======================================
|
| WAIT TIMEOUT stdout
| [ 5037.699705][    C1] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000091: 0000 [#1] SMP KASAN NOPTI
| [ 5037.700141][    C1] KASAN: null-ptr-deref in range [0x0000000000000488-0x000000000000048f]
[ 5037.700728][    C1] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011
[ 5037.700955][ C1] RIP: 0010:veth_xdp_rcv (./include/linux/netdevice.h:2632 (discriminator 13) drivers/net/veth.c:910 (discriminator 13)) 
[ 5037.701147][ C1] Code: 40 0d 00 00 e8 cf ec dd 00 85 c0 0f 85 c6 06 00 00 49 8d bc 24 88 04 00 00 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 <0f> b6 04 02 84 c0 74 08 3c 03 0f 8e b6 0a 00 00 41 3b ac 24 88 04
All code
========
   0:	40 0d 00 00 e8 cf    	rex or $0xcfe80000,%eax
   6:	ec                   	in     (%dx),%al
   7:	dd 00                	fldl   (%rax)
   9:	85 c0                	test   %eax,%eax
   b:	0f 85 c6 06 00 00    	jne    0x6d7
  11:	49 8d bc 24 88 04 00 	lea    0x488(%r12),%rdi
  18:	00 
  19:	48 b8 00 00 00 00 00 	movabs $0xdffffc0000000000,%rax
  20:	fc ff df 
  23:	48 89 fa             	mov    %rdi,%rdx
  26:	48 c1 ea 03          	shr    $0x3,%rdx
  2a:*	0f b6 04 02          	movzbl (%rdx,%rax,1),%eax		<-- trapping instruction
  2e:	84 c0                	test   %al,%al
  30:	74 08                	je     0x3a
  32:	3c 03                	cmp    $0x3,%al
  34:	0f 8e b6 0a 00 00    	jle    0xaf0
  3a:	41                   	rex.B
  3b:	3b                   	.byte 0x3b
  3c:	ac                   	lods   %ds:(%rsi),%al
  3d:	24 88                	and    $0x88,%al
  3f:	04                   	.byte 0x4

Code starting with the faulting instruction
===========================================
   0:	0f b6 04 02          	movzbl (%rdx,%rax,1),%eax
   4:	84 c0                	test   %al,%al
   6:	74 08                	je     0x10
   8:	3c 03                	cmp    $0x3,%al
   a:	0f 8e b6 0a 00 00    	jle    0xac6
  10:	41                   	rex.B
  11:	3b                   	.byte 0x3b
  12:	ac                   	lods   %ds:(%rsi),%al
  13:	24 88                	and    $0x88,%al
  15:	04                   	.byte 0x4
[ 5037.701791][    C1] RSP: 0018:ffffc900001c0a20 EFLAGS: 00010202
[ 5037.702021][    C1] RAX: dffffc0000000000 RBX: ffff88801acd2000 RCX: 1ffff92000038153
[ 5037.702287][    C1] RDX: 0000000000000091 RSI: ffffffffb2c53a00 RDI: 0000000000000488
[ 5037.702557][    C1] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 5037.702825][    C1] R10: ffffc900001c0e90 R11: ffffffffb6567108 R12: 0000000000000000
[ 5037.703090][    C1] R13: ffffc900001c0bd0 R14: 0000000000000040 R15: ffffc900001c0bd0
[ 5037.703358][    C1] FS:  0000000000000000(0000) GS:ffff8880b7442000(0000) knlGS:0000000000000000
