program:
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f0000000380)=ANY=[], &(0x7f0000000100)='GPL\x00', 0xb, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2}, 0x94)
ioctl$BLKZEROOUT(r0, 0xc0c0128e, &(0x7f0000000240)={0x4000000000002000, 0x2}) (fail_nth: 32)

[   83.746403][   T45] Bluetooth: hci0: command tx timeout
[   83.821411][ T5327] FAULT_INJECTION: forcing a failure.
[   83.821411][ T5327] name failslab, interval 1, probability 0, space 0, times 1
[   83.837255][ T5327] CPU: 0 UID: 0 PID: 5327 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) 
[   83.837278][ T5327] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[   83.837286][ T5327] Call Trace:
[   83.837292][ T5327]  <TASK>
[   83.837298][ T5327]  dump_stack_lvl+0xe8/0x150
[   83.837433][ T5327]  should_fail_ex+0x412/0x560
[   83.837506][ T5327]  should_failslab+0xa8/0x100
[   83.837543][ T5327]  __kmalloc_noprof+0xe8/0x760
[   83.837560][ T5327]  ? __pfx___mutex_lock+0x10/0x10
[   83.837612][ T5327]  ? tracepoint_add_func+0x366/0xa50
[   83.837662][ T5327]  ? __pfx_blk_add_trace_rq_issue+0x10/0x10
[   83.837701][ T5327]  tracepoint_add_func+0x366/0xa50
[   83.837719][ T5327]  ? relay_open+0x56d/0x920
[   83.837736][ T5327]  ? __pfx_blk_add_trace_rq_issue+0x10/0x10
[   83.837748][ T5327]  tracepoint_probe_register+0x5d/0x90
[   83.837766][ T5327]  ? __pfx_blk_add_trace_rq_issue+0x10/0x10
[   83.837781][ T5327]  get_probe_ref+0x7c/0x470
[   83.837794][ T5327]  blk_trace_ioctl+0x77f/0x920
[   83.837810][ T5327]  ? __pfx_blk_trace_ioctl+0x10/0x10
[   83.837824][ T5327]  ? kasan_quarantine_put+0xbb/0x1f0
[   83.837849][ T5327]  ? tomoyo_path_number_perm+0x219/0x630
[   83.837865][ T5327]  ? tomoyo_path_number_perm+0x219/0x630
[   83.837881][ T5327]  ? do_vfs_ioctl+0x1166/0x1530
[   83.837926][ T5327]  ? __pfx_do_vfs_ioctl+0x10/0x10
[   83.837960][ T5327]  blkdev_ioctl+0x4c1/0x740
[   83.837978][ T5327]  ? __pfx_blkdev_ioctl+0x10/0x10
[   83.837990][ T5327]  ? __fget_files+0x2a/0x420
[   83.838008][ T5327]  ? bpf_lsm_file_ioctl+0x9/0x20
[   83.838039][ T5327]  ? __pfx_blkdev_ioctl+0x10/0x10
[   83.838047][ T5327]  __se_sys_ioctl+0xfc/0x170
[   83.838056][ T5327]  do_syscall_64+0x14d/0xf80
[   83.838065][ T5327]  ? trace_irq_disable+0x3b/0x150
[   83.838075][ T5327]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   83.838083][ T5327]  ? clear_bhb_loop+0x40/0x90
[   83.838093][ T5327]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   83.838101][ T5327] RIP: 0033:0x7f617eb9c799
[   83.838111][ T5327] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   83.838118][ T5327] RSP: 002b:00007f617fa3bfe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   83.838128][ T5327] RAX: ffffffffffffffda RBX: 00007f617ee15fa0 RCX: 00007f617eb9c799
[   83.838133][ T5327] RDX: 0000200000000240 RSI: 00000000c0c0128e RDI: 0000000000000003
[   83.838138][ T5327] RBP: 00007f617fa3c050 R08: 0000000000000000 R09: 0000000000000000
[   83.838142][ T5327] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   83.838147][ T5327] R13: 00007f617ee16038 R14: 00007f617ee15fa0 R15: 00007ffcd978c068
[   83.838158][ T5327]  </TASK>
[   83.838318][ T5327] ------------[ cut here ]------------
[   83.970843][ T5327] ret
