program:
creat(&(0x7f0000000240)='./file0\x00', 0x0)
pipe2$9p(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000500)=ANY=[@ANYBLOB="1500000065ffff048000000800395032303030"], 0x15)
r2 = dup(r1)
write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_NOTIFY_RETRIEVE(r2, &(0x7f00000000c0)={0x14c}, 0x137)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2, @ANYBLOB=',cache=mmap'])
chmod(&(0x7f0000000180)='./file0\x00', 0x1d0)
r3 = creat(&(0x7f0000000300)='./file0\x00', 0x0)
pwritev2(r3, &(0x7f0000000080)=[{&(0x7f0000000340)='L', 0x1}], 0x1, 0x8, 0x7, 0x4) (fail_nth: 16)

[   58.488479][ T5324] FAULT_INJECTION: forcing a failure.
[   58.488479][ T5324] name failslab, interval 1, probability 0, space 0, times 1
[   58.493499][ T5324] CPU: 0 UID: 0 PID: 5324 Comm: syz.0.0 Not tainted 6.14.0-rc6-syzkaller-00007-g0b46b049d6ec #0
[   58.493514][ T5324] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   58.493521][ T5324] Call Trace:
[   58.493526][ T5324]  <TASK>
[   58.493531][ T5324]  dump_stack_lvl+0x241/0x360
[   58.493635][ T5324]  ? __pfx_dump_stack_lvl+0x10/0x10
[   58.493647][ T5324]  ? __pfx__printk+0x10/0x10
[   58.493658][ T5324]  ? fs_reclaim_acquire+0x93/0x130
[   58.493670][ T5324]  ? __pfx___might_resched+0x10/0x10
[   58.493694][ T5324]  should_fail_ex+0x40a/0x550
[   58.493740][ T5324]  should_failslab+0xac/0x100
[   58.493755][ T5324]  __kmalloc_noprof+0xdd/0x4c0
[   58.493770][ T5324]  ? p9_client_prepare_req+0x583/0xf30
[   58.493813][ T5324]  p9_client_prepare_req+0x583/0xf30
[   58.493835][ T5324]  ? __pfx_p9_client_prepare_req+0x10/0x10
[   58.493849][ T5324]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[   58.493867][ T5324]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[   58.493886][ T5324]  p9_client_rpc+0x19d/0xac0
[   58.493906][ T5324]  ? __pfx_p9_client_rpc+0x10/0x10
[   58.493918][ T5324]  ? __phys_addr+0xba/0x170
[   58.493931][ T5324]  ? kmem_cache_free+0x30e/0x410
[   58.493944][ T5324]  ? p9_req_put+0x19c/0x1f0
[   58.493952][ T5324]  ? iov_iter_revert+0x1d2/0x590
[   58.493970][ T5324]  p9_client_write+0x328/0x7a0
[   58.493992][ T5324]  ? __pfx_p9_client_write+0x10/0x10
[   58.494004][ T5324]  ? do_raw_spin_unlock+0x58/0x8b0
[   58.494021][ T5324]  v9fs_issue_write+0xf0/0x1d0
[   58.494036][ T5324]  ? __pfx_v9fs_issue_write+0x10/0x10
[   58.494049][ T5324]  ? netfs_advance_write+0x86e/0xbd0
[   58.494065][ T5324]  ? rcu_is_watching+0x15/0xb0
[   58.494079][ T5324]  netfs_write_folio+0x1451/0x1c30
[   58.494105][ T5324]  netfs_end_writethrough+0x5b/0x170
[   58.494120][ T5324]  netfs_perform_write+0x1e5e/0x2150
[   58.494152][ T5324]  ? __pfx_netfs_perform_write+0x10/0x10
[   58.494187][ T5324]  ? file_update_time+0x2ab/0x450
[   58.494200][ T5324]  ? netfs_buffered_write_iter_locked+0x12e/0x2b0
[   58.494214][ T5324]  netfs_file_write_iter+0x187/0x450
[   58.494227][ T5324]  do_iter_readv_writev+0x71a/0x9d0
[   58.494243][ T5324]  ? __pfx_do_iter_readv_writev+0x10/0x10
[   58.494254][ T5324]  ? rcu_read_lock_any_held+0xb7/0x160
[   58.494275][ T5324]  vfs_writev+0x38b/0xbc0
[   58.494297][ T5324]  ? __pfx_vfs_writev+0x10/0x10
[   58.494308][ T5324]  ? vfs_write+0x7fa/0xd10
