Warning: Permanently added '10.128.10.55' (ED25519) to the list of known hosts.
2024/11/18 16:30:15 ignoring optional flag "sandboxArg"="0"
2024/11/18 16:30:15 ignoring optional flag "type"="gce"
2024/11/18 16:30:16 parsed 1 programs
[   94.409405][ T5644] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   96.888818][ T4626] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   96.901352][ T4626] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   96.912782][ T4626] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   96.921684][ T4626] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   96.930181][ T4626] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   96.938125][ T4626] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   97.669058][ T5689] chnl_net:caif_netlink_parms(): no params data found
[   97.710988][ T5689] bridge0: port 1(bridge_slave_0) entered blocking state
[   97.718414][ T5689] bridge0: port 1(bridge_slave_0) entered disabled state
[   97.726263][ T5689] bridge_slave_0: entered allmulticast mode
[   97.733565][ T5689] bridge_slave_0: entered promiscuous mode
[   97.774995][ T5689] bridge0: port 2(bridge_slave_1) entered blocking state
[   97.782312][ T5689] bridge0: port 2(bridge_slave_1) entered disabled state
[   97.789458][ T5689] bridge_slave_1: entered allmulticast mode
[   97.796939][ T5689] bridge_slave_1: entered promiscuous mode
[   97.837734][ T5689] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   97.856947][ T5689] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   97.888843][ T5689] team0: Port device team_slave_0 added
[   97.897631][ T5689] team0: Port device team_slave_1 added
[   97.925261][ T5689] batman_adv: batadv0: Adding interface: batadv_slave_0
[   97.934043][ T5689] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   97.960274][ T5689] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   97.972901][ T5689] batman_adv: batadv0: Adding interface: batadv_slave_1
[   97.979972][ T5689] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   98.005934][ T5689] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   98.037457][ T5689] hsr_slave_0: entered promiscuous mode
[   98.043788][ T5689] hsr_slave_1: entered promiscuous mode
[   98.506620][ T5689] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   98.518538][ T5689] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   98.530210][ T5689] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   98.540619][ T5689] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   98.569379][ T5689] bridge0: port 2(bridge_slave_1) entered blocking state
[   98.576787][ T5689] bridge0: port 2(bridge_slave_1) entered forwarding state
[   98.584932][ T5689] bridge0: port 1(bridge_slave_0) entered blocking state
[   98.592656][ T5689] bridge0: port 1(bridge_slave_0) entered forwarding state
[   98.656222][ T5689] 8021q: adding VLAN 0 to HW filter on device bond0
[   98.677003][ T2470] bridge0: port 1(bridge_slave_0) entered disabled state
[   98.686333][ T2470] bridge0: port 2(bridge_slave_1) entered disabled state
[   98.717228][ T5689] 8021q: adding VLAN 0 to HW filter on device team0
[   98.730038][ T1203] bridge0: port 1(bridge_slave_0) entered blocking state
[   98.737251][ T1203] bridge0: port 1(bridge_slave_0) entered forwarding state
[   98.761261][ T1203] bridge0: port 2(bridge_slave_1) entered blocking state
[   98.769272][ T1203] bridge0: port 2(bridge_slave_1) entered forwarding state
[   98.948574][ T5689] 8021q: adding VLAN 0 to HW filter on device batadv0
[   98.989301][ T5689] veth0_vlan: entered promiscuous mode
[   99.006934][ T5689] veth1_vlan: entered promiscuous mode
[   99.039565][ T5689] veth0_macvtap: entered promiscuous mode
[   99.051053][ T5689] veth1_macvtap: entered promiscuous mode
[   99.069917][ T5689] batman_adv: batadv0: Interface activated: batadv_slave_0
[   99.087590][ T5689] batman_adv: batadv0: Interface activated: batadv_slave_1
