lkft/linux-next-master - next-20250512 - log-parser-boot/kasan-bug-kasan-vmalloc-out-of-bounds-in-vmalloc_oob

Date

May 12, 2025, 11:48 a.m.

Environment
qemu-arm64

[   19.587230] ==================================================================
[   19.587291] BUG: KASAN: vmalloc-out-of-bounds in vmalloc_oob+0x51c/0x5d0
[   19.587351] Read of size 1 at addr ffff8000800fe7f8 by task kunit_try_catch/269
[   19.587404] 
[   19.587436] CPU: 0 UID: 0 PID: 269 Comm: kunit_try_catch Tainted: G    B            N  6.15.0-rc6-next-20250512 #1 PREEMPT 
[   19.587524] Tainted: [B]=BAD_PAGE, [N]=TEST
[   19.587554] Hardware name: linux,dummy-virt (DT)
[   19.587586] Call trace:
[   19.587611]  show_stack+0x20/0x38 (C)
[   19.587663]  dump_stack_lvl+0x8c/0xd0
[   19.587711]  print_report+0x310/0x608
[   19.587757]  kasan_report+0xdc/0x128
[   19.587802]  __asan_report_load1_noabort+0x20/0x30
[   19.587854]  vmalloc_oob+0x51c/0x5d0
[   19.587902]  kunit_try_run_case+0x170/0x3f0
[   19.587949]  kunit_generic_run_threadfn_adapter+0x88/0x100
[   19.587999]  kthread+0x328/0x630
[   19.588064]  ret_from_fork+0x10/0x20
[   19.588171] 
[   19.588227] The buggy address belongs to the virtual mapping at
[   19.588227]  [ffff8000800fe000, ffff800080100000) created by:
[   19.588227]  vmalloc_oob+0x98/0x5d0
[   19.588394] 
[   19.588423] The buggy address belongs to the physical page:
[   19.588456] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x10653e
[   19.588509] flags: 0xbfffe0000000000(node=0|zone=2|lastcpupid=0x1ffff)
[   19.588570] raw: 0bfffe0000000000 0000000000000000 dead000000000122 0000000000000000
[   19.588622] raw: 0000000000000000 0000000000000000 00000001ffffffff 0000000000000000
[   19.588664] page dumped because: kasan: bad access detected
[   19.588698] 
[   19.588719] Memory state around the buggy address:
[   19.588751]  ffff8000800fe680: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   19.588795]  ffff8000800fe700: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   19.588838] >ffff8000800fe780: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 03 f8
[   19.588876]                                                                 ^
[   19.588917]  ffff8000800fe800: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[   19.588960]  ffff8000800fe880: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[   19.588998] ==================================================================
[   19.583366] ==================================================================
[   19.583448] BUG: KASAN: vmalloc-out-of-bounds in vmalloc_oob+0x578/0x5d0
[   19.583514] Read of size 1 at addr ffff8000800fe7f3 by task kunit_try_catch/269
[   19.583566] 
[   19.583601] CPU: 0 UID: 0 PID: 269 Comm: kunit_try_catch Tainted: G    B            N  6.15.0-rc6-next-20250512 #1 PREEMPT 
[   19.583687] Tainted: [B]=BAD_PAGE, [N]=TEST
[   19.583715] Hardware name: linux,dummy-virt (DT)
[   19.583748] Call trace:
[   19.583773]  show_stack+0x20/0x38 (C)
[   19.583824]  dump_stack_lvl+0x8c/0xd0
[   19.583873]  print_report+0x310/0x608
[   19.583917]  kasan_report+0xdc/0x128
[   19.583961]  __asan_report_load1_noabort+0x20/0x30
[   19.584011]  vmalloc_oob+0x578/0x5d0
[   19.584079]  kunit_try_run_case+0x170/0x3f0
[   19.584184]  kunit_generic_run_threadfn_adapter+0x88/0x100
[   19.584289]  kthread+0x328/0x630
[   19.584384]  ret_from_fork+0x10/0x20
[   19.584481] 
[   19.584540] The buggy address belongs to the virtual mapping at
[   19.584540]  [ffff8000800fe000, ffff800080100000) created by:
[   19.584540]  vmalloc_oob+0x98/0x5d0
[   19.584687] 
[   19.584883] The buggy address belongs to the physical page:
[   19.584927] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x10653e
[   19.584984] flags: 0xbfffe0000000000(node=0|zone=2|lastcpupid=0x1ffff)
[   19.585060] raw: 0bfffe0000000000 0000000000000000 dead000000000122 0000000000000000
[   19.585331] raw: 0000000000000000 0000000000000000 00000001ffffffff 0000000000000000
[   19.585707] page dumped because: kasan: bad access detected
[   19.585752] 
[   19.585775] Memory state around the buggy address:
[   19.585812]  ffff8000800fe680: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   19.585857]  ffff8000800fe700: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   19.585959] >ffff8000800fe780: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 03 f8
[   19.586012]                                                              ^
[   19.586066]  ffff8000800fe800: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[   19.586174]  ffff8000800fe880: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[   19.586428] ==================================================================

Metadata Full log Test run details

arch

arm64

host

x86_64

plan

2wzhoXbX8z5uxnTgWVmeHFPVt5w

job_id

TEST:linaro@lkft#2wzht4TVw0WlfY69jnhMqjXElSg

job_url

https://tuxapi.tuxsuite.com/v1/groups/linaro/projects/lkft/tests/2wzht4TVw0WlfY69jnhMqjXElSg

artefacts

kernel

url	https://storage.tuxsuite.com/public/linaro/lkft/builds/2wzhpWU42EtYm7kZLPp7OLc8QYa/Image.gz
sha256sum	70b1e536f53e9eb91aae94372b64952481bbf47e27b20cb5870c7e3e80457074

rootfs

url	https://storage.tuxboot.com/debian/20250425/trixie/arm64/rootfs.ext4.xz
sha256sum	1cc8d041751cc9cfe19b957ffa27d6115f076efaeb324bcd0fb145c37c99e1b7

modules

url	https://storage.tuxsuite.com/public/linaro/lkft/builds/2wzhpWU42EtYm7kZLPp7OLc8QYa/modules.tar.xz
sha256sum	95c3dca0f224e5b598c2e0728f570672c34de953e709490ceb7378a1ba9035be

durations

tests

boot	0
kunit	235.44

host_arch

amd64

build_name

gcc-13-lkftconfig-kunit

job_status

Complete

qemu_version

1:10.0.0~rc3+ds-2

Metadata

Failure - qemu-arm64 - gcc-13-lkftconfig-kunit