program:
r0 = syz_open_dev$dri(&(0x7f0000000280), 0x200, 0x102)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r0, 0xc04064a0, &(0x7f00000001c0)={0x0, &(0x7f00000000c0)=[<r1=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_GETCRTC(r0, 0xc06864a1, &(0x7f00000003c0)={0x0, 0x0, r1, <r2=>0x0})
ioctl$DRM_IOCTL_MODE_GETFB2(r0, 0xc06864ce, &(0x7f00000004c0)={r2, 0x0, 0x4, 0x0, 0x2, [], [0x0, 0x0, 0x0, 0x10000], [0x0, 0x0, 0xfffffffc], [0x1]})
ioctl$DRM_IOCTL_MODE_CURSOR(r0, 0xc01c64a3, &(0x7f0000000100)={0x1, r1, 0x3, 0xfffffffc, 0x326, 0x89e, 0x1}) (fail_nth: 13)

[   89.805751][ T4652] Bluetooth: hci0: command tx timeout
[   89.924245][ T5329] FAULT_INJECTION: forcing a failure.
[   89.924245][ T5329] name failslab, interval 1, probability 0, space 0, times 1
[   89.953624][ T5329] CPU: 0 UID: 0 PID: 5329 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) 
[   89.953644][ T5329] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[   89.953649][ T5329] Call Trace:
[   89.953653][ T5329]  <TASK>
[   89.953658][ T5329]  dump_stack_lvl+0xe8/0x150
[   89.953751][ T5329]  should_fail_ex+0x412/0x560
[   89.953794][ T5329]  should_failslab+0xa8/0x100
[   89.953810][ T5329]  __kmalloc_noprof+0xe8/0x760
[   89.953821][ T5329]  ? dma_resv_reserve_fences+0x225/0x7e0
[   89.953835][ T5329]  dma_resv_reserve_fences+0x225/0x7e0
[   89.953850][ T5329]  ? ww_mutex_lock_interruptible+0x3f/0x1c0
[   89.953899][ T5329]  virtio_gpu_array_lock_resv+0x20e/0x470
[   89.953918][ T5329]  virtio_gpu_cursor_plane_update+0x270/0x930
[   89.953937][ T5329]  drm_atomic_helper_commit_planes+0x60f/0xec0
[   89.953959][ T5329]  drm_atomic_helper_commit_tail+0x5f/0x500
[   89.953975][ T5329]  ? ktime_get+0x1f5/0x220
[   89.953991][ T5329]  commit_tail+0x29a/0x3a0
[   89.954008][ T5329]  drm_atomic_helper_commit+0xa6e/0xb10
[   89.954025][ T5329]  ? __pfx_drm_atomic_helper_commit+0x10/0x10
[   89.954037][ T5329]  drm_atomic_commit+0x246/0x2b0
[   89.954050][ T5329]  ? __pfx_drm_atomic_commit+0x10/0x10
[   89.954058][ T5329]  ? drm_atomic_get_crtc_state+0x3fb/0x610
[   89.954071][ T5329]  ? __pfx___drm_printfn_info+0x10/0x10
[   89.954086][ T5329]  ? drm_mode_object_get+0xcf/0x140
[   89.954099][ T5329]  ? drm_atomic_set_fb_for_plane+0x1f5/0x280
[   89.954112][ T5329]  drm_atomic_helper_update_plane+0x248/0x3b0
[   89.954129][ T5329]  drm_mode_cursor_common+0xec3/0x1650
[   89.954185][ T5329]  ? __pfx_drm_mode_cursor_common+0x10/0x10
[   89.954194][ T5329]  ? kasan_save_free_info+0x46/0x50
[   89.954224][ T5329]  ? __lock_acquire+0x6b5/0x2cf0
[   89.954235][ T5329]  ? drm_mode_cursor_ioctl+0xbb/0x130
[   89.954247][ T5329]  drm_mode_cursor_ioctl+0xd4/0x130
[   89.954259][ T5329]  ? __pfx_drm_mode_cursor_ioctl+0x10/0x10
[   89.954271][ T5329]  ? do_raw_spin_unlock+0x4d/0x210
[   89.954286][ T5329]  ? _raw_spin_unlock+0x28/0x50
[   89.954296][ T5329]  ? drm_is_current_master+0x19f/0x200
[   89.954309][ T5329]  drm_ioctl_kernel+0x2df/0x3b0
[   89.954329][ T5329]  ? __pfx_drm_mode_cursor_ioctl+0x10/0x10
[   89.954338][ T5329]  ? __pfx_drm_ioctl_kernel+0x10/0x10
[   89.954357][ T5329]  drm_ioctl+0x6ba/0xb80
[   89.954375][ T5329]  ? __pfx_drm_mode_cursor_ioctl+0x10/0x10
