======================================
| 0
| xx__-> [  858.814451][    C0] ------------[ cut here ]------------
| [  858.815031][    C0] WARNING: CPU: 0 PID: 11688 at ./include/net/sch_generic.h:843 tc_run (./include/net/sch_generic.h:843 ./include/net/sch_generic.h:889 ./include/net/sch_generic.h:1366 net/core/dev.c:4370)
| [  858.815635][    C0] Modules linked in: cls_bpf sch_ingress vxcan can_dev xfrm_interface ipvlan nft_chain_nat xt_nat nf_nat nf_conntrack nf_defrag_ipv6 nf_defrag_ipv4 nft_compat nf_tables sctp_diag sctp unix_diag bonding psample xfrm_user macsec vxlan ip6_gre ip_gre gre cls_u32 sch_htb [last unloaded: netdevsim]
[  858.818063][    C0] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011
[  858.818486][    C0] RIP: 0010:tc_run (./include/net/sch_generic.h:843 ./include/net/sch_generic.h:889 ./include/net/sch_generic.h:1366 net/core/dev.c:4370)
[  858.818829][    C0] Code: 89 f8 49 c1 e8 03 45 0f b6 04 30 48 89 fe 83 e6 07 83 c6 01 44 38 c6 7c 09 45 84 c0 0f 85 83 02 00 00 66 83 7a 06 00 74 04 90 <0f> 0b 90 48 ba 00 00 00 00 00 fc ff df 48 8d 7b 28 48 89 fe 48 c1
All code
========
   0:	89 f8                	mov    %edi,%eax
   2:	49 c1 e8 03          	shr    $0x3,%r8
   6:	45 0f b6 04 30       	movzbl (%r8,%rsi,1),%r8d
   b:	48 89 fe             	mov    %rdi,%rsi
   e:	83 e6 07             	and    $0x7,%esi
  11:	83 c6 01             	add    $0x1,%esi
  14:	44 38 c6             	cmp    %r8b,%sil
  17:	7c 09                	jl     0x22
  19:	45 84 c0             	test   %r8b,%r8b
  1c:	0f 85 83 02 00 00    	jne    0x2a5
  22:	66 83 7a 06 00       	cmpw   $0x0,0x6(%rdx)
  27:	74 04                	je     0x2d
  29:	90                   	nop
  2a:*	0f 0b                	ud2		<-- trapping instruction
  2c:	90                   	nop
  2d:	48 ba 00 00 00 00 00 	movabs $0xdffffc0000000000,%rdx
  34:	fc ff df 
  37:	48 8d 7b 28          	lea    0x28(%rbx),%rdi
  3b:	48 89 fe             	mov    %rdi,%rsi
  3e:	48                   	rex.W
  3f:	c1                   	.byte 0xc1

Code starting with the faulting instruction
===========================================
   0:	0f 0b                	ud2
   2:	90                   	nop
   3:	48 ba 00 00 00 00 00 	movabs $0xdffffc0000000000,%rdx
   a:	fc ff df 
   d:	48 8d 7b 28          	lea    0x28(%rbx),%rdi
  11:	48 89 fe             	mov    %rdi,%rsi
  14:	48                   	rex.W
  15:	c1                   	.byte 0xc1
[  858.819969][    C0] RSP: 0018:ffffc900000075d0 EFLAGS: 00010202
[  858.820378][    C0] RAX: ffffe8ffffc063d0 RBX: ffff888013dbd540 RCX: 0000000000008880
[  858.820866][    C0] RDX: ffff888011461180 RSI: 0000000000000007 RDI: ffff888011461186
[  858.821344][    C0] RBP: ffffc90000007678 R08: 0000000000000000 R09: ffffed1002b22739
[  858.821865][    C0] R10: ffff8880159139cf R11: ffffffffb8188540 R12: ffffc90000007780
[  858.822829][    C0] R13: 1ffff92000000ebe R14: ffff888013dbd588 R15: ffff88800d0eced0
[  858.823327][    C0] FS:  00007f4e19712b80(0000) GS:ffff8880b3b08000(0000) knlGS:0000000000000000
[  858.823907][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  858.824324][    C0] CR2: 0000000000a44000 CR3: 000000000e705002 CR4: 0000000000772ef0
[  858.824821][    C0] PKRU: 55555554
[  858.825063][    C0] Call Trace:
[  858.825303][    C0]  <IRQ>
[  858.825474][    C0]  ? veth_poll (drivers/net/veth.c:981)
