======================================
| [  538.702311][ T5347] netem: version 1.3
| [  542.599477][    C3] ------------[ cut here ]------------
| [  542.600046][    C3] WARNING: CPU: 3 PID: 0 at ./include/net/sch_generic.h:843 netem_dequeue (./include/net/sch_generic.h:843 ./include/net/sch_generic.h:889 ./include/net/sch_generic.h:901 net/sched/sch_netem.c:712) sch_netem
| [  542.600662][    C3] Modules linked in: sch_netem ipt_REJECT nf_reject_ipv4 nft_compat nf_tables
[  542.601833][    C3] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011
[  542.602221][    C3] RIP: 0010:netem_dequeue (./include/net/sch_generic.h:843 ./include/net/sch_generic.h:889 ./include/net/sch_generic.h:901 net/sched/sch_netem.c:712) sch_netem
[  542.602620][    C3] Code: 7d 06 48 89 fa 48 c1 ea 03 0f b6 14 02 48 89 f8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 89 09 00 00 66 83 7d 06 00 74 04 90 <0f> 0b 90 48 b8 00 00 00 00 00 fc ff df 4c 89 d2 48 c1 ea 03 0f b6
All code
========
   0:	7d 06                	jge    0x8
   2:	48 89 fa             	mov    %rdi,%rdx
   5:	48 c1 ea 03          	shr    $0x3,%rdx
   9:	0f b6 14 02          	movzbl (%rdx,%rax,1),%edx
   d:	48 89 f8             	mov    %rdi,%rax
  10:	83 e0 07             	and    $0x7,%eax
  13:	83 c0 01             	add    $0x1,%eax
  16:	38 d0                	cmp    %dl,%al
  18:	7c 08                	jl     0x22
  1a:	84 d2                	test   %dl,%dl
  1c:	0f 85 89 09 00 00    	jne    0x9ab
  22:	66 83 7d 06 00       	cmpw   $0x0,0x6(%rbp)
  27:	74 04                	je     0x2d
  29:	90                   	nop
  2a:*	0f 0b                	ud2		<-- trapping instruction
  2c:	90                   	nop
  2d:	48 b8 00 00 00 00 00 	movabs $0xdffffc0000000000,%rax
  34:	fc ff df 
  37:	4c 89 d2             	mov    %r10,%rdx
  3a:	48 c1 ea 03          	shr    $0x3,%rdx
  3e:	0f                   	.byte 0xf
  3f:	b6                   	.byte 0xb6

Code starting with the faulting instruction
===========================================
   0:	0f 0b                	ud2
   2:	90                   	nop
   3:	48 b8 00 00 00 00 00 	movabs $0xdffffc0000000000,%rax
   a:	fc ff df 
   d:	4c 89 d2             	mov    %r10,%rdx
  10:	48 c1 ea 03          	shr    $0x3,%rdx
  14:	0f                   	.byte 0xf
  15:	b6                   	.byte 0xb6
[  542.603700][    C3] RSP: 0018:ffffc90000270d10 EFLAGS: 00010202
[  542.604103][    C3] RAX: 0000000000000007 RBX: ffff88800bd24c00 RCX: 0000000000000017
[  542.604556][    C3] RDX: 0000000000000000 RSI: 0000000000000001 RDI: ffff88800f60b286
[  542.605011][    C3] RBP: ffff88800f60b280 R08: 0000007e7fcc42a3 R09: 0000000000000001
[  542.605468][    C3] R10: ffff88800c7e7588 R11: ffffffff9a3a2008 R12: 0000000000000001
[  542.605924][    C3] R13: dffffc0000000000 R14: ffff88800c7e7560 R15: ffff88800c7e7560
[  542.606393][    C3] FS:  0000000000000000(0000) GS:ffff888096d03000(0000) knlGS:0000000000000000
[  542.606933][    C3] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  542.607321][    C3] CR2: 0000000025890008 CR3: 000000000ec9d002 CR4: 0000000000772ef0
[  542.607778][    C3] PKRU: 55555554
[  542.608005][    C3] Call Trace:
[  542.608231][    C3]  <IRQ>
[  542.608397][    C3]  ? get_slot_next (net/sched/sch_netem.c:703) sch_netem
[  542.609067][    C3]  ? validate_chain (kernel/locking/lockdep.c:3801 kernel/locking/lockdep.c:3821 kernel/locking/lockdep.c:3876)
[  542.609389][    C3]  dequeue_skb (net/sched/sch_generic.c:297)
[  542.609710][    C3]  __qdisc_run (net/sched/sch_generic.c:403 net/sched/sch_generic.c:420)
[  542.610021][    C3]  ? sch_direct_xmit (net/sched/sch_generic.c:416)
[  542.610328][    C3]  ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116)
[  542.610636][    C3]  ? spin_bug (kernel/locking/spinlock_debug.c:114)
[  542.610874][    C3]  ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5831)
[  542.611176][    C3]  ? net_tx_action (./include/linux/spinlock.h:352 net/core/dev.c:5767)
[  542.611485][    C3]  net_tx_action (./include/net/sch_generic.h:223 ./include/net/pkt_sched.h:121 ./include/net/pkt_sched.h:117 net/core/dev.c:5783)
[  542.611797][    C3]  handle_softirqs (kernel/softirq.c:623)
[  542.612104][    C3]  irq_exit_rcu (kernel/softirq.c:657 kernel/softirq.c:496 kernel/softirq.c:723 kernel/softirq.c:739)
[  542.612409][    C3]  sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1052 arch/x86/kernel/apic/apic.c:1052)
[  542.612715][    C3]  </IRQ>
[  542.612885][    C3]  <TASK>
[  542.613039][    C3]  asm_sysvec_apic_timer_interrupt (./arch/x86/include/asm/idtentry.h:697)
[  542.613409][    C3] RIP: 0010:pv_native_safe_halt (arch/x86/kernel/paravirt.c:82)
[  542.613716][    C3] Code: 48 8b 3d d4 8a 26 02 e8 1f 00 00 00 48 2b 05 08 45 a0 00 c3 0f 1f 80 00 00 00 00 f3 0f 1e fa eb 07 0f 00 2d 33 bc 25 00 fb f4 <c3> 0f 1f 40 d6 41 54 55 53 48 89 fb 48 83 ec 10 8b 17 83 e2 fe 41
All code
========
   0:	48 8b 3d d4 8a 26 02 	mov    0x2268ad4(%rip),%rdi        # 0x2268adb
   7:	e8 1f 00 00 00       	call   0x2b
   c:	48 2b 05 08 45 a0 00 	sub    0xa04508(%rip),%rax        # 0xa0451b
  13:	c3                   	ret
  14:	0f 1f 80 00 00 00 00 	nopl   0x0(%rax)
  1b:	f3 0f 1e fa          	endbr64
  1f:	eb 07                	jmp    0x28
  21:	0f 00 2d 33 bc 25 00 	verw   0x25bc33(%rip)        # 0x25bc5b
  28:	fb                   	sti
  29:	f4                   	hlt
  2a:*	c3                   	ret		<-- trapping instruction
  2b:	0f 1f 40 d6          	nopl   -0x2a(%rax)
  2f:	41 54                	push   %r12
