====================================== | xx__-> [ 16.559817][ T252] ip (252) used greatest stack depth: 23808 bytes left | [ 89.778047][ C3] ------------[ cut here ]------------ | [ 89.778579][ C3] WARNING: CPU: 3 PID: 677 at ./include/linux/skbuff.h:1164 icmp_route_lookup.constprop.0 (./include/linux/skbuff.h:1164 ./include/linux/skbuff.h:1178 net/ipv4/icmp.c:548) | [ 89.779242][ C3] Modules linked in: dummy veth nf_log_syslog nft_log nft_fib_inet nft_fib_ipv4 nft_fib_ipv6 nft_fib nf_tables [ 89.780607][ C3] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011 [ 89.781015][ C3] RIP: 0010:icmp_route_lookup.constprop.0 (./include/linux/skbuff.h:1164 ./include/linux/skbuff.h:1178 net/ipv4/icmp.c:548) [ 89.781446][ C3] Code: c1 ea 03 80 3c 02 00 0f 85 2c 05 00 00 48 8b 45 58 48 89 44 24 08 a8 01 0f 85 35 02 00 00 48 f7 44 24 08 fe ff ff ff 74 04 90 <0f> 0b 90 48 b8 00 00 00 00 00 fc ff df 4c 89 da 48 c1 ea 03 80 3c All code ======== 0: c1 ea 03 shr $0x3,%edx 3: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 7: 0f 85 2c 05 00 00 jne 0x539 d: 48 8b 45 58 mov 0x58(%rbp),%rax 11: 48 89 44 24 08 mov %rax,0x8(%rsp) 16: a8 01 test $0x1,%al 18: 0f 85 35 02 00 00 jne 0x253 1e: 48 f7 44 24 08 fe ff testq $0xfffffffffffffffe,0x8(%rsp) 25: ff ff 27: 74 04 je 0x2d 29: 90 nop 2a:* 0f 0b ud2 <-- trapping instruction 2c: 90 nop 2d: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax 34: fc ff df 37: 4c 89 da mov %r11,%rdx 3a: 48 c1 ea 03 shr $0x3,%rdx 3e: 80 .byte 0x80 3f: 3c .byte 0x3c Code starting with the faulting instruction =========================================== 0: 0f 0b ud2 2: 90 nop 3: 48 b8 00 00 00 00 00 movabs $0xdffffc0000000000,%rax a: fc ff df d: 4c 89 da mov %r11,%rdx 10: 48 c1 ea 03 shr $0x3,%rdx 14: 80 .byte 0x80 15: 3c .byte 0x3c [ 89.782587][ C3] RSP: 0018:ffffc900002706b8 EFLAGS: 00010282 [ 89.782993][ C3] RAX: ffff88800c701540 RBX: 1ffff9200004e0db RCX: 0000000000000002 [ 89.783466][ C3] RDX: 1ffff1100123ed63 RSI: ffffffffbc6a1d68 RDI: ffffc9000027076a [ 89.783946][ C3] RBP: ffff8880091f6ac0 R08: 0000000000000001 R09: ffff88800c7016c0 [ 89.784409][ C3] R10: ffffe8ffffd851d7 R11: ffff8880091f6b18 R12: ffff888008d10040 [ 89.784892][ C3] R13: ffffc90000270968 R14: ffff88800c701840 R15: ffffc900002706f8 [ 89.785365][ C3] FS: 00007f65537b6300(0000) GS:ffff888077c24000(0000) knlGS:0000000000000000 [ 89.785923][ C3] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 89.786331][ C3] CR2: 00007f6553a068b0 CR3: 000000000f049006 CR4: 0000000000772ef0 [ 89.787074][ C3] PKRU: 55555554 [ 89.787320][ C3] Call Trace: [ 89.787569][ C3] [ 89.787741][ C3] ? __pfx_icmp_route_lookup.constprop.0 (net/ipv4/icmp.c:480) [ 89.788152][ C3] ? find_held_lock (kernel/locking/lockdep.c:5353) [ 89.788470][ C3] ? __ip_options_echo (net/ipv4/ip_options.c:86) [ 89.788798][ C3] ? __icmp_send (./include/linux/rcupdate.h:341 ./include/linux/rcupdate.h:871 net/ipv4/icmp.c:718) [ 89.789105][ C3] ? __lock_release (kernel/locking/lockdep.c:5539) [ 89.789416][ C3] __icmp_send (net/ipv4/icmp.c:746) [ 89.789753][ C3] ? __pfx___icmp_send (net/ipv4/icmp.c:596) [ 89.790075][ C3] ? ip_finish_output2 (./include/net/neighbour.h:547 net/ipv4/ip_output.c:235) [ 89.790389][ C3] ? __lock_acquire (kernel/locking/lockdep.c:5240) [ 89.790718][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 89.791059][ C3] ip_rt_send_redirect (net/ipv4/route.c:920) [ 89.791382][ C3] ? __lock_acquire (kernel/locking/lockdep.c:5240) [ 89.791715][ C3] ? __pfx_ip_rt_send_redirect (net/ipv4/route.c:868) [ 89.792038][ C3] ? find_held_lock (kernel/locking/lockdep.c:5353) [ 89.792369][ C3] ? ip_dst_mtu_maybe_forward.constprop.0 (./include/linux/rcupdate.h:873 ./include/net/ip.h:501) [ 89.792764][ C3] ? __lock_release (kernel/locking/lockdep.c:5539) [ 89.793080][ C3] ? ip_forward (net/ipv4/ip_forward.c:157) [ 89.793396][ C3] ip_forward (net/ipv4/ip_forward.c:157) [ 89.793719][ C3] ? __pfx_ip_rcv (net/ipv4/ip_input.c:567) [ 89.794026][ C3] ? process_backlog (./include/linux/local_lock_internal.h:54 net/core/dev.c:6442) [ 89.794334][ C3] __netif_receive_skb_one_core (net/core/dev.c:5979 (discriminator 4)) [ 89.794728][ C3] ? __pfx___netif_receive_skb_one_core (net/core/dev.c:5972) [ 89.795110][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 89.795418][ C3] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) [ 89.795740][ C3] ? process_backlog (./include/linux/local_lock_internal.h:54 net/core/dev.c:6442) [ 89.796054][ C3] process_backlog (./include/linux/rcupdate.h:869 net/core/dev.c:6445) [ 89.796371][ C3] __napi_poll.constprop.0 (net/core/dev.c:7482) [ 89.796693][ C3] net_rx_action (net/core/dev.c:7546 net/core/dev.c:7673) [ 89.797017][ C3] ? __pfx_net_rx_action (net/core/dev.c:7635) [ 89.797325][ C3] ? sched_ttwu_pending (kernel/sched/core.c:3857 (discriminator 2)) [ 89.797631][ C3] ? __lock_release (kernel/locking/lockdep.c:5539) [ 89.797963][ C3] ? do_raw_spin_unlock (./arch/x86/include/asm/atomic.h:23 ./include/linux/atomic/atomic-arch-fallback.h:457 ./include/linux/atomic/atomic-instrumented.h:33 ./include/asm-generic/qspinlock.h:57 kernel/locking/spinlock_debug.c:101 kernel/locking/spinlock_debug.c:141) [ 89.798280][ C3] ? _raw_spin_unlock (./arch/x86/include/asm/preempt.h:104 ./include/linux/spinlock_api_smp.h:143 kernel/locking/spinlock.c:186) [ 89.798607][ C3] handle_softirqs (kernel/softirq.c:579) [ 89.798933][ C3] ? __dev_queue_xmit (./include/linux/rcupdate.h:341 ./include/linux/rcupdate.h:908 net/core/dev.c:4740) [ 89.799242][ C3] do_softirq (kernel/softirq.c:480 kernel/softirq.c:467) [ 89.799476][ C3] [ 89.799635][ C3] [ 89.799799][ C3] __local_bh_enable_ip (kernel/softirq.c:407) [ 89.800107][ C3] ? __dev_queue_xmit (./include/linux/rcupdate.h:341 ./include/linux/rcupdate.h:908 net/core/dev.c:4740) [ 89.800419][ C3] __dev_queue_xmit (net/core/dev.c:4741) [ 89.800743][ C3] ? __lock_acquire (kernel/locking/lockdep.c:5240) [ 89.801069][ C3] ? __pfx___dev_queue_xmit (net/core/dev.c:4621) [ 89.801404][ C3] ? eth_header (net/ethernet/eth.c:100) [ 89.801742][ C3] ? neigh_resolve_output (./include/linux/netdevice.h:3412 net/core/neighbour.c:1556 net/core/neighbour.c:1541) [ 89.802078][ C3] ip_finish_output2 (./include/net/neighbour.h:547 net/ipv4/ip_output.c:235) [ 89.802408][ C3] ? ip_skb_dst_mtu (./include/linux/rcupdate.h:341 ./include/linux/rcupdate.h:871 ./include/net/ip.h:501 ./include/net/ip.h:515) [ 89.802744][ C3] ? __pfx_ip_finish_output2 (net/ipv4/ip_output.c:199) [ 89.803082][ C3] ? __ip_finish_output (./include/linux/skbuff.h:1685 ./include/linux/skbuff.h:5079 net/ipv4/ip_output.c:307 net/ipv4/ip_output.c:295) [ 89.803397][ C3] ip_push_pending_frames (./include/net/dst.h:461 net/ipv4/ip_output.c:129 net/ipv4/ip_output.c:1501 