[Bug 2129580] Re: [questing] kernel BUG at lib/string_helpers.c:1043!
Frode Nordahl
2129580 at bugs.launchpad.net
Tue Jan 20 09:55:20 UTC 2026
** Description changed:
+ [ Impact ]
+
+ Due to a false negative result of runtime bounds checking, a kernel
+ panic occurrs on reception of erspan packet.
+
+ A bug has been discovered in the kernel networking code for handling of
+ erspan packets. It manifests itself when FORTIFY_SOURCE is enabled and
+ GCC 15.2+ compiler is used, both of which are true for Ubuntu Questing
+ and onwards.
+
+ [ Testc Plan ]
+
+ The Open vSwitch system test suite triggers the panic, and consequentliy
+ it can be used to confirm the fix.
+
+ [ Where problems could occur ]
+
+ The false negative occurs due to incorrect order of referencing counter
+ and the data protected by it, the fix is trivial and has been merged
+ both to mainline and stable for some time.
+
+ Probability of it causing undesired effects is minimal.
+
+ [ Other info ]
+
Steps to reproduce the issue:
1. sudo apt build-dep openvswitch
2. git clone https://github.com/openvswitch/ovs.git
3. cd ovs
4. ./boot.sh && ./configure && make -j$(nproc)
5. sudo make check-kernel TESTSUITEFLAGS="-j1 18"
[ 70.856928] kernel BUG at lib/string_helpers.c:1043!
[ 70.859256] Oops: invalid opcode: 0000 [#1] SMP NOPTI
- [ 70.862277] CPU: 9 UID: 0 PID: 342 Comm: kworker/9:1 Tainted: G W 6.17.0-7-generic #7-Ubuntu PREEMPT(voluntary)
+ [ 70.862277] CPU: 9 UID: 0 PID: 342 Comm: kworker/9:1 Tainted: G W 6.17.0-7-generic #7-Ubuntu PREEMPT(voluntary)
[ 70.868569] Tainted: [W]=WARN
[ 70.870041] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009)/LXD, BIOS unknown 2/2/2022
[ 70.873454] Workqueue: mld mld_ifc_work
[ 70.875007] RIP: 0010:__fortify_panic+0xd/0xf
[ 70.876784] Code: e9 12 90 9c 00 e9 38 90 9c 00 cc cc cc 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 55 40 0f b6 ff 48 89 e5 e8 93 a9 9c 00 <0f> 0b 48 8b 95 28 ff ff ff 48 8b b5 30 ff ff ff 4c 89 e9 48 c7 c7
[ 70.884212] RSP: 0018:ffffd04e0048cbb0 EFLAGS: 00010246
[ 70.886334] RAX: 0000000000000000 RBX: ffff8ac046819e00 RCX: 0000000000000000
[ 70.889209] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 70.892164] RBP: ffffd04e0048cbb0 R08: 0000000000000000 R09: 0000000000000000
[ 70.895028] R10: 0000000000000000 R11: 0000000000000000 R12: ffffd04e0048cc38
[ 70.897917] R13: 0000000000000004 R14: 0000000000000001 R15: ffff8ac050ae1a80
[ 70.900794] FS: 0000000000000000(0000) GS:ffff8ac7eb6ff000(0000) knlGS:0000000000000000
[ 70.904036] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 70.906376] CR2: 00007c68bcaf7980 CR3: 0000000564640000 CR4: 0000000000350ef0
[ 70.909255] Call Trace:
[ 70.910275] <IRQ>
[ 70.911121] erspan_rcv.cold+0x68/0x83 [ip_gre]
[ 70.912963] ? ip_route_input_slow+0x816/0x9d0
[ 70.914785] gre_rcv+0x1b2/0x1c0 [ip_gre]
[ 70.916434] gre_rcv+0x8e/0x100 [gre]
[ 70.917927] ? raw_v4_input+0x210/0x280
[ 70.919555] ip_protocol_deliver_rcu+0x1ea/0x210
[ 70.921445] ip_local_deliver_finish+0x86/0x110
[ 70.923324] ip_local_deliver+0x65/0x110
[ 70.924918] ? ip_rcv_finish_core+0xd6/0x370
[ 70.926668] ip_rcv+0x186/0x1a0
[ 70.927966] ? fetch_next_timer_interrupt+0x3f/0x170
[ 70.929990] ? _raw_spin_unlock+0xe/0x40
[ 70.931608] __netif_receive_skb_one_core+0x8d/0xa0
[ 70.933599] __netif_receive_skb+0x16/0x70
[ 70.935281] ? _raw_spin_unlock_irq+0xe/0x60
[ 70.937010] process_backlog+0x90/0x160
[ 70.938591] __napi_poll+0x35/0x200
[ 70.940018] net_rx_action+0x20b/0x3f0
[ 70.941565] ? tmigr_handle_remote_up+0x118/0x140
[ 70.943485] handle_softirqs+0xdf/0x330
[ 70.945044] __do_softirq+0x10/0x18
[ 70.946491] do_softirq.part.0+0x3f/0x80
[ 70.948092] </IRQ>
[ 70.948972] <TASK>
[ 70.949930] __local_bh_enable_ip+0x6a/0x70
[ 70.951361] __dev_queue_xmit+0x44f/0x850
[ 70.952674] ? call_rcu+0x31/0x50
[ 70.953989] ? neigh_hash_alloc+0x8e/0xd0
[ 70.955515] ? _raw_write_unlock_bh+0x1a/0x30
[ 70.957140] ? ___neigh_create+0x755/0x9d0
[ 70.958681] neigh_resolve_output+0x122/0x200
[ 70.960314] ip6_finish_output2+0x212/0x620
[ 70.961867] ? __kmalloc_node_track_caller_noprof+0x282/0x5a0
[ 70.963911] ? sched_balance_rq+0x100/0x9c0
[ 70.965471] ip6_finish_output+0x1ea/0x4a0
[ 70.966980] ? nf_hook_slow+0x48/0x120
[ 70.968403] ip6_output+0x75/0x1b0
[ 70.969694] ? __pfx_ip6_finish_output+0x10/0x10
[ 70.971368] NF_HOOK.constprop.0+0x4e/0x130
[ 70.972885] ? xfrm_lookup+0x11/0x30
[ 70.974244] ? icmp6_dst_alloc+0x16f/0x230
[ 70.975742] mld_sendpack+0x196/0x270
[ 70.977109] mld_send_cr+0x2c1/0x340
[ 70.978503] mld_ifc_work+0x32/0x170
[ 70.979884] process_one_work+0x18e/0x370
[ 70.981358] worker_thread+0x317/0x450
[ 70.982726] ? _raw_spin_unlock_irqrestore+0x11/0x60
[ 70.984484] ? __pfx_worker_thread+0x10/0x10
[ 70.986011] kthread+0x10b/0x220
[ 70.987238] ? _raw_spin_unlock_irq+0xe/0x60
[ 70.988768] ? __pfx_kthread+0x10/0x10
[ 70.990140] ret_from_fork+0x134/0x150
[ 70.991523] ? __pfx_kthread+0x10/0x10
[ 70.992889] ret_from_fork_asm+0x1a/0x30
[ 70.994337] </TASK>
[ 70.995216] Modules linked in: veth nfnetlink_cttimeout vport_vxlan vxlan vport_gre ip_gre ip_tunnel gre vport_geneve geneve ip6_udp_tunnel udp_tunnel openvswitch nsh nf_conncount nf_nat nf_conntrack nf_defrag_ipv6 nf_defrag_ipv4 psample qrtr cfg80211 binfmt_misc nls_iso8859_1 intel_rapl_msr intel_rapl_common kvm_amd ccp 9pnet_virtio kvm 9pnet i2c_i801 irqbypass i2c_smbus netfs vmw_vsock_virtio_transport virtiofs virtio_input i2c_mux lpc_ich vmgenid joydev input_leds mac_hid sch_fq_codel msr efi_pstore dm_multipath nfnetlink vsock_loopback vmw_vsock_virtio_transport_common vmw_vsock_vmci_transport vsock vmw_vmci dmi_sysfs qemu_fw_cfg ip_tables x_tables autofs4 btrfs blake2b_generic raid10 raid456 async_raid6_recov async_memcpy async_pq async_xor async_tx xor raid6_pq raid1 raid0 linear ahci psmouse polyval_clmulni virtio_gpu libahci ghash_clmulni_intel serio_raw virtio_dma_buf virtio_rng aesni_intel
