======================================
| [ 1909.303953][ C1] #3: ffffffffabf88b60 (rcu_read_lock){....}-{1:3}, at: unwind_next_frame (./include/linux/rcupdate.h:331 ./include/linux/rcupdate.h:841 ./include/linux/rcupdate.h:1155 arch/x86/kernel/unwind_orc.c:479) 
| [ 1909.304325][ C1] #4: ffffffffabf88a40 (rcu_callback){....}-{0:0}, at: rcu_do_batch (./include/linux/rcupdate.h:331 kernel/rcu/tree.c:2562) 
| [ 1909.304695][    C1]
| [ 1909.304695][    C1] stack backtrace:
[ 1909.304958][    C1] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011
[ 1909.304961][    C1] Workqueue: events virtio_fs_requests_done_work
[ 1909.304966][    C1] Call Trace:
[ 1909.304968][    C1]  <IRQ>
[ 1909.304972][ C1] dump_stack_lvl (lib/dump_stack.c:123) 
[ 1909.304979][ C1] print_usage_bug.part.0 (kernel/locking/lockdep.c:4046) 
[ 1909.304984][ C1] mark_lock_irq (kernel/locking/lockdep.c:4011 kernel/locking/lockdep.c:4057 kernel/locking/lockdep.c:4268) 
[ 1909.304989][ C1] ? __pfx_unwind_next_frame (arch/x86/kernel/unwind_orc.c:469) 
[ 1909.304993][ C1] ? save_trace (kernel/locking/lockdep.c:594) 
[ 1909.304997][ C1] mark_lock (kernel/locking/lockdep.c:4754) 
[ 1909.305001][ C1] mark_usage (kernel/locking/lockdep.c:4643) 
[ 1909.305005][ C1] __lock_acquire (kernel/locking/lockdep.c:5189) 
[ 1909.305010][ C1] lock_acquire.part.0 (kernel/locking/lockdep.c:472 kernel/locking/lockdep.c:5868) 
[ 1909.305014][ C1] ? simple_pin_fs (fs/libfs.c:1066) 
[ 1909.305017][ C1] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:736) 
[ 1909.305022][ C1] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5829) 
[ 1909.305025][ C1] ? simple_pin_fs (fs/libfs.c:1066) 
[ 1909.305029][ C1] _raw_spin_lock (./include/linux/spinlock_api_smp.h:134 kernel/locking/spinlock.c:154) 
[ 1909.305032][ C1] ? simple_pin_fs (fs/libfs.c:1066) 
[ 1909.305035][ C1] simple_pin_fs (fs/libfs.c:1066) 
[ 1909.305038][ C1] debugfs_remove (fs/debugfs/inode.c:805 fs/debugfs/inode.c:799) 
[ 1909.305042][ C1] ref_tracker_dir_exit (lib/ref_tracker.c:423 lib/ref_tracker.c:195) 
[ 1909.305047][ C1] ? __pfx_ref_tracker_free (lib/ref_tracker.c:253) 
[ 1909.305050][ C1] ? __sk_destruct (./include/linux/instrumented.h:96 ./include/linux/atomic/atomic-instrumented.h:400 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/refcount.h:450 ./include/net/net_namespace.h:287 ./include/net/net_namespace.h:390 net/core/sock.c:2366) 
[ 1909.305054][ C1] ? rcu_do_batch (./include/linux/rcupdate.h:341 kernel/rcu/tree.c:2570) 
[ 1909.305057][ C1] ? __pfx_ref_tracker_dir_exit (lib/ref_tracker.c:189) 
[ 1909.305060][ C1] ? irq_exit_rcu (kernel/softirq.c:698) 
[ 1909.305063][ C1] ? sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1049 arch/x86/kernel/apic/apic.c:1049) 
[ 1909.305068][ C1] ? asm_sysvec_apic_timer_interrupt (./arch/x86/include/asm/idtentry.h:702) 
[ 1909.305072][ C1] ? lock_acquire.part.0 (kernel/locking/lockdep.c:5870) 
[ 1909.305075][ C1] ? unwind_next_frame (./include/linux/rcupdate.h:842 ./include/linux/rcupdate.h:1155 arch/x86/kernel/unwind_orc.c:479) 
