Date
Nov. 28, 2024, 2:36 a.m.
| Environment | |
|---|---|
| qemu-arm64 | |
| qemu-x86_64 |
[ 65.658886] ================================================================== [ 65.659619] BUG: KFENCE: use-after-free read in test_krealloc+0x51c/0x830 [ 65.659619] [ 65.660058] Use-after-free read at 0x0000000097358843 (in kfence-#200): [ 65.660580] test_krealloc+0x51c/0x830 [ 65.661337] test_krealloc+0x458/0x830 [ 65.661943] kunit_try_run_case+0x14c/0x3d0 [ 65.662597] kunit_generic_run_threadfn_adapter+0x88/0x100 [ 65.663290] kthread+0x24c/0x2d0 [ 65.663881] ret_from_fork+0x10/0x20 [ 65.664605] [ 65.665030] kfence-#200: 0x0000000097358843-0x00000000fae0cf03, size=32, cache=kmalloc-32 [ 65.665030] [ 65.666359] allocated by task 325 on cpu 1 at 65.657749s (0.008599s ago): [ 65.667487] test_alloc+0x298/0x620 [ 65.668432] test_krealloc+0xc0/0x830 [ 65.669402] kunit_try_run_case+0x14c/0x3d0 [ 65.670104] kunit_generic_run_threadfn_adapter+0x88/0x100 [ 65.670779] kthread+0x24c/0x2d0 [ 65.671337] ret_from_fork+0x10/0x20 [ 65.671893] [ 65.672280] freed by task 325 on cpu 1 at 65.658230s (0.014032s ago): [ 65.673094] krealloc_noprof+0x148/0x360 [ 65.673641] test_krealloc+0x1dc/0x830 [ 65.674228] kunit_try_run_case+0x14c/0x3d0 [ 65.674730] kunit_generic_run_threadfn_adapter+0x88/0x100 [ 65.675459] kthread+0x24c/0x2d0 [ 65.675961] ret_from_fork+0x10/0x20 [ 65.676448] [ 65.676797] CPU: 1 UID: 0 PID: 325 Comm: kunit_try_catch Tainted: G B N 6.12.0-next-20241128 #1 [ 65.677935] Tainted: [B]=BAD_PAGE, [N]=TEST [ 65.678498] Hardware name: linux,dummy-virt (DT) [ 65.679046] ==================================================================
[ 62.804798] ================================================================== [ 62.805616] BUG: KFENCE: use-after-free read in test_krealloc+0x6fd/0xbe0 [ 62.805616] [ 62.806320] Use-after-free read at 0x(____ptrval____) (in kfence-#184): [ 62.806895] test_krealloc+0x6fd/0xbe0 [ 62.807683] kunit_try_run_case+0x1b3/0x490 [ 62.808120] kunit_generic_run_threadfn_adapter+0x85/0xf0 [ 62.808715] kthread+0x257/0x310 [ 62.809084] ret_from_fork+0x41/0x80 [ 62.809473] ret_from_fork_asm+0x1a/0x30 [ 62.809772] [ 62.810034] kfence-#184: 0x(____ptrval____)-0x(____ptrval____), size=32, cache=kmalloc-32 [ 62.810034] [ 62.811020] allocated by task 345 on cpu 0 at 62.803792s (0.007224s ago): [ 62.811655] test_alloc+0x35f/0x10d0 [ 62.812117] test_krealloc+0xae/0xbe0 [ 62.812711] kunit_try_run_case+0x1b3/0x490 [ 62.813331] kunit_generic_run_threadfn_adapter+0x85/0xf0 [ 62.813832] kthread+0x257/0x310 [ 62.814180] ret_from_fork+0x41/0x80 [ 62.814669] ret_from_fork_asm+0x1a/0x30 [ 62.815133] [ 62.815428] freed by task 345 on cpu 0 at 62.804127s (0.011297s ago): [ 62.815882] krealloc_noprof+0x108/0x340 [ 62.816560] test_krealloc+0x227/0xbe0 [ 62.816850] kunit_try_run_case+0x1b3/0x490 [ 62.817589] kunit_generic_run_threadfn_adapter+0x85/0xf0 [ 62.818106] kthread+0x257/0x310 [ 62.818483] ret_from_fork+0x41/0x80 [ 62.818750] ret_from_fork_asm+0x1a/0x30 [ 62.819294] [ 62.819615] CPU: 0 UID: 0 PID: 345 Comm: kunit_try_catch Tainted: G B N 6.12.0-next-20241128 #1 [ 62.820605] Tainted: [B]=BAD_PAGE, [N]=TEST [ 62.821066] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014 [ 62.821920] ==================================================================