program:
syz_emit_ethernet(0x32, &(0x7f0000000740)={@local, @dev, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x11, 0x0, @private, @empty}, {0x0, 0x17c1, 0x53, 0x0, @gue={{0x2}}}}}}}, 0x0)
getsockopt$inet_sctp6_SCTP_DEFAULT_SEND_PARAM(0xffffffffffffffff, 0x84, 0xa, &(0x7f0000000000)={0x4, 0x7ff, 0x8000, 0x4, 0x3, 0x0, 0xc8, 0x5e, <r0=>0x0}, &(0x7f0000000040)=0x20)
r1 = openat$sndtimer(0xffffffffffffff9c, &(0x7f00000002c0), 0x240000)
fchmod(r1, 0x108)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, &(0x7f0000000100)={<r2=>0x0, 0x74, &(0x7f0000000400)=[@in={0x2, 0x4e24, @initdev={0xac, 0x1e, 0x1, 0x0}}, @in6={0xa, 0x4e20, 0x5, @ipv4={'\x00', '\xff\xff', @multicast1}, 0xffffff81}, @in6={0xa, 0x4e20, 0x1, @remote, 0xa1d7}, @in6={0xa, 0x4e21, 0x4340, @private0, 0x7}, @in={0x2, 0x4e21, @remote}]}, &(0x7f0000000140)=0x10)
getsockopt$inet_sctp6_SCTP_STATUS(0xffffffffffffffff, 0x84, 0xe, &(0x7f0000000340)={r0, 0x4, 0x0, 0x3, 0x409, 0xfffc, 0x4, 0x8, {r2, @in6={{0xa, 0x4e20, 0x1, @rand_addr=' \x01\x00', 0x200}}, 0x9, 0x400, 0x7, 0x7, 0x102}}, &(0x7f0000000240)=0xb0)
r3 = syz_open_dev$dri(&(0x7f0000000000), 0x2, 0x2000)
ioctl$DRM_IOCTL_SYNCOBJ_RESET(r3, 0xc01064c4, &(0x7f0000000540)={&(0x7f00000001c0)=[0x0, 0x0], 0x3ffffffffffffe70})
clock_nanosleep(0xb, 0x0, &(0x7f0000000300), 0x0)
pipe2$9p(&(0x7f0000000240)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r5, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff097b000008003950323030302e4c"], 0x15)
r6 = dup(r5)
write$FUSE_BMAP(r6, &(0x7f0000000100)={0x18}, 0x18)
mkdirat(0xffffffffffffff9c, &(0x7f0000000a80)='./file0\x00', 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="0b00000007000000020000000400000005000000", @ANYRES32, @ANYBLOB="000000000000000200000000000000009357250f4ead317a8cb6f8916cd85f55ed7e4881d74d50930829a14a8b17e86a0eca68d7d21778987a19b74379765f76de", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
write$FUSE_DIRENTPLUS(r6, &(0x7f0000000140)=ANY=[@ANYBLOB="10"], 0x10)
write$FUSE_DIRENTPLUS(r6, &(0x7f0000000280)=ANY=[@ANYBLOB="a8"], 0xa8)
write$FUSE_OPEN(r6, &(0x7f0000000000)={0x20, 0x0, 0x0, {0x0, 0x8}}, 0x20)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000000c0), 0x10, &(0x7f00000005c0)={'trans=fd,', {'rfdno', 0x3d, r4}, 0x2c, {'wfdno', 0x3d, r5}})
r7 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB='\x00'/20, @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
r8 = socket$inet_smc(0x2b, 0x1, 0x0)
fsetxattr$security_evm(r7, &(0x7f0000000180), &(0x7f0000000200)=@v1={0x2, "3e204ba452760e9818a3579c924d9a34"}, 0x11, 0x1)
ioctl$sock_SIOCBRADDBR(r8, 0x89a0, &(0x7f0000000300)='ipvlan1\x00')

[   90.221378][ T5338] Bluetooth: hci0: command tx timeout
[   90.392149][ T5361] ------------[ cut here ]------------
[   90.395112][ T5361] WARNING: CPU: 0 PID: 5361 at mm/page_alloc.c:5124 __alloc_frozen_pages_noprof+0x2c8/0x370
[   90.399567][ T5361] Modules linked in:
[   90.401346][ T5361] CPU: 0 UID: 0 PID: 5361 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) 
[   90.405730][ T5361] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   90.410954][ T5361] RIP: 0010:__alloc_frozen_pages_noprof+0x2c8/0x370
