======================================
| [ 1198.178024][    C2] ==================================================================
| [ 1198.178301][ C2] BUG: KASAN: null-ptr-deref in sock_def_write_space_wfree (./arch/x86/include/asm/bitops.h:206 ./arch/x86/include/asm/bitops.h:238 ./include/asm-generic/bitops/instrumented-non-atomic.h:142 net/core/sock.c:3397) 
| [ 1198.178545][    C2] Read of size 8 at addr 0000000000000008 by task cmsg_sender/10411
| [ 1198.178782][    C2]
[ 1198.179106][    C2] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.16.3-0-ga6ed6b701f0a-prebuilt.qemu.org 04/01/2014
[ 1198.179458][    C2] Call Trace:
[ 1198.179582][    C2]  <IRQ>
[ 1198.179662][ C2] dump_stack_lvl (lib/dump_stack.c:117) 
[ 1198.179827][ C2] kasan_report (mm/kasan/report.c:603) 
[ 1198.179947][ C2] ? sock_def_write_space_wfree (./arch/x86/include/asm/bitops.h:206 ./arch/x86/include/asm/bitops.h:238 ./include/asm-generic/bitops/instrumented-non-atomic.h:142 net/core/sock.c:3397) 
[ 1198.180156][ C2] kasan_check_range (mm/kasan/generic.c:183 mm/kasan/generic.c:189) 
[ 1198.180315][ C2] sock_def_write_space_wfree (./arch/x86/include/asm/bitops.h:206 ./arch/x86/include/asm/bitops.h:238 ./include/asm-generic/bitops/instrumented-non-atomic.h:142 net/core/sock.c:3397) 
[ 1198.180477][ C2] sock_wfree (./include/linux/rcupdate.h:810 net/core/sock.c:2471) 
[ 1198.180597][ C2] skb_release_head_state (net/core/skbuff.c:1162 (discriminator 3)) 
[ 1198.180761][ C2] consume_skb (net/core/skbuff.c:1174 net/core/skbuff.c:1189 net/core/skbuff.c:1405 net/core/skbuff.c:1399) 
[ 1198.180879][ C2] dummy_xmit (drivers/net/dummy.c:66) 
[ 1198.180999][ C2] ? trace_net_dev_start_xmit (./include/trace/events/net.h:14 (discriminator 52)) 
[ 1198.181157][ C2] dev_hard_start_xmit (./include/linux/netdevice.h:4875 ./include/linux/netdevice.h:4889 net/core/dev.c:3563 net/core/dev.c:3579) 
[ 1198.181320][ C2] sch_direct_xmit (net/sched/sch_generic.c:343) 
[ 1198.181488][ C2] ? __pfx_sch_direct_xmit (net/sched/sch_generic.c:318) 
[ 1198.181658][ C2] __qdisc_run (net/sched/sch_generic.c:416) 
[ 1198.181817][ C2] ? __pfx_lock_acquire.part.0 (kernel/locking/lockdep.c:5719) 
[ 1198.181975][ C2] ? __pfx___qdisc_run (net/sched/sch_generic.c:412) 
[ 1198.182136][ C2] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:115 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) 
[ 1198.182288][ C2] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) 
[ 1198.182445][ C2] ? lock_acquire (kernel/locking/lockdep.c:5727) 
[ 1198.182604][ C2] ? net_tx_action (./include/linux/spinlock.h:352 net/core/dev.c:5250) 
[ 1198.182762][ C2] net_tx_action (./include/net/sch_generic.h:217 ./include/net/pkt_sched.h:128 ./include/net/pkt_sched.h:124 net/core/dev.c:5266) 
[ 1198.182921][ C2] __do_softirq (kernel/softirq.c:554) 
[ 1198.183077][ C2] irq_exit_rcu (kernel/softirq.c:428 kernel/softirq.c:633 kernel/softirq.c:645) 
[ 1198.183197][ C2] sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1043 arch/x86/kernel/apic/apic.c:1043) 
