======================================
| [   17.478193][  T259] ip (259) used greatest stack depth: 24144 bytes left
| [   35.826121][  T369] ------------[ cut here ]------------
| [ 35.827127][ T369] WARNING: CPU: 1 PID: 369 at ./include/linux/skbuff.h:1164 ip_route_me_harder (./include/linux/skbuff.h:1164 ./include/linux/skbuff.h:1178 net/ipv4/netfilter.c:68) 
| [   35.827706][  T369] Modules linked in: nft_nat nft_chain_nat nf_nat nf_conntrack nf_defrag_ipv6 nf_defrag_ipv4 nf_tables veth
[   35.828947][  T369] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011
[ 35.829329][ T369] RIP: 0010:ip_route_me_harder (./include/linux/skbuff.h:1164 ./include/linux/skbuff.h:1178 net/ipv4/netfilter.c:68) 
[ 35.829745][ T369] Code: 31 db e9 9a f7 ff ff 80 3c 02 00 0f 85 ee 05 00 00 49 8b 46 58 48 89 c3 48 83 e3 fe a8 01 0f 85 f5 02 00 00 48 85 db 74 04 90 <0f> 0b 90 48 b8 00 00 00 00 00 fc ff df 4c 89 ea 48 c1 ea 03 80 3c
All code
========
   0:	31 db                	xor    %ebx,%ebx
   2:	e9 9a f7 ff ff       	jmp    0xfffffffffffff7a1
   7:	80 3c 02 00          	cmpb   $0x0,(%rdx,%rax,1)
   b:	0f 85 ee 05 00 00    	jne    0x5ff
  11:	49 8b 46 58          	mov    0x58(%r14),%rax
  15:	48 89 c3             	mov    %rax,%rbx
  18:	48 83 e3 fe          	and    $0xfffffffffffffffe,%rbx
  1c:	a8 01                	test   $0x1,%al
  1e:	0f 85 f5 02 00 00    	jne    0x319
  24:	48 85 db             	test   %rbx,%rbx
  27:	74 04                	je     0x2d
  29:	90                   	nop
  2a:*	0f 0b                	ud2		<-- trapping instruction
  2c:	90                   	nop
  2d:	48 b8 00 00 00 00 00 	movabs $0xdffffc0000000000,%rax
  34:	fc ff df 
  37:	4c 89 ea             	mov    %r13,%rdx
  3a:	48 c1 ea 03          	shr    $0x3,%rdx
  3e:	80                   	.byte 0x80
  3f:	3c                   	.byte 0x3c

Code starting with the faulting instruction
===========================================
   0:	0f 0b                	ud2
   2:	90                   	nop
   3:	48 b8 00 00 00 00 00 	movabs $0xdffffc0000000000,%rax
   a:	fc ff df 
   d:	4c 89 ea             	mov    %r13,%rdx
  10:	48 c1 ea 03          	shr    $0x3,%rdx
  14:	80                   	.byte 0x80
  15:	3c                   	.byte 0x3c
[   35.830806][  T369] RSP: 0018:ffffc90000587788 EFLAGS: 00010286
[   35.831170][  T369] RAX: ffff8880092af3c0 RBX: ffff8880092af3c0 RCX: 1ffff11001255e78
[   35.831621][  T369] RDX: 1ffff110004ce413 RSI: 0000000000000000 RDI: ffff888002d7c0e0
[   35.832039][  T369] RBP: ffff888008d80040 R08: 1ffff920000b0f03 R09: 0000000000000000
[   35.832464][  T369] R10: ffff8880092ae083 R11: dffffc0000000000 R12: ffff888005935440
[   35.832883][  T369] R13: ffff888002672098 R14: ffff888002672040 R15: ffff8880026720c1
[   35.833328][  T369] FS:  00007f3617afd300(0000) GS:ffff888090324000(0000) knlGS:0000000000000000
[   35.834000][  T369] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   35.834396][  T369] CR2: 00007f3617d4d8b0 CR3: 000000000cfd9004 CR4: 0000000000772ef0
[   35.834836][  T369] PKRU: 55555554
[   35.835049][  T369] Call Trace:
[   35.835285][  T369]  <TASK>
[ 35.835446][ T369] ? __pfx_ip_route_me_harder (net/ipv4/netfilter.c:22) 
[ 35.835746][ T369] ? nf_nat_manip_pkt (net/netfilter/nf_nat_proto.c:388) nf_nat 
