Date
Dec. 3, 2024, 11:38 p.m.
| Environment | |
|---|---|
| qemu-arm64 | |
| qemu-x86_64 |
[ 66.436915] ================================================================== [ 66.437766] BUG: KFENCE: use-after-free read in test_krealloc+0x51c/0x830 [ 66.437766] [ 66.438597] Use-after-free read at 0x00000000cb1fbd26 (in kfence-#224): [ 66.440127] test_krealloc+0x51c/0x830 [ 66.440919] test_krealloc+0x458/0x830 [ 66.441545] kunit_try_run_case+0x14c/0x3d0 [ 66.442304] kunit_generic_run_threadfn_adapter+0x88/0x100 [ 66.443093] kthread+0x24c/0x2d0 [ 66.443573] ret_from_fork+0x10/0x20 [ 66.444085] [ 66.444468] kfence-#224: 0x00000000cb1fbd26-0x0000000009cdc7f2, size=32, cache=kmalloc-32 [ 66.444468] [ 66.445569] allocated by task 326 on cpu 0 at 66.435820s (0.009740s ago): [ 66.446450] test_alloc+0x298/0x620 [ 66.447079] test_krealloc+0xc0/0x830 [ 66.447574] kunit_try_run_case+0x14c/0x3d0 [ 66.448315] kunit_generic_run_threadfn_adapter+0x88/0x100 [ 66.448974] kthread+0x24c/0x2d0 [ 66.449656] ret_from_fork+0x10/0x20 [ 66.450260] [ 66.450600] freed by task 326 on cpu 0 at 66.436253s (0.014337s ago): [ 66.451537] krealloc_noprof+0x148/0x360 [ 66.452137] test_krealloc+0x1dc/0x830 [ 66.452826] kunit_try_run_case+0x14c/0x3d0 [ 66.453344] kunit_generic_run_threadfn_adapter+0x88/0x100 [ 66.454156] kthread+0x24c/0x2d0 [ 66.454687] ret_from_fork+0x10/0x20 [ 66.455235] [ 66.455592] CPU: 0 UID: 0 PID: 326 Comm: kunit_try_catch Tainted: G B N 6.13.0-rc1-next-20241203 #1 [ 66.456788] Tainted: [B]=BAD_PAGE, [N]=TEST [ 66.457403] Hardware name: linux,dummy-virt (DT) [ 66.458127] ==================================================================
[ 62.891381] ================================================================== [ 62.891999] BUG: KFENCE: use-after-free read in test_krealloc+0x6fd/0xbe0 [ 62.891999] [ 62.892677] Use-after-free read at 0x(____ptrval____) (in kfence-#195): [ 62.893241] test_krealloc+0x6fd/0xbe0 [ 62.893740] kunit_try_run_case+0x1b3/0x490 [ 62.894064] kunit_generic_run_threadfn_adapter+0x85/0xf0 [ 62.894616] kthread+0x257/0x310 [ 62.894975] ret_from_fork+0x41/0x80 [ 62.895379] ret_from_fork_asm+0x1a/0x30 [ 62.895654] [ 62.895806] kfence-#195: 0x(____ptrval____)-0x(____ptrval____), size=32, cache=kmalloc-32 [ 62.895806] [ 62.896691] allocated by task 346 on cpu 1 at 62.890293s (0.006392s ago): [ 62.897357] test_alloc+0x35f/0x10d0 [ 62.897790] test_krealloc+0xae/0xbe0 [ 62.898101] kunit_try_run_case+0x1b3/0x490 [ 62.898420] kunit_generic_run_threadfn_adapter+0x85/0xf0 [ 62.899187] kthread+0x257/0x310 [ 62.899582] ret_from_fork+0x41/0x80 [ 62.899882] ret_from_fork_asm+0x1a/0x30 [ 62.900306] [ 62.900513] freed by task 346 on cpu 1 at 62.890827s (0.009681s ago): [ 62.900990] krealloc_noprof+0x108/0x340 [ 62.901359] test_krealloc+0x227/0xbe0 [ 62.901760] kunit_try_run_case+0x1b3/0x490 [ 62.902207] kunit_generic_run_threadfn_adapter+0x85/0xf0 [ 62.902887] kthread+0x257/0x310 [ 62.903255] ret_from_fork+0x41/0x80 [ 62.903770] ret_from_fork_asm+0x1a/0x30 [ 62.904191] [ 62.904454] CPU: 1 UID: 0 PID: 346 Comm: kunit_try_catch Tainted: G B N 6.13.0-rc1-next-20241203 #1 [ 62.905228] Tainted: [B]=BAD_PAGE, [N]=TEST [ 62.905540] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014 [ 62.906337] ==================================================================