[ 5037.703679][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 5037.703905][    C1] CR2: 00007ff7098d7000 CR3: 0000000004b1a005 CR4: 0000000000772ef0
[ 5037.704175][    C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 5037.704444][    C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 5037.704709][    C1] PKRU: 55555554
[ 5037.704845][    C1] Call Trace:
[ 5037.704980][    C1]  <IRQ>
[ 5037.705072][ C1] ? timerqueue_add (lib/timerqueue.c:41) 
[ 5037.705255][ C1] ? find_held_lock (kernel/locking/lockdep.c:5348) 
[ 5037.705436][ C1] ? __pfx_veth_xdp_rcv (drivers/net/veth.c:900) 
[ 5037.705615][ C1] ? mark_held_locks (kernel/locking/lockdep.c:4326) 
[ 5037.705792][ C1] ? _raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:151 kernel/locking/spinlock.c:194) 
[ 5037.706012][ C1] ? lockdep_hardirqs_on (kernel/locking/lockdep.c:4473) 
[ 5037.706190][ C1] ? rcu_read_lock_any_held (kernel/rcu/update.c:386 kernel/rcu/update.c:380) 
[ 5037.706365][ C1] ? validate_chain (kernel/locking/lockdep.c:3802 kernel/locking/lockdep.c:3822 kernel/locking/lockdep.c:3877) 
[ 5037.706543][ C1] veth_poll (drivers/net/veth.c:979) 
[ 5037.706678][ C1] ? __pfx_veth_poll (drivers/net/veth.c:967) 
[ 5037.706857][ C1] ? validate_chain (kernel/locking/lockdep.c:3802 kernel/locking/lockdep.c:3822 kernel/locking/lockdep.c:3877) 
[ 5037.707034][ C1] ? __lock_acquire (kernel/locking/lockdep.c:5235) 
[ 5037.707218][ C1] ? rcu_read_lock_any_held (kernel/rcu/update.c:386 kernel/rcu/update.c:380) 
[ 5037.707396][ C1] ? validate_chain (kernel/locking/lockdep.c:3802 kernel/locking/lockdep.c:3822 kernel/locking/lockdep.c:3877) 
[ 5037.707577][ C1] ? __lock_acquire (kernel/locking/lockdep.c:5235) 
[ 5037.707756][ C1] __napi_poll.constprop.0 (net/core/dev.c:7408) 
[ 5037.707936][ C1] net_rx_action (net/core/dev.c:7472 net/core/dev.c:7594) 
[ 5037.708117][ C1] ? __pfx_net_rx_action (net/core/dev.c:7556) 
[ 5037.708297][ C1] ? kvm_clock_get_cycles (./arch/x86/include/asm/preempt.h:95 arch/x86/kernel/kvmclock.c:80 arch/x86/kernel/kvmclock.c:86) 
[ 5037.708474][ C1] ? ktime_get (kernel/time/timekeeping.c:226 (discriminator 4) kernel/time/timekeeping.c:335 (discriminator 4) kernel/time/timekeeping.c:752 (discriminator 4)) 
[ 5037.708610][ C1] ? clockevents_program_event (kernel/time/clockevents.c:334 (discriminator 3)) 
[ 5037.708836][ C1] handle_softirqs (kernel/softirq.c:579) 
[ 5037.709021][ C1] __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) 
[ 5037.709200][ C1] irq_exit_rcu (kernel/softirq.c:698) 
[ 5037.709335][ C1] sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1049 arch/x86/kernel/apic/apic.c:1049) 
[ 5037.709512][    C1]  </IRQ>
[ 5037.709604][    C1]  <TASK>
[ 5037.709695][ C1] asm_sysvec_apic_timer_interrupt (./arch/x86/include/asm/idtentry.h:702) 
[ 5037.709918][ C1] RIP: 0010:__orc_find (arch/x86/kernel/unwind_orc.c:80 arch/x86/kernel/unwind_orc.c:102) 
