program:
r0 = syz_open_dev$dri(&(0x7f0000000340), 0x2, 0xc8d03)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r0, 0xc03064ca, &(0x7f0000000040)={0x0, 0x0, 0x2001, 0xffffffffffffff30})

[   85.237187][   T45] Bluetooth: hci0: command tx timeout
[   85.331309][ T5363] ------------[ cut here ]------------
[   85.333582][ T5363] WARNING: CPU: 0 PID: 5363 at mm/page_alloc.c:5124 __alloc_frozen_pages_noprof+0x2c8/0x370
[   85.342836][ T5363] Modules linked in:
[   85.344508][ T5363] CPU: 0 UID: 0 PID: 5363 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) 
[   85.349204][ T5363] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   85.354123][ T5363] RIP: 0010:__alloc_frozen_pages_noprof+0x2c8/0x370
[   85.357245][ T5363] Code: 74 10 4c 89 e7 89 54 24 0c e8 64 1e 0d 00 8b 54 24 0c 49 83 3c 24 00 0f 85 a5 fe ff ff e9 a6 fe ff ff c6 05 ea 12 96 0d 01 90 <0f> 0b 90 e9 18 ff ff ff a9 00 00 08 00 48 8b 4c 24 10 4c 8d 44 24
[   85.365621][ T5363] RSP: 0018:ffffc9000d3cf8e0 EFLAGS: 00010246
[   85.369148][ T5363] RAX: ffffc9000d3cf900 RBX: 0000000000000016 RCX: 0000000000000000
[   85.373163][ T5363] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffc9000d3cf948
[   85.377042][ T5363] RBP: ffffc9000d3cf9c8 R08: ffffc9000d3cf947 R09: 0000000000000000
[   85.380740][ T5363] R10: ffffc9000d3cf920 R11: fffff52001a79f29 R12: 0000000000000000
[   85.385365][ T5363] R13: 1ffff92001a79f20 R14: 0000000000040cc0 R15: dffffc0000000000
[   85.389126][ T5363] FS:  00007f0f02f8c6c0(0000) GS:ffff88808d009000(0000) knlGS:0000000000000000
[   85.393092][ T5363] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   85.396228][ T5363] CR2: 00007f0f023cb368 CR3: 00000000432b0000 CR4: 0000000000352ef0
[   85.401053][ T5363] Call Trace:
[   85.402619][ T5363]  <TASK>
[   85.403892][ T5363]  ? stack_depot_save_flags+0x40/0x860
[   85.406731][ T5363]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[   85.409856][ T5363]  ? kasan_save_track+0x4f/0x80
[   85.412330][ T5363]  ? kasan_save_track+0x3e/0x80
[   85.414423][ T5363]  ? policy_nodemask+0x27c/0x720
[   85.416563][ T5363]  ? do_syscall_64+0xfa/0x3b0
[   85.419193][ T5363]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   85.422387][ T5363]  alloc_pages_mpol+0x232/0x4a0
[   85.425240][ T5363]  ___kmalloc_large_node+0x5f/0x1b0
[   85.428166][ T5363]  __kmalloc_large_node_noprof+0x18/0x90
[   85.430675][ T5363]  __kmalloc_noprof+0x36f/0x4f0
[   85.432719][ T5363]  ? drm_syncobj_array_find+0x3a/0x450
[   85.435188][ T5363]  drm_syncobj_array_find+0x3a/0x450
[   85.438002][ T5363]  drm_syncobj_timeline_wait_ioctl+0x1b7/0x560
[   85.441067][ T5363]  ? __pfx_drm_syncobj_timeline_wait_ioctl+0x10/0x10
[   85.443785][ T5363]  drm_ioctl_kernel+0x2cf/0x390
[   85.445767][ T5363]  ? __pfx_drm_syncobj_timeline_wait_ioctl+0x10/0x10
[   85.448290][ T5363]  ? __pfx_drm_ioctl_kernel+0x10/0x10
[   85.450561][ T5363]  drm_ioctl+0x67f/0xb10
[   85.452727][ T5363]  ? __pfx_drm_syncobj_timeline_wait_ioctl+0x10/0x10
