Date
May 13, 2025, 12:07 p.m.
| Environment | |
|---|---|
| qemu-arm64 | |
| qemu-x86_64 |
[ 18.796469] ================================================================== [ 18.796917] BUG: KASAN: slab-out-of-bounds in kmalloc_oob_right+0x5a4/0x660 [ 18.798046] Write of size 1 at addr fff00000c1807f73 by task kunit_try_catch/136 [ 18.798185] [ 18.799441] CPU: 1 UID: 0 PID: 136 Comm: kunit_try_catch Tainted: G N 6.15.0-rc6-next-20250513 #1 PREEMPT [ 18.799639] Tainted: [N]=TEST [ 18.799680] Hardware name: linux,dummy-virt (DT) [ 18.799962] Call trace: [ 18.800197] show_stack+0x20/0x38 (C) [ 18.800368] dump_stack_lvl+0x8c/0xd0 [ 18.800442] print_report+0x118/0x608 [ 18.800498] kasan_report+0xdc/0x128 [ 18.800548] __asan_report_store1_noabort+0x20/0x30 [ 18.800605] kmalloc_oob_right+0x5a4/0x660 [ 18.800654] kunit_try_run_case+0x170/0x3f0 [ 18.800709] kunit_generic_run_threadfn_adapter+0x88/0x100 [ 18.800766] kthread+0x328/0x630 [ 18.800817] ret_from_fork+0x10/0x20 [ 18.801024] [ 18.801082] Allocated by task 136: [ 18.801211] kasan_save_stack+0x3c/0x68 [ 18.801286] kasan_save_track+0x20/0x40 [ 18.801330] kasan_save_alloc_info+0x40/0x58 [ 18.801373] __kasan_kmalloc+0xd4/0xd8 [ 18.801411] __kmalloc_cache_noprof+0x15c/0x3c0 [ 18.801453] kmalloc_oob_right+0xb0/0x660 [ 18.801491] kunit_try_run_case+0x170/0x3f0 [ 18.801530] kunit_generic_run_threadfn_adapter+0x88/0x100 [ 18.801575] kthread+0x328/0x630 [ 18.801614] ret_from_fork+0x10/0x20 [ 18.801677] [ 18.801749] The buggy address belongs to the object at fff00000c1807f00 [ 18.801749] which belongs to the cache kmalloc-128 of size 128 [ 18.801872] The buggy address is located 0 bytes to the right of [ 18.801872] allocated 115-byte region [fff00000c1807f00, fff00000c1807f73) [ 18.801951] [ 18.802059] The buggy address belongs to the physical page: [ 18.802274] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x101807 [ 18.802609] flags: 0xbfffe0000000000(node=0|zone=2|lastcpupid=0x1ffff) [ 18.802986] page_type: f5(slab) [ 18.803387] raw: 0bfffe0000000000 fff00000c0001a00 dead000000000122 0000000000000000 [ 18.803462] raw: 0000000000000000 0000000080100010 00000000f5000000 0000000000000000 [ 18.803595] page dumped because: kasan: bad access detected [ 18.803645] [ 18.803676] Memory state around the buggy address: [ 18.803953] fff00000c1807e00: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 18.804048] fff00000c1807e80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 18.804115] >fff00000c1807f00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 03 fc [ 18.804177] ^ [ 18.804276] fff00000c1807f80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 18.804326] fff00000c1808000: 00 00 00 00 00 00 00 00 fc fc fc fc fc fc fc fc [ 18.804398] ================================================================== [ 18.812512] ================================================================== [ 18.812647] BUG: KASAN: slab-out-of-bounds in kmalloc_oob_right+0x538/0x660 [ 18.812869] Write of size 1 at addr fff00000c1807f78 by task kunit_try_catch/136 [ 18.813055] [ 18.813142] CPU: 1 UID: 0 PID: 136 Comm: kunit_try_catch Tainted: G B N 6.15.0-rc6-next-20250513 #1 PREEMPT [ 18.813617] Tainted: [B]=BAD_PAGE, [N]=TEST [ 18.813693] Hardware name: linux,dummy-virt (DT) [ 18.813776] Call trace: [ 