program:
creat(&(0x7f0000000240)='./file0\x00', 0x0)
pipe2$9p(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000500)=ANY=[@ANYBLOB="1500000065ffff048000000800395032303030"], 0x15)
r2 = dup(r1)
write$FUSE_BMAP(r2, &(0x7f0000000080)={0x18, 0x0, 0x0, {0x4}}, 0x18)
write$FUSE_NOTIFY_RETRIEVE(r2, &(0x7f00000000c0)={0x14c}, 0x137)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@cache_mmap}], [], 0x6b}})
chmod(&(0x7f0000000180)='./file0\x00', 0x1d0)
r3 = creat(&(0x7f0000000300)='./file0\x00', 0x0)
pwritev2(r3, &(0x7f0000000480)=[{&(0x7f0000000540)="a6aada2162a9eca7b6f983d446a7cba9ec5d3b9b701543e8e4", 0x19}], 0x1, 0x8, 0x8000, 0x4) (fail_nth: 44)

[   76.098441][ T5312] Bluetooth: hci0: command tx timeout
[   76.177748][ T5328] FAULT_INJECTION: forcing a failure.
[   76.177748][ T5328] name failslab, interval 1, probability 0, space 0, times 1
[   76.184292][ T5328] CPU: 0 UID: 0 PID: 5328 Comm: syz.0.0 Not tainted 6.15.0-rc1-syzkaller-00246-g900241a5cc15 #0 PREEMPT(full) 
[   76.184310][ T5328] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   76.184317][ T5328] Call Trace:
[   76.184322][ T5328]  <TASK>
[   76.184327][ T5328]  dump_stack_lvl+0x241/0x360
[   76.184445][ T5328]  ? __pfx_dump_stack_lvl+0x10/0x10
[   76.184459][ T5328]  ? __pfx__printk+0x10/0x10
[   76.184477][ T5328]  ? __pfx___might_resched+0x10/0x10
[   76.184494][ T5328]  should_fail_ex+0x424/0x570
[   76.184543][ T5328]  should_failslab+0xac/0x100
[   76.184559][ T5328]  kmem_cache_alloc_noprof+0x78/0x390
[   76.184573][ T5328]  ? p9_client_prepare_req+0x178/0xf00
[   76.184614][ T5328]  p9_client_prepare_req+0x178/0xf00
[   76.184634][ T5328]  ? __pfx_p9_client_prepare_req+0x10/0x10
[   76.184660][ T5328]  p9_client_rpc+0x19c/0xad0
[   76.184687][ T5328]  ? __pfx_p9_client_rpc+0x10/0x10
[   76.184704][ T5328]  ? __phys_addr+0xba/0x170
[   76.184720][ T5328]  ? kmem_cache_free+0x312/0x410
[   76.184732][ T5328]  ? p9_req_put+0x18d/0x1f0
[   76.184744][ T5328]  ? p9_req_put+0x19c/0x1f0
[   76.184756][ T5328]  ? iov_iter_revert+0x1d2/0x5a0
[   76.184774][ T5328]  p9_client_write+0x338/0x850
[   76.184796][ T5328]  ? __pfx_p9_client_write+0x10/0x10
[   76.184807][ T5328]  ? do_raw_spin_unlock+0x58/0x8b0
[   76.184825][ T5328]  v9fs_issue_write+0xf1/0x1d0
[   76.184836][ T5328]  ? __pfx_v9fs_issue_write+0x10/0x10
[   76.184846][ T5328]  ? netfs_advance_write+0x86e/0xbd0
[   76.184859][ T5328]  ? rcu_is_watching+0x15/0xb0
[   76.184874][ T5328]  netfs_write_folio+0x145c/0x1c30
[   76.184898][ T5328]  netfs_end_writethrough+0x5b/0x170
[   76.184912][ T5328]  netfs_perform_write+0x1e67/0x2150
[   76.184945][ T5328]  ? __pfx_netfs_perform_write+0x10/0x10
[   76.184969][ T5328]  ? file_update_time+0x2ab/0x450
[   76.184979][ T5328]  ? netfs_buffered_write_iter_locked+0x12e/0x2b0
[   76.184990][ T5328]  netfs_file_write_iter+0x187/0x450
[   76.185001][ T5328]  do_iter_readv_writev+0x71f/0x9d0
[   76.185017][ T5328]  ? __pfx_do_iter_readv_writev+0x10/0x10
[   76.185028][ T5328]  ? rcu_read_lock_any_held+0xbb/0x160
