Bluetooth: hci1: command 0x1003 tx timeout
==================================================================
BUG: KCSAN: data-race in _prb_read_valid / data_alloc

write to 0xffffffff86a6a6c0 of 8 bytes by task 14390 on cpu 1:
 data_alloc+0x310/0x390 kernel/printk/printk_ringbuffer.c:1129
 prb_reserve+0x8d7/0xae0 kernel/printk/printk_ringbuffer.c:1724
 vprintk_store+0x54a/0x910 kernel/printk/printk.c:2304
 vprintk_emit+0x1a4/0x600 kernel/printk/printk.c:2404
 vprintk_default+0x26/0x30 kernel/printk/printk.c:2443
 vprintk+0x1d/0x30 kernel/printk/printk_safe.c:82
 _printk+0x79/0xa0 kernel/printk/printk.c:2453
 bt_err+0xa7/0xd0 net/bluetooth/lib.c:296
 __hci_cmd_sync_status_sk net/bluetooth/hci_sync.c:271 [inline]
 __hci_cmd_sync_status net/bluetooth/hci_sync.c:287 [inline]
 hci_read_local_features_sync net/bluetooth/hci_sync.c:3708 [inline]
 hci_init_stage_sync net/bluetooth/hci_sync.c:3623 [inline]
 hci_init1_sync net/bluetooth/hci_sync.c:3755 [inline]
 hci_init_sync net/bluetooth/hci_sync.c:4886 [inline]
 hci_dev_init_sync net/bluetooth/hci_sync.c:5078 [inline]
 hci_dev_open_sync+0xfa4/0x2290 net/bluetooth/hci_sync.c:5156
 hci_dev_do_open net/bluetooth/hci_core.c:430 [inline]
 hci_power_on+0xef/0x390 net/bluetooth/hci_core.c:959
 process_one_work kernel/workqueue.c:3275 [inline]
 process_scheduled_works+0x4cd/0x9d0 kernel/workqueue.c:3358
 worker_thread+0x581/0x770 kernel/workqueue.c:3439
 kthread+0x22a/0x280 kernel/kthread.c:467
 ret_from_fork+0x150/0x360 arch/x86/kernel/process.c:158
 ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:245

read to 0xffffffff86a6a6c0 of 16 bytes by task 14407 on cpu 0:
 desc_read kernel/printk/printk_ringbuffer.c:496 [inline]
 desc_read_finalized_seq kernel/printk/printk_ringbuffer.c:1931 [inline]
 prb_read kernel/printk/printk_ringbuffer.c:1979 [inline]
 _prb_read_valid+0x1bc/0x950 kernel/printk/printk_ringbuffer.c:2170
 desc_update_last_finalized+0x8f/0x170 kernel/printk/printk_ringbuffer.c:1570
 prb_final_commit+0x10d/0x150 kernel/printk/printk_ringbuffer.c:1839
 vprintk_store+0x88b/0x910 kernel/printk/printk.c:2330
 vprintk_emit+0x1a4/0x600 kernel/printk/printk.c:2404
 vprintk_default+0x26/0x30 kernel/printk/printk.c:2443
 vprintk+0x1d/0x30 kernel/printk/printk_safe.c:82
 _printk+0x79/0xa0 kernel/printk/printk.c:2453
 bt_err+0xa7/0xd0 net/bluetooth/lib.c:296
 hci_cmd_timeout+0x97/0x140 net/bluetooth/hci_core.c:1469
 process_one_work kernel/workqueue.c:3275 [inline]
 process_scheduled_works+0x4cd/0x9d0 kernel/workqueue.c:3358
 worker_thread+0x581/0x770 kernel/workqueue.c:3439
 kthread+0x22a/0x280 kernel/kthread.c:467
 ret_from_fork+0x150/0x360 arch/x86/kernel/process.c:158
 ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:245

Reported by Kernel Concurrency Sanitizer on:
CPU: 0 UID: 0 PID: 14407 Comm: kworker/u9:5 Tainted: G        W           syzkaller #0 PREEMPT(full) 
Tainted: [W]=WARN
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
Workqueue: hci1 hci_cmd_timeout
==================================================================