lkft/linux-stable-rc-linux-6.6.y - v6.6.74-439-g3b8d2f9dc632 - log-parser-boot/kfence-bug-kfence-use-after-free-read-in-test_use_after_free_read

Date

Feb. 5, 2025, 2:09 p.m.

Environment
qemu-arm64
qemu-i386

[  186.126923] ==================================================================
[  186.128300] BUG: KFENCE: use-after-free read in test_use_after_free_read+0xf0/0x1c8
[  186.128300] 
[  186.130268] Use-after-free read at 0x00000000b856ef38 (in kfence-#64):
[  186.131737]  test_use_after_free_read+0xf0/0x1c8
[  186.132995]  kunit_try_run_case+0xf8/0x260
[  186.134185]  kunit_generic_run_threadfn_adapter+0x38/0x60
[  186.135609]  kthread+0x18c/0x1a8
[  186.136540]  ret_from_fork+0x10/0x20
[  186.137643] 
[  186.138154] kfence-#64: 0x00000000b856ef38-0x00000000ed4c991e, size=32, cache=test
[  186.138154] 
[  186.139973] allocated by task 241 on cpu 0 at 186.126209s:
[  186.141608]  test_alloc+0x1b8/0x3d8
[  186.142621]  test_use_after_free_read+0xc8/0x1c8
[  186.143925]  kunit_try_run_case+0xf8/0x260
[  186.145105]  kunit_generic_run_threadfn_adapter+0x38/0x60
[  186.146521]  kthread+0x18c/0x1a8
[  186.147465]  ret_from_fork+0x10/0x20
[  186.148537] 
[  186.149058] freed by task 241 on cpu 0 at 186.126506s:
[  186.150704]  test_use_after_free_read+0xe8/0x1c8
[  186.151833]  kunit_try_run_case+0xf8/0x260
[  186.153002]  kunit_generic_run_threadfn_adapter+0x38/0x60
[  186.154392]  kthread+0x18c/0x1a8
[  186.155393]  ret_from_fork+0x10/0x20
[  186.156460] 
[  186.157069] CPU: 0 PID: 241 Comm: kunit_try_catch Tainted: G    B            N 6.6.76-rc1 #1
[  186.158803] Hardware name: linux,dummy-virt (DT)
[  186.159909] ==================================================================
[  186.022839] ==================================================================
[  186.024374] BUG: KFENCE: use-after-free read in test_use_after_free_read+0x150/0x1c8
[  186.024374] 
[  186.026608] Use-after-free read at 0x000000003cb5e766 (in kfence-#51):
[  186.027890]  test_use_after_free_read+0x150/0x1c8
[  186.029231]  kunit_try_run_case+0xf8/0x260
[  186.030447]  kunit_generic_run_threadfn_adapter+0x38/0x60
[  186.031928]  kthread+0x18c/0x1a8
[  186.032940]  ret_from_fork+0x10/0x20
[  186.034022] 
[  186.034617] kfence-#51: 0x000000003cb5e766-0x000000000db38057, size=32, cache=kmalloc-32
[  186.034617] 
[  186.036447] allocated by task 239 on cpu 1 at 186.022179s:
[  186.038099]  test_alloc+0x224/0x3d8
[  186.039068]  test_use_after_free_read+0xc8/0x1c8
[  186.040321]  kunit_try_run_case+0xf8/0x260
[  186.041533]  kunit_generic_run_threadfn_adapter+0x38/0x60
[  186.042966]  kthread+0x18c/0x1a8
[  186.043924]  ret_from_fork+0x10/0x20
[  186.044980] 
[  186.045500] freed by task 239 on cpu 1 at 186.022498s:
[  186.047162]  test_use_after_free_read+0x148/0x1c8
[  186.048313]  kunit_try_run_case+0xf8/0x260
[  186.049491]  kunit_generic_run_threadfn_adapter+0x38/0x60
[  186.050927]  kthread+0x18c/0x1a8
[  186.051920]  ret_from_fork+0x10/0x20
[  186.052997] 
[  186.053549] CPU: 1 PID: 239 Comm: kunit_try_catch Tainted: G    B            N 6.6.76-rc1 #1
[  186.055311] Hardware name: linux,dummy-virt (DT)
[  186.056384] ==================================================================