[ 1198.183354][    C2]  </IRQ>
[ 1198.183438][    C2]  <TASK>
[ 1198.183517][ C2] asm_sysvec_apic_timer_interrupt (./arch/x86/include/asm/idtentry.h:702) 
[ 1198.183711][ C2] RIP: 0010:lock_acquire.part.0 (kernel/locking/lockdep.c:5719) 
[ 1198.183909][ C2] Code: 90 90 90 90 90 90 90 90 90 41 54 49 89 fc 48 bf 00 00 00 00 00 fc ff df 55 53 48 81 ec b8 00 00 00 48 c7 44 24 18 b3 8a b5 41 <48> 8d 5c 24 18 48 c7 44 24 20 da 68 66 b5 48 c1 eb 03 48 c7 44 24
All code
========
   0:	90                   	nop
   1:	90                   	nop
   2:	90                   	nop
   3:	90                   	nop
   4:	90                   	nop
   5:	90                   	nop
   6:	90                   	nop
   7:	90                   	nop
   8:	90                   	nop
   9:	41 54                	push   %r12
   b:	49 89 fc             	mov    %rdi,%r12
   e:	48 bf 00 00 00 00 00 	movabs $0xdffffc0000000000,%rdi
  15:	fc ff df 
  18:	55                   	push   %rbp
  19:	53                   	push   %rbx
  1a:	48 81 ec b8 00 00 00 	sub    $0xb8,%rsp
  21:	48 c7 44 24 18 b3 8a 	movq   $0x41b58ab3,0x18(%rsp)
  28:	b5 41 
  2a:*	48 8d 5c 24 18       	lea    0x18(%rsp),%rbx		<-- trapping instruction
  2f:	48 c7 44 24 20 da 68 	movq   $0xffffffffb56668da,0x20(%rsp)
  36:	66 b5 
  38:	48 c1 eb 03          	shr    $0x3,%rbx
  3c:	48                   	rex.W
  3d:	c7                   	.byte 0xc7
  3e:	44                   	rex.R
  3f:	24                   	.byte 0x24

Code starting with the faulting instruction
===========================================
   0:	48 8d 5c 24 18       	lea    0x18(%rsp),%rbx
   5:	48 c7 44 24 20 da 68 	movq   $0xffffffffb56668da,0x20(%rsp)
   c:	66 b5 
   e:	48 c1 eb 03          	shr    $0x3,%rbx
  12:	48                   	rex.W
  13:	c7                   	.byte 0xc7
  14:	44                   	rex.R
  15:	24                   	.byte 0x24
[ 1198.184458][    C2] RSP: 0018:ffffc9000125f730 EFLAGS: 00000286
[ 1198.184654][    C2] RAX: 0000000000000001 RBX: ffffffffb5bee200 RCX: 0000000000000002
[ 1198.184888][    C2] RDX: 0000000000000000 RSI: 0000000000000000 RDI: dffffc0000000000
[ 1198.185117][    C2] RBP: 00007f4f3afdda8d R08: 0000000000000000 R09: 0000000000000000
[ 1198.185352][    C2] R10: ffffffffb6595f57 R11: ffffc9000125f8c1 R12: ffffffffb5b663a0
[ 1198.185583][    C2] R13: 0000000000000000 R14: ffff888001a6c5c0 R15: 0000000000000000
[ 1198.185822][ C2] ? get_reg (arch/x86/kernel/unwind_orc.c:456 (discriminator 2)) 
[ 1198.185941][ C2] ? trace_lock_acquire (./include/trace/events/lock.h:24 (discriminator 52)) 
[ 1198.186100][ C2] ? __is_insn_slot_addr (./include/linux/rcupdate.h:329 ./include/linux/rcupdate.h:781 kernel/kprobes.c:301) 
[ 1198.186255][ C2] ? lock_acquire (kernel/locking/lockdep.c:5727) 
[ 1198.186422][ C2] ? __is_insn_slot_addr (./include/linux/rcupdate.h:329 ./include/linux/rcupdate.h:781 kernel/kprobes.c:301) 
[ 1198.186575][ C2] __is_insn_slot_addr (./include/linux/rcupdate.h:782 kernel/kprobes.c:301) 
