program:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=@newtaction={0x60, 0x30, 0x427, 0x0, 0x0, {}, [{0x4c, 0x1, [@m_gact={0x48, 0x1, 0x0, 0x0, {{0x9}, {0x1c, 0x2, 0x0, 0x1, [@TCA_GACT_PARMS={0x18, 0x2, {0x5, 0x10000, 0x1, 0xfff}}]}, {0x4}, {0xc, 0x7, {0x1, 0x1}}, {0xc}}}]}]}, 0x60}, 0x1, 0x0, 0x0, 0x4004}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000540)=@newqdisc={0x24, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {0xffff, 0xffff}}}, 0x24}}, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r1, &(0x7f00000002c0), 0x40000000000009f, 0x0)
r2 = syz_open_dev$dri(&(0x7f0000000240), 0x2000, 0x0)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000001180)={0x0, 0x0, &(0x7f0000000080), 0x1, 0x0, 0xa7}, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000002c0)=ANY=[@ANYBLOB="1c0000001000010700000000000000000a0000000600010022"], 0x1c}}, 0x0)
r5 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000540), r4)
sendmsg$WG_CMD_SET_DEVICE(r3, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000200)={0x28, r5, 0x1, 0x0, 0x0, {}, [@WGDEVICE_A_IFNAME={0x14, 0x2, 'wg0\x00'}]}, 0x28}}, 0x0)
ioctl$DRM_IOCTL_GET_CLIENT(r2, 0xc02864cf, &(0x7f00000001c0)={0x0, 0x0, {}, {0xee00}})
r6 = openat$comedi(0xffffffffffffff9c, &(0x7f0000000040)='/dev/comedi4\x00', 0x181001, 0x0)
ioctl$COMEDI_INSNLIST(r6, 0x8010640b, &(0x7f0000000000)={0x6666666666666a4, &(0x7f0000104d40)=[{0xe000004, 0x0, 0x0, 0x0, 0x3333335}]})
mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa, 0x30, r6, 0x7a56b000)

[   84.932438][ T5322] Bluetooth: hci0: command tx timeout
[   85.014650][ T5345] Zero length message leads to an empty skb
[   85.058147][ T5345] ------------[ cut here ]------------
[   85.061402][ T5345] WARNING: CPU: 0 PID: 5345 at mm/page_alloc.c:4935 __alloc_frozen_pages_noprof+0x2c8/0x370
[   85.066374][ T5345] Modules linked in:
[   85.068210][ T5345] CPU: 0 UID: 0 PID: 5345 Comm: syz.0.0 Not tainted 6.16.0-rc5-syzkaller #0 PREEMPT(full) 
[   85.072267][ T5345] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   85.076938][ T5345] RIP: 0010:__alloc_frozen_pages_noprof+0x2c8/0x370
[   85.079790][ T5345] Code: 74 10 4c 89 e7 89 54 24 0c e8 24 14 0d 00 8b 54 24 0c 49 83 3c 24 00 0f 85 a5 fe ff ff e9 a6 fe ff ff c6 05 a7 36 75 0d 01 90 <0f> 0b 90 e9 18 ff ff ff a9 00 00 08 00 48 8b 4c 24 10 4c 8d 44 24
[   85.087996][ T5345] RSP: 0018:ffffc9000d3c7960 EFLAGS: 00010246
[   85.090641][ T5345] RAX: ffffc9000d3c7900 RBX: 0000000000000019 RCX: 0000000000000000
[   85.094078][ T5345] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffc9000d3c79c8
[   85.097558][ T5345] RBP: ffffc9000d3c7a50 R08: ffffc9000d3c79c7 R09: 0000000000000000
[   85.101126][ T5345] R10: ffffc9000d3c79a0 R11: fffff52001a78f39 R12: 0000000000000000
[   85.104766][ T5345] R13: 1ffff92001a78f30 R14: 0000000000040dc0 R15: dffffc0000000000
[   85.108285][ T5345] FS:  00007f59501f56c0(0000) GS:ffff88808d21d000(0000) knlGS:0000000000000000
[   85.112087][ T5345] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   85.115002][ T5345] CR2: 0000200000104d40 CR3: 00000000443e7000 CR4: 0000000000352ef0
[   85.118626][ T5345] Call Trace:
[   85.120205][ T5345]  <TASK>
