Date
July 1, 2025, 12:10 a.m.
| Environment | |
|---|---|
| qemu-arm64 | |
| qemu-x86_64 |
[ 22.467670] ================================================================== [ 22.467773] BUG: KFENCE: use-after-free read in test_use_after_free_read+0x114/0x248 [ 22.467773] [ 22.467873] Use-after-free read at 0x00000000b78814de (in kfence-#98): [ 22.467927] test_use_after_free_read+0x114/0x248 [ 22.467974] kunit_try_run_case+0x170/0x3f0 [ 22.468024] kunit_generic_run_threadfn_adapter+0x88/0x100 [ 22.468070] kthread+0x328/0x630 [ 22.468112] ret_from_fork+0x10/0x20 [ 22.468152] [ 22.468179] kfence-#98: 0x00000000b78814de-0x000000008b99802a, size=32, cache=kmalloc-32 [ 22.468179] [ 22.468235] allocated by task 295 on cpu 0 at 22.467399s (0.000832s ago): [ 22.468308] test_alloc+0x29c/0x628 [ 22.468351] test_use_after_free_read+0xd0/0x248 [ 22.468394] kunit_try_run_case+0x170/0x3f0 [ 22.468435] kunit_generic_run_threadfn_adapter+0x88/0x100 [ 22.468499] kthread+0x328/0x630 [ 22.468535] ret_from_fork+0x10/0x20 [ 22.468577] [ 22.468602] freed by task 295 on cpu 0 at 22.467491s (0.001107s ago): [ 22.468681] test_use_after_free_read+0x1c0/0x248 [ 22.468724] kunit_try_run_case+0x170/0x3f0 [ 22.468765] kunit_generic_run_threadfn_adapter+0x88/0x100 [ 22.468810] kthread+0x328/0x630 [ 22.468846] ret_from_fork+0x10/0x20 [ 22.468887] [ 22.468935] CPU: 0 UID: 0 PID: 295 Comm: kunit_try_catch Tainted: G B N 6.16.0-rc4 #1 PREEMPT [ 22.469018] Tainted: [B]=BAD_PAGE, [N]=TEST [ 22.469047] Hardware name: linux,dummy-virt (DT) [ 22.469084] ================================================================== [ 22.571678] ================================================================== [ 22.571783] BUG: KFENCE: use-after-free read in test_use_after_free_read+0x114/0x248 [ 22.571783] [ 22.571881] Use-after-free read at 0x00000000117492f9 (in kfence-#99): [ 22.571935] test_use_after_free_read+0x114/0x248 [ 22.571983] kunit_try_run_case+0x170/0x3f0 [ 22.572029] kunit_generic_run_threadfn_adapter+0x88/0x100 [ 22.572075] kthread+0x328/0x630 [ 22.572114] ret_from_fork+0x10/0x20 [ 22.572154] [ 22.572178] kfence-#99: 0x00000000117492f9-0x00000000929e8b69, size=32, cache=test [ 22.572178] [ 22.572231] allocated by task 297 on cpu 0 at 22.571477s (0.000751s ago): [ 22.572304] test_alloc+0x230/0x628 [ 22.572345] test_use_after_free_read+0xd0/0x248 [ 22.572388] kunit_try_run_case+0x170/0x3f0 [ 22.572430] kunit_generic_run_threadfn_adapter+0x88/0x100 [ 22.572490] kthread+0x328/0x630 [ 22.572527] ret_from_fork+0x10/0x20 [ 22.572567] [ 22.572590] freed by task 297 on cpu 0 at 22.571546s (0.001041s ago): [ 22.572655] test_use_after_free_read+0xf0/0x248 [ 22.572698] kunit_try_run_case+0x170/0x3f0 [ 22.572738] kunit_generic_run_threadfn_adapter+0x88/0x100 [ 22.572785] kthread+0x328/0x630 [ 22.572822] ret_from_fork+0x10/0x20 [ 22.572862] [ 22.572907] CPU: 0 UID: 0 PID: 297 Comm: kunit_try_catch Tainted: G B N 6.16.0-rc4 #1 PREEMPT [ 22.572986] Tainted: [B]=BAD_PAGE, [N]=TEST [ 22.573016] Hardware name: linux,dummy-virt (DT) [ 22.573052] ==================================================================
