program:
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0)
syz_mount_image$vfat(&(0x7f0000000340), &(0x7f0000000980)='./file1\x00', 0x280809a, &(0x7f0000000f40)=ANY=[], 0xd, 0x2b2, &(0x7f00000006c0)="$eJzs3U9rY1UUAPDz0jR9OosUcaMIPtCFqzJ166ZRRhC7UiKoCw3ODEgSBqYQmArGruYTuPR7+BHcuPEbDLgV3E0XlSfvX/7ga402VXR+v9Xh3nfuPXm3TbLJeZ+/Mh3ffZDE2dMnkaZJdI7iKM6T2I9ONL6JbgAA/x/neR6/5mWY5JUNM7udGy0MALgx1ef/X/rgBwD+4z78+JP3B8fHdz7IsjRe6j+eDZOImD6eDav5wf34MiZxL25HPy4i8oUqfve94zvRzQr78fp0PhsWmdPPfqzXH/wSUeYfRj/22/MPs8pK/nw23I3nI4vB/d2m1H682J7/Zkt+DHvxxmsr9R9EP376Ih7EJO5GkbvM//owy97Jv3361afFNkV+0onhXnldKfcFCQAAAAAAAAAAAAAAAAAAAACA7TrIsqRq31P27ymG6v47Oxfl/EHW2F/vz1PlJ81CVX+gvOmWM8/ju6a/zu0sy/L6wmV+N17uerAAAAAAAAAAAAAAAAAAAAAAFE4ePbk1mkzuPTx5dDq+dtB0A2h+1v931zlaGXk1TsejncsX3Nt8r9VuA0WtV14c3W5s6ba0B2eLkeeKera+xV4sRj6KKmgOZqt7vfB2tejpeJTVU81NHo+SP9srbQ7u+9WpXly3sLz8k7jI1880XZS6ntXb0t3o3Wqd+i3P883Weevn6ozqkaRssbHZ7rt10PoCiyAtziJd/OMXUz9cvuClbxk7137TAQAAAAAAAAAAAAAAAAAAWi1/9NsyeXZlaufGigIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAf9jy+f9NkEbE+sgfgnmdfNU1ddCLhyf/8ksEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADgGfB7AAAA//8rlFqg")
r0 = open(&(0x7f0000000080)='./file0\x00', 0x40c5, 0x130)
r1 = open$dir(&(0x7f0000000100)='./file0\x00', 0x0, 0x51)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0}, 0x18)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000007000000110001000900000001"], 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r2, &(0x7f0000000080), &(0x7f0000000200)=""/166}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffff"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r3}, 0x10)
write$9p(r0, &(0x7f0000001400)="3b27a4b46ee92b4a59073c369a5e19f9db153c4fdbc76aa2a4bb9f3e5e1aa197a9e97d1016c01813792e50c2692c175aad715d110a892949ccc6e2e54c2d5c8f0b7932b69797f217168b0c1feb128ae34f0daf487a70b5c117acd43725fe17993634f1695dabd7f998cd55e9d5bd911e86aa7a4ad75a574bb96951d6018b25d942a9544bca1ebb0e8d10c092cdcb85797673972099e4041aaf8d636f66cb1103ef2050ad28fabaed33d6927889d97f4b5ce0de71d3fd832980f4f088d0d824e20549b4bbd906ffa51ce9de54d779eb4de462faac20a3ab0ed9934373ca22cea5454f4c2a740cd461e39956bb5f98df2aebc60cf32623adbffbcc378fa7250b6a3fc863dadcf6d4f8b855c4e70f0796eee6218445dad2811dd6b540ff52efa2f167dd9c1b8b016268d37db430983fefc0645d20614c8df2eb0872c58e09664e672b0b6a9970fec199257e1c606ec3e364c66a0f4d258c74accd43b987c756d602fd8787fed3aa43fd8d84e9656d4a413fa9a423bc54b873583d6d497005e54712fafc71384988d80134fbf84f53fdd74b354848006b8b5b67e7cc5a472475d3ae545ca1fcf7628b873e31ba83a98a7ad5b0cfbe9711b517a9a1388ad0efa2a3b4e22152021d631b731e2e100a9831111db7acce948bb5deeea260463c140ac929e77c58402776caf85d4569a75dde2f64c4491508afb541ed9b2c81fc95c06706", 0x200)
sendfile(r0, r1, 0x0, 0xe065)
socket$nl_generic(0x10, 0x3, 0x10)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[], 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r4, &(0x7f0000000080), &(0x7f0000001540)=""/155}, 0x20)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000200)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f00000006c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000000)='kmem_cache_free\x00', r5}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)

[   59.071579][   T24] audit: type=1326 audit(1732104264.139:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5325 comm="syz.0.0" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb89697e819 code=0x7ffc0000
