt (DT)
[   43.290188] Call trace:
[   43.290562]  show_stack+0x20/0x38 (C)
[   43.291089]  dump_stack_lvl+0x8c/0xd0
[   43.291630]  print_report+0x2fc/0x5e0
[   43.292205]  kasan_report+0xc8/0x118
[   43.292745]  __asan_report_load1_noabort+0x20/0x30
[   43.293967]  vmalloc_oob+0x51c/0x5d0
[   43.294566]  kunit_try_run_case+0x14c/0x3d0
[   43.295454]  kunit_generic_run_threadfn_adapter+0x88/0x100
[   43.296387]  kthread+0x24c/0x2d0
[   43.296942]  ret_from_fork+0x10/0x20
[   43.297899] 
[   43.298485] The buggy address belongs to the virtual mapping at
[   43.298485]  [ffff80008010b000, ffff80008010d000) created by:
[   43.298485]  vmalloc_oob+0x98/0x5d0
[   43.300063] 
[   43.300328] The buggy address belongs to the physical page:
[   43.301128] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x10655e
[   43.302627] flags: 0xbfffe0000000000(node=0|zone=2|lastcpupid=0x1ffff)
[   43.303541] raw: 0bfffe0000000000 0000000000000000 dead000000000122 0000000000000000
[   43.304574] raw: 0000000000000000 0000000000000000 00000001ffffffff 0000000000000000
[   43.305576] page dumped because: kasan: bad access detected
[   43.306137] 
[   43.306392] Memory state around the buggy address:
[   43.307959]  ffff80008010b680: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   43.308901]  ffff80008010b700: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   43.310008] >ffff80008010b780: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 03 f8
[   43.310829]                                                                 ^
[   43.311841]  ffff80008010b800: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[   43.312776]  ffff80008010b880: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[   43.313795] ==================================================================

Metadata Full log Test run details

arch

arm64

host

x86_64

plan

2p6RKtSaQzM9AH7EW4wB6TaFUpc

job_id

TEST:linaro@lkft#2p6RORe3bvOVFFyikCIIMIqvDuf

job_url

https://tuxapi.tuxsuite.com/v1/groups/linaro/projects/lkft/tests/2p6RORe3bvOVFFyikCIIMIqvDuf

artefacts

kernel

url	https://storage.tuxsuite.com/public/linaro/lkft/builds/2p6RLcQ3A7IaWr2y5V43PS9SGkI/Image.gz
sha256sum	9d3350185f371d5540b7a890915c7b2d520978ac8bacbcab31ceb8e94c9d6874

rootfs

url	https://storage.tuxboot.com/debian/trixie/arm64/rootfs.ext4.xz
sha256sum	f592205e64add7389d8a1055c235aa3685e13c7cfdfdbe5f212ab22afdbeb656

modules

url	https://storage.tuxsuite.com/public/linaro/lkft/builds/2p6RLcQ3A7IaWr2y5V43PS9SGkI/modules.tar.xz
sha256sum	b4e07e5fcad0be04916ab3c60d2c95a83a8f3b78bb90a3779ae77006e754e02b

durations

tests

boot	391.28
kunit	457.10

host_arch

amd64

build_name

gcc-13-lkftconfig-kunit

job_status

Complete

qemu_version

1:9.1.1+ds-5

Metadata

Failure - qemu-arm64 - gcc-13-lkftconfig-kunit