program:
timer_create(0x0, 0x0, 0x0)
ppoll(0x0, 0x0, 0x0, 0x0, 0x0)
syz_usb_connect(0x0, 0x24, &(0x7f0000000200)=ANY=[@ANYBLOB="120100002ec6601037210100352a010203010902120001000000000904"], 0x0)
openat$snapshot(0xffffffffffffff9c, &(0x7f00000000c0), 0x1, 0x0) (fail_nth: 8)
acct(0x0)

[   74.087182][   T48] Bluetooth: hci0: command tx timeout
[   74.476310][    T9] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[   74.626388][    T9] usb 5-1: Using ep0 maxpacket: 16
[   74.634381][    T9] usb 5-1: New USB device found, idVendor=2137, idProduct=0001, bcdDevice=2a.35
[   74.638942][    T9] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   74.641939][    T9] usb 5-1: Product: syz
[   74.643685][    T9] usb 5-1: Manufacturer: syz
[   74.645493][    T9] usb 5-1: SerialNumber: syz
[   74.657244][    T9] usb 5-1: config 0 descriptor??
[   74.668870][    T9] as10x_usb: device has been detected
[   74.671690][    T9] dvbdev: DVB: registering new adapter (Sky IT Digital Key (green led))
[   74.709984][    T9] usb 5-1: DVB: registering adapter 1 frontend 0 (Sky IT Digital Key (green led))...
[   74.735197][    T9] as10x_usb: error during firmware upload part1
[   74.739524][    T9] Registered device Sky IT Digital Key (green led)
[   74.863347][ T5333] random: crng reseeded on system resumption
[   74.871218][ T5333] FAULT_INJECTION: forcing a failure.
[   74.871218][ T5333] name failslab, interval 1, probability 0, space 0, times 1
[   74.875942][ T5333] CPU: 0 UID: 0 PID: 5333 Comm: syz.0.0 Not tainted 6.12.0-syzkaller-01782-gbf9aa14fc523 #0
[   74.879740][ T5333] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   74.883771][ T5333] Call Trace:
[   74.885021][ T5333]  <TASK>
[   74.886164][ T5333]  dump_stack_lvl+0x241/0x360
[   74.888129][ T5333]  ? __pfx_dump_stack_lvl+0x10/0x10
[   74.890131][ T5333]  ? __pfx__printk+0x10/0x10
[   74.891872][ T5333]  should_fail_ex+0x3b0/0x4e0
[   74.893687][ T5333]  should_failslab+0xac/0x100
[   74.895548][ T5333]  ? async_schedule_node_domain+0x5c/0x110
[   74.897702][ T5333]  __kmalloc_cache_noprof+0x6c/0x2c0
[   74.899696][ T5333]  ? __pfx___async_dev_cache_fw_image+0x10/0x10
[   74.902204][ T5333]  async_schedule_node_domain+0x5c/0x110
[   74.904307][ T5333]  dev_cache_fw_image+0x36d/0x3e0
[   74.906209][ T5333]  ? __pfx_dev_cache_fw_image+0x10/0x10
[   74.908305][ T5333]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[   74.910571][ T5333]  ? blake2s_update+0x1a5/0x280
[   74.912503][ T5333]  ? __pfx_dev_cache_fw_image+0x10/0x10
[   74.914704][ T5333]  dpm_for_each_dev+0x58/0xc0
[   74.916528][ T5333]  fw_pm_notify+0x24a/0x2f0
[   74.918297][ T5333]  ? __pfx_fw_pm_notify+0x10/0x10
[   74.920226][ T5333]  ? rcu_is_watching+0x15/0xb0
[   74.922211][ T5333]  ? __pfx_autoremove_wake_function+0x10/0x10
[   74.924449][ T5333]  ? __mutex_lock+0x37f/0xee0
[   74.926313][ T5333]  ? rcu_is_watching+0x15/0xb0
[   74.928228][ T5333]  notifier_call_chain+0x19f/0x3e0
[   74.930239][ T5333]  blocking_notifier_call_chain_robust+0xe8/0x1e0
[   74.932725][ T5333]  ? __pfx_blocking_notifier_call_chain_robust+0x10/0x10
[   74.935083][ T5333]  ? chrdev_open+0x36e/0x600
[   74.936593][ T5333]  pm_notifier_call_chain_robust+0x2c/0x60
[   74.938570][ T5333]  snapshot_open+0x132/0x280
[   74.940366][ T5333]  ? __pfx_snapshot_open+0x10/0x10
[   74.942426][ T5333]  misc_open+0x2cc/0x340
[   74.944125][ T5333]  chrdev_open+0x521/0x600
