program:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)=ANY=[@ANYBLOB="12010000000000105509147200ed0000000109022400010000000009040000030300000009210000000122050009058103"], 0x0)
syz_usb_control_io(r1, 0x0, 0x0)
syz_usb_control_io(r1, &(0x7f0000000100)={0x2c, &(0x7f0000000280)=ANY=[@ANYBLOB="200617"], 0x0, 0x0, 0x0, 0x0}, 0x0)
openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000), 0x28c81, 0x0)
close_range(r0, 0xffffffffffffffff, 0x400000000000000)

[   86.854750][ T4667] Bluetooth: hci0: command tx timeout
[   87.174795][ T5322] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[   87.324239][ T5322] usb 5-1: Using ep0 maxpacket: 16
[   87.329293][ T5322] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   87.334504][ T5322] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   87.338655][ T5322] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[   87.344099][ T5322] usb 5-1: New USB device found, idVendor=0955, idProduct=7214, bcdDevice=ed.00
[   87.349527][ T5322] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   87.365883][ T5322] usb 5-1: config 0 descriptor??
[   87.795428][ T5322] shield 0003:0955:7214.0002: unknown main item tag 0x0
[   87.798280][ T5322] shield 0003:0955:7214.0002: unknown main item tag 0x0
[   87.801096][ T5322] shield 0003:0955:7214.0002: unknown main item tag 0x0
[   87.806797][ T5322] shield 0003:0955:7214.0002: unknown main item tag 0x0
[   87.809853][ T5322] shield 0003:0955:7214.0002: unknown main item tag 0x0
[   87.824682][ T5322] input: HID 0955:7214 Haptics as /devices/virtual/input/input5
[   87.877915][ T5322] shield 0003:0955:7214.0002: Registered Thunderstrike controller
[   87.883236][ T5322] shield 0003:0955:7214.0002: : USB HID v0.00 Device [HID 0955:7214] on usb-dummy_hcd.0-1/input0
[   87.985498][ T5328] random: crng reseeded on system resumption
[   88.042932][ T5309] usb 5-1: USB disconnect, device number 2
[   88.045934][    T9] shield 0003:0955:7214.0002: Failed to output Thunderstrike HOSTCMD request HID report due to -EPROTO
[   88.050650][    T9] shield 0003:0955:7214.0002: Failed to output Thunderstrike HOSTCMD request HID report due to -ENODEV
[   88.076056][ T5309] ------------[ cut here ]------------
[   88.078460][ T5309] workqueue: work disable count underflowed
[   88.080980][ T5309] WARNING: kernel/workqueue.c:4359 at enable_work+0x1c7/0x230, CPU#0: kworker/0:4/5309
[   88.085039][ T5309] Modules linked in:
[   88.086856][ T5309] CPU: 0 UID: 0 PID: 5309 Comm: kworker/0:4 Not tainted syzkaller #0 PREEMPT(full) 
[   88.090728][ T5309] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[   88.095106][ T5309] Workqueue: usb_hub_wq hub_event
[   88.097339][ T5309] RIP: 0010:enable_work+0x1c7/0x230
[   88.099774][ T5309] Code: df dd 37 00 4d 85 f6 75 48 e8 d5 dd 37 00 eb 47 e8 ce dd 37 00 90 0f 0b 90 e9 bc fe ff ff e8 c0 dd 37 00 48 8d 3d 79 81 65 0e <67> 48 0f b9 3a e9 d2 fe ff ff e8 aa dd 37 00 90 0f 0b 90 e9 1d ff
[   88.107647][ T5309] RSP: 0018:ffffc9000ac4f0e0 EFLAGS: 00010093
[   88.110296][ T5309] RAX: ffffffff818ca930 RBX: 0000000000000000 RCX: ffff8880126b8000
[   88.113380][ T5309] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffffff8ff22ab0
[   88.116530][ T5309] RBP: 0000000000000000 R08: ffff88803341873f R09: 1ffff110066830e7
[   88.119704][ T5309] R10: dffffc0000000000 R11: ffffed10066830e8 R12: 1ffff110066830e7
[   88.122796][ T5309] R13: 001fffffffc00001 R14: ffff888033418738 R15: 0000000000000000
[   88.126039][ T5309] FS:  0000000000000000(0000) GS:ffff88808ccea000(0000) knlGS:0000000000000000
