lkft/linux-next-master - next-20250515 - log-parser-boot/kfence-bug-kfence-use-after-free-read-in-test_use_after_free_read

Date

May 15, 2025, 10:38 a.m.

Environment
qemu-arm64
qemu-x86_64

[   22.027856] ==================================================================
[   22.027936] BUG: KFENCE: use-after-free read in test_use_after_free_read+0x114/0x248
[   22.027936] 
[   22.028291] Use-after-free read at 0x0000000015d6621c (in kfence-#88):
[   22.028383]  test_use_after_free_read+0x114/0x248
[   22.028437]  kunit_try_run_case+0x170/0x3f0
[   22.028483]  kunit_generic_run_threadfn_adapter+0x88/0x100
[   22.028526]  kthread+0x328/0x630
[   22.028569]  ret_from_fork+0x10/0x20
[   22.028608] 
[   22.028633] kfence-#88: 0x0000000015d6621c-0x0000000020ccf0e5, size=32, cache=test
[   22.028633] 
[   22.028682] allocated by task 297 on cpu 0 at 22.027399s (0.001280s ago):
[   22.028759]  test_alloc+0x230/0x628
[   22.028802]  test_use_after_free_read+0xd0/0x248
[   22.028843]  kunit_try_run_case+0x170/0x3f0
[   22.028881]  kunit_generic_run_threadfn_adapter+0x88/0x100
[   22.028922]  kthread+0x328/0x630
[   22.028964]  ret_from_fork+0x10/0x20
[   22.029004] 
[   22.029038] freed by task 297 on cpu 0 at 22.027697s (0.001337s ago):
[   22.029140]  test_use_after_free_read+0xf0/0x248
[   22.029197]  kunit_try_run_case+0x170/0x3f0
[   22.029235]  kunit_generic_run_threadfn_adapter+0x88/0x100
[   22.029276]  kthread+0x328/0x630
[   22.029314]  ret_from_fork+0x10/0x20
[   22.029354] 
[   22.029399] CPU: 0 UID: 0 PID: 297 Comm: kunit_try_catch Tainted: G    B            N  6.15.0-rc6-next-20250515 #1 PREEMPT 
[   22.029492] Tainted: [B]=BAD_PAGE, [N]=TEST
[   22.029531] Hardware name: linux,dummy-virt (DT)
[   22.029566] ==================================================================
[   21.919797] ==================================================================
[   21.919877] BUG: KFENCE: use-after-free read in test_use_after_free_read+0x114/0x248
[   21.919877] 
[   21.920031] Use-after-free read at 0x000000000d27104c (in kfence-#87):
[   21.920086]  test_use_after_free_read+0x114/0x248
[   21.920481]  kunit_try_run_case+0x170/0x3f0
[   21.920560]  kunit_generic_run_threadfn_adapter+0x88/0x100
[   21.920606]  kthread+0x328/0x630
[   21.920649]  ret_from_fork+0x10/0x20
[   21.920771] 
[   21.920800] kfence-#87: 0x000000000d27104c-0x000000001071f8e7, size=32, cache=kmalloc-32
[   21.920800] 
[   21.920903] allocated by task 295 on cpu 0 at 21.919069s (0.001786s ago):
[   21.921315]  test_alloc+0x29c/0x628
[   21.921368]  test_use_after_free_read+0xd0/0x248
[   21.921417]  kunit_try_run_case+0x170/0x3f0
[   21.921793]  kunit_generic_run_threadfn_adapter+0x88/0x100
[   21.921896]  kthread+0x328/0x630
[   21.921937]  ret_from_fork+0x10/0x20
[   21.922211] 
[   21.922908] freed by task 295 on cpu 0 at 21.919144s (0.003453s ago):
[   21.923064]  test_use_after_free_read+0x1c0/0x248
[   21.923429]  kunit_try_run_case+0x170/0x3f0
[   21.923728]  kunit_generic_run_threadfn_adapter+0x88/0x100
[   21.923923]  kthread+0x328/0x630
[   21.924295]  ret_from_fork+0x10/0x20
[   21.924383] 
[   21.924448] CPU: 0 UID: 0 PID: 295 Comm: kunit_try_catch Tainted: G    B            N  6.15.0-rc6-next-20250515 #1 PREEMPT 
[   21.924536] Tainted: [B]=BAD_PAGE, [N]=TEST
[   21.924566] Hardware name: linux,dummy-virt (DT)
[   21.924602] ==================================================================

