program:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)=ANY=[@ANYBLOB="12010000000000105509147200ed0000000109022400010000000009040000030300000009210000000122050009058103"], 0x0)
syz_usb_control_io(r1, 0x0, 0x0)
syz_usb_control_io(r1, &(0x7f0000000100)={0x2c, &(0x7f0000000280)=ANY=[@ANYBLOB="200617"], 0x0, 0x0, 0x0, 0x0}, 0x0)
openat$dlm_plock(0xffffffffffffff9c, 0x0, 0x80803, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x1)
openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000), 0x28c81, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

[   84.394329][ T5299] Bluetooth: hci0: command tx timeout
[   84.705268][ T5307] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[   84.854833][ T5307] usb 5-1: Using ep0 maxpacket: 16
[   84.860052][ T5307] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   84.865370][ T5307] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   84.869681][ T5307] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[   84.876150][ T5307] usb 5-1: New USB device found, idVendor=0955, idProduct=7214, bcdDevice=ed.00
[   84.884137][ T5307] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   84.903093][ T5307] usb 5-1: config 0 descriptor??
[   85.340509][ T5307] shield 0003:0955:7214.0002: unknown main item tag 0x0
[   85.343885][ T5307] shield 0003:0955:7214.0002: unknown main item tag 0x0
[   85.347807][ T5307] shield 0003:0955:7214.0002: unknown main item tag 0x0
[   85.350960][ T5307] shield 0003:0955:7214.0002: unknown main item tag 0x0
[   85.354588][ T5307] shield 0003:0955:7214.0002: unknown main item tag 0x0
[   85.361568][ T5307] input: HID 0955:7214 Haptics as /devices/virtual/input/input5
[   85.429080][ T5307] shield 0003:0955:7214.0002: Registered Thunderstrike controller
[   85.432893][ T5307] shield 0003:0955:7214.0002: : USB HID v0.00 Device [HID 0955:7214] on usb-dummy_hcd.0-1/input0
[   85.532901][ T5321] random: crng reseeded on system resumption
[   85.575391][ T5314] shield 0003:0955:7214.0002: Failed to output Thunderstrike HOSTCMD request HID report due to -EPROTO
[   85.584849][ T5307] usb 5-1: USB disconnect, device number 2
[   85.599878][ T5314] shield 0003:0955:7214.0002: Failed to output Thunderstrike HOSTCMD request HID report due to -EPROTO
[   85.607665][ T5307] ------------[ cut here ]------------
[   85.609888][ T5307] workqueue: work disable count underflowed
[   85.612317][ T5307] WARNING: kernel/workqueue.c:4359 at enable_work+0x1c7/0x230, CPU#0: kworker/0:4/5307
[   85.616301][ T5307] Modules linked in:
[   85.618091][ T5307] CPU: 0 UID: 0 PID: 5307 Comm: kworker/0:4 Not tainted syzkaller #0 PREEMPT(full) 
[   85.621930][ T5307] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[   85.626395][ T5307] Workqueue: usb_hub_wq hub_event
[   85.628877][ T5307] RIP: 0010:enable_work+0x1c7/0x230
[   85.631214][ T5307] Code: af e0 37 00 4d 85 f6 75 48 e8 a5 e0 37 00 eb 47 e8 9e e0 37 00 90 0f 0b 90 e9 bc fe ff ff e8 90 e0 37 00 48 8d 3d 99 88 65 0e <67> 48 0f b9 3a e9 d2 fe ff ff e8 7a e0 37 00 90 0f 0b 90 e9 1d ff
[   85.639744][ T5307] RSP: 0018:ffffc9000c85f0e0 EFLAGS: 00010093
[   85.642498][ T5307] RAX: ffffffff818ca930 RBX: 0000000000000000 RCX: ffff888000b10000
[   85.645893][ T5307] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffffff8ff231d0
[   85.649297][ T5307] RBP: 0000000000000000 R08: ffff8880338b973f R09: 1ffff110067172e7
[   85.652672][ T5307] R10: dffffc0000000000 R11: ffffed10067172e8 R12: 1ffff110067172e7
[   85.656244][ T5307] R13: 001fffffffc00001 R14: ffff8880338b9738 R15: 0000000000000000
[   85.659787][ T5307] FS:  0000000000000000(0000) GS:ffff88808cce8000(0000) knlGS:0000000000000000
