program:
pipe2$9p(&(0x7f0000000240)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff097b000008003950323030302e4c"], 0x15)
r2 = dup(r1)
write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_DIRENTPLUS(r2, &(0x7f0000002100)=ANY=[@ANYBLOB="b0000000000000001659ec0889419429aa5db97288b0f8a87ea8e66d9a8b"], 0xb0)
io_setup(0x7e, &(0x7f0000000040)=<r3=>0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./cgroup.net/devices.allow\x00', 0x2, 0x48)
r5 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r5}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
io_submit(r3, 0x1, &(0x7f0000000480)=[&(0x7f0000000140)={0x0, 0x0, 0x0, 0x1, 0x1, r4, 0x0, 0x0, 0x7}])
io_pgetevents(r3, 0x8, 0x8, &(0x7f0000000b40)=[{}, {}, {}, {}, {}, {}, {}, {}], 0x0, &(0x7f0000000b00)={&(0x7f00000009c0)={[0x30a]}, 0x8})
syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
write$FUSE_LK(r2, &(0x7f0000000000)={0x28, 0x0, 0x0, {{0x6, 0x4, 0x1}}}, 0x28)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000640)={0xe, 0x4, &(0x7f0000000040)=@framed={{}, [@ldst={0x1, 0x0, 0x3, 0x0, 0x1, 0xa3}]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24}, 0x80)
write$FUSE_INTERRUPT(r2, &(0x7f00000000c0)={0x10, 0x24}, 0x10)
write$FUSE_DIRENTPLUS(r2, &(0x7f0000000280)=ANY=[@ANYBLOB="a8"], 0xa8)
mount$9p_fd(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000500)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@posixacl}]}})

[   75.911731][ T5340] Bluetooth: hci0: command tx timeout
[   75.990490][ T5360] ------------[ cut here ]------------
[   75.992842][ T5360] WARNING: CPU: 0 PID: 5360 at mm/page_alloc.c:5124 __alloc_frozen_pages_noprof+0x2c8/0x370
[   75.997011][ T5360] Modules linked in:
[   75.998649][ T5360] CPU: 0 UID: 0 PID: 5360 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) 
[   76.002544][ T5360] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   76.007142][ T5360] RIP: 0010:__alloc_frozen_pages_noprof+0x2c8/0x370
[   76.010141][ T5360] Code: 74 10 4c 89 e7 89 54 24 0c e8 64 1e 0d 00 8b 54 24 0c 49 83 3c 24 00 0f 85 a5 fe ff ff e9 a6 fe ff ff c6 05 ac 06 96 0d 01 90 <0f> 0b 90 e9 18 ff ff ff a9 00 00 08 00 48 8b 4c 24 10 4c 8d 44 24
[   76.018416][ T5360] RSP: 0018:ffffc9000d46f8c0 EFLAGS: 00010246
[   76.021182][ T5360] RAX: ffffc9000d46f900 RBX: 0000000000000014 RCX: 0000000000000000
[   76.024492][ T5360] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffc9000d46f928
[   76.027897][ T5360] RBP: ffffc9000d46f9c0 R08: ffffc9000d46f927 R09: 0000000000000000
[   76.030589][ T5360] R10: ffffc9000d46f900 R11: fffff52001a8df25 R12: 0000000000000000
[   76.033233][ T5360] R13: 1ffff92001a8df1c R14: 0000000000040d40 R15: dffffc0000000000
[   76.036354][ T5360] FS:  00007f995d8296c0(0000) GS:ffff88808d007000(0000) knlGS:0000000000000000
[   76.039979][ T5360] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   76.042665][ T5360] CR2: 0000200000001000 CR3: 000000003f381000 CR4: 0000000000352ef0
[   76.046015][ T5360] Call Trace:
[   76.047350][ T5360]  <TASK>
[   76.048680][ T5360]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[   76.051516][ T5360]  ? kfree+0x18e/0x440
[   76.053334][ T5360]  ? policy_nodemask+0x27c/0x720
[   76.055512][ T5360]  ? p9_client_clunk+0x1b6/0x250
[   76.057808][ T5360]  alloc_pages_mpol+0x232/0x4a0
[   76.059988][ T5360]  ___kmalloc_large_node+0x5f/0x1b0
[   76.062102][ T5360]  __kmalloc_large_node_noprof+0x18/0x90
