program:
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f0000000380)=ANY=[], &(0x7f0000000100)='GPL\x00', 0xb, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2}, 0x94)
ioctl$BLKZEROOUT(r0, 0xc0c0128e, &(0x7f0000000240)={0x4000000000002000, 0x2}) (fail_nth: 36)

[   76.362856][ T5315] Bluetooth: hci0: command tx timeout
[   76.476436][ T5335] FAULT_INJECTION: forcing a failure.
[   76.476436][ T5335] name failslab, interval 1, probability 0, space 0, times 1
[   76.482086][ T5335] CPU: 0 UID: 0 PID: 5335 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) 
[   76.482103][ T5335] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   76.482109][ T5335] Call Trace:
[   76.482114][ T5335]  <TASK>
[   76.482118][ T5335]  dump_stack_lvl+0x189/0x250
[   76.482233][ T5335]  ? __pfx____ratelimit+0x10/0x10
[   76.482278][ T5335]  ? __pfx_dump_stack_lvl+0x10/0x10
[   76.482296][ T5335]  ? __pfx__printk+0x10/0x10
[   76.482314][ T5335]  ? __pfx___might_resched+0x10/0x10
[   76.482325][ T5335]  ? fs_reclaim_acquire+0x7d/0x100
[   76.482371][ T5335]  should_fail_ex+0x414/0x560
[   76.482388][ T5335]  should_failslab+0xa8/0x100
[   76.482404][ T5335]  __kmalloc_noprof+0xcb/0x800
[   76.482417][ T5335]  ? tracepoint_add_func+0x35e/0xa10
[   76.482433][ T5335]  ? __pfx_blk_add_trace_rq_issue+0x10/0x10
[   76.482443][ T5335]  tracepoint_add_func+0x35e/0xa10
[   76.482478][ T5335]  ? __pfx_blk_add_trace_rq_issue+0x10/0x10
[   76.482489][ T5335]  tracepoint_probe_register+0x5d/0x90
[   76.482501][ T5335]  ? __pfx_blk_add_trace_rq_issue+0x10/0x10
[   76.482513][ T5335]  get_probe_ref+0x7c/0x470
[   76.482522][ T5335]  blk_trace_ioctl+0x626/0x6e0
[   76.482537][ T5335]  ? __pfx_blk_trace_ioctl+0x10/0x10
[   76.482554][ T5335]  ? kasan_quarantine_put+0xdd/0x220
[   76.482566][ T5335]  ? lockdep_hardirqs_on+0x98/0x140
[   76.482637][ T5335]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[   76.482654][ T5335]  ? do_vfs_ioctl+0xbe8/0x1430
[   76.482665][ T5335]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[   76.482677][ T5335]  ? __pfx_do_vfs_ioctl+0x10/0x10
[   76.482713][ T5335]  blkdev_ioctl+0x4a2/0x710
[   76.482727][ T5335]  ? __pfx_blkdev_ioctl+0x10/0x10
[   76.482737][ T5335]  ? __fget_files+0x3a0/0x420
[   76.482750][ T5335]  ? __fget_files+0x2a/0x420
[   76.482767][ T5335]  ? bpf_lsm_file_ioctl+0x9/0x20
[   76.482780][ T5335]  ? __pfx_blkdev_ioctl+0x10/0x10
[   76.482790][ T5335]  __se_sys_ioctl+0xfc/0x170
[   76.482803][ T5335]  do_syscall_64+0xfa/0xf80
[   76.482813][ T5335]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   76.482823][ T5335]  ? clear_bhb_loop+0x60/0xb0
[   76.482836][ T5335]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   76.482845][ T5335] RIP: 0033:0x7efde0b8f7c9
[   76.482855][ T5335] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   76.482863][ T5335] RSP: 002b:00007efde19e1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   76.482875][ T5335] RAX: ffffffffffffffda RBX: 00007efde0de5fa0 RCX: 00007efde0b8f7c9
[   76.482881][ T5335] RDX: 0000200000000240 RSI: 00000000c0c0128e RDI: 0000000000000003
[   76.482887][ T5335] RBP: 00007efde19e1090 R08: 0000000000000000 R09: 0000000000000000
[   76.482893][ T5335] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   76.482898][ T5335] R13: 00007efde0de6038 R14: 00007efde0de5fa0 R15: 00007ffe091752b8
[   76.482917][ T5335]  </TASK>