[   83.970854][ T5327] WARNING: kernel/trace/blktrace.c:1334 at get_probe_ref+0x385/0x470, CPU#0: syz.0.0/5327
[   83.977304][ T5327] Modules linked in:
[   83.979371][ T5327] CPU: 0 UID: 0 PID: 5327 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) 
[   83.984804][ T5327] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[   83.991457][ T5327] RIP: 0010:get_probe_ref+0x385/0x470
[   83.994009][ T5327] Code: 00 01 00 00 e8 7c 8f f7 ff 48 c7 c7 40 c9 7c 8e 5b e9 8f c7 e3 09 e8 6a 8f f7 ff 90 0f 0b 90 e9 e8 fc ff ff e8 5c 8f f7 ff 90 <0f> 0b 90 e9 07 fd ff ff e8 4e 8f f7 ff 90 0f 0b 90 e9 26 fd ff ff
[   84.002868][ T5327] RSP: 0018:ffffc9000c937a90 EFLAGS: 00010293
[   84.005908][ T5327] RAX: ffffffff81ce2144 RBX: 00000000fffffff4 RCX: ffff88803ef58000
[   84.009742][ T5327] RDX: 0000000000000000 RSI: 00000000fffffff4 RDI: 0000000000000000
[   84.013648][ T5327] RBP: ffffc9000c937df0 R08: ffffc9000c9379c7 R09: 1ffff92001926f38
[   84.017654][ T5327] R10: dffffc0000000000 R11: fffff52001926f39 R12: dffffc0000000000
[   84.021359][ T5327] R13: ffffc9000c937c60 R14: ffff8880356e8988 R15: 0000000000400140
[   84.025304][ T5327] FS:  00007f617fa3c6c0(0000) GS:ffff88808ca52000(0000) knlGS:0000000000000000
[   84.029997][ T5327] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   84.032662][ T5327] CR2: 00007f617f94d9d0 CR3: 0000000042b72000 CR4: 0000000000352ef0
[   84.036385][ T5327] Call Trace:
[   84.038247][ T5327]  <TASK>
[   84.040019][ T5327]  blk_trace_ioctl+0x77f/0x920
[   84.042674][ T5327]  ? __pfx_blk_trace_ioctl+0x10/0x10
[   84.045573][ T5327]  ? kasan_quarantine_put+0xbb/0x1f0
[   84.049351][ T5327]  ? tomoyo_path_number_perm+0x219/0x630
[   84.051976][ T5327]  ? tomoyo_path_number_perm+0x219/0x630
[   84.054577][ T5327]  ? do_vfs_ioctl+0x1166/0x1530
[   84.056647][ T5327]  ? __pfx_do_vfs_ioctl+0x10/0x10
[   84.059116][ T5327]  blkdev_ioctl+0x4c1/0x740
[   84.062200][ T5327]  ? __pfx_blkdev_ioctl+0x10/0x10
[   84.064812][ T5327]  ? __fget_files+0x2a/0x420
[   84.067693][ T5327]  ? bpf_lsm_file_ioctl+0x9/0x20
[   84.070013][ T5327]  ? __pfx_blkdev_ioctl+0x10/0x10
[   84.072638][ T5327]  __se_sys_ioctl+0xfc/0x170
[   84.075308][ T5327]  do_syscall_64+0x14d/0xf80
[   84.077824][ T5327]  ? trace_irq_disable+0x3b/0x150
[   84.080117][ T5327]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   84.082580][ T5327]  ? clear_bhb_loop+0x40/0x90
[   84.084965][ T5327]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   84.088023][ T5327] RIP: 0033:0x7f617eb9c799
[   84.090497][ T5327] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   84.098440][ T5327] RSP: 002b:00007f617fa3bfe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   84.102199][ T5327] RAX: ffffffffffffffda RBX: 00007f617ee15fa0 RCX: 00007f617eb9c799
[   84.106213][ T5327] RDX: 0000200000000240 RSI: 00000000c0c0128e RDI: 0000000000000003
[   84.109926][ T5327] RBP: 00007f617fa3c050 R08: 0000000000000000 R09: 0000000000000000
[   84.113201][ T5327] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   84.116802][ T5327] R13: 00007f617ee16038 R14: 00007f617ee15fa0 R15: 00007ffcd978c068
[   84.121315][ T5327]  </TASK>
[   84.122777][ T5327] Kernel panic - not syncing: kernel: panic_on_warn set ...
