====================================== | [ 1435.170917][ T297] br0: port 2(veth2) entered forwarding state | [ 1435.752071][T10212] ------------[ cut here ]------------ | [1435.752619][T10212] WARNING: CPU: 2 PID: 10212 at net/bridge/br_multicast.c:1388 br_ip4_multicast_assert_inactive (net/bridge/br_multicast.c:1388 net/bridge/br_multicast.c:1386) bridge | [ 1435.753404][T10212] Modules linked in: act_mirred ip6_gre ip6_tunnel tunnel6 cls_matchall ip_gre gre vxlan ip6_udp_tunnel udp_tunnel dummy act_gact cls_flower sch_ingress bridge stp llc 8021q vrf veth [ 1435.755178][T10212] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [1435.755590][T10212] RIP: 0010:br_ip4_multicast_assert_inactive (net/bridge/br_multicast.c:1388 net/bridge/br_multicast.c:1386) bridge [ 1435.756127][T10212] Code: 0f b6 04 02 48 89 fa 83 e2 07 38 d0 7f 04 84 c0 75 1d 0f b6 9b 00 02 00 00 80 fb 01 0f 87 83 15 05 00 83 e3 01 75 02 5b c3 90 <0f> 0b 90 5b c3 e8 2b c3 e2 d3 eb dc 66 0f 1f 84 00 00 00 00 00 48 All code ======== 0: 0f b6 04 02 movzbl (%rdx,%rax,1),%eax 4: 48 89 fa mov %rdi,%rdx 7: 83 e2 07 and $0x7,%edx a: 38 d0 cmp %dl,%al c: 7f 04 jg 0x12 e: 84 c0 test %al,%al 10: 75 1d jne 0x2f 12: 0f b6 9b 00 02 00 00 movzbl 0x200(%rbx),%ebx 19: 80 fb 01 cmp $0x1,%bl 1c: 0f 87 83 15 05 00 ja 0x515a5 22: 83 e3 01 and $0x1,%ebx 25: 75 02 jne 0x29 27: 5b pop %rbx 28: c3 ret 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: 5b pop %rbx 2e: c3 ret 2f: e8 2b c3 e2 d3 call 0xffffffffd3e2c35f 34: eb dc jmp 0x12 36: 66 0f 1f 84 00 00 00 nopw 0x0(%rax,%rax,1) 3d: 00 00 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: 5b pop %rbx 4: c3 ret 5: e8 2b c3 e2 d3 call 0xffffffffd3e2c335 a: eb dc jmp 0xffffffffffffffe8 c: 66 0f 1f 84 00 00 00 nopw 0x0(%rax,%rax,1) 13: 00 00 15: 48 rex.W [ 1435.757279][T10212] RSP: 0018:ffffc9000824f350 EFLAGS: 00010202 [ 1435.757713][T10212] RAX: 0000000000000000 RBX: 0000000000000001 RCX: 1ffff11002ccd667 [ 1435.758238][T10212] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffff88801666b180 [ 1435.758747][T10212] RBP: 0000000000000001 R08: 0000000000000000 R09: ffffed1002ccd5b2 [ 1435.759267][T10212] R10: ffff88801666ad97 R11: ffff88801666b368 R12: 0000000000000001 [ 1435.759777][T10212] R13: ffff88801666af80 R14: 0000000000000001 R15: ffff88801666ad90 [ 1435.760293][T10212] FS: 00007f191becf800(0000) GS:ffff88809e516000(0000) knlGS:0000000000000000 [ 1435.761173][T10212] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1435.761606][T10212] CR2: 0000000000447b60 CR3: 0000000008ed9004 CR4: 0000000000772ef0 [ 1435.762128][T10212] PKRU: 55555554 [ 1435.762395][T10212] Call Trace: [ 1435.762658][T10212] [1435.762835][T10212] __br_multicast_stop (net/bridge/br_multicast.c:1399 net/bridge/br_multicast.c:4458) bridge [1435.763206][T10212] br_multicast_toggle_vlan_snooping (net/bridge/br_multicast.c:4585) bridge [1435.763646][T10212] br_boolopt_multi_toggle (net/bridge/br.c:330 (discriminator 3)) bridge [1435.764089][T10212] br_changelink (net/bridge/br_netlink.c:1545) bridge [1435.764442][T10212] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:751) [1435.764782][T10212] ? br_get_size (net/bridge/br_netlink.c:1280) bridge [1435.765146][T10212] ? __mutex_lock (./arch/x86/include/asm/preempt.h:104 kernel/locking/mutex.c:739 kernel/locking/mutex.c:760) [1435.765476][T10212] ? validate_nla (lib/nlattr.c:580) [1435.765804][T10212] ? rtnl_newlink (net/core/rtnetlink.c:343 net/core/rtnetlink.c:4056) [1435.766138][T10212] ? reacquire_held_locks (kernel/locking/lockdep.c:5385) [1435.766468][T10212] ? ww_mutex_lock (kernel/locking/mutex.c:759) [1435.766799][T10212] __rtnl_newlink (net/core/rtnetlink.c:3725 net/core/rtnetlink.c:3920) [1435.767147][T10212] rtnl_newlink (net/core/rtnetlink.c:351 net/core/rtnetlink.c:4058) [1435.767481][T10212] ? __rtnl_newlink (net/core/rtnetlink.c:3948) [1435.767826][T10212] ? rtnetlink_rcv_msg (./include/linux/rcupdate.h:341 ./include/linux/rcupdate.h:871 net/core/rtnetlink.c:6944) [1435.768173][T10212] ? __lock_release (kernel/locking/lockdep.c:5536) [1435.768514][T10212] ? __rtnl_newlink (net/core/rtnetlink.c:3948) [1435.768852][T10212] rtnetlink_rcv_msg (net/core/rtnetlink.c:6946) [1435.769190][T10212] ? validate_chain (kernel/locking/lockdep.c:3801 kernel/locking/lockdep.c:3821 kernel/locking/lockdep.c:3876) [1435.769518][T10212] ? rtnl_port_fill (net/core/rtnetlink.c:6849) [1435.769853][T10212] ? __lock_acquire (kernel/locking/lockdep.c:5237) [1435.770195][T10212] netlink_rcv_skb (net/netlink/af_netlink.c:2552) [1435.770525][T10212] ? rtnl_port_fill (net/core/rtnetlink.c:6849) [1435.770855][T10212] ? netlink_ack (net/netlink/af_netlink.c:2529) [1435.771207][T10212] ? netlink_deliver_tap (./include/linux/rcupdate.h:341 ./include/linux/rcupdate.h:871 net/netlink/af_netlink.c:340) [1435.771539][T10212] ? netlink_deliver_tap (./include/linux/rcupdate.h:341 ./include/linux/rcupdate.h:871 ./include/net/netns/generic.h:48 net/netlink/af_netlink.c:333) [1435.771871][T10212] netlink_unicast (net/netlink/af_netlink.c:1321 net/netlink/af_netlink.c:1346) [1435.772215][T10212] ? netlink_attachskb (net/netlink/af_netlink.c:1331) [1435.772553][T10212] ? __lock_acquire (kernel/locking/lockdep.c:5237) [1435.772888][T10212] netlink_sendmsg (net/netlink/af_netlink.c:1896) [1435.773230][T10212] ? netlink_unicast (net/netlink/af_netlink.c:1815) [1435.773561][T10212] ? __import_iovec (lib/iov_iter.c:1441 lib/iov_iter.c:1456) [1435.773899][T10212] ? netlink_unicast (net/netlink/af_netlink.c:1815) [1435.774240][T10212] ____sys_sendmsg (net/socket.c:714 net/socket.c:729 net/socket.c:2614) [1435.774574][T10212] ? get_timestamp.constprop.0 (net/socket.c:2560) [1435.774978][T10212] ? __copy_msghdr (net/socket.c:2540) [1435.775329][T10212] ___sys_sendmsg (net/socket.c:2670) [1435.775661][T10212] ? copy_msghdr_from_user (net/socket.c:2657) [1435.775993][T10212] ? rcu_read_lock_any_held (kernel/rcu/update.c:386 kernel/rcu/update.c:380) [1435.776330][T10212] ? rcu_read_lock_any_held (kernel/rcu/update.c:386 kernel/rcu/update.c:380) [1435.776658][T10212] ? validate_chain (kernel/locking/lockdep.c:3801 kernel/locking/lockdep.c:3821 kernel/locking/lockdep.c:3876) [1435.776989][T10212] ? __lock_acquire (kernel/locking/lockdep.c:5237) [1435.777334][T10212] ? find_held_lock (kernel/locking/lockdep.c:5350) [1435.777673][T10212] __sys_sendmsg (net/socket.c:2700) [1435.778024][T10212] ? __sys_sendmsg_sock (net/socket.c:2685) [1435.778382][T10212] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:751) [1435.778730][T10212] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [1435.779090][T10212] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1435.779517][T10212] RIP: 0033:0x7f191c09c1e7 [ 1435.779875][T10212] Code: 0e 00 f7 d8 64 89 02 48 c7 c0 ff ff ff ff eb b9 0f 1f 00 f3 0f 1e fa 64 8b 04 25 18 00 00 00 85 c0 75 10 b8 2e 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 51 c3 48 83 ec 28 89 54 24 1c 48 89 74 24 10 All code ======== 0: 0e (bad) 1: 00 f7 add %dh,%bh 3: d8 64 89 02 fsubs 0x2(%rcx,%rcx,4) 7: 48 c7 c0 ff ff ff ff mov $0xffffffffffffffff,%rax e: eb b9 jmp 0xffffffffffffffc9 10: 0f 1f 00 nopl (%rax) 13: f3 0f 1e fa endbr64 17: 64 8b 04 25 18 00 00 mov %fs:0x18,%eax 1e: 00 1f: 85 c0 test %eax,%eax 21: 75 10 jne 0x33 23: b8 2e 00 00 00 mov $0x2e,%eax 28: 0f 05 syscall 2a:* 48 3d 00 f0 ff ff cmp $0xfffffffffffff000,%rax <-- trapping instruction 30: 77 51 ja 0x83 32: c3 ret 33: 48 83 ec 28 sub $0x28,%rsp 37: 89 54 24 1c mov %edx,0x1c(%rsp) 3b: 48 89 74 24 10 mov %rsi,0x10(%rsp) Code starting with the faulting instruction =========================================== 0: 48 3d 00 f0 ff ff cmp $0xfffffffffffff000,%rax 6: 77 51 ja 0x59 8: c3 ret 9: 48 83 ec 28 sub $0x28,%rsp d: 89 54 24 1c mov %edx,0x1c(%rsp) 11: 48 89 74 24 10 mov %rsi,0x10(%rsp) [ 1435.781082][T10212] RSP: 002b:00007ffd26a878c8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1435.781597][T10212] RAX: ffffffffffffffda RBX: 00007ffd26a87ff0 RCX: 00007f191c09c1e7 [ 1435.782116][T10212] RDX: 0000000000000000 RSI: 00007ffd26a87930 RDI: 0000000000000005 [ 1435.782627][T10212] RBP: 0000000000000002 R08: 0000000000000040 R09: 0000000000000000 [ 1435.783141][T10212] R10: 00007f191c12aac0 R11: 0000000000000246 R12: 00007ffd26a88010 [ 1435.783633][T10212] R13: 0000000068b1cc5a R14: 0000000000499600 R15: 00007ffd26a87a10 | [ 1512.884355][T10608] ------------[ cut here ]------------ | [1512.884693][T10608] WARNING: CPU: 1 PID: 10608 at net/bridge/br_multicast.c:1388 br_ip4_multicast_assert_inactive (net/bridge/br_multicast.c:1388 net/bridge/br_multicast.c:1386) bridge | [ 1512.885478][T10608] Modules linked in: act_mirred ip6_gre ip6_tunnel tunnel6 cls_matchall ip_gre gre vxlan ip6_udp_tunnel udp_tunnel dummy act_gact cls_flower sch_ingress bridge stp llc 8021q vrf veth | [ 1512.887269][T10608] Tainted: [W]=WARN [ 1512.887533][T10608] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [1512.887956][T10608] RIP: 0010:br_ip4_multicast_assert_inactive (net/bridge/br_multicast.c:1388 net/bridge/br_multicast.c:1386) bridge [ 1512.888501][T10608] Code: 0f b6 04 02 48 89 fa 83 e2 07 38 d0 7f 04 84 c0 75 1d 0f b6 9b 00 02 00 00 80 fb 01 0f 87 83 15 05 00 83 e3 01 75 02 5b c3 90 <0f> 0b 90 5b c3 e8 2b c3 e2 d3 eb dc 66 0f 1f 84 00 00 00 00 00 48 All code ======== 0: 0f b6 04 02 movzbl (%rdx,%rax,1),%eax 4: 48 89 fa mov %rdi,%rdx 7: 83 e2 07 and $0x7,%edx a: 38 d0 cmp %dl,%al c: 7f 04 jg 0x12 e: 84 c0 test %al,%al 10: 75 1d jne 0x2f 12: 0f b6 9b 00 02 00 00 movzbl 0x200(%rbx),%ebx 19: 80 fb 01 cmp $0x1,%bl 1c: 0f 87 83 15 05 00 ja 0x515a5 22: 83 e3 01 and $0x1,%ebx 25: 75 02 jne 0x29 27: 5b pop %rbx 28: c3 ret 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: 5b pop %rbx 2e: c3 ret 2f: e8 2b c3 e2 d3 call 0xffffffffd3e2c35f 34: eb dc jmp 0x12 36: 66 0f 1f 84 00 00 00 nopw 0x0(%rax,%rax,1) 3d: 00 00 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: 5b pop %rbx 4: c3 ret 5: e8 2b c3 e2 d3 call 0xffffffffd3e2c335 a: eb dc jmp 0xffffffffffffffe8 c: 66 0f 1f 84 00 00 00 nopw 0x0(%rax,%rax,1) 13: 00 00 15: 48 rex.W [ 1512.889677][T10608] RSP: 0018:ffffc900093ff2f0 EFLAGS: 00010202 [ 1512.890099][T10608] RAX: 0000000000000000 RBX: 0000000000000001 RCX: 1ffff110009ab47f [ 1512.890585][T10608] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffff888004d5a240 [ 1512.891087][T10608] RBP: ffff88801666b350 R08: 0000000000000000 R09: ffffed1002ccd5b2 [ 1512.891573][T10608] R10: ffff88801666ad97 R11: ffffffff98e25c88 R12: ffff88801853b814 [ 1512.892073][T10608] R13: ffff888004d5a040 R14: ffffed10009ab404 R15: ffffed10009ab402 [ 1512.892565][T10608] FS: 00007f24168f1800(0000) GS:ffff88809e496000(0000) knlGS:0000000000000000 [ 1512.893144][T10608] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1512.893553][T10608] CR2: 00007f24169f1130 CR3: 00000000163d6005 CR4: 0000000000772ef0 [ 1512.894052][T10608] PKRU: 55555554 [ 1512.894295][T10608] Call Trace: [ 1512.894543][T10608] [1512.894708][T10608] br_multicast_toggle_one_vlan (net/bridge/br_multicast.c:1399 net/bridge/br_multicast.c:4537) bridge [1512.895168][T10608] br_multicast_toggle_vlan (net/bridge/br_multicast.c:4549 (discriminator 2)) bridge [1512.895608][T10608] br_multicast_toggle_vlan_snooping (net/bridge/br_multicast.c:4598 (discriminator 3)) bridge [1512.896072][T10608] br_vlan_filter_toggle (net/bridge/br_vlan.c:914) bridge [1512.896511][T10608] br_changelink (net/bridge/br_netlink.c:1329) bridge [1512.896866][T10608] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:751) [1512.897204][T10608] ? br_get_size (net/bridge/br_netlink.c:1280) bridge [1512.897575][T10608] ? __mutex_lock (./arch/x86/include/asm/preempt.h:104 kernel/locking/mutex.c:739 kernel/locking/mutex.c:760) [1512.897913][T10608] ? rtnl_newlink (net/core/rtnetlink.c:343 net/core/rtnetlink.c:4056) [1512.898250][T10608] ? reacquire_held_locks (kernel/locking/lockdep.c:5385) [1512.898575][T10608] ? ww_mutex_lock (kernel/locking/mutex.c:759) [1512.898912][T10608] __rtnl_newlink (net/core/rtnetlink.c:3725 net/core/rtnetlink.c:3920) [1512.899253][T10608] rtnl_newlink (net/core/rtnetlink.c:351 net/core/rtnetlink.c:4058) [1512.899585][T10608] ? __rtnl_newlink (net/core/rtnetlink.c:3948) [1512.899931][T10608] ? rtnetlink_rcv_msg (./include/linux/rcupdate.h:341 ./include/linux/rcupdate.h:871 net/core/rtnetlink.c:6944) [1512.900269][T10608] ? __lock_release (kernel/locking/lockdep.c:5536) [1512.900597][T10608] ? __rtnl_newlink (net/core/rtnetlink.c:3948) [1512.900928][T10608] rtnetlink_rcv_msg (net/core/rtnetlink.c:6946) [1512.901262][T10608] ? validate_chain (kernel/locking/lockdep.c:3801 kernel/locking/lockdep.c:3821 kernel/locking/lockdep.c:3876) [1512.901586][T10608] ? rtnl_port_fill (net/core/rtnetlink.c:6849) [1512.901925][T10608] ? __lock_acquire (kernel/locking/lockdep.c:5237) [1512.902264][T10608] netlink_rcv_skb (net/netlink/af_netlink.c:2552) [1512.902597][T10608] ? rtnl_port_fill (net/core/rtnetlink.c:6849) [1512.902933][T10608] ? netlink_ack (net/netlink/af_netlink.c:2529) [1512.903276][T10608] ? netlink_deliver_tap (./include/linux/rcupdate.h:341 ./include/linux/rcupdate.h:871 net/netlink/af_netlink.c:340) [1512.903599][T10608] ? netlink_deliver_tap (./include/linux/rcupdate.h:341 ./include/linux/rcupdate.h:871 ./include/net/netns/generic.h:48 net/netlink/af_netlink.c:333) [1512.903933][T10608] netlink_unicast (net/netlink/af_netlink.c:1321 net/netlink/af_netlink.c:1346) [1512.904269][T10608] ? netlink_attachskb (net/netlink/af_netlink.c:1331) [1512.904595][T10608] ? __lock_acquire (kernel/locking/lockdep.c:5237) [1512.904931][T10608] netlink_sendmsg (net/netlink/af_netlink.c:1896) [1512.905276][T10608] ? netlink_unicast (net/netlink/af_netlink.c:1815) [1512.905607][T10608] ? __import_iovec (lib/iov_iter.c:1441 lib/iov_iter.c:1456) [1512.905941][T10608] ? netlink_unicast (net/netlink/af_netlink.c:1815) [1512.906276][T10608] ____sys_sendmsg (net/socket.c:714 net/socket.c:729 net/socket.c:2614) [1512.906607][T10608] ? get_timestamp.constprop.0 (net/socket.c:2560) [1512.907029][T10608] ? __copy_msghdr (net/socket.c:2540) [1512.907371][T10608] ___sys_sendmsg (net/socket.c:2670) [1512.907706][T10608] ? copy_msghdr_from_user (net/socket.c:2657) [1512.908051][T10608] ? do_pte_missing (mm/memory.c:6009) [1512.908375][T10608] ? __lock_acquire (kernel/locking/lockdep.c:5237) [1512.908706][T10608] ? __handle_mm_fault (mm/memory.c:6195) [1512.909051][T10608] ? __pmd_alloc (mm/memory.c:6104) [1512.909397][T10608] ? lock_vma_under_rcu (./include/linux/rcupdate.h:874 mm/mmap_lock.c:170) [1512.909730][T10608] __sys_sendmsg (net/socket.c:2700) [1512.910070][T10608] ? __sys_sendmsg_sock (net/socket.c:2685) [1512.910404][T10608] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [1512.910739][T10608] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:143 ./include/linux/mmap_lock.h:267 arch/x86/mm/fault.c:1338) [1512.911081][T10608] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:751) [1512.911411][T10608] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [1512.911736][T10608] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1512.912155][T10608] RIP: 