[   90.413807][ T5361] Code: 74 10 4c 89 e7 89 54 24 0c e8 64 1e 0d 00 8b 54 24 0c 49 83 3c 24 00 0f 85 a5 fe ff ff e9 a6 fe ff ff c6 05 ea 13 96 0d 01 90 <0f> 0b 90 e9 18 ff ff ff a9 00 00 08 00 48 8b 4c 24 10 4c 8d 44 24
[   90.422818][ T5361] RSP: 0018:ffffc9000d43f960 EFLAGS: 00010246
[   90.426242][ T5361] RAX: ffffc9000d43f900 RBX: 0000000000000016 RCX: 0000000000000000
[   90.429658][ T5361] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffc9000d43f9c8
[   90.433130][ T5361] RBP: ffffc9000d43fa60 R08: ffffc9000d43f9c7 R09: 0000000000000000
[   90.436735][ T5361] R10: ffffc9000d43f9a0 R11: fffff52001a87f39 R12: 0000000000000000
[   90.440908][ T5361] R13: 1ffff92001a87f30 R14: 0000000000040cc0 R15: dffffc0000000000
[   90.445434][ T5361] FS:  00007f339adbd6c0(0000) GS:ffff88808d007000(0000) knlGS:0000000000000000
[   90.449219][ T5361] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   90.452101][ T5361] CR2: 00007fee5eb90201 CR3: 0000000042f40000 CR4: 0000000000352ef0
[   90.455786][ T5361] Call Trace:
[   90.457426][ T5361]  <TASK>
[   90.459167][ T5361]  ? __kasan_slab_free+0x5b/0x80
[   90.461696][ T5361]  ? tomoyo_path_number_perm+0x47a/0x5a0
[   90.463931][ T5361]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[   90.466551][ T5361]  ? policy_nodemask+0x27c/0x720
[   90.468455][ T5361]  alloc_pages_mpol+0x232/0x4a0
[   90.470715][ T5361]  ___kmalloc_large_node+0x5f/0x1b0
[   90.473073][ T5361]  __kmalloc_large_node_noprof+0x18/0x90
[   90.476210][ T5361]  __kmalloc_noprof+0x36f/0x4f0
[   90.478791][ T5361]  ? drm_syncobj_array_find+0x3a/0x450
[   90.481490][ T5361]  drm_syncobj_array_find+0x3a/0x450
[   90.483649][ T5361]  drm_syncobj_reset_ioctl+0x16b/0x2f0
[   90.485779][ T5361]  drm_ioctl_kernel+0x2cf/0x390
[   90.487785][ T5361]  ? __pfx_drm_syncobj_reset_ioctl+0x10/0x10
[   90.490355][ T5361]  ? __pfx_drm_ioctl_kernel+0x10/0x10
[   90.493059][ T5361]  drm_ioctl+0x67f/0xb10
[   90.495917][ T5361]  ? __pfx_drm_syncobj_reset_ioctl+0x10/0x10
[   90.499097][ T5361]  ? __pfx_drm_ioctl+0x10/0x10
[   90.501252][ T5361]  ? __fget_files+0x2a/0x420
[   90.503445][ T5361]  ? bpf_lsm_file_ioctl+0x9/0x20
[   90.505620][ T5361]  ? __pfx_drm_ioctl+0x10/0x10
[   90.507761][ T5361]  __se_sys_ioctl+0xfc/0x170
[   90.509876][ T5361]  do_syscall_64+0xfa/0x3b0
[   90.511997][ T5361]  ? lockdep_hardirqs_on+0x9c/0x150
[   90.514345][ T5361]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   90.517482][ T5361]  ? clear_bhb_loop+0x60/0xb0
[   90.519578][ T5361]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   90.522046][ T5361] RIP: 0033:0x7f3399f8ec29
[   90.523813][ T5361] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   90.532311][ T5361] RSP: 002b:00007f339adbd038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   90.536147][ T5361] RAX: ffffffffffffffda RBX: 00007f339a1d5fa0 RCX: 00007f3399f8ec29
[   90.539586][ T5361] RDX: 0000200000000540 RSI: 00000000c01064c4 RDI: 0000000000000004
[   90.543134][ T5361] RBP: 00007f339a011e41 R08: 0000000000000000 R09: 0000000000000000
[   90.547435][ T5361] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   90.552613][ T5361] R13: 00007f339a1d6038 R14: 00007f339a1d5fa0 R15: 00007ffdc0f74b28
[   90.556148][ T5361]  </TASK>
[   90.557625][ T5361] Kernel panic - not syncing: kernel: panic_on_warn set ...
