program:
r0 = syz_mount_image$btrfs(&(0x7f00000051c0), &(0x7f0000005200)='./file0\x00', 0x1204408, &(0x7f00000003c0)={[{@compress_force}, {@clear_cache}, {@nodatasum}, {@nossd}, {}, {@space_cache_v1}]}, 0x0, 0x51ab, &(0x7f000000a440)="$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")
ioctl$BTRFS_IOC_BALANCE_V2(r0, 0xc4009420, &(0x7f0000000440)={0x5, 0x0, {0x0, @struct, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {}, {0x0, @usage, 0x0, 0x0, 0x400000000000000, 0x0, 0x0, 0x0, 0xa, @struct, 0x0, 0x0, [0x0, 0x0, 0x0, 0x7]}})
r1 = openat$ppp(0xffffffffffffff9c, 0x0, 0x18d002, 0x0)
ioctl$PPPIOCGNPMODE(r1, 0xc008744c, &(0x7f0000000040)={0x281, 0x2})
ioctl$DRM_IOCTL_MODE_SETGAMMA(0xffffffffffffffff, 0xc02064a5, &(0x7f0000001940)={0x0, 0x0, 0x0, 0x0, 0x0})
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x6, 0x10, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="043e751d"], 0x24)
syz_emit_vhci(&(0x7f0000000040)=ANY=[@ANYBLOB="043e1f1b"], 0x22)
r2 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000080), 0x4000, 0x0)
ioctl$BTRFS_IOC_START_SYNC(r2, 0x80089418, &(0x7f00000000c0))
syz_mount_image$nilfs2(&(0x7f0000000080), &(0x7f0000000300)='./bus\x00', 0x0, &(0x7f0000000100)=ANY=[], 0x1, 0xad9, &(0x7f0000000340)="$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")
r3 = syz_open_dev$loop(&(0x7f0000000640), 0x0, 0x22400)
ioctl$LOOP_SET_STATUS(r3, 0x4c02, &(0x7f00000000c0)={0x0, {}, 0x0, {}, 0x40010003, 0x2, 0x8, 0x1d, "9e959f16b6787b08aa26e66c4056ec6bcfeef4fb0efcc1d8a6078ed98e203fd5f0643902dd8f6fac274de9d940bba5e51e92bbd4ce85450d00", "f625c1076e4c36c800def96015e0fb7e904d865c2fdc458ec58d347f41be5a08", [0x4, 0xa]})
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))
getsockopt$netlink(0xffffffffffffffff, 0x10e, 0x9, 0x0, 0x0)
ioctl$BTRFS_IOC_SUBVOL_CREATE(r0, 0x5000940e, &(0x7f0000000840)={{r0}, "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"})

[   71.835407][ T4670] Bluetooth: hci0: command tx timeout
[   72.235471][ T5324] loop0: detected capacity change from 0 to 32768
[   72.271391][ T5324] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.0 (5324)
[   72.317662][ T5324] BTRFS info (device loop0): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[   72.321753][ T5324] BTRFS info (device loop0): using xxhash64 (xxhash64-generic) checksum algorithm
[   72.334859][ T5324] BTRFS info (device loop0): disk space caching is enabled
[   72.337818][ T5324] BTRFS warning (device loop0): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2
[   72.420598][ T5324] BTRFS info (device loop0): rebuilding free space tree
[   72.452550][ T5324] BTRFS info (device loop0): disabling free space tree
[   72.457726][ T5324] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[   72.461533][ T5324] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[   72.530114][ T5324] BTRFS info (device loop0): balance: start -d -m
[   72.546226][ T5324] BTRFS info (device loop0): relocating block group 6881280 flags data|metadata
[   72.560631][ T4670] BUG: sleeping function called from invalid context at kernel/locking/mutex.c:585
[   72.564065][ T4670] in_atomic(): 0, irqs_disabled(): 0, non_block: 0, pid: 4670, name: kworker/u5:1