[  858.825802][    C0]  ? __napi_poll.constprop.0 (net/core/dev.c:7668)
[  858.826122][    C0]  ? napi_disable (net/core/dev.c:4349)
[  858.826434][    C0]  ? neigh_resolve_output (net/core/neighbour.c:1578)
[  858.826761][    C0]  ? ip6_finish_output (net/ipv6/ip6_output.c:209 net/ipv6/ip6_output.c:220)
[  858.827088][    C0]  ? ip6_output (./include/linux/netfilter.h:307 net/ipv6/ip6_output.c:247)
[  858.827410][    C0]  __netif_receive_skb_core.constprop.0 (net/core/dev.c:4448 net/core/dev.c:5989)
[  858.827838][    C0]  ? __lock_acquire (kernel/locking/lockdep.c:5237)
[  858.828172][    C0]  ? do_xdp_generic (net/core/dev.c:5908)
[  858.828497][    C0]  ? __lock_release (kernel/locking/lockdep.c:5536)
[  858.828813][    C0]  ? kasan_save_track (./arch/x86/include/asm/current.h:25 mm/kasan/common.c:69 mm/kasan/common.c:78)
[  858.829130][    C0]  ? skb_release_data (./include/linux/atomic/atomic-arch-fallback.h:787 ./include/linux/atomic/atomic-instrumented.h:290 ./include/linux/skbuff.h:1310 net/core/skbuff.c:1073)
[  858.829467][    C0]  ? kfree_skbmem (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/refcount.h:450 net/core/skbuff.c:1132)
[  858.829782][    C0]  ? skb_pp_cow_data (net/core/skbuff.c:975)
[  858.830102][    C0]  __netif_receive_skb_list_core (net/core/dev.c:6214)
[  858.830502][    C0]  ? __lock_acquire (kernel/locking/lockdep.c:5237)
[  858.830821][    C0]  ? __netif_receive_skb_core.constprop.0 (net/core/dev.c:6191)
[  858.831212][    C0]  ? lock_acquire.part.0 (kernel/locking/lockdep.c:470 kernel/locking/lockdep.c:5870)
[  858.831539][    C0]  ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5831)
[  858.831859][    C0]  ? netif_receive_skb_list_internal (./include/linux/rcupdate.h:331 ./include/linux/rcupdate.h:867 net/core/dev.c:6356)
[  858.832255][    C0]  netif_receive_skb_list_internal (net/core/dev.c:6282 net/core/dev.c:6371)
[  858.832659][    C0]  ? gro_receive_skb (net/core/gro.c:637)
[  858.832982][    C0]  ? process_backlog (net/core/dev.c:6343)
[  858.833297][    C0]  ? veth_xdp_rcv (./arch/x86/include/asm/bitops.h:202 ./arch/x86/include/asm/bitops.h:232 ./include/asm-generic/bitops/instrumented-non-atomic.h:142 ./include/linux/netdevice.h:3664 drivers/net/veth.c:962)
[  858.833628][    C0]  ? ip6_input (net/ipv6/ip6_input.c:496)
[  858.833943][    C0]  ? veth_xdp_rcv_skb (drivers/net/veth.c:902)
[  858.834267][    C0]  napi_complete_done (./include/linux/list.h:45 ./include/net/gro.h:525 ./include/net/gro.h:520 ./include/net/gro.h:532 net/core/dev.c:6740)
[  858.834593][    C0]  ? netif_receive_skb_list (net/core/dev.c:6709)
[  858.834918][    C0]  veth_poll (drivers/net/veth.c:984 (discriminator 1))
[  858.835156][    C0]  ? veth_xdp_rcv (drivers/net/veth.c:969)
[  858.835489][    C0]  ? find_held_lock (kernel/locking/lockdep.c:5350)
[  858.835817][    C0]  ? mark_held_locks (kernel/locking/lockdep.c:4325)
[  858.836131][    C0]  ? _raw_spin_unlock_irq (./arch/x86/include/asm/irqflags.h:42 ./arch/x86/include/asm/irqflags.h:119 ./include/linux/spinlock_api_smp.h:159 kernel/locking/spinlock.c:202)
[  858.836465][    C0]  ? _raw_spin_unlock_irq (./arch/x86/include/asm/preempt.h:104 ./include/linux/spinlock_api_smp.h:160 kernel/locking/spinlock.c:202)
[  858.836785][    C0]  ? process_backlog (net/core/dev.c:6635)
[  858.837101][    C0]  ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:751)