[ 71.012444] ---[ end trace 0000000000000000 ]---
[ 71.825394] ------------[ cut here ]------------
[ 71.831536] memcpy: detected buffer overflow: 4 byte write of buffer size 0
[ 71.835574] WARNING: CPU: 0 PID: 215 at lib/string_helpers.c:1035 __fortify_report+0x55/0xa0
[ 71.840219] Modules linked in: veth nfnetlink_cttimeout vport_vxlan vxlan vport_gre ip_gre ip_tunnel gre vport_geneve geneve ip6_udp_tunnel udp_tunnel openvswitch nsh nf_conncount nf_nat nf_conntrack nf_defrag_ipv6 nf_defrag_ipv4 psample qrtr cfg80211 binfmt_misc nls_iso8859_1 intel_rapl_msr intel_rapl_common kvm_amd ccp 9pnet_virtio kvm 9pnet i2c_i801 irqbypass i2c_smbus netfs vmw_vsock_virtio_transport virtiofs virtio_input i2c_mux lpc_ich vmgenid joydev input_leds mac_hid sch_fq_codel msr efi_pstore dm_multipath nfnetlink vsock_loopback vmw_vsock_virtio_transport_common vmw_vsock_vmci_transport vsock vmw_vmci dmi_sysfs qemu_fw_cfg ip_tables x_tables autofs4 btrfs blake2b_generic raid10 raid456 async_raid6_recov async_memcpy async_pq async_xor async_tx xor raid6_pq raid1 raid0 linear ahci psmouse polyval_clmulni virtio_gpu libahci ghash_clmulni_intel serio_raw virtio_dma_buf virtio_rng aesni_intel
- [ 71.922460] CPU: 0 UID: 0 PID: 215 Comm: kworker/u256:1 Tainted: G D W 6.17.0-7-generic #7-Ubuntu PREEMPT(voluntary)
+ [ 71.922460] CPU: 0 UID: 0 PID: 215 Comm: kworker/u256:1 Tainted: G D W 6.17.0-7-generic #7-Ubuntu PREEMPT(voluntary)
[ 71.928732] Tainted: [D]=DIE, [W]=WARN
[ 71.930984] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009)/LXD, BIOS unknown 2/2/2022
[ 71.935337] Workqueue: ipv6_addrconf addrconf_dad_work
[ 71.938502] RIP: 0010:__fortify_report+0x55/0xa0
[ 71.941417] Code: 01 48 8b 34 c5 40 b2 2a b1 48 c7 c1 36 17 a1 b1 48 c7 c0 2c 17 a1 b1 48 0f 44 c8 4c 89 ca 48 c7 c7 98 40 91 b1 e8 4b 74 7d ff <0f> 0b c9 31 c0 31 d2 31 c9 31 f6 31 ff 45 31 c0 45 31 c9 e9 c3 5b
[ 71.951039] RSP: 0018:ffffd04e00003b80 EFLAGS: 00010246
[ 71.954130] RAX: 0000000000000000 RBX: ffff8ac0472cb800 RCX: 0000000000000000
[ 71.957964] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 71.961839] RBP: ffffd04e00003ba0 R08: 0000000000000000 R09: 0000000000000000
[ 71.965606] R10: 0000000000000000 R11: 0000000000000000 R12: ffffd04e00003c38
[ 71.969574] R13: 0000000000000004 R14: 0000000000000001 R15: ffff8ac050ae1a80
[ 71.973886] FS: 0000000000000000(0000) GS:ffff8ac7eb27f000(0000) knlGS:0000000000000000
[ 71.978170] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 71.981432] CR2: 000071f5d918df04 CR3: 0000000564640000 CR4: 0000000000350ef0
[ 71.986472] Call Trace:
[ 71.988271] <IRQ>
[ 71.989903] __fortify_panic+0xd/0xf
[ 71.992245] erspan_rcv.cold+0x68/0x83 [ip_gre]
[ 71.995078] ? ip_route_input_slow+0x816/0x9d0
[ 71.997822] gre_rcv+0x1b2/0x1c0 [ip_gre]
[ 72.000589] gre_rcv+0x8e/0x100 [gre]
[ 72.003060] ? raw_v4_input+0x210/0x280
[ 72.005650] ip_protocol_deliver_rcu+0x1ea/0x210
[ 72.008491] ip_local_deliver_finish+0x86/0x110
[ 72.011182] ip_local_deliver+0x65/0x110
[ 72.013584] ? ip_rcv_finish_core+0xd6/0x370
[ 72.016217] ip_rcv+0x186/0x1a0
[ 72.018376] ? _raw_spin_lock_irqsave+0xe/0x20
[ 72.020988] __netif_receive_skb_one_core+0x8d/0xa0
[ 72.023764] __netif_receive_skb+0x16/0x70
[ 72.026320] ? _raw_spin_unlock_irq+0xe/0x60
[ 72.028937] process_backlog+0x90/0x160
[ 72.031526] __napi_poll+0x35/0x200
[ 72.033776] net_rx_action+0x20b/0x3f0
[ 72.036123] ? __run_timers+0x237/0x2c0
[ 72.038575] handle_softirqs+0xdf/0x330
[ 72.040912] __do_softirq+0x10/0x18
[ 72.043145] do_softirq.part.0+0x3f/0x80
[ 72.045468] </IRQ>
[ 72.047065] <TASK>
[ 72.048628] __local_bh_enable_ip+0x6a/0x70
[ 72.050983] __dev_queue_xmit+0x44f/0x850
[ 72.053346] ? __alloc_frozen_pages_noprof+0x180/0x360
[ 72.056258] ? ndisc_mc_map+0x41/0xe0
[ 72.058624] ? ndisc_constructor+0x1f6/0x3f0
[ 72.061254] ? _raw_write_unlock_bh+0x1a/0x30
[ 72.063866] ? ___neigh_create+0x755/0x9d0
[ 72.066365] ? shuffle_freelist+0x13f/0x1c0
[ 72.068725] neigh_resolve_output+0x122/0x200
[ 72.071152] ip6_finish_output2+0x212/0x620
[ 72.073582] ip6_finish_output+0x1ea/0x4a0
[ 72.075904] ? nf_hook_slow+0x48/0x120
[ 72.078090] ip6_output+0x75/0x1b0
[ 72.080060] ? __pfx_ip6_finish_output+0x10/0x10
[ 72.082753] NF_HOOK.constprop.0+0x4e/0x130
[ 72.085120] ? xfrm_lookup+0x11/0x30
[ 72.087212] ? icmp6_dst_alloc+0x16f/0x230
[ 72.090080] ndisc_send_skb+0x1bb/0x360
[ 72.094107] ndisc_send_ns+0x62/0xd0
[ 72.097838] ? addrconf_mod_dad_work+0x44/0xe0
[ 72.119576] addrconf_dad_work+0x2bc/0x370
[ 72.126176] ? __schedule+0x2f5/0x7c0
[ 72.128771] process_one_work+0x18e/0x370
[ 72.147012] worker_thread+0x317/0x450
[ 72.150913] ? __pfx_worker_thread+0x10/0x10
[ 72.154256] kthread+0x10b/0x220
[ 72.157256] ? _raw_spin_unlock_irq+0xe/0x60
[ 72.161111] ? __pfx_kthread+0x10/0x10
[ 72.164961] ret_from_fork+0x134/0x150
[ 72.168106] ? __pfx_kthread+0x10/0x10
[ 72.171196] ret_from_fork_asm+0x1a/0x30
[ 72.174495] </TASK>
[ 72.177362] ---[ end trace 0000000000000000 ]---
[ 72.182032] ------------[ cut here ]------------
[ 72.186465] kernel BUG at lib/string_helpers.c:1043!
