lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite for Android: free password hash cracker in your pocket
[<prev] [next>] [day] [month] [year] [list]
Message-ID: <20140706025606.GB7349@localhost>
Date:	Sun, 6 Jul 2014 10:56:06 +0800
From:	Fengguang Wu <fengguang.wu@...el.com>
To:	Eric Dumazet <edumazet@...gle.com>
Cc:	Jet Chen <jet.chen@...el.com>, Su Tao <tao.su@...el.com>,
	Yuanhan Liu <yuanhan.liu@...el.com>, LKP <lkp@...org>,
	linux-kernel@...r.kernel.org, netdev@...r.kernel.org
Subject: [ipv6] BUG kmalloc-512 (Not tainted): Object padding overwritten

Hi Eric,

This is an old bug and not very reproducible, however is still showing
up in current upstream and linux-next.

git://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git master

commit efe4208f47f907b86f528788da711e8ab9dea44d
Author:     Eric Dumazet <edumazet@...gle.com>
AuthorDate: Thu Oct 3 15:42:29 2013 -0700
Commit:     David S. Miller <davem@...emloft.net>
CommitDate: Wed Oct 9 00:01:25 2013 -0400

    ipv6: make lookups simpler and faster
    
    TCP listener refactoring, part 4 :
    
    To speed up inet lookups, we moved IPv4 addresses from inet to struct
    sock_common
    
    Now is time to do the same for IPv6, because it permits us to have fast
    lookups for all kind of sockets, including upcoming SYN_RECV.
    
    Getting IPv6 addresses in TCP lookups currently requires two extra cache
    lines, plus a dereference (and memory stall).
    
    inet6_sk(sk) does the dereference of inet_sk(__sk)->pinet6
    
    This patch is way bigger than its IPv4 counter part, because for IPv4,
    we could add aliases (inet_daddr, inet_rcv_saddr), while on IPv6,
    it's not doable easily.
    
    inet6_sk(sk)->daddr becomes sk->sk_v6_daddr
    inet6_sk(sk)->rcv_saddr becomes sk->sk_v6_rcv_saddr
    
    And timewait socket also have tw->tw_v6_daddr & tw->tw_v6_rcv_saddr
    at the same offset.
    
    We get rid of INET6_TW_MATCH() as INET6_MATCH() is now the generic
    macro.
    
    Signed-off-by: Eric Dumazet <edumazet@...gle.com>
    Signed-off-by: David S. Miller <davem@...emloft.net>

+-----------------------------------------------------+------------+------------+---------------+
|                                                     | 05dbc7b594 | efe4208f47 | next-20140701 |
+-----------------------------------------------------+------------+------------+---------------+
| boot_successes                                      | 738        | 238        | 38            |
| boot_failures                                       | 0          | 8          | 3             |
| BUG_kmalloc(Not_tainted):Object_padding_overwritten | 0          | 6          | 3             |
| INFO:.First_byte_instead_of                         | 0          | 7          | 3             |
| INFO:Allocated_in_sk_prot_alloc_age=cpu=pid=        | 0          | 7          | 3             |
| INFO:Freed_in__sk_free_age=cpu=pid=                 | 0          | 1          |               |
| INFO:Slab_objects=used=fp=flags=                    | 0          | 7          | 3             |
| INFO:Object_offset=fp=                              | 0          | 7          | 3             |
| BUG_kmalloc(Tainted:G_B):Object_padding_overwritten | 0          | 3          | 2             |
| INFO:Slab_objects=used=fp=x(null)flags=             | 0          | 4          | 1             |
| BUG_kmalloc(Tainted:G_B):Poison_overwritten         | 0          | 1          | 1             |
| BUG_kmalloc(Not_tainted):Padding_overwritten        | 0          | 1          |               |
| BUG:unable_to_handle_kernel_paging_request          | 0          | 1          |               |
| Oops                                                | 0          | 1          |               |
| EIP_is_at_pppol2tp_release                          | 0          | 1          |               |
| backtrace:do_group_exit                             | 0          | 1          |               |
| backtrace:SyS_exit_group                            | 0          | 1          |               |
| BUG_kmalloc(Not_tainted):Poison_overwritten         | 0          | 1          |               |
| INFO:Freed_in_load_elf_binary_age=cpu=pid=          | 0          | 0          | 1             |
+-----------------------------------------------------+------------+------------+---------------+

[    8.987192] init: Failed to create pty - disabling logging for job
[    8.991691] init: Failed to create pty - disabling logging for job
[   19.686410] =============================================================================
[   19.687007] BUG kmalloc-512 (Not tainted): Object padding overwritten
[   19.687007] -----------------------------------------------------------------------------
[   19.687007] 
[   19.687007] INFO: 0xd34113a8-0xd34113ab. First byte 0x1 instead of 0x5a
[   19.687007] INFO: Allocated in sk_prot_alloc.isra.39+0x53/0xd0 age=606 cpu=0 pid=293
[   19.687007] INFO: Slab 0xd2793200 objects=14 used=3 fp=0xd3410af0 flags=0x40004080
[   19.687007] INFO: Object 0xd3411180 @offset=4480 fp=0xd3410f50
[   19.687007] 
[   19.687007] Bytes b4 d3411170: 00 00 00 00 00 00 00 00 5a 5a 5a 5a 5a 5a 5a 5a  ........ZZZZZZZZ
[   19.687007] Object d3411180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................

