lkft/linux-stable-rc-linux-6.15.y - v6.15.3-593-gde19bfa00d6f - log-parser-boot/kasan-bug-kasan-vmalloc-out-of-bounds-in-vmalloc_oob

Date

June 23, 2025, 1:39 p.m.

Environment
qemu-arm64

[   29.428316] ==================================================================
[   29.428438] BUG: KASAN: vmalloc-out-of-bounds in vmalloc_oob+0x578/0x5d0
[   29.428518] Read of size 1 at addr ffff80008010b7f3 by task kunit_try_catch/271
[   29.428583] 
[   29.428630] CPU: 0 UID: 0 PID: 271 Comm: kunit_try_catch Tainted: G    B            N  6.15.4-rc1 #1 PREEMPT 
[   29.428734] Tainted: [B]=BAD_PAGE, [N]=TEST
[   29.428769] Hardware name: linux,dummy-virt (DT)
[   29.428811] Call trace:
[   29.428842]  show_stack+0x20/0x38 (C)
[   29.428906]  dump_stack_lvl+0x8c/0xd0
[   29.428966]  print_report+0x310/0x608
[   29.429024]  kasan_report+0xdc/0x128
[   29.429079]  __asan_report_load1_noabort+0x20/0x30
[   29.429141]  vmalloc_oob+0x578/0x5d0
[   29.429212]  kunit_try_run_case+0x170/0x3f0
[   29.429276]  kunit_generic_run_threadfn_adapter+0x88/0x100
[   29.429344]  kthread+0x328/0x630
[   29.429695]  ret_from_fork+0x10/0x20
[   29.430016] 
[   29.430086] The buggy address belongs to the virtual mapping at
[   29.430086]  [ffff80008010b000, ffff80008010d000) created by:
[   29.430086]  vmalloc_oob+0x98/0x5d0
[   29.430628] 
[   29.430714] The buggy address belongs to the physical page:
[   29.430799] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x10703f
[   29.430933] flags: 0xbfffe0000000000(node=0|zone=2|lastcpupid=0x1ffff)
[   29.431100] raw: 0bfffe0000000000 0000000000000000 dead000000000122 0000000000000000
[   29.431214] raw: 0000000000000000 0000000000000000 00000001ffffffff 0000000000000000
[   29.431313] page dumped because: kasan: bad access detected
[   29.431417] 
[   29.431468] Memory state around the buggy address:
[   29.431865]  ffff80008010b680: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   29.431989]  ffff80008010b700: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   29.432114] >ffff80008010b780: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 03 f8
[   29.432928]                                                              ^
[   29.433205]  ffff80008010b800: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[   29.433332]  ffff80008010b880: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[   29.433452] ==================================================================
[   29.435585] ==================================================================
[   29.435687] BUG: KASAN: vmalloc-out-of-bounds in vmalloc_oob+0x51c/0x5d0
[   29.435798] Read of size 1 at addr ffff80008010b7f8 by task kunit_try_catch/271
[   29.435927] 
[   29.436021] CPU: 0 UID: 0 PID: 271 Comm: kunit_try_catch Tainted: G    B            N  6.15.4-rc1 #1 PREEMPT 
[   29.436224] Tainted: [B]=BAD_PAGE, [N]=TEST
[   29.436290] Hardware name: linux,dummy-virt (DT)
[   29.436362] Call trace:
[   29.436443]  show_stack+0x20/0x38 (C)
[   29.436561]  dump_stack_lvl+0x8c/0xd0
[   29.436692]  print_report+0x310/0x608
[   29.436851]  kasan_report+0xdc/0x128
[   29.436972]  __asan_report_load1_noabort+0x20/0x30
[   29.437098]  vmalloc_oob+0x51c/0x5d0
[   29.437239]  kunit_try_run_case+0x170/0x3f0
[   29.437385]  kunit_generic_run_threadfn_adapter+0x88/0x100
[   29.437561]  kthread+0x328/0x630
[   29.438045]  ret_from_fork+0x10/0x20
[   29.438190] 
[   29.438260] The buggy address belongs to the virtual mapping at
[   29.438260]  [ffff80008010b000, ffff80008010d000) created by:
[   29.438260]  vmalloc_oob+0x98/0x5d0
[   29.438468] 
[   29.438531] The buggy address belongs to the physical page:
[   29.438621] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x10703f
[   29.438879] flags: 0xbfffe0000000000(node=0|zone=2|lastcpupid=0x1ffff)
[   29.439530] raw: 0bfffe0000000000 0000000000000000 dead000000000122 0000000000000000
[   29.439905] raw: 0000000000000000 0000000000000000 00000001ffffffff 0000000000000000
[   29.440312] page dumped because: kasan: bad access detected
[   29.440444] 
[   29.440723] Memory state around the buggy address:
[   29.441083]  ffff80008010b680: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   29.441528]  ffff80008010b700: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   29.441845] >ffff80008010b780: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 03 f8
[   29.442276]                                                                 ^
[   29.442404]  ffff80008010b800: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[   29.442516]  ffff80008010b880: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[   29.443754] ==================================================================

Metadata Full log Test run details

arch

arm64

host

x86_64

plan

2yuYOT8mFhi7537nwLqDo4m2CnP

job_id

TEST:linaro@lkft#2yuYT6Pinx8XSymaWNp6cpzl3Cl

job_url

https://tuxapi.tuxsuite.com/v1/groups/linaro/projects/lkft/tests/2yuYT6Pinx8XSymaWNp6cpzl3Cl

artefacts

kernel

url	https://storage.tuxsuite.com/public/linaro/lkft/builds/2yuYPcCNuYU3512XWsLz2H3rgWp/Image.gz
sha256sum	57e05c75085917e237c36a1c6300a885b5a4018f7a22df0831ee3761434117fe

rootfs

url	https://storage.tuxboot.com/debian/20250617/trixie/arm64/rootfs.ext4.xz
sha256sum	1eaaae772692e22cefec5345d642e254407cec1431dd51a20007af2a1819b610

modules

url	https://storage.tuxsuite.com/public/linaro/lkft/builds/2yuYPcCNuYU3512XWsLz2H3rgWp/modules.tar.xz
sha256sum	08df30bc44d3238a22959b8095bcf790b77fb8886fd1b3a26e269eaac34e9502

durations

tests

boot	0
kunit	345.36

host_arch

amd64

build_name

gcc-13-lkftconfig-kunit

job_status

Complete

qemu_version

1:10.0.0+ds-1

Metadata

Failure - qemu-arm64 - gcc-13-lkftconfig-kunit