program:
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x42, 0x1, 0x0, 0x0, 0x0, 0xf0, 0x82, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7b, 0x1, @perf_config_ext={0x407fff, 0xaea}, 0x14345, 0x2e, 0xfffffbff, 0x3, 0x2, 0x0, 0x6, 0x0, 0x0, 0x0, 0xa9e6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9)
pause()
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f00000005c0)='./cgroup.net/syz0\x00', 0x1ff) (fail_nth: 23)

[   68.398353][ T5321] FAULT_INJECTION: forcing a failure.
[   68.398353][ T5321] name failslab, interval 1, probability 0, space 0, times 1
[   68.405442][ T5321] CPU: 0 UID: 0 PID: 5321 Comm: syz.0.0 Not tainted 6.15.0-syzkaller-12141-gec7714e49479 #0 PREEMPT(full) 
[   68.405458][ T5321] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   68.405464][ T5321] Call Trace:
[   68.405469][ T5321]  <TASK>
[   68.405475][ T5321]  dump_stack_lvl+0x189/0x250
[   68.405592][ T5321]  ? __pfx____ratelimit+0x10/0x10
[   68.405635][ T5321]  ? __pfx_dump_stack_lvl+0x10/0x10
[   68.405649][ T5321]  ? __pfx__printk+0x10/0x10
[   68.405664][ T5321]  ? __pfx___might_resched+0x10/0x10
[   68.405677][ T5321]  should_fail_ex+0x414/0x560
[   68.405723][ T5321]  should_failslab+0xa8/0x100
[   68.405736][ T5321]  __kmalloc_cache_noprof+0x70/0x3d0
[   68.405748][ T5321]  ? percpu_ref_init+0xc5/0x360
[   68.405766][ T5321]  ? __pfx_css_release+0x10/0x10
[   68.405780][ T5321]  percpu_ref_init+0xc5/0x360
[   68.405793][ T5321]  ? init_and_link_css+0x2d8/0x3d0
[   68.405809][ T5321]  cgroup_apply_control_enable+0x42b/0xa80
[   68.405821][ T5321]  ? css_next_descendant_pre+0x183/0x260
[   68.405840][ T5321]  cgroup_mkdir+0xc40/0xe60
[   68.405858][ T5321]  ? __pfx_cgroup_mkdir+0x10/0x10
[   68.405869][ T5321]  kernfs_iop_mkdir+0x211/0x350
[   68.405885][ T5321]  vfs_mkdir+0x306/0x510
[   68.405899][ T5321]  do_mkdirat+0x247/0x590
[   68.405910][ T5321]  ? __pfx_do_mkdirat+0x10/0x10
[   68.405922][ T5321]  ? getname_flags+0x1e5/0x540
[   68.405937][ T5321]  __x64_sys_mkdirat+0x87/0xa0
[   68.405957][ T5321]  do_syscall_64+0xfa/0x3b0
[   68.405970][ T5321]  ? lockdep_hardirqs_on+0x9c/0x150
[   68.405983][ T5321]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   68.405993][ T5321]  ? clear_bhb_loop+0x60/0xb0
[   68.406006][ T5321]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   68.406016][ T5321] RIP: 0033:0x7ff63178e929
[   68.406027][ T5321] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   68.406035][ T5321] RSP: 002b:00007ff6326ad038 EFLAGS: 00000246 ORIG_RAX: 0000000000000102
[   68.406048][ T5321] RAX: ffffffffffffffda RBX: 00007ff6319b6080 RCX: 00007ff63178e929
[   68.406055][ T5321] RDX: 00000000000001ff RSI: 00002000000005c0 RDI: ffffffffffffff9c
[   68.406061][ T5321] RBP: 00007ff6326ad090 R08: 0000000000000000 R09: 0000000000000000
[   68.406068][ T5321] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   68.406074][ T5321] R13: 0000000000000001 R14: 00007ff6319b6080 R15: 00007ffd17319238
[   68.406091][ T5321]  </TASK>
[   68.515741][ T5305] Bluetooth: hci0: command tx timeout
[   68.532343][  T793] BUG: unable to handle page fault for address: ffffed1011a4aa01
[   68.535824][  T793] #PF: supervisor read access in kernel mode
[   68.538463][  T793] #PF: error_code(0x0000) - not-present page
[   68.541027][  T793] PGD 5ffcd067 P4D 5ffcd067 PUD 2fff7067 PMD 0 
[   68.543711][  T793] Oops: Oops: 0000 [#1] SMP KASAN NOPTI
[   68.546211][  T793] CPU: 0 UID: 0 PID: 793 Comm: kworker/0:2 Not tainted 6.15.0-syzkaller-12141-gec7714e49479 #0 PREEMPT(full) 
[   68.551345][  T793] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   68.556095][  T793] Workqueue: cgroup_destroy css_free_rwork_fn
[   68.558783][  T793] RIP: 0010:css_rstat_flush+0x5ff/0x1fa0
