netlink: 5280 bytes leftover after parsing attributes in process `syz-executor.1'.
Bluetooth: hci7: HCI_REQ-0x0406
Bluetooth: hci5: HCI_REQ-0x0406
------------[ cut here ]------------
Bluetooth: hci1: HCI_REQ-0x0406
WARNING: CPU: 0 PID: 318 at net/bluetooth/hci_conn.c:646 hci_conn_timeout+0x242/0x330
Bluetooth: hci2: HCI_REQ-0x0406
Modules linked in:
Bluetooth: hci3: HCI_REQ-0x0406
CPU: 0 PID: 318 Comm: kworker/u5:6 Not tainted 6.0.0-rc1-next-20220822 #1
Bluetooth: hci4: HCI_REQ-0x0406
kworker/u5:6[318] cmdline: 
Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
Workqueue: hci0 hci_conn_timeout
RIP: 0010:hci_conn_timeout+0x242/0x330
Code: ff e8 12 7f 98 fd 4c 89 e7 e8 2a 56 0b 00 0f b6 e8 e8 02 7f 98 fd 89 ee 4c 89 e7 e8 28 a4 0d 00 e9 1a ff ff ff e8 ee 7e 98 fd <0f> 0b e9 36 fe ff ff 84 c0 74 93 4c 89 ef e8 0b 65 cb fd eb 89 48
RSP: 0018:ffff88804334fce8 EFLAGS: 00010293
RAX: 0000000000000000 RBX: ffff88802213a250 RCX: 0000000000000000
RDX: ffff88801867b600 RSI: ffffffff83ad33b2 RDI: 0000000000000005
RBP: 00000000fffffffe R08: 0000000000000005 R09: 0000000000000000
R10: 00000000fffffffe R11: 0000000000000001 R12: ffff88804334fdb0
R13: ffff88802213c258 R14: ffff88800ef8c800 R15: ffff888017ddfc00
FS:  0000000000000000(0000) GS:ffff88806ce00000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 0000555555e34c58 CR3: 000000000d842000 CR4: 0000000000350ef0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000ffff4ff0 DR7: 0000000000000600
Call Trace:
 <TASK>
 process_one_work+0xa0f/0x1690
 worker_thread+0x637/0x1260
 kthread+0x2ed/0x3a0
 ret_from_fork+0x22/0x30
 </TASK>
irq event stamp: 7005
hardirqs last  enabled at (7015): [<ffffffff812be918>] __up_console_sem+0x78/0x80
hardirqs last disabled at (7028): [<ffffffff812be8fd>] __up_console_sem+0x5d/0x80
softirqs last  enabled at (6212): [<ffffffff8116ca6b>] __irq_exit_rcu+0x11b/0x180
softirqs last disabled at (6203): [<ffffffff8116ca6b>] __irq_exit_rcu+0x11b/0x180
---[ end trace 0000000000000000 ]---
Bluetooth: hci0: HCI_REQ-0x0406
9pnet_fd: Insufficient options for proto=fd
sg_write: data in/out 524252/251 bytes for SCSI command 0x0-- guessing data in;
   program syz-executor.1 not setting count and/or reply_len properly
netlink: 5280 bytes leftover after parsing attributes in process `syz-executor.1'.
