======================================
| 0
| xx__-> [  810.395637][    C1] ------------[ cut here ]------------
| [  810.396010][    C1] WARNING: ./include/linux/skbuff.h:3239 at __udp4_lib_err_encap+0x69a/0xad0, CPU#1: 0/12
| [  810.396317][    C1] Modules linked in: vxlan act_csum act_pedit cls_flower sch_prio ip6t_REJECT nf_reject_ipv6 nft_compat nf_tables
[  810.396966][    C1] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011
[  810.397146][    C1] Workqueue: ipv6_addrconf addrconf_dad_work
[  810.397333][    C1] RIP: 0010:__udp4_lib_err_encap (./include/linux/skbuff.h:3239 (discriminator 3) ./include/linux/skbuff.h:3235 (discriminator 3) net/ipv4/udp.c:864 (discriminator 3))
[  810.397523][    C1] Code: 84 02 00 00 0f b6 2e 83 e5 0f 90 0f 0b 90 e9 ef fa ff ff 90 0f 0b 90 90 0f 0b 90 e9 bd fc ff ff 90 0f 0b 90 e9 57 fa ff ff 90 <0f> 0b 90 e9 65 fa ff ff 4c 8b 74 24 20 4c 8b 6c 24 28 4d 89 fa 45
All code
========
   0:	84 02                	test   %al,(%rdx)
   2:	00 00                	add    %al,(%rax)
   4:	0f b6 2e             	movzbl (%rsi),%ebp
   7:	83 e5 0f             	and    $0xf,%ebp
   a:	90                   	nop
   b:	0f 0b                	ud2
   d:	90                   	nop
   e:	e9 ef fa ff ff       	jmp    0xfffffffffffffb02
  13:	90                   	nop
  14:	0f 0b                	ud2
  16:	90                   	nop
  17:	90                   	nop
  18:	0f 0b                	ud2
  1a:	90                   	nop
  1b:	e9 bd fc ff ff       	jmp    0xfffffffffffffcdd
  20:	90                   	nop
  21:	0f 0b                	ud2
  23:	90                   	nop
  24:	e9 57 fa ff ff       	jmp    0xfffffffffffffa80
  29:	90                   	nop
  2a:*	0f 0b                	ud2		<-- trapping instruction
  2c:	90                   	nop
  2d:	e9 65 fa ff ff       	jmp    0xfffffffffffffa97
  32:	4c 8b 74 24 20       	mov    0x20(%rsp),%r14
  37:	4c 8b 6c 24 28       	mov    0x28(%rsp),%r13
  3c:	4d 89 fa             	mov    %r15,%r10
  3f:	45                   	rex.RB

Code starting with the faulting instruction
===========================================
   0:	0f 0b                	ud2
   2:	90                   	nop
   3:	e9 65 fa ff ff       	jmp    0xfffffffffffffa6d
   8:	4c 8b 74 24 20       	mov    0x20(%rsp),%r14
   d:	4c 8b 6c 24 28       	mov    0x28(%rsp),%r13
  12:	4d 89 fa             	mov    %r15,%r10
  15:	45                   	rex.RB
[  810.398048][    C1] RSP: 0018:ffa00000001d0868 EFLAGS: 00010293
[  810.398229][    C1] RAX: ff1100001a999c64 RBX: ff11000019f56580 RCX: 0000000000000000
[  810.398468][    C1] RDX: ff1100001a999c80 RSI: ff1100001a999c6c RDI: fffffffffffffff8
[  810.398690][    C1] RBP: ff1100001a999c40 R08: ff1100001a999c6c R09: 0000000000000000
[  810.398919][    C1] R10: ff11000019f56638 R11: 0000000000000001 R12: 0000000000000000
[  810.399138][    C1] R13: ff11000019f56648 R14: ff11000019f56636 R15: ff1100001a6e0040
[  810.399354][    C1] FS:  0000000000000000(0000) GS:ff110000ba954000(0000) knlGS:0000000000000000
[  810.399615][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  810.399802][    C1] CR2: 000055f044c0c468 CR3: 0000000008816002 CR4: 0000000000771ef0
[  810.400101][    C1] PKRU: 55555554
[  810.400214][    C1] Call Trace:
[  810.400322][    C1]  <IRQ>
[  810.400400][    C1]  udp_err (net/ipv4/udp.c:933)
[  810.400516][    C1]  icmp_unreach (net/ipv4/icmp.c:1196)
[  810.400665][    C1]  ? __skb_checksum_complete (./arch/x86/include/asm/atomic.h:23 ./include/linux/atomic/atomic-arch-fallback.h:457 ./include/linux/atomic/atomic-instrumented.h:33 ./include/linux/refcount.h:170 ./include/linux/skbuff.h:2112 net/core/skbuff.c:3785)
[  810.400815][    C1]  icmp_rcv (net/ipv4/icmp.c:1525 (discriminator 1))
[  810.400929][    C1]  ip_protocol_deliver_rcu (net/ipv4/ip_input.c:209)
[  810.401073][    C1]  ? process_backlog (./include/linux/local_lock_internal.h:62 (discriminator 2) net/core/dev.c:6671 (discriminator 2))
[  810.401218][    C1]  ip_local_deliver_finish (./include/linux/rcupdate.h:867 net/ipv4/ip_input.c:242)
[  810.401360][    C1]  ip_local_deliver (net/ipv4/ip_input.c:259)
[  810.401502][    C1]  ? ip_local_deliver_finish (net/ipv4/ip_input.c:251)
[  810.401646][    C1]  ? ip_rcv_finish_core (net/ipv4/ip_input.c:409 (discriminator 1))
[  810.401792][    C1]  ? do_xdp_generic (net/core/dev.c:5979)
[  810.401938][    C1]  ? __asan_memset (mm/kasan/shadow.c:84 (discriminator 2))
[  810.402084][    C1]  ? process_backlog (./include/linux/local_lock_internal.h:62 (discriminator 2) net/core/dev.c:6671 (discriminator 2))
[  810.402225][    C1]  ip_rcv (./include/linux/netfilter.h:318 ./include/linux/netfilter.h:312 net/ipv4/ip_input.c:612)
[  810.402335][    C1]  ? ip_local_deliver (net/ipv4/ip_input.c:605)
[  810.402476][    C1]  ? validate_chain (kernel/locking/lockdep.c:3801 (discriminator 3) kernel/locking/lockdep.c:3821 (discriminator 3) kernel/locking/lockdep.c:3876 (discriminator 3))
[  810.402625][    C1]  ? mark_usage (kernel/locking/lockdep.c:4674 (discriminator 1))
[  810.402771][    C1]  ? __lock_acquire (kernel/locking/lockdep.c:5237)
[  810.402913][    C1]  ? netif_close_many (./include/linux/list.h:127 ./include/linux/list.h:223 ./include/linux/list.h:295 net/core/dev.c:1799)
[  810.403057][    C1]  __netif_receive_skb_one_core (net/core/dev.c:6202)
[  810.403233][    C1]  ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 (discriminator 2) kernel/locking/lockdep.c:5870 (discriminator 2))
[  810.403379][    C1]  ? __netif_receive_skb_list_core (net/core/dev.c:6202)
[  810.403564][    C1]  ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 3) kernel/rcu/tree.c:752 (discriminator 3))
[  810.403715][    C1]  process_backlog (./include/linux/rcupdate.h:867 net/core/dev.c:6674)
[  810.403862][    C1]  __napi_poll (net/core/dev.c:7737)
[  810.403974][    C1]  net_rx_action (net/core/dev.c:7800 net/core/dev.c:7957)
[  810.404119][    C1]  ? __napi_poll (net/core/dev.c:7919)
[  810.404261][    C1]  ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1))
[  810.404408][    C1]  ? clockevents_program_event (kernel/time/clockevents.c:369 (discriminator 1))
[  810.404593][    C1]  ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 3) kernel/rcu/tree.c:752 (discriminator 3))
[  810.404739][    C1]  ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 3) kernel/rcu/tree.c:752 (discriminator 3))
[  810.404884][    C1]  ? mark_held_locks (kernel/locking/lockdep.c:4325 (discriminator 1))
[  810.405026][    C1]  handle_softirqs (./arch/x86/include/asm/jump_label.h:37 ./include/trace/events/irq.h:142 kernel/softirq.c:623)
[  810.405169][    C1]  ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 3) kernel/rcu/tree.c:752 (discriminator 3))
[  810.405312][    C1]  ? _local_bh_enable (kernel/softirq.c:580)
[  810.405455][    C1]  ? trace_csd_function_exit (./include/trace/events/csd.h:64 (discriminator 24))
[  810.405601][    C1]  ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 3) kernel/rcu/tree.c:752 (discriminator 3))
[  810.405754][    C1]  do_softirq (kernel/softirq.c:523 (discriminator 19) kernel/softirq.c:510 (discriminator 19))
[  810.405867][    C1]  </IRQ>
[  810.405941][    C1]  <TASK>
[  810.406012][    C1]  ? __dev_queue_xmit (./include/linux/rcupdate.h:310 (discriminator 2) ./include/linux/rcupdate.h:909 (discriminator 2) net/core/dev.c:4905 (discriminator 2))
[  810.406153][    C1]  __local_bh_enable_ip (kernel/softirq.c:450)
[  810.406295][    C1]  __dev_queue_xmit (net/core/dev.c:4906)
[  810.406437][    C1]  ? __lock_acquire (kernel/locking/lockdep.c:5237)
[  810.406588][    C1]  ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1))
[  810.406737][    C1]  ? netdev_core_pick_tx (net/core/dev.c:4767)
[  810.406883][    C1]  ? __asan_memcpy (mm/kasan/shadow.c:105 (discriminator 3))
[  810.407027][    C1]  ? eth_header (net/ethernet/eth.c:100)
[  810.407172][    C1]  ? neigh_resolve_output.part.0 (./include/linux/netdevice.h:3458 net/core/neighbour.c:1614)
[  810.407353][    C1]  ip6_finish_output2 (net/ipv6/ip6_output.c:61)
[  810.407498][    C1]  ? ip6_xmit (net/ipv6/ip6_output.c:61)
[  810.407643][    C1]  ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1))
[  810.407789][    C1]  ? __lock_release.isra.0 (kernel/locking/lockdep.c:5536)
[  810.407940][    C1]  ? ip6_mtu (./include/linux/rcupdate.h:310 (discriminator 2) ./include/linux/rcupdate.h:869 (discriminator 2) ./include/net/ip6_route.h:382 (discriminator 2) net/ipv6/route.c:3281 (discriminator 2))
[  810.408049][    C1]  ip6_finish_output (net/ipv6/ip6_output.c:208 net/ipv6/ip6_output.c:219)
[  810.408191][    C1]  ip6_output (./include/linux/netfilter.h:307 net/ipv6/ip6_output.c:246)
[  810.408299][    C1]  ? ip6_finish_output (net/ipv6/ip6_output.c:227)
[  810.408440][    C1]  ? __lock_release.isra.0 (kernel/locking/lockdep.c:5536)
[  810.408590][    C1]  ? xfrm_bundle_lookup.constprop.0 (net/xfrm/xfrm_policy.c:3177)
[  810.408774][    C1]  ? mark_held_locks (kernel/locking/lockdep.c:4325 (discriminator 1))
[  810.408923][    C1]  ? __local_bh_enable_ip (./arch/x86/include/asm/irqflags.h:42 ./arch/x86/include/asm/irqflags.h:119 kernel/softirq.c:455)
[  810.409065][    C1]  ? __local_bh_enable_ip (./arch/x86/include/asm/irqflags.h:42 ./arch/x86/include/asm/irqflags.h:119 kernel/softirq.c:455)
[  810.409207][    C1]  ? icmp6_dst_alloc (net/ipv6/route.c:3357 (discriminator 1))
[  810.409349][    C1]  mld_sendpack (./include/linux/netfilter.h:319 ./include/linux/netfilter.h:312 net/ipv6/mcast.c:1855)
[  810.409494][    C1]  ? nf_hook.constprop.0 (net/ipv4/ip_forward.c:66)
[  810.409648][    C1]  ipv6_mc_dad_complete (net/ipv6/mcast.c:2280)
[  810.409793][    C1]  ? __local_bh_enable_ip (./arch/x86/include/asm/irqflags.h:42 ./arch/x86/include/asm/irqflags.h:119 kernel/softirq.c:455)
[  810.409942][    C1]  addrconf_dad_completed (net/ipv6/addrconf.c:4355)
[  810.410086][    C1]  ? addrconf_rs_timer (net/ipv6/addrconf.c:4321)