git bisect start v3.13 v3.12 --
git bisect  bad 3bad8bb5cd3048a67df43ac6b1e2f191f19d9ff0  # 08:18     11-      1  Merge branch 'for-next' of git://git.samba.org/sfrench/cifs-2.6
git bisect  bad 049ffa8ab33a63b3bff672d1a0ee6a35ad253fe8  # 09:26      1-      1  Merge branch 'drm-next' of git://people.freedesktop.org/~airlied/linux
git bisect good 7e238a2ecd117e16b154e1b0ed77906596600ff5  # 10:21    246+     11  Merge tag 'hwmon-for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/groeck/linux-staging
git bisect good a30124539b2641c5b3551193af7d21a6fc61ba98  # 20:35    246+     10  Merge branch 'for_linus' of git://git.kernel.org/pub/scm/linux/kernel/git/jack/linux-fs
git bisect  bad 42a2d923cc349583ebf6fdd52a7d35e1c2f7e6bd  # 22:11      0-      2  Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/net-next
git bisect good 39222c82f738190a4f09be89510a8336a73b67c8  # 22:44    246+     14  Merge tag 'upstream-3.13-rc1' of git://git.infradead.org/linux-ubi
git bisect good 9bc9ccd7db1c9f043f75380b5a5b94912046a60e  # 22:59    246+      3  Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/viro/vfs
git bisect good 5cbb3d216e2041700231bcfc383ee5f8b7fc8b74  # 23:28    246+     11  Merge branch 'akpm' (patches from Andrew Morton)
git bisect  bad 7f8cbb23f598a07f9de7ca66ab86d772f08876b3  # 23:54     25-      2  net: stmmac: remove unnecessary pci_set_drvdata()
git bisect good d41200ad5fc6c283c8c375f52e4f8699c0eeec61  # 00:07    246+     34  rtlwifi: rtl8188ee: Convert driver to use new rtl_phy_scan_operation_backup() routine
git bisect good e1af5e445ef8582e8f690fadcd63797db1e62663  # 00:15    246+      0  cgroup: netprio: remove unnecessary task_netprioidx
git bisect  bad 5cda73b68ebf7e08586d61e6777e64e12df23f07  # 00:41     17-      1  Merge branch 'for-davem' of git://git.kernel.org/pub/scm/linux/kernel/git/linville/wireless-next
git bisect  bad da33edccebcc36d387423dcdb557094fbda55994  # 00:46      0-      1  Merge branch 'net-next' of git://git.kernel.org/pub/scm/linux/kernel/git/pablo/nftables
git bisect  bad 29b67c39dc6e7ec4fdf78c620675de761971cd28  # 00:50      0-      1  Merge tag 'batman-adv-for-davem' of git://git.open-mesh.org/linux-merge
git bisect  bad 18c68d5960c8dfeb2db113f4b871bab259cfd565  # 00:55      0-      1  batman-adv: reorder batadv_iv_flags
git bisect  bad 414254e342a0d58144de40c3da777521ebaeeb07  # 01:02      0-      3  batman-adv: tvlv - gateway download/upload bandwidth container
git bisect  bad f69b923a758f598fd6bb69e57564b59506f4f1fc  # 01:42      1-      4  udp: fix a typo in __udp4_lib_mcast_demux_lookup
git bisect good 53af53ae83fe960ceb9ef74cac7915e9088f4266  # 02:14    246+      0  Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/net
git bisect good 05dbc7b59481ca891bbcfe6799a562d48159fbf7  # 02:28    246+      0  tcp/dccp: remove twchain
git bisect  bad efe4208f47f907b86f528788da711e8ab9dea44d  # 02:36      0-      2  ipv6: make lookups simpler and faster
# first bad commit: [efe4208f47f907b86f528788da711e8ab9dea44d] ipv6: make lookups simpler and faster
git bisect good 05dbc7b59481ca891bbcfe6799a562d48159fbf7  # 02:42    738+      0  tcp/dccp: remove twchain
git bisect  bad bbb74586d1d776b6c61ef04a2d669f2e47703ccd  # 02:44      0-      3  Add linux-next specific files for 20140701
git bisect  bad 77c4cf17ae867ba93233b3832bda3de7adaae326  # 03:51     19-      5  Merge tag 'md/3.16-fixes' of git://neil.brown.name/md
git bisect  bad bb62c798798659624c53e3727bbc18cf47eb7ae8  # 03:57      0-      1  Add linux-next specific files for 20140704


This script may reproduce the error.

-----------------------------------------------------------------------------
#!/bin/bash

kernel=$1

kvm=(
	qemu-system-x86_64 -cpu kvm64 -enable-kvm 
	-kernel $kernel
	-smp 2
	-m 256M
	-net nic,vlan=0,macaddr=00:00:00:00:00:00,model=virtio
	-net user,vlan=0
	-net nic,vlan=1,model=e1000
	-net user,vlan=1
	-boot order=nc
	-no-reboot
	-watchdog i6300esb
	-serial stdio
	-display none
	-monitor null
)

append=(
	debug
	sched_debug
	apic=debug
	ignore_loglevel
	sysrq_always_enabled
	panic=10
	prompt_ramdisk=0
	earlyprintk=ttyS0,115200
	console=ttyS0,115200
	console=tty0
	vga=normal
	root=/dev/ram0
	rw
)

"${kvm[@]}" --append "${append[*]}"
-----------------------------------------------------------------------------

Here are the list of oops messages in each dmesg file:

dmesg-quantal-ivb41-115:20140706023546:i386-randconfig-x0-07021302::

