======================================
| [ 1867.788402][ C3] #3: ffffffffb3194e30 (remove_cache_srcu){.+.+}-{0:0}, at: kasan_quarantine_reduce (./include/linux/srcu.h:161 ./include/linux/srcu.h:253 mm/kasan/quarantine.c:259) 
| [ 1867.788863][ C3] #4: ffffffffb2f8b540 (rcu_callback){....}-{0:0}, at: rcu_do_batch (./include/linux/rcupdate.h:331 kernel/rcu/tree.c:2570) 
| [ 1867.789265][    C3]
| [ 1867.789265][    C3] stack backtrace:
[ 1867.789549][    C3] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011
[ 1867.789552][    C3] Workqueue: events rht_deferred_worker
[ 1867.789557][    C3] Call Trace:
[ 1867.789559][    C3]  <IRQ>
[ 1867.789562][ C3] dump_stack_lvl (lib/dump_stack.c:123) 
[ 1867.789568][ C3] print_usage_bug.part.0 (kernel/locking/lockdep.c:4048) 
[ 1867.789572][ C3] mark_lock_irq (kernel/locking/lockdep.c:4013 kernel/locking/lockdep.c:4059 kernel/locking/lockdep.c:4270) 
[ 1867.789576][ C3] ? __pfx_unwind_next_frame (arch/x86/kernel/unwind_orc.c:469) 
[ 1867.789580][ C3] ? save_trace (kernel/locking/lockdep.c:595) 
[ 1867.789585][ C3] mark_lock (kernel/locking/lockdep.c:4756) 
[ 1867.789589][ C3] mark_usage (kernel/locking/lockdep.c:4645) 
[ 1867.789592][ C3] __lock_acquire (kernel/locking/lockdep.c:5194) 
[ 1867.789595][ C3] ? __lock_acquire (kernel/locking/lockdep.c:5240) 
[ 1867.789598][ C3] lock_acquire.part.0 (kernel/locking/lockdep.c:473 kernel/locking/lockdep.c:5873) 
[ 1867.789601][ C3] ? simple_pin_fs (fs/libfs.c:1067) 
[ 1867.789604][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) 
[ 1867.789608][ C3] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) 
[ 1867.789610][ C3] ? simple_pin_fs (fs/libfs.c:1067) 
[ 1867.789614][ C3] _raw_spin_lock (./include/linux/spinlock_api_smp.h:134 kernel/locking/spinlock.c:154) 
[ 1867.789617][ C3] ? simple_pin_fs (fs/libfs.c:1067) 
[ 1867.789619][ C3] simple_pin_fs (fs/libfs.c:1067) 
[ 1867.789622][ C3] debugfs_remove (fs/debugfs/inode.c:805 fs/debugfs/inode.c:799) 
[ 1867.789626][ C3] ref_tracker_dir_exit (lib/ref_tracker.c:412 lib/ref_tracker.c:196) 
[ 1867.789630][ C3] ? __pfx_ref_tracker_free (lib/ref_tracker.c:254) 
[ 1867.789633][ C3] ? __sk_destruct (./include/linux/instrumented.h:96 ./include/linux/atomic/atomic-instrumented.h:400 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/refcount.h:450 ./include/net/net_namespace.h:287 ./include/net/net_namespace.h:390 net/core/sock.c:2376) 
[ 1867.789637][ C3] ? rcu_do_batch (./include/linux/rcupdate.h:341 kernel/rcu/tree.c:2578) 
[ 1867.789641][ C3] ? __pfx_ref_tracker_dir_exit (lib/ref_tracker.c:190) 
[ 1867.789643][ C3] ? irq_exit_rcu (kernel/softirq.c:698) 
[ 1867.789646][ C3] ? sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1050 arch/x86/kernel/apic/apic.c:1050) 
[ 1867.789650][ C3] ? asm_sysvec_apic_timer_interrupt (./arch/x86/include/asm/idtentry.h:702) 
[ 1867.789653][ C3] ? _raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) 