[   85.121485][ T5345]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[   85.124312][ T5345]  __alloc_pages_noprof+0xa/0x30
[   85.126445][ T5345]  ___kmalloc_large_node+0x85/0x210
[   85.128589][ T5345]  __kmalloc_large_node_noprof+0x18/0x90
[   85.131358][ T5345]  __kmalloc_noprof+0x36f/0x4f0
[   85.133800][ T5345]  ? comedi_unlocked_ioctl+0x9ee/0xf40
[   85.136251][ T5345]  comedi_unlocked_ioctl+0x9ee/0xf40
[   85.138771][ T5345]  ? __pfx_comedi_unlocked_ioctl+0x10/0x10
[   85.141552][ T5345]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[   85.144125][ T5345]  ? tomoyo_path_number_perm+0x4e2/0x5a0
[   85.146594][ T5345]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[   85.149165][ T5345]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[   85.151851][ T5345]  ? __lock_acquire+0xab9/0xd20
[   85.154182][ T5345]  ? __fget_files+0x2a/0x420
[   85.156249][ T5345]  ? __fget_files+0x2a/0x420
[   85.158297][ T5345]  ? __fget_files+0x3a0/0x420
[   85.160382][ T5345]  ? __fget_files+0x2a/0x420
[   85.163064][ T5345]  ? bpf_lsm_file_ioctl+0x9/0x20
[   85.165614][ T5345]  ? __pfx_comedi_unlocked_ioctl+0x10/0x10
[   85.168090][ T5345]  __se_sys_ioctl+0xf9/0x170
[   85.170128][ T5345]  do_syscall_64+0xfa/0x3b0
[   85.172227][ T5345]  ? lockdep_hardirqs_on+0x9c/0x150
[   85.174683][ T5345]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   85.177444][ T5345]  ? clear_bhb_loop+0x60/0xb0
[   85.179472][ T5345]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   85.182085][ T5345] RIP: 0033:0x7f5953d8e929
[   85.184173][ T5345] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   85.192214][ T5345] RSP: 002b:00007f59501f5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   85.196008][ T5345] RAX: ffffffffffffffda RBX: 00007f5953fb5fa0 RCX: 00007f5953d8e929
[   85.199518][ T5345] RDX: 0000200000000000 RSI: 000000008010640b RDI: 0000000000000008
[   85.202982][ T5345] RBP: 00007f5953e10b39 R08: 0000000000000000 R09: 0000000000000000
[   85.206472][ T5345] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   85.209686][ T5345] R13: 0000000000000000 R14: 00007f5953fb5fa0 R15: 00007ffe34a916d8
[   85.213718][ T5345]  </TASK>
[   85.215065][ T5345] Kernel panic - not syncing: kernel: panic_on_warn set ...
[   85.218145][ T5345] CPU: 0 UID: 0 PID: 5345 Comm: syz.0.0 Not tainted 6.16.0-rc5-syzkaller #0 PREEMPT(full) 
[   85.222556][ T5345] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   85.227009][ T5345] Call Trace:
[   85.228416][ T5345]  <TASK>
[   85.229628][ T5345]  dump_stack_lvl+0x99/0x250
[   85.231684][ T5345]  ? __asan_memcpy+0x40/0x70
[   85.233613][ T5345]  ? __pfx_dump_stack_lvl+0x10/0x10
[   85.235858][ T5345]  ? __pfx__printk+0x10/0x10
[   85.237904][ T5345]  panic+0x2db/0x790
[   85.239615][ T5345]  ? __pfx_panic+0x10/0x10
[   85.241611][ T5345]  ? show_trace_log_lvl+0x4fb/0x550
[   85.243823][ T5345]  __warn+0x31b/0x4b0
[   85.245553][ T5345]  ? __alloc_frozen_pages_noprof+0x2c8/0x370
[   85.248173][ T5345]  ? __alloc_frozen_pages_noprof+0x2c8/0x370
[   85.250740][ T5345]  report_bug+0x2be/0x4f0
[   85.252665][ T5345]  ? __alloc_frozen_pages_noprof+0x2c8/0x370
[   85.255212][ T5345]  ? __alloc_frozen_pages_noprof+0x2c8/0x370
[   85.257696][ T5345]  ? __alloc_frozen_pages_noprof+0x2ca/0x370