  31:	55                   	push   %rbp
  32:	53                   	push   %rbx
  33:	48 89 fb             	mov    %rdi,%rbx
  36:	48 83 ec 10          	sub    $0x10,%rsp
  3a:	8b 17                	mov    (%rdi),%edx
  3c:	83 e2 fe             	and    $0xfffffffe,%edx
  3f:	41                   	rex.B

Code starting with the faulting instruction
===========================================
   0:	c3                   	ret
   1:	0f 1f 40 d6          	nopl   -0x2a(%rax)
   5:	41 54                	push   %r12
   7:	55                   	push   %rbp
   8:	53                   	push   %rbx
   9:	48 89 fb             	mov    %rdi,%rbx
   c:	48 83 ec 10          	sub    $0x10,%rsp
  10:	8b 17                	mov    (%rdi),%edx
  12:	83 e2 fe             	and    $0xfffffffe,%edx
  15:	41                   	rex.B
[  542.614801][    C3] RSP: 0018:ffffc90000157dd8 EFLAGS: 00000202
[  542.615222][    C3] RAX: 0000000000baf291 RBX: 1ffff9200002afbf RCX: ffffffff97639225
[  542.615701][    C3] RDX: 0000000000000000 RSI: ffffffff97fa1299 RDI: ffffffff97a5d640
[  542.616203][    C3] RBP: 0000000000000000 R08: 0000000000000001 R09: ffffed10060b6252
[  542.616693][    C3] R10: ffff8880305b1293 R11: ffff8880305b6c18 R12: 0000000000000000
[  542.617161][    C3] R13: ffff888001b3c5c0 R14: dffffc0000000000 R15: 0000000000000000
[  542.617618][    C3]  ? ct_kernel_exit.constprop.0 (kernel/context_tracking.c:146)
[  542.618008][    C3]  default_idle (./arch/x86/include/asm/paravirt.h:107 arch/x86/kernel/process.c:767)
[  542.618242][    C3]  default_idle_call (./include/linux/cpuidle.h:143 kernel/sched/idle.c:123)
[  542.618557][    C3]  cpuidle_idle_call (kernel/sched/idle.c:191)
[  542.618868][    C3]  ? arch_cpu_idle_exit+0x40/0x40
[  542.619169][    C3]  ? tsc_verify_tsc_adjust (arch/x86/kernel/tsc_sync.c:60)
[  542.619473][    C3]  do_idle (kernel/sched/idle.c:330)
[  542.619699][    C3]  cpu_startup_entry (kernel/sched/idle.c:427 (discriminator 1))
[  542.620005][    C3]  start_secondary (arch/x86/kernel/smpboot.c:203 arch/x86/kernel/smpboot.c:283)
[  542.620304][    C3]  ? set_cpu_sibling_map (arch/x86/kernel/smpboot.c:233)
[  542.620607][    C3]  common_startup_64 (arch/x86/kernel/head_64.S:419)
| [ 2972.223238][    C0] ------------[ cut here ]------------
| [ 2972.223779][    C0] WARNING: CPU: 0 PID: 26187 at ./include/net/sch_generic.h:843 tc_run (./include/net/sch_generic.h:843 ./include/net/sch_generic.h:889 ./include/net/sch_generic.h:1366 net/core/dev.c:4370)
| [ 2972.224394][    C0] Modules linked in: act_csum act_pedit cls_fw sch_ingress xt_mark xt_statistic xt_length xt_bpf sch_netem ipt_REJECT nf_reject_ipv4 nft_compat nf_tables
| [ 2972.226285][    C0] Tainted: [W]=WARN
[ 2972.226584][    C0] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011
[ 2972.227055][    C0] RIP: 0010:tc_run (./include/net/sch_generic.h:843 ./include/net/sch_generic.h:889 ./include/net/sch_generic.h:1366 net/core/dev.c:4370)
[ 2972.227409][    C0] Code: 89 f8 49 c1 e8 03 45 0f b6 04 30 48 89 fe 83 e6 07 83 c6 01 44 38 c6 7c 09 45 84 c0 0f 85 83 02 00 00 66 83 7a 06 00 74 04 90 <0f> 0b 90 48 ba 00 00 00 00 00 fc ff df 48 8d 7b 28 48 89 fe 48 c1
All code
========
   0:	89 f8                	mov    %edi,%eax
   2:	49 c1 e8 03          	shr    $0x3,%r8
   6:	45 0f b6 04 30       	movzbl (%r8,%rsi,1),%r8d
   b:	48 89 fe             	mov    %rdi,%rsi
   e:	83 e6 07             	and    $0x7,%esi
  11:	83 c6 01             	add    $0x1,%esi
  14:	44 38 c6             	cmp    %r8b,%sil
  17:	7c 09                	jl     0x22
  19:	45 84 c0             	test   %r8b,%r8b
  1c:	0f 85 83 02 00 00    	jne    0x2a5
  22:	66 83 7a 06 00       	cmpw   $0x0,0x6(%rdx)
  27:	74 04                	je     0x2d
  29:	90                   	nop
  2a:*	0f 0b                	ud2		<-- trapping instruction
  2c:	90                   	nop
  2d:	48 ba 00 00 00 00 00 	movabs $0xdffffc0000000000,%rdx
  34:	fc ff df 
  37:	48 8d 7b 28          	lea    0x28(%rbx),%rdi
  3b:	48 89 fe             	mov    %rdi,%rsi
  3e:	48                   	rex.W
  3f:	c1                   	.byte 0xc1

Code starting with the faulting instruction
===========================================
   0:	0f 0b                	ud2
   2:	90                   	nop
   3:	48 ba 00 00 00 00 00 	movabs $0xdffffc0000000000,%rdx
   a:	fc ff df 
   d:	48 8d 7b 28          	lea    0x28(%rbx),%rdi
  11:	48 89 fe             	mov    %rdi,%rsi
  14:	48                   	rex.W
  15:	c1                   	.byte 0xc1
[ 2972.228644][    C0] RSP: 0018:ffffc900000077f0 EFLAGS: 00010202
[ 2972.229101][    C0] RAX: ffffe8ffffc096d0 RBX: ffff8880109ad460 RCX: 0000000000000001
[ 2972.229618][    C0] RDX: ffff88800f37dd80 RSI: 0000000000000007 RDI: ffff88800f37dd86
[ 2972.230153][    C0] RBP: ffffc900000078a0 R08: 0000000000000000 R09: 0000000000000001
[ 2972.230710][    C0] R10: 0000000000002000 R11: ffffffff98598460 R12: ffffc90000007970
[ 2972.231235][    C0] R13: 1ffff92000000f02 R14: ffff8880109ad4a8 R15: ffff88800ab29f28
[ 2972.232205][    C0] FS:  00007f4ed2933b80(0000) GS:ffff888096b83000(0000) knlGS:0000000000000000
[ 2972.232826][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 2972.233252][    C0] CR2: 0000000031968008 CR3: 000000000f6a3002 CR4: 0000000000772ef0
[ 2972.233802][    C0] PKRU: 55555554
[ 2972.234064][    C0] Call Trace:
[ 2972.234319][    C0]  <IRQ>
[ 2972.234504][    C0]  ? napi_disable (net/core/dev.c:4349)
[ 2972.234875][    C0]  ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:751)