[   89.954387][ T5329]  ? __pfx_drm_ioctl+0x10/0x10
[   89.954408][ T5329]  ? __fget_files+0x2a/0x420
[   89.954422][ T5329]  ? bpf_lsm_file_ioctl+0x9/0x20
[   89.954435][ T5329]  ? __pfx_drm_ioctl+0x10/0x10
[   89.954451][ T5329]  __se_sys_ioctl+0xfc/0x170
[   89.954464][ T5329]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   89.954484][ T5329]  do_syscall_64+0x15f/0xf80
[   89.954498][ T5329]  ? trace_irq_disable+0x3b/0x140
[   89.954514][ T5329]  ? clear_bhb_loop+0x40/0x90
[   89.954529][ T5329]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   89.954541][ T5329] RIP: 0033:0x7f8271b9cdd9
[   89.954554][ T5329] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   89.954563][ T5329] RSP: 002b:00007f826dff4fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   89.954575][ T5329] RAX: ffffffffffffffda RBX: 00007f8271e15fa0 RCX: 00007f8271b9cdd9
[   89.954583][ T5329] RDX: 0000200000000100 RSI: 00000000c01c64a3 RDI: 0000000000000003
[   89.954589][ T5329] RBP: 00007f826dff5050 R08: 0000000000000000 R09: 0000000000000000
[   89.954595][ T5329] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   89.954602][ T5329] R13: 00007f8271e16038 R14: 00007f8271e15fa0 R15: 00007ffccdd94e68
[   89.954622][ T5329]  </TASK>
[   90.113953][ T5329] ------------[ cut here ]------------
[   90.117486][ T5329] debug_locks && !(lock_is_held(&(&(obj)->lock.base)->dep_map) != 0)
[   90.117502][ T5329] WARNING: drivers/dma-buf/dma-resv.c:296 at dma_resv_add_fence+0x707/0x800, CPU#0: syz.0.0/5329
[   90.124494][ T5329] Modules linked in:
[   90.127051][ T5329] CPU: 0 UID: 0 PID: 5329 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) 
[   90.130575][ T5329] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[   90.134364][ T5329] RIP: 0010:dma_resv_add_fence+0x707/0x800
[   90.137999][ T5329] Code: e8 8e 05 7b fb e9 d8 fa ff ff e8 44 db 9e fb 90 0f 0b 90 e9 41 fa ff ff e8 36 db 9e fb be 02 00 00 00 eb 18 e8 2a db 9e fb 90 <0f> 0b 90 e9 da f9 ff ff e8 1c db 9e fb be 01 00 00 00 48 89 df e8
[   90.146487][ T5329] RSP: 0018:ffffc9000e74f0f0 EFLAGS: 00010293
[   90.149244][ T5329] RAX: ffffffff8626f3b6 RBX: 0000000000000000 RCX: ffff888000c94a00
[   90.153232][ T5329] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   90.157337][ T5329] RBP: dffffc0000000000 R08: ffff88803894b873 R09: 1ffff1100712970e
[   90.160918][ T5329] R10: dffffc0000000000 R11: ffffed100712970f R12: ffff88803894b800
[   90.164401][ T5329] R13: 0000000000000001 R14: 0000000000000002 R15: 1ffff11007129613
[   90.168123][ T5329] FS:  00007f826dff56c0(0000) GS:ffff88808c882000(0000) knlGS:0000000000000000
[   90.172007][ T5329] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   90.174873][ T5329] CR2: 00005606fb22e660 CR3: 00000000128d5000 CR4: 0000000000352ef0
[   90.178794][ T5329] Call Trace:
[   90.180327][ T5329]  <TASK>
[   90.181714][ T5329]  virtio_gpu_array_add_fence+0x108/0x1c0
[   90.183884][ T5329]  virtio_gpu_queue_fenced_ctrl_buffer+0x975/0x1090
[   90.186806][ T5329]  ? __pfx_virtio_gpu_queue_fenced_ctrl_buffer+0x10/0x10
[   90.189839][ T5329]  ? rcu_is_watching+0x15/0xb0
