program:
syz_usb_connect(0x2, 0x9a2, &(0x7f0000000280)=ANY=[@ANYBLOB="12010000d0241710d8050a81b892000000010902900902000000000904"], 0x0)
syz_usb_connect$cdc_ecm(0x3, 0x140, &(0x7f00000011c0)={{0x12, 0x1, 0x201, 0x2, 0x0, 0x0, 0x8, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12e, 0x1, 0x1, 0x6, 0x0, 0x4, "", [{{0x9, 0x4, 0x0, 0x3, 0x3, 0x2, 0x6, 0x0, 0x0, {{0x9, 0x24, 0x6, 0x0, 0x0, "61e051a2"}, {0x5, 0x24, 0x0, 0x6}, {0xd, 0x24, 0xf, 0x1, 0x8, 0x100, 0x4, 0x2}, [@acm={0x4, 0x24, 0x2, 0x4}, @mdlm_detail={0xd6, 0x24, 0x13, 0x4, "994ca9b3d4ac84b4efc326881d90fce2b7edf162e5c454fb6d236d3ca1750f03388f2585679c1b758b430a8e1b1d51735763c2bb5333143d3a6e8b634287911c943adfd646d19a78905874162e3ce6dac3db744c465b10f080234b6d7cea79d19864d0e04470bda7732f0c991ad1bc50a0d13ae74c06dc45bfea6c30fd1cfa391b87f9bf289b4ceaa561bb3636aea5751632ab050ed5b81423afb7762c2ac71b81b88a502dfe573f437a004c7955b4e1840a482e720b47ba642616cf4c3152d2f71f17ea57d03d1cc4b96d9bc08b42decd24"}, @mbim={0xc, 0x24, 0x1b, 0x4, 0x7, 0x4, 0x24, 0x9, 0x2}]}, {[{{0x9, 0x5, 0x81, 0x3, 0x200, 0x8, 0x89, 0x1}}], {{0x9, 0x5, 0x82, 0x2, 0x38, 0xb, 0x7, 0xb1}}, {{0x9, 0x5, 0x3, 0x2, 0x8, 0x5, 0x0, 0x3}}}}}]}}]}}, &(0x7f0000001600)={0xa, &(0x7f0000001300)={0xa, 0x6, 0x201, 0x1, 0x0, 0x5, 0xff, 0x5}, 0x19, &(0x7f0000001340)={0x5, 0xf, 0x19, 0x1, [@ss_container_id={0x14, 0x10, 0x4, 0x0, "43b3176acc87c30c64e5be13953dea19"}]}, 0x5, [{0x49, &(0x7f0000001380)=@string={0x49, 0x3, "61feedae4e73d492ad9d6db1784f57c5addf9bca2d8af1ba4cd987d9c08d36e166801d676e044aded6c31f69b6c44e155f459ef431080618f73551b7f3dacd029596141966b0d9"}}, {0x43, &(0x7f0000001400)=@string={0x43, 0x3, "9cd4ae81e1b3cbc3fafb10f6d3fa967c49484e2b6c7d0a5a7052f293e42fbb4e6c86ac740623a8731a990b37f32cbb8d0e7378fee15e8e2d9958c8737e5b78d64a"}}, {0x4, &(0x7f0000001480)=@lang_id={0x4, 0x3, 0x3001}}, {0x4, &(0x7f00000014c0)=@lang_id={0x4, 0x3, 0x449}}, {0xfa, &(0x7f0000001500)=@string={0xfa, 0x3, "3347a7615447a8c86e978bffde783550b00bf0aac84d29a7df6a9cab8d38e5627914e1691d31a6cbe6d1936bf2126d3d8e50e342f97d8b13052557d4bb3357b86a5c582e18d932e6d7bad1dad0e29393362341145657bafa32687b423def3423de81ef29c8a1b05b3b8dfa4c7dff1e68763c271cdad717193fba01ec58269e9648582c23a2a120f732b44bb434da7c3c76719e8ab971c7c84f94b8ce86a492851cec12233da120eab385f2892ec11a0971dcd404d3e1d6812ca49fe49694d61d2e9d7125b53146a4786facaff54e5d0124912d0928c91fbdac4b3d06f6d6d9725e63ebee1ae5858ca80d3f9856a1ea0a2918f253af2815a4"}}]}) (async)
r0 = syz_open_dev$evdev(&(0x7f0000000000), 0x4, 0x0)
ioctl$EVIOCSKEYCODE_V2(r0, 0x40284504, &(0x7f0000000080)={0x8, 0x1a, 0x107, 0x8, "e78f412709f408288904452e16e7cf02d9d88c167f6f5af6d6ee9df47dd58bf1"}) (async)
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0xfe, 0x7fff0006}]})
r2 = openat$dma_heap(0xffffffffffffff9c, &(0x7f0000000240), 0xa2003, 0x0)
ioctl$DMA_HEAP_IOCTL_ALLOC(r2, 0xc0184800, &(0x7f0000000100)={0x20004, <r3=>r1})
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000300), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(r4, 0x8933, &(0x7f0000000380)={'wpan1\x00', <r6=>0x0})