[  810.410229][    C1]  ? __lock_release.isra.0 (kernel/locking/lockdep.c:5536)
[  810.410371][    C1]  ? __rwlock_init (kernel/locking/spinlock_debug.c:114)
[  810.410515][    C1]  ? mark_held_locks (kernel/locking/lockdep.c:4325 (discriminator 1))
[  810.410664][    C1]  ? addrconf_dad_begin (net/ipv6/addrconf.c:4105)
[  810.410813][    C1]  addrconf_dad_begin (net/ipv6/addrconf.c:4105)
[  810.410959][    C1]  ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 (discriminator 2) kernel/locking/lockdep.c:5870 (discriminator 2))
[  810.411101][    C1]  ? addrconf_dad_completed (net/ipv6/addrconf.c:4105)
[  810.411244][    C1]  ? mark_held_locks (kernel/locking/lockdep.c:4325 (discriminator 1))
[  810.411387][    C1]  addrconf_dad_work (./include/linux/instrumented.h:112 ./include/linux/atomic/atomic-instrumented.h:400 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/refcount.h:450 ./include/net/addrconf.h:461 net/ipv6/addrconf.c:4297)
[  810.411533][    C1]  ? addrconf_dad_begin (net/ipv6/addrconf.c:4189)
[  810.411674][    C1]  ? process_one_work (kernel/workqueue.c:3264 (discriminator 2))
[  810.411824][    C1]  ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 3) kernel/rcu/tree.c:752 (discriminator 3))
[  810.411972][    C1]  ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 3) kernel/rcu/tree.c:752 (discriminator 3))
[  810.412117][    C1]  ? lock_acquire (./include/trace/events/lock.h:24 (discriminator 24) kernel/locking/lockdep.c:5831 (discriminator 24))
[  810.412259][    C1]  ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 3) kernel/rcu/tree.c:752 (discriminator 3))
[  810.412404][    C1]  process_one_work (kernel/workqueue.c:3293)
[  810.412556][    C1]  ? pwq_dec_nr_in_flight (kernel/workqueue.c:3189)
[  810.412696][    C1]  ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 (discriminator 2) kernel/locking/lockdep.c:5870 (discriminator 2))
[  810.412851][    C1]  worker_thread (kernel/workqueue.c:3365 (discriminator 5) kernel/workqueue.c:3452 (discriminator 5))
[  810.413006][    C1]  ? rescuer_thread (kernel/workqueue.c:3398)
[  810.413148][    C1]  kthread (kernel/kthread.c:436)
[  810.413258][    C1]  ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40 (discriminator 24))
[  810.413436][    C1]  ? kthread_affine_node (kernel/kthread.c:381)
[  810.413585][    C1]  ret_from_fork (arch/x86/kernel/process.c:164)
[  810.413735][    C1]  ? arch_exit_to_user_mode_prepare.isra.0 (arch/x86/entry/syscall_64.c:37)
[  810.413914][    C1]  ? __switch_to (./arch/x86/include/asm/cpufeature.h:101 (discriminator 1) arch/x86/kernel/process_64.c:377 (discriminator 1) arch/x86/kernel/process_64.c:665 (discriminator 1))
[  810.414059][    C1]  ? kthread_affine_node (kernel/kthread.c:381)
[  810.414202][    C1]  ret_from_fork_asm (arch/x86/entry/entry_64.S:255)
| [  828.572485][    C0] ------------[ cut here ]------------
| [  828.572701][    C0] WARNING: ./include/linux/skbuff.h:3239 at __udp6_lib_err_encap+0x600/0x930, CPU#0: 0/12
| [  828.573017][    C0] Modules linked in: vxlan act_csum act_pedit cls_flower sch_prio ip6t_REJECT nf_reject_ipv6 nft_compat nf_tables
| [  828.573667][    C0] Tainted: [W]=WARN
[  828.573786][    C0] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011
[  828.573996][    C0] Workqueue: ipv6_addrconf addrconf_dad_work
[  828.574187][    C0] RIP: 0010:__udp6_lib_err_encap (./include/linux/skbuff.h:3239 (discriminator 3) ./include/linux/skbuff.h:3235 (discriminator 3) net/ipv6/udp.c:652 (discriminator 3))
[  828.574391][    C0] Code: 08 84 d2 0f 85 4f 02 00 00 44 8b 4b 28 e9 a9 fe ff ff 4c 8b 6c 24 20 4c 8b 7c 24 28 45 31 e4 4c 8b 74 24 30 e9 ce fd ff ff 90 <0f> 0b 90 48 29 c5 48 89 e8 48 81 fd ff ff 00 00 0f 86 09 fb ff ff
All code
========
   0:	08 84 d2 0f 85 4f 02 	or     %al,0x24f850f(%rdx,%rdx,8)
   7:	00 00                	add    %al,(%rax)
   9:	44 8b 4b 28          	mov    0x28(%rbx),%r9d
   d:	e9 a9 fe ff ff       	jmp    0xfffffffffffffebb
  12:	4c 8b 6c 24 20       	mov    0x20(%rsp),%r13
  17:	4c 8b 7c 24 28       	mov    0x28(%rsp),%r15
  1c:	45 31 e4             	xor    %r12d,%r12d
  1f:	4c 8b 74 24 30       	mov    0x30(%rsp),%r14
  24:	e9 ce fd ff ff       	jmp    0xfffffffffffffdf7
  29:	90                   	nop
  2a:*	0f 0b                	ud2		<-- trapping instruction
  2c:	90                   	nop
  2d:	48 29 c5             	sub    %rax,%rbp
  30:	48 89 e8             	mov    %rbp,%rax
  33:	48 81 fd ff ff 00 00 	cmp    $0xffff,%rbp
  3a:	0f 86 09 fb ff ff    	jbe    0xfffffffffffffb49

Code starting with the faulting instruction
===========================================
   0:	0f 0b                	ud2
   2:	90                   	nop
   3:	48 29 c5             	sub    %rax,%rbp
   6:	48 89 e8             	mov    %rbp,%rax
   9:	48 81 fd ff ff 00 00 	cmp    $0xffff,%rbp
  10:	0f 86 09 fb ff ff    	jbe    0xfffffffffffffb1f
[  828.575010][    C0] RSP: 0018:ffa00000000076a8 EFLAGS: 00010293
[  828.575223][    C0] RAX: ff11000009c8bbc0 RBX: ff1100001621ac80 RCX: ff11000009c8bc30
[  828.575492][    C0] RDX: ff11000009c8bc00 RSI: ff11000009c8bc08 RDI: fffffffffffffff8
[  828.575749][    C0] RBP: ff11000009c8bc08 R08: 1fe2200002c435aa R09: ff1100001621ac80
[  828.575983][    C0] R10: ff1100001bde9f40 R11: 0000000000000004 R12: 0000000000000000
[  828.576214][    C0] R13: ff1100001621ad36 R14: ff1100001621ad48 R15: ff1100001621ad38
[  828.576432][    C0] FS:  0000000000000000(0000) GS:ff110000ba8d4000(0000) knlGS:0000000000000000
[  828.576687][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  828.576878][    C0] CR2: 00007f9003ca7668 CR3: 0000000010d4e004 CR4: 0000000000771ef0
[  828.577090][    C0] PKRU: 55555554
[  828.577197][    C0] Call Trace:
[  828.577302][    C0]  <IRQ>
[  828.577377][    C0]  ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1))
[  828.577525][    C0]  udpv6_err (net/ipv6/udp.c:714)
[  828.577641][    C0]  ? __udp6_lib_err_encap (net/ipv6/udp.c:695)
[  828.577819][    C0]  icmpv6_notify (net/ipv6/icmp.c:1087)
[  828.577987][    C0]  ? icmpv6_param_prob_reason (net/ipv6/icmp.c:1039)
[  828.578133][    C0]  ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 (discriminator 2) kernel/locking/lockdep.c:5870 (discriminator 2))
[  828.578276][    C0]  ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1))
[  828.578422][    C0]  ? __lock_release.isra.0 (kernel/locking/lockdep.c:5536)
[  828.578570][    C0]  icmpv6_rcv (net/ipv6/icmp.c:1230)
[  828.578729][    C0]  ip6_protocol_deliver_rcu (net/ipv6/ip6_input.c:480)
[  828.578882][    C0]  ip6_input_finish (net/ipv6/ip6_input.c:532)
[  828.579026][    C0]  ip6_input (./include/linux/rcupdate.h:867 net/ipv6/ip6_input.c:543)
[  828.579137][    C0]  ? ip6_input_finish (net/ipv6/ip6_input.c:536)
[  828.579283][    C0]  ? ip6_rcv_core (./include/net/sock.h:2995 net/ipv6/ip6_input.c:331)
[  828.579431][    C0]  ipv6_rcv (./include/net/dst.h:480 (discriminator 4) net/ipv6/ip6_input.c:119 (discriminator 4) ./include/linux/netfilter.h:318 (discriminator 4) ./include/linux/netfilter.h:312 (discriminator 4) net/ipv6/ip6_input.c:351 (discriminator 4))
[  828.579541][    C0]  ? ip6_rcv_core (net/ipv6/ip6_input.c:345)
[  828.579704][    C0]  ? validate_chain (kernel/locking/lockdep.c:3801 (discriminator 3) kernel/locking/lockdep.c:3821 (discriminator 3) kernel/locking/lockdep.c:3876 (discriminator 3))
[  828.579963][    C0]  ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 3) kernel/rcu/tree.c:752 (discriminator 3))
[  828.580115][    C0]  ? __update_load_avg_cfs_rq (kernel/sched/pelt.c:334)
[  828.580318][    C0]  ? mark_usage (kernel/locking/lockdep.c:4674 (discriminator 1))
[  828.580462][    C0]  ? __lock_acquire (kernel/locking/lockdep.c:5237)
[  828.580602][    C0]  ? down_read_killable_nested (kernel/locking/rwsem.c:1298 (discriminator 1) kernel/locking/rwsem.c:1314 (discriminator 1) kernel/locking/rwsem.c:1714 (discriminator 1))
[  828.580819][    C0]  ? process_backlog (./include/linux/local_lock_internal.h:62 (discriminator 2) net/core/dev.c:6671 (discriminator 2))
[  828.580971][    C0]  __netif_receive_skb_one_core (net/core/dev.c:6202)
[  828.581148][    C0]  ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 (discriminator 2) kernel/locking/lockdep.c:5870 (discriminator 2))
[  828.581289][    C0]  ? __netif_receive_skb_list_core (net/core/dev.c:6202)
[  828.581491][    C0]  ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 3) kernel/rcu/tree.c:752 (discriminator 3))
[  828.581648][    C0]  process_backlog (./include/linux/rcupdate.h:867 net/core/dev.c:6674)
[  828.581798][    C0]  __napi_poll (net/core/dev.c:7737)
[  828.581910][    C0]  net_rx_action (net/core/dev.c:7800 net/core/dev.c:7957)
[  828.582054][    C0]  ? __napi_poll (net/core/dev.c:7919)
[  828.582205][    C0]  ? mark_held_locks (kernel/locking/lockdep.c:4325 (discriminator 1))
[  828.582347][    C0]  handle_softirqs (./arch/x86/include/asm/jump_label.h:37 ./include/trace/events/irq.h:142 kernel/softirq.c:623)
[  828.582489][    C0]  ? __lock_release.isra.0 (kernel/locking/lockdep.c:5536)
[  828.582640][    C0]  ? _local_bh_enable (kernel/softirq.c:580)
[  828.582791][    C0]  ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 3) kernel/rcu/tree.c:752 (discriminator 3))
[  828.582940][    C0]  do_softirq (kernel/softirq.c:523 (discriminator 19) kernel/softirq.c:510 (discriminator 19))
[  828.583047][    C0]  </IRQ>
[  828.583119][    C0]  <TASK>
[  828.583191][    C0]  ? __dev_queue_xmit (./include/linux/rcupdate.h:310 (discriminator 2) ./include/linux/rcupdate.h:909 (discriminator 2) net/core/dev.c:4905 (discriminator 2))
[  828.583332][    C0]  __local_bh_enable_ip (kernel/softirq.c:450)
[  828.583474][    C0]  __dev_queue_xmit (net/core/dev.c:4906)
[  828.583616][    C0]  ? __lock_acquire (kernel/locking/lockdep.c:5237)
[  828.583770][    C0]  ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1))
[  828.583914][    C0]  ? netdev_core_pick_tx (net/core/dev.c:4767)