[   90.191936][ T5329]  ? virtio_gpu_cmd_transfer_to_host_2d+0x220/0x5d0
[   90.194956][ T5329]  ? virtio_gpu_cmd_transfer_to_host_2d+0x2f3/0x5d0
[   90.197884][ T5329]  virtio_gpu_cursor_plane_update+0x31c/0x930
[   90.200450][ T5329]  drm_atomic_helper_commit_planes+0x60f/0xec0
[   90.203132][ T5329]  drm_atomic_helper_commit_tail+0x5f/0x500
[   90.205748][ T5329]  ? ktime_get+0x1f5/0x220
[   90.207711][ T5329]  commit_tail+0x29a/0x3a0
[   90.209629][ T5329]  drm_atomic_helper_commit+0xa6e/0xb10
[   90.211838][ T5329]  ? __pfx_drm_atomic_helper_commit+0x10/0x10
[   90.214100][ T5329]  drm_atomic_commit+0x246/0x2b0
[   90.217515][ T5329]  ? __pfx_drm_atomic_commit+0x10/0x10
[   90.220006][ T5329]  ? drm_atomic_get_crtc_state+0x3fb/0x610
[   90.222285][ T5329]  ? __pfx___drm_printfn_info+0x10/0x10
[   90.224337][ T5329]  ? drm_mode_object_get+0xcf/0x140
[   90.226582][ T5329]  ? drm_atomic_set_fb_for_plane+0x1f5/0x280
[   90.229310][ T5329]  drm_atomic_helper_update_plane+0x248/0x3b0
[   90.231954][ T5329]  drm_mode_cursor_common+0xec3/0x1650
[   90.234401][ T5329]  ? __pfx_drm_mode_cursor_common+0x10/0x10
[   90.237266][ T5329]  ? kasan_save_free_info+0x46/0x50
[   90.239626][ T5329]  ? __lock_acquire+0x6b5/0x2cf0
[   90.241904][ T5329]  ? drm_mode_cursor_ioctl+0xbb/0x130
[   90.244339][ T5329]  drm_mode_cursor_ioctl+0xd4/0x130
[   90.247349][ T5329]  ? __pfx_drm_mode_cursor_ioctl+0x10/0x10
[   90.250640][ T5329]  ? do_raw_spin_unlock+0x4d/0x210
[   90.253441][ T5329]  ? _raw_spin_unlock+0x28/0x50
[   90.256870][ T5329]  ? drm_is_current_master+0x19f/0x200
[   90.259837][ T5329]  drm_ioctl_kernel+0x2df/0x3b0
[   90.262545][ T5329]  ? __pfx_drm_mode_cursor_ioctl+0x10/0x10
[   90.265122][ T5329]  ? __pfx_drm_ioctl_kernel+0x10/0x10
[   90.267586][ T5329]  drm_ioctl+0x6ba/0xb80
[   90.269494][ T5329]  ? __pfx_drm_mode_cursor_ioctl+0x10/0x10
[   90.272061][ T5329]  ? __pfx_drm_ioctl+0x10/0x10
[   90.274249][ T5329]  ? __fget_files+0x2a/0x420
[   90.276417][ T5329]  ? bpf_lsm_file_ioctl+0x9/0x20
[   90.278674][ T5329]  ? __pfx_drm_ioctl+0x10/0x10
[   90.280796][ T5329]  __se_sys_ioctl+0xfc/0x170
[   90.282845][ T5329]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   90.285546][ T5329]  do_syscall_64+0x15f/0xf80
[   90.287710][ T5329]  ? trace_irq_disable+0x3b/0x140
[   90.289759][ T5329]  ? clear_bhb_loop+0x40/0x90
[   90.291894][ T5329]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   90.294550][ T5329] RIP: 0033:0x7f8271b9cdd9
[   90.296975][ T5329] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   90.305115][ T5329] RSP: 002b:00007f826dff4fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   90.308954][ T5329] RAX: ffffffffffffffda RBX: 00007f8271e15fa0 RCX: 00007f8271b9cdd9
[   90.312578][ T5329] RDX: 0000200000000100 RSI: 00000000c01c64a3 RDI: 0000000000000003
[   90.315673][ T5329] RBP: 00007f826dff5050 R08: 0000000000000000 R09: 0000000000000000
[   90.319211][ T5329] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   90.322565][ T5329] R13: 00007f8271e16038 R14: 00007f8271e15fa0 R15: 00007ffccdd94e68
[   90.325962][ T5329]  </TASK>
[   90.327762][ T5329] Kernel panic - not syncing: kernel: panic_on_warn set ...
