This crash report has been recovered from acpi efi pstore on a machine running gentoo hardened ~amd64 machine, running hardened-sources 3.19.3.

I've been getting these crashes since 3.19, but wasn't able to capture the previous crashes.

About the setup:
This is a laptop with e1000e and iwlwifi, on a networking using ipv6 and ipsec transport mode for its entire ipv6 communication (minus the unencryptable bits).

The report only mentions iwlwifi, but I suspect the bug being independent from wireless, since it happened with wifi deactivated in the past as well.

I've seen similar crashes in earlier kernels after various uptimes, but rarely.

But since kernel 3.19.x, I'm able to get reproducible results. The kernel always crashes within minutes - when connected to my network.

Additional information can be supplied later, I'm just not sure what to mention right now.

<3>[  120.709605] PAX: size overflow detected in function _decode_session6 net/ipv6/xfrm6_policy.c:190 cicus.113_120 min, count: 10
Oops#1 Part8
<4>[  120.709631] CPU: 2 PID: 1109 Comm: irq/31-iwlwifi Not tainted 3.19.3-hardened #4
<4>[  120.709635] Hardware name: LENOVO 2394CTO/2394CTO, BIOS G4ETA3WW (2.63 ) 01/21/2015
<4>[  120.709639]  0000000000000000 ffffc900043338a0 ffffffff8160b923 ffff8803e0ad0200
<4>[  120.709647]  ffffffff81172022 ffffffffffffffff ffffffffc03d5bc7 ffff8800d15482c0
<4>[  120.709653]  00000000c03be8b4 ffff8803d9d95500 ffff8803fe119110 ffff8803e0ad0200
<4>[  120.709661] Call Trace:
<4>[  120.709675]  [<ffffffff8160b923>] ? dump_stack+0x4a/0x78
<4>[  120.709684]  [<ffffffff81172022>] ? report_size_overflow+0x21/0x2b
<4>[  120.709742]  [<ffffffffc03d5bc7>] ? _decode_session6+0x1fd/0x367 [ipv6]
<4>[  120.709751]  [<ffffffff815ef4e0>] ? __xfrm_decode_session+0x35/0x49
<4>[  120.709756]  [<ffffffff815f3705>] ? __xfrm_policy_check+0x56/0x51c
<4>[  120.709776]  [<ffffffffc03bad59>] ? ip6_pol_route+0x339/0x366 [ipv6]
<4>[  120.709794]  [<ffffffffc03da790>] ? inet6_set_link_af.part.36+0x2163/0x11823 [ipv6]
<4>[  120.709813]  [<ffffffffc03c8b9e>] ? icmpv6_rcv+0x68/0x796 [ipv6]
<4>[  120.709819]  [<ffffffff81599dd5>] ? fib_rules_lookup+0x134/0x148
<4>[  120.709827]  [<ffffffff8160f8ae>] ? _raw_read_unlock+0x10/0x26
<4>[  120.709847]  [<ffffffffc03c7cc0>] ? raw6_local_deliver+0x1b6/0x204 [ipv6]
