Hay
Sign in
Date
May 15, 2025, 10:38 a.m.

Environment
e850-96 

[   28.621914] ==================================================================
[   28.631589] BUG: KASAN: out-of-bounds in kmalloc_memmove_negative_size+0x154/0x2e0
[   28.639140] Read of size 18446744073709551614 at addr ffff000800de7404 by task kunit_try_catch/225
[   28.648079] 
[   28.649565] CPU: 7 UID: 0 PID: 225 Comm: kunit_try_catch Tainted: G    B            N  6.15.0-rc6-next-20250515 #1 PREEMPT 
[   28.649624] Tainted: [B]=BAD_PAGE, [N]=TEST
[   28.649642] Hardware name: WinLink E850-96 board (DT)
[   28.649665] Call trace:
[   28.649679]  show_stack+0x20/0x38 (C)
[   28.649715]  dump_stack_lvl+0x8c/0xd0
[   28.649747]  print_report+0x118/0x608
[   28.649778]  kasan_report+0xdc/0x128
[   28.649808]  kasan_check_range+0x100/0x1a8
[   28.649844]  __asan_memmove+0x3c/0x98
[   28.649877]  kmalloc_memmove_negative_size+0x154/0x2e0
[   28.649909]  kunit_try_run_case+0x170/0x3f0
[   28.649943]  kunit_generic_run_threadfn_adapter+0x88/0x100
[   28.649981]  kthread+0x328/0x630
[   28.650015]  ret_from_fork+0x10/0x20
[   28.650050] 
[   28.717522] Allocated by task 225:
[   28.720909]  kasan_save_stack+0x3c/0x68
[   28.724726]  kasan_save_track+0x20/0x40
[   28.728546]  kasan_save_alloc_info+0x40/0x58
[   28.732798]  __kasan_kmalloc+0xd4/0xd8
[   28.736531]  __kmalloc_cache_noprof+0x15c/0x3c0
[   28.741045]  kmalloc_memmove_negative_size+0xb0/0x2e0
[   28.746079]  kunit_try_run_case+0x170/0x3f0
[   28.750246]  kunit_generic_run_threadfn_adapter+0x88/0x100
[   28.755715]  kthread+0x328/0x630
[   28.758926]  ret_from_fork+0x10/0x20
[   28.762485] 
[   28.763962] The buggy address belongs to the object at ffff000800de7400
[   28.763962]  which belongs to the cache kmalloc-64 of size 64
[   28.776289] The buggy address is located 4 bytes inside of
[   28.776289]  64-byte region [ffff000800de7400, ffff000800de7440)
[   28.787745] 
[   28.789225] The buggy address belongs to the physical page:
[   28.794780] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x880de7
[   28.802765] flags: 0xbfffe0000000000(node=0|zone=2|lastcpupid=0x1ffff)
[   28.809275] page_type: f5(slab)
[   28.812412] raw: 0bfffe0000000000 ffff0008000028c0 dead000000000122 0000000000000000
[   28.820129] raw: 0000000000000000 0000000080200020 00000000f5000000 0000000000000000
[   28.827849] page dumped because: kasan: bad access detected
[   28.833404] 
[   28.834879] Memory state around the buggy address:
[   28.839662]  ffff000800de7300: fa fb fb fb fb fb fb fb fc fc fc fc fc fc fc fc
[   28.846864]  ffff000800de7380: fa fb fb fb fb fb fb fb fc fc fc fc fc fc fc fc
[   28.854067] >ffff000800de7400: 00 00 00 00 00 00 00 00 fc fc fc fc fc fc fc fc
[   28.861269]                    ^
[   28.864484]  ffff000800de7480: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[   28.871689]  ffff000800de7500: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[   28.878891] ==================================================================
Metadata Full log Test run details