RHEL 8: kernel panic at cifs_mount+0x5bd

Issue

• panic with log:

[3088614.437160] CIFS: VFS: Error connecting to socket. Aborting operation.
[3088614.448154] BUG: unable to handle kernel NULL pointer dereference at 00000000000007a8
[3088614.448631] PGD 0 P4D 0 
[3088614.448907] Oops: 0002 [#1] SMP PTI
[3088614.449173] CPU: 33 PID: 2271023 Comm: du Kdump: loaded Not tainted 4.18.0-425.19.2.el8_7.x86_64 #1
[3088614.449396] Hardware name: HP ProLiant DL380 Gen9/ProLiant DL380 Gen9, BIOS P89 08/04/2022
[3088614.449654] RIP: 0010:cifs_mount+0x5bd/0x850 [cifs]
[3088614.449996] Code: c0 0f 84 93 02 00 00 48 c7 c7 28 dc f4 c0 e8 6a 4c b8 f5 48 8b 55 a8 48 8b 45 a0 48 c7 45 a8 00 00 00 00 48 c7 c7 28 dc f4 c0 <48> 89 90 a8 07 00 00 c6 07 00 0f 1f 40 00 48 89 df e8 1d 89 01 00
[3088614.450584] RSP: 0018:ffffb47ecd1cba50 EFLAGS: 00010246
[3088614.450830] RAX: 0000000000000000 RBX: ffff92ca67436800 RCX: ffff92c935a67c60
[3088614.451127] RDX: ffff92c935a67c60 RSI: ffff92c935a67e84 RDI: ffffffffc0f4dc28
[3088614.451396] RBP: ffffb47ecd1cbae0 R08: ffffb47ecd1cb9e8 R09: ffff9298927615f0
[3088614.451790] R10: 0000000000000000 R11: 0000000000000035 R12: ffff929d56940800
[3088614.452019] R13: ffff92c935a67c60 R14: ffff928fef104800 R15: 0000000000000000
[3088614.452389] FS:  00007f6675e21540(0000) GS:ffff92bd7fd40000(0000) knlGS:0000000000000000
[3088614.452741] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[3088614.453013] CR2: 00000000000007a8 CR3: 00000006a80d8005 CR4: 00000000003706e0
[3088614.453325] Call Trace:
[3088614.453631]  ? cifs_smb3_do_mount+0x182/0x6b0 [cifs]
[3088614.453904]  cifs_smb3_do_mount+0x182/0x6b0 [cifs]
[3088614.454225]  smb3_get_tree+0xf0/0x1a0 [cifs]
[3088614.454600]  vfs_get_tree+0x25/0xc0
[3088614.454882]  fc_mount+0xe/0x40
[3088614.455278]  vfs_kern_mount.part.39+0x5c/0x90
[3088614.455658]  cifs_dfs_do_automount+0x31e/0x650 [cifs]
[3088614.455972]  cifs_dfs_d_automount+0x20/0x150 [cifs]
[3088614.456327]  follow_managed+0x17f/0x2e0
[3088614.456674]  lookup_fast+0x135/0x2a0
[3088614.457016]  path_openat+0x138/0x1500
[3088614.457272]  ? filename_lookup.part.61+0xe0/0x170
[3088614.457598]  do_filp_open+0x93/0x100
[3088614.457961]  ? getname_flags+0x4a/0x1e0
[3088614.458274]  ? __check_object_size+0xac/0x173
[3088614.458656]  ? __alloc_fd+0x44/0x150
[3088614.458971]  do_sys_openat2+0x211/0x2b0
[3088614.459269]  do_sys_open+0x4b/0x80
[3088614.459605]  do_syscall_64+0x5b/0x1b0
[3088614.459907]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[3088614.460234] RIP: 0033:0x7f6675959857
[3088614.460643] Code: f6 c2 40 75 4e 89 d0 45 31 d2 25 00 00 41 00 3d 00 00 41 00 74 3d 48 8d 05 e6 4e 2a 00 8b 00 85 c0 75 61 b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 0f 87 a5 00 00 00 48 8b 4c 24 38 64 48 33 0c 25
[3088614.461196] RSP: 002b:00007ffe01d89b90 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[3088614.461587] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f6675959857
[3088614.461844] RDX: 00000000000b0900 RSI: 0000560f803d1c78 RDI: 0000000000000009
[3088614.462154] RBP: 0000560f803d1b70 R08: 0000000000000100 R09: 0000000000000001
[3088614.462617] R10: 0000000000000000 R11: 0000000000000246 R12: 0000560f803d1b70
[3088614.462914] R13: 0000560f803d1b70 R14: 0000560f7f027800 R15: 0000560f7f027770
[3088614.463289] Modules linked in: nfsv3 nfs_acl nfs lockd grace fscache tun overlay md4 cmac nls_utf8 cifs rdma_cm iw_cm ib_cm ib_core libarc4 dns_resolver binfmt_misc intel_rapl_msr intel_rapl_common sb_edac ipmi_ssif x86_pkg_temp_thermal iTCO_wdt iTCO_vendor_support intel_powerclamp coretemp kvm_intel kvm irqbypass rapl intel_cstate hpwdt intel_uncore acpi_ipmi hpilo pcspkr ipmi_si joydev lpc_ich i2c_i801 ipmi_devintf ipmi_msghandler ioatdma acpi_tad acpi_power_meter auth_rpcgss xfs libcrc32c sd_mod t10_pi sg mgag200 i2c_algo_bit drm_shmem_helper drm_kms_helper syscopyarea sysfillrect sysimgblt fb_sys_fops crct10dif_pclmul crc32_pclmul crc32c_intel drm ixgbe ghash_clmulni_intel serio_raw hpsa dca scsi_transport_sas mdio wmi sunrpc dm_mirror dm_region_hash dm_log dm_mod fuse
[3088614.465933] CR2: 00000000000007a8

