program:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r0, 0x89f1, &(0x7f0000000cc0)={'ip6gre0\x00', &(0x7f0000000c40)={'syztnl0\x00', 0x0, 0x29, 0x1, 0x4d, 0x8, 0x60, @local, @private2={0xfc, 0x2, '\x00', 0x1}, 0x700, 0x700, 0x4, 0x102}})
r1 = syz_open_dev$dri(&(0x7f0000000340), 0x2, 0xc8d03)
ioctl$DRM_IOCTL_SYNCOBJ_CREATE(r1, 0xc00864bf, &(0x7f0000000000)={<r2=>0x0, 0x1})
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r1, 0xc03064ca, &(0x7f00000000c0)={&(0x7f00000004c0)=[r2, 0x0], &(0x7f0000000040)=[0x245fbabf, 0x1, 0x603], 0xfffffffffffeffff, 0x40000388, 0x2})
syz_emit_ethernet(0x7a, &(0x7f00000002c0)={@local, @multicast, @void, {@ipv6={0x86dd, @gre_packet={0x5, 0x6, "d15cdc", 0x44, 0x2f, 0xff, @dev={0xfe, 0x80, '\x00', 0x15}, @local, {[], {{0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x880b, 0x0, 0x3}, {0x1, 0x0, 0x0, 0x1}, {0x1, 0x0, 0x0, 0x1}, {0x8, 0x88be, 0x0, {{0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x3}, 0x1, {0x100005}}}, {0x8, 0x22eb, 0x1, {{0x5, 0x2, 0x5, 0x2, 0x0, 0x3, 0x7, 0x6}, 0x2, {0x7, 0x400, 0x2, 0x2, 0x1, 0x1, 0x2, 0x1, 0x1}}}, {0x8, 0x6558, 0x4}}}}}}}, 0x0)

[   75.407646][ T5302] Bluetooth: hci0: command tx timeout
[   75.477660][ T5322] ------------[ cut here ]------------
[   75.480057][ T5322] WARNING: CPU: 0 PID: 5322 at mm/page_alloc.c:5159 __alloc_frozen_pages_noprof+0x2c8/0x370
[   75.484532][ T5322] Modules linked in:
[   75.486293][ T5322] CPU: 0 UID: 0 PID: 5322 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) 
[   75.490811][ T5322] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   75.495731][ T5322] RIP: 0010:__alloc_frozen_pages_noprof+0x2c8/0x370
[   75.498874][ T5322] Code: 74 10 4c 89 e7 89 54 24 0c e8 14 bd 0d 00 8b 54 24 0c 49 83 3c 24 00 0f 85 a5 fe ff ff e9 a6 fe ff ff c6 05 01 77 4d 0d 01 90 <0f> 0b 90 e9 18 ff ff ff a9 00 00 08 00 48 8b 4c 24 10 4c 8d 44 24
[   75.507034][ T5322] RSP: 0018:ffffc9000d3978a0 EFLAGS: 00010246
[   75.509673][ T5322] RAX: ffffc9000d397800 RBX: 0000000000000015 RCX: 0000000000000000
[   75.513119][ T5322] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffc9000d397908
[   75.516487][ T5322] RBP: ffffc9000d397998 R08: ffffc9000d397907 R09: 0000000000000000
[   75.519859][ T5322] R10: ffffc9000d3978e0 R11: fffff52001a72f21 R12: 0000000000000000
[   75.523081][ T5322] R13: 1ffff92001a72f18 R14: 0000000000040cc0 R15: dffffc0000000000
[   75.526332][ T5322] FS:  00007f1d994aa6c0(0000) GS:ffff88808d730000(0000) knlGS:0000000000000000
[   75.529823][ T5322] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   75.533129][ T5322] CR2: 00007f1d987b8558 CR3: 0000000043166000 CR4: 0000000000352ef0
[   75.536581][ T5322] Call Trace:
[   75.538331][ T5322]  <TASK>
[   75.539625][ T5322]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[   75.542388][ T5322]  ? policy_nodemask+0x27c/0x720
[   75.544617][ T5322]  ? tomoyo_path_number_perm+0x47a/0x5a0
[   75.547147][ T5322]  ? security_file_ioctl+0xcb/0x2d0
[   75.549204][ T5322]  ? __se_sys_ioctl+0x47/0x170
[   75.551347][ T5322]  ? do_syscall_64+0xfa/0xfa0
[   75.553364][ T5322]  alloc_pages_mpol+0x232/0x4a0
[   75.555511][ T5322]  ___kmalloc_large_node+0x5f/0x1b0
[   75.558116][ T5322]  __kmalloc_large_node_noprof+0x18/0x90
