program:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448cb, 0x0) (async)
landlock_create_ruleset(&(0x7f0000000100)={0x0, 0x3}, 0x10, 0x0) (async, rerun: 64)
syz_emit_vhci(&(0x7f0000000100)=ANY=[@ANYBLOB="043e1301"], 0x16) (rerun: 64)
syz_usb_connect(0x0, 0x0, 0x0, 0x0) (async)
openat$snapshot(0xffffffffffffff9c, &(0x7f00000002c0), 0x40040, 0x0)
syz_emit_vhci(&(0x7f0000000040)=ANY=[@ANYBLOB="040e0402030c"], 0x7)
[ 76.043935][ T46] Bluetooth: hci0: command tx timeout
[ 76.124669][ T4667] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci0/hci0:0'
[ 76.128927][ T4667] CPU: 0 UID: 0 PID: 4667 Comm: kworker/u5:1 Not tainted syzkaller #0 PREEMPT(full)
[ 76.128947][ T4667] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 76.128955][ T4667] Workqueue: hci0 hci_rx_work
[ 76.129098][ T4667] Call Trace:
[ 76.129105][ T4667]
[ 76.129112][ T4667] dump_stack_lvl+0x189/0x250
[ 76.129134][ T4667] ? __pfx_dump_stack_lvl+0x10/0x10
[ 76.129149][ T4667] ? __pfx__printk+0x10/0x10
[ 76.129173][ T4667] ? kernfs_path_from_node+0x250/0x290
[ 76.129218][ T4667] ? kernfs_path_from_node+0x2f/0x290
[ 76.129234][ T4667] sysfs_create_dir_ns+0x259/0x280
[ 76.129250][ T4667] ? __pfx_sysfs_create_dir_ns+0x10/0x10
[ 76.129263][ T4667] ? do_raw_spin_unlock+0x4d/0x240
[ 76.129281][ T4667] kobject_add_internal+0x59f/0xb40
[ 76.129299][ T4667] kobject_add+0x155/0x220
[ 76.129319][ T4667] ? __pfx_kobject_add+0x10/0x10
[ 76.129336][ T4667] ? _raw_spin_unlock+0x28/0x50
[ 76.129352][ T4667] ? get_device_parent+0x366/0x3a0
[ 76.129366][ T4667] device_add+0x408/0xb50
[ 76.129381][ T4667] hci_conn_add_sysfs+0xd5/0x1e0
[ 76.129395][ T4667] le_conn_complete_evt+0xf39/0x1500
[ 76.129416][ T4667] ? __pfx_le_conn_complete_evt+0x10/0x10
[ 76.129430][ T4667] ? __mutex_unlock_slowpath+0x1a1/0x740
[ 76.129444][ T4667] ? __asan_memcpy+0x40/0x70
[ 76.129460][ T4667] ? __pfx___mutex_unlock_slowpath+0x10/0x10
[ 76.129475][ T4667] ? skb_pull_data+0xfb/0x200
[ 76.129490][ T4667] hci_le_conn_complete_evt+0x187/0x450
[ 76.129510][ T4667] hci_event_packet+0x78f/0x1200
[ 76.129524][ T4667] ? __pfx_hci_le_meta_evt+0x10/0x10
[ 76.129541][ T4667] ? __pfx_hci_event_packet+0x10/0x10
[ 76.129556][ T4667] ? kcov_remote_start+0x4d3/0x7f0
[ 76.129568][ T4667] ? insn_get_displacement+0x5c0/0x9f0
[ 76.129583][ T4667] ? hci_send_to_monitor+0xe2/0x570
[ 76.129600][ T4667] hci_rx_work+0x42b/0xf20
[ 76.129619][ T4667] ? process_scheduled_works+0x9ef/0x17b0
[ 76.129633][ T4667] process_scheduled_works+0xae1/0x17b0
[ 76.129663][ T4667] ? __pfx_process_scheduled_works+0x10/0x10
[ 76.129686][ T4667] worker_thread+0x8a0/0xda0
[ 76.129700][ T4667] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 76.129721][ T4667] ? __kthread_parkme+0x7b/0x200
[ 76.129738][ T4667] kthread+0x711/0x8a0
[ 76.129756][ T4667] ? __pfx_worker_thread+0x10/0x10
[ 76.129767][ T4667] ? __pfx_kthread+0x10/0x10
[ 76.129783][ T4667] ? _raw_spin_unlock_irq+0x23/0x50
[ 76.129795][ T4667] ? lockdep_hardirqs_on+0x9c/0x150
[ 76.129807][ T4667] ? __pfx_kthread+0x10/0x10
[ 76.129820][ T4667] ret_from_fork+0x4bc/0x870
[ 76.129834][ T4667] ? __pfx_ret_from_fork+0x10/0x10
[ 76.129850][ T4667] ? __pfx_kthread+0x10/0x10
[ 76.129864][ T4667] ret_from_fork_asm+0x1a/0x30
[ 76.129886][ T4667]
[ 76.129913][ T4667] kobject: kobject_add_internal failed for hci0:0 with -EEXIST, don't try to register things with the same name in the same directory.
