Hay
Sign in
Date
July 16, 2025, 12:11 p.m.

Environment
qemu-arm64
qemu-x86_64 

[   35.329975] ==================================================================
[   35.330067] BUG: KFENCE: use-after-free read in test_use_after_free_read+0x114/0x248
[   35.330067] 
[   35.330412] Use-after-free read at 0x0000000081ca01b9 (in kfence-#128):
[   35.330773]  test_use_after_free_read+0x114/0x248
[   35.330858]  kunit_try_run_case+0x170/0x3f0
[   35.330912]  kunit_generic_run_threadfn_adapter+0x88/0x100
[   35.331009]  kthread+0x328/0x630
[   35.331294]  ret_from_fork+0x10/0x20
[   35.331366] 
[   35.331391] kfence-#128: 0x0000000081ca01b9-0x000000004cbeddd2, size=32, cache=kmalloc-32
[   35.331391] 
[   35.331530] allocated by task 326 on cpu 0 at 35.329091s (0.002386s ago):
[   35.331609]  test_alloc+0x29c/0x628
[   35.331669]  test_use_after_free_read+0xd0/0x248
[   35.331718]  kunit_try_run_case+0x170/0x3f0
[   35.331802]  kunit_generic_run_threadfn_adapter+0x88/0x100
[   35.331886]  kthread+0x328/0x630
[   35.331979]  ret_from_fork+0x10/0x20
[   35.332076] 
[   35.332304] freed by task 326 on cpu 0 at 35.329154s (0.003040s ago):
[   35.332999]  test_use_after_free_read+0x1c0/0x248
[   35.333067]  kunit_try_run_case+0x170/0x3f0
[   35.333357]  kunit_generic_run_threadfn_adapter+0x88/0x100
[   35.333497]  kthread+0x328/0x630
[   35.333573]  ret_from_fork+0x10/0x20
[   35.333770] 
[   35.333962] CPU: 0 UID: 0 PID: 326 Comm: kunit_try_catch Tainted: G    B            N  6.16.0-rc6-next-20250716 #1 PREEMPT 
[   35.334529] Tainted: [B]=BAD_PAGE, [N]=TEST
[   35.334630] Hardware name: linux,dummy-virt (DT)
[   35.334722] ==================================================================
[   35.437923] ==================================================================
[   35.442033] BUG: KFENCE: use-after-free read in test_use_after_free_read+0x114/0x248
[   35.442033] 
[   35.443418] Use-after-free read at 0x0000000014966054 (in kfence-#129):
[   35.444567]  test_use_after_free_read+0x114/0x248
[   35.444624]  kunit_try_run_case+0x170/0x3f0
[   35.444671]  kunit_generic_run_threadfn_adapter+0x88/0x100
[   35.444716]  kthread+0x328/0x630
[   35.444755]  ret_from_fork+0x10/0x20
[   35.444795] 
[   35.444819] kfence-#129: 0x0000000014966054-0x00000000b5e6891d, size=32, cache=test
[   35.444819] 
[   35.444873] allocated by task 328 on cpu 0 at 35.435812s (0.009057s ago):
[   35.444943]  test_alloc+0x230/0x628
[   35.444984]  test_use_after_free_read+0xd0/0x248
[   35.445022]  kunit_try_run_case+0x170/0x3f0
[   35.445062]  kunit_generic_run_threadfn_adapter+0x88/0x100
[   35.445105]  kthread+0x328/0x630
[   35.445142]  ret_from_fork+0x10/0x20
[   35.445179] 
[   35.445202] freed by task 328 on cpu 0 at 35.436309s (0.008889s ago):
[   35.445303]  test_use_after_free_read+0xf0/0x248
[   35.445347]  kunit_try_run_case+0x170/0x3f0
[   35.445385]  kunit_generic_run_threadfn_adapter+0x88/0x100
[   35.445430]  kthread+0x328/0x630
[   35.445466]  ret_from_fork+0x10/0x20
[   35.445520] 
[   35.445563] CPU: 0 UID: 0 PID: 328 Comm: kunit_try_catch Tainted: G    B            N  6.16.0-rc6-next-20250716 #1 PREEMPT 
[   35.445643] Tainted: [B]=BAD_PAGE, [N]=TEST
[   35.445671] Hardware name: linux,dummy-virt (DT)
[   35.445705] ==================================================================
Metadata Full log Test run details 