[ 17.033460] ================================================================== [ 17.033851] BUG: KFENCE: use-after-free read in test_use_after_free_read+0x129/0x270 [ 17.033851] [ 17.034458] Use-after-free read at 0x(____ptrval____) (in kfence-#73): [ 17.034754] test_use_after_free_read+0x129/0x270 [ 17.034919] kunit_try_run_case+0x1a5/0x480 [ 17.035125] kunit_generic_run_threadfn_adapter+0x85/0xf0 [ 17.035433] kthread+0x337/0x6f0 [ 17.035611] ret_from_fork+0x116/0x1d0 [ 17.035826] ret_from_fork_asm+0x1a/0x30 [ 17.036002] [ 17.036118] kfence-#73: 0x(____ptrval____)-0x(____ptrval____), size=32, cache=test [ 17.036118] [ 17.036444] allocated by task 314 on cpu 0 at 17.033321s (0.003120s ago): [ 17.036674] test_alloc+0x2a6/0x10f0 [ 17.036878] test_use_after_free_read+0xdc/0x270 [ 17.037128] kunit_try_run_case+0x1a5/0x480 [ 17.037378] kunit_generic_run_threadfn_adapter+0x85/0xf0 [ 17.037606] kthread+0x337/0x6f0 [ 17.037766] ret_from_fork+0x116/0x1d0 [ 17.037925] ret_from_fork_asm+0x1a/0x30 [ 17.038082] [ 17.038197] freed by task 314 on cpu 0 at 17.033379s (0.004816s ago): [ 17.038661] test_use_after_free_read+0xfb/0x270 [ 17.038884] kunit_try_run_case+0x1a5/0x480 [ 17.039089] kunit_generic_run_threadfn_adapter+0x85/0xf0 [ 17.039359] kthread+0x337/0x6f0 [ 17.039525] ret_from_fork+0x116/0x1d0 [ 17.039705] ret_from_fork_asm+0x1a/0x30 [ 17.039895] [ 17.040000] CPU: 0 UID: 0 PID: 314 Comm: kunit_try_catch Tainted: G B N 6.16.0-rc4 #1 PREEMPT(voluntary) [ 17.040695] Tainted: [B]=BAD_PAGE, [N]=TEST [ 17.040919] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014 [ 17.041355] ================================================================== [ 16.929626] ================================================================== [ 16.930103] BUG: KFENCE: use-after-free read in test_use_after_free_read+0x129/0x270 [ 16.930103] [ 16.930534] Use-after-free read at 0x(____ptrval____) (in kfence-#72): [ 16.930804] test_use_after_free_read+0x129/0x270 [ 16.931055] kunit_try_run_case+0x1a5/0x480 [ 16.931676] kunit_generic_run_threadfn_adapter+0x85/0xf0 [ 16.932123] kthread+0x337/0x6f0 [ 16.932361] ret_from_fork+0x116/0x1d0 [ 16.932553] ret_from_fork_asm+0x1a/0x30 [ 16.932850] [ 16.932948] kfence-#72: 0x(____ptrval____)-0x(____ptrval____), size=32, cache=kmalloc-32 [ 16.932948] [ 16.933472] allocated by task 312 on cpu 1 at 16.929392s (0.004078s ago): [ 16.933874] test_alloc+0x364/0x10f0 [ 16.934063] test_use_after_free_read+0xdc/0x270 [ 16.934449] kunit_try_run_case+0x1a5/0x480 [ 16.934737] kunit_generic_run_threadfn_adapter+0x85/0xf0 [ 16.934950] kthread+0x337/0x6f0 [ 16.935288] ret_from_fork+0x116/0x1d0 [ 16.935454] ret_from_fork_asm+0x1a/0x30 [ 16.935664] [ 16.935869] freed by task 312 on cpu 1 at 16.929465s (0.006321s ago): [ 16.936477] test_use_after_free_read+0x1e7/0x270 [ 16.936706] kunit_try_run_case+0x1a5/0x480 [ 16.936984] kunit_generic_run_threadfn_adapter+0x85/0xf0 [ 16.937225] kthread+0x337/0x6f0 [ 16.937540] ret_from_fork+0x116/0x1d0 [ 16.937702] ret_from_fork_asm+0x1a/0x30 [ 16.938026] [ 16.938248] CPU: 1 UID: 0 PID: 312 Comm: kunit_try_catch Tainted: G B N 6.16.0-rc4 #1 PREEMPT(voluntary) [ 16.938719] Tainted: [B]=BAD_PAGE, [N]=TEST [ 16.938909] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014 [ 16.939519] ==================================================================