Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3
Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
INFO: task syz-executor.6:26324 blocked for more than 143 seconds.
      Not tainted 5.18.0-rc4-next-20220427 #1
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
task:syz-executor.6  state:D stack:28040 pid:26324 ppid:     1 flags:0x00000000
Call Trace:
 <TASK>
 __schedule+0x893/0x2460
 schedule+0xd2/0x1f0
 schedule_timeout+0x1c5/0x280
 __wait_for_common+0x36f/0x4b0
 flush_workqueue+0x3ac/0x11a0
 hci_dev_open+0x180/0x360
 hci_sock_ioctl+0x2f1/0x910
 sock_do_ioctl+0xd2/0x230
 sock_ioctl+0x41c/0x670
 __x64_sys_ioctl+0x196/0x210
 do_syscall_64+0x3b/0x90
 entry_SYSCALL_64_after_hwframe+0x44/0xae
RIP: 0033:0x7f1deee088d7
RSP: 002b:00007fffb03be3f8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
RAX: ffffffffffffffda RBX: 00007fffb03beab8 RCX: 00007f1deee088d7
RDX: 0000000000000000 RSI: 00000000400448c9 RDI: 0000000000000003
RBP: 0000000000000003 R08: 00007f1decb7f700 R09: 00007f1decb7f700
R10: 00007f1decb7f9d0 R11: 0000000000000246 R12: 00007f1deef1cbf0
R13: 00007fffb03be550 R14: 0000000000000000 R15: 00000000000000f8
 </TASK>
INFO: task syz-executor.5:26332 blocked for more than 143 seconds.
      Not tainted 5.18.0-rc4-next-20220427 #1
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
task:syz-executor.5  state:D stack:28040 pid:26332 ppid:     1 flags:0x00000000
Call Trace:
 <TASK>
 __schedule+0x893/0x2460
 schedule+0xd2/0x1f0
 schedule_timeout+0x1c5/0x280
 __wait_for_common+0x36f/0x4b0
 flush_workqueue+0x3ac/0x11a0
 hci_dev_open+0x180/0x360
 hci_sock_ioctl+0x2f1/0x910
 sock_do_ioctl+0xd2/0x230
 sock_ioctl+0x41c/0x670
 __x64_sys_ioctl+0x196/0x210
 do_syscall_64+0x3b/0x90
 entry_SYSCALL_64_after_hwframe+0x44/0xae
RIP: 0033:0x7f0fd0fc18d7
RSP: 002b:00007ffcb57e1188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
RAX: ffffffffffffffda RBX: 00007ffcb57e1848 RCX: 00007f0fd0fc18d7
RDX: 0000000000000002 RSI: 00000000400448c9 RDI: 0000000000000003
RBP: 0000000000000003 R08: 00007f0fced38700 R09: 00007f0fced38700
R10: 00007f0fced389d0 R11: 0000000000000246 R12: 00007f0fd10d5bf0
R13: 00007ffcb57e12e0 R14: 0000000000000000 R15: 00000000000000f8
 </TASK>
INFO: task syz-executor.1:26333 blocked for more than 143 seconds.
      Not tainted 5.18.0-rc4-next-20220427 #1
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
task:syz-executor.1  state:D stack:28040 pid:26333 ppid:     1 flags:0x00000000
Call Trace:
 <TASK>
 __schedule+0x893/0x2460
 schedule+0xd2/0x1f0
 schedule_timeout+0x1c5/0x280
 __wait_for_common+0x36f/0x4b0
 flush_workqueue+0x3ac/0x11a0
 hci_dev_open+0x180/0x360
 hci_sock_ioctl+0x2f1/0x910
 sock_do_ioctl+0xd2/0x230
 sock_ioctl+0x41c/0x670
 __x64_sys_ioctl+0x196/0x210
 do_syscall_64+0x3b/0x90
 entry_SYSCALL_64_after_hwframe+0x44/0xae
RIP: 0033:0x7fa5a0e478d7
RSP: 002b:00007ffe0a47fca8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
RAX: ffffffffffffffda RBX: 00007ffe0a480368 RCX: 00007fa5a0e478d7
RDX: 0000000000000001 RSI: 00000000400448c9 RDI: 0000000000000003
RBP: 0000000000000003 R08: 00007fa59ebbe700 R09: 00007fa59ebbe700
R10: 00007fa59ebbe9d0 R11: 0000000000000246 R12: 00007fa5a0f5bbf0
R13: 00007ffe0a47fe00 R14: 0000000000000000 R15: 00000000000000f8
 </TASK>
INFO: task syz-executor.4:26334 blocked for more than 143 seconds.
