Date
July 4, 2025, 3:11 p.m.
| Environment | |
|---|---|
| e850-96 | |
| qemu-arm64 | |
| qemu-x86_64 | |
| x86 |
[ 19.970321] ================================================================== [ 19.979369] BUG: KASAN: slab-out-of-bounds in krealloc_more_oob_helper+0x60c/0x678 [ 19.986914] Write of size 1 at addr ffff000800dec6eb by task kunit_try_catch/205 [ 19.994290] [ 19.995778] CPU: 1 UID: 0 PID: 205 Comm: kunit_try_catch Tainted: G B N 6.15.5-rc2 #1 PREEMPT [ 19.995829] Tainted: [B]=BAD_PAGE, [N]=TEST [ 19.995844] Hardware name: WinLink E850-96 board (DT) [ 19.995864] Call trace: [ 19.995882] show_stack+0x20/0x38 (C) [ 19.995917] dump_stack_lvl+0x8c/0xd0 [ 19.995956] print_report+0x118/0x608 [ 19.995988] kasan_report+0xdc/0x128 [ 19.996016] __asan_report_store1_noabort+0x20/0x30 [ 19.996051] krealloc_more_oob_helper+0x60c/0x678 [ 19.996081] krealloc_more_oob+0x20/0x38 [ 19.996107] kunit_try_run_case+0x170/0x3f0 [ 19.996143] kunit_generic_run_threadfn_adapter+0x88/0x100 [ 19.996181] kthread+0x328/0x630 [ 19.996216] ret_from_fork+0x10/0x20 [ 19.996250] [ 20.063126] Allocated by task 205: [ 20.066517] kasan_save_stack+0x3c/0x68 [ 20.070330] kasan_save_track+0x20/0x40 [ 20.074150] kasan_save_alloc_info+0x40/0x58 [ 20.078403] __kasan_krealloc+0x118/0x178 [ 20.082396] krealloc_noprof+0x128/0x360 [ 20.086302] krealloc_more_oob_helper+0x168/0x678 [ 20.090991] krealloc_more_oob+0x20/0x38 [ 20.094896] kunit_try_run_case+0x170/0x3f0 [ 20.099062] kunit_generic_run_threadfn_adapter+0x88/0x100 [ 20.104531] kthread+0x328/0x630 [ 20.107743] ret_from_fork+0x10/0x20 [ 20.111302] [ 20.112780] The buggy address belongs to the object at ffff000800dec600 [ 20.112780] which belongs to the cache kmalloc-256 of size 256 [ 20.125281] The buggy address is located 0 bytes to the right of [ 20.125281] allocated 235-byte region [ffff000800dec600, ffff000800dec6eb) [ 20.138211] [ 20.139692] The buggy address belongs to the physical page: [ 20.145249] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x880dec [ 20.153230] head: order:2 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0 [ 20.160869] flags: 0xbfffe0000000040(head|node=0|zone=2|lastcpupid=0x1ffff) [ 20.167813] page_type: f5(slab) [ 20.170950] raw: 0bfffe0000000040 ffff000800002b40 dead000000000122 0000000000000000 [ 20.178669] raw: 0000000000000000 0000000080200020 00000000f5000000 0000000000000000 [ 20.186395] head: 0bfffe0000000040 ffff000800002b40 dead000000000122 0000000000000000 [ 20.194207] head: 0000000000000000 0000000080200020 00000000f5000000 0000000000000000 [ 20.202020] head: 0bfffe0000000002 fffffdffe0037b01 00000000ffffffff 00000000ffffffff [ 20.209832] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000004 [ 20.217639] page dumped because: kasan: bad access detected [ 20.223192] [ 20.224668] Memory state around the buggy address: [ 20.229449] ffff000800dec580: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 20.236653] ffff000800dec600: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 20.243857] >ffff000800dec680: 00 00 00 00 00 00 00 00 00 00 00 00 00 03 fc fc [ 20.251057] ^ [ 20.257658] ffff000800dec700: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 20.264863] ffff000800dec780: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 20.272065] ================================================================== [ 22.125619] ================================================================== [ 22.134973] BUG: KASAN: slab-out-of-bounds in krealloc_more_oob_helper+0x60c/0x678 [ 22.142522] Write of size 1 at addr ffff00080608a0eb by task kunit_try_catch/209 [ 22.149900] [ 22.151387] CPU: 2 UID: 0 PID: 209 Comm: kunit_try_catch Tainted: G B N 6.15.5-rc2 #1 PREEMPT [ 22.151440] Tainted: [B]=BAD_PAGE, [N]=TEST [ 22.151456] Hardware name: WinLink E850-96 board (DT) [ 22.151477] Call trace: [ 22.151491] show_stack+0x20/0x38 (C) [ 22.151524] dump_stack_lvl+0x8c/0xd0 [ 22.151559] print_report+0x118/0x608 [ 22.151588] kasan_report+0xdc/0x128 [ 22.151616] __asan_report_store1_noabort+0x20/0x30 [ 22.151650] krealloc_more_oob_helper+0x60c/0x678 [ 22.151679] krealloc_large_more_oob+0x20/0x38 [ 22.151706] kunit_try_run_case+0x170/0x3f0 [ 22.151744] kunit_generic_run_threadfn_adapter+0x88/0x100 [ 22.151781] kthread+0x328/0x630 [ 22.151814] ret_from_fork+0x10/0x20 [ 22.151847] [ 22.219259] The buggy address belongs to the physical page: [ 22.224816] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x886088 [ 22.232800] head: order:2 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0 [ 22.240438] flags: 0xbfffe0000000040(head|node=0|zone=2|lastcpupid=0x1ffff) [ 22.247381] page_type: f8(unknown) [ 22.250780] raw: 0bfffe0000000040 0000000000000000 dead000000000122 0000000000000000 [ 22.258499] raw: 0000000000000000 0000000000000000 00000001f8000000 0000000000000000 [ 22.266225] head: 0bfffe0000000040 0000000000000000 dead000000000122 0000000000000000 [ 22.274036] head: 0000000000000000 0000000000000000 00000001f8000000 0000000000000000 [ 22.281849] head: 0bfffe0000000002 fffffdffe0182201 00000000ffffffff 00000000ffffffff [ 22.289662] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000004 [ 22.297470] page dumped because: kasan: bad access detected [ 22.303022] [ 22.304498] Memory state around the buggy address: [ 22.309281] ffff000806089f80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 22.316483] ffff00080608a000: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 22.323688] >ffff00080608a080: 00 00 00 00 00 00 00 00 00 00 00 00 00 03 fe fe [ 22.330887] ^ [ 22.337488] ffff00080608a100: fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe [ 22.344692] ffff00080608a180: fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe [ 22.351895] ================================================================== [ 22.359298] ================================================================== [ 22.366309] BUG: KASAN: slab-out-of-bounds in krealloc_more_oob_helper+0x5c0/0x678 [ 22.373855] Write of size 1 at addr ffff00080608a0f0 by task kunit_try_catch/209 [ 22.381234] [ 22.382718] CPU: 2 UID: 0 PID: 209 Comm: kunit_try_catch Tainted: G B N 6.15.5-rc2 #1 PREEMPT [ 22.382765] Tainted: [B]=BAD_PAGE, [N]=TEST [ 22.382781] Hardware name: WinLink E850-96 board (DT) [ 22.382801] Call trace: [ 22.382813] show_stack+0x20/0x38 (C) [ 22.382844] dump_stack_lvl+0x8c/0xd0 [ 22.382879] print_report+0x118/0x608 [ 22.382909] kasan_report+0xdc/0x128 [ 22.382938] __asan_report_store1_noabort+0x20/0x30 [ 22.382973] krealloc_more_oob_helper+0x5c0/0x678 [ 22.383002] krealloc_large_more_oob+0x20/0x38 [ 22.383030] kunit_try_run_case+0x170/0x3f0 [ 22.383065] kunit_generic_run_threadfn_adapter+0x88/0x100 [ 22.383102] kthread+0x328/0x630 [ 22.383135] ret_from_fork+0x10/0x20 [ 22.383167] [ 22.450594] The buggy address belongs to the physical page: [ 22.456148] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x886088 [ 22.464133] head: order:2 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0 [ 22.471772] flags: 0xbfffe0000000040(head|node=0|zone=2|lastcpupid=0x1ffff) [ 22.478716] page_type: f8(unknown) [ 22.482109] raw: 0bfffe0000000040 0000000000000000 dead000000000122 0000000000000000 [ 22.489832] raw: 0000000000000000 0000000000000000 00000001f8000000 0000000000000000 [ 22.497558] head: 0bfffe0000000040 0000000000000000 dead000000000122 0000000000000000 [ 22.505370] head: 0000000000000000 0000000000000000 00000001f8000000 0000000000000000 [ 22.513184] head: 0bfffe0000000002 fffffdffe0182201 00000000ffffffff 00000000ffffffff [ 22.520995] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000004 [ 22.528801] page dumped because: kasan: bad access detected [ 22.534356] [ 22.535831] Memory state around the buggy address: [ 22.540613] ffff000806089f80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 22.547815] ffff00080608a000: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 22.555021] >ffff00080608a080: 00 00 00 00 00 00 00 00 00 00 00 00 00 03 fe fe [ 22.562220] ^ [ 22.569083] ffff00080608a100: fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe [ 22.576286] ffff00080608a180: fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe [ 22.583487] ================================================================== [ 20.279396] ================================================================== [ 20.286478] BUG: KASAN: slab-out-of-bounds in krealloc_more_oob_helper+0x5c0/0x678 [ 20.294025] Write of size 1 at addr ffff000800dec6f0 by task kunit_try_catch/205 [ 20.301404] [ 20.302888] CPU: 1 UID: 0 PID: 205 Comm: kunit_try_catch Tainted: G B N 6.15.5-rc2 #1 PREEMPT [ 20.302939] Tainted: [B]=BAD_PAGE, [N]=TEST [ 20.302953] Hardware name: WinLink E850-96 board (DT) [ 20.302972] Call trace: [ 20.302984] show_stack+0x20/0x38 (C) [ 20.303016] dump_stack_lvl+0x8c/0xd0 [ 20.303050] print_report+0x118/0x608 [ 20.303081] kasan_report+0xdc/0x128 [ 20.303106] __asan_report_store1_noabort+0x20/0x30 [ 20.303142] krealloc_more_oob_helper+0x5c0/0x678 [ 20.303169] krealloc_more_oob+0x20/0x38 [ 20.303196] kunit_try_run_case+0x170/0x3f0 [ 20.303231] kunit_generic_run_threadfn_adapter+0x88/0x100 [ 20.303269] kthread+0x328/0x630 [ 20.303301] ret_from_fork+0x10/0x20 [ 20.303335] [ 20.370239] Allocated by task 205: [ 20.373626] kasan_save_stack+0x3c/0x68 [ 20.377444] kasan_save_track+0x20/0x40 [ 20.381263] kasan_save_alloc_info+0x40/0x58 [ 20.385517] __kasan_krealloc+0x118/0x178 [ 20.389510] krealloc_noprof+0x128/0x360 [ 20.393416] krealloc_more_oob_helper+0x168/0x678 [ 20.398103] krealloc_more_oob+0x20/0x38 [ 20.402009] kunit_try_run_case+0x170/0x3f0 [ 20.406176] kunit_generic_run_threadfn_adapter+0x88/0x100 [ 20.411645] kthread+0x328/0x630 [ 20.414856] ret_from_fork+0x10/0x20 [ 20.418416] [ 20.419893] The buggy address belongs to the object at ffff000800dec600 [ 20.419893] which belongs to the cache kmalloc-256 of size 256 [ 20.432393] The buggy address is located 5 bytes to the right of [ 20.432393] allocated 235-byte region [ffff000800dec600, ffff000800dec6eb) [ 20.445325] [ 20.446804] The buggy address belongs to the physical page: [ 20.452360] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x880dec [ 20.460342] head: order:2 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0 [ 20.467982] flags: 0xbfffe0000000040(head|node=0|zone=2|lastcpupid=0x1ffff) [ 20.474926] page_type: f5(slab) [ 20.478061] raw: 0bfffe0000000040 ffff000800002b40 dead000000000122 0000000000000000 [ 20.485783] raw: 0000000000000000 0000000080200020 00000000f5000000 0000000000000000 [ 20.493509] head: 0bfffe0000000040 ffff000800002b40 dead000000000122 0000000000000000 [ 20.501320] head: 0000000000000000 0000000080200020 00000000f5000000 0000000000000000 [ 20.509133] head: 0bfffe0000000002 fffffdffe0037b01 00000000ffffffff 00000000ffffffff [ 20.516945] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000004 [ 20.524751] page dumped because: kasan: bad access detected [ 20.530306] [ 20.531782] Memory state around the buggy address: [ 20.536561] ffff000800dec580: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 20.543765] ffff000800dec600: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 20.550971] >ffff000800dec680: 00 00 00 00 00 00 00 00 00 00 00 00 00 03 fc fc [ 20.558170] ^ [ 20.565032] ffff000800dec700: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 20.572236] ffff000800dec780: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 20.579437] ==================================================================
[ 15.403593] ================================================================== [ 15.403660] BUG: KASAN: slab-out-of-bounds in krealloc_more_oob_helper+0x60c/0x678 [ 15.403709] Write of size 1 at addr fff00000c0922ceb by task kunit_try_catch/161 [ 15.404095] [ 15.404214] CPU: 0 UID: 0 PID: 161 Comm: kunit_try_catch Tainted: G B N 6.15.5-rc2 #1 PREEMPT [ 15.404294] Tainted: [B]=BAD_PAGE, [N]=TEST [ 15.404319] Hardware name: linux,dummy-virt (DT) [ 15.404370] Call trace: [ 15.404391] show_stack+0x20/0x38 (C) [ 15.404440] dump_stack_lvl+0x8c/0xd0 [ 15.404842] print_report+0x118/0x608 [ 15.404902] kasan_report+0xdc/0x128 [ 15.404964] __asan_report_store1_noabort+0x20/0x30 [ 15.405052] krealloc_more_oob_helper+0x60c/0x678 [ 15.405191] krealloc_more_oob+0x20/0x38 [ 15.405270] kunit_try_run_case+0x170/0x3f0 [ 15.405320] kunit_generic_run_threadfn_adapter+0x88/0x100 [ 15.405392] kthread+0x328/0x630 [ 15.405471] ret_from_fork+0x10/0x20 [ 15.405686] [ 15.405704] Allocated by task 161: [ 15.405740] kasan_save_stack+0x3c/0x68 [ 15.405848] kasan_save_track+0x20/0x40 [ 15.405910] kasan_save_alloc_info+0x40/0x58 [ 15.405963] __kasan_krealloc+0x118/0x178 [ 15.406003] krealloc_noprof+0x128/0x360 [ 15.406077] krealloc_more_oob_helper+0x168/0x678 [ 15.406222] krealloc_more_oob+0x20/0x38 [ 15.406255] kunit_try_run_case+0x170/0x3f0 [ 15.406293] kunit_generic_run_threadfn_adapter+0x88/0x100 [ 15.406355] kthread+0x328/0x630 [ 15.406510] ret_from_fork+0x10/0x20 [ 15.406621] [ 15.406648] The buggy address belongs to the object at fff00000c0922c00 [ 15.406648] which belongs to the cache kmalloc-256 of size 256 [ 15.406704] The buggy address is located 0 bytes to the right of [ 15.406704] allocated 235-byte region [fff00000c0922c00, fff00000c0922ceb) [ 15.407085] [ 15.407337] The buggy address belongs to the physical page: [ 15.407372] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x100922 [ 15.407569] head: order:1 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0 [ 15.407614] flags: 0xbfffe0000000040(head|node=0|zone=2|lastcpupid=0x1ffff) [ 15.407673] page_type: f5(slab) [ 15.407709] raw: 0bfffe0000000040 fff00000c0001b40 dead000000000122 0000000000000000 [ 15.408247] raw: 0000000000000000 0000000080100010 00000000f5000000 0000000000000000 [ 15.408332] head: 0bfffe0000000040 