====================================== | 0 | xx__-> [ 925.705128][T13958] ------------[ cut here ]------------ | [ 925.705308][T13958] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#3: ip/13958 | [ 925.705568][T13958] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth [ 925.707470][T13958] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 925.707648][T13958] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 925.707800][T13958] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 925.708488][T13958] RSP: 0018:ffa00000026775d0 EFLAGS: 00010286 [ 925.708668][T13958] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe220000189bebf [ 925.708875][T13958] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100000c4df5f8 [ 925.709183][T13958] RBP: 1ff40000004ceebb R08: 1fe220000189bec0 R09: fffa3bfffffb0b24 [ 925.709441][T13958] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100000c4df3b4 [ 925.709657][T13958] R13: ff1100000c4df380 R14: ffffffff931c7940 R15: ff1100000c4df540 [ 925.709882][T13958] FS: 00007fb1005ae440(0000) GS:ff110000a3238000(0000) knlGS:0000000000000000 [ 925.710228][T13958] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 925.710409][T13958] CR2: 000000000044f720 CR3: 000000000242a002 CR4: 0000000000771ef0 [ 925.710621][T13958] PKRU: 55555554 [ 925.710729][T13958] Call Trace: [ 925.710836][T13958] [ 925.711006][T13958] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 925.711149][T13958] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 925.711297][T13958] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 925.711445][T13958] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 925.711584][T13958] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 925.711724][T13958] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 925.711861][T13958] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 925.712103][T13958] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 925.712256][T13958] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 925.712404][T13958] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 925.712559][T13958] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 925.712699][T13958] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 925.712852][T13958] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 925.713104][T13958] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 925.713246][T13958] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 925.713385][T13958] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 925.713529][T13958] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 925.713669][T13958] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 925.713825][T13958] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 925.714044][T13958] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 925.714186][T13958] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 925.714320][T13958] ? copy_msghdr_from_user (net/socket.c:2525) [ 925.714457][T13958] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 925.714635][T13958] ? move_addr_to_kernel (net/socket.c:2511) [ 925.714775][T13958] ? filemap_map_folio_range (mm/filemap.c:3873) [ 925.714982][T13958] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 925.715126][T13958] ___sys_sendmsg (net/socket.c:2641) [ 925.715267][T13958] ? copy_msghdr_from_user (net/socket.c:2628) [ 925.715415][T13958] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 925.715559][T13958] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 925.715702][T13958] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 925.715849][T13958] ? __sys_sendmsg_sock (net/socket.c:2656) [ 925.716093][T13958] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 925.716247][T13958] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 925.716390][T13958] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 925.716535][T13958] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 925.716677][T13958] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 925.716828][T13958] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 925.717061][T13958] RIP: 0033:0x7fb100708c5e [ 925.717210][T13958] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 925.717716][T13958] RSP: 002b:00007ffe3d9d1080 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 925.717989][T13958] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007fb100708c5e [ 925.718214][T13958] RDX: 0000000000000000 RSI: 00007ffe3d9d1140 RDI: 0000000000000005 [ 925.718420][T13958] RBP: 00007ffe3d9d1090 R08: 0000000000000000 R09: 0000000000000000 [ 925.718617][T13958] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 925.718835][T13958] R13: 0000000069cbe7e5 R14: 0000000000000004 R15: 000000000049d620 | [ 925.787617][T13962] ------------[ cut here ]------------ | [ 925.787796][T13962] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#3: ip/13962 | [ 925.788074][T13962] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 925.788943][T13962] Tainted: [W]=WARN [ 925.789050][T13962] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 925.789223][T13962] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 925.789375][T13962] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 925.789890][T13962] RSP: 0018:ffa00000026775d0 EFLAGS: 00010286 [ 925.790076][T13962] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe2200003875137 [ 925.790288][T13962] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001c3a89b8 [ 925.790519][T13962] RBP: 1ff40000004ceebb R08: 1fe2200003875138 R09: fffa3bfffffb0b24 [ 925.790716][T13962] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001c3a8af4 [ 925.790931][T13962] R13: ff1100001c3a8ac0 R14: ffffffff931c7940 R15: ff1100001c3a8900 [ 925.791146][T13962] FS: 00007f78b34d5440(0000) GS:ff110000a3238000(0000) knlGS:0000000000000000 [ 925.791408][T13962] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 925.791586][T13962] CR2: 000000000044f720 CR3: 00000000107fd002 CR4: 0000000000771ef0 [ 925.791835][T13962] PKRU: 55555554 [ 925.791945][T13962] Call Trace: [ 925.792046][T13962] [ 925.792115][T13962] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 925.792268][T13962] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 925.792439][T13962] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 925.792579][T13962] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 925.792715][T13962] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 925.792859][T13962] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 925.793004][T13962] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 925.793143][T13962] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 925.793288][T13962] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 925.793435][T13962] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 925.793589][T13962] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 925.793723][T13962] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 925.793859][T13962] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 925.794001][T13962] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 925.794144][T13962] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 925.794282][T13962] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 925.794430][T13962] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 925.794572][T13962] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 925.794705][T13962] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 925.794841][T13962] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 925.794984][T13962] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 925.795116][T13962] ? copy_msghdr_from_user (net/socket.c:2525) [ 925.795247][T13962] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 925.795428][T13962] ? move_addr_to_kernel (net/socket.c:2511) [ 925.795565][T13962] ? filemap_map_folio_range (mm/filemap.c:3873) [ 925.795697][T13962] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 925.795835][T13962] ___sys_sendmsg (net/socket.c:2641) [ 925.795975][T13962] ? copy_msghdr_from_user (net/socket.c:2628) [ 925.796117][T13962] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 925.796258][T13962] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 925.796399][T13962] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 925.796538][T13962] ? __sys_sendmsg_sock (net/socket.c:2656) [ 925.796679][T13962] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 925.796817][T13962] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 925.796960][T13962] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 925.797100][T13962] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 925.797253][T13962] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 925.797405][T13962] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 925.797581][T13962] RIP: 0033:0x7f78b362fc5e [ 925.797747][T13962] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 925.798339][T13962] RSP: 002b:00007ffe7daf7200 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 925.798553][T13962] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007f78b362fc5e [ 925.798759][T13962] RDX: 0000000000000000 RSI: 00007ffe7daf72c0 RDI: 0000000000000005 [ 925.799030][T13962] RBP: 00007ffe7daf7210 R08: 0000000000000000 R09: 0000000000000000 [ 925.799232][T13962] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 925.799464][T13962] R13: 0000000069cbe7e5 R14: 0000000000000004 R15: 000000000049d620 | [ 925.885051][T13968] ------------[ cut here ]------------ | [ 925.885223][T13968] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#3: ip/13968 | [ 925.885470][T13968] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 925.886282][T13968] Tainted: [W]=WARN [ 925.886403][T13968] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 925.886574][T13968] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 925.886721][T13968] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 925.887235][T13968] RSP: 0018:ffa00000027375d0 EFLAGS: 00010286 [ 925.887422][T13968] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe22000038752bf [ 925.887628][T13968] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001c3a95f8 [ 925.887845][T13968] RBP: 1ff40000004e6ebb R08: 1fe22000038752c0 R09: fffa3bfffffb0b24 [ 925.888057][T13968] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001c3a9734 [ 925.888264][T13968] R13: ff1100001c3a9700 R14: ffffffff931c7940 R15: ff1100001c3a9540 [ 925.888477][T13968] FS: 00007fc3a92c7440(0000) GS:ff110000a3238000(0000) knlGS:0000000000000000 [ 925.888719][T13968] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 925.888892][T13968] CR2: 000000000044f720 CR3: 000000000b607004 CR4: 0000000000771ef0 [ 925.889109][T13968] PKRU: 55555554 [ 925.889214][T13968] Call Trace: [ 925.889317][T13968] [ 925.889390][T13968] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 925.889536][T13968] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 925.889682][T13968] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 925.889841][T13968] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 925.890440][T13968] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 925.890600][T13968] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 925.890744][T13968] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 925.890886][T13968] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 925.891033][T13968] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 925.891175][T13968] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 925.891340][T13968] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 925.891510][T13968] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 925.891656][T13968] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 925.891800][T13968] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 925.891973][T13968] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 925.892129][T13968] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 925.892286][T13968] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 925.892440][T13968] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 925.892580][T13968] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 925.892728][T13968] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 925.892874][T13968] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 925.893027][T13968] ? copy_msghdr_from_user (net/socket.c:2525) [ 925.893174][T13968] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 925.893350][T13968] ? move_addr_to_kernel (net/socket.c:2511) [ 925.893502][T13968] ? filemap_map_folio_range (mm/filemap.c:3873) [ 925.893643][T13968] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 925.893791][T13968] ___sys_sendmsg (net/socket.c:2641) [ 925.893938][T13968] ? copy_msghdr_from_user (net/socket.c:2628) [ 925.894090][T13968] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 925.894251][T13968] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 925.894393][T13968] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 925.894544][T13968] ? __sys_sendmsg_sock (net/socket.c:2656) [ 925.894688][T13968] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 925.894833][T13968] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 925.894975][T13968] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 925.895118][T13968] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 925.895276][T13968] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 925.895417][T13968] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 925.895599][T13968] RIP: 0033:0x7fc3a9421c5e [ 925.895761][T13968] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 925.896280][T13968] RSP: 002b:00007ffde0642e70 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 925.896502][T13968] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007fc3a9421c5e [ 925.896714][T13968] RDX: 0000000000000000 RSI: 00007ffde0642f30 RDI: 0000000000000005 [ 925.896931][T13968] RBP: 00007ffde0642e80 R08: 0000000000000000 R09: 0000000000000000 [ 925.897142][T13968] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 925.897349][T13968] R13: 0000000069cbe7e5 R14: 0000000000000004 R15: 000000000049d620 | [ 925.963850][T13972] ------------[ cut here ]------------ | [ 925.964077][T13972] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#3: ip/13972 | [ 925.964348][T13972] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 925.965107][T13972] Tainted: [W]=WARN [ 925.965208][T13972] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 925.965372][T13972] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 925.965515][T13972] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 925.965992][T13972] RSP: 0018:ffa00000027275d0 EFLAGS: 00010286 [ 925.966161][T13972] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe22000011ac687 [ 925.966357][T13972] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff11000008d63438 [ 925.966559][T13972] RBP: 1ff40000004e4ebb R08: 1fe22000011ac688 R09: fffa3bfffffb0b24 [ 925.966754][T13972] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff11000008d63574 [ 925.966955][T13972] R13: ff11000008d63540 R14: ffffffff931c7940 R15: ff11000008d63380 [ 925.967153][T13972] FS: 00007eff158a2440(0000) GS:ff110000a3238000(0000) knlGS:0000000000000000 [ 925.967389][T13972] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 925.967557][T13972] CR2: 000000000044f720 CR3: 0000000019562003 CR4: 0000000000771ef0 [ 925.967753][T13972] PKRU: 55555554 [ 925.967853][T13972] Call Trace: [ 925.967962][T13972] [ 925.968031][T13972] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 925.968162][T13972] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 925.968302][T13972] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 925.968439][T13972] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 925.968569][T13972] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 925.968704][T13972] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 925.968834][T13972] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 925.968970][T13972] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 925.969101][T13972] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 925.969233][T13972] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 925.969373][T13972] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 925.969511][T13972] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 925.969650][T13972] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 925.969788][T13972] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 925.970261][T13972] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 925.970421][T13972] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 925.970579][T13972] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 925.970722][T13972] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 925.970881][T13972] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 925.971024][T13972] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 925.971161][T13972] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 925.971291][T13972] ? copy_msghdr_from_user (net/socket.c:2525) [ 925.971428][T13972] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 925.971589][T13972] ? move_addr_to_kernel (net/socket.c:2511) [ 925.971723][T13972] ? filemap_map_folio_range (mm/filemap.c:3873) [ 925.971855][T13972] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 925.971994][T13972] ___sys_sendmsg (net/socket.c:2641) [ 925.972125][T13972] ? copy_msghdr_from_user (net/socket.c:2628) [ 925.972260][T13972] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 925.972393][T13972] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 925.972532][T13972] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 925.972663][T13972] ? __sys_sendmsg_sock (net/socket.c:2656) [ 925.972798][T13972] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 925.972933][T13972] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 925.973065][T13972] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 925.973196][T13972] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 925.973326][T13972] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 925.973466][T13972] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 925.973628][T13972] RIP: 0033:0x7eff159fcc5e [ 925.973769][T13972] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 925.974276][T13972] RSP: 002b:00007ffdc411f220 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 925.974518][T13972] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007eff159fcc5e [ 925.974726][T13972] RDX: 0000000000000000 RSI: 00007ffdc411f2e0 RDI: 0000000000000005 [ 925.974937][T13972] RBP: 00007ffdc411f230 R08: 0000000000000000 R09: 0000000000000000 [ 925.975144][T13972] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 925.975349][T13972] R13: 0000000069cbe7e5 R14: 0000000000000004 R15: 000000000049d620 | [ 926.039804][T13978] ------------[ cut here ]------------ | [ 926.040174][T13978] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#0: ip/13978 | [ 926.040420][T13978] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 926.041200][T13978] Tainted: [W]=WARN [ 926.041305][T13978] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 926.041478][T13978] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 926.041637][T13978] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 926.042124][T13978] RSP: 0018:ffa00000027475d0 EFLAGS: 00010286 [ 926.042299][T13978] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe22000011ac5df [ 926.042503][T13978] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff11000008d62ef8 [ 926.042708][T13978] RBP: 1ff40000004e8ebb R08: 1fe22000011ac5e0 R09: fffa3bfffffb0b24 [ 926.042911][T13978] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff11000008d62074 [ 926.043132][T13978] R13: ff11000008d62040 R14: ffffffff931c7940 R15: ff11000008d62e40 [ 926.043335][T13978] FS: 00007f0d23701440(0000) GS:ff110000a30b8000(0000) knlGS:0000000000000000 [ 926.043573][T13978] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 926.043777][T13978] CR2: 000000000044f720 CR3: 000000000f68f001 CR4: 0000000000771ef0 [ 926.043999][T13978] PKRU: 55555554 [ 926.044104][T13978] Call Trace: [ 926.044211][T13978] [ 926.044282][T13978] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 926.044428][T13978] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 926.044573][T13978] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 926.044717][T13978] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 926.044853][T13978] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 926.045095][T13978] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 926.045233][T13978] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 926.045372][T13978] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 926.045512][T13978] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 926.045727][T13978] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 926.045869][T13978] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 926.046022][T13978] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 926.046159][T13978] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 926.046368][T13978] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 926.046513][T13978] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 926.046649][T13978] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 926.046787][T13978] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 926.047007][T13978] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 926.047153][T13978] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 926.047296][T13978] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 926.047436][T13978] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 926.047663][T13978] ? copy_msghdr_from_user (net/socket.c:2525) [ 926.047802][T13978] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 926.047976][T13978] ? move_addr_to_kernel (net/socket.c:2511) [ 926.048114][T13978] ? filemap_map_folio_range (mm/filemap.c:3873) [ 926.048329][T13978] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 926.048496][T13978] ___sys_sendmsg (net/socket.c:2641) [ 926.048644][T13978] ? copy_msghdr_from_user (net/socket.c:2628) [ 926.048785][T13978] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 926.049013][T13978] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 926.049152][T13978] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 926.049289][T13978] ? __sys_sendmsg_sock (net/socket.c:2656) [ 926.049437][T13978] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 926.049651][T13978] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 926.049789][T13978] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 926.049931][T13978] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 926.050071][T13978] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 926.050302][T13978] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 926.050482][T13978] RIP: 0033:0x7f0d2385bc5e [ 926.050633][T13978] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 926.051209][T13978] RSP: 002b:00007ffc2d0e29a0 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 926.051423][T13978] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007f0d2385bc5e [ 926.051709][T13978] RDX: 0000000000000000 RSI: 00007ffc2d0e2a60 RDI: 0000000000000005 [ 926.051919][T13978] RBP: 00007ffc2d0e29b0 R08: 0000000000000000 R09: 0000000000000000 [ 926.052207][T13978] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 926.052424][T13978] R13: 0000000069cbe7e5 R14: 0000000000000004 R15: 000000000049d620 | [ 926.129626][T13982] ------------[ cut here ]------------ | [ 926.129814][T13982] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#0: ip/13982 | [ 926.130411][T13982] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 926.131253][T13982] Tainted: [W]=WARN [ 926.131367][T13982] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 926.131587][T13982] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 926.131737][T13982] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 926.132246][T13982] RSP: 0018:ffa00000027775d0 EFLAGS: 00010286 [ 926.132445][T13982] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe2200001ea04c7 [ 926.132642][T13982] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100000f502638 [ 926.132853][T13982] RBP: 1ff40000004eeebb R08: 1fe2200001ea04c8 R09: fffa3bfffffb0b24 [ 926.133068][T13982] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100000f502774 [ 926.133266][T13982] R13: ff1100000f502740 R14: ffffffff931c7940 R15: ff1100000f502580 [ 926.133494][T13982] FS: 00007efcd4651440(0000) GS:ff110000a30b8000(0000) knlGS:0000000000000000 [ 926.133747][T13982] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 926.133923][T13982] CR2: 000000000044f720 CR3: 000000000f68f003 CR4: 0000000000771ef0 [ 926.134122][T13982] PKRU: 55555554 [ 926.134222][T13982] Call Trace: [ 926.134322][T13982] [ 926.134390][T13982] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 926.134538][T13982] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 926.134679][T13982] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 926.134812][T13982] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 926.134958][T13982] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 926.135100][T13982] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 926.135259][T13982] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 926.135393][T13982] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 926.135530][T13982] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 926.135662][T13982] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 926.135799][T13982] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 926.135937][T13982] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 926.136071][T13982] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 926.136214][T13982] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 926.136352][T13982] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 926.136497][T13982] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 926.136634][T13982] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 926.136774][T13982] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 926.136924][T13982] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 926.137060][T13982] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 926.137194][T13982] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 926.137325][T13982] ? copy_msghdr_from_user (net/socket.c:2525) [ 926.137462][T13982] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 926.137668][T13982] ? move_addr_to_kernel (net/socket.c:2511) [ 926.137833][T13982] ? filemap_map_folio_range (mm/filemap.c:3873) [ 926.138025][T13982] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 926.138181][T13982] ___sys_sendmsg (net/socket.c:2641) [ 926.138323][T13982] ? copy_msghdr_from_user (net/socket.c:2628) [ 926.138466][T13982] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 926.138610][T13982] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 926.138752][T13982] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 926.138887][T13982] ? __sys_sendmsg_sock (net/socket.c:2656) [ 926.139036][T13982] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 926.139191][T13982] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 926.139334][T13982] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 926.139491][T13982] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 926.139632][T13982] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 926.139788][T13982] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 926.139964][T13982] RIP: 0033:0x7efcd47abc5e [ 926.140104][T13982] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 926.140583][T13982] RSP: 002b:00007fffc0d73bb0 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 926.140783][T13982] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007efcd47abc5e [ 926.140985][T13982] RDX: 0000000000000000 RSI: 00007fffc0d73c70 RDI: 0000000000000005 [ 926.141183][T13982] RBP: 00007fffc0d73bc0 R08: 0000000000000000 R09: 0000000000000000 [ 926.141388][T13982] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 926.141626][T13982] R13: 0000000069cbe7e5 R14: 0000000000000004 R15: 000000000049d620 | [ 926.219359][T13988] ------------[ cut here ]------------ | [ 926.219560][T13988] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#3: ip/13988 | [ 926.219821][T13988] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 926.220657][T13988] Tainted: [W]=WARN [ 926.220785][T13988] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 926.220967][T13988] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 926.221118][T13988] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 926.221628][T13988] RSP: 0018:ffa0000001fef5d0 EFLAGS: 00010286 [ 926.221806][T13988] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe2200001ea0457 [ 926.222017][T13988] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100000f5022b8 [ 926.222225][T13988] RBP: 1ff40000003fdebb R08: 1fe2200001ea0458 R09: fffa3bfffffb0b24 [ 926.222434][T13988] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100000f502af4 [ 926.222643][T13988] R13: ff1100000f502ac0 R14: ffffffff931c7940 R15: ff1100000f502200 [ 926.222849][T13988] FS: 00007f54f245e440(0000) GS:ff110000a3238000(0000) knlGS:0000000000000000 [ 926.223104][T13988] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 926.223280][T13988] CR2: 000000000044f720 CR3: 0000000010101005 CR4: 0000000000771ef0 [ 926.223508][T13988] PKRU: 55555554 [ 926.223612][T13988] Call Trace: [ 926.223715][T13988] [ 926.223786][T13988] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 926.223931][T13988] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 926.224078][T13988] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 926.224219][T13988] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 926.224361][T13988] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 926.224510][T13988] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 926.224653][T13988] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 926.224795][T13988] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 926.224940][T13988] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 926.225085][T13988] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 926.225228][T13988] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 926.225378][T13988] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 926.225526][T13988] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 926.225664][T13988] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 926.225802][T13988] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 926.226491][T13988] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 926.226653][T13988] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 926.226793][T13988] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 926.226939][T13988] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 926.227081][T13988] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 926.227214][T13988] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 926.227365][T13988] ? copy_msghdr_from_user (net/socket.c:2525) [ 926.227509][T13988] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 926.227683][T13988] ? move_addr_to_kernel (net/socket.c:2511) [ 926.227815][T13988] ? filemap_map_folio_range (mm/filemap.c:3873) [ 926.227956][T13988] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 926.228089][T13988] ___sys_sendmsg (net/socket.c:2641) [ 926.228222][T13988] ? copy_msghdr_from_user (net/socket.c:2628) [ 926.228370][T13988] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 926.228523][T13988] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 926.228663][T13988] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 926.228808][T13988] ? __sys_sendmsg_sock (net/socket.c:2656) [ 926.228957][T13988] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 926.229111][T13988] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 926.229250][T13988] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 926.229387][T13988] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 926.229531][T13988] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 926.229683][T13988] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 926.230231][T13988] RIP: 0033:0x7f54f25b8c5e [ 926.230423][T13988] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 926.230899][T13988] RSP: 002b:00007ffd86794630 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 926.231132][T13988] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007f54f25b8c5e [ 926.231338][T13988] RDX: 0000000000000000 RSI: 00007ffd867946f0 RDI: 0000000000000005 [ 926.231595][T13988] RBP: 00007ffd86794640 R08: 0000000000000000 R09: 0000000000000000 [ 926.231790][T13988] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 926.231994][T13988] R13: 0000000069cbe7e5 R14: 0000000000000004 R15: 000000000049d620 | [ 926.299289][T13992] ------------[ cut here ]------------ | [ 926.299480][T13992] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#3: ip/13992 | [ 926.299718][T13992] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 926.301040][T13992] Tainted: [W]=WARN [ 926.301166][T13992] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 926.301365][T13992] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 926.301542][T13992] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 926.302077][T13992] RSP: 0018:ffa00000026775d0 EFLAGS: 00010286 [ 926.302247][T13992] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe22000034c201f [ 926.302490][T13992] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001a6100f8 [ 926.302723][T13992] RBP: 1ff40000004ceebb R08: 1fe22000034c2020 R09: fffa3bfffffb0b24 [ 926.302964][T13992] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001a611ab4 [ 926.303165][T13992] R13: ff1100001a611a80 R14: ffffffff931c7940 R15: ff1100001a610040 [ 926.303394][T13992] FS: 00007f85cc4b6440(0000) GS:ff110000a3238000(0000) knlGS:0000000000000000 [ 926.303634][T13992] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 926.303801][T13992] CR2: 000000000044f720 CR3: 00000000101f8002 CR4: 0000000000771ef0 [ 926.304005][T13992] PKRU: 55555554 [ 926.304107][T13992] Call Trace: [ 926.304205][T13992] [ 926.304273][T13992] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 926.304408][T13992] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 926.304548][T13992] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 926.304680][T13992] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 926.304811][T13992] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 926.304951][T13992] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 926.305081][T13992] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 926.305237][T13992] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 926.305406][T13992] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 926.305541][T13992] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 926.305676][T13992] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 926.305807][T13992] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 926.305945][T13992] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 926.306082][T13992] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 926.306210][T13992] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 926.306350][T13992] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 926.306495][T13992] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 926.306627][T13992] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 926.306758][T13992] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 926.306898][T13992] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 926.307040][T13992] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 926.307179][T13992] ? copy_msghdr_from_user (net/socket.c:2525) [ 926.307317][T13992] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 926.307509][T13992] ? move_addr_to_kernel (net/socket.c:2511) [ 926.307656][T13992] ? filemap_map_folio_range (mm/filemap.c:3873) [ 926.307811][T13992] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 926.307992][T13992] ___sys_sendmsg (net/socket.c:2641) [ 926.308133][T13992] ? copy_msghdr_from_user (net/socket.c:2628) [ 926.308272][T13992] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 926.308418][T13992] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 926.308560][T13992] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 926.308705][T13992] ? __sys_sendmsg_sock (net/socket.c:2656) [ 926.308847][T13992] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 926.308993][T13992] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 926.309128][T13992] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 926.309265][T13992] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 926.309406][T13992] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 926.309541][T13992] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 926.309706][T13992] RIP: 0033:0x7f85cc610c5e [ 926.309853][T13992] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 926.310349][T13992] RSP: 002b:00007fff0a07e760 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 926.310565][T13992] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007f85cc610c5e [ 926.310772][T13992] RDX: 0000000000000000 RSI: 00007fff0a07e820 RDI: 0000000000000005 [ 926.310983][T13992] RBP: 00007fff0a07e770 R08: 0000000000000000 R09: 0000000000000000 [ 926.311196][T13992] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 926.311408][T13992] R13: 0000000069cbe7e5 R14: 0000000000000004 R15: 000000000049d620 | [ 926.380301][T13998] ------------[ cut here ]------------ | [ 926.380502][T13998] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#0: ip/13998 | [ 926.380752][T13998] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 926.381558][T13998] Tainted: [W]=WARN [ 926.381668][T13998] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 926.381836][T13998] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 926.381988][T13998] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 926.382480][T13998] RSP: 0018:ffa00000027e75d0 EFLAGS: 00010286 [ 926.382656][T13998] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe22000034c20c7 [ 926.382857][T13998] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001a610638 [ 926.383067][T13998] RBP: 1ff40000004fcebb R08: 1fe22000034c20c8 R09: fffa3bfffffb0b24 [ 926.383268][T13998] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001a6103f4 [ 926.383479][T13998] R13: ff1100001a6103c0 R14: ffffffff931c7940 R15: ff1100001a610580 [ 926.383679][T13998] FS: 00007fad9e1d7440(0000) GS:ff110000a30b8000(0000) knlGS:0000000000000000 [ 926.383932][T13998] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 926.384116][T13998] CR2: 000000000044f720 CR3: 000000000c6c7005 CR4: 0000000000771ef0 [ 926.384321][T13998] PKRU: 55555554 [ 926.384433][T13998] Call Trace: [ 926.384538][T13998] [ 926.384607][T13998] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 926.384745][T13998] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 926.384886][T13998] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 926.385031][T13998] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 926.385168][T13998] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 926.385308][T13998] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 926.385451][T13998] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 926.385599][T13998] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 926.385733][T13998] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 926.385868][T13998] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 926.386017][T13998] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 926.386162][T13998] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 926.386302][T13998] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 926.386440][T13998] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 926.386584][T13998] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 926.386726][T13998] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 926.386865][T13998] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 926.387008][T13998] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 926.387142][T13998] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 926.387276][T13998] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 926.387420][T13998] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 926.387554][T13998] ? copy_msghdr_from_user (net/socket.c:2525) [ 926.387687][T13998] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 926.387852][T13998] ? move_addr_to_kernel (net/socket.c:2511) [ 926.387992][T13998] ? filemap_map_folio_range (mm/filemap.c:3873) [ 926.388137][T13998] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 926.388275][T13998] ___sys_sendmsg (net/socket.c:2641) [ 926.388415][T13998] ? copy_msghdr_from_user (net/socket.c:2628) [ 926.388552][T13998] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 926.388694][T13998] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 926.388841][T13998] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 926.388985][T13998] ? __sys_sendmsg_sock (net/socket.c:2656) [ 926.389122][T13998] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 926.389256][T13998] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 926.389391][T13998] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 926.389530][T13998] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 926.389671][T13998] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 926.389811][T13998] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 926.389997][T13998] RIP: 0033:0x7fad9e331c5e [ 926.390148][T13998] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 926.390645][T13998] RSP: 002b:00007fffd37f19c0 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 926.390847][T13998] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007fad9e331c5e [ 926.391060][T13998] RDX: 0000000000000000 RSI: 00007fffd37f1a80 RDI: 0000000000000005 [ 926.391270][T13998] RBP: 00007fffd37f19d0 R08: 0000000000000000 R09: 0000000000000000 [ 926.391481][T13998] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 926.391694][T13998] R13: 0000000069cbe7e5 R14: 0000000000000004 R15: 000000000049d620 | [ 926.461753][T14002] ------------[ cut here ]------------ | [ 926.462546][T14002] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#2: ip/14002 | [ 926.462840][T14002] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 926.463773][T14002] Tainted: [W]=WARN [ 926.463953][T14002] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 926.464190][T14002] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 926.464404][T14002] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 926.464972][T14002] RSP: 0018:ffa00000027b75d0 EFLAGS: 00010286 [ 926.465204][T14002] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe220000215e857 [ 926.465467][T14002] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff11000010af42b8 [ 926.465750][T14002] RBP: 1ff40000004f6ebb R08: 1fe220000215e858 R09: fffa3bfffffb0b24 [ 926.466038][T14002] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff11000010af43f4 [ 926.466304][T14002] R13: ff11000010af43c0 R14: ffffffff931c7940 R15: ff11000010af4200 [ 926.466590][T14002] FS: 00007f81be0f2440(0000) GS:ff110000a31b8000(0000) knlGS:0000000000000000 [ 926.466910][T14002] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 926.467144][T14002] CR2: 000000000044f720 CR3: 000000000bef3004 CR4: 0000000000771ef0 [ 926.467413][T14002] PKRU: 55555554 [ 926.467568][T14002] Call Trace: [ 926.467722][T14002] [ 926.467847][T14002] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 926.468055][T14002] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 926.468264][T14002] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 926.468486][T14002] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 926.468681][T14002] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 926.468906][T14002] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 926.469088][T14002] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 926.469290][T14002] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 926.469488][T14002] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 926.469679][T14002] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 926.469916][T14002] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 926.470146][T14002] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 926.470384][T14002] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 926.470583][T14002] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 926.470763][T14002] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 926.470965][T14002] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 926.471168][T14002] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 926.471356][T14002] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 926.471548][T14002] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 926.471770][T14002] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 926.471984][T14002] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 926.472207][T14002] ? copy_msghdr_from_user (net/socket.c:2525) [ 926.472402][T14002] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 926.472616][T14002] ? move_addr_to_kernel (net/socket.c:2511) [ 926.472804][T14002] ? filemap_map_folio_range (mm/filemap.c:3873) [ 926.473018][T14002] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 926.473242][T14002] ___sys_sendmsg (net/socket.c:2641) [ 926.473468][T14002] ? copy_msghdr_from_user (net/socket.c:2628) [ 926.473685][T14002] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 926.473875][T14002] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 926.474076][T14002] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 926.474303][T14002] ? __sys_sendmsg_sock (net/socket.c:2656) [ 926.474534][T14002] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 926.474753][T14002] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 926.474950][T14002] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 926.475139][T14002] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 926.475323][T14002] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 926.475515][T14002] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 926.475734][T14002] RIP: 0033:0x7f81be24cc5e [ 926.475937][T14002] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 926.476509][T14002] RSP: 002b:00007fffd76413a0 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 926.476816][T14002] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007f81be24cc5e [ 926.477122][T14002] RDX: 0000000000000000 RSI: 00007fffd7641460 RDI: 0000000000000005 [ 926.477372][T14002] RBP: 00007fffd76413b0 R08: 0000000000000000 R09: 0000000000000000 [ 926.477649][T14002] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 926.477947][T14002] R13: 0000000069cbe7e5 R14: 0000000000000004 R15: 000000000049d620 | [ 926.554629][T14008] ------------[ cut here ]------------ | [ 926.554861][T14008] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#2: ip/14008 | [ 926.555369][T14008] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 926.556296][T14008] Tainted: [W]=WARN [ 926.556470][T14008] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 926.556715][T14008] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 926.556927][T14008] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 926.557476][T14008] RSP: 0018:ffa00000027c75d0 EFLAGS: 00010286 [ 926.557738][T14008] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe220000215eb2f [ 926.558018][T14008] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff11000010af5978 [ 926.558279][T14008] RBP: 1ff40000004f8ebb R08: 1fe220000215eb30 R09: fffa3bfffffb0b24 [ 926.558561][T14008] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff11000010af51f4 [ 926.558843][T14008] R13: ff11000010af51c0 R14: ffffffff931c7940 R15: ff11000010af58c0 [ 926.559120][T14008] FS: 00007f4fde34d440(0000) GS:ff110000a31b8000(0000) knlGS:0000000000000000 [ 926.559427][T14008] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 926.559657][T14008] CR2: 000000000044f720 CR3: 0000000019a2e001 CR4: 0000000000771ef0 [ 926.559932][T14008] PKRU: 55555554 [ 926.560095][T14008] Call Trace: [ 926.560252][T14008] [ 926.560372][T14008] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 926.560572][T14008] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 926.560779][T14008] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 926.560982][T14008] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 926.561175][T14008] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 926.561366][T14008] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 926.561570][T14008] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 926.561782][T14008] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 926.562005][T14008] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 926.562199][T14008] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 926.562385][T14008] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 926.562585][T14008] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 926.562781][T14008] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 926.563102][T14008] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 926.563304][T14008] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 926.563512][T14008] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 926.563701][T14008] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 926.563890][T14008] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 926.564104][T14008] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 926.564297][T14008] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 926.564494][T14008] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 926.564710][T14008] ? copy_msghdr_from_user (net/socket.c:2525) [ 926.564946][T14008] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 926.565173][T14008] ? move_addr_to_kernel (net/socket.c:2511) [ 926.565360][T14008] ? filemap_map_folio_range (mm/filemap.c:3873) [ 926.565576][T14008] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 926.565793][T14008] ___sys_sendmsg (net/socket.c:2641) [ 926.565997][T14008] ? copy_msghdr_from_user (net/socket.c:2628) [ 926.566205][T14008] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 926.566442][T14008] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 926.566644][T14008] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 926.566846][T14008] ? __sys_sendmsg_sock (net/socket.c:2656) [ 926.567065][T14008] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 926.567265][T14008] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 926.568174][T14008] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 926.568369][T14008] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 926.568573][T14008] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 926.568772][T14008] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 926.569013][T14008] RIP: 0033:0x7f4fde4a7c5e [ 926.569225][T14008] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 926.569814][T14008] RSP: 002b:00007ffce74ff7c0 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 926.570102][T14008] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007f4fde4a7c5e [ 926.570363][T14008] RDX: 0000000000000000 RSI: 00007ffce74ff880 RDI: 0000000000000005 [ 926.570651][T14008] RBP: 00007ffce74ff7d0 R08: 0000000000000000 R09: 0000000000000000 [ 926.570938][T14008] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 926.571197][T14008] R13: 0000000069cbe7e6 R14: 0000000000000004 R15: 000000000049d620 | [ 926.639571][T14012] ------------[ cut here ]------------ | [ 926.639740][T14012] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#0: ip/14012 | [ 926.640225][T14012] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 926.641026][T14012] Tainted: [W]=WARN [ 926.641128][T14012] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 926.641302][T14012] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 926.641449][T14012] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 926.641932][T14012] RSP: 0018:ffa00000027f75d0 EFLAGS: 00010286 [ 926.642115][T14012] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe22000036f1b2f [ 926.642318][T14012] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001b78d978 [ 926.642520][T14012] RBP: 1ff40000004feebb R08: 1fe22000036f1b30 R09: fffa3bfffffb0b24 [ 926.642720][T14012] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001b78de34 [ 926.642928][T14012] R13: ff1100001b78de00 R14: ffffffff931c7940 R15: ff1100001b78d8c0 [ 926.643124][T14012] FS: 00007f63fd677440(0000) GS:ff110000a30b8000(0000) knlGS:0000000000000000 [ 926.643361][T14012] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 926.643538][T14012] CR2: 000000000044f720 CR3: 000000001a9e9006 CR4: 0000000000771ef0 [ 926.643743][T14012] PKRU: 55555554 [ 926.643843][T14012] Call Trace: [ 926.643948][T14012] [ 926.644023][T14012] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 926.644155][T14012] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 926.644297][T14012] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 926.644444][T14012] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 926.644575][T14012] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 926.644721][T14012] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 926.644853][T14012] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 926.644991][T14012] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 926.645134][T14012] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 926.645265][T14012] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 926.645402][T14012] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 926.645534][T14012] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 926.645666][T14012] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 926.645799][T14012] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 926.645940][T14012] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 926.646078][T14012] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 926.646216][T14012] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 926.646349][T14012] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 926.646496][T14012] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 926.646631][T14012] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 926.646766][T14012] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 926.646905][T14012] ? copy_msghdr_from_user (net/socket.c:2525) [ 926.647038][T14012] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 926.647207][T14012] ? move_addr_to_kernel (net/socket.c:2511) [ 926.647340][T14012] ? filemap_map_folio_range (mm/filemap.c:3873) [ 926.647476][T14012] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 926.647624][T14012] ___sys_sendmsg (net/socket.c:2641) [ 926.647767][T14012] ? copy_msghdr_from_user (net/socket.c:2628) [ 926.647921][T14012] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 926.648060][T14012] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 926.648197][T14012] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 926.648335][T14012] ? __sys_sendmsg_sock (net/socket.c:2656) [ 926.648479][T14012] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 926.648616][T14012] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 926.648753][T14012] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 926.648904][T14012] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 926.649048][T14012] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 926.649182][T14012] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 926.649352][T14012] RIP: 0033:0x7f63fd7d1c5e [ 926.649501][T14012] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 926.650009][T14012] RSP: 002b:00007ffd4c08c1b0 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 926.650215][T14012] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007f63fd7d1c5e [ 926.650430][T14012] RDX: 0000000000000000 RSI: 00007ffd4c08c270 RDI: 0000000000000005 [ 926.650640][T14012] RBP: 00007ffd4c08c1c0 R08: 0000000000000000 R09: 0000000000000000 [ 926.650837][T14012] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 926.651045][T14012] R13: 0000000069cbe7e6 R14: 0000000000000004 R15: 000000000049d620 | [ 926.728498][T14018] ------------[ cut here ]------------ | [ 926.728714][T14018] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#2: ip/14018 | [ 926.729236][T14018] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 926.730144][T14018] Tainted: [W]=WARN [ 926.730303][T14018] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 926.730538][T14018] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 926.730758][T14018] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 926.731331][T14018] RSP: 0018:ffa00000027c75d0 EFLAGS: 00010286 [ 926.731575][T14018] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe22000036f1857 [ 926.731865][T14018] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001b78c2b8 [ 926.732137][T14018] RBP: 1ff40000004f8ebb R08: 1fe22000036f1858 R09: fffa3bfffffb0b24 [ 926.732402][T14018] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001b78c3f4 [ 926.732648][T14018] R13: ff1100001b78c3c0 R14: ffffffff931c7940 R15: ff1100001b78c200 [ 926.732928][T14018] FS: 00007fa86c9fa440(0000) GS:ff110000a31b8000(0000) knlGS:0000000000000000 [ 926.733215][T14018] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 926.733448][T14018] CR2: 000000000044f720 CR3: 000000001c3a2002 CR4: 0000000000771ef0 [ 926.733717][T14018] PKRU: 55555554 [ 926.733876][T14018] Call Trace: [ 926.734042][T14018] [ 926.734164][T14018] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 926.734357][T14018] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 926.734559][T14018] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 926.734744][T14018] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 926.734941][T14018] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 926.735133][T14018] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 926.735321][T14018] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 926.735515][T14018] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 926.735709][T14018] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 926.735912][T14018] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 926.736107][T14018] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 926.736294][T14018] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 926.736494][T14018] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 926.736688][T14018] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 926.736870][T14018] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 926.737070][T14018] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 926.737255][T14018] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 926.737445][T14018] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 926.737630][T14018] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 926.737843][T14018] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 926.738054][T14018] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 926.738249][T14018] ? copy_msghdr_from_user (net/socket.c:2525) [ 926.738449][T14018] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 926.738680][T14018] ? move_addr_to_kernel (net/socket.c:2511) [ 926.738875][T14018] ? filemap_map_folio_range (mm/filemap.c:3873) [ 926.739082][T14018] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 926.739267][T14018] ___sys_sendmsg (net/socket.c:2641) [ 926.739460][T14018] ? copy_msghdr_from_user (net/socket.c:2628) [ 926.739661][T14018] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 926.739850][T14018] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 926.740051][T14018] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 926.740237][T14018] ? __sys_sendmsg_sock (net/socket.c:2656) [ 926.740440][T14018] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 926.740628][T14018] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 926.740817][T14018] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 926.741012][T14018] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 926.741196][T14018] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 926.741392][T14018] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 926.741615][T14018] RIP: 0033:0x7fa86cb54c5e [ 926.741805][T14018] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 926.742335][T14018] RSP: 002b:00007fff782f1fd0 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 926.742596][T14018] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007fa86cb54c5e [ 926.742857][T14018] RDX: 0000000000000000 RSI: 00007fff782f2090 RDI: 0000000000000005 [ 926.743125][T14018] RBP: 00007fff782f1fe0 R08: 0000000000000000 R09: 0000000000000000 [ 926.743392][T14018] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 926.743667][T14018] R13: 0000000069cbe7e6 R14: 0000000000000004 R15: 000000000049d620 | [ 926.804430][T14022] ------------[ cut here ]------------ | [ 926.804622][T14022] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#2: ip/14022 | [ 926.804921][T14022] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 926.805800][T14022] Tainted: [W]=WARN [ 926.806278][T14022] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 926.806506][T14022] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 926.806700][T14022] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 926.807259][T14022] RSP: 0018:ffa00000027b75d0 EFLAGS: 00010286 [ 926.807481][T14022] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe220000387532f [ 926.807739][T14022] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001c3a9978 [ 926.807998][T14022] RBP: 1ff40000004f6ebb R08: 1fe2200003875330 R09: fffa3bfffffb0b24 [ 926.808250][T14022] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001c3a8e74 [ 926.808521][T14022] R13: ff1100001c3a8e40 R14: ffffffff931c7940 R15: ff1100001c3a98c0 [ 926.808790][T14022] FS: 00007f73b5b99440(0000) GS:ff110000a31b8000(0000) knlGS:0000000000000000 [ 926.809095][T14022] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 926.809314][T14022] CR2: 000000000044f720 CR3: 000000001c3a2004 CR4: 0000000000771ef0 [ 926.809570][T14022] PKRU: 55555554 [ 926.809736][T14022] Call Trace: [ 926.809911][T14022] [ 926.810041][T14022] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 926.810241][T14022] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 926.810459][T14022] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 926.810649][T14022] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 926.810835][T14022] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 926.811061][T14022] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 926.811267][T14022] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 926.811485][T14022] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 926.811696][T14022] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 926.811883][T14022] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 926.812082][T14022] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 926.812262][T14022] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 926.812478][T14022] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 926.812670][T14022] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 926.812862][T14022] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 926.813065][T14022] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 926.813258][T14022] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 926.813457][T14022] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 926.813654][T14022] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 926.813840][T14022] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 926.814093][T14022] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 926.814291][T14022] ? copy_msghdr_from_user (net/socket.c:2525) [ 926.814478][T14022] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 926.814691][T14022] ? move_addr_to_kernel (net/socket.c:2511) [ 926.814905][T14022] ? filemap_map_folio_range (mm/filemap.c:3873) [ 926.815107][T14022] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 926.815308][T14022] ___sys_sendmsg (net/socket.c:2641) [ 926.815508][T14022] ? copy_msghdr_from_user (net/socket.c:2628) [ 926.815703][T14022] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 926.815915][T14022] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 926.816115][T14022] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 926.816299][T14022] ? __sys_sendmsg_sock (net/socket.c:2656) [ 926.816498][T14022] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 926.816690][T14022] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 926.816887][T14022] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 926.817095][T14022] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 926.817296][T14022] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 926.817501][T14022] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 926.817729][T14022] RIP: 0033:0x7f73b5cf3c5e [ 926.817939][T14022] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 926.818480][T14022] RSP: 002b:00007ffffebb5d70 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 926.818725][T14022] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007f73b5cf3c5e [ 926.818979][T14022] RDX: 0000000000000000 RSI: 00007ffffebb5e30 RDI: 0000000000000005 [ 926.819224][T14022] RBP: 00007ffffebb5d80 R08: 0000000000000000 R09: 0000000000000000 [ 926.819475][T14022] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 926.819717][T14022] R13: 0000000069cbe7e6 R14: 0000000000000004 R15: 000000000049d620 | [ 926.944327][T14037] ------------[ cut here ]------------ | [ 926.944562][T14037] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#2: ip/14037 | [ 926.944872][T14037] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 926.945817][T14037] Tainted: [W]=WARN [ 926.945983][T14037] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 926.946235][T14037] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 926.946444][T14037] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 926.947532][T14037] RSP: 0018:ffa00000021ef5d0 EFLAGS: 00010286 [ 926.947760][T14037] RAX: 00000000ffffffa6 RBX: ff1100000bc36800 RCX: 1fe22000038752f7 [ 926.948033][T14037] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001c3a97b8 [ 926.948323][T14037] RBP: 1ff400000043debb R08: 1fe22000038752f8 R09: fffa3bfffffb0b37 [ 926.948582][T14037] R10: fffa3bfffffb0b38 R11: 0000000000000001 R12: ff1100001c3a9e34 [ 926.948859][T14037] R13: ff1100001c3a9e00 R14: ffffffff931c7940 R15: ff1100001c3a9700 [ 926.949129][T14037] FS: 00007ff71a130440(0000) GS:ff110000a31b8000(0000) knlGS:0000000000000000 [ 926.949426][T14037] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 926.949678][T14037] CR2: 000000000044f720 CR3: 000000001a2cb002 CR4: 0000000000771ef0 [ 926.949947][T14037] PKRU: 55555554 [ 926.950099][T14037] Call Trace: [ 926.950249][T14037] [ 926.950378][T14037] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 926.950582][T14037] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 926.950801][T14037] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 926.951016][T14037] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 926.951201][T14037] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 926.951388][T14037] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 926.951584][T14037] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 926.951780][T14037] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 926.951987][T14037] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 926.952187][T14037] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 926.952382][T14037] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 926.952578][T14037] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 926.952771][T14037] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 926.952979][T14037] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 926.953168][T14037] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 926.953360][T14037] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 926.953559][T14037] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 926.953755][T14037] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 926.953965][T14037] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 926.954156][T14037] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 926.954355][T14037] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 926.954558][T14037] ? copy_msghdr_from_user (net/socket.c:2525) [ 926.954747][T14037] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 926.954979][T14037] ? move_addr_to_kernel (net/socket.c:2511) [ 926.955173][T14037] ? filemap_map_folio_range (mm/filemap.c:3873) [ 926.955363][T14037] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 926.955576][T14037] ___sys_sendmsg (net/socket.c:2641) [ 926.955782][T14037] ? copy_msghdr_from_user (net/socket.c:2628) [ 926.955993][T14037] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 926.956192][T14037] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 926.956410][T14037] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 926.956603][T14037] ? __sys_sendmsg_sock (net/socket.c:2656) [ 926.956801][T14037] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 926.957005][T14037] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 926.957197][T14037] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 926.957404][T14037] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 926.957595][T14037] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 926.957789][T14037] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 926.958022][T14037] RIP: 0033:0x7ff71a28ac5e [ 926.958220][T14037] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 926.958780][T14037] RSP: 002b:00007fffba5ae440 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 926.959068][T14037] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007ff71a28ac5e [ 926.959326][T14037] RDX: 0000000000000000 RSI: 00007fffba5ae500 RDI: 0000000000000005 [ 926.959594][T14037] RBP: 00007fffba5ae450 R08: 0000000000000000 R09: 0000000000000000 [ 926.959859][T14037] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 926.960130][T14037] R13: 0000000069cbe7e6 R14: 0000000000000004 R15: 000000000049d620 | [ 927.027552][T14041] ------------[ cut here ]------------ | [ 927.027757][T14041] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#2: ip/14041 | [ 927.028676][T14041] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 927.029867][T14041] Tainted: [W]=WARN [ 927.030139][T14041] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 927.030480][T14041] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 927.030785][T14041] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 927.031474][T14041] RSP: 0018:ffa00000028875d0 EFLAGS: 00010286 [ 927.031761][T14041] RAX: 00000000ffffffa6 RBX: ff1100000bc36800 RCX: 1fe22000011ac687 [ 927.032111][T14041] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff11000008d63438 [ 927.032460][T14041] RBP: 1ff4000000510ebb R08: 1fe22000011ac688 R09: fffa3bfffffb0b37 [ 927.032777][T14041] R10: fffa3bfffffb0b38 R11: 0000000000000001 R12: ff11000008d63574 [ 927.033087][T14041] R13: ff11000008d63540 R14: ffffffff931c7940 R15: ff11000008d63380 [ 927.033458][T14041] FS: 00007fc0b6510440(0000) GS:ff110000a31b8000(0000) knlGS:0000000000000000 [ 927.033823][T14041] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 927.034061][T14041] CR2: 000000000044f720 CR3: 000000000daac006 CR4: 0000000000771ef0 [ 927.034307][T14041] PKRU: 55555554 [ 927.034469][T14041] Call Trace: [ 927.034618][T14041] [ 927.034736][T14041] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 927.034949][T14041] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 927.035166][T14041] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 927.035375][T14041] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 927.035640][T14041] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 927.035858][T14041] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 927.036050][T14041] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 927.036285][T14041] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 927.036483][T14041] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 927.036696][T14041] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 927.036919][T14041] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 927.037106][T14041] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 927.037291][T14041] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 927.037498][T14041] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 927.037691][T14041] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 927.037888][T14041] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 927.038114][T14041] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 927.038316][T14041] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 927.038528][T14041] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 927.038733][T14041] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 927.038940][T14041] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 927.039136][T14041] ? copy_msghdr_from_user (net/socket.c:2525) [ 927.039326][T14041] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 927.039577][T14041] ? move_addr_to_kernel (net/socket.c:2511) [ 927.039763][T14041] ? filemap_map_folio_range (mm/filemap.c:3873) [ 927.039982][T14041] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 927.040169][T14041] ___sys_sendmsg (net/socket.c:2641) [ 927.040365][T14041] ? copy_msghdr_from_user (net/socket.c:2628) [ 927.040567][T14041] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 927.040760][T14041] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 927.040964][T14041] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 927.041156][T14041] ? __sys_sendmsg_sock (net/socket.c:2656) [ 927.041349][T14041] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 927.041550][T14041] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 927.041742][T14041] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 927.041953][T14041] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 927.042143][T14041] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 927.042334][T14041] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 927.042574][T14041] RIP: 0033:0x7fc0b666ac5e [ 927.042772][T14041] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 927.043342][T14041] RSP: 002b:00007ffd3817f000 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 927.043603][T14041] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007fc0b666ac5e [ 927.043850][T14041] RDX: 0000000000000000 RSI: 00007ffd3817f0c0 RDI: 0000000000000005 [ 927.044122][T14041] RBP: 00007ffd3817f010 R08: 0000000000000000 R09: 0000000000000000 [ 927.044377][T14041] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 927.044644][T14041] R13: 0000000069cbe7e6 R14: 0000000000000004 R15: 000000000049d620 | [ 927.125719][T14047] ------------[ cut here ]------------ | [ 927.125880][T14047] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#0: ip/14047 | [ 927.126152][T14047] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 927.126940][T14047] Tainted: [W]=WARN [ 927.127048][T14047] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 927.127220][T14047] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 927.127362][T14047] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 927.127872][T14047] RSP: 0018:ffa00000028975d0 EFLAGS: 00010286 [ 927.128046][T14047] RAX: 00000000ffffffa6 RBX: ff1100000bc36800 RCX: 1fe22000011ac48f [ 927.128251][T14047] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff11000008d62478 [ 927.128472][T14047] RBP: 1ff4000000512ebb R08: 1fe22000011ac490 R09: fffa3bfffffb0b37 [ 927.128684][T14047] R10: fffa3bfffffb0b38 R11: 0000000000000001 R12: ff11000008d63e34 [ 927.128907][T14047] R13: ff11000008d63e00 R14: ffffffff931c7940 R15: ff11000008d623c0 [ 927.129119][T14047] FS: 00007fce1c33f440(0000) GS:ff110000a30b8000(0000) knlGS:0000000000000000 [ 927.129362][T14047] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 927.129544][T14047] CR2: 000000000044f720 CR3: 0000000017ddc006 CR4: 0000000000771ef0 [ 927.129753][T14047] PKRU: 55555554 [ 927.129857][T14047] Call Trace: [ 927.129968][T14047] [ 927.130040][T14047] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 927.130180][T14047] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 927.130329][T14047] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 927.130473][T14047] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 927.130613][T14047] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 927.130755][T14047] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 927.130906][T14047] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 927.131054][T14047] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 927.131198][T14047] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 927.131344][T14047] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 927.131493][T14047] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 927.131630][T14047] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 927.131770][T14047] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 927.131911][T14047] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 927.132046][T14047] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 927.132186][T14047] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 927.132324][T14047] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 927.132468][T14047] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 927.132605][T14047] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 927.132744][T14047] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 927.132883][T14047] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 927.133454][T14047] ? copy_msghdr_from_user (net/socket.c:2525) [ 927.133593][T14047] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 927.133765][T14047] ? move_addr_to_kernel (net/socket.c:2511) [ 927.133908][T14047] ? filemap_map_folio_range (mm/filemap.c:3873) [ 927.134052][T14047] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 927.134197][T14047] ___sys_sendmsg (net/socket.c:2641) [ 927.134334][T14047] ? copy_msghdr_from_user (net/socket.c:2628) [ 927.134479][T14047] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 927.134620][T14047] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 927.134762][T14047] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 927.134904][T14047] ? __sys_sendmsg_sock (net/socket.c:2656) [ 927.135044][T14047] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 927.135181][T14047] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 927.135319][T14047] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 927.135461][T14047] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 927.135605][T14047] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 927.135746][T14047] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 927.135926][T14047] RIP: 0033:0x7fce1c499c5e [ 927.136074][T14047] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 927.136575][T14047] RSP: 002b:00007ffd93171970 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 927.136789][T14047] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007fce1c499c5e [ 927.137005][T14047] RDX: 0000000000000000 RSI: 00007ffd93171a30 RDI: 0000000000000005 [ 927.137213][T14047] RBP: 00007ffd93171980 R08: 0000000000000000 R09: 0000000000000000 [ 927.137433][T14047] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 927.137653][T14047] R13: 0000000069cbe7e6 R14: 0000000000000004 R15: 000000000049d620 | [ 927.214933][T14051] ------------[ cut here ]------------ | [ 927.215104][T14051] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#3: ip/14051 | [ 927.215359][T14051] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 927.216202][T14051] Tainted: [W]=WARN [ 927.216311][T14051] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 927.216521][T14051] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 927.216669][T14051] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 927.217178][T14051] RSP: 0018:ffa00000028975d0 EFLAGS: 00010286 [ 927.217360][T14051] RAX: 00000000ffffffa6 RBX: ff1100000bc36800 RCX: 1fe220000215e9a7 [ 927.217577][T14051] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff11000010af4d38 [ 927.217786][T14051] RBP: 1ff4000000512ebb R08: 1fe220000215e9a8 R09: fffa3bfffffb0b37 [ 927.218001][T14051] R10: fffa3bfffffb0b38 R11: 0000000000000001 R12: ff11000010af4e74 [ 927.218211][T14051] R13: ff11000010af4e40 R14: ffffffff931c7940 R15: ff11000010af4c80 [ 927.218426][T14051] FS: 00007f519b3e6440(0000) GS:ff110000a3238000(0000) knlGS:0000000000000000 [ 927.218669][T14051] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 927.218843][T14051] CR2: 000000000044f720 CR3: 00000000105c7005 CR4: 0000000000771ef0 [ 927.219058][T14051] PKRU: 55555554 [ 927.219164][T14051] Call Trace: [ 927.219268][T14051] [ 927.219340][T14051] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 927.219484][T14051] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 927.219630][T14051] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 927.219770][T14051] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 927.219910][T14051] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 927.220049][T14051] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 927.220179][T14051] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 927.220313][T14051] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 927.220451][T14051] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 927.220583][T14051] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 927.220717][T14051] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 927.220847][T14051] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 927.221198][T14051] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 927.221342][T14051] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 927.221484][T14051] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 927.221622][T14051] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 927.221763][T14051] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 927.221903][T14051] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 927.222035][T14051] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 927.222167][T14051] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 927.222300][T14051] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 927.222437][T14051] ? copy_msghdr_from_user (net/socket.c:2525) [ 927.222568][T14051] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 927.222881][T14051] ? move_addr_to_kernel (net/socket.c:2511) [ 927.223018][T14051] ? filemap_map_folio_range (mm/filemap.c:3873) [ 927.223149][T14051] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 927.223281][T14051] ___sys_sendmsg (net/socket.c:2641) [ 927.223426][T14051] ? copy_msghdr_from_user (net/socket.c:2628) [ 927.223564][T14051] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 927.223713][T14051] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 927.223857][T14051] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 927.224019][T14051] ? __sys_sendmsg_sock (net/socket.c:2656) [ 927.224154][T14051] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 927.224289][T14051] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 927.224431][T14051] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 927.224583][T14051] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 927.224722][T14051] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 927.224860][T14051] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 927.225041][T14051] RIP: 0033:0x7f519b540c5e [ 927.225189][T14051] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 927.225694][T14051] RSP: 002b:00007fff2c885980 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 927.225902][T14051] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007f519b540c5e [ 927.226100][T14051] RDX: 0000000000000000 RSI: 00007fff2c885a40 RDI: 0000000000000005 [ 927.226329][T14051] RBP: 00007fff2c885990 R08: 0000000000000000 R09: 0000000000000000 [ 927.226554][T14051] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 927.226763][T14051] R13: 0000000069cbe7e6 R14: 0000000000000004 R15: 000000000049d620 | [ 927.308187][T14057] ------------[ cut here ]------------ | [ 927.308355][T14057] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#0: ip/14057 | [ 927.308610][T14057] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 927.309424][T14057] Tainted: [W]=WARN [ 927.309526][T14057] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 927.309725][T14057] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 927.309873][T14057] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 927.310371][T14057] RSP: 0018:ffa00000028f75d0 EFLAGS: 00010286 [ 927.310556][T14057] RAX: 00000000ffffffa6 RBX: ff1100000bc36800 RCX: 1fe2200001ea064f [ 927.310759][T14057] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100000f503278 [ 927.310971][T14057] RBP: 1ff400000051eebb R08: 1fe2200001ea0650 R09: fffa3bfffffb0b37 [ 927.311173][T14057] R10: fffa3bfffffb0b38 R11: 0000000000000001 R12: ff1100000f502cb4 [ 927.311371][T14057] R13: ff1100000f502c80 R14: ffffffff931c7940 R15: ff1100000f5031c0 [ 927.311579][T14057] FS: 00007f41372b6440(0000) GS:ff110000a30b8000(0000) knlGS:0000000000000000 [ 927.311823][T14057] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 927.312023][T14057] CR2: 000000000044f720 CR3: 0000000017f38001 CR4: 0000000000771ef0 [ 927.312261][T14057] PKRU: 55555554 [ 927.312365][T14057] Call Trace: [ 927.312489][T14057] [ 927.312561][T14057] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 927.312728][T14057] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 927.312884][T14057] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 927.313061][T14057] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 927.313196][T14057] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 927.313334][T14057] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 927.313479][T14057] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 927.313616][T14057] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 927.313753][T14057] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 927.313891][T14057] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 927.314035][T14057] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 927.314169][T14057] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 927.314304][T14057] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 927.314451][T14057] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 927.314582][T14057] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 927.314714][T14057] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 927.314846][T14057] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 927.315388][T14057] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 927.315549][T14057] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 927.315683][T14057] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 927.315818][T14057] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 927.315976][T14057] ? copy_msghdr_from_user (net/socket.c:2525) [ 927.316110][T14057] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 927.316275][T14057] ? move_addr_to_kernel (net/socket.c:2511) [ 927.316420][T14057] ? filemap_map_folio_range (mm/filemap.c:3873) [ 927.316561][T14057] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 927.316697][T14057] ___sys_sendmsg (net/socket.c:2641) [ 927.316829][T14057] ? copy_msghdr_from_user (net/socket.c:2628) [ 927.316973][T14057] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 927.317128][T14057] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 927.317264][T14057] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 927.317413][T14057] ? __sys_sendmsg_sock (net/socket.c:2656) [ 927.317554][T14057] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 927.317697][T14057] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 927.317834][T14057] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 927.317979][T14057] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 927.318119][T14057] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 927.318264][T14057] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 927.318440][T14057] RIP: 0033:0x7f4137410c5e [ 927.318582][T14057] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 927.319066][T14057] RSP: 002b:00007ffcdca08320 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 927.319265][T14057] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007f4137410c5e [ 927.319469][T14057] RDX: 0000000000000000 RSI: 00007ffcdca083e0 RDI: 0000000000000005 [ 927.319684][T14057] RBP: 00007ffcdca08330 R08: 0000000000000000 R09: 0000000000000000 [ 927.319936][T14057] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 927.320160][T14057] R13: 0000000069cbe7e6 R14: 0000000000000004 R15: 000000000049d620 | [ 927.388299][T14061] ------------[ cut here ]------------ | [ 927.388516][T14061] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#2: ip/14061 | [ 927.388823][T14061] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 927.389699][T14061] Tainted: [W]=WARN [ 927.389856][T14061] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 927.390084][T14061] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 927.390283][T14061] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 927.390822][T14061] RSP: 0018:ffa00000028875d0 EFLAGS: 00010286 [ 927.391057][T14061] RAX: 00000000ffffffa6 RBX: ff1100000bc36800 RCX: 1fe2200001ea04c7 [ 927.391301][T14061] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100000f502638 [ 927.391556][T14061] RBP: 1ff4000000510ebb R08: 1fe2200001ea04c8 R09: fffa3bfffffb0b37 [ 927.391804][T14061] R10: fffa3bfffffb0b38 R11: 0000000000000001 R12: ff1100000f502774 [ 927.392266][T14061] R13: ff1100000f502740 R14: ffffffff931c7940 R15: ff1100000f502580 [ 927.392599][T14061] FS: 00007f10caad9440(0000) GS:ff110000a31b8000(0000) knlGS:0000000000000000 [ 927.392943][T14061] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 927.393196][T14061] CR2: 000000000044f720 CR3: 000000000d968004 CR4: 0000000000771ef0 [ 927.393476][T14061] PKRU: 55555554 [ 927.393636][T14061] Call Trace: [ 927.393795][T14061] [ 927.393937][T14061] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 927.394134][T14061] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 927.394342][T14061] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 927.394612][T14061] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 927.394814][T14061] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 927.395029][T14061] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 927.395231][T14061] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 927.395441][T14061] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 927.395634][T14061] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 927.395825][T14061] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 927.396047][T14061] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 927.396237][T14061] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 927.396436][T14061] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 927.396641][T14061] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 927.396843][T14061] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 927.397051][T14061] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 927.397254][T14061] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 927.397450][T14061] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 927.397640][T14061] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 927.397828][T14061] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 927.398032][T14061] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 927.398233][T14061] ? copy_msghdr_from_user (net/socket.c:2525) [ 927.398433][T14061] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 927.398662][T14061] ? move_addr_to_kernel (net/socket.c:2511) [ 927.398853][T14061] ? filemap_map_folio_range (mm/filemap.c:3873) [ 927.399057][T14061] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 927.399259][T14061] ___sys_sendmsg (net/socket.c:2641) [ 927.399465][T14061] ? copy_msghdr_from_user (net/socket.c:2628) [ 927.399661][T14061] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 927.399860][T14061] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 927.400061][T14061] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 927.400250][T14061] ? __sys_sendmsg_sock (net/socket.c:2656) [ 927.400465][T14061] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 927.400674][T14061] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 927.400876][T14061] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 927.401089][T14061] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 927.401295][T14061] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 927.401506][T14061] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 927.401727][T14061] RIP: 0033:0x7f10cac33c5e [ 927.401943][T14061] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 927.402521][T14061] RSP: 002b:00007ffffa02f0f0 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 927.402790][T14061] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007f10cac33c5e [ 927.403062][T14061] RDX: 0000000000000000 RSI: 00007ffffa02f1b0 RDI: 0000000000000005 [ 927.403317][T14061] RBP: 00007ffffa02f100 R08: 0000000000000000 R09: 0000000000000000 [ 927.403581][T14061] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 927.403861][T14061] R13: 0000000069cbe7e6 R14: 0000000000000004 R15: 000000000049d620 | [ 927.486174][T14067] ------------[ cut here ]------------ | [ 927.486380][T14067] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#2: ip/14067 | [ 927.486675][T14067] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 927.487944][T14067] Tainted: [W]=WARN [ 927.488119][T14067] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 927.488377][T14067] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 927.488612][T14067] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 927.489249][T14067] RSP: 0018:ffa00000028e75d0 EFLAGS: 00010286 [ 927.489529][T14067] RAX: 00000000ffffffa6 RBX: ff1100000bc36800 RCX: 1fe22000034c22f7 [ 927.489790][T14067] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001a6117b8 [ 927.490083][T14067] RBP: 1ff400000051cebb R08: 1fe22000034c22f8 R09: fffa3bfffffb0b37 [ 927.490331][T14067] R10: fffa3bfffffb0b38 R11: 0000000000000001 R12: ff1100001a6118f4 [ 927.490626][T14067] R13: ff1100001a6118c0 R14: ffffffff931c7940 R15: ff1100001a611700 [ 927.490887][T14067] FS: 00007fdf4bf05440(0000) GS:ff110000a31b8000(0000) knlGS:0000000000000000 [ 927.491195][T14067] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 927.491429][T14067] CR2: 000000000044f720 CR3: 000000000f694001 CR4: 0000000000771ef0 [ 927.491692][T14067] PKRU: 55555554 [ 927.491846][T14067] Call Trace: [ 927.492014][T14067] [ 927.492136][T14067] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 927.492326][T14067] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 927.492535][T14067] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 927.492727][T14067] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 927.492926][T14067] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 927.493122][T14067] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 927.493309][T14067] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 927.493509][T14067] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 927.493702][T14067] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 927.493907][T14067] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 927.494099][T14067] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 927.494286][T14067] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 927.494480][T14067] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 927.494664][T14067] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 927.494846][T14067] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 927.495046][T14067] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 927.495246][T14067] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 927.495438][T14067] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 927.495625][T14067] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 927.495809][T14067] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 927.496017][T14067] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 927.496203][T14067] ? copy_msghdr_from_user (net/socket.c:2525) [ 927.496387][T14067] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 927.496610][T14067] ? move_addr_to_kernel (net/socket.c:2511) [ 927.496795][T14067] ? filemap_map_folio_range (mm/filemap.c:3873) [ 927.496994][T14067] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 927.497188][T14067] ___sys_sendmsg (net/socket.c:2641) [ 927.497383][T14067] ? copy_msghdr_from_user (net/socket.c:2628) [ 927.497579][T14067] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 927.497766][T14067] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 927.497963][T14067] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 927.498147][T14067] ? __sys_sendmsg_sock (net/socket.c:2656) [ 927.498333][T14067] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 927.498525][T14067] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 927.498714][T14067] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 927.498911][T14067] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 927.499093][T14067] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 927.499277][T14067] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 927.499503][T14067] RIP: 0033:0x7fdf4c05fc5e [ 927.499695][T14067] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 927.500228][T14067] RSP: 002b:00007ffe3a18b1f0 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 927.500486][T14067] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007fdf4c05fc5e [ 927.500731][T14067] RDX: 0000000000000000 RSI: 00007ffe3a18b2b0 RDI: 0000000000000005 [ 927.500989][T14067] RBP: 00007ffe3a18b200 R08: 0000000000000000 R09: 0000000000000000 [ 927.501239][T14067] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 927.501492][T14067] R13: 0000000069cbe7e6 R14: 0000000000000004 R15: 000000000049d620 | [ 927.570926][T14071] ------------[ cut here ]------------ | [ 927.571132][T14071] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#2: ip/14071 | [ 927.571424][T14071] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 927.573086][T14071] Tainted: [W]=WARN [ 927.573259][T14071] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 927.573488][T14071] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 927.573699][T14071] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 927.574316][T14071] RSP: 0018:ffa00000028575d0 EFLAGS: 00010286 [ 927.574593][T14071] RAX: 00000000ffffffa6 RBX: ff1100000bc36800 RCX: 1fe220000215e937 [ 927.574887][T14071] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff11000010af49b8 [ 927.575155][T14071] RBP: 1ff400000050aebb R08: 1fe220000215e938 R09: fffa3bfffffb0b37 [ 927.575408][T14071] R10: fffa3bfffffb0b38 R11: 0000000000000001 R12: ff11000010af5574 [ 927.575667][T14071] R13: ff11000010af5540 R14: ffffffff931c7940 R15: ff11000010af4900 [ 927.575948][T14071] FS: 00007fcc6c9bd440(0000) GS:ff110000a31b8000(0000) knlGS:0000000000000000 [ 927.576234][T14071] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 927.576458][T14071] CR2: 000000000044f720 CR3: 000000000f694003 CR4: 0000000000771ef0 [ 927.576707][T14071] PKRU: 55555554 [ 927.576857][T14071] Call Trace: [ 927.577020][T14071] [ 927.577137][T14071] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 927.577320][T14071] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 927.577520][T14071] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 927.577704][T14071] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 927.577887][T14071] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 927.578088][T14071] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 927.578284][T14071] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 927.578523][T14071] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 927.578710][T14071] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 927.578907][T14071] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 927.579097][T14071] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 927.579278][T14071] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 927.579471][T14071] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 927.579656][T14071] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 927.579837][T14071] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 927.580036][T14071] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 927.580220][T14071] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 927.580410][T14071] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 927.580594][T14071] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 927.580779][T14071] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 927.580979][T14071] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 927.581163][T14071] ? copy_msghdr_from_user (net/socket.c:2525) [ 927.581350][T14071] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 927.581571][T14071] ? move_addr_to_kernel (net/socket.c:2511) [ 927.581756][T14071] ? filemap_map_folio_range (mm/filemap.c:3873) [ 927.581946][T14071] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 927.582135][T14071] ___sys_sendmsg (net/socket.c:2641) [ 927.582318][T14071] ? copy_msghdr_from_user (net/socket.c:2628) [ 927.582511][T14071] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 927.582701][T14071] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 927.582886][T14071] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 927.583083][T14071] ? __sys_sendmsg_sock (net/socket.c:2656) [ 927.583271][T14071] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 927.583461][T14071] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 927.583656][T14071] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 927.583843][T14071] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 927.584041][T14071] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 927.584230][T14071] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 927.584452][T14071] RIP: 0033:0x7fcc6cb17c5e [ 927.584642][T14071] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 927.585182][T14071] RSP: 002b:00007ffea6e79cd0 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 927.585461][T14071] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007fcc6cb17c5e [ 927.585724][T14071] RDX: 0000000000000000 RSI: 00007ffea6e79d90 RDI: 0000000000000005 [ 927.586003][T14071] RBP: 00007ffea6e79ce0 R08: 0000000000000000 R09: 0000000000000000 [ 927.586291][T14071] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 927.586593][T14071] R13: 0000000069cbe7e7 R14: 0000000000000004 R15: 000000000049d620 | [ 927.661325][T14077] ------------[ cut here ]------------ | [ 927.661506][T14077] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#3: ip/14077 | [ 927.661748][T14077] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 927.662561][T14077] Tainted: [W]=WARN [ 927.662662][T14077] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 927.662834][T14077] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 927.662984][T14077] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 927.663468][T14077] RSP: 0018:ffa00000021ef5d0 EFLAGS: 00010286 [ 927.663640][T14077] RAX: 00000000ffffffa6 RBX: ff1100000bc36800 RCX: 1fe220000215e8ff [ 927.663872][T14077] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff11000010af47f8 [ 927.664086][T14077] RBP: 1ff400000043debb R08: 1fe220000215e900 R09: fffa3bfffffb0b37 [ 927.664294][T14077] R10: fffa3bfffffb0b38 R11: 0000000000000001 R12: ff11000010af5034 [ 927.664513][T14077] R13: ff11000010af5000 R14: ffffffff931c7940 R15: ff11000010af4740 [ 927.664738][T14077] FS: 00007fca05906440(0000) GS:ff110000a3238000(0000) knlGS:0000000000000000 [ 927.664996][T14077] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 927.665171][T14077] CR2: 000000000044f720 CR3: 000000000d968001 CR4: 0000000000771ef0 [ 927.665384][T14077] PKRU: 55555554 [ 927.665495][T14077] Call Trace: [ 927.665607][T14077] [ 927.665678][T14077] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 927.665822][T14077] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 927.665981][T14077] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 927.666125][T14077] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 927.666266][T14077] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 927.666411][T14077] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 927.666565][T14077] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 927.666702][T14077] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 927.666836][T14077] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 927.666976][T14077] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 927.667118][T14077] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 927.667248][T14077] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 927.667385][T14077] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 927.667530][T14077] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 927.667700][T14077] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 927.667880][T14077] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 927.668062][T14077] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 927.668236][T14077] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 927.668373][T14077] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 927.668536][T14077] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 927.668670][T14077] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 927.668801][T14077] ? copy_msghdr_from_user (net/socket.c:2525) [ 927.668938][T14077] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 927.669104][T14077] ? move_addr_to_kernel (net/socket.c:2511) [ 927.669242][T14077] ? filemap_map_folio_range (mm/filemap.c:3873) [ 927.669385][T14077] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 927.669522][T14077] ___sys_sendmsg (net/socket.c:2641) [ 927.669659][T14077] ? copy_msghdr_from_user (net/socket.c:2628) [ 927.669797][T14077] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 927.669943][T14077] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 927.670096][T14077] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 927.670241][T14077] ? __sys_sendmsg_sock (net/socket.c:2656) [ 927.670379][T14077] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 927.670518][T14077] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 927.670680][T14077] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 927.670812][T14077] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 927.670955][T14077] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 927.671123][T14077] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 927.671321][T14077] RIP: 0033:0x7fca05a60c5e [ 927.671497][T14077] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 927.671998][T14077] RSP: 002b:00007ffe1c9b1430 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 927.672209][T14077] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007fca05a60c5e [ 927.672423][T14077] RDX: 0000000000000000 RSI: 00007ffe1c9b14f0 RDI: 0000000000000005 [ 927.672636][T14077] RBP: 00007ffe1c9b1440 R08: 0000000000000000 R09: 0000000000000000 [ 927.672847][T14077] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 927.673061][T14077] R13: 0000000069cbe7e7 R14: 0000000000000004 R15: 000000000049d620 | [ 927.739380][T14081] ------------[ cut here ]------------ | [ 927.739561][T14081] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#3: ip/14081 | [ 927.739805][T14081] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 927.740976][T14081] Tainted: [W]=WARN [ 927.741077][T14081] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 927.741254][T14081] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 927.741398][T14081] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 927.741968][T14081] RSP: 0018:ffa00000028f75d0 EFLAGS: 00010286 [ 927.742137][T14081] RAX: 00000000ffffffa6 RBX: ff1100000bc36800 RCX: 1fe22000035524c7 [ 927.742477][T14081] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001aa92638 [ 927.742675][T14081] RBP: 1ff400000051eebb R08: 1fe22000035524c8 R09: fffa3bfffffb0b37 [ 927.742870][T14081] R10: fffa3bfffffb0b38 R11: 0000000000000001 R12: ff1100001aa923f4 [ 927.743076][T14081] R13: ff1100001aa923c0 R14: ffffffff931c7940 R15: ff1100001aa92580 [ 927.743272][T14081] FS: 00007f536cf13440(0000) GS:ff110000a3238000(0000) knlGS:0000000000000000 [ 927.743508][T14081] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 927.743672][T14081] CR2: 000000000044f720 CR3: 000000001a1d5003 CR4: 0000000000771ef0 [ 927.743874][T14081] PKRU: 55555554 [ 927.743978][T14081] Call Trace: [ 927.744075][T14081] [ 927.744141][T14081] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 927.744276][T14081] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 927.744441][T14081] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 927.744589][T14081] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 927.744729][T14081] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 927.744864][T14081] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 927.744999][T14081] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 927.745131][T14081] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 927.745260][T14081] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 927.745416][T14081] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 927.745555][T14081] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 927.745683][T14081] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 927.745816][T14081] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 927.745957][T14081] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 927.746093][T14081] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 927.746229][T14081] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 927.746370][T14081] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 927.746518][T14081] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 927.746666][T14081] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 927.746807][T14081] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 927.746950][T14081] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 927.747093][T14081] ? copy_msghdr_from_user (net/socket.c:2525) [ 927.747229][T14081] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 927.747407][T14081] ? move_addr_to_kernel (net/socket.c:2511) [ 927.747550][T14081] ? filemap_map_folio_range (mm/filemap.c:3873) [ 927.747694][T14081] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 927.747845][T14081] ___sys_sendmsg (net/socket.c:2641) [ 927.747988][T14081] ? copy_msghdr_from_user (net/socket.c:2628) [ 927.748126][T14081] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 927.748275][T14081] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 927.748529][T14081] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 927.748660][T14081] ? __sys_sendmsg_sock (net/socket.c:2656) [ 927.748793][T14081] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 927.748929][T14081] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 927.749077][T14081] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 927.749229][T14081] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 927.749358][T14081] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 927.749498][T14081] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 927.749665][T14081] RIP: 0033:0x7f536d06dc5e [ 927.749812][T14081] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 927.750299][T14081] RSP: 002b:00007ffcfd3ce960 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 927.750515][T14081] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007f536d06dc5e [ 927.750726][T14081] RDX: 0000000000000000 RSI: 00007ffcfd3cea20 RDI: 0000000000000005 [ 927.750939][T14081] RBP: 00007ffcfd3ce970 R08: 0000000000000000 R09: 0000000000000000 [ 927.751181][T14081] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 927.751390][T14081] R13: 0000000069cbe7e7 R14: 0000000000000004 R15: 000000000049d620 | [ 927.835771][T14087] ------------[ cut here ]------------ | [ 927.835949][T14087] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#3: ip/14087 | [ 927.836178][T14087] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 927.837368][T14087] Tainted: [W]=WARN [ 927.837473][T14087] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 927.837642][T14087] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 927.837795][T14087] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 927.838348][T14087] RSP: 0018:ffa00000028e75d0 EFLAGS: 00010286 [ 927.838520][T14087] RAX: 00000000ffffffa6 RBX: ff1100000bc36800 RCX: 1fe220000355256f [ 927.838715][T14087] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001aa92b78 [ 927.838920][T14087] RBP: 1ff400000051cebb R08: 1fe2200003552570 R09: fffa3bfffffb0b37 [ 927.839115][T14087] R10: fffa3bfffffb0b38 R11: 0000000000000001 R12: ff1100001aa92934 [ 927.839310][T14087] R13: ff1100001aa92900 R14: ffffffff931c7940 R15: ff1100001aa92ac0 [ 927.839516][T14087] FS: 00007ff0169cb440(0000) GS:ff110000a3238000(0000) knlGS:0000000000000000 [ 927.839753][T14087] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 927.839923][T14087] CR2: 000000000044f720 CR3: 000000000c428005 CR4: 0000000000771ef0 [ 927.840121][T14087] PKRU: 55555554 [ 927.840221][T14087] Call Trace: [ 927.840324][T14087] [ 927.840391][T14087] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 927.840529][T14087] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 927.840668][T14087] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 927.840800][T14087] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 927.840936][T14087] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 927.841070][T14087] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 927.841199][T14087] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 927.841331][T14087] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 927.841468][T14087] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 927.841600][T14087] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 927.841737][T14087] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 927.841869][T14087] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 927.842005][T14087] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 927.842140][T14087] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 927.842269][T14087] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 927.842426][T14087] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 927.842561][T14087] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 927.842693][T14087] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 927.842827][T14087] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 927.842966][T14087] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 927.843101][T14087] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 927.843233][T14087] ? copy_msghdr_from_user (net/socket.c:2525) [ 927.843364][T14087] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 927.843531][T14087] ? move_addr_to_kernel (net/socket.c:2511) [ 927.843672][T14087] ? filemap_map_folio_range (mm/filemap.c:3873) [ 927.843806][T14087] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 927.843942][T14087] ___sys_sendmsg (net/socket.c:2641) [ 927.844076][T14087] ? copy_msghdr_from_user (net/socket.c:2628) [ 927.844211][T14087] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 927.844347][T14087] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 927.844483][T14087] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 927.844614][T14087] ? __sys_sendmsg_sock (net/socket.c:2656) [ 927.844750][T14087] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 927.844881][T14087] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 927.845019][T14087] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 927.845150][T14087] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 927.845281][T14087] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 927.845418][T14087] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 927.845582][T14087] RIP: 0033:0x7ff016b25c5e [ 927.845721][T14087] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 927.846199][T14087] RSP: 002b:00007ffd014e48c0 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 927.846402][T14087] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007ff016b25c5e [ 927.846601][T14087] RDX: 0000000000000000 RSI: 00007ffd014e4980 RDI: 0000000000000005 [ 927.846802][T14087] RBP: 00007ffd014e48d0 R08: 0000000000000000 R09: 0000000000000000 [ 927.847004][T14087] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 927.847198][T14087] R13: 0000000069cbe7e7 R14: 0000000000000004 R15: 000000000049d620 | [ 927.920422][T14091] ------------[ cut here ]------------ | [ 927.920590][T14091] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#0: ip/14091 | [ 927.920838][T14091] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 927.921980][T14091] Tainted: [W]=WARN [ 927.922085][T14091] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 927.922262][T14091] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 