[ 76.263674][ T4667] Bluetooth: hci0: failed to register connection device
[ 76.277369][ T4667] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci0/hci0:0'
[ 76.282439][ T4667] CPU: 0 UID: 0 PID: 4667 Comm: kworker/u5:1 Not tainted syzkaller #0 PREEMPT(full)
[ 76.282463][ T4667] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 76.282476][ T4667] Workqueue: hci0 hci_rx_work
[ 76.282503][ T4667] Call Trace:
[ 76.282512][ T4667]
[ 76.282518][ T4667] dump_stack_lvl+0x189/0x250
[ 76.282544][ T4667] ? __pfx_dump_stack_lvl+0x10/0x10
[ 76.282567][ T4667] ? __pfx__printk+0x10/0x10
[ 76.282584][ T4667] ? kernfs_path_from_node+0x250/0x290
[ 76.282603][ T4667] ? kernfs_path_from_node+0x2f/0x290
[ 76.282621][ T4667] sysfs_create_dir_ns+0x259/0x280
[ 76.282640][ T4667] ? __pfx_sysfs_create_dir_ns+0x10/0x10
[ 76.282657][ T4667] ? do_raw_spin_unlock+0x4d/0x240
[ 76.282681][ T4667] kobject_add_internal+0x59f/0xb40
[ 76.282704][ T4667] kobject_add+0x155/0x220
[ 76.282731][ T4667] ? __pfx_kobject_add+0x10/0x10
[ 76.282753][ T4667] ? _raw_spin_unlock+0x28/0x50
[ 76.282775][ T4667] ? get_device_parent+0x366/0x3a0
[ 76.282791][ T4667] device_add+0x408/0xb50
[ 76.282807][ T4667] hci_conn_add_sysfs+0xd5/0x1e0
[ 76.282822][ T4667] le_conn_complete_evt+0xf39/0x1500
[ 76.282849][ T4667] ? __pfx_le_conn_complete_evt+0x10/0x10
[ 76.282866][ T4667] ? __mutex_unlock_slowpath+0x1a1/0x740
[ 76.282882][ T4667] ? __asan_memcpy+0x40/0x70
[ 76.282899][ T4667] ? __pfx___mutex_unlock_slowpath+0x10/0x10
[ 76.282915][ T4667] ? skb_pull_data+0xfb/0x200
[ 76.282933][ T4667] hci_le_conn_complete_evt+0x187/0x450
[ 76.282955][ T4667] hci_event_packet+0x78f/0x1200
[ 76.282973][ T4667] ? __pfx_hci_le_meta_evt+0x10/0x10
[ 76.282991][ T4667] ? __pfx_hci_event_packet+0x10/0x10
[ 76.283007][ T4667] ? kcov_remote_start+0x4d3/0x7f0
[ 76.283019][ T4667] ? insn_get_displacement+0x5c0/0x9f0
[ 76.283061][ T4667] ? hci_send_to_monitor+0xe2/0x570
[ 76.283089][ T4667] hci_rx_work+0x42b/0xf20
[ 76.283111][ T4667] ? process_scheduled_works+0x9ef/0x17b0
[ 76.283126][ T4667] process_scheduled_works+0xae1/0x17b0
[ 76.283160][ T4667] ? __pfx_process_scheduled_works+0x10/0x10
[ 76.283186][ T4667] worker_thread+0x8a0/0xda0
[ 76.283205][ T4667] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 76.283229][ T4667] ? __kthread_parkme+0x7b/0x200
[ 76.283253][ T4667] kthread+0x711/0x8a0
[ 76.283301][ T4667] ? __pfx_worker_thread+0x10/0x10
[ 76.283316][ T4667] ? __pfx_kthread+0x10/0x10
[ 76.283335][ T4667] ? _raw_spin_unlock_irq+0x23/0x50
[ 76.283352][ T4667] ? lockdep_hardirqs_on+0x9c/0x150
[ 76.283372][ T4667] ? __pfx_kthread+0x10/0x10
[ 76.283391][ T4667] ret_from_fork+0x4bc/0x870
[ 76.283406][ T4667] ? __pfx_ret_from_fork+0x10/0x10