[ 1198.186728][ C2] ? __is_insn_slot_addr (./include/linux/rcupdate.h:329 ./include/linux/rcupdate.h:781 kernel/kprobes.c:301) 
[ 1198.186879][ C2] kernel_text_address (kernel/extable.c:123 kernel/extable.c:94) 
[ 1198.187036][ C2] __kernel_text_address (kernel/extable.c:79) 
[ 1198.187189][ C2] unwind_get_return_address (arch/x86/kernel/unwind_orc.c:369 arch/x86/kernel/unwind_orc.c:364) 
[ 1198.187339][ C2] ? __pfx_stack_trace_consume_entry (kernel/stacktrace.c:83) 
[ 1198.187536][ C2] arch_stack_walk (arch/x86/kernel/stacktrace.c:26) 
[ 1198.187715][ C2] stack_trace_save (kernel/stacktrace.c:123) 
[ 1198.187870][ C2] ? __pfx_stack_trace_save (kernel/stacktrace.c:114) 
[ 1198.188027][ C2] kasan_save_stack (mm/kasan/common.c:48) 
[ 1198.188185][ C2] ? kasan_save_stack (mm/kasan/common.c:48) 
[ 1198.188338][ C2] ? kasan_save_track (./arch/x86/include/asm/current.h:49 mm/kasan/common.c:60 mm/kasan/common.c:69) 
[ 1198.188492][ C2] ? kasan_save_free_info (mm/kasan/generic.c:582) 
[ 1198.188646][ C2] ? __kasan_slab_free (mm/kasan/common.c:274) 
[ 1198.188803][ C2] ? kmem_cache_free (mm/slub.c:4280 mm/slub.c:4344) 
[ 1198.188966][ C2] ? exit_mmap (mm/mmap.c:3293) 
[ 1198.189123][ C2] ? __mmput (kernel/fork.c:1412 (discriminator 2) kernel/fork.c:1347 (discriminator 2)) 
[ 1198.189240][ C2] ? exit_mm (kernel/exit.c:570) 
[ 1198.189359][ C2] ? do_exit (kernel/exit.c:868) 
[ 1198.189476][ C2] ? do_group_exit (kernel/exit.c:1008) 
[ 1198.189630][ C2] ? __x64_sys_exit_group (kernel/exit.c:1036) 
[ 1198.189783][ C2] ? do_syscall_64 (arch/x86/entry/common.c:52 arch/x86/entry/common.c:83) 
[ 1198.189938][ C2] ? entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:129) 
[ 1198.190139][ C2] ? hlock_class (./arch/x86/include/asm/bitops.h:227 ./arch/x86/include/asm/bitops.h:239 ./include/asm-generic/bitops/instrumented-non-atomic.h:142 kernel/locking/lockdep.c:228) 
[ 1198.190296][ C2] ? mark_lock (kernel/locking/lockdep.c:4656 (discriminator 3)) 
[ 1198.190413][ C2] ? mark_held_locks (kernel/locking/lockdep.c:4274) 
[ 1198.190567][ C2] ? lockdep_hardirqs_on_prepare.part.0 (kernel/locking/lockdep.c:4300 kernel/locking/lockdep.c:4359) 
[ 1198.190760][ C2] ? __debug_check_no_obj_freed (lib/debugobjects.c:1000) 
[ 1198.190956][ C2] ? __pfx___debug_check_no_obj_freed (lib/debugobjects.c:960) 
[ 1198.191156][ C2] ? mark_held_locks (kernel/locking/lockdep.c:4274) 
[ 1198.191312][ C2] ? lockdep_hardirqs_on_prepare.part.0 (kernel/locking/lockdep.c:4300 kernel/locking/lockdep.c:4359) 
[ 1198.191512][ C2] ? exit_mmap (mm/mmap.c:3293) 
[ 1198.191666][ C2] kasan_save_track (./arch/x86/include/asm/current.h:49 mm/kasan/common.c:60 mm/kasan/common.c:69) 
[ 1198.191821][ C2] kasan_save_free_info (mm/kasan/generic.c:582) 
[ 1198.191973][ C2] __kasan_slab_free (mm/kasan/common.c:274) 
[ 1198.192129][ C2] kmem_cache_free (mm/slub.c:4280 mm/slub.c:4344) 
[ 1198.192283][ C2] ? exit_mmap (mm/mmap.c:3293) 
[ 1198.192441][ C2] exit_mmap (mm/mmap.c:3293) 
[ 1198.192557][ C2] ? __pfx_exit_mmap (mm/mmap.c:3241) 
