[   13.914237][  T260] netdevsim netdevsim686 eni686np1: renamed from eth1
[   13.918256][  T262] netdevsim netdevsim363 eni363np1: renamed from eth0
[   16.948355][  T253] ==================================================================
[   16.948704][  T253] BUG: KASAN: null-ptr-deref in try_to_grab_pending+0x81/0x6c0
[   16.949014][  T253] Write of size 8 at addr 0000000000000000 by task tfo_passive.sh/253
[   16.949316][  T253] 
[   16.949419][  T253] CPU: 1 UID: 0 PID: 253 Comm: tfo_passive.sh Not tainted 6.18.0-rc5-virtme #1 PREEMPT(full) 
[   16.949424][  T253] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011
[   16.949426][  T253] Call Trace:
[   16.949428][  T253]  <TASK>
[   16.949430][  T253]  dump_stack_lvl+0x82/0xc0
[   16.949437][  T253]  ? try_to_grab_pending+0x81/0x6c0
[   16.949440][  T253]  kasan_report+0xca/0x100
[   16.949446][  T253]  ? try_to_grab_pending+0x81/0x6c0
[   16.949452][  T253]  kasan_check_range+0x39/0x1b0
[   16.949456][  T253]  try_to_grab_pending+0x81/0x6c0
[   16.949459][  T253]  ? page_pool_release+0x13c/0x170
[   16.949465][  T253]  __cancel_work+0x7c/0x260
[   16.949469][  T253]  ? enable_delayed_work+0x10/0x10
[   16.949472][  T253]  ? page_pool_release+0x13c/0x170
[   16.949476][  T253]  ? page_pool_destroy+0xbf/0x420
[   16.949481][  T253]  __cancel_work_sync+0x18/0xc0
[   16.949485][  T253]  __dev_close_many+0x1cf/0x980
[   16.949490][  T253]  ? netdev_notify_peers+0x20/0x20
[   16.949494][  T253]  ? __mutex_lock+0x19f/0x1190
[   16.949502][  T253]  netif_close_many+0x201/0x650
[   16.949505][  T253]  ? ww_mutex_lock+0x160/0x160
[   16.949509][  T253]  ? __dev_close_many+0x980/0x980
[   16.949511][  T253]  ? validate_chain+0x15e/0x4d0
[   16.949516][  T253]  ? find_held_lock+0x2b/0x80
[   16.949522][  T253]  netif_close_many_and_unlock+0x21/0x2a0
[   16.949527][  T253]  unregister_netdevice_many_notify+0xeed/0x1c90
[   16.949530][  T253]  ? __mutex_handoff+0x2b0/0x2b0
[   16.949533][  T253]  ? rcu_is_watching+0x12/0xb0
[   16.949540][  T253]  ? dev_ingress_queue_create+0x190/0x190
[   16.949543][  T253]  ? __mutex_lock+0x19f/0x1190
[   16.949546][  T253]  ? __rtnl_unlock+0x69/0xf0
[   16.949550][  T253]  ? nsim_destroy+0xf1/0x700 [netdevsim]
[   16.949564][  T253]  ? ww_mutex_lock+0x160/0x160
[   16.949569][  T253]  unregister_netdevice_queue+0x29e/0x410
[   16.949573][  T253]  ? unregister_netdevice_many+0x20/0x20
[   16.949579][  T253]  nsim_destroy+0x16e/0x700 [netdevsim]
[   16.949596][  T253]  __nsim_dev_port_del+0x17e/0x250 [netdevsim]
[   16.949611][  T253]  nsim_dev_reload_destroy+0xdc/0x470 [netdevsim]
[   16.949623][  T253]  nsim_drv_remove+0x51/0x1d0 [netdevsim]
[   16.949634][  T253]  device_release_driver_internal+0x3bb/0x580
[   16.949640][  T253]  ? klist_put+0xb1/0x170
[   16.949644][  T253]  bus_remove_device+0x1ee/0x3f0
[   16.949649][  T253]  device_del+0x33b/0x8c0
[   16.949653][  T253]  ? __device_link_del+0x3c0/0x3c0
