Date
Dec. 6, 2024, 3:11 p.m.
| Environment | |
|---|---|
| qemu-arm64 | |
| qemu-x86_64 |
[ 64.504200] ================================================================== [ 64.505004] BUG: KFENCE: use-after-free read in test_krealloc+0x51c/0x830 [ 64.505004] [ 64.505759] Use-after-free read at 0x00000000ec28697c (in kfence-#212): [ 64.506943] test_krealloc+0x51c/0x830 [ 64.507505] test_krealloc+0x458/0x830 [ 64.508143] kunit_try_run_case+0x14c/0x3d0 [ 64.508828] kunit_generic_run_threadfn_adapter+0x88/0x100 [ 64.509432] kthread+0x24c/0x2d0 [ 64.510045] ret_from_fork+0x10/0x20 [ 64.510676] [ 64.511072] kfence-#212: 0x00000000ec28697c-0x00000000b31e3a5c, size=32, cache=kmalloc-32 [ 64.511072] [ 64.512226] allocated by task 326 on cpu 1 at 64.502999s (0.009215s ago): [ 64.513054] test_alloc+0x298/0x620 [ 64.513667] test_krealloc+0xc0/0x830 [ 64.514279] kunit_try_run_case+0x14c/0x3d0 [ 64.514925] kunit_generic_run_threadfn_adapter+0x88/0x100 [ 64.515551] kthread+0x24c/0x2d0 [ 64.516160] ret_from_fork+0x10/0x20 [ 64.516783] [ 64.517154] freed by task 326 on cpu 1 at 64.503556s (0.013586s ago): [ 64.517926] krealloc_noprof+0x148/0x360 [ 64.518578] test_krealloc+0x1dc/0x830 [ 64.519173] kunit_try_run_case+0x14c/0x3d0 [ 64.519830] kunit_generic_run_threadfn_adapter+0x88/0x100 [ 64.520620] kthread+0x24c/0x2d0 [ 64.521125] ret_from_fork+0x10/0x20 [ 64.521765] [ 64.522186] CPU: 1 UID: 0 PID: 326 Comm: kunit_try_catch Tainted: G B N 6.13.0-rc1-next-20241206 #1 [ 64.523391] Tainted: [B]=BAD_PAGE, [N]=TEST [ 64.524018] Hardware name: linux,dummy-virt (DT) [ 64.524653] ==================================================================
[ 63.508257] ================================================================== [ 63.508785] BUG: KFENCE: use-after-free read in test_krealloc+0x6fd/0xbe0 [ 63.508785] [ 63.510101] Use-after-free read at 0x(____ptrval____) (in kfence-#178): [ 63.510673] test_krealloc+0x6fd/0xbe0 [ 63.511017] kunit_try_run_case+0x1b3/0x490 [ 63.511688] kunit_generic_run_threadfn_adapter+0x85/0xf0 [ 63.512258] kthread+0x257/0x310 [ 63.512522] ret_from_fork+0x41/0x80 [ 63.512794] ret_from_fork_asm+0x1a/0x30 [ 63.513660] [ 63.514078] kfence-#178: 0x(____ptrval____)-0x(____ptrval____), size=32, cache=kmalloc-32 [ 63.514078] [ 63.515083] allocated by task 345 on cpu 1 at 63.507172s (0.007906s ago): [ 63.515962] test_alloc+0x35f/0x10d0 [ 63.516597] test_krealloc+0xae/0xbe0 [ 63.517242] kunit_try_run_case+0x1b3/0x490 [ 63.517675] kunit_generic_run_threadfn_adapter+0x85/0xf0 [ 63.518571] kthread+0x257/0x310 [ 63.519020] ret_from_fork+0x41/0x80 [ 63.519584] ret_from_fork_asm+0x1a/0x30 [ 63.520055] [ 63.520634] freed by task 345 on cpu 1 at 63.507508s (0.013121s ago): [ 63.521648] krealloc_noprof+0x108/0x340 [ 63.522087] test_krealloc+0x227/0xbe0 [ 63.522396] kunit_try_run_case+0x1b3/0x490 [ 63.522744] kunit_generic_run_threadfn_adapter+0x85/0xf0 [ 63.523078] kthread+0x257/0x310 [ 63.523308] ret_from_fork+0x41/0x80 [ 63.523541] ret_from_fork_asm+0x1a/0x30 [ 63.523796] [ 63.524261] CPU: 1 UID: 0 PID: 345 Comm: kunit_try_catch Tainted: G B N 6.13.0-rc1-next-20241206 #1 [ 63.524913] Tainted: [B]=BAD_PAGE, [N]=TEST [ 63.525438] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014 [ 63.526343] ==================================================================