[ 1198.192716][ C2] ? __mutex_unlock_slowpath (./arch/x86/include/asm/atomic64_64.h:109 ./include/linux/atomic/atomic-arch-fallback.h:4329 ./include/linux/atomic/atomic-long.h:1506 ./include/linux/atomic/atomic-instrumented.h:4481 kernel/locking/mutex.c:929) 
[ 1198.192882][ C2] __mmput (kernel/fork.c:1412 (discriminator 2) kernel/fork.c:1347 (discriminator 2)) 
[ 1198.193000][ C2] exit_mm (kernel/exit.c:570) 
[ 1198.193115][ C2] do_exit (kernel/exit.c:868) 
[ 1198.193230][ C2] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:115 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) 
[ 1198.193386][ C2] ? __pfx_do_exit (kernel/exit.c:819) 
[ 1198.193537][ C2] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) 
[ 1198.193693][ C2] do_group_exit (kernel/exit.c:1008) 
[ 1198.193846][ C2] __x64_sys_exit_group (kernel/exit.c:1036) 
[ 1198.193997][ C2] do_syscall_64 (arch/x86/entry/common.c:52 arch/x86/entry/common.c:83) 
[ 1198.194157][ C2] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:129) 
[ 1198.194349][    C2] RIP: 0033:0x7f4f3afdda8d
[ 1198.194506][ C2] Code: Unable to access opcode bytes at 0x7f4f3afdda63.

Code starting with the faulting instruction
===========================================
[ 1198.194705][    C2] RSP: 002b:00007fff5a879da8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 1198.194937][    C2] RAX: ffffffffffffffda RBX: 00007f4f3b0ba9c0 RCX: 00007f4f3afdda8d
[ 1198.195165][    C2] RDX: 00000000000000e7 RSI: ffffffffffffff80 RDI: 0000000000000000
[ 1198.195397][    C2] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000028
[ 1198.195626][    C2] R10: 00007fff5a879c30 R11: 0000000000000246 R12: 00007f4f3b0ba9c0
[ 1198.195853][    C2] R13: 0000000000000000 R14: 00007f4f3b0bfec8 R15: 00007f4f3b0bfee0
| [ 1198.196304][    C2] ==================================================================
| [ 1198.196548][    C2] Disabling lock debugging due to kernel taint
| [ 1198.196781][    C2] general protection fault, probably for non-canonical address 0xdffffc0000000001: 0000 [#1] PREEMPT SMP KASAN NOPTI
| [ 1198.197214][    C2] KASAN: null-ptr-deref in range [0x0000000000000008-0x000000000000000f]
[ 1198.197810][    C2] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.16.3-0-ga6ed6b701f0a-prebuilt.qemu.org 04/01/2014
[ 1198.198162][ C2] RIP: 0010:sock_def_write_space_wfree (./arch/x86/include/asm/bitops.h:206 ./arch/x86/include/asm/bitops.h:238 ./include/asm-generic/bitops/instrumented-non-atomic.h:142 net/core/sock.c:3397) 
[ 1198.198456][ C2] Code: 00 4c 8b bb a0 01 00 00 be 08 00 00 00 4d 8d 77 08 4c 89 f7 e8 e0 0e 8b fe 4c 89 f2 48 b8 00 00 00 00 00 fc ff df 48 c1 ea 03 <80> 3c 02 00 0f 85 fe 00 00 00 49 8b 47 08 a8 04 0f 85 dc fe ff ff
All code
========
   0:	00 4c 8b bb          	add    %cl,-0x45(%rbx,%rcx,4)
   4:	a0 01 00 00 be 08 00 	movabs 0x8be000001,%al
   b:	00 00 
   d:	4d 8d 77 08          	lea    0x8(%r15),%r14
  11:	4c 89 f7             	mov    %r14,%rdi
  14:	e8 e0 0e 8b fe       	call   0xfffffffffe8b0ef9