927.922414][T14091] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 927.922920][T14091] RSP: 0018:ffa00000028c75d0 EFLAGS: 00010286 [ 927.923101][T14091] RAX: 00000000ffffffa6 RBX: ff1100000bc36800 RCX: 1fe22000036f19df [ 927.923313][T14091] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001b78cef8 [ 927.923532][T14091] RBP: 1ff4000000518ebb R08: 1fe22000036f19e0 R09: fffa3bfffffb0b37 [ 927.923743][T14091] R10: fffa3bfffffb0b38 R11: 0000000000000001 R12: ff1100001b78d574 [ 927.923962][T14091] R13: ff1100001b78d540 R14: ffffffff931c7940 R15: ff1100001b78ce40 [ 927.924175][T14091] FS: 00007fb4948e0440(0000) GS:ff110000a30b8000(0000) knlGS:0000000000000000 [ 927.924434][T14091] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 927.924610][T14091] CR2: 000000000044f720 CR3: 000000001a5c8001 CR4: 0000000000771ef0 [ 927.924825][T14091] PKRU: 55555554 [ 927.924938][T14091] Call Trace: [ 927.925042][T14091] [ 927.925114][T14091] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 927.925259][T14091] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 927.925411][T14091] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 927.925554][T14091] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 927.925695][T14091] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 927.925839][T14091] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 927.925984][T14091] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 927.926124][T14091] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 927.926263][T14091] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 927.926405][T14091] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 927.926550][T14091] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 927.926686][T14091] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 927.926828][T14091] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 927.926973][T14091] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 927.927111][T14091] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 927.927251][T14091] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 927.927389][T14091] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 927.927541][T14091] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 927.927679][T14091] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 927.927818][T14091] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 927.927969][T14091] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 927.928108][T14091] ? copy_msghdr_from_user (net/socket.c:2525) [ 927.928248][T14091] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 927.928433][T14091] ? move_addr_to_kernel (net/socket.c:2511) [ 927.928572][T14091] ? filemap_map_folio_range (mm/filemap.c:3873) [ 927.928717][T14091] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 927.928858][T14091] ___sys_sendmsg (net/socket.c:2641) [ 927.929008][T14091] ? copy_msghdr_from_user (net/socket.c:2628) [ 927.929156][T14091] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 927.929316][T14091] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 927.929469][T14091] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 927.929605][T14091] ? __sys_sendmsg_sock (net/socket.c:2656) [ 927.929740][T14091] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 927.929882][T14091] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 927.930020][T14091] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 927.930153][T14091] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 927.930283][T14091] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 927.930420][T14091] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 927.930586][T14091] RIP: 0033:0x7fb494a3ac5e [ 927.930740][T14091] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 927.931248][T14091] RSP: 002b:00007ffd039fb720 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 927.931479][T14091] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007fb494a3ac5e [ 927.931694][T14091] RDX: 0000000000000000 RSI: 00007ffd039fb7e0 RDI: 0000000000000005 [ 927.931906][T14091] RBP: 00007ffd039fb730 R08: 0000000000000000 R09: 0000000000000000 [ 927.932129][T14091] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 927.932351][T14091] R13: 0000000069cbe7e7 R14: 0000000000000004 R15: 000000000049d620 | [ 928.011832][T14097] ------------[ cut here ]------------ | [ 928.012012][T14097] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#0: ip/14097 | [ 928.012256][T14097] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 928.013045][T14097] Tainted: [W]=WARN [ 928.013148][T14097] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 928.013323][T14097] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 928.013499][T14097] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 928.014016][T14097] RSP: 0018:ffa00000028f75d0 EFLAGS: 00010286 [ 928.014209][T14097] RAX: 00000000ffffffa6 RBX: ff1100000bc36800 RCX: 1fe22000036f1af7 [ 928.014420][T14097] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001b78d7b8 [ 928.014622][T14097] RBP: 1ff400000051eebb R08: 1fe22000036f1af8 R09: fffa3bfffffb0b37 [ 928.014829][T14097] R10: fffa3bfffffb0b38 R11: 0000000000000001 R12: ff1100001b78d034 [ 928.015040][T14097] R13: ff1100001b78d000 R14: ffffffff931c7940 R15: ff1100001b78d700 [ 928.015248][T14097] FS: 00007f38bab4d440(0000) GS:ff110000a30b8000(0000) knlGS:0000000000000000 [ 928.015507][T14097] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 928.015681][T14097] CR2: 000000000044f720 CR3: 000000000c428003 CR4: 0000000000771ef0 [ 928.015910][T14097] PKRU: 55555554 [ 928.016017][T14097] Call Trace: [ 928.016122][T14097] [ 928.016194][T14097] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 928.016331][T14097] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 928.016487][T14097] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 928.016624][T14097] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 928.016759][T14097] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 928.017344][T14097] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 928.017518][T14097] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 928.017661][T14097] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 928.017798][T14097] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 928.017958][T14097] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 928.018117][T14097] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 928.018260][T14097] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 928.018408][T14097] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 928.018551][T14097] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 928.018694][T14097] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 928.018833][T14097] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 928.018974][T14097] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 928.019112][T14097] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 928.019252][T14097] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 928.019389][T14097] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 928.019544][T14097] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 928.019680][T14097] ? copy_msghdr_from_user (net/socket.c:2525) [ 928.019822][T14097] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 928.020005][T14097] ? move_addr_to_kernel (net/socket.c:2511) [ 928.020148][T14097] ? filemap_map_folio_range (mm/filemap.c:3873) [ 928.020296][T14097] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 928.020447][T14097] ___sys_sendmsg (net/socket.c:2641) [ 928.020583][T14097] ? copy_msghdr_from_user (net/socket.c:2628) [ 928.020723][T14097] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 928.020866][T14097] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 928.021009][T14097] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 928.021148][T14097] ? __sys_sendmsg_sock (net/socket.c:2656) [ 928.021287][T14097] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 928.021430][T14097] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 928.021566][T14097] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 928.021704][T14097] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 928.021839][T14097] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 928.021980][T14097] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 928.022152][T14097] RIP: 0033:0x7f38baca7c5e [ 928.022299][T14097] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 928.022796][T14097] RSP: 002b:00007ffe283c83d0 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 928.023020][T14097] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007f38baca7c5e [ 928.023234][T14097] RDX: 0000000000000000 RSI: 00007ffe283c8490 RDI: 0000000000000005 [ 928.023450][T14097] RBP: 00007ffe283c83e0 R08: 0000000000000000 R09: 0000000000000000 [ 928.023662][T14097] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 928.023878][T14097] R13: 0000000069cbe7e7 R14: 0000000000000004 R15: 000000000049d620 | [ 928.094177][T14101] ------------[ cut here ]------------ | [ 928.094366][T14101] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#0: ip/14101 | [ 928.094627][T14101] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 928.095443][T14101] Tainted: [W]=WARN [ 928.095549][T14101] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 928.095838][T14101] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 928.095992][T14101] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 928.096489][T14101] RSP: 0018:ffa00000028f75d0 EFLAGS: 00010286 [ 928.096669][T14101] RAX: 00000000ffffffa6 RBX: ff1100000bc36800 RCX: 1fe220000387501f [ 928.096873][T14101] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001c3a80f8 [ 928.097083][T14101] RBP: 1ff400000051eebb R08: 1fe2200003875020 R09: fffa3bfffffb0b37 [ 928.097286][T14101] R10: fffa3bfffffb0b38 R11: 0000000000000001 R12: ff1100001c3a83f4 [ 928.097501][T14101] R13: ff1100001c3a83c0 R14: ffffffff931c7940 R15: ff1100001c3a8040 [ 928.097708][T14101] FS: 00007f45f7cf0440(0000) GS:ff110000a30b8000(0000) knlGS:0000000000000000 [ 928.097968][T14101] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 928.098140][T14101] CR2: 000000000044f720 CR3: 0000000017f3b002 CR4: 0000000000771ef0 [ 928.098344][T14101] PKRU: 55555554 [ 928.098452][T14101] Call Trace: [ 928.098554][T14101] [ 928.098624][T14101] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 928.098768][T14101] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 928.098923][T14101] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 928.099069][T14101] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 928.099204][T14101] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 928.099350][T14101] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 928.099492][T14101] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 928.099628][T14101] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 928.099771][T14101] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 928.099950][T14101] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 928.100101][T14101] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 928.100247][T14101] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 928.100403][T14101] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 928.100551][T14101] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 928.100701][T14101] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 928.100858][T14101] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 928.101009][T14101] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 928.101165][T14101] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 928.101319][T14101] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 928.101478][T14101] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 928.101629][T14101] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 928.101777][T14101] ? copy_msghdr_from_user (net/socket.c:2525) [ 928.101930][T14101] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 928.102112][T14101] ? move_addr_to_kernel (net/socket.c:2511) [ 928.102258][T14101] ? filemap_map_folio_range (mm/filemap.c:3873) [ 928.102473][T14101] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 928.102621][T14101] ___sys_sendmsg (net/socket.c:2641) [ 928.102768][T14101] ? copy_msghdr_from_user (net/socket.c:2628) [ 928.102934][T14101] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 928.103090][T14101] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 928.103238][T14101] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 928.103382][T14101] ? __sys_sendmsg_sock (net/socket.c:2656) [ 928.103535][T14101] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 928.103680][T14101] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 928.103825][T14101] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 928.103975][T14101] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 928.104121][T14101] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 928.104265][T14101] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 928.104449][T14101] RIP: 0033:0x7f45f7e4ac5e [ 928.104602][T14101] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 928.105120][T14101] RSP: 002b:00007ffebde414d0 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 928.105338][T14101] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007f45f7e4ac5e [ 928.105560][T14101] RDX: 0000000000000000 RSI: 00007ffebde41590 RDI: 0000000000000005 [ 928.105783][T14101] RBP: 00007ffebde414e0 R08: 0000000000000000 R09: 0000000000000000 [ 928.106002][T14101] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 928.106219][T14101] R13: 0000000069cbe7e7 R14: 0000000000000004 R15: 000000000049d620 | [ 930.784337][T14326] ------------[ cut here ]------------ | [ 930.784533][T14326] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#3: ip/14326 | [ 930.784783][T14326] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 930.785615][T14326] Tainted: [W]=WARN [ 930.785719][T14326] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 930.785929][T14326] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 930.786083][T14326] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 930.786589][T14326] RSP: 0018:ffa00000031d75d0 EFLAGS: 00010286 [ 930.786769][T14326] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe22000034c208f [ 930.786995][T14326] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001a610478 [ 930.787233][T14326] RBP: 1ff400000063aebb R08: 1fe22000034c2090 R09: fffa3bfffffb0b24 [ 930.787456][T14326] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001a6105b4 [ 930.787661][T14326] R13: ff1100001a610580 R14: ffffffff931c7940 R15: ff1100001a6103c0 [ 930.787862][T14326] FS: 00007f7a7ce26440(0000) GS:ff110000a3238000(0000) knlGS:0000000000000000 [ 930.788141][T14326] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 930.788327][T14326] CR2: 000000000044f720 CR3: 0000000010313002 CR4: 0000000000771ef0 [ 930.788545][T14326] PKRU: 55555554 [ 930.788658][T14326] Call Trace: [ 930.788764][T14326] [ 930.788837][T14326] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 930.788989][T14326] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 930.789144][T14326] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 930.789279][T14326] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 930.789424][T14326] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 930.789563][T14326] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 930.789699][T14326] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 930.789837][T14326] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 930.790116][T14326] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 930.790258][T14326] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 930.790404][T14326] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 930.790541][T14326] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 930.790684][T14326] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 930.790854][T14326] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 930.791004][T14326] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 930.791140][T14326] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 930.791280][T14326] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 930.791443][T14326] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 930.791581][T14326] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 930.791720][T14326] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 930.791862][T14326] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 930.792013][T14326] ? copy_msghdr_from_user (net/socket.c:2525) [ 930.792149][T14326] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 930.792315][T14326] ? move_addr_to_kernel (net/socket.c:2511) [ 930.792455][T14326] ? filemap_map_folio_range (mm/filemap.c:3873) [ 930.792588][T14326] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 930.792742][T14326] ___sys_sendmsg (net/socket.c:2641) [ 930.792880][T14326] ? copy_msghdr_from_user (net/socket.c:2628) [ 930.793028][T14326] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 930.793172][T14326] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 930.793318][T14326] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 930.793467][T14326] ? __sys_sendmsg_sock (net/socket.c:2656) [ 930.793609][T14326] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 930.793749][T14326] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 930.793888][T14326] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 930.794033][T14326] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 930.794176][T14326] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 930.794320][T14326] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 930.794501][T14326] RIP: 0033:0x7f7a7cf80c5e [ 930.794652][T14326] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 930.795153][T14326] RSP: 002b:00007ffff8e04a50 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 930.795366][T14326] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007f7a7cf80c5e [ 930.795580][T14326] RDX: 0000000000000000 RSI: 00007ffff8e04b10 RDI: 0000000000000005 [ 930.795788][T14326] RBP: 00007ffff8e04a60 R08: 0000000000000000 R09: 0000000000000000 [ 930.796007][T14326] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 930.796213][T14326] R13: 0000000069cbe7ea R14: 0000000000000004 R15: 000000000049d620 | [ 930.864577][T14330] ------------[ cut here ]------------ | [ 930.864758][T14330] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#3: ip/14330 | [ 930.865461][T14330] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 930.866268][T14330] Tainted: [W]=WARN [ 930.866375][T14330] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 930.866580][T14330] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 930.866728][T14330] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 930.867238][T14330] RSP: 0018:ffa00000031375d0 EFLAGS: 00010286 [ 930.867430][T14330] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe2200001ea0537 [ 930.867643][T14330] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100000f5029b8 [ 930.867856][T14330] RBP: 1ff4000000626ebb R08: 1fe2200001ea0538 R09: fffa3bfffffb0b24 [ 930.868078][T14330] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001a611c74 [ 930.868289][T14330] R13: ff1100001a611c40 R14: ffffffff931c7940 R15: ff1100000f502900 [ 930.868513][T14330] FS: 00007fd3cde7b440(0000) GS:ff110000a3238000(0000) knlGS:0000000000000000 [ 930.868768][T14330] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 930.868955][T14330] CR2: 000000000044f720 CR3: 000000000c52d005 CR4: 0000000000771ef0 [ 930.869167][T14330] PKRU: 55555554 [ 930.869276][T14330] Call Trace: [ 930.869382][T14330] [ 930.869467][T14330] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 930.869607][T14330] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 930.869756][T14330] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 930.869908][T14330] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 930.870047][T14330] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 930.870189][T14330] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 930.870329][T14330] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 930.870475][T14330] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 930.870614][T14330] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 930.870751][T14330] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 930.870887][T14330] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 930.871033][T14330] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 930.871172][T14330] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 930.871316][T14330] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 930.871461][T14330] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 930.871599][T14330] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 930.871742][T14330] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 930.871884][T14330] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 930.872038][T14330] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 930.872178][T14330] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 930.872321][T14330] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 930.872472][T14330] ? copy_msghdr_from_user (net/socket.c:2525) [ 930.872616][T14330] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 930.872788][T14330] ? move_addr_to_kernel (net/socket.c:2511) [ 930.872939][T14330] ? filemap_map_folio_range (mm/filemap.c:3873) [ 930.873082][T14330] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 930.873216][T14330] ___sys_sendmsg (net/socket.c:2641) [ 930.873354][T14330] ? copy_msghdr_from_user (net/socket.c:2628) [ 930.873500][T14330] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 930.873644][T14330] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 930.873780][T14330] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 930.873923][T14330] ? __sys_sendmsg_sock (net/socket.c:2656) [ 930.874058][T14330] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 930.874193][T14330] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 930.874341][T14330] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 930.874479][T14330] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 930.874611][T14330] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 930.874745][T14330] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 930.874919][T14330] RIP: 0033:0x7fd3cdfd5c5e [ 930.875068][T14330] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 930.875573][T14330] RSP: 002b:00007fff033257f0 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 930.875784][T14330] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007fd3cdfd5c5e [ 930.875996][T14330] RDX: 0000000000000000 RSI: 00007fff033258b0 RDI: 0000000000000005 [ 930.876206][T14330] RBP: 00007fff03325800 R08: 0000000000000000 R09: 0000000000000000 [ 930.876419][T14330] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 930.876627][T14330] R13: 0000000069cbe7ea R14: 0000000000000004 R15: 000000000049d620 | [ 930.969628][T14336] ------------[ cut here ]------------ | [ 930.969812][T14336] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#3: ip/14336 | [ 930.970070][T14336] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 930.970877][T14336] Tainted: [W]=WARN [ 930.970990][T14336] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 930.971168][T14336] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 930.971323][T14336] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 930.971836][T14336] RSP: 0018:ffa00000030375d0 EFLAGS: 00010286 [ 930.972017][T14336] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe2200001ea056f [ 930.972223][T14336] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100000f502b78 [ 930.972431][T14336] RBP: 1ff4000000606ebb R08: 1fe2200001ea0570 R09: fffa3bfffffb0b24 [ 930.972631][T14336] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100000f502234 [ 930.972833][T14336] R13: ff1100000f502200 R14: ffffffff931c7940 R15: ff1100000f502ac0 [ 930.973449][T14336] FS: 00007fc0916cd440(0000) GS:ff110000a3238000(0000) knlGS:0000000000000000 [ 930.973709][T14336] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 930.973886][T14336] CR2: 000000000044f720 CR3: 000000001924e002 CR4: 0000000000771ef0 [ 930.974103][T14336] PKRU: 55555554 [ 930.974210][T14336] Call Trace: [ 930.974317][T14336] [ 930.974394][T14336] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 930.974540][T14336] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 930.974687][T14336] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 930.974831][T14336] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 930.974973][T14336] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 930.975108][T14336] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 930.975239][T14336] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 930.975371][T14336] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 930.975509][T14336] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 930.975643][T14336] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 930.975779][T14336] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 930.975919][T14336] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 930.976051][T14336] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 930.976189][T14336] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 930.976325][T14336] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 930.976476][T14336] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 930.976610][T14336] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 930.976750][T14336] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 930.976890][T14336] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 930.977035][T14336] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 930.977178][T14336] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 930.977316][T14336] ? copy_msghdr_from_user (net/socket.c:2525) [ 930.977460][T14336] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 930.977629][T14336] ? move_addr_to_kernel (net/socket.c:2511) [ 930.977770][T14336] ? filemap_map_folio_range (mm/filemap.c:3873) [ 930.977910][T14336] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 930.978054][T14336] ___sys_sendmsg (net/socket.c:2641) [ 930.978189][T14336] ? copy_msghdr_from_user (net/socket.c:2628) [ 930.978326][T14336] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 930.978466][T14336] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 930.978599][T14336] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 930.978732][T14336] ? __sys_sendmsg_sock (net/socket.c:2656) [ 930.978868][T14336] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 930.979004][T14336] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 930.979137][T14336] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 930.979268][T14336] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 930.979403][T14336] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 930.979537][T14336] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 930.979701][T14336] RIP: 0033:0x7fc091827c5e [ 930.979841][T14336] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 930.980311][T14336] RSP: 002b:00007fff79797820 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 930.980523][T14336] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007fc091827c5e [ 930.980721][T14336] RDX: 0000000000000000 RSI: 00007fff797978e0 RDI: 0000000000000005 [ 930.980923][T14336] RBP: 00007fff79797830 R08: 0000000000000000 R09: 0000000000000000 [ 930.981120][T14336] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 930.981332][T14336] R13: 0000000069cbe7ea R14: 0000000000000004 R15: 000000000049d620 | [ 931.039461][T14340] ------------[ cut here ]------------ | [ 931.039630][T14340] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#3: ip/14340 | [ 931.039866][T14340] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 931.040942][T14340] Tainted: [W]=WARN [ 931.041045][T14340] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 931.041212][T14340] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 931.041355][T14340] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 931.041840][T14340] RSP: 0018:ffa00000031c75d0 EFLAGS: 00010286 [ 931.042016][T14340] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe2200001ea064f [ 931.042212][T14340] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100000f503278 [ 931.042411][T14340] RBP: 1ff4000000638ebb R08: 1fe2200001ea0650 R09: fffa3bfffffb0b24 [ 931.042607][T14340] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100000f502cb4 [ 931.042803][T14340] R13: ff1100000f502c80 R14: ffffffff931c7940 R15: ff1100000f5031c0 [ 931.043003][T14340] FS: 00007f7547f58440(0000) GS:ff110000a3238000(0000) knlGS:0000000000000000 [ 931.043234][T14340] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 931.043405][T14340] CR2: 000000000044f720 CR3: 000000001082f005 CR4: 0000000000771ef0 [ 931.043606][T14340] PKRU: 55555554 [ 931.043709][T14340] Call Trace: [ 931.043809][T14340] [ 931.043877][T14340] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 931.044016][T14340] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 931.044155][T14340] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 931.044304][T14340] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 931.044443][T14340] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 931.044580][T14340] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 931.044711][T14340] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 931.044841][T14340] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 931.044978][T14340] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 931.045108][T14340] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 931.045242][T14340] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 931.045371][T14340] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 931.045511][T14340] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 931.045642][T14340] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 931.045773][T14340] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 931.045909][T14340] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 931.046041][T14340] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 931.046172][T14340] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 931.046304][T14340] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 931.046441][T14340] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 931.046575][T14340] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 931.046734][T14340] ? copy_msghdr_from_user (net/socket.c:2525) [ 931.046879][T14340] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 931.047055][T14340] ? move_addr_to_kernel (net/socket.c:2511) [ 931.047192][T14340] ? filemap_map_folio_range (mm/filemap.c:3873) [ 931.047330][T14340] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 931.047475][T14340] ___sys_sendmsg (net/socket.c:2641) [ 931.047610][T14340] ? copy_msghdr_from_user (net/socket.c:2628) [ 931.047754][T14340] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 931.047902][T14340] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 931.048044][T14340] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 931.048185][T14340] ? __sys_sendmsg_sock (net/socket.c:2656) [ 931.048334][T14340] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 931.048473][T14340] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 931.048604][T14340] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 931.048742][T14340] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 931.048877][T14340] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 931.049013][T14340] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 931.049176][T14340] RIP: 0033:0x7f75480b2c5e [ 931.049314][T14340] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 931.049796][T14340] RSP: 002b:00007ffd679bb330 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 931.050020][T14340] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007f75480b2c5e [ 931.050230][T14340] RDX: 0000000000000000 RSI: 00007ffd679bb3f0 RDI: 0000000000000005 [ 931.050449][T14340] RBP: 00007ffd679bb340 R08: 0000000000000000 R09: 0000000000000000 [ 931.050657][T14340] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 931.050860][T14340] R13: 0000000069cbe7ea R14: 0000000000000004 R15: 000000000049d620 | [ 931.134430][T14346] ------------[ cut here ]------------ | [ 931.134649][T14346] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#2: ip/14346 | [ 931.134943][T14346] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 931.135838][T14346] Tainted: [W]=WARN [ 931.136003][T14346] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 931.136220][T14346] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 931.136420][T14346] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 931.136950][T14346] RSP: 0018:ffa00000031d75d0 EFLAGS: 00010286 [ 931.137172][T14346] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe22000036f1bd7 [ 931.137425][T14346] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001b78deb8 [ 931.137676][T14346] RBP: 1ff400000063aebb R08: 1fe22000036f1bd8 R09: fffa3bfffffb0b24 [ 931.137933][T14346] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001b78d8f4 [ 931.138178][T14346] R13: ff1100001b78d8c0 R14: ffffffff931c7940 R15: ff1100001b78de00 [ 931.138435][T14346] FS: 00007f2a4b083440(0000) GS:ff110000a31b8000(0000) knlGS:0000000000000000 [ 931.138725][T14346] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 931.138954][T14346] CR2: 000000000044f720 CR3: 000000001037c001 CR4: 0000000000771ef0 [ 931.139203][T14346] PKRU: 55555554 [ 931.139352][T14346] Call Trace: [ 931.139521][T14346] [ 931.139646][T14346] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 931.139834][T14346] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 931.140041][T14346] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 931.140227][T14346] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 931.140415][T14346] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 931.140601][T14346] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 931.140783][T14346] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 931.140979][T14346] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 931.141162][T14346] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 931.141346][T14346] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 931.141540][T14346] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 931.141723][T14346] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 931.141922][T14346] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 931.142106][T14346] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 931.142287][T14346] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 931.142478][T14346] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 931.142661][T14346] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 931.142847][T14346] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 931.143053][T14346] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 931.143254][T14346] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 931.143448][T14346] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 931.143640][T14346] ? copy_msghdr_from_user (net/socket.c:2525) [ 931.143824][T14346] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 931.144050][T14346] ? move_addr_to_kernel (net/socket.c:2511) [ 931.144248][T14346] ? filemap_map_folio_range (mm/filemap.c:3873) [ 931.144438][T14346] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 931.144634][T14346] ___sys_sendmsg (net/socket.c:2641) [ 931.144833][T14346] ? copy_msghdr_from_user (net/socket.c:2628) [ 931.145040][T14346] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 931.145232][T14346] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 931.145432][T14346] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 931.145622][T14346] ? __sys_sendmsg_sock (net/socket.c:2656) [ 931.145819][T14346] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 931.146016][T14346] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 931.146208][T14346] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 931.146402][T14346] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 931.146590][T14346] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 931.146776][T14346] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 931.147006][T14346] RIP: 0033:0x7f2a4b1ddc5e [ 931.147198][T14346] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 931.147754][T14346] RSP: 002b:00007ffe7f380620 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 931.148025][T14346] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007f2a4b1ddc5e [ 931.148282][T14346] RDX: 0000000000000000 RSI: 00007ffe7f3806e0 RDI: 0000000000000005 [ 931.148541][T14346] RBP: 00007ffe7f380630 R08: 0000000000000000 R09: 0000000000000000 [ 931.148787][T14346] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 931.149043][T14346] R13: 0000000069cbe7ea R14: 0000000000000004 R15: 000000000049d620 | [ 931.230052][T14350] ------------[ cut here ]------------ | [ 931.230289][T14350] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#2: ip/14350 | [ 931.230607][T14350] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 931.231550][T14350] Tainted: [W]=WARN [ 931.231706][T14350] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 931.231950][T14350] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 931.232152][T14350] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 931.232725][T14350] RSP: 0018:ffa00000032075d0 EFLAGS: 00010286 [ 931.232973][T14350] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe22000036f1937 [ 931.233227][T14350] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001b78c9b8 [ 931.233507][T14350] RBP: 1ff4000000640ebb R08: 1fe22000036f1938 R09: fffa3bfffffb0b24 [ 931.233756][T14350] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001b78dab4 [ 931.234014][T14350] R13: ff1100001b78da80 R14: ffffffff931c7940 R15: ff1100001b78c900 [ 931.234269][T14350] FS: 00007fac62666440(0000) GS:ff110000a31b8000(0000) knlGS:0000000000000000 [ 931.234578][T14350] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 931.234807][T14350] CR2: 000000000044f720 CR3: 000000001037c005 CR4: 0000000000771ef0 [ 931.235089][T14350] PKRU: 55555554 [ 931.235241][T14350] Call Trace: [ 931.235404][T14350] [ 931.235528][T14350] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 931.235721][T14350] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 931.236324][T14350] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 931.236521][T14350] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 931.236705][T14350] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 931.236908][T14350] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 931.237091][T14350] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 931.237281][T14350] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 931.237476][T14350] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 931.237663][T14350] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 931.237853][T14350] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 931.238046][T14350] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 931.238232][T14350] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 931.238425][T14350] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 931.238609][T14350] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 931.238800][T14350] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 931.238999][T14350] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 931.239205][T14350] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 931.239413][T14350] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 931.239618][T14350] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 931.239806][T14350] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 931.240020][T14350] ? copy_msghdr_from_user (net/socket.c:2525) [ 931.240221][T14350] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 931.240461][T14350] ? move_addr_to_kernel (net/socket.c:2511) [ 931.240688][T14350] ? filemap_map_folio_range (mm/filemap.c:3873) [ 931.240941][T14350] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 931.241172][T14350] ___sys_sendmsg (net/socket.c:2641) [ 931.241404][T14350] ? copy_msghdr_from_user (net/socket.c:2628) [ 931.241593][T14350] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 931.241781][T14350] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 931.241984][T14350] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 931.242172][T14350] ? __sys_sendmsg_sock (net/socket.c:2656) [ 931.242357][T14350] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 931.242553][T14350] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 931.242742][T14350] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 931.242943][T14350] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 931.243129][T14350] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 931.243351][T14350] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 931.243580][T14350] RIP: 0033:0x7fac627c0c5e [ 931.243792][T14350] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 931.244384][T14350] RSP: 002b:00007ffc80a3b920 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 931.244654][T14350] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007fac627c0c5e [ 931.244919][T14350] RDX: 0000000000000000 RSI: 00007ffc80a3b9e0 RDI: 0000000000000005 [ 931.245175][T14350] RBP: 00007ffc80a3b930 R08: 0000000000000000 R09: 0000000000000000 [ 931.245433][T14350] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 931.245687][T14350] R13: 0000000069cbe7ea R14: 0000000000000004 R15: 000000000049d620 | [ 931.314817][T14356] ------------[ cut here ]------------ | [ 931.315197][T14356] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#0: ip/14356 | [ 931.315450][T14356] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 931.316260][T14356] Tainted: [W]=WARN [ 931.316366][T14356] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 931.316543][T14356] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 931.316685][T14356] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 931.317170][T14356] RSP: 0018:ffa00000032275d0 EFLAGS: 00010286 [ 931.317341][T14356] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe22000036f1a87 [ 931.317543][T14356] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001b78d438 [ 931.317743][T14356] RBP: 1ff4000000644ebb R08: 1fe22000036f1a88 R09: fffa3bfffffb0b24 [ 931.317944][T14356] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001b78d1f4 [ 931.318141][T14356] R13: ff1100001b78d1c0 R14: ffffffff931c7940 R15: ff1100001b78d380 [ 931.318342][T14356] FS: 00007f7aed39b440(0000) GS:ff110000a30b8000(0000) knlGS:0000000000000000 [ 931.318584][T14356] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 931.318755][T14356] CR2: 000000000044f720 CR3: 00000000102e6003 CR4: 0000000000771ef0 [ 931.319014][T14356] PKRU: 55555554 [ 931.319121][T14356] Call Trace: [ 931.319230][T14356] [ 931.319298][T14356] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 931.319444][T14356] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 931.319587][T14356] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 931.319731][T14356] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 931.319878][T14356] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 931.320018][T14356] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 931.320153][T14356] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 931.320289][T14356] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 931.320426][T14356] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 931.320561][T14356] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 931.320699][T14356] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 931.320833][T14356] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 931.320973][T14356] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 931.321108][T14356] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 931.321240][T14356] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 931.321372][T14356] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 931.321512][T14356] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 931.321646][T14356] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 931.321797][T14356] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 931.321947][T14356] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 931.322082][T14356] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 931.322217][T14356] ? copy_msghdr_from_user (net/socket.c:2525) [ 931.322376][T14356] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 931.322571][T14356] ? move_addr_to_kernel (net/socket.c:2511) [ 931.322728][T14356] ? filemap_map_folio_range (mm/filemap.c:3873) [ 931.322881][T14356] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 931.323044][T14356] ___sys_sendmsg (net/socket.c:2641) [ 931.323200][T14356] ? copy_msghdr_from_user (net/socket.c:2628) [ 931.323369][T14356] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 931.323527][T14356] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 931.323680][T14356] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 931.323837][T14356] ? __sys_sendmsg_sock (net/socket.c:2656) [ 931.324002][T14356] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 931.324144][T14356] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 931.324281][T14356] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 931.324443][T14356] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 931.324583][T14356] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 931.324717][T14356] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 931.324883][T14356] RIP: 0033:0x7f7aed4f5c5e [ 931.325029][T14356] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 931.325553][T14356] RSP: 002b:00007ffe7bd44840 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 931.325758][T14356] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007f7aed4f5c5e [ 931.325967][T14356] RDX: 0000000000000000 RSI: 00007ffe7bd44900 RDI: 0000000000000005 [ 931.326168][T14356] RBP: 00007ffe7bd44850 R08: 0000000000000000 R09: 0000000000000000 [ 931.326366][T14356] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 931.326573][T14356] R13: 0000000069cbe7ea R14: 0000000000000004 R15: 000000000049d620 | [ 931.401937][T14360] ------------[ cut here ]------------ | [ 931.402109][T14360] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#3: ip/14360 | [ 931.402361][T14360] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 931.403166][T14360] Tainted: [W]=WARN [ 931.403275][T14360] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 931.403457][T14360] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 931.403607][T14360] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 931.404118][T14360] RSP: 0018:ffa00000031c75d0 EFLAGS: 00010286 [ 931.404292][T14360] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe22000038750c7 [ 931.404501][T14360] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001c3a8638 [ 931.404710][T14360] RBP: 1ff4000000638ebb R08: 1fe22000038750c8 R09: fffa3bfffffb0b24 [ 931.404930][T14360] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001c3a9e34 [ 931.405144][T14360] R13: ff1100001c3a9e00 R14: ffffffff931c7940 R15: ff1100001c3a8580 [ 931.405357][T14360] FS: 00007fee327bf440(0000) GS:ff110000a3238000(0000) knlGS:0000000000000000 [ 931.405604][T14360] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 931.405807][T14360] CR2: 000000000044f720 CR3: 000000001ade0004 CR4: 0000000000771ef0 [ 931.406035][T14360] PKRU: 55555554 [ 931.406140][T14360] Call Trace: [ 931.406248][T14360] [ 931.406324][T14360] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 931.406469][T14360] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 931.406611][T14360] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 931.406747][T14360] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 931.406881][T14360] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 931.407371][T14360] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 931.407510][T14360] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 931.407645][T14360] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 931.407778][T14360] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 931.407920][T14360] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 931.408056][T14360] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 931.408188][T14360] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 931.408321][T14360] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 931.408460][T14360] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 931.408591][T14360] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 931.408723][T14360] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 931.408857][T14360] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 931.408998][T14360] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 931.409132][T14360] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 931.409279][T14360] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 931.409428][T14360] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 931.409571][T14360] ? copy_msghdr_from_user (net/socket.c:2525) [ 931.409709][T14360] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 931.409888][T14360] ? move_addr_to_kernel (net/socket.c:2511) [ 931.410042][T14360] ? filemap_map_folio_range (mm/filemap.c:3873) [ 931.410182][T14360] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 931.410324][T14360] ___sys_sendmsg (net/socket.c:2641) [ 931.410468][T14360] ? copy_msghdr_from_user (net/socket.c:2628) [ 931.410615][T14360] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 931.410770][T14360] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 931.410924][T14360] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 931.411072][T14360] ? __sys_sendmsg_sock (net/socket.c:2656) [ 931.411220][T14360] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 931.411368][T14360] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 931.411514][T14360] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 931.411656][T14360] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 931.411794][T14360] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 931.411939][T14360] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 931.412124][T14360] RIP: 0033:0x7fee32919c5e [ 931.412281][T14360] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 931.412823][T14360] RSP: 002b:00007ffc15018fc0 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 931.413063][T14360] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007fee32919c5e [ 931.413293][T14360] RDX: 0000000000000000 RSI: 00007ffc15019080 RDI: 0000000000000005 [ 931.413524][T14360] RBP: 00007ffc15018fd0 R08: 0000000000000000 R09: 0000000000000000 [ 931.413784][T14360] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 931.414011][T14360] R13: 0000000069cbe7ea R14: 0000000000000004 R15: 000000000049d620 | [ 931.483034][T14366] ------------[ cut here ]------------ | [ 931.483222][T14366] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#0: ip/14366 | [ 931.483472][T14366] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 931.484248][T14366] Tainted: [W]=WARN [ 931.484350][T14366] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 931.484524][T14366] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 931.484669][T14366] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 931.485151][T14366] RSP: 0018:ffa00000031d75d0 EFLAGS: 00010286 [ 931.485325][T14366] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe2200003875287 [ 931.485533][T14366] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001c3a9438 [ 931.485762][T14366] RBP: 1ff400000063aebb R08: 1fe2200003875288 R09: fffa3bfffffb0b24 [ 931.485974][T14366] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001c3a8cb4 [ 931.486177][T14366] R13: ff1100001c3a8c80 R14: ffffffff931c7940 R15: ff1100001c3a9380 [ 931.486381][T14366] FS: 00007f0e67aae440(0000) GS:ff110000a30b8000(0000) knlGS:0000000000000000 [ 931.486629][T14366] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 931.486800][T14366] CR2: 000000000044f720 CR3: 000000000c71c001 CR4: 0000000000771ef0 [ 931.487006][T14366] PKRU: 55555554 [ 931.487108][T14366] Call Trace: [ 931.487210][T14366] [ 931.487289][T14366] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 931.487434][T14366] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 931.487575][T14366] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 931.487709][T14366] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 931.487843][T14366] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 931.487994][T14366] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 931.488134][T14366] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 931.488277][T14366] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 931.488428][T14366] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 931.488570][T14366] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 931.488714][T14366] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 931.488855][T14366] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 931.489087][T14366] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 931.489230][T14366] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 931.489369][T14366] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 931.489510][T14366] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 931.489648][T14366] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 931.489782][T14366] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 931.489988][T14366] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 931.490123][T14366] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 931.490274][T14366] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 931.490412][T14366] ? copy_msghdr_from_user (net/socket.c:2525) [ 931.490568][T14366] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 931.490735][T14366] ? move_addr_to_kernel (net/socket.c:2511) [ 931.490876][T14366] ? filemap_map_folio_range (mm/filemap.c:3873) [ 931.491080][T14366] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 931.491216][T14366] ___sys_sendmsg (net/socket.c:2641) [ 931.491348][T14366] ? copy_msghdr_from_user (net/socket.c:2628) [ 931.491491][T14366] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 931.491628][T14366] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 931.491765][T14366] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 931.492154][T14366] ? __sys_sendmsg_sock (net/socket.c:2656) [ 931.492299][T14366] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 931.492444][T14366] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 931.492588][T14366] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 931.492730][T14366] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 931.492870][T14366] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 931.493090][T14366] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 931.493265][T14366] RIP: 0033:0x7f0e67c08c5e [ 931.493425][T14366] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 931.493992][T14366] RSP: 002b:00007ffedefd6c80 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 931.494200][T14366] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007f0e67c08c5e [ 931.494418][T14366] RDX: 0000000000000000 RSI: 00007ffedefd6d40 RDI: 0000000000000005 [ 931.494619][T14366] RBP: 00007ffedefd6c90 R08: 0000000000000000 R09: 0000000000000000 [ 931.494817][T14366] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 931.495091][T14366] R13: 0000000069cbe7ea R14: 0000000000000004 R15: 000000000049d620 | [ 931.568655][T14370] ------------[ cut here ]------------ | [ 931.568847][T14370] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#3: ip/14370 | [ 931.569106][T14370] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 931.569930][T14370] Tainted: [W]=WARN [ 931.570033][T14370] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 931.570235][T14370] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 931.570403][T14370] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 931.570907][T14370] RSP: 0018:ffa00000032775d0 EFLAGS: 00010286 [ 931.571090][T14370] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe220000192ea4f [ 931.571302][T14370] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100000c975278 [ 931.571522][T14370] RBP: 1ff400000064eebb R08: 1fe220000192ea50 R09: fffa3bfffffb0b24 [ 931.571736][T14370] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100000c975034 [ 931.571951][T14370] R13: ff1100000c975000 R14: ffffffff931c7940 R15: ff1100000c9751c0 [ 931.572165][T14370] FS: 00007fd1aa986440(0000) GS:ff110000a3238000(0000) knlGS:0000000000000000 [ 931.572422][T14370] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 931.572603][T14370] CR2: 000000000044f720 CR3: 000000001acf9006 CR4: 0000000000771ef0 [ 931.572815][T14370] PKRU: 55555554 [ 931.572926][T14370] Call Trace: [ 931.573030][T14370] [ 931.573099][T14370] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 931.573240][T14370] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 931.573385][T14370] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 931.573525][T14370] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 931.573664][T14370] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 931.573805][T14370] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 931.573945][T14370] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 931.574127][T14370] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 931.574266][T14370] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 931.574472][T14370] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 931.574613][T14370] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 931.574745][T14370] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 931.574883][T14370] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 931.575024][T14370] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 931.575161][T14370] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 931.575306][T14370] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 931.575477][T14370] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 931.575612][T14370] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 931.575750][T14370] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 931.575887][T14370] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 931.576033][T14370] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 931.576168][T14370] ? copy_msghdr_from_user (net/socket.c:2525) [ 931.576303][T14370] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 931.576476][T14370] ? move_addr_to_kernel (net/socket.c:2511) [ 931.576612][T14370] ? filemap_map_folio_range (mm/filemap.c:3873) [ 931.576752][T14370] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 931.577015][T14370] ___sys_sendmsg (net/socket.c:2641) [ 931.577154][T14370] ? copy_msghdr_from_user (net/socket.c:2628) [ 931.577301][T14370] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 931.577443][T14370] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 931.577578][T14370] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 931.577732][T14370] ? __sys_sendmsg_sock (net/socket.c:2656) [ 931.577875][T14370] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 931.578025][T14370] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 931.578165][T14370] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 931.578302][T14370] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 931.578442][T14370] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 931.578601][T14370] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 931.578771][T14370] RIP: 0033:0x7fd1aaae0c5e [ 931.578920][T14370] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 931.579410][T14370] RSP: 002b:00007fff1bbd1660 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 931.579647][T14370] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007fd1aaae0c5e [ 931.579858][T14370] RDX: 0000000000000000 RSI: 00007fff1bbd1720 RDI: 0000000000000005 [ 931.580076][T14370] RBP: 00007fff1bbd1670 R08: 0000000000000000 R09: 0000000000000000 [ 931.580299][T14370] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 931.580514][T14370] R13: 0000000069cbe7eb R14: 0000000000000004 R15: 000000000049d620 | [ 931.653335][T14376] ------------[ cut here ]------------ | [ 931.653528][T14376] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#0: ip/14376 | [ 931.653795][T14376] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 931.654648][T14376] Tainted: [W]=WARN [ 931.654757][T14376] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 931.654944][T14376] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 931.655100][T14376] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 931.655612][T14376] RSP: 0018:ffa00000031375d0 EFLAGS: 00010286 [ 931.655798][T14376] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe220000192eaf7 [ 931.656026][T14376] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100000c9757b8 [ 931.656237][T14376] RBP: 1ff4000000626ebb R08: 1fe220000192eaf8 R09: fffa3bfffffb0b24 [ 931.656455][T14376] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100000c975574 [ 931.656670][T14376] R13: ff1100000c975540 R14: ffffffff931c7940 R15: ff1100000c975700 [ 931.656887][T14376] FS: 00007fe5ffc6d440(0000) GS:ff110000a30b8000(0000) knlGS:0000000000000000 [ 931.657144][T14376] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 931.657323][T14376] CR2: 000000000044f720 CR3: 0000000019be1005 CR4: 0000000000771ef0 [ 931.657542][T14376] PKRU: 55555554 [ 931.657651][T14376] Call Trace: [ 931.657760][T14376] [ 931.657833][T14376] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 931.657986][T14376] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 931.658137][T14376] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 931.658278][T14376] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 931.658427][T14376] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 931.658573][T14376] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 931.658713][T14376] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 931.658858][T14376] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 931.659019][T14376] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 931.659162][T14376] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 931.659305][T14376] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 931.659452][T14376] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 931.659596][T14376] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 931.659743][T14376] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 931.659886][T14376] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 931.660034][T14376] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 931.660177][T14376] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 931.660320][T14376] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 931.660471][T14376] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 931.660613][T14376] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 931.660757][T14376] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 931.660905][T14376] ? copy_msghdr_from_user (net/socket.c:2525) [ 931.661049][T14376] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 931.661223][T14376] ? move_addr_to_kernel (net/socket.c:2511) [ 931.661366][T14376] ? filemap_map_folio_range (mm/filemap.c:3873) [ 931.661510][T14376] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 931.661659][T14376] ___sys_sendmsg (net/socket.c:2641) [ 931.661800][T14376] ? copy_msghdr_from_user (net/socket.c:2628) [ 931.661949][T14376] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 931.662103][T14376] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 931.662248][T14376] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 931.662399][T14376] ? __sys_sendmsg_sock (net/socket.c:2656) [ 931.662545][T14376] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 931.662687][T14376] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 931.662830][T14376] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 931.662981][T14376] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 931.663122][T14376] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 931.663261][T14376] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 931.663435][T14376] RIP: 0033:0x7fe5ffdc7c5e [ 931.663579][T14376] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 931.664076][T14376] RSP: 002b:00007ffe94b50d70 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 931.664283][T14376] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007fe5ffdc7c5e [ 931.664490][T14376] RDX: 0000000000000000 RSI: 00007ffe94b50e30 RDI: 0000000000000005 [ 931.664690][T14376] RBP: 00007ffe94b50d80 R08: 0000000000000000 R09: 0000000000000000 [ 931.664907][T14376] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 931.665118][T14376] R13: 0000000069cbe7eb R14: 0000000000000004 R15: 000000000049d620 | [ 931.736567][T14380] ------------[ cut here ]------------ | [ 931.736735][T14380] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#0: ip/14380 | [ 931.736984][T14380] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 931.737769][T14380] Tainted: [W]=WARN [ 931.737876][T14380] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 931.738055][T14380] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 931.738203][T14380] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 931.738686][T14380] RSP: 0018:ffa00000031375d0 EFLAGS: 00010286 [ 931.738867][T14380] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe2200003229ddf [ 931.739074][T14380] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001914eef8 [ 931.739274][T14380] RBP: 1ff4000000626ebb R08: 1fe2200003229de0 R09: fffa3bfffffb0b24 [ 931.739482][T14380] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001914ecb4 [ 931.739682][T14380] R13: ff1100001914ec80 R14: ffffffff931c7940 R15: ff1100001914ee40 [ 931.739886][T14380] FS: 00007ffb4a07e440(0000) GS:ff110000a30b8000(0000) knlGS:0000000000000000 [ 931.740128][T14380] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 931.740296][T14380] CR2: 000000000044f720 CR3: 000000001ad93002 CR4: 0000000000771ef0 [ 931.740502][T14380] PKRU: 55555554 [ 931.740602][T14380] Call Trace: [ 931.740702][T14380] [ 931.740771][T14380] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 931.740911][T14380] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 931.741053][T14380] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 931.741189][T14380] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 931.741321][T14380] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 931.741474][T14380] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 931.741607][T14380] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 931.741742][T14380] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 931.741875][T14380] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 931.742015][T14380] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 931.742153][T14380] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 931.742290][T14380] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 931.742432][T14380] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 931.742569][T14380] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 931.742705][T14380] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 931.742848][T14380] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 931.742991][T14380] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 931.743125][T14380] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 931.743259][T14380] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 931.743397][T14380] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 931.743541][T14380] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 931.743682][T14380] ? copy_msghdr_from_user (net/socket.c:2525) [ 931.743821][T14380] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 931.744003][T14380] ? move_addr_to_kernel (net/socket.c:2511) [ 931.744144][T14380] ? filemap_map_folio_range (mm/filemap.c:3873) [ 931.744283][T14380] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 931.744429][T14380] ___sys_sendmsg (net/socket.c:2641) [ 931.744567][T14380] ? copy_msghdr_from_user (net/socket.c:2628) [ 931.744712][T14380] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 931.744855][T14380] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 931.745004][T14380] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 931.745145][T14380] ? __sys_sendmsg_sock (net/socket.c:2656) [ 931.745287][T14380] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 931.745430][T14380] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 931.745574][T14380] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 931.745715][T14380] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 931.745854][T14380] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 931.746000][T14380] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 931.746172][T14380] RIP: 0033:0x7ffb4a1d8c5e [ 931.746319][T14380] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 931.746843][T14380] RSP: 002b:00007ffe685250d0 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 931.747064][T14380] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007ffb4a1d8c5e [ 931.747273][T14380] RDX: 0000000000000000 RSI: 00007ffe68525190 RDI: 0000000000000005 [ 931.747572][T14380] RBP: 00007ffe685250e0 R08: 0000000000000000 R09: 0000000000000000 [ 931.747778][T14380] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 931.748068][T14380] R13: 0000000069cbe7eb R14: 0000000000000004 R15: 000000000049d620 | [ 931.817859][T14386] ------------[ cut here ]------------ | [ 931.818058][T14386] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#0: ip/14386 | [ 931.818314][T14386] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 931.819112][T14386] Tainted: [W]=WARN [ 931.819217][T14386] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 931.819402][T14386] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 931.819548][T14386] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 931.821093][T14386] RSP: 0018:ffa00000032475d0 EFLAGS: 00010286 [ 931.821268][T14386] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe2200003229e87 [ 931.821476][T14386] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001914f438 [ 931.821678][T14386] RBP: 1ff4000000648ebb R08: 1fe2200003229e88 R09: fffa3bfffffb0b24 [ 931.821890][T14386] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001914f1f4 [ 931.822153][T14386] R13: ff1100001914f1c0 R14: ffffffff931c7940 R15: ff1100001914f380 [ 931.822363][T14386] FS: 00007f91b8752440(0000) GS:ff110000a30b8000(0000) knlGS:0000000000000000 [ 931.822608][T14386] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 931.822779][T14386] CR2: 000000000044f720 CR3: 000000001958b002 CR4: 0000000000771ef0 [ 931.823058][T14386] PKRU: 55555554 [ 931.823161][T14386] Call Trace: [ 931.823261][T14386] [ 931.823330][T14386] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 931.823482][T14386] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 931.823629][T14386] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 931.823776][T14386] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 931.823990][T14386] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 931.824125][T14386] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 931.824264][T14386] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 931.824409][T14386] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 931.824552][T14386] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 931.824694][T14386] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 931.824835][T14386] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 931.825047][T14386] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 931.825181][T14386] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 931.825317][T14386] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 931.825457][T14386] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 931.825590][T14386] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 931.825724][T14386] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 931.825859][T14386] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 931.826072][T14386] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 931.826207][T14386] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 931.826342][T14386] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 931.826481][T14386] ? copy_msghdr_from_user (net/socket.c:2525) [ 931.826614][T14386] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 931.826780][T14386] ? move_addr_to_kernel (net/socket.c:2511) [ 931.826996][T14386] ? filemap_map_folio_range (mm/filemap.c:3873) [ 931.827135][T14386] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 931.827277][T14386] ___sys_sendmsg (net/socket.c:2641) [ 931.827420][T14386] ? copy_msghdr_from_user (net/socket.c:2628) [ 931.827565][T14386] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 931.827708][T14386] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 931.827849][T14386] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 931.828057][T14386] ? __sys_sendmsg_sock (net/socket.c:2656) [ 931.828200][T14386] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 931.828341][T14386] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 931.828484][T14386] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 931.828628][T14386] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 931.828767][T14386] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 931.828983][T14386] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 931.829147][T14386] RIP: 0033:0x7f91b88acc5e [ 931.829288][T14386] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 931.829769][T14386] RSP: 002b:00007ffefb13f5d0 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 931.830052][T14386] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007f91b88acc5e [ 931.830254][T14386] RDX: 0000000000000000 RSI: 00007ffefb13f690 RDI: 0000000000000005 [ 931.830460][T14386] RBP: 00007ffefb13f5e0 R08: 0000000000000000 R09: 0000000000000000 [ 931.830660][T14386] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 931.830860][T14386] R13: 0000000069cbe7eb R14: 0000000000000004 R15: 000000000049d620 | [ 931.910758][T14390] ------------[ cut here ]------------ | [ 931.911178][T14390] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#3: ip/14390 | [ 931.911466][T14390] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 931.912258][T14390] Tainted: [W]=WARN [ 931.912361][T14390] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 931.912537][T14390] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 931.912682][T14390] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 931.913181][T14390] RSP: 0018:ffa00000032c75d0 EFLAGS: 00010286 [ 931.913355][T14390] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe22000034c20ff [ 931.913597][T14390] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001a6107f8 [ 931.913817][T14390] RBP: 1ff4000000658ebb R08: 1fe22000034c2100 R09: fffa3bfffffb0b24 [ 931.914071][T14390] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001a611c74 [ 931.914288][T14390] R13: ff1100001a611c40 R14: ffffffff931c7940 R15: ff1100001a610740 [ 931.914511][T14390] FS: 00007ff8e7b90440(0000) GS:ff110000a3238000(0000) knlGS:0000000000000000 [ 931.914760][T14390] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 931.914950][T14390] CR2: 000000000044f720 CR3: 00000000193e2002 CR4: 0000000000771ef0 [ 931.915167][T14390] PKRU: 55555554 [ 931.915274][T14390] Call Trace: [ 931.915379][T14390] [ 931.915466][T14390] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 931.915609][T14390] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 931.915759][T14390] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 931.915907][T14390] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 931.916068][T14390] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 931.916220][T14390] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 931.916376][T14390] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 931.916525][T14390] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 931.916666][T14390] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 931.916802][T14390] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 931.916979][T14390] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 931.917128][T14390] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 931.917280][T14390] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 931.917422][T14390] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 931.917556][T14390] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 931.917691][T14390] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 931.917826][T14390] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 931.917972][T14390] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 931.918108][T14390] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 931.918242][T14390] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 931.918379][T14390] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 931.918517][T14390] ? copy_msghdr_from_user (net/socket.c:2525) [ 931.918650][T14390] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 931.918815][T14390] ? move_addr_to_kernel (net/socket.c:2511) [ 931.918959][T14390] ? filemap_map_folio_range (mm/filemap.c:3873) [ 931.919094][T14390] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 931.919228][T14390] ___sys_sendmsg (net/socket.c:2641) [ 931.919360][T14390] ? copy_msghdr_from_user (net/socket.c:2628) [ 931.919509][T14390] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 931.919647][T14390] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 931.919782][T14390] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 931.919921][T14390] ? __sys_sendmsg_sock (net/socket.c:2656) [ 931.920057][T14390] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 931.920189][T14390] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 931.920323][T14390] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 931.920460][T14390] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 931.920594][T14390] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 931.920727][T14390] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 931.920899][T14390] RIP: 0033:0x7ff8e7ceac5e [ 931.921039][T14390] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 931.921520][T14390] RSP: 002b:00007ffdd5f830f0 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 931.921721][T14390] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007ff8e7ceac5e [ 931.921930][T14390] RDX: 0000000000000000 RSI: 00007ffdd5f831b0 RDI: 0000000000000005 [ 931.922129][T14390] RBP: 00007ffdd5f83100 R08: 0000000000000000 R09: 0000000000000000 [ 931.922330][T14390] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 931.922546][T14390] R13: 0000000069cbe7eb R14: 0000000000000004 R15: 000000000049d620 | [ 932.009272][T14396] ------------[ cut here ]------------ | [ 932.009466][T14396] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#0: ip/14396 | [ 932.009712][T14396] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 932.010515][T14396] Tainted: [W]=WARN [ 932.010618][T14396] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 932.010791][T14396] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 932.010958][T14396] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 932.011477][T14396] RSP: 0018:ffa00000032475d0 EFLAGS: 00010286 [ 932.011659][T14396] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe22000034c2287 [ 932.011868][T14396] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001a611438 [ 932.012081][T14396] RBP: 1ff4000000648ebb R08: 1fe22000034c2288 R09: fffa3bfffffb0b24 [ 932.012294][T14396] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001a6103f4 [ 932.012513][T14396] R13: ff1100001a6103c0 R14: ffffffff931c7940 R15: ff1100001a611380 [ 932.012723][T14396] FS: 00007f44f8a0d440(0000) GS:ff110000a30b8000(0000) knlGS:0000000000000000 [ 932.012975][T14396] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 932.013150][T14396] CR2: 000000000044f720 CR3: 0000000017ecc004 CR4: 0000000000771ef0 [ 932.013361][T14396] PKRU: 55555554 [ 932.013473][T14396] Call Trace: [ 932.013577][T14396] [ 932.013648][T14396] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 932.013790][T14396] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 932.013948][T14396] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 932.014091][T14396] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 932.014228][T14396] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 932.014372][T14396] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 932.014514][T14396] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 932.014654][T14396] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 932.014793][T14396] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 932.014936][T14396] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 932.015077][T14396] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 932.015213][T14396] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 932.015351][T14396] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 932.015493][T14396] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 932.015630][T14396] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 932.015767][T14396] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 932.015908][T14396] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 932.016063][T14396] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 932.016201][T14396] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 932.016339][T14396] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 932.016494][T14396] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 932.016636][T14396] ? copy_msghdr_from_user (net/socket.c:2525) [ 932.016780][T14396] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 932.016957][T14396] ? move_addr_to_kernel (net/socket.c:2511) [ 932.017101][T14396] ? filemap_map_folio_range (mm/filemap.c:3873) [ 932.017241][T14396] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 932.017386][T14396] ___sys_sendmsg (net/socket.c:2641) [ 932.017540][T14396] ? copy_msghdr_from_user (net/socket.c:2628) [ 932.017684][T14396] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 932.017825][T14396] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 932.017980][T14396] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 932.018116][T14396] ? __sys_sendmsg_sock (net/socket.c:2656) [ 932.018264][T14396] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 932.018418][T14396] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 932.018560][T14396] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 932.018698][T14396] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 932.018837][T14396] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 932.018984][T14396] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 932.019156][T14396] RIP: 0033:0x7f44f8b67c5e [ 932.019307][T14396] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 932.019814][T14396] RSP: 002b:00007ffda11e0510 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 932.020030][T14396] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007f44f8b67c5e [ 932.020240][T14396] RDX: 0000000000000000 RSI: 00007ffda11e05d0 RDI: 0000000000000005 [ 932.020452][T14396] RBP: 00007ffda11e0520 R08: 0000000000000000 R09: 0000000000000000 [ 932.020659][T14396] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 932.020878][T14396] R13: 0000000069cbe7eb R14: 0000000000000004 R15: 000000000049d620 | [ 932.088627][T14400] ------------[ cut here ]------------ | [ 932.088811][T14400] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#3: ip/14400 | [ 932.089534][T14400] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 932.090434][T14400] Tainted: [W]=WARN [ 932.090542][T14400] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 932.090717][T14400] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 932.090871][T14400] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 932.091459][T14400] RSP: 0018:ffa00000032475d0 EFLAGS: 00010286 [ 932.091638][T14400] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe2200001ea04c7 [ 932.091845][T14400] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100000f502638 [ 932.092114][T14400] RBP: 1ff4000000648ebb R08: 1fe2200001ea04c8 R09: fffa3bfffffb0b24 [ 932.092322][T14400] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100000f503034 [ 932.092534][T14400] R13: ff1100000f503000 R14: ffffffff931c7940 R15: ff1100000f502580 [ 932.092740][T14400] FS: 00007f45f9529440(0000) GS:ff110000a3238000(0000) knlGS:0000000000000000 [ 932.093056][T14400] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 932.093234][T14400] CR2: 000000000044f720 CR3: 0000000018302005 CR4: 0000000000771ef0 [ 932.093447][T14400] PKRU: 55555554 [ 932.093553][T14400] Call Trace: [ 932.093657][T14400] [ 932.093728][T14400] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 932.093868][T14400] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 932.094085][T14400] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 932.094226][T14400] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 932.094367][T14400] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 932.094512][T14400] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 932.094648][T14400] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 932.094790][T14400] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 932.094996][T14400] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 932.095143][T14400] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 932.095293][T14400] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 932.095439][T14400] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 932.095579][T14400] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 932.095720][T14400] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 932.095862][T14400] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 932.096070][T14400] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 932.096210][T14400] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 932.096353][T14400] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 932.096500][T14400] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 932.096640][T14400] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 932.096786][T14400] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 932.096997][T14400] ? copy_msghdr_from_user (net/socket.c:2525) [ 932.097139][T14400] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 932.097314][T14400] ? move_addr_to_kernel (net/socket.c:2511) [ 932.097467][T14400] ? filemap_map_folio_range (mm/filemap.c:3873) [ 932.097606][T14400] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 932.097747][T14400] ___sys_sendmsg (net/socket.c:2641) [ 932.097966][T14400] ? copy_msghdr_from_user (net/socket.c:2628) [ 932.098111][T14400] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 932.098253][T14400] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 932.098400][T14400] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 932.098545][T14400] ? __sys_sendmsg_sock (net/socket.c:2656) [ 932.098689][T14400] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 932.098828][T14400] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 932.099142][T14400] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 932.099284][T14400] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 932.099434][T14400] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 932.099579][T14400] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 932.099755][T14400] RIP: 0033:0x7f45f9683c5e [ 932.100011][T14400] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 932.100523][T14400] RSP: 002b:00007ffe8c4de5a0 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 932.100735][T14400] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007f45f9683c5e [ 932.101045][T14400] RDX: 0000000000000000 RSI: 00007ffe8c4de660 RDI: 0000000000000005 [ 932.101252][T14400] RBP: 00007ffe8c4de5b0 R08: 0000000000000000 R09: 0000000000000000 [ 932.101476][T14400] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 932.101691][T14400] R13: 0000000069cbe7eb R14: 0000000000000004 R15: 000000000049d620 | [ 932.174084][T14406] ------------[ cut here ]------------ | [ 932.174256][T14406] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#0: ip/14406 | [ 932.174508][T14406] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 932.175301][T14406] Tainted: [W]=WARN [ 932.175412][T14406] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 932.175590][T14406] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 932.175744][T14406] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 932.176249][T14406] RSP: 0018:ffa00000032875d0 EFLAGS: 00010286 [ 932.176433][T14406] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe2200001ea0687 [ 932.176640][T14406] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100000f503438 [ 932.176848][T14406] RBP: 1ff4000000650ebb R08: 1fe2200001ea0688 R09: fffa3bfffffb0b24 [ 932.177064][T14406] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100000f502e74 [ 932.177275][T14406] R13: ff1100000f502e40 R14: ffffffff931c7940 R15: ff1100000f503380 [ 932.177488][T14406] FS: 00007f9253c3c440(0000) GS:ff110000a30b8000(0000) knlGS:0000000000000000 [ 932.177731][T14406] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 932.177909][T14406] CR2: 000000000044f720 CR3: 0000000010501002 CR4: 0000000000771ef0 [ 932.178118][T14406] PKRU: 55555554 [ 932.178222][T14406] Call Trace: [ 932.178326][T14406] [ 932.178400][T14406] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 932.178539][T14406] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 932.178685][T14406] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 932.178825][T14406] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 932.178967][T14406] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 932.179109][T14406] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 932.179249][T14406] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 932.179395][T14406] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 932.179535][T14406] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 932.179672][T14406] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 932.179812][T14406] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 932.179956][T14406] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 932.180096][T14406] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 932.180237][T14406] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 932.180373][T14406] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 932.180518][T14406] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 932.180655][T14406] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 932.180806][T14406] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 932.180949][T14406] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 932.181088][T14406] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 932.181229][T14406] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 932.181370][T14406] ? copy_msghdr_from_user (net/socket.c:2525) [ 932.181513][T14406] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 932.181683][T14406] ? move_addr_to_kernel (net/socket.c:2511) [ 932.181823][T14406] ? filemap_map_folio_range (mm/filemap.c:3873) [ 932.181966][T14406] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 932.182106][T14406] ___sys_sendmsg (net/socket.c:2641) [ 932.182243][T14406] ? copy_msghdr_from_user (net/socket.c:2628) [ 932.182390][T14406] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 932.182533][T14406] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 932.182673][T14406] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 932.182811][T14406] ? __sys_sendmsg_sock (net/socket.c:2656) [ 932.182958][T14406] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 932.183097][T14406] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 932.183236][T14406] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 932.183376][T14406] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 932.183519][T14406] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 932.183659][T14406] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 932.183833][T14406] RIP: 0033:0x7f9253d96c5e [ 932.183984][T14406] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 932.184473][T14406] RSP: 002b:00007fff6bf85100 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 932.184674][T14406] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007f9253d96c5e [ 932.184874][T14406] RDX: 0000000000000000 RSI: 00007fff6bf851c0 RDI: 0000000000000005 [ 932.185079][T14406] RBP: 00007fff6bf85110 R08: 0000000000000000 R09: 0000000000000000 [ 932.185278][T14406] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 932.185486][T14406] R13: 0000000069cbe7eb R14: 0000000000000004 R15: 000000000049d620 | [ 932.252406][T14410] ------------[ cut here ]------------ | [ 932.252581][T14410] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#0: ip/14410 | [ 932.252830][T14410] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 932.254092][T14410] Tainted: [W]=WARN [ 932.254191][T14410] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 932.254359][T14410] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 932.254510][T14410] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 932.254988][T14410] RSP: 0018:ffa00000032475d0 EFLAGS: 00010286 [ 932.255159][T14410] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe22000036f1b67 [ 932.255360][T14410] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001b78db38 [ 932.255567][T14410] RBP: 1ff4000000648ebb R08: 1fe22000036f1b68 R09: fffa3bfffffb0b24 [ 932.255777][T14410] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001b78c774 [ 932.255990][T14410] R13: ff1100001b78c740 R14: ffffffff931c7940 R15: ff1100001b78da80 [ 932.256198][T14410] FS: 00007f2b565a1440(0000) GS:ff110000a30b8000(0000) knlGS:0000000000000000 [ 932.256437][T14410] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 932.256607][T14410] CR2: 000000000044f720 CR3: 000000000c7d0005 CR4: 0000000000771ef0 [ 932.256810][T14410] PKRU: 55555554 [ 932.256919][T14410] Call Trace: [ 932.257019][T14410] [ 932.257087][T14410] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 932.257251][T14410] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 932.257402][T14410] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 932.257536][T14410] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 932.257668][T14410] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 932.257804][T14410] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 932.257940][T14410] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 932.258073][T14410] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 932.258216][T14410] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 932.258354][T14410] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 932.258501][T14410] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 932.258633][T14410] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 932.258768][T14410] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 932.258909][T14410] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 932.259046][T14410] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 932.259177][T14410] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 932.259319][T14410] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 932.259464][T14410] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 932.259597][T14410] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 932.259729][T14410] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 932.259865][T14410] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 932.260008][T14410] ? copy_msghdr_from_user (net/socket.c:2525) [ 932.260141][T14410] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 932.260306][T14410] ? move_addr_to_kernel (net/socket.c:2511) [ 932.260447][T14410] ? filemap_map_folio_range (mm/filemap.c:3873) [ 932.260581][T14410] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 932.260715][T14410] ___sys_sendmsg (net/socket.c:2641) [ 932.260848][T14410] ? copy_msghdr_from_user (net/socket.c:2628) [ 932.260992][T14410] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 932.261132][T14410] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 932.261267][T14410] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 932.261412][T14410] ? __sys_sendmsg_sock (net/socket.c:2656) [ 932.261554][T14410] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 932.261694][T14410] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 932.261832][T14410] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 932.261977][T14410] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 932.262113][T14410] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 932.262247][T14410] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 932.262430][T14410] RIP: 0033:0x7f2b566fbc5e [ 932.262575][T14410] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 932.263068][T14410] RSP: 002b:00007fff3b0d1490 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 932.263289][T14410] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007f2b566fbc5e [ 932.263502][T14410] RDX: 0000000000000000 RSI: 00007fff3b0d1550 RDI: 0000000000000005 [ 932.263703][T14410] RBP: 00007fff3b0d14a0 R08: 0000000000000000 R09: 0000000000000000 [ 932.263907][T14410] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 932.264109][T14410] R13: 0000000069cbe7eb R14: 0000000000000004 R15: 000000000049d620 | [ 932.341348][T14416] ------------[ cut here ]------------ | [ 932.341541][T14416] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#0: ip/14416 | [ 932.341794][T14416] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 932.342790][T14416] Tainted: [W]=WARN [ 932.342905][T14416] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 932.343095][T14416] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 932.343253][T14416] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 932.343772][T14416] RSP: 0018:ffa00000032f75d0 EFLAGS: 00010286 [ 932.343959][T14416] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe22000036f19df [ 932.344177][T14416] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001b78cef8 [ 932.344390][T14416] RBP: 1ff400000065eebb R08: 1fe22000036f19e0 R09: fffa3bfffffb0b24 [ 932.344599][T14416] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001b78caf4 [ 932.344811][T14416] R13: ff1100001b78cac0 R14: ffffffff931c7940 R15: ff1100001b78ce40 [ 932.345033][T14416] FS: 00007f9b2c7d3440(0000) GS:ff110000a30b8000(0000) knlGS:0000000000000000 [ 932.345278][T14416] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 932.345451][T14416] CR2: 000000000044f720 CR3: 0000000017090001 CR4: 0000000000771ef0 [ 932.345665][T14416] PKRU: 55555554 [ 932.345766][T14416] Call Trace: [ 932.345867][T14416] [ 932.345942][T14416] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 932.346080][T14416] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 932.346225][T14416] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 932.346370][T14416] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 932.346517][T14416] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 932.346663][T14416] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 932.346801][T14416] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 932.346988][T14416] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 932.347123][T14416] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 932.347254][T14416] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 932.347395][T14416] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 932.347528][T14416] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 932.347673][T14416] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 932.347820][T14416] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 932.347974][T14416] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 932.348120][T14416] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 932.348258][T14416] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 932.348408][T14416] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 932.348554][T14416] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 932.348694][T14416] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 932.348845][T14416] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 932.348989][T14416] ? copy_msghdr_from_user (net/socket.c:2525) [ 932.349128][T14416] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 932.349299][T14416] ? move_addr_to_kernel (net/socket.c:2511) [ 932.349464][T14416] ? filemap_map_folio_range (mm/filemap.c:3873) [ 932.349611][T14416] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 932.349752][T14416] ___sys_sendmsg (net/socket.c:2641) [ 932.349903][T14416] ? copy_msghdr_from_user (net/socket.c:2628) [ 932.350049][T14416] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 932.350192][T14416] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 932.350339][T14416] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 932.350485][T14416] ? __sys_sendmsg_sock (net/socket.c:2656) [ 932.350629][T14416] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 932.350769][T14416] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 932.350910][T14416] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 932.351053][T14416] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 932.351197][T14416] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 932.351335][T14416] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 932.351508][T14416] RIP: 0033:0x7f9b2c92dc5e [ 932.351650][T14416] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 932.352157][T14416] RSP: 002b:00007ffec7c0efc0 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 932.352369][T14416] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007f9b2c92dc5e [ 932.352574][T14416] RDX: 0000000000000000 RSI: 00007ffec7c0f080 RDI: 0000000000000005 [ 932.352775][T14416] RBP: 00007ffec7c0efd0 R08: 0000000000000000 R09: 0000000000000000 [ 932.352976][T14416] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 932.353174][T14416] R13: 0000000069cbe7eb R14: 0000000000000004 R15: 000000000049d620 | [ 932.422268][T14420] ------------[ cut here ]------------ | [ 932.422467][T14420] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#0: ip/14420 | [ 932.422713][T14420] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 932.423520][T14420] Tainted: [W]=WARN [ 932.423625][T14420] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 932.423792][T14420] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 932.423948][T14420] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 932.424426][T14420] RSP: 0018:ffa00000031375d0 EFLAGS: 00010286 [ 932.424603][T14420] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe22000038752f7 [ 932.424806][T14420] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001c3a97b8 [ 932.425012][T14420] RBP: 1ff4000000626ebb R08: 1fe22000038752f8 R09: fffa3bfffffb0b24 [ 932.425210][T14420] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001c3a91f4 [ 932.425408][T14420] R13: ff1100001c3a91c0 R14: ffffffff931c7940 R15: ff1100001c3a9700 [ 932.425609][T14420] FS: 00007fa6b4194440(0000) GS:ff110000a30b8000(0000) knlGS:0000000000000000 [ 932.425846][T14420] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 932.426031][T14420] CR2: 000000000044f720 CR3: 000000000db78004 CR4: 0000000000771ef0 [ 932.426246][T14420] PKRU: 55555554 [ 932.426350][T14420] Call Trace: [ 932.426457][T14420] [ 932.426528][T14420] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 932.426669][T14420] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 932.426817][T14420] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 932.426964][T14420] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 932.427101][T14420] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 932.427258][T14420] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 932.427403][T14420] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 932.427534][T14420] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 932.427685][T14420] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 932.427820][T14420] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 932.427977][T14420] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 932.428107][T14420] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 932.428240][T14420] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 932.428371][T14420] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 932.428539][T14420] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 932.428670][T14420] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 932.428805][T14420] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 932.428940][T14420] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 932.429075][T14420] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 932.429207][T14420] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 932.429344][T14420] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 932.429496][T14420] ? copy_msghdr_from_user (net/socket.c:2525) [ 932.429626][T14420] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 932.429790][T14420] ? move_addr_to_kernel (net/socket.c:2511) [ 932.429934][T14420] ? filemap_map_folio_range (mm/filemap.c:3873) [ 932.430073][T14420] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 932.430210][T14420] ___sys_sendmsg (net/socket.c:2641) [ 932.430343][T14420] ? copy_msghdr_from_user (net/socket.c:2628) [ 932.430487][T14420] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 932.430622][T14420] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 932.430758][T14420] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 932.430892][T14420] ? __sys_sendmsg_sock (net/socket.c:2656) [ 932.431032][T14420] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 932.431169][T14420] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 932.431305][T14420] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 932.431482][T14420] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 932.431614][T14420] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 932.431744][T14420] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 932.431911][T14420] RIP: 0033:0x7fa6b42eec5e [ 932.432051][T14420] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 932.432527][T14420] RSP: 002b:00007ffc765485f0 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 932.432822][T14420] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007fa6b42eec5e [ 932.433045][T14420] RDX: 0000000000000000 RSI: 00007ffc765486b0 RDI: 0000000000000005 [ 932.433322][T14420] RBP: 00007ffc76548600 R08: 0000000000000000 R09: 0000000000000000 [ 932.433523][T14420] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 932.433718][T14420] R13: 0000000069cbe7eb R14: 0000000000000004 R15: 000000000049d620 | [ 932.505428][T14426] ------------[ cut here ]------------ | [ 932.505602][T14426] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#3: ip/14426 | [ 932.505848][T14426] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 932.506654][T14426] Tainted: [W]=WARN [ 932.506756][T14426] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 932.506931][T14426] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 932.507073][T14426] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 932.507587][T14426] RSP: 0018:ffa00000032775d0 EFLAGS: 00010286 [ 932.507765][T14426] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe22000038752bf [ 932.507973][T14426] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001c3a95f8 [ 932.508182][T14426] RBP: 1ff400000064eebb R08: 1fe22000038752c0 R09: fffa3bfffffb0b24 [ 932.508395][T14426] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001c3a85b4 [ 932.508596][T14426] R13: ff1100001c3a8580 R14: ffffffff931c7940 R15: ff1100001c3a9540 [ 932.508798][T14426] FS: 00007f6874447440(0000) GS:ff110000a3238000(0000) knlGS:0000000000000000 [ 932.509048][T14426] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 932.509217][T14426] CR2: 000000000044f720 CR3: 000000001abbe005 CR4: 0000000000771ef0 [ 932.509422][T14426] PKRU: 55555554 [ 932.509527][T14426] Call Trace: [ 932.509626][T14426] [ 932.509694][T14426] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 932.509834][T14426] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 932.509981][T14426] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 932.510119][T14426] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 932.510257][T14426] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 932.510403][T14426] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 932.510542][T14426] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 932.510681][T14426] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 932.510816][T14426] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 932.510957][T14426] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 932.511092][T14426] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 932.511227][T14426] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 932.511363][T14426] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 932.511501][T14426] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 932.511632][T14426] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 932.511769][T14426] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 932.511909][T14426] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 932.512043][T14426] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 932.512180][T14426] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 932.512313][T14426] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 932.512456][T14426] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 932.512588][T14426] ? copy_msghdr_from_user (net/socket.c:2525) [ 932.512721][T14426] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 932.512889][T14426] ? move_addr_to_kernel (net/socket.c:2511) [ 932.513053][T14426] ? filemap_map_folio_range (mm/filemap.c:3873) [ 932.513204][T14426] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 932.513346][T14426] ___sys_sendmsg (net/socket.c:2641) [ 932.513493][T14426] ? copy_msghdr_from_user (net/socket.c:2628) [ 932.513644][T14426] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 932.513793][T14426] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 932.513942][T14426] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 932.514095][T14426] ? __sys_sendmsg_sock (net/socket.c:2656) [ 932.514250][T14426] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 932.514393][T14426] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 932.514533][T14426] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 932.514674][T14426] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 932.514813][T14426] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 932.514958][T14426] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 932.515133][T14426] RIP: 0033:0x7f68745a1c5e [ 932.515282][T14426] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 932.515788][T14426] RSP: 002b:00007fff2df98ee0 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 932.516007][T14426] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007f68745a1c5e [ 932.516210][T14426] RDX: 0000000000000000 RSI: 00007fff2df98fa0 RDI: 0000000000000005 [ 932.516417][T14426] RBP: 00007fff2df98ef0 R08: 0000000000000000 R09: 0000000000000000 [ 932.516614][T14426] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 932.516819][T14426] R13: 0000000069cbe7eb R14: 0000000000000004 R15: 000000000049d620 | [ 932.586152][T14430] ------------[ cut here ]------------ | [ 932.586335][T14430] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#3: ip/14430 | [ 932.586599][T14430] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 932.587796][T14430] Tainted: [W]=WARN [ 932.587909][T14430] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 932.588093][T14430] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 932.588241][T14430] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 932.588753][T14430] RSP: 0018:ffa00000032a75d0 EFLAGS: 00010286 [ 932.588940][T14430] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe220000387516f [ 932.589150][T14430] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001c3a8b78 [ 932.589355][T14430] RBP: 1ff4000000654ebb R08: 1fe2200003875170 R09: fffa3bfffffb0b24 [ 932.589571][T14430] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001c3a98f4 [ 932.589776][T14430] R13: ff1100001c3a98c0 R14: ffffffff931c7940 R15: ff1100001c3a8ac0 [ 932.589988][T14430] FS: 00007f1842917440(0000) GS:ff110000a3238000(0000) knlGS:0000000000000000 [ 932.590230][T14430] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 932.590401][T14430] CR2: 000000000044f720 CR3: 000000000c52b003 CR4: 0000000000771ef0 [ 932.590602][T14430] PKRU: 55555554 [ 932.590708][T14430] Call Trace: [ 932.590814][T14430] [ 932.590884][T14430] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 932.591029][T14430] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 932.591175][T14430] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 932.591308][T14430] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 932.591451][T14430] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 932.591585][T14430] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 932.591717][T14430] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 932.591857][T14430] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 932.591998][T14430] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 932.592131][T14430] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 932.592264][T14430] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 932.592399][T14430] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 932.592532][T14430] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 932.592662][T14430] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 932.592798][T14430] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 932.592941][T14430] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 932.593074][T14430] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 932.593212][T14430] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 932.593343][T14430] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 932.593500][T14430] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 932.593645][T14430] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 932.593783][T14430] ? copy_msghdr_from_user (net/socket.c:2525) [ 932.593919][T14430] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 932.594086][T14430] ? move_addr_to_kernel (net/socket.c:2511) [ 932.594218][T14430] ? filemap_map_folio_range (mm/filemap.c:3873) [ 932.594349][T14430] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 932.594486][T14430] ___sys_sendmsg (net/socket.c:2641) [ 932.594625][T14430] ? copy_msghdr_from_user (net/socket.c:2628) [ 932.594761][T14430] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 932.594909][T14430] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 932.595048][T14430] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 932.595179][T14430] ? __sys_sendmsg_sock (net/socket.c:2656) [ 932.595313][T14430] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 932.595449][T14430] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 932.595581][T14430] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 932.595713][T14430] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 932.595843][T14430] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 932.595983][T14430] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 932.596146][T14430] RIP: 0033:0x7f1842a71c5e [ 932.596286][T14430] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 932.596767][T14430] RSP: 002b:00007ffdc7b28840 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 932.596972][T14430] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007f1842a71c5e [ 932.597167][T14430] RDX: 0000000000000000 RSI: 00007ffdc7b28900 RDI: 0000000000000005 [ 932.597362][T14430] RBP: 00007ffdc7b28850 R08: 0000000000000000 R09: 0000000000000000 [ 932.597561][T14430] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 932.597773][T14430] R13: 0000000069cbe7ec R14: 0000000000000004 R15: 000000000049d620 | [ 932.674258][T14436] ------------[ cut here ]------------ | [ 932.674492][T14436] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#2: ip/14436 | [ 932.674785][T14436] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 932.676974][T14436] Tainted: [W]=WARN [ 932.677206][T14436] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 932.677515][T14436] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 932.677712][T14436] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 932.678275][T14436] RSP: 0018:ffa00000033175d0 EFLAGS: 00010286 [ 932.678556][T14436] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe220000192eaf7 [ 932.678815][T14436] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100000c9757b8 [ 932.679097][T14436] RBP: 1ff4000000662ebb R08: 1fe220000192eaf8 R09: fffa3bfffffb0b24 [ 932.679380][T14436] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100000c975574 [ 932.679690][T14436] R13: ff1100000c975540 R14: ffffffff931c7940 R15: ff1100000c975700 [ 932.679972][T14436] FS: 00007fcfa564e440(0000) GS:ff110000a31b8000(0000) knlGS:0000000000000000 [ 932.680290][T14436] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 932.680546][T14436] CR2: 000000000044f720 CR3: 000000001b2bf006 CR4: 0000000000771ef0 [ 932.680797][T14436] PKRU: 55555554 [ 932.680966][T14436] Call Trace: [ 932.681121][T14436] [ 932.681247][T14436] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 932.681448][T14436] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 932.681648][T14436] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 932.681838][T14436] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 932.682043][T14436] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 932.682259][T14436] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 932.682460][T14436] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 932.682654][T14436] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 932.682839][T14436] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 932.683047][T14436] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 932.683249][T14436] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 932.683459][T14436] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 932.683647][T14436] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 932.683839][T14436] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 932.684038][T14436] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 932.684240][T14436] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 932.684439][T14436] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 932.684625][T14436] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 932.684814][T14436] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 932.685017][T14436] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 932.685212][T14436] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 932.685407][T14436] ? copy_msghdr_from_user (net/socket.c:2525) [ 932.685594][T14436] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 932.685814][T14436] ? move_addr_to_kernel (net/socket.c:2511) [ 932.686014][T14436] ? filemap_map_folio_range (mm/filemap.c:3873) [ 932.686201][T14436] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 932.686400][T14436] ___sys_sendmsg (net/socket.c:2641) [ 932.686585][T14436] ? copy_msghdr_from_user (net/socket.c:2628) [ 932.686777][T14436] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 932.686979][T14436] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 932.687165][T14436] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 932.687351][T14436] ? __sys_sendmsg_sock (net/socket.c:2656) [ 932.687548][T14436] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 932.687734][T14436] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 932.687933][T14436] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 932.688117][T14436] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 932.688300][T14436] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 932.688501][T14436] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 932.688717][T14436] RIP: 0033:0x7fcfa57a8c5e [ 932.688919][T14436] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 932.689458][T14436] RSP: 002b:00007ffe5d59e070 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 932.689710][T14436] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007fcfa57a8c5e [ 932.689972][T14436] RDX: 0000000000000000 RSI: 00007ffe5d59e130 RDI: 0000000000000005 [ 932.690226][T14436] RBP: 00007ffe5d59e080 R08: 0000000000000000 R09: 0000000000000000 [ 932.690579][T14436] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 932.690951][T14436] R13: 0000000069cbe7ec R14: 0000000000000004 R15: 000000000049d620 | [ 932.774570][T14440] ------------[ cut here ]------------ | [ 932.774767][T14440] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#3: ip/14440 | [ 932.775574][T14440] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 932.776449][T14440] Tainted: [W]=WARN [ 932.776552][T14440] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 932.776721][T14440] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 932.776866][T14440] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 932.777450][T14440] RSP: 0018:ffa00000033175d0 EFLAGS: 00010286 [ 932.777657][T14440] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe220000192e88f [ 932.777962][T14440] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100000c974478 [ 932.778185][T14440] RBP: 1ff4000000662ebb R08: 1fe220000192e890 R09: fffa3bfffffb0b24 [ 932.778395][T14440] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100000c9745b4 [ 932.778633][T14440] R13: ff1100000c974580 R14: ffffffff931c7940 R15: ff1100000c9743c0 [ 932.778859][T14440] FS: 00007f7f9848c440(0000) GS:ff110000a3238000(0000) knlGS:0000000000000000 [ 932.779106][T14440] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 932.779272][T14440] CR2: 000000000044f720 CR3: 000000001a9f5001 CR4: 0000000000771ef0 [ 932.779536][T14440] PKRU: 55555554 [ 932.779639][T14440] Call Trace: [ 932.779742][T14440] [ 932.779811][T14440] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 932.779972][T14440] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 932.780115][T14440] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 932.780249][T14440] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 932.780383][T14440] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 932.780528][T14440] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 932.780659][T14440] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 932.780792][T14440] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 932.780933][T14440] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 932.781075][T14440] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 932.781209][T14440] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 932.781339][T14440] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 932.781523][T14440] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 932.781660][T14440] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 932.781794][T14440] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 932.781966][T14440] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 932.782123][T14440] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 932.782293][T14440] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 932.782468][T14440] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 932.782633][T14440] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 932.782809][T14440] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 932.782955][T14440] ? copy_msghdr_from_user (net/socket.c:2525) [ 932.783124][T14440] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 932.783332][T14440] ? move_addr_to_kernel (net/socket.c:2511) [ 932.783488][T14440] ? filemap_map_folio_range (mm/filemap.c:3873) [ 932.783650][T14440] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 932.783788][T14440] ___sys_sendmsg (net/socket.c:2641) [ 932.783931][T14440] ? copy_msghdr_from_user (net/socket.c:2628) [ 932.784085][T14440] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 932.784226][T14440] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 932.784409][T14440] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 932.784559][T14440] ? __sys_sendmsg_sock (net/socket.c:2656) [ 932.784711][T14440] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 932.784847][T14440] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 932.784991][T14440] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 932.785126][T14440] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 932.785286][T14440] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 932.785458][T14440] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 932.785655][T14440] RIP: 0033:0x7f7f985e6c5e [ 932.785822][T14440] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 932.786343][T14440] RSP: 002b:00007ffe63f84cc0 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 932.786584][T14440] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007f7f985e6c5e [ 932.786824][T14440] RDX: 0000000000000000 RSI: 00007ffe63f84d80 RDI: 0000000000000005 [ 932.787049][T14440] RBP: 00007ffe63f84cd0 R08: 0000000000000000 R09: 0000000000000000 [ 932.787255][T14440] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 932.787510][T14440] R13: 0000000069cbe7ec R14: 0000000000000004 R15: 000000000049d620 | [ 932.873858][T14446] ------------[ cut here ]------------ | [ 932.874046][T14446] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#0: ip/14446 | [ 932.874290][T14446] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 932.875120][T14446] Tainted: [W]=WARN [ 932.875222][T14446] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 932.875396][T14446] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 932.875539][T14446] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 932.876026][T14446] RSP: 0018:ffa00000033375d0 EFLAGS: 00010286 [ 932.876199][T14446] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe2200003229fd7 [ 932.876403][T14446] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001914feb8 [ 932.876607][T14446] RBP: 1ff4000000666ebb R08: 1fe2200003229fd8 R09: fffa3bfffffb0b24 [ 932.876808][T14446] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100000c974074 [ 932.877012][T14446] R13: ff1100000c974040 R14: ffffffff931c7940 R15: ff1100001914fe00 [ 932.877214][T14446] FS: 00007f38504d1440(0000) GS:ff110000a30b8000(0000) knlGS:0000000000000000 [ 932.877454][T14446] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 932.877624][T14446] CR2: 000000000044f720 CR3: 000000001958a006 CR4: 0000000000771ef0 [ 932.877828][T14446] PKRU: 55555554 [ 932.877934][T14446] Call Trace: [ 932.878035][T14446] [ 932.878104][T14446] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 932.878243][T14446] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 932.878388][T14446] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 932.878524][T14446] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 932.878659][T14446] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 932.878798][T14446] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 932.878937][T14446] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 932.879079][T14446] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 932.879212][T14446] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 932.879344][T14446] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 932.879485][T14446] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 932.879618][T14446] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 932.879754][T14446] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 932.879889][T14446] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 932.880080][T14446] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 932.880214][T14446] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 932.880347][T14446] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 932.880483][T14446] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 932.880620][T14446] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 932.880773][T14446] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 932.880962][T14446] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 932.881098][T14446] ? copy_msghdr_from_user (net/socket.c:2525) [ 932.881231][T14446] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 932.881400][T14446] ? move_addr_to_kernel (net/socket.c:2511) [ 932.881536][T14446] ? filemap_map_folio_range (mm/filemap.c:3873) [ 932.881672][T14446] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 932.881808][T14446] ___sys_sendmsg (net/socket.c:2641) [ 932.881996][T14446] ? copy_msghdr_from_user (net/socket.c:2628) [ 932.882134][T14446] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 932.882272][T14446] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 932.882414][T14446] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 932.882555][T14446] ? __sys_sendmsg_sock (net/socket.c:2656) [ 932.882691][T14446] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 932.882825][T14446] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 932.883017][T14446] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 932.883151][T14446] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 932.883306][T14446] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 932.883447][T14446] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 932.883612][T14446] RIP: 0033:0x7f385062bc5e [ 932.883756][T14446] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 932.884318][T14446] RSP: 002b:00007ffd3772b1c0 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 932.884535][T14446] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007f385062bc5e [ 932.884737][T14446] RDX: 0000000000000000 RSI: 00007ffd3772b280 RDI: 0000000000000005 [ 932.885003][T14446] RBP: 00007ffd3772b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 932.885205][T14446] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 932.885432][T14446] R13: 0000000069cbe7ec R14: 0000000000000004 R15: 000000000049d620 | [ 932.953778][T14450] ------------[ cut here ]------------ | [ 932.953966][T14450] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#3: ip/14450 | [ 932.954222][T14450] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 932.955036][T14450] Tainted: [W]=WARN [ 932.955144][T14450] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 932.955316][T14450] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 932.955472][T14450] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 932.955973][T14450] RSP: 0018:ffa00000033875d0 EFLAGS: 00010286 [ 932.956149][T14450] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe2200003229c8f [ 932.956355][T14450] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001914e478 [ 932.956574][T14450] RBP: 1ff4000000670ebb R08: 1fe2200003229c90 R09: fffa3bfffffb0b24 [ 932.956788][T14450] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001914e5b4 [ 932.957015][T14450] R13: ff1100001914e580 R14: ffffffff931c7940 R15: ff1100001914e3c0 [ 932.957224][T14450] FS: 00007f7a56c58440(0000) GS:ff110000a3238000(0000) knlGS:0000000000000000 [ 932.957498][T14450] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 932.957677][T14450] CR2: 000000000044f720 CR3: 00000000171fc006 CR4: 0000000000771ef0 [ 932.957883][T14450] PKRU: 55555554 [ 932.958003][T14450] Call Trace: [ 932.958104][T14450] [ 932.958178][T14450] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 932.958320][T14450] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 932.958473][T14450] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 932.958621][T14450] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 932.958793][T14450] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 932.958961][T14450] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 932.959122][T14450] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 932.959267][T14450] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 932.959415][T14450] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 932.959562][T14450] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 932.959704][T14450] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 932.959836][T14450] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 932.959973][T14450] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 932.960110][T14450] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 932.960256][T14450] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 932.960401][T14450] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 932.960546][T14450] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 932.960685][T14450] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 932.960833][T14450] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 932.960991][T14450] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 932.961143][T14450] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 932.961288][T14450] ? copy_msghdr_from_user (net/socket.c:2525) [ 932.961437][T14450] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 932.961621][T14450] ? move_addr_to_kernel (net/socket.c:2511) [ 932.961777][T14450] ? filemap_map_folio_range (mm/filemap.c:3873) [ 932.961933][T14450] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 932.962078][T14450] ___sys_sendmsg (net/socket.c:2641) [ 932.962224][T14450] ? copy_msghdr_from_user (net/socket.c:2628) [ 932.962377][T14450] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 932.962528][T14450] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 932.962670][T14450] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 932.962814][T14450] ? __sys_sendmsg_sock (net/socket.c:2656) [ 932.962962][T14450] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 932.963103][T14450] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 932.963261][T14450] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 932.963410][T14450] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 932.963552][T14450] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 932.963700][T14450] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 932.963884][T14450] RIP: 0033:0x7f7a56db2c5e [ 932.964043][T14450] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 932.964576][T14450] RSP: 002b:00007ffe804019b0 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 932.964790][T14450] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007f7a56db2c5e [ 932.965013][T14450] RDX: 0000000000000000 RSI: 00007ffe80401a70 RDI: 0000000000000005 [ 932.965231][T14450] RBP: 00007ffe804019c0 R08: 0000000000000000 R09: 0000000000000000 [ 932.965502][T14450] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 932.965820][T14450] R13: 0000000069cbe7ec R14: 0000000000000004 R15: 000000000049d620 | [ 933.060419][T14456] ------------[ cut here ]------------ | [ 933.060609][T14456] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#3: ip/14456 | [ 933.060856][T14456] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 933.061789][T14456] Tainted: [W]=WARN [ 933.061963][T14456] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 933.062159][T14456] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 933.062318][T14456] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 933.062839][T14456] RSP: 0018:ffa00000033875d0 EFLAGS: 00010286 [ 933.063098][T14456] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe2200003229e87 [ 933.063316][T14456] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001914f438 [ 933.063533][T14456] RBP: 1ff4000000670ebb R08: 1fe2200003229e88 R09: fffa3bfffffb0b24 [ 933.063747][T14456] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001914e074 [ 933.064047][T14456] R13: ff1100001914e040 R14: ffffffff931c7940 R15: ff1100001914f380 [ 933.064273][T14456] FS: 00007ff3db8cb440(0000) GS:ff110000a3238000(0000) knlGS:0000000000000000 [ 933.064528][T14456] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 933.064704][T14456] CR2: 000000000044f720 CR3: 00000000106d8004 CR4: 0000000000771ef0 [ 933.064993][T14456] PKRU: 55555554 [ 933.065100][T14456] Call Trace: [ 933.065206][T14456] [ 933.065279][T14456] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 933.065419][T14456] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 933.065579][T14456] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 933.065726][T14456] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 933.065867][T14456] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 933.066098][T14456] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 933.066240][T14456] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 933.066384][T14456] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 933.066533][T14456] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 933.066674][T14456] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 933.066826][T14456] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 933.066981][T14456] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 933.067128][T14456] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 933.067273][T14456] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 933.067427][T14456] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 933.067579][T14456] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 933.067727][T14456] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 933.067891][T14456] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 933.068039][T14456] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 933.068179][T14456] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 933.068336][T14456] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 933.068478][T14456] ? copy_msghdr_from_user (net/socket.c:2525) [ 933.068644][T14456] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 933.068853][T14456] ? move_addr_to_kernel (net/socket.c:2511) [ 933.069001][T14456] ? filemap_map_folio_range (mm/filemap.c:3873) [ 933.069154][T14456] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 933.069293][T14456] ___sys_sendmsg (net/socket.c:2641) [ 933.069432][T14456] ? copy_msghdr_from_user (net/socket.c:2628) [ 933.069579][T14456] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 933.069718][T14456] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 933.069863][T14456] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 933.070035][T14456] ? __sys_sendmsg_sock (net/socket.c:2656) [ 933.070179][T14456] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 933.070318][T14456] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 933.070461][T14456] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 933.070597][T14456] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 933.070738][T14456] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 933.070876][T14456] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 933.071062][T14456] RIP: 0033:0x7ff3dba25c5e [ 933.071217][T14456] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 933.071718][T14456] RSP: 002b:00007ffdfb965d00 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 933.071940][T14456] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007ff3dba25c5e [ 933.072164][T14456] RDX: 0000000000000000 RSI: 00007ffdfb965dc0 RDI: 0000000000000005 [ 933.072371][T14456] RBP: 00007ffdfb965d10 R08: 0000000000000000 R09: 0000000000000000 [ 933.072599][T14456] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 933.072812][T14456] R13: 0000000069cbe7ec R14: 0000000000000004 R15: 000000000049d620 | [ 933.146998][T14460] ------------[ cut here ]------------ | [ 933.147221][T14460] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#3: ip/14460 | [ 933.147586][T14460] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 933.148491][T14460] Tainted: [W]=WARN [ 933.148602][T14460] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 933.148786][T14460] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 933.149329][T14460] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 933.149873][T14460] RSP: 0018:ffa00000032475d0 EFLAGS: 00010286 [ 933.150055][T14460] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe22000034c21a7 [ 933.150292][T14460] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001a610d38 [ 933.150505][T14460] RBP: 1ff4000000648ebb R08: 1fe22000034c21a8 R09: fffa3bfffffb0b24 [ 933.150738][T14460] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001a610774 [ 933.150978][T14460] R13: ff1100001a610740 R14: ffffffff931c7940 R15: ff1100001a610c80 [ 933.151366][T14460] FS: 00007fb90e8e5440(0000) GS:ff110000a3238000(0000) knlGS:0000000000000000 [ 933.151646][T14460] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 933.151830][T14460] CR2: 000000000044f720 CR3: 0000000019414001 CR4: 0000000000771ef0 [ 933.152063][T14460] PKRU: 55555554 [ 933.152172][T14460] Call Trace: [ 933.152289][T14460] [ 933.152369][T14460] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 933.152527][T14460] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 933.152687][T14460] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 933.152835][T14460] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 933.152980][T14460] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 933.153152][T14460] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 933.153293][T14460] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 933.153449][T14460] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 933.153593][T14460] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 933.153742][T14460] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 933.153887][T14460] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 933.154031][T14460] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 933.154173][T14460] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 933.154318][T14460] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 933.154471][T14460] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 933.154624][T14460] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 933.154773][T14460] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 933.154928][T14460] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 933.155075][T14460] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 933.155216][T14460] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 933.155360][T14460] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 933.155530][T14460] ? copy_msghdr_from_user (net/socket.c:2525) [ 933.155671][T14460] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 933.155850][T14460] ? move_addr_to_kernel (net/socket.c:2511) [ 933.155998][T14460] ? filemap_map_folio_range (mm/filemap.c:3873) [ 933.156139][T14460] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 933.156281][T14460] ___sys_sendmsg (net/socket.c:2641) [ 933.156433][T14460] ? copy_msghdr_from_user (net/socket.c:2628) [ 933.156577][T14460] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 933.156721][T14460] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 933.156863][T14460] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 933.157009][T14460] ? __sys_sendmsg_sock (net/socket.c:2656) [ 933.157166][T14460] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 933.157318][T14460] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 933.157459][T14460] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 933.157594][T14460] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 933.157727][T14460] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 933.157861][T14460] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 933.158038][T14460] RIP: 0033:0x7fb90ea3fc5e [ 933.158182][T14460] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 933.158693][T14460] RSP: 002b:00007ffd1f3ee740 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 933.158905][T14460] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007fb90ea3fc5e [ 933.159107][T14460] RDX: 0000000000000000 RSI: 00007ffd1f3ee800 RDI: 0000000000000005 [ 933.159308][T14460] RBP: 00007ffd1f3ee750 R08: 0000000000000000 R09: 0000000000000000 [ 933.159515][T14460] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 933.159720][T14460] R13: 0000000069cbe7ec R14: 0000000000000004 R15: 000000000049d620 | [ 933.242626][T14466] ------------[ cut here ]------------ | [ 933.242810][T14466] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#0: ip/14466 | [ 933.243067][T14466] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 933.243873][T14466] Tainted: [W]=WARN [ 933.243986][T14466] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 933.244167][T14466] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 933.244318][T14466] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 933.244829][T14466] RSP: 0018:ffa00000032f75d0 EFLAGS: 00010286 [ 933.245012][T14466] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe22000034c22f7 [ 933.245219][T14466] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001a6117b8 [ 933.245426][T14466] RBP: 1ff400000065eebb R08: 1fe22000034c22f8 R09: fffa3bfffffb0b24 [ 933.245636][T14466] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001a6118f4 [ 933.245854][T14466] R13: ff1100001a6118c0 R14: ffffffff931c7940 R15: ff1100001a611700 [ 933.246078][T14466] FS: 00007f8cee100440(0000) GS:ff110000a30b8000(0000) knlGS:0000000000000000 [ 933.246320][T14466] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 933.246494][T14466] CR2: 000000000044f720 CR3: 000000001ade3005 CR4: 0000000000771ef0 [ 933.246709][T14466] PKRU: 55555554 [ 933.246813][T14466] Call Trace: [ 933.246926][T14466] [ 933.247001][T14466] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 933.247142][T14466] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 933.247295][T14466] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 933.247436][T14466] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 933.247571][T14466] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 933.247715][T14466] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 933.247866][T14466] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 933.248459][T14466] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 933.248601][T14466] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 933.248740][T14466] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 933.248877][T14466] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 933.249017][T14466] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 933.249152][T14466] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 933.249290][T14466] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 933.249431][T14466] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 933.249566][T14466] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 933.249703][T14466] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 933.249844][T14466] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 933.249996][T14466] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 933.250130][T14466] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 933.250266][T14466] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 933.250404][T14466] ? copy_msghdr_from_user (net/socket.c:2525) [ 933.250538][T14466] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 933.250703][T14466] ? move_addr_to_kernel (net/socket.c:2511) [ 933.250840][T14466] ? filemap_map_folio_range (mm/filemap.c:3873) [ 933.250979][T14466] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 933.251121][T14466] ___sys_sendmsg (net/socket.c:2641) [ 933.251260][T14466] ? copy_msghdr_from_user (net/socket.c:2628) [ 933.251414][T14466] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 933.251553][T14466] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 933.251690][T14466] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 933.251827][T14466] ? __sys_sendmsg_sock (net/socket.c:2656) [ 933.251970][T14466] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 933.252104][T14466] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 933.252241][T14466] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 933.252377][T14466] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 933.252518][T14466] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 933.252653][T14466] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 933.252822][T14466] RIP: 0033:0x7f8cee25ac5e [ 933.252971][T14466] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 933.253467][T14466] RSP: 002b:00007ffea0d3fe60 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 933.253672][T14466] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007f8cee25ac5e [ 933.253874][T14466] RDX: 0000000000000000 RSI: 00007ffea0d3ff20 RDI: 0000000000000005 [ 933.254078][T14466] RBP: 00007ffea0d3fe70 R08: 0000000000000000 R09: 0000000000000000 [ 933.254286][T14466] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 933.254500][T14466] R13: 0000000069cbe7ec R14: 0000000000000004 R15: 000000000049d620 | [ 933.325805][T14470] ------------[ cut here ]------------ | [ 933.325987][T14470] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#3: ip/14470 | [ 933.326237][T14470] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 933.327042][T14470] Tainted: [W]=WARN [ 933.327158][T14470] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 933.327346][T14470] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 933.327502][T14470] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 933.328006][T14470] RSP: 0018:ffa00000033375d0 EFLAGS: 00010286 [ 933.328188][T14470] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe22000036f1a4f [ 933.328394][T14470] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001b78d278 [ 933.328605][T14470] RBP: 1ff4000000666ebb R08: 1fe22000036f1a50 R09: fffa3bfffffb0b24 [ 933.328804][T14470] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001b78d3b4 [ 933.329004][T14470] R13: ff1100001b78d380 R14: ffffffff931c7940 R15: ff1100001b78d1c0 [ 933.329203][T14470] FS: 00007f56b8d85440(0000) GS:ff110000a3238000(0000) knlGS:0000000000000000 [ 933.329452][T14470] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 933.329624][T14470] CR2: 000000000044f720 CR3: 000000001ade3004 CR4: 0000000000771ef0 [ 933.329824][T14470] PKRU: 55555554 [ 933.329934][T14470] Call Trace: [ 933.330034][T14470] [ 933.330104][T14470] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 933.330251][T14470] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 933.330407][T14470] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 933.330542][T14470] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 933.330675][T14470] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 933.330819][T14470] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 933.331256][T14470] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 933.331415][T14470] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 933.331550][T14470] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 933.331682][T14470] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 933.331823][T14470] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 933.331962][T14470] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 933.332097][T14470] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 933.332231][T14470] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 933.332365][T14470] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 933.332505][T14470] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 933.332638][T14470] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 933.332782][T14470] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 933.332921][T14470] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 933.333055][T14470] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 933.333191][T14470] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 933.333324][T14470] ? copy_msghdr_from_user (net/socket.c:2525) [ 933.333463][T14470] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 933.333625][T14470] ? move_addr_to_kernel (net/socket.c:2511) [ 933.333759][T14470] ? filemap_map_folio_range (mm/filemap.c:3873) [ 933.333899][T14470] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 933.334035][T14470] ___sys_sendmsg (net/socket.c:2641) [ 933.334167][T14470] ? copy_msghdr_from_user (net/socket.c:2628) [ 933.334321][T14470] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 933.334461][T14470] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 933.334595][T14470] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 933.334728][T14470] ? __sys_sendmsg_sock (net/socket.c:2656) [ 933.334874][T14470] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 933.335012][T14470] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 933.335146][T14470] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 933.335280][T14470] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 933.335417][T14470] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 933.335550][T14470] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 933.335714][T14470] RIP: 0033:0x7f56b8edfc5e [ 933.335855][T14470] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 933.336342][T14470] RSP: 002b:00007ffdbd0fd9e0 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 933.336549][T14470] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007f56b8edfc5e [ 933.336748][T14470] RDX: 0000000000000000 RSI: 00007ffdbd0fdaa0 RDI: 0000000000000005 [ 933.336951][T14470] RBP: 00007ffdbd0fd9f0 R08: 0000000000000000 R09: 0000000000000000 [ 933.337153][T14470] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 933.337361][T14470] R13: 0000000069cbe7ec R14: 0000000000000004 R15: 000000000049d620 | [ 933.419573][T14476] ------------[ cut here ]------------ | [ 933.419744][T14476] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#0: ip/14476 | [ 933.420610][T14476] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 933.421656][T14476] Tainted: [W]=WARN [ 933.421763][T14476] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 933.422057][T14476] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 933.422214][T14476] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 933.422725][T14476] RSP: 0018:ffa00000033575d0 EFLAGS: 00010286 [ 933.423006][T14476] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe2200001ea048f [ 933.423215][T14476] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100000f502478 [ 933.423433][T14476] RBP: 1ff400000066aebb R08: 1fe2200001ea0490 R09: fffa3bfffffb0b24 [ 933.423640][T14476] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100000f502934 [ 933.423851][T14476] R13: ff1100000f502900 R14: ffffffff931c7940 R15: ff1100000f5023c0 [ 933.424165][T14476] FS: 00007f1bbecd1440(0000) GS:ff110000a30b8000(0000) knlGS:0000000000000000 [ 933.424422][T14476] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 933.424598][T14476] CR2: 000000000044f720 CR3: 000000001a81b003 CR4: 0000000000771ef0 [ 933.424817][T14476] PKRU: 55555554 [ 933.425027][T14476] Call Trace: [ 933.425136][T14476] [ 933.425209][T14476] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 933.425348][T14476] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 933.425506][T14476] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 933.425663][T14476] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 933.425797][T14476] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 933.426052][T14476] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 933.426186][T14476] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 933.426319][T14476] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 933.426468][T14476] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 933.426626][T14476] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 933.426790][T14476] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 933.427002][T14476] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 933.427162][T14476] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 933.427318][T14476] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 933.427485][T14476] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 933.427654][T14476] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 933.427806][T14476] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 933.428012][T14476] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 933.428153][T14476] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 933.428309][T14476] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 933.428489][T14476] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 933.428654][T14476] ? copy_msghdr_from_user (net/socket.c:2525) [ 933.428818][T14476] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 933.429039][T14476] ? move_addr_to_kernel (net/socket.c:2511) [ 933.429208][T14476] ? filemap_map_folio_range (mm/filemap.c:3873) [ 933.429405][T14476] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 933.429583][T14476] ___sys_sendmsg (net/socket.c:2641) [ 933.429746][T14476] ? copy_msghdr_from_user (net/socket.c:2628) [ 933.429947][T14476] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 933.430091][T14476] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 933.430248][T14476] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 933.430432][T14476] ? __sys_sendmsg_sock (net/socket.c:2656) [ 933.430599][T14476] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 933.430754][T14476] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 933.430907][T14476] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 933.431047][T14476] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 933.431195][T14476] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 933.431335][T14476] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 933.431516][T14476] RIP: 0033:0x7f1bbee2bc5e [ 933.431666][T14476] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 933.432177][T14476] RSP: 002b:00007ffc9ea983b0 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 933.432421][T14476] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007f1bbee2bc5e [ 933.432645][T14476] RDX: 0000000000000000 RSI: 00007ffc9ea98470 RDI: 0000000000000005 [ 933.432855][T14476] RBP: 00007ffc9ea983c0 R08: 0000000000000000 R09: 0000000000000000 [ 933.433069][T14476] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 933.433287][T14476] R13: 0000000069cbe7ec R14: 0000000000000004 R15: 000000000049d620 | [ 933.502692][T14480] ------------[ cut here ]------------ | [ 933.502891][T14480] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#0: ip/14480 | [ 933.503175][T14480] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 933.503971][T14480] Tainted: [W]=WARN [ 933.504075][T14480] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 933.504279][T14480] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 933.504437][T14480] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 933.505532][T14480] RSP: 0018:ffa00000034175d0 EFLAGS: 00010286 [ 933.505711][T14480] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe22000036f1bd7 [ 933.505986][T14480] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001b78deb8 [ 933.506186][T14480] RBP: 1ff4000000682ebb R08: 1fe22000036f1bd8 R09: fffa3bfffffb0b24 [ 933.506404][T14480] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001b78ce74 [ 933.506620][T14480] R13: ff1100001b78ce40 R14: ffffffff931c7940 R15: ff1100001b78de00 [ 933.506822][T14480] FS: 00007ff6d5665440(0000) GS:ff110000a30b8000(0000) knlGS:0000000000000000 [ 933.507075][T14480] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 933.507252][T14480] CR2: 000000000044f720 CR3: 000000001a81b001 CR4: 0000000000771ef0 [ 933.507467][T14480] PKRU: 55555554 [ 933.507570][T14480] Call Trace: [ 933.507684][T14480] [ 933.507753][T14480] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 933.507888][T14480] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 933.508045][T14480] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 933.508184][T14480] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 933.508323][T14480] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 933.508469][T14480] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 933.508610][T14480] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 933.508749][T14480] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 933.508886][T14480] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 933.509031][T14480] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 933.509172][T14480] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 933.509309][T14480] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 933.509453][T14480] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 933.509610][T14480] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 933.509749][T14480] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 933.509886][T14480] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 933.510032][T14480] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 933.510172][T14480] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 933.510312][T14480] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 933.510457][T14480] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 933.510600][T14480] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 933.510741][T14480] ? copy_msghdr_from_user (net/socket.c:2525) [ 933.510885][T14480] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 933.511064][T14480] ? move_addr_to_kernel (net/socket.c:2511) [ 933.511213][T14480] ? filemap_map_folio_range (mm/filemap.c:3873) [ 933.511351][T14480] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 933.511510][T14480] ___sys_sendmsg (net/socket.c:2641) [ 933.511647][T14480] ? copy_msghdr_from_user (net/socket.c:2628) [ 933.511793][T14480] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 933.511944][T14480] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 933.512094][T14480] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 933.512251][T14480] ? __sys_sendmsg_sock (net/socket.c:2656) [ 933.512401][T14480] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 933.512531][T14480] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 933.512665][T14480] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 933.512806][T14480] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 933.512949][T14480] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 933.513085][T14480] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 933.513253][T14480] RIP: 0033:0x7ff6d57bfc5e [ 933.513402][T14480] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 933.513884][T14480] RSP: 002b:00007ffe45f47dc0 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 933.514093][T14480] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007ff6d57bfc5e [ 933.514295][T14480] RDX: 0000000000000000 RSI: 00007ffe45f47e80 RDI: 0000000000000005 [ 933.514507][T14480] RBP: 00007ffe45f47dd0 R08: 0000000000000000 R09: 0000000000000000 [ 933.514710][T14480] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 933.514912][T14480] R13: 0000000069cbe7ec R14: 0000000000000004 R15: 000000000049d620 | [ 933.593883][T14486] ------------[ cut here ]------------ | [ 933.594417][T14486] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#3: ip/14486 | [ 933.594657][T14486] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 933.595512][T14486] Tainted: [W]=WARN [ 933.595616][T14486] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 933.595792][T14486] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 933.595943][T14486] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 933.596443][T14486] RSP: 0018:ffa00000033875d0 EFLAGS: 00010286 [ 933.596614][T14486] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe22000036f1857 [ 933.596816][T14486] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001b78c2b8 [ 933.597017][T14486] RBP: 1ff4000000670ebb R08: 1fe22000036f1858 R09: fffa3bfffffb0b24 [ 933.597213][T14486] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001b78c5b4 [ 933.597416][T14486] R13: ff1100001b78c580 R14: ffffffff931c7940 R15: ff1100001b78c200 [ 933.597627][T14486] FS: 00007fb9786aa440(0000) GS:ff110000a3238000(0000) knlGS:0000000000000000 [ 933.597872][T14486] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 933.598052][T14486] CR2: 000000000044f720 CR3: 00000000195e1005 CR4: 0000000000771ef0 [ 933.598265][T14486] PKRU: 55555554 [ 933.598371][T14486] Call Trace: [ 933.598486][T14486] [ 933.598590][T14486] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 933.598732][T14486] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 933.598879][T14486] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 933.599023][T14486] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 933.599170][T14486] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 933.599307][T14486] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 933.599444][T14486] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 933.599579][T14486] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 933.599709][T14486] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 933.599840][T14486] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 933.599985][T14486] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 933.600118][T14486] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 933.600249][T14486] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 933.600380][T14486] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 933.600517][T14486] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 933.600649][T14486] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 933.600790][T14486] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 933.600928][T14486] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 933.601061][T14486] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 933.601190][T14486] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 933.601323][T14486] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 933.601468][T14486] ? copy_msghdr_from_user (net/socket.c:2525) [ 933.601601][T14486] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 933.601764][T14486] ? move_addr_to_kernel (net/socket.c:2511) [ 933.601902][T14486] ? filemap_map_folio_range (mm/filemap.c:3873) [ 933.602034][T14486] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 933.602167][T14486] ___sys_sendmsg (net/socket.c:2641) [ 933.602300][T14486] ? copy_msghdr_from_user (net/socket.c:2628) [ 933.602442][T14486] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 933.602582][T14486] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 933.602747][T14486] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 933.602884][T14486] ? __sys_sendmsg_sock (net/socket.c:2656) [ 933.603026][T14486] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 933.603158][T14486] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 933.603291][T14486] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 933.603439][T14486] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 933.603578][T14486] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 933.603720][T14486] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 933.603891][T14486] RIP: 0033:0x7fb978804c5e [ 933.604044][T14486] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 933.604544][T14486] RSP: 002b:00007ffe42a1ccd0 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 933.604756][T14486] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007fb978804c5e [ 933.604973][T14486] RDX: 0000000000000000 RSI: 00007ffe42a1cd90 RDI: 0000000000000005 [ 933.605179][T14486] RBP: 00007ffe42a1cce0 R08: 0000000000000000 R09: 0000000000000000 [ 933.605391][T14486] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 933.605601][T14486] R13: 0000000069cbe7ed R14: 0000000000000004 R15: 000000000049d620 | [ 933.673036][T14490] ------------[ cut here ]------------ | [ 933.673217][T14490] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#3: ip/14490 | [ 933.673457][T14490] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 933.674222][T14490] Tainted: [W]=WARN [ 933.674327][T14490] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 933.674500][T14490] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 933.674641][T14490] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 933.675218][T14490] RSP: 0018:ffa00000032475d0 EFLAGS: 00010286 [ 933.675395][T14490] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe22000038751df [ 933.675589][T14490] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001c3a8ef8 [ 933.675784][T14490] RBP: 1ff4000000648ebb R08: 1fe22000038751e0 R09: fffa3bfffffb0b24 [ 933.676064][T14490] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001c3a8234 [ 933.676261][T14490] R13: ff1100001c3a8200 R14: ffffffff931c7940 R15: ff1100001c3a8e40 [ 933.676463][T14490] FS: 00007f52461b2440(0000) GS:ff110000a3238000(0000) knlGS:0000000000000000 [ 933.676695][T14490] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 933.676863][T14490] CR2: 000000000044f720 CR3: 000000001b994005 CR4: 0000000000771ef0 [ 933.677134][T14490] PKRU: 55555554 [ 933.677233][T14490] Call Trace: [ 933.677331][T14490] [ 933.677400][T14490] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 933.677533][T14490] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 933.677673][T14490] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 933.677809][T14490] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 933.678024][T14490] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 933.678160][T14490] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 933.678295][T14490] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 933.678433][T14490] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 933.678563][T14490] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 933.678699][T14490] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 933.678872][T14490] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 933.679108][T14490] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 933.679273][T14490] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 933.679438][T14490] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 933.679593][T14490] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 933.679736][T14490] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 933.679956][T14490] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 933.680097][T14490] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 933.680235][T14490] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 933.680373][T14490] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 933.680523][T14490] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 933.680657][T14490] ? copy_msghdr_from_user (net/socket.c:2525) [ 933.680796][T14490] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 933.681045][T14490] ? move_addr_to_kernel (net/socket.c:2511) [ 933.681176][T14490] ? filemap_map_folio_range (mm/filemap.c:3873) [ 933.681306][T14490] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 933.681447][T14490] ___sys_sendmsg (net/socket.c:2641) [ 933.681577][T14490] ? copy_msghdr_from_user (net/socket.c:2628) [ 933.681714][T14490] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 933.681851][T14490] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 933.682052][T14490] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 933.682183][T14490] ? __sys_sendmsg_sock (net/socket.c:2656) [ 933.682317][T14490] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 933.682453][T14490] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 933.682584][T14490] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 933.682715][T14490] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 933.682848][T14490] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 933.683045][T14490] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 933.683216][T14490] RIP: 0033:0x7f524630cc5e [ 933.683361][T14490] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 933.683838][T14490] RSP: 002b:00007ffc07e34580 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 933.684042][T14490] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007f524630cc5e [ 933.684237][T14490] RDX: 0000000000000000 RSI: 00007ffc07e34640 RDI: 0000000000000005 [ 933.684444][T14490] RBP: 00007ffc07e34590 R08: 0000000000000000 R09: 0000000000000000 [ 933.684644][T14490] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 933.684842][T14490] R13: 0000000069cbe7ed R14: 0000000000000004 R15: 000000000049d620 | [ 933.762538][T14496] ------------[ cut here ]------------ | [ 933.762721][T14496] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#0: ip/14496 | [ 933.762985][T14496] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 933.763780][T14496] Tainted: [W]=WARN [ 933.763883][T14496] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 933.764132][T14496] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 933.764275][T14496] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 933.764753][T14496] RSP: 0018:ffa00000034775d0 EFLAGS: 00010286 [ 933.765011][T14496] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe220000387516f [ 933.765212][T14496] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001c3a8b78 [ 933.765423][T14496] RBP: 1ff400000068eebb R08: 1fe2200003875170 R09: fffa3bfffffb0b24 [ 933.765628][T14496] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001c3a98f4 [ 933.765830][T14496] R13: ff1100001c3a98c0 R14: ffffffff931c7940 R15: ff1100001c3a8ac0 [ 933.766083][T14496] FS: 00007fe6b778d440(0000) GS:ff110000a30b8000(0000) knlGS:0000000000000000 [ 933.766320][T14496] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 933.766496][T14496] CR2: 000000000044f720 CR3: 000000001a80f002 CR4: 0000000000771ef0 [ 933.766694][T14496] PKRU: 55555554 [ 933.766794][T14496] Call Trace: [ 933.766943][T14496] [ 933.767012][T14496] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 933.767144][T14496] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 933.767285][T14496] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 933.767425][T14496] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 933.767562][T14496] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 933.767702][T14496] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 933.767833][T14496] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 933.768020][T14496] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 933.768153][T14496] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 933.768285][T14496] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 933.768429][T14496] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 933.768560][T14496] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 933.768693][T14496] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 933.768827][T14496] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 933.769008][T14496] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 933.769141][T14496] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 933.769279][T14496] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 933.769426][T14496] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 933.769561][T14496] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 933.769714][T14496] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 933.769858][T14496] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 933.770048][T14496] ? copy_msghdr_from_user (net/socket.c:2525) [ 933.770189][T14496] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 933.770356][T14496] ? move_addr_to_kernel (net/socket.c:2511) [ 933.770518][T14496] ? filemap_map_folio_range (mm/filemap.c:3873) [ 933.770657][T14496] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 933.770798][T14496] ___sys_sendmsg (net/socket.c:2641) [ 933.770988][T14496] ? copy_msghdr_from_user (net/socket.c:2628) [ 933.771132][T14496] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 933.771278][T14496] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 933.771425][T14496] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 933.771579][T14496] ? __sys_sendmsg_sock (net/socket.c:2656) [ 933.771731][T14496] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 933.771871][T14496] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 933.772099][T14496] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 933.772239][T14496] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 933.772377][T14496] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 933.772527][T14496] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 933.772707][T14496] RIP: 0033:0x7fe6b78e7c5e [ 933.772855][T14496] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 933.773435][T14496] RSP: 002b:00007ffe0f36b570 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 933.773647][T14496] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007fe6b78e7c5e [ 933.773858][T14496] RDX: 0000000000000000 RSI: 00007ffe0f36b630 RDI: 0000000000000005 [ 933.774108][T14496] RBP: 00007ffe0f36b580 R08: 0000000000000000 R09: 0000000000000000 [ 933.774313][T14496] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 933.774524][T14496] R13: 0000000069cbe7ed R14: 0000000000000004 R15: 000000000049d620 | [ 933.866291][T14500] ------------[ cut here ]------------ | [ 933.866486][T14500] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#3: ip/14500 | [ 933.866728][T14500] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 933.867945][T14500] Tainted: [W]=WARN [ 933.868054][T14500] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 933.868280][T14500] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 933.868467][T14500] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 933.869018][T14500] RSP: 0018:ffa00000034175d0 EFLAGS: 00010286 [ 933.869206][T14500] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe220000192e937 [ 933.869425][T14500] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100000c9749b8 [ 933.869627][T14500] RBP: 1ff4000000682ebb R08: 1fe220000192e938 R09: fffa3bfffffb0b24 [ 933.869826][T14500] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100000c974774 [ 933.870033][T14500] R13: ff1100000c974740 R14: ffffffff931c7940 R15: ff1100000c974900 [ 933.870245][T14500] FS: 00007f0019168440(0000) GS:ff110000a3238000(0000) knlGS:0000000000000000 [ 933.870492][T14500] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 933.870668][T14500] CR2: 000000000044f720 CR3: 000000001045f002 CR4: 0000000000771ef0 [ 933.870870][T14500] PKRU: 55555554 [ 933.870976][T14500] Call Trace: [ 933.871077][T14500] [ 933.871146][T14500] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 933.871283][T14500] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 933.871452][T14500] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 933.871593][T14500] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 933.871733][T14500] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 933.871874][T14500] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 933.872015][T14500] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 933.872157][T14500] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 933.872292][T14500] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 933.872434][T14500] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 933.872569][T14500] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 933.872716][T14500] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 933.872857][T14500] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 933.873004][T14500] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 933.873141][T14500] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 933.873279][T14500] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 933.873419][T14500] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 933.873553][T14500] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 933.873687][T14500] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 933.873819][T14500] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 933.873963][T14500] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 933.874097][T14500] ? copy_msghdr_from_user (net/socket.c:2525) [ 933.874231][T14500] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 933.874405][T14500] ? move_addr_to_kernel (net/socket.c:2511) [ 933.874539][T14500] ? filemap_map_folio_range (mm/filemap.c:3873) [ 933.874671][T14500] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 933.874829][T14500] ___sys_sendmsg (net/socket.c:2641) [ 933.874971][T14500] ? copy_msghdr_from_user (net/socket.c:2628) [ 933.875108][T14500] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 933.875249][T14500] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 933.875393][T14500] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 933.875526][T14500] ? __sys_sendmsg_sock (net/socket.c:2656) [ 933.875665][T14500] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 933.875803][T14500] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 933.875941][T14500] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 933.876075][T14500] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 933.876213][T14500] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 933.876351][T14500] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 933.876569][T14500] RIP: 0033:0x7f00192c2c5e [ 933.876716][T14500] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 933.877206][T14500] RSP: 002b:00007ffd2c4cd680 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 933.877419][T14500] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007f00192c2c5e [ 933.877618][T14500] RDX: 0000000000000000 RSI: 00007ffd2c4cd740 RDI: 0000000000000005 [ 933.877815][T14500] RBP: 00007ffd2c4cd690 R08: 0000000000000000 R09: 0000000000000000 [ 933.878046][T14500] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 933.878255][T14500] R13: 0000000069cbe7ed R14: 0000000000000004 R15: 000000000049d620 | [ 933.972310][T14506] ------------[ cut here ]------------ | [ 933.972521][T14506] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#3: ip/14506 | [ 933.972791][T14506] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 933.974054][T14506] Tainted: [W]=WARN [ 933.974164][T14506] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 933.974341][T14506] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 933.974525][T14506] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 933.975072][T14506] RSP: 0018:ffa00000034475d0 EFLAGS: 00010286 [ 933.975252][T14506] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe220000192e9df [ 933.975474][T14506] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100000c974ef8 [ 933.975684][T14506] RBP: 1ff4000000688ebb R08: 1fe220000192e9e0 R09: fffa3bfffffb0b24 [ 933.975901][T14506] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100000c974cb4 [ 933.976112][T14506] R13: ff1100000c974c80 R14: ffffffff931c7940 R15: ff1100000c974e40 [ 933.976329][T14506] FS: 00007fc8fd7e1440(0000) GS:ff110000a3238000(0000) knlGS:0000000000000000 [ 933.976591][T14506] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 933.976762][T14506] CR2: 000000000044f720 CR3: 000000001a81f002 CR4: 0000000000771ef0 [ 933.976970][T14506] PKRU: 55555554 [ 933.977072][T14506] Call Trace: [ 933.977182][T14506] [ 933.977254][T14506] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 933.977403][T14506] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 933.977550][T14506] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 933.977687][T14506] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 933.977823][T14506] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 933.977968][T14506] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 933.978107][T14506] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 933.978251][T14506] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 933.978430][T14506] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 933.978568][T14506] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 933.978718][T14506] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 933.978861][T14506] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 933.979006][T14506] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 933.979144][T14506] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 933.979290][T14506] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 933.979472][T14506] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 933.979621][T14506] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 933.979764][T14506] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 933.979933][T14506] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 933.980089][T14506] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 933.980224][T14506] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 933.980356][T14506] ? copy_msghdr_from_user (net/socket.c:2525) [ 933.980500][T14506] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 933.980668][T14506] ? move_addr_to_kernel (net/socket.c:2511) [ 933.980803][T14506] ? filemap_map_folio_range (mm/filemap.c:3873) [ 933.980961][T14506] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 933.981097][T14506] ___sys_sendmsg (net/socket.c:2641) [ 933.981242][T14506] ? copy_msghdr_from_user (net/socket.c:2628) [ 933.981378][T14506] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 933.981518][T14506] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 933.981656][T14506] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 933.981790][T14506] ? __sys_sendmsg_sock (net/socket.c:2656) [ 933.981931][T14506] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 933.982063][T14506] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 933.982221][T14506] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 933.982378][T14506] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 933.982541][T14506] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 933.982696][T14506] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 933.982908][T14506] RIP: 0033:0x7fc8fd93bc5e [ 933.983054][T14506] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 933.983560][T14506] RSP: 002b:00007fff454508f0 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 933.983758][T14506] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007fc8fd93bc5e [ 933.983993][T14506] RDX: 0000000000000000 RSI: 00007fff454509b0 RDI: 0000000000000005 [ 933.984208][T14506] RBP: 00007fff45450900 R08: 0000000000000000 R09: 0000000000000000 [ 933.984451][T14506] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 933.984674][T14506] R13: 0000000069cbe7ed R14: 0000000000000004 R15: 000000000049d620 | [ 934.047580][T14510] ------------[ cut here ]------------ | [ 934.047800][T14510] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#2: ip/14510 | [ 934.048103][T14510] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 934.048967][T14510] Tainted: [W]=WARN [ 934.049116][T14510] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 934.049329][T14510] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 934.049536][T14510] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 934.050675][T14510] RSP: 0018:ffa00000034975d0 EFLAGS: 00010286 [ 934.050972][T14510] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe2200003229cff [ 934.051257][T14510] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001914e7f8 [ 934.051508][T14510] RBP: 1ff4000000692ebb R08: 1fe2200003229d00 R09: fffa3bfffffb0b24 [ 934.051757][T14510] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001914e3f4 [ 934.052014][T14510] R13: ff1100001914e3c0 R14: ffffffff931c7940 R15: ff1100001914e740 [ 934.052286][T14510] FS: 00007f738c0a4440(0000) GS:ff110000a31b8000(0000) knlGS:0000000000000000 [ 934.052580][T14510] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 934.052807][T14510] CR2: 000000000044f720 CR3: 000000000c418003 CR4: 0000000000771ef0 [ 934.053072][T14510] PKRU: 55555554 [ 934.053222][T14510] Call Trace: [ 934.053372][T14510] [ 934.053510][T14510] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 934.053700][T14510] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 934.053891][T14510] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 934.054087][T14510] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 934.054269][T14510] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 934.054466][T14510] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 934.054645][T14510] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 934.054828][T14510] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 934.055024][T14510] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 934.055207][T14510] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 934.055398][T14510] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 934.055580][T14510] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 934.055764][T14510] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 934.055965][T14510] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 934.056143][T14510] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 934.056328][T14510] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 934.056523][T14510] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 934.056719][T14510] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 934.056914][T14510] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 934.057095][T14510] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 934.057284][T14510] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 934.057473][T14510] ? copy_msghdr_from_user (net/socket.c:2525) [ 934.057654][T14510] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 934.057873][T14510] ? move_addr_to_kernel (net/socket.c:2511) [ 934.058069][T14510] ? filemap_map_folio_range (mm/filemap.c:3873) [ 934.058250][T14510] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 934.058441][T14510] ___sys_sendmsg (net/socket.c:2641) [ 934.058642][T14510] ? copy_msghdr_from_user (net/socket.c:2628) [ 934.058829][T14510] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 934.059029][T14510] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 934.059215][T14510] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 934.059405][T14510] ? __sys_sendmsg_sock (net/socket.c:2656) [ 934.059592][T14510] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 934.059774][T14510] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 934.059970][T14510] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 934.060156][T14510] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 934.060336][T14510] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 934.060529][T14510] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 934.060759][T14510] RIP: 0033:0x7f738c1fec5e [ 934.060962][T14510] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 934.061492][T14510] RSP: 002b:00007ffef7facc40 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 934.061740][T14510] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007f738c1fec5e [ 934.062002][T14510] RDX: 0000000000000000 RSI: 00007ffef7facd00 RDI: 0000000000000005 [ 934.062248][T14510] RBP: 00007ffef7facc50 R08: 0000000000000000 R09: 0000000000000000 [ 934.062503][T14510] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 934.062750][T14510] R13: 0000000069cbe7ed R14: 0000000000000004 R15: 000000000049d620 | [ 934.142053][T14516] ------------[ cut here ]------------ | [ 934.142254][T14516] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#2: ip/14516 | [ 934.142548][T14516] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 934.143426][T14516] Tainted: [W]=WARN [ 934.143579][T14516] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 934.143800][T14516] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 934.144310][T14516] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 934.144846][T14516] RSP: 0018:ffa00000033c75d0 EFLAGS: 00010286 [ 934.145082][T14516] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe2200003229e87 [ 934.145332][T14516] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001914f438 [ 934.145598][T14516] RBP: 1ff4000000678ebb R08: 1fe2200003229e88 R09: fffa3bfffffb0b24 [ 934.145854][T14516] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001914e074 [ 934.146114][T14516] R13: ff1100001914e040 R14: ffffffff931c7940 R15: ff1100001914f380 [ 934.146373][T14516] FS: 00007fc3c1b59440(0000) GS:ff110000a31b8000(0000) knlGS:0000000000000000 [ 934.146668][T14516] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 934.146891][T14516] CR2: 000000000044f720 CR3: 00000000183e7004 CR4: 0000000000771ef0 [ 934.147161][T14516] PKRU: 55555554 [ 934.147311][T14516] Call Trace: [ 934.147466][T14516] [ 934.147587][T14516] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 934.147776][T14516] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 934.147988][T14516] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 934.148180][T14516] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 934.148367][T14516] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 934.148563][T14516] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 934.148750][T14516] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 934.148951][T14516] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 934.149137][T14516] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 934.149321][T14516] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 934.149519][T14516] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 934.149703][T14516] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 934.149890][T14516] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 934.150111][T14516] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 934.150296][T14516] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 934.150491][T14516] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 934.150678][T14516] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 934.150863][T14516] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 934.151059][T14516] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 934.151245][T14516] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 934.151439][T14516] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 934.151638][T14516] ? copy_msghdr_from_user (net/socket.c:2525) [ 934.151821][T14516] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 934.152044][T14516] ? move_addr_to_kernel (net/socket.c:2511) [ 934.152230][T14516] ? filemap_map_folio_range (mm/filemap.c:3873) [ 934.152421][T14516] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 934.152609][T14516] ___sys_sendmsg (net/socket.c:2641) [ 934.152793][T14516] ? copy_msghdr_from_user (net/socket.c:2628) [ 934.152996][T14516] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 934.153184][T14516] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 934.153371][T14516] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 934.153566][T14516] ? __sys_sendmsg_sock (net/socket.c:2656) [ 934.153753][T14516] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 934.153947][T14516] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 934.154134][T14516] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 934.154320][T14516] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 934.154514][T14516] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 934.154704][T14516] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 934.154932][T14516] RIP: 0033:0x7fc3c1cb3c5e [ 934.155124][T14516] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 934.155656][T14516] RSP: 002b:00007fff636ca8d0 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 934.155922][T14516] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007fc3c1cb3c5e [ 934.156184][T14516] RDX: 0000000000000000 RSI: 00007fff636ca990 RDI: 0000000000000005 [ 934.156436][T14516] RBP: 00007fff636ca8e0 R08: 0000000000000000 R09: 0000000000000000 [ 934.156683][T14516] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 934.156946][T14516] R13: 0000000069cbe7ed R14: 0000000000000004 R15: 000000000049d620 | [ 934.223160][T14520] ------------[ cut here ]------------ | [ 934.223334][T14520] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#3: ip/14520 | [ 934.223655][T14520] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 934.224486][T14520] Tainted: [W]=WARN [ 934.224589][T14520] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 934.224763][T14520] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 934.224909][T14520] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 934.225395][T14520] RSP: 0018:ffa00000034a75d0 EFLAGS: 00010286 [ 934.225570][T14520] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe22000034c20c7 [ 934.225773][T14520] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001a610638 [ 934.225979][T14520] RBP: 1ff4000000694ebb R08: 1fe22000034c20c8 R09: fffa3bfffffb0b24 [ 934.226182][T14520] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001a611c74 [ 934.226378][T14520] R13: ff1100001a611c40 R14: ffffffff931c7940 R15: ff1100001a610580 [ 934.226583][T14520] FS: 00007fa88595b440(0000) GS:ff110000a3238000(0000) knlGS:0000000000000000 [ 934.226816][T14520] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 934.226994][T14520] CR2: 000000000044f720 CR3: 000000000db78003 CR4: 0000000000771ef0 [ 934.227194][T14520] PKRU: 55555554 [ 934.227294][T14520] Call Trace: [ 934.227399][T14520] [ 934.227466][T14520] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 934.227599][T14520] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 934.227738][T14520] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 934.227874][T14520] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 934.228010][T14520] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 934.228148][T14520] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 934.228278][T14520] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 934.228415][T14520] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 934.228549][T14520] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 934.228684][T14520] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 934.228818][T14520] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 934.229431][T14520] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 934.229588][T14520] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 934.229718][T14520] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 934.229849][T14520] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 934.229994][T14520] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 934.230129][T14520] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 934.230263][T14520] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 934.230506][T14520] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 934.230644][T14520] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 934.230785][T14520] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 934.230928][T14520] ? copy_msghdr_from_user (net/socket.c:2525) [ 934.231081][T14520] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 934.231252][T14520] ? move_addr_to_kernel (net/socket.c:2511) [ 934.231396][T14520] ? filemap_map_folio_range (mm/filemap.c:3873) [ 934.231548][T14520] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 934.231705][T14520] ___sys_sendmsg (net/socket.c:2641) [ 934.231855][T14520] ? copy_msghdr_from_user (net/socket.c:2628) [ 934.232000][T14520] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 934.232135][T14520] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 934.232276][T14520] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 934.232415][T14520] ? __sys_sendmsg_sock (net/socket.c:2656) [ 934.232554][T14520] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 934.232686][T14520] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 934.232825][T14520] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 934.232968][T14520] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 934.233106][T14520] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 934.233238][T14520] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 934.233408][T14520] RIP: 0033:0x7fa885ab5c5e [ 934.233550][T14520] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 934.234050][T14520] RSP: 002b:00007ffc28de8930 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 934.234251][T14520] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007fa885ab5c5e [ 934.234537][T14520] RDX: 0000000000000000 RSI: 00007ffc28de89f0 RDI: 0000000000000005 [ 934.234748][T14520] RBP: 00007ffc28de8940 R08: 0000000000000000 R09: 0000000000000000 [ 934.235034][T14520] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 934.235237][T14520] R13: 0000000069cbe7ed R14: 0000000000000004 R15: 000000000049d620 | [ 934.322957][T14526] ------------[ cut here ]------------ | [ 934.323165][T14526] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#2: ip/14526 | [ 934.323469][T14526] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 934.324415][T14526] Tainted: [W]=WARN [ 934.324571][T14526] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 934.324793][T14526] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 934.325005][T14526] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 934.325551][T14526] RSP: 0018:ffa00000034d75d0 EFLAGS: 00010286 [ 934.325777][T14526] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe22000034c2057 [ 934.326056][T14526] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001a6102b8 [ 934.326309][T14526] RBP: 1ff400000069aebb R08: 1fe22000034c2058 R09: fffa3bfffffb0b24 [ 934.326566][T14526] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001a611e34 [ 934.326857][T14526] R13: ff1100001a611e00 R14: ffffffff931c7940 R15: ff1100001a610200 [ 934.327124][T14526] FS: 00007f7136800440(0000) GS:ff110000a31b8000(0000) knlGS:0000000000000000 [ 934.327419][T14526] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 934.327642][T14526] CR2: 000000000044f720 CR3: 000000000c89d003 CR4: 0000000000771ef0 [ 934.327917][T14526] PKRU: 55555554 [ 934.328070][T14526] Call Trace: [ 934.328221][T14526] [ 934.328342][T14526] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 934.328538][T14526] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 934.328734][T14526] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 934.328961][T14526] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 934.329146][T14526] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 934.329338][T14526] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 934.329531][T14526] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 934.329719][T14526] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 934.329917][T14526] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 934.330116][T14526] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 934.330306][T14526] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 934.330511][T14526] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 934.330705][T14526] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 934.330907][T14526] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 934.331107][T14526] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 934.331312][T14526] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 934.331503][T14526] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 934.331692][T14526] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 934.331882][T14526] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 934.332083][T14526] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 934.332277][T14526] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 934.332515][T14526] ? copy_msghdr_from_user (net/socket.c:2525) [ 934.332718][T14526] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 934.332946][T14526] ? move_addr_to_kernel (net/socket.c:2511) [ 934.333139][T14526] ? filemap_map_folio_range (mm/filemap.c:3873) [ 934.333353][T14526] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 934.333551][T14526] ___sys_sendmsg (net/socket.c:2641) [ 934.333740][T14526] ? copy_msghdr_from_user (net/socket.c:2628) [ 934.333943][T14526] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 934.334133][T14526] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 934.334342][T14526] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 934.334537][T14526] ? __sys_sendmsg_sock (net/socket.c:2656) [ 934.334726][T14526] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 934.334923][T14526] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 934.335117][T14526] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 934.335306][T14526] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 934.335500][T14526] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 934.335687][T14526] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 934.335925][T14526] RIP: 0033:0x7f713695ac5e [ 934.336117][T14526] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 934.336685][T14526] RSP: 002b:00007ffe44cc5f90 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 934.336946][T14526] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007f713695ac5e [ 934.337196][T14526] RDX: 0000000000000000 RSI: 00007ffe44cc6050 RDI: 0000000000000005 [ 934.337494][T14526] RBP: 00007ffe44cc5fa0 R08: 0000000000000000 R09: 0000000000000000 [ 934.337745][T14526] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 934.338012][T14526] R13: 0000000069cbe7ed R14: 0000000000000004 R15: 000000000049d620 | [ 934.422323][T14530] ------------[ cut here ]------------ | [ 934.422497][T14530] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#3: ip/14530 | [ 934.422742][T14530] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 934.424064][T14530] Tainted: [W]=WARN [ 934.424176][T14530] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 934.424350][T14530] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 934.424507][T14530] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 934.424999][T14530] RSP: 0018:ffa00000034e75d0 EFLAGS: 00010286 [ 934.425181][T14530] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe22000034c224f [ 934.425395][T14530] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001a611278 [ 934.425594][T14530] RBP: 1ff400000069cebb R08: 1fe22000034c2250 R09: fffa3bfffffb0b24 [ 934.425793][T14530] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001a610cb4 [ 934.426002][T14530] R13: ff1100001a610c80 R14: ffffffff931c7940 R15: ff1100001a6111c0 [ 934.426208][T14530] FS: 00007f126e96d440(0000) GS:ff110000a3238000(0000) knlGS:0000000000000000 [ 934.426450][T14530] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 934.426616][T14530] CR2: 000000000044f720 CR3: 000000000c5b6003 CR4: 0000000000771ef0 [ 934.426815][T14530] PKRU: 55555554 [ 934.426923][T14530] Call Trace: [ 934.427025][T14530] [ 934.427093][T14530] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 934.427228][T14530] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 934.427371][T14530] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 934.427512][T14530] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 934.427644][T14530] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 934.427779][T14530] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 934.427913][T14530] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 934.428048][T14530] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 934.428178][T14530] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 934.428311][T14530] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 934.428451][T14530] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 934.428581][T14530] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 934.428715][T14530] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 934.428850][T14530] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 934.428988][T14530] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 934.429131][T14530] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 934.429266][T14530] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 934.429403][T14530] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 934.429536][T14530] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 934.429667][T14530] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 934.429802][T14530] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 934.429940][T14530] ? copy_msghdr_from_user (net/socket.c:2525) [ 934.430072][T14530] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 934.430244][T14530] ? move_addr_to_kernel (net/socket.c:2511) [ 934.430376][T14530] ? filemap_map_folio_range (mm/filemap.c:3873) [ 934.430513][T14530] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 934.430655][T14530] ___sys_sendmsg (net/socket.c:2641) [ 934.430786][T14530] ? copy_msghdr_from_user (net/socket.c:2628) [ 934.430936][T14530] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 934.431070][T14530] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 934.431214][T14530] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 934.431353][T14530] ? __sys_sendmsg_sock (net/socket.c:2656) [ 934.431497][T14530] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 934.431651][T14530] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 934.431790][T14530] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 934.431957][T14530] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 934.432100][T14530] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 934.432241][T14530] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 934.432424][T14530] RIP: 0033:0x7f126eac7c5e [ 934.432572][T14530] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 934.433073][T14530] RSP: 002b:00007fff9685a5a0 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 934.433280][T14530] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007f126eac7c5e [ 934.433484][T14530] RDX: 0000000000000000 RSI: 00007fff9685a660 RDI: 0000000000000005 [ 934.433684][T14530] RBP: 00007fff9685a5b0 R08: 0000000000000000 R09: 0000000000000000 [ 934.433881][T14530] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 934.434091][T14530] R13: 0000000069cbe7ed R14: 0000000000000004 R15: 000000000049d620 | [ 934.496907][T14536] ------------[ cut here ]------------ | [ 934.497063][T14536] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#3: ip/14536 | [ 934.497306][T14536] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 934.498717][T14536] Tainted: [W]=WARN [ 934.498825][T14536] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 934.499175][T14536] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 934.499324][T14536] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 934.499821][T14536] RSP: 0018:ffa00000035575d0 EFLAGS: 00010286 [ 934.500100][T14536] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe2200001ea04ff [ 934.500317][T14536] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100000f5027f8 [ 934.500528][T14536] RBP: 1ff40000006aaebb R08: 1fe2200001ea0500 R09: fffa3bfffffb0b24 [ 934.500727][T14536] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100000f503034 [ 934.501037][T14536] R13: ff1100000f503000 R14: ffffffff931c7940 R15: ff1100000f502740 [ 934.501239][T14536] FS: 00007f4fbf17b440(0000) GS:ff110000a3238000(0000) knlGS:0000000000000000 [ 934.501481][T14536] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 934.501651][T14536] CR2: 000000000044f720 CR3: 0000000017e53005 CR4: 0000000000771ef0 [ 934.501856][T14536] PKRU: 55555554 [ 934.502062][T14536] Call Trace: [ 934.502162][T14536] [ 934.502235][T14536] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 934.502369][T14536] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 934.502514][T14536] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 934.502655][T14536] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 934.502792][T14536] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 934.503025][T14536] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 934.503161][T14536] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 934.503293][T14536] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 934.503439][T14536] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 934.503579][T14536] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 934.503721][T14536] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 934.503858][T14536] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 934.504097][T14536] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 934.504235][T14536] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 934.504373][T14536] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 934.504518][T14536] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 934.504659][T14536] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 934.504807][T14536] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 934.505039][T14536] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 934.505183][T14536] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 934.505319][T14536] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 934.505463][T14536] ? copy_msghdr_from_user (net/socket.c:2525) [ 934.505596][T14536] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 934.505760][T14536] ? move_addr_to_kernel (net/socket.c:2511) [ 934.505962][T14536] ? filemap_map_folio_range (mm/filemap.c:3873) [ 934.506103][T14536] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 934.506241][T14536] ___sys_sendmsg (net/socket.c:2641) [ 934.506379][T14536] ? copy_msghdr_from_user (net/socket.c:2628) [ 934.506528][T14536] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 934.506671][T14536] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 934.506814][T14536] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 934.507019][T14536] ? __sys_sendmsg_sock (net/socket.c:2656) [ 934.507154][T14536] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 934.507289][T14536] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 934.507427][T14536] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 934.507565][T14536] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 934.507698][T14536] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 934.507831][T14536] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 934.508001][T14536] RIP: 0033:0x7f4fbf2d5c5e [ 934.508142][T14536] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 934.508629][T14536] RSP: 002b:00007ffcbad5ed60 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 934.508836][T14536] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007f4fbf2d5c5e [ 934.509036][T14536] RDX: 0000000000000000 RSI: 00007ffcbad5ee20 RDI: 0000000000000005 [ 934.509234][T14536] RBP: 00007ffcbad5ed70 R08: 0000000000000000 R09: 0000000000000000 [ 934.509445][T14536] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 934.509642][T14536] R13: 0000000069cbe7ed R14: 0000000000000004 R15: 000000000049d620 | [ 934.582453][T14540] ------------[ cut here ]------------ | [ 934.582622][T14540] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#0: ip/14540 | [ 934.582865][T14540] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 934.583729][T14540] Tainted: [W]=WARN [ 934.583837][T14540] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 934.584031][T14540] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 934.584192][T14540] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 934.584713][T14540] RSP: 0018:ffa00000035175d0 EFLAGS: 00010286 [ 934.584888][T14540] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe2200001ea0687 [ 934.585091][T14540] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100000f503438 [ 934.585289][T14540] RBP: 1ff40000006a2ebb R08: 1fe2200001ea0688 R09: fffa3bfffffb0b24 [ 934.585496][T14540] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100000f503ab4 [ 934.585726][T14540] R13: ff1100000f503a80 R14: ffffffff931c7940 R15: ff1100000f503380 [ 934.585947][T14540] FS: 00007fc3272d5440(0000) GS:ff110000a30b8000(0000) knlGS:0000000000000000 [ 934.586187][T14540] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 934.586381][T14540] CR2: 000000000044f720 CR3: 000000001a6e6003 CR4: 0000000000771ef0 [ 934.586596][T14540] PKRU: 55555554 [ 934.586710][T14540] Call Trace: [ 934.586812][T14540] [ 934.586881][T14540] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 934.587023][T14540] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 934.587172][T14540] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 934.587314][T14540] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 934.587460][T14540] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 934.587600][T14540] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 934.587738][T14540] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 934.587872][T14540] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 934.588008][T14540] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 934.588141][T14540] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 934.588279][T14540] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 934.588417][T14540] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 934.588573][T14540] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 934.588808][T14540] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 934.589156][T14540] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 934.589295][T14540] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 934.589456][T14540] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 934.589595][T14540] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 934.589752][T14540] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 934.589901][T14540] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 934.590060][T14540] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 934.590197][T14540] ? copy_msghdr_from_user (net/socket.c:2525) [ 934.590338][T14540] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 934.590543][T14540] ? move_addr_to_kernel (net/socket.c:2511) [ 934.590709][T14540] ? filemap_map_folio_range (mm/filemap.c:3873) [ 934.590846][T14540] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 934.590998][T14540] ___sys_sendmsg (net/socket.c:2641) [ 934.591138][T14540] ? copy_msghdr_from_user (net/socket.c:2628) [ 934.591281][T14540] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 934.591430][T14540] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 934.591564][T14540] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 934.591713][T14540] ? __sys_sendmsg_sock (net/socket.c:2656) [ 934.591850][T14540] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 934.591988][T14540] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 934.592131][T14540] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 934.592300][T14540] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 934.592471][T14540] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 934.592605][T14540] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 934.592777][T14540] RIP: 0033:0x7fc32742fc5e [ 934.592940][T14540] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 934.593430][T14540] RSP: 002b:00007ffd54ffbe00 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 934.593680][T14540] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007fc32742fc5e [ 934.593886][T14540] RDX: 0000000000000000 RSI: 00007ffd54ffbec0 RDI: 0000000000000005 [ 934.594099][T14540] RBP: 00007ffd54ffbe10 R08: 0000000000000000 R09: 0000000000000000 [ 934.594334][T14540] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 934.594545][T14540] R13: 0000000069cbe7ee R14: 0000000000000004 R15: 000000000049d620 | [ 934.673988][T14546] ------------[ cut here ]------------ | [ 934.674159][T14546] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#3: ip/14546 | [ 934.674430][T14546] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 934.675304][T14546] Tainted: [W]=WARN [ 934.675421][T14546] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 934.675607][T14546] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 934.675786][T14546] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 934.676323][T14546] RSP: 0018:ffa00000035475d0 EFLAGS: 00010286 [ 934.676522][T14546] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe22000036f19a7 [ 934.676758][T14546] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001b78cd38 [ 934.676997][T14546] RBP: 1ff40000006a8ebb R08: 1fe22000036f19a8 R09: fffa3bfffffb0b24 [ 934.677223][T14546] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100000f503734 [ 934.677438][T14546] R13: ff1100000f503700 R14: ffffffff931c7940 R15: ff1100001b78cc80 [ 934.677649][T14546] FS: 00007fc682bd8440(0000) GS:ff110000a3238000(0000) knlGS:0000000000000000 [ 934.677971][T14546] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 934.678148][T14546] CR2: 000000000044f720 CR3: 000000000db8d001 CR4: 0000000000771ef0 [ 934.678361][T14546] PKRU: 55555554 [ 934.678507][T14546] Call Trace: [ 934.678613][T14546] [ 934.678685][T14546] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 934.678825][T14546] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 934.679001][T14546] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 934.679146][T14546] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 934.679288][T14546] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 934.679435][T14546] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 934.679577][T14546] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 934.679722][T14546] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 934.679869][T14546] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 934.680026][T14546] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 934.680166][T14546] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 934.680317][T14546] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 934.680571][T14546] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 934.680710][T14546] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 934.680866][T14546] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 934.681008][T14546] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 934.681150][T14546] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 934.681295][T14546] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 934.681443][T14546] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 934.681578][T14546] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 934.681720][T14546] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 934.681860][T14546] ? copy_msghdr_from_user (net/socket.c:2525) [ 934.682000][T14546] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 934.682172][T14546] ? move_addr_to_kernel (net/socket.c:2511) [ 934.682314][T14546] ? filemap_map_folio_range (mm/filemap.c:3873) [ 934.682462][T14546] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 934.682602][T14546] ___sys_sendmsg (net/socket.c:2641) [ 934.682741][T14546] ? copy_msghdr_from_user (net/socket.c:2628) [ 934.682885][T14546] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 934.683029][T14546] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 934.683171][T14546] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 934.683310][T14546] ? __sys_sendmsg_sock (net/socket.c:2656) [ 934.683463][T14546] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 934.683607][T14546] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 934.683748][T14546] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 934.683902][T14546] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 934.684045][T14546] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 934.684185][T14546] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 934.684351][T14546] RIP: 0033:0x7fc682d32c5e [ 934.684505][T14546] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 934.685015][T14546] RSP: 002b:00007ffcbe8e6020 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 934.685228][T14546] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007fc682d32c5e [ 934.685437][T14546] RDX: 0000000000000000 RSI: 00007ffcbe8e60e0 RDI: 0000000000000005 [ 934.685651][T14546] RBP: 00007ffcbe8e6030 R08: 0000000000000000 R09: 0000000000000000 [ 934.685854][T14546] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 934.686062][T14546] R13: 0000000069cbe7ee R14: 0000000000000004 R15: 000000000049d620 | [ 934.765504][T14550] ------------[ cut here ]------------ | [ 934.765717][T14550] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#2: ip/14550 | [ 934.766240][T14550] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 934.767147][T14550] Tainted: [W]=WARN [ 934.767302][T14550] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 934.767544][T14550] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 934.767744][T14550] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 934.768311][T14550] RSP: 0018:ffa00000035575d0 EFLAGS: 00010286 [ 934.768547][T14550] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe22000036f1b67 [ 934.768803][T14550] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001b78db38 [ 934.769069][T14550] RBP: 1ff40000006aaebb R08: 1fe22000036f1b68 R09: fffa3bfffffb0b24 [ 934.769319][T14550] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001b78d574 [ 934.769585][T14550] R13: ff1100001b78d540 R14: ffffffff931c7940 R15: ff1100001b78da80 [ 934.769839][T14550] FS: 00007ff3b84e4440(0000) GS:ff110000a31b8000(0000) knlGS:0000000000000000 [ 934.770144][T14550] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 934.770368][T14550] CR2: 000000000044f720 CR3: 000000001073e006 CR4: 0000000000771ef0 [ 934.770646][T14550] PKRU: 55555554 [ 934.770801][T14550] Call Trace: [ 934.770969][T14550] [ 934.771090][T14550] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 934.771276][T14550] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 934.771480][T14550] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 934.771696][T14550] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 934.771886][T14550] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 934.772090][T14550] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 934.772275][T14550] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 934.772471][T14550] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 934.772660][T14550] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 934.772848][T14550] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 934.773055][T14550] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 934.773251][T14550] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 934.773450][T14550] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 934.773640][T14550] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 934.773825][T14550] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 934.774026][T14550] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 934.774213][T14550] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 934.774408][T14550] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 934.774599][T14550] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 934.774787][T14550] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 934.774993][T14550] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 934.775181][T14550] ? copy_msghdr_from_user (net/socket.c:2525) [ 934.775367][T14550] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 934.775596][T14550] ? move_addr_to_kernel (net/socket.c:2511) [ 934.775785][T14550] ? filemap_map_folio_range (mm/filemap.c:3873) [ 934.775981][T14550] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 934.776173][T14550] ___sys_sendmsg (net/socket.c:2641) [ 934.776362][T14550] ? copy_msghdr_from_user (net/socket.c:2628) [ 934.776563][T14550] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 934.776765][T14550] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 934.776984][T14550] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 934.777192][T14550] ? __sys_sendmsg_sock (net/socket.c:2656) [ 934.777415][T14550] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 934.777623][T14550] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 934.777837][T14550] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 934.778076][T14550] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 934.778291][T14550] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 934.778504][T14550] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 934.778727][T14550] RIP: 0033:0x7ff3b863ec5e [ 934.778956][T14550] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 934.779556][T14550] RSP: 002b:00007ffc04d51030 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 934.779938][T14550] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007ff3b863ec5e [ 934.780217][T14550] RDX: 0000000000000000 RSI: 00007ffc04d510f0 RDI: 0000000000000005 [ 934.780499][T14550] RBP: 00007ffc04d51040 R08: 0000000000000000 R09: 0000000000000000 [ 934.780868][T14550] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 934.781162][T14550] R13: 0000000069cbe7ee R14: 0000000000000004 R15: 000000000049d620 | [ 934.846655][T14556] ------------[ cut here ]------------ | [ 934.846820][T14556] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#0: ip/14556 | [ 934.847272][T14556] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 934.848085][T14556] Tainted: [W]=WARN [ 934.848188][T14556] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 934.848357][T14556] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 934.848510][T14556] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 934.849001][T14556] RSP: 0018:ffa00000035275d0 EFLAGS: 00010286 [ 934.849178][T14556] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe22000036f18ff [ 934.849378][T14556] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001b78c7f8 [ 934.849585][T14556] RBP: 1ff40000006a4ebb R08: 1fe22000036f1900 R09: fffa3bfffffb0b24 [ 934.849787][T14556] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001b78d1f4 [ 934.850006][T14556] R13: ff1100001b78d1c0 R14: ffffffff931c7940 R15: ff1100001b78c740 [ 934.850214][T14556] FS: 00007f759df92440(0000) GS:ff110000a30b8000(0000) knlGS:0000000000000000 [ 934.850461][T14556] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 934.850642][T14556] CR2: 000000000044f720 CR3: 000000001c442004 CR4: 0000000000771ef0 [ 934.850845][T14556] PKRU: 55555554 [ 934.850952][T14556] Call Trace: [ 934.851052][T14556] [ 934.851121][T14556] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 934.851254][T14556] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 934.851400][T14556] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 934.851543][T14556] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 934.851683][T14556] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 934.851819][T14556] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 934.851959][T14556] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 934.852096][T14556] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 934.852236][T14556] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 934.852370][T14556] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 934.852512][T14556] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 934.852646][T14556] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 934.852782][T14556] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 934.852922][T14556] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 934.853069][T14556] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 934.853200][T14556] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 934.853335][T14556] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 934.853476][T14556] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 934.853613][T14556] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 934.853756][T14556] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 934.853901][T14556] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 934.854040][T14556] ? copy_msghdr_from_user (net/socket.c:2525) [ 934.854181][T14556] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 934.854345][T14556] ? move_addr_to_kernel (net/socket.c:2511) [ 934.854485][T14556] ? filemap_map_folio_range (mm/filemap.c:3873) [ 934.854621][T14556] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 934.854756][T14556] ___sys_sendmsg (net/socket.c:2641) [ 934.854890][T14556] ? copy_msghdr_from_user (net/socket.c:2628) [ 934.855035][T14556] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 934.855171][T14556] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 934.855313][T14556] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 934.855453][T14556] ? __sys_sendmsg_sock (net/socket.c:2656) [ 934.855591][T14556] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 934.855726][T14556] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 934.855862][T14556] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 934.856005][T14556] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 934.856138][T14556] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 934.856273][T14556] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 934.856459][T14556] RIP: 0033:0x7f759e0ecc5e [ 934.856611][T14556] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 934.857106][T14556] RSP: 002b:00007fffa129ef60 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 934.857310][T14556] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007f759e0ecc5e [ 934.857524][T14556] RDX: 0000000000000000 RSI: 00007fffa129f020 RDI: 0000000000000005 [ 934.857726][T14556] RBP: 00007fffa129ef70 R08: 0000000000000000 R09: 0000000000000000 [ 934.857933][T14556] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 934.858133][T14556] R13: 0000000069cbe7ee R14: 0000000000000004 R15: 000000000049d620 | [ 934.943033][T14560] ------------[ cut here ]------------ | [ 934.943230][T14560] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#0: ip/14560 | [ 934.943476][T14560] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 934.944879][T14560] Tainted: [W]=WARN [ 934.945039][T14560] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 934.945206][T14560] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 934.945349][T14560] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 934.945825][T14560] RSP: 0018:ffa00000035075d0 EFLAGS: 00010286 [ 934.946052][T14560] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe22000038751df [ 934.946273][T14560] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001c3a8ef8 [ 934.946488][T14560] RBP: 1ff40000006a0ebb R08: 1fe22000038751e0 R09: fffa3bfffffb0b24 [ 934.946685][T14560] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001c3a8234 [ 934.946888][T14560] R13: ff1100001c3a8200 R14: ffffffff931c7940 R15: ff1100001c3a8e40 [ 934.947166][T14560] FS: 00007f0f70dbe440(0000) GS:ff110000a30b8000(0000) knlGS:0000000000000000 [ 934.947424][T14560] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 934.947592][T14560] CR2: 000000000044f720 CR3: 000000001a4de006 CR4: 0000000000771ef0 [ 934.947808][T14560] PKRU: 55555554 [ 934.947978][T14560] Call Trace: [ 934.948082][T14560] [ 934.948151][T14560] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 