[ 76.283425][ T4667] ? __pfx_kthread+0x10/0x10
[ 76.283440][ T4667] ret_from_fork_asm+0x1a/0x30
[ 76.283464][ T4667]
[ 76.411727][ T4667] kobject: kobject_add_internal failed for hci0:0 with -EEXIST, don't try to register things with the same name in the same directory.
[ 76.418070][ T4667] Bluetooth: hci0: failed to register connection device
[ 76.421685][ T4667] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci0/hci0:0'
[ 76.425922][ T4667] CPU: 0 UID: 0 PID: 4667 Comm: kworker/u5:1 Not tainted syzkaller #0 PREEMPT(full)
[ 76.425941][ T4667] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 76.425950][ T4667] Workqueue: hci0 hci_rx_work
[ 76.425994][ T4667] Call Trace:
[ 76.426005][ T4667]
[ 76.426012][ T4667] dump_stack_lvl+0x189/0x250
[ 76.426035][ T4667] ? __pfx_dump_stack_lvl+0x10/0x10
[ 76.426052][ T4667] ? __pfx__printk+0x10/0x10
[ 76.426071][ T4667] ? kernfs_path_from_node+0x250/0x290
[ 76.426091][ T4667] ? kernfs_path_from_node+0x2f/0x290
[ 76.426107][ T4667] sysfs_create_dir_ns+0x259/0x280
[ 76.426123][ T4667] ? __pfx_sysfs_create_dir_ns+0x10/0x10
[ 76.426137][ T4667] ? do_raw_spin_unlock+0x4d/0x240
[ 76.426163][ T4667] kobject_add_internal+0x59f/0xb40
[ 76.426181][ T4667] kobject_add+0x155/0x220
[ 76.426203][ T4667] ? __pfx_kobject_add+0x10/0x10
[ 76.426221][ T4667] ? _raw_spin_unlock+0x28/0x50
[ 76.426242][ T4667] ? get_device_parent+0x366/0x3a0
[ 76.426258][ T4667] device_add+0x408/0xb50
[ 76.426274][ T4667] hci_conn_add_sysfs+0xd5/0x1e0
[ 76.426290][ T4667] le_conn_complete_evt+0xf39/0x1500
[ 76.426316][ T4667] ? __pfx_le_conn_complete_evt+0x10/0x10
[ 76.426336][ T4667] ? __mutex_unlock_slowpath+0x1a1/0x740
[ 76.426354][ T4667] ? __asan_memcpy+0x40/0x70
[ 76.426372][ T4667] ? __pfx___mutex_unlock_slowpath+0x10/0x10
[ 76.426388][ T4667] ? skb_pull_data+0xfb/0x200
[ 76.426404][ T4667] hci_le_conn_complete_evt+0x187/0x450
[ 76.426426][ T4667] hci_event_packet+0x78f/0x1200
[ 76.426443][ T4667] ? __pfx_hci_le_meta_evt+0x10/0x10
[ 76.426461][ T4667] ? __pfx_hci_event_packet+0x10/0x10
[ 76.426478][ T4667] ? kcov_remote_start+0x4d3/0x7f0
[ 76.426489][ T4667] ? insn_get_displacement+0x5c0/0x9f0
[ 76.426503][ T4667] ? hci_send_to_monitor+0xe2/0x570
[ 76.426525][ T4667] hci_rx_work+0x42b/0xf20
[ 76.426542][ T4667] ? process_scheduled_works+0x9ef/0x17b0
[ 76.426555][ T4667] process_scheduled_works+0xae1/0x17b0
[ 76.426586][ T4667] ? __pfx_process_scheduled_works+0x10/0x10
[ 76.426611][ T4667] worker_thread+0x8a0/0xda0
[ 76.426626][ T4667] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 76.426647][ T4667] ? __kthread_parkme+0x7b/0x200
[ 76.426669][ T4667] kthread+0x711/0x8a0
[ 76.426687][ T4667] ? __pfx_worker_thread+0x10/0x10