[  858.837421][    C0]  __napi_poll.constprop.0 (net/core/dev.c:7668)
[  858.837753][    C0]  net_rx_action (net/core/dev.c:7730 net/core/dev.c:7882)
[  858.838081][    C0]  ? run_backlog_napi (net/core/dev.c:7844)
[  858.838394][    C0]  ? clockevents_program_event (kernel/time/clockevents.c:326)
[  858.838728][    C0]  ? lock_downgrade (kernel/locking/lockdep.c:471 kernel/locking/lockdep.c:5764)
[  858.839055][    C0]  ? clockevents_program_event (kernel/time/clockevents.c:336 (discriminator 3))
[  858.839463][    C0]  handle_softirqs (kernel/softirq.c:623)
[  858.839784][    C0]  ? __neigh_event_send (./include/linux/bottom_half.h:33 net/core/neighbour.c:1273)
[  858.840100][    C0]  do_softirq (kernel/softirq.c:523 kernel/softirq.c:510)
[  858.840335][    C0]  </IRQ>
[  858.840508][    C0]  <TASK>
[  858.840670][    C0]  __local_bh_enable_ip (kernel/softirq.c:450)
[  858.840986][    C0]  __neigh_event_send (net/core/neighbour.c:1274)
[  858.841305][    C0]  ? __local_bh_enable_ip (kernel/softirq.c:429)
[  858.841628][    C0]  ? ___neigh_create (net/core/neighbour.c:727)
[  858.841942][    C0]  ? ___neigh_create (net/core/neighbour.c:727)
[  858.842259][    C0]  neigh_resolve_output (net/core/neighbour.c:1578)
[  858.842584][    C0]  ? ip6_finish_output2 (net/ipv6/ip6_output.c:128)
[  858.842898][    C0]  ? ip6_mtu (./include/linux/rcupdate.h:341 ./include/linux/rcupdate.h:897 ./include/net/ip6_route.h:317 net/ipv6/route.c:3266)
[  858.843145][    C0]  ip6_finish_output (net/ipv6/ip6_output.c:209 net/ipv6/ip6_output.c:220)
[  858.843476][    C0]  ip6_output (./include/linux/netfilter.h:307 net/ipv6/ip6_output.c:247)
[  858.843718][    C0]  ? ip6_finish_output (net/ipv6/ip6_output.c:228)
[  858.844034][    C0]  ? find_held_lock (kernel/locking/lockdep.c:5350)
[  858.844355][    C0]  ? ip6_mtu (./include/linux/rcupdate.h:341 ./include/linux/rcupdate.h:897 ./include/net/ip6_route.h:317 net/ipv6/route.c:3266)
[  858.844601][    C0]  ? __lock_release (kernel/locking/lockdep.c:5536)
[  858.844930][    C0]  ip6_xmit (./include/net/dst.h:464 ./include/linux/netfilter.h:318 ./include/linux/netfilter.h:312 net/ipv6/ip6_output.c:371)
[  858.845175][    C0]  ? ip6_append_data (net/ipv6/ip6_output.c:271)
[  858.845499][    C0]  ? ip6_dst_check.part.0 (./include/linux/rcupdate.h:341 ./include/linux/rcupdate.h:897 net/ipv6/route.c:2813)
[  858.845825][    C0]  ? __lock_acquire (kernel/locking/lockdep.c:5237)
[  858.846156][    C0]  inet6_csk_xmit (net/ipv6/inet6_connection_sock.c:120 (discriminator 11))
[  858.846488][    C0]  ? inet6_csk_route_socket (net/ipv6/inet6_connection_sock.c:100)
[  858.846812][    C0]  ? __copy_skb_header (./include/net/dst.h:293 net/core/skbuff.c:1514)
[  858.847134][    C0]  __tcp_transmit_skb (net/ipv4/tcp_output.c:1628)
[  858.847471][    C0]  ? __tcp_select_window (net/ipv4/tcp_output.c:1449)
[  858.847796][    C0]  ? tcp_call_bpf (./include/net/sock.h:1685 ./include/net/sock.h:1780 ./include/net/tcp.h:2775)
[  858.848134][    C0]  tcp_connect (net/ipv4/tcp_output.c:1646 net/ipv4/tcp_output.c:4335)
[  858.848464][    C0]  tcp_v6_connect (net/ipv6/tcp_ipv6.c:336)
[  858.848789][    C0]  ? inet6_sk_rx_dst_set (net/ipv6/tcp_ipv6.c:138)
[  858.849106][    C0]  ? __lock_acquire (kernel/locking/lockdep.c:5237)
[  858.849428][    C0]  ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116)
