program:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
connect$bt_sco(r0, &(0x7f0000000100), 0x8) (async)
syz_emit_vhci(&(0x7f00000000c0)=ANY=[@ANYBLOB="0418"], 0x1a)
syz_mount_image$vfat(&(0x7f0000000040), &(0x7f00000000c0)='./bus\x00', 0x1800010, &(0x7f0000000100)=ANY=[@ANYBLOB='R'], 0xf6, 0x29f, &(0x7f0000000140)="$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") (async)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x3)

[   86.138058][ T5345] loop0: detected capacity change from 0 to 256
[   86.158141][ T5320] ------------[ cut here ]------------
[   86.160662][ T5320] WARNING: CPU: 0 PID: 5320 at net/bluetooth/hci_conn.c:567 hci_conn_timeout+0xff/0x290
[   86.165149][ T5320] Modules linked in:
[   86.170460][ T5320] CPU: 0 UID: 0 PID: 5320 Comm: kworker/u5:2 Not tainted syzkaller #0 PREEMPT(full) 
[   86.174571][ T5320] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   86.179249][ T5320] Workqueue: hci0 hci_conn_timeout
[   86.181513][ T5320] RIP: 0010:hci_conn_timeout+0xff/0x290
[   86.184016][ T5320] Code: 48 89 df e8 53 1d 09 00 eb 07 e8 5c 40 7e f7 b0 13 0f b6 f0 48 89 df 5b 41 5c 41 5e 41 5f 5d e9 e7 c4 fe ff e8 42 40 7e f7 90 <0f> 0b 90 eb 8c 44 89 f9 80 e1 07 80 c1 03 38 c1 0f 8c 31 ff ff ff
[   86.192565][ T5320] RSP: 0018:ffffc9000d2dfa50 EFLAGS: 00010293
[   86.195308][ T5320] RAX: ffffffff8a402e9e RBX: ffff88804111c000 RCX: ffff88801f32a480
[   86.198695][ T5320] RDX: 0000000000000000 RSI: 00000000ffffffff RDI: 0000000000000000
[   86.202060][ T5320] RBP: 00000000ffffffff R08: ffff88804111c013 R09: 1ffff11008223802
[   86.205518][ T5320] R10: dffffc0000000000 R11: ffffed1008223803 R12: dffffc0000000000
[   86.208885][ T5320] R13: ffff88801c145018 R14: ffff88804111c948 R15: ffff88804111c010
[   86.212260][ T5320] FS:  0000000000000000(0000) GS:ffff88808d96d000(0000) knlGS:0000000000000000
[   86.216302][ T5320] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   86.219148][ T5320] CR2: 00007f7c21f8ffc8 CR3: 0000000011afa000 CR4: 0000000000352ef0
[   86.222479][ T5320] Call Trace:
[   86.224225][ T5320]  <TASK>
[   86.225535][ T5320]  ? process_scheduled_works+0x9ef/0x17b0
[   86.228081][ T5320]  process_scheduled_works+0xade/0x17b0
[   86.230539][ T5320]  ? __pfx_process_scheduled_works+0x10/0x10
[   86.233024][ T5320]  worker_thread+0x8a0/0xda0
[   86.235106][ T5320]  ? __kthread_parkme+0x7b/0x200
[   86.237114][ T5320]  kthread+0x70e/0x8a0
[   86.238814][ T5320]  ? __pfx_worker_thread+0x10/0x10
[   86.240735][ T5320]  ? __pfx_kthread+0x10/0x10
[   86.242374][ T5320]  ? _raw_spin_unlock_irq+0x23/0x50
[   86.244382][ T5320]  ? lockdep_hardirqs_on+0x9c/0x150
[   86.246653][ T5320]  ? __pfx_kthread+0x10/0x10
[   86.248684][ T5320]  ret_from_fork+0x439/0x7d0
[   86.250764][ T5320]  ? __pfx_ret_from_fork+0x10/0x10
[   86.253030][ T5320]  ? __pfx_kthread+0x10/0x10
[   86.255162][ T5320]  ret_from_fork_asm+0x1a/0x30
[   86.258371][ T5320]  </TASK>
[   86.259757][ T5320] Kernel panic - not syncing: kernel: panic_on_warn set ...