[ 1867.789656][ C3] ? qlist_free_all (mm/kasan/quarantine.c:174) 
[ 1867.789659][ C3] ? kasan_quarantine_reduce (./include/linux/srcu.h:400 mm/kasan/quarantine.c:287) 
[ 1867.789662][ C3] ? __kasan_slab_alloc (mm/kasan/common.c:329) 
[ 1867.789667][ C3] ? __kvmalloc_node_noprof (mm/slub.c:4148 mm/slub.c:4196 mm/slub.c:4326 mm/slub.c:5012) 
[ 1867.789671][ C3] ? bucket_table_alloc.isra.0 (lib/rhashtable.c:186) 
[ 1867.789674][ C3] ? rhashtable_rehash_alloc (lib/rhashtable.c:367) 
[ 1867.789677][ C3] ? rht_deferred_worker (lib/rhashtable.c:429) 
[ 1867.789682][ C3] __put_net (net/core/net_namespace.c:732) 
[ 1867.789686][ C3] __sk_destruct (./include/net/net_namespace.h:288 ./include/net/net_namespace.h:390 net/core/sock.c:2376) 
[ 1867.789690][ C3] ? rcu_do_batch (kernel/rcu/tree.c:2576) 
[ 1867.789693][ C3] rcu_do_batch (./include/linux/rcupdate.h:341 kernel/rcu/tree.c:2578) 
[ 1867.789698][ C3] ? __pfx_rcu_do_batch (kernel/rcu/tree.c:2500) 
[ 1867.789702][ C3] ? mark_held_locks (kernel/locking/lockdep.c:4328) 
[ 1867.789705][ C3] ? note_gp_changes (kernel/rcu/tree.c:1326 (discriminator 1)) 
[ 1867.789707][ C3] ? lockdep_hardirqs_on (kernel/locking/lockdep.c:4475) 
[ 1867.789712][ C3] rcu_core (kernel/rcu/tree.c:2834) 
[ 1867.789716][ C3] handle_softirqs (kernel/softirq.c:580) 
[ 1867.789721][ C3] __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) 
[ 1867.789724][ C3] irq_exit_rcu (kernel/softirq.c:698) 
[ 1867.789727][ C3] sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1050 arch/x86/kernel/apic/apic.c:1050) 
[ 1867.789730][    C3]  </IRQ>
[ 1867.789731][    C3]  <TASK>
[ 1867.789732][ C3] asm_sysvec_apic_timer_interrupt (./arch/x86/include/asm/idtentry.h:702) 
[ 1867.789735][ C3] RIP: 0010:_raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) 
[ 1867.789739][ C3] Code: 74 24 10 e8 81 4c 56 fd 48 89 ef e8 39 9f 56 fd 81 e3 00 02 00 00 75 29 9c 58 f6 c4 02 75 35 48 85 db 74 01 fb bf 01 00 00 00 <e8> ba 9c 4a fd 65 8b 05 f3 3c 1f 03 85 c0 74 0e 5b 5d e9 98 34 00
All code
========
   0:	74 24                	je     0x26
   2:	10 e8                	adc    %ch,%al
   4:	81 4c 56 fd 48 89 ef 	orl    $0xe8ef8948,-0x3(%rsi,%rdx,2)
   b:	e8 
   c:	39 9f 56 fd 81 e3    	cmp    %ebx,-0x1c7e02aa(%rdi)
  12:	00 02                	add    %al,(%rdx)
  14:	00 00                	add    %al,(%rax)
  16:	75 29                	jne    0x41
  18:	9c                   	pushf
  19:	58                   	pop    %rax
  1a:	f6 c4 02             	test   $0x2,%ah
  1d:	75 35                	jne    0x54
  1f:	48 85 db             	test   %rbx,%rbx
  22:	74 01                	je     0x25
  24:	fb                   	sti
  25:	bf 01 00 00 00       	mov    $0x1,%edi
  2a:*	e8 ba 9c 4a fd       	call   0xfffffffffd4a9ce9		<-- trapping instruction
  2f:	65 8b 05 f3 3c 1f 03 	mov    %gs:0x31f3cf3(%rip),%eax        # 0x31f3d29
  36:	85 c0                	test   %eax,%eax
  38:	74 0e                	je     0x48