[   88.129839][ T5309] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   88.132643][ T5309] CR2: 00005614a36e2a70 CR3: 000000003b9f6000 CR4: 0000000000352ef0
[   88.136077][ T5309] Call Trace:
[   88.137511][ T5309]  <TASK>
[   88.138896][ T5309]  __cancel_work_sync+0xf7/0x110
[   88.141005][ T5309]  thermal_zone_device_unregister+0x23e/0x3f0
[   88.143586][ T5309]  power_supply_unregister+0xf9/0x140
[   88.146139][ T5309]  ? __pfx_shield_remove+0x10/0x10
[   88.148372][ T5309]  shield_remove+0x72/0x120
[   88.150333][ T5309]  hid_device_remove+0x228/0x370
[   88.152464][ T5309]  ? __pfx_hid_device_remove+0x10/0x10
[   88.154816][ T5309]  device_release_driver_internal+0x46f/0x860
[   88.157403][ T5309]  bus_remove_device+0x34d/0x440
[   88.159544][ T5309]  device_del+0x527/0x8f0
[   88.161386][ T5309]  ? __pfx_device_del+0x10/0x10
[   88.163450][ T5309]  hid_destroy_device+0x6b/0x1b0
[   88.165529][ T5309]  usbhid_disconnect+0x9f/0xc0
[   88.167578][ T5309]  usb_unbind_interface+0x26e/0x910
[   88.169879][ T5309]  ? __pfx_usb_unbind_interface+0x10/0x10
[   88.172288][ T5309]  device_release_driver_internal+0x4d9/0x860
[   88.174868][ T5309]  bus_remove_device+0x34d/0x440
[   88.177006][ T5309]  device_del+0x527/0x8f0
[   88.178907][ T5309]  ? __pfx_device_del+0x10/0x10
[   88.180828][ T5309]  ? kobject_put+0x51d/0x560
[   88.182954][ T5309]  usb_disable_device+0x3d4/0x8d0
[   88.185144][ T5309]  usb_disconnect+0x32f/0x990
[   88.187188][ T5309]  hub_event+0x1cc9/0x4f30
[   88.189087][ T5309]  ? __pfx_hub_event+0x10/0x10
[   88.191107][ T5309]  ? process_scheduled_works+0xa0f/0x17a0
[   88.193308][ T5309]  ? process_scheduled_works+0xa0f/0x17a0
[   88.195740][ T5309]  ? process_scheduled_works+0xa0f/0x17a0
[   88.198142][ T5309]  process_scheduled_works+0xaec/0x17a0
[   88.200719][ T5309]  ? __pfx_process_scheduled_works+0x10/0x10
[   88.203262][ T5309]  ? do_raw_spin_lock+0x12b/0x2f0
[   88.205468][ T5309]  ? __pfx_do_raw_spin_lock+0x10/0x10
[   88.207716][ T5309]  ? schedule+0x90/0x360
[   88.213270][ T5309]  worker_thread+0xda6/0x1360
[   88.215351][ T5309]  ? __kthread_parkme+0x19c/0x1f0
[   88.217548][ T5309]  kthread+0x726/0x8b0
[   88.219460][ T5309]  ? __pfx_worker_thread+0x10/0x10
[   88.221691][ T5309]  ? __pfx_kthread+0x10/0x10
[   88.223754][ T5309]  ? _raw_spin_unlock_irq+0x23/0x50
[   88.226007][ T5309]  ? __pfx_kthread+0x10/0x10
[   88.227957][ T5309]  ret_from_fork+0x51b/0xa40
[   88.230038][ T5309]  ? __pfx_ret_from_fork+0x10/0x10
[   88.232282][ T5309]  ? __switch_to+0xc82/0x1410
[   88.234365][ T5309]  ? __pfx_kthread+0x10/0x10
[   88.236336][ T5309]  ret_from_fork_asm+0x1a/0x30
[   88.238411][ T5309]  </TASK>
[   88.239834][ T5309] Kernel panic - not syncing: kernel: panic_on_warn set ...
[   88.242909][ T5309] CPU: 0 UID: 0 PID: 5309 Comm: kworker/0:4 Not tainted syzkaller #0 PREEMPT(full) 
[   88.246952][ T5309] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[   88.251160][ T5309] Workqueue: usb_hub_wq hub_event
[   88.253432][ T5309] Call Trace:
[   88.254947][ T5309]  <TASK>
[   88.256244][ T5309]  vpanic+0x1e0/0x670
[   88.258050][ T5309]  panic+0xc5/0xd0
[   88.259854][ T5309]  ? __pfx_panic+0x10/0x10
[   88.261854][ T5309]  ? ret_from_fork_asm+0x1a/0x30
[   88.263951][ T5309]  __warn+0x315/0x4a0
[   88.265670][ T5309]  ? enable_work+0x1c7/0x230
[   88.267584][ T5309]  ? enable_work+0x1c7/0x230
[   88.269531][ T5309]  __report_bug+0x29a/0x540
[   88.271610][ T5309]  ? enable_work+0x1c7/0x230
[   88.273677][ T5309]  ? __pfx___report_bug+0x10/0x10
[   88.275642][ T5309]  ? __flush_work+0xa26/0xc50
[   88.277625][ T5309]  ? __flush_work+0x100/0xc50
[   88.279590][ T5309]  report_bug_entry+0x19a/0x290