[ 72.190757] Oops: invalid opcode: 0000 [#2] SMP NOPTI
- [ 72.195834] CPU: 0 UID: 0 PID: 215 Comm: kworker/u256:1 Tainted: G D W 6.17.0-7-generic #7-Ubuntu PREEMPT(voluntary)
+ [ 72.195834] CPU: 0 UID: 0 PID: 215 Comm: kworker/u256:1 Tainted: G D W 6.17.0-7-generic #7-Ubuntu PREEMPT(voluntary)
[ 72.206978] Tainted: [D]=DIE, [W]=WARN
[ 72.210085] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009)/LXD, BIOS unknown 2/2/2022
[ 72.217100] Workqueue: ipv6_addrconf addrconf_dad_work
[ 72.221515] RIP: 0010:__fortify_panic+0xd/0xf
[ 72.225645] Code: e9 12 90 9c 00 e9 38 90 9c 00 cc cc cc 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 55 40 0f b6 ff 48 89 e5 e8 93 a9 9c 00 <0f> 0b 48 8b 95 28 ff ff ff 48 8b b5 30 ff ff ff 4c 89 e9 48 c7 c7
[ 72.240126] RSP: 0018:ffffd04e00003bb0 EFLAGS: 00010246
[ 72.244739] RAX: 0000000000000000 RBX: ffff8ac0472cb800 RCX: 0000000000000000
[ 72.250753] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 72.273409] RBP: ffffd04e00003bb0 R08: 0000000000000000 R09: 0000000000000000
[ 72.292267] R10: 0000000000000000 R11: 0000000000000000 R12: ffffd04e00003c38
[ 72.299141] R13: 0000000000000004 R14: 0000000000000001 R15: ffff8ac050ae1a80
[ 72.305576] FS: 0000000000000000(0000) GS:ffff8ac7eb27f000(0000) knlGS:0000000000000000
[ 72.312095] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 72.317768] CR2: 000071f5d918df04 CR3: 0000000564640000 CR4: 0000000000350ef0
[ 72.323756] Call Trace:
[ 72.325966] <IRQ>
[ 72.328572] erspan_rcv.cold+0x68/0x83 [ip_gre]
[ 72.332755] ? ip_route_input_slow+0x816/0x9d0
[ 72.336862] gre_rcv+0x1b2/0x1c0 [ip_gre]
[ 72.340652] gre_rcv+0x8e/0x100 [gre]
[ 72.344948] ? raw_v4_input+0x210/0x280
[ 72.348177] ip_protocol_deliver_rcu+0x1ea/0x210
[ 72.352267] ip_local_deliver_finish+0x86/0x110
[ 72.356456] ip_local_deliver+0x65/0x110
[ 72.360167] ? ip_rcv_finish_core+0xd6/0x370
[ 72.363966] ip_rcv+0x186/0x1a0
[ 72.367136] ? _raw_spin_lock_irqsave+0xe/0x20
[ 72.370772] __netif_receive_skb_one_core+0x8d/0xa0
[ 72.375210] __netif_receive_skb+0x16/0x70
[ 72.378675] ? _raw_spin_unlock_irq+0xe/0x60
[ 72.382574] process_backlog+0x90/0x160
[ 72.386105] __napi_poll+0x35/0x200
[ 72.389143] net_rx_action+0x20b/0x3f0
[ 72.392147] ? __run_timers+0x237/0x2c0
[ 72.395748] handle_softirqs+0xdf/0x330
[ 72.400364] __do_softirq+0x10/0x18
[ 72.427472] do_softirq.part.0+0x3f/0x80
[ 72.431433] </IRQ>
[ 72.444864] <TASK>
[ 72.447689] __local_bh_enable_ip+0x6a/0x70
[ 72.451918] __dev_queue_xmit+0x44f/0x850
[ 72.456023] ? __alloc_frozen_pages_noprof+0x180/0x360
[ 72.460910] ? ndisc_mc_map+0x41/0xe0
[ 72.464142] ? ndisc_constructor+0x1f6/0x3f0
[ 72.467488] ? _raw_write_unlock_bh+0x1a/0x30
[ 72.470928] ? ___neigh_create+0x755/0x9d0
[ 72.474562] ? shuffle_freelist+0x13f/0x1c0
[ 72.477910] neigh_resolve_output+0x122/0x200
[ 72.481811] ip6_finish_output2+0x212/0x620
[ 72.485717] ip6_finish_output+0x1ea/0x4a0
[ 72.489461] ? nf_hook_slow+0x48/0x120
[ 72.492988] ip6_output+0x75/0x1b0
[ 72.496574] ? __pfx_ip6_finish_output+0x10/0x10
[ 72.501971] NF_HOOK.constprop.0+0x4e/0x130
[ 72.506373] ? xfrm_lookup+0x11/0x30
[ 72.509288] ? icmp6_dst_alloc+0x16f/0x230
[ 72.512535] ndisc_send_skb+0x1bb/0x360
[ 72.515545] ndisc_send_ns+0x62/0xd0
[ 72.518379] ? addrconf_mod_dad_work+0x44/0xe0
[ 72.521361] addrconf_dad_work+0x2bc/0x370
[ 72.523857] ? __schedule+0x2f5/0x7c0
[ 72.526699] process_one_work+0x18e/0x370
[ 72.529438] worker_thread+0x317/0x450
[ 72.532059] ? __pfx_worker_thread+0x10/0x10
[ 72.535014] kthread+0x10b/0x220
[ 72.537171] ? _raw_spin_unlock_irq+0xe/0x60
[ 72.540087] ? __pfx_kthread+0x10/0x10
[ 72.543411] ret_from_fork+0x134/0x150
[ 72.546610] ? __pfx_kthread+0x10/0x10
[ 72.549021] ret_from_fork_asm+0x1a/0x30
[ 72.552133] </TASK>
[ 72.553927] Modules linked in: veth nfnetlink_cttimeout vport_vxlan vxlan vport_gre ip_gre ip_tunnel gre vport_geneve geneve ip6_udp_tunnel udp_tunnel openvswitch nsh nf_conncount nf_nat nf_conntrack nf_defrag_ipv6 nf_defrag_ipv4 psample qrtr cfg80211 binfmt_misc nls_iso8859_1 intel_rapl_msr intel_rapl_common kvm_amd ccp 9pnet_virtio kvm 9pnet i2c_i801 irqbypass i2c_smbus netfs vmw_vsock_virtio_transport virtiofs virtio_input i2c_mux lpc_ich vmgenid joydev input_leds mac_hid sch_fq_codel msr efi_pstore dm_multipath nfnetlink vsock_loopback vmw_vsock_virtio_transport_common vmw_vsock_vmci_transport vsock vmw_vmci dmi_sysfs qemu_fw_cfg ip_tables x_tables autofs4 btrfs blake2b_generic raid10 raid456 async_raid6_recov async_memcpy async_pq async_xor async_tx xor raid6_pq raid1 raid0 linear ahci psmouse polyval_clmulni virtio_gpu libahci ghash_clmulni_intel serio_raw virtio_dma_buf virtio_rng aesni_intel