[ 35.836097][ T369] ? __pfx_nf_nat_manip_pkt (net/netfilter/nf_nat_proto.c:379) nf_nat 
[ 35.836478][ T369] nf_nat_ipv4_local_fn (net/netfilter/nf_nat_proto.c:768 net/netfilter/nf_nat_proto.c:749) nf_nat 
[ 35.836849][ T369] ? ipv4_conntrack_defrag (./arch/x86/include/asm/bitops.h:206 (discriminator 3) ./arch/x86/include/asm/bitops.h:238 (discriminator 3) ./include/asm-generic/bitops/instrumented-non-atomic.h:142 (discriminator 3) net/ipv4/netfilter/nf_defrag_ipv4.c:69 (discriminator 3)) nf_defrag_ipv4 
[ 35.837215][ T369] ? __pfx_nf_nat_ipv4_local_fn (net/netfilter/nf_nat_proto.c:751) nf_nat 
[ 35.837589][ T369] nf_hook_slow (./include/linux/netfilter.h:157 net/netfilter/core.c:623) 
[ 35.837880][ T369] __ip_local_out (./include/linux/netfilter.h:272 net/ipv4/ip_output.c:118) 
[ 35.838178][ T369] ? __pfx___ip_local_out (net/ipv4/ip_output.c:101) 
[ 35.838466][ T369] ? __ip_make_skb (net/ipv4/ip_output.c:1382 net/ipv4/ip_output.c:1492) 
[ 35.838765][ T369] ? __pfx_dst_output (./include/net/dst.h:460) 
[ 35.839052][ T369] ? __pfx_raw_getfrag (net/ipv4/raw.c:453) 
[ 35.839338][ T369] ? ip_append_data (net/ipv4/ip_output.c:1371 net/ipv4/ip_output.c:1350) 
[ 35.839630][ T369] ip_push_pending_frames (net/ipv4/ip_output.c:128 net/ipv4/ip_output.c:1501 net/ipv4/ip_output.c:1521) 
[ 35.839929][ T369] raw_sendmsg (net/ipv4/raw.c:658) 
[ 35.840218][ T369] ? __pfx_raw_sendmsg (net/ipv4/raw.c:483) 
[ 35.840515][ T369] ? rcu_read_lock_any_held (kernel/rcu/update.c:386 kernel/rcu/update.c:380) 
[ 35.840803][ T369] ? __lock_acquire (kernel/locking/lockdep.c:5240) 
[ 35.841091][ T369] ? find_held_lock (kernel/locking/lockdep.c:5353) 
[ 35.841370][ T369] ? __might_fault (mm/memory.c:6971 mm/memory.c:6965) 
[ 35.841658][ T369] ? __lock_release (kernel/locking/lockdep.c:5539) 
[ 35.841939][ T369] ? __might_fault (mm/memory.c:6971 mm/memory.c:6965) 
[ 35.842217][ T369] ? _copy_from_user (./arch/x86/include/asm/smap.h:29 ./arch/x86/include/asm/uaccess_64.h:134 ./arch/x86/include/asm/uaccess_64.h:141 ./include/linux/uaccess.h:178 lib/usercopy.c:18) 
[ 35.842517][ T369] __sys_sendto (net/socket.c:714 net/socket.c:729 net/socket.c:2228) 
[ 35.842809][ T369] ? __pfx___sys_sendto (net/socket.c:2195) 
[ 35.843111][ T369] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) 
[ 35.843403][ T369] ? rseq_update_cpu_node_id (kernel/rseq.c:189 (discriminator 10)) 
[ 35.843709][ T369] ? __rseq_handle_notify_resume (kernel/rseq.c:442) 
[ 35.844070][ T369] ? __pfx___rseq_handle_notify_resume (kernel/rseq.c:425) 
[ 35.844436][ T369] __x64_sys_sendto (net/socket.c:2231) 
[ 35.844720][ T369] ? do_syscall_64 (./arch/x86/include/asm/irqflags.h:42 ./arch/x86/include/asm/irqflags.h:119 ./include/linux/entry-common.h:199 arch/x86/entry/syscall_64.c:90) 
[ 35.844997][ T369] ? lockdep_hardirqs_on (kernel/locking/lockdep.c:4475) 
[ 35.845273][ T369] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) 
[ 35.845563][ T369] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) 
[   35.845927][  T369] RIP: 0033:0x7f3617d9428a
[ 35.846225][ T369] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb b8 0f 1f 00 f3 0f 1e fa 41 89 ca 64 8b 04 25 18 00 00 00 85 c0 75 15 b8 2c 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 7e c3 0f 1f 44 00 00 41 54 48 83 ec 30 44 89