[   76.064393][ T5360]  __kmalloc_noprof+0x36f/0x4f0
[   76.066525][ T5360]  ? v9fs_fid_get_acl+0x4f/0x100
[   76.068800][ T5360]  ? __pfx_v9fs_cache_inode_get_cookie+0x10/0x10
[   76.071608][ T5360]  v9fs_fid_get_acl+0x4f/0x100
[   76.073645][ T5360]  v9fs_get_acl+0x11b/0x360
[   76.075640][ T5360]  v9fs_inode_from_fid_dotl+0x221/0x2b0
[   76.077995][ T5360]  v9fs_mount+0x6eb/0xa50
[   76.079846][ T5360]  ? __pfx_v9fs_mount+0x10/0x10
[   76.082231][ T5360]  legacy_get_tree+0xfd/0x1a0
[   76.084164][ T5360]  ? __pfx_v9fs_mount+0x10/0x10
[   76.086414][ T5360]  vfs_get_tree+0x92/0x2b0
[   76.088632][ T5360]  do_new_mount+0x2a2/0x9e0
[   76.091099][ T5360]  ? ns_capable+0x8a/0xf0
[   76.093051][ T5360]  ? __pfx_do_new_mount+0x10/0x10
[   76.095270][ T5360]  ? path_mount+0x61c/0xfe0
[   76.097358][ T5360]  ? user_path_at+0x44/0x60
[   76.099358][ T5360]  __se_sys_mount+0x317/0x410
[   76.101643][ T5360]  ? __pfx___se_sys_mount+0x10/0x10
[   76.103802][ T5360]  ? rcu_is_watching+0x15/0xb0
[   76.105886][ T5360]  ? do_syscall_64+0xbe/0x3b0
[   76.107934][ T5360]  ? __x64_sys_mount+0x20/0xc0
[   76.110186][ T5360]  do_syscall_64+0xfa/0x3b0
[   76.112172][ T5360]  ? lockdep_hardirqs_on+0x9c/0x150
[   76.114483][ T5360]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   76.117134][ T5360]  ? clear_bhb_loop+0x60/0xb0
[   76.119250][ T5360]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   76.121968][ T5360] RIP: 0033:0x7f995c98eec9
[   76.123747][ T5360] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   76.131928][ T5360] RSP: 002b:00007f995d829038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[   76.135833][ T5360] RAX: ffffffffffffffda RBX: 00007f995cbe5fa0 RCX: 00007f995c98eec9
[   76.139557][ T5360] RDX: 0000200000000b80 RSI: 0000200000000140 RDI: 0000000000000000
[   76.143631][ T5360] RBP: 00007f995ca11f91 R08: 0000200000000500 R09: 0000000000000000
[   76.147547][ T5360] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   76.151182][ T5360] R13: 00007f995cbe6038 R14: 00007f995cbe5fa0 R15: 00007ffc33a3faf8
[   76.154901][ T5360]  </TASK>
[   76.156359][ T5360] Kernel panic - not syncing: kernel: panic_on_warn set ...
[   76.159465][ T5360] CPU: 0 UID: 0 PID: 5360 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) 
[   76.163234][ T5360] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   76.167705][ T5360] Call Trace:
[   76.169269][ T5360]  <TASK>
[   76.170594][ T5360]  dump_stack_lvl+0x99/0x250
[   76.172663][ T5360]  ? __asan_memcpy+0x40/0x70
[   76.174720][ T5360]  ? __pfx_dump_stack_lvl+0x10/0x10
[   76.177012][ T5360]  ? __pfx__printk+0x10/0x10
[   76.178982][ T5360]  vpanic+0x281/0x750
[   76.180754][ T5360]  ? __pfx__printk+0x10/0x10
[   76.182755][ T5360]  ? __pfx_vpanic+0x10/0x10
[   76.184695][ T5360]  ? is_bpf_text_address+0x26/0x2b0
[   76.186970][ T5360]  panic+0xb9/0xc0
[   76.188700][ T5360]  ? __pfx_panic+0x10/0x10
[   76.190752][ T5360]  __warn+0x31b/0x4b0
[   76.192481][ T5360]  ? __alloc_frozen_pages_noprof+0x2c8/0x370
[   76.195096][ T5360]  ? __alloc_frozen_pages_noprof+0x2c8/0x370
[   76.197811][ T5360]  report_bug+0x2be/0x4f0
[   76.199654][ T5360]  ? __alloc_frozen_pages_noprof+0x2c8/0x370
[   76.202152][ T5360]  ? __alloc_frozen_pages_noprof+0x2c8/0x370
[   76.204666][ T5360]  ? __alloc_frozen_pages_noprof+0x2ca/0x370
[   76.207304][ T5360]  handle_bug+0x84/0x160
[   76.209033][ T5360]  exc_invalid_op+0x1a/0x50