[ 1909.305078][ C1] ? arch_stack_walk (arch/x86/kernel/stacktrace.c:24) 
[ 1909.305082][ C1] ? stack_trace_save (kernel/stacktrace.c:123) 
[ 1909.305087][ C1] ? kasan_save_stack (mm/kasan/common.c:48) 
[ 1909.305091][ C1] ? kasan_save_track (./arch/x86/include/asm/current.h:25 mm/kasan/common.c:60 mm/kasan/common.c:69) 
[ 1909.305093][ C1] ? kasan_save_free_info (mm/kasan/generic.c:579) 
[ 1909.305098][ C1] ? __kasan_slab_free (mm/kasan/common.c:271) 
[ 1909.305102][ C1] __put_net (net/core/net_namespace.c:732) 
[ 1909.305108][ C1] __sk_destruct (./include/net/net_namespace.h:288 ./include/net/net_namespace.h:390 net/core/sock.c:2366) 
[ 1909.305111][ C1] ? rcu_do_batch (kernel/rcu/tree.c:2568) 
[ 1909.305114][ C1] rcu_do_batch (./include/linux/rcupdate.h:341 kernel/rcu/tree.c:2570) 
[ 1909.305118][ C1] ? find_held_lock (kernel/locking/lockdep.c:5348) 
[ 1909.305122][ C1] ? __pfx_rcu_do_batch (kernel/rcu/tree.c:2492) 
[ 1909.305125][ C1] ? _raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:151 kernel/locking/spinlock.c:194) 
[ 1909.305128][ C1] ? lockdep_hardirqs_on (kernel/locking/lockdep.c:4473) 
[ 1909.305132][ C1] ? _raw_spin_unlock_irqrestore (./arch/x86/include/asm/preempt.h:104 ./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) 
[ 1909.305136][ C1] rcu_core (kernel/rcu/tree.c:2826) 
[ 1909.305141][ C1] handle_softirqs (kernel/softirq.c:580) 
[ 1909.305146][ C1] __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) 
[ 1909.305149][ C1] irq_exit_rcu (kernel/softirq.c:698) 
[ 1909.305153][ C1] sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1049 arch/x86/kernel/apic/apic.c:1049) 
[ 1909.305156][    C1]  </IRQ>
[ 1909.305157][    C1]  <TASK>
[ 1909.305159][ C1] asm_sysvec_apic_timer_interrupt (./arch/x86/include/asm/idtentry.h:702) 
[ 1909.305161][ C1] RIP: 0010:lock_acquire.part.0 (kernel/locking/lockdep.c:5870) 
[ 1909.305166][ C1] Code: ff ff ff 65 0f c1 05 1d e0 c7 05 83 f8 01 0f 85 3e 01 00 00 9c 58 f6 c4 02 0f 85 29 01 00 00 48 85 db 74 01 fb 48 8b 44 24 30 <65> 48 2b 05 8e a3 c7 05 0f 85 3a 01 00 00 48 83 c4 38 5b 5d 41 5c
All code
========
   0:	ff                   	(bad)
   1:	ff                   	(bad)
   2:	ff 65 0f             	jmp    *0xf(%rbp)
   5:	c1 05 1d e0 c7 05 83 	roll   $0x83,0x5c7e01d(%rip)        # 0x5c7e029
   c:	f8                   	clc
   d:	01 0f                	add    %ecx,(%rdi)
   f:	85 3e                	test   %edi,(%rsi)
  11:	01 00                	add    %eax,(%rax)
  13:	00 9c 58 f6 c4 02 0f 	add    %bl,0xf02c4f6(%rax,%rbx,2)
  1a:	85 29                	test   %ebp,(%rcx)
  1c:	01 00                	add    %eax,(%rax)
  1e:	00 48 85             	add    %cl,-0x7b(%rax)
  21:	db 74 01 fb          	(bad)  -0x5(%rcx,%rax,1)
  25:	48 8b 44 24 30       	mov    0x30(%rsp),%rax
  2a:*	65 48 2b 05 8e a3 c7 	sub    %gs:0x5c7a38e(%rip),%rax        # 0x5c7a3c0		<-- trapping instruction
  31:	05 
  32:	0f 85 3a 01 00 00    	jne    0x172
  38:	48 83 c4 38          	add    $0x38,%rsp
  3c:	5b                   	pop    %rbx
  3d:	5d                   	pop    %rbp
