Date
Dec. 9, 2024, 6:35 a.m.
| Environment | |
|---|---|
| qemu-arm64 | |
| qemu-x86_64 |
[ 61.576492] ================================================================== [ 61.577205] BUG: KFENCE: use-after-free read in test_krealloc+0x51c/0x830 [ 61.577205] [ 61.578030] Use-after-free read at 0x000000004a11c74c (in kfence-#188): [ 61.578727] test_krealloc+0x51c/0x830 [ 61.579407] test_krealloc+0x458/0x830 [ 61.579874] kunit_try_run_case+0x14c/0x3d0 [ 61.580381] kunit_generic_run_threadfn_adapter+0x88/0x100 [ 61.581213] kthread+0x24c/0x2d0 [ 61.581866] ret_from_fork+0x10/0x20 [ 61.582357] [ 61.582798] kfence-#188: 0x000000004a11c74c-0x000000004a065938, size=32, cache=kmalloc-32 [ 61.582798] [ 61.583858] allocated by task 325 on cpu 0 at 61.575550s (0.008298s ago): [ 61.584759] test_alloc+0x298/0x620 [ 61.585481] test_krealloc+0xc0/0x830 [ 61.586131] kunit_try_run_case+0x14c/0x3d0 [ 61.586731] kunit_generic_run_threadfn_adapter+0x88/0x100 [ 61.587391] kthread+0x24c/0x2d0 [ 61.587926] ret_from_fork+0x10/0x20 [ 61.588461] [ 61.588613] freed by task 325 on cpu 0 at 61.575941s (0.012666s ago): [ 61.589500] krealloc_noprof+0x148/0x360 [ 61.590071] test_krealloc+0x1dc/0x830 [ 61.590544] kunit_try_run_case+0x14c/0x3d0 [ 61.591113] kunit_generic_run_threadfn_adapter+0x88/0x100 [ 61.591776] kthread+0x24c/0x2d0 [ 61.592324] ret_from_fork+0x10/0x20 [ 61.592852] [ 61.593254] CPU: 0 UID: 0 PID: 325 Comm: kunit_try_catch Tainted: G B N 6.13.0-rc2-next-20241209 #1 [ 61.594424] Tainted: [B]=BAD_PAGE, [N]=TEST [ 61.594948] Hardware name: linux,dummy-virt (DT) [ 61.595537] ==================================================================
[ 64.461894] ================================================================== [ 64.462611] BUG: KFENCE: use-after-free read in test_krealloc+0x6fd/0xbe0 [ 64.462611] [ 64.463366] Use-after-free read at 0x(____ptrval____) (in kfence-#175): [ 64.464237] test_krealloc+0x6fd/0xbe0 [ 64.464685] kunit_try_run_case+0x1b3/0x490 [ 64.465243] kunit_generic_run_threadfn_adapter+0x85/0xf0 [ 64.465612] kthread+0x257/0x310 [ 64.466036] ret_from_fork+0x41/0x80 [ 64.466546] ret_from_fork_asm+0x1a/0x30 [ 64.466972] [ 64.467202] kfence-#175: 0x(____ptrval____)-0x(____ptrval____), size=32, cache=kmalloc-32 [ 64.467202] [ 64.467903] allocated by task 344 on cpu 1 at 64.460852s (0.007046s ago): [ 64.468809] test_alloc+0x35f/0x10d0 [ 64.469179] test_krealloc+0xae/0xbe0 [ 64.469644] kunit_try_run_case+0x1b3/0x490 [ 64.470192] kunit_generic_run_threadfn_adapter+0x85/0xf0 [ 64.470633] kthread+0x257/0x310 [ 64.471037] ret_from_fork+0x41/0x80 [ 64.471699] ret_from_fork_asm+0x1a/0x30 [ 64.472052] [ 64.472229] freed by task 344 on cpu 1 at 64.461170s (0.011054s ago): [ 64.473282] krealloc_noprof+0x108/0x340 [ 64.473647] test_krealloc+0x227/0xbe0 [ 64.473934] kunit_try_run_case+0x1b3/0x490 [ 64.474484] kunit_generic_run_threadfn_adapter+0x85/0xf0 [ 64.475191] kthread+0x257/0x310 [ 64.475678] ret_from_fork+0x41/0x80 [ 64.476048] ret_from_fork_asm+0x1a/0x30 [ 64.476495] [ 64.476918] CPU: 1 UID: 0 PID: 344 Comm: kunit_try_catch Tainted: G B N 6.13.0-rc2-next-20241209 #1 [ 64.477806] Tainted: [B]=BAD_PAGE, [N]=TEST [ 64.478088] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014 [ 64.479330] ==================================================================