[ 76.426700][ T4667] ? __pfx_kthread+0x10/0x10
[ 76.426717][ T4667] ? _raw_spin_unlock_irq+0x23/0x50
[ 76.426731][ T4667] ? lockdep_hardirqs_on+0x9c/0x150
[ 76.426746][ T4667] ? __pfx_kthread+0x10/0x10
[ 76.426762][ T4667] ret_from_fork+0x4bc/0x870
[ 76.426777][ T4667] ? __pfx_ret_from_fork+0x10/0x10
[ 76.426796][ T4667] ? __pfx_kthread+0x10/0x10
[ 76.426813][ T4667] ret_from_fork_asm+0x1a/0x30
[ 76.426837][ T4667]
[ 76.426857][ T4667] kobject: kobject_add_internal failed for hci0:0 with -EEXIST, don't try to register things with the same name in the same directory.
[ 76.557407][ T1314] ieee802154 phy0 wpan0: encryption failed: -22
[ 76.560493][ T1314] ieee802154 phy1 wpan1: encryption failed: -22
[ 76.570420][ T4667] Bluetooth: hci0: failed to register connection device
[ 76.574316][ T4667] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci0/hci0:0'
[ 76.577767][ T4667] CPU: 0 UID: 0 PID: 4667 Comm: kworker/u5:1 Not tainted syzkaller #0 PREEMPT(full)
[ 76.577780][ T4667] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 76.577787][ T4667] Workqueue: hci0 hci_rx_work
[ 76.577801][ T4667] Call Trace:
[ 76.577806][ T4667]
[ 76.577810][ T4667] dump_stack_lvl+0x189/0x250
[ 76.577824][ T4667] ? __pfx_dump_stack_lvl+0x10/0x10
[ 76.577839][ T4667] ? __pfx__printk+0x10/0x10
[ 76.577850][ T4667] ? kernfs_path_from_node+0x250/0x290
[ 76.577863][ T4667] ? kernfs_path_from_node+0x2f/0x290
[ 76.577873][ T4667] sysfs_create_dir_ns+0x259/0x280
[ 76.577883][ T4667] ? __pfx_sysfs_create_dir_ns+0x10/0x10
[ 76.577891][ T4667] ? do_raw_spin_unlock+0x4d/0x240
[ 76.577905][ T4667] kobject_add_internal+0x59f/0xb40
[ 76.577917][ T4667] kobject_add+0x155/0x220
[ 76.577930][ T4667] ? __pfx_kobject_add+0x10/0x10
[ 76.577942][ T4667] ? _raw_spin_unlock+0x28/0x50
[ 76.577952][ T4667] ? get_device_parent+0x366/0x3a0
[ 76.577962][ T4667] device_add+0x408/0xb50
[ 76.577970][ T4667] hci_conn_add_sysfs+0xd5/0x1e0
[ 76.577979][ T4667] le_conn_complete_evt+0xf39/0x1500
[ 76.577993][ T4667] ? __pfx_le_conn_complete_evt+0x10/0x10
[ 76.578003][ T4667] ? __mutex_unlock_slowpath+0x1a1/0x740
[ 76.578011][ T4667] ? __asan_memcpy+0x40/0x70
[ 76.578021][ T4667] ? __pfx___mutex_unlock_slowpath+0x10/0x10
[ 76.578030][ T4667] ? skb_pull_data+0xfb/0x200
[ 76.578040][ T4667] hci_le_conn_complete_evt+0x187/0x450
[ 76.578052][ T4667] hci_event_packet+0x78f/0x1200
[ 76.578061][ T4667] ? __pfx_hci_le_meta_evt+0x10/0x10
[ 76.578070][ T4667] ? __pfx_hci_event_packet+0x10/0x10
[ 76.578079][ T4667] ? kcov_remote_start+0x4d3/0x7f0
[ 76.578090][ T4667] ? insn_get_displacement+0x5c0/0x9f0
[ 76.578101][ T4667] ? hci_send_to_monitor+0xe2/0x570
[ 76.578114][ T4667] hci_rx_work+0x42b/0xf20
[ 76.578124][ T4667] ? process_scheduled_works+0x9ef/0x17b0