  3e:	41 5c                	pop    %r12

Code starting with the faulting instruction
===========================================
   0:	65 48 2b 05 8e a3 c7 	sub    %gs:0x5c7a38e(%rip),%rax        # 0x5c7a396
   7:	05 
   8:	0f 85 3a 01 00 00    	jne    0x148
   e:	48 83 c4 38          	add    $0x38,%rsp
  12:	5b                   	pop    %rbx
  13:	5d                   	pop    %rbp
  14:	41 5c                	pop    %r12
[ 1909.305169][    C1] RSP: 0018:ffffc90000427570 EFLAGS: 00000206
[ 1909.305172][    C1] RAX: 5262332155d06500 RBX: 0000000000000200 RCX: 0000000000000001
[ 1909.305174][    C1] RDX: 0000000000000000 RSI: ffffffffab4f7fbb RDI: ffffffffaac53e80
[ 1909.305176][    C1] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000001
[ 1909.305177][    C1] R10: 0000000000000078 R11: ffffffffabf88b60 R12: 0000000000000002
[ 1909.305179][    C1] R13: 0000000000000000 R14: 0000000000000000 R15: ffffffffabf88b60
[ 1909.305185][ C1] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:736) 
[ 1909.305189][ C1] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5829) 
[ 1909.305192][ C1] ? unwind_next_frame (./include/linux/rcupdate.h:331 ./include/linux/rcupdate.h:841 ./include/linux/rcupdate.h:1155 arch/x86/kernel/unwind_orc.c:479) 
[ 1909.305196][ C1] unwind_next_frame (./include/linux/rcupdate.h:842 ./include/linux/rcupdate.h:1155 arch/x86/kernel/unwind_orc.c:479) 
[ 1909.305199][ C1] ? unwind_next_frame (./include/linux/rcupdate.h:331 ./include/linux/rcupdate.h:841 ./include/linux/rcupdate.h:1155 arch/x86/kernel/unwind_orc.c:479) 
[ 1909.305203][ C1] ? kthread (kernel/kthread.c:464) 
[ 1909.305207][ C1] ? __pfx_unwind_next_frame (arch/x86/kernel/unwind_orc.c:469) 
[ 1909.305211][ C1] ? __pfx_unwind_next_frame (arch/x86/kernel/unwind_orc.c:469) 
[ 1909.305216][ C1] ? kthread (kernel/kthread.c:464) 
[ 1909.305218][ C1] ? kernel_text_address (kernel/extable.c:99) 
[ 1909.305223][ C1] ? __pfx_stack_trace_consume_entry (kernel/stacktrace.c:83) 
[ 1909.305226][ C1] arch_stack_walk (arch/x86/kernel/stacktrace.c:24) 
[ 1909.305231][ C1] ? kthread (kernel/kthread.c:464) 
[ 1909.305235][ C1] stack_trace_save (kernel/stacktrace.c:123) 
[ 1909.305238][ C1] ? __pfx_stack_trace_save (kernel/stacktrace.c:114) 
[ 1909.305241][ C1] ? validate_chain (kernel/locking/lockdep.c:3802 kernel/locking/lockdep.c:3822 kernel/locking/lockdep.c:3877) 
[ 1909.305246][ C1] kasan_save_stack (mm/kasan/common.c:48) 
[ 1909.305248][ C1] ? kasan_save_stack (mm/kasan/common.c:48) 
[ 1909.305250][ C1] ? kasan_save_track (./arch/x86/include/asm/current.h:25 mm/kasan/common.c:60 mm/kasan/common.c:69) 
[ 1909.305253][ C1] ? kasan_save_free_info (mm/kasan/generic.c:579) 
[ 1909.305255][ C1] ? __kasan_slab_free (mm/kasan/common.c:271) 
[ 1909.305258][ C1] ? kfree (mm/slub.c:4642 mm/slub.c:4841) 
[ 1909.305260][ C1] ? detach_buf_split (drivers/virtio/virtio_ring.c:799) 
[ 1909.305266][ C1] ? virtqueue_get_buf_ctx_split (drivers/virtio/virtio_ring.c:854) 
[ 1909.305269][ C1] ? virtio_fs_requests_done_work (fs/fuse/virtio_fs.c:829) 