[ 72.604222] ---[ end trace 0000000000000000 ]---
[ 72.779636] RIP: 0010:__fortify_panic+0xd/0xf
[ 72.790663] Code: e9 12 90 9c 00 e9 38 90 9c 00 cc cc cc 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 55 40 0f b6 ff 48 89 e5 e8 93 a9 9c 00 <0f> 0b 48 8b 95 28 ff ff ff 48 8b b5 30 ff ff ff 4c 89 e9 48 c7 c7
[ 72.803091] RSP: 0018:ffffd04e0048cbb0 EFLAGS: 00010246
[ 72.822994] RAX: 0000000000000000 RBX: ffff8ac046819e00 RCX: 0000000000000000
[ 72.830182] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 72.837070] RBP: ffffd04e0048cbb0 R08: 0000000000000000 R09: 0000000000000000
[ 72.843476] R10: 0000000000000000 R11: 0000000000000000 R12: ffffd04e0048cc38
[ 72.850780] R13: 0000000000000004 R14: 0000000000000001 R15: ffff8ac050ae1a80
[ 72.857598] FS: 0000000000000000(0000) GS:ffff8ac7eb6ff000(0000) knlGS:0000000000000000
[ 72.864331] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 72.869284] CR2: 00007c68bcaf7980 CR3: 0000000564640000 CR4: 0000000000350ef0
[ 72.876122] Kernel panic - not syncing: Fatal exception in interrupt
[ 73.810059] Kernel Offset: 0x2ea00000 from 0xffffffff81000000 (relocation range: 0xffffffff80000000-0xffffffffbfffffff)
[ 74.823407] ---[ end Kernel panic - not syncing: Fatal exception in interrupt ]---
- ---
+ ---
ProblemType: Bug
AlsaDevices:
- total 0
- crw-rw---- 1 root audio 116, 1 Nov 2 17:14 seq
- crw-rw---- 1 root audio 116, 33 Nov 2 17:14 timer
+ total 0
+ crw-rw---- 1 root audio 116, 1 Nov 2 17:14 seq
+ crw-rw---- 1 root audio 116, 33 Nov 2 17:14 timer
AplayDevices: Error: [Errno 2] No such file or directory: 'aplay'
ApportVersion: 2.33.1-0ubuntu3
Architecture: amd64
ArecordDevices: Error: [Errno 2] No such file or directory: 'arecord'
AudioDevicesInUse: Error: command ['fuser', '-v', '/dev/snd/seq', '/dev/snd/timer'] failed with exit code 1:
CRDA: N/A
CasperMD5CheckResult: unknown
CloudArchitecture: x86_64
CloudBuildName: server
CloudID: lxd
CloudName: lxd
CloudPlatform: lxd
CloudSerial: 20251023
CloudSubPlatform: LXD socket API v. 1.0 (/dev/lxd/sock)
DistroRelease: Ubuntu 25.10
Lsusb:
- Bus 001 Device 001: ID 1d6b:0002 Linux Foundation 2.0 root hub
- Bus 002 Device 001: ID 1d6b:0003 Linux Foundation 3.0 root hub
+ Bus 001 Device 001: ID 1d6b:0002 Linux Foundation 2.0 root hub
+ Bus 002 Device 001: ID 1d6b:0003 Linux Foundation 3.0 root hub
Lsusb-t:
- /: Bus 001.Port 001: Dev 001, Class=root_hub, Driver=xhci_hcd/8p, 480M
- /: Bus 002.Port 001: Dev 001, Class=root_hub, Driver=xhci_hcd/8p, 5000M
+ /: Bus 001.Port 001: Dev 001, Class=root_hub, Driver=xhci_hcd/8p, 480M
+ /: Bus 002.Port 001: Dev 001, Class=root_hub, Driver=xhci_hcd/8p, 5000M
MachineType: QEMU Standard PC (Q35 + ICH9, 2009)
Package: openvswitch
PciMultimedia:
-
+
ProcEnviron:
- LANG=C.UTF-8
- PATH=(custom, no user)
- SHELL=/bin/bash
- TERM=xterm-256color
+ LANG=C.UTF-8
+ PATH=(custom, no user)
+ SHELL=/bin/bash
+ TERM=xterm-256color
ProcFB: 0 virtio_gpudrmfb
ProcKernelCmdLine: BOOT_IMAGE=/vmlinuz-6.17.0-7-generic root=UUID=5b34d3dd-a752-4305-8452-98500dfa2307 ro console=tty1 console=ttyS0
ProcVersionSignature: Ubuntu 6.17.0-7.7-generic 6.17.2
RelatedPackageVersions:
- firmware-sof N/A
- linux-firmware 20250901.git993ff19b-0ubuntu1.3
+ firmware-sof N/A
+ linux-firmware 20250901.git993ff19b-0ubuntu1.3
RfKill: Error: [Errno 2] No such file or directory: 'rfkill'
Tags: cloud-image questing
Uname: Linux 6.17.0-7-generic x86_64
UpgradeStatus: No upgrade log present (probably fresh install)
UserGroups: N/A
_MarkForUpload: True
dmi.bios.date: 2/2/2022
dmi.bios.release: 0.0
dmi.bios.vendor: EDK II
dmi.bios.version: unknown
dmi.board.name: LXD
dmi.board.vendor: Canonical Ltd.
dmi.board.version: pc-q35-8.2
dmi.chassis.type: 1
dmi.chassis.vendor: QEMU
dmi.chassis.version: pc-q35-8.2
dmi.modalias: dmi:bvnEDKII:bvrunknown:bd2/2/2022:br0.0:svnQEMU:pnStandardPC(Q35+ICH9,2009):pvrpc-q35-8.2:rvnCanonicalLtd.:rnLXD:rvrpc-q35-8.2:cvnQEMU:ct1:cvrpc-q35-8.2:sku:
dmi.product.name: Standard PC (Q35 + ICH9, 2009)
dmi.product.version: pc-q35-8.2
dmi.sys.vendor: QEMU
--
You received this bug notification because you are a member of Ubuntu
OpenStack, which is subscribed to openvswitch in Ubuntu.
https://bugs.launchpad.net/bugs/2129580
Title:
[questing] kernel BUG at lib/string_helpers.c:1043!
