lkft/linux-next-master - next-20250620 - log-parser-boot/kfence-bug-kfence-memory-corruption-in-kmalloc_oob_memset_2

Date

June 20, 2025, 12:38 p.m.

Environment
qemu-arm64
qemu-x86_64

[   31.948418] ==================================================================
[   31.948920] BUG: KFENCE: memory corruption in kmalloc_oob_memset_2+0x170/0x2f8
[   31.948920] 
[   31.949076] Corrupted memory at 0x00000000eac2f912 [ ! . . . . . . . ] (in kfence-#90):
[   31.949515]  kmalloc_oob_memset_2+0x170/0x2f8
[   31.949672]  kunit_try_run_case+0x170/0x3f0
[   31.949776]  kunit_generic_run_threadfn_adapter+0x88/0x100
[   31.949855]  kthread+0x328/0x630
[   31.949912]  ret_from_fork+0x10/0x20
[   31.950009] 
[   31.950052] kfence-#90: 0x0000000052d7674d-0x0000000061d7358f, size=120, cache=kmalloc-128
[   31.950052] 
[   31.950183] allocated by task 183 on cpu 1 at 31.943890s (0.006285s ago):
[   31.950316]  kmalloc_oob_memset_2+0xb0/0x2f8
[   31.950397]  kunit_try_run_case+0x170/0x3f0
[   31.950476]  kunit_generic_run_threadfn_adapter+0x88/0x100
[   31.950576]  kthread+0x328/0x630
[   31.950974]  ret_from_fork+0x10/0x20
[   31.951062] 
[   31.951128] freed by task 183 on cpu 1 at 31.947978s (0.003137s ago):
[   31.951307]  kmalloc_oob_memset_2+0x170/0x2f8
[   31.951444]  kunit_try_run_case+0x170/0x3f0
[   31.951531]  kunit_generic_run_threadfn_adapter+0x88/0x100
[   31.951652]  kthread+0x328/0x630
[   31.951733]  ret_from_fork+0x10/0x20
[   31.951829] 
[   31.951952] CPU: 1 UID: 0 PID: 183 Comm: kunit_try_catch Tainted: G    B            N  6.16.0-rc2-next-20250620 #1 PREEMPT 
[   31.952156] Tainted: [B]=BAD_PAGE, [N]=TEST
[   31.952213] Hardware name: linux,dummy-virt (DT)
[   31.952282] ==================================================================

Metadata Full log Test run details

arch

arm64

host

x86_64

plan

2ylxeu6IO0JXwDBBfpeBJndyVOz

job_id

TEST:linaro@lkft#2ylxknDmzqBc7l7AJ73lkzQwChd

job_url

https://tuxapi.tuxsuite.com/v1/groups/linaro/projects/lkft/tests/2ylxknDmzqBc7l7AJ73lkzQwChd

artefacts

kernel

url	https://storage.tuxsuite.com/public/linaro/lkft/builds/2ylxgYId6JcqlbNdF5Ou1na1u7V/Image.gz
sha256sum	16e81c2ed2a17916f19db760d3a7c856b75ce2c5efeb6f59660648808e3ea09c

rootfs

url	https://storage.tuxboot.com/debian/20250617/trixie/arm64/rootfs.ext4.xz
sha256sum	1eaaae772692e22cefec5345d642e254407cec1431dd51a20007af2a1819b610

modules

url	https://storage.tuxsuite.com/public/linaro/lkft/builds/2ylxgYId6JcqlbNdF5Ou1na1u7V/modules.tar.xz
sha256sum	cec40e0efa28ebd64355a818786c4419f9e1a0e9c486afe0449163fd13fe0a7d