[    8.462349] init: Failed to create pty - disabling logging for job
Kernel tests: Boot OK!
[   18.819897] =============================================================================
[   18.820006] BUG kmalloc-512 (Not tainted): Object padding overwritten
[   18.820006] -----------------------------------------------------------------------------
[   18.820006] 
[   18.820006] INFO: 0xc0aae688-0xc0aae68b. First byte 0x1 instead of 0x5a
[   18.820006] INFO: Allocated in sk_prot_alloc.isra.39+0x53/0xd0 age=247 cpu=0 pid=293
[   18.820006] INFO: Freed in __sk_free+0xf5/0x100 age=479 cpu=0 pid=290
[   18.820006] INFO: Slab 0xd25405c0 objects=14 used=6 fp=0xc0aaf5e0 flags=0x4080
[   18.820006] INFO: Object 0xc0aae460 @offset=1120 fp=0xc0aaf180
[   18.820006] 
[   18.820006] Bytes b4 c0aae450: 00 00 00 00 00 00 00 00 5a 5a 5a 5a 5a 5a 5a 5a  ........ZZZZZZZZ
[   18.820006] Object c0aae460: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   18.820006] Object c0aae470: 18 00 10 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   18.820006] Object c0aae480: 60 c2 d4 c1 e0 20 d4 c1 00 00 00 00 00 00 00 00  `.... ..........
[   18.820006] Object c0aae490: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   18.820006] Object c0aae4a0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   18.820006] Object c0aae4b0: ff ff ff ff 00 00 00 00 00 00 00 00 bc e4 aa c0  ................
[   18.820006] Object c0aae4c0: bc e4 aa c0 c4 e4 aa c0 c4 e4 aa c0 00 00 00 00  ................
[   18.820006] Object c0aae4d0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   18.820006] Object c0aae4e0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   18.820006] Object c0aae4f0: 00 80 02 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   18.820006] Object c0aae500: 00 00 00 00 01 01 00 00 00 00 00 00 00 00 00 00  ................
[   18.820006] Object c0aae510: 00 00 00 00 00 00 00 00 00 80 02 00 1c e5 aa c0  ................
[   18.820006] Object c0aae520: 1c e5 aa c0 00 00 00 00 00 01 01 00 00 00 00 00  ................
[   18.820006] Object c0aae530: d0 00 00 00 ff ff ff ff ff ff ff ff 00 00 00 00  ................
[   18.820006] Object c0aae540: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   18.820006] Object c0aae550: 00 00 00 00 00 00 00 00 01 00 00 00 00 00 00 00  ................
[   18.820006] Object c0aae560: 60 e5 aa c0 60 e5 aa c0 00 00 00 00 60 c2 d4 c1  `...`.......`...
[   18.820006] Object c0aae570: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   18.820006] Object c0aae580: 00 00 00 00 00 00 00 00 ff ff ff 7f ff ff ff 7f  ................
[   18.820006] Object c0aae590: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   18.820006] Object c0aae5a0: 80 1e df c1 00 00 00 00 00 00 00 00 ff ff ff ff  ................
[   18.820006] Object c0aae5b0: 00 36 65 c4 ff ff ff ff 00 00 00 00 00 00 00 00  .6e.............
[   18.820006] Object c0aae5c0: 00 00 00 00 00 00 00 00 00 00 00 00 ff ff ff ff  ................
[   18.820006] Object c0aae5d0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   18.820006] Object c0aae5e0: 90 99 7a c1 60 9a 7a c1 d0 99 7a c1 20 99 7a c1  ..z.`.z...z. .z.
[   18.820006] Object c0aae5f0: b0 3c 8f c1 50 47 8f c1 00 00 00 00 00 00 00 00  .<..PG..........
[   18.820006] Object c0aae600: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   18.820006] Object c0aae610: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   18.820006] Object c0aae620: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   18.820006] Object c0aae630: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   18.820006] Object c0aae640: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   18.820006] Object c0aae650: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   18.820006] Redzone c0aae660: cc cc cc cc                                      ....
[   18.820006] Padding c0aae688: 01 00 00 00 5a 5a 5a 5a                          ....ZZZZ
[   18.820006] FIX kmalloc-512: Restoring 0xc0aae688-0xc0aae68b=0x5a
[   18.820006] 

dmesg-quantal-ivb41-119:20140706023802:i386-randconfig-x0-07021302::

[    8.833260] init: Failed to create pty - disabling logging for job
Kernel tests: Boot OK!
[   19.175288] =============================================================================
[   19.176005] BUG kmalloc-512 (Not tainted): Object padding overwritten
[   19.176005] -----------------------------------------------------------------------------
[   19.176005] 
[   19.176005] INFO: 0xd3411e98-0xd3411e9b. First byte 0x1 instead of 0x5a
[   19.176005] INFO: Allocated in sk_prot_alloc.isra.39+0x53/0xd0 age=223 cpu=0 pid=293
[   19.176005] INFO: Slab 0xd2793200 objects=14 used=13 fp=0xd3410000 flags=0x40004080
[   19.176005] INFO: Object 0xd3411c70 @offset=7280 fp=0xd3411a40
[   19.176005] 
[   19.176005] Bytes b4 d3411c60: 00 00 00 00 00 00 00 00 5a 5a 5a 5a 5a 5a 5a 5a  ........ZZZZZZZZ
[   19.176005] Object d3411c70: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   19.176005] Object d3411c80: 18 00 10 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   19.176005] Object d3411c90: 60 c2 d4 c1 e0 20 d4 c1 00 00 00 00 00 00 00 00  `.... ..........
[   19.176005] Object d3411ca0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   19.176005] Object d3411cb0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   19.176005] Object d3411cc0: ff ff ff ff 00 00 00 00 00 00 00 00 cc 1c 41 d3  ..............A.
[   19.176005] Object d3411cd0: cc 1c 41 d3 d4 1c 41 d3 d4 1c 41 d3 00 00 00 00  ..A...A...A.....
[   19.176005] Object d3411ce0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   19.176005] Object d3411cf0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   19.176005] Object d3411d00: 00 80 02 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   19.176005] Object d3411d10: 00 00 00 00 01 01 00 00 00 00 00 00 00 00 00 00  ................
[   19.176005] Object d3411d20: 00 00 00 00 00 00 00 00 00 80 02 00 2c 1d 41 d3  ............,.A.
[   19.176005] Object d3411d30: 2c 1d 41 d3 00 00 00 00 00 01 01 00 00 00 00 00  ,.A.............
[   19.176005] Object d3411d40: d0 00 00 00 ff ff ff ff ff ff ff ff 00 00 00 00  ................
[   19.176005] Object d3411d50: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   19.176005] Object d3411d60: 00 00 00 00 00 00 00 00 01 00 00 00 00 00 00 00  ................
[   19.176005] Object d3411d70: 70 1d 41 d3 70 1d 41 d3 00 00 00 00 60 c2 d4 c1  p.A.p.A.....`...
[   19.176005] Object d3411d80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   19.176005] Object d3411d90: 00 00 00 00 00 00 00 00 ff ff ff 7f ff ff ff 7f  ................
[   19.176005] Object d3411da0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   19.176005] Object d3411db0: 80 1e df c1 00 00 00 00 00 00 00 00 ff ff ff ff  ................
[   19.176005] Object d3411dc0: 00 36 65 c4 ff ff ff ff 00 00 00 00 00 00 00 00  .6e.............
[   19.176005] Object d3411dd0: 00 00 00 00 00 00 00 00 00 00 00 00 ff ff ff ff  ................
[   19.176005] Object d3411de0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   19.176005] Object d3411df0: 90 99 7a c1 60 9a 7a c1 d0 99 7a c1 20 99 7a c1  ..z.`.z...z. .z.
[   19.176005] Object d3411e00: b0 3c 8f c1 50 47 8f c1 00 00 00 00 00 00 00 00  .<..PG..........
[   19.176005] Object d3411e10: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   19.176005] Object d3411e20: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   19.176005] Object d3411e30: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   19.176005] Object d3411e40: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   19.176005] Object d3411e50: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   19.176005] Object d3411e60: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   19.176005] Redzone d3411e70: cc cc cc cc                                      ....
[   19.176005] Padding d3411e98: 01 00 00 00 5a 5a 5a 5a                          ....ZZZZ
[   19.176005] FIX kmalloc-512: Restoring 0xd3411e98-0xd3411e9b=0x5a
[   19.176005] 