[   76.483070][ T5335] ------------[ cut here ]------------
[   76.605414][ T5335] WARNING: kernel/trace/blktrace.c:1332 at get_probe_ref+0x385/0x470, CPU#0: syz.0.0/5335
[   76.609653][ T5335] Modules linked in:
[   76.613912][ T5335] CPU: 0 UID: 0 PID: 5335 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) 
[   76.617886][ T5335] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   76.622537][ T5335] RIP: 0010:get_probe_ref+0x385/0x470
[   76.624787][ T5335] Code: 00 01 00 00 e8 ec a2 f7 ff 48 c7 c7 40 6b fa 8d 5b e9 6f 30 87 09 e8 da a2 f7 ff 90 0f 0b 90 e9 e8 fc ff ff e8 cc a2 f7 ff 90 <0f> 0b 90 e9 07 fd ff ff e8 be a2 f7 ff 90 0f 0b 90 e9 26 fd ff ff
[   76.632665][ T5335] RSP: 0018:ffffc9000d59fa90 EFLAGS: 00010293
[   76.635436][ T5335] RAX: ffffffff81c9b854 RBX: 00000000fffffff4 RCX: ffff888035a38000
[   76.638678][ T5335] RDX: 0000000000000000 RSI: 00000000fffffff4 RDI: 0000000000000000
[   76.641843][ T5335] RBP: ffffc9000d59fdd0 R08: ffffc9000d59f9c7 R09: 1ffff92001ab3f38
[   76.645263][ T5335] R10: dffffc0000000000 R11: fffff52001ab3f39 R12: ffffc9000d59fc40
[   76.648628][ T5335] R13: ffffc9000d59fd40 R14: ffff888034b654b8 R15: 1ffff92001ab3f58
[   76.652152][ T5335] FS:  00007efde19e16c0(0000) GS:ffff88808d683000(0000) knlGS:0000000000000000
[   76.657247][ T5335] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   76.660000][ T5335] CR2: 00007efde191d9b8 CR3: 0000000019ee5000 CR4: 0000000000352ef0
[   76.663583][ T5335] Call Trace:
[   76.665667][ T5335]  <TASK>
[   76.666774][ T5335]  blk_trace_ioctl+0x626/0x6e0
[   76.668728][ T5335]  ? __pfx_blk_trace_ioctl+0x10/0x10
[   76.671281][ T5335]  ? kasan_quarantine_put+0xdd/0x220
[   76.673565][ T5335]  ? lockdep_hardirqs_on+0x98/0x140
[   76.675800][ T5335]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[   76.678160][ T5335]  ? do_vfs_ioctl+0xbe8/0x1430
[   76.680199][ T5335]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[   76.682831][ T5335]  ? __pfx_do_vfs_ioctl+0x10/0x10
[   76.685149][ T5335]  blkdev_ioctl+0x4a2/0x710
[   76.687139][ T5335]  ? __pfx_blkdev_ioctl+0x10/0x10
[   76.689252][ T5335]  ? __fget_files+0x3a0/0x420
[   76.691267][ T5335]  ? __fget_files+0x2a/0x420
[   76.693296][ T5335]  ? bpf_lsm_file_ioctl+0x9/0x20
[   76.695428][ T5335]  ? __pfx_blkdev_ioctl+0x10/0x10
[   76.697607][ T5335]  __se_sys_ioctl+0xfc/0x170
[   76.699620][ T5335]  do_syscall_64+0xfa/0xf80
[   76.701562][ T5335]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   76.704205][ T5335]  ? clear_bhb_loop+0x60/0xb0
[   76.706182][ T5335]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   76.708678][ T5335] RIP: 0033:0x7efde0b8f7c9
[   76.710632][ T5335] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   76.718592][ T5335] RSP: 002b:00007efde19e1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   76.722052][ T5335] RAX: ffffffffffffffda RBX: 00007efde0de5fa0 RCX: 00007efde0b8f7c9
[   76.725498][ T5335] RDX: 0000200000000240 RSI: 00000000c0c0128e RDI: 0000000000000003
[   76.728808][ T5335] RBP: 00007efde19e1090 R08: 0000000000000000 R09: 0000000000000000
[   76.732187][ T5335] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   76.735632][ T5335] R13: 00007efde0de6038 R14: 00007efde0de5fa0 R15: 00007ffe091752b8
[   76.739032][ T5335]  </TASK>
[   76.740362][ T5335] Kernel panic - not syncing: kernel: panic_on_warn set ...
