program:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0xf9ba, 0x501)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f00000000c0)={'\x00', 0x8, 0xc, 0x3, 0x3})
ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0)
r1 = syz_open_dev$loop(&(0x7f0000000040), 0x0, 0x200)
ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f00000000c0)={'\x00', 0x8, 0x2, 0x10000, 0x40010001, 0x8000000000000000}) (fail_nth: 58)

[   71.884018][ T4526] Bluetooth: hci0: command tx timeout
[   72.148985][ T5101] FAULT_INJECTION: forcing a failure.
[   72.148985][ T5101] name failslab, interval 1, probability 0, space 0, times 1
[   72.165196][ T5101] CPU: 0 UID: 0 PID: 5101 Comm: syz.0.0 Not tainted 6.11.0-rc3-syzkaller-00060-gd07b43284ab3 #0
[   72.168991][ T5101] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   72.173133][ T5101] Call Trace:
[   72.174510][ T5101]  <TASK>
[   72.175698][ T5101]  dump_stack_lvl+0x241/0x360
[   72.177596][ T5101]  ? __pfx_dump_stack_lvl+0x10/0x10
[   72.179589][ T5101]  ? __pfx__printk+0x10/0x10
[   72.181396][ T5101]  ? __kmalloc_noprof+0xb0/0x400
[   72.183326][ T5101]  ? __pfx___might_resched+0x10/0x10
[   72.185354][ T5101]  ? rcu_is_watching+0x15/0xb0
[   72.187206][ T5101]  should_fail_ex+0x3b0/0x4e0
[   72.189138][ T5101]  ? tracepoint_add_func+0x2e4/0x9e0
[   72.191322][ T5101]  should_failslab+0xac/0x100
[   72.193207][ T5101]  ? tracepoint_add_func+0x2e4/0x9e0
[   72.195294][ T5101]  __kmalloc_noprof+0xd8/0x400
[   72.197204][ T5101]  ? __pfx_blk_add_trace_rq_insert+0x10/0x10
[   72.199590][ T5101]  tracepoint_add_func+0x2e4/0x9e0
[   72.201600][ T5101]  ? __pfx_blk_add_trace_rq_insert+0x10/0x10
[   72.204026][ T5101]  tracepoint_probe_register+0x105/0x160
[   72.206451][ T5101]  ? __pfx___mutex_lock+0x10/0x10
[   72.208429][ T5101]  ? __pfx_tracepoint_probe_register+0x10/0x10
[   72.210858][ T5101]  ? __pfx_blk_add_trace_rq_insert+0x10/0x10
[   72.213166][ T5101]  get_probe_ref+0x4f/0x400
[   72.214917][ T5101]  do_blk_trace_setup+0x7eb/0x9b0
[   72.216789][ T5101]  blk_trace_ioctl+0x359/0x9a0
[   72.218667][ T5101]  ? tomoyo_path_number_perm+0x71a/0x880
[   72.220815][ T5101]  ? __pfx_blk_trace_ioctl+0x10/0x10
[   72.222895][ T5101]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[   72.225241][ T5101]  ? file_to_blk_mode+0xd5/0x140
[   72.227185][ T5101]  blkdev_ioctl+0x40f/0x6b0
[   72.228918][ T5101]  ? __pfx_blkdev_ioctl+0x10/0x10
[   72.230958][ T5101]  ? bpf_lsm_file_ioctl+0x9/0x10
[   72.232918][ T5101]  ? security_file_ioctl+0x87/0xb0
[   72.234991][ T5101]  ? __pfx_blkdev_ioctl+0x10/0x10
[   72.237005][ T5101]  __se_sys_ioctl+0xfc/0x170
[   72.238940][ T5101]  do_syscall_64+0xf3/0x230
[   72.240800][ T5101]  ? clear_bhb_loop+0x35/0x90
[   72.242729][ T5101]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   72.244986][ T5101] RIP: 0033:0x7f2b875799b9
[   72.246688][ T5101] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   72.253885][ T5101] RSP: 002b:00007f2b8831f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   72.257084][ T5101] RAX: ffffffffffffffda RBX: 00007f2b87715f80 RCX: 00007f2b875799b9
[   72.260111][ T5101] RDX: 00000000200000c0 RSI: 00000000c0481273 RDI: 0000000000000004
[   72.263084][ T5101] RBP: 00007f2b8831f090 R08: 0000000000000000 R09: 0000000000000000
[   72.266062][ T5101] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   72.269125][ T5101] R13: 0000000000000000 R14: 00007f2b87715f80 R15: 00007fffb28d3fe8
[   72.271984][ T5101]  </TASK>
[   72.457441][ T5101] ------------[ cut here ]------------
[   72.459591][ T5101] WARNING: CPU: 0 PID: 5101 at kernel/trace/blktrace.c:1095 get_probe_ref+0x31d/0x400