Status in gcc-15 package in Ubuntu:
Invalid
Status in linux package in Ubuntu:
Fix Committed
Status in openvswitch package in Ubuntu:
Invalid
Status in gcc-15 source package in Questing:
New
Status in linux source package in Questing:
New
Status in openvswitch source package in Questing:
New
Bug description:
[ Impact ]
Due to a false negative result of runtime bounds checking, a kernel
panic occurrs on reception of erspan packet.
A bug has been discovered in the kernel networking code for handling
of erspan packets. It manifests itself when FORTIFY_SOURCE is enabled
and GCC 15.2+ compiler is used, both of which are true for Ubuntu
Questing and onwards.
[ Testc Plan ]
The Open vSwitch system test suite triggers the panic, and
consequentliy it can be used to confirm the fix.
[ Where problems could occur ]
The false negative occurs due to incorrect order of referencing
counter and the data protected by it, the fix is trivial and has been
merged both to mainline and stable for some time.
Probability of it causing undesired effects is minimal.
[ Other info ]
Steps to reproduce the issue:
1. sudo apt build-dep openvswitch
2. git clone https://github.com/openvswitch/ovs.git
3. cd ovs
4. ./boot.sh && ./configure && make -j$(nproc)
5. sudo make check-kernel TESTSUITEFLAGS="-j1 18"
[ 70.856928] kernel BUG at lib/string_helpers.c:1043!
[ 70.859256] Oops: invalid opcode: 0000 [#1] SMP NOPTI
[ 70.862277] CPU: 9 UID: 0 PID: 342 Comm: kworker/9:1 Tainted: G W 6.17.0-7-generic #7-Ubuntu PREEMPT(voluntary)
[ 70.868569] Tainted: [W]=WARN
[ 70.870041] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009)/LXD, BIOS unknown 2/2/2022
[ 70.873454] Workqueue: mld mld_ifc_work
[ 70.875007] RIP: 0010:__fortify_panic+0xd/0xf
[ 70.876784] Code: e9 12 90 9c 00 e9 38 90 9c 00 cc cc cc 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 55 40 0f b6 ff 48 89 e5 e8 93 a9 9c 00 <0f> 0b 48 8b 95 28 ff ff ff 48 8b b5 30 ff ff ff 4c 89 e9 48 c7 c7
[ 70.884212] RSP: 0018:ffffd04e0048cbb0 EFLAGS: 00010246
[ 70.886334] RAX: 0000000000000000 RBX: ffff8ac046819e00 RCX: 0000000000000000
[ 70.889209] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 70.892164] RBP: ffffd04e0048cbb0 R08: 0000000000000000 R09: 0000000000000000
[ 70.895028] R10: 0000000000000000 R11: 0000000000000000 R12: ffffd04e0048cc38
[ 70.897917] R13: 0000000000000004 R14: 0000000000000001 R15: ffff8ac050ae1a80
[ 70.900794] FS: 0000000000000000(0000) GS:ffff8ac7eb6ff000(0000) knlGS:0000000000000000
[ 70.904036] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 70.906376] CR2: 00007c68bcaf7980 CR3: 0000000564640000 CR4: 0000000000350ef0
[ 70.909255] Call Trace:
[ 70.910275] <IRQ>
[ 70.911121] erspan_rcv.cold+0x68/0x83 [ip_gre]
[ 70.912963] ? ip_route_input_slow+0x816/0x9d0
[ 70.914785] gre_rcv+0x1b2/0x1c0 [ip_gre]
[ 70.916434] gre_rcv+0x8e/0x100 [gre]
[ 70.917927] ? raw_v4_input+0x210/0x280
[ 70.919555] ip_protocol_deliver_rcu+0x1ea/0x210
[ 70.921445] ip_local_deliver_finish+0x86/0x110
[ 70.923324] ip_local_deliver+0x65/0x110
[ 70.924918] ? ip_rcv_finish_core+0xd6/0x370
[ 70.926668] ip_rcv+0x186/0x1a0
[ 70.927966] ? fetch_next_timer_interrupt+0x3f/0x170
[ 70.929990] ? _raw_spin_unlock+0xe/0x40
[ 70.931608] __netif_receive_skb_one_core+0x8d/0xa0
[ 70.933599] __netif_receive_skb+0x16/0x70
[ 70.935281] ? _raw_spin_unlock_irq+0xe/0x60
[ 70.937010] process_backlog+0x90/0x160
[ 70.938591] __napi_poll+0x35/0x200
[ 70.940018] net_rx_action+0x20b/0x3f0
[ 70.941565] ? tmigr_handle_remote_up+0x118/0x140
[ 70.943485] handle_softirqs+0xdf/0x330
[ 70.945044] __do_softirq+0x10/0x18
[ 70.946491] do_softirq.part.0+0x3f/0x80
[ 70.948092] </IRQ>
[ 70.948972] <TASK>
[ 70.949930] __local_bh_enable_ip+0x6a/0x70
[ 70.951361] __dev_queue_xmit+0x44f/0x850
[ 70.952674] ? call_rcu+0x31/0x50
[ 70.953989] ? neigh_hash_alloc+0x8e/0xd0
[ 70.955515] ? _raw_write_unlock_bh+0x1a/0x30
[ 70.957140] ? ___neigh_create+0x755/0x9d0
[ 70.958681] neigh_resolve_output+0x122/0x200
[ 70.960314] ip6_finish_output2+0x212/0x620
[ 70.961867] ? __kmalloc_node_track_caller_noprof+0x282/0x5a0
[ 70.963911] ? sched_balance_rq+0x100/0x9c0
[ 70.965471] ip6_finish_output+0x1ea/0x4a0
[ 70.966980] ? nf_hook_slow+0x48/0x120
[ 70.968403] ip6_output+0x75/0x1b0
[ 70.969694] ? __pfx_ip6_finish_output+0x10/0x10
[ 70.971368] NF_HOOK.constprop.0+0x4e/0x130
[ 70.972885] ? xfrm_lookup+0x11/0x30
[ 70.974244] ? icmp6_dst_alloc+0x16f/0x230
[ 70.975742] mld_sendpack+0x196/0x270
[ 70.977109] mld_send_cr+0x2c1/0x340
[ 70.978503] mld_ifc_work+0x32/0x170
[ 70.979884] process_one_work+0x18e/0x370
[ 70.981358] worker_thread+0x317/0x450
[ 70.982726] ? _raw_spin_unlock_irqrestore+0x11/0x60
[ 70.984484] ? __pfx_worker_thread+0x10/0x10
[ 70.986011] kthread+0x10b/0x220