[   72.568037][ T4670] preempt_count: 0, expected: 0
[   72.569885][ T4670] RCU nest depth: 1, expected: 0
[   72.571931][ T4670] 4 locks held by kworker/u5:1/4670:
[   72.573994][ T4670]  #0: ffff888043b86148 ((wq_completion)hci0#2){+.+.}-{0:0}, at: process_scheduled_works+0x93b/0x1850
[   72.579768][ T4670]  #1: ffffc9000dcdfd00 ((work_completion)(&hdev->rx_work)){+.+.}-{0:0}, at: process_scheduled_works+0x976/0x1850
[   72.584197][ T4670]  #2: ffff888043ac0078 (&hdev->lock){+.+.}-{3:3}, at: hci_le_create_big_complete_evt+0xcf/0xae0
[   72.588191][ T4670]  #3: ffffffff8e937da0 (rcu_read_lock){....}-{1:2}, at: hci_le_create_big_complete_evt+0xdb/0xae0
[   72.591665][ T4670] CPU: 0 UID: 0 PID: 4670 Comm: kworker/u5:1 Not tainted 6.12.0-rc7-syzkaller-00125-gcfaaa7d010d1 #0
[   72.595524][ T4670] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   72.599531][ T4670] Workqueue: hci0 hci_rx_work
[   72.601313][ T4670] Call Trace:
[   72.602604][ T4670]  <TASK>
[   72.603727][ T4670]  dump_stack_lvl+0x241/0x360
[   72.605414][ T4670]  ? __pfx_dump_stack_lvl+0x10/0x10
[   72.607303][ T4670]  ? __pfx__printk+0x10/0x10
[   72.609017][ T4670]  __might_resched+0x5d4/0x780
[   72.610860][ T4670]  ? __mutex_lock+0x112/0xd70
[   72.612599][ T4670]  ? __pfx___might_resched+0x10/0x10
[   72.614568][ T4670]  __mutex_lock+0xc1/0xd70
[   72.616229][ T4670]  ? __pfx_lock_acquire+0x10/0x10
[   72.618190][ T4670]  ? hci_le_create_big_complete_evt+0x3d9/0xae0
[   72.620573][ T4670]  ? __pfx_lock_release+0x10/0x10
[   72.622479][ T4670]  ? __pfx___mutex_lock+0x10/0x10
[   72.624373][ T4670]  ? trace_contention_end+0x3c/0x120
[   72.626392][ T4670]  ? skb_pull_data+0x112/0x230
[   72.628288][ T4670]  ? hci_conn_set_handle+0x9a/0x270
[   72.630297][ T4670]  hci_le_create_big_complete_evt+0x3d9/0xae0
[   72.632506][ T4670]  ? __copy_skb_header+0x437/0x5b0
[   72.634423][ T4670]  ? hci_le_create_big_complete_evt+0xdb/0xae0
[   72.636542][ T4670]  ? __pfx_hci_le_create_big_complete_evt+0x10/0x10
[   72.638706][ T4670]  ? hci_le_meta_evt+0x366/0x580
[   72.640416][ T4670]  ? __pfx_hci_le_create_big_complete_evt+0x10/0x10
[   72.642705][ T4670]  hci_event_packet+0xa55/0x1540
[   72.644399][ T4670]  ? __pfx_hci_le_meta_evt+0x10/0x10
[   72.646203][ T4670]  ? __pfx_hci_event_packet+0x10/0x10
[   72.648105][ T4670]  ? do_raw_spin_unlock+0x58/0x8b0
[   72.649933][ T4670]  ? hci_send_to_monitor+0xd8/0x7f0
[   72.651768][ T4670]  ? kcov_remote_start+0x97/0x7d0
[   72.653554][ T4670]  hci_rx_work+0x3e8/0xca0
[   72.655184][ T4670]  ? process_scheduled_works+0x976/0x1850
[   72.657355][ T4670]  process_scheduled_works+0xa63/0x1850
[   72.659338][ T4670]  ? __pfx_process_scheduled_works+0x10/0x10
[   72.661560][ T4670]  ? assign_work+0x364/0x3d0
[   72.663249][ T4670]  worker_thread+0x870/0xd30
[   72.664867][ T4670]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[   72.666923][ T4670]  ? __kthread_parkme+0x169/0x1d0
[   72.668672][ T4670]  ? __pfx_worker_thread+0x10/0x10
[   72.670495][ T4670]  kthread+0x2f0/0x390
[   72.671987][ T4670]  ? __pfx_worker_thread+0x10/0x10
[   72.673883][ T4670]  ? __pfx_kthread+0x10/0x10
[   72.675691][ T4670]  ret_from_fork+0x4b/0x80