[   59.088367][ T5326] loop0: detected capacity change from 0 to 256
[   59.098274][   T24] audit: type=1326 audit(1732104264.149:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5325 comm="syz.0.0" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb89697e819 code=0x7ffc0000
[   59.127077][   T24] audit: type=1326 audit(1732104264.149:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5325 comm="syz.0.0" exe="/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fb89697e819 code=0x7ffc0000
[   59.145928][ T5326] 
[   59.146924][ T5326] =============================
[   59.148870][ T5326] [ BUG: Invalid wait context ]
[   59.150736][ T5326] 6.12.0-syzkaller-01782-gbf9aa14fc523 #0 Not tainted
[   59.153447][ T5326] -----------------------------
[   59.155316][ T5326] syz.0.0/5326 is trying to lock:
[   59.157190][ T5326] ffff8880121dfa00 (&trie->lock){....}-{3:3}, at: trie_delete_elem+0x96/0x6a0
[   59.160343][ T5326] other info that might help us debug this:
[   59.162438][ T5326] context-{5:5}
[   59.163730][ T5326] 2 locks held by syz.0.0/5326:
[   59.165439][ T5326]  #0: ffff88801fc3ea98 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x2a/0x140
[   59.169011][ T5326]  #1: ffffffff8e93c7e0 (rcu_read_lock){....}-{1:3}, at: bpf_trace_run4+0x244/0x590
[   59.172506][ T5326] stack backtrace:
[   59.173924][ T5326] CPU: 0 UID: 0 PID: 5326 Comm: syz.0.0 Not tainted 6.12.0-syzkaller-01782-gbf9aa14fc523 #0
[   59.177639][ T5326] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   59.181604][ T5326] Call Trace:
[   59.182858][ T5326]  <TASK>
[   59.183951][ T5326]  dump_stack_lvl+0x241/0x360
[   59.185765][ T5326]  ? __pfx_dump_stack_lvl+0x10/0x10
[   59.187638][ T5326]  ? __pfx__printk+0x10/0x10
[   59.189353][ T5326]  __lock_acquire+0x15a8/0x2100
[   59.191039][ T5326]  lock_acquire+0x1ed/0x550
[   59.192572][ T5326]  ? trie_delete_elem+0x96/0x6a0
[   59.194283][ T5326]  ? __pfx_lock_acquire+0x10/0x10
[   59.196060][ T5326]  ? __lock_acquire+0x1397/0x2100
[   59.197837][ T5326]  _raw_spin_lock_irqsave+0xd5/0x120
[   59.199728][ T5326]  ? trie_delete_elem+0x96/0x6a0
[   59.201417][ T5326]  ? __pfx__raw_spin_lock_irqsave+0x10/0x10
[   59.203453][ T5326]  ? __pfx_lock_acquire+0x10/0x10
[   59.205339][ T5326]  trie_delete_elem+0x96/0x6a0
[   59.207126][ T5326]  ? __pfx___cant_migrate+0x10/0x10
[   59.209098][ T5326]  ? bpf_trace_run4+0x244/0x590
[   59.210822][ T5326]  bpf_prog_d1efa6b0c6708274+0x46/0x4a
[   59.212967][ T5326]  bpf_trace_run4+0x334/0x590
[   59.214756][ T5326]  ? __pfx_bpf_trace_run4+0x10/0x10
[   59.216678][ T5326]  ? task_psi_group+0x50/0x1a0
[   59.218413][ T5326]  ? psi_task_switch+0x350/0x7a0
[   59.220138][ T5326]  __schedule+0x22bc/0x4c30
[   59.221873][ T5326]  ? sched_clock_cpu+0x76/0x490
[   59.223742][ T5326]  ? cpufreq_update_util+0x94/0x250
[   59.225678][ T5326]  ? __pfx___schedule+0x10/0x10
[   59.227525][ T5326]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[   59.229799][ T5326]  ? preempt_schedule+0xe1/0xf0
[   59.231619][ T5326]  preempt_schedule_common+0x84/0xd0
[   59.233505][ T5326]  preempt_schedule+0xe1/0xf0
[   59.235213][ T5326]  ? __pfx_preempt_schedule+0x10/0x10
[   59.237133][ T5326]  ? lockdep_hardirqs_on+0x99/0x150
[   59.238977][ T5326]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[   59.241166][ T5326]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[   59.243514][ T5326]  preempt_schedule_thunk+0x1a/0x30