[   85.663728][ T5307] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   85.666645][ T5307] CR2: 0000558c84d20340 CR3: 00000000411f8000 CR4: 0000000000352ef0
[   85.670100][ T5307] Call Trace:
[   85.671644][ T5307]  <TASK>
[   85.673028][ T5307]  __cancel_work_sync+0xf7/0x110
[   85.675189][ T5307]  thermal_zone_device_unregister+0x23e/0x3f0
[   85.677939][ T5307]  power_supply_unregister+0xf9/0x140
[   85.680342][ T5307]  ? __pfx_shield_remove+0x10/0x10
[   85.682552][ T5307]  shield_remove+0x72/0x120
[   85.684572][ T5307]  hid_device_remove+0x228/0x370
[   85.686775][ T5307]  ? __pfx_hid_device_remove+0x10/0x10
[   85.689181][ T5307]  device_release_driver_internal+0x46f/0x860
[   85.691796][ T5307]  bus_remove_device+0x34d/0x440
[   85.694036][ T5307]  device_del+0x527/0x8f0
[   85.695971][ T5307]  ? __pfx_device_del+0x10/0x10
[   85.698174][ T5307]  hid_destroy_device+0x6b/0x1b0
[   85.700370][ T5307]  usbhid_disconnect+0x9f/0xc0
[   85.702451][ T5307]  usb_unbind_interface+0x26e/0x910
[   85.704856][ T5307]  ? __pfx_usb_unbind_interface+0x10/0x10
[   85.707282][ T5307]  device_release_driver_internal+0x4d9/0x860
[   85.710046][ T5307]  bus_remove_device+0x34d/0x440
[   85.712195][ T5307]  device_del+0x527/0x8f0
[   85.714383][ T5307]  ? __pfx_device_del+0x10/0x10
[   85.716579][ T5307]  ? kobject_put+0x51d/0x560
[   85.718686][ T5307]  usb_disable_device+0x3d4/0x8d0
[   85.720940][ T5307]  usb_disconnect+0x32f/0x990
[   85.723022][ T5307]  hub_event+0x1cc9/0x4f30
[   85.724987][ T5307]  ? __pfx_hub_event+0x10/0x10
[   85.726972][ T5307]  ? process_scheduled_works+0xa0f/0x17a0
[   85.729286][ T5307]  ? process_scheduled_works+0xa0f/0x17a0
[   85.731537][ T5307]  ? process_scheduled_works+0xa0f/0x17a0
[   85.733872][ T5307]  process_scheduled_works+0xaec/0x17a0
[   85.736033][ T5307]  ? __pfx_process_scheduled_works+0x10/0x10
[   85.738424][ T5307]  ? do_raw_spin_lock+0x12b/0x2f0
[   85.740724][ T5307]  ? __pfx_do_raw_spin_lock+0x10/0x10
[   85.743260][ T5307]  ? schedule+0x90/0x360
[   85.745240][ T5307]  worker_thread+0xda6/0x1360
[   85.747358][ T5307]  ? __kthread_parkme+0x19c/0x1f0
[   85.749501][ T5307]  kthread+0x726/0x8b0
[   85.751356][ T5307]  ? __pfx_worker_thread+0x10/0x10
[   85.753616][ T5307]  ? __pfx_kthread+0x10/0x10
[   85.755645][ T5307]  ? _raw_spin_unlock_irq+0x23/0x50
[   85.758005][ T5307]  ? __pfx_kthread+0x10/0x10
[   85.760052][ T5307]  ret_from_fork+0x51b/0xa40
[   85.762106][ T5307]  ? __pfx_ret_from_fork+0x10/0x10
[   85.764358][ T5307]  ? __switch_to+0xc82/0x1410
[   85.766515][ T5307]  ? __pfx_kthread+0x10/0x10
[   85.768597][ T5307]  ret_from_fork_asm+0x1a/0x30
[   85.770935][ T5307]  </TASK>
[   85.772409][ T5307] Kernel panic - not syncing: kernel: panic_on_warn set ...
[   85.775710][ T5307] CPU: 0 UID: 0 PID: 5307 Comm: kworker/0:4 Not tainted syzkaller #0 PREEMPT(full) 
[   85.779727][ T5307] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[   85.784139][ T5307] Workqueue: usb_hub_wq hub_event
[   85.786326][ T5307] Call Trace:
[   85.787750][ T5307]  <TASK>
[   85.789099][ T5307]  vpanic+0x1e0/0x670
[   85.790851][ T5307]  panic+0xc5/0xd0
[   85.792421][ T5307]  ? __pfx_panic+0x10/0x10
[   85.794452][ T5307]  ? ret_from_fork_asm+0x1a/0x30
[   85.796812][ T5307]  __warn+0x315/0x4a0
[   85.798673][ T5307]  ? enable_work+0x1c7/0x230
[   85.800823][ T5307]  ? enable_work+0x1c7/0x230
[   85.802899][ T5307]  __report_bug+0x29a/0x540
[   85.804920][ T5307]  ? enable_work+0x1c7/0x230
[   85.806995][ T5307]  ? __pfx___report_bug+0x10/0x10
[   85.809318][ T5307]  ? __flush_work+0xa26/0xc50
[   85.811401][ T5307]  ? __flush_work+0x100/0xc50