[  828.584056][    C0]  ? __asan_memcpy (mm/kasan/shadow.c:105 (discriminator 3))
[  828.584201][    C0]  ? eth_header (net/ethernet/eth.c:100)
[  828.584346][    C0]  ? neigh_resolve_output.part.0 (./include/linux/netdevice.h:3458 net/core/neighbour.c:1614)
[  828.584528][    C0]  ip6_finish_output2 (net/ipv6/ip6_output.c:61)
[  828.584676][    C0]  ? ip6_xmit (net/ipv6/ip6_output.c:61)
[  828.584823][    C0]  ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1))
[  828.584969][    C0]  ? __lock_release.isra.0 (kernel/locking/lockdep.c:5536)
[  828.585113][    C0]  ? ip6_mtu (./include/linux/rcupdate.h:310 (discriminator 2) ./include/linux/rcupdate.h:869 (discriminator 2) ./include/net/ip6_route.h:382 (discriminator 2) net/ipv6/route.c:3281 (discriminator 2))
[  828.585224][    C0]  ip6_finish_output (net/ipv6/ip6_output.c:208 net/ipv6/ip6_output.c:219)
[  828.585368][    C0]  ip6_output (./include/linux/netfilter.h:307 net/ipv6/ip6_output.c:246)
[  828.585476][    C0]  ? ip6_finish_output (net/ipv6/ip6_output.c:227)
[  828.585616][    C0]  ? __lock_release.isra.0 (kernel/locking/lockdep.c:5536)
[  828.585768][    C0]  ? xfrm_bundle_lookup.constprop.0 (net/xfrm/xfrm_policy.c:3177)
[  828.585946][    C0]  ? mark_held_locks (kernel/locking/lockdep.c:4325 (discriminator 1))
[  828.586088][    C0]  ? __local_bh_enable_ip (./arch/x86/include/asm/irqflags.h:42 ./arch/x86/include/asm/irqflags.h:119 kernel/softirq.c:455)
[  828.586228][    C0]  ? __local_bh_enable_ip (./arch/x86/include/asm/irqflags.h:42 ./arch/x86/include/asm/irqflags.h:119 kernel/softirq.c:455)
[  828.586369][    C0]  ? icmp6_dst_alloc (net/ipv6/route.c:3357 (discriminator 1))
[  828.586511][    C0]  mld_sendpack (./include/linux/netfilter.h:319 ./include/linux/netfilter.h:312 net/ipv6/mcast.c:1855)
[  828.586662][    C0]  ? nf_hook.constprop.0 (net/ipv4/ip_forward.c:66)
[  828.586814][    C0]  ipv6_mc_dad_complete (net/ipv6/mcast.c:2280)
[  828.586959][    C0]  ? __local_bh_enable_ip (./arch/x86/include/asm/irqflags.h:42 ./arch/x86/include/asm/irqflags.h:119 kernel/softirq.c:455)
[  828.587100][    C0]  addrconf_dad_completed (net/ipv6/addrconf.c:4355)
[  828.587243][    C0]  ? addrconf_rs_timer (net/ipv6/addrconf.c:4321)
[  828.587385][    C0]  ? __lock_release.isra.0 (kernel/locking/lockdep.c:5536)
[  828.587527][    C0]  ? __rwlock_init (kernel/locking/spinlock_debug.c:114)
[  828.587674][    C0]  ? mark_held_locks (kernel/locking/lockdep.c:4325 (discriminator 1))
[  828.587823][    C0]  ? addrconf_dad_begin (net/ipv6/addrconf.c:4105)
[  828.587970][    C0]  addrconf_dad_begin (net/ipv6/addrconf.c:4105)
[  828.588112][    C0]  ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 (discriminator 2) kernel/locking/lockdep.c:5870 (discriminator 2))
[  828.588255][    C0]  ? addrconf_dad_completed (net/ipv6/addrconf.c:4105)
[  828.588399][    C0]  ? mark_held_locks (kernel/locking/lockdep.c:4325 (discriminator 1))
[  828.588541][    C0]  addrconf_dad_work (./include/linux/instrumented.h:112 ./include/linux/atomic/atomic-instrumented.h:400 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/refcount.h:450 ./include/net/addrconf.h:461 net/ipv6/addrconf.c:4297)
[  828.588688][    C0]  ? addrconf_dad_begin (net/ipv6/addrconf.c:4189)
[  828.588836][    C0]  ? process_one_work (kernel/workqueue.c:3264 (discriminator 2))
[  828.588979][    C0]  ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 3) kernel/rcu/tree.c:752 (discriminator 3))
[  828.589119][    C0]  ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 3) kernel/rcu/tree.c:752 (discriminator 3))
[  828.589260][    C0]  ? lock_acquire (./include/trace/events/lock.h:24 (discriminator 24) kernel/locking/lockdep.c:5831 (discriminator 24))
[  828.589403][    C0]  ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 3) kernel/rcu/tree.c:752 (discriminator 3))
[  828.589546][    C0]  process_one_work (kernel/workqueue.c:3293)
[  828.589696][    C0]  ? pwq_dec_nr_in_flight (kernel/workqueue.c:3189)
[  828.589843][    C0]  ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 (discriminator 2) kernel/locking/lockdep.c:5870 (discriminator 2))
[  828.589992][    C0]  worker_thread (kernel/workqueue.c:3365 (discriminator 5) kernel/workqueue.c:3452 (discriminator 5))
[  828.590137][    C0]  ? rescuer_thread (kernel/workqueue.c:3398)
[  828.590278][    C0]  kthread (kernel/kthread.c:436)
[  828.590385][    C0]  ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40 (discriminator 24))
[  828.590564][    C0]  ? kthread_affine_node (kernel/kthread.c:381)
[  828.590717][    C0]  ret_from_fork (arch/x86/kernel/process.c:164)
[  828.590864][    C0]  ? arch_exit_to_user_mode_prepare.isra.0 (arch/x86/entry/syscall_64.c:37)
[  828.591043][    C0]  ? __switch_to (./arch/x86/include/asm/cpufeature.h:101 (discriminator 1) arch/x86/kernel/process_64.c:377 (discriminator 1) arch/x86/kernel/process_64.c:665 (discriminator 1))
[  828.591185][    C0]  ? kthread_affine_node (kernel/kthread.c:381)
[  828.591327][    C0]  ret_from_fork_asm (arch/x86/entry/entry_64.S:255)
| [ 1313.028635][    C0] ------------[ cut here ]------------
| [ 1313.029074][    C0] WARNING: ./include/linux/skbuff.h:3239 at ip6_multipath_l3_keys.constprop.0+0xb0e/0xf00, CPU#0: ping6/30880
| [ 1313.029425][    C0] Modules linked in: openvswitch psample nf_nat nf_conntrack nf_defrag_ipv6 nf_defrag_ipv4 nsh geneve vxlan act_csum act_pedit cls_flower sch_prio ip6t_REJECT nf_reject_ipv6 nft_compat nf_tables
| [ 1313.030389][    C0] Tainted: [W]=WARN
[ 1313.030505][    C0] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011
[ 1313.030696][    C0] RIP: 0010:ip6_multipath_l3_keys.constprop.0 (./include/linux/skbuff.h:3239 (discriminator 3) ./include/linux/skbuff.h:3235 (discriminator 3) net/ipv6/route.c:2371 (discriminator 3))
[ 1313.030900][    C0] Code: 44 24 08 48 8b 44 24 10 4c 8b 4c 24 18 48 8b 54 24 20 8b 4c 24 28 4c 8b 5c 24 30 e9 d8 f9 ff ff 90 0f 0b 90 e9 33 f9 ff ff 90 <0f> 0b 90 e9 6a f9 ff ff 48 85 db 0f 84 36 fd ff ff 8b 74 24 38 b9
All code
========
   0:	44 24 08             	rex.R and $0x8,%al
   3:	48 8b 44 24 10       	mov    0x10(%rsp),%rax
   8:	4c 8b 4c 24 18       	mov    0x18(%rsp),%r9
   d:	48 8b 54 24 20       	mov    0x20(%rsp),%rdx
  12:	8b 4c 24 28          	mov    0x28(%rsp),%ecx
  16:	4c 8b 5c 24 30       	mov    0x30(%rsp),%r11
  1b:	e9 d8 f9 ff ff       	jmp    0xfffffffffffff9f8
  20:	90                   	nop
  21:	0f 0b                	ud2
  23:	90                   	nop
  24:	e9 33 f9 ff ff       	jmp    0xfffffffffffff95c
  29:	90                   	nop
  2a:*	0f 0b                	ud2		<-- trapping instruction
  2c:	90                   	nop
  2d:	e9 6a f9 ff ff       	jmp    0xfffffffffffff99c
  32:	48 85 db             	test   %rbx,%rbx
  35:	0f 84 36 fd ff ff    	je     0xfffffffffffffd71
  3b:	8b 74 24 38          	mov    0x38(%rsp),%esi
  3f:	b9                   	.byte 0xb9

Code starting with the faulting instruction
===========================================
   0:	0f 0b                	ud2
   2:	90                   	nop
   3:	e9 6a f9 ff ff       	jmp    0xfffffffffffff972
   8:	48 85 db             	test   %rbx,%rbx
   b:	0f 84 36 fd ff ff    	je     0xfffffffffffffd47
  11:	8b 74 24 38          	mov    0x38(%rsp),%esi
  15:	b9                   	.byte 0xb9
[ 1313.031446][    C0] RSP: 0018:ffa0000000007158 EFLAGS: 00010282
[ 1313.031635][    C0] RAX: ffffffffffffffc8 RBX: ff11000019ecdc40 RCX: 1fe22000033d9ba2
[ 1313.031870][    C0] RDX: ff1100001b7ee878 RSI: ffa0000000007300 RDI: ff11000019ecdd10
[ 1313.032094][    C0] RBP: ffa0000000007290 R08: ffa0000000007300 R09: 1ff4000000000e35
[ 1313.032317][    C0] R10: 0000000000000000 R11: ff1100001b7ee878 R12: ff1100001b7ee87e
[ 1313.032540][    C0] R13: ff11000019ecdd08 R14: ff11000019ecdc40 R15: ff11000019ecdc50
[ 1313.032776][    C0] FS:  00007f71d74864c0(0000) GS:ff110000ba8d4000(0000) knlGS:0000000000000000
[ 1313.033041][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1313.033333][    C0] CR2: 000055d728e6a0a8 CR3: 0000000016ea5005 CR4: 0000000000771ef0
[ 1313.033560][    C0] PKRU: 55555554
[ 1313.033672][    C0] Call Trace:
[ 1313.033797][    C0]  <IRQ>
[ 1313.033875][    C0]  ? ip6_rt_pcpu_alloc (net/ipv6/route.c:1426)
[ 1313.034027][    C0]  ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1))
[ 1313.034178][    C0]  ? rt6_nh_remove_exception_rt (net/ipv6/route.c:2356)
[ 1313.034330][    C0]  ? ip6_pol_route (./include/linux/rcupdate.h:310 (discriminator 2) ./include/linux/rcupdate.h:869 (discriminator 2) net/ipv6/route.c:2328 (discriminator 2))
[ 1313.034481][    C0]  ? mark_usage (kernel/locking/lockdep.c:4674 (discriminator 1))
[ 1313.034629][    C0]  ? __lock_acquire (kernel/locking/lockdep.c:5237)
[ 1313.034788][    C0]  ? mark_usage (kernel/locking/lockdep.c:4674 (discriminator 1))
[ 1313.034938][    C0]  rt6_multipath_hash (./include/net/ip_fib.h:562 (discriminator 3) net/ipv6/route.c:2543 (discriminator 3))
[ 1313.035088][    C0]  ? fib6_table_lookup (net/ipv6/route.c:2527)
[ 1313.035237][    C0]  ? ipv6_get_saddr_eval (net/ipv6/addrconf.c:1601 (discriminator 10))
[ 1313.035386][    C0]  ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1))
[ 1313.035538][    C0]  ? ipv6_dev_get_saddr (net/ipv6/addrconf.c:1816)
[ 1313.035690][    C0]  ? ref_tracker_free (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:455 (discriminator 4) ./include/linux/refcount.h:476 (discriminator 4) lib/ref_tracker.c:298 (discriminator 4))
[ 1313.035848][    C0]  ? inet6_netconf_dump_devconf (net/ipv6/addrconf.c:1816)
[ 1313.036033][    C0]  ? ref_tracker_alloc (lib/ref_tracker.c:288)
[ 1313.036185][    C0]  ? cmp_map_id (kernel/user_namespace.c:319)
[ 1313.036335][    C0]  ? dev_get_by_index (./include/linux/rcupdate.h:310 (discriminator 2) ./include/linux/rcupdate.h:869 (discriminator 2) net/core/dev.c:1003 (discriminator 2))
[ 1313.036487][    C0]  ? icmp6_send (net/ipv6/icmp.c:771 (discriminator 1))
