lkft/linux-mainline-master - v6.16-rc6-281-gf4a40a4282f4 - log-parser-boot/kfence-bug-kfence-use-after-free-read-in-strcmp

Date

July 20, 2025, 11:12 a.m.

Environment
qemu-arm64

[   17.604360] ==================================================================
[   17.604520] BUG: KFENCE: use-after-free read in strcmp+0x50/0xc8
[   17.604520] 
[   17.604585] Use-after-free read at 0x00000000493a7be2 (in kfence-#71):
[   17.604635]  strcmp+0x50/0xc8
[   17.604682]  kasan_strings+0x340/0xb00
[   17.605566]  kunit_try_run_case+0x170/0x3f0
[   17.605647]  kunit_generic_run_threadfn_adapter+0x88/0x100
[   17.605825]  kthread+0x328/0x630
[   17.605862]  ret_from_fork+0x10/0x20
[   17.605901] 
[   17.606407] kfence-#71: 0x00000000a0ff1a74-0x000000005ed6b2ea, size=24, cache=kmalloc-32
[   17.606407] 
[   17.606518] allocated by task 259 on cpu 0 at 17.594550s (0.011963s ago):
[   17.606609]  kasan_strings+0xc8/0xb00
[   17.606973]  kunit_try_run_case+0x170/0x3f0
[   17.607015]  kunit_generic_run_threadfn_adapter+0x88/0x100
[   17.607378]  kthread+0x328/0x630
[   17.607421]  ret_from_fork+0x10/0x20
[   17.607773] 
[   17.607856] freed by task 259 on cpu 0 at 17.595465s (0.012380s ago):
[   17.608287]  kasan_strings+0x24c/0xb00
[   17.608333]  kunit_try_run_case+0x170/0x3f0
[   17.608376]  kunit_generic_run_threadfn_adapter+0x88/0x100
[   17.609018]  kthread+0x328/0x630
[   17.609238]  ret_from_fork+0x10/0x20
[   17.609554] 
[   17.609775] CPU: 0 UID: 0 PID: 259 Comm: kunit_try_catch Tainted: G    B            N  6.16.0-rc6 #1 PREEMPT 
[   17.610153] Tainted: [B]=BAD_PAGE, [N]=TEST
[   17.610186] Hardware name: linux,dummy-virt (DT)
[   17.610830] ==================================================================

Metadata Full log Test run details

arch

arm64

host

x86_64

plan

308WsFutMAZosSMnEORCZj9vmFx

job_id

TEST:linaro@lkft#308WwJaHQwF9GiJmP1YPiPqA012

job_url

https://tuxapi.tuxsuite.com/v1/groups/linaro/projects/lkft/tests/308WwJaHQwF9GiJmP1YPiPqA012

artefacts

kernel

url	https://storage.tuxsuite.com/public/linaro/lkft/builds/308WtJwGDQVbmyszY5dfktcsuGy/Image.gz
sha256sum	4d2e0511bab027133f01b2172d6d8558efd2b45bcadc263c5cacdb0ac44741cd

rootfs

url	https://storage.tuxboot.com/debian/20250617/trixie/arm64/rootfs.ext4.xz
sha256sum	1eaaae772692e22cefec5345d642e254407cec1431dd51a20007af2a1819b610

modules

url	https://storage.tuxsuite.com/public/linaro/lkft/builds/308WtJwGDQVbmyszY5dfktcsuGy/modules.tar.xz
sha256sum	18d5d5576d3740ea20de31396b726912b8f91395c442996d953fc58d4a74f8e9

durations

tests

boot	0
kunit	197.15

host_arch

amd64

build_name

gcc-13-lkftconfig-kunit

job_status

Complete

qemu_version

1:10.0.2+ds-1

Metadata

Failure - qemu-arm64 - gcc-13-lkftconfig-kunit