[   28.194309] ==================================================================
[   28.194760] BUG: KFENCE: use-after-free read in test_use_after_free_read+0x129/0x270
[   28.194760] 
[   28.195367] Use-after-free read at 0x(____ptrval____) (in kfence-#90):
[   28.195888]  test_use_after_free_read+0x129/0x270
[   28.196209]  kunit_try_run_case+0x1a5/0x480
[   28.196929]  kunit_generic_run_threadfn_adapter+0x85/0xf0
[   28.197200]  kthread+0x337/0x6f0
[   28.197396]  ret_from_fork+0x116/0x1d0
[   28.197823]  ret_from_fork_asm+0x1a/0x30
[   28.198034] 
[   28.198112] kfence-#90: 0x(____ptrval____)-0x(____ptrval____), size=32, cache=kmalloc-32
[   28.198112] 
[   28.198754] allocated by task 344 on cpu 1 at 28.194085s (0.004667s ago):
[   28.199226]  test_alloc+0x364/0x10f0
[   28.199424]  test_use_after_free_read+0xdc/0x270
[   28.199830]  kunit_try_run_case+0x1a5/0x480
[   28.200128]  kunit_generic_run_threadfn_adapter+0x85/0xf0
[   28.200385]  kthread+0x337/0x6f0
[   28.200728]  ret_from_fork+0x116/0x1d0
[   28.201003]  ret_from_fork_asm+0x1a/0x30
[   28.201311] 
[   28.201588] freed by task 344 on cpu 1 at 28.194146s (0.007315s ago):
[   28.202089]  test_use_after_free_read+0x1e7/0x270
[   28.202298]  kunit_try_run_case+0x1a5/0x480
[   28.202638]  kunit_generic_run_threadfn_adapter+0x85/0xf0
[   28.202974]  kthread+0x337/0x6f0
[   28.203226]  ret_from_fork+0x116/0x1d0
[   28.203429]  ret_from_fork_asm+0x1a/0x30
[   28.203817] 
[   28.204027] CPU: 1 UID: 0 PID: 344 Comm: kunit_try_catch Tainted: G    B            N  6.16.0-rc6-next-20250716 #1 PREEMPT(voluntary) 
[   28.204560] Tainted: [B]=BAD_PAGE, [N]=TEST
[   28.204911] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[   28.205386] ==================================================================
[   28.298357] ==================================================================
[   28.298880] BUG: KFENCE: use-after-free read in test_use_after_free_read+0x129/0x270
[   28.298880] 
[   28.299285] Use-after-free read at 0x(____ptrval____) (in kfence-#91):
[   28.299542]  test_use_after_free_read+0x129/0x270
[   28.299836]  kunit_try_run_case+0x1a5/0x480
[   28.299988]  kunit_generic_run_threadfn_adapter+0x85/0xf0
[   28.300248]  kthread+0x337/0x6f0
[   28.300560]  ret_from_fork+0x116/0x1d0
[   28.300801]  ret_from_fork_asm+0x1a/0x30
[   28.300958] 
[   28.301028] kfence-#91: 0x(____ptrval____)-0x(____ptrval____), size=32, cache=test
[   28.301028] 
[   28.301421] allocated by task 346 on cpu 0 at 28.298222s (0.003197s ago):
[   28.301788]  test_alloc+0x2a6/0x10f0
[   28.301913]  test_use_after_free_read+0xdc/0x270
[   28.302061]  kunit_try_run_case+0x1a5/0x480
[   28.302259]  kunit_generic_run_threadfn_adapter+0x85/0xf0
[   28.302532]  kthread+0x337/0x6f0
[   28.302697]  ret_from_fork+0x116/0x1d0
[   28.302938]  ret_from_fork_asm+0x1a/0x30
[   28.303074] 
[   28.303141] freed by task 346 on cpu 0 at 28.298263s (0.004876s ago):
[   28.303466]  test_use_after_free_read+0xfb/0x270
[   28.303752]  kunit_try_run_case+0x1a5/0x480
[   28.304031]  kunit_generic_run_threadfn_adapter+0x85/0xf0
[   28.304256]  kthread+0x337/0x6f0
[   28.304382]  ret_from_fork+0x116/0x1d0
[   28.304512]  ret_from_fork_asm+0x1a/0x30
[   28.304793] 
[   28.304921] CPU: 0 UID: 0 PID: 346 Comm: kunit_try_catch Tainted: G    B            N  6.16.0-rc6-next-20250716 #1 PREEMPT(voluntary) 
[   28.305334] Tainted: [B]=BAD_PAGE, [N]=TEST
[   28.305503] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[   28.306006] ==================================================================
Metadata Full log Test run details