[   16.949659][  T253]  device_unregister+0x17/0xa0
[   16.949662][  T253]  del_device_store+0x2f2/0x4f0 [netdevsim]
[   16.949674][  T253]  ? nsim_bus_dev_numvfs_show+0x60/0x60 [netdevsim]
[   16.949683][  T253]  ? sysfs_file_kobj+0xb5/0x1f0
[   16.949688][  T253]  ? sysfs_file_kobj+0xbf/0x1f0
[   16.949692][  T253]  ? sysfs_file_ops+0x120/0x120
[   16.949694][  T253]  kernfs_fop_write_iter+0x2f2/0x490
[   16.949698][  T253]  vfs_write+0xaae/0x12c0
[   16.949704][  T253]  ? kernel_write+0x6b0/0x6b0
[   16.949709][  T253]  ? __lock_acquire+0x449/0x7e0
[   16.949715][  T253]  ksys_write+0xf7/0x1d0
[   16.949719][  T253]  ? __ia32_sys_read+0xb0/0xb0
[   16.949725][  T253]  do_syscall_64+0xc1/0xfd0
[   16.949729][  T253]  entry_SYSCALL_64_after_hwframe+0x4b/0x53
[   16.949733][  T253] RIP: 0033:0x7f021fd6e257
[   16.949736][  T253] Code: 0f 00 f7 d8 64 89 02 48 c7 c0 ff ff ff ff eb b7 0f 1f 00 f3 0f 1e fa 64 8b 04 25 18 00 00 00 85 c0 75 10 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 51 c3 48 83 ec 28 48 89 54 24 18 48 89 74 24
[   16.949739][  T253] RSP: 002b:00007ffcfe74df68 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   16.949743][  T253] RAX: ffffffffffffffda RBX: 00007f021fe6a780 RCX: 00007f021fd6e257
[   16.949745][  T253] RDX: 0000000000000004 RSI: 00005645a43e7ac0 RDI: 0000000000000001
[   16.949747][  T253] RBP: 0000000000000004 R08: 0000000000000000 R09: 00007f021fe20d20
[   16.949748][  T253] R10: 00007f021fe20c20 R11: 0000000000000246 R12: 0000000000000004
[   16.949750][  T253] R13: 00005645a43e7ac0 R14: 0000000000000004 R15: 00007f021fe659c0
[   16.949756][  T253]  </TASK>
[   16.949758][  T253] ==================================================================
[   16.964320][  T253] Disabling lock debugging due to kernel taint
[   16.964567][  T253] BUG: kernel NULL pointer dereference, address: 0000000000000000
[   16.964858][  T253] #PF: supervisor write access in kernel mode
[   16.965094][  T253] #PF: error_code(0x0002) - not-present page
[   16.965331][  T253] PGD 0 P4D 0 
[   16.965479][  T253] Oops: Oops: 0002 [#1] SMP KASAN
[   16.965683][  T253] CPU: 1 UID: 0 PID: 253 Comm: tfo_passive.sh Tainted: G    B               6.18.0-rc5-virtme #1 PREEMPT(full) 
[   16.966125][  T253] Tainted: [B]=BAD_PAGE
[   16.966272][  T253] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011
[   16.966515][  T253] RIP: 0010:try_to_grab_pending+0x81/0x6c0
[   16.966774][  T253] Code: 00 41 89 c0 b8 01 00 00 00 45 85 c0 74 0f 48 83 c4 10 5b 5d 41 5c 41 5d 41 5e 41 5f c3 be 08 00 00 00 48 89 df e8 1f 93 82 00 <f0> 48 0f ba 2b 00 72 11 48 83 c4 10 31 c0 5b 5d 41 5c 41 5d 41 5e
[   16.967450][  T253] RSP: 0018:ffffc90000ba7510 EFLAGS: 00010046
[   16.967706][  T253] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffffffff93249b8a
[   16.967993][  T253] RDX: fffffbfff2fecacd RSI: 0000000000000008 RDI: ffffffff97f65660