  3a:	5b                   	pop    %rbx
  3b:	5d                   	pop    %rbp
  3c:	e9                   	.byte 0xe9
  3d:	98                   	cwtl
  3e:	34 00                	xor    $0x0,%al

Code starting with the faulting instruction
===========================================
   0:	e8 ba 9c 4a fd       	call   0xfffffffffd4a9cbf
   5:	65 8b 05 f3 3c 1f 03 	mov    %gs:0x31f3cf3(%rip),%eax        # 0x31f3cff
   c:	85 c0                	test   %eax,%eax
   e:	74 0e                	je     0x1e
  10:	5b                   	pop    %rbx
  11:	5d                   	pop    %rbp
  12:	e9                   	.byte 0xe9
  13:	98                   	cwtl
  14:	34 00                	xor    $0x0,%al
[ 1867.789741][    C3] RSP: 0018:ffffc9000037fad8 EFLAGS: 00000206
[ 1867.789744][    C3] RAX: 0000000000000002 RBX: 0000000000000200 RCX: 0000000000000080
[ 1867.789746][    C3] RDX: 0000000000000000 RSI: ffffffffb2515cea RDI: 0000000000000001
[ 1867.789748][    C3] RBP: ffff88800104f440 R08: 0000000000000001 R09: 0000000000000001
[ 1867.789749][    C3] R10: ffffffffb3a7c7d7 R11: ffff88800104f458 R12: ffff888008fdf5f8
[ 1867.789751][    C3] R13: 0000000000000000 R14: ffffc9000037fb28 R15: ffff88800e1d84e8
[ 1867.789757][ C3] qlist_free_all (mm/kasan/quarantine.c:174) 
[ 1867.789762][ C3] kasan_quarantine_reduce (./include/linux/srcu.h:400 mm/kasan/quarantine.c:287) 
[ 1867.789766][ C3] __kasan_slab_alloc (mm/kasan/common.c:329) 
[ 1867.789770][ C3] __kvmalloc_node_noprof (mm/slub.c:4148 mm/slub.c:4196 mm/slub.c:4326 mm/slub.c:5012) 
[ 1867.789774][ C3] ? bucket_table_alloc.isra.0 (lib/rhashtable.c:186) 
[ 1867.789778][ C3] ? bucket_table_alloc.isra.0 (lib/rhashtable.c:186) 
[ 1867.789781][ C3] bucket_table_alloc.isra.0 (lib/rhashtable.c:186) 
[ 1867.789785][ C3] rhashtable_rehash_alloc (lib/rhashtable.c:367) 
[ 1867.789788][ C3] rht_deferred_worker (lib/rhashtable.c:429) 
[ 1867.789792][ C3] process_one_work (kernel/workqueue.c:3238) 
[ 1867.789799][ C3] ? __pfx_process_one_work (kernel/workqueue.c:3140) 
[ 1867.789805][ C3] ? assign_work (kernel/workqueue.c:1200) 
[ 1867.789809][ C3] worker_thread (kernel/workqueue.c:3315 kernel/workqueue.c:3402) 
[ 1867.789816][ C3] ? __pfx_worker_thread (kernel/workqueue.c:3348) 
[ 1867.789820][ C3] kthread (kernel/kthread.c:464) 
[ 1867.789824][ C3] ? __pfx_kthread (kernel/kthread.c:413) 
[ 1867.789827][ C3] ? ret_from_fork (arch/x86/kernel/process.c:147) 
[ 1867.789830][ C3] ? __lock_release (kernel/locking/lockdep.c:5539) 
[ 1867.789833][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) 
[ 1867.789836][ C3] ? __pfx_kthread (kernel/kthread.c:413) 
[ 1867.789840][ C3] ret_from_fork (arch/x86/kernel/process.c:148) 
[ 1867.789842][ C3] ? __pfx_kthread (kernel/kthread.c:413) 
[ 1867.789845][ C3] ret_from_fork_asm (arch/x86/entry/entry_64.S:258) 
| [ 1867.814240][    C3] RCU nest depth: 0, expected: 0
| [ 1867.814458][    C3] INFO: lockdep is turned off.