934.948283][T14560] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 934.948428][T14560] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 934.948570][T14560] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 934.948714][T14560] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 934.948850][T14560] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 934.949033][T14560] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 934.949167][T14560] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 934.949297][T14560] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 934.949445][T14560] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 934.949580][T14560] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 934.949734][T14560] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 934.949870][T14560] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 934.950051][T14560] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 934.950194][T14560] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 934.950328][T14560] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 934.950466][T14560] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 934.950618][T14560] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 934.950756][T14560] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 934.950950][T14560] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 934.951087][T14560] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 934.951219][T14560] ? copy_msghdr_from_user (net/socket.c:2525) [ 934.951354][T14560] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 934.951524][T14560] ? move_addr_to_kernel (net/socket.c:2511) [ 934.951655][T14560] ? filemap_map_folio_range (mm/filemap.c:3873) [ 934.951787][T14560] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 934.951974][T14560] ___sys_sendmsg (net/socket.c:2641) [ 934.952106][T14560] ? copy_msghdr_from_user (net/socket.c:2628) [ 934.952242][T14560] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 934.952393][T14560] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 934.952538][T14560] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 934.952672][T14560] ? __sys_sendmsg_sock (net/socket.c:2656) [ 934.952809][T14560] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 934.952992][T14560] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 934.953132][T14560] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 934.953265][T14560] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 934.953436][T14560] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 934.953571][T14560] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 934.953745][T14560] RIP: 0033:0x7f0f70f18c5e [ 934.953888][T14560] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 934.954424][T14560] RSP: 002b:00007ffcd725d1c0 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 934.954639][T14560] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007f0f70f18c5e [ 934.954877][T14560] RDX: 0000000000000000 RSI: 00007ffcd725d280 RDI: 0000000000000005 [ 934.955128][T14560] RBP: 00007ffcd725d1d0 R08: 0000000000000000 R09: 0000000000000000 [ 934.955345][T14560] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 934.955551][T14560] R13: 0000000069cbe7ee R14: 0000000000000004 R15: 000000000049d620 | [ 935.020459][T14566] ------------[ cut here ]------------ | [ 935.020635][T14566] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#0: ip/14566 | [ 935.021326][T14566] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 935.022124][T14566] Tainted: [W]=WARN [ 935.022226][T14566] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 935.022431][T14566] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 935.022592][T14566] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 935.023072][T14566] RSP: 0018:ffa00000035a75d0 EFLAGS: 00010286 [ 935.023255][T14566] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe22000038752bf [ 935.023493][T14566] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001c3a95f8 [ 935.023715][T14566] RBP: 1ff40000006b4ebb R08: 1fe22000038752c0 R09: fffa3bfffffb0b24 [ 935.023941][T14566] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001c3a9e34 [ 935.024144][T14566] R13: ff1100001c3a9e00 R14: ffffffff931c7940 R15: ff1100001c3a9540 [ 935.024348][T14566] FS: 00007f2fb9cd1440(0000) GS:ff110000a30b8000(0000) knlGS:0000000000000000 [ 935.024601][T14566] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 935.024775][T14566] CR2: 000000000044f720 CR3: 0000000019d11002 CR4: 0000000000771ef0 [ 935.024996][T14566] PKRU: 55555554 [ 935.025097][T14566] Call Trace: [ 935.025197][T14566] [ 935.025266][T14566] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 935.025404][T14566] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 935.025566][T14566] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 935.025714][T14566] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 935.025849][T14566] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 935.025992][T14566] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 935.026130][T14566] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 935.026317][T14566] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 935.026507][T14566] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 935.026648][T14566] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 935.026789][T14566] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 935.026934][T14566] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 935.027086][T14566] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 935.027224][T14566] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 935.027358][T14566] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 935.027544][T14566] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 935.027758][T14566] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 935.027902][T14566] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 935.028038][T14566] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 935.028175][T14566] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 935.028315][T14566] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 935.028472][T14566] ? copy_msghdr_from_user (net/socket.c:2525) [ 935.028615][T14566] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 935.028791][T14566] ? move_addr_to_kernel (net/socket.c:2511) [ 935.028936][T14566] ? filemap_map_folio_range (mm/filemap.c:3873) [ 935.029098][T14566] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 935.029244][T14566] ___sys_sendmsg (net/socket.c:2641) [ 935.029425][T14566] ? copy_msghdr_from_user (net/socket.c:2628) [ 935.029567][T14566] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 935.029705][T14566] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 935.029840][T14566] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 935.029978][T14566] ? __sys_sendmsg_sock (net/socket.c:2656) [ 935.030114][T14566] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 935.030248][T14566] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 935.030391][T14566] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 935.030527][T14566] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 935.030660][T14566] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 935.030793][T14566] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 935.030986][T14566] RIP: 0033:0x7f2fb9e2bc5e [ 935.031135][T14566] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 935.031671][T14566] RSP: 002b:00007ffe89a7c420 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 935.031883][T14566] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007f2fb9e2bc5e [ 935.032100][T14566] RDX: 0000000000000000 RSI: 00007ffe89a7c4e0 RDI: 0000000000000005 [ 935.032310][T14566] RBP: 00007ffe89a7c430 R08: 0000000000000000 R09: 0000000000000000 [ 935.032527][T14566] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 935.032737][T14566] R13: 0000000069cbe7ee R14: 0000000000000004 R15: 000000000049d620 | [ 935.108160][T14570] ------------[ cut here ]------------ | [ 935.108333][T14570] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#3: ip/14570 | [ 935.108579][T14570] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 935.109762][T14570] Tainted: [W]=WARN [ 935.109873][T14570] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 935.110054][T14570] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 935.110204][T14570] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 935.110718][T14570] RSP: 0018:ffa00000035475d0 EFLAGS: 00010286 [ 935.110904][T14570] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe220000192ea17 [ 935.111117][T14570] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100000c9750b8 [ 935.111330][T14570] RBP: 1ff40000006a8ebb R08: 1fe220000192ea18 R09: fffa3bfffffb0b24 [ 935.111547][T14570] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100000c975ab4 [ 935.111760][T14570] R13: ff1100000c975a80 R14: ffffffff931c7940 R15: ff1100000c975000 [ 935.111979][T14570] FS: 00007f505d06e440(0000) GS:ff110000a3238000(0000) knlGS:0000000000000000 [ 935.112230][T14570] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 935.112411][T14570] CR2: 000000000044f720 CR3: 000000001997a006 CR4: 0000000000771ef0 [ 935.112631][T14570] PKRU: 55555554 [ 935.112737][T14570] Call Trace: [ 935.112843][T14570] [ 935.112920][T14570] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 935.113064][T14570] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 935.113214][T14570] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 935.113361][T14570] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 935.113507][T14570] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 935.113651][T14570] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 935.113792][T14570] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 935.113941][T14570] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 935.114085][T14570] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 935.114229][T14570] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 935.114373][T14570] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 935.114520][T14570] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 935.114662][T14570] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 935.114806][T14570] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 935.114949][T14570] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 935.115092][T14570] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 935.115232][T14570] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 935.115390][T14570] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 935.115532][T14570] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 935.115676][T14570] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 935.115819][T14570] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 935.115972][T14570] ? copy_msghdr_from_user (net/socket.c:2525) [ 935.116113][T14570] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 935.116285][T14570] ? move_addr_to_kernel (net/socket.c:2511) [ 935.116430][T14570] ? filemap_map_folio_range (mm/filemap.c:3873) [ 935.116571][T14570] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 935.116719][T14570] ___sys_sendmsg (net/socket.c:2641) [ 935.116859][T14570] ? copy_msghdr_from_user (net/socket.c:2628) [ 935.117009][T14570] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 935.117153][T14570] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 935.117296][T14570] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 935.117440][T14570] ? __sys_sendmsg_sock (net/socket.c:2656) [ 935.117584][T14570] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 935.117725][T14570] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 935.117865][T14570] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 935.118009][T14570] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 935.118150][T14570] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 935.118290][T14570] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 935.118469][T14570] RIP: 0033:0x7f505d1c8c5e [ 935.118617][T14570] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 935.119141][T14570] RSP: 002b:00007ffeec622d50 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 935.119366][T14570] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007f505d1c8c5e [ 935.119582][T14570] RDX: 0000000000000000 RSI: 00007ffeec622e10 RDI: 0000000000000005 [ 935.119787][T14570] RBP: 00007ffeec622d60 R08: 0000000000000000 R09: 0000000000000000 [ 935.120009][T14570] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 935.120211][T14570] R13: 0000000069cbe7ee R14: 0000000000000004 R15: 000000000049d620 | [ 935.188922][T14576] ------------[ cut here ]------------ | [ 935.189101][T14576] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#0: ip/14576 | [ 935.189361][T14576] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 935.190507][T14576] Tainted: [W]=WARN [ 935.190618][T14576] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 935.190795][T14576] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 935.190948][T14576] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 935.191469][T14576] RSP: 0018:ffa00000035075d0 EFLAGS: 00010286 [ 935.191648][T14576] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe220000192e937 [ 935.191856][T14576] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100000c9749b8 [ 935.192079][T14576] RBP: 1ff40000006a0ebb R08: 1fe220000192e938 R09: fffa3bfffffb0b24 [ 935.192299][T14576] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100000c974774 [ 935.192532][T14576] R13: ff1100000c974740 R14: ffffffff931c7940 R15: ff1100000c974900 [ 935.192741][T14576] FS: 00007fd4c6d72440(0000) GS:ff110000a30b8000(0000) knlGS:0000000000000000 [ 935.192987][T14576] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 935.193167][T14576] CR2: 000000000044f720 CR3: 0000000010039001 CR4: 0000000000771ef0 [ 935.193373][T14576] PKRU: 55555554 [ 935.193479][T14576] Call Trace: [ 935.193578][T14576] [ 935.193646][T14576] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 935.193778][T14576] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 935.193925][T14576] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 935.194058][T14576] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 935.194215][T14576] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 935.194361][T14576] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 935.194512][T14576] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 935.194653][T14576] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 935.194793][T14576] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 935.194945][T14576] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 935.195094][T14576] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 935.195235][T14576] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 935.195374][T14576] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 935.195515][T14576] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 935.195646][T14576] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 935.195778][T14576] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 935.195916][T14576] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 935.196049][T14576] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 935.196191][T14576] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 935.196331][T14576] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 935.196481][T14576] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 935.196622][T14576] ? copy_msghdr_from_user (net/socket.c:2525) [ 935.196763][T14576] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 935.196941][T14576] ? move_addr_to_kernel (net/socket.c:2511) [ 935.197081][T14576] ? filemap_map_folio_range (mm/filemap.c:3873) [ 935.197221][T14576] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 935.197363][T14576] ___sys_sendmsg (net/socket.c:2641) [ 935.197512][T14576] ? copy_msghdr_from_user (net/socket.c:2628) [ 935.197665][T14576] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 935.197812][T14576] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 935.197966][T14576] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 935.198113][T14576] ? __sys_sendmsg_sock (net/socket.c:2656) [ 935.198256][T14576] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 935.198403][T14576] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 935.198548][T14576] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 935.198693][T14576] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 935.198834][T14576] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 935.198981][T14576] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 935.199157][T14576] RIP: 0033:0x7fd4c6eccc5e [ 935.199300][T14576] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 935.199820][T14576] RSP: 002b:00007ffde805ee50 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 935.200055][T14576] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007fd4c6eccc5e [ 935.200262][T14576] RDX: 0000000000000000 RSI: 00007ffde805ef10 RDI: 0000000000000005 [ 935.200483][T14576] RBP: 00007ffde805ee60 R08: 0000000000000000 R09: 0000000000000000 [ 935.200719][T14576] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 935.200940][T14576] R13: 0000000069cbe7ee R14: 0000000000000004 R15: 000000000049d620 | [ 935.268085][T14580] ------------[ cut here ]------------ | [ 935.268260][T14580] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#3: ip/14580 | [ 935.268518][T14580] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 935.269910][T14580] Tainted: [W]=WARN [ 935.270025][T14580] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 935.270205][T14580] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 935.270349][T14580] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 935.270912][T14580] RSP: 0018:ffa00000035e75d0 EFLAGS: 00010286 [ 935.271123][T14580] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe2200003229da7 [ 935.271346][T14580] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001914ed38 [ 935.271573][T14580] RBP: 1ff40000006bcebb R08: 1fe2200003229da8 R09: fffa3bfffffb0b24 [ 935.271785][T14580] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001914f034 [ 935.272004][T14580] R13: ff1100001914f000 R14: ffffffff931c7940 R15: ff1100001914ec80 [ 935.272225][T14580] FS: 00007f96f12cc440(0000) GS:ff110000a3238000(0000) knlGS:0000000000000000 [ 935.272481][T14580] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 935.272667][T14580] CR2: 000000000044f720 CR3: 000000001997a004 CR4: 0000000000771ef0 [ 935.272910][T14580] PKRU: 55555554 [ 935.273014][T14580] Call Trace: [ 935.273146][T14580] [ 935.273223][T14580] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 935.273424][T14580] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 935.273575][T14580] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 935.273751][T14580] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 935.273884][T14580] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 935.274026][T14580] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 935.274164][T14580] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 935.274298][T14580] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 935.274436][T14580] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 935.274596][T14580] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 935.274739][T14580] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 935.274880][T14580] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 935.275026][T14580] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 935.275169][T14580] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 935.275312][T14580] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 935.275462][T14580] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 935.275611][T14580] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 935.275753][T14580] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 935.275900][T14580] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 935.276061][T14580] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 935.276201][T14580] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 935.276339][T14580] ? copy_msghdr_from_user (net/socket.c:2525) [ 935.276483][T14580] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 935.276655][T14580] ? move_addr_to_kernel (net/socket.c:2511) [ 935.276796][T14580] ? filemap_map_folio_range (mm/filemap.c:3873) [ 935.276967][T14580] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 935.277114][T14580] ___sys_sendmsg (net/socket.c:2641) [ 935.277258][T14580] ? copy_msghdr_from_user (net/socket.c:2628) [ 935.277407][T14580] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 935.277552][T14580] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 935.277689][T14580] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 935.277834][T14580] ? __sys_sendmsg_sock (net/socket.c:2656) [ 935.277986][T14580] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 935.278132][T14580] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 935.278283][T14580] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 935.278423][T14580] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 935.278558][T14580] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 935.278712][T14580] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 935.278883][T14580] RIP: 0033:0x7f96f1426c5e [ 935.279034][T14580] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 935.279533][T14580] RSP: 002b:00007ffe233c6730 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 935.279750][T14580] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007f96f1426c5e [ 935.279976][T14580] RDX: 0000000000000000 RSI: 00007ffe233c67f0 RDI: 0000000000000005 [ 935.280185][T14580] RBP: 00007ffe233c6740 R08: 0000000000000000 R09: 0000000000000000 [ 935.280455][T14580] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 935.280685][T14580] R13: 0000000069cbe7ee R14: 0000000000000004 R15: 000000000049d620 | [ 935.341234][T14586] ------------[ cut here ]------------ | [ 935.341425][T14586] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#3: ip/14586 | [ 935.341688][T14586] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 935.342902][T14586] Tainted: [W]=WARN [ 935.343010][T14586] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 935.343208][T14586] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 935.343364][T14586] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 935.343863][T14586] RSP: 0018:ffa00000036275d0 EFLAGS: 00010286 [ 935.344056][T14586] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe22000034c22bf [ 935.344328][T14586] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001a6115f8 [ 935.344567][T14586] RBP: 1ff40000006c4ebb R08: 1fe22000034c22c0 R09: fffa3bfffffb0b24 [ 935.344794][T14586] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001a610774 [ 935.345029][T14586] R13: ff1100001a610740 R14: ffffffff931c7940 R15: ff1100001a611540 [ 935.345243][T14586] FS: 00007fd962b6e440(0000) GS:ff110000a3238000(0000) knlGS:0000000000000000 [ 935.345490][T14586] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 935.345706][T14586] CR2: 000000000044f720 CR3: 000000000da99005 CR4: 0000000000771ef0 [ 935.345940][T14586] PKRU: 55555554 [ 935.346051][T14586] Call Trace: [ 935.346189][T14586] [ 935.346281][T14586] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 935.346447][T14586] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 935.346612][T14586] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 935.346764][T14586] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 935.346920][T14586] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 935.347074][T14586] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 935.347222][T14586] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 935.347374][T14586] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 935.347530][T14586] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 935.347691][T14586] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 935.347846][T14586] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 935.347997][T14586] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 935.348152][T14586] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 935.348306][T14586] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 935.348465][T14586] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 935.348662][T14586] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 935.348813][T14586] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 935.348962][T14586] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 935.349107][T14586] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 935.349272][T14586] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 935.349436][T14586] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 935.349616][T14586] ? copy_msghdr_from_user (net/socket.c:2525) [ 935.349782][T14586] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 935.349985][T14586] ? move_addr_to_kernel (net/socket.c:2511) [ 935.350134][T14586] ? filemap_map_folio_range (mm/filemap.c:3873) [ 935.350274][T14586] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 935.350419][T14586] ___sys_sendmsg (net/socket.c:2641) [ 935.350558][T14586] ? copy_msghdr_from_user (net/socket.c:2628) [ 935.350718][T14586] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 935.350883][T14586] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 935.351036][T14586] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 935.351182][T14586] ? __sys_sendmsg_sock (net/socket.c:2656) [ 935.351326][T14586] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 935.351474][T14586] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 935.351620][T14586] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 935.351765][T14586] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 935.351926][T14586] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 935.352077][T14586] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 935.352263][T14586] RIP: 0033:0x7fd962cc8c5e [ 935.352430][T14586] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 935.352964][T14586] RSP: 002b:00007ffc7d761fd0 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 935.353185][T14586] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007fd962cc8c5e [ 935.353404][T14586] RDX: 0000000000000000 RSI: 00007ffc7d762090 RDI: 0000000000000005 [ 935.353622][T14586] RBP: 00007ffc7d761fe0 R08: 0000000000000000 R09: 0000000000000000 [ 935.353842][T14586] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 935.354062][T14586] R13: 0000000069cbe7ee R14: 0000000000000004 R15: 000000000049d620 | [ 935.426832][T14590] ------------[ cut here ]------------ | [ 935.427586][T14590] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#3: ip/14590 | [ 935.427871][T14590] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 935.428971][T14590] Tainted: [W]=WARN [ 935.429076][T14590] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 935.429251][T14590] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 935.429401][T14590] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 935.430093][T14590] RSP: 0018:ffa00000036175d0 EFLAGS: 00010286 [ 935.430276][T14590] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe22000034c2057 [ 935.430665][T14590] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001a6102b8 [ 935.430874][T14590] RBP: 1ff40000006c2ebb R08: 1fe22000034c2058 R09: fffa3bfffffb0b24 [ 935.431124][T14590] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001a611e34 [ 935.431360][T14590] R13: ff1100001a611e00 R14: ffffffff931c7940 R15: ff1100001a610200 [ 935.431590][T14590] FS: 00007fb3aca92440(0000) GS:ff110000a3238000(0000) knlGS:0000000000000000 [ 935.431884][T14590] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 935.432070][T14590] CR2: 000000000044f720 CR3: 000000000da99003 CR4: 0000000000771ef0 [ 935.432308][T14590] PKRU: 55555554 [ 935.432439][T14590] Call Trace: [ 935.432554][T14590] [ 935.432628][T14590] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 935.432773][T14590] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 935.432933][T14590] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 935.433103][T14590] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 935.433239][T14590] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 935.433378][T14590] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 935.433524][T14590] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 935.433663][T14590] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 935.433801][T14590] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 935.433945][T14590] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 935.434083][T14590] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 935.434233][T14590] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 935.434376][T14590] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 935.434538][T14590] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 935.434684][T14590] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 935.434827][T14590] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 935.434970][T14590] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 935.435107][T14590] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 935.435252][T14590] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 935.435401][T14590] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 935.435546][T14590] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 935.435684][T14590] ? copy_msghdr_from_user (net/socket.c:2525) [ 935.435821][T14590] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 935.436018][T14590] ? move_addr_to_kernel (net/socket.c:2511) [ 935.436170][T14590] ? filemap_map_folio_range (mm/filemap.c:3873) [ 935.436325][T14590] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 935.436478][T14590] ___sys_sendmsg (net/socket.c:2641) [ 935.436630][T14590] ? copy_msghdr_from_user (net/socket.c:2628) [ 935.436791][T14590] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 935.436943][T14590] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 935.437178][T14590] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 935.437313][T14590] ? __sys_sendmsg_sock (net/socket.c:2656) [ 935.437459][T14590] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 935.437597][T14590] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 935.437731][T14590] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 935.437878][T14590] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 935.438025][T14590] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 935.438168][T14590] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 935.438361][T14590] RIP: 0033:0x7fb3acbecc5e [ 935.438537][T14590] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 935.439057][T14590] RSP: 002b:00007ffdbfb85610 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 935.439271][T14590] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007fb3acbecc5e [ 935.439488][T14590] RDX: 0000000000000000 RSI: 00007ffdbfb856d0 RDI: 0000000000000005 [ 935.439699][T14590] RBP: 00007ffdbfb85620 R08: 0000000000000000 R09: 0000000000000000 [ 935.439921][T14590] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 935.440137][T14590] R13: 0000000069cbe7ee R14: 0000000000000004 R15: 000000000049d620 | [ 935.513352][T14596] ------------[ cut here ]------------ | [ 935.513559][T14596] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#0: ip/14596 | [ 935.513821][T14596] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 935.514887][T14596] Tainted: [W]=WARN [ 935.514998][T14596] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 935.515172][T14596] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 935.515319][T14596] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 935.515827][T14596] RSP: 0018:ffa00000036675d0 EFLAGS: 00010286 [ 935.516010][T14596] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe2200001ea064f [ 935.516220][T14596] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100000f503278 [ 935.516452][T14596] RBP: 1ff40000006ccebb R08: 1fe2200001ea0650 R09: fffa3bfffffb0b24 [ 935.516657][T14596] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001a6105b4 [ 935.516868][T14596] R13: ff1100001a610580 R14: ffffffff931c7940 R15: ff1100000f5031c0 [ 935.517084][T14596] FS: 00007effcbd34440(0000) GS:ff110000a30b8000(0000) knlGS:0000000000000000 [ 935.517334][T14596] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 935.517523][T14596] CR2: 000000000044f720 CR3: 000000001940d003 CR4: 0000000000771ef0 [ 935.517735][T14596] PKRU: 55555554 [ 935.517843][T14596] Call Trace: [ 935.517959][T14596] [ 935.518046][T14596] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 935.518224][T14596] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 935.518377][T14596] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 935.518527][T14596] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 935.518672][T14596] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 935.518821][T14596] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 935.518967][T14596] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 935.519112][T14596] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 935.519254][T14596] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 935.519399][T14596] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 935.519543][T14596] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 935.519682][T14596] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 935.519830][T14596] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 935.519978][T14596] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 935.520129][T14596] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 935.520276][T14596] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 935.520424][T14596] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 935.520560][T14596] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 935.520698][T14596] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 935.520839][T14596] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 935.520990][T14596] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 935.521160][T14596] ? copy_msghdr_from_user (net/socket.c:2525) [ 935.521311][T14596] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 935.521484][T14596] ? move_addr_to_kernel (net/socket.c:2511) [ 935.521621][T14596] ? filemap_map_folio_range (mm/filemap.c:3873) [ 935.521757][T14596] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 935.521910][T14596] ___sys_sendmsg (net/socket.c:2641) [ 935.522046][T14596] ? copy_msghdr_from_user (net/socket.c:2628) [ 935.522191][T14596] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 935.522332][T14596] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 935.522477][T14596] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 935.522613][T14596] ? __sys_sendmsg_sock (net/socket.c:2656) [ 935.522750][T14596] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 935.522888][T14596] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 935.523030][T14596] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 935.523165][T14596] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 935.523302][T14596] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 935.523448][T14596] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 935.523623][T14596] RIP: 0033:0x7effcbe8ec5e [ 935.523767][T14596] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 935.524263][T14596] RSP: 002b:00007ffdde8ed660 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 935.524499][T14596] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007effcbe8ec5e [ 935.524712][T14596] RDX: 0000000000000000 RSI: 00007ffdde8ed720 RDI: 0000000000000005 [ 935.524931][T14596] RBP: 00007ffdde8ed670 R08: 0000000000000000 R09: 0000000000000000 [ 935.525138][T14596] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 935.525378][T14596] R13: 0000000069cbe7ee R14: 0000000000000004 R15: 000000000049d620 | [ 935.597995][T14600] ------------[ cut here ]------------ | [ 935.598229][T14600] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#2: ip/14600 | [ 935.598610][T14600] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 935.599826][T14600] Tainted: [W]=WARN [ 935.599993][T14600] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 935.600216][T14600] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 935.600417][T14600] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 935.600964][T14600] RSP: 0018:ffa00000036675d0 EFLAGS: 00010286 [ 935.601203][T14600] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe2200001ea0767 [ 935.601474][T14600] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100000f503b38 [ 935.601723][T14600] RBP: 1ff40000006ccebb R08: 1fe2200001ea0768 R09: fffa3bfffffb0b24 [ 935.601985][T14600] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100000f502e74 [ 935.602243][T14600] R13: ff1100000f502e40 R14: ffffffff931c7940 R15: ff1100000f503a80 [ 935.602497][T14600] FS: 00007fc293cb3440(0000) GS:ff110000a31b8000(0000) knlGS:0000000000000000 [ 935.602825][T14600] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 935.603065][T14600] CR2: 000000000044f720 CR3: 000000000c909005 CR4: 0000000000771ef0 [ 935.603317][T14600] PKRU: 55555554 [ 935.603475][T14600] Call Trace: [ 935.603625][T14600] [ 935.603742][T14600] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 935.603946][T14600] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 935.604142][T14600] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 935.604328][T14600] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 935.604527][T14600] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 935.604731][T14600] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 935.604927][T14600] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 935.605114][T14600] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 935.605299][T14600] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 935.605492][T14600] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 935.605677][T14600] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 935.605858][T14600] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 935.606054][T14600] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 935.606249][T14600] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 935.606436][T14600] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 935.606622][T14600] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 935.606807][T14600] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 935.607014][T14600] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 935.607210][T14600] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 935.607404][T14600] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 935.607602][T14600] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 935.607788][T14600] ? copy_msghdr_from_user (net/socket.c:2525) [ 935.607998][T14600] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 935.608218][T14600] ? move_addr_to_kernel (net/socket.c:2511) [ 935.608411][T14600] ? filemap_map_folio_range (mm/filemap.c:3873) [ 935.608602][T14600] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 935.608791][T14600] ___sys_sendmsg (net/socket.c:2641) [ 935.609008][T14600] ? copy_msghdr_from_user (net/socket.c:2628) [ 935.609203][T14600] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 935.609405][T14600] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 935.609599][T14600] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 935.609789][T14600] ? __sys_sendmsg_sock (net/socket.c:2656) [ 935.609997][T14600] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 935.610187][T14600] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 935.610394][T14600] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 935.610593][T14600] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 935.610782][T14600] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 935.610984][T14600] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 935.611213][T14600] RIP: 0033:0x7fc293e0dc5e [ 935.611420][T14600] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 935.611995][T14600] RSP: 002b:00007ffe25d822e0 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 935.612264][T14600] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007fc293e0dc5e [ 935.612532][T14600] RDX: 0000000000000000 RSI: 00007ffe25d823a0 RDI: 0000000000000005 [ 935.612791][T14600] RBP: 00007ffe25d822f0 R08: 0000000000000000 R09: 0000000000000000 [ 935.613067][T14600] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 935.613332][T14600] R13: 0000000069cbe7ef R14: 0000000000000004 R15: 000000000049d620 | [ 935.688278][T14606] ------------[ cut here ]------------ | [ 935.688452][T14606] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#0: ip/14606 | [ 935.688692][T14606] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 935.689853][T14606] Tainted: [W]=WARN [ 935.689966][T14606] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 935.690143][T14606] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 935.690289][T14606] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 935.690829][T14606] RSP: 0018:ffa00000035975d0 EFLAGS: 00010286 [ 935.691014][T14606] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe2200001ea04c7 [ 935.691223][T14606] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100000f502638 [ 935.691430][T14606] RBP: 1ff40000006b2ebb R08: 1fe2200001ea04c8 R09: fffa3bfffffb0b24 [ 935.691630][T14606] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100000f502774 [ 935.691848][T14606] R13: ff1100000f502740 R14: ffffffff931c7940 R15: ff1100000f502580 [ 935.692074][T14606] FS: 00007f6829031440(0000) GS:ff110000a30b8000(0000) knlGS:0000000000000000 [ 935.692314][T14606] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 935.692491][T14606] CR2: 000000000044f720 CR3: 00000000102a8004 CR4: 0000000000771ef0 [ 935.692697][T14606] PKRU: 55555554 [ 935.692799][T14606] Call Trace: [ 935.692907][T14606] [ 935.692977][T14606] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 935.693115][T14606] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 935.693259][T14606] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 935.693412][T14606] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 935.693570][T14606] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 935.693711][T14606] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 935.693846][T14606] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 935.693997][T14606] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 935.694131][T14606] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 935.694265][T14606] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 935.694416][T14606] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 935.694554][T14606] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 935.694701][T14606] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 935.694842][T14606] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 935.694986][T14606] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 935.695125][T14606] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 935.695285][T14606] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 935.695432][T14606] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 935.695575][T14606] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 935.695713][T14606] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 935.695852][T14606] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 935.695999][T14606] ? copy_msghdr_from_user (net/socket.c:2525) [ 935.696144][T14606] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 935.696349][T14606] ? move_addr_to_kernel (net/socket.c:2511) [ 935.696495][T14606] ? filemap_map_folio_range (mm/filemap.c:3873) [ 935.696639][T14606] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 935.696781][T14606] ___sys_sendmsg (net/socket.c:2641) [ 935.696925][T14606] ? copy_msghdr_from_user (net/socket.c:2628) [ 935.697106][T14606] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 935.697241][T14606] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 935.697375][T14606] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 935.697513][T14606] ? __sys_sendmsg_sock (net/socket.c:2656) [ 935.697647][T14606] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 935.697781][T14606] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 935.697922][T14606] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 935.698065][T14606] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 935.698202][T14606] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 935.698342][T14606] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 935.698527][T14606] RIP: 0033:0x7f682918bc5e [ 935.698667][T14606] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 935.699148][T14606] RSP: 002b:00007ffee9abc5a0 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 935.699350][T14606] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007f682918bc5e [ 935.699561][T14606] RDX: 0000000000000000 RSI: 00007ffee9abc660 RDI: 0000000000000005 [ 935.699763][T14606] RBP: 00007ffee9abc5b0 R08: 0000000000000000 R09: 0000000000000000 [ 935.699967][T14606] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 935.700167][T14606] R13: 0000000069cbe7ef R14: 0000000000000004 R15: 000000000049d620 | [ 935.773745][T14610] ------------[ cut here ]------------ | [ 935.773944][T14610] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#0: ip/14610 | [ 935.774210][T14610] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 935.775071][T14610] Tainted: [W]=WARN [ 935.775183][T14610] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 935.775365][T14610] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 935.775560][T14610] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 935.776113][T14610] RSP: 0018:ffa00000035c75d0 EFLAGS: 00010286 [ 935.776301][T14610] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe220000372596f [ 935.776536][T14610] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001b92cb78 [ 935.776772][T14610] RBP: 1ff40000006b8ebb R08: 1fe2200003725970 R09: fffa3bfffffb0b24 [ 935.777010][T14610] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001b92c934 [ 935.777249][T14610] R13: ff1100001b92c900 R14: ffffffff931c7940 R15: ff1100001b92cac0 [ 935.777480][T14610] FS: 00007f8a916e2440(0000) GS:ff110000a30b8000(0000) knlGS:0000000000000000 [ 935.777748][T14610] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 935.777943][T14610] CR2: 000000000044f720 CR3: 000000001a6e6006 CR4: 0000000000771ef0 [ 935.778168][T14610] PKRU: 55555554 [ 935.778280][T14610] Call Trace: [ 935.778397][T14610] [ 935.778495][T14610] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 935.778643][T14610] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 935.778794][T14610] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 935.778955][T14610] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 935.779121][T14610] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 935.779267][T14610] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 935.779421][T14610] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 935.779560][T14610] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 935.779694][T14610] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 935.779828][T14610] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 935.780034][T14610] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 935.780171][T14610] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 935.780407][T14610] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 935.780540][T14610] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 935.780674][T14610] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 935.780817][T14610] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 935.781019][T14610] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 935.781186][T14610] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 935.781319][T14610] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 935.781461][T14610] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 935.781602][T14610] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 935.781763][T14610] ? copy_msghdr_from_user (net/socket.c:2525) [ 935.781957][T14610] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 935.782127][T14610] ? move_addr_to_kernel (net/socket.c:2511) [ 935.782263][T14610] ? filemap_map_folio_range (mm/filemap.c:3873) [ 935.782407][T14610] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 935.782555][T14610] ___sys_sendmsg (net/socket.c:2641) [ 935.782693][T14610] ? copy_msghdr_from_user (net/socket.c:2628) [ 935.782840][T14610] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 935.783033][T14610] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 935.783174][T14610] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 935.783311][T14610] ? __sys_sendmsg_sock (net/socket.c:2656) [ 935.783463][T14610] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 935.783647][T14610] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 935.783792][T14610] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 935.784002][T14610] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 935.784144][T14610] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 935.784278][T14610] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 935.784467][T14610] RIP: 0033:0x7f8a9183cc5e [ 935.784613][T14610] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 935.785185][T14610] RSP: 002b:00007fff643778b0 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 935.785406][T14610] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007f8a9183cc5e [ 935.785614][T14610] RDX: 0000000000000000 RSI: 00007fff64377970 RDI: 0000000000000005 [ 935.785831][T14610] RBP: 00007fff643778c0 R08: 0000000000000000 R09: 0000000000000000 [ 935.786112][T14610] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 935.786366][T14610] R13: 0000000069cbe7ef R14: 0000000000000004 R15: 000000000049d620 | [ 935.861728][T14616] ------------[ cut here ]------------ | [ 935.861921][T14616] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#0: ip/14616 | [ 935.862182][T14616] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 935.863013][T14616] Tainted: [W]=WARN [ 935.863121][T14616] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 935.863303][T14616] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 935.863461][T14616] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 935.863991][T14616] RSP: 0018:ffa00000036a75d0 EFLAGS: 00010286 [ 935.864186][T14616] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe2200003725a17 [ 935.864423][T14616] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001b92d0b8 [ 935.864671][T14616] RBP: 1ff40000006d4ebb R08: 1fe2200003725a18 R09: fffa3bfffffb0b24 [ 935.864883][T14616] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001b92ce74 [ 935.865114][T14616] R13: ff1100001b92ce40 R14: ffffffff931c7940 R15: ff1100001b92d000 [ 935.865334][T14616] FS: 00007f2d2f57d440(0000) GS:ff110000a30b8000(0000) knlGS:0000000000000000 [ 935.865596][T14616] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 935.865782][T14616] CR2: 000000000044f720 CR3: 0000000010a77003 CR4: 0000000000771ef0 [ 935.866083][T14616] PKRU: 55555554 [ 935.866187][T14616] Call Trace: [ 935.866325][T14616] [ 935.866412][T14616] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 935.866554][T14616] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 935.866710][T14616] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 935.866965][T14616] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 935.867104][T14616] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 935.867242][T14616] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 935.867381][T14616] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 935.867589][T14616] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 935.867730][T14616] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 935.867871][T14616] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 935.868020][T14616] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 935.868167][T14616] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 935.868317][T14616] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 935.868467][T14616] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 935.868608][T14616] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 935.868754][T14616] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 935.868907][T14616] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 935.869058][T14616] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 935.869200][T14616] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 935.869349][T14616] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 935.869504][T14616] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 935.869650][T14616] ? copy_msghdr_from_user (net/socket.c:2525) [ 935.869805][T14616] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 935.869993][T14616] ? move_addr_to_kernel (net/socket.c:2511) [ 935.870131][T14616] ? filemap_map_folio_range (mm/filemap.c:3873) [ 935.870302][T14616] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 935.870459][T14616] ___sys_sendmsg (net/socket.c:2641) [ 935.870600][T14616] ? copy_msghdr_from_user (net/socket.c:2628) [ 935.870751][T14616] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 935.870907][T14616] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 935.871047][T14616] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 935.871188][T14616] ? __sys_sendmsg_sock (net/socket.c:2656) [ 935.871328][T14616] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 935.871483][T14616] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 935.871635][T14616] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 935.871780][T14616] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 935.871931][T14616] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 935.872075][T14616] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 935.872255][T14616] RIP: 0033:0x7f2d2f6d7c5e [ 935.872427][T14616] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 935.872957][T14616] RSP: 002b:00007ffe10c614a0 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 935.873180][T14616] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007f2d2f6d7c5e [ 935.873407][T14616] RDX: 0000000000000000 RSI: 00007ffe10c61560 RDI: 0000000000000005 [ 935.873628][T14616] RBP: 00007ffe10c614b0 R08: 0000000000000000 R09: 0000000000000000 [ 935.873842][T14616] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 935.874083][T14616] R13: 0000000069cbe7ef R14: 0000000000000004 R15: 000000000049d620 | [ 935.952517][T14620] ------------[ cut here ]------------ | [ 935.952704][T14620] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#3: ip/14620 | [ 935.952977][T14620] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 935.953833][T14620] Tainted: [W]=WARN [ 935.953947][T14620] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 935.954126][T14620] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 935.954274][T14620] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 935.954780][T14620] RSP: 0018:ffa00000035375d0 EFLAGS: 00010286 [ 935.954967][T14620] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe22000036f19df [ 935.955173][T14620] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001b78cef8 [ 935.955389][T14620] RBP: 1ff40000006a6ebb R08: 1fe22000036f19e0 R09: fffa3bfffffb0b24 [ 935.955615][T14620] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001b78de34 [ 935.955828][T14620] R13: ff1100001b78de00 R14: ffffffff931c7940 R15: ff1100001b78ce40 [ 935.956046][T14620] FS: 00007f5d9e1d0440(0000) GS:ff110000a3238000(0000) knlGS:0000000000000000 [ 935.956286][T14620] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 935.956480][T14620] CR2: 000000000044f720 CR3: 000000001b10b001 CR4: 0000000000771ef0 [ 935.956695][T14620] PKRU: 55555554 [ 935.956801][T14620] Call Trace: [ 935.956911][T14620] [ 935.956982][T14620] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 935.957121][T14620] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 935.957266][T14620] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 935.957409][T14620] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 935.957548][T14620] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 935.957687][T14620] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 935.957828][T14620] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 935.958061][T14620] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 935.958203][T14620] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 935.958345][T14620] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 935.958494][T14620] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 935.958630][T14620] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 935.958772][T14620] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 935.958969][T14620] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 935.959104][T14620] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 935.959240][T14620] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 935.959395][T14620] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 935.959546][T14620] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 935.959691][T14620] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 935.959832][T14620] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 935.960035][T14620] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 935.960177][T14620] ? copy_msghdr_from_user (net/socket.c:2525) [ 935.960314][T14620] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 935.960491][T14620] ? move_addr_to_kernel (net/socket.c:2511) [ 935.960628][T14620] ? filemap_map_folio_range (mm/filemap.c:3873) [ 935.960767][T14620] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 935.960957][T14620] ___sys_sendmsg (net/socket.c:2641) [ 935.961093][T14620] ? copy_msghdr_from_user (net/socket.c:2628) [ 935.961232][T14620] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 935.961370][T14620] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 935.961514][T14620] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 935.961649][T14620] ? __sys_sendmsg_sock (net/socket.c:2656) [ 935.961790][T14620] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 935.961980][T14620] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 935.962115][T14620] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 935.962251][T14620] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 935.962389][T14620] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 935.962531][T14620] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 935.962696][T14620] RIP: 0033:0x7f5d9e32ac5e [ 935.962839][T14620] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 935.963374][T14620] RSP: 002b:00007ffc63bbb500 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 935.963584][T14620] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007f5d9e32ac5e [ 935.963783][T14620] RDX: 0000000000000000 RSI: 00007ffc63bbb5c0 RDI: 0000000000000005 [ 935.964039][T14620] RBP: 00007ffc63bbb510 R08: 0000000000000000 R09: 0000000000000000 [ 935.964239][T14620] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 935.964446][T14620] R13: 0000000069cbe7ef R14: 0000000000000004 R15: 000000000049d620 | [ 936.040876][T14626] ------------[ cut here ]------------ | [ 936.041948][T14626] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#3: ip/14626 | [ 936.042192][T14626] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 936.043039][T14626] Tainted: [W]=WARN [ 936.043143][T14626] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 936.043319][T14626] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 936.043467][T14626] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 936.044046][T14626] RSP: 0018:ffa00000035975d0 EFLAGS: 00010286 [ 936.044224][T14626] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe22000036f18c7 [ 936.044432][T14626] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001b78c638 [ 936.044636][T14626] RBP: 1ff40000006b2ebb R08: 1fe22000036f18c8 R09: fffa3bfffffb0b24 [ 936.044847][T14626] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001b78c234 [ 936.045125][T14626] R13: ff1100001b78c200 R14: ffffffff931c7940 R15: ff1100001b78c580 [ 936.045332][T14626] FS: 00007f6d6708f440(0000) GS:ff110000a3238000(0000) knlGS:0000000000000000 [ 936.045581][T14626] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 936.045760][T14626] CR2: 000000000044f720 CR3: 00000000100bd001 CR4: 0000000000771ef0 [ 936.046022][T14626] PKRU: 55555554 [ 936.046131][T14626] Call Trace: [ 936.046237][T14626] [ 936.046311][T14626] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 936.046459][T14626] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 936.046610][T14626] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 936.046752][T14626] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 936.046902][T14626] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 936.047049][T14626] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 936.047193][T14626] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 936.047334][T14626] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 936.047481][T14626] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 936.047623][T14626] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 936.047767][T14626] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 936.047910][T14626] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 936.048053][T14626] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 936.048194][T14626] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 936.048335][T14626] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 936.048484][T14626] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 936.048626][T14626] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 936.048771][T14626] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 936.048915][T14626] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 936.049069][T14626] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 936.049220][T14626] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 936.049361][T14626] ? copy_msghdr_from_user (net/socket.c:2525) [ 936.049505][T14626] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 936.049677][T14626] ? move_addr_to_kernel (net/socket.c:2511) [ 936.049810][T14626] ? filemap_map_folio_range (mm/filemap.c:3873) [ 936.049951][T14626] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 936.050089][T14626] ___sys_sendmsg (net/socket.c:2641) [ 936.050234][T14626] ? copy_msghdr_from_user (net/socket.c:2628) [ 936.050379][T14626] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 936.050528][T14626] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 936.050669][T14626] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 936.050810][T14626] ? __sys_sendmsg_sock (net/socket.c:2656) [ 936.050959][T14626] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 936.051115][T14626] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 936.051251][T14626] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 936.051390][T14626] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 936.051526][T14626] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 936.051662][T14626] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 936.051829][T14626] RIP: 0033:0x7f6d671e9c5e [ 936.051979][T14626] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 936.052468][T14626] RSP: 002b:00007ffe63ecd510 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 936.052674][T14626] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007f6d671e9c5e [ 936.052878][T14626] RDX: 0000000000000000 RSI: 00007ffe63ecd5d0 RDI: 0000000000000005 [ 936.053097][T14626] RBP: 00007ffe63ecd520 R08: 0000000000000000 R09: 0000000000000000 [ 936.053295][T14626] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 936.053501][T14626] R13: 0000000069cbe7ef R14: 0000000000000004 R15: 000000000049d620 | [ 936.127820][T14630] ------------[ cut here ]------------ | [ 936.128033][T14630] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#0: ip/14630 | [ 936.128328][T14630] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 936.129204][T14630] Tainted: [W]=WARN [ 936.129317][T14630] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 936.129509][T14630] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 936.129665][T14630] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 936.130217][T14630] RSP: 0018:ffa00000036875d0 EFLAGS: 00010286 [ 936.130415][T14630] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe220000387516f [ 936.130642][T14630] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001c3a8b78 [ 936.130868][T14630] RBP: 1ff40000006d0ebb R08: 1fe2200003875170 R09: fffa3bfffffb0b24 [ 936.131546][T14630] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001c3a8074 [ 936.131773][T14630] R13: ff1100001c3a8040 R14: ffffffff931c7940 R15: ff1100001c3a8ac0 [ 936.132005][T14630] FS: 00007f1e04bf2440(0000) GS:ff110000a30b8000(0000) knlGS:0000000000000000 [ 936.132258][T14630] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 936.132471][T14630] CR2: 000000000044f720 CR3: 0000000017e56005 CR4: 0000000000771ef0 [ 936.132689][T14630] PKRU: 55555554 [ 936.132800][T14630] Call Trace: [ 936.132914][T14630] [ 936.132992][T14630] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 936.133133][T14630] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 936.133300][T14630] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 936.133451][T14630] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 936.133590][T14630] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 936.133730][T14630] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 936.133875][T14630] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 936.134350][T14630] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 936.134513][T14630] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 936.134660][T14630] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 936.134806][T14630] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 936.135208][T14630] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 936.135350][T14630] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 936.135494][T14630] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 936.135635][T14630] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 936.135774][T14630] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 936.135919][T14630] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 936.136059][T14630] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 936.136286][T14630] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 936.136434][T14630] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 936.136581][T14630] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 936.136760][T14630] ? copy_msghdr_from_user (net/socket.c:2525) [ 936.136902][T14630] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 936.137068][T14630] ? move_addr_to_kernel (net/socket.c:2511) [ 936.137203][T14630] ? filemap_map_folio_range (mm/filemap.c:3873) [ 936.137350][T14630] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 936.137516][T14630] ___sys_sendmsg (net/socket.c:2641) [ 936.137651][T14630] ? copy_msghdr_from_user (net/socket.c:2628) [ 936.137792][T14630] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 936.137945][T14630] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 936.138082][T14630] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 936.138216][T14630] ? __sys_sendmsg_sock (net/socket.c:2656) [ 936.138365][T14630] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 936.138512][T14630] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 936.138651][T14630] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 936.138793][T14630] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 936.138939][T14630] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 936.139081][T14630] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 936.139257][T14630] RIP: 0033:0x7f1e04d4cc5e [ 936.139415][T14630] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 936.139924][T14630] RSP: 002b:00007fff3c5b1930 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 936.140144][T14630] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007f1e04d4cc5e [ 936.140364][T14630] RDX: 0000000000000000 RSI: 00007fff3c5b19f0 RDI: 0000000000000005 [ 936.140593][T14630] RBP: 00007fff3c5b1940 R08: 0000000000000000 R09: 0000000000000000 [ 936.140815][T14630] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 936.141031][T14630] R13: 0000000069cbe7ef R14: 0000000000000004 R15: 000000000049d620 | [ 936.210321][T14636] ------------[ cut here ]------------ | [ 936.210544][T14636] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#2: ip/14636 | [ 936.210853][T14636] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 936.211821][T14636] Tainted: [W]=WARN [ 936.212007][T14636] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 936.212247][T14636] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 936.212491][T14636] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 936.213080][T14636] RSP: 0018:ffa00000035c75d0 EFLAGS: 00010286 [ 936.213313][T14636] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe220000387508f [ 936.213608][T14636] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001c3a8478 [ 936.213873][T14636] RBP: 1ff40000006b8ebb R08: 1fe2200003875090 R09: fffa3bfffffb0b24 [ 936.214143][T14636] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001c3a9c74 [ 936.214407][T14636] R13: ff1100001c3a9c40 R14: ffffffff931c7940 R15: ff1100001c3a83c0 [ 936.214681][T14636] FS: 00007f0ce410d440(0000) GS:ff110000a31b8000(0000) knlGS:0000000000000000 [ 936.215032][T14636] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 936.215275][T14636] CR2: 000000000044f720 CR3: 000000001a6e6002 CR4: 0000000000771ef0 [ 936.215550][T14636] PKRU: 55555554 [ 936.215724][T14636] Call Trace: [ 936.215886][T14636] [ 936.216018][T14636] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 936.216204][T14636] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 936.216411][T14636] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 936.216600][T14636] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 936.216785][T14636] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 936.216982][T14636] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 936.217167][T14636] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 936.217355][T14636] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 936.217557][T14636] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 936.217742][T14636] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 936.217947][T14636] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 936.218132][T14636] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 936.218319][T14636] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 936.218512][T14636] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 936.218695][T14636] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 936.218914][T14636] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 936.219106][T14636] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 936.219303][T14636] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 936.219511][T14636] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 936.219705][T14636] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 936.219912][T14636] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 936.220103][T14636] ? copy_msghdr_from_user (net/socket.c:2525) [ 936.220307][T14636] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 936.220532][T14636] ? move_addr_to_kernel (net/socket.c:2511) [ 936.220720][T14636] ? filemap_map_folio_range (mm/filemap.c:3873) [ 936.220920][T14636] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 936.221110][T14636] ___sys_sendmsg (net/socket.c:2641) [ 936.221297][T14636] ? copy_msghdr_from_user (net/socket.c:2628) [ 936.221496][T14636] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 936.221700][T14636] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 936.221909][T14636] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 936.222093][T14636] ? __sys_sendmsg_sock (net/socket.c:2656) [ 936.222282][T14636] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 936.222473][T14636] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 936.222660][T14636] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 936.222851][T14636] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 936.223051][T14636] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 936.223236][T14636] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 936.223473][T14636] RIP: 0033:0x7f0ce4267c5e [ 936.223664][T14636] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 936.224218][T14636] RSP: 002b:00007ffdc15e9850 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 936.224490][T14636] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007f0ce4267c5e [ 936.224758][T14636] RDX: 0000000000000000 RSI: 00007ffdc15e9910 RDI: 0000000000000005 [ 936.225044][T14636] RBP: 00007ffdc15e9860 R08: 0000000000000000 R09: 0000000000000000 [ 936.225305][T14636] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 936.225568][T14636] R13: 0000000069cbe7ef R14: 0000000000000004 R15: 000000000049d620 | [ 936.291336][T14640] ------------[ cut here ]------------ | [ 936.291584][T14640] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#2: ip/14640 | [ 936.291925][T14640] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 936.292869][T14640] Tainted: [W]=WARN [ 936.293044][T14640] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 936.293304][T14640] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 936.293546][T14640] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 936.294226][T14640] RSP: 0018:ffa00000036875d0 EFLAGS: 00010286 [ 936.294535][T14640] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe220000192e96f [ 936.294856][T14640] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100000c974b78 [ 936.295181][T14640] RBP: 1ff40000006d0ebb R08: 1fe220000192e970 R09: fffa3bfffffb0b24 [ 936.295510][T14640] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100000c9745b4 [ 936.295791][T14640] R13: ff1100000c974580 R14: ffffffff931c7940 R15: ff1100000c974ac0 [ 936.296119][T14640] FS: 00007fd2dc10b440(0000) GS:ff110000a31b8000(0000) knlGS:0000000000000000 [ 936.296475][T14640] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 936.296709][T14640] CR2: 000000000044f720 CR3: 000000001a6e6006 CR4: 0000000000771ef0 [ 936.296982][T14640] PKRU: 55555554 [ 936.297164][T14640] Call Trace: [ 936.297359][T14640] [ 936.297524][T14640] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 936.297748][T14640] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 936.297959][T14640] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 936.298179][T14640] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 936.298424][T14640] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 936.298652][T14640] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 936.298870][T14640] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 936.299081][T14640] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 936.299306][T14640] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 936.299550][T14640] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 936.299776][T14640] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 936.299990][T14640] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 936.300191][T14640] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 936.300433][T14640] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 936.300678][T14640] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 936.300921][T14640] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 936.301120][T14640] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 936.301309][T14640] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 936.301542][T14640] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 936.301781][T14640] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 936.302028][T14640] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 936.302235][T14640] ? copy_msghdr_from_user (net/socket.c:2525) [ 936.302436][T14640] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 936.302688][T14640] ? move_addr_to_kernel (net/socket.c:2511) [ 936.302875][T14640] ? filemap_map_folio_range (mm/filemap.c:3873) [ 936.303075][T14640] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 936.303266][T14640] ___sys_sendmsg (net/socket.c:2641) [ 936.303461][T14640] ? copy_msghdr_from_user (net/socket.c:2628) [ 936.303651][T14640] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 936.303845][T14640] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 936.304046][T14640] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 936.304247][T14640] ? __sys_sendmsg_sock (net/socket.c:2656) [ 936.304447][T14640] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 936.304634][T14640] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 936.304821][T14640] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 936.305019][T14640] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 936.305242][T14640] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 936.305501][T14640] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 936.305746][T14640] RIP: 0033:0x7fd2dc265c5e [ 936.305980][T14640] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 936.306540][T14640] RSP: 002b:00007ffdd6c40c20 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 936.306797][T14640] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007fd2dc265c5e [ 936.307062][T14640] RDX: 0000000000000000 RSI: 00007ffdd6c40ce0 RDI: 0000000000000005 [ 936.307312][T14640] RBP: 00007ffdd6c40c30 R08: 0000000000000000 R09: 0000000000000000 [ 936.307566][T14640] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 936.307818][T14640] R13: 0000000069cbe7ef R14: 0000000000000004 R15: 000000000049d620 | [ 936.397649][T14646] ------------[ cut here ]------------ | [ 936.397844][T14646] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#2: ip/14646 | [ 936.398167][T14646] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 936.399156][T14646] Tainted: [W]=WARN [ 936.399395][T14646] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 936.399686][T14646] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 936.399999][T14646] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 936.400674][T14646] RSP: 0018:ffa00000036b75d0 EFLAGS: 00010286 [ 936.400994][T14646] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe220000192eb9f [ 936.401326][T14646] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100000c975cf8 [ 936.401722][T14646] RBP: 1ff40000006d6ebb R08: 1fe220000192eba0 R09: fffa3bfffffb0b24 [ 936.402008][T14646] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100000c975034 [ 936.402279][T14646] R13: ff1100000c975000 R14: ffffffff931c7940 R15: ff1100000c975c40 [ 936.402558][T14646] FS: 00007fdb717c6440(0000) GS:ff110000a31b8000(0000) knlGS:0000000000000000 [ 936.402860][T14646] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 936.403099][T14646] CR2: 000000000044f720 CR3: 0000000010534006 CR4: 0000000000771ef0 [ 936.403366][T14646] PKRU: 55555554 [ 936.403540][T14646] Call Trace: [ 936.403692][T14646] [ 936.403810][T14646] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 936.404016][T14646] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 936.404216][T14646] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 936.404419][T14646] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 936.404612][T14646] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 936.404814][T14646] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 936.405018][T14646] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 936.405218][T14646] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 936.405424][T14646] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 936.405627][T14646] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 936.405822][T14646] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 936.406028][T14646] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 936.406228][T14646] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 936.406427][T14646] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 936.406611][T14646] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 936.406803][T14646] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 936.407011][T14646] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 936.407207][T14646] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 936.407407][T14646] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 936.407597][T14646] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 936.407784][T14646] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 936.407981][T14646] ? copy_msghdr_from_user (net/socket.c:2525) [ 936.408171][T14646] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 936.408393][T14646] ? move_addr_to_kernel (net/socket.c:2511) [ 936.408582][T14646] ? filemap_map_folio_range (mm/filemap.c:3873) [ 936.408776][T14646] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 936.408994][T14646] ___sys_sendmsg (net/socket.c:2641) [ 936.409182][T14646] ? copy_msghdr_from_user (net/socket.c:2628) [ 936.409375][T14646] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 936.409579][T14646] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 936.409768][T14646] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 936.409966][T14646] ? __sys_sendmsg_sock (net/socket.c:2656) [ 936.410154][T14646] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 936.410339][T14646] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 936.410535][T14646] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 936.410719][T14646] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 936.410916][T14646] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 936.411101][T14646] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 936.411317][T14646] RIP: 0033:0x7fdb71920c5e [ 936.411521][T14646] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 936.412058][T14646] RSP: 002b:00007ffcc52623e0 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 936.412351][T14646] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007fdb71920c5e [ 936.412617][T14646] RDX: 0000000000000000 RSI: 00007ffcc52624a0 RDI: 0000000000000005 [ 936.412869][T14646] RBP: 00007ffcc52623f0 R08: 0000000000000000 R09: 0000000000000000 [ 936.413130][T14646] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 936.413377][T14646] R13: 0000000069cbe7ef R14: 0000000000000004 R15: 000000000049d620 | [ 936.479126][T14650] ------------[ cut here ]------------ | [ 936.479281][T14650] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#0: ip/14650 | [ 936.479522][T14650] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 936.480647][T14650] Tainted: [W]=WARN [ 936.480749][T14650] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 936.480930][T14650] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 936.481100][T14650] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 936.481633][T14650] RSP: 0018:ffa00000037075d0 EFLAGS: 00010286 [ 936.481807][T14650] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe2200003229d6f [ 936.482033][T14650] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001914eb78 [ 936.482293][T14650] RBP: 1ff40000006e0ebb R08: 1fe2200003229d70 R09: fffa3bfffffb0b24 [ 936.482506][T14650] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001914e934 [ 936.482711][T14650] R13: ff1100001914e900 R14: ffffffff931c7940 R15: ff1100001914eac0 [ 936.482929][T14650] FS: 00007f39437f8440(0000) GS:ff110000a30b8000(0000) knlGS:0000000000000000 [ 936.483164][T14650] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 936.483330][T14650] CR2: 000000000044f720 CR3: 0000000019274002 CR4: 0000000000771ef0 [ 936.483538][T14650] PKRU: 55555554 [ 936.483640][T14650] Call Trace: [ 936.483739][T14650] [ 936.483808][T14650] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 936.483952][T14650] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 936.484094][T14650] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 936.484230][T14650] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 936.484363][T14650] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 936.484519][T14650] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 936.484651][T14650] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 936.484785][T14650] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 936.484925][T14650] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 936.485060][T14650] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 936.485198][T14650] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 936.485329][T14650] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 936.485467][T14650] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 936.485602][T14650] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 936.485736][T14650] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 936.485871][T14650] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 936.486007][T14650] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 936.486142][T14650] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 936.486277][T14650] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 936.486416][T14650] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 936.486553][T14650] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 936.486689][T14650] ? copy_msghdr_from_user (net/socket.c:2525) [ 936.486821][T14650] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 936.486995][T14650] ? move_addr_to_kernel (net/socket.c:2511) [ 936.487129][T14650] ? filemap_map_folio_range (mm/filemap.c:3873) [ 936.487261][T14650] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 936.487400][T14650] ___sys_sendmsg (net/socket.c:2641) [ 936.487534][T14650] ? copy_msghdr_from_user (net/socket.c:2628) [ 936.487672][T14650] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 936.487809][T14650] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 936.487951][T14650] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 936.488086][T14650] ? __sys_sendmsg_sock (net/socket.c:2656) [ 936.488222][T14650] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 936.488353][T14650] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 936.488491][T14650] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 936.488624][T14650] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 936.488756][T14650] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 936.488909][T14650] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 936.489081][T14650] RIP: 0033:0x7f3943952c5e [ 936.489220][T14650] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 936.489699][T14650] RSP: 002b:00007ffeeba05220 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 936.489906][T14650] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007f3943952c5e [ 936.490107][T14650] RDX: 0000000000000000 RSI: 00007ffeeba052e0 RDI: 0000000000000005 [ 936.490307][T14650] RBP: 00007ffeeba05230 R08: 0000000000000000 R09: 0000000000000000 [ 936.490511][T14650] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 936.490710][T14650] R13: 0000000069cbe7ef R14: 0000000000000004 R15: 000000000049d620 | [ 936.556963][T14656] ------------[ cut here ]------------ | [ 936.557122][T14656] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#0: ip/14656 | [ 936.557394][T14656] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 936.558961][T14656] Tainted: [W]=WARN [ 936.559096][T14656] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 936.559291][T14656] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 936.559480][T14656] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 936.560036][T14656] RSP: 0018:ffa00000036e75d0 EFLAGS: 00010286 [ 936.560215][T14656] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe2200003229ddf [ 936.560462][T14656] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001914eef8 [ 936.560695][T14656] RBP: 1ff40000006dcebb R08: 1fe2200003229de0 R09: fffa3bfffffb0b24 [ 936.560914][T14656] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001914f3b4 [ 936.561125][T14656] R13: ff1100001914f380 R14: ffffffff931c7940 R15: ff1100001914ee40 [ 936.561341][T14656] FS: 00007fedac8f4440(0000) GS:ff110000a30b8000(0000) knlGS:0000000000000000 [ 936.561599][T14656] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 936.561782][T14656] CR2: 000000000044f720 CR3: 0000000010b67002 CR4: 0000000000771ef0 [ 936.562008][T14656] PKRU: 55555554 [ 936.562118][T14656] Call Trace: [ 936.562236][T14656] [ 936.562312][T14656] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 936.562461][T14656] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 936.562629][T14656] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 936.562781][T14656] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 936.562923][T14656] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 936.563079][T14656] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 936.563233][T14656] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 936.563370][T14656] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 936.563512][T14656] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 936.563655][T14656] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 936.563835][T14656] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 936.563987][T14656] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 936.564132][T14656] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 936.564272][T14656] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 936.564419][T14656] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 936.564553][T14656] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 936.564700][T14656] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 936.564838][T14656] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 936.564977][T14656] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 936.565112][T14656] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 936.565253][T14656] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 936.565403][T14656] ? copy_msghdr_from_user (net/socket.c:2525) [ 936.565545][T14656] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 936.565723][T14656] ? move_addr_to_kernel (net/socket.c:2511) [ 936.565859][T14656] ? filemap_map_folio_range (mm/filemap.c:3873) [ 936.565998][T14656] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 936.566142][T14656] ___sys_sendmsg (net/socket.c:2641) [ 936.566279][T14656] ? copy_msghdr_from_user (net/socket.c:2628) [ 936.566430][T14656] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 936.566572][T14656] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 936.566712][T14656] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 936.566851][T14656] ? __sys_sendmsg_sock (net/socket.c:2656) [ 936.567001][T14656] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 936.567150][T14656] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 936.567284][T14656] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 936.567431][T14656] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 936.567579][T14656] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 936.567719][T14656] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 936.567890][T14656] RIP: 0033:0x7fedaca4ec5e [ 936.568039][T14656] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 936.568549][T14656] RSP: 002b:00007ffd3afa3d90 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 936.568768][T14656] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007fedaca4ec5e [ 936.568984][T14656] RDX: 0000000000000000 RSI: 00007ffd3afa3e50 RDI: 0000000000000005 [ 936.569182][T14656] RBP: 00007ffd3afa3da0 R08: 0000000000000000 R09: 0000000000000000 [ 936.569389][T14656] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 936.569608][T14656] R13: 0000000069cbe7f0 R14: 0000000000000004 R15: 000000000049d620 | [ 936.640581][T14660] ------------[ cut here ]------------ | [ 936.640752][T14660] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#0: ip/14660 | [ 936.641074][T14660] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 936.641842][T14660] Tainted: [W]=WARN [ 936.642008][T14660] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 936.642175][T14660] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 936.642318][T14660] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 936.643075][T14660] RSP: 0018:ffa00000037775d0 EFLAGS: 00010286 [ 936.643266][T14660] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe22000034c23d7 [ 936.643497][T14660] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001a611eb8 [ 936.643736][T14660] RBP: 1ff40000006eeebb R08: 1fe22000034c23d8 R09: fffa3bfffffb0b24 [ 936.644006][T14660] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001a611c74 [ 936.644242][T14660] R13: ff1100001a611c40 R14: ffffffff931c7940 R15: ff1100001a611e00 [ 936.644494][T14660] FS: 00007fc7d8491440(0000) GS:ff110000a30b8000(0000) knlGS:0000000000000000 [ 936.644776][T14660] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 936.644978][T14660] CR2: 000000000044f720 CR3: 000000000c52a004 CR4: 0000000000771ef0 [ 936.645214][T14660] PKRU: 55555554 [ 936.645319][T14660] Call Trace: [ 936.645425][T14660] [ 936.645500][T14660] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 936.645654][T14660] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 936.645823][T14660] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 936.645993][T14660] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 936.646159][T14660] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 936.646304][T14660] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 936.646443][T14660] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 936.646595][T14660] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 936.646745][T14660] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 936.646902][T14660] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 936.647071][T14660] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 936.647234][T14660] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 936.647404][T14660] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 936.647545][T14660] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 936.647679][T14660] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 936.647827][T14660] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 936.647975][T14660] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 936.648119][T14660] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 936.648262][T14660] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 936.648414][T14660] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 936.648557][T14660] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 936.648697][T14660] ? copy_msghdr_from_user (net/socket.c:2525) [ 936.648835][T14660] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 936.649013][T14660] ? move_addr_to_kernel (net/socket.c:2511) [ 936.649155][T14660] ? filemap_map_folio_range (mm/filemap.c:3873) [ 936.649295][T14660] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 936.649449][T14660] ___sys_sendmsg (net/socket.c:2641) [ 936.649588][T14660] ? copy_msghdr_from_user (net/socket.c:2628) [ 936.649732][T14660] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 936.649873][T14660] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 936.650016][T14660] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 936.650155][T14660] ? __sys_sendmsg_sock (net/socket.c:2656) [ 936.650299][T14660] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 936.650472][T14660] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 936.650612][T14660] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 936.650751][T14660] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 936.650898][T14660] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 936.651038][T14660] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 936.651211][T14660] RIP: 0033:0x7fc7d85ebc5e [ 936.651364][T14660] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 936.651872][T14660] RSP: 002b:00007ffec8159f00 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 936.652085][T14660] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007fc7d85ebc5e [ 936.652296][T14660] RDX: 0000000000000000 RSI: 00007ffec8159fc0 RDI: 0000000000000005 [ 936.652512][T14660] RBP: 00007ffec8159f10 R08: 0000000000000000 R09: 0000000000000000 [ 936.652720][T14660] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 936.652933][T14660] R13: 0000000069cbe7f0 R14: 0000000000000004 R15: 000000000049d620 | [ 936.725226][T14666] ------------[ cut here ]------------ | [ 936.725449][T14666] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#2: ip/14666 | [ 936.725738][T14666] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 936.726620][T14666] Tainted: [W]=WARN [ 936.726772][T14666] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 936.727004][T14666] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 936.727197][T14666] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 936.727732][T14666] RSP: 0018:ffa00000037575d0 EFLAGS: 00010286 [ 936.727972][T14666] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe22000034c232f [ 936.728221][T14666] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001a611978 [ 936.728480][T14666] RBP: 1ff40000006eaebb R08: 1fe22000034c2330 R09: fffa3bfffffb0b24 [ 936.728731][T14666] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001a611034 [ 936.728993][T14666] R13: ff1100001a611000 R14: ffffffff931c7940 R15: ff1100001a6118c0 [ 936.729246][T14666] FS: 00007fb467f6c440(0000) GS:ff110000a31b8000(0000) knlGS:0000000000000000 [ 936.729535][T14666] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 936.729754][T14666] CR2: 000000000044f720 CR3: 0000000010541006 CR4: 0000000000771ef0 [ 936.730015][T14666] PKRU: 55555554 [ 936.730165][T14666] Call Trace: [ 936.730317][T14666] [ 936.730446][T14666] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 936.730644][T14666] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 936.730842][T14666] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 936.731043][T14666] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 936.731226][T14666] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 936.731431][T14666] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 936.731634][T14666] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 936.731821][T14666] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 936.732019][T14666] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 936.732205][T14666] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 936.732398][T14666] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 936.732582][T14666] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 936.732767][T14666] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 936.732970][T14666] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 936.733158][T14666] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 936.733352][T14666] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 936.733570][T14666] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 936.733773][T14666] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 936.733992][T14666] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 936.734187][T14666] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 936.734389][T14666] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 936.734579][T14666] ? copy_msghdr_from_user (net/socket.c:2525) [ 936.734764][T14666] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 936.735022][T14666] ? move_addr_to_kernel (net/socket.c:2511) [ 936.735275][T14666] ? filemap_map_folio_range (mm/filemap.c:3873) [ 936.735515][T14666] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 936.735769][T14666] ___sys_sendmsg (net/socket.c:2641) [ 936.735971][T14666] ? copy_msghdr_from_user (net/socket.c:2628) [ 936.736179][T14666] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 936.736368][T14666] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 936.736595][T14666] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 936.736808][T14666] ? __sys_sendmsg_sock (net/socket.c:2656) [ 936.737025][T14666] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 936.737219][T14666] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 936.737454][T14666] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 936.737681][T14666] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 936.737930][T14666] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 936.738149][T14666] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 936.738390][T14666] RIP: 0033:0x7fb4680c6c5e [ 936.738610][T14666] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 936.739183][T14666] RSP: 002b:00007ffda7793a00 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 936.739453][T14666] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007fb4680c6c5e [ 936.739705][T14666] RDX: 0000000000000000 RSI: 00007ffda7793ac0 RDI: 0000000000000005 [ 936.739980][T14666] RBP: 00007ffda7793a10 R08: 0000000000000000 R09: 0000000000000000 [ 936.740242][T14666] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 936.740501][T14666] R13: 0000000069cbe7f0 R14: 0000000000000004 R15: 000000000049d620 | [ 936.823435][T14670] ------------[ cut here ]------------ | [ 936.823603][T14670] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#0: ip/14670 | [ 936.823870][T14670] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 936.825244][T14670] Tainted: [W]=WARN [ 936.825346][T14670] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 936.825521][T14670] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 936.825663][T14670] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 936.826167][T14670] RSP: 0018:ffa00000037875d0 EFLAGS: 00010286 [ 936.826356][T14670] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe2200001ea04ff [ 936.826559][T14670] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100000f5027f8 [ 936.826757][T14670] RBP: 1ff40000006f0ebb R08: 1fe2200001ea0500 R09: fffa3bfffffb0b24 [ 936.826962][T14670] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100000f503734 [ 936.827160][T14670] R13: ff1100000f503700 R14: ffffffff931c7940 R15: ff1100000f502740 [ 936.827388][T14670] FS: 00007f3d65480440(0000) GS:ff110000a30b8000(0000) knlGS:0000000000000000 [ 936.827654][T14670] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 936.827833][T14670] CR2: 000000000044f720 CR3: 000000000c52a006 CR4: 0000000000771ef0 [ 936.828054][T14670] PKRU: 55555554 [ 936.828158][T14670] Call Trace: [ 936.828261][T14670] [ 936.828332][T14670] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 936.828477][T14670] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 936.828624][T14670] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 936.828763][T14670] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 936.828904][T14670] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 936.829045][T14670] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 936.829180][T14670] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 936.829319][T14670] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 936.829462][T14670] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 936.829599][T14670] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 936.829741][T14670] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 936.829881][T14670] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 936.830031][T14670] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 936.830171][T14670] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 936.830309][T14670] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 936.830454][T14670] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 936.830594][T14670] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 936.830728][T14670] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 936.830862][T14670] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 936.830999][T14670] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 936.831133][T14670] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 936.831285][T14670] ? copy_msghdr_from_user (net/socket.c:2525) [ 936.831429][T14670] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 936.831601][T14670] ? move_addr_to_kernel (net/socket.c:2511) [ 936.831743][T14670] ? filemap_map_folio_range (mm/filemap.c:3873) [ 936.831883][T14670] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 936.832030][T14670] ___sys_sendmsg (net/socket.c:2641) [ 936.832168][T14670] ? copy_msghdr_from_user (net/socket.c:2628) [ 936.832310][T14670] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 936.832469][T14670] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 936.832604][T14670] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 936.832736][T14670] ? __sys_sendmsg_sock (net/socket.c:2656) [ 936.832885][T14670] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 936.833029][T14670] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 936.833169][T14670] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 936.833308][T14670] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 936.833457][T14670] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 936.833598][T14670] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 936.833770][T14670] RIP: 0033:0x7f3d655dac5e [ 936.833922][T14670] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 936.834421][T14670] RSP: 002b:00007ffd8573ad60 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 936.834646][T14670] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007f3d655dac5e [ 936.834857][T14670] RDX: 0000000000000000 RSI: 00007ffd8573ae20 RDI: 0000000000000005 [ 936.835068][T14670] RBP: 00007ffd8573ad70 R08: 0000000000000000 R09: 0000000000000000 [ 936.835267][T14670] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 936.835498][T14670] R13: 0000000069cbe7f0 R14: 0000000000000004 R15: 000000000049d620 | [ 936.905179][T14676] ------------[ cut here ]------------ | [ 936.905401][T14676] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#2: ip/14676 | [ 936.905683][T14676] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 936.907221][T14676] Tainted: [W]=WARN [ 936.907463][T14676] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 936.907769][T14676] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 936.907992][T14676] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 936.908546][T14676] RSP: 0018:ffa00000035c75d0 EFLAGS: 00010286 [ 936.908776][T14676] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe2200001ea05df [ 936.909049][T14676] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100000f502ef8 [ 936.909336][T14676] RBP: 1ff40000006b8ebb R08: 1fe2200001ea05e0 R09: fffa3bfffffb0b24 [ 936.909590][T14676] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100000f5033b4 [ 936.909879][T14676] R13: ff1100000f503380 R14: ffffffff931c7940 R15: ff1100000f502e40 [ 936.910164][T14676] FS: 00007fafdc203440(0000) GS:ff110000a31b8000(0000) knlGS:0000000000000000 [ 936.910465][T14676] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 936.910718][T14676] CR2: 000000000044f720 CR3: 000000000c7b1003 CR4: 0000000000771ef0 [ 936.911022][T14676] PKRU: 55555554 [ 936.911189][T14676] Call Trace: [ 936.911341][T14676] [ 936.911515][T14676] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 936.911713][T14676] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 936.911932][T14676] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 936.912139][T14676] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 936.912361][T14676] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 936.912577][T14676] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 936.912798][T14676] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 936.913032][T14676] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 936.913250][T14676] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 936.913463][T14676] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 936.913677][T14676] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 936.913863][T14676] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 936.914063][T14676] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 936.914248][T14676] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 936.914449][T14676] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 936.914649][T14676] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 936.914842][T14676] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 936.915042][T14676] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 936.915230][T14676] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 936.915422][T14676] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 936.915625][T14676] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 936.915822][T14676] ? copy_msghdr_from_user (net/socket.c:2525) [ 936.916017][T14676] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 936.916238][T14676] ? move_addr_to_kernel (net/socket.c:2511) [ 936.916432][T14676] ? filemap_map_folio_range (mm/filemap.c:3873) [ 936.916615][T14676] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 936.916801][T14676] ___sys_sendmsg (net/socket.c:2641) [ 936.916998][T14676] ? copy_msghdr_from_user (net/socket.c:2628) [ 936.917426][T14676] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 936.917614][T14676] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 936.917812][T14676] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 936.918025][T14676] ? __sys_sendmsg_sock (net/socket.c:2656) [ 936.918225][T14676] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 936.918420][T14676] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 936.918604][T14676] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 936.918789][T14676] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 936.918998][T14676] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 936.919203][T14676] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 936.919435][T14676] RIP: 0033:0x7fafdc35dc5e [ 936.919627][T14676] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 936.920154][T14676] RSP: 002b:00007fff60ea9ca0 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 936.920418][T14676] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007fafdc35dc5e [ 936.920667][T14676] RDX: 0000000000000000 RSI: 00007fff60ea9d60 RDI: 0000000000000005 [ 936.920932][T14676] RBP: 00007fff60ea9cb0 R08: 0000000000000000 R09: 0000000000000000 [ 936.921192][T14676] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 936.921473][T14676] R13: 0000000069cbe7f0 R14: 0000000000000004 R15: 000000000049d620 | [ 936.985371][T14680] ------------[ cut here ]------------ | [ 936.985585][T14680] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#2: ip/14680 | [ 936.985875][T14680] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 936.986782][T14680] Tainted: [W]=WARN [ 936.986948][T14680] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 936.987192][T14680] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 936.987399][T14680] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 936.987961][T14680] RSP: 0018:ffa00000037275d0 EFLAGS: 00010286 [ 936.988185][T14680] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe2200001ea064f [ 936.988447][T14680] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100000f503278 [ 936.988713][T14680] RBP: 1ff40000006e4ebb R08: 1fe2200001ea0650 R09: fffa3bfffffb0b24 [ 936.989002][T14680] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100000f502cb4 [ 936.989256][T14680] R13: ff1100000f502c80 R14: ffffffff931c7940 R15: ff1100000f5031c0 [ 936.989522][T14680] FS: 00007f611ddcf440(0000) GS:ff110000a31b8000(0000) knlGS:0000000000000000 [ 936.989815][T14680] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 936.990050][T14680] CR2: 000000000044f720 CR3: 000000000cb82006 CR4: 0000000000771ef0 [ 936.990306][T14680] PKRU: 55555554 [ 936.990464][T14680] Call Trace: [ 936.990619][T14680] [ 936.990739][T14680] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 936.990939][T14680] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 936.991138][T14680] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 936.991327][T14680] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 936.991540][T14680] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 936.991723][T14680] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 936.991918][T14680] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 936.992114][T14680] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 936.992296][T14680] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 936.992490][T14680] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 936.992674][T14680] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 936.992855][T14680] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 936.993047][T14680] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 936.993229][T14680] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 936.993415][T14680] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 936.993599][T14680] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 936.993791][T14680] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 936.993988][T14680] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 936.994172][T14680] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 936.994353][T14680] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 936.994549][T14680] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 936.994732][T14680] ? copy_msghdr_from_user (net/socket.c:2525) [ 936.994927][T14680] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 936.995141][T14680] ? move_addr_to_kernel (net/socket.c:2511) [ 936.995324][T14680] ? filemap_map_folio_range (mm/filemap.c:3873) [ 936.995513][T14680] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 936.995698][T14680] ___sys_sendmsg (net/socket.c:2641) [ 936.995878][T14680] ? copy_msghdr_from_user (net/socket.c:2628) [ 936.996076][T14680] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 936.996264][T14680] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 936.996458][T14680] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 936.996645][T14680] ? __sys_sendmsg_sock (net/socket.c:2656) [ 936.996830][T14680] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 936.997027][T14680] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 936.997247][T14680] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 936.997464][T14680] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 936.997685][T14680] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 936.997876][T14680] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 936.998101][T14680] RIP: 0033:0x7f611df29c5e [ 936.998292][T14680] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 936.998829][T14680] RSP: 002b:00007ffe371442e0 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 936.999094][T14680] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007f611df29c5e [ 936.999339][T14680] RDX: 0000000000000000 RSI: 00007ffe371443a0 RDI: 0000000000000005 [ 936.999597][T14680] RBP: 00007ffe371442f0 R08: 0000000000000000 R09: 0000000000000000 [ 936.999874][T14680] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 937.000139][T14680] R13: 0000000069cbe7f0 R14: 0000000000000004 R15: 000000000049d620 | [ 937.090846][T14686] ------------[ cut here ]------------ | [ 937.091366][T14686] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#0: ip/14686 | [ 937.091626][T14686] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 937.092448][T14686] Tainted: [W]=WARN [ 937.092556][T14686] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 937.092747][T14686] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 937.092908][T14686] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 937.093431][T14686] RSP: 0018:ffa00000037975d0 EFLAGS: 00010286 [ 937.093610][T14686] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe22000036f18ff [ 937.093825][T14686] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001b78c7f8 [ 937.094047][T14686] RBP: 1ff40000006f2ebb R08: 1fe22000036f1900 R09: fffa3bfffffb0b24 [ 937.094257][T14686] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001b78caf4 [ 937.094475][T14686] R13: ff1100001b78cac0 R14: ffffffff931c7940 R15: ff1100001b78c740 [ 937.094694][T14686] FS: 00007f74bb887440(0000) GS:ff110000a30b8000(0000) knlGS:0000000000000000 [ 937.094961][T14686] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 937.095144][T14686] CR2: 000000000044f720 CR3: 000000001c454002 CR4: 0000000000771ef0 [ 937.095353][T14686] PKRU: 55555554 [ 937.095464][T14686] Call Trace: [ 937.095569][T14686] [ 937.095640][T14686] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 937.095782][T14686] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 937.095939][T14686] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 937.096082][T14686] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 937.096220][T14686] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 937.096363][T14686] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 937.096505][T14686] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 