[   99.100669][ T5689] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   99.112345][ T5689] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   99.123451][ T5689] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   99.132902][ T5689] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   99.292314][   T35] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   99.376097][   T35] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   99.488699][   T35] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   99.589386][   T35] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  100.720904][ T2470] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  100.736014][ T2470] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  100.771883][ T1203] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  100.779843][ T1203] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
2024/11/18 16:30:26 executed programs: 0
[  101.281325][   T54] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  101.289894][   T54] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  101.302162][   T54] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  101.341739][   T54] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  101.349441][   T54] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  101.357907][   T54] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  101.537199][ T5857] chnl_net:caif_netlink_parms(): no params data found
[  101.634323][ T5857] bridge0: port 1(bridge_slave_0) entered blocking state
[  101.644847][ T5857] bridge0: port 1(bridge_slave_0) entered disabled state
[  101.652162][ T5857] bridge_slave_0: entered allmulticast mode
[  101.659378][ T5857] bridge_slave_0: entered promiscuous mode
[  101.670343][ T5857] bridge0: port 2(bridge_slave_1) entered blocking state
[  101.677927][ T5857] bridge0: port 2(bridge_slave_1) entered disabled state
[  101.687756][ T5857] bridge_slave_1: entered allmulticast mode
[  101.694986][ T5857] bridge_slave_1: entered promiscuous mode
[  101.729399][ T5857] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  101.745101][ T5857] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  101.780282][ T5857] team0: Port device team_slave_0 added
[  101.789542][ T5857] team0: Port device team_slave_1 added
[  101.816931][ T5857] batman_adv: batadv0: Adding interface: batadv_slave_0
[  101.829989][ T5857] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  101.857126][ T5857] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  101.870560][ T5857] batman_adv: batadv0: Adding interface: batadv_slave_1
[  101.878073][ T5857] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  101.905000][ T5857] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  101.947173][ T5857] hsr_slave_0: entered promiscuous mode
[  101.955069][ T5857] hsr_slave_1: entered promiscuous mode
[  101.961840][ T5857] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  101.969452][ T5857] Cannot create hsr debugfs directory
[  102.266005][   T35] bridge_slave_1: left allmulticast mode
[  102.278093][   T35] bridge_slave_1: left promiscuous mode
[  102.293554][   T35] bridge0: port 2(bridge_slave_1) entered disabled state
[  102.304315][   T35] bridge_slave_0: left allmulticast mode
[  102.310020][   T35] bridge_slave_0: left promiscuous mode
[  102.318528][   T35] bridge0: port 1(bridge_slave_0) entered disabled state
[  102.648793][   T35] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  102.660415][   T35] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  102.674337][   T35] bond0 (unregistering): Released all slaves
[  102.790668][   T35] hsr_slave_0: left promiscuous mode
[  102.798719][   T35] hsr_slave_1: left promiscuous mode
[  102.808372][   T35] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  102.817725][   T35] batman_adv: batadv0: Removing interface: batadv_slave_0
[  102.827425][   T35] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  102.836361][   T35] batman_adv: batadv0: Removing interface: batadv_slave_1
[  102.850075][   T35] veth1_macvtap: left promiscuous mode