sendmsg$NL802154_CMD_DEL_SEC_DEV(r4, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f00000003c0)={0x2c, r5, 0x1, 0xfffffffe, 0x0, {}, [@NL802154_ATTR_SEC_DEVICE={0x10, 0x2e, 0x0, 0x1, {0xb}}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r6}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4008851}, 0x0) (async)
r7 = syz_open_dev$dri(&(0x7f0000000280), 0x1ff, 0x140)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r7, 0xc00c642e, &(0x7f00000000c0)={<r8=>0x0, 0x0, r3})
ioctl$DRM_IOCTL_GEM_FLINK(r7, 0xc00864d2, &(0x7f0000000300)={r8}) (async)
r9 = openat$procfs(0xffffffffffffff9c, &(0x7f00000010c0)='/proc/keys\x00', 0x0, 0x0)
ioctl$PIO_SCRNMAP(r9, 0x4b41, &(0x7f0000001100)="158c846a0823e0e936f6f4eb482c0f6197d078bfbce1c3a9dd0604bcd35a95e178dff89af639b5e8583a46d168b7e2c8f328169f663150fed12d6ba3f9fa7ab1e6d208b4e9267da050b63f33cfcbedb7ff7e43e48fff15a3d9344a770335607247ae59e19b265f96f5a29a42958b0f189f9cf1c58b18aabbfc021256c2ba662409d2ac4cb34e611e520acadd8e69f75bfb86de37568837390a3a6b7b2a13fe5e40a66ea0f702f37470679f7e285c5595217ea5e3d87068")
syz_read_part_table(0x1061, &(0x7f0000001680)="$eJzszz2OwjAQBtDxJpufao+z0m5BwQVoaLkHFbk1DWJQEkAIREEFxXuyNPZneeQJ3mux/DpmND9VxCHbMSlRR/zOt7vYZ2bWkffvmsum3KZzh+p6Hko3lu/ox9L153jzlxmRZZ0PfSOindZk9b99+vMqy/DSqAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADwqU4BAAD//yboFYM=")

[   85.477252][ T5285] Bluetooth: hci0: command tx timeout
[   85.557538][ T5325] usb 5-1: new full-speed USB device number 2 using dummy_hcd
[   85.711513][ T5325] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[   85.716058][ T5325] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 2
[   85.720204][ T5325] usb 5-1: New USB device found, idVendor=05d8, idProduct=810a, bcdDevice=92.b8
[   85.724605][ T5325] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   85.741470][ T5325] usb 5-1: config 0 descriptor??
[   85.759095][ T5325] dvb-usb: found a 'Artec T1 USB2.0' in warm state.
[   85.762272][ T5325] dvb-usb: bulk message failed: -22 (3/0)
[   85.784732][ T5325] dvb-usb: will use the device's hardware PID filter (table count: 16).
[   85.791720][ T5325] dvbdev: DVB: registering new adapter (Artec T1 USB2.0)
[   85.795280][ T5325] usb 5-1: media controller created
[   85.804699][ T5325] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[   85.828184][ T5325] dvb-usb: bulk message failed: -22 (6/0)
[   85.832196][ T5325] dvb-usb: no frontend was attached by 'Artec T1 USB2.0'
[   85.846026][ T5325] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.0/usb5/5-1/input/input5
[   85.872924][ T5325] dvb-usb: schedule remote query interval to 150 msecs.
[   85.885871][ T5325] dvb-usb: Artec T1 USB2.0 successfully initialized and connected.
[   85.952413][ T5327] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   85.960162][ T5328] netlink: 'syz.0.0': attribute type 4 has an invalid length.
[   85.970136][ T5327] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   86.040478][ T5325] dvb-usb: bulk message failed: -22 (1/0)
[   86.047740][ T5325] dvb-usb: error while querying for an remote control event.