KNOWN ISSUE - log-parser-boot/kfence-bug-kfence-use-after-free-read-in-test_use_after_free_read: Failure

Metadata Full log Test run details

arch

arm64

host

x86_64

plan

2x82cn95lnaJcv25aBcIbqxmNlW

job_id

TEST:linaro@lkft#2x82i0VEAX8AHEnAIjjHU38fOa5

job_url

https://tuxapi.tuxsuite.com/v1/groups/linaro/projects/lkft/tests/2x82i0VEAX8AHEnAIjjHU38fOa5

artefacts

kernel

url	https://storage.tuxsuite.com/public/linaro/lkft/builds/2x82eG237Xz0oehRyoZ2sE2FTZZ/Image.gz
sha256sum	8d10f44ec72bc28243b4fef40985d64e1d2a2da67aaf1203ca0c5f056291b385

rootfs

url	https://storage.tuxboot.com/debian/20250425/trixie/arm64/rootfs.ext4.xz
sha256sum	1cc8d041751cc9cfe19b957ffa27d6115f076efaeb324bcd0fb145c37c99e1b7

modules

url	https://storage.tuxsuite.com/public/linaro/lkft/builds/2x82eG237Xz0oehRyoZ2sE2FTZZ/modules.tar.xz
sha256sum	260beefc77a5cb8d14f0b0fb6da10f4b829dae2598932fe8a7db834d3bf2199f