[  102.855823][   T35] veth0_macvtap: left promiscuous mode
[  102.863273][   T35] veth1_vlan: left promiscuous mode
[  102.868623][   T35] veth0_vlan: left promiscuous mode
[  103.129710][   T35] team0 (unregistering): Port device team_slave_1 removed
[  103.161046][   T35] team0 (unregistering): Port device team_slave_0 removed
[  103.431459][   T54] Bluetooth: hci0: command tx timeout
[  103.639511][ T5857] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  103.654899][ T5857] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  103.664726][ T5857] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  103.676445][ T5857] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  103.996015][ T5857] 8021q: adding VLAN 0 to HW filter on device bond0
[  104.021577][ T5857] 8021q: adding VLAN 0 to HW filter on device team0
[  104.040831][ T2470] bridge0: port 1(bridge_slave_0) entered blocking state
[  104.048088][ T2470] bridge0: port 1(bridge_slave_0) entered forwarding state
[  104.072327][ T2470] bridge0: port 2(bridge_slave_1) entered blocking state
[  104.079475][ T2470] bridge0: port 2(bridge_slave_1) entered forwarding state
[  104.342746][ T5857] 8021q: adding VLAN 0 to HW filter on device batadv0
[  104.461722][ T5857] veth0_vlan: entered promiscuous mode
[  104.479774][ T5857] veth1_vlan: entered promiscuous mode
[  104.536477][ T5857] veth0_macvtap: entered promiscuous mode
[  104.561657][ T5857] veth1_macvtap: entered promiscuous mode
[  104.595080][ T5857] batman_adv: batadv0: Interface activated: batadv_slave_0
[  104.623916][ T5857] batman_adv: batadv0: Interface activated: batadv_slave_1
[  104.642699][ T5857] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  104.659940][ T5857] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  104.669795][ T5857] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  104.679369][ T5857] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  104.757657][   T35] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  104.777148][   T35] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  104.805638][ T2470] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  104.817538][ T2470] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  104.991011][ T5993] Bluetooth: MGMT ver 1.23
[  104.999483][ T5986] Bluetooth: hci0: Opcode 0x0401 failed: -112
[  105.010341][   T54] ==================================================================
[  105.018621][   T54] BUG: KASAN: slab-use-after-free in set_powered_sync+0x3a/0xc0
[  105.026384][   T54] Read of size 8 at addr ffff888022f18818 by task kworker/u9:0/54
[  105.034210][   T54] 
[  105.036570][   T54] CPU: 1 UID: 0 PID: 54 Comm: kworker/u9:0 Not tainted 6.12.0-rc7-syzkaller-01702-gd7ef9eeef072 #0
[  105.047298][   T54] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[  105.057376][   T54] Workqueue: hci0 hci_cmd_sync_work
[  105.062684][   T54] Call Trace:
[  105.065967][   T54]  <TASK>
[  105.068982][   T54]  dump_stack_lvl+0x241/0x360
[  105.073669][   T54]  ? __pfx_dump_stack_lvl+0x10/0x10
[  105.078864][   T54]  ? __pfx__printk+0x10/0x10
[  105.083640][   T54]  ? _printk+0xd5/0x120
[  105.087834][   T54]  ? __virt_addr_valid+0x183/0x530
[  105.092945][   T54]  ? __virt_addr_valid+0x183/0x530
[  105.098053][   T54]  print_report+0x169/0x550
[  105.102561][   T54]  ? __virt_addr_valid+0x183/0x530
[  105.107680][   T54]  ? __virt_addr_valid+0x183/0x530
[  105.112873][   T54]  ? __virt_addr_valid+0x45f/0x530
[  105.117980][   T54]  ? __phys_addr+0xba/0x170
[  105.122824][   T54]  ? set_powered_sync+0x3a/0xc0
[  105.127676][   T54]  kasan_report+0x143/0x180
[  105.132263][   T54]  ? set_powered_sync+0x3a/0xc0
[  105.137130][   T54]  set_powered_sync+0x3a/0xc0
[  105.141803][   T54]  ? __pfx_set_powered_sync+0x10/0x10
[  105.147263][   T54]  hci_cmd_sync_work+0x22b/0x400
[  105.152212][   T54]  ? process_scheduled_works+0x976/0x1850
[  105.158024][   T54]  process_scheduled_works+0xa63/0x1850
[  105.163619][   T54]  ? __pfx_process_scheduled_works+0x10/0x10