937.096643][T14686] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 937.096781][T14686] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 937.096928][T14686] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 937.097072][T14686] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 937.097210][T14686] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 937.097351][T14686] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 937.097496][T14686] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 937.097631][T14686] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 937.097769][T14686] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 937.097908][T14686] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 937.098044][T14686] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 937.098180][T14686] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 937.098312][T14686] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 937.098463][T14686] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 937.098600][T14686] ? copy_msghdr_from_user (net/socket.c:2525) [ 937.098734][T14686] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 937.098907][T14686] ? move_addr_to_kernel (net/socket.c:2511) [ 937.099041][T14686] ? filemap_map_folio_range (mm/filemap.c:3873) [ 937.099173][T14686] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 937.099307][T14686] ___sys_sendmsg (net/socket.c:2641) [ 937.099446][T14686] ? copy_msghdr_from_user (net/socket.c:2628) [ 937.099584][T14686] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 937.099719][T14686] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 937.099853][T14686] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 937.099992][T14686] ? __sys_sendmsg_sock (net/socket.c:2656) [ 937.100128][T14686] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 937.100261][T14686] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 937.100399][T14686] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 937.100532][T14686] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 937.100663][T14686] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 937.100794][T14686] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 937.100969][T14686] RIP: 0033:0x7f74bb9e1c5e [ 937.101116][T14686] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 937.101620][T14686] RSP: 002b:00007ffd3f2cf5c0 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 937.101825][T14686] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007f74bb9e1c5e [ 937.102033][T14686] RDX: 0000000000000000 RSI: 00007ffd3f2cf680 RDI: 0000000000000005 [ 937.102230][T14686] RBP: 00007ffd3f2cf5d0 R08: 0000000000000000 R09: 0000000000000000 [ 937.102433][T14686] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 937.102632][T14686] R13: 0000000069cbe7f0 R14: 0000000000000004 R15: 000000000049d620 | [ 937.172739][T14690] ------------[ cut here ]------------ | [ 937.172933][T14690] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#0: ip/14690 | [ 937.173180][T14690] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 937.173987][T14690] Tainted: [W]=WARN [ 937.174094][T14690] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 937.174263][T14690] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 937.174416][T14690] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 937.174902][T14690] RSP: 0018:ffa00000035c75d0 EFLAGS: 00010286 [ 937.175097][T14690] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe22000036f1abf [ 937.175296][T14690] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001b78d5f8 [ 937.175501][T14690] RBP: 1ff40000006b8ebb R08: 1fe22000036f1ac0 R09: fffa3bfffffb0b24 [ 937.175696][T14690] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001b78dab4 [ 937.175909][T14690] R13: ff1100001b78da80 R14: ffffffff931c7940 R15: ff1100001b78d540 [ 937.176117][T14690] FS: 00007fabb3cf3440(0000) GS:ff110000a30b8000(0000) knlGS:0000000000000000 [ 937.176388][T14690] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 937.176568][T14690] CR2: 000000000044f720 CR3: 000000000cb7a006 CR4: 0000000000771ef0 [ 937.176778][T14690] PKRU: 55555554 [ 937.176880][T14690] Call Trace: [ 937.176991][T14690] [ 937.177058][T14690] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 937.177196][T14690] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 937.177342][T14690] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 937.177487][T14690] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 937.177635][T14690] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 937.177781][T14690] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 937.177924][T14690] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 937.178072][T14690] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 937.178218][T14690] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 937.178366][T14690] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 937.178512][T14690] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 937.178645][T14690] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 937.178781][T14690] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 937.178922][T14690] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 937.179058][T14690] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 937.179191][T14690] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 937.179324][T14690] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 937.179463][T14690] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 937.179595][T14690] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 937.179749][T14690] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 937.179898][T14690] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 937.180041][T14690] ? copy_msghdr_from_user (net/socket.c:2525) [ 937.180178][T14690] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 937.180352][T14690] ? move_addr_to_kernel (net/socket.c:2511) [ 937.180504][T14690] ? filemap_map_folio_range (mm/filemap.c:3873) [ 937.180647][T14690] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 937.180793][T14690] ___sys_sendmsg (net/socket.c:2641) [ 937.181408][T14690] ? copy_msghdr_from_user (net/socket.c:2628) [ 937.181553][T14690] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 937.181694][T14690] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 937.181835][T14690] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 937.182034][T14690] ? __sys_sendmsg_sock (net/socket.c:2656) [ 937.182172][T14690] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 937.182304][T14690] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 937.182442][T14690] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 937.182573][T14690] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 937.182704][T14690] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 937.182835][T14690] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 937.183076][T14690] RIP: 0033:0x7fabb3e4dc5e [ 937.183227][T14690] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 937.183728][T14690] RSP: 002b:00007ffdebc4b970 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 937.184008][T14690] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007fabb3e4dc5e [ 937.184218][T14690] RDX: 0000000000000000 RSI: 00007ffdebc4ba30 RDI: 0000000000000005 [ 937.184429][T14690] RBP: 00007ffdebc4b980 R08: 0000000000000000 R09: 0000000000000000 [ 937.184638][T14690] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 937.184843][T14690] R13: 0000000069cbe7f0 R14: 0000000000000004 R15: 000000000049d620 | [ 937.288888][T14696] ------------[ cut here ]------------ | [ 937.289069][T14696] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#3: ip/14696 | [ 937.289318][T14696] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 937.290147][T14696] Tainted: [W]=WARN [ 937.290250][T14696] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 937.290424][T14696] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 937.290568][T14696] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 937.291046][T14696] RSP: 0018:ffa00000037d75d0 EFLAGS: 00010286 [ 937.291216][T14696] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe2200003725bd7 [ 937.291419][T14696] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001b92deb8 [ 937.291619][T14696] RBP: 1ff40000006faebb R08: 1fe2200003725bd8 R09: fffa3bfffffb0b24 [ 937.291824][T14696] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001b78d734 [ 937.292048][T14696] R13: ff1100001b78d700 R14: ffffffff931c7940 R15: ff1100001b92de00 [ 937.292261][T14696] FS: 00007f2dfdea0440(0000) GS:ff110000a3238000(0000) knlGS:0000000000000000 [ 937.292503][T14696] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 937.292676][T14696] CR2: 000000000044f720 CR3: 000000001a847001 CR4: 0000000000771ef0 [ 937.292875][T14696] PKRU: 55555554 [ 937.292981][T14696] Call Trace: [ 937.293083][T14696] [ 937.293153][T14696] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 937.293288][T14696] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 937.293433][T14696] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 937.293567][T14696] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 937.293700][T14696] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 937.293836][T14696] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 937.293972][T14696] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 937.294107][T14696] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 937.294244][T14696] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 937.294376][T14696] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 937.294517][T14696] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 937.294650][T14696] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 937.294784][T14696] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 937.294922][T14696] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 937.295055][T14696] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 937.295190][T14696] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 937.295328][T14696] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 937.295468][T14696] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 937.295605][T14696] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 937.295740][T14696] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 937.295877][T14696] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 937.296018][T14696] ? copy_msghdr_from_user (net/socket.c:2525) [ 937.296156][T14696] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 937.296321][T14696] ? move_addr_to_kernel (net/socket.c:2511) [ 937.296463][T14696] ? filemap_map_folio_range (mm/filemap.c:3873) [ 937.296596][T14696] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 937.296734][T14696] ___sys_sendmsg (net/socket.c:2641) [ 937.296866][T14696] ? copy_msghdr_from_user (net/socket.c:2628) [ 937.297008][T14696] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 937.297143][T14696] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 937.297279][T14696] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 937.297420][T14696] ? __sys_sendmsg_sock (net/socket.c:2656) [ 937.297557][T14696] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 937.297691][T14696] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 937.297826][T14696] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 937.297983][T14696] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 937.298126][T14696] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 937.298262][T14696] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 937.298430][T14696] RIP: 0033:0x7f2dfdffac5e [ 937.298569][T14696] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 937.299058][T14696] RSP: 002b:00007fff0b857e40 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 937.299281][T14696] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007f2dfdffac5e [ 937.299483][T14696] RDX: 0000000000000000 RSI: 00007fff0b857f00 RDI: 0000000000000005 [ 937.299682][T14696] RBP: 00007fff0b857e50 R08: 0000000000000000 R09: 0000000000000000 [ 937.299885][T14696] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 937.300096][T14696] R13: 0000000069cbe7f0 R14: 0000000000000004 R15: 000000000049d620 | [ 937.377714][T14700] ------------[ cut here ]------------ | [ 937.377888][T14700] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#3: ip/14700 | [ 937.378139][T14700] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 937.378930][T14700] Tainted: [W]=WARN [ 937.379043][T14700] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 937.379211][T14700] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 937.379354][T14700] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 937.379841][T14700] RSP: 0018:ffa00000038175d0 EFLAGS: 00010286 [ 937.380022][T14700] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe22000037258ff [ 937.380222][T14700] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001b92c7f8 [ 937.380427][T14700] RBP: 1ff4000000702ebb R08: 1fe2200003725900 R09: fffa3bfffffb0b24 [ 937.380625][T14700] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001b92caf4 [ 937.380827][T14700] R13: ff1100001b92cac0 R14: ffffffff931c7940 R15: ff1100001b92c740 [ 937.381036][T14700] FS: 00007f95e93ef440(0000) GS:ff110000a3238000(0000) knlGS:0000000000000000 [ 937.381272][T14700] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 937.381449][T14700] CR2: 000000000044f720 CR3: 000000001a847006 CR4: 0000000000771ef0 [ 937.381668][T14700] PKRU: 55555554 [ 937.381771][T14700] Call Trace: [ 937.381903][T14700] [ 937.381979][T14700] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 937.382121][T14700] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 937.382271][T14700] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 937.382419][T14700] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 937.382560][T14700] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 937.382703][T14700] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 937.382840][T14700] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 937.382987][T14700] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 937.383127][T14700] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 937.383265][T14700] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 937.383412][T14700] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 937.383549][T14700] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 937.383690][T14700] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 937.383829][T14700] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 937.383976][T14700] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 937.384116][T14700] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 937.384256][T14700] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 937.384401][T14700] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 937.384545][T14700] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 937.384685][T14700] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 937.384830][T14700] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 937.385295][T14700] ? copy_msghdr_from_user (net/socket.c:2525) [ 937.385450][T14700] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 937.385626][T14700] ? move_addr_to_kernel (net/socket.c:2511) [ 937.385765][T14700] ? filemap_map_folio_range (mm/filemap.c:3873) [ 937.385913][T14700] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 937.386054][T14700] ___sys_sendmsg (net/socket.c:2641) [ 937.386192][T14700] ? copy_msghdr_from_user (net/socket.c:2628) [ 937.386340][T14700] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 937.386489][T14700] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 937.386635][T14700] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 937.386775][T14700] ? __sys_sendmsg_sock (net/socket.c:2656) [ 937.386924][T14700] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 937.387068][T14700] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 937.387212][T14700] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 937.387352][T14700] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 937.387506][T14700] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 937.387648][T14700] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 937.387826][T14700] RIP: 0033:0x7f95e9549c5e [ 937.387984][T14700] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 937.388500][T14700] RSP: 002b:00007ffd31ddb580 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 937.388720][T14700] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007f95e9549c5e [ 937.388935][T14700] RDX: 0000000000000000 RSI: 00007ffd31ddb640 RDI: 0000000000000005 [ 937.389148][T14700] RBP: 00007ffd31ddb590 R08: 0000000000000000 R09: 0000000000000000 [ 937.389358][T14700] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 937.389577][T14700] R13: 0000000069cbe7f0 R14: 0000000000000004 R15: 000000000049d620 | [ 937.471550][T14706] ------------[ cut here ]------------ | [ 937.471728][T14706] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#3: ip/14706 | [ 937.471980][T14706] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 937.472785][T14706] Tainted: [W]=WARN [ 937.472900][T14706] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 937.473082][T14706] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 937.473238][T14706] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 937.473749][T14706] RSP: 0018:ffa00000036e75d0 EFLAGS: 00010286 [ 937.473935][T14706] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe2200003725857 [ 937.474139][T14706] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001b92c2b8 [ 937.474344][T14706] RBP: 1ff40000006dcebb R08: 1fe2200003725858 R09: fffa3bfffffb0b24 [ 937.474552][T14706] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001b92c3f4 [ 937.474755][T14706] R13: ff1100001b92c3c0 R14: ffffffff931c7940 R15: ff1100001b92c200 [ 937.474970][T14706] FS: 00007f6c4903d440(0000) GS:ff110000a3238000(0000) knlGS:0000000000000000 [ 937.475210][T14706] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 937.475378][T14706] CR2: 000000000044f720 CR3: 0000000010b61004 CR4: 0000000000771ef0 [ 937.475583][T14706] PKRU: 55555554 [ 937.475683][T14706] Call Trace: [ 937.475781][T14706] [ 937.475849][T14706] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 937.475991][T14706] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 937.476133][T14706] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 937.476271][T14706] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 937.476420][T14706] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 937.476557][T14706] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 937.476689][T14706] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 937.476823][T14706] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 937.477367][T14706] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 937.477513][T14706] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 937.477654][T14706] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 937.477789][T14706] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 937.477932][T14706] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 937.478066][T14706] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 937.478197][T14706] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 937.478332][T14706] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 937.478470][T14706] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 937.478608][T14706] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 937.478747][T14706] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 937.478884][T14706] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 937.479035][T14706] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 937.479170][T14706] ? copy_msghdr_from_user (net/socket.c:2525) [ 937.479304][T14706] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 937.479493][T14706] ? move_addr_to_kernel (net/socket.c:2511) [ 937.479640][T14706] ? filemap_map_folio_range (mm/filemap.c:3873) [ 937.479787][T14706] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 937.479933][T14706] ___sys_sendmsg (net/socket.c:2641) [ 937.480077][T14706] ? copy_msghdr_from_user (net/socket.c:2628) [ 937.480217][T14706] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 937.480357][T14706] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 937.480499][T14706] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 937.480635][T14706] ? __sys_sendmsg_sock (net/socket.c:2656) [ 937.480772][T14706] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 937.480914][T14706] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 937.481051][T14706] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 937.481187][T14706] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 937.481324][T14706] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 937.481465][T14706] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 937.481634][T14706] RIP: 0033:0x7f6c49197c5e [ 937.481785][T14706] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 937.482282][T14706] RSP: 002b:00007ffc3b648320 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 937.482492][T14706] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007f6c49197c5e [ 937.482694][T14706] RDX: 0000000000000000 RSI: 00007ffc3b6483e0 RDI: 0000000000000005 [ 937.482945][T14706] RBP: 00007ffc3b648330 R08: 0000000000000000 R09: 0000000000000000 [ 937.483156][T14706] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 937.483366][T14706] R13: 0000000069cbe7f0 R14: 0000000000000004 R15: 000000000049d620 | [ 937.558284][T14710] ------------[ cut here ]------------ | [ 937.558468][T14710] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#3: ip/14710 | [ 937.558709][T14710] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 937.559855][T14710] Tainted: [W]=WARN [ 937.559963][T14710] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 937.560136][T14710] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 937.560285][T14710] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 937.560775][T14710] RSP: 0018:ffa00000038375d0 EFLAGS: 00010286 [ 937.560971][T14710] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe22000038751df [ 937.561175][T14710] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001c3a8ef8 [ 937.561394][T14710] RBP: 1ff4000000706ebb R08: 1fe22000038751e0 R09: fffa3bfffffb0b24 [ 937.561618][T14710] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001c3a83f4 [ 937.561821][T14710] R13: ff1100001c3a83c0 R14: ffffffff931c7940 R15: ff1100001c3a8e40 [ 937.562034][T14710] FS: 00007f6aac48c440(0000) GS:ff110000a3238000(0000) knlGS:0000000000000000 [ 937.562354][T14710] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 937.562556][T14710] CR2: 000000000044f720 CR3: 000000000f63a006 CR4: 0000000000771ef0 [ 937.562773][T14710] PKRU: 55555554 [ 937.562884][T14710] Call Trace: [ 937.562998][T14710] [ 937.563071][T14710] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 937.563213][T14710] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 937.563366][T14710] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 937.563514][T14710] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 937.563661][T14710] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 937.563811][T14710] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 937.563955][T14710] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 937.564095][T14710] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 937.564239][T14710] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 937.564386][T14710] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 937.564536][T14710] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 937.564675][T14710] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 937.564816][T14710] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 937.564969][T14710] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 937.565112][T14710] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 937.565256][T14710] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 937.565402][T14710] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 937.565550][T14710] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 937.565693][T14710] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 937.565833][T14710] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 937.565985][T14710] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 937.566127][T14710] ? copy_msghdr_from_user (net/socket.c:2525) [ 937.566270][T14710] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 937.566448][T14710] ? move_addr_to_kernel (net/socket.c:2511) [ 937.566588][T14710] ? filemap_map_folio_range (mm/filemap.c:3873) [ 937.566729][T14710] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 937.566876][T14710] ___sys_sendmsg (net/socket.c:2641) [ 937.567022][T14710] ? copy_msghdr_from_user (net/socket.c:2628) [ 937.567173][T14710] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 937.567315][T14710] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 937.567465][T14710] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 937.567607][T14710] ? __sys_sendmsg_sock (net/socket.c:2656) [ 937.567755][T14710] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 937.567904][T14710] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 937.568045][T14710] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 937.568187][T14710] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 937.568328][T14710] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 937.568475][T14710] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 937.568649][T14710] RIP: 0033:0x7f6aac5e6c5e [ 937.568908][T14710] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 937.569397][T14710] RSP: 002b:00007fff71b226c0 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 937.569690][T14710] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007f6aac5e6c5e [ 937.569900][T14710] RDX: 0000000000000000 RSI: 00007fff71b22780 RDI: 0000000000000005 [ 937.570186][T14710] RBP: 00007fff71b226d0 R08: 0000000000000000 R09: 0000000000000000 [ 937.570391][T14710] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 937.570600][T14710] R13: 0000000069cbe7f1 R14: 0000000000000004 R15: 000000000049d620 | [ 937.678307][T14716] ------------[ cut here ]------------ | [ 937.678544][T14716] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#2: ip/14716 | [ 937.678843][T14716] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 937.679764][T14716] Tainted: [W]=WARN [ 937.679935][T14716] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 937.680160][T14716] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 937.680362][T14716] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 937.680963][T14716] RSP: 0018:ffa00000038675d0 EFLAGS: 00010286 [ 937.681213][T14716] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe22000038752bf [ 937.681501][T14716] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001c3a95f8 [ 937.681761][T14716] RBP: 1ff400000070cebb R08: 1fe22000038752c0 R09: fffa3bfffffb0b24 [ 937.682034][T14716] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001c3a91f4 [ 937.682293][T14716] R13: ff1100001c3a91c0 R14: ffffffff931c7940 R15: ff1100001c3a9540 [ 937.682569][T14716] FS: 00007f60067ad440(0000) GS:ff110000a31b8000(0000) knlGS:0000000000000000 [ 937.682870][T14716] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 937.683114][T14716] CR2: 000000000044f720 CR3: 0000000019c67005 CR4: 0000000000771ef0 [ 937.683375][T14716] PKRU: 55555554 [ 937.683539][T14716] Call Trace: [ 937.683696][T14716] [ 937.683819][T14716] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 937.684020][T14716] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 937.684222][T14716] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 937.684423][T14716] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 937.684616][T14716] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 937.684816][T14716] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 937.685039][T14716] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 937.685242][T14716] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 937.685449][T14716] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 937.685648][T14716] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 937.685859][T14716] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 937.686073][T14716] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 937.686269][T14716] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 937.686467][T14716] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 937.686656][T14716] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 937.686850][T14716] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 937.687055][T14716] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 937.687249][T14716] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 937.687451][T14716] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 937.687646][T14716] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 937.687842][T14716] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 937.688049][T14716] ? copy_msghdr_from_user (net/socket.c:2525) [ 937.688241][T14716] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 937.688474][T14716] ? move_addr_to_kernel (net/socket.c:2511) [ 937.688670][T14716] ? filemap_map_folio_range (mm/filemap.c:3873) [ 937.688861][T14716] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 937.689072][T14716] ___sys_sendmsg (net/socket.c:2641) [ 937.689279][T14716] ? copy_msghdr_from_user (net/socket.c:2628) [ 937.689498][T14716] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 937.689706][T14716] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 937.689927][T14716] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 937.690129][T14716] ? __sys_sendmsg_sock (net/socket.c:2656) [ 937.690335][T14716] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 937.690553][T14716] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 937.690747][T14716] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 937.690950][T14716] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 937.691152][T14716] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 937.691360][T14716] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 937.691625][T14716] RIP: 0033:0x7f6006907c5e [ 937.691849][T14716] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 937.692474][T14716] RSP: 002b:00007fff954d5800 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 937.692774][T14716] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007f6006907c5e [ 937.693070][T14716] RDX: 0000000000000000 RSI: 00007fff954d58c0 RDI: 0000000000000005 [ 937.693337][T14716] RBP: 00007fff954d5810 R08: 0000000000000000 R09: 0000000000000000 [ 937.693607][T14716] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 937.693866][T14716] R13: 0000000069cbe7f1 R14: 0000000000000004 R15: 000000000049d620 | [ 937.762911][T14720] ------------[ cut here ]------------ | [ 937.763119][T14720] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#2: ip/14720 | [ 937.763416][T14720] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 937.764325][T14720] Tainted: [W]=WARN [ 937.764493][T14720] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 937.764727][T14720] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 937.764941][T14720] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 937.765484][T14720] RSP: 0018:ffa00000038475d0 EFLAGS: 00010286 [ 937.765712][T14720] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe220000192ea87 [ 937.765980][T14720] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100000c975438 [ 937.766234][T14720] RBP: 1ff4000000708ebb R08: 1fe220000192ea88 R09: fffa3bfffffb0b24 [ 937.766516][T14720] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100000c975574 [ 937.766774][T14720] R13: ff1100000c975540 R14: ffffffff931c7940 R15: ff1100000c975380 [ 937.767051][T14720] FS: 00007fd48b5f7440(0000) GS:ff110000a31b8000(0000) knlGS:0000000000000000 [ 937.767342][T14720] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 937.767569][T14720] CR2: 000000000044f720 CR3: 0000000010a23005 CR4: 0000000000771ef0 [ 937.767825][T14720] PKRU: 55555554 [ 937.767990][T14720] Call Trace: [ 937.768145][T14720] [ 937.768269][T14720] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 937.768463][T14720] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 937.768661][T14720] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 937.768851][T14720] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 937.769056][T14720] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 937.769253][T14720] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 937.769453][T14720] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 937.769650][T14720] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 937.769845][T14720] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 937.770046][T14720] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 937.770238][T14720] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 937.770429][T14720] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 937.770620][T14720] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 937.770822][T14720] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 937.771021][T14720] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 937.771214][T14720] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 937.771408][T14720] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 937.771599][T14720] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 937.771789][T14720] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 937.771996][T14720] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 937.772188][T14720] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 937.772372][T14720] ? copy_msghdr_from_user (net/socket.c:2525) [ 937.772568][T14720] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 937.772793][T14720] ? move_addr_to_kernel (net/socket.c:2511) [ 937.772995][T14720] ? filemap_map_folio_range (mm/filemap.c:3873) [ 937.773183][T14720] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 937.773374][T14720] ___sys_sendmsg (net/socket.c:2641) [ 937.773572][T14720] ? copy_msghdr_from_user (net/socket.c:2628) [ 937.773763][T14720] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 937.773982][T14720] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 937.774187][T14720] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 937.774391][T14720] ? __sys_sendmsg_sock (net/socket.c:2656) [ 937.774585][T14720] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 937.774774][T14720] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 937.774978][T14720] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 937.775251][T14720] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 937.775452][T14720] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 937.775644][T14720] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 937.775871][T14720] RIP: 0033:0x7fd48b751c5e [ 937.776167][T14720] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 937.776723][T14720] RSP: 002b:00007ffe217b7500 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 937.777087][T14720] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007fd48b751c5e [ 937.777339][T14720] RDX: 0000000000000000 RSI: 00007ffe217b75c0 RDI: 0000000000000005 [ 937.777684][T14720] RBP: 00007ffe217b7510 R08: 0000000000000000 R09: 0000000000000000 [ 937.777965][T14720] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 937.778223][T14720] R13: 0000000069cbe7f1 R14: 0000000000000004 R15: 000000000049d620 | [ 937.842246][T14726] ------------[ cut here ]------------ | [ 937.842478][T14726] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#2: ip/14726 | [ 937.842808][T14726] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 937.844039][T14726] Tainted: [W]=WARN [ 937.844200][T14726] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 937.844435][T14726] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 937.844647][T14726] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 937.845212][T14726] RSP: 0018:ffa00000037275d0 EFLAGS: 00010286 [ 937.845453][T14726] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe220000192e937 [ 937.845724][T14726] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100000c9749b8 [ 937.846008][T14726] RBP: 1ff40000006e4ebb R08: 1fe220000192e938 R09: fffa3bfffffb0b24 [ 937.846304][T14726] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100000c974074 [ 937.846586][T14726] R13: ff1100000c974040 R14: ffffffff931c7940 R15: ff1100000c974900 [ 937.846885][T14726] FS: 00007f8e7792f440(0000) GS:ff110000a31b8000(0000) knlGS:0000000000000000 [ 937.847435][T14726] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 937.847661][T14726] CR2: 000000000044f720 CR3: 000000001aa84002 CR4: 0000000000771ef0 [ 937.847936][T14726] PKRU: 55555554 [ 937.848108][T14726] Call Trace: [ 937.848278][T14726] [ 937.848419][T14726] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 937.848610][T14726] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 937.848808][T14726] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 937.849052][T14726] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 937.849274][T14726] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 937.849482][T14726] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 937.849675][T14726] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 937.849888][T14726] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 937.850091][T14726] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 937.850289][T14726] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 937.850509][T14726] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 937.850710][T14726] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 937.850925][T14726] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 937.851118][T14726] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 937.851308][T14726] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 937.851512][T14726] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 937.851715][T14726] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 937.851935][T14726] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 937.852144][T14726] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 937.852352][T14726] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 937.852564][T14726] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 937.852766][T14726] ? copy_msghdr_from_user (net/socket.c:2525) [ 937.852976][T14726] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 937.853210][T14726] ? move_addr_to_kernel (net/socket.c:2511) [ 937.853409][T14726] ? filemap_map_folio_range (mm/filemap.c:3873) [ 937.853594][T14726] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 937.853783][T14726] ___sys_sendmsg (net/socket.c:2641) [ 937.853981][T14726] ? copy_msghdr_from_user (net/socket.c:2628) [ 937.854171][T14726] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 937.854363][T14726] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 937.854577][T14726] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 937.854776][T14726] ? __sys_sendmsg_sock (net/socket.c:2656) [ 937.854990][T14726] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 937.855184][T14726] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 937.855393][T14726] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 937.855596][T14726] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 937.855788][T14726] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 937.855992][T14726] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 937.856210][T14726] RIP: 0033:0x7f8e77a89c5e [ 937.856425][T14726] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 937.856983][T14726] RSP: 002b:00007ffe3349da20 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 937.857255][T14726] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007f8e77a89c5e [ 937.857564][T14726] RDX: 0000000000000000 RSI: 00007ffe3349dae0 RDI: 0000000000000005 [ 937.857841][T14726] RBP: 00007ffe3349da30 R08: 0000000000000000 R09: 0000000000000000 [ 937.858127][T14726] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 937.858403][T14726] R13: 0000000069cbe7f1 R14: 0000000000000004 R15: 000000000049d620 | [ 937.937582][T14730] ------------[ cut here ]------------ | [ 937.937788][T14730] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#0: ip/14730 | [ 937.938049][T14730] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 937.938874][T14730] Tainted: [W]=WARN [ 937.938990][T14730] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 937.939174][T14730] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 937.939333][T14730] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 937.939860][T14730] RSP: 0018:ffa00000038375d0 EFLAGS: 00010286 [ 937.940477][T14730] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe2200003229ebf [ 937.940707][T14730] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001914f5f8 [ 937.940937][T14730] RBP: 1ff4000000706ebb R08: 1fe2200003229ec0 R09: fffa3bfffffb0b24 [ 937.941151][T14730] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001914f734 [ 937.941371][T14730] R13: ff1100001914f700 R14: ffffffff931c7940 R15: ff1100001914f540 [ 937.941601][T14730] FS: 00007f07662fe440(0000) GS:ff110000a30b8000(0000) knlGS:0000000000000000 [ 937.941859][T14730] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 937.942044][T14730] CR2: 000000000044f720 CR3: 000000001cf6b005 CR4: 0000000000771ef0 [ 937.942268][T14730] PKRU: 55555554 [ 937.942376][T14730] Call Trace: [ 937.942492][T14730] [ 937.942566][T14730] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 937.942710][T14730] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 937.942860][T14730] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 937.943008][T14730] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 937.943149][T14730] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 937.943294][T14730] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 937.943439][T14730] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 937.943581][T14730] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 937.943719][T14730] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 937.943859][T14730] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 937.944024][T14730] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 937.944162][T14730] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 937.944304][T14730] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 937.944449][T14730] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 937.944588][T14730] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 937.944736][T14730] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 937.944877][T14730] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 937.945026][T14730] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 937.945165][T14730] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 937.945305][T14730] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 937.945458][T14730] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 937.945597][T14730] ? copy_msghdr_from_user (net/socket.c:2525) [ 937.945736][T14730] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 937.945911][T14730] ? move_addr_to_kernel (net/socket.c:2511) [ 937.946051][T14730] ? filemap_map_folio_range (mm/filemap.c:3873) [ 937.946192][T14730] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 937.946333][T14730] ___sys_sendmsg (net/socket.c:2641) [ 937.946481][T14730] ? copy_msghdr_from_user (net/socket.c:2628) [ 937.946639][T14730] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 937.946789][T14730] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 937.946944][T14730] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 937.947091][T14730] ? __sys_sendmsg_sock (net/socket.c:2656) [ 937.947238][T14730] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 937.947379][T14730] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 937.947573][T14730] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 937.947731][T14730] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 937.947869][T14730] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 937.948031][T14730] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 937.948225][T14730] RIP: 0033:0x7f0766458c5e [ 937.948388][T14730] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 937.948953][T14730] RSP: 002b:00007ffc52edda30 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 937.949168][T14730] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007f0766458c5e [ 937.949405][T14730] RDX: 0000000000000000 RSI: 00007ffc52eddaf0 RDI: 0000000000000005 [ 937.949622][T14730] RBP: 00007ffc52edda40 R08: 0000000000000000 R09: 0000000000000000 [ 937.949839][T14730] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 937.950073][T14730] R13: 0000000069cbe7f1 R14: 0000000000000004 R15: 000000000049d620 | [ 938.043671][T14736] ------------[ cut here ]------------ | [ 938.043850][T14736] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#3: ip/14736 | [ 938.044104][T14736] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 938.044906][T14736] Tainted: [W]=WARN [ 938.045014][T14736] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 938.045186][T14736] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 938.045331][T14736] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 938.045832][T14736] RSP: 0018:ffa00000036e75d0 EFLAGS: 00010286 [ 938.046080][T14736] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe2200003229e17 [ 938.046286][T14736] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001914f0b8 [ 938.046495][T14736] RBP: 1ff40000006dcebb R08: 1fe2200003229e18 R09: fffa3bfffffb0b24 [ 938.046697][T14736] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001914ecb4 [ 938.046982][T14736] R13: ff1100001914ec80 R14: ffffffff931c7940 R15: ff1100001914f000 [ 938.047185][T14736] FS: 00007f00630f9440(0000) GS:ff110000a3238000(0000) knlGS:0000000000000000 [ 938.047429][T14736] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 938.047598][T14736] CR2: 000000000044f720 CR3: 000000001a86a004 CR4: 0000000000771ef0 [ 938.047799][T14736] PKRU: 55555554 [ 938.047979][T14736] Call Trace: [ 938.048081][T14736] [ 938.048150][T14736] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 938.048285][T14736] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 938.048432][T14736] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 938.048566][T14736] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 938.048699][T14736] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 938.048835][T14736] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 938.049036][T14736] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 938.049204][T14736] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 938.049343][T14736] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 938.049481][T14736] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 938.049619][T14736] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 938.049753][T14736] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 938.049888][T14736] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 938.050059][T14736] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 938.050192][T14736] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 938.050326][T14736] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 938.050464][T14736] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 938.050596][T14736] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 938.050732][T14736] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 938.050874][T14736] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 938.051021][T14736] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 938.051158][T14736] ? copy_msghdr_from_user (net/socket.c:2525) [ 938.051295][T14736] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 938.051465][T14736] ? move_addr_to_kernel (net/socket.c:2511) [ 938.051599][T14736] ? filemap_map_folio_range (mm/filemap.c:3873) [ 938.051734][T14736] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 938.051873][T14736] ___sys_sendmsg (net/socket.c:2641) [ 938.052008][T14736] ? copy_msghdr_from_user (net/socket.c:2628) [ 938.052153][T14736] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 938.052301][T14736] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 938.052449][T14736] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 938.052585][T14736] ? __sys_sendmsg_sock (net/socket.c:2656) [ 938.052720][T14736] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 938.052858][T14736] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 938.053000][T14736] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 938.053143][T14736] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 938.053283][T14736] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 938.053425][T14736] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 938.053592][T14736] RIP: 0033:0x7f0063253c5e [ 938.053743][T14736] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 938.054244][T14736] RSP: 002b:00007ffc9eaa7f00 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 938.054453][T14736] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007f0063253c5e [ 938.054690][T14736] RDX: 0000000000000000 RSI: 00007ffc9eaa7fc0 RDI: 0000000000000005 [ 938.054934][T14736] RBP: 00007ffc9eaa7f10 R08: 0000000000000000 R09: 0000000000000000 [ 938.055135][T14736] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 938.055341][T14736] R13: 0000000069cbe7f1 R14: 0000000000000004 R15: 000000000049d620 | [ 938.133131][T14740] ------------[ cut here ]------------ | [ 938.133378][T14740] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#2: ip/14740 | [ 938.133741][T14740] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 938.134847][T14740] Tainted: [W]=WARN [ 938.135041][T14740] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 938.135319][T14740] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 938.135553][T14740] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 938.136179][T14740] RSP: 0018:ffa00000038775d0 EFLAGS: 00010286 [ 938.136451][T14740] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe22000034c201f [ 938.136736][T14740] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001a6100f8 [ 938.137007][T14740] RBP: 1ff400000070eebb R08: 1fe22000034c2020 R09: fffa3bfffffb0b24 [ 938.137259][T14740] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001a6113b4 [ 938.137518][T14740] R13: ff1100001a611380 R14: ffffffff931c7940 R15: ff1100001a610040 [ 938.137775][T14740] FS: 00007ffad25b4440(0000) GS:ff110000a31b8000(0000) knlGS:0000000000000000 [ 938.138113][T14740] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 938.138338][T14740] CR2: 000000000044f720 CR3: 000000001acf7003 CR4: 0000000000771ef0 [ 938.138600][T14740] PKRU: 55555554 [ 938.138765][T14740] Call Trace: [ 938.138946][T14740] [ 938.139082][T14740] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 938.139270][T14740] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 938.139487][T14740] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 938.139675][T14740] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 938.139863][T14740] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 938.140061][T14740] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 938.140280][T14740] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 938.140476][T14740] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 938.140664][T14740] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 938.140851][T14740] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 938.141082][T14740] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 938.141284][T14740] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 938.141497][T14740] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 938.141696][T14740] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 938.141888][T14740] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 938.142092][T14740] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 938.142276][T14740] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 938.142468][T14740] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 938.142668][T14740] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 938.142869][T14740] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 938.143078][T14740] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 938.143263][T14740] ? copy_msghdr_from_user (net/socket.c:2525) [ 938.143455][T14740] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 938.143670][T14740] ? move_addr_to_kernel (net/socket.c:2511) [ 938.143859][T14740] ? filemap_map_folio_range (mm/filemap.c:3873) [ 938.144054][T14740] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 938.144255][T14740] ___sys_sendmsg (net/socket.c:2641) [ 938.144452][T14740] ? copy_msghdr_from_user (net/socket.c:2628) [ 938.144644][T14740] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 938.144836][T14740] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 938.145039][T14740] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 938.145226][T14740] ? __sys_sendmsg_sock (net/socket.c:2656) [ 938.145421][T14740] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 938.145607][T14740] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 938.145793][T14740] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 938.145991][T14740] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 938.146175][T14740] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 938.146362][T14740] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 938.146587][T14740] RIP: 0033:0x7ffad270ec5e [ 938.146777][T14740] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 938.147313][T14740] RSP: 002b:00007fffefdecbc0 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 938.147576][T14740] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007ffad270ec5e [ 938.147824][T14740] RDX: 0000000000000000 RSI: 00007fffefdecc80 RDI: 0000000000000005 [ 938.148098][T14740] RBP: 00007fffefdecbd0 R08: 0000000000000000 R09: 0000000000000000 [ 938.148361][T14740] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 938.148632][T14740] R13: 0000000069cbe7f1 R14: 0000000000000004 R15: 000000000049d620 | [ 938.226121][T14746] ------------[ cut here ]------------ | [ 938.226300][T14746] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#3: ip/14746 | [ 938.226673][T14746] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 938.227640][T14746] Tainted: [W]=WARN [ 938.227767][T14746] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 938.227942][T14746] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 938.228089][T14746] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 938.228581][T14746] RSP: 0018:ffa00000038475d0 EFLAGS: 00010286 [ 938.228754][T14746] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe22000034c216f [ 938.229011][T14746] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001a610b78 [ 938.229256][T14746] RBP: 1ff4000000708ebb R08: 1fe22000034c2170 R09: fffa3bfffffb0b24 [ 938.229502][T14746] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001a610934 [ 938.229727][T14746] R13: ff1100001a610900 R14: ffffffff931c7940 R15: ff1100001a610ac0 [ 938.229986][T14746] FS: 00007f32acb54440(0000) GS:ff110000a3238000(0000) knlGS:0000000000000000 [ 938.230296][T14746] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 938.230485][T14746] CR2: 000000000044f720 CR3: 000000001a86d004 CR4: 0000000000771ef0 [ 938.230714][T14746] PKRU: 55555554 [ 938.230847][T14746] Call Trace: [ 938.230962][T14746] [ 938.231036][T14746] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 938.231187][T14746] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 938.231358][T14746] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 938.231523][T14746] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 938.231691][T14746] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 938.231841][T14746] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 938.232005][T14746] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 938.232146][T14746] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 938.232304][T14746] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 938.232462][T14746] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 938.232637][T14746] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 938.232809][T14746] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 938.232991][T14746] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 938.233177][T14746] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 938.233320][T14746] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 938.233481][T14746] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 938.233627][T14746] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 938.233772][T14746] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 938.233925][T14746] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 938.234065][T14746] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 938.234213][T14746] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 938.234362][T14746] ? copy_msghdr_from_user (net/socket.c:2525) [ 938.234512][T14746] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 938.234686][T14746] ? move_addr_to_kernel (net/socket.c:2511) [ 938.234833][T14746] ? filemap_map_folio_range (mm/filemap.c:3873) [ 938.234982][T14746] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 938.235132][T14746] ___sys_sendmsg (net/socket.c:2641) [ 938.235272][T14746] ? copy_msghdr_from_user (net/socket.c:2628) [ 938.235421][T14746] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 938.235569][T14746] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 938.235716][T14746] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 938.235857][T14746] ? __sys_sendmsg_sock (net/socket.c:2656) [ 938.236007][T14746] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 938.236153][T14746] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 938.236288][T14746] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 938.236430][T14746] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 938.236570][T14746] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 938.236709][T14746] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 938.236881][T14746] RIP: 0033:0x7f32accaec5e [ 938.237037][T14746] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 938.237560][T14746] RSP: 002b:00007fffb9185ab0 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 938.237780][T14746] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007f32accaec5e [ 938.237995][T14746] RDX: 0000000000000000 RSI: 00007fffb9185b70 RDI: 0000000000000005 [ 938.238250][T14746] RBP: 00007fffb9185ac0 R08: 0000000000000000 R09: 0000000000000000 [ 938.238493][T14746] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 938.238726][T14746] R13: 0000000069cbe7f1 R14: 0000000000000004 R15: 000000000049d620 | [ 938.310724][T14750] ------------[ cut here ]------------ | [ 938.310930][T14750] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#3: ip/14750 | [ 938.311175][T14750] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 938.312016][T14750] Tainted: [W]=WARN [ 938.312123][T14750] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 938.312304][T14750] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 938.312468][T14750] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 938.312982][T14750] RSP: 0018:ffa00000038975d0 EFLAGS: 00010286 [ 938.313171][T14750] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe2200001ea0537 [ 938.313424][T14750] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100000f5029b8 [ 938.313639][T14750] RBP: 1ff4000000712ebb R08: 1fe2200001ea0538 R09: fffa3bfffffb0b24 [ 938.313849][T14750] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100000f5023f4 [ 938.314064][T14750] R13: ff1100000f5023c0 R14: ffffffff931c7940 R15: ff1100000f502900 [ 938.314278][T14750] FS: 00007ff4ae654440(0000) GS:ff110000a3238000(0000) knlGS:0000000000000000 [ 938.314535][T14750] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 938.314712][T14750] CR2: 000000000044f720 CR3: 000000001a18a006 CR4: 0000000000771ef0 [ 938.314930][T14750] PKRU: 55555554 [ 938.315039][T14750] Call Trace: [ 938.315148][T14750] [ 938.315232][T14750] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 938.315375][T14750] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 938.315547][T14750] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 938.315703][T14750] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 938.315851][T14750] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 938.316029][T14750] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 938.316178][T14750] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 938.316332][T14750] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 938.316479][T14750] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 938.316610][T14750] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 938.316774][T14750] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 938.316942][T14750] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 938.317109][T14750] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 938.317267][T14750] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 938.317411][T14750] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 938.317552][T14750] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 938.317713][T14750] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 938.317877][T14750] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 938.318034][T14750] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 938.318185][T14750] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 938.318325][T14750] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 938.318466][T14750] ? copy_msghdr_from_user (net/socket.c:2525) [ 938.318600][T14750] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 938.318788][T14750] ? move_addr_to_kernel (net/socket.c:2511) [ 938.318934][T14750] ? filemap_map_folio_range (mm/filemap.c:3873) [ 938.319103][T14750] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 938.319273][T14750] ___sys_sendmsg (net/socket.c:2641) [ 938.319422][T14750] ? copy_msghdr_from_user (net/socket.c:2628) [ 938.319587][T14750] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 938.319728][T14750] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 938.319865][T14750] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 938.320007][T14750] ? __sys_sendmsg_sock (net/socket.c:2656) [ 938.320163][T14750] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 938.320328][T14750] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 938.320500][T14750] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 938.320640][T14750] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 938.320798][T14750] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 938.320965][T14750] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 938.321154][T14750] RIP: 0033:0x7ff4ae7aec5e [ 938.321495][T14750] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 938.322017][T14750] RSP: 002b:00007fffe6de2fa0 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 938.322314][T14750] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007ff4ae7aec5e [ 938.322520][T14750] RDX: 0000000000000000 RSI: 00007fffe6de3060 RDI: 0000000000000005 [ 938.322735][T14750] RBP: 00007fffe6de2fb0 R08: 0000000000000000 R09: 0000000000000000 [ 938.322950][T14750] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 938.323164][T14750] R13: 0000000069cbe7f1 R14: 0000000000000004 R15: 000000000049d620 | [ 938.406647][T14756] ------------[ cut here ]------------ | [ 938.406825][T14756] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#3: ip/14756 | [ 938.407688][T14756] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 938.408656][T14756] Tainted: [W]=WARN [ 938.408759][T14756] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 938.409039][T14756] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 938.409185][T14756] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 938.409666][T14756] RSP: 0018:ffa00000038a75d0 EFLAGS: 00010286 [ 938.409837][T14756] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe2200001ea079f [ 938.410146][T14756] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100000f503cf8 [ 938.410353][T14756] RBP: 1ff4000000714ebb R08: 1fe2200001ea07a0 R09: fffa3bfffffb0b24 [ 938.410576][T14756] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100000f502234 [ 938.410778][T14756] R13: ff1100000f502200 R14: ffffffff931c7940 R15: ff1100000f503c40 [ 938.411088][T14756] FS: 00007f32fe930440(0000) GS:ff110000a3238000(0000) knlGS:0000000000000000 [ 938.411328][T14756] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 938.411507][T14756] CR2: 000000000044f720 CR3: 000000001acf4005 CR4: 0000000000771ef0 [ 938.411712][T14756] PKRU: 55555554 [ 938.411814][T14756] Call Trace: [ 938.412014][T14756] [ 938.412085][T14756] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 938.412219][T14756] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 938.412363][T14756] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 938.412504][T14756] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 938.412640][T14756] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 938.412789][T14756] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 938.413038][T14756] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 938.413176][T14756] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 938.413309][T14756] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 938.413467][T14756] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 938.413606][T14756] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 938.413740][T14756] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 938.413879][T14756] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 938.414087][T14756] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 938.414227][T14756] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 938.414394][T14756] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 938.414538][T14756] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 938.414679][T14756] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 938.414823][T14756] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 938.415049][T14756] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 938.415193][T14756] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 938.415335][T14756] ? copy_msghdr_from_user (net/socket.c:2525) [ 938.415483][T14756] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 938.415654][T14756] ? move_addr_to_kernel (net/socket.c:2511) [ 938.415795][T14756] ? filemap_map_folio_range (mm/filemap.c:3873) [ 938.416034][T14756] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 938.416177][T14756] ___sys_sendmsg (net/socket.c:2641) [ 938.416318][T14756] ? copy_msghdr_from_user (net/socket.c:2628) [ 938.416490][T14756] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 938.416634][T14756] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 938.416779][T14756] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 938.416988][T14756] ? __sys_sendmsg_sock (net/socket.c:2656) [ 938.417137][T14756] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 938.417290][T14756] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 938.417448][T14756] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 938.417597][T14756] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 938.417743][T14756] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 938.417892][T14756] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 938.418115][T14756] RIP: 0033:0x7f32fea8ac5e [ 938.418265][T14756] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 938.418792][T14756] RSP: 002b:00007fff1367b750 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 938.419014][T14756] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007f32fea8ac5e [ 938.419227][T14756] RDX: 0000000000000000 RSI: 00007fff1367b810 RDI: 0000000000000005 [ 938.419440][T14756] RBP: 00007fff1367b760 R08: 0000000000000000 R09: 0000000000000000 [ 938.419654][T14756] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 938.419864][T14756] R13: 0000000069cbe7f1 R14: 0000000000000004 R15: 000000000049d620 | [ 938.495253][T14760] ------------[ cut here ]------------ | [ 938.495455][T14760] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#1: ip/14760 | [ 938.495703][T14760] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 938.496513][T14760] Tainted: [W]=WARN [ 938.496621][T14760] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 938.496793][T14760] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 938.496942][T14760] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 938.497453][T14760] RSP: 0018:ffa00000038a75d0 EFLAGS: 00010286 [ 938.497634][T14760] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe22000036f1b67 [ 938.497846][T14760] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001b78db38 [ 938.498068][T14760] RBP: 1ff4000000714ebb R08: 1fe22000036f1b68 R09: fffa3bfffffb0b24 [ 938.498288][T14760] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001b78ccb4 [ 938.498502][T14760] R13: ff1100001b78cc80 R14: ffffffff931c7940 R15: ff1100001b78da80 [ 938.498708][T14760] FS: 00007fa2d95cf440(0000) GS:ff110000a3138000(0000) knlGS:0000000000000000 [ 938.498959][T14760] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 938.499126][T14760] CR2: 000000000044f720 CR3: 000000001c57f006 CR4: 0000000000771ef0 [ 938.499333][T14760] PKRU: 55555554 [ 938.499443][T14760] Call Trace: [ 938.499545][T14760] [ 938.499614][T14760] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 938.499753][T14760] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 938.499913][T14760] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 938.500056][T14760] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 938.500197][T14760] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 938.500332][T14760] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 938.500494][T14760] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 938.500637][T14760] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 938.500776][T14760] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 938.500915][T14760] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 938.501050][T14760] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 938.501182][T14760] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 938.501314][T14760] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 938.501452][T14760] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 938.501589][T14760] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 938.501727][T14760] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 938.501867][T14760] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 938.502006][T14760] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 938.502146][T14760] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 938.502284][T14760] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 938.502423][T14760] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 938.502556][T14760] ? copy_msghdr_from_user (net/socket.c:2525) [ 938.502688][T14760] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 938.502858][T14760] ? move_addr_to_kernel (net/socket.c:2511) [ 938.503000][T14760] ? filemap_map_folio_range (mm/filemap.c:3873) [ 938.503133][T14760] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 938.503269][T14760] ___sys_sendmsg (net/socket.c:2641) [ 938.503413][T14760] ? copy_msghdr_from_user (net/socket.c:2628) [ 938.503558][T14760] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 938.503703][T14760] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 938.503840][T14760] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 938.503981][T14760] ? __sys_sendmsg_sock (net/socket.c:2656) [ 938.504127][T14760] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 938.504267][T14760] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 938.504403][T14760] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 938.504540][T14760] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 938.504674][T14760] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 938.504811][T14760] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 938.504997][T14760] RIP: 0033:0x7fa2d9729c5e [ 938.505153][T14760] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 938.505663][T14760] RSP: 002b:00007ffd806c9890 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 938.505872][T14760] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007fa2d9729c5e [ 938.506102][T14760] RDX: 0000000000000000 RSI: 00007ffd806c9950 RDI: 0000000000000005 [ 938.506307][T14760] RBP: 00007ffd806c98a0 R08: 0000000000000000 R09: 0000000000000000 [ 938.506515][T14760] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 938.506718][T14760] R13: 0000000069cbe7f1 R14: 0000000000000004 R15: 000000000049d620 | [ 938.584250][T14766] ------------[ cut here ]------------ | [ 938.584488][T14766] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#2: ip/14766 | [ 938.584797][T14766] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 938.585752][T14766] Tainted: [W]=WARN [ 938.585955][T14766] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 938.586183][T14766] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 938.586400][T14766] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 938.587076][T14766] RSP: 0018:ffa00000038c75d0 EFLAGS: 00010286 [ 938.587406][T14766] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe22000036f19df [ 938.587779][T14766] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001b78cef8 [ 938.588140][T14766] RBP: 1ff4000000718ebb R08: 1fe22000036f19e0 R09: fffa3bfffffb0b24 [ 938.588509][T14766] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001b78d3b4 [ 938.588869][T14766] R13: ff1100001b78d380 R14: ffffffff931c7940 R15: ff1100001b78ce40 [ 938.589230][T14766] FS: 00007eff3eb65440(0000) GS:ff110000a31b8000(0000) knlGS:0000000000000000 [ 938.589632][T14766] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 938.589867][T14766] CR2: 000000000044f720 CR3: 0000000019c61005 CR4: 0000000000771ef0 [ 938.590150][T14766] PKRU: 55555554 [ 938.590342][T14766] Call Trace: [ 938.590505][T14766] [ 938.590634][T14766] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 938.590829][T14766] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 938.591063][T14766] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 938.591397][T14766] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 938.591596][T14766] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 938.591811][T14766] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 938.592029][T14766] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 938.592230][T14766] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 938.592432][T14766] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 938.592654][T14766] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 938.592853][T14766] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 938.593056][T14766] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 938.593256][T14766] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 938.593489][T14766] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 938.593699][T14766] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 938.593912][T14766] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 938.594121][T14766] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 938.594335][T14766] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 938.594542][T14766] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 938.594743][T14766] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 938.594964][T14766] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 938.595174][T14766] ? copy_msghdr_from_user (net/socket.c:2525) [ 938.595388][T14766] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 938.595626][T14766] ? move_addr_to_kernel (net/socket.c:2511) [ 938.595834][T14766] ? filemap_map_folio_range (mm/filemap.c:3873) [ 938.596049][T14766] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 938.596258][T14766] ___sys_sendmsg (net/socket.c:2641) [ 938.596471][T14766] ? copy_msghdr_from_user (net/socket.c:2628) [ 938.596714][T14766] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 938.596940][T14766] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 938.597154][T14766] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 938.597355][T14766] ? __sys_sendmsg_sock (net/socket.c:2656) [ 938.597584][T14766] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 938.597780][T14766] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 938.597993][T14766] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 938.598179][T14766] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 938.598368][T14766] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 938.598587][T14766] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 938.598837][T14766] RIP: 0033:0x7eff3ecbfc5e [ 938.599058][T14766] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 938.599603][T14766] RSP: 002b:00007ffcb51db1a0 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 938.599856][T14766] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007eff3ecbfc5e [ 938.600113][T14766] RDX: 0000000000000000 RSI: 00007ffcb51db260 RDI: 0000000000000005 [ 938.600365][T14766] RBP: 00007ffcb51db1b0 R08: 0000000000000000 R09: 0000000000000000 [ 938.600636][T14766] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 938.600884][T14766] R13: 0000000069cbe7f2 R14: 0000000000000004 R15: 000000000049d620 | [ 938.676679][T14770] ------------[ cut here ]------------ | [ 938.676850][T14770] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#3: ip/14770 | [ 938.677140][T14770] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 938.677949][T14770] Tainted: [W]=WARN [ 938.678051][T14770] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 938.678220][T14770] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 938.678367][T14770] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 938.678879][T14770] RSP: 0018:ffa00000039075d0 EFLAGS: 00010286 [ 938.679066][T14770] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe220000372581f [ 938.679266][T14770] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001b92c0f8 [ 938.679475][T14770] RBP: 1ff4000000720ebb R08: 1fe2200003725820 R09: fffa3bfffffb0b24 [ 938.679674][T14770] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001b78c3f4 [ 938.679882][T14770] R13: ff1100001b78c3c0 R14: ffffffff931c7940 R15: ff1100001b92c040 [ 938.680099][T14770] FS: 00007f20ecc17440(0000) GS:ff110000a3238000(0000) knlGS:0000000000000000 [ 938.680335][T14770] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 938.680512][T14770] CR2: 000000000044f720 CR3: 0000000019de0004 CR4: 0000000000771ef0 [ 938.680720][T14770] PKRU: 55555554 [ 938.680826][T14770] Call Trace: [ 938.681022][T14770] [ 938.681092][T14770] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 938.681227][T14770] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 938.681369][T14770] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 938.681507][T14770] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 938.681641][T14770] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 938.681777][T14770] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 938.681987][T14770] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 938.682123][T14770] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 938.682264][T14770] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 938.682412][T14770] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 938.682554][T14770] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 938.682698][T14770] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 938.682838][T14770] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 938.683022][T14770] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 938.683153][T14770] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 938.683286][T14770] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 938.683426][T14770] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 938.683560][T14770] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 938.683696][T14770] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 938.683830][T14770] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 938.684025][T14770] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 938.684164][T14770] ? copy_msghdr_from_user (net/socket.c:2525) [ 938.684317][T14770] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 938.684494][T14770] ? move_addr_to_kernel (net/socket.c:2511) [ 938.684635][T14770] ? filemap_map_folio_range (mm/filemap.c:3873) [ 938.684771][T14770] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 938.684954][T14770] ___sys_sendmsg (net/socket.c:2641) [ 938.685098][T14770] ? copy_msghdr_from_user (net/socket.c:2628) [ 938.685267][T14770] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 938.685409][T14770] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 938.685544][T14770] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 938.685682][T14770] ? __sys_sendmsg_sock (net/socket.c:2656) [ 938.685820][T14770] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 938.686005][T14770] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 938.686140][T14770] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 938.686281][T14770] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 938.686465][T14770] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 938.686605][T14770] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 938.686774][T14770] RIP: 0033:0x7f20ecd71c5e [ 938.686972][T14770] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 938.687509][T14770] RSP: 002b:00007ffe4da23a80 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 938.687735][T14770] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007f20ecd71c5e [ 938.687996][T14770] RDX: 0000000000000000 RSI: 00007ffe4da23b40 RDI: 0000000000000005 [ 938.688198][T14770] RBP: 00007ffe4da23a90 R08: 0000000000000000 R09: 0000000000000000 [ 938.688402][T14770] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 938.688610][T14770] R13: 0000000069cbe7f2 R14: 0000000000000004 R15: 000000000049d620 | [ 938.772761][T14776] ------------[ cut here ]------------ | [ 938.772982][T14776] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#2: ip/14776 | [ 938.773271][T14776] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 938.774152][T14776] Tainted: [W]=WARN [ 938.774318][T14776] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 938.774555][T14776] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 938.774752][T14776] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 938.775291][T14776] RSP: 0018:ffa00000038d75d0 EFLAGS: 00010286 [ 938.775527][T14776] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe22000037258c7 [ 938.775780][T14776] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001b92c638 [ 938.776045][T14776] RBP: 1ff400000071aebb R08: 1fe22000037258c8 R09: fffa3bfffffb0b24 [ 938.776302][T14776] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001b92c234 [ 938.776561][T14776] R13: ff1100001b92c200 R14: ffffffff931c7940 R15: ff1100001b92c580 [ 938.776815][T14776] FS: 00007f2b52eeb440(0000) GS:ff110000a31b8000(0000) knlGS:0000000000000000 [ 938.777116][T14776] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 938.777340][T14776] CR2: 000000000044f720 CR3: 000000000f554001 CR4: 0000000000771ef0 [ 938.777600][T14776] PKRU: 55555554 [ 938.777765][T14776] Call Trace: [ 938.777934][T14776] [ 938.778053][T14776] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 938.778238][T14776] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 938.778448][T14776] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 938.778642][T14776] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 938.778836][T14776] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 938.779045][T14776] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 938.779230][T14776] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 938.779435][T14776] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 938.779626][T14776] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 938.779814][T14776] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 938.780025][T14776] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 938.780227][T14776] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 938.780426][T14776] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 938.780619][T14776] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 938.780802][T14776] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 938.781006][T14776] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 938.781192][T14776] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 938.781390][T14776] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 938.781581][T14776] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 938.781767][T14776] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 938.781968][T14776] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 938.782154][T14776] ? copy_msghdr_from_user (net/socket.c:2525) [ 938.782339][T14776] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 938.782563][T14776] ? move_addr_to_kernel (net/socket.c:2511) [ 938.782748][T14776] ? filemap_map_folio_range (mm/filemap.c:3873) [ 938.782943][T14776] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 938.783132][T14776] ___sys_sendmsg (net/socket.c:2641) [ 938.783317][T14776] ? copy_msghdr_from_user (net/socket.c:2628) [ 938.783518][T14776] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 938.783708][T14776] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 938.783911][T14776] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 938.784102][T14776] ? __sys_sendmsg_sock (net/socket.c:2656) [ 938.784291][T14776] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 938.784488][T14776] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 938.784676][T14776] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 938.784864][T14776] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 938.785062][T14776] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 938.785249][T14776] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 938.785487][T14776] RIP: 0033:0x7f2b53045c5e [ 938.785678][T14776] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 938.786216][T14776] RSP: 002b:00007ffd7754c0c0 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 938.786481][T14776] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007f2b53045c5e [ 938.786734][T14776] RDX: 0000000000000000 RSI: 00007ffd7754c180 RDI: 0000000000000005 [ 938.787000][T14776] RBP: 00007ffd7754c0d0 R08: 0000000000000000 R09: 0000000000000000 [ 938.787251][T14776] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 938.787512][T14776] R13: 0000000069cbe7f2 R14: 0000000000000004 R15: 000000000049d620 | [ 938.849616][T14780] ------------[ cut here ]------------ | [ 938.849777][T14780] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#0: ip/14780 | [ 938.850029][T14780] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 938.850826][T14780] Tainted: [W]=WARN [ 938.850938][T14780] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 938.851110][T14780] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 938.851251][T14780] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 938.851734][T14780] RSP: 0018:ffa00000038975d0 EFLAGS: 00010286 [ 938.851910][T14780] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe2200003725bd7 [ 938.852111][T14780] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001b92deb8 [ 938.852309][T14780] RBP: 1ff4000000712ebb R08: 1fe2200003725bd8 R09: fffa3bfffffb0b24 [ 938.852514][T14780] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001b92dc74 [ 938.852712][T14780] R13: ff1100001b92dc40 R14: ffffffff931c7940 R15: ff1100001b92de00 [ 938.853440][T14780] FS: 00007f884a893440(0000) GS:ff110000a30b8000(0000) knlGS:0000000000000000 [ 938.853710][T14780] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 938.853887][T14780] CR2: 000000000044f720 CR3: 000000001082a003 CR4: 0000000000771ef0 [ 938.854100][T14780] PKRU: 55555554 [ 938.854203][T14780] Call Trace: [ 938.854306][T14780] [ 938.854375][T14780] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 938.854519][T14780] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 938.854660][T14780] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 938.854801][T14780] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 938.854942][T14780] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 938.855083][T14780] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 938.855222][T14780] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 938.855359][T14780] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 938.855500][T14780] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 938.855634][T14780] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 938.855771][T14780] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 938.855908][T14780] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 938.856044][T14780] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 938.856178][T14780] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 938.856315][T14780] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 938.856453][T14780] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 938.856591][T14780] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 938.856727][T14780] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 938.856862][T14780] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 938.857003][T14780] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 938.857147][T14780] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 938.857288][T14780] ? copy_msghdr_from_user (net/socket.c:2525) [ 938.857427][T14780] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 938.857601][T14780] ? move_addr_to_kernel (net/socket.c:2511) [ 938.857745][T14780] ? filemap_map_folio_range (mm/filemap.c:3873) [ 938.857881][T14780] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 938.858028][T14780] ___sys_sendmsg (net/socket.c:2641) [ 938.858182][T14780] ? copy_msghdr_from_user (net/socket.c:2628) [ 938.858331][T14780] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 938.858480][T14780] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 938.858616][T14780] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 938.858750][T14780] ? __sys_sendmsg_sock (net/socket.c:2656) [ 938.858889][T14780] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 938.859029][T14780] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 938.859164][T14780] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 938.859303][T14780] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 938.859453][T14780] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 938.859601][T14780] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 938.859782][T14780] RIP: 0033:0x7f884a9edc5e [ 938.859937][T14780] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 938.860430][T14780] RSP: 002b:00007fff768234b0 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 938.860641][T14780] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007f884a9edc5e [ 938.860855][T14780] RDX: 0000000000000000 RSI: 00007fff76823570 RDI: 0000000000000005 [ 938.861067][T14780] RBP: 00007fff768234c0 R08: 0000000000000000 R09: 0000000000000000 [ 938.861281][T14780] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 938.861487][T14780] R13: 0000000069cbe7f2 R14: 0000000000000004 R15: 000000000049d620 | [ 938.933782][T14786] ------------[ cut here ]------------ | [ 938.934518][T14786] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#3: ip/14786 | [ 938.934768][T14786] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 938.935617][T14786] Tainted: [W]=WARN [ 938.935726][T14786] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 938.935907][T14786] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 938.936062][T14786] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 938.936562][T14786] RSP: 0018:ffa00000039275d0 EFLAGS: 00010286 [ 938.936756][T14786] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe22000038753d7 [ 938.936977][T14786] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001c3a9eb8 [ 938.937182][T14786] RBP: 1ff4000000724ebb R08: 1fe22000038753d8 R09: fffa3bfffffb0b24 [ 938.937390][T14786] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001c3a85b4 [ 938.937592][T14786] R13: ff1100001c3a8580 R14: ffffffff931c7940 R15: ff1100001c3a9e00 [ 938.937816][T14786] FS: 00007fcfeb6a2440(0000) GS:ff110000a3238000(0000) knlGS:0000000000000000 [ 938.938076][T14786] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 938.938248][T14786] CR2: 000000000044f720 CR3: 0000000019269003 CR4: 0000000000771ef0 [ 938.938460][T14786] PKRU: 55555554 [ 938.938565][T14786] Call Trace: [ 938.938668][T14786] [ 938.938736][T14786] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 938.938877][T14786] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 938.939041][T14786] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 938.939178][T14786] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 938.939313][T14786] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 938.939459][T14786] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 938.939599][T14786] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 938.939736][T14786] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 938.939870][T14786] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 938.940012][T14786] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 938.940157][T14786] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 938.940304][T14786] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 938.940462][T14786] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 938.940603][T14786] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 938.940738][T14786] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 938.940880][T14786] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 938.941022][T14786] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 938.941173][T14786] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 938.941309][T14786] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 938.941464][T14786] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 938.941600][T14786] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 938.941752][T14786] ? copy_msghdr_from_user (net/socket.c:2525) [ 938.941918][T14786] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 938.942242][T14786] ? move_addr_to_kernel (net/socket.c:2511) [ 938.942383][T14786] ? filemap_map_folio_range (mm/filemap.c:3873) [ 938.942526][T14786] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 938.942665][T14786] ___sys_sendmsg (net/socket.c:2641) [ 938.942813][T14786] ? copy_msghdr_from_user (net/socket.c:2628) [ 938.942967][T14786] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 938.943203][T14786] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 938.943358][T14786] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 938.943524][T14786] ? __sys_sendmsg_sock (net/socket.c:2656) [ 938.943688][T14786] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 938.943832][T14786] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 938.943974][T14786] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 938.944115][T14786] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 938.944248][T14786] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 938.944389][T14786] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 938.944557][T14786] RIP: 0033:0x7fcfeb7fcc5e [ 938.944706][T14786] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 938.945233][T14786] RSP: 002b:00007fff26ee58b0 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 938.945473][T14786] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007fcfeb7fcc5e [ 938.945699][T14786] RDX: 0000000000000000 RSI: 00007fff26ee5970 RDI: 0000000000000005 [ 938.945909][T14786] RBP: 00007fff26ee58c0 R08: 0000000000000000 R09: 0000000000000000 [ 938.946128][T14786] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 938.946346][T14786] R13: 0000000069cbe7f2 R14: 0000000000000004 R15: 000000000049d620 | [ 939.018774][T14790] ------------[ cut here ]------------ | [ 939.018957][T14790] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#3: ip/14790 | [ 939.019206][T14790] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 939.020020][T14790] Tainted: [W]=WARN [ 939.020122][T14790] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 939.020319][T14790] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 939.020475][T14790] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 939.020974][T14790] RSP: 0018:ffa00000038975d0 EFLAGS: 00010286 [ 939.021152][T14790] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe22000038751a7 [ 939.021355][T14790] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001c3a8d38 [ 939.021563][T14790] RBP: 1ff4000000712ebb R08: 1fe22000038751a8 R09: fffa3bfffffb0b24 [ 939.021769][T14790] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001c3a93b4 [ 939.021973][T14790] R13: ff1100001c3a9380 R14: ffffffff931c7940 R15: ff1100001c3a8c80 [ 939.022183][T14790] FS: 00007fc6c96d0440(0000) GS:ff110000a3238000(0000) knlGS:0000000000000000 [ 939.022432][T14790] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 939.022602][T14790] CR2: 000000000044f720 CR3: 000000001a6bf002 CR4: 0000000000771ef0 [ 939.022817][T14790] PKRU: 55555554 [ 939.022934][T14790] Call Trace: [ 939.023036][T14790] [ 939.023105][T14790] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 939.023240][T14790] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 939.023388][T14790] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 939.023541][T14790] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 939.023673][T14790] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 939.023812][T14790] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 939.023955][T14790] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 939.024091][T14790] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 939.024231][T14790] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 939.024397][T14790] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 939.024535][T14790] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 939.024673][T14790] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 939.024810][T14790] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 939.024988][T14790] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 939.025123][T14790] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 939.025258][T14790] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 939.025398][T14790] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 939.025534][T14790] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 939.025671][T14790] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 939.025806][T14790] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 939.025950][T14790] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 939.026085][T14790] ? copy_msghdr_from_user (net/socket.c:2525) [ 939.026216][T14790] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 939.026397][T14790] ? move_addr_to_kernel (net/socket.c:2511) [ 939.026534][T14790] ? filemap_map_folio_range (mm/filemap.c:3873) [ 939.026677][T14790] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 939.026822][T14790] ___sys_sendmsg (net/socket.c:2641) [ 939.026965][T14790] ? copy_msghdr_from_user (net/socket.c:2628) [ 939.027107][T14790] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 939.027246][T14790] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 939.027391][T14790] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 939.027526][T14790] ? __sys_sendmsg_sock (net/socket.c:2656) [ 939.027676][T14790] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 939.027821][T14790] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 939.027967][T14790] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 939.028125][T14790] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 939.028273][T14790] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 939.028421][T14790] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 939.028757][T14790] RIP: 0033:0x7fc6c982ac5e [ 939.028905][T14790] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 939.029411][T14790] RSP: 002b:00007ffdd37b5fc0 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 939.029640][T14790] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007fc6c982ac5e [ 939.029859][T14790] RDX: 0000000000000000 RSI: 00007ffdd37b6080 RDI: 0000000000000005 [ 939.030070][T14790] RBP: 00007ffdd37b5fd0 R08: 0000000000000000 R09: 0000000000000000 [ 939.030280][T14790] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 939.030486][T14790] R13: 0000000069cbe7f2 R14: 0000000000000004 R15: 000000000049d620 | [ 939.113131][T14796] ------------[ cut here ]------------ | [ 939.113342][T14796] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#2: ip/14796 | [ 939.113701][T14796] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 939.114625][T14796] Tainted: [W]=WARN [ 939.114783][T14796] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 939.115600][T14796] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 939.115801][T14796] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 939.116367][T14796] RSP: 0018:ffa00000039175d0 EFLAGS: 00010286 [ 939.116614][T14796] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe220000192e857 [ 939.116881][T14796] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100000c9742b8 [ 939.117164][T14796] RBP: 1ff4000000722ebb R08: 1fe220000192e858 R09: fffa3bfffffb0b24 [ 939.117432][T14796] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001c3a9734 [ 939.117711][T14796] R13: ff1100001c3a9700 R14: ffffffff931c7940 R15: ff1100000c974200 [ 939.117996][T14796] FS: 00007f5e90126440(0000) GS:ff110000a31b8000(0000) knlGS:0000000000000000 [ 939.118292][T14796] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 939.118549][T14796] CR2: 000000000044f720 CR3: 000000001cc51006 CR4: 0000000000771ef0 [ 939.118813][T14796] PKRU: 55555554 [ 939.118990][T14796] Call Trace: [ 939.119144][T14796] [ 939.119263][T14796] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 939.119458][T14796] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 939.119654][T14796] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 939.119841][T14796] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 939.120040][T14796] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 939.120248][T14796] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 939.120459][T14796] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 939.120659][T14796] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 939.120865][T14796] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 939.121073][T14796] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 939.121262][T14796] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 939.121461][T14796] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 939.121652][T14796] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 939.121838][T14796] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 939.122034][T14796] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 939.122221][T14796] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 939.122413][T14796] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 939.122602][T14796] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 939.122787][T14796] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 939.122988][T14796] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 939.123180][T14796] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 939.123367][T14796] ? copy_msghdr_from_user (net/socket.c:2525) [ 939.123561][T14796] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 939.123778][T14796] ? move_addr_to_kernel (net/socket.c:2511) [ 939.123980][T14796] ? filemap_map_folio_range (mm/filemap.c:3873) [ 939.124168][T14796] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 939.124376][T14796] ___sys_sendmsg (net/socket.c:2641) [ 939.124583][T14796] ? copy_msghdr_from_user (net/socket.c:2628) [ 939.124781][T14796] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 939.124989][T14796] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 939.125186][T14796] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 939.125372][T14796] ? __sys_sendmsg_sock (net/socket.c:2656) [ 939.125585][T14796] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 939.125772][T14796] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 939.125973][T14796] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 939.126162][T14796] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 939.126347][T14796] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 939.126575][T14796] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 939.126813][T14796] RIP: 0033:0x7f5e90280c5e [ 939.127029][T14796] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 939.127594][T14796] RSP: 002b:00007ffe03c96820 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 939.127863][T14796] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007f5e90280c5e [ 939.128126][T14796] RDX: 0000000000000000 RSI: 00007ffe03c968e0 RDI: 0000000000000005 [ 939.128391][T14796] RBP: 00007ffe03c96830 R08: 0000000000000000 R09: 0000000000000000 [ 939.128646][T14796] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 939.128909][T14796] R13: 0000000069cbe7f2 R14: 0000000000000004 R15: 000000000049d620 | [ 939.187436][T14800] ------------[ cut here ]------------ | [ 939.187595][T14800] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#3: ip/14800 | [ 939.187832][T14800] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 939.188607][T14800] Tainted: [W]=WARN [ 939.188710][T14800] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 939.188884][T14800] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 939.189044][T14800] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 939.189537][T14800] RSP: 0018:ffa00000039175d0 EFLAGS: 00010286 [ 939.189707][T14800] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe220000192e9a7 [ 939.189916][T14800] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100000c974d38 [ 939.190132][T14800] RBP: 1ff4000000722ebb R08: 1fe220000192e9a8 R09: fffa3bfffffb0b24 [ 939.190350][T14800] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100000c974e74 [ 939.190554][T14800] R13: ff1100000c974e40 R14: ffffffff931c7940 R15: ff1100000c974c80 [ 939.190756][T14800] FS: 00007f20b8294440(0000) GS:ff110000a3238000(0000) knlGS:0000000000000000 [ 939.191007][T14800] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 939.191175][T14800] CR2: 000000000044f720 CR3: 000000000bf24004 CR4: 0000000000771ef0 [ 939.191381][T14800] PKRU: 55555554 [ 939.191484][T14800] Call Trace: [ 939.191585][T14800] [ 939.191656][T14800] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 939.191792][T14800] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 939.191943][T14800] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 939.192079][T14800] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 939.192214][T14800] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 939.192351][T14800] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 939.192491][T14800] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 939.192625][T14800] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 939.192760][T14800] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 939.192901][T14800] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 939.193040][T14800] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 939.193186][T14800] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 939.193325][T14800] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 939.193471][T14800] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 939.193611][T14800] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 939.193757][T14800] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 939.193900][T14800] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 939.194035][T14800] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 939.194168][T14800] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 939.194301][T14800] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 939.194444][T14800] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 939.194579][T14800] ? copy_msghdr_from_user (net/socket.c:2525) [ 939.194714][T14800] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 939.194880][T14800] ? move_addr_to_kernel (net/socket.c:2511) [ 939.195020][T14800] ? filemap_map_folio_range (mm/filemap.c:3873) [ 939.195158][T14800] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 939.195304][T14800] ___sys_sendmsg (net/socket.c:2641) [ 939.195444][T14800] ? copy_msghdr_from_user (net/socket.c:2628) [ 939.195679][T14800] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 939.195822][T14800] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 939.195968][T14800] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 939.196102][T14800] ? __sys_sendmsg_sock (net/socket.c:2656) [ 939.196327][T14800] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 939.196482][T14800] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 939.196618][T14800] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 939.196753][T14800] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 939.196975][T14800] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 939.197112][T14800] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 939.197279][T14800] RIP: 0033:0x7f20b83eec5e [ 939.197429][T14800] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 939.198009][T14800] RSP: 002b:00007ffe465ce8d0 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 939.198294][T14800] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007f20b83eec5e [ 939.198509][T14800] RDX: 0000000000000000 RSI: 00007ffe465ce990 RDI: 0000000000000005 [ 939.198710][T14800] RBP: 00007ffe465ce8e0 R08: 0000000000000000 R09: 0000000000000000 [ 939.199003][T14800] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 939.199207][T14800] R13: 0000000069cbe7f2 R14: 0000000000000004 R15: 000000000049d620 | [ 939.288411][T14806] ------------[ cut here ]------------ | [ 939.288575][T14806] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#3: ip/14806 | [ 939.288811][T14806] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 939.289593][T14806] Tainted: [W]=WARN [ 939.289711][T14806] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 939.289886][T14806] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 939.290047][T14806] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 939.290530][T14806] RSP: 0018:ffa00000038a75d0 EFLAGS: 00010286 [ 939.290703][T14806] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe220000192ea17 [ 939.290920][T14806] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100000c9750b8 [ 939.291138][T14806] RBP: 1ff4000000714ebb R08: 1fe220000192ea18 R09: fffa3bfffffb0b24 [ 939.291353][T14806] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100000c975c74 [ 939.291562][T14806] R13: ff1100000c975c40 R14: ffffffff931c7940 R15: ff1100000c975000 [ 939.291766][T14806] FS: 00007f1ec12bd440(0000) GS:ff110000a3238000(0000) knlGS:0000000000000000 [ 939.292007][T14806] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 939.292177][T14806] CR2: 000000000044f720 CR3: 000000001997f003 CR4: 0000000000771ef0 [ 939.292387][T14806] PKRU: 55555554 [ 939.292502][T14806] Call Trace: [ 939.292604][T14806] [ 939.292673][T14806] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 939.292808][T14806] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 939.292954][T14806] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 939.293088][T14806] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 939.293221][T14806] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 939.293359][T14806] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 939.293494][T14806] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 939.293629][T14806] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 939.293763][T14806] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 939.293902][T14806] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 939.294038][T14806] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 939.294170][T14806] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 939.294305][T14806] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 939.294446][T14806] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 939.294576][T14806] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 939.294709][T14806] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 939.294842][T14806] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 939.295590][T14806] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 939.295725][T14806] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 939.295861][T14806] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 939.296010][T14806] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 939.296143][T14806] ? copy_msghdr_from_user (net/socket.c:2525) [ 939.296275][T14806] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 939.296447][T14806] ? move_addr_to_kernel (net/socket.c:2511) [ 939.296582][T14806] ? filemap_map_folio_range (mm/filemap.c:3873) [ 939.296715][T14806] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 939.296850][T14806] ___sys_sendmsg (net/socket.c:2641) [ 939.296989][T14806] ? copy_msghdr_from_user (net/socket.c:2628) [ 939.297137][T14806] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 939.297274][T14806] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 939.297415][T14806] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 939.297547][T14806] ? __sys_sendmsg_sock (net/socket.c:2656) [ 939.297689][T14806] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 939.297821][T14806] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 939.297960][T14806] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 939.298103][T14806] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 939.298233][T14806] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 939.298365][T14806] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 939.298608][T14806] RIP: 0033:0x7f1ec1417c5e [ 939.298756][T14806] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 939.299244][T14806] RSP: 002b:00007ffd7f5498f0 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 939.299693][T14806] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007f1ec1417c5e [ 939.299898][T14806] RDX: 0000000000000000 RSI: 00007ffd7f5499b0 RDI: 0000000000000005 [ 939.300107][T14806] RBP: 00007ffd7f549900 R08: 0000000000000000 R09: 0000000000000000 [ 939.300316][T14806] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 939.300537][T14806] R13: 0000000069cbe7f2 R14: 0000000000000004 R15: 000000000049d620 | [ 939.388363][T14810] ------------[ cut here ]------------ | [ 939.388566][T14810] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#1: ip/14810 | [ 939.388814][T14810] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 939.389628][T14810] Tainted: [W]=WARN [ 939.389733][T14810] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 939.389911][T14810] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 939.390056][T14810] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 939.390587][T14810] RSP: 0018:ffa00000039475d0 EFLAGS: 00010286 [ 939.390774][T14810] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe2200003229f2f [ 939.391056][T14810] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001914f978 [ 939.391268][T14810] RBP: 1ff4000000728ebb R08: 1fe2200003229f30 R09: fffa3bfffffb0b24 [ 939.391488][T14810] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001914f034 [ 939.391701][T14810] R13: ff1100001914f000 R14: ffffffff931c7940 R15: ff1100001914f8c0 [ 939.391988][T14810] FS: 00007fac0b5d0440(0000) GS:ff110000a3138000(0000) knlGS:0000000000000000 [ 939.392287][T14810] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 939.392478][T14810] CR2: 000000000044f720 CR3: 000000000d868005 CR4: 0000000000771ef0 [ 939.392695][T14810] PKRU: 55555554 [ 939.392799][T14810] Call Trace: [ 939.392970][T14810] [ 939.393040][T14810] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 939.393184][T14810] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 939.393329][T14810] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 939.393478][T14810] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 939.393619][T14810] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 939.393784][T14810] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 939.394006][T14810] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 939.394159][T14810] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 939.394303][T14810] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 939.394449][T14810] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 939.394593][T14810] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 939.394741][T14810] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 939.394880][T14810] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 939.395079][T14810] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 