[ 1313.036638][    C0]  ? make_kuid (kernel/user_namespace.c:426)
[ 1313.036760][    C0]  icmp6_send (net/ipv6/icmp.c:771 (discriminator 1))
[ 1313.036912][    C0]  ? icmpv6_push_pending_frames (net/ipv6/icmp.c:639)
[ 1313.037100][    C0]  ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 (discriminator 2) kernel/locking/lockdep.c:5870 (discriminator 2))
[ 1313.037250][    C0]  ? rt6_lookup (net/ipv6/route.c:1329)
[ 1313.037397][    C0]  ? lockdep_hardirqs_on_prepare.part.0 (kernel/locking/lockdep.c:470 (discriminator 11) kernel/locking/lockdep.c:4411 (discriminator 11))
[ 1313.037580][    C0]  ? lockdep_hardirqs_on (kernel/locking/lockdep.c:4473)
[ 1313.037745][    C0]  ? __asan_memcpy (mm/kasan/shadow.c:105 (discriminator 3))
[ 1313.037898][    C0]  ip6ip6_err (./include/net/ip6_fib.h:324 net/ipv6/ip6_tunnel.c:690)
[ 1313.038011][    C0]  ? ip6_tnl_err.isra.0 (net/ipv6/ip6_tunnel.c:659)
[ 1313.038158][    C0]  ? __local_bh_enable_ip (./arch/x86/include/asm/irqflags.h:42 ./arch/x86/include/asm/irqflags.h:119 kernel/softirq.c:455)
[ 1313.038310][    C0]  ? ipv6_find_tlv (net/ipv6/exthdrs_core.c:74)
[ 1313.038460][    C0]  tunnel6_err (net/ipv6/tunnel6.c:209 (discriminator 1))
[ 1313.038573][    C0]  icmpv6_notify (net/ipv6/icmp.c:1087)
[ 1313.038736][    C0]  ? icmpv6_param_prob_reason (net/ipv6/icmp.c:1039)
[ 1313.038886][    C0]  ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 (discriminator 2) kernel/locking/lockdep.c:5870 (discriminator 2))
[ 1313.039033][    C0]  ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1))
[ 1313.039181][    C0]  ? __lock_release.isra.0 (kernel/locking/lockdep.c:5536)
[ 1313.039332][    C0]  icmpv6_rcv (net/ipv6/icmp.c:1230)
[ 1313.039483][    C0]  ip6_protocol_deliver_rcu (net/ipv6/ip6_input.c:480)
[ 1313.039637][    C0]  ip6_input_finish (net/ipv6/ip6_input.c:532)
[ 1313.039796][    C0]  ip6_input (./include/linux/rcupdate.h:867 net/ipv6/ip6_input.c:543)
[ 1313.039909][    C0]  ? ip6_input_finish (net/ipv6/ip6_input.c:536)
[ 1313.040060][    C0]  ? ip6_rcv_core (./include/linux/skbuff.h:3395 net/ipv6/ip6_input.c:332)
[ 1313.040211][    C0]  ipv6_rcv (./include/net/dst.h:480 (discriminator 4) net/ipv6/ip6_input.c:119 (discriminator 4) ./include/linux/netfilter.h:318 (discriminator 4) ./include/linux/netfilter.h:312 (discriminator 4) net/ipv6/ip6_input.c:351 (discriminator 4))
[ 1313.040325][    C0]  ? ip6_rcv_core (net/ipv6/ip6_input.c:345)
[ 1313.040472][    C0]  ? validate_chain (kernel/locking/lockdep.c:3801 (discriminator 3) kernel/locking/lockdep.c:3821 (discriminator 3) kernel/locking/lockdep.c:3876 (discriminator 3))
[ 1313.040620][    C0]  ? validate_chain (kernel/locking/lockdep.c:3801 (discriminator 3) kernel/locking/lockdep.c:3821 (discriminator 3) kernel/locking/lockdep.c:3876 (discriminator 3))
[ 1313.040777][    C0]  ? mark_usage (kernel/locking/lockdep.c:4674 (discriminator 1))
[ 1313.040926][    C0]  ? __lock_acquire (kernel/locking/lockdep.c:5237)
[ 1313.041074][    C0]  ? down_read_killable_nested (kernel/locking/rwsem.c:1298 (discriminator 1) kernel/locking/rwsem.c:1314 (discriminator 1) kernel/locking/rwsem.c:1714 (discriminator 1))
[ 1313.041258][    C0]  ? process_backlog (./include/linux/local_lock_internal.h:62 (discriminator 2) net/core/dev.c:6671 (discriminator 2))
[ 1313.041406][    C0]  __netif_receive_skb_one_core (net/core/dev.c:6202)
[ 1313.041590][    C0]  ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 (discriminator 2) kernel/locking/lockdep.c:5870 (discriminator 2))
[ 1313.041748][    C0]  ? __netif_receive_skb_list_core (net/core/dev.c:6202)
[ 1313.041932][    C0]  ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 3) kernel/rcu/tree.c:752 (discriminator 3))
[ 1313.042085][    C0]  process_backlog (./include/linux/rcupdate.h:867 net/core/dev.c:6674)
[ 1313.042237][    C0]  __napi_poll (net/core/dev.c:7737)
[ 1313.042350][    C0]  net_rx_action (net/core/dev.c:7800 net/core/dev.c:7957)
[ 1313.042504][    C0]  ? __napi_poll (net/core/dev.c:7919)
[ 1313.042663][    C0]  ? mark_held_locks (kernel/locking/lockdep.c:4325 (discriminator 1))
[ 1313.042822][    C0]  handle_softirqs (./arch/x86/include/asm/jump_label.h:37 ./include/trace/events/irq.h:142 kernel/softirq.c:623)
[ 1313.042970][    C0]  ? __lock_release.isra.0 (kernel/locking/lockdep.c:5536)
[ 1313.043120][    C0]  ? _local_bh_enable (kernel/softirq.c:580)
[ 1313.043268][    C0]  ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 3) kernel/rcu/tree.c:752 (discriminator 3))
[ 1313.043417][    C0]  do_softirq (kernel/softirq.c:523 (discriminator 19) kernel/softirq.c:510 (discriminator 19))
[ 1313.043530][    C0]  </IRQ>
[ 1313.043605][    C0]  <TASK>
[ 1313.043679][    C0]  ? __dev_queue_xmit (./include/linux/rcupdate.h:310 (discriminator 2) ./include/linux/rcupdate.h:909 (discriminator 2) net/core/dev.c:4905 (discriminator 2))
[ 1313.043833][    C0]  __local_bh_enable_ip (kernel/softirq.c:450)
[ 1313.043981][    C0]  __dev_queue_xmit (net/core/dev.c:4906)
[ 1313.044132][    C0]  ? __lock_acquire (kernel/locking/lockdep.c:5237)
[ 1313.044282][    C0]  ? netdev_core_pick_tx (net/core/dev.c:4767)
[ 1313.044432][    C0]  ? __lock_release.isra.0 (kernel/locking/lockdep.c:5536)
[ 1313.044580][    C0]  ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 3) kernel/rcu/tree.c:752 (discriminator 3))
[ 1313.044739][    C0]  ? mark_held_locks (kernel/locking/lockdep.c:4325 (discriminator 1))
[ 1313.044888][    C0]  ? lockdep_hardirqs_on (kernel/locking/lockdep.c:4473)
[ 1313.045035][    C0]  ? neigh_connected_output (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 ./include/linux/seqlock.h:75 ./include/linux/seqlock.h:838 net/core/neighbour.c:1642)
[ 1313.045184][    C0]  ? ip6_finish_output2 (net/ipv6/ip6_output.c:61)
[ 1313.045337][    C0]  ip6_finish_output2 (net/ipv6/ip6_output.c:61)
[ 1313.045487][    C0]  ? ip6_xmit (net/ipv6/ip6_output.c:61)
[ 1313.045635][    C0]  ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1))
[ 1313.045793][    C0]  ? __lock_release.isra.0 (kernel/locking/lockdep.c:5536)
[ 1313.045943][    C0]  ? ip6_mtu (./include/linux/rcupdate.h:310 (discriminator 2) ./include/linux/rcupdate.h:869 (discriminator 2) ./include/net/ip6_route.h:382 (discriminator 2) net/ipv6/route.c:3281 (discriminator 2))
[ 1313.046057][    C0]  ip6_finish_output (net/ipv6/ip6_output.c:208 net/ipv6/ip6_output.c:219)
[ 1313.046207][    C0]  ip6_output (./include/linux/netfilter.h:307 net/ipv6/ip6_output.c:246)
[ 1313.046320][    C0]  ? ip6_finish_output (net/ipv6/ip6_output.c:227)
[ 1313.046469][    C0]  ? l3mdev_l3_out.constprop.0 (./include/net/l3mdev.h:225)
[ 1313.046621][    C0]  ip6_send_skb (net/ipv6/ip6_output.c:2013)
[ 1313.046779][    C0]  rawv6_push_pending_frames (net/ipv6/raw.c:514)
[ 1313.046928][    C0]  ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 (discriminator 5) ./include/linux/atomic/atomic-arch-fallback.h:2170 (discriminator 5) ./include/linux/atomic/atomic-instrumented.h:1302 (discriminator 5) ./include/asm-generic/qspinlock.h:111 (discriminator 5) kernel/locking/spinlock_debug.c:116 (discriminator 5))
[ 1313.047077][    C0]  ? ip6_flush_pending_frames (net/ipv6/ip6_output.c:1455)
[ 1313.047226][    C0]  ? rawv6_setsockopt (net/ipv6/raw.c:514)
[ 1313.047374][    C0]  ? raw6_destroy (net/ipv6/raw.c:713)
[ 1313.047525][    C0]  rawv6_sendmsg (net/ipv6/raw.c:920)
[ 1313.047678][    C0]  ? rawv6_send_hdrinc (net/ipv6/raw.c:743)
[ 1313.047836][    C0]  ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 (discriminator 2) kernel/locking/lockdep.c:5870 (discriminator 2))
[ 1313.047991][    C0]  ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 (discriminator 2) kernel/locking/lockdep.c:5870 (discriminator 2))
[ 1313.048144][    C0]  ? __might_fault (mm/memory.c:7230 (discriminator 6))
[ 1313.048296][    C0]  ? __sys_sendto (net/socket.c:787 (discriminator 4) net/socket.c:802 (discriminator 4) net/socket.c:2265 (discriminator 4))
[ 1313.048446][    C0]  __sys_sendto (net/socket.c:787 (discriminator 4) net/socket.c:802 (discriminator 4) net/socket.c:2265 (discriminator 4))
[ 1313.048595][    C0]  ? __ia32_sys_getpeername (net/socket.c:2232)
[ 1313.048762][    C0]  ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1480 arch/x86/mm/fault.c:1527)
[ 1313.048912][    C0]  __x64_sys_sendto (net/socket.c:2272 (discriminator 1) net/socket.c:2268 (discriminator 1) net/socket.c:2268 (discriminator 1))
[ 1313.049060][    C0]  ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40 (discriminator 24))
[ 1313.049245][    C0]  ? lockdep_hardirqs_on (kernel/locking/lockdep.c:4473)
[ 1313.049393][    C0]  ? do_syscall_64 (./arch/x86/include/asm/irqflags.h:42 ./arch/x86/include/asm/irqflags.h:119 ./include/linux/entry-common.h:187 arch/x86/entry/syscall_64.c:89)
[ 1313.049543][    C0]  do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1))
[ 1313.049695][    C0]  ? trace_hardirqs_off (kernel/trace/trace_preemptirq.c:106 (discriminator 9))
[ 1313.049849][    C0]  ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3))
[ 1313.049998][    C0]  entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130)
[ 1313.050183][    C0] RIP: 0033:0x7f71d76a522e
[ 1313.050360][    C0] Code: 4d 89 d8 e8 94 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 <c9> c3 83 e2 39 83 fa 08 75 e7 e8 03 ff ff ff 0f 1f 00 f3 0f 1e fa
All code
========
   0:	4d 89 d8             	mov    %r11,%r8
   3:	e8 94 bd 00 00       	call   0xbd9c
   8:	4c 8b 5d f8          	mov    -0x8(%rbp),%r11
   c:	41 8b 93 08 03 00 00 	mov    0x308(%r11),%edx
  13:	59                   	pop    %rcx
  14:	5e                   	pop    %rsi
  15:	48 83 f8 fc          	cmp    $0xfffffffffffffffc,%rax
  19:	74 11                	je     0x2c
  1b:	c9                   	leave
  1c:	c3                   	ret
  1d:	0f 1f 80 00 00 00 00 	nopl   0x0(%rax)
  24:	48 8b 45 10          	mov    0x10(%rbp),%rax
  28:	0f 05                	syscall
  2a:*	c9                   	leave		<-- trapping instruction