[   86.262952][ T5320] CPU: 0 UID: 0 PID: 5320 Comm: kworker/u5:2 Not tainted syzkaller #0 PREEMPT(full) 
[   86.266960][ T5320] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   86.271554][ T5320] Workqueue: hci0 hci_conn_timeout
[   86.273858][ T5320] Call Trace:
[   86.275309][ T5320]  <TASK>
[   86.276553][ T5320]  dump_stack_lvl+0x99/0x250
[   86.278560][ T5320]  ? __asan_memcpy+0x40/0x70
[   86.280555][ T5320]  ? __pfx_dump_stack_lvl+0x10/0x10
[   86.282876][ T5320]  ? __pfx__printk+0x10/0x10
[   86.284912][ T5320]  vpanic+0x237/0x6d0
[   86.286699][ T5320]  ? __pfx_vpanic+0x10/0x10
[   86.288672][ T5320]  panic+0xb9/0xc0
[   86.290312][ T5320]  ? __pfx_panic+0x10/0x10
[   86.292270][ T5320]  __warn+0x31b/0x4b0
[   86.294046][ T5320]  ? hci_conn_timeout+0xff/0x290
[   86.296207][ T5320]  ? hci_conn_timeout+0xff/0x290
[   86.298385][ T5320]  report_bug+0x2be/0x4f0
[   86.300267][ T5320]  ? hci_conn_timeout+0xff/0x290
[   86.302401][ T5320]  ? hci_conn_timeout+0xff/0x290
[   86.304536][ T5320]  ? hci_conn_timeout+0x101/0x290
[   86.306774][ T5320]  handle_bug+0x84/0x160
[   86.308600][ T5320]  exc_invalid_op+0x1a/0x50
[   86.310641][ T5320]  asm_exc_invalid_op+0x1a/0x20
[   86.312772][ T5320] RIP: 0010:hci_conn_timeout+0xff/0x290
[   86.315214][ T5320] Code: 48 89 df e8 53 1d 09 00 eb 07 e8 5c 40 7e f7 b0 13 0f b6 f0 48 89 df 5b 41 5c 41 5e 41 5f 5d e9 e7 c4 fe ff e8 42 40 7e f7 90 <0f> 0b 90 eb 8c 44 89 f9 80 e1 07 80 c1 03 38 c1 0f 8c 31 ff ff ff
[   86.323553][ T5320] RSP: 0018:ffffc9000d2dfa50 EFLAGS: 00010293
[   86.326169][ T5320] RAX: ffffffff8a402e9e RBX: ffff88804111c000 RCX: ffff88801f32a480
[   86.329593][ T5320] RDX: 0000000000000000 RSI: 00000000ffffffff RDI: 0000000000000000
[   86.333023][ T5320] RBP: 00000000ffffffff R08: ffff88804111c013 R09: 1ffff11008223802
[   86.336466][ T5320] R10: dffffc0000000000 R11: ffffed1008223803 R12: dffffc0000000000
[   86.339913][ T5320] R13: ffff88801c145018 R14: ffff88804111c948 R15: ffff88804111c010
[   86.343383][ T5320]  ? hci_conn_timeout+0xfe/0x290
[   86.345521][ T5320]  ? process_scheduled_works+0x9ef/0x17b0
[   86.347998][ T5320]  process_scheduled_works+0xade/0x17b0
[   86.350478][ T5320]  ? __pfx_process_scheduled_works+0x10/0x10
[   86.353112][ T5320]  worker_thread+0x8a0/0xda0
[   86.355198][ T5320]  ? __kthread_parkme+0x7b/0x200
[   86.357415][ T5320]  kthread+0x70e/0x8a0
[   86.359237][ T5320]  ? __pfx_worker_thread+0x10/0x10
[   86.361517][ T5320]  ? __pfx_kthread+0x10/0x10
[   86.363614][ T5320]  ? _raw_spin_unlock_irq+0x23/0x50
[   86.365907][ T5320]  ? lockdep_hardirqs_on+0x9c/0x150
[   86.368200][ T5320]  ? __pfx_kthread+0x10/0x10
[   86.370283][ T5320]  ret_from_fork+0x439/0x7d0
[   86.372227][ T5320]  ? __pfx_ret_from_fork+0x10/0x10
[   86.374321][ T5320]  ? __pfx_kthread+0x10/0x10
[   86.376404][ T5320]  ret_from_fork_asm+0x1a/0x30
[   86.378464][ T5320]  </TASK>
[   86.380147][ T5320] Kernel Offset: disabled
[   86.382042][ T5320] Rebooting in 86400 seconds..