======================================
| [ 1312.170442][ C2] #3: ffffffffaef79c60 (rcu_read_lock){....}-{1:3}, at: unwind_next_frame (./include/linux/rcupdate.h:331 ./include/linux/rcupdate.h:841 ./include/linux/rcupdate.h:1155 arch/x86/kernel/unwind_orc.c:479) 
| [ 1312.170871][ C2] #4: ffffc90000218d60 ((&icsk->icsk_retransmit_timer)){+.-.}-{0:0}, at: call_timer_fn (./include/linux/lockdep.h:31 kernel/time/timer.c:1737) 
| [ 1312.171396][    C2]
| [ 1312.171396][    C2] stack backtrace:
[ 1312.171706][    C2] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011
[ 1312.171708][    C2] Call Trace:
[ 1312.171710][    C2]  <IRQ>
[ 1312.171712][ C2] dump_stack_lvl (lib/dump_stack.c:123) 
[ 1312.171719][ C2] print_usage_bug.part.0 (kernel/locking/lockdep.c:4048) 
[ 1312.171725][ C2] mark_lock_irq (kernel/locking/lockdep.c:4013 kernel/locking/lockdep.c:4059 kernel/locking/lockdep.c:4270) 
[ 1312.171730][ C2] ? save_trace (kernel/locking/lockdep.c:595) 
[ 1312.171736][ C2] mark_lock (kernel/locking/lockdep.c:4756) 
[ 1312.171739][ C2] mark_usage (kernel/locking/lockdep.c:4645) 
[ 1312.171742][ C2] __lock_acquire (kernel/locking/lockdep.c:5194) 
[ 1312.171745][ C2] ? unwind_next_frame (./include/linux/rcupdate.h:874 ./include/linux/rcupdate.h:1155 arch/x86/kernel/unwind_orc.c:479) 
[ 1312.171749][ C2] ? kasan_save_stack (mm/kasan/common.c:48) 
[ 1312.171754][ C2] lock_acquire.part.0 (kernel/locking/lockdep.c:473 kernel/locking/lockdep.c:5873) 
[ 1312.171758][ C2] ? xa_set_mark (lib/xarray.c:2076 lib/xarray.c:2146) 
[ 1312.171761][ C2] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) 
[ 1312.171766][ C2] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) 
[ 1312.171768][ C2] ? xa_set_mark (lib/xarray.c:2076 lib/xarray.c:2146) 
[ 1312.171772][ C2] _raw_spin_lock (./include/linux/spinlock_api_smp.h:134 kernel/locking/spinlock.c:154) 
[ 1312.171775][ C2] ? xa_set_mark (lib/xarray.c:2076 lib/xarray.c:2146) 
[ 1312.171778][ C2] xa_set_mark (lib/xarray.c:2076 lib/xarray.c:2146) 
[ 1312.171780][ C2] ? __pfx_xa_set_mark (lib/xarray.c:2144) 
[ 1312.171783][ C2] ? __lock_acquire (kernel/locking/lockdep.c:5240) 
[ 1312.171787][ C2] ? find_held_lock (kernel/locking/lockdep.c:5353) 
[ 1312.171792][ C2] ref_tracker_dir_exit (lib/ref_tracker.c:54 lib/ref_tracker.c:223) 
[ 1312.171797][ C2] ? trace_kfree (./include/trace/events/kmem.h:94 (discriminator 21)) 
[ 1312.171801][ C2] ? kfree (mm/slub.c:4831) 
[ 1312.171804][ C2] ? _raw_spin_unlock_irqrestore (./include/linux/spinlock_api_smp.h:151 kernel/locking/spinlock.c:194) 
[ 1312.171807][ C2] ? __pfx_ref_tracker_dir_exit (lib/ref_tracker.c:213) 
[ 1312.171811][ C2] ? ref_tracker_free (lib/ref_tracker.c:281) 
[ 1312.171814][ C2] ? __lock_acquire (kernel/locking/lockdep.c:5240) 
[ 1312.171817][ C2] ? __pfx_ref_tracker_free (lib/ref_tracker.c:281) 
[ 1312.171820][ C2] ? __sk_destruct (./include/linux/instrumented.h:96 ./include/linux/atomic/atomic-instrumented.h:400 ./include/linux/refcount.h:389 ./include/linux/refcount.h:432 ./include/linux/refcount.h:450 ./include/net/net_namespace.h:287 ./include/net/net_namespace.h:390 net/core/sock.c:2368) 