[   74.945756][ T5333]  ? __pfx_apparmor_file_open+0x10/0x10
[   74.947824][ T5333]  ? __pfx_chrdev_open+0x10/0x10
[   74.949709][ T5333]  ? security_file_open+0x513/0x990
[   74.951699][ T5333]  ? __pfx_chrdev_open+0x10/0x10
[   74.953542][ T5333]  do_dentry_open+0x978/0x1460
[   74.955538][ T5333]  vfs_open+0x3e/0x330
[   74.957517][ T5333]  path_openat+0x2c84/0x3590
[   74.959689][ T5333]  ? __lock_acquire+0x1397/0x2100
[   74.961937][ T5333]  ? __pfx_path_openat+0x10/0x10
[   74.964122][ T5333]  do_filp_open+0x27f/0x4e0
[   74.965895][ T5333]  ? __pfx_do_filp_open+0x10/0x10
[   74.967908][ T5333]  ? do_raw_spin_lock+0x14f/0x370
[   74.969928][ T5333]  do_sys_openat2+0x13e/0x1d0
[   74.971790][ T5333]  ? __pfx_do_sys_openat2+0x10/0x10
[   74.973808][ T5333]  ? __fget_files+0x2a/0x410
[   74.975603][ T5333]  ? __fget_files+0x2a/0x410
[   74.977256][ T5333]  __x64_sys_openat+0x247/0x2a0
[   74.979066][ T5333]  ? __pfx___x64_sys_openat+0x10/0x10
[   74.981173][ T5333]  ? do_syscall_64+0x100/0x230
[   74.983113][ T5333]  ? do_syscall_64+0xb6/0x230
[   74.984920][ T5333]  do_syscall_64+0xf3/0x230
[   74.986687][ T5333]  ? clear_bhb_loop+0x35/0x90
[   74.988496][ T5333]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   74.990736][ T5333] RIP: 0033:0x7f4438f7e759
[   74.992502][ T5333] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   74.999857][ T5333] RSP: 002b:00007f4439e39038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[   75.002980][ T5333] RAX: ffffffffffffffda RBX: 00007f4439136058 RCX: 00007f4438f7e759
[   75.005981][ T5333] RDX: 0000000000000001 RSI: 00000000200000c0 RDI: ffffffffffffff9c
[   75.008999][ T5333] RBP: 00007f4439e39090 R08: 0000000000000000 R09: 0000000000000000
[   75.011931][ T5333] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   75.014958][ T5333] R13: 0000000000000000 R14: 00007f4439136058 R15: 00007ffdad346268
[   75.017920][ T5333]  </TASK>
[   75.033459][ T5333] 
[   75.034423][ T5333] ============================================
[   75.036825][ T5333] WARNING: possible recursive locking detected
[   75.039198][ T5333] 6.12.0-syzkaller-01782-gbf9aa14fc523 #0 Not tainted
[   75.041715][ T5333] --------------------------------------------
[   75.044149][ T5333] syz.0.0/5333 is trying to acquire lock:
[   75.046377][ T5333] ffffffff8f2e6dc8 (fw_lock){+.+.}-{4:4}, at: assign_fw+0x56/0x890
[   75.049344][ T5333] 
[   75.049344][ T5333] but task is already holding lock:
[   75.052080][ T5333] ffffffff8f2e6dc8 (fw_lock){+.+.}-{4:4}, at: fw_pm_notify+0x232/0x2f0
[   75.055260][ T5333] 
[   75.055260][ T5333] other info that might help us debug this:
[   75.058368][ T5333]  Possible unsafe locking scenario:
[   75.058368][ T5333] 
[   75.061285][ T5333]        CPU0
[   75.062582][ T5333]        ----
[   75.063884][ T5333]   lock(fw_lock);
[   75.065323][ T5333]   lock(fw_lock);
[   75.066752][ T5333] 
[   75.066752][ T5333]  *** DEADLOCK ***
[   75.066752][ T5333] 
[   75.069656][ T5333]  May be due to missing lock nesting notation
[   75.069656][ T5333] 
[   75.072853][ T5333] 5 locks held by syz.0.0/5333:
[   75.074725][ T5333]  #0: ffffffff8f198b08 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x54/0x340
[   75.078001][ T5333]  #1: ffffffff8e7ef5e8 (system_transition_mutex){+.+.}-{4:4}, at: lock_system_sleep+0x60/0xa0
[   75.081919][ T5333]  #2: ffffffff8e80faf0 ((pm_chain_head).rwsem){++++}-{4:4}, at: blocking_notifier_call_chain_robust+0xac/0x1e0
