program:
r0 = syz_open_dev$dri(&(0x7f0000000000), 0x2, 0x2000)
openat$incfs(0xffffffffffffffff, &(0x7f0000000040)='.pending_reads\x00', 0x80000, 0x80)
ioctl$DRM_IOCTL_SYNCOBJ_RESET(r0, 0xc01064c4, &(0x7f00000000c0)={0x0, 0xffffffffffffffd1})

[  108.797331][  T802] us[  105.703729][ T4656] Bluetooth: hci0: command tx timeout
[  105.772068][ T5335] ------------[ cut here ]------------
[  105.774520][ T5335] 1
[  105.774532][ T5335] WARNING: mm/page_alloc.c:5202 at __alloc_frozen_pages_noprof+0x2d1/0x380, CPU#0: syz.0.0/5335
[  105.780432][ T5335] Modules linked in:
[  105.782313][ T5335] CPU: 0 UID: 0 PID: 5335 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) 
[  105.786323][ T5335] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  105.790921][ T5335] RIP: 0010:__alloc_frozen_pages_noprof+0x2d1/0x380
[  105.793948][ T5335] Code: 74 10 4c 89 e7 89 54 24 0c e8 bb db 0d 00 8b 54 24 0c 49 83 3c 24 00 0f 85 a8 fe ff ff e9 a9 fe ff ff c6 05 89 12 f6 0d 01 90 <0f> 0b 90 e9 17 ff ff ff a9 00 00 08 00 48 8b 4c 24 10 4c 8d 44 24
[  105.802642][ T5335] RSP: 0018:ffffc9000f89f940 EFLAGS: 00010246
[  105.805502][ T5335] RAX: ffffc9000f89f900 RBX: 0000000000000016 RCX: 0000000000000000
[  105.808949][ T5335] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffc9000f89f9a8
[  105.812492][ T5335] RBP: ffffc9000f89fa38 R08: ffffc9000f89f9a7 R09: 0000000000000000
[  105.816169][ T5335] R10: ffffc9000f89f980 R11: fffff52001f13f35 R12: 0000000000000000
[  105.820053][ T5335] R13: 1ffff92001f13f2c R14: 0000000000040cc0 R15: dffffc0000000000
[  105.823648][ T5335] FS:  00007feed580a6c0(0000) GS:ffff88808c888000(0000) knlGS:0000000000000000
[  105.827665][ T5335] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  105.830739][ T5335] CR2: 00007feed4c07898 CR3: 0000000040efb000 CR4: 0000000000352ef0
[  105.834508][ T5335] Call Trace:
[  105.836145][ T5335]  <TASK>
[  105.837482][ T5335]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  105.840428][ T5335]  ? __pfx_policy_nodemask+0x10/0x10
[  105.843476][ T5335]  ? __lock_acquire+0x6b5/0x2cf0
[  105.846309][ T5335]  alloc_pages_mpol+0x235/0x490
[  105.848610][ T5335]  ___kmalloc_large_node+0x4e/0x120
[  105.850970][ T5335]  __kmalloc_large_node_noprof+0x18/0x90
[  105.853383][ T5335]  __kmalloc_noprof+0x3e8/0x760
[  105.855680][ T5335]  ? drm_dev_enter+0x49/0x150
[  105.857846][ T5335]  ? drm_syncobj_array_find+0x3a/0x440
[  105.860258][ T5335]  drm_syncobj_array_find+0x3a/0x440
[  105.862647][ T5335]  drm_syncobj_reset_ioctl+0x17b/0x450
[  105.865187][ T5335]  drm_ioctl_kernel+0x2df/0x3b0
[  105.867331][ T5335]  ? __pfx_drm_syncobj_reset_ioctl+0x10/0x10
[  105.870104][ T5335]  ? __pfx_drm_ioctl_kernel+0x10/0x10
[  105.872424][ T5335]  drm_ioctl+0x6ba/0xb80
[  105.874208][ T5335]  ? __pfx_drm_syncobj_reset_ioctl+0x10/0x10
[  105.876678][ T5335]  ? __pfx_drm_ioctl+0x10/0x10
[  105.878596][ T5335]  ? __fget_files+0x2a/0x420
[  105.880685][ T5335]  ? bpf_lsm_file_ioctl+0x9/0x20