[ 1909.305272][ C1] ? process_one_work (kernel/workqueue.c:3238) 
[ 1909.305275][ C1] ? worker_thread (kernel/workqueue.c:3313 kernel/workqueue.c:3400) 
[ 1909.305277][ C1] ? kthread (kernel/kthread.c:464) 
[ 1909.305280][ C1] ? find_held_lock (kernel/locking/lockdep.c:5348) 
[ 1909.305284][ C1] ? mark_held_locks (kernel/locking/lockdep.c:4326) 
[ 1909.305288][ C1] ? _raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:151 kernel/locking/spinlock.c:194) 
[ 1909.305291][ C1] ? lockdep_hardirqs_on (kernel/locking/lockdep.c:4473) 
[ 1909.305294][ C1] ? _raw_spin_unlock_irqrestore (./arch/x86/include/asm/preempt.h:104 ./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) 
[ 1909.305297][ C1] ? __debug_check_no_obj_freed (lib/debugobjects.c:1110) 
[ 1909.305303][ C1] ? find_held_lock (kernel/locking/lockdep.c:5348) 
[ 1909.305307][ C1] ? __pfx___debug_check_no_obj_freed (lib/debugobjects.c:1070) 
[ 1909.305311][ C1] ? mark_held_locks (kernel/locking/lockdep.c:4326) 
[ 1909.305315][ C1] ? __call_rcu_common.constprop.0 (kernel/rcu/tree.c:3107) 
[ 1909.305318][ C1] ? lockdep_hardirqs_on (kernel/locking/lockdep.c:4473) 
[ 1909.305321][ C1] kasan_save_track (./arch/x86/include/asm/current.h:25 mm/kasan/common.c:60 mm/kasan/common.c:69) 
[ 1909.305324][ C1] kasan_save_free_info (mm/kasan/generic.c:579) 
[ 1909.305327][ C1] __kasan_slab_free (mm/kasan/common.c:271) 
[ 1909.305330][ C1] kfree (mm/slub.c:4642 mm/slub.c:4841) 
[ 1909.305333][ C1] ? detach_buf_split (drivers/virtio/virtio_ring.c:799) 
[ 1909.305336][ C1] ? __lock_acquire (kernel/locking/lockdep.c:5235) 
[ 1909.305340][ C1] detach_buf_split (drivers/virtio/virtio_ring.c:799) 
[ 1909.305346][ C1] virtqueue_get_buf_ctx_split (drivers/virtio/virtio_ring.c:854) 
[ 1909.305351][ C1] virtio_fs_requests_done_work (fs/fuse/virtio_fs.c:829) 
[ 1909.305356][ C1] ? __pfx_virtio_fs_requests_done_work (fs/fuse/virtio_fs.c:814) 
[ 1909.305360][ C1] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:736) 
[ 1909.305365][ C1] process_one_work (kernel/workqueue.c:3238) 
[ 1909.305371][ C1] ? __pfx_process_one_work (kernel/workqueue.c:3140) 
[ 1909.305376][ C1] ? assign_work (kernel/workqueue.c:1200) 
[ 1909.305381][ C1] worker_thread (kernel/workqueue.c:3313 kernel/workqueue.c:3400) 
[ 1909.305386][ C1] ? __pfx_worker_thread (kernel/workqueue.c:3346) 
[ 1909.305390][ C1] kthread (kernel/kthread.c:464) 
[ 1909.305393][ C1] ? __pfx_kthread (kernel/kthread.c:413) 
[ 1909.305396][ C1] ? ret_from_fork (arch/x86/kernel/process.c:152) 
[ 1909.305399][ C1] ? __lock_release (kernel/locking/lockdep.c:5534) 
[ 1909.305402][ C1] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:736) 
[ 1909.305406][ C1] ? __pfx_kthread (kernel/kthread.c:413) 
[ 1909.305409][ C1] ret_from_fork (arch/x86/kernel/process.c:153) 
[ 1909.305412][ C1] ? __pfx_kthread (kernel/kthread.c:413) 
[ 1909.305415][ C1] ret_from_fork_asm (arch/x86/entry/entry_64.S:258) 
| [ 1909.336192][    C1] RCU nest depth: 1, expected: 0
| [ 1909.336386][    C1] INFO: lockdep is turned off.