[   90.560587][ T5361] CPU: 0 UID: 0 PID: 5361 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) 
[   90.563820][ T5361] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   90.567560][ T5361] Call Trace:
[   90.568805][ T5361]  <TASK>
[   90.569923][ T5361]  dump_stack_lvl+0x99/0x250
[   90.571535][ T5361]  ? __asan_memcpy+0x40/0x70
[   90.573039][ T5361]  ? __pfx_dump_stack_lvl+0x10/0x10
[   90.575064][ T5361]  ? __pfx__printk+0x10/0x10
[   90.577016][ T5361]  vpanic+0x281/0x750
[   90.578797][ T5361]  ? __pfx__printk+0x10/0x10
[   90.580881][ T5361]  ? __pfx_vpanic+0x10/0x10
[   90.583385][ T5361]  ? is_bpf_text_address+0x26/0x2b0
[   90.586190][ T5361]  panic+0xb9/0xc0
[   90.588107][ T5361]  ? __pfx_panic+0x10/0x10
[   90.590067][ T5361]  __warn+0x31b/0x4b0
[   90.591859][ T5361]  ? __alloc_frozen_pages_noprof+0x2c8/0x370
[   90.594421][ T5361]  ? __alloc_frozen_pages_noprof+0x2c8/0x370
[   90.596706][ T5361]  report_bug+0x2be/0x4f0
[   90.598671][ T5361]  ? __alloc_frozen_pages_noprof+0x2c8/0x370
[   90.601368][ T5361]  ? __alloc_frozen_pages_noprof+0x2c8/0x370
[   90.604202][ T5361]  ? __alloc_frozen_pages_noprof+0x2ca/0x370
[   90.606830][ T5361]  handle_bug+0x84/0x160
[   90.608371][ T5361]  exc_invalid_op+0x1a/0x50
[   90.609942][ T5361]  asm_exc_invalid_op+0x1a/0x20
[   90.611987][ T5361] RIP: 0010:__alloc_frozen_pages_noprof+0x2c8/0x370
[   90.614689][ T5361] Code: 74 10 4c 89 e7 89 54 24 0c e8 64 1e 0d 00 8b 54 24 0c 49 83 3c 24 00 0f 85 a5 fe ff ff e9 a6 fe ff ff c6 05 ea 13 96 0d 01 90 <0f> 0b 90 e9 18 ff ff ff a9 00 00 08 00 48 8b 4c 24 10 4c 8d 44 24
[   90.623890][ T5361] RSP: 0018:ffffc9000d43f960 EFLAGS: 00010246
[   90.626450][ T5361] RAX: ffffc9000d43f900 RBX: 0000000000000016 RCX: 0000000000000000
[   90.629774][ T5361] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffc9000d43f9c8
[   90.633217][ T5361] RBP: ffffc9000d43fa60 R08: ffffc9000d43f9c7 R09: 0000000000000000
[   90.636668][ T5361] R10: ffffc9000d43f9a0 R11: fffff52001a87f39 R12: 0000000000000000
[   90.640057][ T5361] R13: 1ffff92001a87f30 R14: 0000000000040cc0 R15: dffffc0000000000
[   90.643572][ T5361]  ? __kasan_slab_free+0x5b/0x80
[   90.646260][ T5361]  ? tomoyo_path_number_perm+0x47a/0x5a0
[   90.649108][ T5361]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[   90.651957][ T5361]  ? policy_nodemask+0x27c/0x720
[   90.654123][ T5361]  alloc_pages_mpol+0x232/0x4a0
[   90.656226][ T5361]  ___kmalloc_large_node+0x5f/0x1b0
[   90.658518][ T5361]  __kmalloc_large_node_noprof+0x18/0x90
[   90.661343][ T5361]  __kmalloc_noprof+0x36f/0x4f0
[   90.663782][ T5361]  ? drm_syncobj_array_find+0x3a/0x450
[   90.666217][ T5361]  drm_syncobj_array_find+0x3a/0x450
[   90.668500][ T5361]  drm_syncobj_reset_ioctl+0x16b/0x2f0
[   90.670839][ T5361]  drm_ioctl_kernel+0x2cf/0x390
[   90.672970][ T5361]  ? __pfx_drm_syncobj_reset_ioctl+0x10/0x10
[   90.675957][ T5361]  ? __pfx_drm_ioctl_kernel+0x10/0x10
[   90.679181][ T5361]  drm_ioctl+0x67f/0xb10
[   90.681250][ T5361]  ? __pfx_drm_syncobj_reset_ioctl+0x10/0x10
[   90.683769][ T5361]  ? __pfx_drm_ioctl+0x10/0x10
[   90.685755][ T5361]  ? __fget_files+0x2a/0x420
[   90.687604][ T5361]  ? bpf_lsm_file_ioctl+0x9/0x20
[   90.689967][ T5361]  ? __pfx_drm_ioctl+0x10/0x10
[   90.692143][ T5361]  __se_sys_ioctl+0xfc/0x170
[   90.694450][ T5361]  do_syscall_64+0xfa/0x3b0
[   90.696932][ T5361]  ? lockdep_hardirqs_on+0x9c/0x150
[   90.699861][ T5361]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   90.702804][ T5361]  ? clear_bhb_loop+0x60/0xb0
[   90.704952][ T5361]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   90.707541][ T5361] RIP: 0033:0x7f3399f8ec29
[   90.709536][ T5361] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   90.717925][ T5361] RSP: 002b:00007f339adbd038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   90.721615][ T5361] RAX: ffffffffffffffda RBX: 00007f339a1d5fa0 RCX: 00007f3399f8ec29
[   90.725149][ T5361] RDX: 0000200000000540 RSI: 00000000c01064c4 RDI: 0000000000000004
[   90.728827][ T5361] RBP: 00007f339a011e41 R08: 0000000000000000 R09: 0000000000000000
[   90.733211][ T5361] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   90.737340][ T5361] R13: 00007f339a1d6038 R14: 00007f339a1d5fa0 R15: 00007ffdc0f74b28
[   90.740448][ T5361]  </TASK>
[   90.742081][ T5361] Kernel Offset: disabled
[   90.743825][ T5361] Rebooting in 86400 seconds..