[ 70.987238] ? _raw_spin_unlock_irq+0xe/0x60
[ 70.988768] ? __pfx_kthread+0x10/0x10
[ 70.990140] ret_from_fork+0x134/0x150
[ 70.991523] ? __pfx_kthread+0x10/0x10
[ 70.992889] ret_from_fork_asm+0x1a/0x30
[ 70.994337] </TASK>
[ 70.995216] Modules linked in: veth nfnetlink_cttimeout vport_vxlan vxlan vport_gre ip_gre ip_tunnel gre vport_geneve geneve ip6_udp_tunnel udp_tunnel openvswitch nsh nf_conncount nf_nat nf_conntrack nf_defrag_ipv6 nf_defrag_ipv4 psample qrtr cfg80211 binfmt_misc nls_iso8859_1 intel_rapl_msr intel_rapl_common kvm_amd ccp 9pnet_virtio kvm 9pnet i2c_i801 irqbypass i2c_smbus netfs vmw_vsock_virtio_transport virtiofs virtio_input i2c_mux lpc_ich vmgenid joydev input_leds mac_hid sch_fq_codel msr efi_pstore dm_multipath nfnetlink vsock_loopback vmw_vsock_virtio_transport_common vmw_vsock_vmci_transport vsock vmw_vmci dmi_sysfs qemu_fw_cfg ip_tables x_tables autofs4 btrfs blake2b_generic raid10 raid456 async_raid6_recov async_memcpy async_pq async_xor async_tx xor raid6_pq raid1 raid0 linear ahci psmouse polyval_clmulni virtio_gpu libahci ghash_clmulni_intel serio_raw virtio_dma_buf virtio_rng aesni_intel
[ 71.012444] ---[ end trace 0000000000000000 ]---
[ 71.825394] ------------[ cut here ]------------
[ 71.831536] memcpy: detected buffer overflow: 4 byte write of buffer size 0
[ 71.835574] WARNING: CPU: 0 PID: 215 at lib/string_helpers.c:1035 __fortify_report+0x55/0xa0
[ 71.840219] Modules linked in: veth nfnetlink_cttimeout vport_vxlan vxlan vport_gre ip_gre ip_tunnel gre vport_geneve geneve ip6_udp_tunnel udp_tunnel openvswitch nsh nf_conncount nf_nat nf_conntrack nf_defrag_ipv6 nf_defrag_ipv4 psample qrtr cfg80211 binfmt_misc nls_iso8859_1 intel_rapl_msr intel_rapl_common kvm_amd ccp 9pnet_virtio kvm 9pnet i2c_i801 irqbypass i2c_smbus netfs vmw_vsock_virtio_transport virtiofs virtio_input i2c_mux lpc_ich vmgenid joydev input_leds mac_hid sch_fq_codel msr efi_pstore dm_multipath nfnetlink vsock_loopback vmw_vsock_virtio_transport_common vmw_vsock_vmci_transport vsock vmw_vmci dmi_sysfs qemu_fw_cfg ip_tables x_tables autofs4 btrfs blake2b_generic raid10 raid456 async_raid6_recov async_memcpy async_pq async_xor async_tx xor raid6_pq raid1 raid0 linear ahci psmouse polyval_clmulni virtio_gpu libahci ghash_clmulni_intel serio_raw virtio_dma_buf virtio_rng aesni_intel
[ 71.922460] CPU: 0 UID: 0 PID: 215 Comm: kworker/u256:1 Tainted: G D W 6.17.0-7-generic #7-Ubuntu PREEMPT(voluntary)
[ 71.928732] Tainted: [D]=DIE, [W]=WARN
[ 71.930984] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009)/LXD, BIOS unknown 2/2/2022
[ 71.935337] Workqueue: ipv6_addrconf addrconf_dad_work
[ 71.938502] RIP: 0010:__fortify_report+0x55/0xa0
[ 71.941417] Code: 01 48 8b 34 c5 40 b2 2a b1 48 c7 c1 36 17 a1 b1 48 c7 c0 2c 17 a1 b1 48 0f 44 c8 4c 89 ca 48 c7 c7 98 40 91 b1 e8 4b 74 7d ff <0f> 0b c9 31 c0 31 d2 31 c9 31 f6 31 ff 45 31 c0 45 31 c9 e9 c3 5b
[ 71.951039] RSP: 0018:ffffd04e00003b80 EFLAGS: 00010246
[ 71.954130] RAX: 0000000000000000 RBX: ffff8ac0472cb800 RCX: 0000000000000000
[ 71.957964] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 71.961839] RBP: ffffd04e00003ba0 R08: 0000000000000000 R09: 0000000000000000
[ 71.965606] R10: 0000000000000000 R11: 0000000000000000 R12: ffffd04e00003c38
[ 71.969574] R13: 0000000000000004 R14: 0000000000000001 R15: ffff8ac050ae1a80
[ 71.973886] FS: 0000000000000000(0000) GS:ffff8ac7eb27f000(0000) knlGS:0000000000000000
[ 71.978170] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 71.981432] CR2: 000071f5d918df04 CR3: 0000000564640000 CR4: 0000000000350ef0
[ 71.986472] Call Trace:
[ 71.988271] <IRQ>
[ 71.989903] __fortify_panic+0xd/0xf
[ 71.992245] erspan_rcv.cold+0x68/0x83 [ip_gre]
[ 71.995078] ? ip_route_input_slow+0x816/0x9d0
[ 71.997822] gre_rcv+0x1b2/0x1c0 [ip_gre]
[ 72.000589] gre_rcv+0x8e/0x100 [gre]
[ 72.003060] ? raw_v4_input+0x210/0x280
[ 72.005650] ip_protocol_deliver_rcu+0x1ea/0x210
[ 72.008491] ip_local_deliver_finish+0x86/0x110
[ 72.011182] ip_local_deliver+0x65/0x110
[ 72.013584] ? ip_rcv_finish_core+0xd6/0x370
[ 72.016217] ip_rcv+0x186/0x1a0
[ 72.018376] ? _raw_spin_lock_irqsave+0xe/0x20
[ 72.020988] __netif_receive_skb_one_core+0x8d/0xa0
[ 72.023764] __netif_receive_skb+0x16/0x70
[ 72.026320] ? _raw_spin_unlock_irq+0xe/0x60
[ 72.028937] process_backlog+0x90/0x160
[ 72.031526] __napi_poll+0x35/0x200
[ 72.033776] net_rx_action+0x20b/0x3f0
[ 72.036123] ? __run_timers+0x237/0x2c0
[ 72.038575] handle_softirqs+0xdf/0x330
[ 72.040912] __do_softirq+0x10/0x18
[ 72.043145] do_softirq.part.0+0x3f/0x80
[ 72.045468] </IRQ>
[ 72.047065] <TASK>
[ 72.048628] __local_bh_enable_ip+0x6a/0x70
[ 72.050983] __dev_queue_xmit+0x44f/0x850
[ 72.053346] ? __alloc_frozen_pages_noprof+0x180/0x360
