======================================
| [ 251.425991][ C0] #1: ffffffff91794e30 (remove_cache_srcu){.+.+}-{0:0}, at: kasan_quarantine_reduce (./include/linux/srcu.h:161 ./include/linux/srcu.h:253 mm/kasan/quarantine.c:259) 
| [ 251.426425][ C0] #2: ffffffff9158b540 (rcu_callback){....}-{0:0}, at: rcu_do_batch (./include/linux/rcupdate.h:331 kernel/rcu/tree.c:2570) 
| [  251.426817][    C0]
| [  251.426817][    C0] stack backtrace:
[  251.427089][    C0] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011
[  251.427092][    C0] Call Trace:
[  251.427096][    C0]  <IRQ>
[ 251.427098][ C0] dump_stack_lvl (lib/dump_stack.c:123) 
[ 251.427107][ C0] print_usage_bug.part.0 (kernel/locking/lockdep.c:4048) 
[ 251.427111][ C0] mark_lock_irq (kernel/locking/lockdep.c:4013 kernel/locking/lockdep.c:4059 kernel/locking/lockdep.c:4270) 
[ 251.427116][ C0] ? __pfx_unwind_next_frame (arch/x86/kernel/unwind_orc.c:469) 
[ 251.427123][ C0] ? save_trace (kernel/locking/lockdep.c:595) 
[ 251.427130][ C0] mark_lock (kernel/locking/lockdep.c:4756) 
[ 251.427133][ C0] mark_usage (kernel/locking/lockdep.c:4645) 
[ 251.427136][ C0] __lock_acquire (kernel/locking/lockdep.c:5194) 
[ 251.427139][ C0] ? __lock_acquire (kernel/locking/lockdep.c:5240) 
[ 251.427143][ C0] lock_acquire.part.0 (kernel/locking/lockdep.c:473 kernel/locking/lockdep.c:5873) 
[ 251.427146][ C0] ? simple_pin_fs (fs/libfs.c:1067) 
[ 251.427149][ C0] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) 
[ 251.427153][ C0] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) 
[ 251.427155][ C0] ? simple_pin_fs (fs/libfs.c:1067) 
[ 251.427159][ C0] _raw_spin_lock (./include/linux/spinlock_api_smp.h:134 kernel/locking/spinlock.c:154) 
[ 251.427162][ C0] ? simple_pin_fs (fs/libfs.c:1067) 
[ 251.427165][ C0] simple_pin_fs (fs/libfs.c:1067) 
[ 251.427168][ C0] debugfs_remove (fs/debugfs/inode.c:805 fs/debugfs/inode.c:799) 
[ 251.427171][ C0] ref_tracker_dir_exit (lib/ref_tracker.c:412 lib/ref_tracker.c:196) 
[ 251.427178][ C0] ? __pfx_ref_tracker_free (lib/ref_tracker.c:254) 
[ 251.427181][ C0] ? __sk_destruct (./include/linux/instrumented.h:96 ./include/linux/atomic/atomic-instrumented.h:400 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/refcount.h:450 ./include/net/net_namespace.h:287 ./include/net/net_namespace.h:390 net/core/sock.c:2376) 
[ 251.427190][ C0] ? rcu_do_batch (./include/linux/rcupdate.h:341 kernel/rcu/tree.c:2578) 
[ 251.427194][ C0] ? __pfx_ref_tracker_dir_exit (lib/ref_tracker.c:190) 
[ 251.427196][ C0] ? irq_exit_rcu (kernel/softirq.c:698) 
[ 251.427199][ C0] ? sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1050 arch/x86/kernel/apic/apic.c:1050) 
[ 251.427206][ C0] ? asm_sysvec_apic_timer_interrupt (./arch/x86/include/asm/idtentry.h:702) 
[ 251.427211][ C0] ? lock_acquire (kernel/locking/lockdep.c:5831) 
[ 251.427213][ C0] ? unwind_next_frame (./include/linux/rcupdate.h:842 ./include/linux/rcupdate.h:1155 arch/x86/kernel/unwind_orc.c:479) 
[ 251.427215][ C0] ? arch_stack_walk (arch/x86/kernel/stacktrace.c:24) 
[ 251.427220][ C0] ? stack_trace_save (kernel/stacktrace.c:123) 
[ 251.427229][ C0] ? set_track_prepare (mm/slub.c:936) 
