Date
Feb. 5, 2025, 2:09 p.m.
| Environment | |
|---|---|
| qemu-arm64 |
[ 179.268735] ================================================================== [ 179.271206] BUG: KASAN: slab-out-of-bounds in kmalloc_oob_in_memset+0xd4/0x1e8 [ 179.273107] Write of size 128 at addr ffff0000c6017900 by task kunit_try_catch/148 [ 179.274691] [ 179.275431] CPU: 0 PID: 148 Comm: kunit_try_catch Tainted: G B N 6.6.76-rc1 #1 [ 179.277391] Hardware name: linux,dummy-virt (DT) [ 179.279236] Call trace: [ 179.280024] dump_backtrace+0x9c/0x128 [ 179.281430] show_stack+0x20/0x38 [ 179.282693] dump_stack_lvl+0x60/0xb0 [ 179.283878] print_report+0xf8/0x5d8 [ 179.285055] kasan_report+0xc8/0x118 [ 179.286449] kasan_check_range+0xe8/0x190 [ 179.287937] __asan_memset+0x34/0x78 [ 179.288780] kmalloc_oob_in_memset+0xd4/0x1e8 [ 179.290717] kunit_try_run_case+0xf8/0x260 [ 179.291815] kunit_generic_run_threadfn_adapter+0x38/0x60 [ 179.293442] kthread+0x18c/0x1a8 [ 179.294246] ret_from_fork+0x10/0x20 [ 179.295498] [ 179.296117] Allocated by task 148: [ 179.297368] kasan_save_stack+0x3c/0x68 [ 179.299133] kasan_set_track+0x2c/0x40 [ 179.300446] kasan_save_alloc_info+0x24/0x38 [ 179.302001] __kasan_kmalloc+0xd4/0xd8 [ 179.303439] kmalloc_trace+0x68/0x130 [ 179.304858] kmalloc_oob_in_memset+0xa0/0x1e8 [ 179.306450] kunit_try_run_case+0xf8/0x260 [ 179.307833] kunit_generic_run_threadfn_adapter+0x38/0x60 [ 179.309433] kthread+0x18c/0x1a8 [ 179.310271] ret_from_fork+0x10/0x20 [ 179.311888] [ 179.312423] The buggy address belongs to the object at ffff0000c6017900 [ 179.312423] which belongs to the cache kmalloc-128 of size 128 [ 179.315427] The buggy address is located 0 bytes inside of [ 179.315427] allocated 120-byte region [ffff0000c6017900, ffff0000c6017978) [ 179.317961] [ 179.318437] The buggy address belongs to the physical page: [ 179.320261] page:00000000d97f6f57 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x106017 [ 179.323086] flags: 0xbfffc0000000800(slab|node=0|zone=2|lastcpupid=0xffff) [ 179.324733] page_type: 0xffffffff() [ 179.325905] raw: 0bfffc0000000800 ffff0000c00018c0 dead000000000122 0000000000000000 [ 179.327561] raw: 0000000000000000 0000000080100010 00000001ffffffff 0000000000000000 [ 179.329419] page dumped because: kasan: bad access detected [ 179.330913] [ 179.331607] Memory state around the buggy address: [ 179.333460] ffff0000c6017800: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 fc fc [ 179.335427] ffff0000c6017880: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 179.337102] >ffff0000c6017900: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 fc [ 179.339025] ^ [ 179.340603] ffff0000c6017980: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 179.342282] ffff0000c6017a00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 179.344076] ==================================================================