<4>[  120.709853]  [<ffffffff81081f2e>] ? __local_bh_enable_ip+0x69/0x7f
<4>[  120.709868]  [<ffffffffc03da790>] ? inet6_set_link_af.part.36+0x2163/0x11823 [ipv6]
<4>[  120.709882]  [<ffffffffc03b0fdb>] ? ip6_input_finish+0x39c/0x4f0 [ipv6]
<4>[  120.709897]  [<ffffffffc03b173a>] ? ip6_mc_input+0xba/0xcb [ipv6]
<4>[  120.709905]  [<ffffffff815811fd>] ? __netif_receive_skb_core+0x47e/0x506
<4>[  120.709910]  [<ffffffff81581dd8>] ? netif_receive_skb_internal+0x46/0x8e
Oops#1 Part7
<4>[  120.709915]  [<ffffffff8158276f>] ? napi_gro_receive+0x47/0xc1
<4>[  120.709941]  [<ffffffffc02a5985>] ? ieee80211_deliver_skb+0xe7/0x151 [mac80211]
<4>[  120.709966]  [<ffffffffc02a74c9>] ? ieee80211_rx_handlers+0x149f/0x1db2 [mac80211]
<4>[  120.709973]  [<ffffffff813df179>] ? dma_pte_clear_level+0x102/0x160
<4>[  120.709980]  [<ffffffff81038e7b>] ? clflush_cache_range+0x30/0x3a
<4>[  120.710004]  [<ffffffffc02a86ba>] ? ieee80211_prepare_and_rx_handle+0x8de/0x9b2 [mac80211]
<4>[  120.710029]  [<ffffffffc02a8e02>] ? ieee80211_rx+0x674/0x6ae [mac80211]
<4>[  120.710036]  [<ffffffff81573ebb>] ? __kmalloc_reserve.isra.20+0x23/0x64
<4>[  120.710042]  [<ffffffff81160b9d>] ? virt_to_head_page+0x9/0x5d
<4>[  120.710058]  [<ffffffffc035ec2a>] ? iwlagn_rx_reply_rx+0x3bb/0x43a [iwldvm]
<4>[  120.710076]  [<ffffffffc0139e4f>] ? iwl_pcie_irq_handler+0x6d4/0x7f7 [iwlwifi]
<4>[  120.710083]  [<ffffffff810ac217>] ? pick_next_task_rt+0xea/0xfc
<4>[  120.710089]  [<ffffffff810bffba>] ? irq_finalize_oneshot+0x93/0x93
<4>[  120.710094]  [<ffffffff810bffd6>] ? irq_thread_fn+0x1c/0x3a
<4>[  120.710099]  [<ffffffff810bffba>] ? irq_finalize_oneshot+0x93/0x93
<4>[  120.710104]  [<ffffffff810c0981>] ? irq_thread+0x10d/0x18f
<4>[  120.710109]  [<ffffffff810c007c>] ? wake_threads_waitq+0x33/0x33
<4>[  120.710114]  [<ffffffff810c0874>] ? free_irq+0x86/0x86
<4>[  120.710121]  [<ffffffff81097b17>] ? kthread+0xb4/0xbc
<4>[  120.710150]  [<ffffffff81090000>] ? SyS_prctl+0x41/0x409
<4>[  120.710157]  [<ffffffff81097a63>] ? __kthread_parkme+0x71/0x71
<4>[  120.710166]  [<ffffffff8160fde4>] ? ret_from_fork+0x44/0x70
<4>[  120.710187]  [<ffffffff81097a63>] ? __kthread_parkme+0x71/0x71
<0>[  120.710193] Kernel panic - not syncing: Aiee, killing interrupt handler!