  19:	4c 89 f2             	mov    %r14,%rdx
  1c:	48 b8 00 00 00 00 00 	movabs $0xdffffc0000000000,%rax
  23:	fc ff df 
  26:	48 c1 ea 03          	shr    $0x3,%rdx
  2a:*	80 3c 02 00          	cmpb   $0x0,(%rdx,%rax,1)		<-- trapping instruction
  2e:	0f 85 fe 00 00 00    	jne    0x132
  34:	49 8b 47 08          	mov    0x8(%r15),%rax
  38:	a8 04                	test   $0x4,%al
  3a:	0f 85 dc fe ff ff    	jne    0xffffffffffffff1c

Code starting with the faulting instruction
===========================================
   0:	80 3c 02 00          	cmpb   $0x0,(%rdx,%rax,1)
   4:	0f 85 fe 00 00 00    	jne    0x108
   a:	49 8b 47 08          	mov    0x8(%r15),%rax
   e:	a8 04                	test   $0x4,%al
  10:	0f 85 dc fe ff ff    	jne    0xfffffffffffffef2
[ 1198.198991][    C2] RSP: 0018:ffffc90000230c30 EFLAGS: 00010202
[ 1198.199289][    C2] RAX: dffffc0000000000 RBX: ffff88800a5199c0 RCX: ffffffffb1f9564a
[ 1198.199516][    C2] RDX: 0000000000000001 RSI: 0000000000000008 RDI: ffffffffb74fda00
[ 1198.199743][    C2] RBP: ffff88800a519a20 R08: 0000000000000001 R09: fffffbfff6e9fb40
[ 1198.200068][    C2] R10: ffffffffb74fda07 R11: 205d324320202020 R12: 0000000000000000
[ 1198.200295][    C2] R13: ffff88800a519b40 R14: 0000000000000008 R15: 0000000000000000
[ 1198.200528][    C2] FS:  0000000000000000(0000) GS:ffff88802f700000(0000) knlGS:0000000000000000
[ 1198.200982][    C2] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1198.201177][    C2] CR2: 00007f4f3b0d1000 CR3: 0000000039b38005 CR4: 0000000000770ef0
[ 1198.201436][    C2] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1198.201764][    C2] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1198.201993][    C2] PKRU: 55555554
[ 1198.202107][    C2] Call Trace:
[ 1198.202319][    C2]  <IRQ>
[ 1198.202401][ C2] ? die_addr (arch/x86/kernel/dumpstack.c:421 arch/x86/kernel/dumpstack.c:460) 
[ 1198.202520][ C2] ? exc_general_protection (arch/x86/kernel/traps.c:702 arch/x86/kernel/traps.c:644) 
[ 1198.202674][ C2] ? asm_exc_general_protection (./arch/x86/include/asm/idtentry.h:617) 
[ 1198.202825][ C2] ? add_taint (./arch/x86/include/asm/bitops.h:60 ./include/asm-generic/bitops/instrumented-atomic.h:29 kernel/panic.c:555) 
[ 1198.202940][ C2] ? sock_def_write_space_wfree (./arch/x86/include/asm/bitops.h:206 ./arch/x86/include/asm/bitops.h:238 ./include/asm-generic/bitops/instrumented-non-atomic.h:142 net/core/sock.c:3397) 
[ 1198.203231][ C2] sock_wfree (./include/linux/rcupdate.h:810 net/core/sock.c:2471) 
[ 1198.203347][ C2] skb_release_head_state (net/core/skbuff.c:1162 (discriminator 3)) 
[ 1198.203497][ C2] consume_skb (net/core/skbuff.c:1174 net/core/skbuff.c:1189 net/core/skbuff.c:1405 net/core/skbuff.c:1399) 
[ 1198.203610][ C2] dummy_xmit (drivers/net/dummy.c:66) 
[ 1198.203821][ C2] ? trace_net_dev_start_xmit (./include/trace/events/net.h:14 (discriminator 52)) 
[ 1198.203977][ C2] dev_hard_start_xmit (./include/linux/netdevice.h:4875 ./include/linux/netdevice.h:4889 net/core/dev.c:3563 net/core/dev.c:3579) 