[   90.330801][ T5329] CPU: 0 UID: 0 PID: 5329 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) 
[   90.334874][ T5329] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[   90.339209][ T5329] Call Trace:
[   90.340788][ T5329]  <TASK>
[   90.342136][ T5329]  vpanic+0x56c/0xa60
[   90.343949][ T5329]  ? __pfx__printk+0x10/0x10
[   90.346101][ T5329]  ? __pfx_vpanic+0x10/0x10
[   90.348099][ T5329]  ? is_bpf_text_address+0x292/0x2b0
[   90.350412][ T5329]  ? is_bpf_text_address+0x26/0x2b0
[   90.352797][ T5329]  panic+0xc5/0xd0
[   90.354545][ T5329]  ? __pfx_panic+0x10/0x10
[   90.356626][ T5329]  __warn+0x315/0x4c0
[   90.358472][ T5329]  ? dma_resv_add_fence+0x707/0x800
[   90.360814][ T5329]  ? dma_resv_add_fence+0x707/0x800
[   90.363191][ T5329]  __report_bug+0x29a/0x540
[   90.365850][ T5329]  ? dma_resv_add_fence+0x707/0x800
[   90.368482][ T5329]  ? __pfx___report_bug+0x10/0x10
[   90.370800][ T5329]  ? check_path+0x21/0x40
[   90.372741][ T5329]  ? check_noncircular+0xda/0x150
[   90.374994][ T5329]  ? add_lock_to_list+0xc7/0x100
[   90.377159][ T5329]  ? lockdep_unlock+0x5d/0xd0
[   90.378960][ T5329]  ? __lock_acquire+0x146e/0x2cf0
[   90.380964][ T5329]  ? dma_resv_add_fence+0x707/0x800
[   90.383039][ T5329]  report_bug+0x16a/0x220
[   90.384957][ T5329]  ? dma_resv_add_fence+0x707/0x800
[   90.387178][ T5329]  ? dma_resv_add_fence+0x709/0x800
[   90.389517][ T5329]  handle_bug+0x9c/0x200
[   90.391405][ T5329]  exc_invalid_op+0x1a/0x50
[   90.393465][ T5329]  asm_exc_invalid_op+0x1a/0x20
[   90.395768][ T5329] RIP: 0010:dma_resv_add_fence+0x707/0x800
[   90.398364][ T5329] Code: e8 8e 05 7b fb e9 d8 fa ff ff e8 44 db 9e fb 90 0f 0b 90 e9 41 fa ff ff e8 36 db 9e fb be 02 00 00 00 eb 18 e8 2a db 9e fb 90 <0f> 0b 90 e9 da f9 ff ff e8 1c db 9e fb be 01 00 00 00 48 89 df e8
[   90.407073][ T5329] RSP: 0018:ffffc9000e74f0f0 EFLAGS: 00010293
[   90.409770][ T5329] RAX: ffffffff8626f3b6 RBX: 0000000000000000 RCX: ffff888000c94a00
[   90.413215][ T5329] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   90.416659][ T5329] RBP: dffffc0000000000 R08: ffff88803894b873 R09: 1ffff1100712970e
[   90.420076][ T5329] R10: dffffc0000000000 R11: ffffed100712970f R12: ffff88803894b800
[   90.423515][ T5329] R13: 0000000000000001 R14: 0000000000000002 R15: 1ffff11007129613
[   90.427177][ T5329]  ? dma_resv_add_fence+0x706/0x800
[   90.429545][ T5329]  virtio_gpu_array_add_fence+0x108/0x1c0
[   90.432077][ T5329]  virtio_gpu_queue_fenced_ctrl_buffer+0x975/0x1090
[   90.435023][ T5329]  ? __pfx_virtio_gpu_queue_fenced_ctrl_buffer+0x10/0x10
[   90.438282][ T5329]  ? rcu_is_watching+0x15/0xb0
[   90.440334][ T5329]  ? virtio_gpu_cmd_transfer_to_host_2d+0x220/0x5d0
[   90.443411][ T5329]  ? virtio_gpu_cmd_transfer_to_host_2d+0x2f3/0x5d0
[   90.446440][ T5329]  virtio_gpu_cursor_plane_update+0x31c/0x930
[   90.448725][ T5329]  drm_atomic_helper_commit_planes+0x60f/0xec0
