======================================
| [  721.896206][T25746] ==================================================================
| [  721.896365][T25746] BUG: KASAN: slab-use-after-free in ip6_pol_route (net/ipv6/route.c:1446 (discriminator 1) net/ipv6/route.c:2316 (discriminator 1))
| [  721.896488][T25746] Read of size 4 at addr ff1100001b1d4298 by task cmsg_sender/25746
| [  721.896602][T25746]
[  721.896649][T25746] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011
[  721.896651][T25746] Call Trace:
[  721.896652][T25746]  <TASK>
[  721.896654][T25746]  dump_stack_lvl (lib/dump_stack.c:122)
[  721.896660][T25746]  print_address_description.constprop.0 (mm/kasan/report.c:379 (discriminator 1))
[  721.896664][T25746]  print_report (mm/kasan/report.c:483)
[  721.896666][T25746]  ? __virt_addr_valid (./include/linux/rcupdate.h:937 (discriminator 1) ./include/linux/mmzone.h:2197 (discriminator 1) arch/x86/mm/physaddr.c:54 (discriminator 1))
[  721.896670][T25746]  ? __virt_addr_valid (./include/linux/rcupdate.h:963 (discriminator 4) ./include/linux/mmzone.h:2207 (discriminator 4) arch/x86/mm/physaddr.c:54 (discriminator 4))
[  721.896672][T25746]  kasan_report (mm/kasan/report.c:597)
[  721.896675][T25746]  ? ip6_pol_route (net/ipv6/route.c:1446 (discriminator 1) net/ipv6/route.c:2316 (discriminator 1))
[  721.896677][T25746]  ? ip6_pol_route (net/ipv6/route.c:1446 (discriminator 1) net/ipv6/route.c:2316 (discriminator 1))
[  721.896679][T25746]  ip6_pol_route (net/ipv6/route.c:1446 (discriminator 1) net/ipv6/route.c:2316 (discriminator 1))
[  721.896681][T25746]  ? mark_usage (kernel/locking/lockdep.c:4674 (discriminator 1))
[  721.896684][T25746]  ? ip6_pol_route_lookup (net/ipv6/route.c:2268)
[  721.896687][T25746]  ? mark_usage (kernel/locking/lockdep.c:4674 (discriminator 1))
[  721.896689][T25746]  ? rcu_lockdep_current_cpu_online (kernel/rcu/tree.c:4040 (discriminator 4) kernel/rcu/tree.c:4032 (discriminator 4))
[  721.896692][T25746]  ? rcu_read_lock_any_held (kernel/rcu/update.c:386 (discriminator 1) kernel/rcu/update.c:380 (discriminator 1))
[  721.896694][T25746]  ? validate_chain (kernel/locking/lockdep.c:3801 (discriminator 3) kernel/locking/lockdep.c:3821 (discriminator 3) kernel/locking/lockdep.c:3876 (discriminator 3))
[  721.896696][T25746]  ? ip6_pol_route_input (net/ipv6/route.c:2665)
[  721.896698][T25746]  fib6_rule_lookup (net/ipv6/fib6_rules.c:130)
[  721.896701][T25746]  ? mark_usage (kernel/locking/lockdep.c:4674 (discriminator 1))
[  721.896703][T25746]  ? fib6_lookup (net/ipv6/fib6_rules.c:102)
[  721.896706][T25746]  ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 (discriminator 2) kernel/locking/lockdep.c:5870 (discriminator 2))
[  721.896707][T25746]  ? ip6_route_output_flags (./include/linux/rcupdate.h:300 (discriminator 2) ./include/linux/rcupdate.h:838 (discriminator 2) net/ipv6/route.c:2710 (discriminator 2))
[  721.896709][T25746]  ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 3) kernel/rcu/tree.c:752 (discriminator 3))
[  721.896711][T25746]  ? lock_acquire (./include/trace/events/lock.h:24 (discriminator 24) kernel/locking/lockdep.c:5831 (discriminator 24))
[  721.896713][T25746]  ip6_route_output_flags (net/ipv6/route.c:2699 net/ipv6/route.c:2711)
[  721.896715][T25746]  ip6_dst_lookup_tail.constprop.0 (net/ipv6/ip6_output.c:1155 (discriminator 1))