[  858.849757][    C0]  ? find_held_lock (kernel/locking/lockdep.c:5350)
[  858.850079][    C0]  __inet_stream_connect (net/ipv4/af_inet.c:679)
[  858.850393][    C0]  ? __local_bh_enable_ip (./arch/x86/include/asm/irqflags.h:42 ./arch/x86/include/asm/irqflags.h:119 kernel/softirq.c:455)
[  858.850725][    C0]  ? __inet_stream_connect (net/ipv4/af_inet.c:746)
[  858.851038][    C0]  inet_stream_connect (net/ipv4/af_inet.c:751)
[  858.851354][    C0]  __sys_connect (./include/linux/file.h:62 ./include/linux/file.h:83 net/socket.c:2111)
[  858.851681][    C0]  ? __sys_connect_file (net/socket.c:2109)
[  858.851995][    C0]  ? fd_install (./include/linux/rcupdate.h:341 ./include/linux/rcupdate.h:979 fs/file.c:676)
[  858.852311][    C0]  ? fd_install (./arch/x86/include/asm/preempt.h:104 ./include/linux/rcupdate.h:981 fs/file.c:676)
[  858.852639][    C0]  ? __sys_socket (net/socket.c:516 net/socket.c:1756)
[  858.852961][    C0]  ? update_socket_protocol+0x10/0x10
[  858.853283][    C0]  __x64_sys_connect (net/socket.c:2124)
[  858.853607][    C0]  ? lockdep_hardirqs_on (kernel/locking/lockdep.c:4472)
[  858.853929][    C0]  do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94)
[  858.854252][    C0]  entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130)
[  858.854653][    C0] RIP: 0033:0x7f4e19824d67
[  858.854987][    C0] Code: 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa 64 8b 04 25 18 00 00 00 85 c0 75 10 b8 2a 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 51 c3 48 83 ec 18 89 54 24 0c 48 89 34 24 89
All code
========
   0:	64 89 01             	mov    %eax,%fs:(%rcx)
   3:	48 83 c8 ff          	or     $0xffffffffffffffff,%rax
   7:	c3                   	ret
   8:	66 2e 0f 1f 84 00 00 	cs nopw 0x0(%rax,%rax,1)
   f:	00 00 00 
  12:	90                   	nop
  13:	f3 0f 1e fa          	endbr64
  17:	64 8b 04 25 18 00 00 	mov    %fs:0x18,%eax
  1e:	00 
  1f:	85 c0                	test   %eax,%eax
  21:	75 10                	jne    0x33
  23:	b8 2a 00 00 00       	mov    $0x2a,%eax
  28:	0f 05                	syscall
  2a:*	48 3d 00 f0 ff ff    	cmp    $0xfffffffffffff000,%rax		<-- trapping instruction
  30:	77 51                	ja     0x83
  32:	c3                   	ret
  33:	48 83 ec 18          	sub    $0x18,%rsp
  37:	89 54 24 0c          	mov    %edx,0xc(%rsp)
  3b:	48 89 34 24          	mov    %rsi,(%rsp)
  3f:	89                   	.byte 0x89

Code starting with the faulting instruction
===========================================
   0:	48 3d 00 f0 ff ff    	cmp    $0xfffffffffffff000,%rax
   6:	77 51                	ja     0x59
   8:	c3                   	ret
   9:	48 83 ec 18          	sub    $0x18,%rsp
   d:	89 54 24 0c          	mov    %edx,0xc(%rsp)
  11:	48 89 34 24          	mov    %rsi,(%rsp)
  15:	89                   	.byte 0x89
[  858.856137][    C0] RSP: 002b:00007ffdd19936d8 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[  858.856630][    C0] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 00007f4e19824d67
[  858.857105][    C0] RDX: 000000000000001c RSI: 0000000000a450e0 RDI: 0000000000000005
[  858.857595][    C0] RBP: 00007ffdd1993820 R08: 00007ffdd1993630 R09: 0000000000000000
[  858.858079][    C0] R10: 00007f4e1971b618 R11: 0000000000000246 R12: 0000000000000005


Finger prints:
tc_run:__netif_receive_skb_list_core:netif_receive_skb_list_internal:napi_complete_done:veth_poll