[ 251.427233][ C0] ? free_to_partial_list (mm/slub.c:4387) 
[ 251.427237][ C0] ? qlist_free_all (mm/kasan/quarantine.c:174) 
[ 251.427241][ C0] ? kasan_quarantine_reduce (./include/linux/srcu.h:400 mm/kasan/quarantine.c:287) 
[ 251.427246][ C0] __put_net (net/core/net_namespace.c:732) 
[ 251.427257][ C0] __sk_destruct (./include/net/net_namespace.h:288 ./include/net/net_namespace.h:390 net/core/sock.c:2376) 
[ 251.427260][ C0] ? rcu_do_batch (kernel/rcu/tree.c:2576) 
[ 251.427264][ C0] rcu_do_batch (./include/linux/rcupdate.h:341 kernel/rcu/tree.c:2578) 
[ 251.427270][ C0] ? __pfx_rcu_do_batch (kernel/rcu/tree.c:2500) 
[ 251.427274][ C0] ? mark_held_locks (kernel/locking/lockdep.c:4328) 
[ 251.427277][ C0] ? _raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:151 kernel/locking/spinlock.c:194) 
[ 251.427282][ C0] rcu_core (kernel/rcu/tree.c:2834) 
[ 251.427287][ C0] handle_softirqs (kernel/softirq.c:580) 
[ 251.427292][ C0] __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) 
[ 251.427295][ C0] irq_exit_rcu (kernel/softirq.c:698) 
[ 251.427298][ C0] sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1050 arch/x86/kernel/apic/apic.c:1050) 
[  251.427301][    C0]  </IRQ>
[  251.427302][    C0]  <TASK>
[ 251.427305][ C0] asm_sysvec_apic_timer_interrupt (./arch/x86/include/asm/idtentry.h:702) 
[ 251.427307][ C0] RIP: 0010:lock_acquire (kernel/locking/lockdep.c:5831) 
[ 251.427311][ C0] Code: 90 90 90 90 90 90 f3 0f 1e fa 41 57 4d 89 cf 41 56 41 89 ce 41 55 41 89 d5 41 54 41 89 f4 55 48 89 fd 53 44 89 c3 48 83 ec 10 <4c> 8b 54 24 48 66 90 65 8b 05 32 ec c8 05 83 f8 3f 0f 87 1a 01 00
All code
========
   0:	90                   	nop
   1:	90                   	nop
   2:	90                   	nop
   3:	90                   	nop
   4:	90                   	nop
   5:	90                   	nop
   6:	f3 0f 1e fa          	endbr64
   a:	41 57                	push   %r15
   c:	4d 89 cf             	mov    %r9,%r15
   f:	41 56                	push   %r14
  11:	41 89 ce             	mov    %ecx,%r14d
  14:	41 55                	push   %r13
  16:	41 89 d5             	mov    %edx,%r13d
  19:	41 54                	push   %r12
  1b:	41 89 f4             	mov    %esi,%r12d
  1e:	55                   	push   %rbp
  1f:	48 89 fd             	mov    %rdi,%rbp
  22:	53                   	push   %rbx
  23:	44 89 c3             	mov    %r8d,%ebx
  26:	48 83 ec 10          	sub    $0x10,%rsp
  2a:*	4c 8b 54 24 48       	mov    0x48(%rsp),%r10		<-- trapping instruction
  2f:	66 90                	xchg   %ax,%ax
  31:	65 8b 05 32 ec c8 05 	mov    %gs:0x5c8ec32(%rip),%eax        # 0x5c8ec6a
  38:	83 f8 3f             	cmp    $0x3f,%eax
  3b:	0f                   	.byte 0xf
  3c:	87 1a                	xchg   %ebx,(%rdx)
  3e:	01 00                	add    %eax,(%rax)

Code starting with the faulting instruction
===========================================
   0:	4c 8b 54 24 48       	mov    0x48(%rsp),%r10
   5:	66 90                	xchg   %ax,%ax
   7:	65 8b 05 32 ec c8 05 	mov    %gs:0x5c8ec32(%rip),%eax        # 0x5c8ec40
   e:	83 f8 3f             	cmp    $0x3f,%eax
  11:	0f                   	.byte 0xf