939.395216][T14810] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 939.395356][T14810] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 939.395501][T14810] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 939.395638][T14810] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 939.395779][T14810] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 939.396005][T14810] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 939.396144][T14810] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 939.396288][T14810] ? copy_msghdr_from_user (net/socket.c:2525) [ 939.396449][T14810] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 939.396621][T14810] ? move_addr_to_kernel (net/socket.c:2511) [ 939.396761][T14810] ? filemap_map_folio_range (mm/filemap.c:3873) [ 939.396959][T14810] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 939.397123][T14810] ___sys_sendmsg (net/socket.c:2641) [ 939.397257][T14810] ? copy_msghdr_from_user (net/socket.c:2628) [ 939.397409][T14810] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 939.397550][T14810] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 939.397691][T14810] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 939.397858][T14810] ? __sys_sendmsg_sock (net/socket.c:2656) [ 939.398034][T14810] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 939.398167][T14810] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 939.398307][T14810] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 939.398459][T14810] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 939.398595][T14810] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 939.398730][T14810] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 939.398905][T14810] RIP: 0033:0x7fac0b72ac5e [ 939.399048][T14810] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 939.399578][T14810] RSP: 002b:00007ffdfda2ad80 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 939.399789][T14810] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007fac0b72ac5e [ 939.400008][T14810] RDX: 0000000000000000 RSI: 00007ffdfda2ae40 RDI: 0000000000000005 [ 939.400217][T14810] RBP: 00007ffdfda2ad90 R08: 0000000000000000 R09: 0000000000000000 [ 939.400433][T14810] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 939.400639][T14810] R13: 0000000069cbe7f2 R14: 0000000000000004 R15: 000000000049d620 | [ 939.467929][T14816] ------------[ cut here ]------------ | [ 939.468103][T14816] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#3: ip/14816 | [ 939.468348][T14816] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 939.469168][T14816] Tainted: [W]=WARN [ 939.469276][T14816] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 939.469453][T14816] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 939.469596][T14816] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 939.470230][T14816] RSP: 0018:ffa00000039975d0 EFLAGS: 00010286 [ 939.470416][T14816] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe2200003229fd7 [ 939.470635][T14816] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001914feb8 [ 939.470845][T14816] RBP: 1ff4000000732ebb R08: 1fe2200003229fd8 R09: fffa3bfffffb0b24 [ 939.471067][T14816] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001914fc74 [ 939.471310][T14816] R13: ff1100001914fc40 R14: ffffffff931c7940 R15: ff1100001914fe00 [ 939.471527][T14816] FS: 00007fe50dd1c440(0000) GS:ff110000a3238000(0000) knlGS:0000000000000000 [ 939.471763][T14816] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 939.471948][T14816] CR2: 000000000044f720 CR3: 000000001b97a004 CR4: 0000000000771ef0 [ 939.472161][T14816] PKRU: 55555554 [ 939.472271][T14816] Call Trace: [ 939.472381][T14816] [ 939.472458][T14816] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 939.472604][T14816] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 939.473167][T14816] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 939.473316][T14816] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 939.473468][T14816] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 939.473610][T14816] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 939.473748][T14816] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 939.473908][T14816] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 939.474046][T14816] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 939.474189][T14816] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 939.474335][T14816] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 939.474485][T14816] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 939.474631][T14816] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 939.474769][T14816] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 939.474917][T14816] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 939.475065][T14816] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 939.475201][T14816] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 939.475345][T14816] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 939.475494][T14816] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 939.475638][T14816] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 939.475780][T14816] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 939.475926][T14816] ? copy_msghdr_from_user (net/socket.c:2525) [ 939.476072][T14816] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 939.476246][T14816] ? move_addr_to_kernel (net/socket.c:2511) [ 939.476395][T14816] ? filemap_map_folio_range (mm/filemap.c:3873) [ 939.476539][T14816] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 939.476680][T14816] ___sys_sendmsg (net/socket.c:2641) [ 939.476815][T14816] ? copy_msghdr_from_user (net/socket.c:2628) [ 939.476963][T14816] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 939.477108][T14816] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 939.477248][T14816] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 939.477387][T14816] ? __sys_sendmsg_sock (net/socket.c:2656) [ 939.477526][T14816] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 939.477665][T14816] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 939.477800][T14816] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 939.477940][T14816] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 939.478074][T14816] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 939.478211][T14816] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 939.478382][T14816] RIP: 0033:0x7fe50de76c5e [ 939.478529][T14816] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 939.479030][T14816] RSP: 002b:00007ffce069dda0 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 939.479239][T14816] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007fe50de76c5e [ 939.479457][T14816] RDX: 0000000000000000 RSI: 00007ffce069de60 RDI: 0000000000000005 [ 939.479660][T14816] RBP: 00007ffce069ddb0 R08: 0000000000000000 R09: 0000000000000000 [ 939.479862][T14816] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 939.480071][T14816] R13: 0000000069cbe7f2 R14: 0000000000000004 R15: 000000000049d620 | [ 939.541382][T14820] ------------[ cut here ]------------ | [ 939.541602][T14820] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#2: ip/14820 | [ 939.541924][T14820] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 939.542811][T14820] Tainted: [W]=WARN [ 939.542978][T14820] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 939.543208][T14820] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 939.543416][T14820] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 939.543990][T14820] RSP: 0018:ffa00000039c75d0 EFLAGS: 00010286 [ 939.544226][T14820] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe22000034c22f7 [ 939.544495][T14820] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001a6117b8 [ 939.544778][T14820] RBP: 1ff4000000738ebb R08: 1fe22000034c22f8 R09: fffa3bfffffb0b24 [ 939.545048][T14820] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001a611034 [ 939.545327][T14820] R13: ff1100001a611000 R14: ffffffff931c7940 R15: ff1100001a611700 [ 939.545611][T14820] FS: 00007f3862071440(0000) GS:ff110000a31b8000(0000) knlGS:0000000000000000 [ 939.545925][T14820] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 939.546146][T14820] CR2: 000000000044f720 CR3: 000000001073a002 CR4: 0000000000771ef0 [ 939.546408][T14820] PKRU: 55555554 [ 939.546566][T14820] Call Trace: [ 939.546744][T14820] [ 939.546871][T14820] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 939.547084][T14820] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 939.547297][T14820] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 939.547497][T14820] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 939.547684][T14820] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 939.547881][T14820] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 939.548079][T14820] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 939.548266][T14820] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 939.548462][T14820] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 939.548647][T14820] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 939.548836][T14820] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 939.549033][T14820] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 939.549221][T14820] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 939.549413][T14820] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 939.549596][T14820] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 939.549787][T14820] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 939.549982][T14820] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 939.550168][T14820] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 939.550354][T14820] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 939.550549][T14820] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 939.550736][T14820] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 939.550934][T14820] ? copy_msghdr_from_user (net/socket.c:2525) [ 939.551118][T14820] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 939.551335][T14820] ? move_addr_to_kernel (net/socket.c:2511) [ 939.551530][T14820] ? filemap_map_folio_range (mm/filemap.c:3873) [ 939.551713][T14820] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 939.551912][T14820] ___sys_sendmsg (net/socket.c:2641) [ 939.552098][T14820] ? copy_msghdr_from_user (net/socket.c:2628) [ 939.552286][T14820] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 939.552499][T14820] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 939.552701][T14820] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 939.552888][T14820] ? __sys_sendmsg_sock (net/socket.c:2656) [ 939.553090][T14820] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 939.553273][T14820] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 939.553465][T14820] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 939.553653][T14820] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 939.553837][T14820] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 939.554036][T14820] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 939.554277][T14820] RIP: 0033:0x7f38621cbc5e [ 939.554492][T14820] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 939.555059][T14820] RSP: 002b:00007ffc86b197f0 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 939.555329][T14820] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007f38621cbc5e [ 939.555608][T14820] RDX: 0000000000000000 RSI: 00007ffc86b198b0 RDI: 0000000000000005 [ 939.555865][T14820] RBP: 00007ffc86b19800 R08: 0000000000000000 R09: 0000000000000000 [ 939.556132][T14820] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 939.556392][T14820] R13: 0000000069cbe7f3 R14: 0000000000000004 R15: 000000000049d620 | [ 939.635647][T14826] ------------[ cut here ]------------ | [ 939.635811][T14826] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#1: ip/14826 | [ 939.636432][T14826] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 939.637205][T14826] Tainted: [W]=WARN [ 939.637305][T14826] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 939.637479][T14826] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 939.637620][T14826] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 939.638101][T14826] RSP: 0018:ffa00000039a75d0 EFLAGS: 00010286 [ 939.638268][T14826] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe22000034c201f [ 939.638470][T14826] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001a6100f8 [ 939.638668][T14826] RBP: 1ff4000000734ebb R08: 1fe22000034c2020 R09: fffa3bfffffb0b24 [ 939.638866][T14826] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001a6113b4 [ 939.639070][T14826] R13: ff1100001a611380 R14: ffffffff931c7940 R15: ff1100001a610040 [ 939.639271][T14826] FS: 00007f8f1638e440(0000) GS:ff110000a3138000(0000) knlGS:0000000000000000 [ 939.639513][T14826] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 939.639681][T14826] CR2: 000000000044f720 CR3: 0000000018354004 CR4: 0000000000771ef0 [ 939.639882][T14826] PKRU: 55555554 [ 939.639989][T14826] Call Trace: [ 939.640089][T14826] [ 939.640156][T14826] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 939.640305][T14826] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 939.640454][T14826] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 939.640590][T14826] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 939.640727][T14826] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 939.640869][T14826] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 939.641005][T14826] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 939.641144][T14826] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 939.641279][T14826] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 939.641418][T14826] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 939.641558][T14826] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 939.641691][T14826] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 939.641825][T14826] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 939.641972][T14826] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 939.642107][T14826] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 939.642244][T14826] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 939.642384][T14826] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 939.642521][T14826] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 939.642656][T14826] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 939.642799][T14826] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 939.642941][T14826] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 939.643078][T14826] ? copy_msghdr_from_user (net/socket.c:2525) [ 939.643221][T14826] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 939.643409][T14826] ? move_addr_to_kernel (net/socket.c:2511) [ 939.643557][T14826] ? filemap_map_folio_range (mm/filemap.c:3873) [ 939.643693][T14826] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 939.643835][T14826] ___sys_sendmsg (net/socket.c:2641) [ 939.643972][T14826] ? copy_msghdr_from_user (net/socket.c:2628) [ 939.644114][T14826] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 939.644252][T14826] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 939.644394][T14826] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 939.644529][T14826] ? __sys_sendmsg_sock (net/socket.c:2656) [ 939.644687][T14826] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 939.644821][T14826] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 939.644982][T14826] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 939.645116][T14826] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 939.645249][T14826] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 939.645384][T14826] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 939.645549][T14826] RIP: 0033:0x7f8f164e8c5e [ 939.645691][T14826] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 939.646177][T14826] RSP: 002b:00007ffd5d9816f0 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 939.646385][T14826] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007f8f164e8c5e [ 939.646603][T14826] RDX: 0000000000000000 RSI: 00007ffd5d9817b0 RDI: 0000000000000005 [ 939.646818][T14826] RBP: 00007ffd5d981700 R08: 0000000000000000 R09: 0000000000000000 [ 939.647030][T14826] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 939.647230][T14826] R13: 0000000069cbe7f3 R14: 0000000000000004 R15: 000000000049d620 | [ 939.729889][T14830] ------------[ cut here ]------------ | [ 939.730126][T14830] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#2: ip/14830 | [ 939.730433][T14830] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 939.731350][T14830] Tainted: [W]=WARN [ 939.731538][T14830] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 939.731764][T14830] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 939.732004][T14830] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 939.732588][T14830] RSP: 0018:ffa00000038775d0 EFLAGS: 00010286 [ 939.732824][T14830] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe2200001ea06bf [ 939.733598][T14830] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100000f5035f8 [ 939.733915][T14830] RBP: 1ff400000070eebb R08: 1fe2200001ea06c0 R09: fffa3bfffffb0b24 [ 939.734185][T14830] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100000f503034 [ 939.734492][T14830] R13: ff1100000f503000 R14: ffffffff931c7940 R15: ff1100000f503540 [ 939.734773][T14830] FS: 00007f1e491a7440(0000) GS:ff110000a31b8000(0000) knlGS:0000000000000000 [ 939.735097][T14830] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 939.735333][T14830] CR2: 000000000044f720 CR3: 000000001c05a006 CR4: 0000000000771ef0 [ 939.735607][T14830] PKRU: 55555554 [ 939.735775][T14830] Call Trace: [ 939.735955][T14830] [ 939.736080][T14830] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 939.736287][T14830] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 939.736514][T14830] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 939.736716][T14830] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 939.736931][T14830] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 939.737137][T14830] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 939.737339][T14830] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 939.737540][T14830] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 939.737729][T14830] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 939.737936][T14830] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 939.738137][T14830] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 939.738349][T14830] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 939.738564][T14830] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 939.738759][T14830] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 939.738981][T14830] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 939.739185][T14830] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 939.739386][T14830] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 939.739586][T14830] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 939.739794][T14830] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 939.740006][T14830] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 939.740201][T14830] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 939.740412][T14830] ? copy_msghdr_from_user (net/socket.c:2525) [ 939.740606][T14830] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 939.740836][T14830] ? move_addr_to_kernel (net/socket.c:2511) [ 939.741057][T14830] ? filemap_map_folio_range (mm/filemap.c:3873) [ 939.741248][T14830] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 939.741475][T14830] ___sys_sendmsg (net/socket.c:2641) [ 939.741671][T14830] ? copy_msghdr_from_user (net/socket.c:2628) [ 939.741875][T14830] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 939.742086][T14830] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 939.742294][T14830] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 939.742520][T14830] ? __sys_sendmsg_sock (net/socket.c:2656) [ 939.742724][T14830] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 939.742933][T14830] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 939.743137][T14830] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 939.743352][T14830] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 939.743583][T14830] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 939.743790][T14830] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 939.744051][T14830] RIP: 0033:0x7f1e49301c5e [ 939.744268][T14830] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 939.744842][T14830] RSP: 002b:00007ffeffe4cca0 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 939.745134][T14830] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007f1e49301c5e [ 939.745404][T14830] RDX: 0000000000000000 RSI: 00007ffeffe4cd60 RDI: 0000000000000005 [ 939.745665][T14830] RBP: 00007ffeffe4ccb0 R08: 0000000000000000 R09: 0000000000000000 [ 939.745933][T14830] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 939.746205][T14830] R13: 0000000069cbe7f3 R14: 0000000000000004 R15: 000000000049d620 | [ 939.820363][T14836] ------------[ cut here ]------------ | [ 939.820761][T14836] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#0: ip/14836 | [ 939.821009][T14836] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 939.821804][T14836] Tainted: [W]=WARN [ 939.821913][T14836] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 939.822086][T14836] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 939.822274][T14836] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 939.822807][T14836] RSP: 0018:ffa0000003a275d0 EFLAGS: 00010286 [ 939.823420][T14836] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe2200001ea0457 [ 939.823657][T14836] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100000f5022b8 [ 939.823907][T14836] RBP: 1ff4000000744ebb R08: 1fe2200001ea0458 R09: fffa3bfffffb0b24 [ 939.824132][T14836] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100000f5038f4 [ 939.824362][T14836] R13: ff1100000f5038c0 R14: ffffffff931c7940 R15: ff1100000f502200 [ 939.824580][T14836] FS: 00007f170ea30440(0000) GS:ff110000a30b8000(0000) knlGS:0000000000000000 [ 939.824854][T14836] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 939.825035][T14836] CR2: 000000000044f720 CR3: 00000000191f2005 CR4: 0000000000771ef0 [ 939.825241][T14836] PKRU: 55555554 [ 939.825342][T14836] Call Trace: [ 939.825454][T14836] [ 939.825523][T14836] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 939.825658][T14836] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 939.825808][T14836] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 939.825954][T14836] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 939.826086][T14836] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 939.826247][T14836] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 939.826395][T14836] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 939.826577][T14836] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 939.826718][T14836] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 939.826876][T14836] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 939.827034][T14836] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 939.827194][T14836] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 939.827359][T14836] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 939.827502][T14836] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 939.827657][T14836] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 939.827808][T14836] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 939.827967][T14836] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 939.828129][T14836] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 939.828273][T14836] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 939.828435][T14836] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 939.828590][T14836] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 939.828737][T14836] ? copy_msghdr_from_user (net/socket.c:2525) [ 939.828880][T14836] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 939.829057][T14836] ? move_addr_to_kernel (net/socket.c:2511) [ 939.829193][T14836] ? filemap_map_folio_range (mm/filemap.c:3873) [ 939.829330][T14836] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 939.829475][T14836] ___sys_sendmsg (net/socket.c:2641) [ 939.829617][T14836] ? copy_msghdr_from_user (net/socket.c:2628) [ 939.829841][T14836] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 939.829995][T14836] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 939.830136][T14836] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 939.830270][T14836] ? __sys_sendmsg_sock (net/socket.c:2656) [ 939.830492][T14836] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 939.830652][T14836] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 939.830789][T14836] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 939.830930][T14836] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 939.831144][T14836] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 939.831281][T14836] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 939.831604][T14836] RIP: 0033:0x7f170eb8ac5e [ 939.831747][T14836] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 939.832333][T14836] RSP: 002b:00007ffc86bf56b0 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 939.832648][T14836] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007f170eb8ac5e [ 939.832852][T14836] RDX: 0000000000000000 RSI: 00007ffc86bf5770 RDI: 0000000000000005 [ 939.833071][T14836] RBP: 00007ffc86bf56c0 R08: 0000000000000000 R09: 0000000000000000 [ 939.833374][T14836] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 939.833652][T14836] R13: 0000000069cbe7f3 R14: 0000000000000004 R15: 000000000049d620 | [ 939.915741][T14840] ------------[ cut here ]------------ | [ 939.916159][T14840] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#2: ip/14840 | [ 939.916470][T14840] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 939.917394][T14840] Tainted: [W]=WARN [ 939.917551][T14840] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 939.917785][T14840] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 939.918009][T14840] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 939.918549][T14840] RSP: 0018:ffa00000038775d0 EFLAGS: 00010286 [ 939.918779][T14840] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe22000036f1a4f [ 939.919047][T14840] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001b78d278 [ 939.919304][T14840] RBP: 1ff400000070eebb R08: 1fe22000036f1a50 R09: fffa3bfffffb0b24 [ 939.919562][T14840] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001b78caf4 [ 939.919816][T14840] R13: ff1100001b78cac0 R14: ffffffff931c7940 R15: ff1100001b78d1c0 [ 939.920084][T14840] FS: 00007f91967a3440(0000) GS:ff110000a31b8000(0000) knlGS:0000000000000000 [ 939.920396][T14840] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 939.920625][T14840] CR2: 000000000044f720 CR3: 00000000106e2006 CR4: 0000000000771ef0 [ 939.920881][T14840] PKRU: 55555554 [ 939.921049][T14840] Call Trace: [ 939.921204][T14840] [ 939.921327][T14840] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 939.921525][T14840] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 939.921729][T14840] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 939.921936][T14840] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 939.922123][T14840] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 939.922315][T14840] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 939.922516][T14840] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 939.922711][T14840] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 939.922914][T14840] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 939.923107][T14840] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 939.923301][T14840] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 939.923495][T14840] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 939.923695][T14840] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 939.923886][T14840] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 939.924088][T14840] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 939.924278][T14840] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 939.924479][T14840] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 939.924673][T14840] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 939.924863][T14840] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 939.925063][T14840] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 939.925257][T14840] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 939.925454][T14840] ? copy_msghdr_from_user (net/socket.c:2525) [ 939.925646][T14840] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 939.925884][T14840] ? move_addr_to_kernel (net/socket.c:2511) [ 939.926103][T14840] ? filemap_map_folio_range (mm/filemap.c:3873) [ 939.926302][T14840] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 939.926516][T14840] ___sys_sendmsg (net/socket.c:2641) [ 939.926715][T14840] ? copy_msghdr_from_user (net/socket.c:2628) [ 939.926931][T14840] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 939.927131][T14840] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 939.927332][T14840] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 939.927529][T14840] ? __sys_sendmsg_sock (net/socket.c:2656) [ 939.927722][T14840] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 939.927924][T14840] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 939.928122][T14840] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 939.928323][T14840] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 939.928526][T14840] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 939.928732][T14840] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 939.928972][T14840] RIP: 0033:0x7f91968fdc5e [ 939.929184][T14840] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 939.929761][T14840] RSP: 002b:00007fff56eacef0 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 939.930048][T14840] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007f91968fdc5e [ 939.930319][T14840] RDX: 0000000000000000 RSI: 00007fff56eacfb0 RDI: 0000000000000005 [ 939.930619][T14840] RBP: 00007fff56eacf00 R08: 0000000000000000 R09: 0000000000000000 [ 939.930884][T14840] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 939.931148][T14840] R13: 0000000069cbe7f3 R14: 0000000000000004 R15: 000000000049d620 | [ 940.016069][T14846] ------------[ cut here ]------------ | [ 940.016280][T14846] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#2: ip/14846 | [ 940.016580][T14846] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 940.017460][T14846] Tainted: [W]=WARN [ 940.017613][T14846] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 940.017831][T14846] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 940.018039][T14846] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 940.018583][T14846] RSP: 0018:ffa0000003a675d0 EFLAGS: 00010286 [ 940.018806][T14846] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe22000036f1b9f [ 940.019072][T14846] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001b78dcf8 [ 940.019333][T14846] RBP: 1ff400000074cebb R08: 1fe22000036f1ba0 R09: fffa3bfffffb0b24 [ 940.019604][T14846] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001b78d034 [ 940.019871][T14846] R13: ff1100001b78d000 R14: ffffffff931c7940 R15: ff1100001b78dc40 [ 940.020166][T14846] FS: 00007f9d6892e440(0000) GS:ff110000a31b8000(0000) knlGS:0000000000000000 [ 940.020485][T14846] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 940.020722][T14846] CR2: 000000000044f720 CR3: 000000001bffa006 CR4: 0000000000771ef0 [ 940.021003][T14846] PKRU: 55555554 [ 940.021171][T14846] Call Trace: [ 940.021324][T14846] [ 940.021464][T14846] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 940.021670][T14846] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 940.021885][T14846] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 940.022093][T14846] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 940.022281][T14846] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 940.022489][T14846] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 940.022674][T14846] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 940.022863][T14846] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 940.023070][T14846] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 940.023257][T14846] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 940.023455][T14846] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 940.023639][T14846] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 940.023828][T14846] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 940.024048][T14846] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 940.024244][T14846] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 940.024451][T14846] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 940.024658][T14846] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 940.024863][T14846] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 940.025082][T14846] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 940.025282][T14846] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 940.025488][T14846] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 940.025689][T14846] ? copy_msghdr_from_user (net/socket.c:2525) [ 940.025887][T14846] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 940.026131][T14846] ? move_addr_to_kernel (net/socket.c:2511) [ 940.026329][T14846] ? filemap_map_folio_range (mm/filemap.c:3873) [ 940.026533][T14846] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 940.026720][T14846] ___sys_sendmsg (net/socket.c:2641) [ 940.026925][T14846] ? copy_msghdr_from_user (net/socket.c:2628) [ 940.027129][T14846] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 940.027331][T14846] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 940.027542][T14846] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 940.027731][T14846] ? __sys_sendmsg_sock (net/socket.c:2656) [ 940.027934][T14846] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 940.028127][T14846] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 940.028316][T14846] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 940.028515][T14846] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 940.028704][T14846] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 940.028906][T14846] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 940.029123][T14846] RIP: 0033:0x7f9d68a88c5e [ 940.029322][T14846] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 940.029924][T14846] RSP: 002b:00007fff686f6380 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 940.030195][T14846] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007f9d68a88c5e [ 940.030468][T14846] RDX: 0000000000000000 RSI: 00007fff686f6440 RDI: 0000000000000005 [ 940.030756][T14846] RBP: 00007fff686f6390 R08: 0000000000000000 R09: 0000000000000000 [ 940.031043][T14846] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 940.031316][T14846] R13: 0000000069cbe7f3 R14: 0000000000000004 R15: 000000000049d620 | [ 940.107655][T14850] ------------[ cut here ]------------ | [ 940.107848][T14850] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#3: ip/14850 | [ 940.108116][T14850] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 940.108965][T14850] Tainted: [W]=WARN [ 940.109077][T14850] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 940.109263][T14850] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 940.109431][T14850] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 940.109974][T14850] RSP: 0018:ffa00000039f75d0 EFLAGS: 00010286 [ 940.110168][T14850] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe2200003725af7 [ 940.110395][T14850] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001b92d7b8 [ 940.110613][T14850] RBP: 1ff400000073eebb R08: 1fe2200003725af8 R09: fffa3bfffffb0b24 [ 940.110837][T14850] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001b92d8f4 [ 940.111067][T14850] R13: ff1100001b92d8c0 R14: ffffffff931c7940 R15: ff1100001b92d700 [ 940.111283][T14850] FS: 00007f262bd23440(0000) GS:ff110000a3238000(0000) knlGS:0000000000000000 [ 940.111546][T14850] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 940.111734][T14850] CR2: 000000000044f720 CR3: 000000001a73d001 CR4: 0000000000771ef0 [ 940.111964][T14850] PKRU: 55555554 [ 940.112071][T14850] Call Trace: [ 940.112183][T14850] [ 940.112254][T14850] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 940.112416][T14850] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 940.112582][T14850] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 940.112739][T14850] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 940.112880][T14850] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 940.113030][T14850] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 940.113175][T14850] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 940.113321][T14850] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 940.113479][T14850] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 940.113626][T14850] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 940.113776][T14850] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 940.113936][T14850] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 940.114092][T14850] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 940.114249][T14850] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 940.114396][T14850] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 940.114540][T14850] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 940.114684][T14850] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 940.114835][T14850] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 940.114991][T14850] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 940.115137][T14850] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 940.115287][T14850] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 940.115435][T14850] ? copy_msghdr_from_user (net/socket.c:2525) [ 940.115580][T14850] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 940.115767][T14850] ? move_addr_to_kernel (net/socket.c:2511) [ 940.115915][T14850] ? filemap_map_folio_range (mm/filemap.c:3873) [ 940.116062][T14850] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 940.116206][T14850] ___sys_sendmsg (net/socket.c:2641) [ 940.116353][T14850] ? copy_msghdr_from_user (net/socket.c:2628) [ 940.116506][T14850] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 940.116668][T14850] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 940.116813][T14850] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 940.116967][T14850] ? __sys_sendmsg_sock (net/socket.c:2656) [ 940.117114][T14850] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 940.117264][T14850] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 940.117425][T14850] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 940.117572][T14850] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 940.117716][T14850] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 940.117863][T14850] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 940.118061][T14850] RIP: 0033:0x7f262be7dc5e [ 940.118214][T14850] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 940.118739][T14850] RSP: 002b:00007ffe24e327c0 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 940.118971][T14850] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007f262be7dc5e [ 940.119188][T14850] RDX: 0000000000000000 RSI: 00007ffe24e32880 RDI: 0000000000000005 [ 940.119411][T14850] RBP: 00007ffe24e327d0 R08: 0000000000000000 R09: 0000000000000000 [ 940.119628][T14850] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 940.119838][T14850] R13: 0000000069cbe7f3 R14: 0000000000000004 R15: 000000000049d620 | [ 940.229674][T14856] ------------[ cut here ]------------ | [ 940.229867][T14856] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#0: ip/14856 | [ 940.230134][T14856] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 940.230955][T14856] Tainted: [W]=WARN [ 940.231061][T14856] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 940.231235][T14856] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 940.231392][T14856] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 940.231900][T14856] RSP: 0018:ffa0000003ab75d0 EFLAGS: 00010286 [ 940.232106][T14856] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe2200003725a4f [ 940.232343][T14856] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001b92d278 [ 940.232577][T14856] RBP: 1ff4000000756ebb R08: 1fe2200003725a50 R09: fffa3bfffffb0b24 [ 940.232835][T14856] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001b92d3b4 [ 940.233069][T14856] R13: ff1100001b92d380 R14: ffffffff931c7940 R15: ff1100001b92d1c0 [ 940.233289][T14856] FS: 00007f3315ece440(0000) GS:ff110000a30b8000(0000) knlGS:0000000000000000 [ 940.233584][T14856] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 940.233784][T14856] CR2: 000000000044f720 CR3: 00000000197af003 CR4: 0000000000771ef0 [ 940.234021][T14856] PKRU: 55555554 [ 940.234135][T14856] Call Trace: [ 940.234246][T14856] [ 940.234321][T14856] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 940.234475][T14856] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 940.234630][T14856] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 940.234780][T14856] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 940.234932][T14856] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 940.235114][T14856] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 940.235318][T14856] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 940.235541][T14856] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 940.235747][T14856] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 940.235930][T14856] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 940.236077][T14856] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 940.236219][T14856] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 940.236361][T14856] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 940.236524][T14856] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 940.236670][T14856] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 940.236816][T14856] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 940.236965][T14856] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 940.237111][T14856] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 940.237252][T14856] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 940.237403][T14856] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 940.237556][T14856] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 940.237699][T14856] ? copy_msghdr_from_user (net/socket.c:2525) [ 940.237841][T14856] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 940.238026][T14856] ? move_addr_to_kernel (net/socket.c:2511) [ 940.238168][T14856] ? filemap_map_folio_range (mm/filemap.c:3873) [ 940.238309][T14856] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 940.238460][T14856] ___sys_sendmsg (net/socket.c:2641) [ 940.238611][T14856] ? copy_msghdr_from_user (net/socket.c:2628) [ 940.238758][T14856] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 940.238906][T14856] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 940.239048][T14856] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 940.239200][T14856] ? __sys_sendmsg_sock (net/socket.c:2656) [ 940.239348][T14856] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 940.239498][T14856] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 940.239645][T14856] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 940.239791][T14856] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 940.239944][T14856] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 940.240089][T14856] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 940.240269][T14856] RIP: 0033:0x7f3316028c5e [ 940.240426][T14856] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 940.241046][T14856] RSP: 002b:00007ffc1a3fecd0 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 940.241277][T14856] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007f3316028c5e [ 940.241495][T14856] RDX: 0000000000000000 RSI: 00007ffc1a3fed90 RDI: 0000000000000005 [ 940.241733][T14856] RBP: 00007ffc1a3fece0 R08: 0000000000000000 R09: 0000000000000000 [ 940.241972][T14856] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 940.242192][T14856] R13: 0000000069cbe7f3 R14: 0000000000000004 R15: 000000000049d620 | [ 940.308864][T14860] ------------[ cut here ]------------ | [ 940.309053][T14860] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#0: ip/14860 | [ 940.309299][T14860] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 940.310118][T14860] Tainted: [W]=WARN [ 940.310230][T14860] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 940.310407][T14860] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 940.310554][T14860] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 940.311046][T14860] RSP: 0018:ffa0000003aa75d0 EFLAGS: 00010286 [ 940.311223][T14860] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe2200003875287 [ 940.311431][T14860] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001c3a9438 [ 940.311629][T14860] RBP: 1ff4000000754ebb R08: 1fe2200003875288 R09: fffa3bfffffb0b24 [ 940.311830][T14860] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001c3a9ab4 [ 940.312043][T14860] R13: ff1100001c3a9a80 R14: ffffffff931c7940 R15: ff1100001c3a9380 [ 940.312255][T14860] FS: 00007fd0c937d440(0000) GS:ff110000a30b8000(0000) knlGS:0000000000000000 [ 940.312514][T14860] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 940.312690][T14860] CR2: 000000000044f720 CR3: 0000000017e56001 CR4: 0000000000771ef0 [ 940.312901][T14860] PKRU: 55555554 [ 940.313002][T14860] Call Trace: [ 940.313109][T14860] [ 940.313179][T14860] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 940.313324][T14860] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 940.313476][T14860] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 940.313618][T14860] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 940.313752][T14860] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 940.313907][T14860] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 940.314047][T14860] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 940.314187][T14860] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 940.314325][T14860] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 940.314464][T14860] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 940.314602][T14860] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 940.314742][T14860] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 940.314884][T14860] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 940.315520][T14860] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 940.315671][T14860] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 940.315823][T14860] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 940.315975][T14860] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 940.316117][T14860] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 940.316258][T14860] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 940.316400][T14860] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 940.316543][T14860] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 940.316688][T14860] ? copy_msghdr_from_user (net/socket.c:2525) [ 940.316829][T14860] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 940.317009][T14860] ? move_addr_to_kernel (net/socket.c:2511) [ 940.317148][T14860] ? filemap_map_folio_range (mm/filemap.c:3873) [ 940.317283][T14860] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 940.317427][T14860] ___sys_sendmsg (net/socket.c:2641) [ 940.317561][T14860] ? copy_msghdr_from_user (net/socket.c:2628) [ 940.317699][T14860] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 940.317835][T14860] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 940.317978][T14860] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 940.318114][T14860] ? __sys_sendmsg_sock (net/socket.c:2656) [ 940.318250][T14860] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 940.318387][T14860] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 940.318521][T14860] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 940.318654][T14860] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 940.318786][T14860] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 940.318926][T14860] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 940.319092][T14860] RIP: 0033:0x7fd0c94d7c5e [ 940.319240][T14860] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 940.319750][T14860] RSP: 002b:00007ffc191b54e0 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 940.319970][T14860] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007fd0c94d7c5e [ 940.320180][T14860] RDX: 0000000000000000 RSI: 00007ffc191b55a0 RDI: 0000000000000005 [ 940.320394][T14860] RBP: 00007ffc191b54f0 R08: 0000000000000000 R09: 0000000000000000 [ 940.320604][T14860] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 940.320813][T14860] R13: 0000000069cbe7f3 R14: 0000000000000004 R15: 000000000049d620 | [ 940.395183][T14866] ------------[ cut here ]------------ | [ 940.395405][T14866] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#2: ip/14866 | [ 940.395693][T14866] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 940.396593][T14866] Tainted: [W]=WARN [ 940.396752][T14866] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 940.396982][T14866] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 940.397175][T14866] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 940.397731][T14866] RSP: 0018:ffa0000003a075d0 EFLAGS: 00010286 [ 940.397968][T14866] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe220000387532f [ 940.398217][T14866] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001c3a9978 [ 940.398479][T14866] RBP: 1ff4000000740ebb R08: 1fe2200003875330 R09: fffa3bfffffb0b24 [ 940.398730][T14866] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001c3a8774 [ 940.399491][T14866] R13: ff1100001c3a8740 R14: ffffffff931c7940 R15: ff1100001c3a98c0 [ 940.399743][T14866] FS: 00007f7b04646440(0000) GS:ff110000a31b8000(0000) knlGS:0000000000000000 [ 940.400051][T14866] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 940.400273][T14866] CR2: 000000000044f720 CR3: 000000001c046001 CR4: 0000000000771ef0 [ 940.400532][T14866] PKRU: 55555554 [ 940.400684][T14866] Call Trace: [ 940.400834][T14866] [ 940.400965][T14866] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 940.401173][T14866] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 940.401397][T14866] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 940.401599][T14866] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 940.401791][T14866] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 940.402000][T14866] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 940.402189][T14866] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 940.402391][T14866] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 940.402587][T14866] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 940.402779][T14866] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 940.402985][T14866] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 940.403179][T14866] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 940.403372][T14866] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 940.403576][T14866] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 940.403763][T14866] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 940.403970][T14866] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 940.404192][T14866] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 940.404414][T14866] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 940.404631][T14866] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 940.404844][T14866] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 940.405069][T14866] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 940.405275][T14866] ? copy_msghdr_from_user (net/socket.c:2525) [ 940.405495][T14866] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 940.405735][T14866] ? move_addr_to_kernel (net/socket.c:2511) [ 940.405954][T14866] ? filemap_map_folio_range (mm/filemap.c:3873) [ 940.406170][T14866] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 940.406391][T14866] ___sys_sendmsg (net/socket.c:2641) [ 940.406598][T14866] ? copy_msghdr_from_user (net/socket.c:2628) [ 940.406809][T14866] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 940.407040][T14866] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 940.407248][T14866] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 940.407461][T14866] ? __sys_sendmsg_sock (net/socket.c:2656) [ 940.407673][T14866] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 940.407884][T14866] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 940.408114][T14866] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 940.408325][T14866] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 940.408539][T14866] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 940.408760][T14866] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 940.409003][T14866] RIP: 0033:0x7f7b047a0c5e [ 940.409203][T14866] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 940.409764][T14866] RSP: 002b:00007ffd75ead590 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 940.410050][T14866] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007f7b047a0c5e [ 940.410302][T14866] RDX: 0000000000000000 RSI: 00007ffd75ead650 RDI: 0000000000000005 [ 940.410567][T14866] RBP: 00007ffd75ead5a0 R08: 0000000000000000 R09: 0000000000000000 [ 940.410816][T14866] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 940.411078][T14866] R13: 0000000069cbe7f3 R14: 0000000000000004 R15: 000000000049d620 | [ 940.488339][T14870] ------------[ cut here ]------------ | [ 940.488570][T14870] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#2: ip/14870 | [ 940.488871][T14870] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 940.489799][T14870] Tainted: [W]=WARN [ 940.490469][T14870] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 940.490700][T14870] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 940.490916][T14870] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 940.491476][T14870] RSP: 0018:ffa0000003a475d0 EFLAGS: 00010286 [ 940.491747][T14870] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe220000192eb9f [ 940.492012][T14870] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100000c975cf8 [ 940.492283][T14870] RBP: 1ff4000000748ebb R08: 1fe220000192eba0 R09: fffa3bfffffb0b24 [ 940.492563][T14870] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100000c975e34 [ 940.492815][T14870] R13: ff1100000c975e00 R14: ffffffff931c7940 R15: ff1100000c975c40 [ 940.493092][T14870] FS: 00007f7c48754440(0000) GS:ff110000a31b8000(0000) knlGS:0000000000000000 [ 940.493402][T14870] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 940.493664][T14870] CR2: 000000000044f720 CR3: 0000000017c1c003 CR4: 0000000000771ef0 [ 940.493962][T14870] PKRU: 55555554 [ 940.494121][T14870] Call Trace: [ 940.494281][T14870] [ 940.494408][T14870] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 940.494601][T14870] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 940.494796][T14870] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 940.495004][T14870] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 940.495196][T14870] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 940.495402][T14870] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 940.495589][T14870] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 940.495803][T14870] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 940.496009][T14870] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 940.496210][T14870] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 940.496418][T14870] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 940.496618][T14870] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 940.496813][T14870] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 940.497027][T14870] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 940.497229][T14870] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 940.497441][T14870] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 940.497644][T14870] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 940.497840][T14870] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 940.498081][T14870] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 940.498271][T14870] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 940.498470][T14870] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 940.498658][T14870] ? copy_msghdr_from_user (net/socket.c:2525) [ 940.498843][T14870] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 940.499074][T14870] ? move_addr_to_kernel (net/socket.c:2511) [ 940.499263][T14870] ? filemap_map_folio_range (mm/filemap.c:3873) [ 940.499459][T14870] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 940.499651][T14870] ___sys_sendmsg (net/socket.c:2641) [ 940.499836][T14870] ? copy_msghdr_from_user (net/socket.c:2628) [ 940.500048][T14870] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 940.500240][T14870] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 940.500446][T14870] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 940.500638][T14870] ? __sys_sendmsg_sock (net/socket.c:2656) [ 940.500830][T14870] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 940.501031][T14870] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 940.501218][T14870] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 940.501413][T14870] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 940.501603][T14870] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 940.501791][T14870] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 940.502031][T14870] RIP: 0033:0x7f7c488aec5e [ 940.502250][T14870] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 940.502867][T14870] RSP: 002b:00007ffc7d80cfa0 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 940.503158][T14870] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007f7c488aec5e [ 940.503421][T14870] RDX: 0000000000000000 RSI: 00007ffc7d80d060 RDI: 0000000000000005 [ 940.503690][T14870] RBP: 00007ffc7d80cfb0 R08: 0000000000000000 R09: 0000000000000000 [ 940.503950][T14870] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 940.504215][T14870] R13: 0000000069cbe7f3 R14: 0000000000000004 R15: 000000000049d620 | [ 940.592449][T14876] ------------[ cut here ]------------ | [ 940.592653][T14876] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#3: ip/14876 | [ 940.592957][T14876] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 940.593842][T14876] Tainted: [W]=WARN [ 940.593975][T14876] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 940.594180][T14876] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 940.594339][T14876] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 940.594890][T14876] RSP: 0018:ffa0000003b375d0 EFLAGS: 00010286 [ 940.595081][T14876] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe220000192e9a7 [ 940.595327][T14876] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100000c974d38 [ 940.595771][T14876] RBP: 1ff4000000766ebb R08: 1fe220000192e9a8 R09: fffa3bfffffb0b24 [ 940.595993][T14876] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100000c974e74 [ 940.596212][T14876] R13: ff1100000c974e40 R14: ffffffff931c7940 R15: ff1100000c974c80 [ 940.596444][T14876] FS: 00007fcb6d711440(0000) GS:ff110000a3238000(0000) knlGS:0000000000000000 [ 940.596694][T14876] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 940.596989][T14876] CR2: 000000000044f720 CR3: 000000001d1ba001 CR4: 0000000000771ef0 [ 940.597210][T14876] PKRU: 55555554 [ 940.597325][T14876] Call Trace: [ 940.597443][T14876] [ 940.597517][T14876] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 940.597666][T14876] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 940.597925][T14876] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 940.598076][T14876] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 940.598221][T14876] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 940.598402][T14876] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 940.598541][T14876] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 940.598702][T14876] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 940.598856][T14876] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 940.599154][T14876] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 940.599295][T14876] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 940.599444][T14876] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 940.599579][T14876] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 940.599714][T14876] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 940.599851][T14876] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 940.600075][T14876] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 940.600214][T14876] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 940.600356][T14876] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 940.600512][T14876] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 940.600657][T14876] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 940.600802][T14876] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 940.601043][T14876] ? copy_msghdr_from_user (net/socket.c:2525) [ 940.601180][T14876] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 940.601363][T14876] ? move_addr_to_kernel (net/socket.c:2511) [ 940.601518][T14876] ? filemap_map_folio_range (mm/filemap.c:3873) [ 940.601653][T14876] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 940.601797][T14876] ___sys_sendmsg (net/socket.c:2641) [ 940.601976][T14876] ? copy_msghdr_from_user (net/socket.c:2628) [ 940.602116][T14876] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 940.602257][T14876] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 940.602403][T14876] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 940.602539][T14876] ? __sys_sendmsg_sock (net/socket.c:2656) [ 940.602694][T14876] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 940.602835][T14876] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 940.602984][T14876] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 940.603132][T14876] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 940.603278][T14876] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 940.603428][T14876] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 940.603630][T14876] RIP: 0033:0x7fcb6d86bc5e [ 940.603812][T14876] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 940.604325][T14876] RSP: 002b:00007ffe641063d0 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 940.604549][T14876] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007fcb6d86bc5e [ 940.604762][T14876] RDX: 0000000000000000 RSI: 00007ffe64106490 RDI: 0000000000000005 [ 940.604983][T14876] RBP: 00007ffe641063e0 R08: 0000000000000000 R09: 0000000000000000 [ 940.605201][T14876] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 940.605456][T14876] R13: 0000000069cbe7f4 R14: 0000000000000004 R15: 000000000049d620 | [ 940.682786][T14880] ------------[ cut here ]------------ | [ 940.683511][T14880] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#3: ip/14880 | [ 940.683770][T14880] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 940.684696][T14880] Tainted: [W]=WARN [ 940.684809][T14880] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 940.685092][T14880] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 940.685239][T14880] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 940.685734][T14880] RSP: 0018:ffa0000003ae75d0 EFLAGS: 00010286 [ 940.686015][T14880] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe2200003229fd7 [ 940.686234][T14880] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001914feb8 [ 940.686450][T14880] RBP: 1ff400000075cebb R08: 1fe2200003229fd8 R09: fffa3bfffffb0b24 [ 940.686657][T14880] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001914fc74 [ 940.686861][T14880] R13: ff1100001914fc40 R14: ffffffff931c7940 R15: ff1100001914fe00 [ 940.687182][T14880] FS: 00007f2c846a4440(0000) GS:ff110000a3238000(0000) knlGS:0000000000000000 [ 940.687438][T14880] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 940.687616][T14880] CR2: 000000000044f720 CR3: 000000001d1ba005 CR4: 0000000000771ef0 [ 940.687820][T14880] PKRU: 55555554 [ 940.688005][T14880] Call Trace: [ 940.688107][T14880] [ 940.688178][T14880] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 940.688321][T14880] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 940.688472][T14880] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 940.688621][T14880] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 940.688762][T14880] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 940.688983][T14880] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 940.689122][T14880] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 940.689265][T14880] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 940.689410][T14880] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 940.689548][T14880] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 940.689701][T14880] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 940.689835][T14880] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 940.690052][T14880] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 940.690196][T14880] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 940.690346][T14880] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 940.690497][T14880] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 940.690635][T14880] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 940.690772][T14880] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 940.690987][T14880] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 940.691126][T14880] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 940.691266][T14880] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 940.691408][T14880] ? copy_msghdr_from_user (net/socket.c:2525) [ 940.691545][T14880] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 940.691714][T14880] ? move_addr_to_kernel (net/socket.c:2511) [ 940.691851][T14880] ? filemap_map_folio_range (mm/filemap.c:3873) [ 940.692059][T14880] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 940.692198][T14880] ___sys_sendmsg (net/socket.c:2641) [ 940.692333][T14880] ? copy_msghdr_from_user (net/socket.c:2628) [ 940.692478][T14880] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 940.692617][T14880] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 940.692754][T14880] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 940.692967][T14880] ? __sys_sendmsg_sock (net/socket.c:2656) [ 940.693105][T14880] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 940.693241][T14880] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 940.693403][T14880] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 940.693542][T14880] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 940.693689][T14880] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 940.693827][T14880] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 940.694046][T14880] RIP: 0033:0x7f2c847fec5e [ 940.694192][T14880] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 940.694699][T14880] RSP: 002b:00007ffd68b1d3c0 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 940.694918][T14880] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007f2c847fec5e [ 940.695127][T14880] RDX: 0000000000000000 RSI: 00007ffd68b1d480 RDI: 0000000000000005 [ 940.695337][T14880] RBP: 00007ffd68b1d3d0 R08: 0000000000000000 R09: 0000000000000000 [ 940.695547][T14880] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 940.695754][T14880] R13: 0000000069cbe7f4 R14: 0000000000000004 R15: 000000000049d620 | [ 940.765559][T14886] ------------[ cut here ]------------ | [ 940.765727][T14886] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#3: ip/14886 | [ 940.765980][T14886] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 940.766802][T14886] Tainted: [W]=WARN [ 940.766916][T14886] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 940.767089][T14886] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 940.767242][T14886] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 940.767744][T14886] RSP: 0018:ffa0000003b275d0 EFLAGS: 00010286 [ 940.768390][T14886] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe2200003229f67 [ 940.768606][T14886] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001914fb38 [ 940.768811][T14886] RBP: 1ff4000000764ebb R08: 1fe2200003229f68 R09: fffa3bfffffb0b24 [ 940.769019][T14886] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001914f3b4 [ 940.769225][T14886] R13: ff1100001914f380 R14: ffffffff931c7940 R15: ff1100001914fa80 [ 940.769440][T14886] FS: 00007fd0a4407440(0000) GS:ff110000a3238000(0000) knlGS:0000000000000000 [ 940.769687][T14886] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 940.769863][T14886] CR2: 000000000044f720 CR3: 000000000d7c0004 CR4: 0000000000771ef0 [ 940.770071][T14886] PKRU: 55555554 [ 940.770175][T14886] Call Trace: [ 940.770277][T14886] [ 940.770352][T14886] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 940.770501][T14886] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 940.770654][T14886] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 940.770794][T14886] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 940.770938][T14886] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 940.771082][T14886] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 940.771221][T14886] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 940.771359][T14886] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 940.771509][T14886] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 940.771643][T14886] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 940.771784][T14886] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 940.771932][T14886] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 940.772068][T14886] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 940.772202][T14886] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 940.772338][T14886] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 940.772479][T14886] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 940.772631][T14886] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 940.772765][T14886] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 940.772908][T14886] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 940.773043][T14886] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 940.773182][T14886] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 940.773322][T14886] ? copy_msghdr_from_user (net/socket.c:2525) [ 940.773461][T14886] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 940.773632][T14886] ? move_addr_to_kernel (net/socket.c:2511) [ 940.773770][T14886] ? filemap_map_folio_range (mm/filemap.c:3873) [ 940.773920][T14886] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 940.774062][T14886] ___sys_sendmsg (net/socket.c:2641) [ 940.774203][T14886] ? copy_msghdr_from_user (net/socket.c:2628) [ 940.774351][T14886] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 940.774502][T14886] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 940.774650][T14886] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 940.774787][T14886] ? __sys_sendmsg_sock (net/socket.c:2656) [ 940.774936][T14886] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 940.775071][T14886] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 940.775205][T14886] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 940.775348][T14886] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 940.775499][T14886] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 940.775635][T14886] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 940.775820][T14886] RIP: 0033:0x7fd0a4561c5e [ 940.775974][T14886] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 940.776487][T14886] RSP: 002b:00007fff85c0e9a0 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 940.776700][T14886] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007fd0a4561c5e [ 940.776906][T14886] RDX: 0000000000000000 RSI: 00007fff85c0ea60 RDI: 0000000000000005 [ 940.777116][T14886] RBP: 00007fff85c0e9b0 R08: 0000000000000000 R09: 0000000000000000 [ 940.777333][T14886] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 940.777550][T14886] R13: 0000000069cbe7f4 R14: 0000000000000004 R15: 000000000049d620 | [ 940.843765][T14890] ------------[ cut here ]------------ | [ 940.843948][T14890] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#0: ip/14890 | [ 940.844329][T14890] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 940.845201][T14890] Tainted: [W]=WARN [ 940.845311][T14890] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 940.845530][T14890] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 940.845685][T14890] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 940.846217][T14890] RSP: 0018:ffa0000003b375d0 EFLAGS: 00010286 [ 940.846426][T14890] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe22000034c2287 [ 940.846633][T14890] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001a611438 [ 940.846837][T14890] RBP: 1ff4000000766ebb R08: 1fe22000034c2288 R09: fffa3bfffffb0b24 [ 940.847069][T14890] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001a6103f4 [ 940.847306][T14890] R13: ff1100001a6103c0 R14: ffffffff931c7940 R15: ff1100001a611380 [ 940.847537][T14890] FS: 00007fc57c710440(0000) GS:ff110000a30b8000(0000) knlGS:0000000000000000 [ 940.847792][T14890] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 940.847978][T14890] CR2: 000000000044f720 CR3: 0000000019268005 CR4: 0000000000771ef0 [ 940.848184][T14890] PKRU: 55555554 [ 940.848286][T14890] Call Trace: [ 940.848399][T14890] [ 940.848470][T14890] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 940.848606][T14890] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 940.848948][T14890] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 940.849084][T14890] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 940.849230][T14890] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 940.849371][T14890] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 940.849522][T14890] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 940.849685][T14890] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 940.849832][T14890] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 940.849981][T14890] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 940.850128][T14890] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 940.850273][T14890] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 940.850425][T14890] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 940.850562][T14890] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 940.850727][T14890] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 940.850944][T14890] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 940.851084][T14890] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 940.851221][T14890] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 940.851399][T14890] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 940.851550][T14890] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 940.851734][T14890] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 940.851883][T14890] ? copy_msghdr_from_user (net/socket.c:2525) [ 940.852044][T14890] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 940.852225][T14890] ? move_addr_to_kernel (net/socket.c:2511) [ 940.852392][T14890] ? filemap_map_folio_range (mm/filemap.c:3873) [ 940.852543][T14890] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 940.852690][T14890] ___sys_sendmsg (net/socket.c:2641) [ 940.852830][T14890] ? copy_msghdr_from_user (net/socket.c:2628) [ 940.852989][T14890] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 940.853134][T14890] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 940.853280][T14890] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 940.853430][T14890] ? __sys_sendmsg_sock (net/socket.c:2656) [ 940.853584][T14890] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 940.853728][T14890] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 940.853867][T14890] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 940.854012][T14890] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 940.854157][T14890] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 940.854303][T14890] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 940.854486][T14890] RIP: 0033:0x7fc57c86ac5e [ 940.854643][T14890] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 940.855197][T14890] RSP: 002b:00007ffcf1f170c0 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 940.855415][T14890] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007fc57c86ac5e [ 940.855627][T14890] RDX: 0000000000000000 RSI: 00007ffcf1f17180 RDI: 0000000000000005 [ 940.855838][T14890] RBP: 00007ffcf1f170d0 R08: 0000000000000000 R09: 0000000000000000 [ 940.856150][T14890] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 940.856369][T14890] R13: 0000000069cbe7f4 R14: 0000000000000004 R15: 000000000049d620 | [ 940.941779][T14896] ------------[ cut here ]------------ | [ 940.941985][T14896] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#0: ip/14896 | [ 940.942242][T14896] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 940.943110][T14896] Tainted: [W]=WARN [ 940.943224][T14896] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 940.943412][T14896] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 940.943570][T14896] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 940.944104][T14896] RSP: 0018:ffa0000003b875d0 EFLAGS: 00010286 [ 940.944294][T14896] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe22000034c20ff [ 940.944513][T14896] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001a6107f8 [ 940.944737][T14896] RBP: 1ff4000000770ebb R08: 1fe22000034c2100 R09: fffa3bfffffb0b24 [ 940.944960][T14896] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001a611574 [ 940.945179][T14896] R13: ff1100001a611540 R14: ffffffff931c7940 R15: ff1100001a610740 [ 940.945399][T14896] FS: 00007ff431d93440(0000) GS:ff110000a30b8000(0000) knlGS:0000000000000000 [ 940.945656][T14896] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 940.945846][T14896] CR2: 000000000044f720 CR3: 000000001cde7002 CR4: 0000000000771ef0 [ 940.946085][T14896] PKRU: 55555554 [ 940.946202][T14896] Call Trace: [ 940.946321][T14896] [ 940.946409][T14896] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 940.946562][T14896] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 940.946742][T14896] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 940.946903][T14896] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 940.947039][T14896] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 940.947179][T14896] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 940.947314][T14896] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 940.947459][T14896] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 940.947604][T14896] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 940.947761][T14896] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 940.948414][T14896] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 940.948588][T14896] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 940.948736][T14896] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 940.948886][T14896] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 940.949037][T14896] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 940.949188][T14896] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 940.949342][T14896] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 940.949504][T14896] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 940.949661][T14896] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 940.949819][T14896] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 940.949981][T14896] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 940.950127][T14896] ? copy_msghdr_from_user (net/socket.c:2525) [ 940.950274][T14896] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 940.950477][T14896] ? move_addr_to_kernel (net/socket.c:2511) [ 940.950635][T14896] ? filemap_map_folio_range (mm/filemap.c:3873) [ 940.950789][T14896] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 940.950947][T14896] ___sys_sendmsg (net/socket.c:2641) [ 940.951108][T14896] ? copy_msghdr_from_user (net/socket.c:2628) [ 940.951273][T14896] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 940.951426][T14896] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 940.951584][T14896] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 940.951738][T14896] ? __sys_sendmsg_sock (net/socket.c:2656) [ 940.951900][T14896] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 940.952048][T14896] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 940.952201][T14896] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 940.952350][T14896] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 940.952508][T14896] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 940.952664][T14896] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 940.952850][T14896] RIP: 0033:0x7ff431eedc5e [ 940.953020][T14896] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 940.953575][T14896] RSP: 002b:00007ffefce174c0 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 940.953798][T14896] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007ff431eedc5e [ 940.954013][T14896] RDX: 0000000000000000 RSI: 00007ffefce17580 RDI: 0000000000000005 [ 940.954227][T14896] RBP: 00007ffefce174d0 R08: 0000000000000000 R09: 0000000000000000 [ 940.954442][T14896] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 940.954659][T14896] R13: 0000000069cbe7f4 R14: 0000000000000004 R15: 000000000049d620 | [ 941.035974][T14900] ------------[ cut here ]------------ | [ 941.036197][T14900] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#2: ip/14900 | [ 941.036523][T14900] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 941.037480][T14900] Tainted: [W]=WARN [ 941.037635][T14900] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 941.037854][T14900] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 941.038067][T14900] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 941.038631][T14900] RSP: 0018:ffa0000003a575d0 EFLAGS: 00010286 [ 941.038869][T14900] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe22000034c21df [ 941.039148][T14900] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001a610ef8 [ 941.039422][T14900] RBP: 1ff400000074aebb R08: 1fe22000034c21e0 R09: fffa3bfffffb0b24 [ 941.039689][T14900] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001a610934 [ 941.039966][T14900] R13: ff1100001a610900 R14: ffffffff931c7940 R15: ff1100001a610e40 [ 941.040219][T14900] FS: 00007fcfae2ab440(0000) GS:ff110000a31b8000(0000) knlGS:0000000000000000 [ 941.040518][T14900] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 941.040742][T14900] CR2: 000000000044f720 CR3: 000000001b0a9003 CR4: 0000000000771ef0 [ 941.041007][T14900] PKRU: 55555554 [ 941.041160][T14900] Call Trace: [ 941.041311][T14900] [ 941.041440][T14900] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 941.041628][T14900] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 941.041824][T14900] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 941.042027][T14900] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 941.042211][T14900] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 941.042416][T14900] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 941.042614][T14900] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 941.042803][T14900] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 941.043004][T14900] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 941.043190][T14900] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 941.043388][T14900] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 941.043573][T14900] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 941.043764][T14900] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 941.043962][T14900] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 941.044144][T14900] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 941.044331][T14900] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 941.044524][T14900] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 941.044728][T14900] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 941.044939][T14900] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 941.045139][T14900] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 941.045340][T14900] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 941.045528][T14900] ? copy_msghdr_from_user (net/socket.c:2525) [ 941.045711][T14900] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 941.045938][T14900] ? move_addr_to_kernel (net/socket.c:2511) [ 941.046124][T14900] ? filemap_map_folio_range (mm/filemap.c:3873) [ 941.046325][T14900] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 941.046522][T14900] ___sys_sendmsg (net/socket.c:2641) [ 941.046710][T14900] ? copy_msghdr_from_user (net/socket.c:2628) [ 941.046921][T14900] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 941.047112][T14900] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 941.047310][T14900] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 941.047527][T14900] ? __sys_sendmsg_sock (net/socket.c:2656) [ 941.047721][T14900] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 941.047925][T14900] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 941.048124][T14900] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 941.048326][T14900] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 941.048531][T14900] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 941.048721][T14900] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 941.048952][T14900] RIP: 0033:0x7fcfae405c5e [ 941.049152][T14900] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 941.049705][T14900] RSP: 002b:00007ffde44f0510 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 941.049980][T14900] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007fcfae405c5e [ 941.050238][T14900] RDX: 0000000000000000 RSI: 00007ffde44f05d0 RDI: 0000000000000005 [ 941.050507][T14900] RBP: 00007ffde44f0520 R08: 0000000000000000 R09: 0000000000000000 [ 941.050769][T14900] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 941.051050][T14900] R13: 0000000069cbe7f4 R14: 0000000000000004 R15: 000000000049d620 | [ 941.131993][T14906] ------------[ cut here ]------------ | [ 941.132156][T14906] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#3: ip/14906 | [ 941.132411][T14906] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 941.133209][T14906] Tainted: [W]=WARN [ 941.133328][T14906] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 941.133517][T14906] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 941.133661][T14906] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 941.134167][T14906] RSP: 0018:ffa0000003a475d0 EFLAGS: 00010286 [ 941.134378][T14906] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe2200001ea041f [ 941.134595][T14906] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100000f5020f8 [ 941.134801][T14906] RBP: 1ff4000000748ebb R08: 1fe2200001ea0420 R09: fffa3bfffffb0b24 [ 941.135028][T14906] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100000f5031f4 [ 941.135235][T14906] R13: ff1100000f5031c0 R14: ffffffff931c7940 R15: ff1100000f502040 [ 941.135456][T14906] FS: 00007f762ebd7440(0000) GS:ff110000a3238000(0000) knlGS:0000000000000000 [ 941.135707][T14906] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 941.135891][T14906] CR2: 000000000044f720 CR3: 000000001a147006 CR4: 0000000000771ef0 [ 941.136131][T14906] PKRU: 55555554 [ 941.136239][T14906] Call Trace: [ 941.136348][T14906] [ 941.136426][T14906] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 941.136567][T14906] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 941.136720][T14906] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 941.136864][T14906] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 941.137014][T14906] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 941.137162][T14906] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 941.137303][T14906] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 941.137452][T14906] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 941.137590][T14906] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 941.137730][T14906] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 941.137873][T14906] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 941.138015][T14906] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 941.138154][T14906] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 941.138301][T14906] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 941.138444][T14906] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 941.138593][T14906] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 941.138737][T14906] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 941.138884][T14906] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 941.139031][T14906] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 941.139171][T14906] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 941.139312][T14906] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 941.139450][T14906] ? copy_msghdr_from_user (net/socket.c:2525) [ 941.139584][T14906] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 941.139750][T14906] ? move_addr_to_kernel (net/socket.c:2511) [ 941.139885][T14906] ? filemap_map_folio_range (mm/filemap.c:3873) [ 941.140028][T14906] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 941.140166][T14906] ___sys_sendmsg (net/socket.c:2641) [ 941.140338][T14906] ? copy_msghdr_from_user (net/socket.c:2628) [ 941.140496][T14906] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 941.140641][T14906] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 941.140792][T14906] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 941.140943][T14906] ? __sys_sendmsg_sock (net/socket.c:2656) [ 941.141083][T14906] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 941.141231][T14906] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 941.141385][T14906] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 941.141541][T14906] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 941.141686][T14906] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 941.141822][T14906] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 941.142001][T14906] RIP: 0033:0x7f762ed31c5e [ 941.142149][T14906] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 941.142688][T14906] RSP: 002b:00007ffe045eac60 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 941.142901][T14906] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007f762ed31c5e [ 941.143110][T14906] RDX: 0000000000000000 RSI: 00007ffe045ead20 RDI: 0000000000000005 [ 941.143321][T14906] RBP: 00007ffe045eac70 R08: 0000000000000000 R09: 0000000000000000 [ 941.143540][T14906] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 941.143750][T14906] R13: 0000000069cbe7f4 R14: 0000000000000004 R15: 000000000049d620 | [ 941.213613][T14910] ------------[ cut here ]------------ | [ 941.213794][T14910] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#3: ip/14910 | [ 941.214040][T14910] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 941.214936][T14910] Tainted: [W]=WARN [ 941.215042][T14910] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 941.215211][T14910] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 941.215357][T14910] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 941.215847][T14910] RSP: 0018:ffa0000003be75d0 EFLAGS: 00010286 [ 941.216031][T14910] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe2200001ea04c7 [ 941.216238][T14910] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100000f502638 [ 941.216468][T14910] RBP: 1ff400000077cebb R08: 1fe2200001ea04c8 R09: fffa3bfffffb0b24 [ 941.216708][T14910] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100000f502e74 [ 941.216952][T14910] R13: ff1100000f502e40 R14: ffffffff931c7940 R15: ff1100000f502580 [ 941.217155][T14910] FS: 00007f8c20966440(0000) GS:ff110000a3238000(0000) knlGS:0000000000000000 [ 941.217405][T14910] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 941.217577][T14910] CR2: 000000000044f720 CR3: 000000001a147005 CR4: 0000000000771ef0 [ 941.217802][T14910] PKRU: 55555554 [ 941.217921][T14910] Call Trace: [ 941.218026][T14910] [ 941.218102][T14910] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 941.218250][T14910] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 941.218409][T14910] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 941.218571][T14910] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 941.218705][T14910] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 941.218842][T14910] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 941.218984][T14910] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 941.219131][T14910] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 941.219270][T14910] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 941.219420][T14910] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 941.219565][T14910] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 941.219706][T14910] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 941.219847][T14910] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 941.220527][T14910] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 941.220671][T14910] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 941.220814][T14910] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 941.221043][T14910] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 941.221225][T14910] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 941.221368][T14910] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 941.221511][T14910] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 941.221655][T14910] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 941.221796][T14910] ? copy_msghdr_from_user (net/socket.c:2525) [ 941.221964][T14910] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 941.222135][T14910] ? move_addr_to_kernel (net/socket.c:2511) [ 941.222273][T14910] ? filemap_map_folio_range (mm/filemap.c:3873) [ 941.222419][T14910] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 941.222561][T14910] ___sys_sendmsg (net/socket.c:2641) [ 941.222697][T14910] ? copy_msghdr_from_user (net/socket.c:2628) [ 941.222850][T14910] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 941.222992][T14910] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 941.223132][T14910] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 941.223269][T14910] ? __sys_sendmsg_sock (net/socket.c:2656) [ 941.223411][T14910] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 941.223546][T14910] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 941.223680][T14910] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 941.223815][T14910] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 941.223955][T14910] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 941.224089][T14910] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 941.224254][T14910] RIP: 0033:0x7f8c20ac0c5e [ 941.224432][T14910] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 941.224945][T14910] RSP: 002b:00007ffe7e03f360 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 941.225162][T14910] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007f8c20ac0c5e [ 941.225383][T14910] RDX: 0000000000000000 RSI: 00007ffe7e03f420 RDI: 0000000000000005 [ 941.225597][T14910] RBP: 00007ffe7e03f370 R08: 0000000000000000 R09: 0000000000000000 [ 941.225809][T14910] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 941.226028][T14910] R13: 0000000069cbe7f4 R14: 0000000000000004 R15: 000000000049d620 | [ 941.298186][T14916] ------------[ cut here ]------------ | [ 941.298386][T14916] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#0: ip/14916 | [ 941.298642][T14916] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 941.299487][T14916] Tainted: [W]=WARN [ 941.299606][T14916] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 941.299779][T14916] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 941.299946][T14916] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 941.300451][T14916] RSP: 0018:ffa0000003b075d0 EFLAGS: 00010286 [ 941.300631][T14916] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe22000036f181f [ 941.300842][T14916] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001b78c0f8 [ 941.301056][T14916] RBP: 1ff4000000760ebb R08: 1fe22000036f1820 R09: fffa3bfffffb0b24 [ 941.301263][T14916] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100000f502774 [ 941.301476][T14916] R13: ff1100000f502740 R14: ffffffff931c7940 R15: ff1100001b78c040 [ 941.301685][T14916] FS: 00007f71b5244440(0000) GS:ff110000a30b8000(0000) knlGS:0000000000000000 [ 941.301938][T14916] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 941.302114][T14916] CR2: 000000000044f720 CR3: 0000000018000001 CR4: 0000000000771ef0 [ 941.302323][T14916] PKRU: 55555554 [ 941.302480][T14916] Call Trace: [ 941.302584][T14916] [ 941.302656][T14916] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 941.302801][T14916] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 941.302953][T14916] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 941.303096][T14916] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 941.303236][T14916] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 941.303381][T14916] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 941.303519][T14916] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 941.303658][T14916] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 941.303796][T14916] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 941.303941][T14916] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 941.304082][T14916] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 941.304220][T14916] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 941.304360][T14916] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 941.304512][T14916] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 941.304648][T14916] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 941.304787][T14916] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 941.304932][T14916] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 941.305075][T14916] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 941.305223][T14916] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 941.305358][T14916] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 941.305530][T14916] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 941.305694][T14916] ? copy_msghdr_from_user (net/socket.c:2525) [ 941.305832][T14916] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 941.306010][T14916] ? move_addr_to_kernel (net/socket.c:2511) [ 941.306153][T14916] ? filemap_map_folio_range (mm/filemap.c:3873) [ 941.306292][T14916] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 941.306433][T14916] ___sys_sendmsg (net/socket.c:2641) [ 941.306570][T14916] ? copy_msghdr_from_user (net/socket.c:2628) [ 941.306709][T14916] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 941.306846][T14916] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 941.306988][T14916] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 941.307125][T14916] ? __sys_sendmsg_sock (net/socket.c:2656) [ 941.307271][T14916] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 941.307418][T14916] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 941.307552][T14916] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 941.307686][T14916] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 941.307818][T14916] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 941.307960][T14916] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 941.308127][T14916] RIP: 0033:0x7f71b539ec5e [ 941.308270][T14916] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 941.308757][T14916] RSP: 002b:00007ffd91ddbb20 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 941.308967][T14916] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007f71b539ec5e [ 941.309169][T14916] RDX: 0000000000000000 RSI: 00007ffd91ddbbe0 RDI: 0000000000000005 [ 941.309367][T14916] RBP: 00007ffd91ddbb30 R08: 0000000000000000 R09: 0000000000000000 [ 941.309576][T14916] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 941.309777][T14916] R13: 0000000069cbe7f4 R14: 0000000000000004 R15: 000000000049d620 | [ 941.381985][T14920] ------------[ cut here ]------------ | [ 941.382169][T14920] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#0: ip/14920 | [ 941.382435][T14920] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 941.383215][T14920] Tainted: [W]=WARN [ 941.383321][T14920] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 941.383505][T14920] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 941.383673][T14920] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 941.384185][T14920] RSP: 0018:ffa0000003b075d0 EFLAGS: 00010286 [ 941.384372][T14920] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe22000036f18ff [ 941.384586][T14920] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001b78c7f8 [ 941.384785][T14920] RBP: 1ff4000000760ebb R08: 1fe22000036f1900 R09: fffa3bfffffb0b24 [ 941.384992][T14920] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001b78d1f4 [ 941.385193][T14920] R13: ff1100001b78d1c0 R14: ffffffff931c7940 R15: ff1100001b78c740 [ 941.385399][T14920] FS: 00007f8763fb5440(0000) GS:ff110000a30b8000(0000) knlGS:0000000000000000 [ 941.385637][T14920] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 941.385807][T14920] CR2: 000000000044f720 CR3: 0000000019be6004 CR4: 0000000000771ef0 [ 941.386039][T14920] PKRU: 55555554 [ 941.386151][T14920] Call Trace: [ 941.386279][T14920] [ 941.386354][T14920] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 941.386503][T14920] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 941.386650][T14920] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 941.386786][T14920] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 941.387000][T14920] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 941.387144][T14920] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 941.387284][T14920] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 941.387428][T14920] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 941.387561][T14920] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 941.387696][T14920] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 941.387832][T14920] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 941.388038][T14920] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 941.388182][T14920] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 941.388315][T14920] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 941.388458][T14920] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 941.388594][T14920] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 941.388728][T14920] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 941.388886][T14920] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 941.389098][T14920] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 941.389232][T14920] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 941.389367][T14920] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 941.389511][T14920] ? copy_msghdr_from_user (net/socket.c:2525) [ 941.389651][T14920] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 941.389866][T14920] ? move_addr_to_kernel (net/socket.c:2511) [ 941.390063][T14920] ? filemap_map_folio_range (mm/filemap.c:3873) [ 941.390195][T14920] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 941.390331][T14920] ___sys_sendmsg (net/socket.c:2641) [ 941.390474][T14920] ? copy_msghdr_from_user (net/socket.c:2628) [ 941.390620][T14920] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 941.390769][T14920] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 941.391004][T14920] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 941.391140][T14920] ? __sys_sendmsg_sock (net/socket.c:2656) [ 941.391278][T14920] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 941.391430][T14920] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 941.391574][T14920] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 941.392031][T14920] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 941.392167][T14920] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 941.392301][T14920] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 941.392485][T14920] RIP: 0033:0x7f876410fc5e [ 941.392630][T14920] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 941.393123][T14920] RSP: 002b:00007ffdfa6f58f0 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 941.393326][T14920] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007f876410fc5e [ 941.393534][T14920] RDX: 0000000000000000 RSI: 00007ffdfa6f59b0 RDI: 0000000000000005 [ 941.393735][T14920] RBP: 00007ffdfa6f5900 R08: 0000000000000000 R09: 0000000000000000 [ 941.393940][T14920] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 941.394141][T14920] R13: 0000000069cbe7f4 R14: 0000000000000004 R15: 000000000049d620 | [ 941.452447][T14926] ------------[ cut here ]------------ | [ 941.452620][T14926] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#3: ip/14926 | [ 941.452905][T14926] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 941.453891][T14926] Tainted: [W]=WARN [ 941.454005][T14926] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 941.454181][T14926] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 941.454361][T14926] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 941.454843][T14926] RSP: 0018:ffa0000003c475d0 EFLAGS: 00010286 [ 941.455400][T14926] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe22000036f1a87 [ 941.455644][T14926] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001b78d438 [ 941.455898][T14926] RBP: 1ff4000000788ebb R08: 1fe22000036f1a88 R09: fffa3bfffffb0b24 [ 941.456110][T14926] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001b78ce74 [ 941.456339][T14926] R13: ff1100001b78ce40 R14: ffffffff931c7940 R15: ff1100001b78d380 [ 941.456576][T14926] FS: 00007f3536810440(0000) GS:ff110000a3238000(0000) knlGS:0000000000000000 [ 941.456846][T14926] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 941.457043][T14926] CR2: 000000000044f720 CR3: 000000001c57c002 CR4: 0000000000771ef0 [ 941.457247][T14926] PKRU: 55555554 [ 941.457349][T14926] Call Trace: [ 941.457459][T14926] [ 941.457544][T14926] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 941.457694][T14926] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 941.457835][T14926] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 941.457976][T14926] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 941.458110][T14926] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 941.458244][T14926] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 941.458374][T14926] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 941.458510][T14926] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 941.458640][T14926] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 941.458781][T14926] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 941.458926][T14926] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 941.459061][T14926] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 941.459196][T14926] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 941.459337][T14926] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 941.459478][T14926] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 941.459613][T14926] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 941.459752][T14926] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 941.459887][T14926] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 941.460035][T14926] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 941.460169][T14926] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 941.460302][T14926] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 941.460436][T14926] ? copy_msghdr_from_user (net/socket.c:2525) [ 941.460570][T14926] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 941.460734][T14926] ? move_addr_to_kernel (net/socket.c:2511) [ 941.460868][T14926] ? filemap_map_folio_range (mm/filemap.c:3873) [ 941.461008][T14926] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 941.461142][T14926] ___sys_sendmsg (net/socket.c:2641) [ 941.461276][T14926] ? copy_msghdr_from_user (net/socket.c:2628) [ 941.461422][T14926] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 941.461560][T14926] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 941.461707][T14926] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 941.461857][T14926] ? __sys_sendmsg_sock (net/socket.c:2656) [ 941.462005][T14926] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 941.462157][T14926] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 941.462325][T14926] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 941.462466][T14926] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 941.462604][T14926] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 941.462752][T14926] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 941.462938][T14926] RIP: 0033:0x7f353696ac5e [ 941.463083][T14926] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 941.463580][T14926] RSP: 002b:00007ffd75a9a340 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 941.463787][T14926] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007f353696ac5e [ 941.464003][T14926] RDX: 0000000000000000 RSI: 00007ffd75a9a400 RDI: 0000000000000005 [ 941.464214][T14926] RBP: 00007ffd75a9a350 R08: 0000000000000000 R09: 0000000000000000 [ 941.464425][T14926] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 941.464634][T14926] R13: 0000000069cbe7f4 R14: 0000000000000004 R15: 000000000049d620 | [ 941.539336][T14930] ------------[ cut here ]------------ | [ 941.539564][T14930] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#2: ip/14930 | [ 941.539870][T14930] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 941.540768][T14930] Tainted: [W]=WARN [ 941.541120][T14930] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 941.541342][T14930] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 941.541547][T14930] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 941.542108][T14930] RSP: 0018:ffa0000003ba75d0 EFLAGS: 00010286 [ 941.542350][T14930] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe2200003725a4f [ 941.542627][T14930] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001b92d278 [ 941.542911][T14930] RBP: 1ff4000000774ebb R08: 1fe2200003725a50 R09: fffa3bfffffb0b24 [ 941.543159][T14930] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001b92d3b4 [ 941.543416][T14930] R13: ff1100001b92d380 R14: ffffffff931c7940 R15: ff1100001b92d1c0 [ 941.543666][T14930] FS: 00007f0771135440(0000) GS:ff110000a31b8000(0000) knlGS:0000000000000000 [ 941.543967][T14930] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 941.544188][T14930] CR2: 000000000044f720 CR3: 000000001d3ef001 CR4: 0000000000771ef0 [ 941.544462][T14930] PKRU: 55555554 [ 941.544619][T14930] Call Trace: [ 941.544773][T14930] [ 941.544908][T14930] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 941.545101][T14930] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 941.545293][T14930] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 941.545499][T14930] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 941.545685][T14930] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 941.545874][T14930] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 941.546079][T14930] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 941.546276][T14930] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 941.546481][T14930] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 941.546676][T14930] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 941.546872][T14930] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 941.547079][T14930] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 941.547276][T14930] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 941.547487][T14930] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 941.547674][T14930] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 941.547869][T14930] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 941.548076][T14930] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 941.548270][T14930] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 941.548471][T14930] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 941.548657][T14930] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 941.548850][T14930] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 941.549058][T14930] ? copy_msghdr_from_user (net/socket.c:2525) [ 941.549253][T14930] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 941.549491][T14930] ? move_addr_to_kernel (net/socket.c:2511) [ 941.549693][T14930] ? filemap_map_folio_range (mm/filemap.c:3873) [ 941.549890][T14930] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 941.550109][T14930] ___sys_sendmsg (net/socket.c:2641) [ 941.550308][T14930] ? copy_msghdr_from_user (net/socket.c:2628) [ 941.550510][T14930] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 941.550709][T14930] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 941.550923][T14930] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 941.551120][T14930] ? __sys_sendmsg_sock (net/socket.c:2656) [ 941.551311][T14930] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 941.551509][T14930] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 941.551710][T14930] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 941.551921][T14930] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 941.552120][T14930] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 941.552307][T14930] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 941.552545][T14930] RIP: 0033:0x7f077128fc5e [ 941.552747][T14930] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 941.553295][T14930] RSP: 002b:00007ffd063cf900 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 941.553561][T14930] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007f077128fc5e [ 941.553812][T14930] RDX: 0000000000000000 RSI: 00007ffd063cf9c0 RDI: 0000000000000005 [ 941.554074][T14930] RBP: 00007ffd063cf910 R08: 0000000000000000 R09: 0000000000000000 [ 941.554325][T14930] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 941.554578][T14930] R13: 0000000069cbe7f5 R14: 0000000000000004 R15: 000000000049d620 | [ 941.629393][T14936] ------------[ cut here ]------------ | [ 941.629600][T14936] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#2: ip/14936 | [ 941.629885][T14936] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 941.630768][T14936] Tainted: [W]=WARN [ 941.631368][T14936] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 941.631660][T14936] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 941.631863][T14936] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 941.632414][T14936] RSP: 0018:ffa0000003c775d0 EFLAGS: 00010286 [ 941.632637][T14936] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe2200003725af7 [ 941.632887][T14936] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001b92d7b8 [ 941.633149][T14936] RBP: 1ff400000078eebb R08: 1fe2200003725af8 R09: fffa3bfffffb0b24 [ 941.633435][T14936] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001b92d8f4 [ 941.633737][T14936] R13: ff1100001b92d8c0 R14: ffffffff931c7940 R15: ff1100001b92d700 [ 941.634020][T14936] FS: 00007f32e9976440(0000) GS:ff110000a31b8000(0000) knlGS:0000000000000000 [ 941.634427][T14936] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 941.634696][T14936] CR2: 000000000044f720 CR3: 000000001d076005 CR4: 0000000000771ef0 [ 941.635017][T14936] PKRU: 55555554 [ 941.635209][T14936] Call Trace: [ 941.635392][T14936] [ 941.635533][T14936] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 941.635754][T14936] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 941.635969][T14936] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 941.636156][T14936] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 941.636341][T14936] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 941.636534][T14936] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 941.636717][T14936] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 941.636921][T14936] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 941.637118][T14936] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 941.637303][T14936] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 941.637498][T14936] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 941.637685][T14936] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 941.637872][T14936] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 941.638078][T14936] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 941.638264][T14936] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 941.638459][T14936] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 941.638649][T14936] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 941.638836][T14936] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 941.639035][T14936] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 941.639221][T14936] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 941.639413][T14936] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 