------------[ cut here ]------------
DEBUG_LOCKS_WARN_ON(1)
WARNING: CPU: 0 PID: 5229 at kernel/locking/lockdep.c:231 hlock_class kernel/locking/lockdep.c:231 [inline]
WARNING: CPU: 0 PID: 5229 at kernel/locking/lockdep.c:231 check_wait_context kernel/locking/lockdep.c:4772 [inline]
WARNING: CPU: 0 PID: 5229 at kernel/locking/lockdep.c:231 __lock_acquire+0x58c/0x2040 kernel/locking/lockdep.c:5092
Modules linked in:
CPU: 0 UID: 0 PID: 5229 Comm: kworker/0:3 Not tainted 6.11.0-rc2-syzkaller-00011-geb5e56d14912 #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
Workqueue: events nsim_fib_event_work
RIP: 0010:hlock_class kernel/locking/lockdep.c:231 [inline]
RIP: 0010:check_wait_context kernel/locking/lockdep.c:4772 [inline]
RIP: 0010:__lock_acquire+0x58c/0x2040 kernel/locking/lockdep.c:5092
Code: 00 00 83 3d a5 2a a8 0e 00 75 23 90 48 c7 c7 00 d4 0a 8c 48 c7 c6 a0 d6 0a 8c e8 ff d8 e5 ff 48 ba 00 00 00 00 00 fc ff df 90 <0f> 0b 90 90 90 31 db 48 81 c3 c4 00 00 00 48 89 d8 48 c1 e8 03 0f
RSP: 0018:ffffc90003136cf0 EFLAGS: 00010046
RAX: d14ffab320bc9400 RBX: 0000000000001820 RCX: ffff88802f0b0000
RDX: dffffc0000000000 RSI: 0000000000000000 RDI: 0000000000000000
RBP: 000000000000000f R08: ffffffff8155a2d2 R09: 1ffff1101724519a
R10: dffffc0000000000 R11: ffffed101724519b R12: ffff88802f0b0000
R13: 0000000000001820 R14: 1ffff11005e1616f R15: ffff88802f0b0b78
FS:  0000000000000000(0000) GS:ffff8880b9200000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 000000002002d030 CR3: 000000007d886000 CR4: 0000000000350ef0
Call Trace:
 <TASK>
 lock_acquire+0x1ed/0x550 kernel/locking/lockdep.c:5759
 _raw_spin_lock_nested+0x31/0x40 kernel/locking/spinlock.c:378
 raw_spin_rq_lock_nested+0xb0/0x140 kernel/sched/core.c:568
 raw_spin_rq_lock kernel/sched/sched.h:1415 [inline]
 rq_lock kernel/sched/sched.h:1714 [inline]
 __schedule+0x357/0x4a60 kernel/sched/core.c:6436
 preempt_schedule_irq+0xfb/0x1c0 kernel/sched/core.c:6851
 irqentry_exit+0x5e/0x90 kernel/entry/common.c:354
 asm_sysvec_reschedule_ipi+0x1a/0x20 arch/x86/include/asm/idtentry.h:707
RIP: 0010:stack_trace_save+0x91/0x1d0 kernel/stacktrace.c:116
Code: ef 03 48 b8 f1 f1 f1 f1 00 00 00 f3 4b 89 04 2f 43 c7 44 2f 08 f3 f3 f3 f3 48 8d 7c 24 50 48 89 f8 48 c1 e8 03 42 80 3c 28 00 <74> 05 e8 a8 95 7b 00 48 c7 44 24 50 00 00 00 00 4c 89 f0 48 c1 e8
RSP: 0018:ffffc90003137320 EFLAGS: 00000246
RAX: 1ffff92000626e6e RBX: 0000000000000000 RCX: 0000000000000000
RDX: 0000000000000000 RSI: 0000000000000040 RDI: ffffc90003137370
RBP: ffffc90003137400 R08: dffffc0000000000 R09: ffffc90003137410
R10: dffffc0000000000 R11: fffffbfff26e591e R12: ffffc90003137410
R13: dffffc0000000000 R14: ffffc90003137360 R15: 1ffff92000626e68
 kasan_save_stack mm/kasan/common.c:47 [inline]
 kasan_save_track+0x3f/0x80 mm/kasan/common.c:68
 kasan_save_free_info+0x40/0x50 mm/kasan/generic.c:579
 poison_slab_object+0xe0/0x150 mm/kasan/common.c:240
 __kasan_slab_free+0x37/0x60 mm/kasan/common.c:256
 kasan_slab_free include/linux/kasan.h:184 [inline]
 slab_free_hook mm/slub.c:2252 [inline]
 slab_free mm/slub.c:4473 [inline]
 kfree+0x149/0x360 mm/slub.c:4594
 nsim_fib_event_work+0x129f/0x4130 drivers/net/netdevsim/fib.c:1494
 process_one_work kernel/workqueue.c:3231 [inline]
 process_scheduled_works+0xa2e/0x1830 kernel/workqueue.c:3312
 worker_thread+0x86d/0xd40 kernel/workqueue.c:3390
 kthread+0x2f2/0x390 kernel/kthread.c:389
 ret_from_fork+0x4d/0x80 arch/x86/kernel/process.c:147
 ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:244
 </TASK>
----------------
Code disassembly (best guess):
   0:	ef                   	out    %eax,(%dx)
   1:	03 48 b8             	add    -0x48(%rax),%ecx
   4:	f1                   	int1
   5:	f1                   	int1
   6:	f1                   	int1
   7:	f1                   	int1
   8:	00 00                	add    %al,(%rax)
   a:	00 f3                	add    %dh,%bl
   c:	4b 89 04 2f          	mov    %rax,(%r15,%r13,1)
  10:	43 c7 44 2f 08 f3 f3 	movl   $0xf3f3f3f3,0x8(%r15,%r13,1)
  17:	f3 f3
  19:	48 8d 7c 24 50       	lea    0x50(%rsp),%rdi
  1e:	48 89 f8             	mov    %rdi,%rax
  21:	48 c1 e8 03          	shr    $0x3,%rax
  25:	42 80 3c 28 00       	cmpb   $0x0,(%rax,%r13,1)
* 2a:	74 05                	je     0x31 <-- trapping instruction
  2c:	e8 a8 95 7b 00       	call   0x7b95d9
  31:	48 c7 44 24 50 00 00 	movq   $0x0,0x50(%rsp)
  38:	00 00
  3a:	4c 89 f0             	mov    %r14,%rax
  3d:	48                   	rex.W
  3e:	c1                   	.byte 0xc1
  3f:	e8                   	.byte 0xe8