All code
========
   0:	d8 64 89 02          	fsubs  0x2(%rcx,%rcx,4)
   4:	48 c7 c0 ff ff ff ff 	mov    $0xffffffffffffffff,%rax
   b:	eb b8                	jmp    0xffffffffffffffc5
   d:	0f 1f 00             	nopl   (%rax)
  10:	f3 0f 1e fa          	endbr64
  14:	41 89 ca             	mov    %ecx,%r10d
  17:	64 8b 04 25 18 00 00 	mov    %fs:0x18,%eax
  1e:	00 
  1f:	85 c0                	test   %eax,%eax
  21:	75 15                	jne    0x38
  23:	b8 2c 00 00 00       	mov    $0x2c,%eax
  28:	0f 05                	syscall
  2a:*	48 3d 00 f0 ff ff    	cmp    $0xfffffffffffff000,%rax		<-- trapping instruction
  30:	77 7e                	ja     0xb0
  32:	c3                   	ret
  33:	0f 1f 44 00 00       	nopl   0x0(%rax,%rax,1)
  38:	41 54                	push   %r12
  3a:	48 83 ec 30          	sub    $0x30,%rsp
  3e:	44                   	rex.R
  3f:	89                   	.byte 0x89

Code starting with the faulting instruction
===========================================
   0:	48 3d 00 f0 ff ff    	cmp    $0xfffffffffffff000,%rax
   6:	77 7e                	ja     0x86
   8:	c3                   	ret
   9:	0f 1f 44 00 00       	nopl   0x0(%rax,%rax,1)
   e:	41 54                	push   %r12
  10:	48 83 ec 30          	sub    $0x30,%rsp
  14:	44                   	rex.R
  15:	89                   	.byte 0x89
[   35.847252][  T369] RSP: 002b:00007ffe00f581a8 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[   35.847684][  T369] RAX: ffffffffffffffda RBX: 0000000000000038 RCX: 00007f3617d9428a
[   35.848100][  T369] RDX: 0000000000000040 RSI: 000000000e2a33f0 RDI: 0000000000000005
[   35.848529][  T369] RBP: 00007ffe00f58200 R08: 00000000004185e0 R09: 0000000000000010
[   35.848945][  T369] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000054
[   35.849362][  T369] R13: 000000000040305a R14: 0000000000415dd0 R15: 00007f3617eff000
| [   42.586852][  T408] ------------[ cut here ]------------
| [ 42.587318][ T408] WARNING: CPU: 0 PID: 408 at ./include/linux/skbuff.h:1164 ip6_route_me_harder (./include/linux/skbuff.h:1164 ./include/linux/skbuff.h:1178 net/ipv6/netfilter.c:66) 
| [   42.587938][  T408] Modules linked in: nft_nat nft_chain_nat nf_nat nf_conntrack nf_defrag_ipv6 nf_defrag_ipv4 nf_tables veth
| [   42.589871][  T408] Tainted: [W]=WARN
[   42.590118][  T408] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011
[ 42.590515][ T408] RIP: 0010:ip6_route_me_harder (./include/linux/skbuff.h:1164 ./include/linux/skbuff.h:1178 net/ipv6/netfilter.c:66) 
[ 42.590906][ T408] Code: ff e8 e3 b5 04 fe e9 a3 fd ff ff 80 3c 02 00 0f 85 6d 04 00 00 49 8b 47 58 a8 01 0f 85 61 02 00 00 48 a9 fe ff ff ff 74 04 90 <0f> 0b 90 48 8b 95 88 fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 c1
All code
========
   0:	ff                   	ljmp   (bad)
   1:	e8 e3 b5 04 fe       	call   0xfffffffffe04b5e9
   6:	e9 a3 fd ff ff       	jmp    0xfffffffffffffdae
   b:	80 3c 02 00          	cmpb   $0x0,(%rdx,%rax,1)
   f:	0f 85 6d 04 00 00    	jne    0x482
  15:	49 8b 47 58          	mov    0x58(%r15),%rax
  19:	a8 01                	test   $0x1,%al
  1b:	0f 85 61 02 00 00    	jne    0x282
  21:	48 a9 fe ff ff ff    	test   $0xfffffffffffffffe,%rax