941.639597][T14936] ? copy_msghdr_from_user (net/socket.c:2525) [ 941.639781][T14936] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 941.640031][T14936] ? move_addr_to_kernel (net/socket.c:2511) [ 941.640218][T14936] ? filemap_map_folio_range (mm/filemap.c:3873) [ 941.640406][T14936] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 941.640594][T14936] ___sys_sendmsg (net/socket.c:2641) [ 941.640778][T14936] ? copy_msghdr_from_user (net/socket.c:2628) [ 941.640980][T14936] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 941.641166][T14936] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 941.641358][T14936] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 941.641552][T14936] ? __sys_sendmsg_sock (net/socket.c:2656) [ 941.641739][T14936] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 941.641938][T14936] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 941.642123][T14936] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 941.642309][T14936] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 941.642502][T14936] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 941.642696][T14936] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 941.642927][T14936] RIP: 0033:0x7f32e9ad0c5e [ 941.643126][T14936] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 941.643669][T14936] RSP: 002b:00007ffd41abc200 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 941.643944][T14936] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007f32e9ad0c5e [ 941.644202][T14936] RDX: 0000000000000000 RSI: 00007ffd41abc2c0 RDI: 0000000000000005 [ 941.644470][T14936] RBP: 00007ffd41abc210 R08: 0000000000000000 R09: 0000000000000000 [ 941.644722][T14936] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 941.644989][T14936] R13: 0000000069cbe7f5 R14: 0000000000000004 R15: 000000000049d620 | [ 941.719494][T14940] ------------[ cut here ]------------ | [ 941.719690][T14940] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#0: ip/14940 | [ 941.720256][T14940] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 941.721102][T14940] Tainted: [W]=WARN [ 941.721216][T14940] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 941.721389][T14940] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 941.721553][T14940] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 941.722056][T14940] RSP: 0018:ffa0000003a475d0 EFLAGS: 00010286 [ 941.722231][T14940] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe220000387508f [ 941.722439][T14940] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001c3a8478 [ 941.722654][T14940] RBP: 1ff4000000748ebb R08: 1fe2200003875090 R09: fffa3bfffffb0b24 [ 941.722868][T14940] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001c3a8234 [ 941.723080][T14940] R13: ff1100001c3a8200 R14: ffffffff931c7940 R15: ff1100001c3a83c0 [ 941.723296][T14940] FS: 00007fee10360440(0000) GS:ff110000a30b8000(0000) knlGS:0000000000000000 [ 941.723551][T14940] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 941.723736][T14940] CR2: 000000000044f720 CR3: 000000001009b006 CR4: 0000000000771ef0 [ 941.723955][T14940] PKRU: 55555554 [ 941.724059][T14940] Call Trace: [ 941.724162][T14940] [ 941.724234][T14940] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 941.724380][T14940] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 941.724530][T14940] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 941.724666][T14940] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 941.724804][T14940] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 941.724942][T14940] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 941.725077][T14940] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 941.725217][T14940] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 941.725348][T14940] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 941.725494][T14940] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 941.725644][T14940] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 941.725778][T14940] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 941.725924][T14940] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 941.726089][T14940] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 941.726244][T14940] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 941.726412][T14940] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 941.726559][T14940] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 941.726716][T14940] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 941.726883][T14940] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 941.727044][T14940] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 941.727181][T14940] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 941.727323][T14940] ? copy_msghdr_from_user (net/socket.c:2525) [ 941.727504][T14940] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 941.727672][T14940] ? move_addr_to_kernel (net/socket.c:2511) [ 941.727803][T14940] ? filemap_map_folio_range (mm/filemap.c:3873) [ 941.727944][T14940] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 941.728093][T14940] ___sys_sendmsg (net/socket.c:2641) [ 941.728234][T14940] ? copy_msghdr_from_user (net/socket.c:2628) [ 941.728370][T14940] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 941.728524][T14940] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 941.728664][T14940] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 941.728800][T14940] ? __sys_sendmsg_sock (net/socket.c:2656) [ 941.728943][T14940] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 941.729084][T14940] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 941.729221][T14940] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 941.729362][T14940] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 941.729500][T14940] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 941.729639][T14940] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 941.729823][T14940] RIP: 0033:0x7fee104bac5e [ 941.729977][T14940] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 941.730489][T14940] RSP: 002b:00007fff51d8b6f0 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 941.730715][T14940] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007fee104bac5e [ 941.730942][T14940] RDX: 0000000000000000 RSI: 00007fff51d8b7b0 RDI: 0000000000000005 [ 941.731166][T14940] RBP: 00007fff51d8b700 R08: 0000000000000000 R09: 0000000000000000 [ 941.731370][T14940] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 941.731579][T14940] R13: 0000000069cbe7f5 R14: 0000000000000004 R15: 000000000049d620 | [ 941.808197][T14946] ------------[ cut here ]------------ | [ 941.808430][T14946] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#2: ip/14946 | [ 941.808733][T14946] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 941.809645][T14946] Tainted: [W]=WARN [ 941.809810][T14946] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 941.810083][T14946] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 941.810281][T14946] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 941.810928][T14946] RSP: 0018:ffa0000003c375d0 EFLAGS: 00010286 [ 941.811183][T14946] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe220000387532f [ 941.811444][T14946] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001c3a9978 [ 941.811725][T14946] RBP: 1ff4000000786ebb R08: 1fe2200003875330 R09: fffa3bfffffb0b24 [ 941.811995][T14946] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001c3a8774 [ 941.812251][T14946] R13: ff1100001c3a8740 R14: ffffffff931c7940 R15: ff1100001c3a98c0 [ 941.812517][T14946] FS: 00007fd259fdc440(0000) GS:ff110000a31b8000(0000) knlGS:0000000000000000 [ 941.812806][T14946] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 941.813049][T14946] CR2: 000000000044f720 CR3: 0000000019d08002 CR4: 0000000000771ef0 [ 941.813309][T14946] PKRU: 55555554 [ 941.813469][T14946] Call Trace: [ 941.813624][T14946] [ 941.813754][T14946] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 941.813949][T14946] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 941.814150][T14946] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 941.814336][T14946] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 941.814532][T14946] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 941.814721][T14946] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 941.814916][T14946] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 941.815102][T14946] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 941.815286][T14946] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 941.815477][T14946] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 941.815668][T14946] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 941.815848][T14946] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 941.816046][T14946] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 941.816232][T14946] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 941.816422][T14946] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 941.816609][T14946] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 941.816794][T14946] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 941.817000][T14946] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 941.817192][T14946] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 941.817390][T14946] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 941.817589][T14946] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 941.817774][T14946] ? copy_msghdr_from_user (net/socket.c:2525) [ 941.817981][T14946] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 941.818217][T14946] ? move_addr_to_kernel (net/socket.c:2511) [ 941.818415][T14946] ? filemap_map_folio_range (mm/filemap.c:3873) [ 941.818600][T14946] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 941.818788][T14946] ___sys_sendmsg (net/socket.c:2641) [ 941.818983][T14946] ? copy_msghdr_from_user (net/socket.c:2628) [ 941.819173][T14946] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 941.819361][T14946] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 941.819557][T14946] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 941.819744][T14946] ? __sys_sendmsg_sock (net/socket.c:2656) [ 941.819947][T14946] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 941.820131][T14946] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 941.820320][T14946] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 941.820515][T14946] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 941.820711][T14946] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 941.820912][T14946] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 941.821129][T14946] RIP: 0033:0x7fd25a136c5e [ 941.821327][T14946] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 941.821869][T14946] RSP: 002b:00007fff4460cf50 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 941.822143][T14946] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007fd25a136c5e [ 941.822412][T14946] RDX: 0000000000000000 RSI: 00007fff4460d010 RDI: 0000000000000005 [ 941.822672][T14946] RBP: 00007fff4460cf60 R08: 0000000000000000 R09: 0000000000000000 [ 941.822938][T14946] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 941.823194][T14946] R13: 0000000069cbe7f5 R14: 0000000000000004 R15: 000000000049d620 | [ 941.905559][T14950] ------------[ cut here ]------------ | [ 941.905824][T14950] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#2: ip/14950 | [ 941.906437][T14950] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 941.907342][T14950] Tainted: [W]=WARN [ 941.907498][T14950] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 941.907718][T14950] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 941.907934][T14950] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 941.908466][T14950] RSP: 0018:ffa0000003c375d0 EFLAGS: 00010286 [ 941.908690][T14950] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe220000192eaf7 [ 941.908952][T14950] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100000c9757b8 [ 941.909202][T14950] RBP: 1ff4000000786ebb R08: 1fe220000192eaf8 R09: fffa3bfffffb0b24 [ 941.909459][T14950] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100000c974934 [ 941.909711][T14950] R13: ff1100000c974900 R14: ffffffff931c7940 R15: ff1100000c975700 [ 941.909979][T14950] FS: 00007fd8ff131440(0000) GS:ff110000a31b8000(0000) knlGS:0000000000000000 [ 941.910282][T14950] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 941.910512][T14950] CR2: 000000000044f720 CR3: 00000000171f9004 CR4: 0000000000771ef0 [ 941.910778][T14950] PKRU: 55555554 [ 941.910949][T14950] Call Trace: [ 941.911105][T14950] [ 941.911225][T14950] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 941.911417][T14950] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 941.911622][T14950] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 941.911817][T14950] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 941.912018][T14950] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 941.912207][T14950] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 941.912397][T14950] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 941.912583][T14950] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 941.912770][T14950] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 941.912970][T14950] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 941.913165][T14950] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 941.913352][T14950] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 941.913550][T14950] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 941.913737][T14950] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 941.913945][T14950] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 941.914134][T14950] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 941.914332][T14950] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 941.914539][T14950] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 941.914735][T14950] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 941.914945][T14950] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 941.915145][T14950] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 941.915339][T14950] ? copy_msghdr_from_user (net/socket.c:2525) [ 941.915535][T14950] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 941.915762][T14950] ? move_addr_to_kernel (net/socket.c:2511) [ 941.915973][T14950] ? filemap_map_folio_range (mm/filemap.c:3873) [ 941.916161][T14950] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 941.916354][T14950] ___sys_sendmsg (net/socket.c:2641) [ 941.916555][T14950] ? copy_msghdr_from_user (net/socket.c:2628) [ 941.916752][T14950] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 941.916964][T14950] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 941.917158][T14950] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 941.917352][T14950] ? __sys_sendmsg_sock (net/socket.c:2656) [ 941.917558][T14950] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 941.917766][T14950] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 941.917984][T14950] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 941.918178][T14950] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 941.918387][T14950] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 941.918591][T14950] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 941.918824][T14950] RIP: 0033:0x7fd8ff28bc5e [ 941.919045][T14950] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 941.919609][T14950] RSP: 002b:00007ffd0e241610 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 941.919882][T14950] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007fd8ff28bc5e [ 941.920154][T14950] RDX: 0000000000000000 RSI: 00007ffd0e2416d0 RDI: 0000000000000005 [ 941.920424][T14950] RBP: 00007ffd0e241620 R08: 0000000000000000 R09: 0000000000000000 [ 941.920683][T14950] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 941.920954][T14950] R13: 0000000069cbe7f5 R14: 0000000000000004 R15: 000000000049d620 | [ 941.997705][T14956] ------------[ cut here ]------------ | [ 941.998198][T14956] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#0: ip/14956 | [ 941.998469][T14956] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 941.999354][T14956] Tainted: [W]=WARN [ 941.999467][T14956] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 941.999668][T14956] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 941.999823][T14956] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 942.000403][T14956] RSP: 0018:ffa0000003cc75d0 EFLAGS: 00010286 [ 942.000587][T14956] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe220000192eb9f [ 942.000792][T14956] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100000c975cf8 [ 942.001010][T14956] RBP: 1ff4000000798ebb R08: 1fe220000192eba0 R09: fffa3bfffffb0b24 [ 942.001219][T14956] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100000c975e34 [ 942.001445][T14956] R13: ff1100000c975e00 R14: ffffffff931c7940 R15: ff1100000c975c40 [ 942.001675][T14956] FS: 00007f2eb6258440(0000) GS:ff110000a30b8000(0000) knlGS:0000000000000000 [ 942.001949][T14956] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 942.002150][T14956] CR2: 000000000044f720 CR3: 0000000019ee0001 CR4: 0000000000771ef0 [ 942.002361][T14956] PKRU: 55555554 [ 942.002472][T14956] Call Trace: [ 942.002581][T14956] [ 942.002666][T14956] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 942.002821][T14956] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 942.003002][T14956] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 942.003171][T14956] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 942.003319][T14956] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 942.003487][T14956] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 942.003627][T14956] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 942.003771][T14956] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 942.003946][T14956] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 942.004098][T14956] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 942.004266][T14956] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 942.004436][T14956] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 942.004583][T14956] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 942.004752][T14956] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 942.004903][T14956] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 942.005048][T14956] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 942.005214][T14956] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 942.005357][T14956] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 942.005504][T14956] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 942.005645][T14956] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 942.005799][T14956] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 942.005949][T14956] ? copy_msghdr_from_user (net/socket.c:2525) [ 942.006090][T14956] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 942.006264][T14956] ? move_addr_to_kernel (net/socket.c:2511) [ 942.006423][T14956] ? filemap_map_folio_range (mm/filemap.c:3873) [ 942.006578][T14956] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 942.006720][T14956] ___sys_sendmsg (net/socket.c:2641) [ 942.006861][T14956] ? copy_msghdr_from_user (net/socket.c:2628) [ 942.007015][T14956] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 942.007158][T14956] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 942.007300][T14956] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 942.007450][T14956] ? __sys_sendmsg_sock (net/socket.c:2656) [ 942.007597][T14956] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 942.007736][T14956] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 942.007880][T14956] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 942.008034][T14956] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 942.008175][T14956] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 942.008321][T14956] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 942.008497][T14956] RIP: 0033:0x7f2eb63b2c5e [ 942.008647][T14956] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 942.009172][T14956] RSP: 002b:00007ffce3194850 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 942.009391][T14956] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007f2eb63b2c5e [ 942.009602][T14956] RDX: 0000000000000000 RSI: 00007ffce3194910 RDI: 0000000000000005 [ 942.009813][T14956] RBP: 00007ffce3194860 R08: 0000000000000000 R09: 0000000000000000 [ 942.010028][T14956] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 942.010245][T14956] R13: 0000000069cbe7f5 R14: 0000000000000004 R15: 000000000049d620 | [ 942.086097][T14960] ------------[ cut here ]------------ | [ 942.086366][T14960] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#1: ip/14960 | [ 942.086663][T14960] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 942.087491][T14960] Tainted: [W]=WARN [ 942.087600][T14960] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 942.087776][T14960] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 942.087933][T14960] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 942.088426][T14960] RSP: 0018:ffa0000003c275d0 EFLAGS: 00010286 [ 942.088605][T14960] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe2200003229d6f [ 942.088835][T14960] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001914eb78 [ 942.089061][T14960] RBP: 1ff4000000784ebb R08: 1fe2200003229d70 R09: fffa3bfffffb0b24 [ 942.089273][T14960] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001914e234 [ 942.089509][T14960] R13: ff1100001914e200 R14: ffffffff931c7940 R15: ff1100001914eac0 [ 942.089736][T14960] FS: 00007f79bd5b1440(0000) GS:ff110000a3138000(0000) knlGS:0000000000000000 [ 942.089999][T14960] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 942.090185][T14960] CR2: 000000000044f720 CR3: 000000001d136006 CR4: 0000000000771ef0 [ 942.090391][T14960] PKRU: 55555554 [ 942.090499][T14960] Call Trace: [ 942.090601][T14960] [ 942.090671][T14960] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 942.090809][T14960] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 942.090962][T14960] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 942.091106][T14960] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 942.091247][T14960] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 942.091394][T14960] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 942.091531][T14960] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 942.091667][T14960] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 942.091803][T14960] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 942.091947][T14960] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 942.092084][T14960] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 942.092217][T14960] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 942.092351][T14960] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 942.092500][T14960] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 942.092633][T14960] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 942.092768][T14960] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 942.092908][T14960] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 942.093049][T14960] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 942.093191][T14960] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 942.093326][T14960] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 942.093501][T14960] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 942.093641][T14960] ? copy_msghdr_from_user (net/socket.c:2525) [ 942.093781][T14960] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 942.094011][T14960] ? move_addr_to_kernel (net/socket.c:2511) [ 942.094150][T14960] ? filemap_map_folio_range (mm/filemap.c:3873) [ 942.094290][T14960] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 942.094437][T14960] ___sys_sendmsg (net/socket.c:2641) [ 942.094578][T14960] ? copy_msghdr_from_user (net/socket.c:2628) [ 942.094722][T14960] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 942.094867][T14960] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 942.095070][T14960] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 942.095231][T14960] ? __sys_sendmsg_sock (net/socket.c:2656) [ 942.095387][T14960] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 942.095533][T14960] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 942.095668][T14960] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 942.095805][T14960] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 942.095959][T14960] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 942.096097][T14960] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 942.096281][T14960] RIP: 0033:0x7f79bd70bc5e [ 942.096436][T14960] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 942.096945][T14960] RSP: 002b:00007ffe62579f10 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 942.097160][T14960] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007f79bd70bc5e [ 942.097369][T14960] RDX: 0000000000000000 RSI: 00007ffe62579fd0 RDI: 0000000000000005 [ 942.097585][T14960] RBP: 00007ffe62579f20 R08: 0000000000000000 R09: 0000000000000000 [ 942.097793][T14960] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 942.098011][T14960] R13: 0000000069cbe7f5 R14: 0000000000000004 R15: 000000000049d620 | [ 942.187129][T14966] ------------[ cut here ]------------ | [ 942.187307][T14966] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#3: ip/14966 | [ 942.187575][T14966] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 942.188403][T14966] Tainted: [W]=WARN [ 942.188508][T14966] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 942.188691][T14966] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 942.188845][T14966] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 942.189361][T14966] RSP: 0018:ffa0000003c275d0 EFLAGS: 00010286 [ 942.189567][T14966] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe2200003229ef7 [ 942.189781][T14966] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001914f7b8 [ 942.190000][T14966] RBP: 1ff4000000784ebb R08: 1fe2200003229ef8 R09: fffa3bfffffb0b24 [ 942.190229][T14966] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001914f1f4 [ 942.190436][T14966] R13: ff1100001914f1c0 R14: ffffffff931c7940 R15: ff1100001914f700 [ 942.190652][T14966] FS: 00007f0e0fb32440(0000) GS:ff110000a3238000(0000) knlGS:0000000000000000 [ 942.190891][T14966] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 942.191093][T14966] CR2: 000000000044f720 CR3: 000000001cfad005 CR4: 0000000000771ef0 [ 942.191298][T14966] PKRU: 55555554 [ 942.191409][T14966] Call Trace: [ 942.191512][T14966] [ 942.191583][T14966] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 942.191720][T14966] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 942.191883][T14966] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 942.192030][T14966] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 942.192168][T14966] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 942.192311][T14966] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 942.192459][T14966] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 942.192605][T14966] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 942.192740][T14966] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 942.192890][T14966] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 942.193034][T14966] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 942.193172][T14966] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 942.193313][T14966] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 942.193468][T14966] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 942.193606][T14966] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 942.193747][T14966] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 942.193886][T14966] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 942.194057][T14966] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 942.194194][T14966] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 942.194329][T14966] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 942.194483][T14966] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 942.194625][T14966] ? copy_msghdr_from_user (net/socket.c:2525) [ 942.194764][T14966] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 942.195415][T14966] ? move_addr_to_kernel (net/socket.c:2511) [ 942.195561][T14966] ? filemap_map_folio_range (mm/filemap.c:3873) [ 942.195698][T14966] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 942.195836][T14966] ___sys_sendmsg (net/socket.c:2641) [ 942.195975][T14966] ? copy_msghdr_from_user (net/socket.c:2628) [ 942.196130][T14966] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 942.196273][T14966] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 942.196418][T14966] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 942.196559][T14966] ? __sys_sendmsg_sock (net/socket.c:2656) [ 942.196701][T14966] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 942.196839][T14966] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 942.196987][T14966] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 942.197126][T14966] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 942.197265][T14966] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 942.197411][T14966] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 942.197587][T14966] RIP: 0033:0x7f0e0fc8cc5e [ 942.197751][T14966] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 942.198254][T14966] RSP: 002b:00007ffef5efb390 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 942.198527][T14966] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007f0e0fc8cc5e [ 942.198748][T14966] RDX: 0000000000000000 RSI: 00007ffef5efb450 RDI: 0000000000000005 [ 942.198964][T14966] RBP: 00007ffef5efb3a0 R08: 0000000000000000 R09: 0000000000000000 [ 942.199174][T14966] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 942.199394][T14966] R13: 0000000069cbe7f5 R14: 0000000000000004 R15: 000000000049d620 | [ 942.267262][T14970] ------------[ cut here ]------------ | [ 942.267507][T14970] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#3: ip/14970 | [ 942.267870][T14970] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 942.269127][T14970] Tainted: [W]=WARN [ 942.269288][T14970] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 942.269584][T14970] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 942.269806][T14970] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 942.270564][T14970] RSP: 0018:ffa0000003ce75d0 EFLAGS: 00010286 [ 942.270828][T14970] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe22000034c20ff [ 942.271146][T14970] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001a6107f8 [ 942.271461][T14970] RBP: 1ff400000079cebb R08: 1fe22000034c2100 R09: fffa3bfffffb0b24 [ 942.271773][T14970] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001a611574 [ 942.272108][T14970] R13: ff1100001a611540 R14: ffffffff931c7940 R15: ff1100001a610740 [ 942.272438][T14970] FS: 00007f543647f440(0000) GS:ff110000a3238000(0000) knlGS:0000000000000000 [ 942.272850][T14970] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 942.273968][T14970] CR2: 000000000044f720 CR3: 000000001a294001 CR4: 0000000000771ef0 [ 942.274315][T14970] PKRU: 55555554 [ 942.274507][T14970] Call Trace: [ 942.274703][T14970] [ 942.274824][T14970] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 942.275069][T14970] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 942.275295][T14970] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 942.275531][T14970] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 942.275773][T14970] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 942.276015][T14970] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 942.276227][T14970] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 942.276480][T14970] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 942.276718][T14970] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 942.276963][T14970] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 942.277181][T14970] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 942.277424][T14970] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 942.277670][T14970] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 942.277889][T14970] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 942.278104][T14970] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 942.278311][T14970] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 942.278531][T14970] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 942.278742][T14970] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 942.278960][T14970] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 942.279169][T14970] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 942.279386][T14970] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 942.279595][T14970] ? copy_msghdr_from_user (net/socket.c:2525) [ 942.279801][T14970] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 942.280062][T14970] ? move_addr_to_kernel (net/socket.c:2511) [ 942.280271][T14970] ? filemap_map_folio_range (mm/filemap.c:3873) [ 942.280483][T14970] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 942.280694][T14970] ___sys_sendmsg (net/socket.c:2641) [ 942.280943][T14970] ? copy_msghdr_from_user (net/socket.c:2628) [ 942.281181][T14970] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 942.281401][T14970] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 942.281615][T14970] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 942.281825][T14970] ? __sys_sendmsg_sock (net/socket.c:2656) [ 942.282054][T14970] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 942.282266][T14970] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 942.282476][T14970] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 942.282687][T14970] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 942.282891][T14970] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 942.283104][T14970] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 942.283356][T14970] RIP: 0033:0x7f54365d9c5e [ 942.283578][T14970] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 942.284346][T14970] RSP: 002b:00007ffea21d4b60 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 942.284671][T14970] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007f54365d9c5e [ 942.285004][T14970] RDX: 0000000000000000 RSI: 00007ffea21d4c20 RDI: 0000000000000005 [ 942.285321][T14970] RBP: 00007ffea21d4b70 R08: 0000000000000000 R09: 0000000000000000 [ 942.285643][T14970] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 942.285956][T14970] R13: 0000000069cbe7f5 R14: 0000000000000004 R15: 000000000049d620 | [ 942.369050][T14976] ------------[ cut here ]------------ | [ 942.369219][T14976] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#3: ip/14976 | [ 942.369488][T14976] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 942.370382][T14976] Tainted: [W]=WARN [ 942.370489][T14976] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 942.370670][T14976] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 942.370818][T14976] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 942.371448][T14976] RSP: 0018:ffa0000003c675d0 EFLAGS: 00010286 [ 942.371623][T14976] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe22000034c23d7 [ 942.371826][T14976] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001a611eb8 [ 942.372037][T14976] RBP: 1ff400000078cebb R08: 1fe22000034c23d8 R09: fffa3bfffffb0b24 [ 942.372239][T14976] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001a6105b4 [ 942.372446][T14976] R13: ff1100001a610580 R14: ffffffff931c7940 R15: ff1100001a611e00 [ 942.372655][T14976] FS: 00007fd4bddfc440(0000) GS:ff110000a3238000(0000) knlGS:0000000000000000 [ 942.372898][T14976] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 942.373076][T14976] CR2: 000000000044f720 CR3: 000000001c985005 CR4: 0000000000771ef0 [ 942.373277][T14976] PKRU: 55555554 [ 942.373383][T14976] Call Trace: [ 942.373485][T14976] [ 942.373557][T14976] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 942.373691][T14976] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 942.373837][T14976] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 942.373975][T14976] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 942.374108][T14976] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 942.374245][T14976] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 942.374381][T14976] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 942.374518][T14976] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 942.374676][T14976] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 942.374816][T14976] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 942.374968][T14976] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 942.375109][T14976] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 942.375250][T14976] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 942.375392][T14976] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 942.375535][T14976] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 942.375681][T14976] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 942.375827][T14976] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 942.375974][T14976] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 942.376115][T14976] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 942.376256][T14976] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 942.376404][T14976] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 942.376555][T14976] ? copy_msghdr_from_user (net/socket.c:2525) [ 942.376692][T14976] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 942.376868][T14976] ? move_addr_to_kernel (net/socket.c:2511) [ 942.377019][T14976] ? filemap_map_folio_range (mm/filemap.c:3873) [ 942.377153][T14976] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 942.377289][T14976] ___sys_sendmsg (net/socket.c:2641) [ 942.377427][T14976] ? copy_msghdr_from_user (net/socket.c:2628) [ 942.377648][T14976] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 942.377784][T14976] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 942.377930][T14976] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 942.378069][T14976] ? __sys_sendmsg_sock (net/socket.c:2656) [ 942.378286][T14976] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 942.378432][T14976] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 942.378572][T14976] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 942.378717][T14976] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 942.378937][T14976] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 942.379071][T14976] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 942.379275][T14976] RIP: 0033:0x7fd4bdf56c5e [ 942.379432][T14976] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 942.380032][T14976] RSP: 002b:00007ffc564427a0 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 942.380331][T14976] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007fd4bdf56c5e [ 942.380554][T14976] RDX: 0000000000000000 RSI: 00007ffc56442860 RDI: 0000000000000005 [ 942.380764][T14976] RBP: 00007ffc564427b0 R08: 0000000000000000 R09: 0000000000000000 [ 942.381063][T14976] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 942.381277][T14976] R13: 0000000069cbe7f5 R14: 0000000000000004 R15: 000000000049d620 | [ 942.453136][T14980] ------------[ cut here ]------------ | [ 942.453361][T14980] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#2: ip/14980 | [ 942.453679][T14980] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 942.454623][T14980] Tainted: [W]=WARN [ 942.454795][T14980] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 942.455044][T14980] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 942.455262][T14980] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 942.455844][T14980] RSP: 0018:ffa0000003cb75d0 EFLAGS: 00010286 [ 942.456105][T14980] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe2200001ea05df [ 942.456383][T14980] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100000f502ef8 [ 942.456661][T14980] RBP: 1ff4000000796ebb R08: 1fe2200001ea05e0 R09: fffa3bfffffb0b24 [ 942.456950][T14980] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100000f503734 [ 942.457224][T14980] R13: ff1100000f503700 R14: ffffffff931c7940 R15: ff1100000f502e40 [ 942.457553][T14980] FS: 00007f5f6f5d2440(0000) GS:ff110000a31b8000(0000) knlGS:0000000000000000 [ 942.457886][T14980] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 942.458155][T14980] CR2: 000000000044f720 CR3: 000000001c985003 CR4: 0000000000771ef0 [ 942.458443][T14980] PKRU: 55555554 [ 942.458616][T14980] Call Trace: [ 942.458789][T14980] [ 942.458943][T14980] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 942.459153][T14980] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 942.459369][T14980] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 942.459579][T14980] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 942.459783][T14980] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 942.460007][T14980] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 942.460211][T14980] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 942.460425][T14980] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 942.460632][T14980] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 942.460850][T14980] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 942.461162][T14980] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 942.461369][T14980] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 942.461612][T14980] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 942.461849][T14980] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 942.462176][T14980] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 942.462424][T14980] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 942.462655][T14980] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 942.462876][T14980] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 942.463228][T14980] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 942.463465][T14980] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 942.463680][T14980] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 942.463916][T14980] ? copy_msghdr_from_user (net/socket.c:2525) [ 942.464144][T14980] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 942.464517][T14980] ? move_addr_to_kernel (net/socket.c:2511) [ 942.464723][T14980] ? filemap_map_folio_range (mm/filemap.c:3873) [ 942.464938][T14980] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 942.465238][T14980] ___sys_sendmsg (net/socket.c:2641) [ 942.465452][T14980] ? copy_msghdr_from_user (net/socket.c:2628) [ 942.465660][T14980] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 942.465865][T14980] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 942.466168][T14980] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 942.466359][T14980] ? __sys_sendmsg_sock (net/socket.c:2656) [ 942.466564][T14980] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 942.466789][T14980] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 942.467105][T14980] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 942.467311][T14980] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 942.467533][T14980] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 942.467744][T14980] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 942.468003][T14980] RIP: 0033:0x7f5f6f72cc5e [ 942.468214][T14980] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 942.468875][T14980] RSP: 002b:00007fff96b9b5b0 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 942.469176][T14980] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007f5f6f72cc5e [ 942.469451][T14980] RDX: 0000000000000000 RSI: 00007fff96b9b670 RDI: 0000000000000005 [ 942.469809][T14980] RBP: 00007fff96b9b5c0 R08: 0000000000000000 R09: 0000000000000000 [ 942.470104][T14980] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 942.470468][T14980] R13: 0000000069cbe7f5 R14: 0000000000000004 R15: 000000000049d620 | [ 942.563801][T14986] ------------[ cut here ]------------ | [ 942.564242][T14986] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#2: ip/14986 | [ 942.564558][T14986] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 942.565479][T14986] Tainted: [W]=WARN [ 942.565635][T14986] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 942.565860][T14986] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 942.566070][T14986] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 942.566617][T14986] RSP: 0018:ffa0000003d275d0 EFLAGS: 00010286 [ 942.566859][T14986] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe2200001ea0767 [ 942.567140][T14986] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100000f503b38 [ 942.567395][T14986] RBP: 1ff40000007a4ebb R08: 1fe2200001ea0768 R09: fffa3bfffffb0b24 [ 942.567650][T14986] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100000f5033b4 [ 942.567933][T14986] R13: ff1100000f503380 R14: ffffffff931c7940 R15: ff1100000f503a80 [ 942.568213][T14986] FS: 00007fc06ecf8440(0000) GS:ff110000a31b8000(0000) knlGS:0000000000000000 [ 942.568516][T14986] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 942.568760][T14986] CR2: 000000000044f720 CR3: 000000001c0e6005 CR4: 0000000000771ef0 [ 942.569045][T14986] PKRU: 55555554 [ 942.569202][T14986] Call Trace: [ 942.569365][T14986] [ 942.569496][T14986] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 942.569687][T14986] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 942.569912][T14986] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 942.570105][T14986] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 942.570299][T14986] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 942.570508][T14986] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 942.570710][T14986] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 942.570926][T14986] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 942.571121][T14986] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 942.571322][T14986] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 942.571525][T14986] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 942.571716][T14986] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 942.571927][T14986] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 942.572136][T14986] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 942.572334][T14986] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 942.572543][T14986] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 942.572748][T14986] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 942.572959][T14986] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 942.573158][T14986] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 942.573389][T14986] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 942.573606][T14986] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 942.573807][T14986] ? copy_msghdr_from_user (net/socket.c:2525) [ 942.574013][T14986] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 942.574250][T14986] ? move_addr_to_kernel (net/socket.c:2511) [ 942.574506][T14986] ? filemap_map_folio_range (mm/filemap.c:3873) [ 942.574690][T14986] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 942.574907][T14986] ___sys_sendmsg (net/socket.c:2641) [ 942.575099][T14986] ? copy_msghdr_from_user (net/socket.c:2628) [ 942.575297][T14986] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 942.575517][T14986] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 942.575718][T14986] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 942.575918][T14986] ? __sys_sendmsg_sock (net/socket.c:2656) [ 942.576131][T14986] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 942.576335][T14986] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 942.576531][T14986] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 942.576719][T14986] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 942.576932][T14986] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 942.577141][T14986] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 942.577372][T14986] RIP: 0033:0x7fc06ee52c5e [ 942.577580][T14986] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 942.578146][T14986] RSP: 002b:00007ffc2c375780 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 942.578428][T14986] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007fc06ee52c5e [ 942.578702][T14986] RDX: 0000000000000000 RSI: 00007ffc2c375840 RDI: 0000000000000005 [ 942.578976][T14986] RBP: 00007ffc2c375790 R08: 0000000000000000 R09: 0000000000000000 [ 942.579248][T14986] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 942.579514][T14986] R13: 0000000069cbe7f6 R14: 0000000000000004 R15: 000000000049d620 | [ 942.652629][T14990] ------------[ cut here ]------------ | [ 942.652795][T14990] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#0: ip/14990 | [ 942.653040][T14990] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 942.653804][T14990] Tainted: [W]=WARN [ 942.654166][T14990] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 942.654351][T14990] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 942.654498][T14990] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 942.655016][T14990] RSP: 0018:ffa0000003d075d0 EFLAGS: 00010286 [ 942.655198][T14990] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe22000036f188f [ 942.655410][T14990] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001b78c478 [ 942.655621][T14990] RBP: 1ff40000007a0ebb R08: 1fe22000036f1890 R09: fffa3bfffffb0b24 [ 942.655832][T14990] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100000f502cb4 [ 942.656053][T14990] R13: ff1100000f502c80 R14: ffffffff931c7940 R15: ff1100001b78c3c0 [ 942.656258][T14990] FS: 00007f2b2870b440(0000) GS:ff110000a30b8000(0000) knlGS:0000000000000000 [ 942.656504][T14990] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 942.656671][T14990] CR2: 000000000044f720 CR3: 00000000196af006 CR4: 0000000000771ef0 [ 942.656878][T14990] PKRU: 55555554 [ 942.656983][T14990] Call Trace: [ 942.657083][T14990] [ 942.657151][T14990] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 942.657290][T14990] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 942.657449][T14990] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 942.657596][T14990] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 942.657728][T14990] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 942.657863][T14990] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 942.658007][T14990] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 942.658141][T14990] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 942.658271][T14990] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 942.658409][T14990] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 942.658543][T14990] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 942.658678][T14990] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 942.658815][T14990] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 942.658958][T14990] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 942.659091][T14990] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 942.659227][T14990] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 942.659360][T14990] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 942.659505][T14990] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 942.659640][T14990] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 942.659773][T14990] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 942.659923][T14990] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 942.660070][T14990] ? copy_msghdr_from_user (net/socket.c:2525) [ 942.660203][T14990] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 942.660368][T14990] ? move_addr_to_kernel (net/socket.c:2511) [ 942.660514][T14990] ? filemap_map_folio_range (mm/filemap.c:3873) [ 942.660648][T14990] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 942.660819][T14990] ___sys_sendmsg (net/socket.c:2641) [ 942.660971][T14990] ? copy_msghdr_from_user (net/socket.c:2628) [ 942.661135][T14990] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 942.661304][T14990] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 942.661448][T14990] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 942.661592][T14990] ? __sys_sendmsg_sock (net/socket.c:2656) [ 942.661740][T14990] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 942.661883][T14990] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 942.662029][T14990] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 942.662165][T14990] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 942.662298][T14990] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 942.662438][T14990] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 942.662609][T14990] RIP: 0033:0x7f2b28865c5e [ 942.662756][T14990] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 942.663243][T14990] RSP: 002b:00007fff9c641010 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 942.663476][T14990] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007f2b28865c5e [ 942.663735][T14990] RDX: 0000000000000000 RSI: 00007fff9c6410d0 RDI: 0000000000000005 [ 942.663967][T14990] RBP: 00007fff9c641020 R08: 0000000000000000 R09: 0000000000000000 [ 942.664181][T14990] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 942.664409][T14990] R13: 0000000069cbe7f6 R14: 0000000000000004 R15: 000000000049d620 | [ 942.737006][T14996] ------------[ cut here ]------------ | [ 942.737184][T14996] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#3: ip/14996 | [ 942.737485][T14996] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 942.738715][T14996] Tainted: [W]=WARN [ 942.738822][T14996] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 942.739015][T14996] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 942.739160][T14996] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 942.739698][T14996] RSP: 0018:ffa0000003cb75d0 EFLAGS: 00010286 [ 942.739910][T14996] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe22000036f19df [ 942.740132][T14996] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001b78cef8 [ 942.740330][T14996] RBP: 1ff4000000796ebb R08: 1fe22000036f19e0 R09: fffa3bfffffb0b24 [ 942.740533][T14996] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001b78de34 [ 942.740742][T14996] R13: ff1100001b78de00 R14: ffffffff931c7940 R15: ff1100001b78ce40 [ 942.740960][T14996] FS: 00007f3f445eb440(0000) GS:ff110000a3238000(0000) knlGS:0000000000000000 [ 942.741194][T14996] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 942.741360][T14996] CR2: 000000000044f720 CR3: 000000001b3f5002 CR4: 0000000000771ef0 [ 942.741570][T14996] PKRU: 55555554 [ 942.741670][T14996] Call Trace: [ 942.741785][T14996] [ 942.741869][T14996] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 942.742009][T14996] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 942.742150][T14996] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 942.742284][T14996] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 942.742452][T14996] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 942.742603][T14996] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 942.742765][T14996] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 942.742923][T14996] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 942.743082][T14996] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 942.743219][T14996] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 942.743356][T14996] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 942.743492][T14996] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 942.743640][T14996] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 942.743781][T14996] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 942.743918][T14996] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 942.744051][T14996] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 942.744185][T14996] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 942.744319][T14996] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 942.744460][T14996] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 942.744593][T14996] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 942.744728][T14996] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 942.744862][T14996] ? copy_msghdr_from_user (net/socket.c:2525) [ 942.745001][T14996] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 942.745165][T14996] ? move_addr_to_kernel (net/socket.c:2511) [ 942.745299][T14996] ? __lock_release.isra.0 (kernel/locking/lockdep.c:5536) [ 942.745436][T14996] ___sys_sendmsg (net/socket.c:2641) [ 942.745570][T14996] ? _raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:179 (discriminator 3) kernel/locking/spinlock.c:194 (discriminator 3)) [ 942.745747][T14996] ? copy_msghdr_from_user (net/socket.c:2628) [ 942.745890][T14996] ? __lock_release.isra.0 (kernel/locking/lockdep.c:5536) [ 942.746027][T14996] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 942.746176][T14996] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 942.746309][T14996] ? __sys_sendmsg_sock (net/socket.c:2656) [ 942.746452][T14996] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 942.746585][T14996] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 942.746721][T14996] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 942.746857][T14996] ? irq_exit_rcu (kernel/softirq.c:741 (discriminator 37)) [ 942.747003][T14996] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 942.747167][T14996] RIP: 0033:0x7f3f44745c5e [ 942.747308][T14996] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 942.747807][T14996] RSP: 002b:00007fff6a29a280 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 942.748072][T14996] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007f3f44745c5e [ 942.748283][T14996] RDX: 0000000000000000 RSI: 00007fff6a29a340 RDI: 0000000000000005 [ 942.748491][T14996] RBP: 00007fff6a29a290 R08: 0000000000000000 R09: 0000000000000000 [ 942.748690][T14996] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 942.748889][T14996] R13: 0000000069cbe7f6 R14: 0000000000000004 R15: 000000000049d620 | [ 942.817535][T15000] ------------[ cut here ]------------ | [ 942.817695][T15000] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#3: ip/15000 | [ 942.818199][T15000] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 942.818989][T15000] Tainted: [W]=WARN [ 942.819100][T15000] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 942.819275][T15000] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 942.819466][T15000] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 942.819958][T15000] RSP: 0018:ffa0000003d175d0 EFLAGS: 00010286 [ 942.820135][T15000] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe2200003725b9f [ 942.820336][T15000] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001b92dcf8 [ 942.820547][T15000] RBP: 1ff40000007a2ebb R08: 1fe2200003725ba0 R09: fffa3bfffffb0b24 [ 942.820753][T15000] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001b78c074 [ 942.820969][T15000] R13: ff1100001b78c040 R14: ffffffff931c7940 R15: ff1100001b92dc40 [ 942.821171][T15000] FS: 00007f117916c440(0000) GS:ff110000a3238000(0000) knlGS:0000000000000000 [ 942.821411][T15000] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 942.821580][T15000] CR2: 000000000044f720 CR3: 000000001b3f5004 CR4: 0000000000771ef0 [ 942.821782][T15000] PKRU: 55555554 [ 942.821886][T15000] Call Trace: [ 942.821991][T15000] [ 942.822066][T15000] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 942.822205][T15000] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 942.822344][T15000] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 942.822487][T15000] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 942.822617][T15000] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 942.822751][T15000] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 942.822891][T15000] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 942.823032][T15000] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 942.823169][T15000] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 942.823305][T15000] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 942.823447][T15000] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 942.823583][T15000] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 942.823716][T15000] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 942.823861][T15000] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 942.824004][T15000] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 942.824137][T15000] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 942.824268][T15000] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 942.824441][T15000] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 942.824627][T15000] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 942.824782][T15000] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 942.824932][T15000] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 942.825094][T15000] ? copy_msghdr_from_user (net/socket.c:2525) [ 942.825227][T15000] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 942.825437][T15000] ? move_addr_to_kernel (net/socket.c:2511) [ 942.825575][T15000] ? filemap_map_folio_range (mm/filemap.c:3873) [ 942.825714][T15000] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 942.825850][T15000] ___sys_sendmsg (net/socket.c:2641) [ 942.825998][T15000] ? copy_msghdr_from_user (net/socket.c:2628) [ 942.826140][T15000] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 942.826275][T15000] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 942.826414][T15000] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 942.826547][T15000] ? __sys_sendmsg_sock (net/socket.c:2656) [ 942.826689][T15000] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 942.826821][T15000] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 942.826964][T15000] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 942.827104][T15000] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 942.827254][T15000] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 942.827417][T15000] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 942.827591][T15000] RIP: 0033:0x7f11792c6c5e [ 942.827732][T15000] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 942.828216][T15000] RSP: 002b:00007ffebbe17120 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 942.828425][T15000] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007f11792c6c5e [ 942.828625][T15000] RDX: 0000000000000000 RSI: 00007ffebbe171e0 RDI: 0000000000000005 [ 942.828828][T15000] RBP: 00007ffebbe17130 R08: 0000000000000000 R09: 0000000000000000 [ 942.829030][T15000] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 942.829226][T15000] R13: 0000000069cbe7f6 R14: 0000000000000004 R15: 000000000049d620 | [ 942.922456][T15006] ------------[ cut here ]------------ | [ 942.922645][T15006] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#3: ip/15006 | [ 942.923194][T15006] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 942.924040][T15006] Tainted: [W]=WARN [ 942.924150][T15006] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 942.924327][T15006] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 942.924482][T15006] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 942.924988][T15006] RSP: 0018:ffa0000003cf75d0 EFLAGS: 00010286 [ 942.925179][T15006] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe2200003725b2f [ 942.925437][T15006] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001b92d978 [ 942.925645][T15006] RBP: 1ff400000079eebb R08: 1fe2200003725b30 R09: fffa3bfffffb0b24 [ 942.925851][T15006] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001b92dab4 [ 942.926065][T15006] R13: ff1100001b92da80 R14: ffffffff931c7940 R15: ff1100001b92d8c0 [ 942.926281][T15006] FS: 00007ff4d26cd440(0000) GS:ff110000a3238000(0000) knlGS:0000000000000000 [ 942.926554][T15006] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 942.926731][T15006] CR2: 000000000044f720 CR3: 00000000105aa002 CR4: 0000000000771ef0 [ 942.926951][T15006] PKRU: 55555554 [ 942.927063][T15006] Call Trace: [ 942.927168][T15006] [ 942.927242][T15006] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 942.927394][T15006] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 942.927545][T15006] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 942.927689][T15006] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 942.927837][T15006] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 942.927993][T15006] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 942.928136][T15006] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 942.928284][T15006] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 942.928431][T15006] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 942.928582][T15006] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 942.928728][T15006] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 942.928889][T15006] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 942.929037][T15006] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 942.929182][T15006] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 942.929326][T15006] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 942.929474][T15006] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 942.929619][T15006] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 942.929757][T15006] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 942.929903][T15006] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 942.930039][T15006] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 942.930180][T15006] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 942.930576][T15006] ? copy_msghdr_from_user (net/socket.c:2525) [ 942.930714][T15006] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 942.930884][T15006] ? move_addr_to_kernel (net/socket.c:2511) [ 942.931027][T15006] ? filemap_map_folio_range (mm/filemap.c:3873) [ 942.931162][T15006] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 942.931301][T15006] ___sys_sendmsg (net/socket.c:2641) [ 942.931459][T15006] ? copy_msghdr_from_user (net/socket.c:2628) [ 942.931600][T15006] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 942.931743][T15006] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 942.931887][T15006] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 942.932030][T15006] ? __sys_sendmsg_sock (net/socket.c:2656) [ 942.932197][T15006] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 942.932339][T15006] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 942.932488][T15006] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 942.932628][T15006] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 942.932764][T15006] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 942.932908][T15006] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 942.933078][T15006] RIP: 0033:0x7ff4d2827c5e [ 942.933222][T15006] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 942.933945][T15006] RSP: 002b:00007ffd6e9b45c0 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 942.934169][T15006] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007ff4d2827c5e [ 942.934386][T15006] RDX: 0000000000000000 RSI: 00007ffd6e9b4680 RDI: 0000000000000005 [ 942.934606][T15006] RBP: 00007ffd6e9b45d0 R08: 0000000000000000 R09: 0000000000000000 [ 942.934806][T15006] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 942.935020][T15006] R13: 0000000069cbe7f6 R14: 0000000000000004 R15: 000000000049d620 | [ 943.005838][T15010] ------------[ cut here ]------------ | [ 943.006035][T15010] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#1: ip/15010 | [ 943.006281][T15010] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 943.007128][T15010] Tainted: [W]=WARN [ 943.007231][T15010] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 943.007407][T15010] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 943.007553][T15010] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 943.008051][T15010] RSP: 0018:ffa0000003cb75d0 EFLAGS: 00010286 [ 943.008226][T15010] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe220000372588f [ 943.008436][T15010] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001b92c478 [ 943.008643][T15010] RBP: 1ff4000000796ebb R08: 1fe2200003725890 R09: fffa3bfffffb0b24 [ 943.008852][T15010] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001b92c5b4 [ 943.009063][T15010] R13: ff1100001b92c580 R14: ffffffff931c7940 R15: ff1100001b92c3c0 [ 943.009292][T15010] FS: 00007f56f32ef440(0000) GS:ff110000a3138000(0000) knlGS:0000000000000000 [ 943.009551][T15010] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 943.009742][T15010] CR2: 000000000044f720 CR3: 000000001c1e8002 CR4: 0000000000771ef0 [ 943.009965][T15010] PKRU: 55555554 [ 943.010083][T15010] Call Trace: [ 943.010184][T15010] [ 943.010253][T15010] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 943.010398][T15010] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 943.010544][T15010] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 943.010678][T15010] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 943.010810][T15010] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 943.010956][T15010] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 943.011094][T15010] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 943.011228][T15010] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 943.011370][T15010] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 943.011510][T15010] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 943.011654][T15010] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 943.011792][T15010] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 943.011938][T15010] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 943.012087][T15010] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 943.012231][T15010] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 943.012372][T15010] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 943.012518][T15010] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 943.012664][T15010] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 943.012820][T15010] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 943.012972][T15010] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 943.013114][T15010] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 943.013249][T15010] ? copy_msghdr_from_user (net/socket.c:2525) [ 943.013387][T15010] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 943.013554][T15010] ? move_addr_to_kernel (net/socket.c:2511) [ 943.013691][T15010] ? filemap_map_folio_range (mm/filemap.c:3873) [ 943.013830][T15010] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 943.013975][T15010] ___sys_sendmsg (net/socket.c:2641) [ 943.014121][T15010] ? copy_msghdr_from_user (net/socket.c:2628) [ 943.014267][T15010] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 943.014434][T15010] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 943.014580][T15010] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 943.014717][T15010] ? __sys_sendmsg_sock (net/socket.c:2656) [ 943.014864][T15010] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 943.015075][T15010] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 943.015219][T15010] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 943.015361][T15010] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 943.015512][T15010] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 943.015667][T15010] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 943.015841][T15010] RIP: 0033:0x7f56f3449c5e [ 943.016041][T15010] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 943.016544][T15010] RSP: 002b:00007fff49280580 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 943.016764][T15010] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007f56f3449c5e [ 943.017028][T15010] RDX: 0000000000000000 RSI: 00007fff49280640 RDI: 0000000000000005 [ 943.017268][T15010] RBP: 00007fff49280590 R08: 0000000000000000 R09: 0000000000000000 [ 943.017511][T15010] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 943.017713][T15010] R13: 0000000069cbe7f6 R14: 0000000000000004 R15: 000000000049d620 | [ 943.097407][T15016] ------------[ cut here ]------------ | [ 943.097641][T15016] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#2: ip/15016 | [ 943.097971][T15016] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 943.099270][T15016] Tainted: [W]=WARN [ 943.099451][T15016] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 943.099693][T15016] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 943.099916][T15016] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 943.100492][T15016] RSP: 0018:ffa0000003d475d0 EFLAGS: 00010286 [ 943.100737][T15016] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe22000038750ff [ 943.101006][T15016] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001c3a87f8 [ 943.101256][T15016] RBP: 1ff40000007a8ebb R08: 1fe2200003875100 R09: fffa3bfffffb0b24 [ 943.101516][T15016] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001c3a9034 [ 943.101771][T15016] R13: ff1100001c3a9000 R14: ffffffff931c7940 R15: ff1100001c3a8740 [ 943.102052][T15016] FS: 00007effb9ea7440(0000) GS:ff110000a31b8000(0000) knlGS:0000000000000000 [ 943.102359][T15016] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 943.102597][T15016] CR2: 000000000044f720 CR3: 0000000010534004 CR4: 0000000000771ef0 [ 943.102862][T15016] PKRU: 55555554 [ 943.103031][T15016] Call Trace: [ 943.103191][T15016] [ 943.103326][T15016] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 943.103523][T15016] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 943.103721][T15016] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 943.103922][T15016] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 943.104112][T15016] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 943.104302][T15016] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 943.104494][T15016] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 943.104683][T15016] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 943.104870][T15016] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 943.105082][T15016] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 943.105274][T15016] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 943.105470][T15016] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 943.105659][T15016] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 943.105867][T15016] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 943.106065][T15016] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 943.106281][T15016] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 943.106489][T15016] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 943.106690][T15016] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 943.106887][T15016] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 943.107089][T15016] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 943.107279][T15016] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 943.107473][T15016] ? copy_msghdr_from_user (net/socket.c:2525) [ 943.107666][T15016] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 943.107882][T15016] ? move_addr_to_kernel (net/socket.c:2511) [ 943.108091][T15016] ? filemap_map_folio_range (mm/filemap.c:3873) [ 943.108291][T15016] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 943.108491][T15016] ___sys_sendmsg (net/socket.c:2641) [ 943.108677][T15016] ? copy_msghdr_from_user (net/socket.c:2628) [ 943.108866][T15016] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 943.109087][T15016] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 943.109283][T15016] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 943.109490][T15016] ? __sys_sendmsg_sock (net/socket.c:2656) [ 943.109681][T15016] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 943.109870][T15016] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 943.110075][T15016] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 943.110278][T15016] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 943.110473][T15016] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 943.110660][T15016] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 943.110886][T15016] RIP: 0033:0x7effba001c5e [ 943.111095][T15016] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 943.111743][T15016] RSP: 002b:00007fffb9bef4b0 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 943.112051][T15016] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007effba001c5e [ 943.112328][T15016] RDX: 0000000000000000 RSI: 00007fffb9bef570 RDI: 0000000000000005 [ 943.112627][T15016] RBP: 00007fffb9bef4c0 R08: 0000000000000000 R09: 0000000000000000 [ 943.112884][T15016] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 943.113147][T15016] R13: 0000000069cbe7f6 R14: 0000000000000004 R15: 000000000049d620 | [ 943.186325][T15020] ------------[ cut here ]------------ | [ 943.186518][T15020] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#0: ip/15020 | [ 943.186762][T15020] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 943.188094][T15020] Tainted: [W]=WARN [ 943.188200][T15020] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 943.188380][T15020] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 943.188523][T15020] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 943.189032][T15020] RSP: 0018:ffa0000003d475d0 EFLAGS: 00010286 [ 943.189208][T15020] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe22000038753d7 [ 943.189418][T15020] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001c3a9eb8 [ 943.189619][T15020] RBP: 1ff40000007a8ebb R08: 1fe22000038753d8 R09: fffa3bfffffb0b24 [ 943.189847][T15020] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001c3a85b4 [ 943.190057][T15020] R13: ff1100001c3a8580 R14: ffffffff931c7940 R15: ff1100001c3a9e00 [ 943.190264][T15020] FS: 00007f0b044a1440(0000) GS:ff110000a30b8000(0000) knlGS:0000000000000000 [ 943.190507][T15020] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 943.190679][T15020] CR2: 000000000044f720 CR3: 000000001c8ae001 CR4: 0000000000771ef0 [ 943.190920][T15020] PKRU: 55555554 [ 943.191022][T15020] Call Trace: [ 943.191146][T15020] [ 943.191218][T15020] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 943.191358][T15020] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 943.191515][T15020] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 943.191654][T15020] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 943.191795][T15020] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 943.191950][T15020] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 943.192086][T15020] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 943.192235][T15020] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 943.192380][T15020] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 943.192518][T15020] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 943.192663][T15020] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 943.192800][T15020] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 943.192942][T15020] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 943.193082][T15020] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 943.193236][T15020] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 943.193402][T15020] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 943.193540][T15020] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 943.193678][T15020] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 943.193821][T15020] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 943.193971][T15020] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 943.194109][T15020] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 943.194256][T15020] ? copy_msghdr_from_user (net/socket.c:2525) [ 943.194404][T15020] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 943.194575][T15020] ? move_addr_to_kernel (net/socket.c:2511) [ 943.194719][T15020] ? filemap_map_folio_range (mm/filemap.c:3873) [ 943.194861][T15020] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 943.195004][T15020] ___sys_sendmsg (net/socket.c:2641) [ 943.195148][T15020] ? copy_msghdr_from_user (net/socket.c:2628) [ 943.195295][T15020] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 943.195439][T15020] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 943.195575][T15020] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 943.195711][T15020] ? __sys_sendmsg_sock (net/socket.c:2656) [ 943.195857][T15020] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 943.196010][T15020] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 943.196148][T15020] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 943.196285][T15020] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 943.196423][T15020] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 943.196642][T15020] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 943.196809][T15020] RIP: 0033:0x7f0b045fbc5e [ 943.196957][T15020] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 943.197537][T15020] RSP: 002b:00007fff44b91750 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 943.197781][T15020] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007f0b045fbc5e [ 943.198070][T15020] RDX: 0000000000000000 RSI: 00007fff44b91810 RDI: 0000000000000005 [ 943.198270][T15020] RBP: 00007fff44b91760 R08: 0000000000000000 R09: 0000000000000000 [ 943.198566][T15020] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 943.198775][T15020] R13: 0000000069cbe7f6 R14: 0000000000000004 R15: 000000000049d620 | [ 943.294596][T15026] ------------[ cut here ]------------ | [ 943.294784][T15026] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#3: ip/15026 | [ 943.295953][T15026] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 943.296792][T15026] Tainted: [W]=WARN [ 943.297018][T15026] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 943.297200][T15026] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 943.297349][T15026] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 943.297854][T15026] RSP: 0018:ffa0000003d675d0 EFLAGS: 00010286 [ 943.298123][T15026] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe22000038751a7 [ 943.298335][T15026] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001c3a8d38 [ 943.298556][T15026] RBP: 1ff40000007acebb R08: 1fe22000038751a8 R09: fffa3bfffffb0b24 [ 943.298763][T15026] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001c3a9ab4 [ 943.299067][T15026] R13: ff1100001c3a9a80 R14: ffffffff931c7940 R15: ff1100001c3a8c80 [ 943.299281][T15026] FS: 00007fc4f9a43440(0000) GS:ff110000a3238000(0000) knlGS:0000000000000000 [ 943.299543][T15026] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 943.299714][T15026] CR2: 000000000044f720 CR3: 0000000017293002 CR4: 0000000000771ef0 [ 943.300034][T15026] PKRU: 55555554 [ 943.300149][T15026] Call Trace: [ 943.300258][T15026] [ 943.300337][T15026] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 943.300505][T15026] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 943.300683][T15026] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 943.300834][T15026] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 943.301078][T15026] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 943.301231][T15026] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 943.301382][T15026] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 943.301531][T15026] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 943.301676][T15026] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 943.301822][T15026] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 943.302037][T15026] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 943.302182][T15026] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 943.302330][T15026] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 943.302483][T15026] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 943.302628][T15026] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 943.302779][T15026] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 943.302999][T15026] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 943.303148][T15026] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 943.303291][T15026] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 943.303445][T15026] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 943.303589][T15026] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 943.303743][T15026] ? copy_msghdr_from_user (net/socket.c:2525) [ 943.303970][T15026] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 943.304145][T15026] ? move_addr_to_kernel (net/socket.c:2511) [ 943.304287][T15026] ? filemap_map_folio_range (mm/filemap.c:3873) [ 943.304439][T15026] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 943.304601][T15026] ___sys_sendmsg (net/socket.c:2641) [ 943.304745][T15026] ? copy_msghdr_from_user (net/socket.c:2628) [ 943.304890][T15026] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 943.305041][T15026] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 943.305183][T15026] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 943.305327][T15026] ? __sys_sendmsg_sock (net/socket.c:2656) [ 943.305473][T15026] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 943.305616][T15026] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 943.305755][T15026] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 943.305900][T15026] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 943.306062][T15026] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 943.306208][T15026] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 943.306381][T15026] RIP: 0033:0x7fc4f9b9dc5e [ 943.306526][T15026] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 943.307188][T15026] RSP: 002b:00007fff69c44250 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 943.307407][T15026] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007fc4f9b9dc5e [ 943.307614][T15026] RDX: 0000000000000000 RSI: 00007fff69c44310 RDI: 0000000000000005 [ 943.307971][T15026] RBP: 00007fff69c44260 R08: 0000000000000000 R09: 0000000000000000 [ 943.308181][T15026] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 943.308395][T15026] R13: 0000000069cbe7f6 R14: 0000000000000004 R15: 000000000049d620 | [ 943.390114][T15030] ------------[ cut here ]------------ | [ 943.390301][T15030] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#1: ip/15030 | [ 943.390560][T15030] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 943.391422][T15030] Tainted: [W]=WARN [ 943.391530][T15030] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 943.391709][T15030] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 943.391858][T15030] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 943.392379][T15030] RSP: 0018:ffa0000003dc75d0 EFLAGS: 00010286 [ 943.392562][T15030] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe220000192ea4f [ 943.392773][T15030] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100000c975278 [ 943.392984][T15030] RBP: 1ff40000007b8ebb R08: 1fe220000192ea50 R09: fffa3bfffffb0b24 [ 943.393186][T15030] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100000c974234 [ 943.393435][T15030] R13: ff1100000c974200 R14: ffffffff931c7940 R15: ff1100000c9751c0 [ 943.393685][T15030] FS: 00007fedb53e0440(0000) GS:ff110000a3138000(0000) knlGS:0000000000000000 [ 943.393979][T15030] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 943.394183][T15030] CR2: 000000000044f720 CR3: 000000001ab52001 CR4: 0000000000771ef0 [ 943.394448][T15030] PKRU: 55555554 [ 943.394551][T15030] Call Trace: [ 943.394676][T15030] [ 943.394751][T15030] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 943.394906][T15030] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 943.395074][T15030] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 943.395234][T15030] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 943.395410][T15030] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 943.395555][T15030] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 943.395689][T15030] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 943.395829][T15030] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 943.396031][T15030] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 943.396243][T15030] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 943.396408][T15030] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 943.396568][T15030] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 943.396711][T15030] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 943.396851][T15030] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 943.397050][T15030] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 943.397200][T15030] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 943.397340][T15030] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 943.397488][T15030] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 943.397657][T15030] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 943.397800][T15030] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 943.398002][T15030] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 943.398136][T15030] ? copy_msghdr_from_user (net/socket.c:2525) [ 943.398272][T15030] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 943.398489][T15030] ? move_addr_to_kernel (net/socket.c:2511) [ 943.398624][T15030] ? filemap_map_folio_range (mm/filemap.c:3873) [ 943.398781][T15030] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 943.398980][T15030] ___sys_sendmsg (net/socket.c:2641) [ 943.399120][T15030] ? copy_msghdr_from_user (net/socket.c:2628) [ 943.399271][T15030] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 943.399419][T15030] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 943.399562][T15030] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 943.399705][T15030] ? __sys_sendmsg_sock (net/socket.c:2656) [ 943.399849][T15030] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 943.400064][T15030] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 943.400206][T15030] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 943.400348][T15030] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 943.400497][T15030] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 943.400640][T15030] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 943.400821][T15030] RIP: 0033:0x7fedb553ac5e [ 943.401051][T15030] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 943.401567][T15030] RSP: 002b:00007fff7cd07dc0 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 943.401784][T15030] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007fedb553ac5e [ 943.402080][T15030] RDX: 0000000000000000 RSI: 00007fff7cd07e80 RDI: 0000000000000005 [ 943.402297][T15030] RBP: 00007fff7cd07dd0 R08: 0000000000000000 R09: 0000000000000000 [ 943.402518][T15030] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 943.402733][T15030] R13: 0000000069cbe7f6 R14: 0000000000000004 R15: 000000000049d620 | [ 943.488924][T15036] ------------[ cut here ]------------ | [ 943.489103][T15036] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#0: ip/15036 | [ 943.489381][T15036] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 943.490191][T15036] Tainted: [W]=WARN [ 943.490307][T15036] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 943.490495][T15036] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 943.490649][T15036] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 943.491218][T15036] RSP: 0018:ffa0000003de75d0 EFLAGS: 00010286 [ 943.491409][T15036] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe220000192ea17 [ 943.491613][T15036] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100000c9750b8 [ 943.491818][T15036] RBP: 1ff40000007bcebb R08: 1fe220000192ea18 R09: fffa3bfffffb0b24 [ 943.492026][T15036] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100000c974e74 [ 943.492238][T15036] R13: ff1100000c974e40 R14: ffffffff931c7940 R15: ff1100000c975000 [ 943.492451][T15036] FS: 00007f12997a3440(0000) GS:ff110000a30b8000(0000) knlGS:0000000000000000 [ 943.492691][T15036] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 943.492864][T15036] CR2: 000000000044f720 CR3: 000000001a295004 CR4: 0000000000771ef0 [ 943.493079][T15036] PKRU: 55555554 [ 943.493185][T15036] Call Trace: [ 943.493291][T15036] [ 943.493366][T15036] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 943.493508][T15036] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 943.493659][T15036] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 943.493795][T15036] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 943.493957][T15036] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 943.494103][T15036] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 943.494245][T15036] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 943.494386][T15036] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 943.494520][T15036] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 943.494657][T15036] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 943.494796][T15036] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 943.494938][T15036] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 943.495078][T15036] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 943.495219][T15036] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 943.495354][T15036] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 943.495499][T15036] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 943.495635][T15036] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 943.495771][T15036] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 943.495910][T15036] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 943.496048][T15036] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 943.496191][T15036] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 943.496328][T15036] ? copy_msghdr_from_user (net/socket.c:2525) [ 943.496497][T15036] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 943.496673][T15036] ? move_addr_to_kernel (net/socket.c:2511) [ 943.496808][T15036] ? filemap_map_folio_range (mm/filemap.c:3873) [ 943.496946][T15036] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 943.497085][T15036] ___sys_sendmsg (net/socket.c:2641) [ 943.497220][T15036] ? copy_msghdr_from_user (net/socket.c:2628) [ 943.497370][T15036] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 943.497511][T15036] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 943.497648][T15036] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 943.497783][T15036] ? __sys_sendmsg_sock (net/socket.c:2656) [ 943.497926][T15036] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 943.498062][T15036] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 943.498205][T15036] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 943.498349][T15036] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 943.498489][T15036] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 943.498623][T15036] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 943.498792][T15036] RIP: 0033:0x7f12998fdc5e [ 943.498950][T15036] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 943.499439][T15036] RSP: 002b:00007ffd3beb5fa0 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 943.499658][T15036] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007f12998fdc5e [ 943.499868][T15036] RDX: 0000000000000000 RSI: 00007ffd3beb6060 RDI: 0000000000000005 [ 943.500083][T15036] RBP: 00007ffd3beb5fb0 R08: 0000000000000000 R09: 0000000000000000 [ 943.500293][T15036] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 943.500501][T15036] R13: 0000000069cbe7f6 R14: 0000000000000004 R15: 000000000049d620 | [ 943.569197][T15040] ------------[ cut here ]------------ | [ 943.569370][T15040] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#1: ip/15040 | [ 943.569632][T15040] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 943.570434][T15040] Tainted: [W]=WARN [ 943.570539][T15040] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 943.570712][T15040] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 943.570860][T15040] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 943.571388][T15040] RSP: 0018:ffa0000003dc75d0 EFLAGS: 00010286 [ 943.571565][T15040] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe2200003229d37 [ 943.571770][T15040] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001914e9b8 [ 943.571980][T15040] RBP: 1ff40000007b8ebb R08: 1fe2200003229d38 R09: fffa3bfffffb0b24 [ 943.572194][T15040] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001914e3f4 [ 943.572415][T15040] R13: ff1100001914e3c0 R14: ffffffff931c7940 R15: ff1100001914e900 [ 943.572633][T15040] FS: 00007f7e1754e440(0000) GS:ff110000a3138000(0000) knlGS:0000000000000000 [ 943.572901][T15040] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 943.573079][T15040] CR2: 000000000044f720 CR3: 000000001d28c004 CR4: 0000000000771ef0 [ 943.573300][T15040] PKRU: 55555554 [ 943.573415][T15040] Call Trace: [ 943.573522][T15040] [ 943.573593][T15040] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 943.573752][T15040] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 943.573915][T15040] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 943.574056][T15040] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 943.574190][T15040] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 943.574342][T15040] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 943.574491][T15040] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 943.574642][T15040] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 943.574783][T15040] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 943.574929][T15040] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 943.575067][T15040] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 943.575210][T15040] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 943.575349][T15040] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 943.575496][T15040] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 943.575638][T15040] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 943.575783][T15040] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 943.575982][T15040] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 943.576130][T15040] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 943.576276][T15040] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 943.576438][T15040] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 943.576585][T15040] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 943.576733][T15040] ? copy_msghdr_from_user (net/socket.c:2525) [ 943.576874][T15040] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 943.577130][T15040] ? move_addr_to_kernel (net/socket.c:2511) [ 943.577276][T15040] ? filemap_map_folio_range (mm/filemap.c:3873) [ 943.577428][T15040] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 943.577574][T15040] ___sys_sendmsg (net/socket.c:2641) [ 943.577714][T15040] ? copy_msghdr_from_user (net/socket.c:2628) [ 943.577859][T15040] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 943.578074][T15040] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 943.578220][T15040] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 943.578358][T15040] ? __sys_sendmsg_sock (net/socket.c:2656) [ 943.578511][T15040] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 943.578647][T15040] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 943.578788][T15040] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 943.578989][T15040] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 943.579133][T15040] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 943.579272][T15040] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 943.579445][T15040] RIP: 0033:0x7f7e176a8c5e [ 943.579593][T15040] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 943.580153][T15040] RSP: 002b:00007ffdbd92b260 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 943.580359][T15040] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007f7e176a8c5e [ 943.580576][T15040] RDX: 0000000000000000 RSI: 00007ffdbd92b320 RDI: 0000000000000005 [ 943.580794][T15040] RBP: 00007ffdbd92b270 R08: 0000000000000000 R09: 0000000000000000 [ 943.581075][T15040] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 943.581279][T15040] R13: 0000000069cbe7f7 R14: 0000000000000004 R15: 000000000049d620 | [ 943.657877][T15046] ------------[ cut here ]------------ | [ 943.658070][T15046] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#1: ip/15046 | [ 943.658316][T15046] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 943.659169][T15046] Tainted: [W]=WARN [ 943.659297][T15046] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 943.659512][T15046] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 943.659662][T15046] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 943.660178][T15046] RSP: 0018:ffa0000003df75d0 EFLAGS: 00010286 [ 943.660393][T15046] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe2200003229cff [ 943.660609][T15046] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001914e7f8 [ 943.660838][T15046] RBP: 1ff40000007beebb R08: 1fe2200003229d00 R09: fffa3bfffffb0b24 [ 943.661063][T15046] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001914eaf4 [ 943.661272][T15046] R13: ff1100001914eac0 R14: ffffffff931c7940 R15: ff1100001914e740 [ 943.661491][T15046] FS: 00007fbaa6b1f440(0000) GS:ff110000a3138000(0000) knlGS:0000000000000000 [ 943.661750][T15046] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 943.662484][T15046] CR2: 000000000044f720 CR3: 00000000171f9006 CR4: 0000000000771ef0 [ 943.662716][T15046] PKRU: 55555554 [ 943.662828][T15046] Call Trace: [ 943.662945][T15046] [ 943.663020][T15046] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 943.663158][T15046] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 943.663301][T15046] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 943.663447][T15046] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 943.663604][T15046] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 943.663747][T15046] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 943.663883][T15046] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 943.664033][T15046] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 943.664171][T15046] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 943.664307][T15046] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 943.664458][T15046] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 943.664652][T15046] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 943.664797][T15046] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 943.664995][T15046] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 943.665132][T15046] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 943.665276][T15046] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 943.665517][T15046] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 943.665663][T15046] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 943.665822][T15046] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 943.666021][T15046] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 943.666161][T15046] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 943.666298][T15046] ? copy_msghdr_from_user (net/socket.c:2525) [ 943.666442][T15046] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 943.666608][T15046] ? move_addr_to_kernel (net/socket.c:2511) [ 943.666781][T15046] ? filemap_map_folio_range (mm/filemap.c:3873) [ 943.666979][T15046] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 943.667117][T15046] ___sys_sendmsg (net/socket.c:2641) [ 943.667251][T15046] ? copy_msghdr_from_user (net/socket.c:2628) [ 943.667396][T15046] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 943.667539][T15046] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 943.667704][T15046] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 943.667845][T15046] ? __sys_sendmsg_sock (net/socket.c:2656) [ 943.668076][T15046] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 943.668226][T15046] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 943.668393][T15046] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 943.668549][T15046] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 943.668687][T15046] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 943.668830][T15046] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 943.669083][T15046] RIP: 0033:0x7fbaa6c79c5e [ 943.669248][T15046] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 943.670267][T15046] RSP: 002b:00007fff0403fd30 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 943.670484][T15046] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007fbaa6c79c5e [ 943.670729][T15046] RDX: 0000000000000000 RSI: 00007fff0403fdf0 RDI: 0000000000000005 [ 943.670950][T15046] RBP: 00007fff0403fd40 R08: 0000000000000000 R09: 0000000000000000 [ 943.671149][T15046] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 943.671349][T15046] R13: 0000000069cbe7f7 R14: 0000000000000004 R15: 000000000049d620 | [ 943.746881][T15050] ------------[ cut here ]------------ | [ 943.747118][T15050] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#2: ip/15050 | [ 943.747438][T15050] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 943.748584][T15050] Tainted: [W]=WARN [ 943.748738][T15050] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 943.748999][T15050] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 943.749195][T15050] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 943.749740][T15050] RSP: 0018:ffa0000003e375d0 EFLAGS: 00010286 [ 943.749981][T15050] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe22000034c2057 [ 943.750235][T15050] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001a6102b8 [ 943.750521][T15050] RBP: 1ff40000007c6ebb R08: 1fe22000034c2058 R09: fffa3bfffffb0b24 [ 943.750787][T15050] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001a6118f4 [ 943.751066][T15050] R13: ff1100001a6118c0 R14: ffffffff931c7940 R15: ff1100001a610200 [ 943.751349][T15050] FS: 00007f1379c0d440(0000) GS:ff110000a31b8000(0000) knlGS:0000000000000000 [ 943.751656][T15050] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 943.751907][T15050] CR2: 000000000044f720 CR3: 00000000171f9004 CR4: 0000000000771ef0 [ 943.752172][T15050] PKRU: 55555554 [ 943.752333][T15050] Call Trace: [ 943.752494][T15050] [ 943.752616][T15050] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 943.752808][T15050] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 943.753028][T15050] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 943.753229][T15050] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 943.753426][T15050] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 943.753626][T15050] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 943.753822][T15050] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 943.754034][T15050] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 943.754219][T15050] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 943.754560][T15050] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 943.754750][T15050] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 943.754948][T15050] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 943.755140][T15050] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 943.755334][T15050] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 943.755526][T15050] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 943.755719][T15050] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 943.755930][T15050] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 943.756121][T15050] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 943.756308][T15050] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 943.756525][T15050] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 943.756724][T15050] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 943.756936][T15050] ? copy_msghdr_from_user (net/socket.c:2525) [ 943.757137][T15050] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 943.757400][T15050] ? move_addr_to_kernel (net/socket.c:2511) [ 943.757596][T15050] ? filemap_map_folio_range (mm/filemap.c:3873) [ 943.757794][T15050] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 943.758011][T15050] ___sys_sendmsg (net/socket.c:2641) [ 943.758203][T15050] ? copy_msghdr_from_user (net/socket.c:2628) [ 943.758412][T15050] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 943.758606][T15050] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 943.758810][T15050] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 943.759043][T15050] ? __sys_sendmsg_sock (net/socket.c:2656) [ 943.759250][T15050] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 943.759451][T15050] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 943.759655][T15050] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 943.759847][T15050] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 943.760073][T15050] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 943.760272][T15050] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 943.760516][T15050] RIP: 0033:0x7f1379d67c5e [ 943.760721][T15050] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 943.761286][T15050] RSP: 002b:00007ffdea375540 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 943.761564][T15050] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007f1379d67c5e [ 943.761821][T15050] RDX: 0000000000000000 RSI: 00007ffdea375600 RDI: 0000000000000005 [ 943.762098][T15050] RBP: 00007ffdea375550 R08: 0000000000000000 R09: 0000000000000000 [ 943.762349][T15050] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 943.762637][T15050] R13: 0000000069cbe7f7 R14: 0000000000000004 R15: 000000000049d620 | [ 943.838114][T15056] ------------[ cut here ]------------ | [ 943.838285][T15056] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#3: ip/15056 | [ 943.838556][T15056] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 943.839358][T15056] Tainted: [W]=WARN [ 943.839474][T15056] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 943.839647][T15056] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 943.839789][T15056] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 943.840289][T15056] RSP: 0018:ffa0000003d075d0 EFLAGS: 00010286 [ 943.840465][T15056] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe22000034c23d7 [ 943.840671][T15056] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001a611eb8 [ 943.840878][T15056] RBP: 1ff40000007a0ebb R08: 1fe22000034c23d8 R09: fffa3bfffffb0b24 [ 943.841096][T15056] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001a6105b4 [ 943.841300][T15056] R13: ff1100001a610580 R14: ffffffff931c7940 R15: ff1100001a611e00 [ 943.841510][T15056] FS: 00007f1a3e58b440(0000) GS:ff110000a3238000(0000) knlGS:0000000000000000 [ 943.841751][T15056] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 943.841939][T15056] CR2: 000000000044f720 CR3: 000000001ab52005 CR4: 0000000000771ef0 [ 943.842150][T15056] PKRU: 55555554 [ 943.842255][T15056] Call Trace: [ 943.842360][T15056] [ 943.842436][T15056] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 943.842570][T15056] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 943.842712][T15056] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 943.842852][T15056] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 943.842993][T15056] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 943.843134][T15056] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 943.843270][T15056] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 943.843410][T15056] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 943.843547][T15056] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 943.843683][T15056] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 943.843823][T15056] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 943.843969][T15056] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 943.844107][T15056] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 943.844242][T15056] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 943.844380][T15056] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 943.844517][T15056] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 943.844667][T15056] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 943.844802][T15056] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 943.844942][T15056] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 943.845079][T15056] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 943.845217][T15056] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 943.845351][T15056] ? copy_msghdr_from_user (net/socket.c:2525) [ 943.845490][T15056] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 943.845655][T15056] ? move_addr_to_kernel (net/socket.c:2511) [ 943.845790][T15056] ? filemap_map_folio_range (mm/filemap.c:3873) [ 943.845933][T15056] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 943.846071][T15056] ___sys_sendmsg (net/socket.c:2641) [ 943.846206][T15056] ? copy_msghdr_from_user (net/socket.c:2628) [ 943.846344][T15056] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 943.846488][T15056] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 943.846632][T15056] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 943.846767][T15056] ? __sys_sendmsg_sock (net/socket.c:2656) [ 943.846908][T15056] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 943.847044][T15056] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 943.847179][T15056] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 943.847315][T15056] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 943.847451][T15056] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 943.847595][T15056] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 943.847765][T15056] RIP: 0033:0x7f1a3e6e5c5e [ 943.847922][T15056] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 943.848423][T15056] RSP: 002b:00007ffc70e8de60 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 943.848629][T15056] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007f1a3e6e5c5e [ 943.848829][T15056] RDX: 0000000000000000 RSI: 00007ffc70e8df20 RDI: 0000000000000005 [ 943.849035][T15056] RBP: 00007ffc70e8de70 R08: 0000000000000000 R09: 0000000000000000 [ 943.849233][T15056] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 943.849458][T15056] R13: 0000000069cbe7f7 R14: 0000000000000004 R15: 000000000049d620 | [ 943.920182][T15060] ------------[ cut here ]------------ | [ 943.920402][T15060] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#2: ip/15060 | [ 943.920696][T15060] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 943.921588][T15060] Tainted: [W]=WARN [ 943.921746][T15060] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 943.921982][T15060] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 943.922178][T15060] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 943.922720][T15060] RSP: 0018:ffa0000003e475d0 EFLAGS: 00010286 [ 943.923565][T15060] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe2200001ea072f [ 943.923872][T15060] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100000f503978 [ 943.924193][T15060] RBP: 1ff40000007c8ebb R08: 1fe2200001ea0730 R09: fffa3bfffffb0b24 [ 943.924508][T15060] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100000f503c74 [ 943.924836][T15060] R13: ff1100000f503c40 R14: ffffffff931c7940 R15: ff1100000f5038c0 [ 943.925108][T15060] FS: 00007f4d42619440(0000) GS:ff110000a31b8000(0000) knlGS:0000000000000000 [ 943.925408][T15060] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 943.925639][T15060] CR2: 000000000044f720 CR3: 000000001cc56005 CR4: 0000000000771ef0 [ 943.925912][T15060] PKRU: 55555554 [ 943.926066][T15060] Call Trace: [ 943.926220][T15060] [ 943.926342][T15060] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 943.926547][T15060] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 943.926758][T15060] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 943.926962][T15060] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 943.927151][T15060] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 943.927344][T15060] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 943.927543][T15060] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 943.927734][T15060] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 943.927944][T15060] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 943.928140][T15060] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 943.928332][T15060] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 943.928526][T15060] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 943.928718][T15060] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 943.928922][T15060] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 943.929109][T15060] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 943.929301][T15060] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 943.929498][T15060] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 943.929690][T15060] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 943.929883][T15060] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 943.930086][T15060] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 943.930276][T15060] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 943.930475][T15060] ? copy_msghdr_from_user (net/socket.c:2525) [ 943.930667][T15060] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 943.930912][T15060] ? move_addr_to_kernel (net/socket.c:2511) [ 943.931103][T15060] ? filemap_map_folio_range (mm/filemap.c:3873) [ 943.931291][T15060] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 943.931496][T15060] ___sys_sendmsg (net/socket.c:2641) [ 943.931684][T15060] ? copy_msghdr_from_user (net/socket.c:2628) [ 