18.814285] show_stack+0x20/0x38 (C) [ 18.814494] dump_stack_lvl+0x8c/0xd0 [ 18.814642] print_report+0x118/0x608 [ 18.814751] kasan_report+0xdc/0x128 [ 18.814857] __asan_report_store1_noabort+0x20/0x30 [ 18.815209] kmalloc_oob_right+0x538/0x660 [ 18.815335] kunit_try_run_case+0x170/0x3f0 [ 18.815482] kunit_generic_run_threadfn_adapter+0x88/0x100 [ 18.815709] kthread+0x328/0x630 [ 18.816040] ret_from_fork+0x10/0x20 [ 18.816461] [ 18.816509] Allocated by task 136: [ 18.816585] kasan_save_stack+0x3c/0x68 [ 18.816680] kasan_save_track+0x20/0x40 [ 18.816764] kasan_save_alloc_info+0x40/0x58 [ 18.816875] __kasan_kmalloc+0xd4/0xd8 [ 18.817110] __kmalloc_cache_noprof+0x15c/0x3c0 [ 18.817275] kmalloc_oob_right+0xb0/0x660 [ 18.817384] kunit_try_run_case+0x170/0x3f0 [ 18.817598] kunit_generic_run_threadfn_adapter+0x88/0x100 [ 18.817799] kthread+0x328/0x630 [ 18.818267] ret_from_fork+0x10/0x20 [ 18.818373] [ 18.818426] The buggy address belongs to the object at fff00000c1807f00 [ 18.818426] which belongs to the cache kmalloc-128 of size 128 [ 18.818882] The buggy address is located 5 bytes to the right of [ 18.818882] allocated 115-byte region [fff00000c1807f00, fff00000c1807f73) [ 18.819121] [ 18.819284] The buggy address belongs to the physical page: [ 18.819595] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x101807 [ 18.819867] flags: 0xbfffe0000000000(node=0|zone=2|lastcpupid=0x1ffff) [ 18.820145] page_type: f5(slab) [ 18.820327] raw: 0bfffe0000000000 fff00000c0001a00 dead000000000122 0000000000000000 [ 18.820549] raw: 0000000000000000 0000000080100010 00000000f5000000 0000000000000000 [ 18.821050] page dumped because: kasan: bad access detected [ 18.821187] [ 18.821232] Memory state around the buggy address: [ 18.821322] fff00000c1807e00: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 18.821435] fff00000c1807e80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 18.821541] >fff00000c1807f00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 03 fc [ 18.821634] ^ [ 18.821735] fff00000c1807f80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 18.821858] fff00000c1808000: 00 00 00 00 00 00 00 00 fc fc fc fc fc fc fc fc [ 18.821960] ================================================================== [ 18.825184] ================================================================== [ 18.825445] BUG: KASAN: slab-out-of-bounds in kmalloc_oob_right+0x5d0/0x660 [ 18.825697] Read of size 1 at addr fff00000c1807f80 by task kunit_try_catch/136 [ 18.825987] [ 18.826280] CPU: 1 UID: 0 PID: 136 Comm: kunit_try_catch Tainted: G B N 6.15.0-rc6-next-20250513 #1 PREEMPT [ 18.826676] Tainted: [B]=BAD_PAGE, [N]=TEST [ 18.827091] Hardware name: linux,dummy-virt (DT) [ 18.827291] Call trace: [ 18.827387] show_stack+0x20/0x38 (C) [ 18.827922] dump_stack_lvl+0x8c/0xd0 [ 18.828192] print_report+0x118/0x608 [ 18.828411] kasan_report+0xdc/0x128 [ 18.828977] __asan_report_load1_noabort+0x20/0x30 [ 18.829161] kmalloc_oob_right+0x5d0/0x660 [ 18.829305] kunit_try_run_case+0x170/0x3f0 [ 18.829424] kunit_generic_run_threadfn_adapter+0x88/0x100 [ 18.829564] kthread+0x328/0x630 [ 18.829683] ret_from_fork+0x10/0x20 [ 18.829816] [ 18.829866] Allocated by task 136: [ 18.829943] kasan_save_stack+0x3c/0x68 [ 18.830058] kasan_save_track+0x20/0x40 [ 18.830153] kasan_save_alloc_info+0x40/0x58 [ 18.830255] __kasan_kmalloc+0xd4/0xd8 [ 18.830822] __kmalloc_cache_noprof+0x15c/0x3c0 [ 18.831043] kmalloc_oob_right+0xb0/0x660 [ 18.831140] kunit_try_run_case+0x170/0x3f0 [ 18.831227] kunit_generic_run_threadfn_adapter+0x88/0x100 [ 18.831410] kthread+0x328/0x630 [ 18.831613] ret_from_fork+0x10/0x20 [ 18.832143] [ 18.832195] The buggy address belongs to the object at fff00000c1807f00 [ 18.832195] which belongs to the cache kmalloc-128 of size 128 [ 18.832585] The buggy address is located 13 bytes to the right of [ 18.832585] allocated 115-byte region [fff00000c1807f00, fff00000c1807f73) [ 18.832960] [ 18.833114] The buggy address belongs to the physical page: [ 18.833197] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x101807 [ 18.833348] flags: 0xbfffe0000000000(node=0|zone=2|lastcpupid=0x1ffff) [ 18.833803] page_type: f5(slab) [ 18.834070] raw: 0bfffe0000000000 fff00000c0001a00 dead000000000122 0000000000000000 [ 18.834210] raw: 0000000000000000 0000000080100010 00000000f5000000 0000000000000000 [ 18.834316] page dumped because: kasan: bad access detected [ 18.834737] [ 18.834810] Memory state around the buggy address: [ 18.835065] fff00000c1807e80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 18.835353] fff00000c1807f00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 03 fc [ 18.835711] >fff00000c1807f80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 18.835884] ^ [ 18.836117] fff00000c1808000: 00 00 00 00 00 00 00 00 fc fc fc fc fc fc fc fc [ 18.836238] fff00000c1808080: 00 00 00 00 00 00 00 00 fc fc fc fc fc fc fc fc [ 18.836332] ==================================================================
[ 10.363013] ================================================================== [ 10.363256] BUG: KASAN: slab-out-of-bounds in kmalloc_oob_right+0x6bd/0x7f0 [ 10.363478] Write of size 1 at addr ffff8881029ce078 by task kunit_try_catch/153 [ 10.363877] [ 10.364050] CPU: 0 UID: 0 PID: 153 Comm: kunit_try_catch Tainted: G B N 6.15.0-rc6-next-20250513 #1 PREEMPT(voluntary) [ 10.364095] Tainted: [B]=BAD_PAGE, [N]=TEST [ 10.364106] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014 [ 10.364125] Call Trace: [ 10.364136] <TASK> [ 10.364150] dump_stack_lvl+0x73/0xb0 [ 10.364175] print_report+0xd1/0x650 [ 10.364197] ? __virt_addr_valid+0x1db/0x2d0 [ 10.364219] ? kmalloc_oob_right+0x6bd/0x7f0 [ 10.364258] ? kasan_complete_mode_report_info+0x2a/0x200 [ 10.364288] ? kmalloc_oob_right+0x6bd/0x7f0 [ 10.364310] kasan_report+0x141/0x180 [ 10.364332] ? kmalloc_oob_right+0x6bd/0x7f0 [ 10.364359] __asan_report_store1_noabort+0x1b/0x30 [ 10.364380] kmalloc_oob_right+0x6bd/0x7f0 [ 10.364402] ? __pfx_kmalloc_oob_right+0x10/0x10 [ 10.364425] ? __schedule+0x10cc/0x2b60 [ 10.364446] ? __pfx_read_tsc+0x10/0x10 [ 10.364466] ? ktime_get_ts64+0x86/0x230 [ 10.364490] kunit_try_run_case+0x1a5/0x480 [ 10.364530] ? __pfx_kunit_try_run_case+0x10/0x10 [ 10.364551] ? _raw_spin_lock_irqsave+0xa1/0x100 [ 10.364572] ? _raw_spin_unlock_irqrestore+0x5f/0x90 [ 10.364594] ? __kthread_parkme+0x82/0x180 [ 10.364624] ? preempt_count_sub+0x50/0x80 [ 10.364648] ? __pfx_kunit_try_run_case+0x10/0x10 [ 10.364671] kunit_generic_run_threadfn_adapter+0x85/0xf0 [ 10.364693] ? __pfx_kunit_generic_run_threadfn_adapter+0x10/0x10 [ 10.364715] kthread+0x337/0x6f0 [ 10.364734] ? trace_preempt_on+0x20/0xc0 [ 10.364768] ? __pfx_kthread+0x10/0x10 [ 10.364788] ? _raw_spin_unlock_irq+0x47/0x80 [ 10.364808] ? calculate_sigpending+0x7b/0xa0 [ 10.364831] ? __pfx_kthread+0x10/0x10 [ 10.364852] ret_from_fork+0x116/0x1d0 [ 10.364870] ? __pfx_kthread+0x10/0x10 [ 10.364890] ret_from_fork_asm+0x1a/0x30 [ 10.364921] </TASK> [ 10.364931] [ 10.378209] Allocated by task 153: [ 10.378349] kasan_save_stack+0x45/0x70 [ 10.378499] kasan_save_track+0x18/0x40 [ 10.378663] kasan_save_alloc_info+0x3b/0x50 [ 10.378962] __kasan_kmalloc+0xb7/0xc0 [ 10.379339] __kmalloc_cache_noprof+0x189/0x420 [ 10.379786] kmalloc_oob_right+0xa9/0x7f0 [ 10.380180] kunit_try_run_case+0x1a5/0x480 [ 10.380383] kunit_generic_run_threadfn_adapter+0x85/0xf0 [ 10.380556] kthread+0x337/0x6f0 [ 10.380700] ret_from_fork+0x116/0x1d0 [ 10.380893] ret_from_fork_asm+0x1a/0x30 [ 10.381295] [ 10.381486] The buggy address belongs to the object at ffff8881029ce000 [ 10.381486] which belongs to the cache kmalloc-128 of size 128 [ 10.382647] The buggy address is located 5 bytes to the right of [ 10.382647] allocated 115-byte region [ffff8881029ce000, ffff8881029ce073) [ 10.383264] [ 10.383392] The buggy address belongs to the physical page: [ 10.383856] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x1029ce [ 10.384421] flags: 0x200000000000000(node=0|zone=2) [ 10.384923] page_type: f5(slab) [ 10.385221] raw: 0200000000000000 ffff888100041a00 dead000000000122 0000000000000000 [ 10.385562] raw: 0000000000000000 0000000080100010 00000000f5000000 0000000000000000 [ 10.386108] page dumped because: kasan: bad access detected [ 10.386325] [ 10.386506] Memory state around the buggy address: [ 10.386940] ffff8881029cdf00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 10.387889] ffff8881029cdf80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 10.388299] >ffff8881029ce000: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 03 fc [ 10.388920] ^ [ 10.389136] ffff8881029ce080: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 10.389410] ffff8881029ce100: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 10.390080] ================================================================== [ 10.328419] ================================================================== [ 10.329289] BUG: KASAN: slab-out-of-bounds in kmalloc_oob_right+0x6f0/0x7f0 [ 10.330370] Write of size 1 at addr ffff8881029ce073 by task kunit_try_catch/153 [ 10.331304] [ 10.332407] CPU: 0 UID: 0 PID: 153 Comm: kunit_try_catch Tainted: G N 6.15.0-rc6-next-20250513 #1 PREEMPT(voluntary) [ 10.332756] Tainted: [N]=TEST [ 10.332788] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014 [ 10.333022] Call Trace: [ 10.333093] <TASK> [ 10.333236] dump_stack_lvl+0x73/0xb0 [ 10.333320] print_report+0xd1/0x650 [ 10.333349] ? __virt_addr_valid+0x1db/0x2d0 [ 10.333375] ? kmalloc_oob_right+0x6f0/0x7f0 [ 10.333396] ? kasan_complete_mode_report_info+0x2a/0x200 [ 10.333418] ? kmalloc_oob_right+0x6f0/0x7f0 [ 10.333440] kasan_report+0x141/0x180 [ 10.333462] ? kmalloc_oob_right+0x6f0/0x7f0 [ 10.333489] __asan_report_store1_noabort+0x1b/0x30 [ 10.333509] kmalloc_oob_right+0x6f0/0x7f0 [ 10.333547] ? __pfx_kmalloc_oob_right+0x10/0x10 [ 10.333569] ? __schedule+0x10cc/0x2b60 [ 10.333592] ? __pfx_read_tsc+0x10/0x10 [ 10.333624] ? ktime_get_ts64+0x86/0x230 [ 10.333651] kunit_try_run_case+0x1a5/0x480 [ 10.333678] ? __pfx_kunit_try_run_case+0x10/0x10 [ 10.333699] ? _raw_spin_lock_irqsave+0xa1/0x100 [ 10.333723] ? _raw_spin_unlock_irqrestore+0x5f/0x90 [ 10.333744] ? __kthread_parkme+0x82/0x180 [ 10.333766] ? preempt_count_sub+0x50/0x80 [ 10.333791] ? __pfx_kunit_try_run_case+0x10/0x10 [ 10.333814] kunit_generic_run_threadfn_adapter+0x85/0xf0 [ 10.333837] ? __pfx_kunit_generic_run_threadfn_adapter+0x10/0x10 [ 10.333859] kthread+0x337/0x6f0 [ 10.333879] ? trace_preempt_on+0x20/0xc0 [ 10.333903] ? __pfx_kthread+0x10/0x10 [ 10.333924] ? _raw_spin_unlock_irq+0x47/0x80 [ 10.333944] ? calculate_sigpending+0x7b/0xa0 [ 10.333968] ? __pfx_kthread+0x10/0x10 [ 10.333989] ret_from_fork+0x116/0x1d0 [ 10.334007] ? __pfx_kthread+0x10/0x10 [ 10.334027] ret_from_fork_asm+0x1a/0x30 [ 10.334083] </TASK> [ 10.334148] [ 10.345602] Allocated by task 153: [ 10.345869] kasan_save_stack+0x45/0x70 [ 10.346097] kasan_save_track+0x18/0x40 [ 10.346493] kasan_save_alloc_info+0x3b/0x50 [ 10.346856] __kasan_kmalloc+0xb7/0xc0 [ 10.347238] __kmalloc_cache_noprof+0x189/0x420 [ 10.347391] kmalloc_oob_right+0xa9/0x7f0 [ 10.347569] kunit_try_run_case+0x1a5/0x480 [ 10.347984] kunit_generic_run_threadfn_adapter+0x85/0xf0 [ 10.348506] kthread+0x337/0x6f0 [ 10.348893] ret_from_fork+0x116/0x1d0 [ 10.349268] ret_from_fork_asm+0x1a/0x30 [ 10.349448] [ 10.349639] The buggy address belongs to the object at ffff8881029ce000 [ 10.349639] which belongs to the cache kmalloc-128 of size 128 [ 10.350925] The buggy address is located 0 bytes to the right of [ 10.350925] allocated 115-byte region [ffff8881029ce000, ffff8881029ce073) [ 10.351484] [ 10.351792] The buggy address belongs to the physical page: [ 10.352582] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x1029ce [ 10.353550] flags: 0x200000000000000(node=0|zone=2) [ 10.354359] page_type: f5(slab) [ 10.354911] raw: 0200000000000000 ffff888100041a00 dead000000000122 0000000000000000 [ 10.355684] raw: 0000000000000000 0000000080100010 00000000f5000000 0000000000000000 [ 10.356485] page dumped because: kasan: bad access detected [ 10.356686] [ 10.356768] Memory state around the buggy address: [ 10.357296] ffff8881029cdf00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 10.358088] ffff8881029cdf80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 10.358775] >ffff8881029ce000: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 03 fc [ 10.359602] ^ [ 10.360423] ffff8881029ce080: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 10.360899] ffff8881029ce100: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 10.361413] ================================================================== [ 10.391111] ================================================================== [ 10.392000] BUG: KASAN: slab-out-of-bounds in kmalloc_oob_right+0x68a/0x7f0 [ 10.392673] Read of size 1 at addr ffff8881029ce080 by task kunit_try_catch/153 [ 10.393096] [ 10.393333] CPU: 0 UID: 0 PID: 153 Comm: kunit_try_catch Tainted: G B N 6.15.0-rc6-next-20250513 #1 PREEMPT(voluntary) [ 10.393382] Tainted: [B]=BAD_PAGE, [N]=TEST [ 10.393393] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014 [ 10.393413] Call Trace: [ 10.393428] <TASK> [ 