[ 1198.204130][ C2] sch_direct_xmit (net/sched/sch_generic.c:343) 
[ 1198.204288][ C2] ? __pfx_sch_direct_xmit (net/sched/sch_generic.c:318) 
[ 1198.204447][ C2] __qdisc_run (net/sched/sch_generic.c:416) 
[ 1198.204695][ C2] ? __pfx_lock_acquire.part.0 (kernel/locking/lockdep.c:5719) 
[ 1198.204847][ C2] ? __pfx___qdisc_run (net/sched/sch_generic.c:412) 
[ 1198.204997][ C2] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:115 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) 
[ 1198.205147][ C2] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) 
[ 1198.205392][ C2] ? lock_acquire (kernel/locking/lockdep.c:5727) 
[ 1198.205544][ C2] ? net_tx_action (./include/linux/spinlock.h:352 net/core/dev.c:5250) 
[ 1198.205696][ C2] net_tx_action (./include/net/sch_generic.h:217 ./include/net/pkt_sched.h:128 ./include/net/pkt_sched.h:124 net/core/dev.c:5266) 
[ 1198.205855][ C2] __do_softirq (kernel/softirq.c:554) 
[ 1198.206103][ C2] irq_exit_rcu (kernel/softirq.c:428 kernel/softirq.c:633 kernel/softirq.c:645) 
[ 1198.206217][ C2] sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1043 arch/x86/kernel/apic/apic.c:1043) 
[ 1198.206370][    C2]  </IRQ>
[ 1198.206449][    C2]  <TASK>
[ 1198.206527][ C2] asm_sysvec_apic_timer_interrupt (./arch/x86/include/asm/idtentry.h:702) 
[ 1198.206808][ C2] RIP: 0010:lock_acquire.part.0 (kernel/locking/lockdep.c:5719) 
[ 1198.207001][ C2] Code: 90 90 90 90 90 90 90 90 90 41 54 49 89 fc 48 bf 00 00 00 00 00 fc ff df 55 53 48 81 ec b8 00 00 00 48 c7 44 24 18 b3 8a b5 41 <48> 8d 5c 24 18 48 c7 44 24 20 da 68 66 b5 48 c1 eb 03 48 c7 44 24
All code
========
   0:	90                   	nop
   1:	90                   	nop
   2:	90                   	nop
   3:	90                   	nop
   4:	90                   	nop
   5:	90                   	nop
   6:	90                   	nop
   7:	90                   	nop
   8:	90                   	nop
   9:	41 54                	push   %r12
   b:	49 89 fc             	mov    %rdi,%r12
   e:	48 bf 00 00 00 00 00 	movabs $0xdffffc0000000000,%rdi
  15:	fc ff df 
  18:	55                   	push   %rbp
  19:	53                   	push   %rbx
  1a:	48 81 ec b8 00 00 00 	sub    $0xb8,%rsp
  21:	48 c7 44 24 18 b3 8a 	movq   $0x41b58ab3,0x18(%rsp)
  28:	b5 41 
  2a:*	48 8d 5c 24 18       	lea    0x18(%rsp),%rbx		<-- trapping instruction
  2f:	48 c7 44 24 20 da 68 	movq   $0xffffffffb56668da,0x20(%rsp)
  36:	66 b5 
  38:	48 c1 eb 03          	shr    $0x3,%rbx
  3c:	48                   	rex.W
  3d:	c7                   	.byte 0xc7
  3e:	44                   	rex.R
  3f:	24                   	.byte 0x24

Code starting with the faulting instruction
===========================================
   0:	48 8d 5c 24 18       	lea    0x18(%rsp),%rbx
   5:	48 c7 44 24 20 da 68 	movq   $0xffffffffb56668da,0x20(%rsp)
   c:	66 b5 
   e:	48 c1 eb 03          	shr    $0x3,%rbx
  12:	48                   	rex.W
  13:	c7                   	.byte 0xc7
  14:	44                   	rex.R