[ 2972.235223][    C0]  ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5831)
[ 2972.235566][    C0]  ? __dev_queue_xmit (./include/linux/bottom_half.h:20 ./include/linux/rcupdate.h:918 net/core/dev.c:4745)
[ 2972.235932][    C0]  __dev_queue_xmit (net/core/dev.c:4507 net/core/dev.c:4762)
[ 2972.236286][    C0]  ? __lock_acquire (kernel/locking/lockdep.c:5237)
[ 2972.236643][    C0]  ? netdev_core_pick_tx (net/core/dev.c:4728)
[ 2972.237006][    C0]  ? eth_header (net/ethernet/eth.c:100)
[ 2972.237357][    C0]  ? neigh_resolve_output (./include/linux/netdevice.h:3422 net/core/neighbour.c:1589 net/core/neighbour.c:1574)
[ 2972.237713][    C0]  ? __neigh_update (./include/linux/rcupdate.h:331 ./include/linux/rcupdate.h:867 net/core/neighbour.c:1476)
[ 2972.238074][    C0]  __neigh_update (./include/linux/instrumented.h:96 (discriminator 2) ./include/linux/atomic/atomic-instrumented.h:400 (discriminator 2) ./include/linux/refcount.h:389 (discriminator 2) ./include/linux/refcount.h:432 (discriminator 2) ./include/linux/refcount.h:450 (discriminator 2) ./include/net/neighbour.h:458 (discriminator 2) net/core/neighbour.c:1494 (discriminator 2))
[ 2972.238423][    C0]  arp_process (./include/linux/instrumented.h:96 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:400 (discriminator 4) ./include/linux/refcount.h:389 (discriminator 4) ./include/linux/refcount.h:432 (discriminator 4) ./include/linux/refcount.h:450 (discriminator 4) ./include/net/neighbour.h:458 (discriminator 4) net/ipv4/arp.c:937 (discriminator 4))
[ 2972.238793][    C0]  ? arp_send (net/ipv4/arp.c:702)
[ 2972.239060][    C0]  ? rcu_read_lock_any_held (kernel/rcu/update.c:386 kernel/rcu/update.c:380)
[ 2972.239398][    C0]  ? validate_chain (kernel/locking/lockdep.c:3801 kernel/locking/lockdep.c:3821 kernel/locking/lockdep.c:3876)
[ 2972.239763][    C0]  ? __lock_acquire (kernel/locking/lockdep.c:5237)
[ 2972.240112][    C0]  ? arp_rcv.part.0 (net/ipv4/arp.c:968)
[ 2972.240454][    C0]  ? process_backlog (./include/linux/local_lock_internal.h:57 net/core/dev.c:6601)
[ 2972.240809][    C0]  __netif_receive_skb_one_core (net/core/dev.c:6131)
[ 2972.241230][    C0]  ? __netif_receive_skb_list_core (net/core/dev.c:6131)
[ 2972.241673][    C0]  ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:751)
[ 2972.242028][    C0]  ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5831)
[ 2972.242372][    C0]  ? process_backlog (./include/linux/local_lock_internal.h:57 net/core/dev.c:6601)
[ 2972.242723][    C0]  process_backlog (./include/linux/rcupdate.h:895 net/core/dev.c:6604)
[ 2972.243084][    C0]  __napi_poll.constprop.0 (net/core/dev.c:7668)
[ 2972.243426][    C0]  net_rx_action (net/core/dev.c:7730 net/core/dev.c:7882)
[ 2972.243794][    C0]  ? run_backlog_napi (net/core/dev.c:7844)
[ 2972.244136][    C0]  ? sched_balance_domains (kernel/sched/fair.c:12209)
[ 2972.244486][    C0]  ? sched_balance_domains (kernel/sched/fair.c:12272)
[ 2972.244858][    C0]  ? __pick_next_task_fair (kernel/sched/fair.c:12196)
[ 2972.245198][    C0]  ? sched_balance_update_blocked_averages (kernel/sched/sched.h:1575 kernel/sched/sched.h:1877 kernel/sched/fair.c:9912)
[ 2972.245622][    C0]  ? lockdep_hardirqs_on (kernel/locking/lockdep.c:4472)
[ 2972.245992][    C0]  handle_softirqs (kernel/softirq.c:623)
[ 2972.246339][    C0]  ? __neigh_event_send (./include/linux/bottom_half.h:33 net/core/neighbour.c:1273)
[ 2972.246711][    C0]  do_softirq (kernel/softirq.c:523 kernel/softirq.c:510)
[ 2972.246980][    C0]  </IRQ>
[ 2972.247153][    C0]  <TASK>
[ 2972.247326][    C0]  __local_bh_enable_ip (kernel/softirq.c:450)
[ 2972.247676][    C0]  __neigh_event_send (net/core/neighbour.c:1274)
[ 2972.248046][    C0]  neigh_resolve_output (net/core/neighbour.c:1578)
[ 2972.248453][    C0]  ? ___neigh_create (net/core/neighbour.c:727)
[ 2972.248829][    C0]  ip_finish_output2 (./include/net/neighbour.h:556 net/ipv4/ip_output.c:237)
[ 2972.249188][    C0]  ? ip_skb_dst_mtu (./include/linux/rcupdate.h:341 ./include/linux/rcupdate.h:897 ./include/net/ip.h:504 ./include/net/ip.h:518)
[ 2972.249536][    C0]  ? ip_append_data.part.0 (net/ipv4/ip_output.c:201)
[ 2972.249894][    C0]  ? ip_skb_dst_mtu (./include/net/ip.h:523)
[ 2972.250239][    C0]  ? __ip_finish_output (./include/linux/skbuff.h:1724 ./include/linux/skbuff.h:5149 net/ipv4/ip_output.c:309 net/ipv4/ip_output.c:297)
[ 2972.250581][    C0]  ip_output (./include/linux/netfilter.h:307 net/ipv4/ip_output.c:438)
[ 2972.250857][    C0]  ? ip_finish_output (net/ipv4/ip_output.c:429)
[ 2972.251202][    C0]  ? find_held_lock (kernel/locking/lockdep.c:5350)
[ 2972.251547][    C0]  ? ip_frag_next (./include/net/dst.h:463)
[ 2972.251928][    C0]  __ip_queue_xmit (./include/net/dst.h:464 net/ipv4/ip_output.c:131 net/ipv4/ip_output.c:534)
[ 2972.252275][    C0]  ? __skb_clone (./arch/x86/include/asm/atomic.h:53 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:992 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:436 (discriminator 4) net/core/skbuff.c:1585 (discriminator 4))
[ 2972.252622][    C0]  __tcp_transmit_skb (net/ipv4/tcp_output.c:1628)
[ 2972.252997][    C0]  ? __tcp_select_window (net/ipv4/tcp_output.c:1449)
[ 2972.253353][    C0]  tcp_connect (net/ipv4/tcp_output.c:1646 net/ipv4/tcp_output.c:4335)
[ 2972.253705][    C0]  tcp_v4_connect (net/ipv4/tcp_ipv4.c:347)
[ 2972.254103][    C0]  ? bpf_iter_init_tcp (net/ipv4/tcp_ipv4.c:225)
[ 2972.254452][    C0]  ? __local_bh_enable_ip (./arch/x86/include/asm/irqflags.h:42 ./arch/x86/include/asm/irqflags.h:119 kernel/softirq.c:455)
