program:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448cb, 0x0)
syz_emit_vhci(&(0x7f00000006c0)=ANY=[@ANYBLOB="040e0402030c29"], 0x7)
[ 68.420986][ T5319] ------------[ cut here ]------------
[ 68.435800][ T5319] workqueue: cannot queue hci_rx_work on wq hci0
[ 68.438894][ T5319] WARNING: CPU: 0 PID: 5319 at kernel/workqueue.c:2258 __queue_work+0xd62/0xfe0
[ 68.442942][ T5319] Modules linked in:
[ 68.444765][ T5319] CPU: 0 UID: 0 PID: 5319 Comm: syz.0.0 Not tainted 6.15.0-syzkaller-08486-gf66bc387efbe #0 PREEMPT(full)
[ 68.467622][ T5319] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 68.473819][ T5319] RIP: 0010:__queue_work+0xd62/0xfe0
[ 68.483256][ T5319] Code: 42 80 3c 20 00 74 08 4c 89 ef e8 79 91 98 00 49 8b 75 00 49 81 c7 78 01 00 00 48 c7 c7 00 db 89 8b 4c 89 fa e8 af 3f f9 ff 90 <0f> 0b 90 90 e9 f1 f4 ff ff e8 00 66 35 00 90 0f 0b 90 e9 dd fc ff
[ 68.502952][ T5319] RSP: 0018:ffffc9000d52fa68 EFLAGS: 00010046
[ 68.510215][ T5319] RAX: 07457b6305e4d000 RBX: 0000000000000000 RCX: 0000000000100000
[ 68.520536][ T5319] RDX: ffffc9000e9bb000 RSI: 0000000000000b37 RDI: 0000000000000b38
[ 68.535765][ T5319] RBP: 1ffff110086cab38 R08: ffff88801fc24293 R09: 1ffff11003f84852
[ 68.539178][ T5319] R10: dffffc0000000000 R11: ffffed1003f84853 R12: dffffc0000000000
[ 68.542380][ T5319] R13: ffff8880515c0a98 R14: ffff888000f2a440 R15: ffff888043655978
[ 68.547156][ T5319] FS: 00007f275f54e6c0(0000) GS:ffff88808d263000(0000) knlGS:0000000000000000
[ 68.564290][ T5319] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 68.570225][ T5319] CR2: 00007f275f54dfc8 CR3: 0000000042a37000 CR4: 0000000000352ef0
[ 68.577670][ T5319] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 68.582581][ T5319] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 68.587996][ T5319] Call Trace:
[ 68.591985][ T5319]
[ 68.595190][ T5319] ? rcu_is_watching+0x15/0xb0
[ 68.601117][ T5319] queue_work_on+0x181/0x270
[ 68.607060][ T5319] ? lockdep_hardirqs_on+0x9c/0x150
[ 68.609212][ T5319] ? __pfx_queue_work_on+0x10/0x10
[ 68.632382][ T5319] ? _raw_spin_unlock_irqrestore+0xad/0x110
[ 68.636122][ T5319] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 68.639053][ T5319] ? skb_queue_tail+0x30/0xf0
[ 68.641030][ T5319] hci_recv_frame+0x5c9/0x720
[ 68.642970][ T5319] ? skb_pull+0xc1/0x1d0
[ 68.644765][ T5319] vhci_write+0x358/0x4a0
[ 68.646514][ T5319] vfs_write+0x54b/0xa90
[ 68.648888][ T5319] ? __pfx_vhci_write+0x10/0x10
[ 68.654129][ T5319] ? __pfx_vfs_write+0x10/0x10
[ 68.657672][ T5319] ? __fget_files+0x2a/0x420
[ 68.672025][ T5319] ksys_write+0x145/0x250
[ 68.675930][ T5319] ? __pfx_ksys_write+0x10/0x10
[ 68.678812][ T5319] ? do_syscall_64+0xbe/0x3b0
[ 68.682684][ T5319] do_syscall_64+0xfa/0x3b0
[ 68.692407][ T5319] ? lockdep_hardirqs_on+0x9c/0x150
[ 68.694868][ T5319] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 68.709988][ T5319] ? clear_bhb_loop+0x60/0xb0
[ 68.712197][ T5319] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 68.714869][ T5319] RIP: 0033:0x7f275e78d41f
[ 68.717037][ T5319] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[ 68.737666][ T5319] RSP: 002b:00007f275f54e000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[ 68.741147][ T5319] RAX: ffffffffffffffda RBX: 00007f275e9b6080 RCX: 00007f275e78d41f
[ 68.744415][ T5319] RDX: 0000000000000007 RSI: 00002000000006c0 RDI: 00000000000000ca
[ 68.759935][ T5319] RBP: 00007f275e810ab1 R08: 0000000000000000 R09: 0000000000000000
[ 68.766513][ T5319] R10: 00002000000006c0 R11: 0000000000000293 R12: 0000000000000000
[ 68.782756][ T5319] R13: 0000000000000001 R14: 00007f275e9b6080 R15: 00007ffe5f98be08
[ 68.787418][ T5319]
[ 68.789562][ T5319] Kernel panic - not syncing: kernel: panic_on_warn set ...