durations

tests

boot	0
kunit	179.62

host_arch

amd64

build_name

gcc-13-lkftconfig-kunit

job_status

Complete

qemu_version

1:10.0.0+ds-1

[   19.251191] ==================================================================
[   19.251602] BUG: KFENCE: use-after-free read in test_use_after_free_read+0x129/0x270
[   19.251602] 
[   19.251823] Use-after-free read at 0x(____ptrval____) (in kfence-#86):
[   19.252108]  test_use_after_free_read+0x129/0x270
[   19.252238]  kunit_try_run_case+0x1a5/0x480
[   19.252403]  kunit_generic_run_threadfn_adapter+0x85/0xf0
[   19.252594]  kthread+0x337/0x6f0
[   19.252687]  ret_from_fork+0x116/0x1d0
[   19.252870]  ret_from_fork_asm+0x1a/0x30
[   19.253112] 
[   19.253250] kfence-#86: 0x(____ptrval____)-0x(____ptrval____), size=32, cache=test
[   19.253250] 
[   19.253470] allocated by task 315 on cpu 0 at 19.251042s (0.002425s ago):
[   19.253716]  test_alloc+0x2a6/0x10f0
[   19.253880]  test_use_after_free_read+0xdc/0x270
[   19.253987]  kunit_try_run_case+0x1a5/0x480
[   19.254084]  kunit_generic_run_threadfn_adapter+0x85/0xf0
[   19.254256]  kthread+0x337/0x6f0
[   19.254495]  ret_from_fork+0x116/0x1d0
[   19.254705]  ret_from_fork_asm+0x1a/0x30
[   19.254965] 
[   19.255092] freed by task 315 on cpu 0 at 19.251094s (0.003994s ago):
[   19.255332]  test_use_after_free_read+0xfb/0x270
[   19.255494]  kunit_try_run_case+0x1a5/0x480
[   19.255595]  kunit_generic_run_threadfn_adapter+0x85/0xf0
[   19.255707]  kthread+0x337/0x6f0
[   19.255925]  ret_from_fork+0x116/0x1d0
[   19.256148]  ret_from_fork_asm+0x1a/0x30
[   19.256374] 
[   19.256517] CPU: 0 UID: 0 PID: 315 Comm: kunit_try_catch Tainted: G    B            N  6.15.0-rc6-next-20250515 #1 PREEMPT(voluntary) 
[   19.256771] Tainted: [B]=BAD_PAGE, [N]=TEST
[   19.256867] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[   19.257083] ==================================================================
[   19.147373] ==================================================================
[   19.147783] BUG: KFENCE: use-after-free read in test_use_after_free_read+0x129/0x270
[   19.147783] 
[   19.148026] Use-after-free read at 0x(____ptrval____) (in kfence-#85):
[   19.148246]  test_use_after_free_read+0x129/0x270
[   19.148543]  kunit_try_run_case+0x1a5/0x480
[   19.148651]  kunit_generic_run_threadfn_adapter+0x85/0xf0
[   19.148766]  kthread+0x337/0x6f0
[   19.149006]  ret_from_fork+0x116/0x1d0
[   19.149265]  ret_from_fork_asm+0x1a/0x30
[   19.149525] 
[   19.149612] kfence-#85: 0x(____ptrval____)-0x(____ptrval____), size=32, cache=kmalloc-32
[   19.149612] 
[   19.149794] allocated by task 313 on cpu 1 at 19.147056s (0.002736s ago):
[   19.150192]  test_alloc+0x364/0x10f0
[   19.150301]  test_use_after_free_read+0xdc/0x270
[   19.150421]  kunit_try_run_case+0x1a5/0x480
[   19.150572]  kunit_generic_run_threadfn_adapter+0x85/0xf0
[   19.150867]  kthread+0x337/0x6f0
[   19.151083]  ret_from_fork+0x116/0x1d0
[   19.151354]  ret_from_fork_asm+0x1a/0x30
[   19.151528] 
[   19.151753] freed by task 313 on cpu 1 at 19.147152s (0.004500s ago):
[   19.152166]  test_use_after_free_read+0x1e7/0x270
[   19.152344]  kunit_try_run_case+0x1a5/0x480
[   19.152571]  kunit_generic_run_threadfn_adapter+0x85/0xf0
[   19.152778]  kthread+0x337/0x6f0
[   19.152868]  ret_from_fork+0x116/0x1d0
[   19.153102]  ret_from_fork_asm+0x1a/0x30
[   19.153267] 
[   19.153353] CPU: 1 UID: 0 PID: 313 Comm: kunit_try_catch Tainted: G    B            N  6.15.0-rc6-next-20250515 #1 PREEMPT(voluntary) 
[   19.153843] Tainted: [B]=BAD_PAGE, [N]=TEST
[   19.153997] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[   19.154158] ==================================================================

KNOWN ISSUE - log-parser-boot/kfence-bug-kfence-use-after-free-read-in-test_use_after_free_read: Failure

Metadata Full log Test run details

arch

x86_64

host

x86_64

plan

2x82cn95lnaJcv25aBcIbqxmNlW

job_id

TEST:linaro@lkft#2x82ipUVL9WHfkZvKCNBEYbkXTJ

job_url

https://tuxapi.tuxsuite.com/v1/groups/linaro/projects/lkft/tests/2x82ipUVL9WHfkZvKCNBEYbkXTJ

artefacts

kernel

url	https://storage.tuxsuite.com/public/linaro/lkft/builds/2x82fkCMGUVy57MkjmocaW2NNv8/bzImage
sha256sum	74edfec95eb8d8148308a14fc1b668c3e17d558cc339e0295e288f4cacaf4e2e

rootfs

url	https://storage.tuxboot.com/debian/20250425/trixie/amd64/rootfs.ext4.xz
sha256sum	3e64c22b7a85dd4a60fd0a31f22599e711e865f841aed0d517fae37e9c171158

modules

url	https://storage.tuxsuite.com/public/linaro/lkft/builds/2x82fkCMGUVy57MkjmocaW2NNv8/modules.tar.xz
sha256sum	07b80db55c46bb7e71e92134a37f3185bcd0da1c71552ff3a0f50f901a05a4fb

durations

tests

boot	0
kunit	322.83

host_arch

amd64

build_name

gcc-13-lkftconfig-kunit

job_status

Complete

qemu_version

1:10.0.0+ds-1

Metadata

Failure - qemu-arm64 - gcc-13-lkftconfig-kunit KNOWN ISSUE

Failure - qemu-x86_64 - gcc-13-lkftconfig-kunit KNOWN ISSUE