[ 2972.254818][    C0]  mptcp_connect (net/mptcp/protocol.c:3803)
[ 2972.255161][    C0]  __inet_stream_connect (net/ipv4/af_inet.c:679)
[ 2972.255497][    C0]  ? __local_bh_enable_ip (./arch/x86/include/asm/irqflags.h:42 ./arch/x86/include/asm/irqflags.h:119 kernel/softirq.c:455)
[ 2972.255857][    C0]  ? __inet_stream_connect (net/ipv4/af_inet.c:746)
[ 2972.256191][    C0]  inet_stream_connect (net/ipv4/af_inet.c:751)
[ 2972.256530][    C0]  __sys_connect (./include/linux/file.h:62 ./include/linux/file.h:83 net/socket.c:2111)
[ 2972.256915][    C0]  ? __sys_connect_file (net/socket.c:2109)
[ 2972.257266][    C0]  ? __sys_setsockopt (./include/linux/file.h:62 ./include/linux/file.h:83 net/socket.c:2377)
[ 2972.257614][    C0]  __x64_sys_connect (net/socket.c:2124)
[ 2972.257967][    C0]  ? lockdep_hardirqs_on (kernel/locking/lockdep.c:4472)
[ 2972.258306][    C0]  do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94)
[ 2972.258647][    C0]  entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130)
[ 2972.259085][    C0] RIP: 0033:0x7f4ed2a45d67
[ 2972.259440][    C0] Code: 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa 64 8b 04 25 18 00 00 00 85 c0 75 10 b8 2a 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 51 c3 48 83 ec 18 89 54 24 0c 48 89 34 24 89
All code
========
   0:	64 89 01             	mov    %eax,%fs:(%rcx)
   3:	48 83 c8 ff          	or     $0xffffffffffffffff,%rax
   7:	c3                   	ret
   8:	66 2e 0f 1f 84 00 00 	cs nopw 0x0(%rax,%rax,1)
   f:	00 00 00 
  12:	90                   	nop
  13:	f3 0f 1e fa          	endbr64
  17:	64 8b 04 25 18 00 00 	mov    %fs:0x18,%eax
  1e:	00 
  1f:	85 c0                	test   %eax,%eax
  21:	75 10                	jne    0x33
  23:	b8 2a 00 00 00       	mov    $0x2a,%eax
  28:	0f 05                	syscall
  2a:*	48 3d 00 f0 ff ff    	cmp    $0xfffffffffffff000,%rax		<-- trapping instruction
  30:	77 51                	ja     0x83
  32:	c3                   	ret
  33:	48 83 ec 18          	sub    $0x18,%rsp
  37:	89 54 24 0c          	mov    %edx,0xc(%rsp)
  3b:	48 89 34 24          	mov    %rsi,(%rsp)
  3f:	89                   	.byte 0x89

Code starting with the faulting instruction
===========================================
   0:	48 3d 00 f0 ff ff    	cmp    $0xfffffffffffff000,%rax
   6:	77 51                	ja     0x59
   8:	c3                   	ret
   9:	48 83 ec 18          	sub    $0x18,%rsp
   d:	89 54 24 0c          	mov    %edx,0xc(%rsp)
  11:	48 89 34 24          	mov    %rsi,(%rsp)
  15:	89                   	.byte 0x89
[ 2972.260664][    C0] RSP: 002b:00007ffe0d0a1fe8 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[ 2972.261194][    C0] RAX: ffffffffffffffda RBX: 00000000319682a0 RCX: 00007f4ed2a45d67
[ 2972.261717][    C0] RDX: 0000000000000010 RSI: 00000000319682d0 RDI: 0000000000000005
[ 2972.262233][    C0] RBP: 0000000000000005 R08: 0000000000000005 R09: 0000000000000001
[ 2972.262763][    C0] R10: 00007f4ed293c618 R11: 0000000000000246 R12: 0000000000000000
[ 2972.263272][    C0] R13: 0000000000000106 R14: 0000000000407df0 R15: 00007f4ed2b85000
| [ 2972.472281][T26187] ------------[ cut here ]------------
| [ 2972.472843][T26187] WARNING: CPU: 1 PID: 26187 at ./include/net/sch_generic.h:843 tcf_pedit_act (./include/net/sch_generic.h:843 ./include/net/sch_generic.h:889 ./include/net/act_api.h:232 net/sched/act_pedit.c:409) act_pedit
| [ 2972.473544][T26187] Modules linked in: act_csum act_pedit cls_fw sch_ingress xt_mark xt_statistic xt_length xt_bpf sch_netem ipt_REJECT nf_reject_ipv4 nft_compat nf_tables
| [ 2972.475480][T26187] Tainted: [W]=WARN
[ 2972.475755][T26187] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011
[ 2972.476259][T26187] RIP: 0010:tcf_pedit_act (./include/net/sch_generic.h:843 ./include/net/sch_generic.h:889 ./include/net/act_api.h:232 net/sched/act_pedit.c:409) act_pedit
[ 2972.476760][T26187] Code: 00 0f 84 81 f8 ff ff 48 8b 3c 24 48 89 44 24 50 44 89 4c 24 48 e8 91 11 80 d5 48 8b 44 24 50 44 8b 4c 24 48 e9 5f f8 ff ff 90 <0f> 0b 90 e9 60 f6 ff ff 8b b4 24 a8 00 00 00 b9 04 00 00 00 48 89
All code
========
   0:	00 0f                	add    %cl,(%rdi)
   2:	84 81 f8 ff ff 48    	test   %al,0x48fffff8(%rcx)
   8:	8b 3c 24             	mov    (%rsp),%edi
   b:	48 89 44 24 50       	mov    %rax,0x50(%rsp)
  10:	44 89 4c 24 48       	mov    %r9d,0x48(%rsp)
  15:	e8 91 11 80 d5       	call   0xffffffffd58011ab
  1a:	48 8b 44 24 50       	mov    0x50(%rsp),%rax
  1f:	44 8b 4c 24 48       	mov    0x48(%rsp),%r9d
  24:	e9 5f f8 ff ff       	jmp    0xfffffffffffff888
  29:	90                   	nop
  2a:*	0f 0b                	ud2		<-- trapping instruction
  2c:	90                   	nop
  2d:	e9 60 f6 ff ff       	jmp    0xfffffffffffff692
  32:	8b b4 24 a8 00 00 00 	mov    0xa8(%rsp),%esi
  39:	b9 04 00 00 00       	mov    $0x4,%ecx
  3e:	48                   	rex.W
  3f:	89                   	.byte 0x89

Code starting with the faulting instruction
===========================================
   0:	0f 0b                	ud2
   2:	90                   	nop
   3:	e9 60 f6 ff ff       	jmp    0xfffffffffffff668
   8:	8b b4 24 a8 00 00 00 	mov    0xa8(%rsp),%esi
   f:	b9 04 00 00 00       	mov    $0x4,%ecx
  14:	48                   	rex.W
  15:	89                   	.byte 0x89
[ 2972.478040][T26187] RSP: 0018:ffffc90000526f10 EFLAGS: 00010206
[ 2972.478499][T26187] RAX: 0000000000000007 RBX: ffff8880109ad1a0 RCX: ffff8880109ad214