  27:	74 04                	je     0x2d
  29:	90                   	nop
  2a:*	0f 0b                	ud2		<-- trapping instruction
  2c:	90                   	nop
  2d:	48 8b 95 88 fe ff ff 	mov    -0x178(%rbp),%rdx
  34:	48 b8 00 00 00 00 00 	movabs $0xdffffc0000000000,%rax
  3b:	fc ff df 
  3e:	48                   	rex.W
  3f:	c1                   	.byte 0xc1

Code starting with the faulting instruction
===========================================
   0:	0f 0b                	ud2
   2:	90                   	nop
   3:	48 8b 95 88 fe ff ff 	mov    -0x178(%rbp),%rdx
   a:	48 b8 00 00 00 00 00 	movabs $0xdffffc0000000000,%rax
  11:	fc ff df 
  14:	48                   	rex.W
  15:	c1                   	.byte 0xc1
[   42.592033][  T408] RSP: 0018:ffffc90000757640 EFLAGS: 00010282
[   42.592428][  T408] RAX: ffff88800bf0b380 RBX: 0000000000000000 RCX: 1ffff110017e1670
[   42.592881][  T408] RDX: 1ffff11001191c4b RSI: 0000000000000000 RDI: ffff888002d7c0e0
[   42.593343][  T408] RBP: ffffc900007577e8 R08: 0000000000000000 R09: ffff888008c8e281
[   42.593805][  T408] R10: ffff88800bf0a243 R11: dffffc0000000000 R12: ffff88800c34be40
[   42.594264][  T408] R13: ffff888008d80040 R14: ffff88800bf0b380 R15: ffff888008c8e200
[   42.594723][  T408] FS:  00007fa7f7781300(0000) GS:ffff8880902a4000(0000) knlGS:0000000000000000
[   42.595561][  T408] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   42.595943][  T408] CR2: 00007fa7f79d18b0 CR3: 000000000a007003 CR4: 0000000000772ef0
[   42.596413][  T408] PKRU: 55555554
[   42.596644][  T408] Call Trace:
[   42.596870][  T408]  <TASK>
[ 42.597031][ T408] ? __pfx_ip6_route_me_harder (net/ipv6/netfilter.c:24) 
[ 42.597358][ T408] ? nf_conntrack_in (net/netfilter/nf_conntrack_core.c:1984 net/netfilter/nf_conntrack_core.c:2060) nf_conntrack 
[ 42.597772][ T408] nf_nat_ipv6_local_fn (net/netfilter/nf_nat_proto.c:1038 net/netfilter/nf_nat_proto.c:1009) nf_nat 
[ 42.598155][ T408] ? ipv6_defrag (net/ipv6/netfilter/nf_defrag_ipv6_hooks.c:70 net/ipv6/netfilter/nf_defrag_ipv6_hooks.c:52) nf_defrag_ipv6 
[ 42.598545][ T408] ? ipv6_defrag (net/ipv6/netfilter/nf_defrag_ipv6_hooks.c:70 net/ipv6/netfilter/nf_defrag_ipv6_hooks.c:52) nf_defrag_ipv6 
[ 42.598921][ T408] ? __pfx_nf_nat_ipv6_local_fn (net/netfilter/nf_nat_proto.c:1011) nf_nat 
[ 42.599305][ T408] nf_hook_slow (./include/linux/netfilter.h:157 net/netfilter/core.c:623) 
[ 42.599623][ T408] nf_hook.constprop.0 (./include/linux/netfilter.h:247) 
[ 42.599928][ T408] ? __pfx_nf_hook.constprop.0 (./include/linux/netfilter.h:226) 
[ 42.600231][ T408] ? __pfx_dst_output (./include/net/dst.h:460) 
[ 42.600550][ T408] ip6_local_out (net/ipv6/output_core.c:154) 
[ 42.600862][ T408] ip6_send_skb (net/ipv6/ip6_output.c:1984) 
[ 42.601168][ T408] rawv6_push_pending_frames (net/ipv6/raw.c:512) 
[ 42.601497][ T408] ? __pfx_raw6_getfrag (net/ipv6/raw.c:711) 
[ 42.601800][ T408] ? __pfx_rawv6_push_pending_frames (net/ipv6/raw.c:512) 
[ 42.602183][ T408] rawv6_sendmsg (net/ipv6/raw.c:918) 
[ 42.602504][ T408] ? __pfx_rawv6_sendmsg (net/ipv6/raw.c:741) 
[ 42.602816][ T408] ? __lock_acquire (kernel/locking/lockdep.c:5240) 
[ 42.603154][ T408] ? __might_fault (mm/memory.c:6971 mm/memory.c:6965) 