0033:0x7f2416abe1e7 [ 1512.912492][T10608] Code: 0e 00 f7 d8 64 89 02 48 c7 c0 ff ff ff ff eb b9 0f 1f 00 f3 0f 1e fa 64 8b 04 25 18 00 00 00 85 c0 75 10 b8 2e 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 51 c3 48 83 ec 28 89 54 24 1c 48 89 74 24 10 All code ======== 0: 0e (bad) 1: 00 f7 add %dh,%bh 3: d8 64 89 02 fsubs 0x2(%rcx,%rcx,4) 7: 48 c7 c0 ff ff ff ff mov $0xffffffffffffffff,%rax e: eb b9 jmp 0xffffffffffffffc9 10: 0f 1f 00 nopl (%rax) 13: f3 0f 1e fa endbr64 17: 64 8b 04 25 18 00 00 mov %fs:0x18,%eax 1e: 00 1f: 85 c0 test %eax,%eax 21: 75 10 jne 0x33 23: b8 2e 00 00 00 mov $0x2e,%eax 28: 0f 05 syscall 2a:* 48 3d 00 f0 ff ff cmp $0xfffffffffffff000,%rax <-- trapping instruction 30: 77 51 ja 0x83 32: c3 ret 33: 48 83 ec 28 sub $0x28,%rsp 37: 89 54 24 1c mov %edx,0x1c(%rsp) 3b: 48 89 74 24 10 mov %rsi,0x10(%rsp) Code starting with the faulting instruction =========================================== 0: 48 3d 00 f0 ff ff cmp $0xfffffffffffff000,%rax 6: 77 51 ja 0x59 8: c3 ret 9: 48 83 ec 28 sub $0x28,%rsp d: 89 54 24 1c mov %edx,0x1c(%rsp) 11: 48 89 74 24 10 mov %rsi,0x10(%rsp) [ 1512.913668][T10608] RSP: 002b:00007fff56fe5ed8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1512.914174][T10608] RAX: ffffffffffffffda RBX: 00007fff56fe6600 RCX: 00007f2416abe1e7 [ 1512.914665][T10608] RDX: 0000000000000000 RSI: 00007fff56fe5f40 RDI: 0000000000000005 [ 1512.915178][T10608] RBP: 0000000000000002 R08: 000000000000003c R09: 0000000000000000 [ 1512.915661][T10608] R10: 00007f2416b4cac0 R11: 0000000000000246 R12: 00007fff56fe6620 [ 1512.916164][T10608] R13: 0000000068b1cca7 R14: 0000000000499600 R15: 00007fff56fe6020 | [ 1512.920254][T10608] ------------[ cut here ]------------ | [1512.920577][T10608] WARNING: CPU: 1 PID: 10608 at net/bridge/br_multicast.c:1393 br_ip6_multicast_assert_inactive (net/bridge/br_multicast.c:1393 net/bridge/br_multicast.c:1391) bridge | [ 1512.921344][T10608] Modules linked in: act_mirred ip6_gre ip6_tunnel tunnel6 cls_matchall ip_gre gre vxlan ip6_udp_tunnel udp_tunnel dummy act_gact cls_flower sch_ingress bridge stp llc 8021q vrf veth | [ 1512.923603][T10608] Tainted: [W]=WARN [ 1512.923858][T10608] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [1512.924282][T10608] RIP: 0010:br_ip6_multicast_assert_inactive (net/bridge/br_multicast.c:1393 net/bridge/br_multicast.c:1391) bridge [ 1512.924814][T10608] Code: 0f b6 04 02 48 89 fa 83 e2 07 38 d0 7f 04 84 c0 75 1d 0f b6 9b b8 03 00 00 80 fb 01 0f 87 bb 1e 05 00 83 e3 01 75 02 5b c3 90 <0f> 0b 90 5b c3 e8 8b cc e2 d3 eb dc 66 0f 1f 84 00 00 00 00 00 f3 All code ======== 0: 0f b6 04 02 movzbl (%rdx,%rax,1),%eax 4: 48 89 fa mov %rdi,%rdx 7: 83 e2 07 and $0x7,%edx a: 38 d0 cmp %dl,%al c: 7f 04 jg 0x12 e: 84 c0 test %al,%al 10: 75 1d jne 0x2f 12: 0f b6 9b b8 03 00 00 movzbl 0x3b8(%rbx),%ebx 19: 80 fb 01 cmp $0x1,%bl 1c: 0f 87 bb 1e 05 00 ja 0x51edd 22: 83 e3 01 and $0x1,%ebx 25: 75 02 jne 0x29 27: 5b pop %rbx 28: c3 ret 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: 5b pop %rbx 2e: c3 ret 2f: e8 8b cc e2 d3 call 0xffffffffd3e2ccbf 34: eb dc jmp 0x12 36: 66 0f 1f 84 00 00 00 nopw 0x0(%rax,%rax,1) 3d: 00 00 3f: f3 repz Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: 5b pop %rbx 4: c3 ret 5: e8 8b cc e2 d3 call 0xffffffffd3e2cc95 a: eb dc jmp 0xffffffffffffffe8 c: 66 0f 1f 84 00 00 00 nopw 0x0(%rax,%rax,1) 13: 00 00 15: f3 repz [ 1512.925983][T10608] RSP: 0018:ffffc900093ff2f0 EFLAGS: 00010202 [ 1512.926405][T10608] RAX: 0000000000000000 RBX: 0000000000000001 RCX: 1ffff110009ab47f [ 1512.926890][T10608] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffff888004d5a3f8 [ 1512.927381][T10608] RBP: ffff88801666b350 R08: 0000000000000000 R09: ffffed1002ccd5b2 [ 1512.927885][T10608] R10: ffff88801666ad97 R11: ffffffff98e25c88 R12: ffff88801853b814 [ 1512.928377][T10608] R13: ffff888004d5a040 R14: ffffed10009ab404 R15: ffffed10009ab402 [ 1512.928875][T10608] FS: 00007f24168f1800(0000) GS:ffff88809e496000(0000) knlGS:0000000000000000 [ 1512.929451][T10608] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1512.929865][T10608] CR2: 00007f24169f1130 CR3: 00000000163d6005 CR4: 0000000000772ef0 [ 1512.930360][T10608] PKRU: 55555554 [ 1512.930605][T10608] Call Trace: [ 1512.930861][T10608] [1512.931034][T10608] br_multicast_toggle_one_vlan (./include/linux/spinlock.h:396 net/bridge/br_multicast.c:4538) bridge [1512.931472][T10608] br_multicast_toggle_vlan (net/bridge/br_multicast.c:4549 (discriminator 2)) bridge [1512.931916][T10608] br_multicast_toggle_vlan_snooping (net/bridge/br_multicast.c:4598 (discriminator 3)) bridge [1512.932357][T10608] br_vlan_filter_toggle (net/bridge/br_vlan.c:914) bridge [1512.932794][T10608] br_changelink (net/bridge/br_netlink.c:1329) bridge [1512.933160][T10608] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:751) [1512.933491][T10608] ? br_get_size (net/bridge/br_netlink.c:1280) bridge [1512.933849][T10608] ? __mutex_lock (./arch/x86/include/asm/preempt.h:104 kernel/locking/mutex.c:739 kernel/locking/mutex.c:760) [1512.934189][T10608] ? rtnl_newlink (net/core/rtnetlink.c:343 net/core/rtnetlink.c:4056) [1512.934513][T10608] ? reacquire_held_locks (kernel/locking/lockdep.c:5385) [1512.934847][T10608] ? ww_mutex_lock (kernel/locking/mutex.c:759) [1512.935187][T10608] __rtnl_newlink (net/core/rtnetlink.c:3725 net/core/rtnetlink.c:3920) [1512.935520][T10608] rtnl_newlink (net/core/rtnetlink.c:351 net/core/rtnetlink.c:4058) [1512.935871][T10608] ? __rtnl_newlink (net/core/rtnetlink.c:3948) [1512.936218][T10608] ? rtnetlink_rcv_msg (./include/linux/rcupdate.h:341 ./include/linux/rcupdate.h:871 net/core/rtnetlink.c:6944) [1512.936539][T10608] ? __lock_release (kernel/locking/lockdep.c:5536) [1512.936874][T10608] ? __rtnl_newlink (net/core/rtnetlink.c:3948) [1512.937206][T10608] rtnetlink_rcv_msg (net/core/rtnetlink.c:6946) [1512.937539][T10608] ? validate_chain (kernel/locking/lockdep.c:3801 kernel/locking/lockdep.c:3821 kernel/locking/lockdep.c:3876) [1512.937870][T10608] ? rtnl_port_fill (net/core/rtnetlink.c:6849) [1512.938212][T10608] ? __lock_acquire (kernel/locking/lockdep.c:5237) [1512.938546][T10608] netlink_rcv_skb (net/netlink/af_netlink.c:2552) [1512.938878][T10608] ? rtnl_port_fill (net/core/rtnetlink.c:6849) [1512.939223][T10608] ? netlink_ack (net/netlink/af_netlink.c:2529) [1512.939561][T10608] ? netlink_deliver_tap (./include/linux/rcupdate.h:341 ./include/linux/rcupdate.h:871 net/netlink/af_netlink.c:340) [1512.939888][T10608] ? netlink_deliver_tap (./include/linux/rcupdate.h:341 ./include/linux/rcupdate.h:871 ./include/net/netns/generic.h:48 net/netlink/af_netlink.c:333) [1512.940223][T10608] netlink_unicast (net/netlink/af_netlink.c:1321 net/netlink/af_netlink.c:1346) [1512.940552][T10608] ? netlink_attachskb (net/netlink/af_netlink.c:1331) [1512.940891][T10608] ? __lock_acquire (kernel/locking/lockdep.c:5237) [1512.941227][T10608] netlink_sendmsg (net/netlink/af_netlink.c:1896) [1512.941556][T10608] ? netlink_unicast (net/netlink/af_netlink.c:1815) [1512.941887][T10608] ? __import_iovec (lib/iov_iter.c:1441 lib/iov_iter.c:1456) [1512.942222][T10608] ? netlink_unicast (net/netlink/af_netlink.c:1815) [1512.942550][T10608] ____sys_sendmsg (net/socket.c:714 net/socket.c:729 net/socket.c:2614) [1512.942882][T10608] ? get_timestamp.constprop.0 (net/socket.c:2560) [1512.943290][T10608] ? __copy_msghdr (net/socket.c:2540) [1512.943631][T10608] ___sys_sendmsg (net/socket.c:2670) [1512.943963][T10608] ? copy_msghdr_from_user (net/socket.c:2657) [1512.944296][T10608] ? do_pte_missing (mm/memory.c:6009) [1512.944619][T10608] ? __lock_acquire (kernel/locking/lockdep.c:5237) [1512.944957][T10608] ? __handle_mm_fault (mm/memory.c:6195) [1512.945290][T10608] ? __pmd_alloc (mm/memory.c:6104) [1512.945628][T10608] ? lock_vma_under_rcu (./include/linux/rcupdate.h:874 mm/mmap_lock.c:170) [1512.945965][T10608] __sys_sendmsg (net/socket.c:2700) [1512.946304][T10608] ? __sys_sendmsg_sock (net/socket.c:2685) [1512.946629][T10608] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [1512.946965][T10608] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:143 ./include/linux/mmap_lock.h:267 arch/x86/mm/fault.c:1338) [1512.947304][T10608] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:751) [1512.947643][T10608] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [1512.947973][T10608] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1512.948391][T10608] RIP: 0033:0x7f2416abe1e7 [ 1512.948733][T10608] Code: 0e 00 f7 d8 64 89 02 48 c7 c0 ff ff ff ff eb b9 0f 1f 00 f3 0f 1e fa 64 8b 04 25 18 00 00 00 85 c0 75 10 b8 2e 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 51 c3 48 83 ec 28 89 54 24 1c 48 89 74 24 10 All code ======== 0: 0e (bad) 1: 00 f7 add %dh,%bh 3: d8 64 89 02 fsubs 0x2(%rcx,%rcx,4) 7: 48 c7 c0 ff ff ff ff mov $0xffffffffffffffff,%rax e: eb b9 jmp 0xffffffffffffffc9 10: 0f 1f 00 nopl (%rax) 13: f3 0f 1e fa endbr64 17: 64 8b 04 25 18 00 00 mov %fs:0x18,%eax 1e: 00 1f: 85 c0 test %eax,%eax 21: 75 10 jne 0x33 23: b8 2e 00 00 00 mov $0x2e,%eax 28: 0f 05 syscall 2a:* 48 3d 00 f0 ff ff cmp $0xfffffffffffff000,%rax <-- trapping instruction 30: 77 51 ja 0x83 32: c3 ret 33: 48 83 ec 28 sub $0x28,%rsp 37: 89 54 24 1c mov %edx,0x1c(%rsp) 3b: 48 89 74 24 10 mov %rsi,0x10(%rsp) Code starting with the faulting instruction =========================================== 0: 48 3d 00 f0 ff ff cmp $0xfffffffffffff000,%rax 6: 77 51 ja 0x59 8: c3 ret 9: 48 83 ec 28 sub $0x28,%rsp d: 89 54 24 1c mov %edx,0x1c(%rsp) 11: 48 89 74 24 10 mov %rsi,0x10(%rsp) [ 1512.949914][T10608] RSP: 002b:00007fff56fe5ed8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1512.950418][T10608] RAX: ffffffffffffffda RBX: 00007fff56fe6600 RCX: 00007f2416abe1e7 [ 1512.950913][T10608] RDX: 0000000000000000 RSI: 00007fff56fe5f40 RDI: 0000000000000005 [ 1512.951410][T10608] RBP: 0000000000000002 R08: 000000000000003c R09: 0000000000000000 [ 1512.952223][T10608] R10: 00007f2416b4cac0 R11: 0000000000000246 R12: 00007fff56fe6620 [ 1512.952708][T10608] R13: 0000000068b1cca7 R14: 0000000000499600 R15: 00007fff56fe6020 | [ 1512.959568][T10608] ------------[ cut here ]------------ | [1512.959906][T10608] WARNING: CPU: 3 PID: 10608 at net/bridge/br_multicast.c:1388 br_ip4_multicast_assert_inactive (net/bridge/br_multicast.c:1388 net/bridge/br_multicast.c:1386) bridge | [ 1512.960676][T10608] Modules linked in: act_mirred ip6_gre ip6_tunnel tunnel6 cls_matchall ip_gre gre vxlan ip6_udp_tunnel udp_tunnel dummy act_gact cls_flower sch_ingress bridge stp llc 8021q vrf veth | [ 1512.962429][T10608] Tainted: [W]=WARN [ 1512.962679][T10608] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [1512.963093][T10608] RIP: 0010:br_ip4_multicast_assert_inactive (net/bridge/br_multicast.c:1388 net/bridge/br_multicast.c:1386) bridge [ 1512.963617][T10608] Code: 0f b6 04 02 48 89 fa 83 e2 07 38 d0 7f 04 84 c0 75 1d 0f b6 9b 00 02 00 00 80 fb 01 0f 87 83 15 05 00 83 e3 01 75 02 5b c3 90 <0f> 0b 90 5b c3 e8 2b c3 e2 d3 eb dc 66 0f 1f 84 00 00 00 00 00 48 All code ======== 0: 0f b6 04 02 movzbl (%rdx,%rax,1),%eax 4: 48 89 fa mov %rdi,%rdx 7: 83 e2 07 and $0x7,%edx a: 38 d0 cmp %dl,%al c: 7f 04 jg 0x12 e: 84 c0 test %al,%al 10: 75 1d jne 0x2f 12: 0f b6 9b 00 02 00 00 movzbl 0x200(%rbx),%ebx 19: 80 fb 01 cmp $0x1,%bl 1c: 0f 87 83 15 05 00 ja 0x515a5 22: 83 e3 01 and $0x1,%ebx 25: 75 02 jne 0x29 27: 5b pop %rbx 28: c3 ret 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: 5b pop %rbx 2e: c3 ret 2f: e8 2b c3 e2 d3 call 0xffffffffd3e2c35f 34: eb dc jmp 0x12 36: 66 0f 1f 84 00 00 00 nopw 0x0(%rax,%rax,1) 3d: 00 00 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: 5b pop %rbx 4: c3 ret 5: e8 2b c3 e2 d3 call 0xffffffffd3e2c335 a: eb dc jmp 0xffffffffffffffe8 c: 66 0f 1f 84 00 00 00 nopw 0x0(%rax,%rax,1) 13: 00 00 15: 48 rex.W [ 1512.964801][T10608] RSP: 0018:ffffc900093ff2f0 EFLAGS: 00010202 [ 1512.965220][T10608] RAX: 0000000000000000 RBX: 0000000000000001 RCX: 1ffff110009ab47f [ 1512.965708][T10608] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffff888004d5a240 [ 1512.966200][T10608] RBP: ffff88801666b350 R08: 0000000000000000 R09: ffffed1002ccd5b2 [ 1512.966685][T10608] R10: ffff88801666ad97 R11: ffffffff98dcbda8 R12: ffff888004d58814 [ 1512.967183][T10608] R13: ffff888004d5a040 R14: ffffed10009ab404 R15: ffffed10009ab402 [ 1512.967679][T10608] FS: 00007f24168f1800(0000) GS:ffff88809e596000(0000) knlGS:0000000000000000 [ 1512.968257][T10608] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1512.968910][T10608] CR2: 00007f8268d8f258 CR3: 00000000163d6005 CR4: 0000000000772ef0 [ 1512.969404][T10608] PKRU: 55555554 [ 1512.969647][T10608] Call Trace: [ 1512.969889][T10608] [1512.970295][T10608] br_multicast_toggle_one_vlan (net/bridge/br_multicast.c:1399 net/bridge/br_multicast.c:4537) bridge [1512.970729][T10608] br_multicast_toggle_vlan (net/bridge/br_multicast.c:4549 (discriminator 2)) bridge [1512.971177][T10608] br_multicast_toggle_vlan_snooping (net/bridge/br_multicast.c:4598 (discriminator 3)) bridge [1512.971610][T10608] br_vlan_filter_toggle (net/bridge/br_vlan.c:914) bridge [1512.972292][T10608] br_changelink (net/bridge/br_netlink.c:1329) bridge [1512.972646][T10608] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:751) [1512.972972][T10608] ? br_get_size (net/bridge/br_netlink.c:1280) bridge [1512.973332][T10608] ? __mutex_lock (./arch/x86/include/asm/preempt.h:104 kernel/locking/mutex.c:739 kernel/locking/mutex.c:760) [1512.973902][T10608] ? rtnl_newlink (net/core/rtnetlink.c:343 net/core/rtnetlink.c:4056) [1512.974238][T10608] ? reacquire_held_locks (kernel/locking/lockdep.c:5385) [1512.974561][T10608] ? ww_mutex_lock (kernel/locking/mutex.c:759) [1512.974890][T10608] __rtnl_newlink (net/core/rtnetlink.c:3725 net/core/rtnetlink.c:3920) [1512.975477][T10608] rtnl_newlink (net/core/rtnetlink.c:351 net/core/rtnetlink.c:4058) [1512.975816][T10608] ? __rtnl_newlink (net/core/rtnetlink.c:3948) [1512.976159][T10608] ? rtnetlink_rcv_msg (./include/linux/rcupdate.h:341 ./include/linux/rcupdate.h:871 net/core/rtnetlink.c:6944) [1512.976485][T10608] ? __lock_release (kernel/locking/lockdep.c:5536) [1512.977056][T10608] ? __rtnl_newlink (net/core/rtnetlink.c:3948) [1512.977381][T10608] rtnetlink_rcv_msg (net/core/rtnetlink.c:6946) [1512.977717][T10608] ? validate_chain (kernel/locking/lockdep.c:3801 kernel/locking/lockdep.c:3821 kernel/locking/lockdep.c:3876) [1512.978280][T10608] ? rtnl_port_fill (net/core/rtnetlink.c:6849) [1512.978612][T10608] ? __lock_acquire (kernel/locking/lockdep.c:5237) [1512.978940][T10608] netlink_rcv_skb (net/netlink/af_netlink.c:2552) [1512.979269][T10608] ? rtnl_port_fill (net/core/rtnetlink.c:6849) [1512.979594][T10608] ? netlink_ack (net/netlink/af_netlink.c:2529) [1512.980181][T10608] ? netlink_deliver_tap (./include/linux/rcupdate.h:341 ./include/linux/rcupdate.h:871 net/netlink/af_netlink.c:340) [1512.980506][T10608] ? netlink_deliver_tap (./include/linux/rcupdate.h:341 ./include/linux/rcupdate.h:871 ./include/net/netns/generic.h:48 net/netlink/af_netlink.c:333) [1512.980832][T10608] netlink_unicast (net/netlink/af_netlink.c:1321 net/netlink/af_netlink.c:1346) [1512.981402][T10608] ? netlink_attachskb (net/netlink/af_netlink.c:1331) [1512.981733][T10608] ? __lock_acquire (kernel/locking/lockdep.c:5237) [1512.982076][T10608] netlink_sendmsg (net/netlink/af_netlink.c:1896) [1512.982404][T10608] ? netlink_unicast (net/netlink/af_netlink.c:1815) [1512.982730][T10608] ? __import_iovec (lib/iov_iter.c:1441 lib/iov_iter.c:1456) [1512.983311][T10608] ? netlink_unicast (net/netlink/af_netlink.c:1815) [1512.983641][T10608] ____sys_sendmsg (net/socket.c:714 net/socket.c:729 net/socket.c:2614) [1512.983966][T10608] ? get_timestamp.constprop.0 (net/socket.c:2560) [1512.984622][T10608] ? __copy_msghdr (net/socket.c:2540) [1512.984959][T10608] ___sys_sendmsg (net/socket.c:2670) [1512.985294][T10608] ? copy_msghdr_from_user (net/socket.c:2657) [1512.985619][T10608] ? do_pte_missing (mm/memory.c:6009) [1512.986192][T10608] ? __lock_acquire (kernel/locking/lockdep.c:5237) [1512.986526][T10608] ? __handle_mm_fault (mm/memory.c:6195) [1512.986851][T10608] ? __pmd_alloc (mm/memory.c:6104) [1512.987199][T10608] ? lock_vma_under_rcu (./include/linux/rcupdate.h:874 mm/mmap_lock.c:170) [1512.987785][T10608] __sys_sendmsg (net/socket.c:2700) [1512.988119][T10608] ? __sys_sendmsg_sock (net/socket.c:2685) [1512.988447][T10608] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [1512.988785][T10608] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:143 ./include/linux/mmap_lock.h:267 arch/x86/mm/fault.c:1338) [1512.989121][T10608] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:751) [1512.989449][T10608] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [1512.989773][T10608] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1512.990192][T10608] RIP: 0033:0x7f2416abe1e7 [ 1512.990780][T10608] Code: 0e 00 f7 d8 64 89 02 48 c7 c0 ff ff ff ff eb b9 0f 1f 00 f3 0f 1e fa 64 8b 04 25 18 00 00 00 85 c0 75 10 b8 2e 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 51 c3 48 83 ec 28 89 54 24 1c 48 89 74 24 10 All code ======== 0: 0e (bad) 1: 00 f7 add %dh,%bh 3: d8 64 89 02 fsubs 0x2(%rcx,%rcx,4) 7: 48 c7 c0 ff ff ff ff mov $0xffffffffffffffff,%rax e: eb b9 jmp 0xffffffffffffffc9 10: 0f 1f 00 nopl (%rax) 13: f3 0f 1e fa endbr64 17: 64 8b 04 25 18 00 00 mov %fs:0x18,%eax 1e: 00 1f: 85 c0 test %eax,%eax 21: 75 10 jne 0x33 23: b8 2e 00 00 00 mov $0x2e,%eax 28: 0f 05 syscall 2a:* 48 3d 00 f0 ff ff cmp $0xfffffffffffff000,%rax <-- trapping instruction 30: 77 51 ja 0x83 32: c3 ret 33: 48 83 ec 28 sub $0x28,%rsp 37: 89 54 24 1c mov %edx,0x1c(%rsp) 3b: 48 89 74 24 10 mov %rsi,0x10(%rsp) Code starting with the faulting instruction =========================================== 0: 48 3d 00 f0 ff ff cmp $0xfffffffffffff000,%rax 6: 77 51 ja 0x59 8: c3 ret 9: 48 83 ec 28 sub $0x28,%rsp d: 89 54 24 1c mov %edx,0x1c(%rsp) 11: 48 89 74 24 10 mov %rsi,0x10(%rsp) [ 1512.992193][T10608] RSP: 002b:00007fff56fe5ed8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1512.992680][T10608] RAX: ffffffffffffffda RBX: 00007fff56fe6600 RCX: 00007f2416abe1e7 [ 1512.993173][T10608] RDX: 0000000000000000 RSI: 00007fff56fe5f40 RDI: 0000000000000005 [ 1512.993901][T10608] RBP: 0000000000000002 R08: 000000000000003c R09: 0000000000000000 [ 1512.994402][T10608] R10: 00007f2416b4cac0 R11: 0000000000000246 R12: 00007fff56fe6620 [ 1512.994883][T10608] R13: 0000000068b1cca7 R14: 0000000000499600 R15: 00007fff56fe6020 | [ 1512.999464][T10608] ------------[ cut here ]------------ | [1512.999783][T10608] WARNING: CPU: 3 PID: 10608 at net/bridge/br_multicast.c:1393 br_ip6_multicast_assert_inactive (net/bridge/br_multicast.c:1393 net/bridge/br_multicast.c:1391) bridge | [ 1513.000781][T10608] Modules linked in: act_mirred ip6_gre ip6_tunnel tunnel6 cls_matchall ip_gre gre vxlan ip6_udp_tunnel udp_tunnel dummy act_gact cls_flower sch_ingress bridge stp llc 8021q vrf veth | [ 1513.002830][T10608] Tainted: [W]=WARN [ 1513.003086][T10608] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [1513.003498][T10608] RIP: 0010:br_ip6_multicast_assert_inactive (net/bridge/br_multicast.c:1393 net/bridge/br_multicast.c:1391) bridge [ 1513.004027][T10608] Code: 0f b6 04 02 48 89 fa 83 e2 07 38 d0 7f 04 84 c0 75 1d 0f b6 9b b8 03 00 00 80 fb 01 0f 87 bb 1e 05 00 83 e3 01 75 02 5b c3 90 <0f> 0b 90 5b c3 e8 8b cc e2 d3 eb dc 66 0f 1f 84 00 00 00 00 00 f3 All code ======== 0: 0f b6 04 02 movzbl (%rdx,%rax,1),%eax 4: 48 89 fa mov %rdi,%rdx 7: 83 e2 07 and $0x7,%edx a: 38 d0 cmp %dl,%al c: 7f 04 jg 0x12 e: 84 c0 test %al,%al 10: 75 1d jne 0x2f 12: 0f b6 9b b8 03 00 00 movzbl 0x3b8(%rbx),%ebx 19: 80 fb 01 cmp $0x1,%bl 1c: 0f 87 bb 1e 05 00 ja 0x51edd 22: 83 e3 01 and $0x1,%ebx 25: 75 02 jne 0x29 27: 5b pop %rbx 28: c3 ret 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: 5b pop %rbx 2e: c3 ret 2f: e8 8b cc e2 d3 call 0xffffffffd3e2ccbf 34: eb dc jmp 0x12 36: 66 0f 1f 84 00 00 00 nopw 0x0(%rax,%rax,1) 3d: 00 00 3f: f3 repz Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: 5b pop %rbx 4: c3 ret 5: e8 8b cc e2 d3 call 0xffffffffd3e2cc95 a: eb dc jmp 0xffffffffffffffe8 c: 66 0f 1f 84 00 00 00 nopw 0x0(%rax,%rax,1) 13: 00 00 15: f3 repz [ 1513.005455][T10608] RSP: 0018:ffffc900093ff2f0 EFLAGS: 00010202 [ 1513.005869][T10608] RAX: 0000000000000000 RBX: 0000000000000001 RCX: 1ffff110009ab47f [ 1513.006365][T10608] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffff888004d5a3f8 [ 1513.006850][T10608] RBP: ffff88801666b350 R08: 0000000000000000 R09: ffffed1002ccd5b2 [ 1513.007604][T10608] R10: ffff88801666ad97 R11: ffffffff98dcbda8 R12: ffff888004d58814 [ 1513.008103][T10608] R13: ffff888004d5a040 R14: ffffed10009ab404 R15: ffffed10009ab402 [ 1513.008590][T10608] FS: 00007f24168f1800(0000) GS:ffff88809e596000(0000) knlGS:0000000000000000 [ 1513.009410][T10608] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1513.009822][T10608] CR2: 00007f8268d8f258 CR3: 00000000163d6005 CR4: 0000000000772ef0 [ 1513.010322][T10608] PKRU: 55555554 [ 1513.010809][T10608] Call Trace: [ 1513.011083][T10608] [1513.011247][T10608] br_multicast_toggle_one_vlan (./include/linux/spinlock.h:396 net/bridge/br_multicast.c:4538) bridge [1513.011685][T10608] br_multicast_toggle_vlan (net/bridge/br_multicast.c:4549 (discriminator 2)) bridge [1513.012367][T10608] br_multicast_toggle_vlan_snooping (net/bridge/br_multicast.c:4598 (discriminator 3)) bridge [1513.012807][T10608] br_vlan_filter_toggle (net/bridge/br_vlan.c:914) bridge [1513.013246][T10608] br_changelink (net/bridge/br_netlink.c:1329) bridge [1513.013596][T10608] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:751) [1513.014177][T10608] ? br_get_size (net/bridge/br_netlink.c:1280) bridge [1513.014532][T10608] ? __mutex_lock (./arch/x86/include/asm/preempt.h:104 kernel/locking/mutex.c:739 kernel/locking/mutex.c:760) [1513.014862][T10608] ? rtnl_newlink (net/core/rtnetlink.c:343 net/core/rtnetlink.c:4056) [1513.015192][T10608] ? reacquire_held_locks (kernel/locking/lockdep.c:5385) [1513.015756][T10608] ? ww_mutex_lock (kernel/locking/mutex.c:759) [1513.016098][T10608] __rtnl_newlink (net/core/rtnetlink.c:3725 net/core/rtnetlink.c:3920) [1513.016434][T10608] rtnl_newlink (net/core/rtnetlink.c:351 net/core/rtnetlink.c:4058) [1513.016769][T10608] ? __rtnl_newlink (net/core/rtnetlink.c:3948) [1513.017358][T10608] ? rtnetlink_rcv_msg (./include/linux/rcupdate.h:341 ./include/linux/rcupdate.h:871 