fff00000c0001b40 dead000000000122 0000000000000000 [ 15.408378] head: 0000000000000000 0000000080100010 00000000f5000000 0000000000000000 [ 15.408425] head: 0bfffe0000000001 ffffc1ffc3024881 00000000ffffffff 00000000ffffffff [ 15.408471] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000002 [ 15.408519] page dumped because: kasan: bad access detected [ 15.408549] [ 15.408567] Memory state around the buggy address: [ 15.409000] fff00000c0922b80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 15.409047] fff00000c0922c00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 15.409117] >fff00000c0922c80: 00 00 00 00 00 00 00 00 00 00 00 00 00 03 fc fc [ 15.409154] ^ [ 15.409191] fff00000c0922d00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 15.409232] fff00000c0922d80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 15.409268] ================================================================== [ 15.472868] ================================================================== [ 15.472925] BUG: KASAN: slab-out-of-bounds in krealloc_more_oob_helper+0x60c/0x678 [ 15.473006] Write of size 1 at addr fff00000c65660eb by task kunit_try_catch/165 [ 15.473056] [ 15.473087] CPU: 0 UID: 0 PID: 165 Comm: kunit_try_catch Tainted: G B N 6.15.5-rc2 #1 PREEMPT [ 15.473344] Tainted: [B]=BAD_PAGE, [N]=TEST [ 15.473403] Hardware name: linux,dummy-virt (DT) [ 15.473433] Call trace: [ 15.473499] show_stack+0x20/0x38 (C) [ 15.473650] dump_stack_lvl+0x8c/0xd0 [ 15.473698] print_report+0x118/0x608 [ 15.473787] kasan_report+0xdc/0x128 [ 15.473962] __asan_report_store1_noabort+0x20/0x30 [ 15.474014] krealloc_more_oob_helper+0x60c/0x678 [ 15.474060] krealloc_large_more_oob+0x20/0x38 [ 15.474105] kunit_try_run_case+0x170/0x3f0 [ 15.474192] kunit_generic_run_threadfn_adapter+0x88/0x100 [ 15.474294] kthread+0x328/0x630 [ 15.474487] ret_from_fork+0x10/0x20 [ 15.475226] [ 15.475253] The buggy address belongs to the physical page: [ 15.475286] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x106564 [ 15.475564] head: order:2 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0 [ 15.475609] flags: 0xbfffe0000000040(head|node=0|zone=2|lastcpupid=0x1ffff) [ 15.475895] page_type: f8(unknown) [ 15.476030] raw: 0bfffe0000000040 0000000000000000 dead000000000122 0000000000000000 [ 15.476079] raw: 0000000000000000 0000000000000000 00000001f8000000 0000000000000000 [ 15.476274] head: 0bfffe0000000040 0000000000000000 dead000000000122 0000000000000000 [ 15.476325] head: 0000000000000000 0000000000000000 00000001f8000000 0000000000000000 [ 15.476466] head: 0bfffe0000000002 ffffc1ffc3195901 00000000ffffffff 00000000ffffffff [ 15.476527] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000004 [ 15.476653] page dumped because: kasan: bad access detected [ 15.476703] [ 15.476819] Memory state around the buggy address: [ 15.476855] fff00000c6565f80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 15.476964] fff00000c6566000: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 15.477004] >fff00000c6566080: 00 00 00 00 00 00 00 00 00 00 00 00 00 03 fe fe [ 15.477041] ^ [ 15.477077] fff00000c6566100: fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe [ 15.477121] fff00000c6566180: fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe [ 15.477158] ================================================================== [ 15.478039] ================================================================== [ 15.478086] BUG: KASAN: slab-out-of-bounds in krealloc_more_oob_helper+0x5c0/0x678 [ 15.478304] Write of size 1 at addr fff00000c65660f0 by task kunit_try_catch/165 [ 15.478506] [ 15.478539] CPU: 0 UID: 0 PID: 165 Comm: kunit_try_catch Tainted: G B N 6.15.5-rc2 #1 PREEMPT [ 15.479004] Tainted: [B]=BAD_PAGE, [N]=TEST [ 15.479169] Hardware name: linux,dummy-virt (DT) [ 15.479206] Call trace: [ 15.479288] show_stack+0x20/0x38 (C) [ 15.479367] dump_stack_lvl+0x8c/0xd0 [ 15.479447] print_report+0x118/0x608 [ 15.479710] kasan_report+0xdc/0x128 [ 15.479886] __asan_report_store1_noabort+0x20/0x30 [ 15.479940] krealloc_more_oob_helper+0x5c0/0x678 [ 15.479994] krealloc_large_more_oob+0x20/0x38 [ 15.480038] kunit_try_run_case+0x170/0x3f0 [ 15.480084] kunit_generic_run_threadfn_adapter+0x88/0x100 [ 15.480135] kthread+0x328/0x630 [ 15.480248] ret_from_fork+0x10/0x20 [ 15.480325] [ 15.480345] The buggy address belongs to the physical page: [ 15.480791] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x106564 [ 15.480847] head: order:2 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0 [ 15.480892] flags: 0xbfffe0000000040(head|node=0|zone=2|lastcpupid=0x1ffff) [ 15.480942] page_type: f8(unknown) [ 15.480978] raw: 0bfffe0000000040 0000000000000000 dead000000000122 0000000000000000 [ 15.481026] raw: 0000000000000000 0000000000000000 00000001f8000000 0000000000000000 [ 15.481073] head: 0bfffe0000000040 0000000000000000 dead000000000122 0000000000000000 [ 15.481172] head: 0000000000000000 0000000000000000 00000001f8000000 0000000000000000 [ 15.481382] head: 0bfffe0000000002 ffffc1ffc3195901 00000000ffffffff 00000000ffffffff [ 15.481554] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000004 [ 15.481593] page dumped because: kasan: bad access detected [ 15.481653] [ 15.481670] Memory state around the buggy address: [ 15.481736] fff00000c6565f80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 15.481904] fff00000c6566000: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 15.481946] >fff00000c6566080: 00 00 00 00 00 00 00 00 00 00 00 00 00 03 fe fe [ 15.481988] ^ [ 15.482025] fff00000c6566100: fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe [ 15.482066] fff00000c6566180: fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe [ 15.482148] ================================================================== [ 15.410461] ================================================================== [ 15.410508] BUG: KASAN: slab-out-of-bounds in krealloc_more_oob_helper+0x5c0/0x678 [ 15.410554] Write of size 1 at addr fff00000c0922cf0 by task kunit_try_catch/161 [ 15.410601] [ 15.410643] CPU: 0 UID: 0 PID: 161 Comm: kunit_try_catch Tainted: G B N 6.15.5-rc2 #1 PREEMPT [ 15.410720] Tainted: [B]=BAD_PAGE, [N]=TEST [ 15.410745] Hardware name: linux,dummy-virt (DT) [ 15.410774] Call trace: [ 15.410794] show_stack+0x20/0x38 (C) [ 15.410839] dump_stack_lvl+0x8c/0xd0 [ 15.410885] print_report+0x118/0x608 [ 15.410927] kasan_report+0xdc/0x128 [ 15.411041] __asan_report_store1_noabort+0x20/0x30 [ 15.411792] krealloc_more_oob_helper+0x5c0/0x678 [ 15.412065] krealloc_more_oob+0x20/0x38 [ 15.412202] kunit_try_run_case+0x170/0x3f0 [ 15.412287] kunit_generic_run_threadfn_adapter+0x88/0x100 [ 15.412373] kthread+0x328/0x630 [ 15.412420] ret_from_fork+0x10/0x20 [ 15.412481] [ 15.412499] Allocated by task 161: [ 15.412526] kasan_save_stack+0x3c/0x68 [ 15.412562] kasan_save_track+0x20/0x40 [ 