[   75.086481][ T5333]  #3: ffffffff8f2e6dc8 (fw_lock){+.+.}-{4:4}, at: fw_pm_notify+0x232/0x2f0
[   75.089894][ T5333]  #4: ffffffff8f2e1e68 (dpm_list_mtx){+.+.}-{4:4}, at: dpm_for_each_dev+0x2b/0xc0
[   75.093343][ T5333] 
[   75.093343][ T5333] stack backtrace:
[   75.095672][ T5333] CPU: 0 UID: 0 PID: 5333 Comm: syz.0.0 Not tainted 6.12.0-syzkaller-01782-gbf9aa14fc523 #0
[   75.099669][ T5333] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   75.103849][ T5333] Call Trace:
[   75.105108][ T5333]  <TASK>
[   75.106233][ T5333]  dump_stack_lvl+0x241/0x360
[   75.108091][ T5333]  ? __pfx_dump_stack_lvl+0x10/0x10
[   75.110116][ T5333]  ? __pfx__printk+0x10/0x10
[   75.111846][ T5333]  ? lockdep_unlock+0x16a/0x300
[   75.113752][ T5333]  print_deadlock_bug+0x483/0x620
[   75.115727][ T5333]  ? validate_chain+0x11e/0x5920
[   75.117706][ T5333]  validate_chain+0x15e2/0x5920
[   75.119454][ T5333]  ? mark_lock+0x9a/0x360
[   75.120972][ T5333]  ? __pfx_validate_chain+0x10/0x10
[   75.123113][ T5333]  ? mark_lock+0x9a/0x360
[   75.124964][ T5333]  ? __lock_acquire+0x1397/0x2100
[   75.127232][ T5333]  ? mark_lock+0x9a/0x360
[   75.129082][ T5333]  __lock_acquire+0x1397/0x2100
[   75.130989][ T5333]  lock_acquire+0x1ed/0x550
[   75.132771][ T5333]  ? assign_fw+0x56/0x890
[   75.134457][ T5333]  ? __pfx_lock_acquire+0x10/0x10
[   75.136490][ T5333]  ? __pfx___might_resched+0x10/0x10
[   75.138802][ T5333]  ? kasan_save_track+0x51/0x80
[   75.140758][ T5333]  ? kasan_save_track+0x3f/0x80
[   75.142482][ T5333]  ? kasan_save_free_info+0x40/0x50
[   75.144443][ T5333]  ? __kasan_slab_free+0x59/0x70
[   75.146383][ T5333]  ? kmem_cache_free+0x1a2/0x420
[   75.148265][ T5333]  ? __async_dev_cache_fw_image+0xe7/0x320
[   75.150437][ T5333]  ? async_schedule_node_domain+0xdc/0x110
[   75.152646][ T5333]  ? dev_cache_fw_image+0x36d/0x3e0
[   75.154652][ T5333]  ? fw_pm_notify+0x24a/0x2f0
[   75.156467][ T5333]  __mutex_lock+0x1ac/0xee0
[   75.158253][ T5333]  ? assign_fw+0x56/0x890
[   75.159988][ T5333]  ? do_syscall_64+0xf3/0x230
[   75.161844][ T5333]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   75.164073][ T5333]  ? mark_lock+0x9a/0x360
[   75.165716][ T5333]  ? assign_fw+0x56/0x890
[   75.167351][ T5333]  ? __pfx___mutex_lock+0x10/0x10
[   75.169389][ T5333]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[   75.171724][ T5333]  ? kasan_quarantine_put+0xdc/0x230
[   75.173820][ T5333]  ? lockdep_hardirqs_on+0x99/0x150
[   75.176010][ T5333]  assign_fw+0x56/0x890
[   75.177777][ T5333]  ? _request_firmware+0xd5a/0x13b0
[   75.179815][ T5333]  ? kmem_cache_free+0x1a2/0x420
[   75.181809][ T5333]  ? _request_firmware+0xd5a/0x13b0
[   75.183856][ T5333]  _request_firmware+0xe16/0x13b0
[   75.185789][ T5333]  ? __pfx__request_firmware+0x10/0x10
[   75.187729][ T5333]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[   75.189793][ T5333]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[   75.192230][ T5333]  __async_dev_cache_fw_image+0xe7/0x320
[   75.194337][ T5333]  ? __pfx___async_dev_cache_fw_image+0x10/0x10
[   75.196671][ T5333]  ? async_schedule_node_domain+0xa3/0x110
[   75.198882][ T5333]  ? __kmalloc_cache_noprof+0x19c/0x2c0
[   75.200909][ T5333]  ? __pfx___async_dev_cache_fw_image+0x10/0x10
[   75.203233][ T5333]  async_schedule_node_domain+0xdc/0x110