10.393444] dump_stack_lvl+0x73/0xb0 [ 10.393471] print_report+0xd1/0x650 [ 10.393494] ? __virt_addr_valid+0x1db/0x2d0 [ 10.393516] ? kmalloc_oob_right+0x68a/0x7f0 [ 10.393537] ? kasan_complete_mode_report_info+0x2a/0x200 [ 10.393577] ? kmalloc_oob_right+0x68a/0x7f0 [ 10.393599] kasan_report+0x141/0x180 [ 10.393633] ? kmalloc_oob_right+0x68a/0x7f0 [ 10.393660] __asan_report_load1_noabort+0x18/0x20 [ 10.393680] kmalloc_oob_right+0x68a/0x7f0 [ 10.393702] ? __pfx_kmalloc_oob_right+0x10/0x10 [ 10.393725] ? __schedule+0x10cc/0x2b60 [ 10.393746] ? __pfx_read_tsc+0x10/0x10 [ 10.393766] ? ktime_get_ts64+0x86/0x230 [ 10.393790] kunit_try_run_case+0x1a5/0x480 [ 10.393814] ? __pfx_kunit_try_run_case+0x10/0x10 [ 10.393835] ? _raw_spin_lock_irqsave+0xa1/0x100 [ 10.393857] ? _raw_spin_unlock_irqrestore+0x5f/0x90 [ 10.393879] ? __kthread_parkme+0x82/0x180 [ 10.393899] ? preempt_count_sub+0x50/0x80 [ 10.393924] ? __pfx_kunit_try_run_case+0x10/0x10 [ 10.393947] kunit_generic_run_threadfn_adapter+0x85/0xf0 [ 10.393969] ? __pfx_kunit_generic_run_threadfn_adapter+0x10/0x10 [ 10.393991] kthread+0x337/0x6f0 [ 10.394010] ? trace_preempt_on+0x20/0xc0 [ 10.394032] ? __pfx_kthread+0x10/0x10 [ 10.394053] ? _raw_spin_unlock_irq+0x47/0x80 [ 10.394072] ? calculate_sigpending+0x7b/0xa0 [ 10.394096] ? __pfx_kthread+0x10/0x10 [ 10.394117] ret_from_fork+0x116/0x1d0 [ 10.394135] ? __pfx_kthread+0x10/0x10 [ 10.394155] ret_from_fork_asm+0x1a/0x30 [ 10.394186] </TASK> [ 10.394196] [ 10.405401] Allocated by task 153: [ 10.405780] kasan_save_stack+0x45/0x70 [ 10.405930] kasan_save_track+0x18/0x40 [ 10.406279] kasan_save_alloc_info+0x3b/0x50 [ 10.406720] __kasan_kmalloc+0xb7/0xc0 [ 10.407163] __kmalloc_cache_noprof+0x189/0x420 [ 10.407479] kmalloc_oob_right+0xa9/0x7f0 [ 10.407667] kunit_try_run_case+0x1a5/0x480 [ 10.407873] kunit_generic_run_threadfn_adapter+0x85/0xf0 [ 10.408463] kthread+0x337/0x6f0 [ 10.408844] ret_from_fork+0x116/0x1d0 [ 10.409182] ret_from_fork_asm+0x1a/0x30 [ 10.409516] [ 10.409809] The buggy address belongs to the object at ffff8881029ce000 [ 10.409809] which belongs to the cache kmalloc-128 of size 128 [ 10.410719] The buggy address is located 13 bytes to the right of [ 10.410719] allocated 115-byte region [ffff8881029ce000, ffff8881029ce073) [ 10.411086] [ 10.411157] The buggy address belongs to the physical page: [ 10.411713] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x1029ce [ 10.412530] flags: 0x200000000000000(node=0|zone=2) [ 10.413004] page_type: f5(slab) [ 10.413377] raw: 0200000000000000 ffff888100041a00 dead000000000122 0000000000000000 [ 10.414198] raw: 0000000000000000 0000000080100010 00000000f5000000 0000000000000000 [ 10.415085] page dumped because: kasan: bad access detected [ 10.415686] [ 10.415846] Memory state around the buggy address: [ 10.416160] ffff8881029cdf80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 10.416882] ffff8881029ce000: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 03 fc [ 10.417544] >ffff8881029ce080: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 10.417985] ^ [ 10.418310] ffff8881029ce100: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 10.418852] ffff8881029ce180: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 10.419610] ==================================================================