[ 68.792520][ T5319] CPU: 0 UID: 0 PID: 5319 Comm: syz.0.0 Not tainted 6.15.0-syzkaller-08486-gf66bc387efbe #0 PREEMPT(full)
[ 68.797044][ T5319] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 68.822448][ T5319] Call Trace:
[ 68.824112][ T5319]
[ 68.825514][ T5319] dump_stack_lvl+0x99/0x250
[ 68.827856][ T5319] ? __asan_memcpy+0x40/0x70
[ 68.831029][ T5319] ? __pfx_dump_stack_lvl+0x10/0x10
[ 68.834145][ T5319] ? __pfx__printk+0x10/0x10
[ 68.838387][ T5319] panic+0x2db/0x790
[ 68.843507][ T5319] ? __pfx_panic+0x10/0x10
[ 68.845337][ T5319] ? show_trace_log_lvl+0x4fb/0x550
[ 68.853475][ T5319] __warn+0x31b/0x4b0
[ 68.856407][ T5319] ? __queue_work+0xd62/0xfe0
[ 68.861840][ T5319] ? __queue_work+0xd62/0xfe0
[ 68.863863][ T5319] report_bug+0x2be/0x4f0
[ 68.868516][ T5319] ? __queue_work+0xd62/0xfe0
[ 68.870637][ T5319] ? __queue_work+0xd62/0xfe0
[ 68.888717][ T5319] ? __queue_work+0xd64/0xfe0
[ 68.890870][ T5319] handle_bug+0x84/0x160
[ 68.892850][ T5319] exc_invalid_op+0x1a/0x50
[ 68.894901][ T5319] asm_exc_invalid_op+0x1a/0x20
[ 68.896891][ T5319] RIP: 0010:__queue_work+0xd62/0xfe0
[ 68.909221][ T5319] Code: 42 80 3c 20 00 74 08 4c 89 ef e8 79 91 98 00 49 8b 75 00 49 81 c7 78 01 00 00 48 c7 c7 00 db 89 8b 4c 89 fa e8 af 3f f9 ff 90 <0f> 0b 90 90 e9 f1 f4 ff ff e8 00 66 35 00 90 0f 0b 90 e9 dd fc ff
[ 68.928292][ T5319] RSP: 0018:ffffc9000d52fa68 EFLAGS: 00010046
[ 68.930786][ T5319] RAX: 07457b6305e4d000 RBX: 0000000000000000 RCX: 0000000000100000
[ 68.934007][ T5319] RDX: ffffc9000e9bb000 RSI: 0000000000000b37 RDI: 0000000000000b38
[ 68.947384][ T5319] RBP: 1ffff110086cab38 R08: ffff88801fc24293 R09: 1ffff11003f84852
[ 68.950873][ T5319] R10: dffffc0000000000 R11: ffffed1003f84853 R12: dffffc0000000000
[ 68.954397][ T5319] R13: ffff8880515c0a98 R14: ffff888000f2a440 R15: ffff888043655978
[ 68.968292][ T5319] ? __queue_work+0xd61/0xfe0
[ 68.970376][ T5319] ? rcu_is_watching+0x15/0xb0
[ 68.972517][ T5319] queue_work_on+0x181/0x270
[ 68.974563][ T5319] ? lockdep_hardirqs_on+0x9c/0x150
[ 68.976904][ T5319] ? __pfx_queue_work_on+0x10/0x10
[ 68.997594][ T5319] ? _raw_spin_unlock_irqrestore+0xad/0x110
[ 69.001148][ T5319] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 69.004828][ T5319] ? skb_queue_tail+0x30/0xf0
[ 69.009758][ T5319] hci_recv_frame+0x5c9/0x720
[ 69.019309][ T5319] ? skb_pull+0xc1/0x1d0
[ 69.023411][ T5319] vhci_write+0x358/0x4a0
[ 69.025961][ T5319] vfs_write+0x54b/0xa90
[ 69.030516][ T5319] ? __pfx_vhci_write+0x10/0x10
[ 69.039681][ T5319] ? __pfx_vfs_write+0x10/0x10
[ 69.042591][ T5319] ? __fget_files+0x2a/0x420
[ 69.047448][ T5319] ksys_write+0x145/0x250
[ 69.049187][ T5319] ? __pfx_ksys_write+0x10/0x10
[ 69.051093][ T5319] ? do_syscall_64+0xbe/0x3b0
[ 69.052947][ T5319] do_syscall_64+0xfa/0x3b0
[ 69.054768][ T5319] ? lockdep_hardirqs_on+0x9c/0x150
[ 69.056809][ T5319] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 69.069382][ T5319] ? clear_bhb_loop+0x60/0xb0
[ 69.071354][ T5319] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 69.085439][ T5319] RIP: 0033:0x7f275e78d41f
[ 69.088449][ T5319] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[ 69.096120][ T5319] RSP: 002b:00007f275f54e000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[ 69.110459][ T5319] RAX: ffffffffffffffda RBX: 00007f275e9b6080 RCX: 00007f275e78d41f
[ 69.119931][ T5319] RDX: 0000000000000007 RSI: 00002000000006c0 RDI: 00000000000000ca
[ 69.123519][ T5319] RBP: 00007f275e810ab1 R08: 0000000000000000 R09: 0000000000000000
[ 69.126866][ T5319] R10: 00002000000006c0 R11: 0000000000000293 R12: 0000000000000000
[ 69.140210][ T5319] R13: 0000000000000001 R14: 00007f275e9b6080 R15: 00007ffe5f98be08
[ 69.143357][ T5319]
[ 69.144937][ T5319] Kernel Offset: disabled
[ 69.146678][ T5319] Rebooting in 86400 seconds..