[   84.126238][ T5327] CPU: 0 UID: 0 PID: 5327 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) 
[   84.130525][ T5327] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[   84.135136][ T5327] Call Trace:
[   84.136663][ T5327]  <TASK>
[   84.138053][ T5327]  vpanic+0x56c/0xa60
[   84.139904][ T5327]  ? __pfx__printk+0x10/0x10
[   84.141819][ T5327]  ? __pfx_vpanic+0x10/0x10
[   84.143967][ T5327]  ? is_bpf_text_address+0x292/0x2b0
[   84.146105][ T5327]  ? is_bpf_text_address+0x26/0x2b0
[   84.148518][ T5327]  panic+0xc5/0xd0
[   84.150295][ T5327]  ? __pfx_panic+0x10/0x10
[   84.152156][ T5327]  __warn+0x315/0x4f0
[   84.153903][ T5327]  ? get_probe_ref+0x385/0x470
[   84.156077][ T5327]  ? get_probe_ref+0x385/0x470
[   84.158126][ T5327]  __report_bug+0x29a/0x540
[   84.160056][ T5327]  ? get_probe_ref+0x385/0x470
[   84.162040][ T5327]  ? __pfx___report_bug+0x10/0x10
[   84.164304][ T5327]  ? tracepoint_probe_register+0x6b/0x90
[   84.166825][ T5327]  ? __mutex_unlock_slowpath+0x1bd/0x7d0
[   84.169891][ T5327]  ? get_probe_ref+0x385/0x470
[   84.172047][ T5327]  report_bug+0x16a/0x220
[   84.174153][ T5327]  ? get_probe_ref+0x385/0x470
[   84.176423][ T5327]  ? get_probe_ref+0x387/0x470
[   84.178661][ T5327]  handle_bug+0x9c/0x200
[   84.181081][ T5327]  exc_invalid_op+0x1a/0x50
[   84.183584][ T5327]  asm_exc_invalid_op+0x1a/0x20
[   84.185745][ T5327] RIP: 0010:get_probe_ref+0x385/0x470
[   84.188024][ T5327] Code: 00 01 00 00 e8 7c 8f f7 ff 48 c7 c7 40 c9 7c 8e 5b e9 8f c7 e3 09 e8 6a 8f f7 ff 90 0f 0b 90 e9 e8 fc ff ff e8 5c 8f f7 ff 90 <0f> 0b 90 e9 07 fd ff ff e8 4e 8f f7 ff 90 0f 0b 90 e9 26 fd ff ff
[   84.196677][ T5327] RSP: 0018:ffffc9000c937a90 EFLAGS: 00010293
[   84.199690][ T5327] RAX: ffffffff81ce2144 RBX: 00000000fffffff4 RCX: ffff88803ef58000
[   84.203533][ T5327] RDX: 0000000000000000 RSI: 00000000fffffff4 RDI: 0000000000000000
[   84.207564][ T5327] RBP: ffffc9000c937df0 R08: ffffc9000c9379c7 R09: 1ffff92001926f38
[   84.212183][ T5327] R10: dffffc0000000000 R11: fffff52001926f39 R12: dffffc0000000000
[   84.215758][ T5327] R13: ffffc9000c937c60 R14: ffff8880356e8988 R15: 0000000000400140
[   84.219372][ T5327]  ? get_probe_ref+0x384/0x470
[   84.221692][ T5327]  blk_trace_ioctl+0x77f/0x920
[   84.224348][ T5327]  ? __pfx_blk_trace_ioctl+0x10/0x10
[   84.227330][ T5327]  ? kasan_quarantine_put+0xbb/0x1f0
[   84.230155][ T5327]  ? tomoyo_path_number_perm+0x219/0x630
[   84.232845][ T5327]  ? tomoyo_path_number_perm+0x219/0x630
[   84.235494][ T5327]  ? do_vfs_ioctl+0x1166/0x1530
[   84.237824][ T5327]  ? __pfx_do_vfs_ioctl+0x10/0x10
[   84.240335][ T5327]  blkdev_ioctl+0x4c1/0x740
[   84.242655][ T5327]  ? __pfx_blkdev_ioctl+0x10/0x10
[   84.245238][ T5327]  ? __fget_files+0x2a/0x420
[   84.247370][ T5327]  ? bpf_lsm_file_ioctl+0x9/0x20
[   84.249686][ T5327]  ? __pfx_blkdev_ioctl+0x10/0x10
[   84.251687][ T5327]  __se_sys_ioctl+0xfc/0x170
[   84.253787][ T5327]  do_syscall_64+0x14d/0xf80
[   84.256160][ T5327]  ? trace_irq_disable+0x3b/0x150
[   84.258639][ T5327]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   84.262011][ T5327]  ? clear_bhb_loop+0x40/0x90
[   84.264547][ T5327]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   84.267309][ T5327] RIP: 0033:0x7f617eb9c799
[   84.269695][ T5327] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   84.281993][ T5327] RSP: 002b:00007f617fa3bfe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   84.286542][ T5327] RAX: ffffffffffffffda RBX: 00007f617ee15fa0 RCX: 00007f617eb9c799
[   84.290737][ T5327] RDX: 0000200000000240 RSI: 00000000c0c0128e RDI: 0000000000000003
[   84.294605][ T5327] RBP: 00007f617fa3c050 R08: 0000000000000000 R09: 0000000000000000
[   84.298019][ T5327] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   84.302174][ T5327] R13: 00007f617ee16038 R14: 00007f617ee15fa0 R15: 00007ffcd978c068
[   84.306050][ T5327]  </TASK>
[   84.308987][ T5327] Kernel Offset: disabled
[   84.311252][ T5327] Rebooting in 86400 seconds..