  12:	87 1a                	xchg   %ebx,(%rdx)
  14:	01 00                	add    %eax,(%rax)
[  251.427314][    C0] RSP: 0018:ffffc90001917598 EFLAGS: 00000282
[  251.427319][    C0] RAX: ffffffff8d21d687 RBX: 0000000000000000 RCX: 0000000000000002
[  251.427321][    C0] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffffff9158b660
[  251.427322][    C0] RBP: ffffffff9158b660 R08: 0000000000000000 R09: 0000000000000000
[  251.427324][    C0] R10: 0000000000000000 R11: ffffc90001917728 R12: 0000000000000000
[  251.427325][    C0] R13: 0000000000000000 R14: 0000000000000002 R15: 0000000000000000
[ 251.427329][ C0] ? unwind_next_frame (./include/linux/rcupdate.h:331 ./include/linux/rcupdate.h:841 ./include/linux/rcupdate.h:1155 arch/x86/kernel/unwind_orc.c:479) 
[ 251.427335][ C0] unwind_next_frame (./include/linux/rcupdate.h:842 ./include/linux/rcupdate.h:1155 arch/x86/kernel/unwind_orc.c:479) 
[ 251.427337][ C0] ? unwind_next_frame (./include/linux/rcupdate.h:331 ./include/linux/rcupdate.h:841 ./include/linux/rcupdate.h:1155 arch/x86/kernel/unwind_orc.c:479) 
[ 251.427339][ C0] ? qlist_free_all (mm/kasan/quarantine.c:174) 
[ 251.427343][ C0] ? __lock_release (kernel/locking/lockdep.c:5539) 
[ 251.427346][ C0] ? __pfx_unwind_next_frame (arch/x86/kernel/unwind_orc.c:469) 
[ 251.427350][ C0] ? qlist_free_all (mm/kasan/quarantine.c:174) 
[ 251.427353][ C0] ? kernel_text_address (kernel/extable.c:99) 
[ 251.427359][ C0] ? __pfx_stack_trace_consume_entry (kernel/stacktrace.c:83) 
[ 251.427363][ C0] arch_stack_walk (arch/x86/kernel/stacktrace.c:24) 
[ 251.427370][ C0] ? qlist_free_all (mm/kasan/quarantine.c:174) 
[ 251.427375][ C0] stack_trace_save (kernel/stacktrace.c:123) 
[ 251.427378][ C0] ? __pfx_stack_trace_save (kernel/stacktrace.c:114) 
[ 251.427382][ C0] ? check_bytes_and_report (mm/slub.c:1212) 
[ 251.427387][ C0] ? check_object (mm/slub.c:1289 mm/slub.c:1388) 
[ 251.427390][ C0] set_track_prepare (mm/slub.c:936) 
[ 251.427393][ C0] ? init_object (mm/slub.c:1182) 
[ 251.427398][ C0] free_to_partial_list (mm/slub.c:4387) 
[ 251.427401][ C0] ? qlist_free_all (mm/kasan/quarantine.c:163 mm/kasan/quarantine.c:179) 
[ 251.427407][ C0] qlist_free_all (mm/kasan/quarantine.c:174) 
[ 251.427411][ C0] kasan_quarantine_reduce (./include/linux/srcu.h:400 mm/kasan/quarantine.c:287) 
[ 251.427416][ C0] __kasan_slab_alloc (mm/kasan/common.c:329) 
[ 251.427423][ C0] kmem_cache_alloc_noprof (./include/linux/kasan.h:250 mm/slub.c:4147 mm/slub.c:4196 mm/slub.c:4203) 
[ 251.427428][ C0] vm_area_dup (kernel/fork.c:488) 
[ 251.427433][ C0] __split_vma (mm/vma.c:477) 
[ 251.427438][ C0] ? __pfx___split_vma (mm/vma.c:463) 
[ 251.427441][ C0] ? is_bpf_text_address (kernel/bpf/core.c:777) 
[ 251.427451][ C0] ? kernel_text_address (kernel/extable.c:97 kernel/extable.c:94) 
[ 251.427456][ C0] ? rcu_read_lock_any_held (kernel/rcu/update.c:386 kernel/rcu/update.c:380) 
[ 251.427460][ C0] ? validate_chain (kernel/locking/lockdep.c:3804 kernel/locking/lockdep.c:3824 kernel/locking/lockdep.c:3879) 
[ 251.427464][ C0] vms_gather_munmap_vmas (mm/vma.c:1316) 
[ 251.427468][ C0] ? __lock_release (kernel/locking/lockdep.c:5539) 
