Hay
Sign in
Date
July 22, 2025, 5:13 a.m.

Environment
qemu-arm64
qemu-x86_64 

[   35.925804] ==================================================================
[   35.925936] BUG: KFENCE: use-after-free read in test_use_after_free_read+0x114/0x248
[   35.925936] 
[   35.926039] Use-after-free read at 0x00000000fbe21db5 (in kfence-#134):
[   35.926094]  test_use_after_free_read+0x114/0x248
[   35.926139]  kunit_try_run_case+0x170/0x3f0
[   35.926189]  kunit_generic_run_threadfn_adapter+0x88/0x100
[   35.926233]  kthread+0x328/0x630
[   35.926271]  ret_from_fork+0x10/0x20
[   35.926310] 
[   35.926336] kfence-#134: 0x00000000fbe21db5-0x00000000a6fc4aad, size=32, cache=kmalloc-32
[   35.926336] 
[   35.926390] allocated by task 326 on cpu 0 at 35.925565s (0.000821s ago):
[   35.926459]  test_alloc+0x29c/0x628
[   35.926497]  test_use_after_free_read+0xd0/0x248
[   35.926538]  kunit_try_run_case+0x170/0x3f0
[   35.926578]  kunit_generic_run_threadfn_adapter+0x88/0x100
[   35.926622]  kthread+0x328/0x630
[   35.926659]  ret_from_fork+0x10/0x20
[   35.926700] 
[   35.926723] freed by task 326 on cpu 0 at 35.925611s (0.001109s ago):
[   35.926785]  test_use_after_free_read+0x1c0/0x248
[   35.926838]  kunit_try_run_case+0x170/0x3f0
[   35.926878]  kunit_generic_run_threadfn_adapter+0x88/0x100
[   35.926920]  kthread+0x328/0x630
[   35.926957]  ret_from_fork+0x10/0x20
[   35.926997] 
[   35.927044] CPU: 0 UID: 0 PID: 326 Comm: kunit_try_catch Tainted: G    B   W        N  6.16.0-rc7-next-20250722 #1 PREEMPT 
[   35.927131] Tainted: [B]=BAD_PAGE, [W]=WARN, [N]=TEST
[   35.927163] Hardware name: linux,dummy-virt (DT)
[   35.927197] ==================================================================
[   36.029472] ==================================================================
[   36.029573] BUG: KFENCE: use-after-free read in test_use_after_free_read+0x114/0x248
[   36.029573] 
[   36.029667] Use-after-free read at 0x0000000021596b64 (in kfence-#135):
[   36.029724]  test_use_after_free_read+0x114/0x248
[   36.029771]  kunit_try_run_case+0x170/0x3f0
[   36.029834]  kunit_generic_run_threadfn_adapter+0x88/0x100
[   36.029880]  kthread+0x328/0x630
[   36.029923]  ret_from_fork+0x10/0x20
[   36.029964] 
[   36.029988] kfence-#135: 0x0000000021596b64-0x0000000068348a9d, size=32, cache=test
[   36.029988] 
[   36.030046] allocated by task 328 on cpu 1 at 36.029274s (0.000767s ago):
[   36.030121]  test_alloc+0x230/0x628
[   36.030167]  test_use_after_free_read+0xd0/0x248
[   36.030209]  kunit_try_run_case+0x170/0x3f0
[   36.030251]  kunit_generic_run_threadfn_adapter+0x88/0x100
[   36.030295]  kthread+0x328/0x630
[   36.030334]  ret_from_fork+0x10/0x20
[   36.030373] 
[   36.030398] freed by task 328 on cpu 1 at 36.029339s (0.001055s ago):
[   36.030499]  test_use_after_free_read+0xf0/0x248
[   36.030545]  kunit_try_run_case+0x170/0x3f0
[   36.030589]  kunit_generic_run_threadfn_adapter+0x88/0x100
[   36.030634]  kthread+0x328/0x630
[   36.030673]  ret_from_fork+0x10/0x20
[   36.030714] 
[   36.030762] CPU: 1 UID: 0 PID: 328 Comm: kunit_try_catch Tainted: G    B   W        N  6.16.0-rc7-next-20250722 #1 PREEMPT 
[   36.030870] Tainted: [B]=BAD_PAGE, [W]=WARN, [N]=TEST
[   36.030904] Hardware name: linux,dummy-virt (DT)
[   36.030941] ==================================================================
Metadata Full log Test run details 