  2b:	c3                   	ret
  2c:	83 e2 39             	and    $0x39,%edx
  2f:	83 fa 08             	cmp    $0x8,%edx
  32:	75 e7                	jne    0x1b
  34:	e8 03 ff ff ff       	call   0xffffffffffffff3c
  39:	0f 1f 00             	nopl   (%rax)
  3c:	f3 0f 1e fa          	endbr64

Code starting with the faulting instruction
===========================================
   0:	c9                   	leave
   1:	c3                   	ret
   2:	83 e2 39             	and    $0x39,%edx
   5:	83 fa 08             	cmp    $0x8,%edx
   8:	75 e7                	jne    0xfffffffffffffff1
   a:	e8 03 ff ff ff       	call   0xffffffffffffff12
   f:	0f 1f 00             	nopl   (%rax)
  12:	f3 0f 1e fa          	endbr64
[ 1313.050907][    C0] RSP: 002b:00007fff0a17a500 EFLAGS: 00000202 ORIG_RAX: 000000000000002c
[ 1313.051134][    C0] RAX: ffffffffffffffda RBX: 000055d728e5a0a0 RCX: 00007f71d76a522e
[ 1313.051359][    C0] RDX: 000000000000119c RSI: 000055d728e5a0a4 RDI: 0000000000000005
[ 1313.051584][    C0] RBP: 00007fff0a17a510 R08: 000055d728e6c2b4 R09: 000000000000001c
[ 1313.051818][    C0] R10: 0000000000000000 R11: 0000000000000202 R12: 000055d728e5a0a4
[ 1313.052043][    C0] R13: 000000000000119c R14: 00007fff0a17b800 R15: 000055d728e5a0a0
| [ 1313.053703][    C0] ------------[ cut here ]------------
| [ 1313.053856][    C0] WARNING: ./include/linux/skbuff.h:3239 at ip6_multipath_l3_keys.constprop.0+0xbe0/0xf00, CPU#0: ping6/30880
| [ 1313.054183][    C0] Modules linked in: openvswitch psample nf_nat nf_conntrack nf_defrag_ipv6 nf_defrag_ipv4 nsh geneve vxlan act_csum act_pedit cls_flower sch_prio ip6t_REJECT nf_reject_ipv6 nft_compat nf_tables
| [ 1313.055115][    C0] Tainted: [W]=WARN
[ 1313.055228][    C0] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011
[ 1313.055416][    C0] RIP: 0010:ip6_multipath_l3_keys.constprop.0 (./include/linux/skbuff.h:3239 (discriminator 3) ./include/linux/skbuff.h:3235 (discriminator 3) net/ipv6/route.c:2380 (discriminator 3))
[ 1313.055609][    C0] Code: 4c 8b 44 24 38 4c 8b 54 24 30 0f 88 8f fc ff ff 4c 8d 9c 24 a0 00 00 00 4c 8b 75 f0 4c 8b 7d f8 4d 8d 63 06 e9 60 fa ff ff 90 <0f> 0b 90 e9 d8 f9 ff ff 90 0f 0b 90 e9 76 f9 ff ff 4c 89 ef 4c 89
All code
========
   0:	4c 8b 44 24 38       	mov    0x38(%rsp),%r8
   5:	4c 8b 54 24 30       	mov    0x30(%rsp),%r10
   a:	0f 88 8f fc ff ff    	js     0xfffffffffffffc9f
  10:	4c 8d 9c 24 a0 00 00 	lea    0xa0(%rsp),%r11
  17:	00 
  18:	4c 8b 75 f0          	mov    -0x10(%rbp),%r14
  1c:	4c 8b 7d f8          	mov    -0x8(%rbp),%r15
  20:	4d 8d 63 06          	lea    0x6(%r11),%r12
  24:	e9 60 fa ff ff       	jmp    0xfffffffffffffa89
  29:	90                   	nop
  2a:*	0f 0b                	ud2		<-- trapping instruction
  2c:	90                   	nop
  2d:	e9 d8 f9 ff ff       	jmp    0xfffffffffffffa0a
  32:	90                   	nop
  33:	0f 0b                	ud2
  35:	90                   	nop
  36:	e9 76 f9 ff ff       	jmp    0xfffffffffffff9b1
  3b:	4c 89 ef             	mov    %r13,%rdi
  3e:	4c                   	rex.WR
  3f:	89                   	.byte 0x89

Code starting with the faulting instruction
===========================================
   0:	0f 0b                	ud2
   2:	90                   	nop
   3:	e9 d8 f9 ff ff       	jmp    0xfffffffffffff9e0
   8:	90                   	nop
   9:	0f 0b                	ud2
   b:	90                   	nop
   c:	e9 76 f9 ff ff       	jmp    0xfffffffffffff987
  11:	4c 89 ef             	mov    %r13,%rdi
  14:	4c                   	rex.WR
  15:	89                   	.byte 0x89
[ 1313.056150][    C0] RSP: 0018:ffa0000000007158 EFLAGS: 00010293
[ 1313.056337][    C0] RAX: ff1100001b7ee878 RBX: ff11000019ecdc40 RCX: 1fe22000033d9ba1
[ 1313.056560][    C0] RDX: ffffffffffffffc8 RSI: 0000000000000007 RDI: ff11000019ecdcf6
[ 1313.056792][    C0] RBP: ffa0000000007290 R08: ffa0000000007300 R09: 1ff4000000000e35
[ 1313.057014][    C0] R10: 0000000000000000 R11: ff1100001b7ee878 R12: ff1100001b7ee87e
[ 1313.057237][    C0] R13: ff1100001b7ee840 R14: ff11000019ecdcb4 R15: ff11000019ecdcb0
[ 1313.057462][    C0] FS:  00007f71d74864c0(0000) GS:ff110000ba8d4000(0000) knlGS:0000000000000000
[ 1313.057731][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1313.057919][    C0] CR2: 000055d728e6a0a8 CR3: 0000000016ea5005 CR4: 0000000000771ef0
[ 1313.058145][    C0] PKRU: 55555554
[ 1313.058256][    C0] Call Trace:
[ 1313.058367][    C0]  <IRQ>
[ 1313.058442][    C0]  ? ip6_rt_pcpu_alloc (net/ipv6/route.c:1426)
[ 1313.058591][    C0]  ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1))
[ 1313.058748][    C0]  ? rt6_nh_remove_exception_rt (net/ipv6/route.c:2356)
[ 1313.058900][    C0]  ? ip6_pol_route (./include/linux/rcupdate.h:310 (discriminator 2) ./include/linux/rcupdate.h:869 (discriminator 2) net/ipv6/route.c:2328 (discriminator 2))
[ 1313.059050][    C0]  ? mark_usage (kernel/locking/lockdep.c:4674 (discriminator 1))
[ 1313.059200][    C0]  ? __lock_acquire (kernel/locking/lockdep.c:5237)
[ 1313.059347][    C0]  ? mark_usage (kernel/locking/lockdep.c:4674 (discriminator 1))
[ 1313.059498][    C0]  rt6_multipath_hash (./include/net/ip_fib.h:562 (discriminator 3) net/ipv6/route.c:2543 (discriminator 3))
[ 1313.059649][    C0]  ? fib6_table_lookup (net/ipv6/route.c:2527)
[ 1313.059807][    C0]  ? ipv6_get_saddr_eval (net/ipv6/addrconf.c:1601 (discriminator 10))
[ 1313.059961][    C0]  ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1))
[ 1313.060114][    C0]  ? ipv6_dev_get_saddr (net/ipv6/addrconf.c:1816)
[ 1313.060385][    C0]  ? ref_tracker_free (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:455 (discriminator 4) ./include/linux/refcount.h:476 (discriminator 4) lib/ref_tracker.c:298 (discriminator 4))
[ 1313.060536][    C0]  ? inet6_netconf_dump_devconf (net/ipv6/addrconf.c:1816)
[ 1313.060730][    C0]  ? ref_tracker_alloc (lib/ref_tracker.c:288)
[ 1313.060987][    C0]  ? cmp_map_id (kernel/user_namespace.c:319)
[ 1313.061137][    C0]  ? dev_get_by_index (./include/linux/rcupdate.h:310 (discriminator 2) ./include/linux/rcupdate.h:869 (discriminator 2) net/core/dev.c:1003 (discriminator 2))
[ 1313.061289][    C0]  ? icmp6_send (net/ipv6/icmp.c:771 (discriminator 1))
[ 1313.061437][    C0]  ? make_kuid (kernel/user_namespace.c:426)
[ 1313.061548][    C0]  icmp6_send (net/ipv6/icmp.c:771 (discriminator 1))
[ 1313.061818][    C0]  ? icmpv6_push_pending_frames (net/ipv6/icmp.c:639)
[ 1313.062004][    C0]  ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 (discriminator 2) kernel/locking/lockdep.c:5870 (discriminator 2))
[ 1313.062155][    C0]  ? rt6_lookup (net/ipv6/route.c:1329)
[ 1313.062407][    C0]  ? lockdep_hardirqs_on_prepare.part.0 (kernel/locking/lockdep.c:470 (discriminator 11) kernel/locking/lockdep.c:4411 (discriminator 11))
[ 1313.062592][    C0]  ? lockdep_hardirqs_on (kernel/locking/lockdep.c:4473)
[ 1313.062754][    C0]  ? __asan_memcpy (mm/kasan/shadow.c:105 (discriminator 3))
[ 1313.062905][    C0]  ip6ip6_err (./include/net/ip6_fib.h:324 net/ipv6/ip6_tunnel.c:690)
[ 1313.063124][    C0]  ? ip6_tnl_err.isra.0 (net/ipv6/ip6_tunnel.c:659)
[ 1313.063273][    C0]  ? __local_bh_enable_ip (./arch/x86/include/asm/irqflags.h:42 ./arch/x86/include/asm/irqflags.h:119 kernel/softirq.c:455)
[ 1313.063423][    C0]  ? ipv6_find_tlv (net/ipv6/exthdrs_core.c:74)
[ 1313.063573][    C0]  tunnel6_err (net/ipv6/tunnel6.c:209 (discriminator 1))
[ 1313.063690][    C0]  icmpv6_notify (net/ipv6/icmp.c:1087)
[ 1313.063849][    C0]  ? icmpv6_param_prob_reason (net/ipv6/icmp.c:1039)
[ 1313.063998][    C0]  ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 (discriminator 2) kernel/locking/lockdep.c:5870 (discriminator 2))
[ 1313.064146][    C0]  ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1))
[ 1313.064295][    C0]  ? __lock_release.isra.0 (kernel/locking/lockdep.c:5536)
[ 1313.064551][    C0]  icmpv6_rcv (net/ipv6/icmp.c:1230)
[ 1313.064706][    C0]  ip6_protocol_deliver_rcu (net/ipv6/ip6_input.c:480)
[ 1313.064864][    C0]  ip6_input_finish (net/ipv6/ip6_input.c:532)
[ 1313.065013][    C0]  ip6_input (./include/linux/rcupdate.h:867 net/ipv6/ip6_input.c:543)
[ 1313.065232][    C0]  ? ip6_input_finish (net/ipv6/ip6_input.c:536)
[ 1313.065382][    C0]  ? ip6_rcv_core (./include/linux/skbuff.h:3395 net/ipv6/ip6_input.c:332)
[ 1313.065532][    C0]  ipv6_rcv (./include/net/dst.h:480 (discriminator 4) net/ipv6/ip6_input.c:119 (discriminator 4) ./include/linux/netfilter.h:318 (discriminator 4) ./include/linux/netfilter.h:312 (discriminator 4) net/ipv6/ip6_input.c:351 (discriminator 4))
[ 1313.065644][    C0]  ? ip6_rcv_core (net/ipv6/ip6_input.c:345)
[ 1313.065800][    C0]  ? validate_chain (kernel/locking/lockdep.c:3801 (discriminator 3) kernel/locking/lockdep.c:3821 (discriminator 3) kernel/locking/lockdep.c:3876 (discriminator 3))
[ 1313.065949][    C0]  ? validate_chain (kernel/locking/lockdep.c:3801 (discriminator 3) kernel/locking/lockdep.c:3821 (discriminator 3) kernel/locking/lockdep.c:3876 (discriminator 3))
[ 1313.066098][    C0]  ? mark_usage (kernel/locking/lockdep.c:4674 (discriminator 1))
[ 1313.066248][    C0]  ? __lock_acquire (kernel/locking/lockdep.c:5237)
[ 1313.066501][    C0]  ? down_read_killable_nested (kernel/locking/rwsem.c:1298 (discriminator 1) kernel/locking/rwsem.c:1314 (discriminator 1) kernel/locking/rwsem.c:1714 (discriminator 1))
[ 1313.066689][    C0]  ? process_backlog (./include/linux/local_lock_internal.h:62 (discriminator 2) net/core/dev.c:6671 (discriminator 2))
[ 1313.066843][    C0]  __netif_receive_skb_one_core (net/core/dev.c:6202)
[ 1313.067028][    C0]  ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 (discriminator 2) kernel/locking/lockdep.c:5870 (discriminator 2))
[ 1313.067283][    C0]  ? __netif_receive_skb_list_core (net/core/dev.c:6202)
[ 1313.067472][    C0]  ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 3) kernel/rcu/tree.c:752 (discriminator 3))