Oops#1 Part6
<4>[  120.710381] CPU: 2 PID: 1109 Comm: irq/31-iwlwifi Not tainted 3.19.3-hardened #4
<4>[  120.710530] Hardware name: LENOVO 2394CTO/2394CTO, BIOS G4ETA3WW (2.63 ) 01/21/2015
<4>[  120.710716]  0000000000000000 0000000000000009 ffffffff8160b923 ffffffff817f07ea
<4>[  120.710967]  ffffffff816088ca ffff88041e283fc0 ffffffff00000008 ffffc900043336c8
<4>[  120.711171]  ffffc90004333668 ffffc90004333740 69b2d35a45e07b19 ffff88040afc6d48
<4>[  120.711332] Call Trace:
<4>[  120.711390]  [<ffffffff8160b923>] ? dump_stack+0x4a/0x78
<3>[  120.711480] PAX: size overflow detected in function _decode_session6 net/ipv6/xfrm6_policy.c:190 cicus.113_120 min, count: 10
<4>[  120.711748]  [<ffffffff816088ca>] ? panic+0xc2/0x1f2
<4>[  120.711844]  [<ffffffff8107fbb1>] ? do_exit+0x92/0x9c2
<4>[  120.711942]  [<ffffffff810812b1>] ? do_group_exit+0x3f/0xba
<4>[  120.712045]  [<ffffffff8117202c>] ? report_size_overflow+0x2b/0x2b
<4>[  120.712178]  [<ffffffffc03d5bc7>] ? _decode_session6+0x1fd/0x367 [ipv6]
<4>[  120.712303]  [<ffffffff815ef4e0>] ? __xfrm_decode_session+0x35/0x49
<4>[  120.712419]  [<ffffffff815f3705>] ? __xfrm_policy_check+0x56/0x51c
<4>[  120.712545]  [<ffffffffc03bad59>] ? ip6_pol_route+0x339/0x366 [ipv6]
<4>[  120.712673]  [<ffffffffc03da790>] ? inet6_set_link_af.part.36+0x2163/0x11823 [ipv6]
<4>[  120.712826]  [<ffffffffc03c8b9e>] ? icmpv6_rcv+0x68/0x796 [ipv6]
<4>[  120.712939]  [<ffffffff81599dd5>] ? fib_rules_lookup+0x134/0x148
<4>[  120.713049]  [<ffffffff8160f8ae>] ? _raw_read_unlock+0x10/0x26
<4>[  120.713168]  [<ffffffffc03c7cc0>] ? raw6_local_deliver+0x1b6/0x204 [ipv6]
<4>[  120.713295]  [<ffffffff81081f2e>] ? __local_bh_enable_ip+0x69/0x7f
<4>[  120.713417]  [<ffffffffc03da790>] ? inet6_set_link_af.part.36+0x2163/0x11823 [ipv6]
Oops#1 Part5
<4>[  120.713563]  [<ffffffffc03b0fdb>] ? ip6_input_finish+0x39c/0x4f0 [ipv6]
<4>[  120.713693]  [<ffffffffc03b173a>] ? ip6_mc_input+0xba/0xcb [ipv6]
<4>[  120.713808]  [<ffffffff815811fd>] ? __netif_receive_skb_core+0x47e/0x506
<4>[  120.713934]  [<ffffffff81581dd8>] ? netif_receive_skb_internal+0x46/0x8e
<4>[  120.714055]  [<ffffffff8158276f>] ? napi_gro_receive+0x47/0xc1
<4>[  120.714180]  [<ffffffffc02a5985>] ? ieee80211_deliver_skb+0xe7/0x151 [mac80211]
<4>[  120.714332]  [<ffffffffc02a74c9>] ? ieee80211_rx_handlers+0x149f/0x1db2 [mac80211]
<4>[  120.714475]  [<ffffffff813df179>] ? dma_pte_clear_level+0x102/0x160
<4>[  120.714592]  [<ffffffff81038e7b>] ? clflush_cache_range+0x30/0x3a
<4>[  120.714722]  [<ffffffffc02a86ba>] ? ieee80211_prepare_and_rx_handle+0x8de/0x9b2 [mac80211]
<4>[  120.714888]  [<ffffffffc02a8e02>] ? ieee80211_rx+0x674/0x6ae [mac80211]