[   86.053377][ T5330] loop0: detected capacity change from 0 to 8192
[   86.090025][ T5326] ------------[ cut here ]------------
[   86.092203][ T5326] !RB_EMPTY_ROOT(&prime_fpriv->dmabufs)
[   86.092211][ T5326] WARNING: drivers/gpu/drm/drm_prime.c:224 at drm_prime_destroy_file_private+0x4b/0x60, CPU#0: syz.0.0/5326
[   86.099577][ T5326] Modules linked in:
[   86.102120][ T5326] CPU: 0 UID: 0 PID: 5326 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) 
[   86.106337][ T5326] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[   86.110803][ T5326] RIP: 0010:drm_prime_destroy_file_private+0x4b/0x60
[   86.113686][ T5326] Code: 00 fc ff df 80 3c 08 00 74 08 48 89 df e8 2d c9 c6 fc 48 83 3b 00 75 0c e8 72 fd 59 fc 5b e9 cc e4 41 06 cc e8 66 fd 59 fc 90 <0f> 0b 90 5b e9 bc e4 41 06 cc 66 66 2e 0f 1f 84 00 00 00 00 00 90
[   86.121968][ T5326] RSP: 0018:ffffc90004a37c40 EFLAGS: 00010293
[   86.124629][ T5326] RAX: ffffffff856bd3da RBX: ffff88801240a3b0 RCX: ffff88800099ca00
[   86.128257][ T5326] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffff88801240a328
[   86.131771][ T5326] RBP: ffff88801240a278 R08: ffffc90004a37bc7 R09: 1ffff92000946f78
[   86.135298][ T5326] R10: dffffc0000000000 R11: fffff52000946f79 R12: dffffc0000000000
[   86.138782][ T5326] R13: dead000000000100 R14: 0000000000000000 R15: ffff88801240a288
[   86.142108][ T5326] FS:  00005555920dc540(0000) GS:ffff88808c881000(0000) knlGS:0000000000000000
[   86.146281][ T5326] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   86.149244][ T5326] CR2: 00007efc01bf1000 CR3: 0000000012d69000 CR4: 0000000000352ef0
[   86.152519][ T5326] Call Trace:
[   86.153992][ T5326]  <TASK>
[   86.155357][ T5326]  drm_file_free+0x7f1/0xa00
[   86.157245][ T5326]  drm_release+0x2de/0x3f0
[   86.159127][ T5326]  ? __pfx_drm_release+0x10/0x10
[   86.161281][ T5326]  __fput+0x44f/0xa60
[   86.163058][ T5326]  task_work_run+0x1d9/0x270
[   86.165144][ T5326]  ? __pfx_task_work_run+0x10/0x10
[   86.167541][ T5326]  exit_to_user_mode_loop+0xf3/0x4d0
[   86.169835][ T5326]  ? rcu_is_watching+0x15/0xb0
[   86.171966][ T5326]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   86.174592][ T5326]  do_syscall_64+0x33e/0xf80
[   86.176672][ T5326]  ? trace_irq_disable+0x3b/0x140
[   86.178832][ T5326]  ? clear_bhb_loop+0x40/0x90
[   86.180776][ T5326]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   86.183199][ T5326] RIP: 0033:0x7f5c2919cdd9
[   86.184797][ T5326] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   86.192921][ T5326] RSP: 002b:00007ffeff518138 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[   86.196372][ T5326] RAX: 0000000000000000 RBX: 00007ffeff518220 RCX: 00007f5c2919cdd9
[   86.200269][ T5326] RDX: 0000000000000000 RSI: 000000000000001e RDI: 0000000000000003
[   86.203545][ T5326] RBP: 0000000000014c7d R08: 0000000000000001 R09: 0000000000000000
[   86.206718][ T5326] R10: 00007f5c28fff02c R11: 0000000000000246 R12: 00007ffeff518260
[   86.210165][ T5326] R13: 00007f5c2941618c R14: 000000000001504b R15: 00007f5c29416180
[   86.213655][ T5326]  </TASK>
[   86.215097][ T5326] Kernel panic - not syncing: kernel: panic_on_warn set ...
