======================================
| 0
| xx__-> [  439.506721][    C2] ------------[ cut here ]------------
| [  439.507393][    C2] WARNING: CPU: 2 PID: 3902 at ./include/net/sch_generic.h:843 tc_run (./include/net/sch_generic.h:843 ./include/net/sch_generic.h:889 ./include/net/sch_generic.h:1366 net/core/dev.c:4370)
| [  439.507998][    C2] Modules linked in: cls_bpf cls_matchall act_gact cls_flower sch_ingress sctp vxlan sch_etf sch_fq netdevsim psample bonding
[  439.509621][    C2] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011
[  439.510078][    C2] RIP: 0010:tc_run (./include/net/sch_generic.h:843 ./include/net/sch_generic.h:889 ./include/net/sch_generic.h:1366 net/core/dev.c:4370)
[  439.510444][    C2] Code: 89 f8 49 c1 e8 03 45 0f b6 04 30 48 89 fe 83 e6 07 83 c6 01 44 38 c6 7c 09 45 84 c0 0f 85 83 02 00 00 66 83 7a 06 00 74 04 90 <0f> 0b 90 48 ba 00 00 00 00 00 fc ff df 48 8d 7b 28 48 89 fe 48 c1
All code
========
   0:	89 f8                	mov    %edi,%eax
   2:	49 c1 e8 03          	shr    $0x3,%r8
   6:	45 0f b6 04 30       	movzbl (%r8,%rsi,1),%r8d
   b:	48 89 fe             	mov    %rdi,%rsi
   e:	83 e6 07             	and    $0x7,%esi
  11:	83 c6 01             	add    $0x1,%esi
  14:	44 38 c6             	cmp    %r8b,%sil
  17:	7c 09                	jl     0x22
  19:	45 84 c0             	test   %r8b,%r8b
  1c:	0f 85 83 02 00 00    	jne    0x2a5
  22:	66 83 7a 06 00       	cmpw   $0x0,0x6(%rdx)
  27:	74 04                	je     0x2d
  29:	90                   	nop
  2a:*	0f 0b                	ud2		<-- trapping instruction
  2c:	90                   	nop
  2d:	48 ba 00 00 00 00 00 	movabs $0xdffffc0000000000,%rdx
  34:	fc ff df 
  37:	48 8d 7b 28          	lea    0x28(%rbx),%rdi
  3b:	48 89 fe             	mov    %rdi,%rsi
  3e:	48                   	rex.W
  3f:	c1                   	.byte 0xc1

Code starting with the faulting instruction
===========================================
   0:	0f 0b                	ud2
   2:	90                   	nop
   3:	48 ba 00 00 00 00 00 	movabs $0xdffffc0000000000,%rdx
   a:	fc ff df 
   d:	48 8d 7b 28          	lea    0x28(%rbx),%rdi
  11:	48 89 fe             	mov    %rdi,%rsi
  14:	48                   	rex.W
  15:	c1                   	.byte 0xc1
[  439.511633][    C2] RSP: 0018:ffffc900002185d0 EFLAGS: 00010202
[  439.512073][    C2] RAX: ffffe8ffffd09c00 RBX: ffff888009e9b8c0 RCX: 0000000000008880
[  439.512586][    C2] RDX: ffff88800b968180 RSI: 0000000000000007 RDI: ffff88800b968186
[  439.513110][    C2] RBP: ffffc90000218678 R08: 0000000000000000 R09: ffffed10028b4739
[  439.513627][    C2] R10: ffff8880145a39cf R11: ffffffffa7f88540 R12: ffffc90000218780
[  439.514139][    C2] R13: 1ffff920000430be R14: ffff888009e9b908 R15: ffff88800edcced0
[  439.514659][    C2] FS:  00007f7fc7b06b80(0000) GS:ffff8880bd808000(0000) knlGS:0000000000000000
[  439.515274][    C2] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  439.515700][    C2] CR2: 0000000000a44000 CR3: 000000000fb48006 CR4: 0000000000772ef0
[  439.516215][    C2] PKRU: 55555554
[  439.516861][    C2] Call Trace:
[  439.517131][    C2]  <IRQ>
[  439.517332][    C2]  ? veth_poll (drivers/net/veth.c:981)
[  439.517685][    C2]  ? __napi_poll.constprop.0 (net/core/dev.c:7668)
