program:
r0 = syz_open_dev$dri(&(0x7f0000000340), 0x2, 0xc8d03)
ioctl$DRM_IOCTL_SYNCOBJ_QUERY(r0, 0xc01864cb, &(0x7f0000000180)={0x0, 0x0, 0xffffff90, 0x1}) (async)
mkdir(&(0x7f0000000040)='./file1\x00', 0x0) (async)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0) (async)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
setsockopt$SO_TIMESTAMP(r1, 0x1, 0x4a, &(0x7f0000003400), 0x4)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x1000000, &(0x7f00000003c0)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {}, {@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}]})

[   86.530851][ T5340] Bluetooth: hci0: command tx timeout
[   86.567891][ T5364] ------------[ cut here ]------------
[   86.571154][ T5364] WARNING: CPU: 0 PID: 5364 at mm/page_alloc.c:5124 __alloc_frozen_pages_noprof+0x2c8/0x370
[   86.576200][ T5364] Modules linked in:
[   86.578278][ T5364] CPU: 0 UID: 0 PID: 5364 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) 
[   86.588567][ T5364] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   86.595968][ T5364] RIP: 0010:__alloc_frozen_pages_noprof+0x2c8/0x370
[   86.598814][ T5364] Code: 74 10 4c 89 e7 89 54 24 0c e8 c4 1d 0d 00 8b 54 24 0c 49 83 3c 24 00 0f 85 a5 fe ff ff e9 a6 fe ff ff c6 05 8e 07 76 0d 01 90 <0f> 0b 90 e9 18 ff ff ff a9 00 00 08 00 48 8b 4c 24 10 4c 8d 44 24
[   86.607174][ T5364] RSP: 0018:ffffc9000d4ef8c0 EFLAGS: 00010246
[   86.609955][ T5364] RAX: ffffc9000d4ef900 RBX: 0000000000000016 RCX: 0000000000000000
[   86.613906][ T5364] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffc9000d4ef928
[   86.617377][ T5364] RBP: ffffc9000d4ef9a8 R08: ffffc9000d4ef927 R09: 0000000000000000
[   86.620612][ T5364] R10: ffffc9000d4ef900 R11: fffff52001a9df25 R12: 0000000000000000
[   86.624300][ T5364] R13: 1ffff92001a9df1c R14: 0000000000040cc0 R15: dffffc0000000000
[   86.628471][ T5364] FS:  00007fa7b4a746c0(0000) GS:ffff88808d210000(0000) knlGS:0000000000000000
[   86.632766][ T5364] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   86.635640][ T5364] CR2: 00007fa7b4a52fc8 CR3: 00000000430e0000 CR4: 0000000000352ef0
[   86.638954][ T5364] Call Trace:
[   86.640471][ T5364]  <TASK>
[   86.641742][ T5364]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[   86.644518][ T5364]  ? policy_nodemask+0x27c/0x720
[   86.646645][ T5364]  ? kfree+0x18e/0x440
[   86.649278][ T5364]  ? tomoyo_path_number_perm+0x47a/0x5a0
[   86.652199][ T5364]  ? security_file_ioctl+0xcb/0x2d0
[   86.654550][ T5364]  alloc_pages_mpol+0x232/0x4a0
[   86.656744][ T5364]  ___kmalloc_large_node+0x5f/0x1b0
[   86.658925][ T5364]  __kmalloc_large_node_noprof+0x18/0x90
[   86.661131][ T5364]  __kmalloc_noprof+0x36f/0x4f0
[   86.663374][ T5364]  ? drm_syncobj_array_find+0x3a/0x450
[   86.665839][ T5364]  drm_syncobj_array_find+0x3a/0x450
[   86.668625][ T5364]  drm_syncobj_query_ioctl+0x1c3/0x9d0
[   86.671679][ T5364]  ? __pfx_drm_syncobj_query_ioctl+0x10/0x10
[   86.675241][ T5364]  drm_ioctl_kernel+0x2cf/0x390