[ 2972.479064][T26187] RDX: 0000000000000000 RSI: ffffffff97a5d5c0 RDI: ffff8880199e1ec6
[ 2972.479614][T26187] RBP: ffffe8ffffc89870 R08: ffff8880109ad1a0 R09: ffff8880109ad25c
[ 2972.480150][T26187] R10: ffff8880109ad260 R11: 0000000000000030 R12: 0000000000000005
[ 2972.480670][T26187] R13: ffff88800e8cee00 R14: ffff888019a2bf40 R15: ffff8880199e1ec0
[ 2972.481246][T26187] FS:  00007f4ed2933b80(0000) GS:ffff888096c03000(0000) knlGS:0000000000000000
[ 2972.481869][T26187] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 2972.482331][T26187] CR2: 00007f4ed2a0f370 CR3: 000000000f6a3001 CR4: 0000000000772ef0
[ 2972.482866][T26187] PKRU: 55555554
[ 2972.483139][T26187] Call Trace:
[ 2972.483407][T26187]  <TASK>
[ 2972.483589][T26187]  ? lockdep_hardirqs_on (kernel/locking/lockdep.c:4472)
[ 2972.484425][T26187]  ? ref_tracker_alloc (lib/ref_tracker.c:283)
[ 2972.484799][T26187]  ? find_held_lock (kernel/locking/lockdep.c:5350)
[ 2972.485158][T26187]  ? ref_tracker_dir_print (lib/ref_tracker.c:256)
[ 2972.485513][T26187]  ? dst_init (net/core/dst.c:53)
[ 2972.485787][T26187]  ? pedit_l4_skb_offset.constprop.0 (net/sched/act_pedit.c:389) act_pedit
[ 2972.486365][T26187]  ? ip_route_output_key_hash (net/ipv4/route.c:2700)
[ 2972.486754][T26187]  ? ip_route_output_flow (net/ipv4/route.c:2929)
[ 2972.487118][T26187]  ? ip_route_me_harder (net/ipv4/netfilter.c:54)
[ 2972.487474][T26187]  ? nf_route_table_hook4 (net/netfilter/nft_chain_route.c:47) nf_tables
[ 2972.487957][T26187]  ? nf_hook_slow (./include/linux/netfilter.h:158 net/netfilter/core.c:623)
[ 2972.488326][T26187]  ? __ip_local_out (./include/linux/netfilter.h:273 net/ipv4/ip_output.c:120)
[ 2972.488671][T26187]  ? __ip_queue_xmit (net/ipv4/ip_output.c:129 (discriminator 4) net/ipv4/ip_output.c:534 (discriminator 4))
[ 2972.489035][T26187]  ? __tcp_transmit_skb (net/ipv4/tcp_output.c:1628)
[ 2972.489420][T26187]  ? tcp_write_xmit (net/ipv4/tcp_output.c:2999)
[ 2972.489770][T26187]  ? __tcp_push_pending_frames (net/ipv4/tcp_output.c:3182)
[ 2972.490119][T26187]  ? mptcp_push_release.isra.0 (net/mptcp/protocol.c:1497)
[ 2972.490494][T26187]  ? __mptcp_push_pending (./include/linux/list.h:975 ./include/linux/timer.h:147 net/mptcp/protocol.c:920 net/mptcp/protocol.c:1639)
[ 2972.490853][T26187]  tcf_action_exec.part.0 (./include/net/tc_wrapper.h:217 net/sched/act_api.c:1150)
[ 2972.491228][T26187] fw_classify (net/sched/cls_fw.c:70) cls_fw
[ 2972.491595][T26187]  __tcf_classify.constprop.0 (net/sched/cls_api.c:1767)
[ 2972.491970][T26187]  tcf_classify (net/sched/cls_api.c:1809)
[ 2972.492243][T26187]  ? __tcf_classify.constprop.0 (net/sched/cls_api.c:1809)
[ 2972.492682][T26187]  ? tc_run (./include/net/sch_generic.h:843 ./include/net/sch_generic.h:889 ./include/net/sch_generic.h:1366 net/core/dev.c:4370)
[ 2972.492961][T26187]  tc_run (net/core/dev.c:4373)
[ 2972.493237][T26187]  ? napi_disable (net/core/dev.c:4349)
[ 2972.493586][T26187]  ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5831)
[ 2972.493953][T26187]  ? __dev_queue_xmit (./include/linux/bottom_half.h:20 ./include/linux/rcupdate.h:918 net/core/dev.c:4745)
[ 2972.494329][T26187]  __dev_queue_xmit (net/core/dev.c:4507 net/core/dev.c:4762)
[ 2972.494669][T26187]  ? __lock_acquire (kernel/locking/lockdep.c:5237)
[ 2972.495026][T26187]  ? netdev_core_pick_tx (net/core/dev.c:4728)
[ 2972.495385][T26187]  ? neigh_hh_output (./include/linux/seqlock.h:74 ./include/linux/seqlock.h:836 ./include/net/neighbour.h:510)
[ 2972.495766][T26187]  ? lockdep_hardirqs_on (kernel/locking/lockdep.c:4472)
[ 2972.496119][T26187]  ? neigh_hh_output (./include/linux/seqlock.h:74 ./include/linux/seqlock.h:836 ./include/net/neighbour.h:510)
[ 2972.496487][T26187]  ip_finish_output2 (./include/net/neighbour.h:554 net/ipv4/ip_output.c:237)
[ 2972.496861][T26187]  ? ip_skb_dst_mtu (./include/linux/rcupdate.h:341 ./include/linux/rcupdate.h:897 ./include/net/ip.h:504 ./include/net/ip.h:518)
[ 2972.497225][T26187]  ? ip_append_data.part.0 (net/ipv4/ip_output.c:201)
[ 2972.497576][T26187]  ? __ip_finish_output (net/ipv4/ip_output.c:258 net/ipv4/ip_output.c:310 net/ipv4/ip_output.c:297)
[ 2972.497938][T26187]  ip_output (./include/linux/netfilter.h:307 net/ipv4/ip_output.c:438)
[ 2972.498220][T26187]  ? ip_finish_output (net/ipv4/ip_output.c:429)
[ 2972.498567][T26187]  ? find_held_lock (kernel/locking/lockdep.c:5350)
[ 2972.498927][T26187]  ? ip_frag_next (./include/net/dst.h:463)
[ 2972.499317][T26187]  __ip_queue_xmit (./include/net/dst.h:464 net/ipv4/ip_output.c:131 net/ipv4/ip_output.c:534)
[ 2972.499676][T26187]  ? __skb_clone (./arch/x86/include/asm/atomic.h:53 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:992 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:436 (discriminator 4) net/core/skbuff.c:1585 (discriminator 4))
[ 2972.500054][T26187]  __tcp_transmit_skb (net/ipv4/tcp_output.c:1628)
[ 2972.500435][T26187]  ? __tcp_select_window (net/ipv4/tcp_output.c:1449)
[ 2972.500801][T26187]  ? tso_fragment (./arch/x86/include/asm/atomic.h:28 ./include/linux/atomic/atomic-arch-fallback.h:503 ./include/linux/atomic/atomic-instrumented.h:68 ./include/linux/skbuff.h:2099 net/ipv4/tcp_output.c:2355)
[ 2972.501164][T26187]  tcp_write_xmit (net/ipv4/tcp_output.c:2999)
[ 2972.501527][T26187]  ? tcp_retrans_try_collapse (net/ipv4/tcp_output.c:2903)
[ 2972.501966][T26187]  ? mptcp_subflow_set_active (net/mptcp/protocol.c:1398)
[ 2972.502348][T26187]  ? __subflow_push_pending (net/mptcp/protocol.h:415 net/mptcp/protocol.c:1543)