net/core/rtnetlink.c:6944) [1513.017692][T10608] ? __lock_release (kernel/locking/lockdep.c:5536) [1513.018028][T10608] ? __rtnl_newlink (net/core/rtnetlink.c:3948) [1513.018352][T10608] rtnetlink_rcv_msg (net/core/rtnetlink.c:6946) [1513.018916][T10608] ? validate_chain (kernel/locking/lockdep.c:3801 kernel/locking/lockdep.c:3821 kernel/locking/lockdep.c:3876) [1513.019254][T10608] ? rtnl_port_fill (net/core/rtnetlink.c:6849) [1513.019584][T10608] ? __lock_acquire (kernel/locking/lockdep.c:5237) [1513.019918][T10608] netlink_rcv_skb (net/netlink/af_netlink.c:2552) [1513.020252][T10608] ? rtnl_port_fill (net/core/rtnetlink.c:6849) [1513.020581][T10608] ? netlink_ack (net/netlink/af_netlink.c:2529) [1513.020916][T10608] ? netlink_deliver_tap (./include/linux/rcupdate.h:341 ./include/linux/rcupdate.h:871 net/netlink/af_netlink.c:340) [1513.021246][T10608] ? netlink_deliver_tap (./include/linux/rcupdate.h:341 ./include/linux/rcupdate.h:871 ./include/net/netns/generic.h:48 net/netlink/af_netlink.c:333) [1513.021822][T10608] netlink_unicast (net/netlink/af_netlink.c:1321 net/netlink/af_netlink.c:1346) [1513.022158][T10608] ? netlink_attachskb (net/netlink/af_netlink.c:1331) [1513.022487][T10608] ? __lock_acquire (kernel/locking/lockdep.c:5237) [1513.022815][T10608] netlink_sendmsg (net/netlink/af_netlink.c:1896) [1513.023393][T10608] ? netlink_unicast (net/netlink/af_netlink.c:1815) [1513.023719][T10608] ? __import_iovec (lib/iov_iter.c:1441 lib/iov_iter.c:1456) [1513.024054][T10608] ? netlink_unicast (net/netlink/af_netlink.c:1815) [1513.024383][T10608] ____sys_sendmsg (net/socket.c:714 net/socket.c:729 net/socket.c:2614) [1513.024972][T10608] ? get_timestamp.constprop.0 (net/socket.c:2560) [1513.025389][T10608] ? __copy_msghdr (net/socket.c:2540) [1513.025722][T10608] ___sys_sendmsg (net/socket.c:2670) [1513.026293][T10608] ? copy_msghdr_from_user (net/socket.c:2657) [1513.026620][T10608] ? do_pte_missing (mm/memory.c:6009) [1513.026943][T10608] ? __lock_acquire (kernel/locking/lockdep.c:5237) [1513.027282][T10608] ? __handle_mm_fault (mm/memory.c:6195) [1513.027617][T10608] ? __pmd_alloc (mm/memory.c:6104) [1513.028206][T10608] ? lock_vma_under_rcu (./include/linux/rcupdate.h:874 mm/mmap_lock.c:170) [1513.028537][T10608] __sys_sendmsg (net/socket.c:2700) [1513.028860][T10608] ? __sys_sendmsg_sock (net/socket.c:2685) [1513.029420][T10608] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) [1513.029752][T10608] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mmap_lock.h:143 ./include/linux/mmap_lock.h:267 arch/x86/mm/fault.c:1338) [1513.030090][T10608] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:751) [1513.030416][T10608] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [1513.030745][T10608] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1513.031398][T10608] RIP: 0033:0x7f2416abe1e7 [ 1513.031731][T10608] Code: 0e 00 f7 d8 64 89 02 48 c7 c0 ff ff ff ff eb b9 0f 1f 00 f3 0f 1e fa 64 8b 04 25 18 00 00 00 85 c0 75 10 b8 2e 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 51 c3 48 83 ec 28 89 54 24 1c 48 89 74 24 10 All code ======== 0: 0e (bad) 1: 00 f7 add %dh,%bh 3: d8 64 89 02 fsubs 0x2(%rcx,%rcx,4) 7: 48 c7 c0 ff ff ff ff mov $0xffffffffffffffff,%rax e: eb b9 jmp 0xffffffffffffffc9 10: 0f 1f 00 nopl (%rax) 13: f3 0f 1e fa endbr64 17: 64 8b 04 25 18 00 00 mov %fs:0x18,%eax 1e: 00 1f: 85 c0 test %eax,%eax 21: 75 10 jne 0x33 23: b8 2e 00 00 00 mov $0x2e,%eax 28: 0f 05 syscall 2a:* 48 3d 00 f0 ff ff cmp $0xfffffffffffff000,%rax <-- trapping instruction 30: 77 51 ja 0x83 32: c3 ret 33: 48 83 ec 28 sub $0x28,%rsp 37: 89 54 24 1c mov %edx,0x1c(%rsp) 3b: 48 89 74 24 10 mov %rsi,0x10(%rsp) Code starting with the faulting instruction =========================================== 0: 48 3d 00 f0 ff ff cmp $0xfffffffffffff000,%rax 6: 77 51 ja 0x59 8: c3 ret 9: 48 83 ec 28 sub $0x28,%rsp d: 89 54 24 1c mov %edx,0x1c(%rsp) 11: 48 89 74 24 10 mov %rsi,0x10(%rsp) [ 1513.033150][T10608] RSP: 002b:00007fff56fe5ed8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1513.033647][T10608] RAX: ffffffffffffffda RBX: 00007fff56fe6600 RCX: 00007f2416abe1e7 [ 1513.034386][T10608] RDX: 0000000000000000 RSI: 00007fff56fe5f40 RDI: 0000000000000005 [ 1513.034869][T10608] RBP: 0000000000000002 R08: 000000000000003c R09: 0000000000000000 [ 1513.035362][T10608] R10: 00007f2416b4cac0 R11: 0000000000000246 R12: 00007fff56fe6620 [ 1513.036101][T10608] R13: 0000000068b1cca7 R14: 0000000000499600 R15: 00007fff56fe6020 | [ 1513.870543][T10623] ------------[ cut here ]------------ | [1513.871058][T10623] WARNING: CPU: 0 PID: 10623 at net/bridge/br_multicast.c:1388 br_ip4_multicast_assert_inactive (net/bridge/br_multicast.c:1388 net/bridge/br_multicast.c:1386) bridge | [ 1513.871887][T10623] Modules linked in: act_mirred ip6_gre ip6_tunnel tunnel6 cls_matchall ip_gre gre vxlan ip6_udp_tunnel udp_tunnel dummy act_gact cls_flower sch_ingress bridge stp llc 8021q vrf veth | [ 1513.873852][T10623] Tainted: [W]=WARN [ 1513.874125][T10623] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [1513.874558][T10623] RIP: 0010:br_ip4_multicast_assert_inactive (net/bridge/br_multicast.c:1388 net/bridge/br_multicast.c:1386) bridge [ 1513.875138][T10623] Code: 0f b6 04 02 48 89 fa 83 e2 07 38 d0 7f 04 84 c0 75 1d 0f b6 9b 00 02 00 00 80 fb 01 0f 87 83 15 05 00 83 e3 01 75 02 5b c3 90 <0f> 0b 90 5b c3 e8 2b c3 e2 d3 eb dc 66 0f 1f 84 00 00 00 00 00 48 All code ======== 0: 0f b6 04 02 movzbl (%rdx,%rax,1),%eax 4: 48 89 fa mov %rdi,%rdx 7: 83 e2 07 and $0x7,%edx a: 38 d0 cmp %dl,%al c: 7f 04 jg 0x12 e: 84 c0 test %al,%al 10: 75 1d jne 0x2f 12: 0f b6 9b 00 02 00 00 movzbl 0x200(%rbx),%ebx 19: 80 fb 01 cmp $0x1,%bl 1c: 0f 87 83 15 05 00 ja 0x515a5 22: 83 e3 01 and $0x1,%ebx 25: 75 02 jne 0x29 27: 5b pop %rbx 28: c3 ret 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: 5b pop %rbx 2e: c3 ret 2f: e8 2b c3 e2 d3 call 0xffffffffd3e2c35f 34: eb dc jmp 0x12 36: 66 0f 1f 84 00 00 00 nopw 0x0(%rax,%rax,1) 3d: 00 00 3f: 48 rex.W Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: 5b pop %rbx 4: c3 ret 5: e8 2b c3 e2 d3 call 0xffffffffd3e2c335 a: eb dc jmp 0xffffffffffffffe8 c: 66 0f 1f 84 00 00 00 nopw 0x0(%rax,%rax,1) 13: 00 00 15: 48 rex.W [ 1513.876387][T10623] RSP: 0018:ffffc900094af030 EFLAGS: 00010202 [ 1513.877210][T10623] RAX: 0000000000000000 RBX: 0000000000000001 RCX: 1ffff110009ab47f [ 1513.877740][T10623] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffff888004d5a240 [ 1513.878283][T10623] RBP: 1ffff92001295e0a R08: 0000000000000000 R09: ffffed1002ccd5b2 [ 1513.878804][T10623] R10: ffff88801666ad97 R11: ffff88801666b368 R12: ffff8880056dec08 [ 1513.879333][T10623] R13: ffff8880164d6c08 R14: ffff888004d5a408 R15: ffff888004d5a410 [ 1513.879850][T10623] FS: 00007f7011062800(0000) GS:ffff88809e416000(0000) knlGS:0000000000000000 [ 1513.880469][T10623] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1513.880906][T10623] CR2: 00000000004e68c8 CR3: 0000000008d6a005 CR4: 0000000000772ef0 [ 1513.881433][T10623] PKRU: 55555554 [ 1513.881694][T10623] Call Trace: [ 1513.881956][T10623] [1513.882142][T10623] __br_multicast_stop (net/bridge/br_multicast.c:1399 net/bridge/br_multicast.c:4458) bridge [1513.882530][T10623] br_vlan_put_master.part.0 (net/bridge/br_vlan.c:212) bridge [1513.882986][T10623] ? __rhashtable_remove_fast.constprop.0.isra.0 (net/bridge/br_fdb.c:313) bridge [1513.883542][T10623] ? jhash (net/bridge/br_fdb.c:628) bridge [1513.883912][T10623] ? lockdep_hardirqs_on (kernel/locking/lockdep.c:4472) [1513.884279][T10623] __vlan_del (net/bridge/br_vlan.c:384) bridge [1513.884653][T10623] ? br_vlan_put_master.part.0 (net/bridge/br_vlan.c:384) bridge [1513.885125][T10623] ? jhash (net/bridge/br_fdb.c:628) bridge [1513.885499][T10623] ? nlmsg_notify (net/netlink/af_netlink.c:2596) [1513.885850][T10623] __vlan_flush (net/bridge/br_vlan.c:460) bridge [1513.886238][T10623] nbp_vlan_flush (net/bridge/br_vlan.c:1376) bridge [1513.886609][T10623] del_nbp (net/bridge/br_if.c:357) bridge [1513.886988][T10623] br_dev_delete (net/bridge/br_if.c:385 (discriminator 3)) bridge [1513.887374][T10623] rtnl_dellink (net/core/rtnetlink.c:3513 net/core/rtnetlink.c:3555) [1513.887737][T10623] ? valid_bridge_getlink_req.constprop.0 (net/core/rtnetlink.c:3521) [1513.888228][T10623] ? find_held_lock (kernel/locking/lockdep.c:5350) [1513.888582][T10623] ? __lock_acquire (kernel/locking/lockdep.c:5237) [1513.888938][T10623] ? find_held_lock (kernel/locking/lockdep.c:5350) [1513.889293][T10623] ? rtnetlink_rcv_msg (./include/linux/rcupdate.h:341 ./include/linux/rcupdate.h:871 net/core/rtnetlink.c:6944) [1513.889641][T10623] ? __lock_release (kernel/locking/lockdep.c:5536) [1513.889990][T10623] ? valid_bridge_getlink_req.constprop.0 (net/core/rtnetlink.c:3521) [1513.890433][T10623] rtnetlink_rcv_msg (net/core/rtnetlink.c:6946) [1513.890778][T10623] ? validate_chain (kernel/locking/lockdep.c:3801 kernel/locking/lockdep.c:3821 kernel/locking/lockdep.c:3876) [1513.891132][T10623] ? rtnl_port_fill (net/core/rtnetlink.c:6849) [1513.891485][T10623] ? __lock_acquire (kernel/locking/lockdep.c:5237) [1513.891834][T10623] netlink_rcv_skb (net/netlink/af_netlink.c:2552) [1513.892189][T10623] ? rtnl_port_fill (net/core/rtnetlink.c:6849) [1513.892538][T10623] ? netlink_ack (net/netlink/af_netlink.c:2529) [1513.892896][T10623] ? netlink_deliver_tap (./include/linux/rcupdate.h:341 ./include/linux/rcupdate.h:871 net/netlink/af_netlink.c:340) [1513.893275][T10623] ? netlink_deliver_tap (./include/linux/rcupdate.h:341 ./include/linux/rcupdate.h:871 ./include/net/netns/generic.h:48 net/netlink/af_netlink.c:333) [1513.893625][T10623] netlink_unicast (net/netlink/af_netlink.c:1321 net/netlink/af_netlink.c:1346) [1513.893975][T10623] ? netlink_attachskb (net/netlink/af_netlink.c:1331) [1513.894334][T10623] ? __lock_acquire (kernel/locking/lockdep.c:5237) [1513.894685][T10623] netlink_sendmsg (net/netlink/af_netlink.c:1896) [1513.895047][T10623] ? netlink_unicast (net/netlink/af_netlink.c:1815) [1513.895397][T10623] ? __import_iovec (lib/iov_iter.c:1441 lib/iov_iter.c:1456) [1513.895744][T10623] ? netlink_unicast (net/netlink/af_netlink.c:1815) [1513.896102][T10623] ____sys_sendmsg (net/socket.c:714 net/socket.c:729 net/socket.c:2614) [1513.896454][T10623] ? get_timestamp.constprop.0 (net/socket.c:2560) [1513.896882][T10623] ? __copy_msghdr (net/socket.c:2540) [1513.897252][T10623] ___sys_sendmsg (net/socket.c:2670) [1513.897603][T10623] ? kasan_record_aux_stack (mm/kasan/generic.c:548) [1513.897950][T10623] ? __call_rcu_common.constprop.0 (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:127 kernel/rcu/tree.c:3125) [1513.898397][T10623] ? copy_msghdr_from_user (net/socket.c:2657) [1513.898749][T10623] ? find_held_lock (kernel/locking/lockdep.c:5350) [1513.899106][T10623] ? __lock_acquire (kernel/locking/lockdep.c:5237) [1513.899459][T10623] ? find_held_lock (kernel/locking/lockdep.c:5350) [1513.899805][T10623] ? __virt_addr_valid (./include/linux/rcupdate.h:341 ./include/linux/rcupdate.h:953 ./include/linux/mmzone.h:2172 arch/x86/mm/physaddr.c:65) [1513.900165][T10623] ? __lock_release (kernel/locking/lockdep.c:5536) [1513.900519][T10623] __sys_sendmsg (net/socket.c:2700) [1513.900865][T10623] ? __call_rcu_common.constprop.0 (kernel/rcu/tree.c:3148) [1513.901304][T10623] ? __sys_sendmsg_sock (net/socket.c:2685) [1513.901661][T10623] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:751) [1513.902018][T10623] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [1513.902370][T10623] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1513.902799][T10623] RIP: 0033:0x7f701122f1e7 [ 1513.903166][T10623] Code: 0e 00 f7 d8 64 89 02 48 c7 c0 ff ff ff ff eb b9 0f 1f 00 f3 0f 1e fa 64 8b 04 25 18 00 00 00 85 c0 75 10 b8 2e 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 51 c3 48 83 ec 28 89 54 24 1c 48 89 74 24 10 All code ======== 0: 0e (bad) 1: 00 f7 add %dh,%bh 3: d8 64 89 02 fsubs 0x2(%rcx,%rcx,4) 7: 48 c7 c0 ff ff ff ff mov $0xffffffffffffffff,%rax e: eb b9 jmp 0xffffffffffffffc9 10: 0f 1f 00 nopl (%rax) 13: f3 0f 1e fa endbr64 17: 64 8b 04 25 18 00 00 mov %fs:0x18,%eax 1e: 00 1f: 85 c0 test %eax,%eax 21: 75 10 jne 0x33 23: b8 2e 00 00 00 mov $0x2e,%eax 28: 0f 05 syscall 2a:* 48 3d 00 f0 ff ff cmp $0xfffffffffffff000,%rax <-- trapping instruction 30: 77 51 ja 0x83 32: c3 ret 33: 48 83 ec 28 sub $0x28,%rsp 37: 89 54 24 1c mov %edx,0x1c(%rsp) 3b: 48 89 74 24 10 mov %rsi,0x10(%rsp) Code starting with the faulting instruction =========================================== 0: 48 3d 00 f0 ff ff cmp $0xfffffffffffff000,%rax 6: 77 51 ja 0x59 8: c3 ret 9: 48 83 ec 28 sub $0x28,%rsp d: 89 54 24 1c mov %edx,0x1c(%rsp) 11: 48 89 74 24 10 mov %rsi,0x10(%rsp) [ 1513.904413][T10623] RSP: 002b:00007ffef7945f98 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1513.904936][T10623] RAX: ffffffffffffffda RBX: 00007ffef79466c0 RCX: 00007f701122f1e7 [ 1513.905464][T10623] RDX: 0000000000000000 RSI: 00007ffef7946000 RDI: 0000000000000005 [ 1513.905981][T10623] RBP: 0000000000000002 R08: 0000000000000003 R09: 0000000000000078 [ 1513.906514][T10623] R10: 00007f701112cee8 R11: 0000000000000246 R12: 0000000000000002 [ 1513.907038][T10623] R13: 0000000068b1cca8 R14: 0000000000499600 R15: 0000000000000000 | [ 1513.911093][T10623] ------------[ cut here ]------------ | [1513.911435][T10623] WARNING: CPU: 0 PID: 10623 at net/bridge/br_multicast.c:1393 br_ip6_multicast_assert_inactive (net/bridge/br_multicast.c:1393 net/bridge/br_multicast.c:1391) bridge | [ 1513.912240][T10623] Modules linked in: act_mirred ip6_gre ip6_tunnel tunnel6 cls_matchall ip_gre gre vxlan ip6_udp_tunnel udp_tunnel dummy act_gact cls_flower sch_ingress bridge stp llc 8021q vrf veth | [ 1513.914450][T10623] Tainted: [W]=WARN [ 1513.914712][T10623] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [1513.915153][T10623] RIP: 0010:br_ip6_multicast_assert_inactive (net/bridge/br_multicast.c:1393 net/bridge/br_multicast.c:1391) bridge [ 1513.915713][T10623] Code: 0f b6 04 02 48 89 fa 83 e2 07 38 d0 7f 04 84 c0 75 1d 0f b6 9b b8 03 00 00 80 fb 01 0f 87 bb 1e 05 00 83 e3 01 75 02 5b c3 90 <0f> 0b 90 5b c3 e8 8b cc e2 d3 eb dc 66 0f 1f 84 00 00 00 00 00 f3 All code ======== 0: 0f b6 04 02 movzbl (%rdx,%rax,1),%eax 4: 48 89 fa mov %rdi,%rdx 7: 83 e2 07 and $0x7,%edx a: 38 d0 cmp %dl,%al c: 7f 04 jg 0x12 e: 84 c0 test %al,%al 10: 75 1d jne 0x2f 12: 0f b6 9b b8 03 00 00 movzbl 0x3b8(%rbx),%ebx 19: 80 fb 01 cmp $0x1,%bl 1c: 0f 87 bb 1e 05 00 ja 0x51edd 22: 83 e3 01 and $0x1,%ebx 25: 75 02 jne 0x29 27: 5b pop %rbx 28: c3 ret 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: 5b pop %rbx 2e: c3 ret 2f: e8 8b cc e2 d3 call 0xffffffffd3e2ccbf 34: eb dc jmp 0x12 36: 66 0f 1f 84 00 00 00 nopw 0x0(%rax,%rax,1) 3d: 00 00 3f: f3 repz Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: 5b pop %rbx 4: c3 ret 5: e8 8b cc e2 d3 call 0xffffffffd3e2cc95 a: eb dc jmp 0xffffffffffffffe8 c: 66 0f 1f 84 00 00 00 nopw 0x0(%rax,%rax,1) 13: 00 00 15: f3 repz [ 1513.916954][T10623] RSP: 