[   75.205336][ T5333]  dev_cache_fw_image+0x36d/0x3e0
[   75.207285][ T5333]  ? __pfx_dev_cache_fw_image+0x10/0x10
[   75.209333][ T5333]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[   75.211599][ T5333]  ? blake2s_update+0x1a5/0x280
[   75.213509][ T5333]  ? __pfx_dev_cache_fw_image+0x10/0x10
[   75.216684][ T5333]  dpm_for_each_dev+0x58/0xc0
[   75.218657][ T5333]  fw_pm_notify+0x24a/0x2f0
[   75.220276][ T5333]  ? __pfx_fw_pm_notify+0x10/0x10
[   75.222043][ T5333]  ? rcu_is_watching+0x15/0xb0
[   75.223738][ T5333]  ? __pfx_autoremove_wake_function+0x10/0x10
[   75.225869][ T5333]  ? __mutex_lock+0x37f/0xee0
[   75.227595][ T5333]  ? rcu_is_watching+0x15/0xb0
[   75.229150][ T5333]  notifier_call_chain+0x19f/0x3e0
[   75.231047][ T5333]  blocking_notifier_call_chain_robust+0xe8/0x1e0
[   75.233536][ T5333]  ? __pfx_blocking_notifier_call_chain_robust+0x10/0x10
[   75.235973][ T5333]  ? chrdev_open+0x36e/0x600
[   75.237626][ T5333]  pm_notifier_call_chain_robust+0x2c/0x60
[   75.239629][ T5333]  snapshot_open+0x132/0x280
[   75.241223][ T5333]  ? __pfx_snapshot_open+0x10/0x10
[   75.243020][ T5333]  misc_open+0x2cc/0x340
[   75.244513][ T5333]  chrdev_open+0x521/0x600
[   75.246129][ T5333]  ? __pfx_apparmor_file_open+0x10/0x10
[   75.248047][ T5333]  ? __pfx_chrdev_open+0x10/0x10
[   75.249913][ T5333]  ? security_file_open+0x513/0x990
[   75.251927][ T5333]  ? __pfx_chrdev_open+0x10/0x10
[   75.253800][ T5333]  do_dentry_open+0x978/0x1460
[   75.255593][ T5333]  vfs_open+0x3e/0x330
[   75.257219][ T5333]  path_openat+0x2c84/0x3590
[   75.258999][ T5333]  ? __lock_acquire+0x1397/0x2100
[   75.260752][ T5333]  ? __pfx_path_openat+0x10/0x10
[   75.262638][ T5333]  do_filp_open+0x27f/0x4e0
[   75.264323][ T5333]  ? __pfx_do_filp_open+0x10/0x10
[   75.266130][ T5333]  ? do_raw_spin_lock+0x14f/0x370
[   75.268015][ T5333]  do_sys_openat2+0x13e/0x1d0
[   75.269805][ T5333]  ? __pfx_do_sys_openat2+0x10/0x10
[   75.271764][ T5333]  ? __fget_files+0x2a/0x410
[   75.273577][ T5333]  ? __fget_files+0x2a/0x410
[   75.275272][ T5333]  __x64_sys_openat+0x247/0x2a0
[   75.277196][ T5333]  ? __pfx___x64_sys_openat+0x10/0x10
[   75.279349][ T5333]  ? do_syscall_64+0x100/0x230
[   75.281216][ T5333]  ? do_syscall_64+0xb6/0x230
[   75.283028][ T5333]  do_syscall_64+0xf3/0x230
[   75.284693][ T5333]  ? clear_bhb_loop+0x35/0x90
[   75.286498][ T5333]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   75.288669][ T5333] RIP: 0033:0x7f4438f7e759
[   75.290413][ T5333] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   75.296723][ T5333] RSP: 002b:00007f4439e39038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[   75.299334][ T5333] RAX: ffffffffffffffda RBX: 00007f4439136058 RCX: 00007f4438f7e759
[   75.301776][ T5333] RDX: 0000000000000001 RSI: 00000000200000c0 RDI: ffffffffffffff9c
[   75.304257][ T5333] RBP: 00007f4439e39090 R08: 0000000000000000 R09: 0000000000000000
[   75.306982][ T5333] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   75.309862][ T5333] R13: 0000000000000000 R14: 00007f4439136058 R15: 00007ffdad346268
[   75.312973][ T5333]  </TASK>
[   76.126381][   T48] Bluetooth: hci0: command tx timeout
[   76.287778][ T1305] ieee802154 phy0 wpan0: encryption failed: -22
[   76.290152][ T1305] ieee802154 phy1 wpan1: encryption failed: -22
[   78.206766][   T48] Bluetooth: hci0: command tx timeout
[   80.286355][   T48] Bluetooth: hci0: command tx timeout