15.412596] kasan_save_alloc_info+0x40/0x58 [ 15.412644] __kasan_krealloc+0x118/0x178 [ 15.413094] krealloc_noprof+0x128/0x360 [ 15.413174] krealloc_more_oob_helper+0x168/0x678 [ 15.413281] krealloc_more_oob+0x20/0x38 [ 15.413327] kunit_try_run_case+0x170/0x3f0 [ 15.413417] kunit_generic_run_threadfn_adapter+0x88/0x100 [ 15.413551] kthread+0x328/0x630 [ 15.413614] ret_from_fork+0x10/0x20 [ 15.413658] [ 15.413677] The buggy address belongs to the object at fff00000c0922c00 [ 15.413677] which belongs to the cache kmalloc-256 of size 256 [ 15.413777] The buggy address is located 5 bytes to the right of [ 15.413777] allocated 235-byte region [fff00000c0922c00, fff00000c0922ceb) [ 15.413837] [ 15.413856] The buggy address belongs to the physical page: [ 15.413892] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x100922 [ 15.414113] head: order:1 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0 [ 15.414223] flags: 0xbfffe0000000040(head|node=0|zone=2|lastcpupid=0x1ffff) [ 15.414270] page_type: f5(slab) [ 15.414312] raw: 0bfffe0000000040 fff00000c0001b40 dead000000000122 0000000000000000 [ 15.414491] raw: 0000000000000000 0000000080100010 00000000f5000000 0000000000000000 [ 15.414572] head: 0bfffe0000000040 fff00000c0001b40 dead000000000122 0000000000000000 [ 15.415143] head: 0000000000000000 0000000080100010 00000000f5000000 0000000000000000 [ 15.415199] head: 0bfffe0000000001 ffffc1ffc3024881 00000000ffffffff 00000000ffffffff [ 15.415246] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000002 [ 15.415285] page dumped because: kasan: bad access detected [ 15.415315] [ 15.415333] Memory state around the buggy address: [ 15.415413] fff00000c0922b80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 15.415749] fff00000c0922c00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 15.415892] >fff00000c0922c80: 00 00 00 00 00 00 00 00 00 00 00 00 00 03 fc fc [ 15.415928] ^ [ 15.416329] fff00000c0922d00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 15.416382] fff00000c0922d80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 15.416444] ==================================================================
[ 13.597211] ================================================================== [ 13.598097] BUG: KASAN: slab-out-of-bounds in krealloc_more_oob_helper+0x821/0x930 [ 13.598747] Write of size 1 at addr ffff88810034f2eb by task kunit_try_catch/177 [ 13.599331] [ 13.599555] CPU: 0 UID: 0 PID: 177 Comm: kunit_try_catch Tainted: G B N 6.15.5-rc2 #1 PREEMPT(voluntary) [ 13.599658] Tainted: [B]=BAD_PAGE, [N]=TEST [ 13.599684] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014 [ 13.599729] Call Trace: [ 13.599770] <TASK> [ 13.599811] dump_stack_lvl+0x73/0xb0 [ 13.599896] print_report+0xd1/0x650 [ 13.599960] ? __virt_addr_valid+0x1db/0x2d0 [ 13.600009] ? krealloc_more_oob_helper+0x821/0x930 [ 13.600053] ? kasan_complete_mode_report_info+0x2a/0x200 [ 13.600131] ? krealloc_more_oob_helper+0x821/0x930 [ 13.600171] kasan_report+0x141/0x180 [ 13.600217] ? krealloc_more_oob_helper+0x821/0x930 [ 13.600267] __asan_report_store1_noabort+0x1b/0x30 [ 13.600314] krealloc_more_oob_helper+0x821/0x930 [ 13.600375] ? trace_hardirqs_on+0x37/0xe0 [ 13.600427] ? __pfx_krealloc_more_oob_helper+0x10/0x10 [ 13.600464] ? sysvec_apic_timer_interrupt+0x50/0x90 [ 13.600527] ? __pfx_krealloc_more_oob+0x10/0x10 [ 13.600575] krealloc_more_oob+0x1c/0x30 [ 13.600609] kunit_try_run_case+0x1a5/0x480 [ 13.600670] ? __pfx_kunit_try_run_case+0x10/0x10 [ 13.600729] ? _raw_spin_lock_irqsave+0xa1/0x100 [ 13.600776] ? _raw_spin_unlock_irqrestore+0x5f/0x90 [ 13.600803] ? __kthread_parkme+0x82/0x180 [ 13.600828] ? preempt_count_sub+0x50/0x80 [ 13.600856] ? __pfx_kunit_try_run_case+0x10/0x10 [ 13.600881] kunit_generic_run_threadfn_adapter+0x85/0xf0 [ 13.600906] ? __pfx_kunit_generic_run_threadfn_adapter+0x10/0x10 [ 13.600931] kthread+0x337/0x6f0 [ 13.600949] ? trace_preempt_on+0x20/0xc0 [ 13.600973] ? __pfx_kthread+0x10/0x10 [ 13.600993] ? _raw_spin_unlock_irq+0x47/0x80 [ 13.601029] ? calculate_sigpending+0x7b/0xa0 [ 13.601056] ? __pfx_kthread+0x10/0x10 [ 13.601106] ret_from_fork+0x41/0x80 [ 13.601134] ? __pfx_kthread+0x10/0x10 [ 13.601154] ret_from_fork_asm+0x1a/0x30 [ 13.601188] </TASK> [ 13.601205] [ 13.612897] Allocated by task 177: [ 13.613710] kasan_save_stack+0x45/0x70 [ 13.614124] kasan_save_track+0x18/0x40 [ 13.614486] kasan_save_alloc_info+0x3b/0x50 [ 13.614725] __kasan_krealloc+0x190/0x1f0 [ 13.615042] krealloc_noprof+0xf3/0x340 [ 13.615234] krealloc_more_oob_helper+0x1a9/0x930 [ 13.615584] krealloc_more_oob+0x1c/0x30 [ 13.615769] kunit_try_run_case+0x1a5/0x480 [ 13.616046] kunit_generic_run_threadfn_adapter+0x85/0xf0 [ 13.616268] kthread+0x337/0x6f0 [ 13.616650] ret_from_fork+0x41/0x80 [ 13.616992] ret_from_fork_asm+0x1a/0x30 [ 13.617348] [ 13.617597] The buggy address belongs to the object at ffff88810034f200 [ 13.617597] which belongs to the cache kmalloc-256 of size 256 [ 13.618479] The buggy address is located 0 bytes to the right of [ 13.618479] allocated 235-byte region [ffff88810034f200, ffff88810034f2eb) [ 13.619136] [ 13.619266] The buggy address belongs to the physical page: [ 13.619778] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x10034e [ 13.620501] head: order:1 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0 [ 13.620959] flags: 0x200000000000040(head|node=0|zone=2) [ 13.621582] page_type: f5(slab) [ 13.621941] raw: 0200000000000040 ffff888100041b40 dead000000000122 0000000000000000 [ 13.622475] raw: 0000000000000000 0000000080100010 00000000f5000000 0000000000000000 [ 13.622901] head: 0200000000000040 ffff888100041b40 dead000000000122 0000000000000000 [ 13.623401] head: 0000000000000000 0000000080100010 00000000f5000000 0000000000000000 [ 13.623900] head: 0200000000000001 ffffea000400d381 00000000ffffffff 00000000ffffffff [ 13.624474] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000002 [ 13.624889] page dumped because: kasan: bad access detected [ 13.625298] [ 13.625518] Memory state around the buggy address: [ 13.625758] ffff88810034f180: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 13.626292] ffff88810034f200: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 13.626702] >ffff88810034f280: 00 00 00 00 00 00 00 00 00 00 00 00 00 03 fc fc [ 13.627266] ^ [ 13.627649] ffff88810034f300: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 13.628111] ffff88810034f380: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 13.628515] ================================================================== [ 13.909177] ================================================================== [ 13.909563] BUG: KASAN: slab-out-of-bounds in krealloc_more_oob_helper+0x7eb/0x930 [ 13.909938] Write of size 1 at addr ffff888102b460f0 by task kunit_try_catch/181 [ 13.910941] [ 13.911235] CPU: 1 UID: 0 PID: 181 Comm: kunit_try_catch Tainted: G B N 6.15.5-rc2 #1 