[ 1313.067625][    C0]  process_backlog (./include/linux/rcupdate.h:867 net/core/dev.c:6674)
[ 1313.067784][    C0]  __napi_poll (net/core/dev.c:7737)
[ 1313.067898][    C0]  net_rx_action (net/core/dev.c:7800 net/core/dev.c:7957)
[ 1313.068050][    C0]  ? __napi_poll (net/core/dev.c:7919)
[ 1313.068208][    C0]  ? mark_held_locks (kernel/locking/lockdep.c:4325 (discriminator 1))
[ 1313.068360][    C0]  handle_softirqs (./arch/x86/include/asm/jump_label.h:37 ./include/trace/events/irq.h:142 kernel/softirq.c:623)
[ 1313.068616][    C0]  ? __lock_release.isra.0 (kernel/locking/lockdep.c:5536)
[ 1313.068774][    C0]  ? _local_bh_enable (kernel/softirq.c:580)
[ 1313.068924][    C0]  ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 3) kernel/rcu/tree.c:752 (discriminator 3))
[ 1313.069074][    C0]  do_softirq (kernel/softirq.c:523 (discriminator 19) kernel/softirq.c:510 (discriminator 19))
[ 1313.069294][    C0]  </IRQ>
[ 1313.069369][    C0]  <TASK>
[ 1313.069444][    C0]  ? __dev_queue_xmit (./include/linux/rcupdate.h:310 (discriminator 2) ./include/linux/rcupdate.h:909 (discriminator 2) net/core/dev.c:4905 (discriminator 2))
[ 1313.069593][    C0]  __local_bh_enable_ip (kernel/softirq.c:450)
[ 1313.069751][    C0]  __dev_queue_xmit (net/core/dev.c:4906)
[ 1313.070009][    C0]  ? __lock_acquire (kernel/locking/lockdep.c:5237)
[ 1313.070162][    C0]  ? netdev_core_pick_tx (net/core/dev.c:4767)
[ 1313.070312][    C0]  ? __lock_release.isra.0 (kernel/locking/lockdep.c:5536)
[ 1313.070460][    C0]  ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 3) kernel/rcu/tree.c:752 (discriminator 3))
[ 1313.070725][    C0]  ? mark_held_locks (kernel/locking/lockdep.c:4325 (discriminator 1))
[ 1313.070875][    C0]  ? lockdep_hardirqs_on (kernel/locking/lockdep.c:4473)
[ 1313.071024][    C0]  ? neigh_connected_output (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 ./include/linux/seqlock.h:75 ./include/linux/seqlock.h:838 net/core/neighbour.c:1642)
[ 1313.071173][    C0]  ? ip6_finish_output2 (net/ipv6/ip6_output.c:61)
[ 1313.071433][    C0]  ip6_finish_output2 (net/ipv6/ip6_output.c:61)
[ 1313.071584][    C0]  ? ip6_xmit (net/ipv6/ip6_output.c:61)
[ 1313.071740][    C0]  ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1))
[ 1313.071888][    C0]  ? __lock_release.isra.0 (kernel/locking/lockdep.c:5536)
[ 1313.072143][    C0]  ? ip6_mtu (./include/linux/rcupdate.h:310 (discriminator 2) ./include/linux/rcupdate.h:869 (discriminator 2) ./include/net/ip6_route.h:382 (discriminator 2) net/ipv6/route.c:3281 (discriminator 2))
[ 1313.072259][    C0]  ip6_finish_output (net/ipv6/ip6_output.c:208 net/ipv6/ip6_output.c:219)
[ 1313.072410][    C0]  ip6_output (./include/linux/netfilter.h:307 net/ipv6/ip6_output.c:246)
[ 1313.072523][    C0]  ? ip6_finish_output (net/ipv6/ip6_output.c:227)
[ 1313.072790][    C0]  ? l3mdev_l3_out.constprop.0 (./include/net/l3mdev.h:225)
[ 1313.072943][    C0]  ip6_send_skb (net/ipv6/ip6_output.c:2013)
[ 1313.073092][    C0]  rawv6_push_pending_frames (net/ipv6/raw.c:514)
[ 1313.073241][    C0]  ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 (discriminator 5) ./include/linux/atomic/atomic-arch-fallback.h:2170 (discriminator 5) ./include/linux/atomic/atomic-instrumented.h:1302 (discriminator 5) ./include/asm-generic/qspinlock.h:111 (discriminator 5) kernel/locking/spinlock_debug.c:116 (discriminator 5))
[ 1313.073495][    C0]  ? ip6_flush_pending_frames (net/ipv6/ip6_output.c:1455)
[ 1313.073643][    C0]  ? rawv6_setsockopt (net/ipv6/raw.c:514)
[ 1313.073799][    C0]  ? raw6_destroy (net/ipv6/raw.c:713)
[ 1313.073951][    C0]  rawv6_sendmsg (net/ipv6/raw.c:920)
[ 1313.074208][    C0]  ? rawv6_send_hdrinc (net/ipv6/raw.c:743)
[ 1313.074356][    C0]  ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 (discriminator 2) kernel/locking/lockdep.c:5870 (discriminator 2))
[ 1313.074511][    C0]  ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 (discriminator 2) kernel/locking/lockdep.c:5870 (discriminator 2))
[ 1313.074663][    C0]  ? __might_fault (mm/memory.c:7230 (discriminator 6))
[ 1313.074928][    C0]  ? __sys_sendto (net/socket.c:787 (discriminator 4) net/socket.c:802 (discriminator 4) net/socket.c:2265 (discriminator 4))
[ 1313.075077][    C0]  __sys_sendto (net/socket.c:787 (discriminator 4) net/socket.c:802 (discriminator 4) net/socket.c:2265 (discriminator 4))
[ 1313.075229][    C0]  ? __ia32_sys_getpeername (net/socket.c:2232)
[ 1313.075386][    C0]  ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1480 arch/x86/mm/fault.c:1527)
[ 1313.075642][    C0]  __x64_sys_sendto (net/socket.c:2272 (discriminator 1) net/socket.c:2268 (discriminator 1) net/socket.c:2268 (discriminator 1))
[ 1313.075797][    C0]  ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40 (discriminator 24))
[ 1313.075980][    C0]  ? lockdep_hardirqs_on (kernel/locking/lockdep.c:4473)
[ 1313.076127][    C0]  ? do_syscall_64 (./arch/x86/include/asm/irqflags.h:42 ./arch/x86/include/asm/irqflags.h:119 ./include/linux/entry-common.h:187 arch/x86/entry/syscall_64.c:89)
[ 1313.076381][    C0]  do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1))
[ 1313.076533][    C0]  ? trace_hardirqs_off (kernel/trace/trace_preemptirq.c:106 (discriminator 9))
[ 1313.076679][    C0]  ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3))
[ 1313.076834][    C0]  entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130)
[ 1313.077124][    C0] RIP: 0033:0x7f71d76a522e
[ 1313.077277][    C0] Code: 4d 89 d8 e8 94 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 <c9> c3 83 e2 39 83 fa 08 75 e7 e8 03 ff ff ff 0f 1f 00 f3 0f 1e fa
All code
========
   0:	4d 89 d8             	mov    %r11,%r8
   3:	e8 94 bd 00 00       	call   0xbd9c
   8:	4c 8b 5d f8          	mov    -0x8(%rbp),%r11
   c:	41 8b 93 08 03 00 00 	mov    0x308(%r11),%edx
  13:	59                   	pop    %rcx
  14:	5e                   	pop    %rsi
  15:	48 83 f8 fc          	cmp    $0xfffffffffffffffc,%rax
  19:	74 11                	je     0x2c
  1b:	c9                   	leave
  1c:	c3                   	ret
  1d:	0f 1f 80 00 00 00 00 	nopl   0x0(%rax)
  24:	48 8b 45 10          	mov    0x10(%rbp),%rax
  28:	0f 05                	syscall
  2a:*	c9                   	leave		<-- trapping instruction
  2b:	c3                   	ret
  2c:	83 e2 39             	and    $0x39,%edx
  2f:	83 fa 08             	cmp    $0x8,%edx
  32:	75 e7                	jne    0x1b
  34:	e8 03 ff ff ff       	call   0xffffffffffffff3c
  39:	0f 1f 00             	nopl   (%rax)
  3c:	f3 0f 1e fa          	endbr64

Code starting with the faulting instruction
===========================================
   0:	c9                   	leave
   1:	c3                   	ret
   2:	83 e2 39             	and    $0x39,%edx
   5:	83 fa 08             	cmp    $0x8,%edx
   8:	75 e7                	jne    0xfffffffffffffff1
   a:	e8 03 ff ff ff       	call   0xffffffffffffff12
   f:	0f 1f 00             	nopl   (%rax)
  12:	f3 0f 1e fa          	endbr64
[ 1313.077930][    C0] RSP: 002b:00007fff0a17a500 EFLAGS: 00000202 ORIG_RAX: 000000000000002c
[ 1313.078154][    C0] RAX: ffffffffffffffda RBX: 000055d728e5a0a0 RCX: 00007f71d76a522e
[ 1313.078481][    C0] RDX: 000000000000119c RSI: 000055d728e5a0a4 RDI: 0000000000000005
[ 1313.078712][    C0] RBP: 00007fff0a17a510 R08: 000055d728e6c2b4 R09: 000000000000001c
[ 1313.078937][    C0] R10: 0000000000000000 R11: 0000000000000202 R12: 000055d728e5a0a4
[ 1313.079268][    C0] R13: 000000000000119c R14: 00007fff0a17b800 R15: 000055d728e5a0a0
| [ 1326.768034][T31419] ------------[ cut here ]------------
| [ 1326.768326][T31419] WARNING: ./include/linux/skbuff.h:3239 at esp6_output_head+0x1339/0x1e40, CPU#2: ping6/31419
| [ 1326.768816][T31419] Modules linked in: xfrm_user openvswitch psample nf_nat nf_conntrack nf_defrag_ipv6 nf_defrag_ipv4 nsh geneve vxlan act_csum act_pedit cls_flower sch_prio ip6t_REJECT nf_reject_ipv6 nft_compat nf_tables
| [ 1326.769860][T31419] Tainted: [W]=WARN
[ 1326.770014][T31419] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011
[ 1326.770231][T31419] RIP: 0010:esp6_output_head (./include/linux/skbuff.h:3239 (discriminator 3) ./include/linux/skbuff.h:3235 (discriminator 3) net/ipv6/esp6.c:351 (discriminator 3) net/ipv6/esp6.c:420 (discriminator 3) net/ipv6/esp6.c:445 (discriminator 3))
[ 1326.770460][T31419] Code: 38 d0 7c 08 84 d2 0f 85 ef 03 00 00 8b 83 bc 00 00 00 41 b8 01 00 00 00 49 01 c7 e9 ad f3 ff ff 90 0f 0b 90 e9 5a f3 ff ff 90 <0f> 0b 90 e9 7b ef ff ff 90 0f 0b 90 e9 17 ef ff ff 48 b8 00 00 00
All code
========
   0:	38 d0                	cmp    %dl,%al
   2:	7c 08                	jl     0xc
   4:	84 d2                	test   %dl,%dl
   6:	0f 85 ef 03 00 00    	jne    0x3fb
   c:	8b 83 bc 00 00 00    	mov    0xbc(%rbx),%eax
  12:	41 b8 01 00 00 00    	mov    $0x1,%r8d
  18:	49 01 c7             	add    %rax,%r15
  1b:	e9 ad f3 ff ff       	jmp    0xfffffffffffff3cd
  20:	90                   	nop
  21:	0f 0b                	ud2
  23:	90                   	nop
  24:	e9 5a f3 ff ff       	jmp    0xfffffffffffff383
  29:	90                   	nop
  2a:*	0f 0b                	ud2		<-- trapping instruction
  2c:	90                   	nop
  2d:	e9 7b ef ff ff       	jmp    0xffffffffffffefad
  32:	90                   	nop
  33:	0f 0b                	ud2
  35:	90                   	nop
  36:	e9 17 ef ff ff       	jmp    0xffffffffffffef52
  3b:	48                   	rex.W
  3c:	b8                   	.byte 0xb8
  3d:	00 00                	add    %al,(%rax)
	...

Code starting with the faulting instruction
===========================================
   0:	0f 0b                	ud2
   2:	90                   	nop
   3:	e9 7b ef ff ff       	jmp    0xffffffffffffef83
   8:	90                   	nop
   9:	0f 0b                	ud2
   b:	90                   	nop
   c:	e9 17 ef ff ff       	jmp    0xffffffffffffef28
  11:	48                   	rex.W
  12:	b8                   	.byte 0xb8
  13:	00 00                	add    %al,(%rax)
	...