[   76.743390][ T5335] CPU: 0 UID: 0 PID: 5335 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) 
[   76.747019][ T5335] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   76.751331][ T5335] Call Trace:
[   76.752818][ T5335]  <TASK>
[   76.754211][ T5335]  dump_stack_lvl+0x99/0x250
[   76.756239][ T5335]  ? __asan_memcpy+0x40/0x70
[   76.758251][ T5335]  ? __pfx_dump_stack_lvl+0x10/0x10
[   76.760488][ T5335]  ? __pfx__printk+0x10/0x10
[   76.762505][ T5335]  vpanic+0x237/0x6d0
[   76.764255][ T5335]  ? __pfx_vpanic+0x10/0x10
[   76.766190][ T5335]  ? is_bpf_text_address+0x292/0x2b0
[   76.768418][ T5335]  ? is_bpf_text_address+0x26/0x2b0
[   76.770677][ T5335]  panic+0xb9/0xc0
[   76.772249][ T5335]  ? __pfx_panic+0x10/0x10
[   76.774269][ T5335]  __warn+0x317/0x4b0
[   76.776042][ T5335]  ? get_probe_ref+0x385/0x470
[   76.778239][ T5335]  ? get_probe_ref+0x385/0x470
[   76.780240][ T5335]  __report_bug+0x288/0x500
[   76.782151][ T5335]  ? __pfx__printk+0x10/0x10
[   76.784012][ T5335]  ? get_probe_ref+0x385/0x470
[   76.785894][ T5335]  ? __pfx___report_bug+0x10/0x10
[   76.787965][ T5335]  ? tracepoint_probe_register+0x7a/0x90
[   76.790203][ T5335]  ? __mutex_unlock_slowpath+0x1a1/0x730
[   76.792361][ T5335]  ? rcu_is_watching+0x15/0xb0
[   76.794211][ T5335]  ? get_probe_ref+0x385/0x470
[   76.796199][ T5335]  report_bug+0x16a/0x220
[   76.798009][ T5335]  ? get_probe_ref+0x385/0x470
[   76.800026][ T5335]  ? get_probe_ref+0x387/0x470
[   76.801977][ T5335]  handle_bug+0x98/0x200
[   76.803851][ T5335]  exc_invalid_op+0x1a/0x50
[   76.805826][ T5335]  asm_exc_invalid_op+0x1a/0x20
[   76.807866][ T5335] RIP: 0010:get_probe_ref+0x385/0x470
[   76.810085][ T5335] Code: 00 01 00 00 e8 ec a2 f7 ff 48 c7 c7 40 6b fa 8d 5b e9 6f 30 87 09 e8 da a2 f7 ff 90 0f 0b 90 e9 e8 fc ff ff e8 cc a2 f7 ff 90 <0f> 0b 90 e9 07 fd ff ff e8 be a2 f7 ff 90 0f 0b 90 e9 26 fd ff ff
[   76.818033][ T5335] RSP: 0018:ffffc9000d59fa90 EFLAGS: 00010293
[   76.820604][ T5335] RAX: ffffffff81c9b854 RBX: 00000000fffffff4 RCX: ffff888035a38000
[   76.824172][ T5335] RDX: 0000000000000000 RSI: 00000000fffffff4 RDI: 0000000000000000
[   76.827730][ T5335] RBP: ffffc9000d59fdd0 R08: ffffc9000d59f9c7 R09: 1ffff92001ab3f38
[   76.831171][ T5335] R10: dffffc0000000000 R11: fffff52001ab3f39 R12: ffffc9000d59fc40
[   76.834417][ T5335] R13: ffffc9000d59fd40 R14: ffff888034b654b8 R15: 1ffff92001ab3f58
[   76.837851][ T5335]  ? get_probe_ref+0x384/0x470
[   76.839988][ T5335]  blk_trace_ioctl+0x626/0x6e0
[   76.842103][ T5335]  ? __pfx_blk_trace_ioctl+0x10/0x10
[   76.844380][ T5335]  ? kasan_quarantine_put+0xdd/0x220
[   76.846674][ T5335]  ? lockdep_hardirqs_on+0x98/0x140
[   76.848970][ T5335]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[   76.851418][ T5335]  ? do_vfs_ioctl+0xbe8/0x1430
[   76.853424][ T5335]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[   76.855737][ T5335]  ? __pfx_do_vfs_ioctl+0x10/0x10
[   76.857978][ T5335]  blkdev_ioctl+0x4a2/0x710
[   76.859989][ T5335]  ? __pfx_blkdev_ioctl+0x10/0x10
[   76.862124][ T5335]  ? __fget_files+0x3a0/0x420
[   76.864163][ T5335]  ? __fget_files+0x2a/0x420
[   76.866204][ T5335]  ? bpf_lsm_file_ioctl+0x9/0x20
[   76.868363][ T5335]  ? __pfx_blkdev_ioctl+0x10/0x10
[   76.870519][ T5335]  __se_sys_ioctl+0xfc/0x170
[   76.872577][ T5335]  do_syscall_64+0xfa/0xf80
[   76.874484][ T5335]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   76.877033][ T5335]  ? clear_bhb_loop+0x60/0xb0
[   76.879023][ T5335]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   76.881512][ T5335] RIP: 0033:0x7efde0b8f7c9
[   76.883413][ T5335] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   76.891386][ T5335] RSP: 002b:00007efde19e1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   76.894822][ T5335] RAX: ffffffffffffffda RBX: 00007efde0de5fa0 RCX: 00007efde0b8f7c9
[   76.898230][ T5335] RDX: 0000200000000240 RSI: 00000000c0c0128e RDI: 0000000000000003
[   76.901688][ T5335] RBP: 00007efde19e1090 R08: 0000000000000000 R09: 0000000000000000
[   76.905054][ T5335] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   76.908470][ T5335] R13: 00007efde0de6038 R14: 00007efde0de5fa0 R15: 00007ffe091752b8
[   76.911836][ T5335]  </TASK>
[   76.913516][ T5335] Kernel Offset: disabled
[   76.915396][ T5335] Rebooting in 86400 seconds..