lkft/linux-next-master - next-20250603 - log-parser-boot/kfence-bug-kfence-use-after-free-read-in-test_use_after_free_read

Date

June 3, 2025, 7:38 a.m.

Environment
qemu-arm64
qemu-x86_64

[   22.517582] ==================================================================
[   22.518012] BUG: KFENCE: use-after-free read in test_use_after_free_read+0x114/0x248
[   22.518012] 
[   22.518202] Use-after-free read at 0x00000000a14afa81 (in kfence-#87):
[   22.518520]  test_use_after_free_read+0x114/0x248
[   22.518714]  kunit_try_run_case+0x170/0x3f0
[   22.518862]  kunit_generic_run_threadfn_adapter+0x88/0x100
[   22.519157]  kthread+0x328/0x630
[   22.519303]  ret_from_fork+0x10/0x20
[   22.519710] 
[   22.519797] kfence-#87: 0x00000000a14afa81-0x00000000646ee562, size=32, cache=kmalloc-32
[   22.519797] 
[   22.519901] allocated by task 295 on cpu 1 at 22.516773s (0.003102s ago):
[   22.519974]  test_alloc+0x29c/0x628
[   22.520013]  test_use_after_free_read+0xd0/0x248
[   22.520055]  kunit_try_run_case+0x170/0x3f0
[   22.520095]  kunit_generic_run_threadfn_adapter+0x88/0x100
[   22.520242]  kthread+0x328/0x630
[   22.520282]  ret_from_fork+0x10/0x20
[   22.520550] 
[   22.521118] freed by task 295 on cpu 1 at 22.516867s (0.003986s ago):
[   22.521323]  test_use_after_free_read+0x1c0/0x248
[   22.521736]  kunit_try_run_case+0x170/0x3f0
[   22.521931]  kunit_generic_run_threadfn_adapter+0x88/0x100
[   22.521984]  kthread+0x328/0x630
[   22.522020]  ret_from_fork+0x10/0x20
[   22.522080] 
[   22.522132] CPU: 1 UID: 0 PID: 295 Comm: kunit_try_catch Tainted: G    B            N  6.15.0-next-20250603 #1 PREEMPT 
[   22.522406] Tainted: [B]=BAD_PAGE, [N]=TEST
[   22.522590] Hardware name: linux,dummy-virt (DT)
[   22.522671] ==================================================================
[   22.622144] ==================================================================
[   22.622227] BUG: KFENCE: use-after-free read in test_use_after_free_read+0x114/0x248
[   22.622227] 
[   22.622606] Use-after-free read at 0x00000000e86ddff5 (in kfence-#88):
[   22.622669]  test_use_after_free_read+0x114/0x248
[   22.622771]  kunit_try_run_case+0x170/0x3f0
[   22.622816]  kunit_generic_run_threadfn_adapter+0x88/0x100
[   22.622860]  kthread+0x328/0x630
[   22.623162]  ret_from_fork+0x10/0x20
[   22.623295] 
[   22.623323] kfence-#88: 0x00000000e86ddff5-0x00000000516e3525, size=32, cache=test
[   22.623323] 
[   22.623396] allocated by task 297 on cpu 1 at 22.621548s (0.001834s ago):
[   22.623817]  test_alloc+0x230/0x628
[   22.623884]  test_use_after_free_read+0xd0/0x248
[   22.623953]  kunit_try_run_case+0x170/0x3f0
[   22.624112]  kunit_generic_run_threadfn_adapter+0x88/0x100
[   22.624219]  kthread+0x328/0x630
[   22.624316]  ret_from_fork+0x10/0x20
[   22.624601] 
[   22.624782] freed by task 297 on cpu 1 at 22.621613s (0.003135s ago):
[   22.625223]  test_use_after_free_read+0xf0/0x248
[   22.625330]  kunit_try_run_case+0x170/0x3f0
[   22.625589]  kunit_generic_run_threadfn_adapter+0x88/0x100
[   22.625759]  kthread+0x328/0x630
[   22.626073]  ret_from_fork+0x10/0x20
[   22.626272] 
[   22.626465] CPU: 1 UID: 0 PID: 297 Comm: kunit_try_catch Tainted: G    B            N  6.15.0-next-20250603 #1 PREEMPT 
[   22.626579] Tainted: [B]=BAD_PAGE, [N]=TEST
[   22.627022] Hardware name: linux,dummy-virt (DT)
[   22.627194] ==================================================================