| [ 1909.336714][    C1] Preemption disabled at:
| [ 1909.336716][ C1] 0x0 
[ 1909.337074][    C1] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011
[ 1909.337077][    C1] Workqueue: events virtio_fs_requests_done_work
[ 1909.337088][    C1] Call Trace:
[ 1909.337090][    C1]  <IRQ>
[ 1909.337092][ C1] dump_stack_lvl (lib/dump_stack.c:123) 
[ 1909.337101][ C1] __might_resched (kernel/sched/core.c:8819) 
[ 1909.337107][ C1] down_write (./include/linux/kernel.h:73 kernel/locking/rwsem.c:1576) 
[ 1909.337113][ C1] ? __pfx_down_write (kernel/locking/rwsem.c:1575) 
[ 1909.337116][ C1] ? simple_recursive_removal (./include/linux/dcache.h:345 fs/libfs.c:610) 
[ 1909.337122][ C1] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:736) 
[ 1909.337128][ C1] ? do_raw_spin_unlock (./arch/x86/include/asm/atomic.h:23 ./include/linux/atomic/atomic-arch-fallback.h:457 ./include/linux/atomic/atomic-instrumented.h:33 ./include/asm-generic/qspinlock.h:57 kernel/locking/spinlock_debug.c:101 kernel/locking/spinlock_debug.c:141) 
[ 1909.337134][ C1] simple_recursive_removal (./include/linux/dcache.h:409 ./include/linux/dcache.h:424 ./include/linux/dcache.h:434 fs/libfs.c:616) 
[ 1909.337137][ C1] ? __pfx_remove_one (fs/debugfs/inode.c:780) 
[ 1909.337143][ C1] ? do_raw_spin_unlock (./arch/x86/include/asm/atomic.h:23 ./include/linux/atomic/atomic-arch-fallback.h:457 ./include/linux/atomic/atomic-instrumented.h:33 ./include/asm-generic/qspinlock.h:57 kernel/locking/spinlock_debug.c:101 kernel/locking/spinlock_debug.c:141) 
[ 1909.337147][ C1] debugfs_remove (fs/debugfs/inode.c:806 fs/debugfs/inode.c:799) 
[ 1909.337151][ C1] ref_tracker_dir_exit (lib/ref_tracker.c:423 lib/ref_tracker.c:195) 
[ 1909.337156][ C1] ? __pfx_ref_tracker_free (lib/ref_tracker.c:253) 
[ 1909.337159][ C1] ? __sk_destruct (./include/linux/instrumented.h:96 ./include/linux/atomic/atomic-instrumented.h:400 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/refcount.h:450 ./include/net/net_namespace.h:287 ./include/net/net_namespace.h:390 net/core/sock.c:2366) 
[ 1909.337164][ C1] ? rcu_do_batch (./include/linux/rcupdate.h:341 kernel/rcu/tree.c:2570) 
[ 1909.337168][ C1] ? __pfx_ref_tracker_dir_exit (lib/ref_tracker.c:189) 
[ 1909.337171][ C1] ? irq_exit_rcu (kernel/softirq.c:698) 
[ 1909.337177][ C1] ? sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1049 arch/x86/kernel/apic/apic.c:1049) 
[ 1909.337181][ C1] ? asm_sysvec_apic_timer_interrupt (./arch/x86/include/asm/idtentry.h:702) 
[ 1909.337185][ C1] ? lock_acquire.part.0 (kernel/locking/lockdep.c:5870) 
[ 1909.337190][ C1] ? unwind_next_frame (./include/linux/rcupdate.h:842 ./include/linux/rcupdate.h:1155 arch/x86/kernel/unwind_orc.c:479) 
[ 1909.337197][ C1] ? arch_stack_walk (arch/x86/kernel/stacktrace.c:24) 
[ 1909.337202][ C1] ? stack_trace_save (kernel/stacktrace.c:123) 
[ 1909.337207][ C1] ? kasan_save_stack (mm/kasan/common.c:48) 