[ 251.427472][ C0] do_vmi_align_munmap (mm/vma.c:1483) 
[ 251.427476][ C0] ? __pfx_do_vmi_align_munmap (mm/vma.c:1474) 
[ 251.427488][ C0] ? __vm_munmap (./include/linux/mmap_lock.h:147 mm/vma.c:3011) 
[ 251.427492][ C0] ? mas_walk (lib/maple_tree.c:3605 lib/maple_tree.c:4905) 
[ 251.427498][ C0] do_vmi_munmap (mm/vma.c:1540) 
[ 251.427503][ C0] __vm_munmap (mm/vma.c:3014) 
[ 251.427508][ C0] ? __pfx___vm_munmap (mm/vma.c:3005) 
[ 251.427511][ C0] ? find_held_lock (kernel/locking/lockdep.c:5353) 
[ 251.427515][ C0] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) 
[ 251.427520][ C0] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mm.h:704 ./include/linux/mm.h:799 arch/x86/mm/fault.c:1338) 
[ 251.427527][ C0] __x64_sys_munmap (mm/mmap.c:1081) 
[ 251.427533][ C0] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) 
[ 251.427542][ C0] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) 
[  251.427545][    C0] RIP: 0033:0x7f0fa78d6e8b
[ 251.427549][ C0] Code: ff ff 73 01 c3 48 8b 0d 73 9f 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 0f 1f 84 00 00 00 00 00 f3 0f 1e fa b8 0b 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 45 9f 1b 00 f7 d8 64 89 01 48
All code
========
   0:	ff                   	(bad)
   1:	ff 73 01             	push   0x1(%rbx)
   4:	c3                   	ret
   5:	48 8b 0d 73 9f 1b 00 	mov    0x1b9f73(%rip),%rcx        # 0x1b9f7f
   c:	f7 d8                	neg    %eax
   e:	64 89 01             	mov    %eax,%fs:(%rcx)
  11:	48 83 c8 ff          	or     $0xffffffffffffffff,%rax
  15:	c3                   	ret
  16:	66 0f 1f 84 00 00 00 	nopw   0x0(%rax,%rax,1)
  1d:	00 00 
  1f:	f3 0f 1e fa          	endbr64
  23:	b8 0b 00 00 00       	mov    $0xb,%eax
  28:	0f 05                	syscall
  2a:*	48 3d 01 f0 ff ff    	cmp    $0xfffffffffffff001,%rax		<-- trapping instruction
  30:	73 01                	jae    0x33
  32:	c3                   	ret
  33:	48 8b 0d 45 9f 1b 00 	mov    0x1b9f45(%rip),%rcx        # 0x1b9f7f
  3a:	f7 d8                	neg    %eax
  3c:	64 89 01             	mov    %eax,%fs:(%rcx)
  3f:	48                   	rex.W

Code starting with the faulting instruction
===========================================
   0:	48 3d 01 f0 ff ff    	cmp    $0xfffffffffffff001,%rax
   6:	73 01                	jae    0x9
   8:	c3                   	ret
   9:	48 8b 0d 45 9f 1b 00 	mov    0x1b9f45(%rip),%rcx        # 0x1b9f55
  10:	f7 d8                	neg    %eax
  12:	64 89 01             	mov    %eax,%fs:(%rcx)
  15:	48                   	rex.W
[  251.427551][    C0] RSP: 002b:00007ffe08dd41b8 EFLAGS: 00000206 ORIG_RAX: 000000000000000b
[  251.427554][    C0] RAX: ffffffffffffffda RBX: 00007f0f993bf7c0 RCX: 00007f0fa78d6e8b
[  251.427556][    C0] RDX: 0000000000040000 RSI: 0000000000040000 RDI: 00007f0f9941f000
[  251.427558][    C0] RBP: 00007f0fa7e37e40 R08: 0000562d7f2c3a40 R09: 00007f0fa7e541c0
[  251.427560][    C0] R10: 0000562d7f2c38c0 R11: 0000000000000206 R12: 00007f0fa7e54120
[  251.427562][    C0] R13: 00007f0fa7e1a180 R14: 00007f0fa7bbdd50 R15: 0000000000000002
| [  251.457374][    C0] RCU nest depth: 1, expected: 0
| [  251.457588][    C0] INFO: lockdep is turned off.