PREEMPT(voluntary) [ 13.911615] Tainted: [B]=BAD_PAGE, [N]=TEST [ 13.911644] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014 [ 13.911686] Call Trace: [ 13.911765] <TASK> [ 13.911826] dump_stack_lvl+0x73/0xb0 [ 13.911896] print_report+0xd1/0x650 [ 13.911946] ? __virt_addr_valid+0x1db/0x2d0 [ 13.912024] ? krealloc_more_oob_helper+0x7eb/0x930 [ 13.912069] ? kasan_addr_to_slab+0x11/0xa0 [ 13.912125] ? krealloc_more_oob_helper+0x7eb/0x930 [ 13.912171] kasan_report+0x141/0x180 [ 13.912205] ? krealloc_more_oob_helper+0x7eb/0x930 [ 13.912232] __asan_report_store1_noabort+0x1b/0x30 [ 13.912255] krealloc_more_oob_helper+0x7eb/0x930 [ 13.912274] ? __schedule+0x10cc/0x2b60 [ 13.912301] ? __pfx_krealloc_more_oob_helper+0x10/0x10 [ 13.912323] ? finish_task_switch.isra.0+0x153/0x700 [ 13.912376] ? __switch_to+0x5d9/0xf60 [ 13.912411] ? dequeue_task_fair+0x166/0x4e0 [ 13.912460] ? __schedule+0x10cc/0x2b60 [ 13.912534] ? __pfx_read_tsc+0x10/0x10 [ 13.912598] krealloc_large_more_oob+0x1c/0x30 [ 13.912647] kunit_try_run_case+0x1a5/0x480 [ 13.912696] ? __pfx_kunit_try_run_case+0x10/0x10 [ 13.912766] ? _raw_spin_lock_irqsave+0xa1/0x100 [ 13.912821] ? _raw_spin_unlock_irqrestore+0x5f/0x90 [ 13.912884] ? __kthread_parkme+0x82/0x180 [ 13.912925] ? preempt_count_sub+0x50/0x80 [ 13.912961] ? __pfx_kunit_try_run_case+0x10/0x10 [ 13.912986] kunit_generic_run_threadfn_adapter+0x85/0xf0 [ 13.913020] ? __pfx_kunit_generic_run_threadfn_adapter+0x10/0x10 [ 13.913051] kthread+0x337/0x6f0 [ 13.913077] ? trace_preempt_on+0x20/0xc0 [ 13.913111] ? __pfx_kthread+0x10/0x10 [ 13.913131] ? _raw_spin_unlock_irq+0x47/0x80 [ 13.913155] ? calculate_sigpending+0x7b/0xa0 [ 13.913178] ? __pfx_kthread+0x10/0x10 [ 13.913198] ret_from_fork+0x41/0x80 [ 13.913221] ? __pfx_kthread+0x10/0x10 [ 13.913240] ret_from_fork_asm+0x1a/0x30 [ 13.913275] </TASK> [ 13.913288] [ 13.924867] The buggy address belongs to the physical page: [ 13.925301] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x102b44 [ 13.925882] head: order:2 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0 [ 13.926480] flags: 0x200000000000040(head|node=0|zone=2) [ 13.926969] page_type: f8(unknown) [ 13.927416] raw: 0200000000000040 0000000000000000 dead000000000122 0000000000000000 [ 13.927873] raw: 0000000000000000 0000000000000000 00000001f8000000 0000000000000000 [ 13.928461] head: 0200000000000040 0000000000000000 dead000000000122 0000000000000000 [ 13.928896] head: 0000000000000000 0000000000000000 00000001f8000000 0000000000000000 [ 13.929459] head: 0200000000000002 ffffea00040ad101 00000000ffffffff 00000000ffffffff [ 13.930025] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000004 [ 13.930487] page dumped because: kasan: bad access detected [ 13.930837] [ 13.930952] Memory state around the buggy address: [ 13.931239] ffff888102b45f80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 13.932054] ffff888102b46000: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 13.932651] >ffff888102b46080: 00 00 00 00 00 00 00 00 00 00 00 00 00 03 fe fe [ 13.933099] ^ [ 13.933656] ffff888102b46100: fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe [ 13.934225] ffff888102b46180: fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe [ 13.934766] ================================================================== [ 13.882801] ================================================================== [ 13.883378] BUG: KASAN: slab-out-of-bounds in krealloc_more_oob_helper+0x821/0x930 [ 13.884071] Write of size 1 at addr ffff888102b460eb by task kunit_try_catch/181 [ 13.884708] [ 13.885289] CPU: 1 UID: 0 PID: 181 Comm: kunit_try_catch Tainted: G B N 6.15.5-rc2 #1 PREEMPT(voluntary) [ 13.885506] Tainted: [B]=BAD_PAGE, [N]=TEST [ 13.885528] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014 [ 13.885569] Call Trace: [ 13.885591] <TASK> [ 13.885618] dump_stack_lvl+0x73/0xb0 [ 13.885655] print_report+0xd1/0x650 [ 13.885682] ? __virt_addr_valid+0x1db/0x2d0 [ 13.885708] ? krealloc_more_oob_helper+0x821/0x930 [ 13.885729] ? kasan_addr_to_slab+0x11/0xa0 [ 13.885751] ? krealloc_more_oob_helper+0x821/0x930 [ 13.885772] kasan_report+0x141/0x180 [ 13.885796] ? krealloc_more_oob_helper+0x821/0x930 [ 13.885822] __asan_report_store1_noabort+0x1b/0x30 [ 13.885844] krealloc_more_oob_helper+0x821/0x930 [ 13.885864] ? __schedule+0x10cc/0x2b60 [ 13.885887] ? __pfx_krealloc_more_oob_helper+0x10/0x10 [ 13.885909] ? finish_task_switch.isra.0+0x153/0x700 [ 13.885934] ? __switch_to+0x5d9/0xf60 [ 13.885956] ? dequeue_task_fair+0x166/0x4e0 [ 13.885981] ? __schedule+0x10cc/0x2b60 [ 13.886003] ? __pfx_read_tsc+0x10/0x10 [ 13.886029] krealloc_large_more_oob+0x1c/0x30 [ 13.886050] kunit_try_run_case+0x1a5/0x480 [ 13.886102] ? __pfx_kunit_try_run_case+0x10/0x10 [ 13.886125] ? _raw_spin_lock_irqsave+0xa1/0x100 [ 13.886150] ? _raw_spin_unlock_irqrestore+0x5f/0x90 [ 13.886174] ? __kthread_parkme+0x82/0x180 [ 13.886197] ? preempt_count_sub+0x50/0x80 [ 13.886222] ? __pfx_kunit_try_run_case+0x10/0x10 [ 13.886245] kunit_generic_run_threadfn_adapter+0x85/0xf0 [ 13.886269] ? __pfx_kunit_generic_run_threadfn_adapter+0x10/0x10 [ 13.886292] kthread+0x337/0x6f0 [ 13.886310] ? trace_preempt_on+0x20/0xc0 [ 13.886353] ? __pfx_kthread+0x10/0x10 [ 13.886376] ? _raw_spin_unlock_irq+0x47/0x80 [ 13.886399] ? calculate_sigpending+0x7b/0xa0 [ 13.886422] ? __pfx_kthread+0x10/0x10 [ 13.886442] ret_from_fork+0x41/0x80 [ 13.886463] ? __pfx_kthread+0x10/0x10 [ 13.886482] ret_from_fork_asm+0x1a/0x30 [ 13.886514] </TASK> [ 13.886526] [ 13.898383] The buggy address belongs to the physical page: [ 13.898788] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x102b44 [ 13.899333] head: order:2 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0 [ 13.899637] flags: 0x200000000000040(head|node=0|zone=2) [ 13.899904] page_type: f8(unknown) [ 13.900315] raw: 0200000000000040 0000000000000000 dead000000000122 0000000000000000 [ 13.900929] raw: 0000000000000000 0000000000000000 00000001f8000000 0000000000000000 [ 13.901519] head: 0200000000000040 0000000000000000 dead000000000122 0000000000000000 [ 13.902229] head: 0000000000000000 0000000000000000 00000001f8000000 0000000000000000 [ 13.902743] head: 0200000000000002 ffffea00040ad101 00000000ffffffff 00000000ffffffff [ 13.903217] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000004 [ 13.903819] page dumped because: kasan: bad access detected [ 13.904261] [ 13.904462] Memory state around the buggy address: [ 13.904791] ffff888102b45f80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 13.905276] ffff888102b46000: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 13.905924] >ffff888102b46080: 00 00 00 00 00 00 00 00 00 00 00 00 00 03 fe fe [ 13.906373] ^ [ 13.906937] ffff888102b46100: fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe [ 13.907439] ffff888102b46180: fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe [ 13.907903] ================================================================== [ 13.630386] ================================================================== [ 13.630851] BUG: KASAN: slab-out-of-bounds in krealloc_more_oob_helper+0x7eb/0x930 [ 13.631531] Write of size 1 at addr ffff88810034f2f0 by task kunit_try_catch/177 [ 13.631900] [ 13.632149] CPU: 0 UID: 0 PID: 177 Comm: kunit_try_catch Tainted: G B N 6.15.5-rc2 #1 PREEMPT(voluntary) [ 13.632248] Tainted: [B]=BAD_PAGE, [N]=TEST [ 13.632274] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014 [ 13.632318] Call Trace: [ 13.632374] <TASK> [ 13.632416] dump_stack_lvl+0x73/0xb0 [ 13.632476] print_report+0xd1/0x650 [ 13.632526] ? __virt_addr_valid+0x1db/0x2d0 [ 13.632571] ? krealloc_more_oob_helper+0x7eb/0x930 [ 13.632611] ? kasan_complete_mode_report_info+0x2a/0x200 [ 13.632655] ? krealloc_more_oob_helper+0x7eb/0x930 [ 13.632695] kasan_report+0x141/0x180 [ 13.632739] ? krealloc_more_oob_helper+0x7eb/0x930 [ 13.632794] __asan_report_store1_noabort+0x1b/0x30 [ 13.632837] krealloc_more_oob_helper+0x7eb/0x930 [ 13.632873] ? trace_hardirqs_on+0x37/0xe0 [ 13.632922] ? __pfx_krealloc_more_oob_helper+0x10/0x10 [ 13.632961] ? sysvec_apic_timer_interrupt+0x50/0x90 [ 13.633032] ? __pfx_krealloc_more_oob+0x10/0x10 [ 13.633120] krealloc_more_oob+0x1c/0x30 [ 13.633163] kunit_try_run_case+0x1a5/0x480 [ 13.633214] ? __pfx_kunit_try_run_case+0x10/0x10 [ 13.633256] ? _raw_spin_lock_irqsave+0xa1/0x100 [ 13.633304] ? _raw_spin_unlock_irqrestore+0x5f/0x90 [ 13.633396] ? __kthread_parkme+0x82/0x180 [ 13.633447] ? preempt_count_sub+0x50/0x80 [ 13.633503] ? __pfx_kunit_try_run_case+0x10/0x10 [ 13.633542] kunit_generic_run_threadfn_adapter+0x85/0xf0 [ 13.633580] ? __pfx_kunit_generic_run_threadfn_adapter+0x10/0x10 [ 13.633616] kthread+0x337/0x6f0 [ 13.633644] ? trace_preempt_on+0x20/0xc0 [ 13.633680] ? __pfx_kthread+0x10/0x10 [ 13.633711] ? _raw_spin_unlock_irq+0x47/0x80 [ 13.633736] ? calculate_sigpending+0x7b/0xa0 [ 13.633761] ? __pfx_kthread+0x10/0x10 [ 13.633781] ret_from_fork+0x41/0x80 [ 13.633806] ? __pfx_kthread+0x10/0x10 [ 13.633829] ret_from_fork_asm+0x1a/0x30 [ 13.633864] </TASK> [ 13.633877] [ 13.647678] Allocated by task 177: [ 13.648025] kasan_save_stack+0x45/0x70 [ 13.648351] kasan_save_track+0x18/0x40 [ 13.648645] kasan_save_alloc_info+0x3b/0x50 [ 13.649045] __kasan_krealloc+0x190/0x1f0 [ 13.649287] krealloc_noprof+0xf3/0x340 [ 13.649714] krealloc_more_oob_helper+0x1a9/0x930 [ 13.649927] krealloc_more_oob+0x1c/0x30 [ 13.650117] kunit_try_run_case+0x1a5/0x480 [ 13.650534] kunit_generic_run_threadfn_adapter+0x85/0xf0 [ 13.650953] kthread+0x337/0x6f0 [ 13.651166] ret_from_fork+0x41/0x80 [ 13.651531] ret_from_fork_asm+0x1a/0x30 [ 13.651736] [ 13.651866] The buggy address belongs to the object at ffff88810034f200 [ 13.651866] which belongs to the cache kmalloc-256 of size 256 [ 13.652690] The buggy address is located 5 bytes to the right of [ 13.652690] allocated 235-byte region [ffff88810034f200, ffff88810034f2eb) [ 13.653490] [ 13.653677] The buggy address belongs to the physical page: [ 13.654005] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x10034e [ 13.654383] head: order:1 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0 [ 13.654919] flags: 0x200000000000040(head|node=0|zone=2) [ 13.655368] page_type: f5(slab) [ 13.655560] raw: 0200000000000040 ffff888100041b40 dead000000000122 0000000000000000 [ 13.655973] raw: 0000000000000000 0000000080100010 00000000f5000000 0000000000000000 [ 13.656257] head: 0200000000000040 ffff888100041b40 dead000000000122 0000000000000000 [ 13.656832] head: 0000000000000000 0000000080100010 00000000f5000000 0000000000000000 [ 13.657266] head: 0200000000000001 ffffea000400d381 00000000ffffffff 00000000ffffffff [ 13.657568] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000002 [ 13.658111] page dumped because: kasan: bad access detected [ 13.658547] [ 13.658722] Memory state around the buggy address: [ 13.659117] ffff88810034f180: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 13.659577] ffff88810034f200: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 13.659878] >ffff88810034f280: 00 00 00 00 00 00 00 00 00 00 00 00 00 03 fc fc [ 13.660523] ^ [ 13.660787] ffff88810034f300: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 13.661290] ffff88810034f380: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 13.661819] ==================================================================
[ 24.839494] ================================================================== [ 24.850565] BUG: KASAN: slab-out-of-bounds in krealloc_more_oob_helper+0x821/0x930 [ 24.858138] Write of size 1 at addr ffff888102a320eb by task kunit_try_catch/203 [ 24.865532] [ 24.867033] CPU: 1 UID: 0 PID: 203 Comm: kunit_try_catch Tainted: G B N 6.15.5-rc2 #1 PREEMPT(voluntary) [ 24.867041] Tainted: [B]=BAD_PAGE, [N]=TEST [ 24.867044] Hardware name: Supermicro SYS-5019S-ML/X11SSH-F, BIOS 2.7 12/07/2021 [ 24.867047] Call Trace: [ 24.867049] <TASK> [ 24.867051] dump_stack_lvl+0x73/0xb0 [ 24.867055] print_report+0xd1/0x650 [ 24.867059] ? __virt_addr_valid+0x1db/0x2d0 [ 24.867063] ? krealloc_more_oob_helper+0x821/0x930 [ 24.867067] ? kasan_addr_to_slab+0x11/0xa0 [ 24.867071] ? krealloc_more_oob_helper+0x821/0x930 [ 24.867074] kasan_report+0x141/0x180 [ 24.867079] ? krealloc_more_oob_helper+0x821/0x930 [ 24.867083] __asan_report_store1_noabort+0x1b/0x30 [ 24.867087] krealloc_more_oob_helper+0x821/0x930 [ 24.867091] ? __schedule+0x10cc/0x2b60 [ 24.867095] ? __pfx_krealloc_more_oob_helper+0x10/0x10 [ 24.867099] ? finish_task_switch.isra.0+0x153/0x700 [ 24.867103] ? __switch_to+0x5d9/0xf60 [ 24.867107] ? dequeue_task_fair+0x166/0x4e0 [ 24.867111] ? __schedule+0x10cc/0x2b60 [ 24.867116] krealloc_large_more_oob+0x1c/0x30 [ 24.867120] kunit_try_run_case+0x1a2/0x480 [ 24.867124] ? __pfx_kunit_try_run_case+0x10/0x10 [ 24.867129] ? _raw_spin_lock_irqsave+0xa1/0x100 [ 24.867133] ? _raw_spin_unlock_irqrestore+0x5f/0x90 [ 24.867138] ? __kthread_parkme+0x82/0x180 [ 24.867142] ? preempt_count_sub+0x50/0x80 [ 24.867146] ? __pfx_kunit_try_run_case+0x10/0x10 [ 24.867151] kunit_generic_run_threadfn_adapter+0x82/0xf0 [ 24.867155] ? __pfx_kunit_generic_run_threadfn_adapter+0x10/0x10 [ 24.867160] kthread+0x334/0x6f0 [ 24.867163] ? trace_preempt_on+0x20/0xc0 [ 24.867167] ? __pfx_kthread+0x10/0x10 [ 24.867170] ? _raw_spin_unlock_irq+0x47/0x80 [ 24.867174] ? calculate_sigpending+0x7b/0xa0 [ 24.867178] ? __pfx_kthread+0x10/0x10 [ 24.867181] ret_from_fork+0x3e/0x80 [ 24.867185] ? __pfx_kthread+0x10/0x10 [ 24.867188] ret_from_fork_asm+0x1a/0x30 [ 24.867194] </TASK> [ 24.867195] [ 25.049194] The buggy address belongs to the physical page: [ 25.054767] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x102a30 [ 25.062766] head: order:2 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0 [ 25.070419] flags: 