Date
July 8, 2025, 11:10 a.m.
| Environment | |
|---|---|
| qemu-arm64 | |
| qemu-x86_64 |
[ 33.418431] ================================================================== [ 33.418509] BUG: KASAN: global-out-of-bounds in kasan_global_oob_right+0x230/0x270 [ 33.418575] Read of size 1 at addr ffff92c7bb9126cd by task kunit_try_catch/276 [ 33.418771] [ 33.418970] CPU: 0 UID: 0 PID: 276 Comm: kunit_try_catch Tainted: G B N 6.16.0-rc5-next-20250708 #1 PREEMPT [ 33.419088] Tainted: [B]=BAD_PAGE, [N]=TEST [ 33.419139] Hardware name: linux,dummy-virt (DT) [ 33.419175] Call trace: [ 33.419258] show_stack+0x20/0x38 (C) [ 33.419336] dump_stack_lvl+0x8c/0xd0 [ 33.419551] print_report+0x310/0x5d0 [ 33.419718] kasan_report+0xdc/0x128 [ 33.419801] __asan_report_load1_noabort+0x20/0x30 [ 33.419856] kasan_global_oob_right+0x230/0x270 [ 33.419966] kunit_try_run_case+0x170/0x3f0 [ 33.420044] kunit_generic_run_threadfn_adapter+0x88/0x100 [ 33.420111] kthread+0x328/0x630 [ 33.420237] ret_from_fork+0x10/0x20 [ 33.420304] [ 33.420362] The buggy address belongs to the variable: [ 33.420434] global_array+0xd/0x40 [ 33.420492] [ 33.420920] The buggy address ffff92c7bb9126cd belongs to a vmalloc virtual mapping [ 33.421365] The buggy address belongs to the physical page: [ 33.421449] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x47d12 [ 33.421633] flags: 0x3fffe0000002000(reserved|node=0|zone=0|lastcpupid=0x1ffff) [ 33.421865] raw: 03fffe0000002000 ffffc1ffc01f4488 ffffc1ffc01f4488 0000000000000000 [ 33.421990] raw: 0000000000000000 0000000000000000 00000001ffffffff 0000000000000000 [ 33.422061] page dumped because: kasan: bad access detected [ 33.422164] [ 33.422236] Memory state around the buggy address: [ 33.422286] ffff92c7bb912580: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 33.422391] ffff92c7bb912600: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 33.422437] >ffff92c7bb912680: 02 f9 f9 f9 f9 f9 f9 f9 00 02 f9 f9 f9 f9 f9 f9 [ 33.422485] ^ [ 33.422549] ffff92c7bb912700: 04 f9 f9 f9 f9 f9 f9 f9 00 f9 f9 f9 f9 f9 f9 f9 [ 33.422594] ffff92c7bb912780: 01 f9 f9 f9 f9 f9 f9 f9 00 00 00 00 00 00 00 00 [ 33.422635] ==================================================================
[ 25.180568] ================================================================== [ 25.181572] BUG: KASAN: global-out-of-bounds in kasan_global_oob_right+0x286/0x2d0 [ 25.181852] Read of size 1 at addr ffffffffa16b5f0d by task kunit_try_catch/293 [ 25.182076] [ 25.182201] CPU: 1 UID: 0 PID: 293 Comm: kunit_try_catch Tainted: G B N 6.16.0-rc5-next-20250708 #1 PREEMPT(voluntary) [ 25.182281] Tainted: [B]=BAD_PAGE, [N]=TEST [ 25.182296] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014 [ 25.182321] Call Trace: [ 25.182336] <TASK> [ 25.182358] dump_stack_lvl+0x73/0xb0 [ 25.182394] print_report+0xd1/0x610 [ 25.182418] ? __virt_addr_valid+0x1db/0x2d0 [ 25.182446] ? kasan_global_oob_right+0x286/0x2d0 [ 25.182475] ? kasan_addr_to_slab+0x11/0xa0 [ 25.182495] ? kasan_global_oob_right+0x286/0x2d0 [ 25.182525] kasan_report+0x141/0x180 [ 25.182547] ? kasan_global_oob_right+0x286/0x2d0 [ 25.182581] __asan_report_load1_noabort+0x18/0x20 [ 25.182609] kasan_global_oob_right+0x286/0x2d0 [ 25.182638] ? __pfx_kasan_global_oob_right+0x10/0x10 [ 25.182670] ? __schedule+0x10cc/0x2b60 [ 25.182700] ? __pfx_read_tsc+0x10/0x10 [ 25.182726] ? ktime_get_ts64+0x86/0x230 [ 25.182755] kunit_try_run_case+0x1a5/0x480 [ 25.182780] ? __pfx_kunit_try_run_case+0x10/0x10 [ 25.182801] ? _raw_spin_lock_irqsave+0xa1/0x100 [ 25.182823] ? _raw_spin_unlock_irqrestore+0x5f/0x90 [ 25.182852] ? __kthread_parkme+0x82/0x180 [ 25.182874] ? preempt_count_sub+0x50/0x80 [ 25.182898] ? __pfx_kunit_try_run_case+0x10/0x10 [ 25.182920] kunit_generic_run_threadfn_adapter+0x85/0xf0 [ 25.182948] ? __pfx_kunit_generic_run_threadfn_adapter+0x10/0x10 [ 25.182974] kthread+0x337/0x6f0 [ 25.182996] ? trace_preempt_on+0x20/0xc0 [ 25.183022] ? __pfx_kthread+0x10/0x10 [ 25.183045] ? _raw_spin_unlock_irq+0x47/0x80 [ 25.183072] ? calculate_sigpending+0x7b/0xa0 [ 25.183102] ? __pfx_kthread+0x10/0x10 [ 25.183125] ret_from_fork+0x116/0x1d0 [ 25.183145] ? __pfx_kthread+0x10/0x10 [ 25.183168] ret_from_fork_asm+0x1a/0x30 [ 25.183232] </TASK> [ 25.183259] [ 25.195326] The buggy address belongs to the variable: [ 25.195600] global_array+0xd/0x40 [ 25.195800] [ 25.196039] The buggy address belongs to the physical page: [ 25.196568] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x1772b5 [ 25.197376] flags: 0x200000000002000(reserved|node=0|zone=2) [ 25.197589] raw: 0200000000002000 ffffea0005dcad48 ffffea0005dcad48 0000000000000000 [ 25.198030] raw: 0000000000000000 0000000000000000 00000001ffffffff 0000000000000000 [ 25.198685] page dumped because: kasan: bad access detected [ 25.199383] [ 25.199560] Memory state around the buggy address: [ 25.200094] ffffffffa16b5e00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 25.200489] ffffffffa16b5e80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 25.200701] >ffffffffa16b5f00: 00 02 f9 f9 f9 f9 f9 f9 00 f9 f9 f9 f9 f9 f9 f9 [ 25.201209] ^ [ 25.201604] ffffffffa16b5f80: 04 f9 f9 f9 f9 f9 f9 f9 02 f9 f9 f9 f9 f9 f9 f9 [ 25.202465] ffffffffa16b6000: 01 f9 f9 f9 f9 f9 f9 f9 00 00 00 00 00 00 00 00 [ 25.203145] ==================================================================