[ 76.578133][ T4667] process_scheduled_works+0xae1/0x17b0
[ 76.578151][ T4667] ? __pfx_process_scheduled_works+0x10/0x10
[ 76.578166][ T4667] worker_thread+0x8a0/0xda0
[ 76.578176][ T4667] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 76.578188][ T4667] ? __kthread_parkme+0x7b/0x200
[ 76.578202][ T4667] kthread+0x711/0x8a0
[ 76.578212][ T4667] ? __pfx_worker_thread+0x10/0x10
[ 76.578219][ T4667] ? __pfx_kthread+0x10/0x10
[ 76.578228][ T4667] ? _raw_spin_unlock_irq+0x23/0x50
[ 76.578236][ T4667] ? lockdep_hardirqs_on+0x9c/0x150
[ 76.578244][ T4667] ? __pfx_kthread+0x10/0x10
[ 76.578253][ T4667] ret_from_fork+0x4bc/0x870
[ 76.578262][ T4667] ? __pfx_ret_from_fork+0x10/0x10
[ 76.578272][ T4667] ? __pfx_kthread+0x10/0x10
[ 76.578281][ T4667] ret_from_fork_asm+0x1a/0x30
[ 76.578293][ T4667]
[ 76.578306][ T4667] kobject: kobject_add_internal failed for hci0:0 with -EEXIST, don't try to register things with the same name in the same directory.
[ 76.704574][ T5322] ------------[ cut here ]------------
[ 76.706930][ T5322] workqueue: cannot queue hci_rx_work on wq hci0
[ 76.709810][ T5322] WARNING: CPU: 0 PID: 5322 at kernel/workqueue.c:2258 __queue_work+0xd38/0xfb0
[ 76.713712][ T5322] Modules linked in:
[ 76.715776][ T5322] CPU: 0 UID: 0 PID: 5322 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full)
[ 76.720569][ T5322] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 76.724919][ T5322] RIP: 0010:__queue_work+0xd38/0xfb0
[ 76.727191][ T5322] Code: 42 80 3c 20 00 74 08 4c 89 ef e8 13 73 9d 00 49 8b 75 00 49 81 c7 78 01 00 00 48 c7 c7 20 eb 69 8b 4c 89 fa e8 b9 31 f9 ff 90 <0f> 0b 90 90 e9 1a f5 ff ff e8 4a 25 36 00 90 0f 0b 90 e9 dd fc ff
[ 76.735253][ T5322] RSP: 0018:ffffc9000d52fa70 EFLAGS: 00010046
[ 76.737872][ T5322] RAX: c510c49df65f0700 RBX: 0000000000000000 RCX: ffff888000142480
[ 76.741485][ T5322] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000002
[ 76.744655][ T5322] RBP: 1ffff11008698438 R08: 0000000000000003 R09: 0000000000000004
[ 76.747721][ T5322] R10: dffffc0000000000 R11: fffffbfff1bba684 R12: dffffc0000000000
[ 76.750868][ T5322] R13: ffff888036064ae0 R14: ffff888000142480 R15: ffff8880434c2178
[ 76.754165][ T5322] FS: 00007f89047cf6c0(0000) GS:ffff88808d72d000(0000) knlGS:0000000000000000
[ 76.758048][ T5322] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 76.760787][ T5322] CR2: 00007f89047ccf70 CR3: 000000000034a000 CR4: 0000000000352ef0
[ 76.763739][ T5322] Call Trace:
[ 76.765006][ T5322]
[ 76.766186][ T5322] ? rcu_is_watching+0x15/0xb0
[ 76.768030][ T5322] queue_work_on+0x181/0x270
[ 76.769796][ T5322] ? lockdep_hardirqs_on+0x9c/0x150
[ 76.772171][ T5322] ? __pfx_queue_work_on+0x10/0x10
