program:
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1b, 0x10, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$netlink(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000380)=[{&(0x7f0000000040)={0x18, 0x28, 0x101, 0x0, 0x0, "", [@typed={0x8, 0x3fff, 0x0, 0x0, @uid}]}, 0x18}], 0x1}, 0x0)
syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="043e751d"], 0x24)
syz_emit_vhci(&(0x7f0000000040)=ANY=[@ANYBLOB="043e1f1b"], 0x22)

[   59.638383][   T48] BUG: sleeping function called from invalid context at kernel/locking/mutex.c:585
[   59.642057][   T48] in_atomic(): 0, irqs_disabled(): 0, non_block: 0, pid: 48, name: kworker/u5:0
[   59.645487][   T48] preempt_count: 0, expected: 0
[   59.647260][   T48] RCU nest depth: 1, expected: 0
[   59.649200][   T48] 4 locks held by kworker/u5:0/48:
[   59.651117][   T48]  #0: ffff88801fbe2948 ((wq_completion)hci0#2){+.+.}-{0:0}, at: process_scheduled_works+0x93b/0x1850
[   59.656308][   T48]  #1: ffffc9000062fd00 ((work_completion)(&hdev->rx_work)){+.+.}-{0:0}, at: process_scheduled_works+0x976/0x1850
[   59.660889][   T48]  #2: ffff88804360c078 (&hdev->lock){+.+.}-{3:3}, at: hci_le_create_big_complete_evt+0xcf/0xae0
[   59.665442][   T48]  #3: ffffffff8e937da0 (rcu_read_lock){....}-{1:2}, at: hci_le_create_big_complete_evt+0xdb/0xae0
[   59.669450][   T48] CPU: 0 UID: 0 PID: 48 Comm: kworker/u5:0 Not tainted 6.12.0-rc7-syzkaller #0
[   59.672671][   T48] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   59.676413][   T48] Workqueue: hci0 hci_rx_work
[   59.678083][   T48] Call Trace:
[   59.679289][   T48]  <TASK>
[   59.680365][   T48]  dump_stack_lvl+0x241/0x360
[   59.682072][   T48]  ? __pfx_dump_stack_lvl+0x10/0x10
[   59.683953][   T48]  ? __pfx__printk+0x10/0x10
[   59.685687][   T48]  __might_resched+0x5d4/0x780
[   59.687480][   T48]  ? __mutex_lock+0x112/0xd70
[   59.689266][   T48]  ? __pfx___might_resched+0x10/0x10
[   59.691255][   T48]  __mutex_lock+0xc1/0xd70
[   59.692843][   T48]  ? __pfx_lock_acquire+0x10/0x10
[   59.694699][   T48]  ? hci_le_create_big_complete_evt+0x3d9/0xae0
[   59.697117][   T48]  ? __pfx_lock_release+0x10/0x10
[   59.699038][   T48]  ? __pfx___mutex_lock+0x10/0x10
[   59.700912][   T48]  ? trace_contention_end+0x3c/0x120
[   59.702900][   T48]  ? skb_pull_data+0x112/0x230
[   59.704692][   T48]  ? hci_conn_set_handle+0x9a/0x270
[   59.706584][   T48]  hci_le_create_big_complete_evt+0x3d9/0xae0
[   59.708742][   T48]  ? __copy_skb_header+0x437/0x5b0
[   59.710598][   T48]  ? hci_le_create_big_complete_evt+0xdb/0xae0
[   59.712819][   T48]  ? __pfx_hci_le_create_big_complete_evt+0x10/0x10
[   59.715141][   T48]  ? hci_le_meta_evt+0x366/0x580
[   59.716954][   T48]  ? __pfx_hci_le_create_big_complete_evt+0x10/0x10
[   59.719367][   T48]  hci_event_packet+0xa55/0x1540
[   59.721113][   T48]  ? __pfx_hci_le_meta_evt+0x10/0x10
[   59.722934][   T48]  ? __pfx_hci_event_packet+0x10/0x10
[   59.724865][   T48]  ? set_advertising_complete+0x450/0x6f0
[   59.727019][   T48]  ? kcov_remote_start+0x97/0x7d0
[   59.728892][   T48]  hci_rx_work+0x3fe/0xd80
[   59.730573][   T48]  ? process_scheduled_works+0x976/0x1850
[   59.732641][   T48]  process_scheduled_works+0xa63/0x1850
[   59.734692][   T48]  ? __pfx_process_scheduled_works+0x10/0x10
[   59.736897][   T48]  ? assign_work+0x364/0x3d0
[   59.738475][   T48]  worker_thread+0x870/0xd30
[   59.740152][   T48]  ? __kthread_parkme+0x169/0x1d0
[   59.741980][   T48]  ? __pfx_worker_thread+0x10/0x10
[   59.743894][   T48]  kthread+0x2f0/0x390
[   59.745458][   T48]  ? __pfx_worker_thread+0x10/0x10
[   59.747332][   T48]  ? __pfx_kthread+0x10/0x10
[   59.749050][   T48]  ret_from_fork+0x4b/0x80
[   59.750783][   T48]  ? __pfx_kthread+0x10/0x10
[   59.752547][   T48]  ret_from_fork_asm+0x1a/0x30
[   59.754376][   T48]  </TASK>
[   59.761678][   T48] 
[   59.762682][   T48] =============================
