Date
July 3, 2025, 10:10 a.m.
| Environment | |
|---|---|
| qemu-arm64 | |
| qemu-x86_64 |
[ 36.296921] ================================================================== [ 36.297018] BUG: KFENCE: use-after-free read in test_use_after_free_read+0x114/0x248 [ 36.297018] [ 36.297110] Use-after-free read at 0x00000000b80fc115 (in kfence-#139): [ 36.297161] test_use_after_free_read+0x114/0x248 [ 36.297212] kunit_try_run_case+0x170/0x3f0 [ 36.297257] kunit_generic_run_threadfn_adapter+0x88/0x100 [ 36.297302] kthread+0x328/0x630 [ 36.297340] ret_from_fork+0x10/0x20 [ 36.297381] [ 36.297405] kfence-#139: 0x00000000b80fc115-0x00000000f2bf07ca, size=32, cache=test [ 36.297405] [ 36.297456] allocated by task 329 on cpu 1 at 36.296703s (0.000749s ago): [ 36.297529] test_alloc+0x230/0x628 [ 36.297569] test_use_after_free_read+0xd0/0x248 [ 36.297614] kunit_try_run_case+0x170/0x3f0 [ 36.297655] kunit_generic_run_threadfn_adapter+0x88/0x100 [ 36.297704] kthread+0x328/0x630 [ 36.297740] ret_from_fork+0x10/0x20 [ 36.297779] [ 36.297805] freed by task 329 on cpu 1 at 36.296768s (0.001032s ago): [ 36.297919] test_use_after_free_read+0xf0/0x248 [ 36.297976] kunit_try_run_case+0x170/0x3f0 [ 36.298022] kunit_generic_run_threadfn_adapter+0x88/0x100 [ 36.298069] kthread+0x328/0x630 [ 36.298104] ret_from_fork+0x10/0x20 [ 36.298143] [ 36.298188] CPU: 1 UID: 0 PID: 329 Comm: kunit_try_catch Tainted: G B N 6.16.0-rc4-next-20250703 #1 PREEMPT [ 36.298268] Tainted: [B]=BAD_PAGE, [N]=TEST [ 36.298298] Hardware name: linux,dummy-virt (DT) [ 36.298332] ================================================================== [ 36.193242] ================================================================== [ 36.193357] BUG: KFENCE: use-after-free read in test_use_after_free_read+0x114/0x248 [ 36.193357] [ 36.193466] Use-after-free read at 0x00000000cc996ba5 (in kfence-#138): [ 36.193517] test_use_after_free_read+0x114/0x248 [ 36.193568] kunit_try_run_case+0x170/0x3f0 [ 36.193616] kunit_generic_run_threadfn_adapter+0x88/0x100 [ 36.193663] kthread+0x328/0x630 [ 36.193702] ret_from_fork+0x10/0x20 [ 36.193745] [ 36.193769] kfence-#138: 0x00000000cc996ba5-0x000000006894e637, size=32, cache=kmalloc-32 [ 36.193769] [ 36.193824] allocated by task 327 on cpu 1 at 36.193000s (0.000820s ago): [ 36.193913] test_alloc+0x29c/0x628 [ 36.193958] test_use_after_free_read+0xd0/0x248 [ 36.194002] kunit_try_run_case+0x170/0x3f0 [ 36.194042] kunit_generic_run_threadfn_adapter+0x88/0x100 [ 36.194090] kthread+0x328/0x630 [ 36.194125] ret_from_fork+0x10/0x20 [ 36.194171] [ 36.194296] freed by task 327 on cpu 1 at 36.193046s (0.001171s ago): [ 36.194410] test_use_after_free_read+0x1c0/0x248 [ 36.194456] kunit_try_run_case+0x170/0x3f0 [ 36.194499] kunit_generic_run_threadfn_adapter+0x88/0x100 [ 36.194545] kthread+0x328/0x630 [ 36.194582] ret_from_fork+0x10/0x20 [ 36.194634] [ 36.194683] CPU: 1 UID: 0 PID: 327 Comm: kunit_try_catch Tainted: G B N 6.16.0-rc4-next-20250703 #1 PREEMPT [ 36.194766] Tainted: [B]=BAD_PAGE, [N]=TEST [ 36.194796] Hardware name: linux,dummy-virt (DT) [ 36.194831] ==================================================================