943.931913][T15060] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 943.932108][T15060] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 943.932306][T15060] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 943.932509][T15060] ? __sys_sendmsg_sock (net/socket.c:2656) [ 943.932713][T15060] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 943.932928][T15060] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 943.933125][T15060] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 943.933325][T15060] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 943.933523][T15060] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 943.933722][T15060] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 943.933955][T15060] RIP: 0033:0x7f4d42773c5e [ 943.934151][T15060] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 943.934689][T15060] RSP: 002b:00007ffd42ecad20 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 943.934963][T15060] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007f4d42773c5e [ 943.935224][T15060] RDX: 0000000000000000 RSI: 00007ffd42ecade0 RDI: 0000000000000005 [ 943.935494][T15060] RBP: 00007ffd42ecad30 R08: 0000000000000000 R09: 0000000000000000 [ 943.935747][T15060] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 943.936013][T15060] R13: 0000000069cbe7f7 R14: 0000000000000004 R15: 000000000049d620 | [ 944.011826][T15066] ------------[ cut here ]------------ | [ 944.012401][T15066] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#2: ip/15066 | [ 944.012719][T15066] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 944.013719][T15066] Tainted: [W]=WARN [ 944.013907][T15066] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 944.014135][T15066] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 944.014348][T15066] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 944.014971][T15066] RSP: 0018:ffa0000003e475d0 EFLAGS: 00010286 [ 944.015213][T15066] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe2200001ea0617 [ 944.015486][T15066] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100000f5030b8 [ 944.015756][T15066] RBP: 1ff40000007c8ebb R08: 1fe2200001ea0618 R09: fffa3bfffffb0b24 [ 944.016065][T15066] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100000f503e34 [ 944.016345][T15066] R13: ff1100000f503e00 R14: ffffffff931c7940 R15: ff1100000f503000 [ 944.016637][T15066] FS: 00007f5bf9cfa440(0000) GS:ff110000a31b8000(0000) knlGS:0000000000000000 [ 944.016977][T15066] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 944.017205][T15066] CR2: 000000000044f720 CR3: 0000000017292002 CR4: 0000000000771ef0 [ 944.017481][T15066] PKRU: 55555554 [ 944.017688][T15066] Call Trace: [ 944.017852][T15066] [ 944.017987][T15066] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 944.018179][T15066] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 944.018388][T15066] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 944.018588][T15066] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 944.018776][T15066] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 944.018984][T15066] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 944.019174][T15066] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 944.019365][T15066] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 944.019571][T15066] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 944.019764][T15066] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 944.019969][T15066] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 944.020159][T15066] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 944.020354][T15066] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 944.020554][T15066] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 944.020744][T15066] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 944.020948][T15066] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 944.021152][T15066] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 944.021364][T15066] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 944.021612][T15066] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 944.021814][T15066] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 944.022043][T15066] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 944.022273][T15066] ? copy_msghdr_from_user (net/socket.c:2525) [ 944.022597][T15066] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 944.022825][T15066] ? move_addr_to_kernel (net/socket.c:2511) [ 944.023070][T15066] ? filemap_map_folio_range (mm/filemap.c:3873) [ 944.023312][T15066] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 944.023534][T15066] ___sys_sendmsg (net/socket.c:2641) [ 944.023725][T15066] ? copy_msghdr_from_user (net/socket.c:2628) [ 944.023972][T15066] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 944.024197][T15066] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 944.024433][T15066] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 944.024622][T15066] ? __sys_sendmsg_sock (net/socket.c:2656) [ 944.024820][T15066] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 944.025029][T15066] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 944.025243][T15066] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 944.025450][T15066] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 944.025640][T15066] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 944.025832][T15066] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 944.026066][T15066] RIP: 0033:0x7f5bf9e54c5e [ 944.026301][T15066] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 944.026854][T15066] RSP: 002b:00007fff0806cab0 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 944.027140][T15066] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007f5bf9e54c5e [ 944.027401][T15066] RDX: 0000000000000000 RSI: 00007fff0806cb70 RDI: 0000000000000005 [ 944.027676][T15066] RBP: 00007fff0806cac0 R08: 0000000000000000 R09: 0000000000000000 [ 944.027972][T15066] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 944.028227][T15066] R13: 0000000069cbe7f7 R14: 0000000000000004 R15: 000000000049d620 | [ 944.097721][T15070] ------------[ cut here ]------------ | [ 944.097904][T15070] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#1: ip/15070 | [ 944.098142][T15070] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 944.099035][T15070] Tainted: [W]=WARN [ 944.099141][T15070] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 944.099314][T15070] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 944.099481][T15070] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 944.100045][T15070] RSP: 0018:ffa0000003e475d0 EFLAGS: 00010286 [ 944.100257][T15070] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe22000036f1b9f [ 944.100485][T15070] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001b78dcf8 [ 944.100698][T15070] RBP: 1ff40000007c8ebb R08: 1fe22000036f1ba0 R09: fffa3bfffffb0b24 [ 944.100961][T15070] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001b78d034 [ 944.101176][T15070] R13: ff1100001b78d000 R14: ffffffff931c7940 R15: ff1100001b78dc40 [ 944.101401][T15070] FS: 00007f7c05dcc440(0000) GS:ff110000a3138000(0000) knlGS:0000000000000000 [ 944.101663][T15070] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 944.101850][T15070] CR2: 000000000044f720 CR3: 00000000108a5005 CR4: 0000000000771ef0 [ 944.102111][T15070] PKRU: 55555554 [ 944.102217][T15070] Call Trace: [ 944.102323][T15070] [ 944.102423][T15070] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 944.102561][T15070] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 944.102706][T15070] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 944.102847][T15070] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 944.103031][T15070] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 944.103202][T15070] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 944.103336][T15070] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 944.103476][T15070] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 944.103625][T15070] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 944.103765][T15070] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 944.103910][T15070] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 944.104047][T15070] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 944.104181][T15070] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 944.104323][T15070] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 944.104464][T15070] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 944.104604][T15070] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 944.104744][T15070] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 944.104899][T15070] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 944.105036][T15070] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 944.105174][T15070] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 944.105310][T15070] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 944.105452][T15070] ? copy_msghdr_from_user (net/socket.c:2525) [ 944.105588][T15070] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 944.105756][T15070] ? move_addr_to_kernel (net/socket.c:2511) [ 944.105898][T15070] ? filemap_map_folio_range (mm/filemap.c:3873) [ 944.106034][T15070] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 944.106183][T15070] ___sys_sendmsg (net/socket.c:2641) [ 944.106320][T15070] ? copy_msghdr_from_user (net/socket.c:2628) [ 944.106464][T15070] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 944.106602][T15070] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 944.106738][T15070] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 944.106877][T15070] ? __sys_sendmsg_sock (net/socket.c:2656) [ 944.107022][T15070] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 944.107158][T15070] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 944.107293][T15070] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 944.107459][T15070] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 944.107608][T15070] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 944.107748][T15070] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 944.107941][T15070] RIP: 0033:0x7f7c05f26c5e [ 944.108088][T15070] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 944.108579][T15070] RSP: 002b:00007ffc6889e680 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 944.108812][T15070] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007f7c05f26c5e [ 944.109022][T15070] RDX: 0000000000000000 RSI: 00007ffc6889e740 RDI: 0000000000000005 [ 944.109261][T15070] RBP: 00007ffc6889e690 R08: 0000000000000000 R09: 0000000000000000 [ 944.109481][T15070] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 944.109711][T15070] R13: 0000000069cbe7f7 R14: 0000000000000004 R15: 000000000049d620 | [ 944.190611][T15076] ------------[ cut here ]------------ | [ 944.190820][T15076] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#2: ip/15076 | [ 944.191508][T15076] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 944.192394][T15076] Tainted: [W]=WARN [ 944.192548][T15076] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 944.192768][T15076] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 944.192977][T15076] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 944.193516][T15076] RSP: 0018:ffa0000003e775d0 EFLAGS: 00010286 [ 944.193740][T15076] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe22000036f19a7 [ 944.194005][T15076] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001b78cd38 [ 944.194255][T15076] RBP: 1ff40000007ceebb R08: 1fe22000036f19a8 R09: fffa3bfffffb0b24 [ 944.194515][T15076] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001b78dab4 [ 944.194767][T15076] R13: ff1100001b78da80 R14: ffffffff931c7940 R15: ff1100001b78cc80 [ 944.195039][T15076] FS: 00007fca29d3d440(0000) GS:ff110000a31b8000(0000) knlGS:0000000000000000 [ 944.195335][T15076] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 944.195564][T15076] CR2: 000000000044f720 CR3: 000000001b51c004 CR4: 0000000000771ef0 [ 944.195833][T15076] PKRU: 55555554 [ 944.196002][T15076] Call Trace: [ 944.196155][T15076] [ 944.196276][T15076] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 944.196474][T15076] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 944.196674][T15076] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 944.196873][T15076] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 944.197074][T15076] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 944.197265][T15076] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 944.197456][T15076] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 944.197652][T15076] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 944.197839][T15076] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 944.198040][T15076] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 944.198230][T15076] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 944.198422][T15076] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 944.198613][T15076] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 944.198802][T15076] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 944.198999][T15076] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 944.199189][T15076] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 944.199386][T15076] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 944.199575][T15076] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 944.199766][T15076] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 944.199964][T15076] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 944.200163][T15076] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 944.200350][T15076] ? copy_msghdr_from_user (net/socket.c:2525) [ 944.200541][T15076] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 944.200759][T15076] ? move_addr_to_kernel (net/socket.c:2511) [ 944.200963][T15076] ? filemap_map_folio_range (mm/filemap.c:3873) [ 944.201157][T15076] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 944.201351][T15076] ___sys_sendmsg (net/socket.c:2641) [ 944.201555][T15076] ? copy_msghdr_from_user (net/socket.c:2628) [ 944.201755][T15076] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 944.201975][T15076] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 944.202166][T15076] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 944.202353][T15076] ? __sys_sendmsg_sock (net/socket.c:2656) [ 944.202550][T15076] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 944.202737][T15076] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 944.202938][T15076] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 944.203127][T15076] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 944.203320][T15076] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 944.203515][T15076] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 944.203746][T15076] RIP: 0033:0x7fca29e97c5e [ 944.203951][T15076] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 944.204505][T15076] RSP: 002b:00007ffd82fb9040 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 944.204760][T15076] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007fca29e97c5e [ 944.205040][T15076] RDX: 0000000000000000 RSI: 00007ffd82fb9100 RDI: 0000000000000005 [ 944.205309][T15076] RBP: 00007ffd82fb9050 R08: 0000000000000000 R09: 0000000000000000 [ 944.205573][T15076] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 944.205826][T15076] R13: 0000000069cbe7f7 R14: 0000000000000004 R15: 000000000049d620 | [ 944.269847][T15080] ------------[ cut here ]------------ | [ 944.270052][T15080] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#2: ip/15080 | [ 944.270336][T15080] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 944.271223][T15080] Tainted: [W]=WARN [ 944.271383][T15080] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 944.271602][T15080] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 944.271798][T15080] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 944.272362][T15080] RSP: 0018:ffa0000003e775d0 EFLAGS: 00010286 [ 944.272601][T15080] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe2200003725857 [ 944.272856][T15080] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001b92c2b8 [ 944.273117][T15080] RBP: 1ff40000007ceebb R08: 1fe2200003725858 R09: fffa3bfffffb0b24 [ 944.273380][T15080] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001b92d8f4 [ 944.273632][T15080] R13: ff1100001b92d8c0 R14: ffffffff931c7940 R15: ff1100001b92c200 [ 944.273887][T15080] FS: 00007fb8c8651440(0000) GS:ff110000a31b8000(0000) knlGS:0000000000000000 [ 944.274188][T15080] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 944.274418][T15080] CR2: 000000000044f720 CR3: 000000000d490001 CR4: 0000000000771ef0 [ 944.274673][T15080] PKRU: 55555554 [ 944.274825][T15080] Call Trace: [ 944.274986][T15080] [ 944.275107][T15080] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 944.275292][T15080] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 944.275497][T15080] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 944.275685][T15080] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 944.275871][T15080] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 944.276093][T15080] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 944.276292][T15080] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 944.276498][T15080] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 944.276686][T15080] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 944.276885][T15080] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 944.277102][T15080] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 944.277296][T15080] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 944.277507][T15080] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 944.277701][T15080] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 944.277888][T15080] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 944.278097][T15080] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 944.278292][T15080] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 944.278488][T15080] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 944.278690][T15080] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 944.278889][T15080] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 944.279093][T15080] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 944.279296][T15080] ? copy_msghdr_from_user (net/socket.c:2525) [ 944.279489][T15080] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 944.279706][T15080] ? move_addr_to_kernel (net/socket.c:2511) [ 944.279909][T15080] ? filemap_map_folio_range (mm/filemap.c:3873) [ 944.280095][T15080] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 944.280286][T15080] ___sys_sendmsg (net/socket.c:2641) [ 944.280481][T15080] ? copy_msghdr_from_user (net/socket.c:2628) [ 944.280673][T15080] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 944.280863][T15080] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 944.281068][T15080] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 944.281263][T15080] ? __sys_sendmsg_sock (net/socket.c:2656) [ 944.281458][T15080] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 944.281646][T15080] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 944.281832][T15080] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 944.282048][T15080] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 944.282234][T15080] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 944.282426][T15080] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 944.282643][T15080] RIP: 0033:0x7fb8c87abc5e [ 944.282853][T15080] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 944.283412][T15080] RSP: 002b:00007fff6efc16c0 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 944.283680][T15080] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007fb8c87abc5e [ 944.283967][T15080] RDX: 0000000000000000 RSI: 00007fff6efc1780 RDI: 0000000000000005 [ 944.284219][T15080] RBP: 00007fff6efc16d0 R08: 0000000000000000 R09: 0000000000000000 [ 944.284493][T15080] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 944.284763][T15080] R13: 0000000069cbe7f7 R14: 0000000000000004 R15: 000000000049d620 | [ 944.359545][T15086] ------------[ cut here ]------------ | [ 944.359843][T15086] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#0: ip/15086 | [ 944.360090][T15086] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 944.360969][T15086] Tainted: [W]=WARN [ 944.361075][T15086] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 944.361249][T15086] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 944.361400][T15086] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 944.361961][T15086] RSP: 0018:ffa0000003eb75d0 EFLAGS: 00010286 [ 944.362148][T15086] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe2200003725937 [ 944.362364][T15086] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001b92c9b8 [ 944.362587][T15086] RBP: 1ff40000007d6ebb R08: 1fe2200003725938 R09: fffa3bfffffb0b24 [ 944.362791][T15086] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001b92c774 [ 944.363046][T15086] R13: ff1100001b92c740 R14: ffffffff931c7940 R15: ff1100001b92c900 [ 944.363257][T15086] FS: 00007f8fdac49440(0000) GS:ff110000a30b8000(0000) knlGS:0000000000000000 [ 944.363508][T15086] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 944.363711][T15086] CR2: 000000000044f720 CR3: 000000001c56d002 CR4: 0000000000771ef0 [ 944.363934][T15086] PKRU: 55555554 [ 944.364040][T15086] Call Trace: [ 944.364149][T15086] [ 944.364217][T15086] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 944.364360][T15086] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 944.364516][T15086] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 944.364734][T15086] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 944.364878][T15086] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 944.365022][T15086] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 944.365160][T15086] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 944.365392][T15086] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 944.365528][T15086] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 944.365666][T15086] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 944.365829][T15086] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 944.365976][T15086] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 944.366135][T15086] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 944.366273][T15086] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 944.366417][T15086] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 944.366565][T15086] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 944.366701][T15086] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 944.366858][T15086] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 944.367013][T15086] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 944.367148][T15086] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 944.367299][T15086] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 944.367448][T15086] ? copy_msghdr_from_user (net/socket.c:2525) [ 944.367604][T15086] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 944.367773][T15086] ? move_addr_to_kernel (net/socket.c:2511) [ 944.367918][T15086] ? filemap_map_folio_range (mm/filemap.c:3873) [ 944.368070][T15086] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 944.368207][T15086] ___sys_sendmsg (net/socket.c:2641) [ 944.368340][T15086] ? copy_msghdr_from_user (net/socket.c:2628) [ 944.368496][T15086] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 944.368636][T15086] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 944.368784][T15086] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 944.368937][T15086] ? __sys_sendmsg_sock (net/socket.c:2656) [ 944.369080][T15086] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 944.369236][T15086] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 944.369389][T15086] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 944.369531][T15086] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 944.369665][T15086] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 944.369830][T15086] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 944.370024][T15086] RIP: 0033:0x7f8fdada3c5e [ 944.370174][T15086] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 944.370709][T15086] RSP: 002b:00007ffe29d0ccc0 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 944.370927][T15086] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007f8fdada3c5e [ 944.371143][T15086] RDX: 0000000000000000 RSI: 00007ffe29d0cd80 RDI: 0000000000000005 [ 944.371350][T15086] RBP: 00007ffe29d0ccd0 R08: 0000000000000000 R09: 0000000000000000 [ 944.371565][T15086] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 944.371779][T15086] R13: 0000000069cbe7f7 R14: 0000000000000004 R15: 000000000049d620 | [ 944.450888][T15090] ------------[ cut here ]------------ | [ 944.451078][T15090] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#0: ip/15090 | [ 944.451344][T15090] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 944.452143][T15090] Tainted: [W]=WARN [ 944.452248][T15090] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 944.452451][T15090] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 944.452594][T15090] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 944.453556][T15090] RSP: 0018:ffa0000003ea75d0 EFLAGS: 00010286 [ 944.453758][T15090] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe22000038751a7 [ 944.453984][T15090] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001c3a8d38 [ 944.454195][T15090] RBP: 1ff40000007d4ebb R08: 1fe22000038751a8 R09: fffa3bfffffb0b24 [ 944.454415][T15090] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001c3a9ab4 [ 944.454630][T15090] R13: ff1100001c3a9a80 R14: ffffffff931c7940 R15: ff1100001c3a8c80 [ 944.454833][T15090] FS: 00007fe156243440(0000) GS:ff110000a30b8000(0000) knlGS:0000000000000000 [ 944.455084][T15090] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 944.455259][T15090] CR2: 000000000044f720 CR3: 0000000019c61005 CR4: 0000000000771ef0 [ 944.455468][T15090] PKRU: 55555554 [ 944.455581][T15090] Call Trace: [ 944.455685][T15090] [ 944.455759][T15090] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 944.455899][T15090] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 944.456045][T15090] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 944.456180][T15090] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 944.456338][T15090] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 944.456492][T15090] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 944.456645][T15090] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 944.456782][T15090] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 944.456926][T15090] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 944.457065][T15090] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 944.457202][T15090] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 944.457337][T15090] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 944.457481][T15090] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 944.457619][T15090] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 944.457771][T15090] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 944.457924][T15090] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 944.458067][T15090] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 944.458203][T15090] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 944.458350][T15090] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 944.458508][T15090] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 944.458642][T15090] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 944.458789][T15090] ? copy_msghdr_from_user (net/socket.c:2525) [ 944.458931][T15090] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 944.459102][T15090] ? move_addr_to_kernel (net/socket.c:2511) [ 944.459258][T15090] ? filemap_map_folio_range (mm/filemap.c:3873) [ 944.459403][T15090] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 944.459540][T15090] ___sys_sendmsg (net/socket.c:2641) [ 944.459676][T15090] ? copy_msghdr_from_user (net/socket.c:2628) [ 944.459815][T15090] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 944.459957][T15090] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 944.460123][T15090] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 944.460296][T15090] ? __sys_sendmsg_sock (net/socket.c:2656) [ 944.460449][T15090] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 944.460589][T15090] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 944.460731][T15090] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 944.460881][T15090] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 944.461031][T15090] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 944.461166][T15090] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 944.461334][T15090] RIP: 0033:0x7fe15639dc5e [ 944.461492][T15090] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 944.461997][T15090] RSP: 002b:00007ffec3e214b0 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 944.462200][T15090] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007fe15639dc5e [ 944.462422][T15090] RDX: 0000000000000000 RSI: 00007ffec3e21570 RDI: 0000000000000005 [ 944.462621][T15090] RBP: 00007ffec3e214c0 R08: 0000000000000000 R09: 0000000000000000 [ 944.462839][T15090] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 944.463055][T15090] R13: 0000000069cbe7f7 R14: 0000000000000004 R15: 000000000049d620 | [ 944.547301][T15096] ------------[ cut here ]------------ | [ 944.547530][T15096] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#0: ip/15096 | [ 944.547854][T15096] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 944.549233][T15096] Tainted: [W]=WARN [ 944.549401][T15096] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 944.549602][T15096] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 944.549753][T15096] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 944.550259][T15096] RSP: 0018:ffa0000003e775d0 EFLAGS: 00010286 [ 944.550473][T15096] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe22000038750ff [ 944.550690][T15096] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001c3a87f8 [ 944.550907][T15096] RBP: 1ff40000007ceebb R08: 1fe2200003875100 R09: fffa3bfffffb0b24 [ 944.551118][T15096] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001c3a9034 [ 944.551334][T15096] R13: ff1100001c3a9000 R14: ffffffff931c7940 R15: ff1100001c3a8740 [ 944.551560][T15096] FS: 00007fb32f11a440(0000) GS:ff110000a30b8000(0000) knlGS:0000000000000000 [ 944.551809][T15096] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 944.551995][T15096] CR2: 000000000044f720 CR3: 0000000019ee4005 CR4: 0000000000771ef0 [ 944.552213][T15096] PKRU: 55555554 [ 944.552319][T15096] Call Trace: [ 944.552428][T15096] [ 944.552500][T15096] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 944.552644][T15096] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 944.552807][T15096] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 944.552961][T15096] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 944.553109][T15096] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 944.553260][T15096] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 944.553406][T15096] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 944.553556][T15096] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 944.553713][T15096] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 944.553866][T15096] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 944.554038][T15096] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 944.554174][T15096] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 944.554340][T15096] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 944.554493][T15096] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 944.554626][T15096] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 944.554760][T15096] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 944.554911][T15096] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 944.555056][T15096] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 944.555201][T15096] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 944.555380][T15096] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 944.555530][T15096] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 944.555674][T15096] ? copy_msghdr_from_user (net/socket.c:2525) [ 944.555821][T15096] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 944.556006][T15096] ? move_addr_to_kernel (net/socket.c:2511) [ 944.556159][T15096] ? filemap_map_folio_range (mm/filemap.c:3873) [ 944.556319][T15096] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 944.556478][T15096] ___sys_sendmsg (net/socket.c:2641) [ 944.556625][T15096] ? copy_msghdr_from_user (net/socket.c:2628) [ 944.556777][T15096] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 944.556936][T15096] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 944.557084][T15096] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 944.557236][T15096] ? __sys_sendmsg_sock (net/socket.c:2656) [ 944.557391][T15096] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 944.557527][T15096] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 944.557664][T15096] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 944.557820][T15096] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 944.557962][T15096] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 944.558098][T15096] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 944.558267][T15096] RIP: 0033:0x7fb32f274c5e [ 944.558437][T15096] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 944.558945][T15096] RSP: 002b:00007fff123510a0 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 944.559187][T15096] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007fb32f274c5e [ 944.559407][T15096] RDX: 0000000000000000 RSI: 00007fff12351160 RDI: 0000000000000005 [ 944.559622][T15096] RBP: 00007fff123510b0 R08: 0000000000000000 R09: 0000000000000000 [ 944.559843][T15096] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 944.560057][T15096] R13: 0000000069cbe7f8 R14: 0000000000000004 R15: 000000000049d620 | [ 944.636572][T15100] ------------[ cut here ]------------ | [ 944.636743][T15100] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#1: ip/15100 | [ 944.637007][T15100] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 944.637791][T15100] Tainted: [W]=WARN [ 944.637908][T15100] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 944.638075][T15100] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 944.638223][T15100] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 944.638723][T15100] RSP: 0018:ffa0000003f075d0 EFLAGS: 00010286 [ 944.638905][T15100] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe22000038752f7 [ 944.639107][T15100] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001c3a97b8 [ 944.639318][T15100] RBP: 1ff40000007e0ebb R08: 1fe22000038752f8 R09: fffa3bfffffb0b24 [ 944.639530][T15100] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001c3a8074 [ 944.639753][T15100] R13: ff1100001c3a8040 R14: ffffffff931c7940 R15: ff1100001c3a9700 [ 944.639972][T15100] FS: 00007f6d135ea440(0000) GS:ff110000a3138000(0000) knlGS:0000000000000000 [ 944.640213][T15100] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 944.640397][T15100] CR2: 000000000044f720 CR3: 000000001c972001 CR4: 0000000000771ef0 [ 944.640602][T15100] PKRU: 55555554 [ 944.640705][T15100] Call Trace: [ 944.640808][T15100] [ 944.640877][T15100] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 944.641020][T15100] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 944.641169][T15100] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 944.641305][T15100] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 944.641453][T15100] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 944.641594][T15100] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 944.641733][T15100] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 944.641873][T15100] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 944.642029][T15100] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 944.642166][T15100] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 944.642314][T15100] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 944.642461][T15100] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 944.642597][T15100] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 944.642739][T15100] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 944.642874][T15100] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 944.643024][T15100] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 944.643166][T15100] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 944.643308][T15100] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 944.643451][T15100] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 944.643587][T15100] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 944.643727][T15100] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 944.643865][T15100] ? copy_msghdr_from_user (net/socket.c:2525) [ 944.644004][T15100] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 944.644180][T15100] ? move_addr_to_kernel (net/socket.c:2511) [ 944.644315][T15100] ? filemap_map_folio_range (mm/filemap.c:3873) [ 944.644458][T15100] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 944.644595][T15100] ___sys_sendmsg (net/socket.c:2641) [ 944.644729][T15100] ? copy_msghdr_from_user (net/socket.c:2628) [ 944.644870][T15100] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 944.645009][T15100] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 944.645144][T15100] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 944.645278][T15100] ? __sys_sendmsg_sock (net/socket.c:2656) [ 944.645418][T15100] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 944.645555][T15100] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 944.645695][T15100] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 944.645841][T15100] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 944.645985][T15100] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 944.646124][T15100] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 944.646296][T15100] RIP: 0033:0x7f6d13744c5e [ 944.646449][T15100] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 944.647009][T15100] RSP: 002b:00007ffe63c60480 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 944.647219][T15100] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007f6d13744c5e [ 944.647433][T15100] RDX: 0000000000000000 RSI: 00007ffe63c60540 RDI: 0000000000000005 [ 944.647642][T15100] RBP: 00007ffe63c60490 R08: 0000000000000000 R09: 0000000000000000 [ 944.647850][T15100] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 944.648113][T15100] R13: 0000000069cbe7f8 R14: 0000000000000004 R15: 000000000049d620 | [ 944.726614][T15106] ------------[ cut here ]------------ | [ 944.726781][T15106] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#3: ip/15106 | [ 944.727035][T15106] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 944.727863][T15106] Tainted: [W]=WARN [ 944.727976][T15106] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 944.728155][T15106] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 944.728306][T15106] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 944.728815][T15106] RSP: 0018:ffa0000003ee75d0 EFLAGS: 00010286 [ 944.729003][T15106] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe220000192ea17 [ 944.729219][T15106] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100000c9750b8 [ 944.729435][T15106] RBP: 1ff40000007dcebb R08: 1fe220000192ea18 R09: fffa3bfffffb0b24 [ 944.729636][T15106] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100000c974e74 [ 944.729845][T15106] R13: ff1100000c974e40 R14: ffffffff931c7940 R15: ff1100000c975000 [ 944.730072][T15106] FS: 00007f7d7464f440(0000) GS:ff110000a3238000(0000) knlGS:0000000000000000 [ 944.730318][T15106] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 944.730494][T15106] CR2: 000000000044f720 CR3: 0000000019bf8003 CR4: 0000000000771ef0 [ 944.730698][T15106] PKRU: 55555554 [ 944.730801][T15106] Call Trace: [ 944.730907][T15106] [ 944.730977][T15106] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 944.731121][T15106] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 944.731265][T15106] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 944.731412][T15106] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 944.731552][T15106] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 944.731704][T15106] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 944.731837][T15106] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 944.732169][T15106] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 944.732310][T15106] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 944.732448][T15106] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 944.732590][T15106] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 944.732725][T15106] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 944.732861][T15106] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 944.733000][T15106] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 944.733134][T15106] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 944.733273][T15106] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 944.733425][T15106] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 944.733560][T15106] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 944.733694][T15106] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 944.733831][T15106] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 944.733973][T15106] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 944.734106][T15106] ? copy_msghdr_from_user (net/socket.c:2525) [ 944.734244][T15106] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 944.734418][T15106] ? move_addr_to_kernel (net/socket.c:2511) [ 944.734564][T15106] ? filemap_map_folio_range (mm/filemap.c:3873) [ 944.734711][T15106] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 944.734852][T15106] ___sys_sendmsg (net/socket.c:2641) [ 944.735004][T15106] ? copy_msghdr_from_user (net/socket.c:2628) [ 944.735170][T15106] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 944.735322][T15106] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 944.735470][T15106] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 944.735604][T15106] ? __sys_sendmsg_sock (net/socket.c:2656) [ 944.735740][T15106] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 944.735878][T15106] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 944.736022][T15106] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 944.736170][T15106] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 944.736312][T15106] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 944.736457][T15106] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 944.736629][T15106] RIP: 0033:0x7f7d747a9c5e [ 944.736777][T15106] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 944.737281][T15106] RSP: 002b:00007ffc7a5a7920 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 944.737515][T15106] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007f7d747a9c5e [ 944.737739][T15106] RDX: 0000000000000000 RSI: 00007ffc7a5a79e0 RDI: 0000000000000005 [ 944.737943][T15106] RBP: 00007ffc7a5a7930 R08: 0000000000000000 R09: 0000000000000000 [ 944.738156][T15106] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 944.738364][T15106] R13: 0000000069cbe7f8 R14: 0000000000000004 R15: 000000000049d620 | [ 944.819706][T15110] ------------[ cut here ]------------ | [ 944.819979][T15110] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#2: ip/15110 | [ 944.820283][T15110] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 944.821229][T15110] Tainted: [W]=WARN [ 944.821429][T15110] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 944.821658][T15110] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 944.821856][T15110] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 944.822432][T15110] RSP: 0018:ffa0000003e975d0 EFLAGS: 00010286 [ 944.822658][T15110] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe220000192e8ff [ 944.822932][T15110] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100000c9747f8 [ 944.823199][T15110] RBP: 1ff40000007d2ebb R08: 1fe220000192e900 R09: fffa3bfffffb0b24 [ 944.823464][T15110] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100000c9743f4 [ 944.823734][T15110] R13: ff1100000c9743c0 R14: ffffffff931c7940 R15: ff1100000c974740 [ 944.824012][T15110] FS: 00007fcbfa465440(0000) GS:ff110000a31b8000(0000) knlGS:0000000000000000 [ 944.824337][T15110] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 944.824570][T15110] CR2: 000000000044f720 CR3: 000000001b0ac002 CR4: 0000000000771ef0 [ 944.824852][T15110] PKRU: 55555554 [ 944.825024][T15110] Call Trace: [ 944.825181][T15110] [ 944.825305][T15110] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 944.825521][T15110] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 944.825729][T15110] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 944.825951][T15110] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 944.826138][T15110] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 944.826328][T15110] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 944.826536][T15110] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 944.826726][T15110] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 944.826933][T15110] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 944.827121][T15110] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 944.827318][T15110] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 944.827512][T15110] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 944.827713][T15110] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 944.827933][T15110] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 944.828125][T15110] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 944.828326][T15110] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 944.828526][T15110] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 944.828725][T15110] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 944.828935][T15110] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 944.829130][T15110] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 944.829326][T15110] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 944.829612][T15110] ? copy_msghdr_from_user (net/socket.c:2525) [ 944.829833][T15110] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 944.830086][T15110] ? move_addr_to_kernel (net/socket.c:2511) [ 944.830303][T15110] ? filemap_map_folio_range (mm/filemap.c:3873) [ 944.830508][T15110] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 944.830705][T15110] ___sys_sendmsg (net/socket.c:2641) [ 944.830911][T15110] ? copy_msghdr_from_user (net/socket.c:2628) [ 944.831138][T15110] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 944.831336][T15110] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 944.831559][T15110] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 944.831754][T15110] ? __sys_sendmsg_sock (net/socket.c:2656) [ 944.831970][T15110] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 944.832164][T15110] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 944.832357][T15110] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 944.832571][T15110] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 944.832773][T15110] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 944.832999][T15110] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 944.833283][T15110] RIP: 0033:0x7fcbfa5bfc5e [ 944.833530][T15110] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 944.834131][T15110] RSP: 002b:00007ffcf91bf020 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 944.834453][T15110] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007fcbfa5bfc5e [ 944.834775][T15110] RDX: 0000000000000000 RSI: 00007ffcf91bf0e0 RDI: 0000000000000005 [ 944.835060][T15110] RBP: 00007ffcf91bf030 R08: 0000000000000000 R09: 0000000000000000 [ 944.835358][T15110] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 944.835645][T15110] R13: 0000000069cbe7f8 R14: 0000000000000004 R15: 000000000049d620 | [ 944.924416][T15116] ------------[ cut here ]------------ | [ 944.924650][T15116] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#2: ip/15116 | [ 944.925295][T15116] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 944.926245][T15116] Tainted: [W]=WARN [ 944.926406][T15116] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 944.926637][T15116] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 944.926840][T15116] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 944.927443][T15116] RSP: 0018:ffa0000003ee75d0 EFLAGS: 00010286 [ 944.927697][T15116] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe2200003229e87 [ 944.927984][T15116] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001914f438 [ 944.928254][T15116] RBP: 1ff40000007dcebb R08: 1fe2200003229e88 R09: fffa3bfffffb0b24 [ 944.928525][T15116] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001914f034 [ 944.928790][T15116] R13: ff1100001914f000 R14: ffffffff931c7940 R15: ff1100001914f380 [ 944.929078][T15116] FS: 00007f76af86d440(0000) GS:ff110000a31b8000(0000) knlGS:0000000000000000 [ 944.929394][T15116] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 944.929626][T15116] CR2: 000000000044f720 CR3: 000000001c972005 CR4: 0000000000771ef0 [ 944.929890][T15116] PKRU: 55555554 [ 944.930067][T15116] Call Trace: [ 944.930221][T15116] [ 944.930343][T15116] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 944.930541][T15116] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 944.930740][T15116] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 944.930964][T15116] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 944.931156][T15116] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 944.931351][T15116] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 944.931551][T15116] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 944.931745][T15116] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 944.931967][T15116] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 944.932170][T15116] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 944.932383][T15116] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 944.932585][T15116] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 944.932781][T15116] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 944.932987][T15116] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 944.933180][T15116] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 944.933391][T15116] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 944.933612][T15116] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 944.933829][T15116] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 944.934058][T15116] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 944.934270][T15116] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 944.934493][T15116] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 944.934693][T15116] ? copy_msghdr_from_user (net/socket.c:2525) [ 944.934906][T15116] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 944.935142][T15116] ? move_addr_to_kernel (net/socket.c:2511) [ 944.935360][T15116] ? filemap_map_folio_range (mm/filemap.c:3873) [ 944.935561][T15116] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 944.935756][T15116] ___sys_sendmsg (net/socket.c:2641) [ 944.935963][T15116] ? copy_msghdr_from_user (net/socket.c:2628) [ 944.936161][T15116] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 944.936360][T15116] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 944.936562][T15116] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 944.936757][T15116] ? __sys_sendmsg_sock (net/socket.c:2656) [ 944.936966][T15116] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 944.937158][T15116] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 944.937352][T15116] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 944.937558][T15116] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 944.937751][T15116] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 944.937962][T15116] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 944.938198][T15116] RIP: 0033:0x7f76af9c7c5e [ 944.938419][T15116] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 944.939010][T15116] RSP: 002b:00007ffd67f314b0 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 944.939279][T15116] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007f76af9c7c5e [ 944.939561][T15116] RDX: 0000000000000000 RSI: 00007ffd67f31570 RDI: 0000000000000005 [ 944.939837][T15116] RBP: 00007ffd67f314c0 R08: 0000000000000000 R09: 0000000000000000 [ 944.940113][T15116] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 944.940398][T15116] R13: 0000000069cbe7f8 R14: 0000000000000004 R15: 000000000049d620 | [ 945.021082][T15120] ------------[ cut here ]------------ | [ 945.021309][T15120] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#2: ip/15120 | [ 945.021624][T15120] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 945.022584][T15120] Tainted: [W]=WARN [ 945.022744][T15120] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 945.022997][T15120] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 945.023212][T15120] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 945.023795][T15120] RSP: 0018:ffa0000003ea75d0 EFLAGS: 00010286 [ 945.024034][T15120] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe2200003229ddf [ 945.024285][T15120] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001914eef8 [ 945.024557][T15120] RBP: 1ff40000007d4ebb R08: 1fe2200003229de0 R09: fffa3bfffffb0b24 [ 945.024814][T15120] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001914fe34 [ 945.025077][T15120] R13: ff1100001914fe00 R14: ffffffff931c7940 R15: ff1100001914ee40 [ 945.025348][T15120] FS: 00007fe6a6ab6440(0000) GS:ff110000a31b8000(0000) knlGS:0000000000000000 [ 945.025657][T15120] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 945.025877][T15120] CR2: 000000000044f720 CR3: 000000001b28b004 CR4: 0000000000771ef0 [ 945.026148][T15120] PKRU: 55555554 [ 945.026306][T15120] Call Trace: [ 945.026470][T15120] [ 945.026592][T15120] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 945.026779][T15120] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 945.026989][T15120] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 945.027185][T15120] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 945.027380][T15120] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 945.027570][T15120] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 945.027754][T15120] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 945.027959][T15120] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 945.028155][T15120] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 945.028342][T15120] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 945.028537][T15120] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 945.028722][T15120] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 945.028923][T15120] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 945.029117][T15120] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 945.029303][T15120] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 945.029525][T15120] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 945.029734][T15120] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 945.029947][T15120] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 945.030143][T15120] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 945.030337][T15120] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 945.030536][T15120] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 945.030719][T15120] ? copy_msghdr_from_user (net/socket.c:2525) [ 945.030918][T15120] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 945.031135][T15120] ? move_addr_to_kernel (net/socket.c:2511) [ 945.031322][T15120] ? filemap_map_folio_range (mm/filemap.c:3873) [ 945.031516][T15120] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 945.031705][T15120] ___sys_sendmsg (net/socket.c:2641) [ 945.031914][T15120] ? copy_msghdr_from_user (net/socket.c:2628) [ 945.032114][T15120] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 945.032312][T15120] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 945.032509][T15120] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 945.032711][T15120] ? __sys_sendmsg_sock (net/socket.c:2656) [ 945.032928][T15120] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 945.033116][T15120] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 945.033310][T15120] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 945.033504][T15120] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 945.033690][T15120] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 945.033881][T15120] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 945.034109][T15120] RIP: 0033:0x7fe6a6c10c5e [ 945.034305][T15120] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 945.034840][T15120] RSP: 002b:00007ffddf9b5030 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 945.035108][T15120] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007fe6a6c10c5e [ 945.035382][T15120] RDX: 0000000000000000 RSI: 00007ffddf9b50f0 RDI: 0000000000000005 [ 945.035641][T15120] RBP: 00007ffddf9b5040 R08: 0000000000000000 R09: 0000000000000000 [ 945.035916][T15120] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 945.036175][T15120] R13: 0000000069cbe7f8 R14: 0000000000000004 R15: 000000000049d620 | [ 945.105203][T15126] ------------[ cut here ]------------ | [ 945.105414][T15126] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#2: ip/15126 | [ 945.105767][T15126] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 945.106712][T15126] Tainted: [W]=WARN [ 945.106866][T15126] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 945.107100][T15126] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 945.107304][T15126] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 945.107889][T15126] RSP: 0018:ffa0000003ec75d0 EFLAGS: 00010286 [ 945.108143][T15126] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe2200003229ebf [ 945.108418][T15126] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001914f5f8 [ 945.108714][T15126] RBP: 1ff40000007d8ebb R08: 1fe2200003229ec0 R09: fffa3bfffffb0b24 [ 945.109003][T15126] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001914f1f4 [ 945.109273][T15126] R13: ff1100001914f1c0 R14: ffffffff931c7940 R15: ff1100001914f540 [ 945.109561][T15126] FS: 00007f38b6388440(0000) GS:ff110000a31b8000(0000) knlGS:0000000000000000 [ 945.109874][T15126] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 945.110115][T15126] CR2: 000000000044f720 CR3: 000000001add8005 CR4: 0000000000771ef0 [ 945.110387][T15126] PKRU: 55555554 [ 945.110548][T15126] Call Trace: [ 945.110703][T15126] [ 945.110825][T15126] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 945.111032][T15126] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 945.111231][T15126] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 945.111441][T15126] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 945.111652][T15126] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 945.111848][T15126] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 945.112050][T15126] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 945.112242][T15126] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 945.112448][T15126] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 945.112646][T15126] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 945.112839][T15126] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 945.113040][T15126] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 945.113236][T15126] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 945.113427][T15126] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 945.113610][T15126] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 945.113799][T15126] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 945.114005][T15126] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 945.114195][T15126] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 945.114389][T15126] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 945.114585][T15126] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 945.114781][T15126] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 945.114989][T15126] ? copy_msghdr_from_user (net/socket.c:2525) [ 945.115182][T15126] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 945.115423][T15126] ? move_addr_to_kernel (net/socket.c:2511) [ 945.115620][T15126] ? filemap_map_folio_range (mm/filemap.c:3873) [ 945.115816][T15126] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 945.116035][T15126] ___sys_sendmsg (net/socket.c:2641) [ 945.116231][T15126] ? copy_msghdr_from_user (net/socket.c:2628) [ 945.116447][T15126] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 945.116647][T15126] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 945.116840][T15126] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 945.117044][T15126] ? __sys_sendmsg_sock (net/socket.c:2656) [ 945.117234][T15126] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 945.117430][T15126] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 945.117624][T15126] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 945.117812][T15126] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 945.118013][T15126] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 945.118208][T15126] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 945.118434][T15126] RIP: 0033:0x7f38b64e2c5e [ 945.118628][T15126] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 945.119171][T15126] RSP: 002b:00007fffaabd5ce0 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 945.119440][T15126] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007f38b64e2c5e [ 945.119704][T15126] RDX: 0000000000000000 RSI: 00007fffaabd5da0 RDI: 0000000000000005 [ 945.119969][T15126] RBP: 00007fffaabd5cf0 R08: 0000000000000000 R09: 0000000000000000 [ 945.120219][T15126] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 945.120481][T15126] R13: 0000000069cbe7f8 R14: 0000000000000004 R15: 000000000049d620 | [ 945.196469][T15130] ------------[ cut here ]------------ | [ 945.196653][T15130] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#1: ip/15130 | [ 945.196933][T15130] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 945.197822][T15130] Tainted: [W]=WARN [ 945.197937][T15130] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 945.198122][T15130] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 945.198275][T15130] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 945.198807][T15130] RSP: 0018:ffa0000003f675d0 EFLAGS: 00010286 [ 945.199007][T15130] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe22000034c2217 [ 945.199219][T15130] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001a6110b8 [ 945.199436][T15130] RBP: 1ff40000007ecebb R08: 1fe22000034c2218 R09: fffa3bfffffb0b24 [ 945.199658][T15130] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001a611734 [ 945.199875][T15130] R13: ff1100001a611700 R14: ffffffff931c7940 R15: ff1100001a611000 [ 945.200124][T15130] FS: 00007f63acca1440(0000) GS:ff110000a3138000(0000) knlGS:0000000000000000 [ 945.200366][T15130] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 945.200560][T15130] CR2: 000000000044f720 CR3: 000000000dafc004 CR4: 0000000000771ef0 [ 945.200784][T15130] PKRU: 55555554 [ 945.200887][T15130] Call Trace: [ 945.201000][T15130] [ 945.201069][T15130] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 945.201212][T15130] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 945.201357][T15130] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 945.201562][T15130] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 945.201744][T15130] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 945.201983][T15130] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 945.202120][T15130] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 945.202273][T15130] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 945.202423][T15130] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 945.202566][T15130] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 945.202711][T15130] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 945.202851][T15130] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 945.203054][T15130] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 945.203201][T15130] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 945.203369][T15130] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 945.203516][T15130] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 945.203707][T15130] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 945.203850][T15130] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 945.204061][T15130] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 945.204210][T15130] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 945.204359][T15130] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 945.204585][T15130] ? copy_msghdr_from_user (net/socket.c:2525) [ 945.204724][T15130] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 945.204950][T15130] ? move_addr_to_kernel (net/socket.c:2511) [ 945.205088][T15130] ? filemap_map_folio_range (mm/filemap.c:3873) [ 945.205241][T15130] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 945.205385][T15130] ___sys_sendmsg (net/socket.c:2641) [ 945.205527][T15130] ? copy_msghdr_from_user (net/socket.c:2628) [ 945.205671][T15130] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 945.205814][T15130] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 945.206024][T15130] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 945.206174][T15130] ? __sys_sendmsg_sock (net/socket.c:2656) [ 945.206318][T15130] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 945.206461][T15130] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 945.206606][T15130] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 945.206742][T15130] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 945.206888][T15130] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 945.207087][T15130] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 945.207283][T15130] RIP: 0033:0x7f63acdfbc5e [ 945.207437][T15130] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 945.208010][T15130] RSP: 002b:00007ffc55c0cbd0 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 945.208230][T15130] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007f63acdfbc5e [ 945.208463][T15130] RDX: 0000000000000000 RSI: 00007ffc55c0cc90 RDI: 0000000000000005 [ 945.208685][T15130] RBP: 00007ffc55c0cbe0 R08: 0000000000000000 R09: 0000000000000000 [ 945.208905][T15130] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 945.209145][T15130] R13: 0000000069cbe7f8 R14: 0000000000000004 R15: 000000000049d620 | [ 945.280329][T15136] ------------[ cut here ]------------ | [ 945.280513][T15136] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#0: ip/15136 | [ 945.280775][T15136] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 945.281665][T15136] Tainted: [W]=WARN [ 945.281769][T15136] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 945.281953][T15136] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 945.282097][T15136] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 945.282622][T15136] RSP: 0018:ffa0000003ea75d0 EFLAGS: 00010286 [ 945.282825][T15136] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe22000034c201f [ 945.283043][T15136] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001a6100f8 [ 945.283272][T15136] RBP: 1ff40000007d4ebb R08: 1fe22000034c2020 R09: fffa3bfffffb0b24 [ 945.283528][T15136] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001a6111f4 [ 945.283744][T15136] R13: ff1100001a6111c0 R14: ffffffff931c7940 R15: ff1100001a610040 [ 945.283957][T15136] FS: 00007fb197604440(0000) GS:ff110000a30b8000(0000) knlGS:0000000000000000 [ 945.284226][T15136] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 945.284409][T15136] CR2: 000000000044f720 CR3: 000000001d147003 CR4: 0000000000771ef0 [ 945.284629][T15136] PKRU: 55555554 [ 945.284737][T15136] Call Trace: [ 945.284840][T15136] [ 945.284920][T15136] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 945.285058][T15136] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 945.285200][T15136] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 945.285339][T15136] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 945.285485][T15136] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 945.285627][T15136] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 945.285769][T15136] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 945.286022][T15136] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 945.286187][T15136] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 945.286339][T15136] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 945.286503][T15136] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 945.286673][T15136] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 945.286816][T15136] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 945.287034][T15136] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 945.287175][T15136] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 945.287312][T15136] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 945.287469][T15136] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 945.287604][T15136] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 945.287740][T15136] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 945.287877][T15136] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 945.288091][T15136] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 945.288228][T15136] ? copy_msghdr_from_user (net/socket.c:2525) [ 945.288367][T15136] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 945.288772][T15136] ? move_addr_to_kernel (net/socket.c:2511) [ 945.288983][T15136] ? filemap_map_folio_range (mm/filemap.c:3873) [ 945.289119][T15136] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 945.289261][T15136] ___sys_sendmsg (net/socket.c:2641) [ 945.289412][T15136] ? copy_msghdr_from_user (net/socket.c:2628) [ 945.289576][T15136] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 945.289716][T15136] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 945.289854][T15136] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 945.290066][T15136] ? __sys_sendmsg_sock (net/socket.c:2656) [ 945.290212][T15136] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 945.290351][T15136] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 945.290491][T15136] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 945.290624][T15136] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 945.290755][T15136] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 945.290974][T15136] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 945.291159][T15136] RIP: 0033:0x7fb19775ec5e [ 945.291319][T15136] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 945.291815][T15136] RSP: 002b:00007ffe54183f10 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 945.292122][T15136] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007fb19775ec5e [ 945.292327][T15136] RDX: 0000000000000000 RSI: 00007ffe54183fd0 RDI: 0000000000000005 [ 945.292543][T15136] RBP: 00007ffe54183f20 R08: 0000000000000000 R09: 0000000000000000 [ 945.292747][T15136] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 945.293027][T15136] R13: 0000000069cbe7f8 R14: 0000000000000004 R15: 000000000049d620 | [ 945.360169][T15140] ------------[ cut here ]------------ | [ 945.360334][T15140] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#0: ip/15140 | [ 945.360621][T15140] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 945.361877][T15140] Tainted: [W]=WARN [ 945.361991][T15140] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 945.362160][T15140] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 945.362303][T15140] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 945.362806][T15140] RSP: 0018:ffa0000003f875d0 EFLAGS: 00010286 [ 945.362988][T15140] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe2200001ea0537 [ 945.363199][T15140] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100000f5029b8 [ 945.363439][T15140] RBP: 1ff40000007f0ebb R08: 1fe2200001ea0538 R09: fffa3bfffffb0b24 [ 945.363642][T15140] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100000f5023f4 [ 945.363853][T15140] R13: ff1100000f5023c0 R14: ffffffff931c7940 R15: ff1100000f502900 [ 945.364068][T15140] FS: 00007f5ca25dc440(0000) GS:ff110000a30b8000(0000) knlGS:0000000000000000 [ 945.364312][T15140] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 945.364488][T15140] CR2: 000000000044f720 CR3: 000000001d147005 CR4: 0000000000771ef0 [ 945.364696][T15140] PKRU: 55555554 [ 945.364799][T15140] Call Trace: [ 945.364908][T15140] [ 945.364984][T15140] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 945.365127][T15140] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 945.365274][T15140] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 945.365428][T15140] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 945.365561][T15140] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 945.365698][T15140] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 945.365832][T15140] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 945.366502][T15140] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 945.366638][T15140] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 945.366779][T15140] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 945.366923][T15140] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 945.367056][T15140] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 945.367200][T15140] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 945.367341][T15140] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 945.367479][T15140] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 945.367619][T15140] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 945.367755][T15140] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 945.367915][T15140] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 945.368078][T15140] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 945.368218][T15140] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 945.368354][T15140] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 945.368494][T15140] ? copy_msghdr_from_user (net/socket.c:2525) [ 945.368628][T15140] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 945.368796][T15140] ? move_addr_to_kernel (net/socket.c:2511) [ 945.368946][T15140] ? filemap_map_folio_range (mm/filemap.c:3873) [ 945.369092][T15140] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 945.369236][T15140] ___sys_sendmsg (net/socket.c:2641) [ 945.369375][T15140] ? copy_msghdr_from_user (net/socket.c:2628) [ 945.369514][T15140] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 945.369654][T15140] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 945.369789][T15140] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 945.369930][T15140] ? __sys_sendmsg_sock (net/socket.c:2656) [ 945.370069][T15140] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 945.370205][T15140] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 945.370340][T15140] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 945.370480][T15140] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 945.370614][T15140] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 945.370748][T15140] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 945.370920][T15140] RIP: 0033:0x7f5ca2736c5e [ 945.371063][T15140] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 945.371554][T15140] RSP: 002b:00007ffcce392f70 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 945.371759][T15140] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007f5ca2736c5e [ 945.371974][T15140] RDX: 0000000000000000 RSI: 00007ffcce393030 RDI: 0000000000000005 [ 945.372176][T15140] RBP: 00007ffcce392f80 R08: 0000000000000000 R09: 0000000000000000 [ 945.372386][T15140] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 945.372591][T15140] R13: 0000000069cbe7f8 R14: 0000000000000004 R15: 000000000049d620 | [ 945.453458][T15146] ------------[ cut here ]------------ | [ 945.453675][T15146] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#2: ip/15146 | [ 945.454791][T15146] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 945.455984][T15146] Tainted: [W]=WARN [ 945.456219][T15146] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 945.456533][T15146] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 945.456815][T15146] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 945.457457][T15146] RSP: 0018:ffa0000003f975d0 EFLAGS: 00010286 [ 945.457745][T15146] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe2200001ea05a7 [ 945.458079][T15146] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100000f502d38 [ 945.458336][T15146] RBP: 1ff40000007f2ebb R08: 1fe2200001ea05a8 R09: fffa3bfffffb0b24 [ 945.458597][T15146] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100000f502074 [ 945.458859][T15146] R13: ff1100000f502040 R14: ffffffff931c7940 R15: ff1100000f502c80 [ 945.459138][T15146] FS: 00007f1255e3a440(0000) GS:ff110000a31b8000(0000) knlGS:0000000000000000 [ 945.459453][T15146] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 945.459686][T15146] CR2: 000000000044f720 CR3: 000000001958a003 CR4: 0000000000771ef0 [ 945.459963][T15146] PKRU: 55555554 [ 945.460120][T15146] Call Trace: [ 945.460273][T15146] [ 945.460403][T15146] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 945.460588][T15146] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 945.460784][T15146] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 945.460984][T15146] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 945.461180][T15146] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 945.461380][T15146] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 945.461568][T15146] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 945.461768][T15146] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 945.461980][T15146] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 945.462178][T15146] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 945.462383][T15146] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 945.462579][T15146] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 945.462784][T15146] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 945.462987][T15146] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 945.463184][T15146] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 945.463393][T15146] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 945.463581][T15146] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 945.463769][T15146] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 945.463969][T15146] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 945.464159][T15146] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 945.464347][T15146] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 945.464543][T15146] ? copy_msghdr_from_user (net/socket.c:2525) [ 945.464729][T15146] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 945.464960][T15146] ? move_addr_to_kernel (net/socket.c:2511) [ 945.465148][T15146] ? filemap_map_folio_range (mm/filemap.c:3873) [ 945.465423][T15146] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 945.465616][T15146] ___sys_sendmsg (net/socket.c:2641) [ 945.465803][T15146] ? copy_msghdr_from_user (net/socket.c:2628) [ 945.466096][T15146] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 945.466289][T15146] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 945.466487][T15146] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 945.466705][T15146] ? __sys_sendmsg_sock (net/socket.c:2656) [ 945.466927][T15146] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 945.467127][T15146] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 945.467332][T15146] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 945.467536][T15146] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 945.467731][T15146] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 945.468024][T15146] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 945.468254][T15146] RIP: 0033:0x7f1255f94c5e [ 945.468468][T15146] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 945.469132][T15146] RSP: 002b:00007fffbb462d50 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 945.469488][T15146] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007f1255f94c5e [ 945.469807][T15146] RDX: 0000000000000000 RSI: 00007fffbb462e10 RDI: 0000000000000005 [ 945.470090][T15146] RBP: 00007fffbb462d60 R08: 0000000000000000 R09: 0000000000000000 [ 945.470444][T15146] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 945.470713][T15146] R13: 0000000069cbe7f8 R14: 0000000000000004 R15: 000000000049d620 | [ 945.547144][T15150] ------------[ cut here ]------------ | [ 945.547358][T15150] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#2: ip/15150 | [ 945.547677][T15150] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 945.548567][T15150] Tainted: [W]=WARN [ 945.548752][T15150] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 945.549027][T15150] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 945.549253][T15150] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 945.549831][T15150] RSP: 0018:ffa0000003ea75d0 EFLAGS: 00010286 [ 945.550099][T15150] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe22000036f1b67 [ 945.550400][T15150] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001b78db38 [ 945.550706][T15150] RBP: 1ff40000007d4ebb R08: 1fe22000036f1b68 R09: fffa3bfffffb0b24 [ 945.551010][T15150] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001b78d574 [ 945.551270][T15150] R13: ff1100001b78d540 R14: ffffffff931c7940 R15: ff1100001b78da80 [ 945.551578][T15150] FS: 00007fd87cc8a440(0000) GS:ff110000a31b8000(0000) knlGS:0000000000000000 [ 945.551936][T15150] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 945.552179][T15150] CR2: 000000000044f720 CR3: 000000001958a006 CR4: 0000000000771ef0 [ 945.552496][T15150] PKRU: 55555554 [ 945.552650][T15150] Call Trace: [ 945.552811][T15150] [ 945.552946][T15150] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 945.553134][T15150] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 945.553332][T15150] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 945.553539][T15150] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 945.553744][T15150] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 945.553951][T15150] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 945.554140][T15150] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 945.554332][T15150] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 945.554526][T15150] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 945.554714][T15150] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 945.554918][T15150] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 945.555102][T15150] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 945.555309][T15150] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 945.555522][T15150] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 945.555718][T15150] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 945.555928][T15150] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 945.556126][T15150] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 945.556314][T15150] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 945.556513][T15150] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 945.556711][T15150] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 945.556915][T15150] ? copy_msghdr_from_user (net/socket.c:2525) [ 945.557120][T15150] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 945.557360][T15150] ? move_addr_to_kernel (net/socket.c:2511) [ 945.557580][T15150] ? filemap_map_folio_range (mm/filemap.c:3873) [ 945.557783][T15150] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 945.558023][T15150] ___sys_sendmsg (net/socket.c:2641) [ 945.558230][T15150] ? copy_msghdr_from_user (net/socket.c:2628) [ 945.558449][T15150] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 945.558664][T15150] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 945.558870][T15150] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 945.559093][T15150] ? __sys_sendmsg_sock (net/socket.c:2656) [ 945.559309][T15150] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 945.559530][T15150] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 945.559744][T15150] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 945.559963][T15150] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 945.560170][T15150] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 945.560364][T15150] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 945.560615][T15150] RIP: 0033:0x7fd87cde4c5e [ 945.560843][T15150] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 945.561491][T15150] RSP: 002b:00007fff784d0010 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 945.561821][T15150] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007fd87cde4c5e [ 945.562154][T15150] RDX: 0000000000000000 RSI: 00007fff784d00d0 RDI: 0000000000000005 [ 945.562474][T15150] RBP: 00007fff784d0020 R08: 0000000000000000 R09: 0000000000000000 [ 945.562773][T15150] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 945.563060][T15150] R13: 0000000069cbe7f9 R14: 0000000000000004 R15: 000000000049d620 | [ 945.644207][T15156] ------------[ cut here ]------------ | [ 945.644386][T15156] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#0: ip/15156 | [ 945.644626][T15156] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 945.645598][T15156] Tainted: [W]=WARN [ 945.645741][T15156] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 945.645935][T15156] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 945.646088][T15156] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 945.646717][T15156] RSP: 0018:ffa0000003ef75d0 EFLAGS: 00010286 [ 945.646901][T15156] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe22000036f1a17 [ 945.647134][T15156] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001b78d0b8 [ 945.647447][T15156] RBP: 1ff40000007deebb R08: 1fe22000036f1a18 R09: fffa3bfffffb0b24 [ 945.647668][T15156] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001b78d734 [ 945.647880][T15156] R13: ff1100001b78d700 R14: ffffffff931c7940 R15: ff1100001b78d000 [ 945.648632][T15156] FS: 00007f9c24ba2440(0000) GS:ff110000a30b8000(0000) knlGS:0000000000000000 [ 945.648989][T15156] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 945.649161][T15156] CR2: 000000000044f720 CR3: 000000001b16c003 CR4: 0000000000771ef0 [ 945.649377][T15156] PKRU: 55555554 [ 945.649540][T15156] Call Trace: [ 945.649641][T15156] [ 945.649711][T15156] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 945.649846][T15156] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 945.650008][T15156] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 945.650151][T15156] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 945.650290][T15156] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 945.650432][T15156] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 945.650570][T15156] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 945.650709][T15156] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 945.650851][T15156] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 945.650992][T15156] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 945.651144][T15156] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 945.651277][T15156] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 945.651418][T15156] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 945.651575][T15156] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 945.651716][T15156] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 945.651855][T15156] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 945.652003][T15156] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 945.652140][T15156] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 945.652278][T15156] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 945.652422][T15156] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 945.652560][T15156] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 945.652696][T15156] ? copy_msghdr_from_user (net/socket.c:2525) [ 945.652834][T15156] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 945.653006][T15156] ? move_addr_to_kernel (net/socket.c:2511) [ 945.653144][T15156] ? filemap_map_folio_range (mm/filemap.c:3873) [ 945.653281][T15156] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 945.653420][T15156] ___sys_sendmsg (net/socket.c:2641) [ 945.653554][T15156] ? copy_msghdr_from_user (net/socket.c:2628) [ 945.653693][T15156] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 945.653828][T15156] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 945.653974][T15156] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 945.654108][T15156] ? __sys_sendmsg_sock (net/socket.c:2656) [ 945.654252][T15156] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 945.654395][T15156] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 945.654529][T15156] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 945.654663][T15156] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 945.654810][T15156] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 945.654948][T15156] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 945.655113][T15156] RIP: 0033:0x7f9c24cfcc5e [ 945.655255][T15156] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 945.655819][T15156] RSP: 002b:00007ffc7ca4e490 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 945.656044][T15156] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007f9c24cfcc5e [ 945.656252][T15156] RDX: 0000000000000000 RSI: 00007ffc7ca4e550 RDI: 0000000000000005 [ 945.656459][T15156] RBP: 00007ffc7ca4e4a0 R08: 0000000000000000 R09: 0000000000000000 [ 945.656657][T15156] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 945.656874][T15156] R13: 0000000069cbe7f9 R14: 0000000000000004 R15: 000000000049d620 | [ 945.740257][T15160] ------------[ cut here ]------------ | [ 945.740491][T15160] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#2: ip/15160 | [ 945.740822][T15160] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 945.741768][T15160] Tainted: [W]=WARN [ 945.741939][T15160] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 945.742165][T15160] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 945.742369][T15160] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 945.743174][T15160] RSP: 0018:ffa0000003f875d0 EFLAGS: 00010286 [ 945.743438][T15160] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe220000372581f [ 945.743691][T15160] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001b92c0f8 [ 945.743948][T15160] RBP: 1ff40000007f0ebb R08: 1fe2200003725820 R09: fffa3bfffffb0b24 [ 945.744254][T15160] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001b92c5b4 [ 945.744560][T15160] R13: ff1100001b92c580 R14: ffffffff931c7940 R15: ff1100001b92c040 [ 945.744825][T15160] FS: 00007f059957f440(0000) GS:ff110000a31b8000(0000) knlGS:0000000000000000 [ 945.745126][T15160] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 945.745459][T15160] CR2: 000000000044f720 CR3: 000000001c0e2004 CR4: 0000000000771ef0 [ 945.745728][T15160] PKRU: 55555554 [ 945.745882][T15160] Call Trace: [ 945.746046][T15160] [ 945.746166][T15160] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 945.746378][T15160] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 945.746607][T15160] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 945.746821][T15160] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 945.747047][T15160] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 945.747255][T15160] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 945.747459][T15160] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 945.747673][T15160] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 945.747912][T15160] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 945.748124][T15160] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 945.748320][T15160] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 945.748531][T15160] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 945.748718][T15160] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 945.748919][T15160] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 945.749103][T15160] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 945.749291][T15160] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 945.749487][T15160] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 945.749697][T15160] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 945.749886][T15160] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 945.750086][T15160] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 945.750285][T15160] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 945.750487][T15160] ? copy_msghdr_from_user (net/socket.c:2525) [ 945.750680][T15160] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 945.750915][T15160] ? move_addr_to_kernel (net/socket.c:2511) [ 945.751110][T15160] ? filemap_map_folio_range (mm/filemap.c:3873) [ 945.751300][T15160] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 945.751505][T15160] ___sys_sendmsg (net/socket.c:2641) [ 945.751698][T15160] ? copy_msghdr_from_user (net/socket.c:2628) [ 945.751907][T15160] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 945.752103][T15160] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 945.752299][T15160] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 945.752497][T15160] ? __sys_sendmsg_sock (net/socket.c:2656) [ 945.752699][T15160] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 945.752894][T15160] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 945.753109][T15160] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 945.753301][T15160] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 945.753501][T15160] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 945.753703][T15160] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 945.753949][T15160] RIP: 0033:0x7f05996d9c5e [ 945.754164][T15160] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 945.754724][T15160] RSP: 002b:00007ffffd9f4b00 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 945.755000][T15160] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007f05996d9c5e [ 945.755263][T15160] RDX: 0000000000000000 RSI: 00007ffffd9f4bc0 RDI: 0000000000000005 [ 945.755550][T15160] RBP: 00007ffffd9f4b10 R08: 0000000000000000 R09: 0000000000000000 [ 945.755798][T15160] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 945.756064][T15160] R13: 0000000069cbe7f9 R14: 0000000000000004 R15: 000000000049d620 | [ 945.838886][T15166] ------------[ cut here ]------------ | [ 945.839082][T15166] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#3: ip/15166 | [ 945.839336][T15166] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 945.840185][T15166] Tainted: [W]=WARN [ 945.840295][T15166] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 945.840477][T15166] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 945.840624][T15166] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 945.841741][T15166] RSP: 0018:ffa0000003fe75d0 EFLAGS: 00010286 [ 945.841930][T15166] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe2200003725a4f [ 945.842140][T15166] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001b92d278 [ 945.842366][T15166] RBP: 1ff40000007fcebb R08: 1fe2200003725a50 R09: fffa3bfffffb0b24 [ 945.842588][T15166] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001b92d3b4 [ 945.842800][T15166] R13: ff1100001b92d380 R14: ffffffff931c7940 R15: ff1100001b92d1c0 [ 945.843013][T15166] FS: 00007f497b597440(0000) GS:ff110000a3238000(0000) knlGS:0000000000000000 [ 945.843258][T15166] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 945.843447][T15166] CR2: 000000000044f720 CR3: 000000001c0e2006 CR4: 0000000000771ef0 [ 945.843667][T15166] PKRU: 55555554 [ 945.843774][T15166] Call Trace: [ 945.843880][T15166] [ 945.843959][T15166] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 945.844101][T15166] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 945.844251][T15166] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 945.844400][T15166] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 945.844535][T15166] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 945.844672][T15166] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 945.844806][T15166] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 945.844942][T15166] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 945.845074][T15166] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 945.845213][T15166] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 945.845375][T15166] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 945.845526][T15166] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 945.845674][T15166] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 945.845818][T15166] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 945.845971][T15166] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 945.846115][T15166] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 945.846263][T15166] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 945.846407][T15166] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 945.846544][T15166] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 945.846682][T15166] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 945.846821][T15166] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 945.846973][T15166] ? copy_msghdr_from_user (net/socket.c:2525) [ 945.847111][T15166] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 945.847290][T15166] ? move_addr_to_kernel (net/socket.c:2511) [ 945.847434][T15166] ? filemap_map_folio_range (mm/filemap.c:3873) [ 945.847568][T15166] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 945.847704][T15166] ___sys_sendmsg (net/socket.c:2641) [ 945.847841][T15166] ? copy_msghdr_from_user (net/socket.c:2628) [ 945.847982][T15166] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 945.848119][T15166] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 945.848255][T15166] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 945.848395][T15166] ? __sys_sendmsg_sock (net/socket.c:2656) [ 945.848533][T15166] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 945.848666][T15166] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 945.848800][T15166] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 945.848939][T15166] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 945.849075][T15166] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 945.849220][T15166] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 945.849394][T15166] RIP: 0033:0x7f497b6f1c5e [ 945.849552][T15166] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 945.850043][T15166] RSP: 002b:00007fff2a222500 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 945.850253][T15166] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007f497b6f1c5e [ 945.850463][T15166] RDX: 0000000000000000 RSI: 00007fff2a2225c0 RDI: 0000000000000005 [ 945.850665][T15166] RBP: 00007fff2a222510 R08: 0000000000000000 R09: 0000000000000000 [ 945.850866][T15166] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 945.851072][T15166] R13: 0000000069cbe7f9 R14: 0000000000000004 R15: 000000000049d620 | [ 945.913454][T15170] ------------[ cut here ]------------ | [ 945.913623][T15170] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#3: ip/15170 | [ 945.913865][T15170] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 945.914698][T15170] Tainted: [W]=WARN [ 945.914808][T15170] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 945.914990][T15170] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 945.915144][T15170] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 945.915662][T15170] RSP: 0018:ffa0000003ff75d0 EFLAGS: 00010286 [ 945.915841][T15170] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe2200003875137 [ 945.916067][T15170] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001c3a89b8 [ 945.916281][T15170] RBP: 1ff40000007feebb R08: 1fe2200003875138 R09: fffa3bfffffb0b24 [ 945.916498][T15170] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001c3a9574 [ 945.916710][T15170] R13: ff1100001c3a9540 R14: ffffffff931c7940 R15: ff1100001c3a8900 [ 945.916931][T15170] FS: 00007f4e0ee84440(0000) GS:ff110000a3238000(0000) knlGS:0000000000000000 [ 945.917180][T15170] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 945.917362][T15170] CR2: 000000000044f720 CR3: 000000000dba8003 CR4: 0000000000771ef0 [ 945.917582][T15170] PKRU: 55555554 [ 945.917698][T15170] Call Trace: [ 945.917801][T15170] [ 945.917884][T15170] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 945.918028][T15170] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 945.918171][T15170] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 945.918312][T15170] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 945.918462][T15170] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 945.918614][T15170] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 945.918751][T15170] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 945.918904][T15170] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 945.919044][T15170] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 945.919180][T15170] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 945.919328][T15170] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 945.919471][T15170] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 945.919611][T15170] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 945.919750][T15170] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 945.919882][T15170] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 945.920026][T15170] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 945.920161][T15170] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 945.920298][T15170] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 945.920438][T15170] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 945.920576][T15170] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 945.920714][T15170] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 945.920854][T15170] ? copy_msghdr_from_user (net/socket.c:2525) [ 945.921002][T15170] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 945.921180][T15170] ? move_addr_to_kernel (net/socket.c:2511) [ 945.921332][T15170] ? filemap_map_folio_range (mm/filemap.c:3873) [ 945.921482][T15170] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 945.921630][T15170] ___sys_sendmsg (net/socket.c:2641) [ 945.921773][T15170] ? copy_msghdr_from_user (net/socket.c:2628) [ 945.921930][T15170] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 945.922069][T15170] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 945.922206][T15170] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 945.922347][T15170] ? __sys_sendmsg_sock (net/socket.c:2656) [ 945.922498][T15170] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 945.922635][T15170] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 945.922772][T15170] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 945.922911][T15170] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 945.923044][T15170] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 945.923185][T15170] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 945.923350][T15170] RIP: 0033:0x7f4e0efdec5e [ 945.923502][T15170] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 945.923991][T15170] RSP: 002b:00007ffd06abedf0 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 945.924206][T15170] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007f4e0efdec5e [ 945.924417][T15170] RDX: 0000000000000000 RSI: 00007ffd06abeeb0 RDI: 0000000000000005 [ 945.924620][T15170] RBP: 00007ffd06abee00 R08: 0000000000000000 R09: 0000000000000000 [ 945.924838][T15170] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 945.925060][T15170] R13: 0000000069cbe7f9 R14: 0000000000000004 R15: 000000000049d620 | [ 946.003093][T15176] ------------[ cut here ]------------ | [ 946.003265][T15176] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#0: ip/15176 | [ 946.003561][T15176] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 946.004417][T15176] Tainted: [W]=WARN [ 946.004531][T15176] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 946.004717][T15176] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 946.004879][T15176] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 946.005568][T15176] RSP: 0018:ffa0000003fe75d0 EFLAGS: 00010286 [ 946.005765][T15176] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe22000038750c7 [ 946.005982][T15176] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100001c3a8638 [ 946.006194][T15176] RBP: 1ff40000007fcebb R08: 1fe22000038750c8 R09: fffa3bfffffb0b24 [ 946.006422][T15176] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100001c3a9e34 [ 946.006635][T15176] R13: ff1100001c3a9e00 R14: ffffffff931c7940 R15: ff1100001c3a8580 [ 946.006864][T15176] FS: 00007f65a8d44440(0000) GS:ff110000a30b8000(0000) knlGS:0000000000000000 [ 946.007317][T15176] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 946.007503][T15176] CR2: 000000000044f720 CR3: 000000001cfe3001 CR4: 0000000000771ef0 [ 946.007715][T15176] PKRU: 55555554 [ 946.007837][T15176] Call Trace: [ 946.007958][T15176] [ 946.008053][T15176] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 946.008202][T15176] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 946.008346][T15176] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 946.008485][T15176] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 946.008618][T15176] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 946.008757][T15176] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 946.009401][T15176] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 946.009546][T15176] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 946.009687][T15176] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 946.009822][T15176] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 946.009969][T15176] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 946.010104][T15176] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 946.010239][T15176] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 946.010385][T15176] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 946.010588][T15176] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 946.010729][T15176] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 946.010886][T15176] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 946.011038][T15176] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 946.011177][T15176] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 946.011318][T15176] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 946.011466][T15176] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 946.011612][T15176] ? copy_msghdr_from_user (net/socket.c:2525) [ 946.011744][T15176] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 946.011918][T15176] ? move_addr_to_kernel (net/socket.c:2511) [ 946.012162][T15176] ? filemap_map_folio_range (mm/filemap.c:3873) [ 946.012319][T15176] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 946.012463][T15176] ___sys_sendmsg (net/socket.c:2641) [ 946.012604][T15176] ? copy_msghdr_from_user (net/socket.c:2628) [ 946.012749][T15176] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 946.012905][T15176] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 946.013052][T15176] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 946.013191][T15176] ? __sys_sendmsg_sock (net/socket.c:2656) [ 946.013333][T15176] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 946.013478][T15176] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 946.013618][T15176] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 946.013759][T15176] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 946.013911][T15176] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 946.014057][T15176] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 946.014234][T15176] RIP: 0033:0x7f65a8e9ec5e [ 946.014385][T15176] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 946.014902][T15176] RSP: 002b:00007ffcc9ea86d0 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 946.015117][T15176] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007f65a8e9ec5e [ 946.015329][T15176] RDX: 0000000000000000 RSI: 00007ffcc9ea8790 RDI: 0000000000000005 [ 946.015551][T15176] RBP: 00007ffcc9ea86e0 R08: 0000000000000000 R09: 0000000000000000 [ 946.015757][T15176] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 946.016178][T15176] R13: 0000000069cbe7f9 R14: 0000000000000004 R15: 000000000049d620 | [ 946.097623][T15180] ------------[ cut here ]------------ | [ 946.098268][T15180] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#0: ip/15180 | [ 946.098520][T15180] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 946.099393][T15180] Tainted: [W]=WARN [ 946.099501][T15180] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 946.099672][T15180] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 946.099821][T15180] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 946.100409][T15180] RSP: 0018:ffa0000003fe75d0 EFLAGS: 00010286 [ 946.100592][T15180] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe220000192e88f [ 946.100800][T15180] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100000c974478 [ 946.101073][T15180] RBP: 1ff40000007fcebb R08: 1fe220000192e890 R09: fffa3bfffffb0b24 [ 946.101296][T15180] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100000c974074 [ 946.101558][T15180] R13: ff1100000c974040 R14: ffffffff931c7940 R15: ff1100000c9743c0 [ 946.101775][T15180] FS: 00007fefafbe0440(0000) GS:ff110000a30b8000(0000) knlGS:0000000000000000 [ 946.102037][T15180] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 946.102219][T15180] CR2: 000000000044f720 CR3: 000000001b6df004 CR4: 0000000000771ef0 [ 946.102436][T15180] PKRU: 55555554 [ 946.102544][T15180] Call Trace: [ 946.102667][T15180] [ 946.102744][T15180] ? nh_fill_node (net/ipv4/nexthop.c:3363) [ 946.102886][T15180] ? ww_mutex_lock (kernel/locking/mutex.c:775) [ 946.103042][T15180] rtnetlink_rcv_msg (net/core/rtnetlink.c:7000) [ 946.103182][T15180] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 946.103331][T15180] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 946.103475][T15180] ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870) [ 946.103608][T15180] ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1)) [ 946.103742][T15180] netlink_rcv_skb (net/netlink/af_netlink.c:2550) [ 946.103882][T15180] ? rtnl_link_fill (net/core/rtnetlink.c:6894) [ 946.104023][T15180] ? netlink_ack (net/netlink/af_netlink.c:2527) [ 946.104182][T15180] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) ./include/net/netns/generic.h:48 (discriminator 1) net/netlink/af_netlink.c:333 (discriminator 1)) [ 946.104322][T15180] ? netlink_deliver_tap (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) net/netlink/af_netlink.c:340 (discriminator 1)) [ 946.104493][T15180] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344) [ 946.104671][T15180] ? netlink_attachskb (net/netlink/af_netlink.c:1329) [ 946.104811][T15180] ? __alloc_skb (./include/linux/bottom_half.h:20 (discriminator 1) net/core/skbuff.c:695 (discriminator 1)) [ 946.104959][T15180] ? napi_skb_cache_get (net/core/skbuff.c:674) [ 946.105232][T15180] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 946.105610][T15180] netlink_sendmsg (net/netlink/af_netlink.c:1894) [ 946.105752][T15180] ? netlink_unicast (net/netlink/af_netlink.c:1813) [ 946.105914][T15180] ? __might_fault (mm/memory.c:7218 (discriminator 4)) [ 946.106138][T15180] ____sys_sendmsg (net/socket.c:721 (discriminator 4) net/socket.c:736 (discriminator 4) net/socket.c:2585 (discriminator 4)) [ 946.106303][T15180] ? copy_msghdr_from_user (net/socket.c:2525) [ 946.106505][T15180] ? get_timestamp.constprop.0 (net/socket.c:2531) [ 946.106689][T15180] ? move_addr_to_kernel (net/socket.c:2511) [ 946.106839][T15180] ? filemap_map_folio_range (mm/filemap.c:3873) [ 946.106995][T15180] ? __lock_acquire (kernel/locking/lockdep.c:5237 (discriminator 1)) [ 946.107140][T15180] ___sys_sendmsg (net/socket.c:2641) [ 946.107286][T15180] ? copy_msghdr_from_user (net/socket.c:2628) [ 946.107437][T15180] ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477) [ 946.107574][T15180] ? lock_vma_under_rcu (./include/linux/rcupdate.h:322 (discriminator 1) ./include/linux/rcupdate.h:881 (discriminator 1) mm/mmap_lock.c:329 (discriminator 1)) [ 946.107717][T15180] __sys_sendmsg (net/socket.c:2671 (discriminator 1)) [ 946.107871][T15180] ? __sys_sendmsg_sock (net/socket.c:2656) [ 946.108098][T15180] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4)) [ 946.108231][T15180] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 946.108409][T15180] ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 1) kernel/rcu/tree.c:752 (discriminator 1)) [ 946.108551][T15180] do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1)) [ 946.108691][T15180] ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3)) [ 946.108849][T15180] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 946.109022][T15180] RIP: 0033:0x7fefafd3ac5e [ 946.109172][T15180] Code: 4d 89 d8 e8 34 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa All code ======== 0: 4d 89 d8 mov %r11,%r8 3: e8 34 bd 00 00 call 0xbd3c 8: 4c 8b 5d f8 mov -0x8(%rbp),%r11 c: 41 8b 93 08 03 00 00 mov 0x308(%r11),%edx 13: 59 pop %rcx 14: 5e pop %rsi 15: 48 83 f8 fc cmp $0xfffffffffffffffc,%rax 19: 74 11 je 0x2c 1b: c9 leave 1c: c3 ret 1d: 0f 1f 80 00 00 00 00 nopl 0x0(%rax) 24: 48 8b 45 10 mov 0x10(%rbp),%rax 28: 0f 05 syscall 2a:* c9 leave <-- trapping instruction 2b: c3 ret 2c: 83 e2 39 and $0x39,%edx 2f: 83 fa 08 cmp $0x8,%edx 32: 75 e7 jne 0x1b 34: e8 13 ff ff ff call 0xffffffffffffff4c 39: 0f 1f 00 nopl (%rax) 3c: f3 0f 1e fa endbr64 Code starting with the faulting instruction =========================================== 0: c9 leave 1: c3 ret 2: 83 e2 39 and $0x39,%edx 5: 83 fa 08 cmp $0x8,%edx 8: 75 e7 jne 0xfffffffffffffff1 a: e8 13 ff ff ff call 0xffffffffffffff22 f: 0f 1f 00 nopl (%rax) 12: f3 0f 1e fa endbr64 [ 946.109762][T15180] RSP: 002b:00007ffca07e1550 EFLAGS: 00000202 ORIG_RAX: 000000000000002e [ 946.109993][T15180] RAX: ffffffffffffffda RBX: 000000000048ba90 RCX: 00007fefafd3ac5e [ 946.110239][T15180] RDX: 0000000000000000 RSI: 00007ffca07e1610 RDI: 0000000000000005 [ 946.110464][T15180] RBP: 00007ffca07e1560 R08: 0000000000000000 R09: 0000000000000000 [ 946.110725][T15180] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000049d620 [ 946.111012][T15180] R13: 0000000069cbe7f9 R14: 0000000000000004 R15: 000000000049d620 | [ 946.185119][T15186] ------------[ cut here ]------------ | [ 946.185336][T15186] WARNING: net/ipv4/nexthop.c:3395 at rtm_get_nexthop+0x3ae/0x440, CPU#2: ip/15186 | [ 946.185653][T15186] Modules linked in: ip6_gre ip6_tunnel tunnel6 ip_gre gre act_mirred cls_matchall sch_red dummy sch_tbf act_gact cls_flower vxlan ip6_udp_tunnel udp_tunnel bridge stp llc 8021q sch_ingress vrf veth | [ 946.186598][T15186] Tainted: [W]=WARN [ 946.186757][T15186] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 946.187320][T15186] RIP: 0010:rtm_get_nexthop (net/ipv4/nexthop.c:3395 (discriminator 2)) [ 946.187525][T15186] Code: 1e 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 75 74 48 c7 03 00 70 6d 90 b8 ea ff ff ff e9 2e ff ff ff 90 <0f> 0b 90 ba 02 00 00 00 4c 89 fe 31 ff e8 c0 57 ad ff b8 a6 ff ff All code ======== 0: 1e (bad) 1: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 8: fc ff df b: 48 89 da mov %rbx,%rdx e: 48 c1 ea 03 shr $0x3,%rdx 12: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 16: 75 74 jne 0x8c 18: 48 c7 03 00 70 6d 90 movq $0xffffffff906d7000,(%rbx) 1f: b8 ea ff ff ff mov $0xffffffea,%eax 24: e9 2e ff ff ff jmp 0xffffffffffffff57 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: ba 02 00 00 00 mov $0x2,%edx 32: 4c 89 fe mov %r15,%rsi 35: 31 ff xor %edi,%edi 37: e8 c0 57 ad ff call 0xffffffffffad57fc 3c: b8 .byte 0xb8 3d: a6 cmpsb (%rdi),(%rsi) 3e: ff (bad) 3f: ff .byte 0xff Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: ba 02 00 00 00 mov $0x2,%edx 8: 4c 89 fe mov %r15,%rsi b: 31 ff xor %edi,%edi d: e8 c0 57 ad ff call 0xffffffffffad57d2 12: b8 .byte 0xb8 13: a6 cmpsb (%rdi),(%rsi) 14: ff (bad) 15: ff .byte 0xff [ 946.188098][T15186] RSP: 0018:ffa00000040375d0 EFLAGS: 00010286 [ 946.188334][T15186] RAX: 00000000ffffffa6 RBX: ff11000005e29c00 RCX: 1fe220000192e8c7 [ 946.188596][T15186] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ff1100000c974638 [ 946.188847][T15186] RBP: 1ff4000000806ebb R08: 1fe220000192e8c8 R09: fffa3bfffffb0b24 [ 946.189115][T15186] R10: fffa3bfffffb0b25 R11: 0000000000000001 R12: ff1100000c975ab4 [ 946.189366][T15186] R13: ff1100000c975a80 R14: ffffffff931c7940 R15: ff1100000c974580 [ 946.189633][T15186] FS: 00007f98a382a440(0000) GS:ff110000a31b8000(0000) knlGS:0000000000000000 [ 946.189958][T15186] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 946.190214][T15186] CR2: 000000000044f720 CR3: 000000000900a006 CR4: 0000000000771ef0 [ 946.190513][T15186] PKRU: 55555554 [ 946.190682][T15186] Call Trace: [ 946.190837][T15186]