[   59.245287][ T5326]  try_to_wake_up+0x9c3/0x1470
[   59.246999][ T5326]  ? __pfx_try_to_wake_up+0x10/0x10
[   59.248895][ T5326]  ? __pfx_lock_release+0x10/0x10
[   59.250747][ T5326]  ? plist_del+0x3f1/0x410
[   59.252455][ T5326]  ? do_raw_spin_unlock+0x58/0x8b0
[   59.254378][ T5326]  wake_up_q+0xc8/0x120
[   59.256024][ T5326]  futex_wake+0x523/0x5c0
[   59.257736][ T5326]  ? __pfx_futex_wake+0x10/0x10
[   59.259595][ T5326]  do_futex+0x392/0x560
[   59.261159][ T5326]  ? bpf_raw_tracepoint_open+0x18b/0x1f0
[   59.263271][ T5326]  ? __pfx_do_futex+0x10/0x10
[   59.265035][ T5326]  ? __pfx___sys_bpf+0x10/0x10
[   59.266969][ T5326]  ? __rseq_handle_notify_resume+0x34d/0x14d0
[   59.269558][ T5326]  __se_sys_futex+0x3f9/0x480
[   59.271409][ T5326]  ? __pfx___se_sys_futex+0x10/0x10
[   59.273465][ T5326]  ? __x64_sys_futex+0x21/0xf0
[   59.275235][ T5326]  do_syscall_64+0xf3/0x230
[   59.277165][ T5326]  ? clear_bhb_loop+0x35/0x90
[   59.278986][ T5326]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   59.281257][ T5326] RIP: 0033:0x7fb89697e819
[   59.283103][ T5326] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   59.290368][ T5326] RSP: 002b:00007fb8977f30e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[   59.293573][ T5326] RAX: ffffffffffffffda RBX: 00007fb896b35fa8 RCX: 00007fb89697e819
[   59.296613][ T5326] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fb896b35fac
[   59.299636][ T5326] RBP: 00007fb896b35fa0 R08: 7fffffffffffffff R09: 0000000000000000
[   59.302659][ T5326] R10: 0000000000000008 R11: 0000000000000246 R12: 00007fb896b35fac
[   59.305569][ T5326] R13: 0000000000000000 R14: 00007ffd8065a850 R15: 00007ffd8065a938
[   59.308344][ T5326]  </TASK>
[   59.310059][   T24] audit: type=1326 audit(1732104264.149:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5325 comm="syz.0.0" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb89697e819 code=0x7ffc0000
[   59.318164][   T24] audit: type=1326 audit(1732104264.149:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5325 comm="syz.0.0" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb89697e819 code=0x7ffc0000
[   59.326768][   T24] audit: type=1326 audit(1732104264.149:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5325 comm="syz.0.0" exe="/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7fb89697e819 code=0x7ffc0000
[   59.335159][   T24] audit: type=1326 audit(1732104264.149:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5325 comm="syz.0.0" exe="/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fb89697e853 code=0x7ffc0000
[   59.342846][   T24] audit: type=1326 audit(1732104264.149:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5325 comm="syz.0.0" exe="/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fb89697d2ff code=0x7ffc0000
[   59.350726][   T24] audit: type=1326 audit(1732104264.149:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5325 comm="syz.0.0" exe="/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7fb89697e8a7 code=0x7ffc0000
[   59.360608][   T24] audit: type=1326 audit(1732104264.149:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5325 comm="syz.0.0" exe="/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fb89697d1b0 code=0x7ffc0000
[   59.368466][ T5309] Bluetooth: hci0: command tx timeout