dmesg-quantal-ivb41-14:20140706023641:i386-randconfig-x0-07021302::

[    8.316415] init: Failed to create pty - disabling logging for job
Kernel tests: Boot OK!
[   19.335829] =============================================================================
[   19.336007] BUG kmalloc-512 (Not tainted): Object padding overwritten
[   19.336007] -----------------------------------------------------------------------------
[   19.336007] 
[   19.336007] INFO: 0xd3be7a38-0xd3be7a3b. First byte 0x1 instead of 0x5a
[   19.336007] INFO: Allocated in sk_prot_alloc.isra.39+0x53/0xd0 age=1211 cpu=0 pid=290
[   19.336007] INFO: Slab 0xd27a2cc0 objects=14 used=9 fp=0xd3be6460 flags=0x40004080
[   19.336007] INFO: Object 0xd3be7810 @offset=6160 fp=0xd3be75e0
[   19.336007] 
[   19.336007] Bytes b4 d3be7800: 00 00 00 00 00 00 00 00 5a 5a 5a 5a 5a 5a 5a 5a  ........ZZZZZZZZ
[   19.336007] Object d3be7810: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   19.336007] Object d3be7820: 18 00 10 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   19.336007] Object d3be7830: 60 c2 d4 c1 e0 20 d4 c1 00 00 00 00 00 00 00 00  `.... ..........
[   19.336007] Object d3be7840: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   19.336007] Object d3be7850: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   19.336007] Object d3be7860: ff ff ff ff 00 00 00 00 00 00 00 00 6c 78 be d3  ............lx..
[   19.336007] Object d3be7870: 6c 78 be d3 74 78 be d3 74 78 be d3 00 00 00 00  lx..tx..tx......
[   19.336007] Object d3be7880: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   19.336007] Object d3be7890: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   19.336007] Object d3be78a0: 00 80 02 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   19.336007] Object d3be78b0: 00 00 00 00 01 01 00 00 00 00 00 00 00 00 00 00  ................
[   19.336007] Object d3be78c0: 00 00 00 00 00 00 00 00 00 80 02 00 cc 78 be d3  .............x..
[   19.336007] Object d3be78d0: cc 78 be d3 00 00 00 00 00 01 01 00 00 00 00 00  .x..............
[   19.336007] Object d3be78e0: d0 00 00 00 ff ff ff ff ff ff ff ff 00 00 00 00  ................
[   19.336007] Object d3be78f0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   19.336007] Object d3be7900: 00 00 00 00 00 00 00 00 01 00 00 00 00 00 00 00  ................
[   19.336007] Object d3be7910: 10 79 be d3 10 79 be d3 00 00 00 00 60 c2 d4 c1  .y...y......`...
[   19.336007] Object d3be7920: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   19.336007] Object d3be7930: 00 00 00 00 00 00 00 00 ff ff ff 7f ff ff ff 7f  ................
[   19.336007] Object d3be7940: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   19.336007] Object d3be7950: 80 1e df c1 00 00 00 00 00 00 00 00 ff ff ff ff  ................
[   19.336007] Object d3be7960: 00 36 65 c4 ff ff ff ff 00 00 00 00 00 00 00 00  .6e.............
[   19.336007] Object d3be7970: 00 00 00 00 00 00 00 00 00 00 00 00 ff ff ff ff  ................
[   19.336007] Object d3be7980: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   19.336007] Object d3be7990: 90 99 7a c1 60 9a 7a c1 d0 99 7a c1 20 99 7a c1  ..z.`.z...z. .z.
[   19.336007] Object d3be79a0: b0 3c 8f c1 50 47 8f c1 00 00 00 00 00 00 00 00  .<..PG..........
[   19.336007] Object d3be79b0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   19.336007] Object d3be79c0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   19.336007] Object d3be79d0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   19.336007] Object d3be79e0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   19.336007] Object d3be79f0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   19.336007] Object d3be7a00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   19.336007] Redzone d3be7a10: cc cc cc cc                                      ....
[   19.336007] Padding d3be7a38: 01 00 00 00 5a 5a 5a 5a                          ....ZZZZ
[   19.336007] FIX kmalloc-512: Restoring 0xd3be7a38-0xd3be7a3b=0x5a
[   19.336007] 
[   19.672316] =============================================================================
[   19.673007] BUG kmalloc-512 (Tainted: G    B       ): Object padding overwritten
[   19.673007] -----------------------------------------------------------------------------
[   19.673007] 
[   19.673007] INFO: 0xd2ce2228-0xd2ce222b. First byte 0x1 instead of 0x5a
[   19.673007] INFO: Allocated in sk_prot_alloc.isra.39+0x53/0xd0 age=1201 cpu=0 pid=294
[   19.673007] INFO: Slab 0xd2784c40 objects=14 used=14 fp=0x  (null) flags=0x40004080
[   19.673007] INFO: Object 0xd2ce2000 @offset=0 fp=0xd2ce2230
[   19.673007] 
[   19.673007] Object d2ce2000: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   19.673007] Object d2ce2010: 18 00 10 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   19.673007] Object d2ce2020: 60 c2 d4 c1 e0 20 d4 c1 00 00 00 00 00 00 00 00  `.... ..........
[   19.673007] Object d2ce2030: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   19.673007] Object d2ce2040: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   19.673007] Object d2ce2050: ff ff ff ff 00 00 00 00 00 00 00 00 5c 20 ce d2  ............\ ..
[   19.673007] Object d2ce2060: 5c 20 ce d2 64 20 ce d2 64 20 ce d2 00 00 00 00  \ ..d ..d ......
[   19.673007] Object d2ce2070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   19.673007] Object d2ce2080: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   19.673007] Object d2ce2090: 00 80 02 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   19.673007] Object d2ce20a0: 00 00 00 00 01 01 00 00 00 00 00 00 00 00 00 00  ................
[   19.673007] Object d2ce20b0: 00 00 00 00 00 00 00 00 00 80 02 00 bc 20 ce d2  ............. ..
[   19.673007] Object d2ce20c0: bc 20 ce d2 00 00 00 00 00 01 01 00 00 00 00 00  . ..............
[   19.673007] Object d2ce20d0: d0 00 00 00 ff ff ff ff ff ff ff ff 00 00 00 00  ................
[   19.673007] Object d2ce20e0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   19.673007] Object d2ce20f0: 00 00 00 00 00 00 00 00 01 00 00 00 00 00 00 00  ................
[   19.673007] Object d2ce2100: 00 21 ce d2 00 21 ce d2 00 00 00 00 60 c2 d4 c1  .!...!......`...
[   19.673007] Object d2ce2110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   19.673007] Object d2ce2120: 00 00 00 00 00 00 00 00 ff ff ff 7f ff ff ff 7f  ................
[   19.673007] Object d2ce2130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   19.673007] Object d2ce2140: 80 1e df c1 00 00 00 00 00 00 00 00 ff ff ff ff  ................
[   19.673007] Object d2ce2150: 00 36 65 c4 ff ff ff ff 00 00 00 00 00 00 00 00  .6e.............
[   19.673007] Object d2ce2160: 00 00 00 00 00 00 00 00 00 00 00 00 ff ff ff ff  ................
[   19.673007] Object d2ce2170: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   19.673007] Object d2ce2180: 90 99 7a c1 60 9a 7a c1 d0 99 7a c1 20 99 7a c1  ..z.`.z...z. .z.
[   19.673007] Object d2ce2190: b0 3c 8f c1 50 47 8f c1 00 00 00 00 00 00 00 00  .<..PG..........
[   19.673007] Object d2ce21a0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   19.673007] Object d2ce21b0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   19.673007] Object d2ce21c0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   19.673007] Object d2ce21d0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   19.673007] Object d2ce21e0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   19.673007] Object d2ce21f0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   19.673007] Redzone d2ce2200: cc cc cc cc                                      ....
[   19.673007] Padding d2ce2228: 01 00 00 00 5a 5a 5a 5a                          ....ZZZZ
[   19.673007] FIX kmalloc-512: Restoring 0xd2ce2228-0xd2ce222b=0x5a
[   19.673007] 