<4>[  120.715012]  [<ffffffff81573ebb>] ? __kmalloc_reserve.isra.20+0x23/0x64
<4>[  120.715135]  [<ffffffff81160b9d>] ? virt_to_head_page+0x9/0x5d
<4>[  120.715252]  [<ffffffffc035ec2a>] ? iwlagn_rx_reply_rx+0x3bb/0x43a [iwldvm]
<4>[  120.715391]  [<ffffffffc0139e4f>] ? iwl_pcie_irq_handler+0x6d4/0x7f7 [iwlwifi]
<4>[  120.715525]  [<ffffffff810ac217>] ? pick_next_task_rt+0xea/0xfc
<4>[  120.715636]  [<ffffffff810bffba>] ? irq_finalize_oneshot+0x93/0x93
<4>[  120.715750]  [<ffffffff810bffd6>] ? irq_thread_fn+0x1c/0x3a
<4>[  120.715853]  [<ffffffff810bffba>] ? irq_finalize_oneshot+0x93/0x93
<4>[  120.715967]  [<ffffffff810c0981>] ? irq_thread+0x10d/0x18f
<4>[  120.716070]  [<ffffffff810c007c>] ? wake_threads_waitq+0x33/0x33
<4>[  120.716179]  [<ffffffff810c0874>] ? free_irq+0x86/0x86
<4>[  120.716277]  [<ffffffff81097b17>] ? kthread+0xb4/0xbc
<4>[  120.716374]  [<ffffffff81090000>] ? SyS_prctl+0x41/0x409
Oops#1 Part4
<4>[  120.716473]  [<ffffffff81097a63>] ? __kthread_parkme+0x71/0x71
<4>[  120.720579]  [<ffffffff8160fde4>] ? ret_from_fork+0x44/0x70
<4>[  120.724606]  [<ffffffff81097a63>] ? __kthread_parkme+0x71/0x71
<4>[  120.728575] CPU: 0 PID: 0 Comm: swapper/0 Not tainted 3.19.3-hardened #4
<0>[  120.728585] Kernel Offset: 0x0 from 0xffffffff81000000 (relocation range: 0xffffffff80000000-0xffffffffbfffffff)
<3>[  120.737209] drm_kms_helper: panic occurred, switching back to text console
<4>[  120.741637] ------------[ cut here ]------------
<2>[  120.745966] kernel BUG at drivers/gpu/drm/drm_crtc.c:536!
<4>[  120.750317] invalid opcode: 0000 [#1] PREEMPT SMP 
<4>[  120.754574] Modules linked in: tun esp6 xfrm6_mode_transport ccm autofs4 nfsd auth_rpcgss nfs_acl deflate ctr twofish_avx_x86_64 twofish_x86_64_3way twofish_x86_64 twofish_common serpent_avx_x86_64 serpent_sse2_x86_64 serpent_generic blowfish_x86_64 blowfish_common cast5_avx_x86_64 cast5_generic cast_common cmac xcbc rmd160 crypto_null af_key xfrm_algo cachefiles nfnetlink_log nf_tables nfnetlink vfat fat uas usb_storage nfsv4 dns_resolver nfs lockd grace sunrpc fscache ipv6 ecb snd_hda_codec_hdmi snd_hda_codec_realtek snd_hda_codec_generic btusb bluetooth iwldvm mac80211 uvcvideo videobuf2_vmalloc videobuf2_memops videobuf2_core v4l2_common videodev cdc_ncm usbnet mii cdc_wdm cdc_acm x86_pkg_temp_thermal coretemp kvm_intel kvm snd_hda_intel iwlwifi snd_hda_controller snd_hda_codec i2c_i801 snd_hwdep snd_pcm thinkpad_acpi cfg80211 e1000e snd_timer nvram snd ptp soundcore wmi rfkill pps_core algif_skcipher algif_hash af_alg crc32_pclmul crc32c_intel sr_mod sdhci_pci cdrom sdhci led_class mmc_core
<4>[  120.788021] CPU: 2 PID: 1109 Comm: irq/31-iwlwifi Not tainted 3.19.3-hardened #4
Oops#1 Part3