[  439.518047][    C2]  ? napi_disable (net/core/dev.c:4349)
[  439.518397][    C2]  ? neigh_resolve_output (net/core/neighbour.c:1578)
[  439.518737][    C2]  ? ip6_finish_output (net/ipv6/ip6_output.c:209 net/ipv6/ip6_output.c:220)
[  439.519090][    C2]  ? ip6_output (./include/linux/netfilter.h:307 net/ipv6/ip6_output.c:247)
[  439.519442][    C2]  __netif_receive_skb_core.constprop.0 (net/core/dev.c:4448 net/core/dev.c:5989)
[  439.519889][    C2]  ? __lock_acquire (kernel/locking/lockdep.c:5237)
[  439.520258][    C2]  ? do_xdp_generic (net/core/dev.c:5908)
[  439.520601][    C2]  ? __lock_release (kernel/locking/lockdep.c:5536)
[  439.520948][    C2]  ? kasan_save_track (./arch/x86/include/asm/current.h:25 mm/kasan/common.c:69 mm/kasan/common.c:78)
[  439.521303][    C2]  ? skb_release_data (./include/linux/atomic/atomic-arch-fallback.h:787 ./include/linux/atomic/atomic-instrumented.h:290 ./include/linux/skbuff.h:1310 net/core/skbuff.c:1073)
[  439.521648][    C2]  ? kfree_skbmem (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/refcount.h:450 net/core/skbuff.c:1132)
[  439.521997][    C2]  ? skb_pp_cow_data (net/core/skbuff.c:975)
[  439.522360][    C2]  __netif_receive_skb_list_core (net/core/dev.c:6214)
[  439.522788][    C2]  ? __lock_acquire (kernel/locking/lockdep.c:5237)
[  439.523142][    C2]  ? __netif_receive_skb_core.constprop.0 (net/core/dev.c:6191)
[  439.523575][    C2]  ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5831)
[  439.523921][    C2]  ? netif_receive_skb_list_internal (./include/linux/rcupdate.h:331 ./include/linux/rcupdate.h:867 net/core/dev.c:6356)
[  439.524351][    C2]  netif_receive_skb_list_internal (net/core/dev.c:6282 net/core/dev.c:6371)
[  439.524765][    C2]  ? gro_receive_skb (net/core/gro.c:637)
[  439.525120][    C2]  ? process_backlog (net/core/dev.c:6343)
[  439.525484][    C2]  ? ip6_input (net/ipv6/ip6_input.c:496)
[  439.525835][    C2]  ? veth_xdp_rcv_skb (drivers/net/veth.c:902)
[  439.526179][    C2]  napi_complete_done (./include/linux/list.h:45 ./include/net/gro.h:525 ./include/net/gro.h:520 ./include/net/gro.h:532 net/core/dev.c:6740)
[  439.526529][    C2]  ? netif_receive_skb_list (net/core/dev.c:6709)
[  439.526884][    C2]  veth_poll (drivers/net/veth.c:984 (discriminator 1))
[  439.527144][    C2]  ? veth_xdp_rcv (drivers/net/veth.c:969)
[  439.527502][    C2]  ? find_held_lock (kernel/locking/lockdep.c:5350)
[  439.527857][    C2]  ? mark_held_locks (kernel/locking/lockdep.c:4325)
[  439.528201][    C2]  ? _raw_spin_unlock_irq (./arch/x86/include/asm/irqflags.h:42 ./arch/x86/include/asm/irqflags.h:119 ./include/linux/spinlock_api_smp.h:159 kernel/locking/spinlock.c:202)
[  439.528552][    C2]  ? _raw_spin_unlock_irq (./arch/x86/include/asm/preempt.h:104 ./include/linux/spinlock_api_smp.h:160 kernel/locking/spinlock.c:202)
[  439.528899][    C2]  ? process_backlog (net/core/dev.c:6635)
[  439.529242][    C2]  ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:751)
[  439.529588][    C2]  __napi_poll.constprop.0 (net/core/dev.c:7668)
[  439.529948][    C2]  net_rx_action (net/core/dev.c:7730 net/core/dev.c:7882)
[  439.530309][    C2]  ? hrtimers_cpu_dying (kernel/time/sleep_timeout.c:24)