[   76.210953][ T5360]  asm_exc_invalid_op+0x1a/0x20
[   76.213166][ T5360] RIP: 0010:__alloc_frozen_pages_noprof+0x2c8/0x370
[   76.216029][ T5360] Code: 74 10 4c 89 e7 89 54 24 0c e8 64 1e 0d 00 8b 54 24 0c 49 83 3c 24 00 0f 85 a5 fe ff ff e9 a6 fe ff ff c6 05 ac 06 96 0d 01 90 <0f> 0b 90 e9 18 ff ff ff a9 00 00 08 00 48 8b 4c 24 10 4c 8d 44 24
[   76.224034][ T5360] RSP: 0018:ffffc9000d46f8c0 EFLAGS: 00010246
[   76.226767][ T5360] RAX: ffffc9000d46f900 RBX: 0000000000000014 RCX: 0000000000000000
[   76.230118][ T5360] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffc9000d46f928
[   76.233527][ T5360] RBP: ffffc9000d46f9c0 R08: ffffc9000d46f927 R09: 0000000000000000
[   76.236972][ T5360] R10: ffffc9000d46f900 R11: fffff52001a8df25 R12: 0000000000000000
[   76.240503][ T5360] R13: 1ffff92001a8df1c R14: 0000000000040d40 R15: dffffc0000000000
[   76.244098][ T5360]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[   76.246954][ T5360]  ? kfree+0x18e/0x440
[   76.248743][ T5360]  ? policy_nodemask+0x27c/0x720
[   76.250965][ T5360]  ? p9_client_clunk+0x1b6/0x250
[   76.253217][ T5360]  alloc_pages_mpol+0x232/0x4a0
[   76.255351][ T5360]  ___kmalloc_large_node+0x5f/0x1b0
[   76.257728][ T5360]  __kmalloc_large_node_noprof+0x18/0x90
[   76.260177][ T5360]  __kmalloc_noprof+0x36f/0x4f0
[   76.262291][ T5360]  ? v9fs_fid_get_acl+0x4f/0x100
[   76.264461][ T5360]  ? __pfx_v9fs_cache_inode_get_cookie+0x10/0x10
[   76.267244][ T5360]  v9fs_fid_get_acl+0x4f/0x100
[   76.269422][ T5360]  v9fs_get_acl+0x11b/0x360
[   76.271440][ T5360]  v9fs_inode_from_fid_dotl+0x221/0x2b0
[   76.273830][ T5360]  v9fs_mount+0x6eb/0xa50
[   76.275782][ T5360]  ? __pfx_v9fs_mount+0x10/0x10
[   76.278090][ T5360]  legacy_get_tree+0xfd/0x1a0
[   76.280164][ T5360]  ? __pfx_v9fs_mount+0x10/0x10
[   76.282283][ T5360]  vfs_get_tree+0x92/0x2b0
[   76.284445][ T5360]  do_new_mount+0x2a2/0x9e0
[   76.286855][ T5360]  ? ns_capable+0x8a/0xf0
[   76.288809][ T5360]  ? __pfx_do_new_mount+0x10/0x10
[   76.291023][ T5360]  ? path_mount+0x61c/0xfe0
[   76.293016][ T5360]  ? user_path_at+0x44/0x60
[   76.294942][ T5360]  __se_sys_mount+0x317/0x410
[   76.297059][ T5360]  ? __pfx___se_sys_mount+0x10/0x10
[   76.299243][ T5360]  ? rcu_is_watching+0x15/0xb0
[   76.301327][ T5360]  ? do_syscall_64+0xbe/0x3b0
[   76.303406][ T5360]  ? __x64_sys_mount+0x20/0xc0
[   76.305515][ T5360]  do_syscall_64+0xfa/0x3b0
[   76.307523][ T5360]  ? lockdep_hardirqs_on+0x9c/0x150
[   76.309807][ T5360]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   76.312391][ T5360]  ? clear_bhb_loop+0x60/0xb0
[   76.314561][ T5360]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   76.317269][ T5360] RIP: 0033:0x7f995c98eec9
[   76.319191][ T5360] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   76.327869][ T5360] RSP: 002b:00007f995d829038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[   76.331587][ T5360] RAX: ffffffffffffffda RBX: 00007f995cbe5fa0 RCX: 00007f995c98eec9
[   76.335060][ T5360] RDX: 0000200000000b80 RSI: 0000200000000140 RDI: 0000000000000000
[   76.338616][ T5360] RBP: 00007f995ca11f91 R08: 0000200000000500 R09: 0000000000000000
[   76.342014][ T5360] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   76.345424][ T5360] R13: 00007f995cbe6038 R14: 00007f995cbe5fa0 R15: 00007ffc33a3faf8
[   76.349027][ T5360]  </TASK>
[   76.350734][ T5360] Kernel Offset: disabled
[   76.352618][ T5360] Rebooting in 86400 seconds..