[ 76.774470][ T5322] ? _raw_spin_unlock_irqrestore+0xad/0x110
[ 76.776933][ T5322] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 76.779682][ T5322] ? skb_queue_tail+0x30/0xf0
[ 76.781682][ T5322] hci_recv_frame+0x625/0x7c0
[ 76.783759][ T5322] ? skb_pull+0xc1/0x1d0
[ 76.785650][ T5322] vhci_write+0x358/0x4a0
[ 76.787577][ T5322] vfs_write+0x5c9/0xb30
[ 76.789623][ T5322] ? __pfx_vhci_write+0x10/0x10
[ 76.792130][ T5322] ? __pfx_vfs_write+0x10/0x10
[ 76.794577][ T5322] ? __fget_files+0x2a/0x420
[ 76.796690][ T5322] ksys_write+0x145/0x250
[ 76.798532][ T5322] ? __pfx_ksys_write+0x10/0x10
[ 76.800491][ T5322] ? do_syscall_64+0xbe/0xfa0
[ 76.802286][ T5322] do_syscall_64+0xfa/0xfa0
[ 76.803989][ T5322] ? lockdep_hardirqs_on+0x9c/0x150
[ 76.805820][ T5322] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 76.808002][ T5322] ? clear_bhb_loop+0x60/0xb0
[ 76.809943][ T5322] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 76.812251][ T5322] RIP: 0033:0x7f890398e27f
[ 76.814291][ T5322] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[ 76.822869][ T5322] RSP: 002b:00007f89047cf000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[ 76.826373][ T5322] RAX: ffffffffffffffda RBX: 00007f8903be6090 RCX: 00007f890398e27f
[ 76.829908][ T5322] RDX: 0000000000000007 RSI: 0000200000000040 RDI: 00000000000000ca
[ 76.833166][ T5322] RBP: 00007f8903a13f91 R08: 0000000000000000 R09: 0000000000000000
[ 76.836362][ T5322] R10: 0000200000000040 R11: 0000000000000293 R12: 0000000000000000
[ 76.842106][ T5322] R13: 00007f8903be6128 R14: 00007f8903be6090 R15: 00007ffc87c69438
[ 76.846758][ T5322]
[ 76.848334][ T5322] Kernel panic - not syncing: kernel: panic_on_warn set ...
[ 76.852217][ T5322] CPU: 0 UID: 0 PID: 5322 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full)
[ 76.856938][ T5322] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 76.861740][ T5322] Call Trace:
[ 76.863216][ T5322]
[ 76.864436][ T5322] dump_stack_lvl+0x99/0x250
[ 76.866201][ T5322] ? __asan_memcpy+0x40/0x70
[ 76.868188][ T5322] ? __pfx_dump_stack_lvl+0x10/0x10
[ 76.870681][ T5322] ? __pfx__printk+0x10/0x10
[ 76.872644][ T5322] vpanic+0x237/0x6d0
[ 76.874449][ T5322] ? __pfx_vpanic+0x10/0x10
[ 76.876483][ T5322] panic+0xb9/0xc0
[ 76.878158][ T5322] ? __pfx_panic+0x10/0x10
[ 76.880157][ T5322] __warn+0x31b/0x4b0
[ 76.882016][ T5322] ? __queue_work+0xd38/0xfb0
[ 76.884567][ T5322] ? __queue_work+0xd38/0xfb0
[ 76.887339][ T5322] report_bug+0x2be/0x4f0
[ 76.889489][ T5322] ? __queue_work+0xd38/0xfb0
[ 76.891617][ T5322] ? __queue_work+0xd38/0xfb0
[ 76.893678][ T5322] ? __queue_work+0xd3a/0xfb0
[ 76.895842][ T5322] handle_bug+0x84/0x160
[ 76.897848][ T5322] exc_invalid_op+0x1a/0x50