[ 1909.337211][ C1] ? kasan_save_track (./arch/x86/include/asm/current.h:25 mm/kasan/common.c:60 mm/kasan/common.c:69) 
[ 1909.337213][ C1] ? kasan_save_free_info (mm/kasan/generic.c:579) 
[ 1909.337217][ C1] ? __kasan_slab_free (mm/kasan/common.c:271) 
[ 1909.337222][ C1] __put_net (net/core/net_namespace.c:732) 
[ 1909.337227][ C1] __sk_destruct (./include/net/net_namespace.h:288 ./include/net/net_namespace.h:390 net/core/sock.c:2366) 
[ 1909.337230][ C1] ? rcu_do_batch (kernel/rcu/tree.c:2568) 
[ 1909.337233][ C1] rcu_do_batch (./include/linux/rcupdate.h:341 kernel/rcu/tree.c:2570) 
[ 1909.337237][ C1] ? find_held_lock (kernel/locking/lockdep.c:5348) 
[ 1909.337241][ C1] ? __pfx_rcu_do_batch (kernel/rcu/tree.c:2492) 
[ 1909.337245][ C1] ? _raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:151 kernel/locking/spinlock.c:194) 
[ 1909.337250][ C1] ? lockdep_hardirqs_on (kernel/locking/lockdep.c:4473) 
[ 1909.337253][ C1] ? _raw_spin_unlock_irqrestore (./arch/x86/include/asm/preempt.h:104 ./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) 
[ 1909.337258][ C1] rcu_core (kernel/rcu/tree.c:2826) 
[ 1909.337263][ C1] handle_softirqs (kernel/softirq.c:580) 
[ 1909.337269][ C1] __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) 
[ 1909.337273][ C1] irq_exit_rcu (kernel/softirq.c:698) 
[ 1909.337276][ C1] sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1049 arch/x86/kernel/apic/apic.c:1049) 
[ 1909.337279][    C1]  </IRQ>
[ 1909.337280][    C1]  <TASK>
[ 1909.337282][ C1] asm_sysvec_apic_timer_interrupt (./arch/x86/include/asm/idtentry.h:702) 
[ 1909.337285][ C1] RIP: 0010:lock_acquire.part.0 (kernel/locking/lockdep.c:5870) 
[ 1909.337289][ C1] Code: ff ff ff 65 0f c1 05 1d e0 c7 05 83 f8 01 0f 85 3e 01 00 00 9c 58 f6 c4 02 0f 85 29 01 00 00 48 85 db 74 01 fb 48 8b 44 24 30 <65> 48 2b 05 8e a3 c7 05 0f 85 3a 01 00 00 48 83 c4 38 5b 5d 41 5c
All code
========
   0:	ff                   	(bad)
   1:	ff                   	(bad)
   2:	ff 65 0f             	jmp    *0xf(%rbp)
   5:	c1 05 1d e0 c7 05 83 	roll   $0x83,0x5c7e01d(%rip)        # 0x5c7e029
   c:	f8                   	clc
   d:	01 0f                	add    %ecx,(%rdi)
   f:	85 3e                	test   %edi,(%rsi)
  11:	01 00                	add    %eax,(%rax)
  13:	00 9c 58 f6 c4 02 0f 	add    %bl,0xf02c4f6(%rax,%rbx,2)
  1a:	85 29                	test   %ebp,(%rcx)
  1c:	01 00                	add    %eax,(%rax)
  1e:	00 48 85             	add    %cl,-0x7b(%rax)
  21:	db 74 01 fb          	(bad)  -0x5(%rcx,%rax,1)
  25:	48 8b 44 24 30       	mov    0x30(%rsp),%rax
  2a:*	65 48 2b 05 8e a3 c7 	sub    %gs:0x5c7a38e(%rip),%rax        # 0x5c7a3c0		<-- trapping instruction
  31:	05 
  32:	0f 85 3a 01 00 00    	jne    0x172
  38:	48 83 c4 38          	add    $0x38,%rsp
  3c:	5b                   	pop    %rbx
  3d:	5d                   	pop    %rbp
  3e:	41 5c                	pop    %r12

Code starting with the faulting instruction
===========================================