[ 2972.502699][T26187]  __tcp_push_pending_frames (net/ipv4/tcp_output.c:3182)
[ 2972.503068][T26187]  mptcp_push_release.isra.0 (net/mptcp/protocol.c:1497)
[ 2972.503443][T26187]  __mptcp_push_pending (./include/linux/list.h:975 ./include/linux/timer.h:147 net/mptcp/protocol.c:920 net/mptcp/protocol.c:1639)
[ 2972.503873][T26187]  ? __mptcp_wr_shutdown (net/mptcp/protocol.c:1581)
[ 2972.504408][T26187]  ? __sk_mem_raise_allocated (./arch/x86/include/asm/atomic64_64.h:15 ./include/linux/atomic/atomic-arch-fallback.h:2583 ./include/linux/atomic/atomic-long.h:38 ./include/linux/atomic/atomic-instrumented.h:3189 ./include/net/proto_memory.h:47 ./include/net/proto_memory.h:53 net/core/sock.c:3294)
[ 2972.505047][T26187]  mptcp_sendmsg (net/mptcp/protocol.c:1943)
[ 2972.505615][T26187]  ? mptcp_sendmsg_fastopen.constprop.0 (net/mptcp/protocol.c:1823)
[ 2972.506288][T26187]  ? poll_schedule_timeout.constprop.0 (fs/select.c:209)
[ 2972.507028][T26187]  ? find_held_lock (kernel/locking/lockdep.c:5350)
[ 2972.507629][T26187]  sock_write_iter (net/socket.c:727 net/socket.c:742 net/socket.c:1195)
[ 2972.508236][T26187]  ? ____sys_recvmsg (net/socket.c:1176)
[ 2972.508871][T26187]  ? validate_chain (kernel/locking/lockdep.c:3801 kernel/locking/lockdep.c:3821 kernel/locking/lockdep.c:3876)
[ 2972.509487][T26187]  vfs_write (fs/read_write.c:594 fs/read_write.c:686)
[ 2972.509928][T26187]  ? kernel_write (fs/read_write.c:667)
[ 2972.510527][T26187]  ? get_old_itimerspec32 (kernel/time/time.c:848)
[ 2972.511136][T26187]  ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:751)
[ 2972.511755][T26187]  ? kvm_clock_get_cycles (./arch/x86/include/asm/preempt.h:95 arch/x86/kernel/kvmclock.c:80 arch/x86/kernel/kvmclock.c:86)
[ 2972.512346][T26187]  ? ktime_get_ts64 (kernel/time/timekeeping.c:387 (discriminator 4) kernel/time/timekeeping.c:404 (discriminator 4) kernel/time/timekeeping.c:967 (discriminator 4))
[ 2972.512945][T26187]  ? __rseq_handle_notify_resume (kernel/rseq.c:442)
[ 2972.513703][T26187]  ksys_write (fs/read_write.c:738)
[ 2972.514170][T26187]  ? __x64_sys_poll (fs/select.c:1076 fs/select.c:1062 fs/select.c:1062)
[ 2972.514630][T26187]  ? __ia32_sys_read (fs/read_write.c:728)
[ 2972.515047][T26187]  ? do_user_addr_fault (./include/linux/mmap_lock.h:396 arch/x86/mm/fault.c:1415)
[ 2972.515423][T26187]  do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94)
[ 2972.515786][T26187]  entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130)
[ 2972.516244][T26187] RIP: 0033:0x7f4ed2a34257
[ 2972.516624][T26187] Code: 0f 00 f7 d8 64 89 02 48 c7 c0 ff ff ff ff eb b7 0f 1f 00 f3 0f 1e fa 64 8b 04 25 18 00 00 00 85 c0 75 10 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 51 c3 48 83 ec 28 48 89 54 24 18 48 89 74 24
All code
========
   0:	0f 00                	(bad)
   2:	f7 d8                	neg    %eax
   4:	64 89 02             	mov    %eax,%fs:(%rdx)
   7:	48 c7 c0 ff ff ff ff 	mov    $0xffffffffffffffff,%rax
   e:	eb b7                	jmp    0xffffffffffffffc7
  10:	0f 1f 00             	nopl   (%rax)
  13:	f3 0f 1e fa          	endbr64
  17:	64 8b 04 25 18 00 00 	mov    %fs:0x18,%eax
  1e:	00 
  1f:	85 c0                	test   %eax,%eax
  21:	75 10                	jne    0x33
  23:	b8 01 00 00 00       	mov    $0x1,%eax
  28:	0f 05                	syscall
  2a:*	48 3d 00 f0 ff ff    	cmp    $0xfffffffffffff000,%rax		<-- trapping instruction
  30:	77 51                	ja     0x83
  32:	c3                   	ret
  33:	48 83 ec 28          	sub    $0x28,%rsp
  37:	48 89 54 24 18       	mov    %rdx,0x18(%rsp)
  3c:	48                   	rex.W
  3d:	89                   	.byte 0x89
  3e:	74 24                	je     0x64

Code starting with the faulting instruction
===========================================
   0:	48 3d 00 f0 ff ff    	cmp    $0xfffffffffffff000,%rax
   6:	77 51                	ja     0x59
   8:	c3                   	ret
   9:	48 83 ec 28          	sub    $0x28,%rsp
   d:	48 89 54 24 18       	mov    %rdx,0x18(%rsp)
  12:	48                   	rex.W
  13:	89                   	.byte 0x89
  14:	74 24                	je     0x3a
[ 2972.518483][T26187] RSP: 002b:00007ffe0d09ff18 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 2972.519397][T26187] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00007f4ed2a34257
[ 2972.520287][T26187] RDX: 0000000000001f9c RSI: 00007ffe0d0a2144 RDI: 0000000000000005
[ 2972.521190][T26187] RBP: 0000000000001f9c R08: 00007f4ed2b2f21c R09: 00007f4ed2b2f280
[ 2972.521803][T26187] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffe0d0a20e0
[ 2972.522320][T26187] R13: 00007ffe0d0a2144 R14: 0000000000000064 R15: 0000000000000064
| [ 2972.527527][T26187] ------------[ cut here ]------------
| [ 2972.528085][T26187] WARNING: CPU: 1 PID: 26187 at ./include/net/sch_generic.h:843 tcf_csum_act (./include/net/sch_generic.h:843 ./include/net/sch_generic.h:889 ./include/net/act_api.h:232 net/sched/act_csum.c:582) act_csum
| [ 2972.529251][T26187] Modules linked in: act_csum act_pedit cls_fw sch_ingress xt_mark xt_statistic xt_length xt_bpf sch_netem ipt_REJECT nf_reject_ipv4 nft_compat nf_tables
| [ 2972.532832][T26187] Tainted: [W]=WARN
[ 2972.533274][T26187] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011
[ 2972.534039][T26187] RIP: 0010:tcf_csum_act (./include/net/sch_generic.h:843 ./include/net/sch_generic.h:889 ./include/net/act_api.h:232 net/sched/act_csum.c:582) act_csum