audit: type=1326 audit(1661168136.571:44): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=8747 comm="syz-executor.1" exe="/syz-executor.1" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f1290e5fb19 code=0x0
Bluetooth: hci0: command 0x0406 tx timeout
Bluetooth: hci4: command 0x0406 tx timeout
Bluetooth: hci3: command 0x0406 tx timeout
Bluetooth: hci2: command 0x0406 tx timeout
Bluetooth: hci1: command 0x0406 tx timeout
Bluetooth: hci5: command 0x0406 tx timeout
Bluetooth: hci7: command 0x0406 tx timeout
audit: type=1326 audit(1661168137.406:45): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=8747 comm="syz-executor.1" exe="/syz-executor.1" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f1290e5fb19 code=0x0
sr 1:0:0:0: [sr0] tag#0 unaligned transfer
blk_print_req_error: 46 callbacks suppressed
I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
buffer_io_error: 46 callbacks suppressed
Buffer I/O error on dev sr0, logical block 0, async page read
sr 1:0:0:0: [sr0] tag#0 unaligned transfer
I/O error, dev sr0, sector 1 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
Buffer I/O error on dev sr0, logical block 1, async page read
sr 1:0:0:0: [sr0] tag#0 unaligned transfer
I/O error, dev sr0, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
Buffer I/O error on dev sr0, logical block 2, async page read
sr 1:0:0:0: [sr0] tag#0 unaligned transfer
I/O error, dev sr0, sector 3 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
Buffer I/O error on dev sr0, logical block 3, async page read
sr 1:0:0:0: [sr0] tag#0 unaligned transfer
I/O error, dev sr0, sector 4 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
Buffer I/O error on dev sr0, logical block 4, async page read
sr 1:0:0:0: [sr0] tag#0 unaligned transfer
I/O error, dev sr0, sector 5 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
Buffer I/O error on dev sr0, logical block 5, async page read
sr 1:0:0:0: [sr0] tag#0 unaligned transfer
I/O error, dev sr0, sector 6 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
Buffer I/O error on dev sr0, logical block 6, async page read
sr 1:0:0:0: [sr0] tag#0 unaligned transfer
I/O error, dev sr0, sector 7 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
Buffer I/O error on dev sr0, logical block 7, async page read
sr 1:0:0:0: [sr0] tag#0 unaligned transfer
I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
Buffer I/O error on dev sr0, logical block 0, async page read
sr 1:0:0:0: [sr0] tag#0 unaligned transfer
I/O error, dev sr0, sector 1 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
Buffer I/O error on dev sr0, logical block 1, async page read
sr 1:0:0:0: [sr0] tag#0 unaligned transfer
sr 1:0:0:0: [sr0] tag#0 unaligned transfer
sr 1:0:0:0: [sr0] tag#0 unaligned transfer
sr 1:0:0:0: [sr0] tag#0 unaligned transfer
sr 1:0:0:0: [sr0] tag#0 unaligned transfer
sr 1:0:0:0: [sr0] tag#0 unaligned transfer
sr 1:0:0:0: [sr0] tag#0 unaligned transfer
sr 1:0:0:0: [sr0] tag#0 unaligned transfer
sr 1:0:0:0: [sr0] tag#0 unaligned transfer
sr 1:0:0:0: [sr0] tag#0 unaligned transfer
sr 1:0:0:0: [sr0] tag#0 unaligned transfer
sr 1:0:0:0: [sr0] tag#0 unaligned transfer
sr 1:0:0:0: [sr0] tag#0 unaligned transfer
sr 1:0:0:0: [sr0] tag#0 unaligned transfer
Bluetooth: hci0: command 0x0409 tx timeout
sr 1:0:0:0: [sr0] tag#0 unaligned transfer
sr 1:0:0:0: [sr0] tag#0 unaligned transfer
sr 1:0:0:0: [sr0] tag#0 unaligned transfer
sr 1:0:0:0: [sr0] tag#0 unaligned transfer
sr 1:0:0:0: [sr0] tag#0 unaligned transfer
sr 1:0:0:0: [sr0] tag#0 unaligned transfer
sr 1:0:0:0: [sr0] tag#0 unaligned transfer
sr 1:0:0:0: [sr0] tag#0 unaligned transfer
syz-executor.4 (8896) used greatest stack depth: 22640 bytes left
device lo entered promiscuous mode
device lo left promiscuous mode
device lo entered promiscuous mode
device lo left promiscuous mode
device lo entered promiscuous mode
device lo left promiscuous mode
Bluetooth: hci0: command 0x0409 tx timeout
device lo entered promiscuous mode
device lo left promiscuous mode
device lo entered promiscuous mode
device lo left promiscuous mode
device lo entered promiscuous mode
device lo left promiscuous mode
device lo entered promiscuous mode
device lo left promiscuous mode
Bluetooth: hci0: command 0x0409 tx timeout