[  105.882897][ T5335]  ? __pfx_drm_ioctl+0x10/0x10
[  105.884958][ T5335]  __se_sys_ioctl+0xfc/0x170
[  105.887132][ T5335]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  105.890002][ T5335]  do_syscall_64+0x15f/0xf80
[  105.892107][ T5335]  ? trace_irq_disable+0x3b/0x140
[  105.894924][ T5335]  ? clear_bhb_loop+0x40/0x90
[  105.897131][ T5335]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  105.899728][ T5335] RIP: 0033:0x7feed499cdd9
[  105.901978][ T5335] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  105.910648][ T5335] RSP: 002b:00007feed5809fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  105.914273][ T5335] RAX: ffffffffffffffda RBX: 00007feed4c15fa0 RCX: 00007feed499cdd9
[  105.917747][ T5335] RDX: 00002000000000c0 RSI: 00000000c01064c4 RDI: 0000000000000003
[  105.921153][ T5335] RBP: 00007feed4a32d69 R08: 0000000000000000 R09: 0000000000000000
[  105.924484][ T5335] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  105.927833][ T5335] R13: 00007feed4c16038 R14: 00007feed4c15fa0 R15: 00007ffd8e1cb848
[  105.931480][ T5335]  </TASK>
[  105.932888][ T5335] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  105.936230][ T5335] CPU: 0 UID: 0 PID: 5335 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) 
[  105.940069][ T5335] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  105.944191][ T5335] Call Trace:
[  105.945634][ T5335]  <TASK>
[  105.946879][ T5335]  vpanic+0x56c/0xa60
[  105.948527][ T5335]  ? __pfx__printk+0x10/0x10
[  105.950505][ T5335]  ? __pfx_vpanic+0x10/0x10
[  105.952403][ T5335]  ? is_bpf_text_address+0x292/0x2b0
[  105.954674][ T5335]  ? is_bpf_text_address+0x26/0x2b0
[  105.957003][ T5335]  panic+0xc5/0xd0
[  105.958841][ T5335]  ? __pfx_panic+0x10/0x10
[  105.960873][ T5335]  __warn+0x315/0x4c0
[  105.963067][ T5335]  ? __alloc_frozen_pages_noprof+0x2d1/0x380
[  105.965936][ T5335]  ? __alloc_frozen_pages_noprof+0x2d1/0x380
[  105.968887][ T5335]  __report_bug+0x29a/0x540
[  105.970881][ T5335]  ? __alloc_frozen_pages_noprof+0x2d1/0x380
[  105.973464][ T5335]  ? __pfx___report_bug+0x10/0x10
[  105.975714][ T5335]  ? is_bpf_text_address+0x292/0x2b0
[  105.978101][ T5335]  ? is_bpf_text_address+0x26/0x2b0
[  105.980453][ T5335]  ? kernel_text_address+0xa5/0xe0
[  105.982656][ T5335]  ? __kernel_text_address+0xd/0x30
[  105.984968][ T5335]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  105.987764][ T5335]  ? arch_stack_walk+0xfb/0x150
[  105.990480][ T5335]  ? __alloc_frozen_pages_noprof+0x2d1/0x380
[  105.993308][ T5335]  report_bug+0x16a/0x220
[  105.995440][ T5335]  ? __alloc_frozen_pages_noprof+0x2d1/0x380
[  105.998155][ T5335]  ? __alloc_frozen_pages_noprof+0x2d3/0x380
[  106.000962][ T5335]  handle_bug+0x9c/0x200
[  106.002879][ T5335]  exc_invalid_op+0x1a/0x50
[  106.004945][ T5335]  asm_exc_invalid_op+0x1a/0x20
[  106.006996][ T5335] RIP: 0010:__alloc_frozen_pages_noprof+0x2d1/0x380