[  105.169684][   T54]  ? assign_work+0x364/0x3d0
[  105.174276][   T54]  worker_thread+0x870/0xd30
[  105.178871][   T54]  ? __kthread_parkme+0x169/0x1d0
[  105.183897][   T54]  ? __pfx_worker_thread+0x10/0x10
[  105.189022][   T54]  kthread+0x2f0/0x390
[  105.193172][   T54]  ? __pfx_worker_thread+0x10/0x10
[  105.198288][   T54]  ? __pfx_kthread+0x10/0x10
[  105.202876][   T54]  ret_from_fork+0x4b/0x80
[  105.207315][   T54]  ? __pfx_kthread+0x10/0x10
[  105.211897][   T54]  ret_from_fork_asm+0x1a/0x30
[  105.216793][   T54]  </TASK>
[  105.219824][   T54] 
[  105.222155][   T54] Allocated by task 5993:
[  105.226486][   T54]  kasan_save_track+0x3f/0x80
[  105.231177][   T54]  __kasan_kmalloc+0x98/0xb0
[  105.235868][   T54]  __kmalloc_cache_noprof+0x19c/0x2c0
[  105.241255][   T54]  mgmt_pending_new+0x65/0x250
[  105.246020][   T54]  mgmt_pending_add+0x36/0x120
[  105.250813][   T54]  set_powered+0x3cd/0x5e0
[  105.255226][   T54]  hci_mgmt_cmd+0xc47/0x11d0
[  105.259806][   T54]  hci_sock_sendmsg+0x7b8/0x11c0
[  105.264826][   T54]  __sock_sendmsg+0x221/0x270
[  105.269498][   T54]  sock_write_iter+0x2d7/0x3f0
[  105.274262][   T54]  vfs_write+0xaeb/0xd30
[  105.278494][   T54]  ksys_write+0x183/0x2b0
[  105.282819][   T54]  do_syscall_64+0xf3/0x230
[  105.287317][   T54]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  105.293295][   T54] 
[  105.295607][   T54] Freed by task 5989:
[  105.299575][   T54]  kasan_save_track+0x3f/0x80
[  105.304248][   T54]  kasan_save_free_info+0x40/0x50
[  105.309265][   T54]  __kasan_slab_free+0x59/0x70
[  105.314042][   T54]  kfree+0x1a0/0x440
[  105.317930][   T54]  settings_rsp+0x2bc/0x390
[  105.322426][   T54]  mgmt_pending_foreach+0xd1/0x130
[  105.327558][   T54]  __mgmt_power_off+0x106/0x430
[  105.332409][   T54]  hci_dev_close_sync+0x6c4/0x11c0
[  105.337511][   T54]  hci_dev_close+0x112/0x210
[  105.342105][   T54]  sock_do_ioctl+0x158/0x460
[  105.346689][   T54]  sock_ioctl+0x626/0x8e0
[  105.351042][   T54]  __se_sys_ioctl+0xf9/0x170
[  105.355622][   T54]  do_syscall_64+0xf3/0x230
[  105.360129][   T54]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  105.366026][   T54] 
[  105.368343][   T54] The buggy address belongs to the object at ffff888022f18800
[  105.368343][   T54]  which belongs to the cache kmalloc-96 of size 96
[  105.382389][   T54] The buggy address is located 24 bytes inside of
[  105.382389][   T54]  freed 96-byte region [ffff888022f18800, ffff888022f18860)
[  105.396004][   T54] 
[  105.398330][   T54] The buggy address belongs to the physical page:
[  105.404735][   T54] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x22f18
[  105.413503][   T54] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[  105.420961][   T54] page_type: f5(slab)
[  105.424944][   T54] raw: 00fff00000000000 ffff88801ac41280 ffffea00009d9840 dead000000000003
[  105.433525][   T54] raw: 0000000000000000 0000000080200020 00000001f5000000 0000000000000000
[  105.442107][   T54] page dumped because: kasan: bad access detected
[  105.448535][   T54] page_owner tracks the page as allocated
[  105.454430][   T54] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x52820(GFP_ATOMIC|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP), pid 58, tgid 58 (kworker/1:2), ts 69902458132, free_ts 69192164737
[  105.473280][   T54]  post_alloc_hook+0x1f3/0x230
[  105.478140][   T54]  get_page_from_freelist+0x3649/0x3790
[  105.483696][   T54]  __alloc_pages_noprof+0x292/0x710
[  105.488905][   T54]  alloc_pages_mpol_noprof+0x3e8/0x680
[  105.494378][   T54]  alloc_slab_page+0x6a/0x140
[  105.499079][   T54]  allocate_slab+0x5a/0x2f0
[  105.503612][   T54]  ___slab_alloc+0xcd1/0x14b0
[  105.508321][   T54]  __slab_alloc+0x58/0xa0
[  105.512865][   T54]  __kmalloc_cache_noprof+0x1d5/0x2c0
[  105.518247][   T54]  dst_cow_metrics_generic+0x56/0x1c0
[  105.523627][   T54]  icmp6_dst_alloc+0x270/0x420
[  105.528391][   T54]  mld_sendpack+0x6a3/0xdb0