[   72.677374][ T4670]  ? __pfx_kthread+0x10/0x10
[   72.679106][ T4670]  ret_from_fork_asm+0x1a/0x30
[   72.681016][ T4670]  </TASK>
[   72.686791][ T4670] 
[   72.687753][ T4670] =============================
[   72.689546][ T4670] [ BUG: Invalid wait context ]
[   72.691515][ T4670] 6.12.0-rc7-syzkaller-00125-gcfaaa7d010d1 #0 Tainted: G        W         
[   72.694831][ T4670] -----------------------------
[   72.696645][ T4670] kworker/u5:1/4670 is trying to lock:
[   72.698623][ T4670] ffffffff8fe404a8 (hci_cb_list_lock){+.+.}-{3:3}, at: hci_le_create_big_complete_evt+0x3d9/0xae0
[   72.702444][ T4670] other info that might help us debug this:
[   72.704596][ T4670] context-{4:4}
[   72.705937][ T4670] 4 locks held by kworker/u5:1/4670:
[   72.707903][ T4670]  #0: ffff888043b86148 ((wq_completion)hci0#2){+.+.}-{0:0}, at: process_scheduled_works+0x93b/0x1850
[   72.711879][ T4670]  #1: ffffc9000dcdfd00 ((work_completion)(&hdev->rx_work)){+.+.}-{0:0}, at: process_scheduled_works+0x976/0x1850
[   72.716300][ T4670]  #2: ffff888043ac0078 (&hdev->lock){+.+.}-{3:3}, at: hci_le_create_big_complete_evt+0xcf/0xae0
[   72.719988][ T4670]  #3: ffffffff8e937da0 (rcu_read_lock){....}-{1:2}, at: hci_le_create_big_complete_evt+0xdb/0xae0
[   72.724003][ T4670] stack backtrace:
[   72.725573][ T4670] CPU: 0 UID: 0 PID: 4670 Comm: kworker/u5:1 Tainted: G        W          6.12.0-rc7-syzkaller-00125-gcfaaa7d010d1 #0
[   72.730215][ T4670] Tainted: [W]=WARN
[   72.731595][ T4670] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   72.735735][ T4670] Workqueue: hci0 hci_rx_work
[   72.737578][ T4670] Call Trace:
[   72.738854][ T4670]  <TASK>
[   72.740000][ T4670]  dump_stack_lvl+0x241/0x360
[   72.741771][ T4670]  ? __pfx_dump_stack_lvl+0x10/0x10
[   72.743730][ T4670]  ? __pfx__printk+0x10/0x10
[   72.745624][ T4670]  __lock_acquire+0x154a/0x2050
[   72.747428][ T4670]  lock_acquire+0x1ed/0x550
[   72.749016][ T4670]  ? hci_le_create_big_complete_evt+0x3d9/0xae0
[   72.751336][ T4670]  ? __pfx_lock_acquire+0x10/0x10
[   72.752932][ T4670]  ? __mutex_lock+0x112/0xd70
[   72.754773][ T4670]  ? __pfx___might_resched+0x10/0x10
[   72.756796][ T4670]  __mutex_lock+0x136/0xd70
[   72.758465][ T4670]  ? hci_le_create_big_complete_evt+0x3d9/0xae0
[   72.760975][ T4670]  ? __pfx_lock_acquire+0x10/0x10
[   72.763111][ T4670]  ? hci_le_create_big_complete_evt+0x3d9/0xae0
[   72.765494][ T4670]  ? __pfx_lock_release+0x10/0x10
[   72.767413][ T4670]  ? __pfx___mutex_lock+0x10/0x10
[   72.769283][ T4670]  ? trace_contention_end+0x3c/0x120
[   72.771259][ T4670]  ? skb_pull_data+0x112/0x230
[   72.772986][ T4670]  ? hci_conn_set_handle+0x9a/0x270
[   72.774918][ T4670]  hci_le_create_big_complete_evt+0x3d9/0xae0
[   72.777448][ T4670]  ? __copy_skb_header+0x437/0x5b0
[   72.779535][ T4670]  ? hci_le_create_big_complete_evt+0xdb/0xae0
[   72.781973][ T4670]  ? __pfx_hci_le_create_big_complete_evt+0x10/0x10
[   72.784379][ T4670]  ? hci_le_meta_evt+0x366/0x580
[   72.786323][ T4670]  ? __pfx_hci_le_create_big_complete_evt+0x10/0x10
[   72.788822][ T4670]  hci_event_packet+0xa55/0x1540
[   72.790667][ T4670]  ? __pfx_hci_le_meta_evt+0x10/0x10
[   72.792659][ T4670]  ? __pfx_hci_event_packet+0x10/0x10