• Another panic with log:

[3747582.916846] CIFS: VFS: Error connecting to socket. Aborting operation.
[3747582.918977] BUG: unable to handle kernel NULL pointer dereference at 00000000000007a8
[3747582.919579] PGD 208cfb067 P4D 208cfb067 PUD 146257067 PMD 0 
[3747582.920209] Oops: 0002 [#1] SMP NOPTI
[3747582.920818] CPU: 3 PID: 3122699 Comm: sapcimb Kdump: loaded Not tainted 4.18.0-425.19.2.el8_7.x86_64 #1
[3747582.921443] Hardware name: VMware, Inc. VMware7,1/440BX Desktop Reference Platform, BIOS VMW71.00V.18227214.B64.2106252220 06/25/2021
[3747582.922650] RIP: 0010:cifs_mount+0x5bd/0x850 [cifs]
[3747582.923285] Code: c0 0f 84 93 02 00 00 48 c7 c7 28 7c b4 c0 e8 6a ac 58 ca 48 8b 55 a8 48 8b 45 a0 48 c7 45 a8 00 00 00 00 48 c7 c7 28 7c b4 c0 <48> 89 90 a8 07 00 00 c6 07 00 0f 1f 40 00 48 89 df e8 1d 89 01 00
[3747582.924511] RSP: 0018:ffffb33b593bba70 EFLAGS: 00010246
[3747582.925108] RAX: 0000000000000000 RBX: ffff9e43543f7800 RCX: ffff9e410db1ad80
[3747582.925704] RDX: ffff9e410db1ad80 RSI: ffff9e410db1a575 RDI: ffffffffc0b47c28
[3747582.926289] RBP: ffffb33b593bbb00 R08: ffffb33b593bba08 R09: ffffffffc0a66700
[3747582.926868] R10: ffff9e4205137ee0 R11: 0000000000000001 R12: ffff9e45984ec800
[3747582.927449] R13: ffff9e410db1ad80 R14: ffff9e414cb94400 R15: 0000000000000000
[3747582.928012] FS:  00007f8ae84d1bc0(0000) GS:ffff9e481fcc0000(0000) knlGS:0000000000000000
[3747582.928583] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[3747582.929145] CR2: 00000000000007a8 CR3: 00000007f8cec006 CR4: 0000000000770ee0
[3747582.929721] PKRU: 55555554
[3747582.930256] Call Trace:
[3747582.930779]  ? cifs_smb3_do_mount+0x182/0x6b0 [cifs]
[3747582.931322]  cifs_smb3_do_mount+0x182/0x6b0 [cifs]
[3747582.931851]  smb3_get_tree+0xf0/0x1a0 [cifs]
[3747582.932389]  vfs_get_tree+0x25/0xc0
[3747582.932903]  fc_mount+0xe/0x40
[3747582.933375]  vfs_kern_mount.part.39+0x5c/0x90
[3747582.933841]  cifs_dfs_do_automount+0x31e/0x650 [cifs]
[3747582.934321]  cifs_dfs_d_automount+0x20/0x150 [cifs]
[3747582.934788]  follow_managed+0x17f/0x2e0
[3747582.935222]  walk_component+0x289/0x300
[3747582.935651]  ? nd_jump_root+0xb9/0xf0