net/ipv4/ip_output.c:1521) [ 89.803733][ C3] raw_sendmsg (net/ipv4/raw.c:658) [ 89.804050][ C3] ? __pfx_raw_sendmsg (net/ipv4/raw.c:483) [ 89.804362][ C3] ? rcu_read_lock_any_held (kernel/rcu/update.c:386 kernel/rcu/update.c:380) [ 89.804689][ C3] ? __lock_acquire (kernel/locking/lockdep.c:5240) [ 89.805015][ C3] ? find_held_lock (kernel/locking/lockdep.c:5353) [ 89.805324][ C3] ? __might_fault (mm/memory.c:6971 mm/memory.c:6965) [ 89.805630][ C3] ? __lock_release (kernel/locking/lockdep.c:5539) [ 89.805978][ C3] ? __might_fault (mm/memory.c:6971 mm/memory.c:6965) [ 89.806304][ C3] ? _copy_from_user (./arch/x86/include/asm/smap.h:29 ./arch/x86/include/asm/uaccess_64.h:134 ./arch/x86/include/asm/uaccess_64.h:141 ./include/linux/uaccess.h:178 lib/usercopy.c:18) [ 89.806630][ C3] __sys_sendto (net/socket.c:714 net/socket.c:729 net/socket.c:2228) [ 89.806974][ C3] ? __pfx___sys_sendto (net/socket.c:2195) [ 89.807292][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) [ 89.807605][ C3] ? rseq_update_cpu_node_id (kernel/rseq.c:189 (discriminator 10)) [ 89.807923][ C3] ? __rseq_handle_notify_resume (kernel/rseq.c:442) [ 89.808315][ C3] ? __pfx___rseq_handle_notify_resume (kernel/rseq.c:425) [ 89.808713][ C3] __x64_sys_sendto (net/socket.c:2231) [ 89.809020][ C3] ? do_syscall_64 (./arch/x86/include/asm/irqflags.h:42 ./arch/x86/include/asm/irqflags.h:119 ./include/linux/entry-common.h:199 arch/x86/entry/syscall_64.c:90) [ 89.809327][ C3] ? lockdep_hardirqs_on (kernel/locking/lockdep.c:4475) [ 89.809638][ C3] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) [ 89.809967][ C3] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) [ 89.810352][ C3] RIP: 0033:0x7f6553a4d28a [ 89.810681][ C3] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb b8 0f 1f 00 f3 0f 1e fa 41 89 ca 64 8b 04 25 18 00 00 00 85 c0 75 15 b8 2c 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 7e c3 0f 1f 44 00 00 41 54 48 83 ec 30 44 89 All code ======== 0: d8 64 89 02 fsubs 0x2(%rcx,%rcx,4) 4: 48 c7 c0 ff ff ff ff mov $0xffffffffffffffff,%rax b: eb b8 jmp 0xffffffffffffffc5 d: 0f 1f 00 nopl (%rax) 10: f3 0f 1e fa endbr64 14: 41 89 ca mov %ecx,%r10d 17: 64 8b 04 25 18 00 00 mov %fs:0x18,%eax 1e: 00 1f: 85 c0 test %eax,%eax 21: 75 15 jne 0x38 23: b8 2c 00 00 00 mov $0x2c,%eax 28: 0f 05 syscall 2a:* 48 3d 00 f0 ff ff cmp $0xfffffffffffff000,%rax <-- trapping instruction 30: 77 7e ja 0xb0 32: c3 ret 33: 0f 1f 44 00 00 nopl 0x0(%rax,%rax,1) 38: 41 54 push %r12 3a: 48 83 ec 30 sub $0x30,%rsp 3e: 44 rex.R 3f: 89 .byte 0x89 Code starting with the faulting instruction =========================================== 0: 48 3d 00 f0 ff ff cmp $0xfffffffffffff000,%rax 6: 77 7e ja 0x86 8: c3 ret 9: 0f 1f 44 00 00 nopl 0x0(%rax,%rax,1) e: 41 54 push %r12 10: 48 83 ec 30 sub $0x30,%rsp 14: 44 rex.R 15: 89 .byte 0x89 [ 89.811795][ C3] RSP: 002b:00007ffc2e451498 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 89.812267][ C3] RAX: ffffffffffffffda RBX: 0000000000000038 RCX: 00007f6553a4d28a [ 89.812744][ C3] RDX: 0000000000000040 RSI: 00000000384df3f0 RDI: 0000000000000005 [ 89.813212][ C3] RBP: 00007ffc2e4514f0 R08: 00000000004185e0 R09: 0000000000000010 [ 89.813684][ C3] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000054 Finger prints: __icmp_send:ip_rt_send_redirect:ip_forward:__netif_receive_skb_one_core:process_backlog