0x200000000000040(head|node=0|zone=2) [ 25.075731] page_type: f8(unknown) [ 25.079141] raw: 0200000000000040 0000000000000000 dead000000000122 0000000000000000 [ 25.086887] raw: 0000000000000000 0000000000000000 00000001f8000000 0000000000000000 [ 25.094662] head: 0200000000000040 0000000000000000 dead000000000122 0000000000000000 [ 25.102496] head: 0000000000000000 0000000000000000 00000001f8000000 0000000000000000 [ 25.110323] head: 0200000000000002 ffffea00040a8c01 00000000ffffffff 00000000ffffffff [ 25.118157] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000004 [ 25.125991] page dumped because: kasan: bad access detected [ 25.131561] [ 25.133061] Memory state around the buggy address: [ 25.137857] ffff888102a31f80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 25.145083] ffff888102a32000: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 25.152301] >ffff888102a32080: 00 00 00 00 00 00 00 00 00 00 00 00 00 03 fe fe [ 25.159521] ^ [ 25.166133] ffff888102a32100: fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe [ 25.173355] ffff888102a32180: fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe [ 25.180581] ================================================================== [ 21.861861] ================================================================== [ 21.872660] BUG: KASAN: slab-out-of-bounds in krealloc_more_oob_helper+0x821/0x930 [ 21.880233] Write of size 1 at addr ffff8881041b9eeb by task kunit_try_catch/199 [ 21.887627] [ 21.889127] CPU: 0 UID: 0 PID: 199 Comm: kunit_try_catch Tainted: G B N 6.15.5-rc2 #1 PREEMPT(voluntary) [ 21.889135] Tainted: [B]=BAD_PAGE, [N]=TEST [ 21.889138] Hardware name: Supermicro SYS-5019S-ML/X11SSH-F, BIOS 2.7 12/07/2021 [ 21.889141] Call Trace: [ 21.889143] <TASK> [ 21.889144] dump_stack_lvl+0x73/0xb0 [ 21.889148] print_report+0xd1/0x650 [ 21.889153] ? __virt_addr_valid+0x1db/0x2d0 [ 21.889157] ? krealloc_more_oob_helper+0x821/0x930 [ 21.889161] ? kasan_complete_mode_report_info+0x2a/0x200 [ 21.889165] ? krealloc_more_oob_helper+0x821/0x930 [ 21.889169] kasan_report+0x141/0x180 [ 21.889173] ? krealloc_more_oob_helper+0x821/0x930 [ 21.889178] __asan_report_store1_noabort+0x1b/0x30 [ 21.889182] krealloc_more_oob_helper+0x821/0x930 [ 21.889185] ? __schedule+0x10cc/0x2b60 [ 21.889189] ? __pfx_krealloc_more_oob_helper+0x10/0x10 [ 21.889193] ? finish_task_switch.isra.0+0x153/0x700 [ 21.889198] ? __switch_to+0x5d9/0xf60 [ 21.889202] ? dequeue_task_fair+0x166/0x4e0 [ 21.889207] ? __schedule+0x10cc/0x2b60 [ 21.889212] krealloc_more_oob+0x1c/0x30 [ 21.889215] kunit_try_run_case+0x1a2/0x480 [ 21.889220] ? __pfx_kunit_try_run_case+0x10/0x10 [ 21.889224] ? _raw_spin_lock_irqsave+0xa1/0x100 [ 21.889229] ? _raw_spin_unlock_irqrestore+0x5f/0x90 [ 21.889233] ? __kthread_parkme+0x82/0x180 [ 21.889237] ? preempt_count_sub+0x50/0x80 [ 21.889242] ? __pfx_kunit_try_run_case+0x10/0x10 [ 21.889247] kunit_generic_run_threadfn_adapter+0x82/0xf0 [ 21.889251] ? __pfx_kunit_generic_run_threadfn_adapter+0x10/0x10 [ 21.889255] kthread+0x334/0x6f0 [ 21.889258] ? trace_preempt_on+0x20/0xc0 [ 21.889263] ? __pfx_kthread+0x10/0x10 [ 21.889266] ? _raw_spin_unlock_irq+0x47/0x80 [ 21.889270] ? calculate_sigpending+0x7b/0xa0 [ 21.889274] ? __pfx_kthread+0x10/0x10 [ 21.889277] ret_from_fork+0x3e/0x80 [ 21.889281] ? __pfx_kthread+0x10/0x10 [ 21.889284] ret_from_fork_asm+0x1a/0x30 [ 21.889290] </TASK> [ 21.889291] [ 22.072007] Allocated by task 199: [ 22.075415] kasan_save_stack+0x45/0x70 [ 22.079252] kasan_save_track+0x18/0x40 [ 22.083094] kasan_save_alloc_info+0x3b/0x50 [ 22.087366] __kasan_krealloc+0x190/0x1f0 [ 22.091377] krealloc_noprof+0xf3/0x340 [ 22.095217] krealloc_more_oob_helper+0x1a9/0x930 [ 22.099929] krealloc_more_oob+0x1c/0x30 [ 22.103942] kunit_try_run_case+0x1a2/0x480 [ 22.108157] kunit_generic_run_threadfn_adapter+0x82/0xf0 [ 22.113555] kthread+0x334/0x6f0 [ 22.116790] ret_from_fork+0x3e/0x80 [ 22.120369] ret_from_fork_asm+0x1a/0x30 [ 22.124294] [ 22.125793] The buggy address belongs to the object at ffff8881041b9e00 [ 22.125793] which belongs to the cache kmalloc-256 of size 256 [ 22.138299] The buggy address is located 0 bytes to the right of [ 22.138299] allocated 235-byte region [ffff8881041b9e00, ffff8881041b9eeb) [ 22.151249] [ 22.152748] The buggy address belongs to the physical page: [ 22.158321] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x1041b8 [ 22.166327] head: order:1 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0 [ 22.173983] flags: 0x200000000000040(head|node=0|zone=2) [ 22.179303] page_type: f5(slab) [ 22.182449] raw: 0200000000000040 ffff888100042b40 dead000000000122 0000000000000000 [ 22.190198] raw: 0000000000000000 0000000080100010 00000000f5000000 0000000000000000 [ 22.197978] head: 0200000000000040 ffff888100042b40 dead000000000122 0000000000000000 [ 22.205803] head: 0000000000000000 0000000080100010 00000000f5000000 0000000000000000 [ 22.213632] head: 0200000000000001 ffffea0004106e01 00000000ffffffff 00000000ffffffff [ 22.221465] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000002 [ 22.229290] page dumped because: kasan: bad access detected [ 22.234862] [ 22.236362] Memory state around the buggy address: [ 22.241155] ffff8881041b9d80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 22.248374] ffff8881041b9e00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 22.255595] >ffff8881041b9e80: 00 00 00 00 00 00 00 00 00 00 00 00 00 03 fc fc [ 22.262821] ^ [ 22.269436] ffff8881041b9f00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 22.276664] ffff8881041b9f80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 22.283881] ================================================================== [ 22.291197] ================================================================== [ 22.298425] BUG: KASAN: slab-out-of-bounds in krealloc_more_oob_helper+0x7eb/0x930 [ 22.305999] Write of size 1 at addr ffff8881041b9ef0 by task kunit_try_catch/199 [ 22.313393] [ 22.314914] CPU: 0 UID: 0 PID: 199 Comm: kunit_try_catch Tainted: G B N 6.15.5-rc2 #1 PREEMPT(voluntary) [ 22.314922] Tainted: [B]=BAD_PAGE, [N]=TEST [ 22.314925] Hardware name: Supermicro SYS-5019S-ML/X11SSH-F, BIOS 2.7 12/07/2021 [ 22.314928] Call Trace: [ 22.314930] <TASK> [ 22.314931] dump_stack_lvl+0x73/0xb0 [ 22.314948] print_report+0xd1/0x650 [ 22.314952] ? __virt_addr_valid+0x1db/0x2d0 [ 22.314968] ? krealloc_more_oob_helper+0x7eb/0x930 [ 22.314972] ? kasan_complete_mode_report_info+0x2a/0x200 [ 22.314976] ? krealloc_more_oob_helper+0x7eb/0x930 [ 22.314980] kasan_report+0x141/0x180 [ 22.314984] ? krealloc_more_oob_helper+0x7eb/0x930 [ 22.314989] __asan_report_store1_noabort+0x1b/0x30 [ 22.314993] krealloc_more_oob_helper+0x7eb/0x930 [ 22.314996] ? __schedule+0x10cc/0x2b60 [ 22.315001] ? __pfx_krealloc_more_oob_helper+0x10/0x10 [ 22.315005] ? finish_task_switch.isra.0+0x153/0x700 [ 22.315009] ? __switch_to+0x5d9/0xf60 [ 