KNOWN ISSUE - log-parser-boot/kfence-bug-kfence-use-after-free-read-in-test_use_after_free_read: Failure

Metadata Full log Test run details

arch

arm64

host

x86_64

plan

2xzM3oRvKtIZJSjOMliP3GqGi7X

job_id

TEST:linaro@lkft#2xzM8XnnCGj8ubqXi8XliFPzzGU

job_url

https://tuxapi.tuxsuite.com/v1/groups/linaro/projects/lkft/tests/2xzM8XnnCGj8ubqXi8XliFPzzGU

artefacts

kernel

url	https://storage.tuxsuite.com/public/linaro/lkft/builds/2xzM538mN80fADe1LXZyIEhRSTS/Image.gz
sha256sum	2c61ffcef56d12e7e85681be7d2e449dad72bb84fd1e724ba956398ec9f29815

rootfs

url	https://storage.tuxboot.com/debian/20250425/trixie/arm64/rootfs.ext4.xz
sha256sum	1cc8d041751cc9cfe19b957ffa27d6115f076efaeb324bcd0fb145c37c99e1b7

modules

url	https://storage.tuxsuite.com/public/linaro/lkft/builds/2xzM538mN80fADe1LXZyIEhRSTS/modules.tar.xz
sha256sum	399b7e6ffb3d7e5b4689c9f8aaf903f837de7797423a8699dda2ca14b4cab306