[ 72.056258] ? ndisc_mc_map+0x41/0xe0
[ 72.058624] ? ndisc_constructor+0x1f6/0x3f0
[ 72.061254] ? _raw_write_unlock_bh+0x1a/0x30
[ 72.063866] ? ___neigh_create+0x755/0x9d0
[ 72.066365] ? shuffle_freelist+0x13f/0x1c0
[ 72.068725] neigh_resolve_output+0x122/0x200
[ 72.071152] ip6_finish_output2+0x212/0x620
[ 72.073582] ip6_finish_output+0x1ea/0x4a0
[ 72.075904] ? nf_hook_slow+0x48/0x120
[ 72.078090] ip6_output+0x75/0x1b0
[ 72.080060] ? __pfx_ip6_finish_output+0x10/0x10
[ 72.082753] NF_HOOK.constprop.0+0x4e/0x130
[ 72.085120] ? xfrm_lookup+0x11/0x30
[ 72.087212] ? icmp6_dst_alloc+0x16f/0x230
[ 72.090080] ndisc_send_skb+0x1bb/0x360
[ 72.094107] ndisc_send_ns+0x62/0xd0
[ 72.097838] ? addrconf_mod_dad_work+0x44/0xe0
[ 72.119576] addrconf_dad_work+0x2bc/0x370
[ 72.126176] ? __schedule+0x2f5/0x7c0
[ 72.128771] process_one_work+0x18e/0x370
[ 72.147012] worker_thread+0x317/0x450
[ 72.150913] ? __pfx_worker_thread+0x10/0x10
[ 72.154256] kthread+0x10b/0x220
[ 72.157256] ? _raw_spin_unlock_irq+0xe/0x60
[ 72.161111] ? __pfx_kthread+0x10/0x10
[ 72.164961] ret_from_fork+0x134/0x150
[ 72.168106] ? __pfx_kthread+0x10/0x10
[ 72.171196] ret_from_fork_asm+0x1a/0x30
[ 72.174495] </TASK>
[ 72.177362] ---[ end trace 0000000000000000 ]---
[ 72.182032] ------------[ cut here ]------------
[ 72.186465] kernel BUG at lib/string_helpers.c:1043!
[ 72.190757] Oops: invalid opcode: 0000 [#2] SMP NOPTI
[ 72.195834] CPU: 0 UID: 0 PID: 215 Comm: kworker/u256:1 Tainted: G D W 6.17.0-7-generic #7-Ubuntu PREEMPT(voluntary)
[ 72.206978] Tainted: [D]=DIE, [W]=WARN
[ 72.210085] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009)/LXD, BIOS unknown 2/2/2022
[ 72.217100] Workqueue: ipv6_addrconf addrconf_dad_work
[ 72.221515] RIP: 0010:__fortify_panic+0xd/0xf
[ 72.225645] Code: e9 12 90 9c 00 e9 38 90 9c 00 cc cc cc 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 55 40 0f b6 ff 48 89 e5 e8 93 a9 9c 00 <0f> 0b 48 8b 95 28 ff ff ff 48 8b b5 30 ff ff ff 4c 89 e9 48 c7 c7
[ 72.240126] RSP: 0018:ffffd04e00003bb0 EFLAGS: 00010246
[ 72.244739] RAX: 0000000000000000 RBX: ffff8ac0472cb800 RCX: 0000000000000000
[ 72.250753] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 72.273409] RBP: ffffd04e00003bb0 R08: 0000000000000000 R09: 0000000000000000
[ 72.292267] R10: 0000000000000000 R11: 0000000000000000 R12: ffffd04e00003c38
[ 72.299141] R13: 0000000000000004 R14: 0000000000000001 R15: ffff8ac050ae1a80
[ 72.305576] FS: 0000000000000000(0000) GS:ffff8ac7eb27f000(0000) knlGS:0000000000000000
[ 72.312095] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 72.317768] CR2: 000071f5d918df04 CR3: 0000000564640000 CR4: 0000000000350ef0
[ 72.323756] Call Trace:
[ 72.325966] <IRQ>
[ 72.328572] erspan_rcv.cold+0x68/0x83 [ip_gre]
[ 72.332755] ? ip_route_input_slow+0x816/0x9d0
[ 72.336862] gre_rcv+0x1b2/0x1c0 [ip_gre]
[ 72.340652] gre_rcv+0x8e/0x100 [gre]
[ 72.344948] ? raw_v4_input+0x210/0x280
[ 72.348177] ip_protocol_deliver_rcu+0x1ea/0x210
[ 72.352267] ip_local_deliver_finish+0x86/0x110
[ 72.356456] ip_local_deliver+0x65/0x110
[ 72.360167] ? ip_rcv_finish_core+0xd6/0x370
[ 72.363966] ip_rcv+0x186/0x1a0
[ 72.367136] ? _raw_spin_lock_irqsave+0xe/0x20
[ 72.370772] __netif_receive_skb_one_core+0x8d/0xa0
[ 72.375210] __netif_receive_skb+0x16/0x70
[ 72.378675] ? _raw_spin_unlock_irq+0xe/0x60
[ 72.382574] process_backlog+0x90/0x160
[ 72.386105] __napi_poll+0x35/0x200
[ 72.389143] net_rx_action+0x20b/0x3f0
[ 72.392147] ? __run_timers+0x237/0x2c0
[ 72.395748] handle_softirqs+0xdf/0x330
[ 72.400364] __do_softirq+0x10/0x18
[ 72.427472] do_softirq.part.0+0x3f/0x80
[ 72.431433] </IRQ>
[ 72.444864] <TASK>
[ 72.447689] __local_bh_enable_ip+0x6a/0x70
[ 72.451918] __dev_queue_xmit+0x44f/0x850
[ 72.456023] ? __alloc_frozen_pages_noprof+0x180/0x360
[ 72.460910] ? ndisc_mc_map+0x41/0xe0
[ 72.464142] ? ndisc_constructor+0x1f6/0x3f0
[ 72.467488] ? _raw_write_unlock_bh+0x1a/0x30
[ 72.470928] ? ___neigh_create+0x755/0x9d0
[ 72.474562] ? shuffle_freelist+0x13f/0x1c0
[ 72.477910] neigh_resolve_output+0x122/0x200
[ 72.481811] ip6_finish_output2+0x212/0x620
[ 72.485717] ip6_finish_output+0x1ea/0x4a0
[ 72.489461] ? nf_hook_slow+0x48/0x120
[ 72.492988] ip6_output+0x75/0x1b0
[ 72.496574] ? __pfx_ip6_finish_output+0x10/0x10
[ 72.501971] NF_HOOK.constprop.0+0x4e/0x130
[ 72.506373] ? xfrm_lookup+0x11/0x30
[ 72.509288] ? icmp6_dst_alloc+0x16f/0x230
[ 72.512535] ndisc_send_skb+0x1bb/0x360
[ 72.515545] ndisc_send_ns+0x62/0xd0
[ 72.518379] ? addrconf_mod_dad_work+0x44/0xe0
[ 72.521361] addrconf_dad_work+0x2bc/0x370
[ 72.523857] ? __schedule+0x2f5/0x7c0
[ 72.526699] process_one_work+0x18e/0x370
[ 72.529438] worker_thread+0x317/0x450
[ 72.532059] ? __pfx_worker_thread+0x10/0x10
[ 72.535014] kthread+0x10b/0x220