dmesg-quantal-ivb41-24:20140706023545:i386-randconfig-x0-07021302::

[    8.739767] init: Failed to create pty - disabling logging for job
Kernel tests: Boot OK!
[   18.517408] =============================================================================
[   18.518008] BUG kmalloc-512 (Not tainted): Object padding overwritten
[   18.518008] -----------------------------------------------------------------------------
[   18.518008] 
[   18.518008] INFO: 0xd3bc6688-0xd3bc668b. First byte 0x1 instead of 0x5a
[   18.518008] INFO: Allocated in sk_prot_alloc.isra.39+0x53/0xd0 age=199 cpu=0 pid=290
[   18.518008] INFO: Slab 0xd27a28c0 objects=14 used=10 fp=0xd3bc7a40 flags=0x40004080
[   18.518008] INFO: Object 0xd3bc6460 @offset=1120 fp=0xd3bc6690
[   18.518008] 
[   18.518008] Bytes b4 d3bc6450: 22 01 00 00 75 b4 fb ff 5a 5a 5a 5a 5a 5a 5a 5a  "...u...ZZZZZZZZ
[   18.518008] Object d3bc6460: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   18.518008] Object d3bc6470: 18 00 10 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   18.518008] Object d3bc6480: 60 c2 d4 c1 e0 20 d4 c1 00 00 00 00 00 00 00 00  `.... ..........
[   18.518008] Object d3bc6490: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   18.518008] Object d3bc64a0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   18.518008] Object d3bc64b0: ff ff ff ff 00 00 00 00 00 00 00 00 bc 64 bc d3  .............d..
[   18.518008] Object d3bc64c0: bc 64 bc d3 c4 64 bc d3 c4 64 bc d3 00 00 00 00  .d...d...d......
[   18.518008] Object d3bc64d0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   18.518008] Object d3bc64e0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   18.518008] Object d3bc64f0: 00 80 02 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   18.518008] Object d3bc6500: 00 00 00 00 01 01 00 00 00 00 00 00 00 00 00 00  ................
[   18.518008] Object d3bc6510: 00 00 00 00 00 00 00 00 00 80 02 00 1c 65 bc d3  .............e..
[   18.518008] Object d3bc6520: 1c 65 bc d3 00 00 00 00 00 01 01 00 00 00 00 00  .e..............
[   18.518008] Object d3bc6530: d0 00 00 00 ff ff ff ff ff ff ff ff 00 00 00 00  ................
[   18.518008] Object d3bc6540: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   18.518008] Object d3bc6550: 00 00 00 00 00 00 00 00 01 00 00 00 00 00 00 00  ................
[   18.518008] Object d3bc6560: 60 65 bc d3 60 65 bc d3 00 00 00 00 60 c2 d4 c1  `e..`e......`...
[   18.518008] Object d3bc6570: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   18.518008] Object d3bc6580: 00 00 00 00 00 00 00 00 ff ff ff 7f ff ff ff 7f  ................
[   18.518008] Object d3bc6590: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   18.518008] Object d3bc65a0: 80 1e df c1 00 00 00 00 00 00 00 00 ff ff ff ff  ................
[   18.518008] Object d3bc65b0: 00 36 65 c4 ff ff ff ff 00 00 00 00 00 00 00 00  .6e.............
[   18.518008] Object d3bc65c0: 00 00 00 00 00 00 00 00 00 00 00 00 ff ff ff ff  ................
[   18.518008] Object d3bc65d0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   18.518008] Object d3bc65e0: 90 99 7a c1 60 9a 7a c1 d0 99 7a c1 20 99 7a c1  ..z.`.z...z. .z.
[   18.518008] Object d3bc65f0: b0 3c 8f c1 50 47 8f c1 00 00 00 00 00 00 00 00  .<..PG..........
[   18.518008] Object d3bc6600: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   18.518008] Object d3bc6610: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   18.518008] Object d3bc6620: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   18.518008] Object d3bc6630: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   18.518008] Object d3bc6640: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   18.518008] Object d3bc6650: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   18.518008] Redzone d3bc6660: cc cc cc cc                                      ....
[   18.518008] Padding d3bc6688: 01 00 00 00 5a 5a 5a 5a                          ....ZZZZ
[   18.518008] FIX kmalloc-512: Restoring 0xd3bc6688-0xd3bc668b=0x5a
[   18.518008] 
[   18.884038] =============================================================================
[   18.885018] BUG kmalloc-512 (Tainted: G    B       ): Poison overwritten
[   18.885018] -----------------------------------------------------------------------------
[   18.885018] 
[   18.885018] INFO: 0xd3bc6690-0xd3bc6691. First byte 0x0 instead of 0x6b
[   18.885018] INFO: Slab 0xd27a28c0 objects=14 used=14 fp=0x  (null) flags=0x40004080
[   18.885018] INFO: Object 0xd3bc6690 @offset=1680 fp=0xd3bc68c0
[   18.885018] 
[   18.885018] Bytes b4 d3bc6680: 00 00 00 00 00 00 00 00 5a 5a 5a 5a 5a 5a 5a 5a  ........ZZZZZZZZ
[   18.885018] Object d3bc6690: 00 09 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b  ..kkkkkkkkkkkkkk

dmesg-quantal-ivb41-70:20140706023710:i386-randconfig-x0-07021302::

[    8.687986] init: Failed to create pty - disabling logging for job
Kernel tests: Boot OK!
[   18.498055] =============================================================================
[   18.499006] BUG kmalloc-512 (Not tainted): Padding overwritten. 0xd3be5ea2-0xd3be5ea4
[   18.499006] -----------------------------------------------------------------------------
[   18.499006] 
[   18.499006] INFO: Slab 0xd27a2c80 objects=14 used=14 fp=0x  (null) flags=0x40004080
[   18.499006] Padding d3be5d45: ff ff ff ff ff ff ff 00 00 00 00 00 00 00 00 00  ................
[   18.499006] Padding d3be5d55: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   18.499006] Padding d3be5d65: 00 00 00 01 00 00 00 00 00 00 00 70 5d be d3 70  ...........p]..p

dmesg-quantal-ivb42-108:20140706023649:i386-randconfig-x0-07021302::

[    8.615532] init: Failed to create pty - disabling logging for job
Kernel tests: Boot OK!
[   18.961903] =============================================================================
[   18.962006] BUG kmalloc-512 (Not tainted): Poison overwritten
[   18.962006] -----------------------------------------------------------------------------
[   18.962006] 
[   18.962006] INFO: 0xd30f6462-0xd30f6464. First byte 0xff instead of 0x6b
[   18.962006] INFO: Slab 0xd278cec0 objects=14 used=14 fp=0x  (null) flags=0x40004080
[   18.962006] INFO: Object 0xd30f6460 @offset=1120 fp=0xd30f6690
[   18.962006] 
[   18.962006] Bytes b4 d30f6450: 00 00 00 00 00 00 00 00 5a 5a 5a 5a 5a 5a 5a 5a  ........ZZZZZZZZ
[   18.962006] Object d30f6460: 6b 6b ff ff 6f 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b  kk..okkkkkkkkkkk

dmesg-quantal-ivb42-23:20140706023624:i386-randconfig-x0-07021302::