[   31.075917] ==================================================================
[   31.076393] BUG: KFENCE: use-after-free read in test_use_after_free_read+0x129/0x270
[   31.076393] 
[   31.076789] Use-after-free read at 0x(____ptrval____) (in kfence-#98):
[   31.077105]  test_use_after_free_read+0x129/0x270
[   31.077275]  kunit_try_run_case+0x1a5/0x480
[   31.077574]  kunit_generic_run_threadfn_adapter+0x85/0xf0
[   31.077850]  kthread+0x337/0x6f0
[   31.077977]  ret_from_fork+0x116/0x1d0
[   31.078161]  ret_from_fork_asm+0x1a/0x30
[   31.078367] 
[   31.078464] kfence-#98: 0x(____ptrval____)-0x(____ptrval____), size=32, cache=test
[   31.078464] 
[   31.078785] allocated by task 345 on cpu 1 at 31.075775s (0.003008s ago):
[   31.079134]  test_alloc+0x2a6/0x10f0
[   31.079335]  test_use_after_free_read+0xdc/0x270
[   31.079557]  kunit_try_run_case+0x1a5/0x480
[   31.079717]  kunit_generic_run_threadfn_adapter+0x85/0xf0
[   31.079971]  kthread+0x337/0x6f0
[   31.080092]  ret_from_fork+0x116/0x1d0
[   31.080225]  ret_from_fork_asm+0x1a/0x30
[   31.080370] 
[   31.080462] freed by task 345 on cpu 1 at 31.075820s (0.004640s ago):
[   31.080935]  test_use_after_free_read+0xfb/0x270
[   31.081093]  kunit_try_run_case+0x1a5/0x480
[   31.081242]  kunit_generic_run_threadfn_adapter+0x85/0xf0
[   31.082283]  kthread+0x337/0x6f0
[   31.082509]  ret_from_fork+0x116/0x1d0
[   31.082701]  ret_from_fork_asm+0x1a/0x30
[   31.082911] 
[   31.083037] CPU: 1 UID: 0 PID: 345 Comm: kunit_try_catch Tainted: G    B            N  6.16.0-rc7-next-20250722 #1 PREEMPT(voluntary) 
[   31.083504] Tainted: [B]=BAD_PAGE, [N]=TEST
[   31.083714] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[   31.084068] ==================================================================
[   30.971966] ==================================================================
[   30.972820] BUG: KFENCE: use-after-free read in test_use_after_free_read+0x129/0x270
[   30.972820] 
[   30.973197] Use-after-free read at 0x(____ptrval____) (in kfence-#97):
[   30.973667]  test_use_after_free_read+0x129/0x270
[   30.973905]  kunit_try_run_case+0x1a5/0x480
[   30.974116]  kunit_generic_run_threadfn_adapter+0x85/0xf0
[   30.974728]  kthread+0x337/0x6f0
[   30.974933]  ret_from_fork+0x116/0x1d0
[   30.975524]  ret_from_fork_asm+0x1a/0x30
[   30.975726] 
[   30.975814] kfence-#97: 0x(____ptrval____)-0x(____ptrval____), size=32, cache=kmalloc-32
[   30.975814] 
[   30.976449] allocated by task 343 on cpu 0 at 30.971747s (0.004699s ago):
[   30.976893]  test_alloc+0x364/0x10f0
[   30.977233]  test_use_after_free_read+0xdc/0x270
[   30.977548]  kunit_try_run_case+0x1a5/0x480
[   30.977861]  kunit_generic_run_threadfn_adapter+0x85/0xf0
[   30.978213]  kthread+0x337/0x6f0
[   30.978406]  ret_from_fork+0x116/0x1d0
[   30.978721]  ret_from_fork_asm+0x1a/0x30
[   30.978970] 
[   30.979424] freed by task 343 on cpu 0 at 30.971804s (0.007442s ago):
[   30.979789]  test_use_after_free_read+0x1e7/0x270
[   30.980016]  kunit_try_run_case+0x1a5/0x480
[   30.980422]  kunit_generic_run_threadfn_adapter+0x85/0xf0
[   30.980764]  kthread+0x337/0x6f0
[   30.980951]  ret_from_fork+0x116/0x1d0
[   30.981302]  ret_from_fork_asm+0x1a/0x30
[   30.981536] 
[   30.981809] CPU: 0 UID: 0 PID: 343 Comm: kunit_try_catch Tainted: G    B            N  6.16.0-rc7-next-20250722 #1 PREEMPT(voluntary) 
[   30.982457] Tainted: [B]=BAD_PAGE, [N]=TEST
[   30.982664] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[   30.983025] ==================================================================
Metadata Full log Test run details