| [ 1867.814701][    C3] Preemption disabled at:
| [ 1867.814703][ C3] 0x0 
[ 1867.815215][    C3] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011
[ 1867.815217][    C3] Workqueue: events rht_deferred_worker
[ 1867.815224][    C3] Call Trace:
[ 1867.815226][    C3]  <IRQ>
[ 1867.815228][ C3] dump_stack_lvl (lib/dump_stack.c:123) 
[ 1867.815235][ C3] __might_resched (kernel/sched/core.c:8796) 
[ 1867.815242][ C3] down_write (./include/linux/kernel.h:73 kernel/locking/rwsem.c:1576) 
[ 1867.815246][ C3] ? __pfx_down_write (kernel/locking/rwsem.c:1575) 
[ 1867.815248][ C3] ? simple_recursive_removal (fs/libfs.c:614) 
[ 1867.815253][ C3] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) 
[ 1867.815257][ C3] ? do_raw_spin_unlock (./arch/x86/include/asm/atomic.h:23 ./include/linux/atomic/atomic-arch-fallback.h:457 ./include/linux/atomic/atomic-instrumented.h:33 ./include/asm-generic/qspinlock.h:57 kernel/locking/spinlock_debug.c:101 kernel/locking/spinlock_debug.c:141) 
[ 1867.815262][ C3] simple_recursive_removal (./include/linux/dcache.h:409 ./include/linux/dcache.h:424 ./include/linux/dcache.h:434 fs/libfs.c:617) 
[ 1867.815265][ C3] ? do_raw_spin_unlock (./arch/x86/include/asm/atomic.h:23 ./include/linux/atomic/atomic-arch-fallback.h:457 ./include/linux/atomic/atomic-instrumented.h:33 ./include/asm-generic/qspinlock.h:57 kernel/locking/spinlock_debug.c:101 kernel/locking/spinlock_debug.c:141) 
[ 1867.815268][ C3] ? __pfx_remove_one (fs/debugfs/inode.c:780) 
[ 1867.815273][ C3] debugfs_remove (fs/debugfs/inode.c:806 fs/debugfs/inode.c:799) 
[ 1867.815277][ C3] ref_tracker_dir_exit (lib/ref_tracker.c:412 lib/ref_tracker.c:196) 
[ 1867.815281][ C3] ? __pfx_ref_tracker_free (lib/ref_tracker.c:254) 
[ 1867.815283][ C3] ? __sk_destruct (./include/linux/instrumented.h:96 ./include/linux/atomic/atomic-instrumented.h:400 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/refcount.h:450 ./include/net/net_namespace.h:287 ./include/net/net_namespace.h:390 net/core/sock.c:2376) 
[ 1867.815287][ C3] ? rcu_do_batch (./include/linux/rcupdate.h:341 kernel/rcu/tree.c:2578) 
[ 1867.815292][ C3] ? __pfx_ref_tracker_dir_exit (lib/ref_tracker.c:190) 
[ 1867.815294][ C3] ? irq_exit_rcu (kernel/softirq.c:698) 
[ 1867.815298][ C3] ? sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1050 arch/x86/kernel/apic/apic.c:1050) 
[ 1867.815302][ C3] ? asm_sysvec_apic_timer_interrupt (./arch/x86/include/asm/idtentry.h:702) 
[ 1867.815305][ C3] ? _raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) 
[ 1867.815310][ C3] ? qlist_free_all (mm/kasan/quarantine.c:174) 
[ 1867.815314][ C3] ? kasan_quarantine_reduce (./include/linux/srcu.h:400 mm/kasan/quarantine.c:287) 
[ 1867.815317][ C3] ? __kasan_slab_alloc (mm/kasan/common.c:329) 
[ 1867.815322][ C3] ? __kvmalloc_node_noprof (mm/slub.c:4148 mm/slub.c:4196 mm/slub.c:4326 mm/slub.c:5012) 
[ 1867.815326][ C3] ? bucket_table_alloc.isra.0 (lib/rhashtable.c:186) 
[ 1867.815329][ C3] ? rhashtable_rehash_alloc (lib/rhashtable.c:367) 
[ 1867.815332][ C3] ? rht_deferred_worker (lib/rhashtable.c:429) 
[ 1867.815337][ C3] __put_net (net/core/net_namespace.c:732) 
[ 1867.815342][ C3] __sk_destruct (./include/net/net_namespace.h:288 ./include/net/net_namespace.h:390 net/core/sock.c:2376) 
[ 1867.815345][ C3] ? rcu_do_batch (kernel/rcu/tree.c:2576) 
[ 1867.815349][ C3] rcu_do_batch (./include/linux/rcupdate.h:341 kernel/rcu/tree.c:2578) 
[ 1867.815354][ C3] ? __pfx_rcu_do_batch (kernel/rcu/tree.c:2500) 