[    8.987192] init: Failed to create pty - disabling logging for job
[    8.991691] init: Failed to create pty - disabling logging for job
[   19.686410] =============================================================================
[   19.687007] BUG kmalloc-512 (Not tainted): Object padding overwritten
[   19.687007] -----------------------------------------------------------------------------
[   19.687007] 
[   19.687007] INFO: 0xd34113a8-0xd34113ab. First byte 0x1 instead of 0x5a
[   19.687007] INFO: Allocated in sk_prot_alloc.isra.39+0x53/0xd0 age=606 cpu=0 pid=293
[   19.687007] INFO: Slab 0xd2793200 objects=14 used=3 fp=0xd3410af0 flags=0x40004080
[   19.687007] INFO: Object 0xd3411180 @offset=4480 fp=0xd3410f50
[   19.687007] 
[   19.687007] Bytes b4 d3411170: 00 00 00 00 00 00 00 00 5a 5a 5a 5a 5a 5a 5a 5a  ........ZZZZZZZZ
[   19.687007] Object d3411180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   19.687007] Object d3411190: 18 00 10 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   19.687007] Object d34111a0: 60 c2 d4 c1 e0 20 d4 c1 00 00 00 00 00 00 00 00  `.... ..........
[   19.687007] Object d34111b0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   19.687007] Object d34111c0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   19.687007] Object d34111d0: ff ff ff ff 00 00 00 00 00 00 00 00 dc 11 41 d3  ..............A.
[   19.687007] Object d34111e0: dc 11 41 d3 e4 11 41 d3 e4 11 41 d3 00 00 00 00  ..A...A...A.....
[   19.687007] Object d34111f0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   19.687007] Object d3411200: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   19.687007] Object d3411210: 00 80 02 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   19.687007] Object d3411220: 00 00 00 00 01 01 00 00 00 00 00 00 00 00 00 00  ................
[   19.687007] Object d3411230: 00 00 00 00 00 00 00 00 00 80 02 00 3c 12 41 d3  ............<.A.
[   19.687007] Object d3411240: 3c 12 41 d3 00 00 00 00 00 01 01 00 00 00 00 00  <.A.............
[   19.687007] Object d3411250: d0 00 00 00 ff ff ff ff ff ff ff ff 00 00 00 00  ................
[   19.687007] Object d3411260: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   19.687007] Object d3411270: 00 00 00 00 00 00 00 00 01 00 00 00 00 00 00 00  ................
[   19.687007] Object d3411280: 80 12 41 d3 80 12 41 d3 00 00 00 00 60 c2 d4 c1  ..A...A.....`...
[   19.687007] Object d3411290: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   19.687007] Object d34112a0: 00 00 00 00 00 00 00 00 ff ff ff 7f ff ff ff 7f  ................
[   19.687007] Object d34112b0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   19.687007] Object d34112c0: 80 1e df c1 00 00 00 00 00 00 00 00 ff ff ff ff  ................
[   19.687007] Object d34112d0: 00 36 65 c4 ff ff ff ff 00 00 00 00 00 00 00 00  .6e.............
[   19.687007] Object d34112e0: 00 00 00 00 00 00 00 00 00 00 00 00 ff ff ff ff  ................
[   19.687007] Object d34112f0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   19.687007] Object d3411300: 90 99 7a c1 60 9a 7a c1 d0 99 7a c1 20 99 7a c1  ..z.`.z...z. .z.
[   19.687007] Object d3411310: b0 3c 8f c1 50 47 8f c1 00 00 00 00 00 00 00 00  .<..PG..........
[   19.687007] Object d3411320: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   19.687007] Object d3411330: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   19.687007] Object d3411340: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   19.687007] Object d3411350: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   19.687007] Object d3411360: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   19.687007] Object d3411370: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   19.687007] Redzone d3411380: cc cc cc cc                                      ....
[   19.687007] Padding d34113a8: 01 00 00 00 5a 5a 5a 5a                          ....ZZZZ
[   19.687007] FIX kmalloc-512: Restoring 0xd34113a8-0xd34113ab=0x5a
[   19.687007] 

dmesg-quantal-ivb42-93:20140706023624:i386-randconfig-x0-07021302::

