Date
June 2, 2025, 2:13 p.m.
| Environment | |
|---|---|
| qemu-arm64 | |
| qemu-x86_64 |
[ 50.159728] ================================================================== [ 50.160077] BUG: KFENCE: use-after-free read in test_krealloc+0x51c/0x830 [ 50.160077] [ 50.160428] Use-after-free read at 0x00000000bde44b7a (in kfence-#176): [ 50.161020] test_krealloc+0x51c/0x830 [ 50.161230] kunit_try_run_case+0x170/0x3f0 [ 50.161537] kunit_generic_run_threadfn_adapter+0x88/0x100 [ 50.161962] kthread+0x318/0x620 [ 50.162183] ret_from_fork+0x10/0x20 [ 50.162485] [ 50.162666] kfence-#176: 0x00000000bde44b7a-0x00000000ed9cae4b, size=32, cache=kmalloc-32 [ 50.162666] [ 50.163136] allocated by task 327 on cpu 1 at 50.158869s (0.004261s ago): [ 50.163449] test_alloc+0x29c/0x628 [ 50.163751] test_krealloc+0xc0/0x830 [ 50.163970] kunit_try_run_case+0x170/0x3f0 [ 50.164712] kunit_generic_run_threadfn_adapter+0x88/0x100 [ 50.165370] kthread+0x318/0x620 [ 50.165612] ret_from_fork+0x10/0x20 [ 50.165841] [ 50.166012] freed by task 327 on cpu 1 at 50.159218s (0.006787s ago): [ 50.166427] krealloc_noprof+0x148/0x360 [ 50.166675] test_krealloc+0x1dc/0x830 [ 50.166930] kunit_try_run_case+0x170/0x3f0 [ 50.167563] kunit_generic_run_threadfn_adapter+0x88/0x100 [ 50.168063] kthread+0x318/0x620 [ 50.168286] ret_from_fork+0x10/0x20 [ 50.168480] [ 50.168660] CPU: 1 UID: 0 PID: 327 Comm: kunit_try_catch Tainted: G B N 6.14.10-rc1 #1 [ 50.169019] Tainted: [B]=BAD_PAGE, [N]=TEST [ 50.169336] Hardware name: linux,dummy-virt (DT) [ 50.169571] ==================================================================
[ 49.046431] ================================================================== [ 49.046857] BUG: KFENCE: use-after-free read in test_krealloc+0x6fd/0xbe0 [ 49.046857] [ 49.047245] Use-after-free read at 0x(____ptrval____) (in kfence-#124): [ 49.047521] test_krealloc+0x6fd/0xbe0 [ 49.047728] kunit_try_run_case+0x1a6/0x480 [ 49.048308] kunit_generic_run_threadfn_adapter+0x85/0xf0 [ 49.048736] kthread+0x324/0x6e0 [ 49.048911] ret_from_fork+0x41/0x80 [ 49.049104] ret_from_fork_asm+0x1a/0x30 [ 49.049291] [ 49.049396] kfence-#124: 0x(____ptrval____)-0x(____ptrval____), size=32, cache=kmalloc-32 [ 49.049396] [ 49.050106] allocated by task 345 on cpu 0 at 49.045839s (0.004264s ago): [ 49.050522] test_alloc+0x365/0x10f0 [ 49.050814] test_krealloc+0xae/0xbe0 [ 49.051084] kunit_try_run_case+0x1a6/0x480 [ 49.051267] kunit_generic_run_threadfn_adapter+0x85/0xf0 [ 49.051609] kthread+0x324/0x6e0 [ 49.051870] ret_from_fork+0x41/0x80 [ 49.052132] ret_from_fork_asm+0x1a/0x30 [ 49.052392] [ 49.052485] freed by task 345 on cpu 0 at 49.046075s (0.006407s ago): [ 49.052947] krealloc_noprof+0x108/0x340 [ 49.053226] test_krealloc+0x227/0xbe0 [ 49.053425] kunit_try_run_case+0x1a6/0x480 [ 49.053739] kunit_generic_run_threadfn_adapter+0x85/0xf0 [ 49.053960] kthread+0x324/0x6e0 [ 49.054260] ret_from_fork+0x41/0x80 [ 49.054425] ret_from_fork_asm+0x1a/0x30 [ 49.054625] [ 49.054721] CPU: 0 UID: 0 PID: 345 Comm: kunit_try_catch Tainted: G B N 6.14.10-rc1 #1 [ 49.055133] Tainted: [B]=BAD_PAGE, [N]=TEST [ 49.055332] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014 [ 49.055982] ==================================================================