<4>[  120.793537] Hardware name: LENOVO 2394CTO/2394CTO, BIOS G4ETA3WW (2.63 ) 01/21/2015
<4>[  120.799086] task: ffff88040afc6680 ti: ffff88040afc6c48 task.ti: ffff88040afc6c48
<4>[  120.804654] RIP: 0010:[<ffffffff813fb706>]  [<ffffffff813fb706>] drm_framebuffer_free_bug+0x0/0x2
<4>[  120.810318] RSP: 0000:ffffc90004333540  EFLAGS: 00010086
<4>[  120.815981] RAX: 0000000000000000 RBX: ffff88040acab000 RCX: 0000000000000008
<4>[  120.821710] RDX: 0000000000000000 RSI: ffffffff813fb706 RDI: ffff8800c9bde908
<4>[  120.827420] RBP: ffff8800c9bde900 R08: 0000000000000000 R09: 0000000000000000
<4>[  120.833152] R10: 0000000000000003 R11: 0000000000000001 R12: 8000000000000000
<4>[  120.838863] R13: ffff88040bd56000 R14: ffff88040bd56378 R15: ffffffff81a8743a
<4>[  120.844576] FS:  0000000000000000(0000) GS:ffff88041e280000(0000) knlGS:0000000000000000
<4>[  120.850380] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
<4>[  120.856164] CR2: 00000362ba782000 CR3: 000000000261b000 CR4: 00000000001607f0
<4>[  120.862006] Stack:
<4>[  120.867771]  ffffffff813fc7c2 0000000000000000 ffffffff813fce84 0000000000000000
<4>[  120.873681]  ffff88040acab000 ffff88040a8f2a00 ffffffff813ed2cc 0000000000000000
<4>[  120.879585]  ffff88040a8f2a00 0000000000000000 ffff88040bd56000 00000000fffffffc
<4>[  120.885480] Call Trace:
<4>[  120.891314]  [<ffffffff813fc7c2>] ? kref_put+0x17/0x22
<4>[  120.897161]  [<ffffffff813fce84>] ? drm_plane_force_disable+0x8b/0xb4
<4>[  120.903036]  [<ffffffff813ed2cc>] ? restore_fbdev_mode+0x42/0xcb
<4>[  120.908878]  [<ffffffff813ed472>] ? drm_fb_helper_force_kernel_mode+0x55/0x85
<4>[  120.914768]  [<ffffffff813edd52>] ? drm_fb_helper_panic+0x1d/0x26
<4>[  120.920597]  [<ffffffff81098622>] ? notifier_call_chain+0x39/0x64
Oops#1 Part2
<4>[  120.926426]  [<ffffffff81098691>] ? __atomic_notifier_call_chain+0x3a/0x4f
<4>[  120.932262]  [<ffffffff816088fd>] ? panic+0xf5/0x1f2
<4>[  120.938065]  [<ffffffff8107fbb1>] ? do_exit+0x92/0x9c2
<4>[  120.943875]  [<ffffffff810812b1>] ? do_group_exit+0x3f/0xba
<4>[  120.949690]  [<ffffffff8117202c>] ? report_size_overflow+0x2b/0x2b
<4>[  120.955549]  [<ffffffffc03d5bc7>] ? _decode_session6+0x1fd/0x367 [ipv6]
<4>[  120.961405]  [<ffffffff815ef4e0>] ? __xfrm_decode_session+0x35/0x49
<4>[  120.967254]  [<ffffffff815f3705>] ? __xfrm_policy_check+0x56/0x51c
<4>[  120.973134]  [<ffffffffc03bad59>] ? ip6_pol_route+0x339/0x366 [ipv6]
<4>[  120.979029]  [<ffffffffc03da790>] ? inet6_set_link_af.part.36+0x2163/0x11823 [ipv6]
<4>[  120.984990]  [<ffffffffc03c8b9e>] ? icmpv6_rcv+0x68/0x796 [ipv6]
<4>[  120.990927]  [<ffffffff81599dd5>] ? fib_rules_lookup+0x134/0x148