[   88.281630][ T5309]  ? enable_work+0x1c7/0x230
[   88.283590][ T5309]  ? enable_work+0x1cc/0x230
[   88.285612][ T5309]  handle_bug+0xca/0x200
[   88.287437][ T5309]  exc_invalid_op+0x1a/0x50
[   88.289710][ T5309]  asm_exc_invalid_op+0x1a/0x20
[   88.292413][ T5309] RIP: 0010:enable_work+0x1c7/0x230
[   88.294687][ T5309] Code: df dd 37 00 4d 85 f6 75 48 e8 d5 dd 37 00 eb 47 e8 ce dd 37 00 90 0f 0b 90 e9 bc fe ff ff e8 c0 dd 37 00 48 8d 3d 79 81 65 0e <67> 48 0f b9 3a e9 d2 fe ff ff e8 aa dd 37 00 90 0f 0b 90 e9 1d ff
[   88.302761][ T5309] RSP: 0018:ffffc9000ac4f0e0 EFLAGS: 00010093
[   88.305354][ T5309] RAX: ffffffff818ca930 RBX: 0000000000000000 RCX: ffff8880126b8000
[   88.308932][ T5309] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffffff8ff22ab0
[   88.312335][ T5309] RBP: 0000000000000000 R08: ffff88803341873f R09: 1ffff110066830e7
[   88.315499][ T5309] R10: dffffc0000000000 R11: ffffed10066830e8 R12: 1ffff110066830e7
[   88.318780][ T5309] R13: 001fffffffc00001 R14: ffff888033418738 R15: 0000000000000000
[   88.322235][ T5309]  ? enable_work+0x1c0/0x230
[   88.324383][ T5309]  __cancel_work_sync+0xf7/0x110
[   88.326562][ T5309]  thermal_zone_device_unregister+0x23e/0x3f0
[   88.329218][ T5309]  power_supply_unregister+0xf9/0x140
[   88.331595][ T5309]  ? __pfx_shield_remove+0x10/0x10
[   88.333849][ T5309]  shield_remove+0x72/0x120
[   88.335825][ T5309]  hid_device_remove+0x228/0x370
[   88.338067][ T5309]  ? __pfx_hid_device_remove+0x10/0x10
[   88.340364][ T5309]  device_release_driver_internal+0x46f/0x860
[   88.342764][ T5309]  bus_remove_device+0x34d/0x440
[   88.344752][ T5309]  device_del+0x527/0x8f0
[   88.346625][ T5309]  ? __pfx_device_del+0x10/0x10
[   88.348549][ T5309]  hid_destroy_device+0x6b/0x1b0
[   88.350583][ T5309]  usbhid_disconnect+0x9f/0xc0
[   88.352568][ T5309]  usb_unbind_interface+0x26e/0x910
[   88.354799][ T5309]  ? __pfx_usb_unbind_interface+0x10/0x10
[   88.357356][ T5309]  device_release_driver_internal+0x4d9/0x860
[   88.360123][ T5309]  bus_remove_device+0x34d/0x440
[   88.362376][ T5309]  device_del+0x527/0x8f0
[   88.364216][ T5309]  ? __pfx_device_del+0x10/0x10
[   88.366378][ T5309]  ? kobject_put+0x51d/0x560
[   88.368351][ T5309]  usb_disable_device+0x3d4/0x8d0
[   88.370653][ T5309]  usb_disconnect+0x32f/0x990
[   88.372749][ T5309]  hub_event+0x1cc9/0x4f30
[   88.374797][ T5309]  ? __pfx_hub_event+0x10/0x10
[   88.376903][ T5309]  ? process_scheduled_works+0xa0f/0x17a0
[   88.379450][ T5309]  ? process_scheduled_works+0xa0f/0x17a0
[   88.381888][ T5309]  ? process_scheduled_works+0xa0f/0x17a0
[   88.383979][ T5309]  process_scheduled_works+0xaec/0x17a0
[   88.386320][ T5309]  ? __pfx_process_scheduled_works+0x10/0x10
[   88.388965][ T5309]  ? do_raw_spin_lock+0x12b/0x2f0
[   88.391228][ T5309]  ? __pfx_do_raw_spin_lock+0x10/0x10
[   88.393582][ T5309]  ? schedule+0x90/0x360
[   88.395544][ T5309]  worker_thread+0xda6/0x1360
[   88.397692][ T5309]  ? __kthread_parkme+0x19c/0x1f0
[   88.399968][ T5309]  kthread+0x726/0x8b0
[   88.401760][ T5309]  ? __pfx_worker_thread+0x10/0x10
[   88.404067][ T5309]  ? __pfx_kthread+0x10/0x10
[   88.406143][ T5309]  ? _raw_spin_unlock_irq+0x23/0x50
[   88.408472][ T5309]  ? __pfx_kthread+0x10/0x10
[   88.410519][ T5309]  ret_from_fork+0x51b/0xa40
[   88.412618][ T5309]  ? __pfx_ret_from_fork+0x10/0x10
[   88.414887][ T5309]  ? __switch_to+0xc82/0x1410
[   88.417047][ T5309]  ? __pfx_kthread+0x10/0x10
[   88.419191][ T5309]  ret_from_fork_asm+0x1a/0x30
[   88.421568][ T5309]  </TASK>
[   88.423290][ T5309] Kernel Offset: disabled
[   88.425173][ T5309] Rebooting in 86400 seconds..