[ 1326.771023][T31419] RSP: 0018:ffa0000001146d20 EFLAGS: 00010286
[ 1326.771241][T31419] RAX: 000000000000028c RBX: ff1100001da8c740 RCX: ff1100001da8c808
[ 1326.771490][T31419] RDX: dffffc0000000000 RSI: 1fe2200003b51902 RDI: ff1100001da8c810
[ 1326.771759][T31419] RBP: 1ff4000000228db2 R08: 00000000ffffffa1 R09: 0000000000000000
[ 1326.772009][T31419] R10: 0000000000000002 R11: 0000000000000001 R12: 0000000000000014
[ 1326.772261][T31419] R13: ffa0000001146e80 R14: ff11000027688040 R15: ffffffffffffffe8
[ 1326.772513][T31419] FS:  00007f99a89884c0(0000) GS:ff110000ba9d4000(0000) knlGS:0000000000000000
[ 1326.772820][T31419] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1326.773038][T31419] CR2: 0000558d77ada0a8 CR3: 000000000b4f9006 CR4: 0000000000771ef0
[ 1326.773290][T31419] PKRU: 55555554
[ 1326.773440][T31419] Call Trace:
[ 1326.773589][T31419]  <TASK>
[ 1326.773723][T31419]  ? mark_lock_irq (./arch/x86/include/asm/bitops.h:222 ./arch/x86/include/asm/bitops.h:233 ./include/asm-generic/bitops/instrumented-non-atomic.h:142 kernel/locking/lockdep.c:234 kernel/locking/lockdep.c:4054 kernel/locking/lockdep.c:4267)
[ 1326.773911][T31419]  ? mark_usage (kernel/locking/lockdep.c:4674 (discriminator 1))
[ 1326.774098][T31419]  ? __lock_acquire (kernel/locking/lockdep.c:5237)
[ 1326.774282][T31419]  ? esp6_output_tail (net/ipv6/esp6.c:436)
[ 1326.774466][T31419]  ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 (discriminator 2) kernel/locking/lockdep.c:5870 (discriminator 2))
[ 1326.774648][T31419]  ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1))
[ 1326.774852][T31419]  esp6_output (net/ipv6/esp6.c:683 (discriminator 1))
[ 1326.775036][T31419]  ? __lock_release.isra.0 (kernel/locking/lockdep.c:5536)
[ 1326.775221][T31419]  ? esp6_output_head (net/ipv6/esp6.c:650)
[ 1326.775406][T31419]  ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1))
[ 1326.775591][T31419]  ? mark_held_locks (kernel/locking/lockdep.c:4325 (discriminator 1))
[ 1326.775793][T31419]  ? lockdep_hardirqs_on_prepare.part.0 (kernel/locking/lockdep.c:470 (discriminator 11) kernel/locking/lockdep.c:4411 (discriminator 11))
[ 1326.776011][T31419]  xfrm_output_one (net/xfrm/xfrm_output.c:554)
[ 1326.776198][T31419]  xfrm_output_resume (net/xfrm/xfrm_output.c:589 (discriminator 3))
[ 1326.776383][T31419]  ? __kasan_slab_free (mm/kasan/common.c:287)
[ 1326.776567][T31419]  ? kmem_cache_free (mm/slub.c:6165 (discriminator 3) mm/slub.c:6295 (discriminator 3))
[ 1326.776772][T31419]  ? xfrm_output_one (net/xfrm/xfrm_output.c:586)
[ 1326.776965][T31419]  ? mark_usage (kernel/locking/lockdep.c:4674 (discriminator 1))
[ 1326.777155][T31419]  ? xfrm_bundle_lookup.constprop.0 (net/xfrm/xfrm_policy.c:3106)
[ 1326.777370][T31419]  ? __lock_acquire (kernel/locking/lockdep.c:5237)
[ 1326.777554][T31419]  ? __asan_memset (mm/kasan/shadow.c:84 (discriminator 2))
[ 1326.777759][T31419]  ? xfrm_output (net/xfrm/xfrm_output.c:787 (discriminator 1))
[ 1326.777946][T31419]  __xfrm6_output (net/ipv6/xfrm6_output.c:62)
[ 1326.778131][T31419]  ? nf_hook.constprop.0 (net/ipv4/ip_forward.c:66)
[ 1326.778313][T31419]  ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1))
[ 1326.778499][T31419]  ? __lock_release.isra.0 (kernel/locking/lockdep.c:5536)
[ 1326.778682][T31419]  ? dst_release (./include/linux/rcuref.h:174 (discriminator 4) net/core/dst.c:168 (discriminator 4))
[ 1326.778888][T31419]  vti6_xmit (net/ipv6/ip6_vti.c:447)
[ 1326.779040][T31419]  ? kmem_cache_free (mm/slub.c:6165 (discriminator 3) mm/slub.c:6295 (discriminator 3))
[ 1326.779225][T31419]  vti6_tnl_xmit (net/ipv6/ip6_vti.c:581)
[ 1326.779408][T31419]  ? validate_chain (kernel/locking/lockdep.c:3801 (discriminator 3) kernel/locking/lockdep.c:3821 (discriminator 3) kernel/locking/lockdep.c:3876 (discriminator 3))
[ 1326.779593][T31419]  ? vti6_xmit (net/ipv6/ip6_vti.c:550)
[ 1326.779800][T31419]  dev_hard_start_xmit (./include/linux/netdevice.h:5343 ./include/linux/netdevice.h:5352 net/core/dev.c:3888 net/core/dev.c:3904)
[ 1326.779991][T31419]  __dev_queue_xmit (./include/linux/netdevice.h:3619 net/core/dev.c:4871)
[ 1326.780175][T31419]  ? __lock_acquire (kernel/locking/lockdep.c:5237)
[ 1326.780360][T31419]  ? netdev_core_pick_tx (net/core/dev.c:4767)
[ 1326.780544][T31419]  ? __lock_release.isra.0 (kernel/locking/lockdep.c:5536)
[ 1326.780742][T31419]  ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 3) kernel/rcu/tree.c:752 (discriminator 3))
[ 1326.780928][T31419]  ? mark_held_locks (kernel/locking/lockdep.c:4325 (discriminator 1))
[ 1326.781113][T31419]  ? lockdep_hardirqs_on (kernel/locking/lockdep.c:4473)
[ 1326.781298][T31419]  ? neigh_connected_output (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 ./include/linux/seqlock.h:75 ./include/linux/seqlock.h:838 net/core/neighbour.c:1642)
[ 1326.781481][T31419]  ? ip6_finish_output2 (net/ipv6/ip6_output.c:61)
[ 1326.781664][T31419]  ? ___neigh_lookup_noref.constprop.0 (./include/net/neighbour.h:317 (discriminator 3))
[ 1326.781898][T31419]  ip6_finish_output2 (net/ipv6/ip6_output.c:61)
[ 1326.782081][T31419]  ? __lock_acquire (kernel/locking/lockdep.c:5237)
[ 1326.782264][T31419]  ? move_pfn_range_to_zone (mm/memory_hotplug.c:759)
[ 1326.782451][T31419]  ? ip6_xmit (net/ipv6/ip6_output.c:61)
[ 1326.782636][T31419]  ? ip6_fragment (./include/linux/rcupdate.h:300 (discriminator 2) ./include/linux/rcupdate.h:838 (discriminator 2) net/ipv6/ip6_output.c:982 (discriminator 2))
[ 1326.782838][T31419]  ? __asan_memcpy (mm/kasan/shadow.c:105 (discriminator 3))
[ 1326.783025][T31419]  ? ip6_fraglist_prepare (net/ipv6/ip6_output.c:773)
[ 1326.783209][T31419]  ? lock_acquire (./include/trace/events/lock.h:24 (discriminator 24) kernel/locking/lockdep.c:5831 (discriminator 24))
[ 1326.783391][T31419]  ? ip6_copy_metadata (./arch/x86/include/asm/atomic.h:79 (discriminator 2) ./include/linux/atomic/atomic-arch-fallback.h:2401 (discriminator 2) ./include/linux/atomic/atomic-instrumented.h:1476 (discriminator 2) ./include/linux/rcuref.h:87 (discriminator 2) ./include/net/dst.h:247 (discriminator 2) ./include/net/dst.h:261 (discriminator 2) net/ipv6/ip6_output.c:705 (discriminator 2))
[ 1326.783575][T31419]  ip6_fragment (net/ipv6/ip6_output.c:991)
[ 1326.783778][T31419]  ? ip6_xmit (net/ipv6/ip6_output.c:61)
[ 1326.783970][T31419]  ? mark_usage (kernel/locking/lockdep.c:4674 (discriminator 1))
[ 1326.784155][T31419]  ? ip6_finish_output2 (net/ipv6/ip6_output.c:884)
[ 1326.784338][T31419]  ? flow_rule_alloc (net/core/flow_offload.c:23 (discriminator 2))
[ 1326.784524][T31419]  ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 (discriminator 2) kernel/locking/lockdep.c:5870 (discriminator 2))
[ 1326.784723][T31419]  ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1))
[ 1326.784912][T31419]  ? ip6_mtu (./include/linux/rcupdate.h:310 (discriminator 2) ./include/linux/rcupdate.h:869 (discriminator 2) ./include/net/ip6_route.h:382 (discriminator 2) net/ipv6/route.c:3281 (discriminator 2))
[ 1326.785065][T31419]  ip6_finish_output (net/ipv6/ip6_output.c:206 net/ipv6/ip6_output.c:219)
[ 1326.785251][T31419]  ip6_output (./include/linux/netfilter.h:307 net/ipv6/ip6_output.c:246)
[ 1326.785404][T31419]  ? ip6_finish_output (net/ipv6/ip6_output.c:227)
[ 1326.785588][T31419]  ? l3mdev_l3_out.constprop.0 (./include/net/l3mdev.h:225)
[ 1326.785795][T31419]  ip6_send_skb (net/ipv6/ip6_output.c:2013)
[ 1326.785980][T31419]  rawv6_push_pending_frames (net/ipv6/raw.c:514)
[ 1326.786164][T31419]  ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 (discriminator 5) ./include/linux/atomic/atomic-arch-fallback.h:2170 (discriminator 5) ./include/linux/atomic/atomic-instrumented.h:1302 (discriminator 5) ./include/asm-generic/qspinlock.h:111 (discriminator 5) kernel/locking/spinlock_debug.c:116 (discriminator 5))
[ 1326.786348][T31419]  ? ip6_flush_pending_frames (net/ipv6/ip6_output.c:1455)
[ 1326.786532][T31419]  ? rawv6_setsockopt (net/ipv6/raw.c:514)
[ 1326.786736][T31419]  ? raw6_destroy (net/ipv6/raw.c:713)
[ 1326.786923][T31419]  rawv6_sendmsg (net/ipv6/raw.c:920)
[ 1326.787112][T31419]  ? rawv6_send_hdrinc (net/ipv6/raw.c:743)
[ 1326.787293][T31419]  ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 (discriminator 2) kernel/locking/lockdep.c:5870 (discriminator 2))
[ 1326.787484][T31419]  ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 (discriminator 2) kernel/locking/lockdep.c:5870 (discriminator 2))
[ 1326.787669][T31419]  ? __might_fault (mm/memory.c:7230 (discriminator 6))
[ 1326.787872][T31419]  ? __sys_sendto (net/socket.c:787 (discriminator 4) net/socket.c:802 (discriminator 4) net/socket.c:2265 (discriminator 4))
[ 1326.788060][T31419]  __sys_sendto (net/socket.c:787 (discriminator 4) net/socket.c:802 (discriminator 4) net/socket.c:2265 (discriminator 4))
[ 1326.788244][T31419]  ? __ia32_sys_getpeername (net/socket.c:2232)
[ 1326.788436][T31419]  ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1480 arch/x86/mm/fault.c:1527)
[ 1326.788622][T31419]  __x64_sys_sendto (net/socket.c:2272 (discriminator 1) net/socket.c:2268 (discriminator 1) net/socket.c:2268 (discriminator 1))
[ 1326.788828][T31419]  ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40 (discriminator 24))
[ 1326.789045][T31419]  ? lockdep_hardirqs_on (kernel/locking/lockdep.c:4473)
[ 1326.789226][T31419]  ? do_syscall_64 (./arch/x86/include/asm/irqflags.h:42 ./arch/x86/include/asm/irqflags.h:119 ./include/linux/entry-common.h:187 arch/x86/entry/syscall_64.c:89)
[ 1326.789414][T31419]  do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1))
[ 1326.789597][T31419]  ? trace_hardirqs_off (kernel/trace/trace_preemptirq.c:106 (discriminator 9))
[ 1326.789796][T31419]  ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3))
[ 1326.789981][T31419]  entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130)
[ 1326.790199][T31419] RIP: 0033:0x7f99a8ba722e
[ 1326.790388][T31419] Code: 4d 89 d8 e8 94 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 <c9> c3 83 e2 39 83 fa 08 75 e7 e8 03 ff ff ff 0f 1f 00 f3 0f 1e fa
All code
========
   0:	4d 89 d8             	mov    %r11,%r8
   3:	e8 94 bd 00 00       	call   0xbd9c
   8:	4c 8b 5d f8          	mov    -0x8(%rbp),%r11
   c:	41 8b 93 08 03 00 00 	mov    0x308(%r11),%edx
  13:	59                   	pop    %rcx
  14:	5e                   	pop    %rsi
  15:	48 83 f8 fc          	cmp    $0xfffffffffffffffc,%rax
  19:	74 11                	je     0x2c
  1b:	c9                   	leave
  1c:	c3                   	ret
  1d:	0f 1f 80 00 00 00 00 	nopl   0x0(%rax)
  24:	48 8b 45 10          	mov    0x10(%rbp),%rax
  28:	0f 05                	syscall
  2a:*	c9                   	leave		<-- trapping instruction
  2b:	c3                   	ret
  2c:	83 e2 39             	and    $0x39,%edx
  2f:	83 fa 08             	cmp    $0x8,%edx
  32:	75 e7                	jne    0x1b
  34:	e8 03 ff ff ff       	call   0xffffffffffffff3c
  39:	0f 1f 00             	nopl   (%rax)
  3c:	f3 0f 1e fa          	endbr64

Code starting with the faulting instruction
===========================================
   0:	c9                   	leave
   1:	c3                   	ret
   2:	83 e2 39             	and    $0x39,%edx
   5:	83 fa 08             	cmp    $0x8,%edx
   8:	75 e7                	jne    0xfffffffffffffff1
   a:	e8 03 ff ff ff       	call   0xffffffffffffff12
   f:	0f 1f 00             	nopl   (%rax)
  12:	f3 0f 1e fa          	endbr64
[ 1326.790930][T31419] RSP: 002b:00007ffe3c00ce80 EFLAGS: 00000202 ORIG_RAX: 000000000000002c
[ 1326.791182][T31419] RAX: ffffffffffffffda RBX: 0000558d77aca0a0 RCX: 00007f99a8ba722e
[ 1326.791431][T31419] RDX: 000000000000ea68 RSI: 0000558d77aca0a4 RDI: 0000000000000005
[ 1326.791680][T31419] RBP: 00007ffe3c00ce90 R08: 0000558d77adc2b4 R09: 000000000000001c
[ 1326.791950][T31419] R10: 0000000000000000 R11: 0000000000000202 R12: 0000558d77aca0a4
[ 1326.792200][T31419] R13: 000000000000ea68 R14: 00007ffe3c00e180 R15: 0000558d77aca0a0