  15:	24                   	.byte 0x24
[ 1198.207653][    C2] RSP: 0018:ffffc9000125f730 EFLAGS: 00000286
[ 1198.207853][    C2] RAX: 0000000000000001 RBX: ffffffffb5bee200 RCX: 0000000000000002
[ 1198.208081][    C2] RDX: 0000000000000000 RSI: 0000000000000000 RDI: dffffc0000000000
[ 1198.208404][    C2] RBP: 00007f4f3afdda8d R08: 0000000000000000 R09: 0000000000000000
[ 1198.208636][    C2] R10: ffffffffb6595f57 R11: ffffc9000125f8c1 R12: ffffffffb5b663a0
[ 1198.208864][    C2] R13: 0000000000000000 R14: ffff888001a6c5c0 R15: 0000000000000000
[ 1198.209194][ C2] ? get_reg (arch/x86/kernel/unwind_orc.c:456 (discriminator 2)) 
[ 1198.209311][ C2] ? trace_lock_acquire (./include/trace/events/lock.h:24 (discriminator 52)) 
[ 1198.209465][ C2] ? __is_insn_slot_addr (./include/linux/rcupdate.h:329 ./include/linux/rcupdate.h:781 kernel/kprobes.c:301) 
[ 1198.209614][ C2] ? lock_acquire (kernel/locking/lockdep.c:5727) 
[ 1198.209867][ C2] ? __is_insn_slot_addr (./include/linux/rcupdate.h:329 ./include/linux/rcupdate.h:781 kernel/kprobes.c:301) 
[ 1198.210018][ C2] __is_insn_slot_addr (./include/linux/rcupdate.h:782 kernel/kprobes.c:301) 
[ 1198.210166][ C2] ? __is_insn_slot_addr (./include/linux/rcupdate.h:329 ./include/linux/rcupdate.h:781 kernel/kprobes.c:301) 
[ 1198.210317][ C2] kernel_text_address (kernel/extable.c:123 kernel/extable.c:94) 
[ 1198.210565][ C2] __kernel_text_address (kernel/extable.c:79) 
[ 1198.210716][ C2] unwind_get_return_address (arch/x86/kernel/unwind_orc.c:369 arch/x86/kernel/unwind_orc.c:364) 
[ 1198.210867][ C2] ? __pfx_stack_trace_consume_entry (kernel/stacktrace.c:83) 
[ 1198.211055][ C2] arch_stack_walk (arch/x86/kernel/stacktrace.c:26) 
[ 1198.211309][ C2] stack_trace_save (kernel/stacktrace.c:123) 
[ 1198.211457][ C2] ? __pfx_stack_trace_save (kernel/stacktrace.c:114) 
[ 1198.211609][ C2] kasan_save_stack (mm/kasan/common.c:48) 
[ 1198.211761][ C2] ? kasan_save_stack (mm/kasan/common.c:48) 
[ 1198.211910][ C2] ? kasan_save_track (./arch/x86/include/asm/current.h:49 mm/kasan/common.c:60 mm/kasan/common.c:69) 
[ 1198.212156][ C2] ? kasan_save_free_info (mm/kasan/generic.c:582) 
[ 1198.212304][ C2] ? __kasan_slab_free (mm/kasan/common.c:274) 
[ 1198.212456][ C2] ? kmem_cache_free (mm/slub.c:4280 mm/slub.c:4344) 
[ 1198.212607][ C2] ? exit_mmap (mm/mmap.c:3293) 
[ 1198.212955][ C2] ? __mmput (kernel/fork.c:1412 (discriminator 2) kernel/fork.c:1347 (discriminator 2)) 
[ 1198.213068][ C2] ? exit_mm (kernel/exit.c:570) 
[ 1198.213181][ C2] ? do_exit (kernel/exit.c:868) 
[ 1198.213295][ C2] ? do_group_exit (kernel/exit.c:1008) 
[ 1198.213443][ C2] ? __x64_sys_exit_group (kernel/exit.c:1036) 
[ 1198.213687][ C2] ? do_syscall_64 (arch/x86/entry/common.c:52 arch/x86/entry/common.c:83) 
[ 1198.213837][ C2] ? entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:129) 
[ 1198.214023][ C2] ? hlock_class (./arch/x86/include/asm/bitops.h:227 ./arch/x86/include/asm/bitops.h:239 ./include/asm-generic/bitops/instrumented-non-atomic.h:142 kernel/locking/lockdep.c:228) 