| [  251.457788][    C0] Preemption disabled at:
| [ 251.457790][ C0] handle_softirqs (kernel/softirq.c:553) 
[  251.458337][    C0] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011
[  251.458339][    C0] Call Trace:
[  251.458341][    C0]  <IRQ>
[ 251.458343][ C0] dump_stack_lvl (lib/dump_stack.c:123) 
[ 251.458352][ C0] __might_resched (kernel/sched/core.c:8796) 
[ 251.458360][ C0] down_write (./include/linux/kernel.h:73 kernel/locking/rwsem.c:1576) 
[ 251.458365][ C0] ? __pfx_down_write (kernel/locking/rwsem.c:1575) 
[ 251.458367][ C0] ? simple_recursive_removal (fs/libfs.c:614) 
[ 251.458373][ C0] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) 
[ 251.458379][ C0] ? do_raw_spin_unlock (./arch/x86/include/asm/atomic.h:23 ./include/linux/atomic/atomic-arch-fallback.h:457 ./include/linux/atomic/atomic-instrumented.h:33 ./include/asm-generic/qspinlock.h:57 kernel/locking/spinlock_debug.c:101 kernel/locking/spinlock_debug.c:141) 
[ 251.458391][ C0] simple_recursive_removal (./include/linux/dcache.h:409 ./include/linux/dcache.h:424 ./include/linux/dcache.h:434 fs/libfs.c:617) 
[ 251.458394][ C0] ? do_raw_spin_unlock (./arch/x86/include/asm/atomic.h:23 ./include/linux/atomic/atomic-arch-fallback.h:457 ./include/linux/atomic/atomic-instrumented.h:33 ./include/asm-generic/qspinlock.h:57 kernel/locking/spinlock_debug.c:101 kernel/locking/spinlock_debug.c:141) 
[ 251.458397][ C0] ? __pfx_remove_one (fs/debugfs/inode.c:780) 
[ 251.458405][ C0] debugfs_remove (fs/debugfs/inode.c:806 fs/debugfs/inode.c:799) 
[ 251.458408][ C0] ref_tracker_dir_exit (lib/ref_tracker.c:412 lib/ref_tracker.c:196) 
[ 251.458414][ C0] ? __pfx_ref_tracker_free (lib/ref_tracker.c:254) 
[ 251.458417][ C0] ? __sk_destruct (./include/linux/instrumented.h:96 ./include/linux/atomic/atomic-instrumented.h:400 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/refcount.h:450 ./include/net/net_namespace.h:287 ./include/net/net_namespace.h:390 net/core/sock.c:2376) 
[ 251.458425][ C0] ? rcu_do_batch (./include/linux/rcupdate.h:341 kernel/rcu/tree.c:2578) 
[ 251.458431][ C0] ? __pfx_ref_tracker_dir_exit (lib/ref_tracker.c:190) 
[ 251.458434][ C0] ? irq_exit_rcu (kernel/softirq.c:698) 
[ 251.458437][ C0] ? sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1050 arch/x86/kernel/apic/apic.c:1050) 
[ 251.458442][ C0] ? asm_sysvec_apic_timer_interrupt (./arch/x86/include/asm/idtentry.h:702) 
[ 251.458446][ C0] ? lock_acquire (kernel/locking/lockdep.c:5831) 
[ 251.458449][ C0] ? unwind_next_frame (./include/linux/rcupdate.h:842 ./include/linux/rcupdate.h:1155 arch/x86/kernel/unwind_orc.c:479) 
[ 251.458454][ C0] ? arch_stack_walk (arch/x86/kernel/stacktrace.c:24) 
[ 251.458460][ C0] ? stack_trace_save (kernel/stacktrace.c:123) 
[ 251.458466][ C0] ? set_track_prepare (mm/slub.c:936) 
[ 251.458470][ C0] ? free_to_partial_list (mm/slub.c:4387) 
[ 251.458475][ C0] ? qlist_free_all (mm/kasan/quarantine.c:174) 
[ 251.458480][ C0] ? kasan_quarantine_reduce (./include/linux/srcu.h:400 mm/kasan/quarantine.c:287) 
[ 251.458488][ C0] __put_net (net/core/net_namespace.c:732) 