<4>[  120.996887]  [<ffffffff8160f8ae>] ? _raw_read_unlock+0x10/0x26
<4>[  121.002802]  [<ffffffffc03c7cc0>] ? raw6_local_deliver+0x1b6/0x204 [ipv6]
<4>[  121.008648]  [<ffffffff81081f2e>] ? __local_bh_enable_ip+0x69/0x7f
<4>[  121.014409]  [<ffffffffc03da790>] ? inet6_set_link_af.part.36+0x2163/0x11823 [ipv6]
<4>[  121.020171]  [<ffffffffc03b0fdb>] ? ip6_input_finish+0x39c/0x4f0 [ipv6]
<4>[  121.025937]  [<ffffffffc03b173a>] ? ip6_mc_input+0xba/0xcb [ipv6]
<4>[  121.031657]  [<ffffffff815811fd>] ? __netif_receive_skb_core+0x47e/0x506
<4>[  121.037235]  [<ffffffff81581dd8>] ? netif_receive_skb_internal+0x46/0x8e
<4>[  121.042613]  [<ffffffff8158276f>] ? napi_gro_receive+0x47/0xc1
<4>[  121.047808]  [<ffffffffc02a5985>] ? ieee80211_deliver_skb+0xe7/0x151 [mac80211]
<4>[  121.052860]  [<ffffffffc02a74c9>] ? ieee80211_rx_handlers+0x149f/0x1db2 [mac80211]
<4>[  121.057710]  [<ffffffff813df179>] ? dma_pte_clear_level+0x102/0x160
Oops#1 Part1
<4>[  121.062365]  [<ffffffff81038e7b>] ? clflush_cache_range+0x30/0x3a
<4>[  121.066889]  [<ffffffffc02a86ba>] ? ieee80211_prepare_and_rx_handle+0x8de/0x9b2 [mac80211]
<4>[  121.071440]  [<ffffffffc02a8e02>] ? ieee80211_rx+0x674/0x6ae [mac80211]
<4>[  121.075914]  [<ffffffff81573ebb>] ? __kmalloc_reserve.isra.20+0x23/0x64
<4>[  121.080332]  [<ffffffff81160b9d>] ? virt_to_head_page+0x9/0x5d
<4>[  121.084680]  [<ffffffffc035ec2a>] ? iwlagn_rx_reply_rx+0x3bb/0x43a [iwldvm]
<4>[  121.089035]  [<ffffffffc0139e4f>] ? iwl_pcie_irq_handler+0x6d4/0x7f7 [iwlwifi]
<4>[  121.093388]  [<ffffffff810ac217>] ? pick_next_task_rt+0xea/0xfc
<4>[  121.097719]  [<ffffffff810bffba>] ? irq_finalize_oneshot+0x93/0x93
<4>[  121.102060]  [<ffffffff810bffd6>] ? irq_thread_fn+0x1c/0x3a
<4>[  121.106343]  [<ffffffff810bffba>] ? irq_finalize_oneshot+0x93/0x93
<4>[  121.110559]  [<ffffffff810c0981>] ? irq_thread+0x10d/0x18f
<4>[  121.114710]  [<ffffffff810c007c>] ? wake_threads_waitq+0x33/0x33
<4>[  121.118827]  [<ffffffff810c0874>] ? free_irq+0x86/0x86
<4>[  121.122892]  [<ffffffff81097b17>] ? kthread+0xb4/0xbc
<4>[  121.126893]  [<ffffffff81090000>] ? SyS_prctl+0x41/0x409
<4>[  121.130889]  [<ffffffff81097a63>] ? __kthread_parkme+0x71/0x71
<4>[  121.134881]  [<ffffffff8160fde4>] ? ret_from_fork+0x44/0x70
<4>[  121.138815]  [<ffffffff81097a63>] ? __kthread_parkme+0x71/0x71
<4>[  121.142739] Code: 0a 39 28 48 8d 50 e0 48 0f 44 da 4c 89 ef e8 14 25 21 00 48 89 d8 5b 5d 41 5d 4c 09 24 24 c3 48 89 f2 48 8b 76 08 e9 7e 94 f2 ff <0f> 0b 41 55 55 53 48 8b 2f 48 89 fb 4c 8d ad e8 02 00 00 4c 89 
<1>[  121.151986] RIP  [<ffffffff813fb706>] drm_framebuffer_free_bug+0x0/0x2
<4>[  121.156467]  RSP <ffffc90004333540>
<4>[  121.189129] ---[ end trace a80b1cbf9e2034e8 ]---