[   90.451171][ T5329]  drm_atomic_helper_commit_tail+0x5f/0x500
[   90.453538][ T5329]  ? ktime_get+0x1f5/0x220
[   90.455401][ T5329]  commit_tail+0x29a/0x3a0
[   90.457221][ T5329]  drm_atomic_helper_commit+0xa6e/0xb10
[   90.459438][ T5329]  ? __pfx_drm_atomic_helper_commit+0x10/0x10
[   90.461795][ T5329]  drm_atomic_commit+0x246/0x2b0
[   90.463718][ T5329]  ? __pfx_drm_atomic_commit+0x10/0x10
[   90.465953][ T5329]  ? drm_atomic_get_crtc_state+0x3fb/0x610
[   90.468428][ T5329]  ? __pfx___drm_printfn_info+0x10/0x10
[   90.470526][ T5329]  ? drm_mode_object_get+0xcf/0x140
[   90.472578][ T5329]  ? drm_atomic_set_fb_for_plane+0x1f5/0x280
[   90.475115][ T5329]  drm_atomic_helper_update_plane+0x248/0x3b0
[   90.477590][ T5329]  drm_mode_cursor_common+0xec3/0x1650
[   90.479691][ T5329]  ? __pfx_drm_mode_cursor_common+0x10/0x10
[   90.481989][ T5329]  ? kasan_save_free_info+0x46/0x50
[   90.484210][ T5329]  ? __lock_acquire+0x6b5/0x2cf0
[   90.486497][ T5329]  ? drm_mode_cursor_ioctl+0xbb/0x130
[   90.488950][ T5329]  drm_mode_cursor_ioctl+0xd4/0x130
[   90.491215][ T5329]  ? __pfx_drm_mode_cursor_ioctl+0x10/0x10
[   90.493756][ T5329]  ? do_raw_spin_unlock+0x4d/0x210
[   90.495646][ T5329]  ? _raw_spin_unlock+0x28/0x50
[   90.497511][ T5329]  ? drm_is_current_master+0x19f/0x200
[   90.499878][ T5329]  drm_ioctl_kernel+0x2df/0x3b0
[   90.502065][ T5329]  ? __pfx_drm_mode_cursor_ioctl+0x10/0x10
[   90.504367][ T5329]  ? __pfx_drm_ioctl_kernel+0x10/0x10
[   90.506618][ T5329]  drm_ioctl+0x6ba/0xb80
[   90.508412][ T5329]  ? __pfx_drm_mode_cursor_ioctl+0x10/0x10
[   90.510857][ T5329]  ? __pfx_drm_ioctl+0x10/0x10
[   90.512816][ T5329]  ? __fget_files+0x2a/0x420
[   90.514453][ T5329]  ? bpf_lsm_file_ioctl+0x9/0x20
[   90.516363][ T5329]  ? __pfx_drm_ioctl+0x10/0x10
[   90.518112][ T5329]  __se_sys_ioctl+0xfc/0x170
[   90.519881][ T5329]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   90.522204][ T5329]  do_syscall_64+0x15f/0xf80
[   90.523979][ T5329]  ? trace_irq_disable+0x3b/0x140
[   90.525978][ T5329]  ? clear_bhb_loop+0x40/0x90
[   90.527773][ T5329]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   90.529948][ T5329] RIP: 0033:0x7f8271b9cdd9
[   90.531853][ T5329] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   90.539269][ T5329] RSP: 002b:00007f826dff4fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   90.542515][ T5329] RAX: ffffffffffffffda RBX: 00007f8271e15fa0 RCX: 00007f8271b9cdd9
[   90.545749][ T5329] RDX: 0000200000000100 RSI: 00000000c01c64a3 RDI: 0000000000000003
[   90.548821][ T5329] RBP: 00007f826dff5050 R08: 0000000000000000 R09: 0000000000000000
[   90.552004][ T5329] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   90.555262][ T5329] R13: 00007f8271e16038 R14: 00007f8271e15fa0 R15: 00007ffccdd94e68
[   90.558192][ T5329]  </TASK>
[   90.559726][ T5329] Kernel Offset: disabled
[   90.561614][ T5329] Rebooting in 86400 seconds..