[ 251.458495][ C0] __sk_destruct (./include/net/net_namespace.h:288 ./include/net/net_namespace.h:390 net/core/sock.c:2376) 
[ 251.458499][ C0] ? rcu_do_batch (kernel/rcu/tree.c:2576) 
[ 251.458502][ C0] rcu_do_batch (./include/linux/rcupdate.h:341 kernel/rcu/tree.c:2578) 
[ 251.458508][ C0] ? __pfx_rcu_do_batch (kernel/rcu/tree.c:2500) 
[ 251.458513][ C0] ? mark_held_locks (kernel/locking/lockdep.c:4328) 
[ 251.458516][ C0] ? _raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:151 kernel/locking/spinlock.c:194) 
[ 251.458522][ C0] rcu_core (kernel/rcu/tree.c:2834) 
[ 251.458527][ C0] handle_softirqs (kernel/softirq.c:580) 
[ 251.458532][ C0] __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) 
[ 251.458535][ C0] irq_exit_rcu (kernel/softirq.c:698) 
[ 251.458537][ C0] sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1050 arch/x86/kernel/apic/apic.c:1050) 
[  251.458540][    C0]  </IRQ>
[  251.458541][    C0]  <TASK>
[ 251.458543][ C0] asm_sysvec_apic_timer_interrupt (./arch/x86/include/asm/idtentry.h:702) 
[ 251.458546][ C0] RIP: 0010:lock_acquire (kernel/locking/lockdep.c:5831) 
[ 251.458549][ C0] Code: 90 90 90 90 90 90 f3 0f 1e fa 41 57 4d 89 cf 41 56 41 89 ce 41 55 41 89 d5 41 54 41 89 f4 55 48 89 fd 53 44 89 c3 48 83 ec 10 <4c> 8b 54 24 48 66 90 65 8b 05 32 ec c8 05 83 f8 3f 0f 87 1a 01 00
All code
========
   0:	90                   	nop
   1:	90                   	nop
   2:	90                   	nop
   3:	90                   	nop
   4:	90                   	nop
   5:	90                   	nop
   6:	f3 0f 1e fa          	endbr64
   a:	41 57                	push   %r15
   c:	4d 89 cf             	mov    %r9,%r15
   f:	41 56                	push   %r14
  11:	41 89 ce             	mov    %ecx,%r14d
  14:	41 55                	push   %r13
  16:	41 89 d5             	mov    %edx,%r13d
  19:	41 54                	push   %r12
  1b:	41 89 f4             	mov    %esi,%r12d
  1e:	55                   	push   %rbp
  1f:	48 89 fd             	mov    %rdi,%rbp
  22:	53                   	push   %rbx
  23:	44 89 c3             	mov    %r8d,%ebx
  26:	48 83 ec 10          	sub    $0x10,%rsp
  2a:*	4c 8b 54 24 48       	mov    0x48(%rsp),%r10		<-- trapping instruction
  2f:	66 90                	xchg   %ax,%ax
  31:	65 8b 05 32 ec c8 05 	mov    %gs:0x5c8ec32(%rip),%eax        # 0x5c8ec6a
  38:	83 f8 3f             	cmp    $0x3f,%eax
  3b:	0f                   	.byte 0xf
  3c:	87 1a                	xchg   %ebx,(%rdx)
  3e:	01 00                	add    %eax,(%rax)

Code starting with the faulting instruction
===========================================
   0:	4c 8b 54 24 48       	mov    0x48(%rsp),%r10
   5:	66 90                	xchg   %ax,%ax
   7:	65 8b 05 32 ec c8 05 	mov    %gs:0x5c8ec32(%rip),%eax        # 0x5c8ec40
   e:	83 f8 3f             	cmp    $0x3f,%eax
  11:	0f                   	.byte 0xf
  12:	87 1a                	xchg   %ebx,(%rdx)
  14:	01 00                	add    %eax,(%rax)
[  251.458552][    C0] RSP: 0018:ffffc90001917598 EFLAGS: 00000282
[  251.458555][    C0] RAX: ffffffff8d21d687 RBX: 0000000000000000 RCX: 0000000000000002
[  251.458557][    C0] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffffff9158b660