[   75.560629][ T5322]  __kmalloc_noprof+0x4bd/0x7f0
[   75.562591][ T5322]  ? drm_syncobj_array_find+0x3a/0x450
[   75.565055][ T5322]  drm_syncobj_array_find+0x3a/0x450
[   75.568204][ T5322]  drm_syncobj_timeline_wait_ioctl+0x1b7/0x560
[   75.571137][ T5322]  ? __pfx_drm_syncobj_timeline_wait_ioctl+0x10/0x10
[   75.573860][ T5322]  drm_ioctl_kernel+0x2cf/0x390
[   75.575982][ T5322]  ? __pfx_drm_syncobj_timeline_wait_ioctl+0x10/0x10
[   75.578997][ T5322]  ? __pfx_drm_ioctl_kernel+0x10/0x10
[   75.581303][ T5322]  drm_ioctl+0x67f/0xb10
[   75.583174][ T5322]  ? __pfx_drm_syncobj_timeline_wait_ioctl+0x10/0x10
[   75.585972][ T5322]  ? __pfx_drm_ioctl+0x10/0x10
[   75.588361][ T5322]  ? __fget_files+0x3a0/0x420
[   75.591107][ T5322]  ? __fget_files+0x2a/0x420
[   75.593729][ T5322]  ? bpf_lsm_file_ioctl+0x9/0x20
[   75.595781][ T5322]  ? __pfx_drm_ioctl+0x10/0x10
[   75.598478][ T5322]  __se_sys_ioctl+0xfc/0x170
[   75.600449][ T5322]  do_syscall_64+0xfa/0xfa0
[   75.602352][ T5322]  ? lockdep_hardirqs_on+0x9c/0x150
[   75.604593][ T5322]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   75.607453][ T5322]  ? clear_bhb_loop+0x60/0xb0
[   75.609447][ T5322]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   75.611987][ T5322] RIP: 0033:0x7f1d9858f6c9
[   75.613889][ T5322] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   75.622281][ T5322] RSP: 002b:00007f1d994aa038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   75.625935][ T5322] RAX: ffffffffffffffda RBX: 00007f1d987e5fa0 RCX: 00007f1d9858f6c9
[   75.629503][ T5322] RDX: 00002000000000c0 RSI: 00000000c03064ca RDI: 0000000000000004
[   75.632911][ T5322] RBP: 00007f1d98611f91 R08: 0000000000000000 R09: 0000000000000000
[   75.636174][ T5322] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   75.639545][ T5322] R13: 00007f1d987e6038 R14: 00007f1d987e5fa0 R15: 00007ffc27e3ce78
[   75.642966][ T5322]  </TASK>
[   75.644341][ T5322] Kernel panic - not syncing: kernel: panic_on_warn set ...
[   75.647631][ T5322] CPU: 0 UID: 0 PID: 5322 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) 
[   75.651319][ T5322] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   75.655736][ T5322] Call Trace:
[   75.657078][ T5322]  <TASK>
[   75.658316][ T5322]  dump_stack_lvl+0x99/0x250
[   75.660851][ T5322]  ? __asan_memcpy+0x40/0x70
[   75.662774][ T5322]  ? __pfx_dump_stack_lvl+0x10/0x10
[   75.665104][ T5322]  ? __pfx__printk+0x10/0x10
[   75.667170][ T5322]  vpanic+0x237/0x6d0
[   75.668991][ T5322]  ? __pfx_vpanic+0x10/0x10
[   75.670992][ T5322]  panic+0xb9/0xc0
[   75.672622][ T5322]  ? __pfx_panic+0x10/0x10
[   75.674494][ T5322]  __warn+0x31b/0x4b0
[   75.676215][ T5322]  ? __alloc_frozen_pages_noprof+0x2c8/0x370
[   75.678857][ T5322]  ? __alloc_frozen_pages_noprof+0x2c8/0x370
[   75.681629][ T5322]  report_bug+0x2be/0x4f0
[   75.683595][ T5322]  ? __alloc_frozen_pages_noprof+0x2c8/0x370
[   75.686223][ T5322]  ? __alloc_frozen_pages_noprof+0x2c8/0x370
[   75.688803][ T5322]  ? __alloc_frozen_pages_noprof+0x2ca/0x370
[   75.691429][ T5322]  handle_bug+0x84/0x160
[   75.693386][ T5322]  exc_invalid_op+0x1a/0x50
[   75.695394][ T5322]  asm_exc_invalid_op+0x1a/0x20
[   75.697556][ T5322] RIP: 0010:__alloc_frozen_pages_noprof+0x2c8/0x370
