Date
June 17, 2025, 3:39 p.m.
| Environment | |
|---|---|
| qemu-arm64 | |
| qemu-i386 | |
| qemu-x86_64 |
[ 121.983742] ================================================================== [ 121.984932] BUG: KFENCE: use-after-free read in test_krealloc+0x2b8/0x4e8 [ 121.984932] [ 121.985995] Use-after-free read at 0x0000000041058c96 (in kfence-#225): [ 121.987520] test_krealloc+0x2b8/0x4e8 [ 121.988493] kunit_try_run_case+0x114/0x298 [ 121.989357] kunit_generic_run_threadfn_adapter+0x38/0x60 [ 121.990911] kthread+0x18c/0x1a8 [ 121.991523] ret_from_fork+0x10/0x20 [ 121.992630] [ 121.993103] kfence-#225: 0x0000000041058c96-0x00000000273975c4, size=32, cache=kmalloc-32 [ 121.993103] [ 121.994352] allocated by task 278 on cpu 0 at 121.981920s: [ 121.995586] test_alloc+0x228/0x3e8 [ 121.996358] test_krealloc+0xc0/0x4e8 [ 121.997071] kunit_try_run_case+0x114/0x298 [ 121.997923] kunit_generic_run_threadfn_adapter+0x38/0x60 [ 121.998944] kthread+0x18c/0x1a8 [ 121.999894] ret_from_fork+0x10/0x20 [ 122.000350] [ 122.000557] freed by task 278 on cpu 0 at 121.982364s: [ 122.001080] krealloc+0xa8/0x1a0 [ 122.001377] test_krealloc+0x128/0x4e8 [ 122.002717] kunit_try_run_case+0x114/0x298 [ 122.003506] kunit_generic_run_threadfn_adapter+0x38/0x60 [ 122.004508] kthread+0x18c/0x1a8 [ 122.005229] ret_from_fork+0x10/0x20 [ 122.006007] [ 122.006225] CPU: 0 PID: 278 Comm: kunit_try_catch Tainted: G B N 6.6.94-rc1 #1 [ 122.007109] Hardware name: linux,dummy-virt (DT) [ 122.008209] ==================================================================
[ 47.176889] ================================================================== [ 47.177208] BUG: KFENCE: use-after-free read in test_krealloc+0x250/0x4b0 [ 47.177208] [ 47.177403] Use-after-free read at 0x(ptrval) (in kfence-#90): [ 47.177535] test_krealloc+0x250/0x4b0 [ 47.177638] kunit_try_run_case+0x8a/0x1c4 [ 47.177845] kunit_generic_run_threadfn_adapter+0x16/0x20 [ 47.178165] kthread+0xe0/0x108 [ 47.178371] ret_from_fork+0x40/0x4c [ 47.178569] ret_from_fork_asm+0x12/0x18 [ 47.178673] restore_all_switch_stack+0x0/0xc3 [ 47.178800] [ 47.178859] kfence-#90: 0x(ptrval)-0x(ptrval), size=32, cache=kmalloc-32 [ 47.178859] [ 47.179071] allocated by task 178 on cpu 0 at 47.176440s: [ 47.179439] test_alloc+0x153/0x2d4 [ 47.179679] test_krealloc+0x44/0x4b0 [ 47.179910] kunit_try_run_case+0x8a/0x1c4 [ 47.180193] kunit_generic_run_threadfn_adapter+0x16/0x20 [ 47.180450] kthread+0xe0/0x108 [ 47.180553] ret_from_fork+0x40/0x4c [ 47.180657] ret_from_fork_asm+0x12/0x18 [ 47.180785] restore_all_switch_stack+0x0/0xc3 [ 47.181070] [ 47.181186] freed by task 178 on cpu 0 at 47.176668s: [ 47.181476] krealloc+0x6c/0x1d4 [ 47.181676] test_krealloc+0x9c/0x4b0 [ 47.181839] kunit_try_run_case+0x8a/0x1c4 [ 47.182070] kunit_generic_run_threadfn_adapter+0x16/0x20 [ 47.182216] kthread+0xe0/0x108 [ 47.182347] ret_from_fork+0x40/0x4c [ 47.182589] ret_from_fork_asm+0x12/0x18 [ 47.182836] restore_all_switch_stack+0x0/0xc3 [ 47.183076] [ 47.183174] CPU: 0 PID: 178 Comm: kunit_try_catch Tainted: G B N 6.6.94-rc1 #1 [ 47.183440] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014 [ 47.183661] ==================================================================
[ 67.353480] ================================================================== [ 67.354034] BUG: KFENCE: use-after-free read in test_krealloc+0x2e9/0x530 [ 67.354034] [ 67.354558] Use-after-free read at 0x(____ptrval____) (in kfence-#147): [ 67.355138] test_krealloc+0x2e9/0x530 [ 67.355447] kunit_try_run_case+0x120/0x290 [ 67.355773] kunit_generic_run_threadfn_adapter+0x33/0x50 [ 67.356116] kthread+0x19e/0x1e0 [ 67.356366] ret_from_fork+0x41/0x70 [ 67.356598] ret_from_fork_asm+0x1b/0x30 [ 67.356874] [ 67.356984] kfence-#147: 0x(____ptrval____)-0x(____ptrval____), size=32, cache=kmalloc-32 [ 67.356984] [ 67.357504] allocated by task 293 on cpu 0 at 67.352899s: [ 67.357877] test_alloc+0x2ad/0x8e0 [ 67.358102] test_krealloc+0xb1/0x530 [ 67.358306] kunit_try_run_case+0x120/0x290 [ 67.358604] kunit_generic_run_threadfn_adapter+0x33/0x50 [ 67.359004] kthread+0x19e/0x1e0 [ 67.359210] ret_from_fork+0x41/0x70 [ 67.359484] ret_from_fork_asm+0x1b/0x30 [ 67.359706] [ 67.359829] freed by task 293 on cpu 0 at 67.353130s: [ 67.360295] krealloc+0x83/0x140 [ 67.360561] test_krealloc+0x137/0x530 [ 67.360849] kunit_try_run_case+0x120/0x290 [ 67.361111] kunit_generic_run_threadfn_adapter+0x33/0x50 [ 67.361442] kthread+0x19e/0x1e0 [ 67.361673] ret_from_fork+0x41/0x70 [ 67.361922] ret_from_fork_asm+0x1b/0x30 [ 67.362180] [ 67.362324] CPU: 0 PID: 293 Comm: kunit_try_catch Tainted: G B N 6.6.94-rc1 #1 [ 67.362792] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014 [ 67.363217] ==================================================================