[  721.896717][T25746]  ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 (discriminator 2) kernel/locking/lockdep.c:5870 (discriminator 2))
[  721.896719][T25746]  ip6_dst_lookup_flow (net/ipv6/ip6_output.c:1289)
[  721.896721][T25746]  ? ip6_dst_lookup_tail.constprop.0 (net/ipv6/ip6_output.c:1282)
[  721.896723][T25746]  ? sk_dst_check (net/core/sock.c:622)
[  721.896726][T25746]  ip6_sk_dst_lookup_flow (net/ipv6/ip6_output.c:1326 (discriminator 1))
[  721.896728][T25746]  ping_v6_sendmsg (net/ipv6/ping.c:151)
[  721.896731][T25746]  ? validate_chain (kernel/locking/lockdep.c:3801 (discriminator 3) kernel/locking/lockdep.c:3821 (discriminator 3) kernel/locking/lockdep.c:3876 (discriminator 3))
[  721.896733][T25746]  ? l3mdev_master_ifindex_by_index (./include/linux/rcupdate.h:867 (discriminator 7) ./include/net/l3mdev.h:102 (discriminator 7))
[  721.896736][T25746]  ? release_sock (net/core/sock.c:3814)
[  721.896737][T25746]  ? reacquire_held_locks (kernel/locking/lockdep.c:5385 (discriminator 2))
[  721.896739][T25746]  ? release_sock (net/core/sock.c:3814)
[  721.896740][T25746]  ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 (discriminator 2) kernel/locking/lockdep.c:5870 (discriminator 2))
[  721.896743][T25746]  ? __lock_release.isra.0 (kernel/locking/lockdep.c:5536)
[  721.896747][T25746]  ? inet_autobind (net/ipv4/af_inet.c:195)
[  721.896750][T25746]  ? inet_send_prepare (net/ipv4/af_inet.c:853)
[  721.896752][T25746]  ____sys_sendmsg (net/socket.c:787 (discriminator 4) net/socket.c:802 (discriminator 4) net/socket.c:2698 (discriminator 4))
[  721.896754][T25746]  ? copy_msghdr_from_user (net/socket.c:2638)
[  721.896756][T25746]  ? get_timestamp.constprop.0 (net/socket.c:2644)
[  721.896757][T25746]  ? move_addr_to_kernel (net/socket.c:2624)
[  721.896760][T25746]  ___sys_sendmsg (net/socket.c:2754)
[  721.896762][T25746]  ? copy_msghdr_from_user (net/socket.c:2741)
[  721.896763][T25746]  ? do_fault_around (./include/linux/rcupdate.h:310 (discriminator 2) ./include/linux/rcupdate.h:869 (discriminator 2) mm/memory.c:5760 (discriminator 2))
[  721.896767][T25746]  ? do_pte_missing (mm/memory.c:5790 mm/memory.c:5933 mm/memory.c:4477)
[  721.896770][T25746]  ? lock_vma_under_rcu (./include/linux/rcupdate.h:310 (discriminator 2) ./include/linux/rcupdate.h:869 (discriminator 2) mm/mmap_lock.c:329 (discriminator 2))
[  721.896773][T25746]  __sys_sendmsg (net/socket.c:2784 (discriminator 1))
[  721.896775][T25746]  ? __sys_sendmsg_sock (net/socket.c:2769)
[  721.896778][T25746]  ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:949 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:401 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/mmap_lock.h:196 (discriminator 4) ./include/linux/mmap_lock.h:217 (discriminator 4) ./include/linux/mmap_lock.h:264 (discriminator 4) arch/x86/mm/fault.c:1336 (discriminator 4))
[  721.896780][T25746]  ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 3) kernel/rcu/tree.c:752 (discriminator 3))
[  721.896781][T25746]  ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 3) kernel/rcu/tree.c:752 (discriminator 3))
[  721.896782][T25746]  do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1))
[  721.896785][T25746]  ? trace_hardirqs_off (kernel/trace/trace_preemptirq.c:106 (discriminator 9))