[   58.494328][ T5324]  ? __fget_files+0x2a/0x410
[   58.494343][ T5324]  ? __fget_files+0x395/0x410
[   58.494355][ T5324]  ? __fget_files+0x2a/0x410
[   58.494374][ T5324]  __se_sys_pwritev2+0x196/0x2b0
[   58.494388][ T5324]  ? __pfx___se_sys_pwritev2+0x10/0x10
[   58.494401][ T5324]  ? do_syscall_64+0x100/0x230
[   58.494418][ T5324]  ? __x64_sys_pwritev2+0x21/0xf0
[   58.494456][ T5324]  do_syscall_64+0xf3/0x230
[   58.494471][ T5324]  ? clear_bhb_loop+0x35/0x90
[   58.494487][ T5324]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   58.494500][ T5324] RIP: 0033:0x7fb59938d169
[   58.494512][ T5324] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   58.494520][ T5324] RSP: 002b:00007fb59a207038 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[   58.494532][ T5324] RAX: ffffffffffffffda RBX: 00007fb5995a5fa0 RCX: 00007fb59938d169
[   58.494539][ T5324] RDX: 0000000000000001 RSI: 0000400000000080 RDI: 0000000000000007
[   58.494545][ T5324] RBP: 00007fb59a207090 R08: 0000000000000007 R09: 0000000000000004
[   58.494551][ T5324] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000002
[   58.494557][ T5324] R13: 0000000000000000 R14: 00007fb5995a5fa0 R15: 00007ffe3cb82938
[   58.494573][ T5324]  </TASK>
[   58.650733][ T1033] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000023: 0000 [#1] PREEMPT SMP KASAN NOPTI
[   58.655617][ T1033] KASAN: null-ptr-deref in range [0x0000000000000118-0x000000000000011f]
[   58.658836][ T1033] CPU: 0 UID: 0 PID: 1033 Comm: kworker/u4:5 Not tainted 6.14.0-rc6-syzkaller-00007-g0b46b049d6ec #0
[   58.663064][ T1033] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   58.667209][ T1033] Workqueue: events_unbound netfs_write_collection_worker
[   58.669948][ T1033] RIP: 0010:iov_iter_revert+0x2da/0x590
[   58.672122][ T1033] Code: 20 00 74 08 4c 89 ef e8 e4 38 35 fd 4d 8b 6d 00 41 bf 1e 00 00 00 bd 1e 00 00 00 49 8d ac 2d 00 01 00 00 48 89 e8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 75 40 0f b6 6d 00 bf 40 00 00 00 89 ee e8 ed
[   58.679624][ T1033] RSP: 0018:ffffc900026af630 EFLAGS: 00010203
[   58.682083][ T1033] RAX: 0000000000000023 RBX: ffffc900026af7c0 RCX: ffff88801cb4a440
[   58.685184][ T1033] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   58.688246][ T1033] RBP: 000000000000011e R08: ffffffff84f3eba5 R09: ffffffff84f3ea34
[   58.691235][ T1033] R10: 0000000000000004 R11: ffff88801cb4a440 R12: dffffc0000000000
[   58.694357][ T1033] R13: 0000000000000000 R14: 0000000000000001 R15: 000000000000001e
[   58.697637][ T1033] FS:  0000000000000000(0000) GS:ffff88801fc00000(0000) knlGS:0000000000000000
[   58.702085][ T1033] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   58.705259][ T1033] CR2: 00007fb59957d538 CR3: 0000000012e48000 CR4: 0000000000352ef0
[   58.708275][ T1033] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   58.712060][ T1033] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   58.715961][ T1033] Call Trace:
[   58.717317][ T1033]  <TASK>
[   58.718536][ T1033]  ? __die_body+0x5f/0xb0
[   58.720324][ T1033]  ? die_addr+0xb0/0xe0
[   58.722032][ T1033]  ? exc_general_protection+0x3dd/0x5d0
[   58.724251][ T1033]  ? asm_exc_general_protection+0x26/0x30