[   75.700324][ T5322] Code: 74 10 4c 89 e7 89 54 24 0c e8 14 bd 0d 00 8b 54 24 0c 49 83 3c 24 00 0f 85 a5 fe ff ff e9 a6 fe ff ff c6 05 01 77 4d 0d 01 90 <0f> 0b 90 e9 18 ff ff ff a9 00 00 08 00 48 8b 4c 24 10 4c 8d 44 24
[   75.708244][ T5322] RSP: 0018:ffffc9000d3978a0 EFLAGS: 00010246
[   75.710762][ T5322] RAX: ffffc9000d397800 RBX: 0000000000000015 RCX: 0000000000000000
[   75.715982][ T5322] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffc9000d397908
[   75.719398][ T5322] RBP: ffffc9000d397998 R08: ffffc9000d397907 R09: 0000000000000000
[   75.722866][ T5322] R10: ffffc9000d3978e0 R11: fffff52001a72f21 R12: 0000000000000000
[   75.726225][ T5322] R13: 1ffff92001a72f18 R14: 0000000000040cc0 R15: dffffc0000000000
[   75.729557][ T5322]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[   75.732319][ T5322]  ? policy_nodemask+0x27c/0x720
[   75.734439][ T5322]  ? tomoyo_path_number_perm+0x47a/0x5a0
[   75.736838][ T5322]  ? security_file_ioctl+0xcb/0x2d0
[   75.739232][ T5322]  ? __se_sys_ioctl+0x47/0x170
[   75.741597][ T5322]  ? do_syscall_64+0xfa/0xfa0
[   75.743623][ T5322]  alloc_pages_mpol+0x232/0x4a0
[   75.745454][ T5322]  ___kmalloc_large_node+0x5f/0x1b0
[   75.747685][ T5322]  __kmalloc_large_node_noprof+0x18/0x90
[   75.750149][ T5322]  __kmalloc_noprof+0x4bd/0x7f0
[   75.752236][ T5322]  ? drm_syncobj_array_find+0x3a/0x450
[   75.754527][ T5322]  drm_syncobj_array_find+0x3a/0x450
[   75.756834][ T5322]  drm_syncobj_timeline_wait_ioctl+0x1b7/0x560
[   75.759547][ T5322]  ? __pfx_drm_syncobj_timeline_wait_ioctl+0x10/0x10
[   75.762352][ T5322]  drm_ioctl_kernel+0x2cf/0x390
[   75.764391][ T5322]  ? __pfx_drm_syncobj_timeline_wait_ioctl+0x10/0x10
[   75.767237][ T5322]  ? __pfx_drm_ioctl_kernel+0x10/0x10
[   75.769528][ T5322]  drm_ioctl+0x67f/0xb10
[   75.771300][ T5322]  ? __pfx_drm_syncobj_timeline_wait_ioctl+0x10/0x10
[   75.774292][ T5322]  ? __pfx_drm_ioctl+0x10/0x10
[   75.776425][ T5322]  ? __fget_files+0x3a0/0x420
[   75.778524][ T5322]  ? __fget_files+0x2a/0x420
[   75.780533][ T5322]  ? bpf_lsm_file_ioctl+0x9/0x20
[   75.782561][ T5322]  ? __pfx_drm_ioctl+0x10/0x10
[   75.784536][ T5322]  __se_sys_ioctl+0xfc/0x170
[   75.786434][ T5322]  do_syscall_64+0xfa/0xfa0
[   75.788311][ T5322]  ? lockdep_hardirqs_on+0x9c/0x150
[   75.790389][ T5322]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   75.792702][ T5322]  ? clear_bhb_loop+0x60/0xb0
[   75.794539][ T5322]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   75.797190][ T5322] RIP: 0033:0x7f1d9858f6c9
[   75.799361][ T5322] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   75.807672][ T5322] RSP: 002b:00007f1d994aa038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   75.811463][ T5322] RAX: ffffffffffffffda RBX: 00007f1d987e5fa0 RCX: 00007f1d9858f6c9
[   75.815015][ T5322] RDX: 00002000000000c0 RSI: 00000000c03064ca RDI: 0000000000000004
[   75.818394][ T5322] RBP: 00007f1d98611f91 R08: 0000000000000000 R09: 0000000000000000
[   75.821658][ T5322] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   75.824974][ T5322] R13: 00007f1d987e6038 R14: 00007f1d987e5fa0 R15: 00007ffc27e3ce78
[   75.828355][ T5322]  </TASK>
[   75.829942][ T5322] Kernel Offset: disabled
[   75.831940][ T5322] Rebooting in 86400 seconds..