[  721.896788][T25746]  ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3))
[  721.896791][T25746]  entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130)
[  721.896793][T25746] RIP: 0033:0x7f7de834f22e
[  721.896796][T25746] Code: 4d 89 d8 e8 94 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 <c9> c3 83 e2 39 83 fa 08 75 e7 e8 03 ff ff ff 0f 1f 00 f3 0f 1e fa
All code
========
   0:	4d 89 d8             	mov    %r11,%r8
   3:	e8 94 bd 00 00       	call   0xbd9c
   8:	4c 8b 5d f8          	mov    -0x8(%rbp),%r11
   c:	41 8b 93 08 03 00 00 	mov    0x308(%r11),%edx
  13:	59                   	pop    %rcx
  14:	5e                   	pop    %rsi
  15:	48 83 f8 fc          	cmp    $0xfffffffffffffffc,%rax
  19:	74 11                	je     0x2c
  1b:	c9                   	leave
  1c:	c3                   	ret
  1d:	0f 1f 80 00 00 00 00 	nopl   0x0(%rax)
  24:	48 8b 45 10          	mov    0x10(%rbp),%rax
  28:	0f 05                	syscall
  2a:*	c9                   	leave		<-- trapping instruction
  2b:	c3                   	ret
  2c:	83 e2 39             	and    $0x39,%edx
  2f:	83 fa 08             	cmp    $0x8,%edx
  32:	75 e7                	jne    0x1b
  34:	e8 03 ff ff ff       	call   0xffffffffffffff3c
  39:	0f 1f 00             	nopl   (%rax)
  3c:	f3 0f 1e fa          	endbr64

Code starting with the faulting instruction
===========================================
   0:	c9                   	leave
   1:	c3                   	ret
   2:	83 e2 39             	and    $0x39,%edx
   5:	83 fa 08             	cmp    $0x8,%edx
   8:	75 e7                	jne    0xfffffffffffffff1
   a:	e8 03 ff ff ff       	call   0xffffffffffffff12
   f:	0f 1f 00             	nopl   (%rax)
  12:	f3 0f 1e fa          	endbr64
[  721.896798][T25746] RSP: 002b:00007ffc2e348be0 EFLAGS: 00000202 ORIG_RAX: 000000000000002e
[  721.896802][T25746] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f7de834f22e
[  721.896803][T25746] RDX: 0000000000000000 RSI: 00007ffc2e348cb0 RDI: 0000000000000005
[  721.896804][T25746] RBP: 00007ffc2e348bf0 R08: 0000000000000000 R09: 0000000000000000
[  721.896805][T25746] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000005
[  721.896805][T25746] R13: 0000000027b30010 R14: 00007f7de8521000 R15: 0000000000404e00
| [  721.908888][T25746] Disabling lock debugging due to kernel taint
| [  726.243775][T25989] Oops: general protection fault, probably for non-canonical address 0xed6d696d6d6d6d8e: 0000 [#1] SMP KASAN
| [  726.243992][T25989] KASAN: maybe wild-memory-access in range [0x6b6b6b6b6b6b6c70-0x6b6b6b6b6b6b6c77]
| [  726.244286][T25989] Tainted: [B]=BAD_PAGE
[  726.244347][T25989] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011
[  726.244444][T25989] RIP: 0010:ip6_pol_route (./include/net/net_namespace.h:419 (discriminator 7) ./include/linux/netdevice.h:2764 (discriminator 7) net/ipv6/route.c:1436 (discriminator 7) net/ipv6/route.c:1446 (discriminator 7) net/ipv6/route.c:2316 (discriminator 7))
[  726.244533][T25989] Code: 80 3c 02 00 0f 85 80 04 00 00 4c 8b 3b e8 7f 5e 40 00 48 b8 00 00 00 00 00 fc ff df 49 8d bf 08 01 00 00 48 89 fa 48 c1 ea 03 <80> 3c 02 00 0f 85 4c 04 00 00 49 8b 97 08 01 00 00 be 04 00 00 00
All code
========
   0:	80 3c 02 00          	cmpb   $0x0,(%rdx,%rax,1)
   4:	0f 85 80 04 00 00    	jne    0x48a
   a:	4c 8b 3b             	mov    (%rbx),%r15
   d:	e8 7f 5e 40 00       	call   0x405e91