durations

tests

boot	0
kunit	348.02

host_arch

amd64

build_name

gcc-13-lkftconfig-kunit

job_status

Complete

qemu_version

1:10.0.0+ds-1

[   25.663837] ==================================================================
[   25.665178] BUG: KFENCE: memory corruption in kmalloc_oob_memset_2+0x187/0x330
[   25.665178] 
[   25.665672] Corrupted memory at 0x(____ptrval____) [ ! . . . . . . . . . . . . . . . ] (in kfence-#65):
[   25.667612]  kmalloc_oob_memset_2+0x187/0x330
[   25.668009]  kunit_try_run_case+0x1a5/0x480
[   25.668298]  kunit_generic_run_threadfn_adapter+0x85/0xf0
[   25.668741]  kthread+0x337/0x6f0
[   25.669019]  ret_from_fork+0x116/0x1d0
[   25.669437]  ret_from_fork_asm+0x1a/0x30
[   25.669702] 
[   25.670266] kfence-#65: 0x(____ptrval____)-0x(____ptrval____), size=120, cache=kmalloc-128
[   25.670266] 
[   25.671254] allocated by task 201 on cpu 1 at 25.660019s (0.011063s ago):
[   25.671938]  kmalloc_oob_memset_2+0xac/0x330
[   25.672462]  kunit_try_run_case+0x1a5/0x480
[   25.672776]  kunit_generic_run_threadfn_adapter+0x85/0xf0
[   25.673067]  kthread+0x337/0x6f0
[   25.673622]  ret_from_fork+0x116/0x1d0
[   25.674056]  ret_from_fork_asm+0x1a/0x30
[   25.674358] 
[   25.674889] freed by task 201 on cpu 1 at 25.663180s (0.011434s ago):
[   25.675420]  kmalloc_oob_memset_2+0x187/0x330
[   25.675787]  kunit_try_run_case+0x1a5/0x480
[   25.676052]  kunit_generic_run_threadfn_adapter+0x85/0xf0
[   25.677589]  kthread+0x337/0x6f0
[   25.677862]  ret_from_fork+0x116/0x1d0
[   25.678020]  ret_from_fork_asm+0x1a/0x30
[   25.678555] 
[   25.678875] CPU: 1 UID: 0 PID: 201 Comm: kunit_try_catch Tainted: G    B            N  6.16.0-rc2-next-20250620 #1 PREEMPT(voluntary) 
[   25.679581] Tainted: [B]=BAD_PAGE, [N]=TEST
[   25.679769] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[   25.680606] ==================================================================

Metadata Full log Test run details

arch

x86_64

host

x86_64

plan

2ylxeu6IO0JXwDBBfpeBJndyVOz

job_id

TEST:linaro@lkft#2ylxlwz5RxcyLOfJc85DXMJ1ZHa

job_url

https://tuxapi.tuxsuite.com/v1/groups/linaro/projects/lkft/tests/2ylxlwz5RxcyLOfJc85DXMJ1ZHa

artefacts

kernel

url	https://storage.tuxsuite.com/public/linaro/lkft/builds/2ylxi8VBQbEeX7ahh6RQozQ3qEa/bzImage
sha256sum	45bde6c06931535c0358c3b45a949b96cf4ed89bcf19cfa2091d7ba61a28678f

rootfs

url	https://storage.tuxboot.com/debian/20250617/trixie/amd64/rootfs.ext4.xz
sha256sum	a7dcdb286e1265c85a4d6cd5429adc51604a3ebde1d9a3c934aef78862d5fee4

modules

url	https://storage.tuxsuite.com/public/linaro/lkft/builds/2ylxi8VBQbEeX7ahh6RQozQ3qEa/modules.tar.xz
sha256sum	78c646c5a5ca97c0ac59bb4022d308a7d957fff2cd7cba95f35c1aa1de7ed757

durations

tests

boot	0
kunit	261.41

host_arch

amd64

build_name

gcc-13-lkftconfig-kunit

job_status

Complete

qemu_version

1:10.0.0+ds-1

Metadata

Failure - qemu-arm64 - gcc-13-lkftconfig-kunit

Failure - qemu-x86_64 - gcc-13-lkftconfig-kunit