Date
July 18, 2025, 1:09 p.m.
| Environment | |
|---|---|
| qemu-arm64 | |
| qemu-x86_64 |
[ 31.294988] ================================================================== [ 31.295293] BUG: KASAN: slab-out-of-bounds in kmalloc_large_oob_right+0x278/0x2b8 [ 31.295452] Write of size 1 at addr fff00000c3fe600a by task kunit_try_catch/177 [ 31.295504] [ 31.295560] CPU: 0 UID: 0 PID: 177 Comm: kunit_try_catch Tainted: G B N 6.16.0-rc6-next-20250718 #1 PREEMPT [ 31.295825] Tainted: [B]=BAD_PAGE, [N]=TEST [ 31.295857] Hardware name: linux,dummy-virt (DT) [ 31.295887] Call trace: [ 31.295910] show_stack+0x20/0x38 (C) [ 31.296063] dump_stack_lvl+0x8c/0xd0 [ 31.296121] print_report+0x118/0x5e8 [ 31.296197] kasan_report+0xdc/0x128 [ 31.296286] __asan_report_store1_noabort+0x20/0x30 [ 31.296417] kmalloc_large_oob_right+0x278/0x2b8 [ 31.296495] kunit_try_run_case+0x170/0x3f0 [ 31.296650] kunit_generic_run_threadfn_adapter+0x88/0x100 [ 31.296748] kthread+0x328/0x630 [ 31.296880] ret_from_fork+0x10/0x20 [ 31.296992] [ 31.297298] The buggy address belongs to the physical page: [ 31.297347] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x103fe4 [ 31.297464] head: order:2 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0 [ 31.297558] flags: 0xbfffe0000000040(head|node=0|zone=2|lastcpupid=0x1ffff) [ 31.297713] page_type: f8(unknown) [ 31.297766] raw: 0bfffe0000000040 0000000000000000 dead000000000122 0000000000000000 [ 31.298061] raw: 0000000000000000 0000000000000000 00000000f8000000 0000000000000000 [ 31.298145] head: 0bfffe0000000040 0000000000000000 dead000000000122 0000000000000000 [ 31.298241] head: 0000000000000000 0000000000000000 00000000f8000000 0000000000000000 [ 31.298328] head: 0bfffe0000000002 ffffc1ffc30ff901 00000000ffffffff 00000000ffffffff [ 31.298402] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000004 [ 31.298513] page dumped because: kasan: bad access detected [ 31.298563] [ 31.298612] Memory state around the buggy address: [ 31.298944] fff00000c3fe5f00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 31.299001] fff00000c3fe5f80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 31.299108] >fff00000c3fe6000: 00 02 fe fe fe fe fe fe fe fe fe fe fe fe fe fe [ 31.299179] ^ [ 31.299316] fff00000c3fe6080: fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe [ 31.299388] fff00000c3fe6100: fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe [ 31.299456] ==================================================================
KNOWN ISSUE - log-parser-boot/kasan-bug-kasan-slab-out-of-bounds-in-kmalloc_large_oob_right: Failure
[ 24.249532] ================================================================== [ 24.250068] BUG: KASAN: slab-out-of-bounds in kmalloc_large_oob_right+0x2e9/0x330 [ 24.250563] Write of size 1 at addr ffff888102b3a00a by task kunit_try_catch/194 [ 24.250866] [ 24.250980] CPU: 1 UID: 0 PID: 194 Comm: kunit_try_catch Tainted: G B N 6.16.0-rc6-next-20250718 #1 PREEMPT(voluntary) [ 24.251026] Tainted: [B]=BAD_PAGE, [N]=TEST [ 24.251038] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014 [ 24.251059] Call Trace: [ 24.251071] <TASK> [ 24.251085] dump_stack_lvl+0x73/0xb0 [ 24.251114] print_report+0xd1/0x640 [ 24.251136] ? __virt_addr_valid+0x1db/0x2d0 [ 24.251158] ? kmalloc_large_oob_right+0x2e9/0x330 [ 24.251189] ? kasan_addr_to_slab+0x11/0xa0 [ 24.251209] ? kmalloc_large_oob_right+0x2e9/0x330 [ 24.251230] kasan_report+0x141/0x180 [ 24.251251] ? kmalloc_large_oob_right+0x2e9/0x330 [ 24.251286] __asan_report_store1_noabort+0x1b/0x30 [ 24.251309] kmalloc_large_oob_right+0x2e9/0x330 [ 24.251341] ? __pfx_kmalloc_large_oob_right+0x10/0x10 [ 24.251363] ? __schedule+0x10da/0x2b60 [ 24.251385] ? __pfx_read_tsc+0x10/0x10 [ 24.251405] ? ktime_get_ts64+0x86/0x230 [ 24.251429] kunit_try_run_case+0x1a5/0x480 [ 24.251452] ? __pfx_kunit_try_run_case+0x10/0x10 [ 24.251473] ? _raw_spin_lock_irqsave+0xa1/0x100 [ 24.251495] ? _raw_spin_unlock_irqrestore+0x5f/0x90 [ 24.251517] ? __kthread_parkme+0x82/0x180 [ 24.251535] ? preempt_count_sub+0x50/0x80 [ 24.251557] ? __pfx_kunit_try_run_case+0x10/0x10 [ 24.251579] kunit_generic_run_threadfn_adapter+0x85/0xf0 [ 24.251601] ? __pfx_kunit_generic_run_threadfn_adapter+0x10/0x10 [ 24.251623] kthread+0x337/0x6f0 [ 24.251641] ? trace_preempt_on+0x20/0xc0 [ 24.251672] ? __pfx_kthread+0x10/0x10 [ 24.251693] ? _raw_spin_unlock_irq+0x47/0x80 [ 24.251714] ? calculate_sigpending+0x7b/0xa0 [ 24.251747] ? __pfx_kthread+0x10/0x10 [ 24.251767] ret_from_fork+0x116/0x1d0 [ 24.251785] ? __pfx_kthread+0x10/0x10 [ 24.251820] ret_from_fork_asm+0x1a/0x30 [ 24.251850] </TASK> [ 24.251861] [ 24.259405] The buggy address belongs to the physical page: [ 24.259637] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x102b38 [ 24.260078] head: order:2 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0 [ 24.260383] flags: 0x200000000000040(head|node=0|zone=2) [ 24.260623] page_type: f8(unknown) [ 24.260789] raw: 0200000000000040 0000000000000000 dead000000000122 0000000000000000 [ 24.261078] raw: 0000000000000000 0000000000000000 00000000f8000000 0000000000000000 [ 24.261370] head: 0200000000000040 0000000000000000 dead000000000122 0000000000000000 [ 24.261650] head: 0000000000000000 0000000000000000 00000000f8000000 0000000000000000 [ 24.261876] head: 0200000000000002 ffffea00040ace01 00000000ffffffff 00000000ffffffff [ 24.262201] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000004 [ 24.262546] page dumped because: kasan: bad access detected [ 24.262762] [ 24.262825] Memory state around the buggy address: [ 24.263106] ffff888102b39f00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 24.263603] ffff888102b39f80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 24.263881] >ffff888102b3a000: 00 02 fe fe fe fe fe fe fe fe fe fe fe fe fe fe [ 24.264500] ^ [ 24.264682] ffff888102b3a080: fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe [ 24.265457] ffff888102b3a100: fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe [ 24.265774] ==================================================================
KNOWN ISSUE - log-parser-boot/kasan-bug-kasan-slab-out-of-bounds-in-kmalloc_large_oob_right: Failure