[   68.561362][  T793] Code: 61 b0 d1 0d 01 0f 85 e6 14 00 00 e8 bb 1e 07 00 4c 03 6c 24 20 4d 8d 7d 08 4c 89 fb 48 c1 eb 03 48 b8 00 00 00 00 00 fc ff df <80> 3c 03 00 74 08 4c 89 ff e8 53 90 6a 00 49 83 3f 00 0f 84 5d 01
[   68.569522][  T793] RSP: 0018:ffffc90001a6f780 EFLAGS: 00010802
[   68.572146][  T793] RAX: dffffc0000000000 RBX: 1ffff11011a4aa01 RCX: ffff888000ce0000
[   68.575579][  T793] RDX: 0000000000000000 RSI: ffffffff8be28320 RDI: ffffffff8be282e0
[   68.579047][  T793] RBP: ffffc90001a6f9b8 R08: ffffffff8fa100f7 R09: 1ffffffff1f4201e
[   68.582414][  T793] R10: dffffc0000000000 R11: fffffbfff1f4201f R12: ffff88801fc42730
[   68.585844][  T793] R13: ffff88808d255000 R14: 0000000000000000 R15: ffff88808d255008
[   68.589226][  T793] FS:  0000000000000000(0000) GS:ffff88808d255000(0000) knlGS:0000000000000000
[   68.592996][  T793] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   68.595821][  T793] CR2: ffffed1011a4aa01 CR3: 000000004339a000 CR4: 0000000000352ef0
[   68.599279][  T793] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   68.602628][  T793] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   68.605994][  T793] Call Trace:
[   68.607460][  T793]  <TASK>
[   68.608840][  T793]  ? check_path+0x21/0x40
[   68.610715][  T793]  ? __pfx_css_rstat_flush+0x10/0x10
[   68.612991][  T793]  ? __lock_acquire+0xab9/0xd20
[   68.615092][  T793]  css_rstat_exit+0xa9/0x320
[   68.617116][  T793]  ? process_scheduled_works+0x9ef/0x17b0
[   68.619553][  T793]  ? percpu_ref_exit+0xc5/0x1c0
[   68.621680][  T793]  css_free_rwork_fn+0x8b/0xc50
[   68.623760][  T793]  ? process_scheduled_works+0x9ef/0x17b0
[   68.626208][  T793]  ? process_scheduled_works+0x9ef/0x17b0
[   68.628693][  T793]  process_scheduled_works+0xae1/0x17b0
[   68.631126][  T793]  ? __pfx_process_scheduled_works+0x10/0x10
[   68.633745][  T793]  worker_thread+0x8a0/0xda0
[   68.635731][  T793]  kthread+0x70e/0x8a0
[   68.637525][  T793]  ? __pfx_worker_thread+0x10/0x10
[   68.639735][  T793]  ? __pfx_kthread+0x10/0x10
[   68.641771][  T793]  ? _raw_spin_unlock_irq+0x23/0x50
[   68.643998][  T793]  ? lockdep_hardirqs_on+0x9c/0x150
[   68.646200][  T793]  ? __pfx_kthread+0x10/0x10
[   68.648199][  T793]  ret_from_fork+0x3f9/0x770
[   68.650204][  T793]  ? __pfx_ret_from_fork+0x10/0x10
[   68.652411][  T793]  ? __pfx_kthread+0x10/0x10
[   68.654460][  T793]  ret_from_fork_asm+0x1a/0x30
[   68.656580][  T793]  </TASK>
[   68.657939][  T793] Modules linked in:
[   68.659683][  T793] CR2: ffffed1011a4aa01
[   68.661491][  T793] ---[ end trace 0000000000000000 ]---
[   68.663793][  T793] RIP: 0010:css_rstat_flush+0x5ff/0x1fa0
[   68.666265][  T793] Code: 61 b0 d1 0d 01 0f 85 e6 14 00 00 e8 bb 1e 07 00 4c 03 6c 24 20 4d 8d 7d 08 4c 89 fb 48 c1 eb 03 48 b8 00 00 00 00 00 fc ff df <80> 3c 03 00 74 08 4c 89 ff e8 53 90 6a 00 49 83 3f 00 0f 84 5d 01
[   68.674383][  T793] RSP: 0018:ffffc90001a6f780 EFLAGS: 00010802
[   68.677004][  T793] RAX: dffffc0000000000 RBX: 1ffff11011a4aa01 RCX: ffff888000ce0000
[   68.680396][  T793] RDX: 0000000000000000 RSI: ffffffff8be28320 RDI: ffffffff8be282e0
[   68.683727][  T793] RBP: ffffc90001a6f9b8 R08: ffffffff8fa100f7 R09: 1ffffffff1f4201e
[   68.687174][  T793] R10: dffffc0000000000 R11: fffffbfff1f4201f R12: ffff88801fc42730
[   68.690865][  T793] R13: ffff88808d255000 R14: 0000000000000000 R15: ffff88808d255008
[   68.694401][  T793] FS:  0000000000000000(0000) GS:ffff88808d255000(0000) knlGS:0000000000000000
[   68.698390][  T793] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   68.701371][  T793] CR2: ffffed1011a4aa01 CR3: 000000004339a000 CR4: 0000000000352ef0
[   68.704864][  T793] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   68.708444][  T793] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   68.712069][  T793] Kernel panic - not syncing: Fatal exception
[   68.715165][  T793] Kernel Offset: disabled
[   68.717170][  T793] Rebooting in 86400 seconds..