[ 76.899946][ T5322] asm_exc_invalid_op+0x1a/0x20
[ 76.902234][ T5322] RIP: 0010:__queue_work+0xd38/0xfb0
[ 76.904602][ T5322] Code: 42 80 3c 20 00 74 08 4c 89 ef e8 13 73 9d 00 49 8b 75 00 49 81 c7 78 01 00 00 48 c7 c7 20 eb 69 8b 4c 89 fa e8 b9 31 f9 ff 90 <0f> 0b 90 90 e9 1a f5 ff ff e8 4a 25 36 00 90 0f 0b 90 e9 dd fc ff
[ 76.913318][ T5322] RSP: 0018:ffffc9000d52fa70 EFLAGS: 00010046
[ 76.916033][ T5322] RAX: c510c49df65f0700 RBX: 0000000000000000 RCX: ffff888000142480
[ 76.919663][ T5322] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000002
[ 76.923278][ T5322] RBP: 1ffff11008698438 R08: 0000000000000003 R09: 0000000000000004
[ 76.926668][ T5322] R10: dffffc0000000000 R11: fffffbfff1bba684 R12: dffffc0000000000
[ 76.929970][ T5322] R13: ffff888036064ae0 R14: ffff888000142480 R15: ffff8880434c2178
[ 76.933428][ T5322] ? rcu_is_watching+0x15/0xb0
[ 76.935680][ T5322] queue_work_on+0x181/0x270
[ 76.938022][ T5322] ? lockdep_hardirqs_on+0x9c/0x150
[ 76.940597][ T5322] ? __pfx_queue_work_on+0x10/0x10
[ 76.942763][ T5322] ? _raw_spin_unlock_irqrestore+0xad/0x110
[ 76.945020][ T5322] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 76.947876][ T5322] ? skb_queue_tail+0x30/0xf0
[ 76.949792][ T5322] hci_recv_frame+0x625/0x7c0
[ 76.951573][ T5322] ? skb_pull+0xc1/0x1d0
[ 76.953447][ T5322] vhci_write+0x358/0x4a0
[ 76.955536][ T5322] vfs_write+0x5c9/0xb30
[ 76.957514][ T5322] ? __pfx_vhci_write+0x10/0x10
[ 76.959699][ T5322] ? __pfx_vfs_write+0x10/0x10
[ 76.961805][ T5322] ? __fget_files+0x2a/0x420
[ 76.964058][ T5322] ksys_write+0x145/0x250
[ 76.966281][ T5322] ? __pfx_ksys_write+0x10/0x10
[ 76.968562][ T5322] ? do_syscall_64+0xbe/0xfa0
[ 76.970407][ T5322] do_syscall_64+0xfa/0xfa0
[ 76.972387][ T5322] ? lockdep_hardirqs_on+0x9c/0x150
[ 76.974487][ T5322] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 76.976833][ T5322] ? clear_bhb_loop+0x60/0xb0
[ 76.978643][ T5322] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 76.981223][ T5322] RIP: 0033:0x7f890398e27f
[ 76.983332][ T5322] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[ 76.990765][ T5322] RSP: 002b:00007f89047cf000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[ 76.993981][ T5322] RAX: ffffffffffffffda RBX: 00007f8903be6090 RCX: 00007f890398e27f
[ 76.997070][ T5322] RDX: 0000000000000007 RSI: 0000200000000040 RDI: 00000000000000ca
[ 77.000276][ T5322] RBP: 00007f8903a13f91 R08: 0000000000000000 R09: 0000000000000000
[ 77.003765][ T5322] R10: 0000200000000040 R11: 0000000000000293 R12: 0000000000000000
[ 77.007348][ T5322] R13: 00007f8903be6128 R14: 00007f8903be6090 R15: 00007ffc87c69438
[ 77.010625][ T5322]
[ 77.012255][ T5322] Kernel Offset: disabled
[ 77.014021][ T5322] Rebooting in 86400 seconds..