[   72.794624][ T4670]  ? do_raw_spin_unlock+0x58/0x8b0
[   72.796437][ T4670]  ? hci_send_to_monitor+0xd8/0x7f0
[   72.798367][ T4670]  ? kcov_remote_start+0x97/0x7d0
[   72.800201][ T4670]  hci_rx_work+0x3e8/0xca0
[   72.801885][ T4670]  ? process_scheduled_works+0x976/0x1850
[   72.804033][ T4670]  process_scheduled_works+0xa63/0x1850
[   72.806094][ T4670]  ? __pfx_process_scheduled_works+0x10/0x10
[   72.808320][ T4670]  ? assign_work+0x364/0x3d0
[   72.810035][ T4670]  worker_thread+0x870/0xd30
[   72.811709][ T4670]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[   72.813821][ T4670]  ? __kthread_parkme+0x169/0x1d0
[   72.815639][ T4670]  ? __pfx_worker_thread+0x10/0x10
[   72.817480][ T4670]  kthread+0x2f0/0x390
[   72.818990][ T4670]  ? __pfx_worker_thread+0x10/0x10
[   72.820914][ T4670]  ? __pfx_kthread+0x10/0x10
[   72.822597][ T4670]  ret_from_fork+0x4b/0x80
[   72.824240][ T4670]  ? __pfx_kthread+0x10/0x10
[   72.825912][ T4670]  ret_from_fork_asm+0x1a/0x30
[   72.827722][ T4670]  </TASK>
[   72.835567][ T4670] ==================================================================
[   72.838494][ T4670] BUG: KASAN: slab-use-after-free in hci_le_create_big_complete_evt+0x383/0xae0
[   72.841584][ T4670] Read of size 8 at addr ffff88804f784000 by task kworker/u5:1/4670
[   72.844378][ T4670] 
[   72.845423][ T4670] CPU: 0 UID: 0 PID: 4670 Comm: kworker/u5:1 Tainted: G        W          6.12.0-rc7-syzkaller-00125-gcfaaa7d010d1 #0
[   72.849940][ T4670] Tainted: [W]=WARN
[   72.851343][ T4670] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   72.855407][ T4670] Workqueue: hci0 hci_rx_work
[   72.857095][ T4670] Call Trace:
[   72.858439][ T4670]  <TASK>
[   72.859466][ T4670]  dump_stack_lvl+0x241/0x360
[   72.861180][ T4670]  ? __pfx_dump_stack_lvl+0x10/0x10
[   72.863135][ T4670]  ? __pfx__printk+0x10/0x10
[   72.864800][ T4670]  ? _printk+0xd5/0x120
[   72.866333][ T4670]  ? __virt_addr_valid+0x183/0x530
[   72.868154][ T4670]  ? __virt_addr_valid+0x183/0x530
[   72.869982][ T4670]  print_report+0x169/0x550
[   72.871601][ T4670]  ? __virt_addr_valid+0x183/0x530
[   72.873471][ T4670]  ? __virt_addr_valid+0x183/0x530
[   72.875301][ T4670]  ? __virt_addr_valid+0x45f/0x530
[   72.877044][ T4670]  ? __phys_addr+0xba/0x170
[   72.878621][ T4670]  ? hci_le_create_big_complete_evt+0x383/0xae0
[   72.881042][ T4670]  kasan_report+0x143/0x180
[   72.882709][ T4670]  ? hci_le_create_big_complete_evt+0x383/0xae0
[   72.884914][ T4670]  hci_le_create_big_complete_evt+0x383/0xae0
[   72.887197][ T4670]  ? __copy_skb_header+0x437/0x5b0
[   72.889098][ T4670]  ? hci_le_create_big_complete_evt+0xdb/0xae0
[   72.891350][ T4670]  ? __pfx_hci_le_create_big_complete_evt+0x10/0x10
[   72.893770][ T4670]  ? hci_le_meta_evt+0x366/0x580
[   72.895628][ T4670]  ? __pfx_hci_le_create_big_complete_evt+0x10/0x10
[   72.898070][ T4670]  hci_event_packet+0xa55/0x1540
[   72.899902][ T4670]  ? __pfx_hci_le_meta_evt+0x10/0x10
[   72.901884][ T4670]  ? __pfx_hci_event_packet+0x10/0x10
[   72.903890][ T4670]  ? do_raw_spin_unlock+0x58/0x8b0
[   72.905905][ T4670]  ? hci_send_to_monitor+0xd8/0x7f0
[   72.907962][ T4670]  ? kcov_remote_start+0x97/0x7d0