[ 1312.171825][ C2] ? call_timer_fn (kernel/time/timer.c:1747) 
[ 1312.171828][ C2] ? __run_timers (kernel/time/timer.c:1799 kernel/time/timer.c:2372) 
[ 1312.171831][ C2] ? run_timer_base (kernel/time/timer.c:2385 kernel/time/timer.c:2376 kernel/time/timer.c:2393) 
[ 1312.171835][ C2] __put_net (./include/linux/llist.h:238 ./include/linux/llist.h:265 net/core/net_namespace.c:732) 
[ 1312.171841][ C2] ? arch_stack_walk (arch/x86/kernel/stacktrace.c:24) 
[ 1312.171846][ C2] ? __pfx___put_net (net/core/net_namespace.c:729) 
[ 1312.171850][ C2] ? bpf_sk_storage_free (./include/linux/rcupdate.h:341 ./include/linux/rcupdate.h:871 net/core/bpf_sk_storage.c:61) 
[ 1312.171856][ C2] __sk_destruct (./include/net/net_namespace.h:288 ./include/net/net_namespace.h:390 net/core/sock.c:2368) 
[ 1312.171859][ C2] ? __pfx_tcp_write_timer (net/ipv4/tcp_timer.c:727) 
[ 1312.171865][ C2] call_timer_fn (kernel/time/timer.c:1747) 
[ 1312.171867][ C2] ? call_timer_fn (./include/linux/lockdep.h:31 kernel/time/timer.c:1737) 
[ 1312.171869][ C2] ? call_timer_fn (./include/linux/lockdep.h:31 kernel/time/timer.c:1737) 
[ 1312.171872][ C2] ? __pfx_call_timer_fn (kernel/time/timer.c:1724) 
[ 1312.171877][ C2] ? mark_held_locks (kernel/locking/lockdep.c:4328) 
[ 1312.171881][ C2] __run_timers (kernel/time/timer.c:1799 kernel/time/timer.c:2372) 
[ 1312.171884][ C2] ? __pfx_tcp_write_timer (net/ipv4/tcp_timer.c:727) 
[ 1312.171889][ C2] ? __pfx___run_timers (kernel/time/timer.c:2343) 
[ 1312.171893][ C2] ? do_raw_spin_lock (./arch/x86/include/asm/atomic.h:107 ./include/linux/atomic/atomic-arch-fallback.h:2170 ./include/linux/atomic/atomic-instrumented.h:1302 ./include/asm-generic/qspinlock.h:111 kernel/locking/spinlock_debug.c:116) 
[ 1312.171896][ C2] ? __pfx_do_raw_spin_lock (kernel/locking/spinlock_debug.c:114) 
[ 1312.171899][ C2] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) 
[ 1312.171902][ C2] ? run_timer_base (kernel/time/timer.c:2384 kernel/time/timer.c:2376 kernel/time/timer.c:2393) 
[ 1312.171906][ C2] run_timer_base (kernel/time/timer.c:2385 kernel/time/timer.c:2376 kernel/time/timer.c:2393) 
[ 1312.171909][ C2] run_timer_softirq (kernel/time/timer.c:2404) 
[ 1312.171911][ C2] handle_softirqs (kernel/softirq.c:580) 
[ 1312.171918][ C2] __irq_exit_rcu (kernel/softirq.c:614 kernel/softirq.c:453 kernel/softirq.c:680) 
[ 1312.171920][ C2] irq_exit_rcu (kernel/softirq.c:698) 
[ 1312.171923][ C2] sysvec_apic_timer_interrupt (arch/x86/kernel/apic/apic.c:1050 arch/x86/kernel/apic/apic.c:1050) 
[ 1312.171928][    C2]  </IRQ>
[ 1312.171929][    C2]  <TASK>
[ 1312.171930][ C2] asm_sysvec_apic_timer_interrupt (./arch/x86/include/asm/idtentry.h:702) 
[ 1312.171934][ C2] RIP: 0010:lock_acquire.part.0 (kernel/locking/lockdep.c:5875) 
[ 1312.171938][ C2] Code: ff ff ff 65 0f c1 05 8d 6c 3a 05 83 f8 01 0f 85 3e 01 00 00 9c 58 f6 c4 02 0f 85 29 01 00 00 48 85 db 74 01 fb 48 8b 44 24 30 <65> 48 2b 05 be 2b 3a 05 0f 85 3a 01 00 00 48 83 c4 38 5b 5d 41 5c