  12:	48 b8 00 00 00 00 00 	movabs $0xdffffc0000000000,%rax
  19:	fc ff df 
  1c:	49 8d bf 08 01 00 00 	lea    0x108(%r15),%rdi
  23:	48 89 fa             	mov    %rdi,%rdx
  26:	48 c1 ea 03          	shr    $0x3,%rdx
  2a:*	80 3c 02 00          	cmpb   $0x0,(%rdx,%rax,1)		<-- trapping instruction
  2e:	0f 85 4c 04 00 00    	jne    0x480
  34:	49 8b 97 08 01 00 00 	mov    0x108(%r15),%rdx
  3b:	be 04 00 00 00       	mov    $0x4,%esi

Code starting with the faulting instruction
===========================================
   0:	80 3c 02 00          	cmpb   $0x0,(%rdx,%rax,1)
   4:	0f 85 4c 04 00 00    	jne    0x456
   a:	49 8b 97 08 01 00 00 	mov    0x108(%r15),%rdx
  11:	be 04 00 00 00       	mov    $0x4,%esi
[  726.244806][T25989] RSP: 0018:ffa000000278f388 EFLAGS: 00010216
[  726.244905][T25989] RAX: dffffc0000000000 RBX: ff1100001b1d4200 RCX: ffffffff92f4dee1
[  726.245023][T25989] RDX: 0d6d6d6d6d6d6d8e RSI: 0000000000000008 RDI: 6b6b6b6b6b6b6c73
[  726.245139][T25989] RBP: 1ff40000004f1e74 R08: 0000000000000000 R09: 0000000000000000
[  726.245257][T25989] R10: 0000000000000000 R11: ff110000245788c0 R12: ff110000099d0040
[  726.245372][T25989] R13: 000000006b6b6b6b R14: 0000000000000080 R15: 6b6b6b6b6b6b6b6b
[  726.245489][T25989] FS:  00007f9444672740(0000) GS:ff110000d67cc000(0000) knlGS:0000000000000000
[  726.245627][T25989] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  726.245725][T25989] CR2: 00007f944487a000 CR3: 000000001185e005 CR4: 0000000000771ef0
[  726.245839][T25989] PKRU: 55555554
[  726.245900][T25989] Call Trace:
[  726.245959][T25989]  <TASK>
[  726.246000][T25989]  ? ip6_pol_route_lookup (net/ipv6/route.c:2268)
[  726.246081][T25989]  ? unwind_next_frame (./include/linux/rcupdate.h:871 ./include/linux/rcupdate.h:1181 arch/x86/kernel/unwind_orc.c:495)
[  726.246161][T25989]  ? lock_acquire (./include/trace/events/lock.h:24 (discriminator 24) kernel/locking/lockdep.c:5831 (discriminator 24))
[  726.246244][T25989]  ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 3) kernel/rcu/tree.c:752 (discriminator 3))
[  726.246323][T25989]  ? lock_release (./include/trace/events/lock.h:69 (discriminator 24) kernel/locking/lockdep.c:5879 (discriminator 24))
[  726.246401][T25989]  ? ip6_pol_route_input (net/ipv6/route.c:2665)
[  726.246477][T25989]  __fib6_rule_action (net/ipv6/fib6_rules.c:242)
[  726.246556][T25989]  fib_rules_lookup (net/core/fib_rules.c:339)
[  726.246634][T25989]  ? fib_nl_dumprule (net/core/fib_rules.c:315)
[  726.246712][T25989]  ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 3) kernel/rcu/tree.c:752 (discriminator 3))
[  726.246788][T25989]  ? lock_release (./include/trace/events/lock.h:69 (discriminator 24) kernel/locking/lockdep.c:5879 (discriminator 24))
[  726.246866][T25989]  ? ip6_pol_route_input (net/ipv6/route.c:2665)
[  726.246943][T25989]  fib6_rule_lookup (net/ipv6/fib6_rules.c:118)
[  726.247021][T25989]  ? lock_acquire (./include/trace/events/lock.h:24 (discriminator 24) kernel/locking/lockdep.c:5831 (discriminator 24))
[  726.247098][T25989]  ? fib6_lookup (net/ipv6/fib6_rules.c:102)
[  726.247176][T25989]  ? lock_release (./include/trace/events/lock.h:69 (discriminator 24) kernel/locking/lockdep.c:5879 (discriminator 24))
[  726.247255][T25989]  ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 3) kernel/rcu/tree.c:752 (discriminator 3))