[ 2972.534832][T26187] Code: 06 48 89 fa 48 c1 ea 03 0f b6 14 02 48 89 f8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 3b 08 00 00 66 41 83 7d 06 00 74 04 90 <0f> 0b 90 48 b8 00 00 00 00 00 fc ff df 49 8d 7f 28 48 89 fa 48 c1
All code
========
   0:	06                   	(bad)
   1:	48 89 fa             	mov    %rdi,%rdx
   4:	48 c1 ea 03          	shr    $0x3,%rdx
   8:	0f b6 14 02          	movzbl (%rdx,%rax,1),%edx
   c:	48 89 f8             	mov    %rdi,%rax
   f:	83 e0 07             	and    $0x7,%eax
  12:	83 c0 01             	add    $0x1,%eax
  15:	38 d0                	cmp    %dl,%al
  17:	7c 08                	jl     0x21
  19:	84 d2                	test   %dl,%dl
  1b:	0f 85 3b 08 00 00    	jne    0x85c
  21:	66 41 83 7d 06 00    	cmpw   $0x0,0x6(%r13)
  27:	74 04                	je     0x2d
  29:	90                   	nop
  2a:*	0f 0b                	ud2		<-- trapping instruction
  2c:	90                   	nop
  2d:	48 b8 00 00 00 00 00 	movabs $0xdffffc0000000000,%rax
  34:	fc ff df 
  37:	49 8d 7f 28          	lea    0x28(%r15),%rdi
  3b:	48 89 fa             	mov    %rdi,%rdx
  3e:	48                   	rex.W
  3f:	c1                   	.byte 0xc1

Code starting with the faulting instruction
===========================================
   0:	0f 0b                	ud2
   2:	90                   	nop
   3:	48 b8 00 00 00 00 00 	movabs $0xdffffc0000000000,%rax
   a:	fc ff df 
   d:	49 8d 7f 28          	lea    0x28(%r15),%rdi
  11:	48 89 fa             	mov    %rdi,%rdx
  14:	48                   	rex.W
  15:	c1                   	.byte 0xc1
[ 2972.536616][T26187] RSP: 0018:ffffc90000526fd0 EFLAGS: 00010206
[ 2972.537066][T26187] RAX: 0000000000000007 RBX: ffff88800e8cf400 RCX: 1ffffffff80cf68b
[ 2972.537618][T26187] RDX: 0000000000000000 RSI: ffffffff97a5d5c0 RDI: ffff8880199e1ec6
[ 2972.538137][T26187] RBP: ffffe8ffffc8bf50 R08: 0000000000000003 R09: 0000000000000094
[ 2972.539060][T26187] R10: 0000000000000000 R11: 0000000000000030 R12: ffff888009627860
[ 2972.539956][T26187] R13: ffff8880199e1ec0 R14: 0000000000000005 R15: ffff8880109ad1a0
[ 2972.540874][T26187] FS:  00007f4ed2933b80(0000) GS:ffff888096c03000(0000) knlGS:0000000000000000
[ 2972.541815][T26187] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 2972.542329][T26187] CR2: 00007f4ed2a0f370 CR3: 000000000f6a3001 CR4: 0000000000772ef0
[ 2972.543234][T26187] PKRU: 55555554
[ 2972.543690][T26187] Call Trace:
[ 2972.544032][T26187]  <TASK>
[ 2972.544221][T26187]  ? __ip_queue_xmit (net/ipv4/ip_output.c:129 (discriminator 4) net/ipv4/ip_output.c:534 (discriminator 4))
[ 2972.544577][T26187]  ? __tcp_transmit_skb (net/ipv4/tcp_output.c:1628)
[ 2972.544936][T26187]  ? __tcp_push_pending_frames (net/ipv4/tcp_output.c:3182)
[ 2972.545311][T26187]  ? mptcp_push_release.isra.0 (net/mptcp/protocol.c:1497)
[ 2972.545658][T26187]  ? __mptcp_push_pending (./include/linux/list.h:975 ./include/linux/timer.h:147 net/mptcp/protocol.c:920 net/mptcp/protocol.c:1639)
[ 2972.546017][T26187]  tcf_action_exec.part.0 (./include/net/tc_wrapper.h:217 net/sched/act_api.c:1150)
[ 2972.546553][T26187] fw_classify (net/sched/cls_fw.c:70) cls_fw
[ 2972.547105][T26187]  __tcf_classify.constprop.0 (net/sched/cls_api.c:1767)
[ 2972.547479][T26187]  tcf_classify (net/sched/cls_api.c:1809)
[ 2972.547749][T26187]  ? __tcf_classify.constprop.0 (net/sched/cls_api.c:1809)
[ 2972.548198][T26187]  ? tc_run (./include/net/sch_generic.h:843 ./include/net/sch_generic.h:889 ./include/net/sch_generic.h:1366 net/core/dev.c:4370)
[ 2972.548463][T26187]  tc_run (net/core/dev.c:4373)
[ 2972.548734][T26187]  ? napi_disable (net/core/dev.c:4349)
[ 2972.549084][T26187]  ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5831)
[ 2972.549458][T26187]  ? __dev_queue_xmit (./include/linux/bottom_half.h:20 ./include/linux/rcupdate.h:918 net/core/dev.c:4745)
[ 2972.549826][T26187]  __dev_queue_xmit (net/core/dev.c:4507 net/core/dev.c:4762)
[ 2972.550198][T26187]  ? __lock_acquire (kernel/locking/lockdep.c:5237)
[ 2972.550705][T26187]  ? netdev_core_pick_tx (net/core/dev.c:4728)
[ 2972.551073][T26187]  ? neigh_hh_output (./include/linux/seqlock.h:74 ./include/linux/seqlock.h:836 ./include/net/neighbour.h:510)
[ 2972.551433][T26187]  ? lockdep_hardirqs_on (kernel/locking/lockdep.c:4472)
[ 2972.552088][T26187]  ? neigh_hh_output (./include/linux/seqlock.h:74 ./include/linux/seqlock.h:836 ./include/net/neighbour.h:510)
[ 2972.552461][T26187]  ip_finish_output2 (./include/net/neighbour.h:554 net/ipv4/ip_output.c:237)
[ 2972.552828][T26187]  ? ip_skb_dst_mtu (./include/linux/rcupdate.h:341 ./include/linux/rcupdate.h:897 ./include/net/ip.h:504 ./include/net/ip.h:518)
[ 2972.553205][T26187]  ? ip_append_data.part.0 (net/ipv4/ip_output.c:201)
[ 2972.553826][T26187]  ? __ip_finish_output (net/ipv4/ip_output.c:258 net/ipv4/ip_output.c:310 net/ipv4/ip_output.c:297)
[ 2972.554183][T26187]  ip_output (./include/linux/netfilter.h:307 net/ipv4/ip_output.c:438)
[ 2972.554451][T26187]  ? ip_finish_output (net/ipv4/ip_output.c:429)
[ 2972.554810][T26187]  ? find_held_lock (kernel/locking/lockdep.c:5350)
[ 2972.555413][T26187]  ? ip_frag_next (./include/net/dst.h:463)
[ 2972.555775][T26187]  __ip_queue_xmit (./include/net/dst.h:464 net/ipv4/ip_output.c:131 net/ipv4/ip_output.c:534)
[ 2972.556134][T26187]  ? __skb_clone (./arch/x86/include/asm/atomic.h:53 (discriminator 4) ./include/linux/atomic/atomic-arch-fallback.h:992 (discriminator 4) ./include/linux/atomic/atomic-instrumented.h:436 (discriminator 4) net/core/skbuff.c:1585 (discriminator 4))
[ 2972.556491][T26187]  __tcp_transmit_skb (net/ipv4/tcp_output.c:1628)