[   58.726428][ T1033]  ? iov_iter_revert+0x104/0x590
[   58.728464][ T1033]  ? iov_iter_revert+0x275/0x590
[   58.729995][ T1033]  ? iov_iter_revert+0x2da/0x590
[   58.731886][ T1033]  netfs_retry_writes+0x17db/0x19b0
[   58.733828][ T1033]  ? __pfx_validate_chain+0x10/0x10
[   58.735887][ T1033]  ? mark_lock+0x9a/0x360
[   58.737559][ T1033]  ? __lock_acquire+0x1397/0x2100
[   58.739577][ T1033]  ? __pfx_netfs_retry_writes+0x10/0x10
[   58.741829][ T1033]  ? register_lock_class+0x102/0x980
[   58.743910][ T1033]  ? __pfx_register_lock_class+0x10/0x10
[   58.746140][ T1033]  netfs_write_collection_worker+0x2f90/0x3bb0
[   58.748676][ T1033]  ? process_scheduled_works+0x9c6/0x18e0
[   58.750970][ T1033]  process_scheduled_works+0xabe/0x18e0
[   58.753214][ T1033]  ? __pfx_process_scheduled_works+0x10/0x10
[   58.755576][ T1033]  ? assign_work+0x364/0x3d0
[   58.757362][ T1033]  worker_thread+0x870/0xd30
[   58.759174][ T1033]  ? __kthread_parkme+0x169/0x1d0
[   58.761238][ T1033]  ? __pfx_worker_thread+0x10/0x10
[   58.763321][ T1033]  kthread+0x7a9/0x920
[   58.764955][ T1033]  ? __pfx_kthread+0x10/0x10
[   58.766836][ T1033]  ? __pfx_worker_thread+0x10/0x10
[   58.768857][ T1033]  ? __pfx_kthread+0x10/0x10
[   58.770802][ T1033]  ? __pfx_kthread+0x10/0x10
[   58.772752][ T1033]  ? __pfx_kthread+0x10/0x10
[   58.774773][ T1033]  ? _raw_spin_unlock_irq+0x23/0x50
[   58.776827][ T1033]  ? lockdep_hardirqs_on+0x99/0x150
[   58.778778][ T1033]  ? __pfx_kthread+0x10/0x10
[   58.780565][ T1033]  ret_from_fork+0x4b/0x80
[   58.782425][ T1033]  ? __pfx_kthread+0x10/0x10
[   58.784334][ T1033]  ret_from_fork_asm+0x1a/0x30
[   58.786147][ T1033]  </TASK>
[   58.787336][ T1033] Modules linked in:
[   58.789226][ T1033] ---[ end trace 0000000000000000 ]---
[   58.796097][ T1033] RIP: 0010:iov_iter_revert+0x2da/0x590
[   58.798449][ T1033] Code: 20 00 74 08 4c 89 ef e8 e4 38 35 fd 4d 8b 6d 00 41 bf 1e 00 00 00 bd 1e 00 00 00 49 8d ac 2d 00 01 00 00 48 89 e8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 75 40 0f b6 6d 00 bf 40 00 00 00 89 ee e8 ed
[   58.806832][ T1033] RSP: 0018:ffffc900026af630 EFLAGS: 00010203
[   58.809436][ T1033] RAX: 0000000000000023 RBX: ffffc900026af7c0 RCX: ffff88801cb4a440
[   58.812500][ T1033] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   58.816031][ T1033] RBP: 000000000000011e R08: ffffffff84f3eba5 R09: ffffffff84f3ea34
[   58.819293][ T1033] R10: 0000000000000004 R11: ffff88801cb4a440 R12: dffffc0000000000
[   58.822334][ T1033] R13: 0000000000000000 R14: 0000000000000001 R15: 000000000000001e
[   58.825998][ T1033] FS:  0000000000000000(0000) GS:ffff88801fc00000(0000) knlGS:0000000000000000
[   58.829396][ T1033] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   58.832043][ T1033] CR2: 00007fb59957d538 CR3: 0000000012e48000 CR4: 0000000000352ef0
[   58.835541][ T5309] Bluetooth: hci0: command tx timeout
[   58.837904][ T1033] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   58.840722][ T1033] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   58.844175][ T1033] Kernel panic - not syncing: Fatal exception
[   58.846414][ T1033] Kernel Offset: disabled
[   58.847895][ T1033] Rebooting in 86400 seconds..