[    8.801875] init: Failed to create pty - disabling logging for job
Kernel tests: Boot OK!
[   18.797552] =============================================================================
[   18.798006] BUG kmalloc-512 (Not tainted): Object padding overwritten
[   18.798006] -----------------------------------------------------------------------------
[   18.798006] 
[   18.798006] INFO: 0xd3be3c68-0xd3be3c6b. First byte 0x1 instead of 0x5a
[   18.798006] INFO: Allocated in sk_prot_alloc.isra.39+0x53/0xd0 age=196 cpu=0 pid=290
[   18.798006] INFO: Slab 0xd27a2c40 objects=14 used=11 fp=0xd3be2230 flags=0x40004080
[   18.798006] INFO: Object 0xd3be3a40 @offset=6720 fp=0xd3be3810
[   18.798006] 
[   18.798006] Bytes b4 d3be3a30: 00 00 00 00 00 00 00 00 5a 5a 5a 5a 5a 5a 5a 5a  ........ZZZZZZZZ
[   18.798006] Object d3be3a40: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   18.798006] Object d3be3a50: 18 00 10 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   18.798006] Object d3be3a60: 60 c2 d4 c1 e0 20 d4 c1 00 00 00 00 00 00 00 00  `.... ..........
[   18.798006] Object d3be3a70: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   18.798006] Object d3be3a80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   18.798006] Object d3be3a90: ff ff ff ff 00 00 00 00 00 00 00 00 9c 3a be d3  .............:..
[   18.798006] Object d3be3aa0: 9c 3a be d3 a4 3a be d3 a4 3a be d3 00 00 00 00  .:...:...:......
[   18.798006] Object d3be3ab0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   18.798006] Object d3be3ac0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   18.798006] Object d3be3ad0: 00 80 02 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   18.798006] Object d3be3ae0: 00 00 00 00 01 01 00 00 00 00 00 00 00 00 00 00  ................
[   18.798006] Object d3be3af0: 00 00 00 00 00 00 00 00 00 80 02 00 fc 3a be d3  .............:..
[   18.798006] Object d3be3b00: fc 3a be d3 00 00 00 00 00 01 01 00 00 00 00 00  .:..............
[   18.798006] Object d3be3b10: d0 00 00 00 ff ff ff ff ff ff ff ff 00 00 00 00  ................
[   18.798006] Object d3be3b20: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   18.798006] Object d3be3b30: 00 00 00 00 00 00 00 00 01 00 00 00 00 00 00 00  ................
[   18.798006] Object d3be3b40: 40 3b be d3 40 3b be d3 00 00 00 00 60 c2 d4 c1  @;..@;......`...
[   18.798006] Object d3be3b50: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   18.798006] Object d3be3b60: 00 00 00 00 00 00 00 00 ff ff ff 7f ff ff ff 7f  ................
[   18.798006] Object d3be3b70: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   18.798006] Object d3be3b80: 80 1e df c1 00 00 00 00 00 00 00 00 ff ff ff ff  ................
[   18.798006] Object d3be3b90: 00 36 65 c4 ff ff ff ff 00 00 00 00 00 00 00 00  .6e.............
[   18.798006] Object d3be3ba0: 00 00 00 00 00 00 00 00 00 00 00 00 ff ff ff ff  ................
[   18.798006] Object d3be3bb0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   18.798006] Object d3be3bc0: 90 99 7a c1 60 9a 7a c1 d0 99 7a c1 20 99 7a c1  ..z.`.z...z. .z.
[   18.798006] Object d3be3bd0: b0 3c 8f c1 50 47 8f c1 00 00 00 00 00 00 00 00  .<..PG..........
[   18.798006] Object d3be3be0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   18.798006] Object d3be3bf0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   18.798006] Object d3be3c00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   18.798006] Object d3be3c10: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   18.798006] Object d3be3c20: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   18.798006] Object d3be3c30: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   18.798006] Redzone d3be3c40: cc cc cc cc                                      ....
[   18.798006] Padding d3be3c68: 01 00 00 00 5a 5a 5a 5a                          ....ZZZZ
[   18.798006] FIX kmalloc-512: Restoring 0xd3be3c68-0xd3be3c6b=0x5a
[   18.798006] 
[   19.144950] =============================================================================
[   19.145005] BUG kmalloc-512 (Tainted: G    B       ): Object padding overwritten
[   19.145005] -----------------------------------------------------------------------------