[  251.458558][    C0] RBP: ffffffff9158b660 R08: 0000000000000000 R09: 0000000000000000
[  251.458560][    C0] R10: 0000000000000000 R11: ffffc90001917728 R12: 0000000000000000
[  251.458561][    C0] R13: 0000000000000000 R14: 0000000000000002 R15: 0000000000000000
[ 251.458565][ C0] ? unwind_next_frame (./include/linux/rcupdate.h:331 ./include/linux/rcupdate.h:841 ./include/linux/rcupdate.h:1155 arch/x86/kernel/unwind_orc.c:479) 
[ 251.458571][ C0] unwind_next_frame (./include/linux/rcupdate.h:842 ./include/linux/rcupdate.h:1155 arch/x86/kernel/unwind_orc.c:479) 
[ 251.458573][ C0] ? unwind_next_frame (./include/linux/rcupdate.h:331 ./include/linux/rcupdate.h:841 ./include/linux/rcupdate.h:1155 arch/x86/kernel/unwind_orc.c:479) 
[ 251.458576][ C0] ? qlist_free_all (mm/kasan/quarantine.c:174) 
[ 251.458580][ C0] ? __lock_release (kernel/locking/lockdep.c:5539) 
[ 251.458583][ C0] ? __pfx_unwind_next_frame (arch/x86/kernel/unwind_orc.c:469) 
[ 251.458587][ C0] ? qlist_free_all (mm/kasan/quarantine.c:174) 
[ 251.458590][ C0] ? kernel_text_address (kernel/extable.c:99) 
[ 251.458595][ C0] ? __pfx_stack_trace_consume_entry (kernel/stacktrace.c:83) 
[ 251.458600][ C0] arch_stack_walk (arch/x86/kernel/stacktrace.c:24) 
[ 251.458605][ C0] ? qlist_free_all (mm/kasan/quarantine.c:174) 
[ 251.458610][ C0] stack_trace_save (kernel/stacktrace.c:123) 
[ 251.458613][ C0] ? __pfx_stack_trace_save (kernel/stacktrace.c:114) 
[ 251.458617][ C0] ? check_bytes_and_report (mm/slub.c:1212) 
[ 251.458622][ C0] ? check_object (mm/slub.c:1289 mm/slub.c:1388) 
[ 251.458625][ C0] set_track_prepare (mm/slub.c:936) 
[ 251.458628][ C0] ? init_object (mm/slub.c:1182) 
[ 251.458633][ C0] free_to_partial_list (mm/slub.c:4387) 
[ 251.458637][ C0] ? qlist_free_all (mm/kasan/quarantine.c:163 mm/kasan/quarantine.c:179) 
[ 251.458641][ C0] qlist_free_all (mm/kasan/quarantine.c:174) 
[ 251.458646][ C0] kasan_quarantine_reduce (./include/linux/srcu.h:400 mm/kasan/quarantine.c:287) 
[ 251.458650][ C0] __kasan_slab_alloc (mm/kasan/common.c:329) 
[ 251.458657][ C0] kmem_cache_alloc_noprof (./include/linux/kasan.h:250 mm/slub.c:4147 mm/slub.c:4196 mm/slub.c:4203) 
[ 251.458663][ C0] vm_area_dup (kernel/fork.c:488) 
[ 251.458668][ C0] __split_vma (mm/vma.c:477) 
[ 251.458673][ C0] ? __pfx___split_vma (mm/vma.c:463) 
[ 251.458677][ C0] ? is_bpf_text_address (kernel/bpf/core.c:777) 
[ 251.458684][ C0] ? kernel_text_address (kernel/extable.c:97 kernel/extable.c:94) 
[ 251.458688][ C0] ? rcu_read_lock_any_held (kernel/rcu/update.c:386 kernel/rcu/update.c:380) 
[ 251.458693][ C0] ? validate_chain (kernel/locking/lockdep.c:3804 kernel/locking/lockdep.c:3824 kernel/locking/lockdep.c:3879) 
[ 251.458696][ C0] vms_gather_munmap_vmas (mm/vma.c:1316) 
[ 251.458700][ C0] ? __lock_release (kernel/locking/lockdep.c:5539) 
[ 251.458704][ C0] do_vmi_align_munmap (mm/vma.c:1483) 
[ 251.458708][ C0] ? __pfx_do_vmi_align_munmap (mm/vma.c:1474) 
[ 251.458720][ C0] ? __vm_munmap (./include/linux/mmap_lock.h:147 mm/vma.c:3011) 
[ 251.458724][ C0] ? mas_walk (lib/maple_tree.c:3605 lib/maple_tree.c:4905) 