All code
========
   0:	ff                   	(bad)
   1:	ff                   	(bad)
   2:	ff 65 0f             	jmp    *0xf(%rbp)
   5:	c1 05 8d 6c 3a 05 83 	roll   $0x83,0x53a6c8d(%rip)        # 0x53a6c99
   c:	f8                   	clc
   d:	01 0f                	add    %ecx,(%rdi)
   f:	85 3e                	test   %edi,(%rsi)
  11:	01 00                	add    %eax,(%rax)
  13:	00 9c 58 f6 c4 02 0f 	add    %bl,0xf02c4f6(%rax,%rbx,2)
  1a:	85 29                	test   %ebp,(%rcx)
  1c:	01 00                	add    %eax,(%rax)
  1e:	00 48 85             	add    %cl,-0x7b(%rax)
  21:	db 74 01 fb          	(bad)  -0x5(%rcx,%rax,1)
  25:	48 8b 44 24 30       	mov    0x30(%rsp),%rax
  2a:*	65 48 2b 05 be 2b 3a 	sub    %gs:0x53a2bbe(%rip),%rax        # 0x53a2bf0		<-- trapping instruction
  31:	05 
  32:	0f 85 3a 01 00 00    	jne    0x172
  38:	48 83 c4 38          	add    $0x38,%rsp
  3c:	5b                   	pop    %rbx
  3d:	5d                   	pop    %rbp
  3e:	41 5c                	pop    %r12

Code starting with the faulting instruction
===========================================
   0:	65 48 2b 05 be 2b 3a 	sub    %gs:0x53a2bbe(%rip),%rax        # 0x53a2bc6
   7:	05 
   8:	0f 85 3a 01 00 00    	jne    0x148
   e:	48 83 c4 38          	add    $0x38,%rsp
  12:	5b                   	pop    %rbx
  13:	5d                   	pop    %rbp
  14:	41 5c                	pop    %r12
[ 1312.171941][    C2] RSP: 0018:ffffc9000411f230 EFLAGS: 00000206
[ 1312.171945][    C2] RAX: 0a5fac97f128f700 RBX: 0000000000000200 RCX: 0000000000000001
[ 1312.171947][    C2] RDX: 0000000000000000 RSI: ffffffffaeaa43c6 RDI: ffffffffae25f220
[ 1312.171949][    C2] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000001
[ 1312.171951][    C2] R10: 0000000000000000 R11: ffffffffaef79c60 R12: 0000000000000002
[ 1312.171952][    C2] R13: 0000000000000000 R14: 0000000000000000 R15: ffffffffaef79c60
[ 1312.171959][ C2] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) 
[ 1312.171962][ C2] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) 
[ 1312.171965][ C2] ? unwind_next_frame (./include/linux/rcupdate.h:331 ./include/linux/rcupdate.h:841 ./include/linux/rcupdate.h:1155 arch/x86/kernel/unwind_orc.c:479) 
[ 1312.171968][ C2] unwind_next_frame (./include/linux/rcupdate.h:842 ./include/linux/rcupdate.h:1155 arch/x86/kernel/unwind_orc.c:479) 
[ 1312.171971][ C2] ? unwind_next_frame (./include/linux/rcupdate.h:331 ./include/linux/rcupdate.h:841 ./include/linux/rcupdate.h:1155 arch/x86/kernel/unwind_orc.c:479) 
[ 1312.171973][ C2] ? entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) 
[ 1312.171978][ C2] ? __pfx_unwind_next_frame (arch/x86/kernel/unwind_orc.c:469) 
[ 1312.171982][ C2] ? entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) 
[ 1312.171984][ C2] ? kernel_text_address (kernel/extable.c:99) 
[ 1312.171988][ C2] ? __pfx_stack_trace_consume_entry (kernel/stacktrace.c:83) 
[ 1312.171993][ C2] arch_stack_walk (arch/x86/kernel/stacktrace.c:24) 
[ 1312.171999][ C2] ? entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) 