[   72.909819][ T4670]  hci_rx_work+0x3e8/0xca0
[   72.911629][ T4670]  ? process_scheduled_works+0x976/0x1850
[   72.913785][ T4670]  process_scheduled_works+0xa63/0x1850
[   72.915897][ T4670]  ? __pfx_process_scheduled_works+0x10/0x10
[   72.918137][ T4670]  ? assign_work+0x364/0x3d0
[   72.919669][ T4670]  worker_thread+0x870/0xd30
[   72.921251][ T4670]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[   72.923251][ T4670]  ? __kthread_parkme+0x169/0x1d0
[   72.924990][ T4670]  ? __pfx_worker_thread+0x10/0x10
[   72.926799][ T4670]  kthread+0x2f0/0x390
[   72.928215][ T4670]  ? __pfx_worker_thread+0x10/0x10
[   72.929971][ T4670]  ? __pfx_kthread+0x10/0x10
[   72.931673][ T4670]  ret_from_fork+0x4b/0x80
[   72.933411][ T4670]  ? __pfx_kthread+0x10/0x10
[   72.935195][ T4670]  ret_from_fork_asm+0x1a/0x30
[   72.937178][ T4670]  </TASK>
[   72.938505][ T4670] 
[   72.939488][ T4670] Allocated by task 4670:
[   72.941243][ T4670]  kasan_save_track+0x3f/0x80
[   72.943154][ T4670]  __kasan_kmalloc+0x98/0xb0
[   72.945037][ T4670]  __kmalloc_cache_noprof+0x19c/0x2c0
[   72.947432][ T4670]  __hci_conn_add+0x2f9/0x1850
[   72.949550][ T4670]  hci_le_big_sync_established_evt+0x414/0xc20
[   72.952191][ T4670]  hci_event_packet+0xa55/0x1540
[   72.954334][ T4670]  hci_rx_work+0x3e8/0xca0
[   72.956262][ T4670]  process_scheduled_works+0xa63/0x1850
[   72.958688][ T4670]  worker_thread+0x870/0xd30
[   72.960824][ T4670]  kthread+0x2f0/0x390
[   72.962629][ T4670]  ret_from_fork+0x4b/0x80
[   72.964661][ T4670]  ret_from_fork_asm+0x1a/0x30
[   72.966438][ T4670] 
[   72.967329][ T4670] Freed by task 4670:
[   72.968827][ T4670]  kasan_save_track+0x3f/0x80
[   72.970524][ T4670]  kasan_save_free_info+0x40/0x50
[   72.972326][ T4670]  __kasan_slab_free+0x59/0x70
[   72.974116][ T4670]  kfree+0x1a0/0x440
[   72.975550][ T4670]  device_release+0x99/0x1c0
[   72.977292][ T4670]  kobject_put+0x22f/0x480
[   72.978910][ T4670]  hci_conn_del+0x8c4/0xc40
[   72.980441][ T4670]  hci_le_create_big_complete_evt+0x619/0xae0
[   72.982857][ T4670]  hci_event_packet+0xa55/0x1540
[   72.984627][ T4670]  hci_rx_work+0x3e8/0xca0
[   72.986322][ T4670]  process_scheduled_works+0xa63/0x1850
[   72.988387][ T4670]  worker_thread+0x870/0xd30
[   72.990081][ T4670]  kthread+0x2f0/0x390
[   72.991607][ T4670]  ret_from_fork+0x4b/0x80
[   72.993145][ T4670]  ret_from_fork_asm+0x1a/0x30
[   72.994928][ T4670] 
[   72.995893][ T4670] The buggy address belongs to the object at ffff88804f784000
[   72.995893][ T4670]  which belongs to the cache kmalloc-8k of size 8192
[   73.000993][ T4670] The buggy address is located 0 bytes inside of
[   73.000993][ T4670]  freed 8192-byte region [ffff88804f784000, ffff88804f786000)
[   73.005873][ T4670] 
[   73.006882][ T4670] The buggy address belongs to the physical page:
[   73.009294][ T4670] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x4f780
[   73.012208][ T4670] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[   73.015293][ T4670] flags: 0x4fff00000000040(head|node=1|zone=1|lastcpupid=0x7ff)
[   73.018582][ T4670] page_type: f5(slab)
[   73.020284][ T4670] raw: 04fff00000000040 ffff88801ac42280 dead000000000122 0000000000000000