[   59.764533][   T48] [ BUG: Invalid wait context ]
[   59.766434][   T48] 6.12.0-rc7-syzkaller #0 Tainted: G        W         
[   59.768940][   T48] -----------------------------
[   59.770668][   T48] kworker/u5:0/48 is trying to lock:
[   59.772639][   T48] ffffffff8fe402a8 (hci_cb_list_lock){+.+.}-{3:3}, at: hci_le_create_big_complete_evt+0x3d9/0xae0
[   59.776561][   T48] other info that might help us debug this:
[   59.778776][   T48] context-{4:4}
[   59.780098][   T48] 4 locks held by kworker/u5:0/48:
[   59.781993][   T48]  #0: ffff88801fbe2948 ((wq_completion)hci0#2){+.+.}-{0:0}, at: process_scheduled_works+0x93b/0x1850
[   59.786178][   T48]  #1: ffffc9000062fd00 ((work_completion)(&hdev->rx_work)){+.+.}-{0:0}, at: process_scheduled_works+0x976/0x1850
[   59.790485][   T48]  #2: ffff88804360c078 (&hdev->lock){+.+.}-{3:3}, at: hci_le_create_big_complete_evt+0xcf/0xae0
[   59.794335][   T48]  #3: ffffffff8e937da0 (rcu_read_lock){....}-{1:2}, at: hci_le_create_big_complete_evt+0xdb/0xae0
[   59.798372][   T48] stack backtrace:
[   59.799780][   T48] CPU: 0 UID: 0 PID: 48 Comm: kworker/u5:0 Tainted: G        W          6.12.0-rc7-syzkaller #0
[   59.803588][   T48] Tainted: [W]=WARN
[   59.805001][   T48] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   59.808949][   T48] Workqueue: hci0 hci_rx_work
[   59.810745][   T48] Call Trace:
[   59.812012][   T48]  <TASK>
[   59.813117][   T48]  dump_stack_lvl+0x241/0x360
[   59.814915][   T48]  ? __pfx_dump_stack_lvl+0x10/0x10
[   59.816781][   T48]  ? __pfx__printk+0x10/0x10
[   59.818499][   T48]  __lock_acquire+0x154a/0x2050
[   59.820299][   T48]  lock_acquire+0x1ed/0x550
[   59.822005][   T48]  ? hci_le_create_big_complete_evt+0x3d9/0xae0
[   59.824230][   T48]  ? __pfx_lock_acquire+0x10/0x10
[   59.826077][   T48]  ? __mutex_lock+0x112/0xd70
[   59.827920][   T48]  ? __pfx___might_resched+0x10/0x10
[   59.829838][   T48]  __mutex_lock+0x136/0xd70
[   59.831433][   T48]  ? hci_le_create_big_complete_evt+0x3d9/0xae0
[   59.833784][   T48]  ? __pfx_lock_acquire+0x10/0x10
[   59.835698][   T48]  ? hci_le_create_big_complete_evt+0x3d9/0xae0
[   59.838040][   T48]  ? __pfx_lock_release+0x10/0x10
[   59.839872][   T48]  ? __pfx___mutex_lock+0x10/0x10
[   59.841674][   T48]  ? trace_contention_end+0x3c/0x120
[   59.843606][   T48]  ? skb_pull_data+0x112/0x230
[   59.845460][   T48]  ? hci_conn_set_handle+0x9a/0x270
[   59.847340][   T48]  hci_le_create_big_complete_evt+0x3d9/0xae0
[   59.849662][   T48]  ? __copy_skb_header+0x437/0x5b0
[   59.851633][   T48]  ? hci_le_create_big_complete_evt+0xdb/0xae0
[   59.853951][   T48]  ? __pfx_hci_le_create_big_complete_evt+0x10/0x10
[   59.856246][   T48]  ? hci_le_meta_evt+0x366/0x580
[   59.857936][   T48]  ? __pfx_hci_le_create_big_complete_evt+0x10/0x10
[   59.860421][   T48]  hci_event_packet+0xa55/0x1540
[   59.862327][   T48]  ? __pfx_hci_le_meta_evt+0x10/0x10
[   59.864334][   T48]  ? __pfx_hci_event_packet+0x10/0x10
[   59.866357][   T48]  ? set_advertising_complete+0x450/0x6f0
[   59.868438][   T48]  ? kcov_remote_start+0x97/0x7d0
[   59.870296][   T48]  hci_rx_work+0x3fe/0xd80
[   59.871959][   T48]  ? process_scheduled_works+0x976/0x1850
[   59.874103][   T48]  process_scheduled_works+0xa63/0x1850
[   59.876210][   T48]  ? __pfx_process_scheduled_works+0x10/0x10
[   59.878398][   T48]  ? assign_work+0x364/0x3d0
[   59.880116][   T48]  worker_thread+0x870/0xd30
[   59.881840][   T48]  ? __kthread_parkme+0x169/0x1d0
[   59.883684][   T48]  ? __pfx_worker_thread+0x10/0x10
[   59.885678][   T48]  kthread+0x2f0/0x390
[   59.887216][   T48]  ? __pfx_worker_thread+0x10/0x10
[   59.889144][   T48]  ? __pfx_kthread+0x10/0x10
[   59.890935][   T48]  ret_from_fork+0x4b/0x80
[   59.892613][   T48]  ? __pfx_kthread+0x10/0x10
[   59.894309][   T48]  ret_from_fork_asm+0x1a/0x30
[   59.896120][   T48]  </TASK>