[   72.462860][ T5101] Modules linked in:
[   72.464602][ T5101] CPU: 0 UID: 0 PID: 5101 Comm: syz.0.0 Not tainted 6.11.0-rc3-syzkaller-00060-gd07b43284ab3 #0
[   72.468451][ T5101] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   72.472200][ T5101] RIP: 0010:get_probe_ref+0x31d/0x400
[   72.474491][ T5101] Code: c3 31 ff 89 c6 e8 f3 2a f8 ff 85 db 0f 85 e4 00 00 00 e8 a6 26 f8 ff 48 c7 c7 a0 11 99 8e 5b e9 a9 ce 23 0a e8 94 26 f8 ff 90 <0f> 0b 90 e9 42 fd ff ff e8 86 26 f8 ff 90 0f 0b 90 e9 61 fd ff ff
[   72.481703][ T5101] RSP: 0018:ffffc90002d7fb38 EFLAGS: 00010293
[   72.484152][ T5101] RAX: ffffffff819b62dc RBX: 00000000fffffff4 RCX: ffff88801a5c8000
[   72.487165][ T5101] RDX: 0000000000000000 RSI: 00000000fffffff4 RDI: 0000000000000000
[   72.490204][ T5101] RBP: ffff8880121ae400 R08: ffffffff819b601a R09: 1ffff920005aff3c
[   72.493240][ T5101] R10: dffffc0000000000 R11: fffff520005aff3d R12: 1ffff11002435c86
[   72.496394][ T5101] R13: ffffc90002d7fd50 R14: ffff8880121ae430 R15: dffffc0000000000
[   72.499458][ T5101] FS:  00007f2b8831f6c0(0000) GS:ffff888020800000(0000) knlGS:0000000000000000
[   72.502828][ T5101] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   72.505415][ T5101] CR2: 00007fa783d6c770 CR3: 0000000039914000 CR4: 0000000000350ef0
[   72.508450][ T5101] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   72.511600][ T5101] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   72.514829][ T5101] Call Trace:
[   72.516124][ T5101]  <TASK>
[   72.517280][ T5101]  ? __warn+0x163/0x4e0
[   72.518935][ T5101]  ? get_probe_ref+0x31d/0x400
[   72.520825][ T5101]  ? report_bug+0x2b3/0x500
[   72.522563][ T5101]  ? get_probe_ref+0x31d/0x400
[   72.524487][ T5101]  ? handle_bug+0x3e/0x70
[   72.526007][ T5101]  ? exc_invalid_op+0x1a/0x50
[   72.527674][ T5101]  ? asm_exc_invalid_op+0x1a/0x20
[   72.529446][ T5101]  ? get_probe_ref+0x5a/0x400
[   72.531116][ T5101]  ? get_probe_ref+0x31c/0x400
[   72.532753][ T5101]  ? get_probe_ref+0x31d/0x400
[   72.534593][ T5101]  ? get_probe_ref+0x31c/0x400
[   72.536271][ T5101]  do_blk_trace_setup+0x7eb/0x9b0
[   72.538038][ T5101]  blk_trace_ioctl+0x359/0x9a0
[   72.539909][ T5101]  ? tomoyo_path_number_perm+0x71a/0x880
[   72.542118][ T5101]  ? __pfx_blk_trace_ioctl+0x10/0x10
[   72.544390][ T5101]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[   72.546781][ T5101]  ? file_to_blk_mode+0xd5/0x140
[   72.548712][ T5101]  blkdev_ioctl+0x40f/0x6b0
[   72.550513][ T5101]  ? __pfx_blkdev_ioctl+0x10/0x10
[   72.552477][ T5101]  ? bpf_lsm_file_ioctl+0x9/0x10
[   72.554395][ T5101]  ? security_file_ioctl+0x87/0xb0
[   72.556202][ T5101]  ? __pfx_blkdev_ioctl+0x10/0x10
[   72.557968][ T5101]  __se_sys_ioctl+0xfc/0x170
[   72.559591][ T5101]  do_syscall_64+0xf3/0x230
[   72.561204][ T5101]  ? clear_bhb_loop+0x35/0x90
[   72.562919][ T5101]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   72.565223][ T5101] RIP: 0033:0x7f2b875799b9
[   72.567485][ T5101] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   72.575260][ T5101] RSP: 002b:00007f2b8831f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   72.578475][ T5101] RAX: ffffffffffffffda RBX: 00007f2b87715f80 RCX: 00007f2b875799b9
[   72.581468][ T5101] RDX: 00000000200000c0 RSI: 00000000c0481273 RDI: 0000000000000004
[   72.585077][ T5101] RBP: 00007f2b8831f090 R08: 0000000000000000 R09: 0000000000000000
[   72.588180][ T5101] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   72.591276][ T5101] R13: 0000000000000000 R14: 00007f2b87715f80 R15: 00007fffb28d3fe8
[   72.594473][ T5101]  </TASK>
[   72.595698][ T5101] Kernel panic - not syncing: kernel: panic_on_warn set ...
