Date
June 7, 2025, 10:40 a.m.
| Environment | |
|---|---|
| qemu-arm64 | |
| qemu-x86_64 |
[ 54.949034] ================================================================== [ 54.949661] BUG: KFENCE: use-after-free read in test_krealloc+0x51c/0x830 [ 54.949661] [ 54.950528] Use-after-free read at 0x00000000bbeec1da (in kfence-#173): [ 54.951188] test_krealloc+0x51c/0x830 [ 54.951882] kunit_try_run_case+0x170/0x3f0 [ 54.952444] kunit_generic_run_threadfn_adapter+0x88/0x100 [ 54.953085] kthread+0x24c/0x2d0 [ 54.953519] ret_from_fork+0x10/0x20 [ 54.954070] [ 54.954409] kfence-#173: 0x00000000bbeec1da-0x000000000ade2ffa, size=32, cache=kmalloc-32 [ 54.954409] [ 54.955243] allocated by task 317 on cpu 1 at 54.948249s (0.006981s ago): [ 54.956112] test_alloc+0x29c/0x628 [ 54.956615] test_krealloc+0xc0/0x830 [ 54.957150] kunit_try_run_case+0x170/0x3f0 [ 54.957761] kunit_generic_run_threadfn_adapter+0x88/0x100 [ 54.958441] kthread+0x24c/0x2d0 [ 54.958888] ret_from_fork+0x10/0x20 [ 54.959361] [ 54.959669] freed by task 317 on cpu 1 at 54.948519s (0.011136s ago): [ 54.960365] krealloc_noprof+0xa8/0x1a0 [ 54.960922] test_krealloc+0x1dc/0x830 [ 54.961475] kunit_try_run_case+0x170/0x3f0 [ 54.962024] kunit_generic_run_threadfn_adapter+0x88/0x100 [ 54.962728] kthread+0x24c/0x2d0 [ 54.963266] ret_from_fork+0x10/0x20 [ 54.963739] [ 54.964066] CPU: 1 UID: 0 PID: 317 Comm: kunit_try_catch Tainted: G B N 6.12.33-rc1 #1 [ 54.965100] Tainted: [B]=BAD_PAGE, [N]=TEST [ 54.965566] Hardware name: linux,dummy-virt (DT) [ 54.966151] ==================================================================
[ 56.360163] ================================================================== [ 56.360828] BUG: KFENCE: use-after-free read in test_krealloc+0x6fd/0xbe0 [ 56.360828] [ 56.361477] Use-after-free read at 0x(____ptrval____) (in kfence-#166): [ 56.361926] test_krealloc+0x6fd/0xbe0 [ 56.362486] kunit_try_run_case+0x1a6/0x480 [ 56.363290] kunit_generic_run_threadfn_adapter+0x85/0xf0 [ 56.364085] kthread+0x257/0x310 [ 56.364503] ret_from_fork+0x41/0x80 [ 56.364894] ret_from_fork_asm+0x1a/0x30 [ 56.365661] [ 56.365930] kfence-#166: 0x(____ptrval____)-0x(____ptrval____), size=32, cache=kmalloc-32 [ 56.365930] [ 56.366551] allocated by task 334 on cpu 0 at 56.359194s (0.007351s ago): [ 56.367270] test_alloc+0x365/0x10f0 [ 56.367920] test_krealloc+0xae/0xbe0 [ 56.368626] kunit_try_run_case+0x1a6/0x480 [ 56.369538] kunit_generic_run_threadfn_adapter+0x85/0xf0 [ 56.370174] kthread+0x257/0x310 [ 56.370537] ret_from_fork+0x41/0x80 [ 56.370889] ret_from_fork_asm+0x1a/0x30 [ 56.371433] [ 56.371640] freed by task 334 on cpu 0 at 56.359657s (0.011979s ago): [ 56.372574] krealloc_noprof+0x83/0x140 [ 56.373218] test_krealloc+0x227/0xbe0 [ 56.373605] kunit_try_run_case+0x1a6/0x480 [ 56.374311] kunit_generic_run_threadfn_adapter+0x85/0xf0 [ 56.375485] kthread+0x257/0x310 [ 56.375880] ret_from_fork+0x41/0x80 [ 56.376301] ret_from_fork_asm+0x1a/0x30 [ 56.376663] [ 56.377485] CPU: 0 UID: 0 PID: 334 Comm: kunit_try_catch Tainted: G B N 6.12.33-rc1 #1 [ 56.378208] Tainted: [B]=BAD_PAGE, [N]=TEST [ 56.378810] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014 [ 56.379656] ==================================================================