   0:	65 48 2b 05 8e a3 c7 	sub    %gs:0x5c7a38e(%rip),%rax        # 0x5c7a396
   7:	05 
   8:	0f 85 3a 01 00 00    	jne    0x148
   e:	48 83 c4 38          	add    $0x38,%rsp
  12:	5b                   	pop    %rbx
  13:	5d                   	pop    %rbp
  14:	41 5c                	pop    %r12
[ 1909.337291][    C1] RSP: 0018:ffffc90000427570 EFLAGS: 00000206
[ 1909.337294][    C1] RAX: 5262332155d06500 RBX: 0000000000000200 RCX: 0000000000000001
[ 1909.337296][    C1] RDX: 0000000000000000 RSI: ffffffffab4f7fbb RDI: ffffffffaac53e80
[ 1909.337298][    C1] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000001
[ 1909.337300][    C1] R10: 0000000000000078 R11: ffffffffabf88b60 R12: 0000000000000002
[ 1909.337302][    C1] R13: 0000000000000000 R14: 0000000000000000 R15: ffffffffabf88b60
[ 1909.337308][ C1] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:736) 
[ 1909.337311][ C1] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5829) 
[ 1909.337314][ C1] ? unwind_next_frame (./include/linux/rcupdate.h:331 ./include/linux/rcupdate.h:841 ./include/linux/rcupdate.h:1155 arch/x86/kernel/unwind_orc.c:479) 
[ 1909.337319][ C1] unwind_next_frame (./include/linux/rcupdate.h:842 ./include/linux/rcupdate.h:1155 arch/x86/kernel/unwind_orc.c:479) 
[ 1909.337322][ C1] ? unwind_next_frame (./include/linux/rcupdate.h:331 ./include/linux/rcupdate.h:841 ./include/linux/rcupdate.h:1155 arch/x86/kernel/unwind_orc.c:479) 
[ 1909.337326][ C1] ? kthread (kernel/kthread.c:464) 
[ 1909.337331][ C1] ? __pfx_unwind_next_frame (arch/x86/kernel/unwind_orc.c:469) 
[ 1909.337334][ C1] ? __pfx_unwind_next_frame (arch/x86/kernel/unwind_orc.c:469) 
[ 1909.337339][ C1] ? kthread (kernel/kthread.c:464) 
[ 1909.337341][ C1] ? kernel_text_address (kernel/extable.c:99) 
[ 1909.337346][ C1] ? __pfx_stack_trace_consume_entry (kernel/stacktrace.c:83) 
[ 1909.337350][ C1] arch_stack_walk (arch/x86/kernel/stacktrace.c:24) 
[ 1909.337355][ C1] ? kthread (kernel/kthread.c:464) 
[ 1909.337359][ C1] stack_trace_save (kernel/stacktrace.c:123) 
[ 1909.337362][ C1] ? __pfx_stack_trace_save (kernel/stacktrace.c:114) 
[ 1909.337365][ C1] ? validate_chain (kernel/locking/lockdep.c:3802 kernel/locking/lockdep.c:3822 kernel/locking/lockdep.c:3877) 
[ 1909.337369][ C1] kasan_save_stack (mm/kasan/common.c:48) 
[ 1909.337372][ C1] ? kasan_save_stack (mm/kasan/common.c:48) 
[ 1909.337374][ C1] ? kasan_save_track (./arch/x86/include/asm/current.h:25 mm/kasan/common.c:60 mm/kasan/common.c:69) 
[ 1909.337376][ C1] ? kasan_save_free_info (mm/kasan/generic.c:579) 
[ 1909.337379][ C1] ? __kasan_slab_free (mm/kasan/common.c:271) 
[ 1909.337381][ C1] ? kfree (mm/slub.c:4642 mm/slub.c:4841) 
[ 1909.337384][ C1] ? detach_buf_split (drivers/virtio/virtio_ring.c:799) 
[ 1909.337389][ C1] ? virtqueue_get_buf_ctx_split (drivers/virtio/virtio_ring.c:854) 
[ 1909.337392][ C1] ? virtio_fs_requests_done_work (fs/fuse/virtio_fs.c:829) 
[ 1909.337395][ C1] ? process_one_work (kernel/workqueue.c:3238) 