[ 5037.710103][ C1] Code: e5 77 4e 4c 89 e2 48 29 ea 48 89 d6 48 c1 ea 3f 48 c1 fe 02 48 01 f2 48 d1 fa 48 8d 5c 95 00 48 89 da 48 c1 ea 03 0f b6 34 0a <48> 89 da 83 e2 07 83 c2 03 40 38 f2 7c 05 40 84 f6 75 4b 48 63 13
All code
========
   0:	e5 77                	in     $0x77,%eax
   2:	4e                   	rex.WRX
   3:	4c 89 e2             	mov    %r12,%rdx
   6:	48 29 ea             	sub    %rbp,%rdx
   9:	48 89 d6             	mov    %rdx,%rsi
   c:	48 c1 ea 3f          	shr    $0x3f,%rdx
  10:	48 c1 fe 02          	sar    $0x2,%rsi
  14:	48 01 f2             	add    %rsi,%rdx
  17:	48 d1 fa             	sar    $1,%rdx
  1a:	48 8d 5c 95 00       	lea    0x0(%rbp,%rdx,4),%rbx
  1f:	48 89 da             	mov    %rbx,%rdx
  22:	48 c1 ea 03          	shr    $0x3,%rdx
  26:	0f b6 34 0a          	movzbl (%rdx,%rcx,1),%esi
  2a:*	48 89 da             	mov    %rbx,%rdx		<-- trapping instruction
  2d:	83 e2 07             	and    $0x7,%edx
  30:	83 c2 03             	add    $0x3,%edx
  33:	40 38 f2             	cmp    %sil,%dl
  36:	7c 05                	jl     0x3d
  38:	40 84 f6             	test   %sil,%sil
  3b:	75 4b                	jne    0x88
  3d:	48 63 13             	movslq (%rbx),%rdx

Code starting with the faulting instruction
===========================================
   0:	48 89 da             	mov    %rbx,%rdx
   3:	83 e2 07             	and    $0x7,%edx
   6:	83 c2 03             	add    $0x3,%edx
   9:	40 38 f2             	cmp    %sil,%dl
   c:	7c 05                	jl     0x13
   e:	40 84 f6             	test   %sil,%sil
  11:	75 4b                	jne    0x5e
  13:	48 63 13             	movslq (%rbx),%rdx
[ 5037.710741][    C1] RSP: 0018:ffffc9000a1e76e0 EFLAGS: 00000a03
[ 5037.710965][    C1] RAX: ffffffffb4f5064e RBX: ffffffffb4ba1494 RCX: dffffc0000000000
[ 5037.711236][    C1] RDX: 1ffffffff6974292 RSI: 0000000000000000 RDI: ffffffffb4ba1494
[ 5037.711505][    C1] RBP: ffffffffb4ba1494 R08: 0000000000000000 R09: ffffc9000a1e7861
[ 5037.711771][    C1] R10: 0000000000000000 R11: 0000000000000000 R12: ffffffffb4ba1498
[ 5037.712037][    C1] R13: ffffffffb0560ea1 R14: ffffffffb4ba1494 R15: ffffffffb4ba1494
[ 5037.712301][ C1] ? __x64_sys_openat (fs/open.c:1444 fs/open.c:1460 fs/open.c:1455 fs/open.c:1455) 
[ 5037.712485][ C1] unwind_next_frame (arch/x86/kernel/unwind_orc.c:495) 
[ 5037.712667][ C1] ? __x64_sys_openat (fs/open.c:1455) 
[ 5037.712844][ C1] ? __pfx_unwind_next_frame (arch/x86/kernel/unwind_orc.c:469) 
[ 5037.713021][ C1] ? __x64_sys_openat (fs/open.c:1455) 
[ 5037.713197][ C1] ? kernel_text_address (kernel/extable.c:99) 
[ 5037.713375][ C1] ? __pfx_stack_trace_consume_entry (kernel/stacktrace.c:83) 
[ 5037.713595][ C1] arch_stack_walk (arch/x86/kernel/stacktrace.c:24) 