[   86.678184][ T5364]  ? __pfx_drm_syncobj_query_ioctl+0x10/0x10
[   86.681633][ T5364]  ? __pfx_drm_ioctl_kernel+0x10/0x10
[   86.684405][ T5364]  drm_ioctl+0x67f/0xb10
[   86.686208][ T5364]  ? __pfx_drm_syncobj_query_ioctl+0x10/0x10
[   86.688589][ T5364]  ? __pfx_drm_ioctl+0x10/0x10
[   86.690723][ T5364]  ? __fget_files+0x2a/0x420
[   86.693752][ T5364]  ? bpf_lsm_file_ioctl+0x9/0x20
[   86.696352][ T5364]  ? __pfx_drm_ioctl+0x10/0x10
[   86.698732][ T5364]  __se_sys_ioctl+0xf9/0x170
[   86.701065][ T5364]  do_syscall_64+0xfa/0x3b0
[   86.703417][ T5364]  ? lockdep_hardirqs_on+0x9c/0x150
[   86.705711][ T5364]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   86.708439][ T5364]  ? clear_bhb_loop+0x60/0xb0
[   86.710508][ T5364]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   86.713338][ T5364] RIP: 0033:0x7fa7b3b8ebe9
[   86.715190][ T5364] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   86.723410][ T5364] RSP: 002b:00007fa7b4a74038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   86.726880][ T5364] RAX: ffffffffffffffda RBX: 00007fa7b3db5fa0 RCX: 00007fa7b3b8ebe9
[   86.730207][ T5364] RDX: 0000200000000180 RSI: 00000000c01864cb RDI: 0000000000000003
[   86.733652][ T5364] RBP: 00007fa7b3c11e19 R08: 0000000000000000 R09: 0000000000000000
[   86.737176][ T5364] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   86.740700][ T5364] R13: 00007fa7b3db6038 R14: 00007fa7b3db5fa0 R15: 00007fff45e588b8
[   86.744363][ T5364]  </TASK>
[   86.745807][ T5364] Kernel panic - not syncing: kernel: panic_on_warn set ...
[   86.748923][ T5364] CPU: 0 UID: 0 PID: 5364 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) 
[   86.752856][ T5364] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   86.757336][ T5364] Call Trace:
[   86.758853][ T5364]  <TASK>
[   86.760128][ T5364]  dump_stack_lvl+0x99/0x250
[   86.762222][ T5364]  ? __asan_memcpy+0x40/0x70
[   86.764248][ T5364]  ? __pfx_dump_stack_lvl+0x10/0x10
[   86.766466][ T5364]  ? __pfx__printk+0x10/0x10
[   86.768608][ T5364]  vpanic+0x281/0x750
[   86.770526][ T5364]  ? __pfx__printk+0x10/0x10
[   86.772521][ T5364]  ? __pfx_vpanic+0x10/0x10
[   86.774623][ T5364]  ? is_bpf_text_address+0x26/0x2b0
[   86.776665][ T5364]  panic+0xb9/0xc0
[   86.778195][ T5364]  ? __pfx_panic+0x10/0x10
[   86.780190][ T5364]  __warn+0x31b/0x4b0
[   86.781992][ T5364]  ? __alloc_frozen_pages_noprof+0x2c8/0x370
[   86.784858][ T5364]  ? __alloc_frozen_pages_noprof+0x2c8/0x370
[   86.787592][ T5364]  report_bug+0x2be/0x4f0
[   86.789838][ T5364]  ? __alloc_frozen_pages_noprof+0x2c8/0x370
[   86.792604][ T5364]  ? __alloc_frozen_pages_noprof+0x2c8/0x370
[   86.795560][ T5364]  ? __alloc_frozen_pages_noprof+0x2ca/0x370
[   86.798663][ T5364]  handle_bug+0x84/0x160
[   86.800914][ T5364]  exc_invalid_op+0x1a/0x50
[   86.803298][ T5364]  asm_exc_invalid_op+0x1a/0x20
[   86.805760][ T5364] RIP: 0010:__alloc_frozen_pages_noprof+0x2c8/0x370