[ 251.458729][ C0] do_vmi_munmap (mm/vma.c:1540) 
[ 251.458734][ C0] __vm_munmap (mm/vma.c:3014) 
[ 251.458738][ C0] ? __pfx___vm_munmap (mm/vma.c:3005) 
[ 251.458741][ C0] ? find_held_lock (kernel/locking/lockdep.c:5353) 
[ 251.458746][ C0] ? exc_page_fault (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:151 arch/x86/mm/fault.c:1484 arch/x86/mm/fault.c:1532) 
[ 251.458751][ C0] ? do_user_addr_fault (./arch/x86/include/asm/atomic.h:93 ./include/linux/atomic/atomic-arch-fallback.h:949 ./include/linux/atomic/atomic-instrumented.h:401 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/mm.h:704 ./include/linux/mm.h:799 arch/x86/mm/fault.c:1338) 
[ 251.458758][ C0] __x64_sys_munmap (mm/mmap.c:1081) 
[ 251.458762][ C0] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) 
[ 251.458767][ C0] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) 
[  251.458769][    C0] RIP: 0033:0x7f0fa78d6e8b
[ 251.458773][ C0] Code: ff ff 73 01 c3 48 8b 0d 73 9f 1b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 0f 1f 84 00 00 00 00 00 f3 0f 1e fa b8 0b 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 45 9f 1b 00 f7 d8 64 89 01 48
All code
========
   0:	ff                   	(bad)
   1:	ff 73 01             	push   0x1(%rbx)
   4:	c3                   	ret
   5:	48 8b 0d 73 9f 1b 00 	mov    0x1b9f73(%rip),%rcx        # 0x1b9f7f
   c:	f7 d8                	neg    %eax
   e:	64 89 01             	mov    %eax,%fs:(%rcx)
  11:	48 83 c8 ff          	or     $0xffffffffffffffff,%rax
  15:	c3                   	ret
  16:	66 0f 1f 84 00 00 00 	nopw   0x0(%rax,%rax,1)
  1d:	00 00 
  1f:	f3 0f 1e fa          	endbr64
  23:	b8 0b 00 00 00       	mov    $0xb,%eax
  28:	0f 05                	syscall
  2a:*	48 3d 01 f0 ff ff    	cmp    $0xfffffffffffff001,%rax		<-- trapping instruction
  30:	73 01                	jae    0x33
  32:	c3                   	ret
  33:	48 8b 0d 45 9f 1b 00 	mov    0x1b9f45(%rip),%rcx        # 0x1b9f7f
  3a:	f7 d8                	neg    %eax
  3c:	64 89 01             	mov    %eax,%fs:(%rcx)
  3f:	48                   	rex.W

Code starting with the faulting instruction
===========================================
   0:	48 3d 01 f0 ff ff    	cmp    $0xfffffffffffff001,%rax
   6:	73 01                	jae    0x9
   8:	c3                   	ret
   9:	48 8b 0d 45 9f 1b 00 	mov    0x1b9f45(%rip),%rcx        # 0x1b9f55
  10:	f7 d8                	neg    %eax
  12:	64 89 01             	mov    %eax,%fs:(%rcx)
  15:	48                   	rex.W
[  251.458775][    C0] RSP: 002b:00007ffe08dd41b8 EFLAGS: 00000206 ORIG_RAX: 000000000000000b
[  251.458778][    C0] RAX: ffffffffffffffda RBX: 00007f0f993bf7c0 RCX: 00007f0fa78d6e8b
[  251.458780][    C0] RDX: 0000000000040000 RSI: 0000000000040000 RDI: 00007f0f9941f000
[  251.458782][    C0] RBP: 00007f0fa7e37e40 R08: 0000562d7f2c3a40 R09: 00007f0fa7e541c0
[  251.458784][    C0] R10: 0000562d7f2c38c0 R11: 0000000000000206 R12: 00007f0fa7e54120


Finger prints:
mark_lock_irq:mark_lock:mark_usage:__lock_acquire:_raw_spin_lock
handle_softirqs:dump_stack_lvl:__might_resched:down_write:simple_recursive_removal