[ 5037.713780][ C1] ? __x64_sys_openat (fs/open.c:1455) 
[ 5037.713962][ C1] stack_trace_save (kernel/stacktrace.c:123) 
[ 5037.714136][ C1] ? __pfx_stack_trace_save (kernel/stacktrace.c:114) 
[ 5037.714312][ C1] ? __lock_release (kernel/locking/lockdep.c:5534) 
[ 5037.714488][ C1] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:736) 
[ 5037.714666][ C1] ? _raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:151 kernel/locking/spinlock.c:194) 
[ 5037.714884][ C1] set_track_prepare (mm/slub.c:936) 
[ 5037.715060][ C1] ? kmem_cache_alloc_noprof (mm/slub.c:4037 mm/slub.c:4198 mm/slub.c:4217) 
[ 5037.715237][ C1] ? alloc_empty_file (fs/file_table.c:234) 
[ 5037.715418][ C1] ? path_openat (fs/namei.c:3990) 
[ 5037.715594][ C1] ? do_filp_open (fs/namei.c:4031) 
[ 5037.715768][ C1] ? do_sys_openat2 (fs/open.c:1429) 
[ 5037.715943][ C1] ? __x64_sys_openat (fs/open.c:1455) 
[ 5037.716122][ C1] ___slab_alloc (mm/slub.c:967 mm/slub.c:3862) 
[ 5037.716299][ C1] ? alloc_empty_file (fs/file_table.c:234) 
[ 5037.716475][ C1] ? alloc_empty_file (fs/file_table.c:234) 
[ 5037.716650][ C1] __slab_alloc.constprop.0 (mm/slub.c:3962) 
[ 5037.716832][ C1] ? alloc_empty_file (fs/file_table.c:234) 
[ 5037.717008][ C1] kmem_cache_alloc_noprof (mm/slub.c:4037 mm/slub.c:4198 mm/slub.c:4217) 
[ 5037.717183][ C1] ? kernel_text_address (kernel/extable.c:97 kernel/extable.c:94) 
[ 5037.717359][ C1] ? __kernel_text_address (kernel/extable.c:79) 
[ 5037.717535][ C1] alloc_empty_file (fs/file_table.c:234) 
[ 5037.717710][ C1] path_openat (fs/namei.c:3990) 
[ 5037.717844][ C1] ? __pfx_path_openat (fs/namei.c:3986) 
[ 5037.718024][ C1] ? validate_chain (kernel/locking/lockdep.c:3802 kernel/locking/lockdep.c:3822 kernel/locking/lockdep.c:3877) 
[ 5037.718201][ C1] do_filp_open (fs/namei.c:4031) 
[ 5037.718376][ C1] ? __pfx_do_filp_open (fs/namei.c:4025) 
[ 5037.718551][ C1] ? __lock_acquire (kernel/locking/lockdep.c:5235) 
[ 5037.718728][ C1] ? find_held_lock (kernel/locking/lockdep.c:5348) 
[ 5037.718904][ C1] ? alloc_fd (fs/file.c:597) 
[ 5037.719037][ C1] ? __lock_release (kernel/locking/lockdep.c:5534) 
[ 5037.719212][ C1] ? do_raw_spin_unlock (./arch/x86/include/asm/atomic.h:23 ./include/linux/atomic/atomic-arch-fallback.h:457 ./include/linux/atomic/atomic-instrumented.h:33 ./include/asm-generic/qspinlock.h:57 kernel/locking/spinlock_debug.c:101 kernel/locking/spinlock_debug.c:141) 
[ 5037.719389][ C1] ? _raw_spin_unlock (./arch/x86/include/asm/preempt.h:104 ./include/linux/spinlock_api_smp.h:143 kernel/locking/spinlock.c:186) 
[ 5037.719565][ C1] ? alloc_fd (fs/file.c:597) 
[ 5037.719701][ C1] do_sys_openat2 (fs/open.c:1429) 
[ 5037.719880][ C1] ? __pfx_do_sys_openat2 (fs/open.c:1414) 
[ 5037.720056][ C1] ? __up_read (./arch/x86/include/asm/preempt.h:104 kernel/locking/rwsem.c:1352) 