[   86.808815][ T5364] Code: 74 10 4c 89 e7 89 54 24 0c e8 c4 1d 0d 00 8b 54 24 0c 49 83 3c 24 00 0f 85 a5 fe ff ff e9 a6 fe ff ff c6 05 8e 07 76 0d 01 90 <0f> 0b 90 e9 18 ff ff ff a9 00 00 08 00 48 8b 4c 24 10 4c 8d 44 24
[   86.816925][ T5364] RSP: 0018:ffffc9000d4ef8c0 EFLAGS: 00010246
[   86.819409][ T5364] RAX: ffffc9000d4ef900 RBX: 0000000000000016 RCX: 0000000000000000
[   86.822561][ T5364] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffc9000d4ef928
[   86.825690][ T5364] RBP: ffffc9000d4ef9a8 R08: ffffc9000d4ef927 R09: 0000000000000000
[   86.828874][ T5364] R10: ffffc9000d4ef900 R11: fffff52001a9df25 R12: 0000000000000000
[   86.832071][ T5364] R13: 1ffff92001a9df1c R14: 0000000000040cc0 R15: dffffc0000000000
[   86.835707][ T5364]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[   86.838500][ T5364]  ? policy_nodemask+0x27c/0x720
[   86.840553][ T5364]  ? kfree+0x18e/0x440
[   86.842288][ T5364]  ? tomoyo_path_number_perm+0x47a/0x5a0
[   86.844724][ T5364]  ? security_file_ioctl+0xcb/0x2d0
[   86.847028][ T5364]  alloc_pages_mpol+0x232/0x4a0
[   86.849169][ T5364]  ___kmalloc_large_node+0x5f/0x1b0
[   86.851766][ T5364]  __kmalloc_large_node_noprof+0x18/0x90
[   86.854531][ T5364]  __kmalloc_noprof+0x36f/0x4f0
[   86.856716][ T5364]  ? drm_syncobj_array_find+0x3a/0x450
[   86.859279][ T5364]  drm_syncobj_array_find+0x3a/0x450
[   86.861766][ T5364]  drm_syncobj_query_ioctl+0x1c3/0x9d0
[   86.864226][ T5364]  ? __pfx_drm_syncobj_query_ioctl+0x10/0x10
[   86.866727][ T5364]  drm_ioctl_kernel+0x2cf/0x390
[   86.869295][ T5364]  ? __pfx_drm_syncobj_query_ioctl+0x10/0x10
[   86.872202][ T5364]  ? __pfx_drm_ioctl_kernel+0x10/0x10
[   86.874617][ T5364]  drm_ioctl+0x67f/0xb10
[   86.876535][ T5364]  ? __pfx_drm_syncobj_query_ioctl+0x10/0x10
[   86.879234][ T5364]  ? __pfx_drm_ioctl+0x10/0x10
[   86.881256][ T5364]  ? __fget_files+0x2a/0x420
[   86.883561][ T5364]  ? bpf_lsm_file_ioctl+0x9/0x20
[   86.885895][ T5364]  ? __pfx_drm_ioctl+0x10/0x10
[   86.888264][ T5364]  __se_sys_ioctl+0xf9/0x170
[   86.890644][ T5364]  do_syscall_64+0xfa/0x3b0
[   86.892878][ T5364]  ? lockdep_hardirqs_on+0x9c/0x150
[   86.895076][ T5364]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   86.897839][ T5364]  ? clear_bhb_loop+0x60/0xb0
[   86.899917][ T5364]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   86.902481][ T5364] RIP: 0033:0x7fa7b3b8ebe9
[   86.904394][ T5364] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   86.912685][ T5364] RSP: 002b:00007fa7b4a74038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   86.916266][ T5364] RAX: ffffffffffffffda RBX: 00007fa7b3db5fa0 RCX: 00007fa7b3b8ebe9
[   86.919390][ T5364] RDX: 0000200000000180 RSI: 00000000c01864cb RDI: 0000000000000003
[   86.922980][ T5364] RBP: 00007fa7b3c11e19 R08: 0000000000000000 R09: 0000000000000000
[   86.926366][ T5364] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   86.929331][ T5364] R13: 00007fa7b3db6038 R14: 00007fa7b3db5fa0 R15: 00007fff45e588b8
[   86.932670][ T5364]  </TASK>
[   86.934307][ T5364] Kernel Offset: disabled
[   86.936210][ T5364] Rebooting in 86400 seconds..