[  439.530658][    C2]  ? run_backlog_napi (net/core/dev.c:7844)
[  439.531018][    C2]  ? find_held_lock (kernel/locking/lockdep.c:5350)
[  439.531373][    C2]  ? mark_held_locks (kernel/locking/lockdep.c:4325)
[  439.531715][    C2]  handle_softirqs (kernel/softirq.c:623)
[  439.532068][    C2]  ? __neigh_event_send (./include/linux/bottom_half.h:33 net/core/neighbour.c:1273)
[  439.532420][    C2]  do_softirq (kernel/softirq.c:523 kernel/softirq.c:510)
[  439.532681][    C2]  </IRQ>
[  439.532876][    C2]  <TASK>
[  439.533069][    C2]  __local_bh_enable_ip (kernel/softirq.c:450)
[  439.533422][    C2]  __neigh_event_send (net/core/neighbour.c:1274)
[  439.533764][    C2]  ? __local_bh_enable_ip (kernel/softirq.c:429)
[  439.534114][    C2]  ? ___neigh_create (net/core/neighbour.c:727)
[  439.534466][    C2]  ? ___neigh_create (net/core/neighbour.c:727)
[  439.534805][    C2]  neigh_resolve_output (net/core/neighbour.c:1578)
[  439.535156][    C2]  ? ip6_finish_output2 (net/ipv6/ip6_output.c:128)
[  439.535511][    C2]  ? ip6_mtu (./include/linux/rcupdate.h:341 ./include/linux/rcupdate.h:897 ./include/net/ip6_route.h:317 net/ipv6/route.c:3266)
[  439.535777][    C2]  ip6_finish_output (net/ipv6/ip6_output.c:209 net/ipv6/ip6_output.c:220)
[  439.536127][    C2]  ip6_output (./include/linux/netfilter.h:307 net/ipv6/ip6_output.c:247)
[  439.536401][    C2]  ? ip6_finish_output (net/ipv6/ip6_output.c:228)
[  439.536738][    C2]  ? find_held_lock (kernel/locking/lockdep.c:5350)
[  439.537090][    C2]  ? ip6_mtu (./include/linux/rcupdate.h:341 ./include/linux/rcupdate.h:897 ./include/net/ip6_route.h:317 net/ipv6/route.c:3266)
[  439.537356][    C2]  ? __lock_release (kernel/locking/lockdep.c:5536)
[  439.537701][    C2]  ip6_xmit (./include/net/dst.h:464 ./include/linux/netfilter.h:318 ./include/linux/netfilter.h:312 net/ipv6/ip6_output.c:371)
[  439.537989][    C2]  ? ip6_append_data (net/ipv6/ip6_output.c:271)
[  439.538341][    C2]  ? ip6_dst_check.part.0 (./include/linux/rcupdate.h:341 ./include/linux/rcupdate.h:897 net/ipv6/route.c:2813)
[  439.538684][    C2]  ? __lock_acquire (kernel/locking/lockdep.c:5237)
[  439.539048][    C2]  inet6_csk_xmit (net/ipv6/inet6_connection_sock.c:120 (discriminator 11))
[  439.539403][    C2]  ? inet6_csk_route_socket (net/ipv6/inet6_connection_sock.c:100)
[  439.539750][    C2]  ? __copy_skb_header (./include/net/dst.h:293 net/core/skbuff.c:1514)
[  439.540116][    C2]  __tcp_transmit_skb (net/ipv4/tcp_output.c:1628)
[  439.540487][    C2]  ? __tcp_select_window (net/ipv4/tcp_output.c:1449)
[  439.540838][    C2]  ? tcp_call_bpf (./include/net/sock.h:1685 ./include/net/sock.h:1780 ./include/net/tcp.h:2775)
[  439.541194][    C2]  tcp_connect (net/ipv4/tcp_output.c:1646 net/ipv4/tcp_output.c:4335)
[  439.541546][    C2]  tcp_v6_connect (net/ipv6/tcp_ipv6.c:336)
[  439.541900][    C2]  ? inet6_sk_rx_dst_set (net/ipv6/tcp_ipv6.c:138)
[  439.542250][    C2]  ? __lock_acquire (kernel/locking/lockdep.c:5237)
[  439.542866][    C2]  ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116)
[  439.543203][    C2]  ? find_held_lock (kernel/locking/lockdep.c:5350)
[  439.543564][    C2]  __inet_stream_connect (net/ipv4/af_inet.c:679)