22.315013] ? dequeue_task_fair+0x166/0x4e0 [ 22.315017] ? __schedule+0x10cc/0x2b60 [ 22.315022] krealloc_more_oob+0x1c/0x30 [ 22.315025] kunit_try_run_case+0x1a2/0x480 [ 22.315030] ? __pfx_kunit_try_run_case+0x10/0x10 [ 22.315034] ? _raw_spin_lock_irqsave+0xa1/0x100 [ 22.315039] ? _raw_spin_unlock_irqrestore+0x5f/0x90 [ 22.315043] ? __kthread_parkme+0x82/0x180 [ 22.315048] ? preempt_count_sub+0x50/0x80 [ 22.315052] ? __pfx_kunit_try_run_case+0x10/0x10 [ 22.315057] kunit_generic_run_threadfn_adapter+0x82/0xf0 [ 22.315061] ? __pfx_kunit_generic_run_threadfn_adapter+0x10/0x10 [ 22.315066] kthread+0x334/0x6f0 [ 22.315068] ? trace_preempt_on+0x20/0xc0 [ 22.315073] ? __pfx_kthread+0x10/0x10 [ 22.315076] ? _raw_spin_unlock_irq+0x47/0x80 [ 22.315080] ? calculate_sigpending+0x7b/0xa0 [ 22.315084] ? __pfx_kthread+0x10/0x10 [ 22.315087] ret_from_fork+0x3e/0x80 [ 22.315091] ? __pfx_kthread+0x10/0x10 [ 22.315094] ret_from_fork_asm+0x1a/0x30 [ 22.315100] </TASK> [ 22.315101] [ 22.497931] Allocated by task 199: [ 22.501380] kasan_save_stack+0x45/0x70 [ 22.505217] kasan_save_track+0x18/0x40 [ 22.509057] kasan_save_alloc_info+0x3b/0x50 [ 22.513332] __kasan_krealloc+0x190/0x1f0 [ 22.517343] krealloc_noprof+0xf3/0x340 [ 22.521183] krealloc_more_oob_helper+0x1a9/0x930 [ 22.525889] krealloc_more_oob+0x1c/0x30 [ 22.529839] kunit_try_run_case+0x1a2/0x480 [ 22.534027] kunit_generic_run_threadfn_adapter+0x82/0xf0 [ 22.539425] kthread+0x334/0x6f0 [ 22.542659] ret_from_fork+0x3e/0x80 [ 22.546238] ret_from_fork_asm+0x1a/0x30 [ 22.550164] [ 22.551662] The buggy address belongs to the object at ffff8881041b9e00 [ 22.551662] which belongs to the cache kmalloc-256 of size 256 [ 22.564170] The buggy address is located 5 bytes to the right of [ 22.564170] allocated 235-byte region [ffff8881041b9e00, ffff8881041b9eeb) [ 22.577117] [ 22.578615] The buggy address belongs to the physical page: [ 22.584190] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x1041b8 [ 22.592196] head: order:1 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0 [ 22.599848] flags: 0x200000000000040(head|node=0|zone=2) [ 22.605164] page_type: f5(slab) [ 22.608308] raw: 0200000000000040 ffff888100042b40 dead000000000122 0000000000000000 [ 22.616049] raw: 0000000000000000 0000000080100010 00000000f5000000 0000000000000000 [ 22.623796] head: 0200000000000040 ffff888100042b40 dead000000000122 0000000000000000 [ 22.631622] head: 0000000000000000 0000000080100010 00000000f5000000 0000000000000000 [ 22.639449] head: 0200000000000001 ffffea0004106e01 00000000ffffffff 00000000ffffffff [ 22.647275] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000002 [ 22.655108] page dumped because: kasan: bad access detected [ 22.660680] [ 22.662180] Memory state around the buggy address: [ 22.666983] ffff8881041b9d80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 22.674202] ffff8881041b9e00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 22.681420] >ffff8881041b9e80: 00 00 00 00 00 00 00 00 00 00 00 00 00 03 fc fc [ 22.688640] ^ [ 22.695513] ffff8881041b9f00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 22.702733] ffff8881041b9f80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 22.709961] ================================================================== [ 25.187825] ================================================================== [ 25.195055] BUG: KASAN: slab-out-of-bounds in krealloc_more_oob_helper+0x7eb/0x930 [ 25.202630] Write of size 1 at addr ffff888102a320f0 by task kunit_try_catch/203 [ 25.210030] [ 25.211530] CPU: 1 UID: 0 PID: 203 Comm: kunit_try_catch Tainted: G B N 6.15.5-rc2 #1 PREEMPT(voluntary) [ 25.211538] Tainted: [B]=BAD_PAGE, [N]=TEST [ 25.211540] Hardware name: Supermicro SYS-5019S-ML/X11SSH-F, BIOS 2.7 12/07/2021 [ 25.211543] Call Trace: [ 25.211545] <TASK> [ 25.211546] dump_stack_lvl+0x73/0xb0 [ 25.211550] print_report+0xd1/0x650 [ 25.211554] ? __virt_addr_valid+0x1db/0x2d0 [ 25.211558] ? krealloc_more_oob_helper+0x7eb/0x930 [ 25.211562] ? kasan_addr_to_slab+0x11/0xa0 [ 25.211566] ? krealloc_more_oob_helper+0x7eb/0x930 [ 25.211570] kasan_report+0x141/0x180 [ 25.211574] ? krealloc_more_oob_helper+0x7eb/0x930 [ 25.211579] __asan_report_store1_noabort+0x1b/0x30 [ 25.211583] krealloc_more_oob_helper+0x7eb/0x930 [ 25.211586] ? __schedule+0x10cc/0x2b60 [ 25.211590] ? __pfx_krealloc_more_oob_helper+0x10/0x10 [ 25.211594] ? finish_task_switch.isra.0+0x153/0x700 [ 25.211599] ? __switch_to+0x5d9/0xf60 [ 25.211602] ? dequeue_task_fair+0x166/0x4e0 [ 25.211607] ? __schedule+0x10cc/0x2b60 [ 25.211612] krealloc_large_more_oob+0x1c/0x30 [ 25.211615] kunit_try_run_case+0x1a2/0x480 [ 25.211620] ? __pfx_kunit_try_run_case+0x10/0x10 [ 25.211624] ? _raw_spin_lock_irqsave+0xa1/0x100 [ 25.211629] ? _raw_spin_unlock_irqrestore+0x5f/0x90 [ 25.211633] ? __kthread_parkme+0x82/0x180 [ 25.211638] ? preempt_count_sub+0x50/0x80 [ 25.211642] ? __pfx_kunit_try_run_case+0x10/0x10 [ 25.211647] kunit_generic_run_threadfn_adapter+0x82/0xf0 [ 25.211651] ? __pfx_kunit_generic_run_threadfn_adapter+0x10/0x10 [ 25.211656] kthread+0x334/0x6f0 [ 25.211659] ? trace_preempt_on+0x20/0xc0 [ 25.211663] ? __pfx_kthread+0x10/0x10 [ 25.211666] ? _raw_spin_unlock_irq+0x47/0x80 [ 25.211670] ? calculate_sigpending+0x7b/0xa0 [ 25.211674] ? __pfx_kthread+0x10/0x10 [ 25.211677] ret_from_fork+0x3e/0x80 [ 25.211681] ? __pfx_kthread+0x10/0x10 [ 25.211685] ret_from_fork_asm+0x1a/0x30 [ 25.211690] </TASK> [ 25.211692] [ 25.393720] The buggy address belongs to the physical page: [ 25.399291] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x102a30 [ 25.407292] head: order:2 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0 [ 25.414961] flags: 0x200000000000040(head|node=0|zone=2) [ 25.420274] page_type: f8(unknown) [ 25.423681] raw: 0200000000000040 0000000000000000 dead000000000122 0000000000000000 [ 25.431420] raw: 0000000000000000 0000000000000000 00000001f8000000 0000000000000000 [ 25.439168] head: 0200000000000040 0000000000000000 dead000000000122 0000000000000000 [ 25.447003] head: 0000000000000000 0000000000000000 00000001f8000000 0000000000000000 [ 25.454839] head: 0200000000000002 ffffea00040a8c01 00000000ffffffff 00000000ffffffff [ 25.462671] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000004 [ 25.470496] page dumped because: kasan: bad access detected [ 25.476069] [ 25.477569] Memory state around the buggy address: [ 25.482362] ffff888102a31f80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 25.489582] ffff888102a32000: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 25.496800] >ffff888102a32080: 00 00 00 00 00 00 00 00 00 00 00 00 00 03 fe fe [ 25.504019] ^ [ 25.510913] ffff888102a32100: fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe [ 25.518190] ffff888102a32180: fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe [ 25.525407] ==================================================================