| [ 1329.912575][T31549] ------------[ cut here ]------------
| [ 1329.913241][T31549] WARNING: ./include/linux/skbuff.h:3239 at esp_output_head+0x14ae/0x2040, CPU#0: ping/31549
| [ 1329.913516][T31549] Modules linked in: xfrm_user openvswitch psample nf_nat nf_conntrack nf_defrag_ipv6 nf_defrag_ipv4 nsh geneve vxlan act_csum act_pedit cls_flower sch_prio ip6t_REJECT nf_reject_ipv6 nft_compat nf_tables
| [ 1329.914413][T31549] Tainted: [W]=WARN
[ 1329.914511][T31549] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011
[ 1329.914671][T31549] RIP: 0010:esp_output_head (./include/linux/skbuff.h:3239 (discriminator 3) ./include/linux/skbuff.h:3235 (discriminator 3) net/ipv4/esp4.c:316 (discriminator 3) net/ipv4/esp4.c:390 (discriminator 3) net/ipv4/esp4.c:416 (discriminator 3))
[ 1329.914818][T31549] Code: 06 00 00 8b 83 bc 00 00 00 41 b8 01 00 00 00 49 01 c7 e9 ad f2 ff ff 90 0f 0b 90 e9 5a f2 ff ff 90 0f 0b 90 e9 d6 ee ff ff 90 <0f> 0b 90 e9 2b ef ff ff 48 b8 00 00 00 00 00 fc ff df 4c 89 ca 48
All code
========
   0:	06                   	(bad)
   1:	00 00                	add    %al,(%rax)
   3:	8b 83 bc 00 00 00    	mov    0xbc(%rbx),%eax
   9:	41 b8 01 00 00 00    	mov    $0x1,%r8d
   f:	49 01 c7             	add    %rax,%r15
  12:	e9 ad f2 ff ff       	jmp    0xfffffffffffff2c4
  17:	90                   	nop
  18:	0f 0b                	ud2
  1a:	90                   	nop
  1b:	e9 5a f2 ff ff       	jmp    0xfffffffffffff27a
  20:	90                   	nop
  21:	0f 0b                	ud2
  23:	90                   	nop
  24:	e9 d6 ee ff ff       	jmp    0xffffffffffffeeff
  29:	90                   	nop
  2a:*	0f 0b                	ud2		<-- trapping instruction
  2c:	90                   	nop
  2d:	e9 2b ef ff ff       	jmp    0xffffffffffffef5d
  32:	48 b8 00 00 00 00 00 	movabs $0xdffffc0000000000,%rax
  39:	fc ff df 
  3c:	4c 89 ca             	mov    %r9,%rdx
  3f:	48                   	rex.W

Code starting with the faulting instruction
===========================================
   0:	0f 0b                	ud2
   2:	90                   	nop
   3:	e9 2b ef ff ff       	jmp    0xffffffffffffef33
   8:	48 b8 00 00 00 00 00 	movabs $0xdffffc0000000000,%rax
   f:	fc ff df 
  12:	4c 89 ca             	mov    %r9,%rdx
  15:	48                   	rex.W
[ 1329.915285][T31549] RSP: 0018:ffa00000014b71f8 EFLAGS: 00010286
[ 1329.915447][T31549] RAX: ffffffffffffffe8 RBX: ff1100001613e740 RCX: ff1100001613e808
[ 1329.915639][T31549] RDX: 00000000000005b0 RSI: dffffc0000000000 RDI: ff1100001613e810
[ 1329.915843][T31549] RBP: 1ff4000000296e4d R08: 1fe2200002c27d02 R09: 0000000000000000
[ 1329.916036][T31549] R10: 0000000000000000 R11: 0000000000000001 R12: 0000000000000012
[ 1329.916229][T31549] R13: ffa00000014b7358 R14: ff11000027688dc0 R15: 0000000000000000
[ 1329.916424][T31549] FS:  00007fa2595764c0(0000) GS:ff110000ba8d4000(0000) knlGS:0000000000000000
[ 1329.916647][T31549] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1329.916826][T31549] CR2: 00005598070c40a8 CR3: 000000002c603005 CR4: 0000000000771ef0
[ 1329.917128][T31549] PKRU: 55555554
[ 1329.917224][T31549] Call Trace:
[ 1329.917320][T31549]  <TASK>
[ 1329.917386][T31549]  ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 (discriminator 2) kernel/locking/lockdep.c:5870 (discriminator 2))
[ 1329.917518][T31549]  ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1))
[ 1329.917644][T31549]  ? mark_usage (kernel/locking/lockdep.c:4674 (discriminator 1))
[ 1329.917787][T31549]  ? __lock_acquire (kernel/locking/lockdep.c:5237)
[ 1329.917915][T31549]  ? esp4_err (net/ipv4/esp4.c:406)
[ 1329.918012][T31549]  ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 (discriminator 2) kernel/locking/lockdep.c:5870 (discriminator 2))
[ 1329.918139][T31549]  ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1))
[ 1329.918267][T31549]  esp_output (net/ipv4/esp4.c:651 (discriminator 1))
[ 1329.918362][T31549]  ? __lock_release.isra.0 (kernel/locking/lockdep.c:5536)
[ 1329.918490][T31549]  ? esp_output_head (net/ipv4/esp4.c:618)
[ 1329.918618][T31549]  ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1))
[ 1329.918754][T31549]  ? mark_held_locks (kernel/locking/lockdep.c:4325 (discriminator 1))
[ 1329.918881][T31549]  ? lockdep_hardirqs_on_prepare.part.0 (kernel/locking/lockdep.c:470 (discriminator 11) kernel/locking/lockdep.c:4411 (discriminator 11))
[ 1329.919040][T31549]  xfrm_output_one (net/xfrm/xfrm_output.c:554)
[ 1329.919169][T31549]  ? dst_release (./include/linux/rcuref.h:174 (discriminator 4) net/core/dst.c:168 (discriminator 4))
[ 1329.919296][T31549]  xfrm_output_resume (net/xfrm/xfrm_output.c:589 (discriminator 3))
[ 1329.919423][T31549]  ? xfrm4_transport_finish (./include/linux/netfilter.h:227)
[ 1329.919552][T31549]  ? xfrm_output_one (net/xfrm/xfrm_output.c:586)
[ 1329.919680][T31549]  ? __asan_memset (mm/kasan/shadow.c:84 (discriminator 2))
[ 1329.919815][T31549]  ? __xfrm_decode_session (net/xfrm/xfrm_policy.c:3443 net/xfrm/xfrm_policy.c:3513)
[ 1329.919943][T31549]  ? __asan_memset (mm/kasan/shadow.c:84 (discriminator 2))
[ 1329.920071][T31549]  ? xfrm_output (net/xfrm/xfrm_output.c:787 (discriminator 1))
[ 1329.920200][T31549]  vti_xmit.isra.0 (net/ipv4/ip_vti.c:176)
[ 1329.920328][T31549]  vti_tunnel_xmit (net/ipv4/ip_vti.c:307 (discriminator 1))
[ 1329.920455][T31549]  ? vti_xmit.isra.0 (net/ipv4/ip_vti.c:282)
[ 1329.920589][T31549]  dev_hard_start_xmit (./include/linux/netdevice.h:5343 ./include/linux/netdevice.h:5352 net/core/dev.c:3888 net/core/dev.c:3904)
[ 1329.920725][T31549]  ? validate_xmit_skb (net/core/dev.c:3925 net/core/dev.c:4028)
[ 1329.920854][T31549]  __dev_queue_xmit (./include/linux/netdevice.h:3619 net/core/dev.c:4871)
[ 1329.920983][T31549]  ? __lock_acquire (kernel/locking/lockdep.c:5237)
[ 1329.921113][T31549]  ? netdev_core_pick_tx (net/core/dev.c:4767)
[ 1329.921241][T31549]  ? __lock_release.isra.0 (kernel/locking/lockdep.c:5536)
[ 1329.921367][T31549]  ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 3) kernel/rcu/tree.c:752 (discriminator 3))
[ 1329.921496][T31549]  ? mark_held_locks (kernel/locking/lockdep.c:4325 (discriminator 1))
[ 1329.921626][T31549]  ? lockdep_hardirqs_on (kernel/locking/lockdep.c:4473)
[ 1329.921763][T31549]  ? neigh_connected_output (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 ./include/linux/seqlock.h:75 ./include/linux/seqlock.h:838 net/core/neighbour.c:1642)
[ 1329.921890][T31549]  ? ip_finish_output2 (./include/net/neighbour.h:556 (discriminator 3) net/ipv4/ip_output.c:237 (discriminator 3))
[ 1329.922022][T31549]  ip_finish_output2 (./include/net/neighbour.h:556 (discriminator 3) net/ipv4/ip_output.c:237 (discriminator 3))
[ 1329.922150][T31549]  ? ip_dst_mtu_maybe_forward (./include/net/ip.h:469)
[ 1329.922277][T31549]  ? ip4_dst_hoplimit (net/ipv4/ip_output.c:201)
[ 1329.922406][T31549]  ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 3) kernel/rcu/tree.c:752 (discriminator 3))
[ 1329.922537][T31549]  ip_output (./include/linux/netfilter.h:307 net/ipv4/ip_output.c:438)
[ 1329.922633][T31549]  ? ip_finish_output (net/ipv4/ip_output.c:429)
[ 1329.922772][T31549]  ? __ip_make_skb (net/ipv4/ip_output.c:1389 net/ipv4/ip_output.c:1499)
[ 1329.922902][T31549]  ip_push_pending_frames (net/ipv4/ip_output.c:1509 net/ipv4/ip_output.c:1528)
[ 1329.923029][T31549]  raw_sendmsg (net/ipv4/raw.c:660)
[ 1329.923160][T31549]  ? raw_send_hdrinc (net/ipv4/raw.c:484)
[ 1329.923286][T31549]  ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 (discriminator 2) kernel/locking/lockdep.c:5870 (discriminator 2))
[ 1329.923415][T31549]  ? find_held_lock (kernel/locking/lockdep.c:5350 (discriminator 1))
[ 1329.923543][T31549]  ? rcu_lockdep_current_cpu_online (kernel/rcu/tree.c:4040 (discriminator 4) kernel/rcu/tree.c:4032 (discriminator 4))
[ 1329.923712][T31549]  ? __lock_release.isra.0 (kernel/locking/lockdep.c:5536)
[ 1329.923845][T31549]  ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 (discriminator 2) kernel/locking/lockdep.c:5870 (discriminator 2))
[ 1329.923973][T31549]  ? __might_fault (mm/memory.c:7230 (discriminator 6))
[ 1329.924104][T31549]  ? __might_fault (mm/memory.c:7230 (discriminator 6))
[ 1329.924231][T31549]  ? __might_fault (mm/memory.c:7230 (discriminator 6))
[ 1329.924361][T31549]  __sys_sendto (net/socket.c:787 (discriminator 4) net/socket.c:802 (discriminator 4) net/socket.c:2265 (discriminator 4))
[ 1329.924491][T31549]  ? __ia32_sys_getpeername (net/socket.c:2232)
[ 1329.924627][T31549]  ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1480 arch/x86/mm/fault.c:1527)
[ 1329.924766][T31549]  __x64_sys_sendto (net/socket.c:2272 (discriminator 1) net/socket.c:2268 (discriminator 1) net/socket.c:2268 (discriminator 1))
[ 1329.924894][T31549]  ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40 (discriminator 24))
[ 1329.925055][T31549]  ? lockdep_hardirqs_on (kernel/locking/lockdep.c:4473)
[ 1329.925181][T31549]  ? do_syscall_64 (./arch/x86/include/asm/irqflags.h:42 ./arch/x86/include/asm/irqflags.h:119 ./include/linux/entry-common.h:187 arch/x86/entry/syscall_64.c:89)
[ 1329.925309][T31549]  do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1))
[ 1329.925438][T31549]  ? trace_hardirqs_off (kernel/trace/trace_preemptirq.c:106 (discriminator 9))
[ 1329.925565][T31549]  ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3))
[ 1329.925694][T31549]  entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130)
[ 1329.925863][T31549] RIP: 0033:0x7fa25979522e
[ 1329.925999][T31549] Code: 4d 89 d8 e8 94 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 <c9> c3 83 e2 39 83 fa 08 75 e7 e8 03 ff ff ff 0f 1f 00 f3 0f 1e fa
All code
========
   0:	4d 89 d8             	mov    %r11,%r8
   3:	e8 94 bd 00 00       	call   0xbd9c
   8:	4c 8b 5d f8          	mov    -0x8(%rbp),%r11
   c:	41 8b 93 08 03 00 00 	mov    0x308(%r11),%edx
  13:	59                   	pop    %rcx
  14:	5e                   	pop    %rsi
  15:	48 83 f8 fc          	cmp    $0xfffffffffffffffc,%rax
  19:	74 11                	je     0x2c
  1b:	c9                   	leave
  1c:	c3                   	ret
  1d:	0f 1f 80 00 00 00 00 	nopl   0x0(%rax)
  24:	48 8b 45 10          	mov    0x10(%rbp),%rax
  28:	0f 05                	syscall
  2a:*	c9                   	leave		<-- trapping instruction
  2b:	c3                   	ret
  2c:	83 e2 39             	and    $0x39,%edx
  2f:	83 fa 08             	cmp    $0x8,%edx
  32:	75 e7                	jne    0x1b
  34:	e8 03 ff ff ff       	call   0xffffffffffffff3c
  39:	0f 1f 00             	nopl   (%rax)
  3c:	f3 0f 1e fa          	endbr64

Code starting with the faulting instruction
===========================================
   0:	c9                   	leave
   1:	c3                   	ret
   2:	83 e2 39             	and    $0x39,%edx
   5:	83 fa 08             	cmp    $0x8,%edx
   8:	75 e7                	jne    0xfffffffffffffff1
   a:	e8 03 ff ff ff       	call   0xffffffffffffff12
   f:	0f 1f 00             	nopl   (%rax)
  12:	f3 0f 1e fa          	endbr64
[ 1329.926461][T31549] RSP: 002b:00007ffc3b77d140 EFLAGS: 00000202 ORIG_RAX: 000000000000002c
[ 1329.926656][T31549] RAX: ffffffffffffffda RBX: 000000000000058a RCX: 00007fa25979522e
[ 1329.926857][T31549] RDX: 000000000000058a RSI: 00005598070b40a4 RDI: 0000000000000005
[ 1329.927048][T31549] RBP: 00007ffc3b77d150 R08: 00005598070c6320 R09: 0000000000000010
[ 1329.927240][T31549] R10: 0000000000000000 R11: 0000000000000202 R12: 431bde82d7b634db


Finger prints:
__udp6_lib_err_encap:udpv6_err:icmpv6_notify:icmpv6_rcv:ip6_protocol_deliver_rcu
__udp4_lib_err_encap:udp_err:icmp_unreach:icmp_rcv:ip_protocol_deliver_rcu
rt6_multipath_hash:icmp6_send:ip6ip6_err:tunnel6_err:icmpv6_notify
esp6_output_head:esp6_output:xfrm_output_one:xfrm_output_resume:__xfrm6_output
esp_output_head:esp_output:xfrm_output_one:xfrm_output_resume:vti_tunnel_xmit