[  439.544147][    C2]  ? __local_bh_enable_ip (./arch/x86/include/asm/irqflags.h:42 ./arch/x86/include/asm/irqflags.h:119 kernel/softirq.c:455)
[  439.544500][    C2]  ? __inet_stream_connect (net/ipv4/af_inet.c:746)
[  439.544849][    C2]  inet_stream_connect (net/ipv4/af_inet.c:751)
[  439.545188][    C2]  __sys_connect (./include/linux/file.h:62 ./include/linux/file.h:83 net/socket.c:2111)
[  439.545543][    C2]  ? __sys_connect_file (net/socket.c:2109)
[  439.546126][    C2]  ? fd_install (./include/linux/rcupdate.h:341 ./include/linux/rcupdate.h:979 fs/file.c:676)
[  439.546490][    C2]  ? fd_install (./arch/x86/include/asm/preempt.h:104 ./include/linux/rcupdate.h:981 fs/file.c:676)
[  439.546838][    C2]  ? __sys_socket (net/socket.c:516 net/socket.c:1756)
[  439.547178][    C2]  ? update_socket_protocol+0x10/0x10
[  439.547768][    C2]  __x64_sys_connect (net/socket.c:2124)
[  439.548113][    C2]  ? lockdep_hardirqs_on (kernel/locking/lockdep.c:4472)
[  439.548467][    C2]  do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94)
[  439.548807][    C2]  entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130)
[  439.549249][    C2] RIP: 0033:0x7f7fc7c18d67
[  439.549602][    C2] Code: 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa 64 8b 04 25 18 00 00 00 85 c0 75 10 b8 2a 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 51 c3 48 83 ec 18 89 54 24 0c 48 89 34 24 89
All code
========
   0:	64 89 01             	mov    %eax,%fs:(%rcx)
   3:	48 83 c8 ff          	or     $0xffffffffffffffff,%rax
   7:	c3                   	ret
   8:	66 2e 0f 1f 84 00 00 	cs nopw 0x0(%rax,%rax,1)
   f:	00 00 00 
  12:	90                   	nop
  13:	f3 0f 1e fa          	endbr64
  17:	64 8b 04 25 18 00 00 	mov    %fs:0x18,%eax
  1e:	00 
  1f:	85 c0                	test   %eax,%eax
  21:	75 10                	jne    0x33
  23:	b8 2a 00 00 00       	mov    $0x2a,%eax
  28:	0f 05                	syscall
  2a:*	48 3d 00 f0 ff ff    	cmp    $0xfffffffffffff000,%rax		<-- trapping instruction
  30:	77 51                	ja     0x83
  32:	c3                   	ret
  33:	48 83 ec 18          	sub    $0x18,%rsp
  37:	89 54 24 0c          	mov    %edx,0xc(%rsp)
  3b:	48 89 34 24          	mov    %rsi,(%rsp)
  3f:	89                   	.byte 0x89

Code starting with the faulting instruction
===========================================
   0:	48 3d 00 f0 ff ff    	cmp    $0xfffffffffffff000,%rax
   6:	77 51                	ja     0x59
   8:	c3                   	ret
   9:	48 83 ec 18          	sub    $0x18,%rsp
   d:	89 54 24 0c          	mov    %edx,0xc(%rsp)
  11:	48 89 34 24          	mov    %rsi,(%rsp)
  15:	89                   	.byte 0x89
[  439.551029][    C2] RSP: 002b:00007ffd38b62b68 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[  439.551542][    C2] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 00007f7fc7c18d67
[  439.552070][    C2] RDX: 000000000000001c RSI: 0000000000a450e0 RDI: 0000000000000005
[  439.552578][    C2] RBP: 00007ffd38b62cb0 R08: 00007ffd38b62ac0 R09: 0000000000000000
[  439.553081][    C2] R10: 00007f7fc7b0f618 R11: 0000000000000246 R12: 0000000000000005


Finger prints:
tc_run:__netif_receive_skb_list_core:netif_receive_skb_list_internal:napi_complete_done:veth_poll