[   16.968279][  T253] RBP: ffffc90000ba7578 R08: 0000000000000001 R09: fffffbfff2fecacc
[   16.968563][  T253] R10: ffffffff97f65667 R11: ffffc90000ba7000 R12: 0000000000000000
[   16.968858][  T253] R13: 0000000000000282 R14: ffff888005a62000 R15: dffffc0000000000
[   16.969145][  T253] FS:  00007f021fc6e000(0000) GS:ffff8880d5187000(0000) knlGS:0000000000000000
[   16.969478][  T253] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   16.969726][  T253] CR2: 0000000000000000 CR3: 0000000004f07001 CR4: 0000000000772ef0
[   16.970016][  T253] PKRU: 55555554
[   16.970164][  T253] Call Trace:
[   16.970309][  T253]  <TASK>
[   16.970406][  T253]  ? page_pool_release+0x13c/0x170
[   16.970611][  T253]  __cancel_work+0x7c/0x260
[   16.970806][  T253]  ? enable_delayed_work+0x10/0x10
[   16.970999][  T253]  ? page_pool_release+0x13c/0x170
[   16.971190][  T253]  ? page_pool_destroy+0xbf/0x420
[   16.971383][  T253]  __cancel_work_sync+0x18/0xc0
[   16.971579][  T253]  __dev_close_many+0x1cf/0x980
[   16.971784][  T253]  ? netdev_notify_peers+0x20/0x20
[   16.971977][  T253]  ? __mutex_lock+0x19f/0x1190
[   16.972169][  T253]  netif_close_many+0x201/0x650
[   16.972372][  T253]  ? ww_mutex_lock+0x160/0x160
[   16.972562][  T253]  ? __dev_close_many+0x980/0x980
[   16.972759][  T253]  ? validate_chain+0x15e/0x4d0
[   16.972950][  T253]  ? find_held_lock+0x2b/0x80
[   16.973147][  T253]  netif_close_many_and_unlock+0x21/0x2a0
[   16.973340][  T253]  unregister_netdevice_many_notify+0xeed/0x1c90
[   16.973578][  T253]  ? __mutex_handoff+0x2b0/0x2b0
[   16.973779][  T253]  ? rcu_is_watching+0x12/0xb0
[   16.973973][  T253]  ? dev_ingress_queue_create+0x190/0x190
[   16.974162][  T253]  ? __mutex_lock+0x19f/0x1190
[   16.974353][  T253]  ? __rtnl_unlock+0x69/0xf0
[   16.974543][  T253]  ? nsim_destroy+0xf1/0x700 [netdevsim]
[   16.974754][  T253]  ? ww_mutex_lock+0x160/0x160
[   16.974947][  T253]  unregister_netdevice_queue+0x29e/0x410
[   16.975138][  T253]  ? unregister_netdevice_many+0x20/0x20
[   16.975330][  T253]  nsim_destroy+0x16e/0x700 [netdevsim]
[   16.975531][  T253]  __nsim_dev_port_del+0x17e/0x250 [netdevsim]
[   16.975784][  T253]  nsim_dev_reload_destroy+0xdc/0x470 [netdevsim]
[   16.976036][  T253]  nsim_drv_remove+0x51/0x1d0 [netdevsim]
[   16.976234][  T253]  device_release_driver_internal+0x3bb/0x580
[   16.976472][  T253]  ? klist_put+0xb1/0x170
[   16.976622][  T253]  bus_remove_device+0x1ee/0x3f0
[   16.976815][  T253]  device_del+0x33b/0x8c0
[   16.976958][  T253]  ? __device_link_del+0x3c0/0x3c0
[   16.977151][  T253]  device_unregister+0x17/0xa0
[   16.977341][  T253]  del_device_store+0x2f2/0x4f0 [netdevsim]
[   16.977587][  T253]  ? nsim_bus_dev_numvfs_show+0x60/0x60 [netdevsim]
[   16.977839][  T253]  ? sysfs_file_kobj+0xb5/0x1f0
[   16.978029][  T253]  ? sysfs_file_kobj+0xbf/0x1f0
[   16.978219][  T253]  ? sysfs_file_ops+0x120/0x120
