Bluetooth: hci0: command 0x1003 tx timeout
==================================================================
BUG: KCSAN: data-race in data_push_tail / string

write to 0xffffffff88e673e8 of 1 bytes by task 4030 on cpu 0:
 string_nocheck lib/vsprintf.c:657 [inline]
 string+0x187/0x220 lib/vsprintf.c:735
 vsnprintf+0x532/0x890 lib/vsprintf.c:2926
 va_format lib/vsprintf.c:1728 [inline]
 pointer+0x833/0xcf0 lib/vsprintf.c:2548
 vsnprintf+0x491/0x890 lib/vsprintf.c:2930
 vscnprintf+0x41/0x90 lib/vsprintf.c:2991
 printk_sprint+0x30/0x2d0 kernel/printk/printk.c:2189
 vprintk_store+0x599/0x860 kernel/printk/printk.c:2309
 vprintk_emit+0x10d/0x580 kernel/printk/printk.c:2399
 vprintk_default+0x26/0x30 kernel/printk/printk.c:2438
 vprintk+0x1d/0x30 kernel/printk/printk_safe.c:82
 _printk+0x79/0xa0 kernel/printk/printk.c:2448
 bt_err+0x9d/0xd0 net/bluetooth/lib.c:296
 __hci_cmd_sync_status_sk net/bluetooth/hci_sync.c:271 [inline]
 __hci_cmd_sync_status net/bluetooth/hci_sync.c:287 [inline]
 hci_read_local_features_sync net/bluetooth/hci_sync.c:3708 [inline]
 hci_init_stage_sync net/bluetooth/hci_sync.c:3623 [inline]
 hci_init1_sync net/bluetooth/hci_sync.c:3755 [inline]
 hci_init_sync net/bluetooth/hci_sync.c:4867 [inline]
 hci_dev_init_sync net/bluetooth/hci_sync.c:5059 [inline]
 hci_dev_open_sync+0xfa4/0x2290 net/bluetooth/hci_sync.c:5137
 hci_dev_do_open net/bluetooth/hci_core.c:430 [inline]
 hci_power_on+0xef/0x390 net/bluetooth/hci_core.c:959
 process_one_work kernel/workqueue.c:3263 [inline]
 process_scheduled_works+0x4ce/0x9d0 kernel/workqueue.c:3346
 worker_thread+0x582/0x770 kernel/workqueue.c:3427
 kthread+0x489/0x510 kernel/kthread.c:463
 ret_from_fork+0x122/0x1b0 arch/x86/kernel/process.c:158
 ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:245

read to 0xffffffff88e673e8 of 8 bytes by task 44 on cpu 1:
 data_make_reusable kernel/printk/printk_ringbuffer.c:591 [inline]
 data_push_tail+0xfd/0x420 kernel/printk/printk_ringbuffer.c:676
 data_alloc+0xfb/0x2e0 kernel/printk/printk_ringbuffer.c:1061
 prb_reserve+0x807/0xaf0 kernel/printk/printk_ringbuffer.c:1685
 vprintk_store+0x56d/0x860 kernel/printk/printk.c:2299
 vprintk_emit+0x10d/0x580 kernel/printk/printk.c:2399
 vprintk_default+0x26/0x30 kernel/printk/printk.c:2438
 vprintk+0x1d/0x30 kernel/printk/printk_safe.c:82
 _printk+0x79/0xa0 kernel/printk/printk.c:2448
 bt_err+0x9d/0xd0 net/bluetooth/lib.c:296
 hci_cmd_timeout+0x97/0x140 net/bluetooth/hci_core.c:1469
 process_one_work kernel/workqueue.c:3263 [inline]
 process_scheduled_works+0x4ce/0x9d0 kernel/workqueue.c:3346
 worker_thread+0x582/0x770 kernel/workqueue.c:3427
 kthread+0x489/0x510 kernel/kthread.c:463
 ret_from_fork+0x122/0x1b0 arch/x86/kernel/process.c:158
 ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:245

value changed: 0x00000000ffffe639 -> 0x646f63704f203a30

Reported by Kernel Concurrency Sanitizer on:
CPU: 1 UID: 0 PID: 44 Comm: kworker/u9:0 Not tainted syzkaller #0 PREEMPT(voluntary) 
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
Workqueue: hci0 hci_cmd_timeout
==================================================================