[   76.185052][ T5328]  vfs_writev+0x38d/0xbc0
[   76.185073][ T5328]  ? __lock_acquire+0xad5/0xd80
[   76.185085][ T5328]  ? __pfx_vfs_writev+0x10/0x10
[   76.185111][ T5328]  ? __fget_files+0x2a/0x420
[   76.185122][ T5328]  ? __fget_files+0x39d/0x420
[   76.185130][ T5328]  ? __fget_files+0x2a/0x420
[   76.185141][ T5328]  __se_sys_pwritev2+0x1b8/0x2d0
[   76.185155][ T5328]  ? __pfx___se_sys_pwritev2+0x10/0x10
[   76.185170][ T5328]  ? __x64_sys_pwritev2+0x21/0xf0
[   76.185186][ T5328]  do_syscall_64+0xf3/0x230
[   76.185199][ T5328]  ? clear_bhb_loop+0x45/0xa0
[   76.185213][ T5328]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   76.185223][ T5328] RIP: 0033:0x7f80e538d169
[   76.185234][ T5328] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   76.185243][ T5328] RSP: 002b:00007f80e61cb038 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[   76.185256][ T5328] RAX: ffffffffffffffda RBX: 00007f80e55a5fa0 RCX: 00007f80e538d169
[   76.185263][ T5328] RDX: 0000000000000001 RSI: 0000200000000480 RDI: 0000000000000007
[   76.185270][ T5328] RBP: 00007f80e61cb090 R08: 0000000000008000 R09: 0000000000000004
[   76.185277][ T5328] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000002
[   76.185283][ T5328] R13: 0000000000000000 R14: 00007f80e55a5fa0 R15: 00007fff9e549eb8
[   76.185302][ T5328]  </TASK>
[   76.329804][ T1311] ieee802154 phy0 wpan0: encryption failed: -22
[   76.332287][ T1311] ieee802154 phy1 wpan1: encryption failed: -22
[   76.342304][ T1035] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000023: 0000 [#1] SMP KASAN NOPTI
[   76.347176][ T1035] KASAN: null-ptr-deref in range [0x0000000000000118-0x000000000000011f]
[   76.350550][ T1035] CPU: 0 UID: 0 PID: 1035 Comm: kworker/u4:7 Not tainted 6.15.0-rc1-syzkaller-00246-g900241a5cc15 #0 PREEMPT(full) 
[   76.354992][ T1035] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   76.359591][ T1035] Workqueue: events_unbound netfs_write_collection_worker
[   76.362518][ T1035] RIP: 0010:iov_iter_revert+0x2dc/0x5a0
[   76.364859][ T1035] Code: 74 08 4c 89 ef e8 a4 37 2a fd 4d 8b 6d 00 41 bf 1e 00 00 00 bd 1e 00 00 00 4c 01 ed 48 81 c5 00 01 00 00 48 89 e8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 75 40 0f b6 6d 00 bf 40 00 00 00 89 ee e8 db
[   76.372874][ T1035] RSP: 0018:ffffc90002587630 EFLAGS: 00010203
[   76.375235][ T1035] RAX: 0000000000000023 RBX: ffffc900025877c0 RCX: ffff888000210000
[   76.378440][ T1035] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   76.381730][ T1035] RBP: 000000000000011e R08: ffffffff850344d5 R09: ffffffff85034364
[   76.385086][ T1035] R10: 0000000000000004 R11: ffff888000210000 R12: dffffc0000000000
[   76.388259][ T1035] R13: 0000000000000000 R14: 0000000000000007 R15: 000000000000001e
[   76.391440][ T1035] FS:  0000000000000000(0000) GS:ffff88808c596000(0000) knlGS:0000000000000000
[   76.394703][ T1035] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   76.397310][ T1035] CR2: 00007f80e557e538 CR3: 00000000417f4000 CR4: 0000000000352ef0