[ 72.537171] ? _raw_spin_unlock_irq+0xe/0x60
[ 72.540087] ? __pfx_kthread+0x10/0x10
[ 72.543411] ret_from_fork+0x134/0x150
[ 72.546610] ? __pfx_kthread+0x10/0x10
[ 72.549021] ret_from_fork_asm+0x1a/0x30
[ 72.552133] </TASK>
[ 72.553927] Modules linked in: veth nfnetlink_cttimeout vport_vxlan vxlan vport_gre ip_gre ip_tunnel gre vport_geneve geneve ip6_udp_tunnel udp_tunnel openvswitch nsh nf_conncount nf_nat nf_conntrack nf_defrag_ipv6 nf_defrag_ipv4 psample qrtr cfg80211 binfmt_misc nls_iso8859_1 intel_rapl_msr intel_rapl_common kvm_amd ccp 9pnet_virtio kvm 9pnet i2c_i801 irqbypass i2c_smbus netfs vmw_vsock_virtio_transport virtiofs virtio_input i2c_mux lpc_ich vmgenid joydev input_leds mac_hid sch_fq_codel msr efi_pstore dm_multipath nfnetlink vsock_loopback vmw_vsock_virtio_transport_common vmw_vsock_vmci_transport vsock vmw_vmci dmi_sysfs qemu_fw_cfg ip_tables x_tables autofs4 btrfs blake2b_generic raid10 raid456 async_raid6_recov async_memcpy async_pq async_xor async_tx xor raid6_pq raid1 raid0 linear ahci psmouse polyval_clmulni virtio_gpu libahci ghash_clmulni_intel serio_raw virtio_dma_buf virtio_rng aesni_intel
[ 72.604222] ---[ end trace 0000000000000000 ]---
[ 72.779636] RIP: 0010:__fortify_panic+0xd/0xf
[ 72.790663] Code: e9 12 90 9c 00 e9 38 90 9c 00 cc cc cc 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 55 40 0f b6 ff 48 89 e5 e8 93 a9 9c 00 <0f> 0b 48 8b 95 28 ff ff ff 48 8b b5 30 ff ff ff 4c 89 e9 48 c7 c7
[ 72.803091] RSP: 0018:ffffd04e0048cbb0 EFLAGS: 00010246
[ 72.822994] RAX: 0000000000000000 RBX: ffff8ac046819e00 RCX: 0000000000000000
[ 72.830182] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 72.837070] RBP: ffffd04e0048cbb0 R08: 0000000000000000 R09: 0000000000000000
[ 72.843476] R10: 0000000000000000 R11: 0000000000000000 R12: ffffd04e0048cc38
[ 72.850780] R13: 0000000000000004 R14: 0000000000000001 R15: ffff8ac050ae1a80
[ 72.857598] FS: 0000000000000000(0000) GS:ffff8ac7eb6ff000(0000) knlGS:0000000000000000
[ 72.864331] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 72.869284] CR2: 00007c68bcaf7980 CR3: 0000000564640000 CR4: 0000000000350ef0
[ 72.876122] Kernel panic - not syncing: Fatal exception in interrupt
[ 73.810059] Kernel Offset: 0x2ea00000 from 0xffffffff81000000 (relocation range: 0xffffffff80000000-0xffffffffbfffffff)
[ 74.823407] ---[ end Kernel panic - not syncing: Fatal exception in interrupt ]---
---
ProblemType: Bug
AlsaDevices:
total 0
crw-rw---- 1 root audio 116, 1 Nov 2 17:14 seq
crw-rw---- 1 root audio 116, 33 Nov 2 17:14 timer
AplayDevices: Error: [Errno 2] No such file or directory: 'aplay'
ApportVersion: 2.33.1-0ubuntu3
Architecture: amd64
ArecordDevices: Error: [Errno 2] No such file or directory: 'arecord'
AudioDevicesInUse: Error: command ['fuser', '-v', '/dev/snd/seq', '/dev/snd/timer'] failed with exit code 1:
CRDA: N/A
CasperMD5CheckResult: unknown
CloudArchitecture: x86_64
CloudBuildName: server
CloudID: lxd
CloudName: lxd
CloudPlatform: lxd
CloudSerial: 20251023
CloudSubPlatform: LXD socket API v. 1.0 (/dev/lxd/sock)
DistroRelease: Ubuntu 25.10
Lsusb:
Bus 001 Device 001: ID 1d6b:0002 Linux Foundation 2.0 root hub
Bus 002 Device 001: ID 1d6b:0003 Linux Foundation 3.0 root hub
Lsusb-t:
/: Bus 001.Port 001: Dev 001, Class=root_hub, Driver=xhci_hcd/8p, 480M
/: Bus 002.Port 001: Dev 001, Class=root_hub, Driver=xhci_hcd/8p, 5000M
MachineType: QEMU Standard PC (Q35 + ICH9, 2009)
Package: openvswitch
PciMultimedia:
ProcEnviron:
LANG=C.UTF-8
PATH=(custom, no user)
SHELL=/bin/bash
TERM=xterm-256color
ProcFB: 0 virtio_gpudrmfb
ProcKernelCmdLine: BOOT_IMAGE=/vmlinuz-6.17.0-7-generic root=UUID=5b34d3dd-a752-4305-8452-98500dfa2307 ro console=tty1 console=ttyS0
ProcVersionSignature: Ubuntu 6.17.0-7.7-generic 6.17.2
RelatedPackageVersions:
firmware-sof N/A
linux-firmware 20250901.git993ff19b-0ubuntu1.3
RfKill: Error: [Errno 2] No such file or directory: 'rfkill'
Tags: cloud-image questing
Uname: Linux 6.17.0-7-generic x86_64
UpgradeStatus: No upgrade log present (probably fresh install)
UserGroups: N/A
_MarkForUpload: True
dmi.bios.date: 2/2/2022
dmi.bios.release: 0.0
dmi.bios.vendor: EDK II
dmi.bios.version: unknown
dmi.board.name: LXD
dmi.board.vendor: Canonical Ltd.
dmi.board.version: pc-q35-8.2
dmi.chassis.type: 1
dmi.chassis.vendor: QEMU
dmi.chassis.version: pc-q35-8.2
dmi.modalias: dmi:bvnEDKII:bvrunknown:bd2/2/2022:br0.0:svnQEMU:pnStandardPC(Q35+ICH9,2009):pvrpc-q35-8.2:rvnCanonicalLtd.:rnLXD:rvrpc-q35-8.2:cvnQEMU:ct1:cvrpc-q35-8.2:sku:
dmi.product.name: Standard PC (Q35 + ICH9, 2009)
dmi.product.version: pc-q35-8.2
dmi.sys.vendor: QEMU
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/gcc-15/+bug/2129580/+subscriptions
More information about the Ubuntu-openstack-bugs
mailing list