KNOWN ISSUE - log-parser-boot/kfence-bug-kfence-use-after-free-read-in-test_use_after_free_read: Failure

Metadata Full log Test run details

arch

arm64

host

x86_64

plan

2scp7HAa1iha7YmHo9amhA3Zoaf

job_id

TEST:linaro@lkft#2scpB413ETJoclX4AbSK487g0B2

job_url

https://tuxapi.tuxsuite.com/v1/groups/linaro/projects/lkft/tests/2scpB413ETJoclX4AbSK487g0B2

artefacts

kernel

url	https://storage.tuxsuite.com/public/linaro/lkft/builds/2scp859D1gQDvwueOeOLhXen96W/Image.gz
sha256sum	8ef350f1ff8c0b86754f9c49d9758f2abfe5f560fd1f13969fb3ac6b6ee5b243

rootfs

url	https://storage.tuxboot.com/debian/trixie/arm64/rootfs.ext4.xz
sha256sum	f592205e64add7389d8a1055c235aa3685e13c7cfdfdbe5f212ab22afdbeb656

modules

url	https://storage.tuxsuite.com/public/linaro/lkft/builds/2scp859D1gQDvwueOeOLhXen96W/modules.tar.xz
sha256sum	3823bf9cd7c260091e1cf80cd35f8dbf1c699d0fd388a80fcb6df9ba8db081d6