[  106.009714][ T5335] Code: 74 10 4c 89 e7 89 54 24 0c e8 bb db 0d 00 8b 54 24 0c 49 83 3c 24 00 0f 85 a8 fe ff ff e9 a9 fe ff ff c6 05 89 12 f6 0d 01 90 <0f> 0b 90 e9 17 ff ff ff a9 00 00 08 00 48 8b 4c 24 10 4c 8d 44 24
[  106.017499][ T5335] RSP: 0018:ffffc9000f89f940 EFLAGS: 00010246
[  106.020303][ T5335] RAX: ffffc9000f89f900 RBX: 0000000000000016 RCX: 0000000000000000
[  106.023996][ T5335] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffc9000f89f9a8
[  106.027767][ T5335] RBP: ffffc9000f89fa38 R08: ffffc9000f89f9a7 R09: 0000000000000000
[  106.031431][ T5335] R10: ffffc9000f89f980 R11: fffff52001f13f35 R12: 0000000000000000
[  106.035151][ T5335] R13: 1ffff92001f13f2c R14: 0000000000040cc0 R15: dffffc0000000000
[  106.038937][ T5335]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  106.041879][ T5335]  ? __pfx_policy_nodemask+0x10/0x10
[  106.044375][ T5335]  ? __lock_acquire+0x6b5/0x2cf0
[  106.046704][ T5335]  alloc_pages_mpol+0x235/0x490
[  106.048983][ T5335]  ___kmalloc_large_node+0x4e/0x120
[  106.051436][ T5335]  __kmalloc_large_node_noprof+0x18/0x90
[  106.054042][ T5335]  __kmalloc_noprof+0x3e8/0x760
[  106.056261][ T5335]  ? drm_dev_enter+0x49/0x150
[  106.058577][ T5335]  ? drm_syncobj_array_find+0x3a/0x440
[  106.061121][ T5335]  drm_syncobj_array_find+0x3a/0x440
[  106.063586][ T5335]  drm_syncobj_reset_ioctl+0x17b/0x450
[  106.066153][ T5335]  drm_ioctl_kernel+0x2df/0x3b0
[  106.068467][ T5335]  ? __pfx_drm_syncobj_reset_ioctl+0x10/0x10
[  106.071193][ T5335]  ? __pfx_drm_ioctl_kernel+0x10/0x10
[  106.073745][ T5335]  drm_ioctl+0x6ba/0xb80
[  106.075840][ T5335]  ? __pfx_drm_syncobj_reset_ioctl+0x10/0x10
[  106.078493][ T5335]  ? __pfx_drm_ioctl+0x10/0x10
[  106.080680][ T5335]  ? __fget_files+0x2a/0x420
[  106.082906][ T5335]  ? bpf_lsm_file_ioctl+0x9/0x20
[  106.085248][ T5335]  ? __pfx_drm_ioctl+0x10/0x10
[  106.087361][ T5335]  __se_sys_ioctl+0xfc/0x170
[  106.089426][ T5335]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  106.092246][ T5335]  do_syscall_64+0x15f/0xf80
[  106.094368][ T5335]  ? trace_irq_disable+0x3b/0x140
[  106.096557][ T5335]  ? clear_bhb_loop+0x40/0x90
[  106.098667][ T5335]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  106.101328][ T5335] RIP: 0033:0x7feed499cdd9
[  106.103392][ T5335] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  106.111942][ T5335] RSP: 002b:00007feed5809fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  106.115736][ T5335] RAX: ffffffffffffffda RBX: 00007feed4c15fa0 RCX: 00007feed499cdd9
[  106.119278][ T5335] RDX: 00002000000000c0 RSI: 00000000c01064c4 RDI: 0000000000000003
[  106.122951][ T5335] RBP: 00007feed4a32d69 R08: 0000000000000000 R09: 0000000000000000
[  106.126606][ T5335] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  106.130200][ T5335] R13: 00007feed4c16038 R14: 00007feed4c15fa0 R15: 00007ffd8e1cb848
[  106.133740][ T5335]  </TASK>
[  106.135517][ T5335] Kernel Offset: disabled
[  106.137516][ T5335] Rebooting in 86400 seconds..