[   85.260368][ T5345]  handle_bug+0x84/0x160
[   85.262270][ T5345]  exc_invalid_op+0x1a/0x50
[   85.264153][ T5345]  asm_exc_invalid_op+0x1a/0x20
[   85.266159][ T5345] RIP: 0010:__alloc_frozen_pages_noprof+0x2c8/0x370
[   85.269007][ T5345] Code: 74 10 4c 89 e7 89 54 24 0c e8 24 14 0d 00 8b 54 24 0c 49 83 3c 24 00 0f 85 a5 fe ff ff e9 a6 fe ff ff c6 05 a7 36 75 0d 01 90 <0f> 0b 90 e9 18 ff ff ff a9 00 00 08 00 48 8b 4c 24 10 4c 8d 44 24
[   85.277164][ T5345] RSP: 0018:ffffc9000d3c7960 EFLAGS: 00010246
[   85.279792][ T5345] RAX: ffffc9000d3c7900 RBX: 0000000000000019 RCX: 0000000000000000
[   85.283225][ T5345] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffc9000d3c79c8
[   85.286566][ T5345] RBP: ffffc9000d3c7a50 R08: ffffc9000d3c79c7 R09: 0000000000000000
[   85.289923][ T5345] R10: ffffc9000d3c79a0 R11: fffff52001a78f39 R12: 0000000000000000
[   85.293406][ T5345] R13: 1ffff92001a78f30 R14: 0000000000040dc0 R15: dffffc0000000000
[   85.296594][ T5345]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[   85.298996][ T5345]  __alloc_pages_noprof+0xa/0x30
[   85.301185][ T5345]  ___kmalloc_large_node+0x85/0x210
[   85.303271][ T5345]  __kmalloc_large_node_noprof+0x18/0x90
[   85.305562][ T5345]  __kmalloc_noprof+0x36f/0x4f0
[   85.307688][ T5345]  ? comedi_unlocked_ioctl+0x9ee/0xf40
[   85.310489][ T5345]  comedi_unlocked_ioctl+0x9ee/0xf40
[   85.313500][ T5345]  ? __pfx_comedi_unlocked_ioctl+0x10/0x10
[   85.316778][ T5345]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[   85.319663][ T5345]  ? tomoyo_path_number_perm+0x4e2/0x5a0
[   85.322206][ T5345]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[   85.324531][ T5345]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[   85.327054][ T5345]  ? __lock_acquire+0xab9/0xd20
[   85.329215][ T5345]  ? __fget_files+0x2a/0x420
[   85.331215][ T5345]  ? __fget_files+0x2a/0x420
[   85.333335][ T5345]  ? __fget_files+0x3a0/0x420
[   85.335459][ T5345]  ? __fget_files+0x2a/0x420
[   85.337469][ T5345]  ? bpf_lsm_file_ioctl+0x9/0x20
[   85.339554][ T5345]  ? __pfx_comedi_unlocked_ioctl+0x10/0x10
[   85.342071][ T5345]  __se_sys_ioctl+0xf9/0x170
[   85.344132][ T5345]  do_syscall_64+0xfa/0x3b0
[   85.346131][ T5345]  ? lockdep_hardirqs_on+0x9c/0x150
[   85.348455][ T5345]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   85.351214][ T5345]  ? clear_bhb_loop+0x60/0xb0
[   85.353344][ T5345]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   85.355987][ T5345] RIP: 0033:0x7f5953d8e929
[   85.358075][ T5345] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   85.366274][ T5345] RSP: 002b:00007f59501f5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   85.369947][ T5345] RAX: ffffffffffffffda RBX: 00007f5953fb5fa0 RCX: 00007f5953d8e929
[   85.373418][ T5345] RDX: 0000200000000000 RSI: 000000008010640b RDI: 0000000000000008
[   85.376803][ T5345] RBP: 00007f5953e10b39 R08: 0000000000000000 R09: 0000000000000000
[   85.380228][ T5345] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   85.383793][ T5345] R13: 0000000000000000 R14: 00007f5953fb5fa0 R15: 00007ffe34a916d8
[   85.387086][ T5345]  </TASK>
[   85.388863][ T5345] Kernel Offset: disabled
[   85.390711][ T5345] Rebooting in 86400 seconds..