durations

tests

boot	0
kunit	184.03

host_arch

amd64

build_name

gcc-13-lkftconfig-kunit

job_status

Complete

qemu_version

1:10.0.0+ds-1

[   21.197528] ==================================================================
[   21.197991] BUG: KFENCE: use-after-free read in test_use_after_free_read+0x129/0x270
[   21.197991] 
[   21.198371] Use-after-free read at 0x(____ptrval____) (in kfence-#94):
[   21.198914]  test_use_after_free_read+0x129/0x270
[   21.199212]  kunit_try_run_case+0x1a5/0x480
[   21.199713]  kunit_generic_run_threadfn_adapter+0x85/0xf0
[   21.200094]  kthread+0x337/0x6f0
[   21.200463]  ret_from_fork+0x116/0x1d0
[   21.200743]  ret_from_fork_asm+0x1a/0x30
[   21.201021] 
[   21.201180] kfence-#94: 0x(____ptrval____)-0x(____ptrval____), size=32, cache=test
[   21.201180] 
[   21.201893] allocated by task 314 on cpu 1 at 21.197287s (0.004601s ago):
[   21.202663]  test_alloc+0x2a6/0x10f0
[   21.202894]  test_use_after_free_read+0xdc/0x270
[   21.203118]  kunit_try_run_case+0x1a5/0x480
[   21.203544]  kunit_generic_run_threadfn_adapter+0x85/0xf0
[   21.204019]  kthread+0x337/0x6f0
[   21.204307]  ret_from_fork+0x116/0x1d0
[   21.204573]  ret_from_fork_asm+0x1a/0x30
[   21.204993] 
[   21.205188] freed by task 314 on cpu 1 at 21.197388s (0.007795s ago):
[   21.205656]  test_use_after_free_read+0xfb/0x270
[   21.205926]  kunit_try_run_case+0x1a5/0x480
[   21.206294]  kunit_generic_run_threadfn_adapter+0x85/0xf0
[   21.206736]  kthread+0x337/0x6f0
[   21.207161]  ret_from_fork+0x116/0x1d0
[   21.207480]  ret_from_fork_asm+0x1a/0x30
[   21.207699] 
[   21.207939] CPU: 1 UID: 0 PID: 314 Comm: kunit_try_catch Tainted: G    B            N  6.15.0-next-20250603 #1 PREEMPT(voluntary) 
[   21.209074] Tainted: [B]=BAD_PAGE, [N]=TEST
[   21.209409] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[   21.209943] ==================================================================
[   21.094659] ==================================================================
[   21.095328] BUG: KFENCE: use-after-free read in test_use_after_free_read+0x129/0x270
[   21.095328] 
[   21.096005] Use-after-free read at 0x(____ptrval____) (in kfence-#93):
[   21.096571]  test_use_after_free_read+0x129/0x270
[   21.096965]  kunit_try_run_case+0x1a5/0x480
[   21.097184]  kunit_generic_run_threadfn_adapter+0x85/0xf0
[   21.097865]  kthread+0x337/0x6f0
[   21.098443]  ret_from_fork+0x116/0x1d0
[   21.099133]  ret_from_fork_asm+0x1a/0x30
[   21.099681] 
[   21.099846] kfence-#93: 0x(____ptrval____)-0x(____ptrval____), size=32, cache=kmalloc-32
[   21.099846] 
[   21.101158] allocated by task 312 on cpu 1 at 21.094266s (0.006886s ago):
[   21.101569]  test_alloc+0x364/0x10f0
[   21.101938]  test_use_after_free_read+0xdc/0x270
[   21.102385]  kunit_try_run_case+0x1a5/0x480
[   21.102805]  kunit_generic_run_threadfn_adapter+0x85/0xf0
[   21.103052]  kthread+0x337/0x6f0
[   21.103468]  ret_from_fork+0x116/0x1d0
[   21.103832]  ret_from_fork_asm+0x1a/0x30
[   21.104055] 
[   21.104184] freed by task 312 on cpu 1 at 21.094392s (0.009789s ago):
[   21.104444]  test_use_after_free_read+0x1e7/0x270
[   21.104723]  kunit_try_run_case+0x1a5/0x480
[   21.104950]  kunit_generic_run_threadfn_adapter+0x85/0xf0
[   21.105903]  kthread+0x337/0x6f0
[   21.106271]  ret_from_fork+0x116/0x1d0
[   21.106737]  ret_from_fork_asm+0x1a/0x30
[   21.107333] 
[   21.107539] CPU: 1 UID: 0 PID: 312 Comm: kunit_try_catch Tainted: G    B            N  6.15.0-next-20250603 #1 PREEMPT(voluntary) 
[   21.108214] Tainted: [B]=BAD_PAGE, [N]=TEST
[   21.108504] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[   21.109053] ==================================================================

KNOWN ISSUE - log-parser-boot/kfence-bug-kfence-use-after-free-read-in-test_use_after_free_read: Failure

Metadata Full log Test run details

arch

x86_64

host

x86_64

plan

2xzM3oRvKtIZJSjOMliP3GqGi7X

job_id

TEST:linaro@lkft#2xzM9Qt22UENjnCVe0KdGcM1XGh

job_url

https://tuxapi.tuxsuite.com/v1/groups/linaro/projects/lkft/tests/2xzM9Qt22UENjnCVe0KdGcM1XGh

artefacts

kernel

url	https://storage.tuxsuite.com/public/linaro/lkft/builds/2xzM6ILkoImerzJwt3i36435Qgd/bzImage
sha256sum	41dbba498607ed9b3739ff9baa3c174d4b2923681d46cae35f52620dbf9cdbb6

rootfs

url	https://storage.tuxboot.com/debian/20250425/trixie/amd64/rootfs.ext4.xz
sha256sum	3e64c22b7a85dd4a60fd0a31f22599e711e865f841aed0d517fae37e9c171158

modules

url	https://storage.tuxsuite.com/public/linaro/lkft/builds/2xzM6ILkoImerzJwt3i36435Qgd/modules.tar.xz
sha256sum	525634634ad19a8da44f4fdbde0b46fb2b603649630081a93b095b171d4e28c6

durations

tests

boot	0
kunit	370.29

host_arch

amd64

build_name

gcc-13-lkftconfig-kunit

job_status

Complete

qemu_version

1:10.0.0+ds-1

Metadata

Failure - qemu-arm64 - gcc-13-lkftconfig-kunit KNOWN ISSUE Automatically assigned

Failure - qemu-x86_64 - gcc-13-lkftconfig-kunit KNOWN ISSUE Automatically assigned