[  726.247333][T25989]  ? ip6_pol_route_input (net/ipv6/route.c:2665)
[  726.247410][T25989]  ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 3) kernel/rcu/tree.c:752 (discriminator 3))
[  726.247488][T25989]  ? lock_acquire (./include/trace/events/lock.h:24 (discriminator 24) kernel/locking/lockdep.c:5831 (discriminator 24))
[  726.247567][T25989]  ip6_route_output_flags (net/ipv6/route.c:2699 net/ipv6/route.c:2711)
[  726.247644][T25989]  ip6_dst_lookup_tail.constprop.0 (net/ipv6/ip6_output.c:1155 (discriminator 1))
[  726.247741][T25989]  ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40 (discriminator 24))
[  726.247838][T25989]  ip6_dst_lookup_flow (net/ipv6/ip6_output.c:1289)
[  726.247918][T25989]  ? ip6_dst_lookup_tail.constprop.0 (net/ipv6/ip6_output.c:1282)
[  726.248014][T25989]  ? lock_release (./include/trace/events/lock.h:69 (discriminator 24) kernel/locking/lockdep.c:5879 (discriminator 24))
[  726.248092][T25989]  ? sk_dst_check (./include/linux/rcupdate.h:839 (discriminator 1) ./include/net/sock.h:2197 (discriminator 1) net/core/sock.c:620 (discriminator 1))
[  726.248174][T25989]  ? sk_dst_check (net/core/sock.c:622)
[  726.248255][T25989]  ip6_sk_dst_lookup_flow (net/ipv6/ip6_output.c:1326 (discriminator 1))
[  726.248330][T25989]  udpv6_sendmsg (net/ipv6/udp.c:1686)
[  726.248408][T25989]  ? lock_acquire (./include/trace/events/lock.h:24 (discriminator 24) kernel/locking/lockdep.c:5831 (discriminator 24))
[  726.248485][T25989]  ? udpv6_splice_eof (net/ipv6/udp.c:1457)
[  726.248563][T25989]  ? trace_hardirqs_on (kernel/trace/trace_preemptirq.c:79 (discriminator 1))
[  726.248640][T25989]  ? __local_bh_enable_ip (./arch/x86/include/asm/irqflags.h:42 ./arch/x86/include/asm/irqflags.h:119 kernel/softirq.c:455)
[  726.248720][T25989]  ? trace_irq_enable.constprop.0 (./include/trace/events/preemptirq.h:40 (discriminator 24))
[  726.248816][T25989]  ? trace_irq_disable.constprop.0 (./include/trace/events/preemptirq.h:36 (discriminator 24))
[  726.248911][T25989]  ? trace_hardirqs_on (kernel/trace/trace_preemptirq.c:79 (discriminator 1))
[  726.248987][T25989]  ? __local_bh_enable_ip (./arch/x86/include/asm/irqflags.h:42 ./arch/x86/include/asm/irqflags.h:119 kernel/softirq.c:455)
[  726.249064][T25989]  ? inet_autobind (net/ipv4/af_inet.c:195)
[  726.249142][T25989]  ? ____sys_sendmsg (net/socket.c:787 (discriminator 4) net/socket.c:802 (discriminator 4) net/socket.c:2698 (discriminator 4))
[  726.249219][T25989]  ____sys_sendmsg (net/socket.c:787 (discriminator 4) net/socket.c:802 (discriminator 4) net/socket.c:2698 (discriminator 4))
[  726.249300][T25989]  ? copy_msghdr_from_user (net/socket.c:2638)
[  726.249377][T25989]  ? get_timestamp.constprop.0 (net/socket.c:2644)
[  726.249472][T25989]  ? move_addr_to_kernel (net/socket.c:2624)
[  726.249551][T25989]  ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 3) kernel/rcu/tree.c:752 (discriminator 3))
[  726.249627][T25989]  ___sys_sendmsg (net/socket.c:2754)
[  726.249705][T25989]  ? copy_msghdr_from_user (net/socket.c:2741)
[  726.249782][T25989]  ? insert_pfn (mm/memory.c:2712)
[  726.249861][T25989]  ? lock_release (./include/trace/events/lock.h:69 (discriminator 24) kernel/locking/lockdep.c:5879 (discriminator 24))
[  726.249938][T25989]  ? do_pte_missing (mm/memory.c:5799 mm/memory.c:5933 mm/memory.c:4477)