[ 1867.815358][ C3] ? mark_held_locks (kernel/locking/lockdep.c:4328) 
[ 1867.815361][ C3] ? note_gp_changes (kernel/rcu/tree.c:1326 (discriminator 1)) 
[ 1867.815363][ C3] ? lockdep_hardirqs_on (kernel/locking/lockdep.c:4475) 
[ 1867.815368][ C3] rcu_core (kernel/rcu/tree.c:2834) 
[ 1867.815373][ C3] handle_softirqs (kernel/softirq.c:580) 
[ 1867.815378][ C3] __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) 
[ 1867.815380][ C3] irq_exit_rcu (kernel/softirq.c:698) 
[ 1867.815383][ C3] sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1050 arch/x86/kernel/apic/apic.c:1050) 
[ 1867.815386][    C3]  </IRQ>
[ 1867.815387][    C3]  <TASK>
[ 1867.815389][ C3] asm_sysvec_apic_timer_interrupt (./arch/x86/include/asm/idtentry.h:702) 
[ 1867.815391][ C3] RIP: 0010:_raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:152 kernel/locking/spinlock.c:194) 
[ 1867.815395][ C3] Code: 74 24 10 e8 81 4c 56 fd 48 89 ef e8 39 9f 56 fd 81 e3 00 02 00 00 75 29 9c 58 f6 c4 02 75 35 48 85 db 74 01 fb bf 01 00 00 00 <e8> ba 9c 4a fd 65 8b 05 f3 3c 1f 03 85 c0 74 0e 5b 5d e9 98 34 00
All code
========
   0:	74 24                	je     0x26
   2:	10 e8                	adc    %ch,%al
   4:	81 4c 56 fd 48 89 ef 	orl    $0xe8ef8948,-0x3(%rsi,%rdx,2)
   b:	e8 
   c:	39 9f 56 fd 81 e3    	cmp    %ebx,-0x1c7e02aa(%rdi)
  12:	00 02                	add    %al,(%rdx)
  14:	00 00                	add    %al,(%rax)
  16:	75 29                	jne    0x41
  18:	9c                   	pushf
  19:	58                   	pop    %rax
  1a:	f6 c4 02             	test   $0x2,%ah
  1d:	75 35                	jne    0x54
  1f:	48 85 db             	test   %rbx,%rbx
  22:	74 01                	je     0x25
  24:	fb                   	sti
  25:	bf 01 00 00 00       	mov    $0x1,%edi
  2a:*	e8 ba 9c 4a fd       	call   0xfffffffffd4a9ce9		<-- trapping instruction
  2f:	65 8b 05 f3 3c 1f 03 	mov    %gs:0x31f3cf3(%rip),%eax        # 0x31f3d29
  36:	85 c0                	test   %eax,%eax
  38:	74 0e                	je     0x48
  3a:	5b                   	pop    %rbx
  3b:	5d                   	pop    %rbp
  3c:	e9                   	.byte 0xe9
  3d:	98                   	cwtl
  3e:	34 00                	xor    $0x0,%al

Code starting with the faulting instruction
===========================================
   0:	e8 ba 9c 4a fd       	call   0xfffffffffd4a9cbf
   5:	65 8b 05 f3 3c 1f 03 	mov    %gs:0x31f3cf3(%rip),%eax        # 0x31f3cff
   c:	85 c0                	test   %eax,%eax
   e:	74 0e                	je     0x1e
  10:	5b                   	pop    %rbx
  11:	5d                   	pop    %rbp
  12:	e9                   	.byte 0xe9
  13:	98                   	cwtl
  14:	34 00                	xor    $0x0,%al
[ 1867.815397][    C3] RSP: 0018:ffffc9000037fad8 EFLAGS: 00000206
[ 1867.815400][    C3] RAX: 0000000000000002 RBX: 0000000000000200 RCX: 0000000000000080
[ 1867.815402][    C3] RDX: 0000000000000000 RSI: ffffffffb2515cea RDI: 0000000000000001
[ 1867.815404][    C3] RBP: ffff88800104f440 R08: 0000000000000001 R09: 0000000000000001
[ 1867.815405][    C3] R10: ffffffffb3a7c7d7 R11: ffff88800104f458 R12: ffff888008fdf5f8
[ 1867.815407][    C3] R13: 0000000000000000 R14: ffffc9000037fb28 R15: ffff88800e1d84e8
[ 1867.815413][ C3] qlist_free_all (mm/kasan/quarantine.c:174) 
[ 1867.815418][ C3] kasan_quarantine_reduce (./include/linux/srcu.h:400 mm/kasan/quarantine.c:287) 


Finger prints:
mark_lock_irq:mark_lock:mark_usage:__lock_acquire:_raw_spin_lock