[ 42.603476][ T408] ? __sys_sendto (net/socket.c:714 net/socket.c:729 net/socket.c:2228) 
[ 42.603779][ T408] __sys_sendto (net/socket.c:714 net/socket.c:729 net/socket.c:2228) 
[ 42.604080][ T408] ? __pfx___sys_sendto (net/socket.c:2195) 
[ 42.604400][ T408] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) 
[ 42.604708][ T408] ? rseq_update_cpu_node_id (kernel/rseq.c:189 (discriminator 10)) 
[ 42.605013][ T408] ? __rseq_handle_notify_resume (kernel/rseq.c:442) 
[ 42.605400][ T408] ? __pfx___rseq_handle_notify_resume (kernel/rseq.c:425) 
[ 42.605791][ T408] __x64_sys_sendto (net/socket.c:2231) 
[ 42.606094][ T408] ? do_syscall_64 (./arch/x86/include/asm/irqflags.h:42 ./arch/x86/include/asm/irqflags.h:119 ./include/linux/entry-common.h:199 arch/x86/entry/syscall_64.c:90) 
[ 42.606407][ T408] ? lockdep_hardirqs_on (kernel/locking/lockdep.c:4475) 
[ 42.606713][ T408] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) 
[ 42.607017][ T408] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) 
[   42.607400][  T408] RIP: 0033:0x7fa7f7a1828a
[ 42.607715][ T408] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb b8 0f 1f 00 f3 0f 1e fa 41 89 ca 64 8b 04 25 18 00 00 00 85 c0 75 15 b8 2c 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 7e c3 0f 1f 44 00 00 41 54 48 83 ec 30 44 89
All code
========
   0:	d8 64 89 02          	fsubs  0x2(%rcx,%rcx,4)
   4:	48 c7 c0 ff ff ff ff 	mov    $0xffffffffffffffff,%rax
   b:	eb b8                	jmp    0xffffffffffffffc5
   d:	0f 1f 00             	nopl   (%rax)
  10:	f3 0f 1e fa          	endbr64
  14:	41 89 ca             	mov    %ecx,%r10d
  17:	64 8b 04 25 18 00 00 	mov    %fs:0x18,%eax
  1e:	00 
  1f:	85 c0                	test   %eax,%eax
  21:	75 15                	jne    0x38
  23:	b8 2c 00 00 00       	mov    $0x2c,%eax
  28:	0f 05                	syscall
  2a:*	48 3d 00 f0 ff ff    	cmp    $0xfffffffffffff000,%rax		<-- trapping instruction
  30:	77 7e                	ja     0xb0
  32:	c3                   	ret
  33:	0f 1f 44 00 00       	nopl   0x0(%rax,%rax,1)
  38:	41 54                	push   %r12
  3a:	48 83 ec 30          	sub    $0x30,%rsp
  3e:	44                   	rex.R
  3f:	89                   	.byte 0x89

Code starting with the faulting instruction
===========================================
   0:	48 3d 00 f0 ff ff    	cmp    $0xfffffffffffff000,%rax
   6:	77 7e                	ja     0x86
   8:	c3                   	ret
   9:	0f 1f 44 00 00       	nopl   0x0(%rax,%rax,1)
   e:	41 54                	push   %r12
  10:	48 83 ec 30          	sub    $0x30,%rsp
  14:	44                   	rex.R
  15:	89                   	.byte 0x89
[   42.608813][  T408] RSP: 002b:00007ffcea837b28 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[   42.609271][  T408] RAX: ffffffffffffffda RBX: 0000000000000038 RCX: 00007fa7f7a1828a
[   42.609745][  T408] RDX: 0000000000000040 RSI: 0000000010a993f0 RDI: 0000000000000006
[   42.610204][  T408] RBP: 00007ffcea837bb0 R08: 0000000000418574 R09: 000000000000001c
[   42.610663][  T408] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000419ac0


Finger prints:
ip6_route_me_harder:nf_nat_ipv6_local_fn:nf_hook_slow:ip6_local_out:ip6_send_skb
ip_route_me_harder:nf_nat_ipv4_local_fn:nf_hook_slow:__ip_local_out:ip_push_pending_frames