[   72.598524][ T5101] CPU: 0 UID: 0 PID: 5101 Comm: syz.0.0 Not tainted 6.11.0-rc3-syzkaller-00060-gd07b43284ab3 #0
[   72.602572][ T5101] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   72.606607][ T5101] Call Trace:
[   72.607922][ T5101]  <TASK>
[   72.609069][ T5101]  dump_stack_lvl+0x241/0x360
[   72.610942][ T5101]  ? __pfx_dump_stack_lvl+0x10/0x10
[   72.613001][ T5101]  ? __pfx__printk+0x10/0x10
[   72.614789][ T5101]  ? _printk+0xd5/0x120
[   72.616397][ T5101]  ? vscnprintf+0x5d/0x90
[   72.618082][ T5101]  panic+0x349/0x860
[   72.619621][ T5101]  ? __warn+0x172/0x4e0
[   72.621222][ T5101]  ? __pfx_panic+0x10/0x10
[   72.622962][ T5101]  ? show_trace_log_lvl+0x4e6/0x520
[   72.624994][ T5101]  __warn+0x346/0x4e0
[   72.626598][ T5101]  ? get_probe_ref+0x31d/0x400
[   72.628507][ T5101]  report_bug+0x2b3/0x500
[   72.630240][ T5101]  ? get_probe_ref+0x31d/0x400
[   72.632150][ T5101]  handle_bug+0x3e/0x70
[   72.633752][ T5101]  exc_invalid_op+0x1a/0x50
[   72.635494][ T5101]  asm_exc_invalid_op+0x1a/0x20
[   72.637430][ T5101] RIP: 0010:get_probe_ref+0x31d/0x400
[   72.639555][ T5101] Code: c3 31 ff 89 c6 e8 f3 2a f8 ff 85 db 0f 85 e4 00 00 00 e8 a6 26 f8 ff 48 c7 c7 a0 11 99 8e 5b e9 a9 ce 23 0a e8 94 26 f8 ff 90 <0f> 0b 90 e9 42 fd ff ff e8 86 26 f8 ff 90 0f 0b 90 e9 61 fd ff ff
[   72.647041][ T5101] RSP: 0018:ffffc90002d7fb38 EFLAGS: 00010293
[   72.649408][ T5101] RAX: ffffffff819b62dc RBX: 00000000fffffff4 RCX: ffff88801a5c8000
[   72.652499][ T5101] RDX: 0000000000000000 RSI: 00000000fffffff4 RDI: 0000000000000000
[   72.655558][ T5101] RBP: ffff8880121ae400 R08: ffffffff819b601a R09: 1ffff920005aff3c
[   72.658633][ T5101] R10: dffffc0000000000 R11: fffff520005aff3d R12: 1ffff11002435c86
[   72.661738][ T5101] R13: ffffc90002d7fd50 R14: ffff8880121ae430 R15: dffffc0000000000
[   72.664908][ T5101]  ? get_probe_ref+0x5a/0x400
[   72.666776][ T5101]  ? get_probe_ref+0x31c/0x400
[   72.668658][ T5101]  ? get_probe_ref+0x31c/0x400
[   72.670539][ T5101]  do_blk_trace_setup+0x7eb/0x9b0
[   72.672527][ T5101]  blk_trace_ioctl+0x359/0x9a0
[   72.674339][ T5101]  ? tomoyo_path_number_perm+0x71a/0x880
[   72.676511][ T5101]  ? __pfx_blk_trace_ioctl+0x10/0x10
[   72.678447][ T5101]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[   72.680600][ T5101]  ? file_to_blk_mode+0xd5/0x140
[   72.682407][ T5101]  blkdev_ioctl+0x40f/0x6b0
[   72.684050][ T5101]  ? __pfx_blkdev_ioctl+0x10/0x10
[   72.685868][ T5101]  ? bpf_lsm_file_ioctl+0x9/0x10
[   72.687618][ T5101]  ? security_file_ioctl+0x87/0xb0
[   72.689429][ T5101]  ? __pfx_blkdev_ioctl+0x10/0x10
[   72.691220][ T5101]  __se_sys_ioctl+0xfc/0x170
[   72.692896][ T5101]  do_syscall_64+0xf3/0x230
[   72.694717][ T5101]  ? clear_bhb_loop+0x35/0x90
[   72.696584][ T5101]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   72.698912][ T5101] RIP: 0033:0x7f2b875799b9
[   72.700679][ T5101] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   72.708133][ T5101] RSP: 002b:00007f2b8831f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   72.711330][ T5101] RAX: ffffffffffffffda RBX: 00007f2b87715f80 RCX: 00007f2b875799b9
[   72.714367][ T5101] RDX: 00000000200000c0 RSI: 00000000c0481273 RDI: 0000000000000004
[   72.717428][ T5101] RBP: 00007f2b8831f090 R08: 0000000000000000 R09: 0000000000000000
[   72.720410][ T5101] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   72.723445][ T5101] R13: 0000000000000000 R14: 00007f2b87715f80 R15: 00007fffb28d3fe8
[   72.726526][ T5101]  </TASK>
[   72.727995][ T5101] Kernel Offset: disabled
[   72.729750][ T5101] Rebooting in 86400 seconds..