[   85.456163][ T5363]  ? __pfx_drm_ioctl+0x10/0x10
[   85.458537][ T5363]  ? __fget_files+0x2a/0x420
[   85.460647][ T5363]  ? bpf_lsm_file_ioctl+0x9/0x20
[   85.462852][ T5363]  ? __pfx_drm_ioctl+0x10/0x10
[   85.465121][ T5363]  __se_sys_ioctl+0xfc/0x170
[   85.467287][ T5363]  do_syscall_64+0xfa/0x3b0
[   85.469215][ T5363]  ? lockdep_hardirqs_on+0x9c/0x150
[   85.471642][ T5363]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   85.474361][ T5363]  ? clear_bhb_loop+0x60/0xb0
[   85.476669][ T5363]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   85.479534][ T5363] RIP: 0033:0x7f0f0218eba9
[   85.481709][ T5363] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   85.490476][ T5363] RSP: 002b:00007f0f02f8c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   85.494463][ T5363] RAX: ffffffffffffffda RBX: 00007f0f023d5fa0 RCX: 00007f0f0218eba9
[   85.499297][ T5363] RDX: 0000200000000040 RSI: 00000000c03064ca RDI: 0000000000000003
[   85.502577][ T5363] RBP: 00007f0f02211e19 R08: 0000000000000000 R09: 0000000000000000
[   85.506207][ T5363] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   85.509731][ T5363] R13: 00007f0f023d6038 R14: 00007f0f023d5fa0 R15: 00007ffc5a934cd8
[   85.513215][ T5363]  </TASK>
[   85.514687][ T5363] Kernel panic - not syncing: kernel: panic_on_warn set ...
[   85.517988][ T5363] CPU: 0 UID: 0 PID: 5363 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) 
[   85.521879][ T5363] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   85.527506][ T5363] Call Trace:
[   85.529333][ T5363]  <TASK>
[   85.530949][ T5363]  dump_stack_lvl+0x99/0x250
[   85.533132][ T5363]  ? __asan_memcpy+0x40/0x70
[   85.535199][ T5363]  ? __pfx_dump_stack_lvl+0x10/0x10
[   85.537807][ T5363]  ? __pfx__printk+0x10/0x10
[   85.539897][ T5363]  vpanic+0x281/0x750
[   85.541976][ T5363]  ? __pfx__printk+0x10/0x10
[   85.544500][ T5363]  ? __pfx_vpanic+0x10/0x10
[   85.547008][ T5363]  ? is_bpf_text_address+0x26/0x2b0
[   85.549982][ T5363]  panic+0xb9/0xc0
[   85.552116][ T5363]  ? __pfx_panic+0x10/0x10
[   85.554100][ T5363]  __warn+0x31b/0x4b0
[   85.556069][ T5363]  ? __alloc_frozen_pages_noprof+0x2c8/0x370
[   85.559365][ T5363]  ? __alloc_frozen_pages_noprof+0x2c8/0x370
[   85.562072][ T5363]  report_bug+0x2be/0x4f0
[   85.564067][ T5363]  ? __alloc_frozen_pages_noprof+0x2c8/0x370
[   85.567385][ T5363]  ? __alloc_frozen_pages_noprof+0x2c8/0x370
[   85.571182][ T5363]  ? __alloc_frozen_pages_noprof+0x2ca/0x370
[   85.574433][ T5363]  handle_bug+0x84/0x160
[   85.576215][ T5363]  exc_invalid_op+0x1a/0x50
[   85.578495][ T5363]  asm_exc_invalid_op+0x1a/0x20
[   85.580553][ T5363] RIP: 0010:__alloc_frozen_pages_noprof+0x2c8/0x370
[   85.583617][ T5363] Code: 74 10 4c 89 e7 89 54 24 0c e8 64 1e 0d 00 8b 54 24 0c 49 83 3c 24 00 0f 85 a5 fe ff ff e9 a6 fe ff ff c6 05 ea 12 96 0d 01 90 <0f> 0b 90 e9 18 ff ff ff a9 00 00 08 00 48 8b 4c 24 10 4c 8d 44 24
[   85.593584][ T5363] RSP: 0018:ffffc9000d3cf8e0 EFLAGS: 00010246