      Not tainted 5.18.0-rc4-next-20220427 #1
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
task:syz-executor.4  state:D stack:28040 pid:26334 ppid:     1 flags:0x00000000
Call Trace:
 <TASK>
 __schedule+0x893/0x2460
 schedule+0xd2/0x1f0
 schedule_timeout+0x1c5/0x280
 __wait_for_common+0x36f/0x4b0
 flush_workqueue+0x3ac/0x11a0
 hci_dev_open+0x180/0x360
 hci_sock_ioctl+0x2f1/0x910
 sock_do_ioctl+0xd2/0x230
 sock_ioctl+0x41c/0x670
 __x64_sys_ioctl+0x196/0x210
 do_syscall_64+0x3b/0x90
 entry_SYSCALL_64_after_hwframe+0x44/0xae
RIP: 0033:0x7f714932c8d7
RSP: 002b:00007ffe971b1048 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
RAX: ffffffffffffffda RBX: 00007ffe971b1708 RCX: 00007f714932c8d7
RDX: 0000000000000003 RSI: 00000000400448c9 RDI: 0000000000000003
RBP: 0000000000000003 R08: 00007f71470a3700 R09: 00007f71470a3700
R10: 00007f71470a39d0 R11: 0000000000000246 R12: 00007f7149440bf0
R13: 00007ffe971b11a0 R14: 0000000000000000 R15: 00000000000000f8
 </TASK>
INFO: task syz-executor.0:26335 blocked for more than 143 seconds.
      Not tainted 5.18.0-rc4-next-20220427 #1
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
task:syz-executor.0  state:D stack:28040 pid:26335 ppid:     1 flags:0x00000000
Call Trace:
 <TASK>
 __schedule+0x893/0x2460
 schedule+0xd2/0x1f0
 schedule_timeout+0x1c5/0x280
 __wait_for_common+0x36f/0x4b0
 flush_workqueue+0x3ac/0x11a0
 hci_dev_open+0x180/0x360
 hci_sock_ioctl+0x2f1/0x910
 sock_do_ioctl+0xd2/0x230
 sock_ioctl+0x41c/0x670
 __x64_sys_ioctl+0x196/0x210
 do_syscall_64+0x3b/0x90
 entry_SYSCALL_64_after_hwframe+0x44/0xae
RIP: 0033:0x7f6b0295d8d7
RSP: 002b:00007ffcefeff338 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
RAX: ffffffffffffffda RBX: 00007ffcefeff9f8 RCX: 00007f6b0295d8d7
RDX: 0000000000000004 RSI: 00000000400448c9 RDI: 0000000000000003
RBP: 0000000000000003 R08: 00007f6b006d4700 R09: 00007f6b006d4700
R10: 00007f6b006d49d0 R11: 0000000000000246 R12: 00007f6b02a71bf0
R13: 00007ffcefeff490 R14: 0000000000000000 R15: 00000000000000f8
 </TASK>
INFO: task kworker/u5:0:26339 blocked for more than 143 seconds.
      Not tainted 5.18.0-rc4-next-20220427 #1
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
task:kworker/u5:0    state:D stack:28488 pid:26339 ppid:     2 flags:0x00004000
Workqueue: hci0 hci_power_on
Call Trace:
 <TASK>
 __schedule+0x893/0x2460
 schedule+0xd2/0x1f0
 schedule_timeout+0x1c5/0x280
 __wait_for_common+0x36f/0x4b0
 __flush_work+0x53f/0xae0
 __cancel_work_timer+0x398/0x4d0
 hci_dev_close_sync+0x82/0xf20
 hci_power_on+0x1d2/0x630
 process_one_work+0xa1c/0x16a0
 worker_thread+0x637/0x1250
 kthread+0x2f2/0x3b0
 ret_from_fork+0x22/0x30
 </TASK>
INFO: task kworker/u5:1:26340 blocked for more than 143 seconds.