[3747582.936063]  path_lookupat.isra.47+0x79/0x220
[3747582.936467]  filename_lookup.part.61+0xa0/0x170
[3747582.936859]  ? getname_flags+0x4a/0x1e0
[3747582.937251]  ? __check_object_size+0xac/0x173
[3747582.937645]  ? strncpy_from_user+0x47/0x1b0
[3747582.938039]  user_statfs+0x43/0xa0
[3747582.938447]  __do_sys_statfs+0x20/0x60
[3747582.938827]  ? syscall_trace_enter+0x1ff/0x2d0
[3747582.939218]  do_syscall_64+0x5b/0x1b0
[3747582.939607]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[3747582.939995] RIP: 0033:0x7f8ae698e21b
[3747582.940390] Code: 73 01 c3 48 8b 0d 6d 6c 38 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 89 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 3d 6c 38 00 f7 d8 64 89 01 48
[3747582.941228] RSP: 002b:00007fffce434b48 EFLAGS: 00000246 ORIG_RAX: 0000000000000089
[3747582.941657] RAX: ffffffffffffffda RBX: 00000000016075a0 RCX: 00007f8ae698e21b
[3747582.942088] RDX: 0000000000000002 RSI: 00007fffce434b50 RDI: 00000000016075a0
[3747582.942531] RBP: 00007fffce434b50 R08: 0000000000000000 R09: 0000000000000005
[3747582.942965] R10: 000000000000000e R11: 0000000000000246 R12: 00007fffce434c00
[3747582.943397] R13: 00000000016075a0 R14: 000000000000000a R15: 00007fffce438f30
[3747582.943821] Modules linked in: overlay tcp_diag udp_diag inet_diag md4 cmac nls_utf8 cifs rdma_cm iw_cm ib_cm ib_core libarc4 dns_resolver binfmt_misc nfsv3 nfs_acl nfs lockd grace fscache nft_fib_inet nft_fib_ipv4 nft_fib_ipv6 nft_fib nft_reject_inet nf_reject_ipv4 nf_reject_ipv6 nft_reject nft_ct nf_tables_set nft_chain_nat nf_nat nf_conntrack nf_defrag_ipv6 nf_defrag_ipv4 ip_set nf_tables nfnetlink vsock_loopback vmw_vsock_virtio_transport_common vmw_vsock_vmci_transport vsock sunrpc vfat fat intel_rapl_msr intel_rapl_common isst_if_mbox_msr isst_if_common nfit libnvdimm crct10dif_pclmul crc32_pclmul ghash_clmulni_intel rapl vmw_balloon joydev pcspkr vmw_vmci i2c_piix4 xfs libcrc32c ata_generic vmwgfx sd_mod t10_pi drm_ttm_helper sg ttm drm_kms_helper syscopyarea sysfillrect sysimgblt fb_sys_fops crc32c_intel drm serio_raw ata_piix libata vmxnet3 vmw_pvscsi dm_mirror dm_region_hash dm_log dm_mod fuse
[3747582.947495] CR2: 00000000000007a8