[ 1312.172003][ C2] stack_trace_save (kernel/stacktrace.c:123) 
[ 1312.172006][ C2] ? __pfx_stack_trace_save (kernel/stacktrace.c:114) 
[ 1312.172009][ C2] ? rcu_read_lock_any_held (kernel/rcu/update.c:386 kernel/rcu/update.c:380) 
[ 1312.172014][ C2] ? validate_chain (kernel/locking/lockdep.c:3804 kernel/locking/lockdep.c:3824 kernel/locking/lockdep.c:3879) 
[ 1312.172016][ C2] ? rcu_read_lock_any_held (kernel/rcu/update.c:387 kernel/rcu/update.c:380) 
[ 1312.172019][ C2] ? stack_depot_save_flags (lib/stackdepot.c:552 lib/stackdepot.c:619) 
[ 1312.172023][ C2] kasan_save_stack (mm/kasan/common.c:48) 
[ 1312.172026][ C2] ? kasan_save_stack (mm/kasan/common.c:48) 
[ 1312.172028][ C2] ? kasan_record_aux_stack (mm/kasan/generic.c:548) 
[ 1312.172032][ C2] ? __call_rcu_common.constprop.0 (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:127 kernel/rcu/tree.c:3092) 
[ 1312.172036][ C2] ? kmem_cache_free (./include/linux/kmemleak.h:49 mm/slub.c:2306 mm/slub.c:4643 mm/slub.c:4745) 
[ 1312.172039][ C2] ? __put_anon_vma (mm/rmap.c:2757) 
[ 1312.172044][ C2] ? unlink_anon_vmas (./include/linux/rmap.h:117 mm/rmap.c:444) 
[ 1312.172047][ C2] ? free_pgtables (mm/memory.c:403) 
[ 1312.172050][ C2] ? exit_mmap (mm/mmap.c:1297) 
[ 1312.172053][ C2] ? mmput (kernel/fork.c:1189 kernel/fork.c:1123 kernel/fork.c:1144) 
[ 1312.172056][ C2] ? exec_mmap (fs/exec.c:901) 
[ 1312.172059][ C2] ? begin_new_exec (fs/exec.c:1151) 
[ 1312.172063][ C2] ? load_elf_binary (fs/binfmt_elf.c:996) 
[ 1312.172068][ C2] ? exec_binprm (fs/exec.c:1665 fs/exec.c:1697) 
[ 1312.172071][ C2] ? bprm_execve (fs/exec.c:1749 fs/exec.c:1725) 
[ 1312.172074][ C2] ? do_execveat_common.isra.0 (fs/exec.c:1855) 
[ 1312.172077][ C2] ? __x64_sys_execve (fs/exec.c:2000) 
[ 1312.172080][ C2] ? do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) 
[ 1312.172084][ C2] ? entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) 
[ 1312.172088][ C2] ? __lock_acquire (kernel/locking/lockdep.c:5240) 
[ 1312.172093][ C2] ? find_held_lock (kernel/locking/lockdep.c:5353) 
[ 1312.172097][ C2] ? __virt_addr_valid (./include/linux/rcupdate.h:341 ./include/linux/rcupdate.h:953 ./include/linux/mmzone.h:2168 arch/x86/mm/physaddr.c:65) 
[ 1312.172100][ C2] ? __lock_release (kernel/locking/lockdep.c:5539) 
[ 1312.172104][ C2] ? __virt_addr_valid (./include/linux/rcupdate.h:341 ./include/linux/rcupdate.h:953 ./include/linux/mmzone.h:2168 arch/x86/mm/physaddr.c:65) 
[ 1312.172107][ C2] ? __virt_addr_valid (./arch/x86/include/asm/preempt.h:104 ./include/linux/rcupdate.h:955 ./include/linux/mmzone.h:2168 arch/x86/mm/physaddr.c:65) 
[ 1312.172111][ C2] kasan_record_aux_stack (mm/kasan/generic.c:548) 
[ 1312.172115][ C2] ? __pfx_free_object_rcu (mm/kmemleak.c:519) 
[ 1312.172120][ C2] __call_rcu_common.constprop.0 (./arch/x86/include/asm/irqflags.h:26 ./arch/x86/include/asm/irqflags.h:109 ./arch/x86/include/asm/irqflags.h:127 kernel/rcu/tree.c:3092) 
[ 1312.172124][ C2] kmem_cache_free (./include/linux/kmemleak.h:49 mm/slub.c:2306 mm/slub.c:4643 mm/slub.c:4745) 