      Not tainted 5.18.0-rc4-next-20220427 #1
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
task:kworker/u5:1    state:D stack:28296 pid:26340 ppid:     2 flags:0x00004000
Workqueue: hci3 hci_power_on
Call Trace:
 <TASK>
 __schedule+0x893/0x2460
 schedule+0xd2/0x1f0
 schedule_timeout+0x1c5/0x280
 __wait_for_common+0x36f/0x4b0
 __flush_work+0x53f/0xae0
 __cancel_work_timer+0x398/0x4d0
 hci_dev_close_sync+0x82/0xf20
 hci_power_on+0x1d2/0x630
 process_one_work+0xa1c/0x16a0
 worker_thread+0x637/0x1250
 kthread+0x2f2/0x3b0
 ret_from_fork+0x22/0x30
 </TASK>
INFO: task kworker/u5:2:26341 blocked for more than 143 seconds.
      Not tainted 5.18.0-rc4-next-20220427 #1
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
task:kworker/u5:2    state:D stack:28352 pid:26341 ppid:     2 flags:0x00004000
Workqueue: hci1 hci_power_on
Call Trace:
 <TASK>
 __schedule+0x893/0x2460
 schedule+0xd2/0x1f0
 schedule_timeout+0x1c5/0x280
 __wait_for_common+0x36f/0x4b0
 __flush_work+0x53f/0xae0
 __cancel_work_timer+0x398/0x4d0
 hci_dev_close_sync+0x82/0xf20
 hci_power_on+0x1d2/0x630
 process_one_work+0xa1c/0x16a0
 worker_thread+0x637/0x1250
 kthread+0x2f2/0x3b0
 ret_from_fork+0x22/0x30
 </TASK>
INFO: task kworker/u5:3:26343 blocked for more than 143 seconds.
      Not tainted 5.18.0-rc4-next-20220427 #1
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
task:kworker/u5:3    state:D stack:28512 pid:26343 ppid:     2 flags:0x00004000
Workqueue: hci2 hci_power_on
Call Trace:
 <TASK>
 __schedule+0x893/0x2460
 schedule+0xd2/0x1f0
 schedule_timeout+0x1c5/0x280
 __wait_for_common+0x36f/0x4b0
 __flush_work+0x53f/0xae0
 __cancel_work_timer+0x398/0x4d0
 hci_dev_close_sync+0x82/0xf20
 hci_power_on+0x1d2/0x630
 process_one_work+0xa1c/0x16a0
 worker_thread+0x637/0x1250
 kthread+0x2f2/0x3b0
 ret_from_fork+0x22/0x30
 </TASK>
INFO: task kworker/u5:5:26347 blocked for more than 143 seconds.