0018:ffffc900094af030 EFLAGS: 00010202 [ 1513.917407][T10623] RAX: 0000000000000000 RBX: 0000000000000001 RCX: 1ffff110009ab47f [ 1513.917927][T10623] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffff888004d5a3f8 [ 1513.918459][T10623] RBP: 1ffff92001295e0a R08: 0000000000000000 R09: ffffed1002ccd5b2 [ 1513.918978][T10623] R10: ffff88801666ad97 R11: ffff88801666b368 R12: ffff8880056dec08 [ 1513.919505][T10623] R13: ffff8880164d6c08 R14: ffff888004d5a408 R15: ffff888004d5a410 [ 1513.920032][T10623] FS: 00007f7011062800(0000) GS:ffff88809e416000(0000) knlGS:0000000000000000 [ 1513.920645][T10623] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1513.921087][T10623] CR2: 00000000004e68c8 CR3: 0000000008d6a005 CR4: 0000000000772ef0 [ 1513.921607][T10623] PKRU: 55555554 [ 1513.921866][T10623] Call Trace: [ 1513.922136][T10623] [1513.922312][T10623] __br_multicast_stop (net/bridge/br_multicast.c:4459) bridge [1513.922696][T10623] br_vlan_put_master.part.0 (net/bridge/br_vlan.c:212) bridge [1513.923165][T10623] ? __rhashtable_remove_fast.constprop.0.isra.0 (net/bridge/br_fdb.c:313) bridge [1513.923715][T10623] ? jhash (net/bridge/br_fdb.c:628) bridge [1513.924100][T10623] ? lockdep_hardirqs_on (kernel/locking/lockdep.c:4472) [1513.924457][T10623] __vlan_del (net/bridge/br_vlan.c:384) bridge [1513.924832][T10623] ? br_vlan_put_master.part.0 (net/bridge/br_vlan.c:384) bridge [1513.925305][T10623] ? jhash (net/bridge/br_fdb.c:628) bridge [1513.925679][T10623] ? nlmsg_notify (net/netlink/af_netlink.c:2596) [1513.926043][T10623] __vlan_flush (net/bridge/br_vlan.c:460) bridge [1513.926424][T10623] nbp_vlan_flush (net/bridge/br_vlan.c:1376) bridge [1513.926797][T10623] del_nbp (net/bridge/br_if.c:357) bridge [1513.927183][T10623] br_dev_delete (net/bridge/br_if.c:385 (discriminator 3)) bridge [1513.927568][T10623] rtnl_dellink (net/core/rtnetlink.c:3513 net/core/rtnetlink.c:3555) [1513.927920][T10623] ? valid_bridge_getlink_req.constprop.0 (net/core/rtnetlink.c:3521) [1513.928416][T10623] ? find_held_lock (kernel/locking/lockdep.c:5350) [1513.928768][T10623] ? __lock_acquire (kernel/locking/lockdep.c:5237) [1513.929130][T10623] ? find_held_lock (kernel/locking/lockdep.c:5350) [1513.929478][T10623] ? rtnetlink_rcv_msg (./include/linux/rcupdate.h:341 ./include/linux/rcupdate.h:871 net/core/rtnetlink.c:6944) [1513.929822][T10623] ? __lock_release (kernel/locking/lockdep.c:5536) [1513.930184][T10623] ? valid_bridge_getlink_req.constprop.0 (net/core/rtnetlink.c:3521) [1513.930619][T10623] rtnetlink_rcv_msg (net/core/rtnetlink.c:6946) [1513.930967][T10623] ? validate_chain (kernel/locking/lockdep.c:3801 kernel/locking/lockdep.c:3821 kernel/locking/lockdep.c:3876) [1513.931319][T10623] ? rtnl_port_fill (net/core/rtnetlink.c:6849) [1513.931670][T10623] ? __lock_acquire (kernel/locking/lockdep.c:5237) [1513.932029][T10623] netlink_rcv_skb (net/netlink/af_netlink.c:2552) [1513.932377][T10623] ? rtnl_port_fill (net/core/rtnetlink.c:6849) [1513.932727][T10623] ? netlink_ack (net/netlink/af_netlink.c:2529) [1513.933096][T10623] ? netlink_deliver_tap (./include/linux/rcupdate.h:341 ./include/linux/rcupdate.h:871 net/netlink/af_netlink.c:340) [1513.933446][T10623] ? netlink_deliver_tap (./include/linux/rcupdate.h:341 ./include/linux/rcupdate.h:871 ./include/net/netns/generic.h:48 net/netlink/af_netlink.c:333) [1513.933795][T10623] netlink_unicast (net/netlink/af_netlink.c:1321 net/netlink/af_netlink.c:1346) [1513.934158][T10623] ? netlink_attachskb (net/netlink/af_netlink.c:1331) [1513.934508][T10623] ? __lock_acquire (kernel/locking/lockdep.c:5237) [1513.934859][T10623] netlink_sendmsg (net/netlink/af_netlink.c:1896) [1513.935217][T10623] ? netlink_unicast (net/netlink/af_netlink.c:1815) [1513.935566][T10623] ? __import_iovec (lib/iov_iter.c:1441 lib/iov_iter.c:1456) [1513.935913][T10623] ? netlink_unicast (net/netlink/af_netlink.c:1815) [1513.936272][T10623] ____sys_sendmsg (net/socket.c:714 net/socket.c:729 net/socket.c:2614) [1513.936623][T10623] ? get_timestamp.constprop.0 (net/socket.c:2560) [1513.937062][T10623] ? __copy_msghdr (net/socket.c:2540) [1513.937426][T10623] ___sys_sendmsg (net/socket.c:2670) [1513.937769][T10623] ? kasan_record_aux_stack (mm/kasan/generic.c:548) [1513.938126][T10623] ? __call_rcu_common.constprop.0 (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:127 kernel/rcu/tree.c:3125) [1513.938562][T10623] ? copy_msghdr_from_user (net/socket.c:2657) [1513.938913][T10623] ? find_held_lock (kernel/locking/lockdep.c:5350) [1513.939272][T10623] ? __lock_acquire (kernel/locking/lockdep.c:5237) [1513.939625][T10623] ? find_held_lock (kernel/locking/lockdep.c:5350) [1513.939970][T10623] ? __virt_addr_valid (./include/linux/rcupdate.h:341 ./include/linux/rcupdate.h:953 ./include/linux/mmzone.h:2172 arch/x86/mm/physaddr.c:65) [1513.940327][T10623] ? __lock_release (kernel/locking/lockdep.c:5536) [1513.940680][T10623] __sys_sendmsg (net/socket.c:2700) [1513.941033][T10623] ? __call_rcu_common.constprop.0 (kernel/rcu/tree.c:3148) [1513.941470][T10623] ? __sys_sendmsg_sock (net/socket.c:2685) [1513.941828][T10623] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:751) [1513.942191][T10623] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [1513.942539][T10623] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 1513.942971][T10623] RIP: 0033:0x7f701122f1e7 [ 1513.943335][T10623] Code: 0e 00 f7 d8 64 89 02 48 c7 c0 ff ff ff ff eb b9 0f 1f 00 f3 0f 1e fa 64 8b 04 25 18 00 00 00 85 c0 75 10 b8 2e 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 51 c3 48 83 ec 28 89 54 24 1c 48 89 74 24 10 All code ======== 0: 0e (bad) 1: 00 f7 add %dh,%bh 3: d8 64 89 02 fsubs 0x2(%rcx,%rcx,4) 7: 48 c7 c0 ff ff ff ff mov $0xffffffffffffffff,%rax e: eb b9 jmp 0xffffffffffffffc9 10: 0f 1f 00 nopl (%rax) 13: f3 0f 1e fa endbr64 17: 64 8b 04 25 18 00 00 mov %fs:0x18,%eax 1e: 00 1f: 85 c0 test %eax,%eax 21: 75 10 jne 0x33 23: b8 2e 00 00 00 mov $0x2e,%eax 28: 0f 05 syscall 2a:* 48 3d 00 f0 ff ff cmp $0xfffffffffffff000,%rax <-- trapping instruction 30: 77 51 ja 0x83 32: c3 ret 33: 48 83 ec 28 sub $0x28,%rsp 37: 89 54 24 1c mov %edx,0x1c(%rsp) 3b: 48 89 74 24 10 mov %rsi,0x10(%rsp) Code starting with the faulting instruction =========================================== 0: 48 3d 00 f0 ff ff cmp $0xfffffffffffff000,%rax 6: 77 51 ja 0x59 8: c3 ret 9: 48 83 ec 28 sub $0x28,%rsp d: 89 54 24 1c mov %edx,0x1c(%rsp) 11: 48 89 74 24 10 mov %rsi,0x10(%rsp) [ 1513.944576][T10623] RSP: 002b:00007ffef7945f98 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1513.945110][T10623] RAX: ffffffffffffffda RBX: 00007ffef79466c0 RCX: 00007f701122f1e7 [ 1513.945630][T10623] RDX: 0000000000000000 RSI: 00007ffef7946000 RDI: 0000000000000005 [ 1513.946163][T10623] RBP: 0000000000000002 R08: 0000000000000003 R09: 0000000000000078 [ 1513.946686][T10623] R10: 00007f701112cee8 R11: 0000000000000246 R12: 0000000000000002 Finger prints: br_ip4_multicast_assert_inactive:__br_multicast_stop:br_multicast_toggle_vlan_snooping:br_boolopt_multi_toggle:br_changelink br_ip4_multicast_assert_inactive:__br_multicast_stop:__vlan_del:__vlan_flush:nbp_vlan_flush br_ip4_multicast_assert_inactive:br_multicast_toggle_one_vlan:br_multicast_toggle_vlan:br_multicast_toggle_vlan_snooping:br_vlan_filter_toggle br_ip6_multicast_assert_inactive:br_multicast_toggle_one_vlan:br_multicast_toggle_vlan:br_multicast_toggle_vlan_snooping:br_vlan_filter_toggle br_ip6_multicast_assert_inactive:__br_multicast_stop:__vlan_del:__vlan_flush:nbp_vlan_flush