[   85.813676][ T5307]  report_bug_entry+0x19a/0x290
[   85.815858][ T5307]  ? enable_work+0x1c7/0x230
[   85.817918][ T5307]  ? enable_work+0x1cc/0x230
[   85.819976][ T5307]  handle_bug+0xca/0x200
[   85.821956][ T5307]  exc_invalid_op+0x1a/0x50
[   85.824031][ T5307]  asm_exc_invalid_op+0x1a/0x20
[   85.826260][ T5307] RIP: 0010:enable_work+0x1c7/0x230
[   85.828688][ T5307] Code: af e0 37 00 4d 85 f6 75 48 e8 a5 e0 37 00 eb 47 e8 9e e0 37 00 90 0f 0b 90 e9 bc fe ff ff e8 90 e0 37 00 48 8d 3d 99 88 65 0e <67> 48 0f b9 3a e9 d2 fe ff ff e8 7a e0 37 00 90 0f 0b 90 e9 1d ff
[   85.837027][ T5307] RSP: 0018:ffffc9000c85f0e0 EFLAGS: 00010093
[   85.839680][ T5307] RAX: ffffffff818ca930 RBX: 0000000000000000 RCX: ffff888000b10000
[   85.843211][ T5307] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffffff8ff231d0
[   85.847062][ T5307] RBP: 0000000000000000 R08: ffff8880338b973f R09: 1ffff110067172e7
[   85.850522][ T5307] R10: dffffc0000000000 R11: ffffed10067172e8 R12: 1ffff110067172e7
[   85.854005][ T5307] R13: 001fffffffc00001 R14: ffff8880338b9738 R15: 0000000000000000
[   85.857521][ T5307]  ? enable_work+0x1c0/0x230
[   85.859556][ T5307]  __cancel_work_sync+0xf7/0x110
[   85.861791][ T5307]  thermal_zone_device_unregister+0x23e/0x3f0
[   85.864580][ T5307]  power_supply_unregister+0xf9/0x140
[   85.866970][ T5307]  ? __pfx_shield_remove+0x10/0x10
[   85.869322][ T5307]  shield_remove+0x72/0x120
[   85.871389][ T5307]  hid_device_remove+0x228/0x370
[   85.873639][ T5307]  ? __pfx_hid_device_remove+0x10/0x10
[   85.876049][ T5307]  device_release_driver_internal+0x46f/0x860
[   85.878746][ T5307]  bus_remove_device+0x34d/0x440
[   85.880993][ T5307]  device_del+0x527/0x8f0
[   85.882884][ T5307]  ? __pfx_device_del+0x10/0x10
[   85.885064][ T5307]  hid_destroy_device+0x6b/0x1b0
[   85.887186][ T5307]  usbhid_disconnect+0x9f/0xc0
[   85.889342][ T5307]  usb_unbind_interface+0x26e/0x910
[   85.891659][ T5307]  ? __pfx_usb_unbind_interface+0x10/0x10
[   85.894381][ T5307]  device_release_driver_internal+0x4d9/0x860
[   85.897102][ T5307]  bus_remove_device+0x34d/0x440
[   85.899294][ T5307]  device_del+0x527/0x8f0
[   85.901135][ T5307]  ? __pfx_device_del+0x10/0x10
[   85.903261][ T5307]  ? kobject_put+0x51d/0x560
[   85.905160][ T5307]  usb_disable_device+0x3d4/0x8d0
[   85.907193][ T5307]  usb_disconnect+0x32f/0x990
[   85.911106][ T5307]  hub_event+0x1cc9/0x4f30
[   85.913080][ T5307]  ? __pfx_hub_event+0x10/0x10
[   85.915099][ T5307]  ? process_scheduled_works+0xa0f/0x17a0
[   85.917723][ T5307]  ? process_scheduled_works+0xa0f/0x17a0
[   85.920332][ T5307]  ? process_scheduled_works+0xa0f/0x17a0
[   85.922932][ T5307]  process_scheduled_works+0xaec/0x17a0
[   85.925503][ T5307]  ? __pfx_process_scheduled_works+0x10/0x10
[   85.928295][ T5307]  ? do_raw_spin_lock+0x12b/0x2f0
[   85.930567][ T5307]  ? __pfx_do_raw_spin_lock+0x10/0x10
[   85.933050][ T5307]  ? schedule+0x90/0x360
[   85.934993][ T5307]  worker_thread+0xda6/0x1360
[   85.937240][ T5307]  ? __kthread_parkme+0x19c/0x1f0
[   85.939451][ T5307]  kthread+0x726/0x8b0
[   85.941117][ T5307]  ? __pfx_worker_thread+0x10/0x10
[   85.943279][ T5307]  ? __pfx_kthread+0x10/0x10
[   85.945447][ T5307]  ? _raw_spin_unlock_irq+0x23/0x50
[   85.947791][ T5307]  ? __pfx_kthread+0x10/0x10
[   85.949864][ T5307]  ret_from_fork+0x51b/0xa40
[   85.951977][ T5307]  ? __pfx_ret_from_fork+0x10/0x10
[   85.954277][ T5307]  ? __switch_to+0xc82/0x1410
[   85.956833][ T5307]  ? __pfx_kthread+0x10/0x10
[   85.959039][ T5307]  ret_from_fork_asm+0x1a/0x30
[   85.961203][ T5307]  </TASK>
[   85.962998][ T5307] Kernel Offset: disabled
[   85.964894][ T5307] Rebooting in 86400 seconds..