[ 28.737621] ================================================================== [ 28.738015] BUG: KFENCE: use-after-free read in test_use_after_free_read+0x129/0x270 [ 28.738015] [ 28.738530] Use-after-free read at 0x(____ptrval____) (in kfence-#95): [ 28.738828] test_use_after_free_read+0x129/0x270 [ 28.739023] kunit_try_run_case+0x1a5/0x480 [ 28.739191] kunit_generic_run_threadfn_adapter+0x85/0xf0 [ 28.739439] kthread+0x337/0x6f0 [ 28.739711] ret_from_fork+0x116/0x1d0 [ 28.739881] ret_from_fork_asm+0x1a/0x30 [ 28.740029] [ 28.740097] kfence-#95: 0x(____ptrval____)-0x(____ptrval____), size=32, cache=test [ 28.740097] [ 28.740672] allocated by task 346 on cpu 0 at 28.737485s (0.003185s ago): [ 28.740987] test_alloc+0x2a6/0x10f0 [ 28.741152] test_use_after_free_read+0xdc/0x270 [ 28.741436] kunit_try_run_case+0x1a5/0x480 [ 28.741617] kunit_generic_run_threadfn_adapter+0x85/0xf0 [ 28.741871] kthread+0x337/0x6f0 [ 28.742075] ret_from_fork+0x116/0x1d0 [ 28.742222] ret_from_fork_asm+0x1a/0x30 [ 28.742413] [ 28.742535] freed by task 346 on cpu 0 at 28.737544s (0.004988s ago): [ 28.742879] test_use_after_free_read+0xfb/0x270 [ 28.743093] kunit_try_run_case+0x1a5/0x480 [ 28.743342] kunit_generic_run_threadfn_adapter+0x85/0xf0 [ 28.743515] kthread+0x337/0x6f0 [ 28.743627] ret_from_fork+0x116/0x1d0 [ 28.743797] ret_from_fork_asm+0x1a/0x30 [ 28.743990] [ 28.744128] CPU: 0 UID: 0 PID: 346 Comm: kunit_try_catch Tainted: G B N 6.16.0-rc4-next-20250703 #1 PREEMPT(voluntary) [ 28.744881] Tainted: [B]=BAD_PAGE, [N]=TEST [ 28.745082] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014 [ 28.745478] ================================================================== [ 28.633648] ================================================================== [ 28.634075] BUG: KFENCE: use-after-free read in test_use_after_free_read+0x129/0x270 [ 28.634075] [ 28.634507] Use-after-free read at 0x(____ptrval____) (in kfence-#94): [ 28.634805] test_use_after_free_read+0x129/0x270 [ 28.635031] kunit_try_run_case+0x1a5/0x480 [ 28.635239] kunit_generic_run_threadfn_adapter+0x85/0xf0 [ 28.635445] kthread+0x337/0x6f0 [ 28.635614] ret_from_fork+0x116/0x1d0 [ 28.635775] ret_from_fork_asm+0x1a/0x30 [ 28.635932] [ 28.636025] kfence-#94: 0x(____ptrval____)-0x(____ptrval____), size=32, cache=kmalloc-32 [ 28.636025] [ 28.636470] allocated by task 344 on cpu 1 at 28.633412s (0.003056s ago): [ 28.636707] test_alloc+0x364/0x10f0 [ 28.636838] test_use_after_free_read+0xdc/0x270 [ 28.637055] kunit_try_run_case+0x1a5/0x480 [ 28.637257] kunit_generic_run_threadfn_adapter+0x85/0xf0 [ 28.637515] kthread+0x337/0x6f0 [ 28.637716] ret_from_fork+0x116/0x1d0 [ 28.637885] ret_from_fork_asm+0x1a/0x30 [ 28.638068] [ 28.638267] freed by task 344 on cpu 1 at 28.633493s (0.004685s ago): [ 28.638656] test_use_after_free_read+0x1e7/0x270 [ 28.638893] kunit_try_run_case+0x1a5/0x480 [ 28.639068] kunit_generic_run_threadfn_adapter+0x85/0xf0 [ 28.639270] kthread+0x337/0x6f0 [ 28.639387] ret_from_fork+0x116/0x1d0 [ 28.639594] ret_from_fork_asm+0x1a/0x30 [ 28.639817] [ 28.639932] CPU: 1 UID: 0 PID: 344 Comm: kunit_try_catch Tainted: G B N 6.16.0-rc4-next-20250703 #1 PREEMPT(voluntary) [ 28.640283] Tainted: [B]=BAD_PAGE, [N]=TEST [ 28.640649] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014 [ 28.641035] ==================================================================