durations

tests

boot	1583.73
kunit	0

host_arch

amd64

build_name

gcc-13-lkftconfig-kunit

job_status

Complete

qemu_version

1:9.2.0+ds-2

[   38.258639] ==================================================================
[   38.259027] BUG: KFENCE: use-after-free read in test_use_after_free_read+0x65/0x110
[   38.259027] 
[   38.259450] Use-after-free read at 0x(ptrval) (in kfence-#25):
[   38.259846]  test_use_after_free_read+0x65/0x110
[   38.260139]  kunit_try_run_case+0x8a/0x1c4
[   38.260466]  kunit_generic_run_threadfn_adapter+0x16/0x20
[   38.260780]  kthread+0xe0/0x108
[   38.260941]  ret_from_fork+0x40/0x4c
[   38.262256]  ret_from_fork_asm+0x12/0x18
[   38.262384]  restore_all_switch_stack+0x0/0xc3
[   38.262475] 
[   38.262513] kfence-#25: 0x(ptrval)-0x(ptrval), size=32, cache=test
[   38.262513] 
[   38.262642] allocated by task 143 on cpu 1 at 38.258525s:
[   38.262752]  test_alloc+0xed/0x2d4
[   38.262819]  test_use_after_free_read+0x50/0x110
[   38.262900]  kunit_try_run_case+0x8a/0x1c4
[   38.262976]  kunit_generic_run_threadfn_adapter+0x16/0x20
[   38.263069]  kthread+0xe0/0x108
[   38.263194]  ret_from_fork+0x40/0x4c
[   38.263322]  ret_from_fork_asm+0x12/0x18
[   38.263464]  restore_all_switch_stack+0x0/0xc3
[   38.263624] 
[   38.263697] freed by task 143 on cpu 1 at 38.258582s:
[   38.263895]  test_use_after_free_read+0x65/0x110
[   38.264058]  kunit_try_run_case+0x8a/0x1c4
[   38.264411]  kunit_generic_run_threadfn_adapter+0x16/0x20
[   38.264807]  kthread+0xe0/0x108
[   38.265057]  ret_from_fork+0x40/0x4c
[   38.265345]  ret_from_fork_asm+0x12/0x18
[   38.265671]  restore_all_switch_stack+0x0/0xc3
[   38.265999] 
[   38.266499] CPU: 1 PID: 143 Comm: kunit_try_catch Tainted: G    B            N 6.6.76-rc1 #1
[   38.267531] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[   38.268705] ==================================================================
[   38.154739] ==================================================================
[   38.155095] BUG: KFENCE: use-after-free read in test_use_after_free_read+0x97/0x110
[   38.155095] 
[   38.155422] Use-after-free read at 0x(ptrval) (in kfence-#24):
[   38.155808]  test_use_after_free_read+0x97/0x110
[   38.156090]  kunit_try_run_case+0x8a/0x1c4
[   38.156350]  kunit_generic_run_threadfn_adapter+0x16/0x20
[   38.156534]  kthread+0xe0/0x108
[   38.156781]  ret_from_fork+0x40/0x4c
[   38.157041]  ret_from_fork_asm+0x12/0x18
[   38.157243]  restore_all_switch_stack+0x0/0xc3
[   38.157467] 
[   38.157540] kfence-#24: 0x(ptrval)-0x(ptrval), size=32, cache=kmalloc-32
[   38.157540] 
[   38.157803] allocated by task 141 on cpu 0 at 38.154549s:
[   38.158207]  test_alloc+0x153/0x2d4
[   38.158469]  test_use_after_free_read+0x50/0x110
[   38.158797]  kunit_try_run_case+0x8a/0x1c4
[   38.159080]  kunit_generic_run_threadfn_adapter+0x16/0x20
[   38.159485]  kthread+0xe0/0x108
[   38.159692]  ret_from_fork+0x40/0x4c
[   38.159848]  ret_from_fork_asm+0x12/0x18
[   38.159987]  restore_all_switch_stack+0x0/0xc3
[   38.160196] 
[   38.160340] freed by task 141 on cpu 0 at 38.154621s:
[   38.160568]  test_use_after_free_read+0x97/0x110
[   38.160771]  kunit_try_run_case+0x8a/0x1c4
[   38.161083]  kunit_generic_run_threadfn_adapter+0x16/0x20
[   38.161488]  kthread+0xe0/0x108
[   38.161730]  ret_from_fork+0x40/0x4c
[   38.161987]  ret_from_fork_asm+0x12/0x18
[   38.162148]  restore_all_switch_stack+0x0/0xc3
[   38.162332] 
[   38.162429] CPU: 0 PID: 141 Comm: kunit_try_catch Tainted: G    B            N 6.6.76-rc1 #1
[   38.162700] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[   38.162982] ==================================================================

KNOWN ISSUE - log-parser-boot/kfence-bug-kfence-use-after-free-read-in-test_use_after_free_read: Failure

Metadata Full log Test run details

arch

i386

host

x86_64

plan

2scp7HAa1iha7YmHo9amhA3Zoaf

job_id

TEST:linaro@lkft#2scpBmVQUHlTSiXzE79KaapXHrl

job_url

https://tuxapi.tuxsuite.com/v1/groups/linaro/projects/lkft/tests/2scpBmVQUHlTSiXzE79KaapXHrl

artefacts

kernel

url	https://storage.tuxsuite.com/public/linaro/lkft/builds/2scp8CsTPELedjE05M7YjmRJOuy/bzImage
sha256sum	64938529133431b7f935ff1737d0b72dab3ef83ad145b51dff95d999e68fa2a4

rootfs

url	https://storage.tuxboot.com/debian/trixie/i386/rootfs.ext4.xz
sha256sum	44f4dd168769b49f0ad83332faca7905116c0a6ecfb58ea4f3f357b1a552e209

modules

url	https://storage.tuxsuite.com/public/linaro/lkft/builds/2scp8CsTPELedjE05M7YjmRJOuy/modules.tar.xz
sha256sum	dd2b46c46fbaeea1d1b1111dff89cd1cd6f5bd8287beca32d47e7fd1efe9b9e4

durations

tests

boot	283.56
kunit	44.80

host_arch

x86_64

build_name

gcc-13-lkftconfig-kunit

job_status

Complete

qemu_version

9.2.0

Metadata

Failure - qemu-arm64 - gcc-13-lkftconfig-kunit KNOWN ISSUE

Failure - qemu-i386 - gcc-13-lkftconfig-kunit KNOWN ISSUE