[   85.596325][ T5363] RAX: ffffc9000d3cf900 RBX: 0000000000000016 RCX: 0000000000000000
[   85.599682][ T5363] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffc9000d3cf948
[   85.603222][ T5363] RBP: ffffc9000d3cf9c8 R08: ffffc9000d3cf947 R09: 0000000000000000
[   85.607138][ T5363] R10: ffffc9000d3cf920 R11: fffff52001a79f29 R12: 0000000000000000
[   85.611445][ T5363] R13: 1ffff92001a79f20 R14: 0000000000040cc0 R15: dffffc0000000000
[   85.615058][ T5363]  ? stack_depot_save_flags+0x40/0x860
[   85.617514][ T5363]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[   85.620345][ T5363]  ? kasan_save_track+0x4f/0x80
[   85.622390][ T5363]  ? kasan_save_track+0x3e/0x80
[   85.624665][ T5363]  ? policy_nodemask+0x27c/0x720
[   85.628132][ T5363]  ? do_syscall_64+0xfa/0x3b0
[   85.630670][ T5363]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   85.633968][ T5363]  alloc_pages_mpol+0x232/0x4a0
[   85.636242][ T5363]  ___kmalloc_large_node+0x5f/0x1b0
[   85.638417][ T5363]  __kmalloc_large_node_noprof+0x18/0x90
[   85.641416][ T5363]  __kmalloc_noprof+0x36f/0x4f0
[   85.644041][ T5363]  ? drm_syncobj_array_find+0x3a/0x450
[   85.646629][ T5363]  drm_syncobj_array_find+0x3a/0x450
[   85.648939][ T5363]  drm_syncobj_timeline_wait_ioctl+0x1b7/0x560
[   85.651578][ T5363]  ? __pfx_drm_syncobj_timeline_wait_ioctl+0x10/0x10
[   85.654746][ T5363]  drm_ioctl_kernel+0x2cf/0x390
[   85.657031][ T5363]  ? __pfx_drm_syncobj_timeline_wait_ioctl+0x10/0x10
[   85.660440][ T5363]  ? __pfx_drm_ioctl_kernel+0x10/0x10
[   85.663268][ T5363]  drm_ioctl+0x67f/0xb10
[   85.665181][ T5363]  ? __pfx_drm_syncobj_timeline_wait_ioctl+0x10/0x10
[   85.667942][ T5363]  ? __pfx_drm_ioctl+0x10/0x10
[   85.669957][ T5363]  ? __fget_files+0x2a/0x420
[   85.672268][ T5363]  ? bpf_lsm_file_ioctl+0x9/0x20
[   85.674722][ T5363]  ? __pfx_drm_ioctl+0x10/0x10
[   85.676975][ T5363]  __se_sys_ioctl+0xfc/0x170
[   85.679032][ T5363]  do_syscall_64+0xfa/0x3b0
[   85.681012][ T5363]  ? lockdep_hardirqs_on+0x9c/0x150
[   85.683244][ T5363]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   85.685774][ T5363]  ? clear_bhb_loop+0x60/0xb0
[   85.688390][ T5363]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   85.692094][ T5363] RIP: 0033:0x7f0f0218eba9
[   85.694155][ T5363] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   85.702664][ T5363] RSP: 002b:00007f0f02f8c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   85.706831][ T5363] RAX: ffffffffffffffda RBX: 00007f0f023d5fa0 RCX: 00007f0f0218eba9
[   85.710190][ T5363] RDX: 0000200000000040 RSI: 00000000c03064ca RDI: 0000000000000003
[   85.713756][ T5363] RBP: 00007f0f02211e19 R08: 0000000000000000 R09: 0000000000000000
[   85.717703][ T5363] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   85.721708][ T5363] R13: 00007f0f023d6038 R14: 00007f0f023d5fa0 R15: 00007ffc5a934cd8
[   85.725526][ T5363]  </TASK>
[   85.727215][ T5363] Kernel Offset: disabled
[   85.729122][ T5363] Rebooting in 86400 seconds..