[   73.023391][ T4670] raw: 0000000000000000 0000000000020002 00000001f5000000 0000000000000000
[   73.026512][ T4670] head: 04fff00000000040 ffff88801ac42280 dead000000000122 0000000000000000
[   73.029704][ T4670] head: 0000000000000000 0000000000020002 00000001f5000000 0000000000000000
[   73.032717][ T4670] head: 04fff00000000003 ffffea00013de001 ffffffffffffffff 0000000000000000
[   73.035812][ T4670] head: 0000000000000008 0000000000000000 00000000ffffffff 0000000000000000
[   73.038783][ T4670] page dumped because: kasan: bad access detected
[   73.041044][ T4670] page_owner tracks the page as allocated
[   73.043102][ T4670] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd2040(__GFP_IO|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5327, tgid 5327 (udevd), ts 72311323939, free_ts 72311070722
[   73.050252][ T4670]  post_alloc_hook+0x1f3/0x230
[   73.051896][ T4670]  get_page_from_freelist+0x3649/0x3790
[   73.053951][ T4670]  __alloc_pages_noprof+0x292/0x710
[   73.055760][ T4670]  alloc_pages_mpol_noprof+0x3e8/0x680
[   73.057550][ T4670]  alloc_slab_page+0x6a/0x140
[   73.059024][ T4670]  allocate_slab+0x5a/0x2f0
[   73.060578][ T4670]  ___slab_alloc+0xcd1/0x14b0
[   73.062194][ T4670]  __slab_alloc+0x58/0xa0
[   73.063809][ T4670]  __kmalloc_cache_noprof+0x1d5/0x2c0
[   73.065724][ T4670]  tomoyo_init_log+0x11cd/0x2050
[   73.067541][ T4670]  tomoyo_supervisor+0x38a/0x11f0
[   73.069410][ T4670]  tomoyo_env_perm+0x178/0x210
[   73.071164][ T4670]  tomoyo_find_next_domain+0x146e/0x1d40
[   73.073160][ T4670]  tomoyo_bprm_check_security+0x114/0x180
[   73.075226][ T4670]  security_bprm_check+0x86/0x250
[   73.077142][ T4670]  bprm_execve+0xa56/0x1770
[   73.078885][ T4670] page last free pid 5327 tgid 5327 stack trace:
[   73.081234][ T4670]  free_unref_page+0xdf9/0x1140
[   73.082920][ T4670]  __put_partials+0xeb/0x130
[   73.084595][ T4670]  put_cpu_partial+0x17c/0x250
[   73.086384][ T4670]  __slab_free+0x2ea/0x3d0
[   73.088087][ T4670]  qlist_free_all+0x9a/0x140
[   73.089991][ T4670]  kasan_quarantine_reduce+0x14f/0x170
[   73.092002][ T4670]  __kasan_slab_alloc+0x23/0x80
[   73.093646][ T4670]  __kmalloc_noprof+0x1a6/0x400
[   73.095476][ T4670]  tomoyo_supervisor+0xe0d/0x11f0
[   73.097246][ T4670]  tomoyo_env_perm+0x178/0x210
[   73.099157][ T4670]  tomoyo_find_next_domain+0x146e/0x1d40
[   73.101345][ T4670]  tomoyo_bprm_check_security+0x114/0x180
[   73.103487][ T4670]  security_bprm_check+0x86/0x250
[   73.105290][ T4670]  bprm_execve+0xa56/0x1770
[   73.107095][ T4670]  do_execveat_common+0x55f/0x6f0
[   73.108938][ T4670]  __x64_sys_execve+0x92/0xb0
[   73.110712][ T4670] 
[   73.111626][ T4670] Memory state around the buggy address:
[   73.113643][ T4670]  ffff88804f783f00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[   73.116556][ T4670]  ffff88804f783f80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[   73.119383][ T4670] >ffff88804f784000: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[   73.122178][ T4670]                    ^
[   73.123688][ T4670]  ffff88804f784080: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[   73.126616][ T4670]  ffff88804f784100: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[   73.129453][ T4670] ==================================================================