[   76.400116][ T1035] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   76.402872][ T1035] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   76.405602][ T1035] Call Trace:
[   76.406813][ T1035]  <TASK>
[   76.407934][ T1035]  netfs_retry_writes+0x17f2/0x19d0
[   76.409788][ T1035]  ? ret_from_fork_asm+0x1a/0x30
[   76.411843][ T1035]  ? ret_from_fork_asm+0x1a/0x30
[   76.413892][ T1035]  ? __pfx_netfs_retry_writes+0x10/0x10
[   76.415993][ T1035]  ? __pfx_stack_trace_save+0x10/0x10
[   76.418189][ T1035]  netfs_write_collection_worker+0x2fc0/0x3bf0
[   76.420605][ T1035]  ? process_scheduled_works+0x9cb/0x18e0
[   76.422908][ T1035]  process_scheduled_works+0xac3/0x18e0
[   76.425178][ T1035]  ? __pfx_process_scheduled_works+0x10/0x10
[   76.427564][ T1035]  ? assign_work+0x367/0x3d0
[   76.429474][ T1035]  worker_thread+0x870/0xd50
[   76.431430][ T1035]  ? __kthread_parkme+0x1a8/0x200
[   76.433518][ T1035]  ? __pfx_worker_thread+0x10/0x10
[   76.435668][ T1035]  kthread+0x7b7/0x940
[   76.437345][ T1035]  ? __pfx_worker_thread+0x10/0x10
[   76.439477][ T1035]  ? __pfx_kthread+0x10/0x10
[   76.441391][ T1035]  ? __pfx_kthread+0x10/0x10
[   76.443234][ T1035]  ? __pfx_kthread+0x10/0x10
[   76.445047][ T1035]  ? __pfx_kthread+0x10/0x10
[   76.446811][ T1035]  ? _raw_spin_unlock_irq+0x23/0x50
[   76.448861][ T1035]  ? lockdep_hardirqs_on+0x9d/0x150
[   76.451039][ T1035]  ? __pfx_kthread+0x10/0x10
[   76.452925][ T1035]  ret_from_fork+0x4b/0x80
[   76.454784][ T1035]  ? __pfx_kthread+0x10/0x10
[   76.456707][ T1035]  ret_from_fork_asm+0x1a/0x30
[   76.458629][ T1035]  </TASK>
[   76.459849][ T1035] Modules linked in:
[   76.461867][ T1035] ---[ end trace 0000000000000000 ]---
[   76.468117][ T1035] RIP: 0010:iov_iter_revert+0x2dc/0x5a0
[   76.470372][ T1035] Code: 74 08 4c 89 ef e8 a4 37 2a fd 4d 8b 6d 00 41 bf 1e 00 00 00 bd 1e 00 00 00 4c 01 ed 48 81 c5 00 01 00 00 48 89 e8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 75 40 0f b6 6d 00 bf 40 00 00 00 89 ee e8 db
[   76.477795][ T1035] RSP: 0018:ffffc90002587630 EFLAGS: 00010203
[   76.481259][ T1035] RAX: 0000000000000023 RBX: ffffc900025877c0 RCX: ffff888000210000
[   76.484681][ T1035] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   76.488209][ T1035] RBP: 000000000000011e R08: ffffffff850344d5 R09: ffffffff85034364
[   76.491286][ T1035] R10: 0000000000000004 R11: ffff888000210000 R12: dffffc0000000000
[   76.494269][ T1035] R13: 0000000000000000 R14: 0000000000000007 R15: 000000000000001e
[   76.497296][ T1035] FS:  0000000000000000(0000) GS:ffff88808c596000(0000) knlGS:0000000000000000
[   76.501476][ T1035] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   76.504200][ T1035] CR2: 00007f80e557e538 CR3: 00000000417f4000 CR4: 0000000000352ef0
[   76.507160][ T1035] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   76.510874][ T1035] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   76.514058][ T1035] Kernel panic - not syncing: Fatal exception
[   76.516635][ T1035] Kernel Offset: disabled
[   76.518380][ T1035] Rebooting in 86400 seconds..