[ 1198.214179][ C2] ? mark_lock (kernel/locking/lockdep.c:4656 (discriminator 3)) 
[ 1198.214416][ C2] ? mark_held_locks (kernel/locking/lockdep.c:4274) 
[ 1198.214570][ C2] ? lockdep_hardirqs_on_prepare.part.0 (kernel/locking/lockdep.c:4300 kernel/locking/lockdep.c:4359) 
[ 1198.214757][ C2] ? __debug_check_no_obj_freed (lib/debugobjects.c:1000) 
[ 1198.214945][ C2] ? __pfx___debug_check_no_obj_freed (lib/debugobjects.c:960) 
[ 1198.215397][ C2] ? mark_held_locks (kernel/locking/lockdep.c:4274) 
[ 1198.215550][ C2] ? lockdep_hardirqs_on_prepare.part.0 (kernel/locking/lockdep.c:4300 kernel/locking/lockdep.c:4359) 
[ 1198.215738][ C2] ? exit_mmap (mm/mmap.c:3293) 
[ 1198.215894][ C2] kasan_save_track (./arch/x86/include/asm/current.h:49 mm/kasan/common.c:60 mm/kasan/common.c:69) 
[ 1198.216140][ C2] kasan_save_free_info (mm/kasan/generic.c:582) 
[ 1198.216288][ C2] __kasan_slab_free (mm/kasan/common.c:274) 
[ 1198.216440][ C2] kmem_cache_free (mm/slub.c:4280 mm/slub.c:4344) 
[ 1198.216590][ C2] ? exit_mmap (mm/mmap.c:3293) 
[ 1198.216836][ C2] exit_mmap (mm/mmap.c:3293) 
[ 1198.216951][ C2] ? __pfx_exit_mmap (mm/mmap.c:3241) 
[ 1198.217109][ C2] ? __mutex_unlock_slowpath (./arch/x86/include/asm/atomic64_64.h:109 ./include/linux/atomic/atomic-arch-fallback.h:4329 ./include/linux/atomic/atomic-long.h:1506 ./include/linux/atomic/atomic-instrumented.h:4481 kernel/locking/mutex.c:929) 
[ 1198.217266][ C2] __mmput (kernel/fork.c:1412 (discriminator 2) kernel/fork.c:1347 (discriminator 2)) 
[ 1198.217388][ C2] exit_mm (kernel/exit.c:570) 
[ 1198.217607][ C2] do_exit (kernel/exit.c:868) 
[ 1198.217729][ C2] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:115 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) 
[ 1198.217885][ C2] ? __pfx_do_exit (kernel/exit.c:819) 
[ 1198.218038][ C2] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) 
[ 1198.218287][ C2] do_group_exit (kernel/exit.c:1008) 
[ 1198.218438][ C2] __x64_sys_exit_group (kernel/exit.c:1036) 
[ 1198.218590][ C2] do_syscall_64 (arch/x86/entry/common.c:52 arch/x86/entry/common.c:83) 
[ 1198.218747][ C2] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:129) 
[ 1198.219034][    C2] RIP: 0033:0x7f4f3afdda8d
[ 1198.219189][ C2] Code: Unable to access opcode bytes at 0x7f4f3afdda63.

Code starting with the faulting instruction
===========================================
[ 1198.219382][    C2] RSP: 002b:00007fff5a879da8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 1198.219609][    C2] RAX: ffffffffffffffda RBX: 00007f4f3b0ba9c0 RCX: 00007f4f3afdda8d
[ 1198.219933][    C2] RDX: 00000000000000e7 RSI: ffffffffffffff80 RDI: 0000000000000000
[ 1198.220160][    C2] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000028
[ 1198.220384][    C2] R10: 00007fff5a879c30 R11: 0000000000000246 R12: 00007f4f3b0ba9c0


Finger prints:
dump_stack_lvl:kasan_report:kasan_check_range:sock_def_write_space_wfree
sock_def_write_space_wfree:sock_wfree:skb_release_head_state:consume_skb