[ 5037.720233][ C1] ? find_held_lock (kernel/locking/lockdep.c:5348) 
[ 5037.720409][ C1] ? __pfx___up_read (kernel/locking/rwsem.c:1337) 
[ 5037.720583][ C1] ? do_user_addr_fault (./include/linux/mmap_lock.h:212 arch/x86/mm/fault.c:1416) 
[ 5037.720762][ C1] __x64_sys_openat (fs/open.c:1455) 
[ 5037.720941][ C1] ? __pfx___x64_sys_openat (fs/open.c:1455) 
[ 5037.721122][ C1] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:736) 
[ 5037.721297][ C1] ? do_syscall_64 (./arch/x86/include/asm/irqflags.h:42 ./arch/x86/include/asm/irqflags.h:119 ./include/linux/entry-common.h:198 arch/x86/entry/syscall_64.c:90) 
[ 5037.721473][ C1] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) 
[ 5037.721650][ C1] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) 
[ 5037.721870][    C1] RIP: 0033:0x7fc1897f7f68
[ 5037.722055][ C1] Code: f9 41 89 f0 41 83 e2 40 75 30 89 f0 25 00 00 41 00 3d 00 00 41 00 74 22 44 89 c2 4c 89 ce bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 30 c3 0f 1f 80 00 00 00 00 48 8d 44 24 08 c7
All code
========
   0:	f9                   	stc
   1:	41 89 f0             	mov    %esi,%r8d
   4:	41 83 e2 40          	and    $0x40,%r10d
   8:	75 30                	jne    0x3a
   a:	89 f0                	mov    %esi,%eax
   c:	25 00 00 41 00       	and    $0x410000,%eax
  11:	3d 00 00 41 00       	cmp    $0x410000,%eax
  16:	74 22                	je     0x3a
  18:	44 89 c2             	mov    %r8d,%edx
  1b:	4c 89 ce             	mov    %r9,%rsi
  1e:	bf 9c ff ff ff       	mov    $0xffffff9c,%edi
  23:	b8 01 01 00 00       	mov    $0x101,%eax
  28:	0f 05                	syscall
  2a:*	48 3d 00 f0 ff ff    	cmp    $0xfffffffffffff000,%rax		<-- trapping instruction
  30:	77 30                	ja     0x62
  32:	c3                   	ret
  33:	0f 1f 80 00 00 00 00 	nopl   0x0(%rax)
  3a:	48 8d 44 24 08       	lea    0x8(%rsp),%rax
  3f:	c7                   	.byte 0xc7

Code starting with the faulting instruction
===========================================
   0:	48 3d 00 f0 ff ff    	cmp    $0xfffffffffffff000,%rax
   6:	77 30                	ja     0x38
   8:	c3                   	ret
   9:	0f 1f 80 00 00 00 00 	nopl   0x0(%rax)
  10:	48 8d 44 24 08       	lea    0x8(%rsp),%rax
  15:	c7                   	.byte 0xc7
[ 5037.722678][    C1] RSP: 002b:00007ffdd1ece238 EFLAGS: 00000287 ORIG_RAX: 0000000000000101
[ 5037.722944][    C1] RAX: ffffffffffffffda RBX: 00007ffdd1ece4cf RCX: 00007fc1897f7f68
[ 5037.723212][    C1] RDX: 0000000000080000 RSI: 00007ffdd1ece2b0 RDI: 00000000ffffff9c
[ 5037.723473][    C1] RBP: 00007ffdd1ece2a0 R08: 0000000000080000 R09: 00007ffdd1ece2b0
[ 5037.723742][    C1] R10: 0000000000000000 R11: 0000000000000287 R12: 00007ffdd1ece2b7


Finger prints:
veth_xdp_rcv:veth_poll:net_rx_action:handle_softirqs:__irq_exit_rcu