[ 1909.337399][ C1] ? worker_thread (kernel/workqueue.c:3313 kernel/workqueue.c:3400) 
[ 1909.337402][ C1] ? kthread (kernel/kthread.c:464) 
[ 1909.337405][ C1] ? find_held_lock (kernel/locking/lockdep.c:5348) 
[ 1909.337409][ C1] ? mark_held_locks (kernel/locking/lockdep.c:4326) 
[ 1909.337412][ C1] ? _raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:151 kernel/locking/spinlock.c:194) 
[ 1909.337415][ C1] ? lockdep_hardirqs_on (kernel/locking/lockdep.c:4473) 
[ 1909.337419][ C1] ? _raw_spin_unlock_irqrestore (./arch/x86/include/asm/preempt.h:104 ./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) 
[ 1909.337422][ C1] ? __debug_check_no_obj_freed (lib/debugobjects.c:1110) 
[ 1909.337429][ C1] ? find_held_lock (kernel/locking/lockdep.c:5348) 
[ 1909.337433][ C1] ? __pfx___debug_check_no_obj_freed (lib/debugobjects.c:1070) 
[ 1909.337437][ C1] ? mark_held_locks (kernel/locking/lockdep.c:4326) 
[ 1909.337441][ C1] ? __call_rcu_common.constprop.0 (kernel/rcu/tree.c:3107) 
[ 1909.337444][ C1] ? lockdep_hardirqs_on (kernel/locking/lockdep.c:4473) 
[ 1909.337448][ C1] kasan_save_track (./arch/x86/include/asm/current.h:25 mm/kasan/common.c:60 mm/kasan/common.c:69) 
[ 1909.337450][ C1] kasan_save_free_info (mm/kasan/generic.c:579) 
[ 1909.337454][ C1] __kasan_slab_free (mm/kasan/common.c:271) 
[ 1909.337457][ C1] kfree (mm/slub.c:4642 mm/slub.c:4841) 
[ 1909.337459][ C1] ? detach_buf_split (drivers/virtio/virtio_ring.c:799) 
[ 1909.337463][ C1] ? __lock_acquire (kernel/locking/lockdep.c:5235) 
[ 1909.337467][ C1] detach_buf_split (drivers/virtio/virtio_ring.c:799) 
[ 1909.337473][ C1] virtqueue_get_buf_ctx_split (drivers/virtio/virtio_ring.c:854) 
[ 1909.337478][ C1] virtio_fs_requests_done_work (fs/fuse/virtio_fs.c:829) 
[ 1909.337483][ C1] ? __pfx_virtio_fs_requests_done_work (fs/fuse/virtio_fs.c:814) 
[ 1909.337487][ C1] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:736) 
[ 1909.337492][ C1] process_one_work (kernel/workqueue.c:3238) 
[ 1909.337498][ C1] ? __pfx_process_one_work (kernel/workqueue.c:3140) 
[ 1909.337503][ C1] ? assign_work (kernel/workqueue.c:1200) 
[ 1909.337507][ C1] worker_thread (kernel/workqueue.c:3313 kernel/workqueue.c:3400) 
[ 1909.337513][ C1] ? __pfx_worker_thread (kernel/workqueue.c:3346) 
[ 1909.337516][ C1] kthread (kernel/kthread.c:464) 
[ 1909.337520][ C1] ? __pfx_kthread (kernel/kthread.c:413) 
[ 1909.337522][ C1] ? ret_from_fork (arch/x86/kernel/process.c:152) 
[ 1909.337526][ C1] ? __lock_release (kernel/locking/lockdep.c:5534) 
[ 1909.337530][ C1] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:736) 
[ 1909.337533][ C1] ? __pfx_kthread (kernel/kthread.c:413) 
[ 1909.337537][ C1] ret_from_fork (arch/x86/kernel/process.c:153) 
[ 1909.337540][ C1] ? __pfx_kthread (kernel/kthread.c:413) 


Finger prints:
mark_lock_irq:mark_lock:mark_usage:__lock_acquire:_raw_spin_lock
__might_resched:down_write:simple_recursive_removal:debugfs_remove:ref_tracker_dir_exit