[   86.218698][ T5326] CPU: 0 UID: 0 PID: 5326 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) 
[   86.222645][ T5326] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[   86.227079][ T5326] Call Trace:
[   86.228506][ T5326]  <TASK>
[   86.229830][ T5326]  vpanic+0x56c/0xa60
[   86.231671][ T5326]  ? __pfx__printk+0x10/0x10
[   86.233707][ T5326]  ? __pfx_vpanic+0x10/0x10
[   86.235667][ T5326]  ? is_bpf_text_address+0x292/0x2b0
[   86.237724][ T5326]  ? is_bpf_text_address+0x26/0x2b0
[   86.239695][ T5326]  panic+0xc5/0xd0
[   86.241299][ T5326]  ? __pfx_panic+0x10/0x10
[   86.243223][ T5326]  __warn+0x315/0x4c0
[   86.244956][ T5326]  ? drm_prime_destroy_file_private+0x4b/0x60
[   86.247594][ T5326]  ? drm_prime_destroy_file_private+0x4b/0x60
[   86.250099][ T5326]  __report_bug+0x29a/0x540
[   86.252080][ T5326]  ? drm_prime_destroy_file_private+0x4b/0x60
[   86.254562][ T5326]  ? __pfx___report_bug+0x10/0x10
[   86.256750][ T5326]  ? drm_file_free+0x78a/0xa00
[   86.258710][ T5326]  ? drm_prime_destroy_file_private+0x4b/0x60
[   86.260982][ T5326]  report_bug+0x16a/0x220
[   86.262674][ T5326]  ? drm_prime_destroy_file_private+0x4b/0x60
[   86.265315][ T5326]  ? drm_prime_destroy_file_private+0x4d/0x60
[   86.267808][ T5326]  handle_bug+0x9c/0x200
[   86.269403][ T5326]  exc_invalid_op+0x1a/0x50
[   86.271354][ T5326]  asm_exc_invalid_op+0x1a/0x20
[   86.273471][ T5326] RIP: 0010:drm_prime_destroy_file_private+0x4b/0x60
[   86.276426][ T5326] Code: 00 fc ff df 80 3c 08 00 74 08 48 89 df e8 2d c9 c6 fc 48 83 3b 00 75 0c e8 72 fd 59 fc 5b e9 cc e4 41 06 cc e8 66 fd 59 fc 90 <0f> 0b 90 5b e9 bc e4 41 06 cc 66 66 2e 0f 1f 84 00 00 00 00 00 90
[   86.284650][ T5326] RSP: 0018:ffffc90004a37c40 EFLAGS: 00010293
[   86.287339][ T5326] RAX: ffffffff856bd3da RBX: ffff88801240a3b0 RCX: ffff88800099ca00
[   86.290826][ T5326] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffff88801240a328
[   86.294445][ T5326] RBP: ffff88801240a278 R08: ffffc90004a37bc7 R09: 1ffff92000946f78
[   86.298012][ T5326] R10: dffffc0000000000 R11: fffff52000946f79 R12: dffffc0000000000
[   86.301463][ T5326] R13: dead000000000100 R14: 0000000000000000 R15: ffff88801240a288
[   86.304726][ T5326]  ? drm_prime_destroy_file_private+0x4a/0x60
[   86.307685][ T5326]  drm_file_free+0x7f1/0xa00
[   86.309687][ T5326]  drm_release+0x2de/0x3f0
[   86.311582][ T5326]  ? __pfx_drm_release+0x10/0x10
[   86.313601][ T5326]  __fput+0x44f/0xa60
[   86.315261][ T5326]  task_work_run+0x1d9/0x270
[   86.317181][ T5326]  ? __pfx_task_work_run+0x10/0x10
[   86.319211][ T5326]  exit_to_user_mode_loop+0xf3/0x4d0
[   86.321325][ T5326]  ? rcu_is_watching+0x15/0xb0
[   86.323321][ T5326]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   86.325802][ T5326]  do_syscall_64+0x33e/0xf80
[   86.327883][ T5326]  ? trace_irq_disable+0x3b/0x140
[   86.330123][ T5326]  ? clear_bhb_loop+0x40/0x90
[   86.332251][ T5326]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   86.334745][ T5326] RIP: 0033:0x7f5c2919cdd9
[   86.336634][ T5326] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   86.344589][ T5326] RSP: 002b:00007ffeff518138 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[   86.348134][ T5326] RAX: 0000000000000000 RBX: 00007ffeff518220 RCX: 00007f5c2919cdd9
[   86.351694][ T5326] RDX: 0000000000000000 RSI: 000000000000001e RDI: 0000000000000003
[   86.355030][ T5326] RBP: 0000000000014c7d R08: 0000000000000001 R09: 0000000000000000
[   86.358479][ T5326] R10: 00007f5c28fff02c R11: 0000000000000246 R12: 00007ffeff518260
[   86.362055][ T5326] R13: 00007f5c2941618c R14: 000000000001504b R15: 00007f5c29416180
[   86.365654][ T5326]  </TASK>
[   86.367500][ T5326] Kernel Offset: disabled
[   86.369425][ T5326] Rebooting in 86400 seconds..