[ 1312.172127][ C2] ? __put_anon_vma (mm/rmap.c:2757) 
[ 1312.172132][ C2] __put_anon_vma (mm/rmap.c:2757) 
[ 1312.172137][ C2] unlink_anon_vmas (./include/linux/rmap.h:117 mm/rmap.c:444) 
[ 1312.172147][ C2] free_pgtables (mm/memory.c:403) 
[ 1312.172155][ C2] ? __pfx_free_pgtables (mm/memory.c:358) 
[ 1312.172158][ C2] ? lock_acquire (./include/trace/events/lock.h:24 kernel/locking/lockdep.c:5834) 
[ 1312.172162][ C2] ? exit_mmap (./include/linux/seqlock.h:431 ./include/linux/mmap_lock.h:87 ./include/linux/mmap_lock.h:357 mm/mmap.c:1292) 
[ 1312.172166][ C2] ? down_write (./arch/x86/include/asm/preempt.h:104 kernel/locking/rwsem.c:1307 kernel/locking/rwsem.c:1313 kernel/locking/rwsem.c:1578) 
[ 1312.172169][ C2] ? __pfx_down_write (kernel/locking/rwsem.c:1575) 
[ 1312.172174][ C2] exit_mmap (mm/mmap.c:1297) 
[ 1312.172178][ C2] ? __pfx_exit_mmap (mm/mmap.c:1259) 
[ 1312.172184][ C2] ? __mutex_unlock_slowpath (./arch/x86/include/asm/atomic64_64.h:101 ./include/linux/atomic/atomic-arch-fallback.h:4329 ./include/linux/atomic/atomic-long.h:1506 ./include/linux/atomic/atomic-instrumented.h:4481 kernel/locking/mutex.c:926) 
[ 1312.172195][ C2] mmput (kernel/fork.c:1189 kernel/fork.c:1123 kernel/fork.c:1144) 
[ 1312.172199][ C2] exec_mmap (fs/exec.c:901) 
[ 1312.172203][ C2] ? rcu_is_watching (./include/linux/context_tracking.h:128 kernel/rcu/tree.c:745) 
[ 1312.172206][ C2] begin_new_exec (fs/exec.c:1151) 
[ 1312.172212][ C2] load_elf_binary (fs/binfmt_elf.c:996) 
[ 1312.172217][ C2] ? __lock_acquire (kernel/locking/lockdep.c:5240) 
[ 1312.172223][ C2] ? find_held_lock (kernel/locking/lockdep.c:5353) 
[ 1312.172226][ C2] ? __pfx_load_elf_binary (fs/binfmt_elf.c:818) 
[ 1312.172229][ C2] ? exec_binprm (fs/exec.c:1665 fs/exec.c:1697) 
[ 1312.172235][ C2] exec_binprm (fs/exec.c:1665 fs/exec.c:1697) 
[ 1312.172240][ C2] ? __pfx_exec_binprm (fs/exec.c:1681) 
[ 1312.172243][ C2] ? bprm_execve (fs/exec.c:1739 fs/exec.c:1725) 
[ 1312.172248][ C2] bprm_execve (fs/exec.c:1749 fs/exec.c:1725) 
[ 1312.172252][ C2] do_execveat_common.isra.0 (fs/exec.c:1855) 
[ 1312.172257][ C2] __x64_sys_execve (fs/exec.c:2000) 
[ 1312.172261][ C2] do_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94) 
[ 1312.172265][ C2] entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130) 
[ 1312.172268][    C2] RIP: 0033:0x7f5c0dd3f40b
[ 1312.172276][ C2] Code: Unable to access opcode bytes at 0x7f5c0dd3f3e1.

Code starting with the faulting instruction
===========================================
[ 1312.172278][    C2] RSP: 002b:00007ffe96cfa7e8 EFLAGS: 00000246 ORIG_RAX: 000000000000003b
[ 1312.172281][    C2] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f5c0dd3f40b
[ 1312.172283][    C2] RDX: 0000564a97aca670 RSI: 0000564a97c19330 RDI: 0000564a97bff6a0
[ 1312.172284][    C2] RBP: 0000564a97bff6a0 R08: 0000564a97c12c10 R09: 0000000000000020
[ 1312.172286][    C2] R10: 00000000000001b6 R11: 0000000000000246 R12: 00000000ffffffff


Finger prints:
mark_lock_irq:mark_lock:mark_usage:__lock_acquire:_raw_spin_lock