[   19.145005] 
[   19.145005] INFO: 0xd3b77c68-0xd3b77c6b. First byte 0x1 instead of 0x5a
[   19.145005] INFO: Allocated in sk_prot_alloc.isra.39+0x53/0xd0 age=178 cpu=0 pid=293
[   19.145005] INFO: Slab 0xd27a1ec0 objects=14 used=11 fp=0xd3b76230 flags=0x40004080
[   19.145005] INFO: Object 0xd3b77a40 @offset=6720 fp=0xd3b77810
[   19.145005] 
[   19.145005] Bytes b4 d3b77a30: 00 00 00 00 00 00 00 00 5a 5a 5a 5a 5a 5a 5a 5a  ........ZZZZZZZZ
[   19.145005] Object d3b77a40: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   19.145005] Object d3b77a50: 18 00 10 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   19.145005] Object d3b77a60: 60 c2 d4 c1 e0 20 d4 c1 00 00 00 00 00 00 00 00  `.... ..........
[   19.145005] Object d3b77a70: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   19.145005] Object d3b77a80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   19.145005] Object d3b77a90: ff ff ff ff 00 00 00 00 00 00 00 00 9c 7a b7 d3  .............z..
[   19.145005] Object d3b77aa0: 9c 7a b7 d3 a4 7a b7 d3 a4 7a b7 d3 00 00 00 00  .z...z...z......
[   19.145005] Object d3b77ab0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   19.145005] Object d3b77ac0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   19.145005] Object d3b77ad0: 00 80 02 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   19.145005] Object d3b77ae0: 00 00 00 00 01 01 00 00 00 00 00 00 00 00 00 00  ................
[   19.145005] Object d3b77af0: 00 00 00 00 00 00 00 00 00 80 02 00 fc 7a b7 d3  .............z..
[   19.145005] Object d3b77b00: fc 7a b7 d3 00 00 00 00 00 01 01 00 00 00 00 00  .z..............
[   19.145005] Object d3b77b10: d0 00 00 00 ff ff ff ff ff ff ff ff 00 00 00 00  ................
[   19.145005] Object d3b77b20: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   19.145005] Object d3b77b30: 00 00 00 00 00 00 00 00 01 00 00 00 00 00 00 00  ................
[   19.145005] Object d3b77b40: 40 7b b7 d3 40 7b b7 d3 00 00 00 00 60 c2 d4 c1  @{..@.......`...
[   19.145005] Object d3b77b50: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   19.145005] Object d3b77b60: 00 00 00 00 00 00 00 00 ff ff ff 7f ff ff ff 7f  ................
[   19.145005] Object d3b77b70: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   19.145005] Object d3b77b80: 80 1e df c1 00 00 00 00 00 00 00 00 ff ff ff ff  ................
[   19.145005] Object d3b77b90: 00 36 65 c4 ff ff ff ff 00 00 00 00 00 00 00 00  .6e.............
[   19.145005] Object d3b77ba0: 00 00 00 00 00 00 00 00 00 00 00 00 ff ff ff ff  ................
[   19.145005] Object d3b77bb0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   19.145005] Object d3b77bc0: 90 99 7a c1 60 9a 7a c1 d0 99 7a c1 20 99 7a c1  ..z.`.z...z. .z.
[   19.145005] Object d3b77bd0: b0 3c 8f c1 50 47 8f c1 00 00 00 00 00 00 00 00  .<..PG..........
[   19.145005] Object d3b77be0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   19.145005] Object d3b77bf0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   19.145005] Object d3b77c00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   19.145005] Object d3b77c10: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   19.145005] Object d3b77c20: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   19.145005] Object d3b77c30: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   19.145005] Redzone d3b77c40: cc cc cc cc                                      ....
[   19.145005] Padding d3b77c68: 01 00 00 00 5a 5a 5a 5a                          ....ZZZZ
[   19.145005] FIX kmalloc-512: Restoring 0xd3b77c68-0xd3b77c6b=0x5a
[   19.145005] 

Thanks,
Fengguang

View attachment "dmesg-quantal-ivb42-23:20140706023624:i386-randconfig-x0-07021302::" of type "text/plain" (46303 bytes)

Download attachment "i386-randconfig-x0-07021302-bbb74586d1d776b6c61ef04a2d669f2e47703ccd-BUG----Object-padding-overwritten-52759.log" of type "application/octet-stream" (61636 bytes)

View attachment "config-3.12.0-rc3-00804-gefe4208" of type "text/plain" (87646 bytes)

_______________________________________________
LKP mailing list
LKP@...ux.intel.com

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