[   73.158085][ T4670] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[   73.161709][ T4670] CPU: 0 UID: 0 PID: 4670 Comm: kworker/u5:1 Tainted: G        W          6.12.0-rc7-syzkaller-00125-gcfaaa7d010d1 #0
[   73.167576][ T4670] Tainted: [W]=WARN
[   73.169492][ T4670] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   73.174165][ T4670] Workqueue: hci0 hci_rx_work
[   73.176313][ T4670] Call Trace:
[   73.177564][ T4670]  <TASK>
[   73.178634][ T4670]  dump_stack_lvl+0x241/0x360
[   73.180287][ T4670]  ? __pfx_dump_stack_lvl+0x10/0x10
[   73.182082][ T4670]  ? __pfx__printk+0x10/0x10
[   73.183798][ T4670]  ? rcu_is_watching+0x15/0xb0
[   73.185781][ T4670]  ? preempt_schedule+0xe1/0xf0
[   73.187661][ T4670]  ? vscnprintf+0x5d/0x90
[   73.189361][ T4670]  panic+0x349/0x880
[   73.190825][ T4670]  ? check_panic_on_warn+0x21/0xb0
[   73.192675][ T4670]  ? __pfx_panic+0x10/0x10
[   73.194382][ T4670]  ? _raw_spin_unlock_irqrestore+0x130/0x140
[   73.196545][ T4670]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[   73.198976][ T4670]  ? print_report+0x502/0x550
[   73.200799][ T4670]  check_panic_on_warn+0x86/0xb0
[   73.202762][ T4670]  ? hci_le_create_big_complete_evt+0x383/0xae0
[   73.205076][ T4670]  end_report+0x77/0x160
[   73.206744][ T4670]  kasan_report+0x154/0x180
[   73.208434][ T4670]  ? hci_le_create_big_complete_evt+0x383/0xae0
[   73.210781][ T4670]  hci_le_create_big_complete_evt+0x383/0xae0
[   73.213088][ T4670]  ? __copy_skb_header+0x437/0x5b0
[   73.215111][ T4670]  ? hci_le_create_big_complete_evt+0xdb/0xae0
[   73.217589][ T4670]  ? __pfx_hci_le_create_big_complete_evt+0x10/0x10
[   73.220553][ T4670]  ? hci_le_meta_evt+0x366/0x580
[   73.222926][ T4670]  ? __pfx_hci_le_create_big_complete_evt+0x10/0x10
[   73.225426][ T4670]  hci_event_packet+0xa55/0x1540
[   73.227359][ T4670]  ? __pfx_hci_le_meta_evt+0x10/0x10
[   73.229162][ T4670]  ? __pfx_hci_event_packet+0x10/0x10
[   73.231086][ T4670]  ? do_raw_spin_unlock+0x58/0x8b0
[   73.232847][ T4670]  ? hci_send_to_monitor+0xd8/0x7f0
[   73.234720][ T4670]  ? kcov_remote_start+0x97/0x7d0
[   73.236526][ T4670]  hci_rx_work+0x3e8/0xca0
[   73.238136][ T4670]  ? process_scheduled_works+0x976/0x1850
[   73.240375][ T4670]  process_scheduled_works+0xa63/0x1850
[   73.242249][ T4670]  ? __pfx_process_scheduled_works+0x10/0x10
[   73.244435][ T4670]  ? assign_work+0x364/0x3d0
[   73.246058][ T4670]  worker_thread+0x870/0xd30
[   73.247761][ T4670]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[   73.249946][ T4670]  ? __kthread_parkme+0x169/0x1d0
[   73.251687][ T4670]  ? __pfx_worker_thread+0x10/0x10
[   73.253775][ T4670]  kthread+0x2f0/0x390
[   73.255314][ T4670]  ? __pfx_worker_thread+0x10/0x10
[   73.257326][ T4670]  ? __pfx_kthread+0x10/0x10
[   73.259229][ T4670]  ret_from_fork+0x4b/0x80
[   73.260952][ T4670]  ? __pfx_kthread+0x10/0x10
[   73.262726][ T4670]  ret_from_fork_asm+0x1a/0x30
[   73.264160][ T4670]  </TASK>
[   73.265489][ T4670] Kernel Offset: disabled
[   73.267041][ T4670] Rebooting in 86400 seconds..