[  105.533088][   T54]  mld_dad_work+0x44/0x500
[  105.537709][   T54]  process_scheduled_works+0xa63/0x1850
[  105.543258][   T54]  worker_thread+0x870/0xd30
[  105.547848][   T54]  kthread+0x2f0/0x390
[  105.552089][   T54] page last free pid 25 tgid 25 stack trace:
[  105.558074][   T54]  free_unref_page+0xdf9/0x1140
[  105.562927][   T54]  __put_partials+0xeb/0x130
[  105.567523][   T54]  put_cpu_partial+0x17c/0x250
[  105.572295][   T54]  __slab_free+0x2ea/0x3d0
[  105.576713][   T54]  qlist_free_all+0x9a/0x140
[  105.581483][   T54]  kasan_quarantine_reduce+0x14f/0x170
[  105.586945][   T54]  __kasan_slab_alloc+0x23/0x80
[  105.591787][   T54]  kmem_cache_alloc_node_noprof+0x16b/0x320
[  105.597697][   T54]  __alloc_skb+0x1c3/0x440
[  105.602122][   T54]  alloc_skb_with_frags+0xc3/0x820
[  105.607233][   T54]  sock_alloc_send_pskb+0x91a/0xa60
[  105.612516][   T54]  mld_newpack+0x1c3/0xaf0
[  105.616925][   T54]  add_grec+0x1492/0x19a0
[  105.621251][   T54]  mld_send_initial_cr+0x228/0x4b0
[  105.626367][   T54]  mld_dad_work+0x44/0x500
[  105.630784][   T54]  process_scheduled_works+0xa63/0x1850
[  105.636326][   T54] 
[  105.638735][   T54] Memory state around the buggy address:
[  105.644354][   T54]  ffff888022f18700: 00 00 00 00 00 00 00 00 00 00 00 fc fc fc fc fc
[  105.652407][   T54]  ffff888022f18780: fa fb fb fb fb fb fb fb fb fb fb fb fc fc fc fc
[  105.660630][   T54] >ffff888022f18800: fa fb fb fb fb fb fb fb fb fb fb fb fc fc fc fc
[  105.668767][   T54]                             ^
[  105.673610][   T54]  ffff888022f18880: fa fb fb fb fb fb fb fb fb fb fb fb fc fc fc fc
[  105.681688][   T54]  ffff888022f18900: fa fb fb fb fb fb fb fb fb fb fb fb fc fc fc fc
[  105.689733][   T54] ==================================================================
[  105.701689][   T54] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  105.708937][   T54] CPU: 1 UID: 0 PID: 54 Comm: kworker/u9:0 Not tainted 6.12.0-rc7-syzkaller-01702-gd7ef9eeef072 #0
[  105.719734][   T54] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[  105.729821][   T54] Workqueue: hci0 hci_cmd_sync_work
[  105.735082][   T54] Call Trace:
[  105.738383][   T54]  <TASK>
[  105.741337][   T54]  dump_stack_lvl+0x241/0x360
[  105.746050][   T54]  ? __pfx_dump_stack_lvl+0x10/0x10
[  105.751287][   T54]  ? __pfx__printk+0x10/0x10
[  105.755992][   T54]  ? preempt_schedule+0xe1/0xf0
[  105.760956][   T54]  ? vscnprintf+0x5d/0x90
[  105.765304][   T54]  panic+0x349/0x880
[  105.769203][   T54]  ? check_panic_on_warn+0x21/0xb0
[  105.774336][   T54]  ? __pfx_panic+0x10/0x10
[  105.778779][   T54]  ? _raw_spin_unlock_irqrestore+0x130/0x140
[  105.784873][   T54]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  105.791226][   T54]  ? print_report+0x502/0x550
[  105.795936][   T54]  check_panic_on_warn+0x86/0xb0
[  105.800897][   T54]  ? set_powered_sync+0x3a/0xc0
[  105.805868][   T54]  end_report+0x77/0x160
[  105.810227][   T54]  kasan_report+0x154/0x180
[  105.814845][   T54]  ? set_powered_sync+0x3a/0xc0
[  105.819810][   T54]  set_powered_sync+0x3a/0xc0
[  105.824521][   T54]  ? __pfx_set_powered_sync+0x10/0x10
[  105.829929][   T54]  hci_cmd_sync_work+0x22b/0x400
[  105.834898][   T54]  ? process_scheduled_works+0x976/0x1850
[  105.840710][   T54]  process_scheduled_works+0xa63/0x1850
[  105.846298][   T54]  ? __pfx_process_scheduled_works+0x10/0x10
[  105.852311][   T54]  ? assign_work+0x364/0x3d0
[  105.856946][   T54]  worker_thread+0x870/0xd30
[  105.861571][   T54]  ? __kthread_parkme+0x169/0x1d0
[  105.866627][   T54]  ? __pfx_worker_thread+0x10/0x10
[  105.871774][   T54]  kthread+0x2f0/0x390
[  105.875898][   T54]  ? __pfx_worker_thread+0x10/0x10
[  105.881201][   T54]  ? __pfx_kthread+0x10/0x10
[  105.885949][   T54]  ret_from_fork+0x4b/0x80
[  105.890592][   T54]  ? __pfx_kthread+0x10/0x10
[  105.895196][   T54]  ret_from_fork_asm+0x1a/0x30
[  105.900001][   T54]  </TASK>
[  105.903339][   T54] Kernel Offset: disabled
[  105.907663][   T54] Rebooting in 86400 seconds..