[ 2972.556874][T26187]  ? __tcp_select_window (net/ipv4/tcp_output.c:1449)
[ 2972.557259][T26187]  ? tso_fragment (./arch/x86/include/asm/atomic.h:28 ./include/linux/atomic/atomic-arch-fallback.h:503 ./include/linux/atomic/atomic-instrumented.h:68 ./include/linux/skbuff.h:2099 net/ipv4/tcp_output.c:2355)
[ 2972.557613][T26187]  tcp_write_xmit (net/ipv4/tcp_output.c:2999)
[ 2972.558009][T26187]  ? tcp_retrans_try_collapse (net/ipv4/tcp_output.c:2903)
[ 2972.558695][T26187]  ? mptcp_subflow_set_active (net/mptcp/protocol.c:1398)
[ 2972.559057][T26187]  ? __subflow_push_pending (net/mptcp/protocol.h:415 net/mptcp/protocol.c:1543)
[ 2972.559415][T26187]  __tcp_push_pending_frames (net/ipv4/tcp_output.c:3182)
[ 2972.559765][T26187]  mptcp_push_release.isra.0 (net/mptcp/protocol.c:1497)
[ 2972.560372][T26187]  __mptcp_push_pending (./include/linux/list.h:975 ./include/linux/timer.h:147 net/mptcp/protocol.c:920 net/mptcp/protocol.c:1639)
[ 2972.560718][T26187]  ? __mptcp_wr_shutdown (net/mptcp/protocol.c:1581)
[ 2972.561061][T26187]  ? __sk_mem_raise_allocated (./arch/x86/include/asm/atomic64_64.h:15 ./include/linux/atomic/atomic-arch-fallback.h:2583 ./include/linux/atomic/atomic-long.h:38 ./include/linux/atomic/atomic-instrumented.h:3189 ./include/net/proto_memory.h:47 ./include/net/proto_memory.h:53 net/core/sock.c:3294)
[ 2972.561542][T26187]  mptcp_sendmsg (net/mptcp/protocol.c:1943)
[ 2972.562169][T26187]  ? mptcp_sendmsg_fastopen.constprop.0 (net/mptcp/protocol.c:1823)
[ 2972.562595][T26187]  ? poll_schedule_timeout.constprop.0 (fs/select.c:209)
[ 2972.563026][T26187]  ? find_held_lock (kernel/locking/lockdep.c:5350)
[ 2972.563626][T26187]  sock_write_iter (net/socket.c:727 net/socket.c:742 net/socket.c:1195)
[ 2972.563975][T26187]  ? ____sys_recvmsg (net/socket.c:1176)
[ 2972.564335][T26187]  ? validate_chain (kernel/locking/lockdep.c:3801 kernel/locking/lockdep.c:3821 kernel/locking/lockdep.c:3876)
[ 2972.564696][T26187]  vfs_write (fs/read_write.c:594 fs/read_write.c:686)
[ 2972.565224][T26187]  ? kernel_write (fs/read_write.c:667)
[ 2972.565573][T26187]  ? get_old_itimerspec32 (kernel/time/time.c:848)
[ 2972.565919][T26187]  ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:751)
[ 2972.566271][T26187]  ? kvm_clock_get_cycles (./arch/x86/include/asm/preempt.h:95 arch/x86/kernel/kvmclock.c:80 arch/x86/kernel/kvmclock.c:86)
[ 2972.566627][T26187]  ? ktime_get_ts64 (kernel/time/timekeeping.c:387 (discriminator 4) kernel/time/timekeeping.c:404 (discriminator 4) kernel/time/timekeeping.c:967 (discriminator 4))
[ 2972.567234][T26187]  ? __rseq_handle_notify_resume (kernel/rseq.c:442)
[ 2972.567672][T26187]  ksys_write (fs/read_write.c:738)
[ 2972.567932][T26187]  ? __x64_sys_poll (fs/select.c:1076 fs/select.c:1062 fs/select.c:1062)
[ 2972.568279][T26187]  ? __ia32_sys_read (fs/read_write.c:728)
[ 2972.568868][T26187]  ? do_user_addr_fault (./include/linux/mmap_lock.h:396 arch/x86/mm/fault.c:1415)
[ 2972.569239][T26187]  do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94)
[ 2972.569582][T26187]  entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130)
[ 2972.570272][T26187] RIP: 0033:0x7f4ed2a34257
[ 2972.570621][T26187] Code: 0f 00 f7 d8 64 89 02 48 c7 c0 ff ff ff ff eb b7 0f 1f 00 f3 0f 1e fa 64 8b 04 25 18 00 00 00 85 c0 75 10 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 51 c3 48 83 ec 28 48 89 54 24 18 48 89 74 24
All code
========
   0:	0f 00                	(bad)
   2:	f7 d8                	neg    %eax
   4:	64 89 02             	mov    %eax,%fs:(%rdx)
   7:	48 c7 c0 ff ff ff ff 	mov    $0xffffffffffffffff,%rax
   e:	eb b7                	jmp    0xffffffffffffffc7
  10:	0f 1f 00             	nopl   (%rax)
  13:	f3 0f 1e fa          	endbr64
  17:	64 8b 04 25 18 00 00 	mov    %fs:0x18,%eax
  1e:	00 
  1f:	85 c0                	test   %eax,%eax
  21:	75 10                	jne    0x33
  23:	b8 01 00 00 00       	mov    $0x1,%eax
  28:	0f 05                	syscall
  2a:*	48 3d 00 f0 ff ff    	cmp    $0xfffffffffffff000,%rax		<-- trapping instruction
  30:	77 51                	ja     0x83
  32:	c3                   	ret
  33:	48 83 ec 28          	sub    $0x28,%rsp
  37:	48 89 54 24 18       	mov    %rdx,0x18(%rsp)
  3c:	48                   	rex.W
  3d:	89                   	.byte 0x89
  3e:	74 24                	je     0x64

Code starting with the faulting instruction
===========================================
   0:	48 3d 00 f0 ff ff    	cmp    $0xfffffffffffff000,%rax
   6:	77 51                	ja     0x59
   8:	c3                   	ret
   9:	48 83 ec 28          	sub    $0x28,%rsp
   d:	48 89 54 24 18       	mov    %rdx,0x18(%rsp)
  12:	48                   	rex.W
  13:	89                   	.byte 0x89
  14:	74 24                	je     0x3a
[ 2972.572118][T26187] RSP: 002b:00007ffe0d09ff18 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 2972.572661][T26187] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00007f4ed2a34257
[ 2972.573184][T26187] RDX: 0000000000001f9c RSI: 00007ffe0d0a2144 RDI: 0000000000000005
[ 2972.573964][T26187] RBP: 0000000000001f9c R08: 00007f4ed2b2f21c R09: 00007f4ed2b2f280
[ 2972.574479][T26187] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffe0d0a20e0


Finger prints:
netem_dequeue:dequeue_skb:__qdisc_run:net_tx_action:handle_softirqs
tcf_pedit_act:fw_classify:tcf_classify:tc_run:__dev_queue_xmit
tcf_csum_act:fw_classify:tcf_classify:tc_run:__dev_queue_xmit
tc_run:__dev_queue_xmit:__neigh_update:arp_process:__netif_receive_skb_one_core