      Not tainted 5.18.0-rc4-next-20220427 #1
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
task:kworker/u5:5    state:D stack:28696 pid:26347 ppid:     2 flags:0x00004000
Workqueue: hci4 hci_power_on
Call Trace:
 <TASK>
 __schedule+0x893/0x2460
 schedule+0xd2/0x1f0
 schedule_timeout+0x1c5/0x280
 __wait_for_common+0x36f/0x4b0
 __flush_work+0x53f/0xae0
 __cancel_work_timer+0x398/0x4d0
 hci_dev_close_sync+0x82/0xf20
 hci_power_on+0x1d2/0x630
 process_one_work+0xa1c/0x16a0
 worker_thread+0x637/0x1250
 kthread+0x2f2/0x3b0
 ret_from_fork+0x22/0x30
 </TASK>

Showing all locks held in the system:
1 lock held by rcu_tasks_kthre/10:
 #0: ffffffff85202cf0 (rcu_tasks.tasks_gp_mutex){+.+.}-{3:3}, at: rcu_tasks_one_gp+0x26/0xc10
1 lock held by khungtaskd/25:
 #0: ffffffff852037c0 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x53/0x260
2 locks held by in:imklog/196:
 #0: ffff88800ed3e0e8 (&f->f_pos_lock){+.+.}-{3:3}, at: __fdget_pos+0xe3/0x100
 #1: ffffffff851f6c08 (syslog_lock){+.+.}-{3:3}, at: try_to_wake_up+0x499/0x1060
3 locks held by kworker/u5:0/26339:
 #0: ffff888043904938 ((wq_completion)hci0){+.+.}-{0:0}, at: process_one_work+0x915/0x16a0
 #1: ffff88804452fdb0 ((work_completion)(&hdev->power_on)){+.+.}-{0:0}, at: process_one_work+0x949/0x16a0
 #2: ffff8880437b1048 (&hdev->req_lock){+.+.}-{3:3}, at: hci_power_on+0x1ca/0x630
3 locks held by kworker/u5:1/26340:
 #0: ffff88801a461938 ((wq_completion)hci3){+.+.}-{0:0}, at: process_one_work+0x915/0x16a0
 #1: ffff8880319bfdb0 ((work_completion)(&hdev->power_on)){+.+.}-{0:0}, at: process_one_work+0x949/0x16a0
 #2: ffff888043089048 (&hdev->req_lock){+.+.}-{3:3}, at: hci_power_on+0x1ca/0x630
3 locks held by kworker/u5:2/26341:
 #0: ffff888042e92138 ((wq_completion)hci1){+.+.}-{0:0}, at: process_one_work+0x915/0x16a0
 #1: ffff8880328bfdb0 ((work_completion)(&hdev->power_on)){+.+.}-{0:0}, at: process_one_work+0x949/0x16a0
 #2: ffff88804308d048 (&hdev->req_lock){+.+.}-{3:3}, at: hci_power_on+0x1ca/0x630
3 locks held by kworker/u5:3/26343:
 #0: ffff888018a40938 ((wq_completion)hci2){+.+.}-{0:0}, at: process_one_work+0x915/0x16a0
 #1: ffff88804399fdb0 ((work_completion)(&hdev->power_on)){+.+.}-{0:0}, at: process_one_work+0x949/0x16a0
 #2: ffff8880434b1048 (&hdev->req_lock){+.+.}-{3:3}, at: hci_power_on+0x1ca/0x630
3 locks held by kworker/u5:4/26346:
 #0: ffff88804334b938 ((wq_completion)hci5){+.+.}-{0:0}, at: process_one_work+0x915/0x16a0
 #1: ffff88804374fdb0 ((work_completion)(&hdev->power_on)){+.+.}-{0:0}, at: process_one_work+0x949/0x16a0
 #2: ffff888041261048 (&hdev->req_lock){+.+.}-{3:3}, at: hci_power_on+0x1ca/0x630
3 locks held by kworker/u5:5/26347:
 #0: ffff888043833938 ((wq_completion)hci4){+.+.}-{0:0}, at: process_one_work+0x915/0x16a0
 #1: ffff88800e7a7db0 ((work_completion)(&hdev->power_on)){+.+.}-{0:0}, at: process_one_work+0x949/0x16a0
 #2: ffff888043745048 (&hdev->req_lock){+.+.}-{3:3}, at: hci_power_on+0x1ca/0x630
3 locks held by kworker/u5:6/26348:
 #0: ffff8880186d9138 ((wq_completion)hci6){+.+.}-{0:0}, at: process_one_work+0x915/0x16a0
 #1: ffff88803c4a7db0 ((work_completion)(&hdev->power_on)){+.+.}-{0:0}, at: process_one_work+0x949/0x16a0
 #2: ffff888043741048 (&hdev->req_lock){+.+.}-{3:3}, at: hci_power_on+0x1ca/0x630
3 locks held by kworker/u5:7/26351:
 #0: ffff888043961938 ((wq_completion)hci7){+.+.}-{0:0}, at: process_one_work+0x915/0x16a0
 #1: ffff88803017fdb0 ((work_completion)(&hdev->power_on)){+.+.}-{0:0}, at: process_one_work+0x949/0x16a0
 #2: ffff888041265048 (&hdev->req_lock){+.+.}-{3:3}, at: hci_power_on+0x1ca/0x630

=============================================