[  726.250015][T25989]  ? lock_release (./include/trace/events/lock.h:69 (discriminator 24) kernel/locking/lockdep.c:5879 (discriminator 24))
[  726.250094][T25989]  __sys_sendmsg (net/socket.c:2784 (discriminator 1))
[  726.250170][T25989]  ? __sys_sendmsg_sock (net/socket.c:2769)
[  726.250250][T25989]  ? down_write_nested (kernel/locking/rwsem.c:1380)
[  726.250329][T25989]  ? do_user_addr_fault (./include/linux/mmap_lock.h:619 arch/x86/mm/fault.c:1413)
[  726.250407][T25989]  ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 3) kernel/rcu/tree.c:752 (discriminator 3))
[  726.250482][T25989]  ? rcu_is_watching (./include/linux/context_tracking.h:128 (discriminator 3) kernel/rcu/tree.c:752 (discriminator 3))
[  726.250558][T25989]  do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1))
[  726.250636][T25989]  ? trace_hardirqs_off (kernel/trace/trace_preemptirq.c:106 (discriminator 9))
[  726.250713][T25989]  ? exc_page_fault (arch/x86/mm/fault.c:1480 (discriminator 3) arch/x86/mm/fault.c:1527 (discriminator 3))
[  726.250791][T25989]  entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130)
[  726.250889][T25989] RIP: 0033:0x7f94446e522e
[  726.250971][T25989] Code: 4d 89 d8 e8 94 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 <c9> c3 83 e2 39 83 fa 08 75 e7 e8 03 ff ff ff 0f 1f 00 f3 0f 1e fa
All code
========
   0:	4d 89 d8             	mov    %r11,%r8
   3:	e8 94 bd 00 00       	call   0xbd9c
   8:	4c 8b 5d f8          	mov    -0x8(%rbp),%r11
   c:	41 8b 93 08 03 00 00 	mov    0x308(%r11),%edx
  13:	59                   	pop    %rcx
  14:	5e                   	pop    %rsi
  15:	48 83 f8 fc          	cmp    $0xfffffffffffffffc,%rax
  19:	74 11                	je     0x2c
  1b:	c9                   	leave
  1c:	c3                   	ret
  1d:	0f 1f 80 00 00 00 00 	nopl   0x0(%rax)
  24:	48 8b 45 10          	mov    0x10(%rbp),%rax
  28:	0f 05                	syscall
  2a:*	c9                   	leave		<-- trapping instruction
  2b:	c3                   	ret
  2c:	83 e2 39             	and    $0x39,%edx
  2f:	83 fa 08             	cmp    $0x8,%edx
  32:	75 e7                	jne    0x1b
  34:	e8 03 ff ff ff       	call   0xffffffffffffff3c
  39:	0f 1f 00             	nopl   (%rax)
  3c:	f3 0f 1e fa          	endbr64

Code starting with the faulting instruction
===========================================
   0:	c9                   	leave
   1:	c3                   	ret
   2:	83 e2 39             	and    $0x39,%edx
   5:	83 fa 08             	cmp    $0x8,%edx
   8:	75 e7                	jne    0xfffffffffffffff1
   a:	e8 03 ff ff ff       	call   0xffffffffffffff12
   f:	0f 1f 00             	nopl   (%rax)
  12:	f3 0f 1e fa          	endbr64
[  726.251245][T25989] RSP: 002b:00007ffc94398c90 EFLAGS: 00000202 ORIG_RAX: 000000000000002e
[  726.251360][T25989] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f94446e522e
[  726.251479][T25989] RDX: 0000000000000000 RSI: 00007ffc94398d60 RDI: 0000000000000005
[  726.251593][T25989] RBP: 00007ffc94398ca0 R08: 0000000000000000 R09: 0000000000000000
[  726.251709][T25989] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000005


Finger prints:
ip6_pol_route:__fib6_rule_action:fib_rules_lookup:fib6_rule_lookup:ip6_route_output_flags
print_report:kasan_report:ip6_pol_route:fib6_rule_lookup:ip6_route_output_flags