[   16.978408][  T253]  kernfs_fop_write_iter+0x2f2/0x490
[   16.978608][  T253]  vfs_write+0xaae/0x12c0
[   16.978760][  T253]  ? kernel_write+0x6b0/0x6b0
[   16.978954][  T253]  ? __lock_acquire+0x449/0x7e0
[   16.979146][  T253]  ksys_write+0xf7/0x1d0
[   16.979289][  T253]  ? __ia32_sys_read+0xb0/0xb0
[   16.979481][  T253]  do_syscall_64+0xc1/0xfd0
[   16.979679][  T253]  entry_SYSCALL_64_after_hwframe+0x4b/0x53
[   16.979917][  T253] RIP: 0033:0x7f021fd6e257
[   16.980117][  T253] Code: 0f 00 f7 d8 64 89 02 48 c7 c0 ff ff ff ff eb b7 0f 1f 00 f3 0f 1e fa 64 8b 04 25 18 00 00 00 85 c0 75 10 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 51 c3 48 83 ec 28 48 89 54 24 18 48 89 74 24
[   16.980805][  T253] RSP: 002b:00007ffcfe74df68 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   16.981094][  T253] RAX: ffffffffffffffda RBX: 00007f021fe6a780 RCX: 00007f021fd6e257
[   16.981381][  T253] RDX: 0000000000000004 RSI: 00005645a43e7ac0 RDI: 0000000000000001
[   16.981676][  T253] RBP: 0000000000000004 R08: 0000000000000000 R09: 00007f021fe20d20
[   16.981966][  T253] R10: 00007f021fe20c20 R11: 0000000000000246 R12: 0000000000000004
[   16.982250][  T253] R13: 00005645a43e7ac0 R14: 0000000000000004 R15: 00007f021fe659c0
[   16.982548][  T253]  </TASK>
[   16.982701][  T253] Modules linked in: netdevsim psample
[   16.982904][  T253] CR2: 0000000000000000
[   16.983046][  T253] ---[ end trace 0000000000000000 ]---
[   16.983239][  T253] RIP: 0010:try_to_grab_pending+0x81/0x6c0
[   16.983481][  T253] Code: 00 41 89 c0 b8 01 00 00 00 45 85 c0 74 0f 48 83 c4 10 5b 5d 41 5c 41 5d 41 5e 41 5f c3 be 08 00 00 00 48 89 df e8 1f 93 82 00 <f0> 48 0f ba 2b 00 72 11 48 83 c4 10 31 c0 5b 5d 41 5c 41 5d 41 5e
[   16.984294][  T253] RSP: 0018:ffffc90000ba7510 EFLAGS: 00010046
[   16.984532][  T253] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffffffff93249b8a
[   16.984947][  T253] RDX: fffffbfff2fecacd RSI: 0000000000000008 RDI: ffffffff97f65660
[   16.985229][  T253] RBP: ffffc90000ba7578 R08: 0000000000000001 R09: fffffbfff2fecacc
[   16.985515][  T253] R10: ffffffff97f65667 R11: ffffc90000ba7000 R12: 0000000000000000
[   16.985924][  T253] R13: 0000000000000282 R14: ffff888005a62000 R15: dffffc0000000000
[   16.986204][  T253] FS:  00007f021fc6e000(0000) GS:ffff8880d5187000(0000) knlGS:0000000000000000
[   16.986532][  T253] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   16.986903][  T253] CR2: 0000000000000000 CR3: 0000000004f07001 CR4: 0000000000772ef0
[   16.987189][  T253] PKRU: 55555554
[   16.987331][  T253] Kernel panic - not syncing: Fatal exception
[   16.987765][  T253] Kernel Offset: 0x11c00000 from 0xffffffff81000000 (relocation range: 0xffffffff80000000-0xffffffffbfffffff)
[   16.988205][  T253] ---[ end Kernel panic - not syncing: Fatal exception ]---

HARD STOP (267.551461)

WAIT TIMEOUT stderr

Ctrl-C stderr

Ctrl-C stderr

WAIT TIMEOUT stderr