program:
syz_mount_image$hfsplus(&(0x7f0000000100), &(0x7f0000002900)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x2000010, &(0x7f00000022c0)=ANY=[], 0x1, 0x6d0, &(0x7f0000000140)="$eJzs3c1vHGcdB/DvrNdbb6iC0yY0QkVYiVSQIhInlgvhgkEI5VChqhx6thKnsbpJqsRFaYXABQQnJA79AwqSbxwQEvegcOFSbr36WAmJS8Qh6mXRzM6ud+31WxLbCXw+0XieZ56X+c0zz8x411ltgP9bV86leT9Frpx7416ZX1+b66yvzb1QF3eSlOlG0uytUtxKigfJQlleDC0ZWm/x8fLltz57uP55L9esl6r+xE7txhhTd7VeMlP3NzO25eRed7Fah5cXk1yt16Nae+1rpGI5aGfrNRy57har+2m+n+sWeMb0n05F77m5xXRyLMlU/XtA6rtD4/AiPBj7ussBAADAc+rT20cdAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADx/6u//L+qlUa8zk6L//f+t/rY6/Qxa2HPN+wcaBwAAAAAAAAAcjq8/yqPcy/F+vltUf/M/U2VO5otu8qW8n7tZyp2cz70sZiUruZOLSaaHOmrdW1xZuXNx0LI0vuWlsS0vHdYRAwAAAAAAAMD/pF+mvfH3fwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAeBYUyURvVS0n63Wm02hmoyyryT+TtI463n0oNuWfp9gBAABgYOox2nz5UR7lXo73892ies3/ler18lTez62sZDkr6WQp1+rX0OUr58b62lxnfW3uZrmU+dF+v//vfYXRqnuYqHLj9ny6qtHO9SxXW87nahXMtTR6+z6bnO7HMxTXkI/KmIrv1fYYWbMe1nJnvx/zLsLTc38k19ihZnsjuGQwIrN1bGXLE70RKKo3apLNI7Hr2WmO5KarXicHe7qYxuDdk5MHMObH6nV5PL850DHfr8FINFKNxKX+7CuvmZ1HIvnGX//09o3OrXdvXL977tk5pF1MbLN985yYGxqJV57rkWjus/5sNRKnBvkr+VF+knOZyZu5k+X8NItZyVK6dfliPZ/Ln9M7j9TCSO7N3SJp1eeld872EtNMflilFnOmans8yylyO9eylNerf5dyMd/OfOZzeegMn9o27urYqqu+sfmq75/pv40N/uw360R5d/vtxl1uYacj3m52Pi29e385rieGxrU36x8Oap0Yug5mh0bppf7oTI7t/HHujc2v1olyH7/a5TlxuKbrkSgvoP5Toh/dy72RaFbPoq3z/A/dsl06t7rdG4vvbdP/6qb8a/W6nFZrX9utdt/4U/F0lfPlpUzVd5LR2VGWvTy4ywyVdTfmcq9s9IlbtjtVlRVF/0r9cW5XE6B3pVYnIKmu1Fb9O9zWni5VZa+MLZuryk4PlY38vpXb6eTaIYwfAI/jH28PktM51mr/q/1p+5P2r9s32m9M/eCF77zwaiuTf5/8bnN24rXGq8Vf8kl+vvH6HwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAeHx3P/jw3cVOZ+nO+ERj+6KRRDubt+zW86ZEUX+hz/5aPbuJqSQjW6rvOTr0MNqbw9iS6P4iOfTx6X+J4Pg6vysTzS0zalxiYWTLn7d2+NE+Iyz2dl0cYKKRw93pRMZPgCO8KQGH4sLKzfcu3P3gw28t31x8Z+mdpVuT8/OXZy/Pvz534fpyZ2m29/OoowQOwsZD/6gjAQAAAAAAAAAAAPZq3AcDzry424dG9vQZD/+zEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgqrpxL836KXJw9P1vm19fmOuXST2e+VddsJmk0kuJnSfEgWUhvyfRQd0X++CDdMfv5ePnyW589XP98o69mr37SqNfb27k0yWq9ZCbJRL1+AiP9XX3i/or/9I+hHLAvut3uwpPFB0/HfwMAAP//DQfz0w==")
r0 = open(&(0x7f0000000040)='./bus\x00', 0x6342, 0x0)
ioctl$USBDEVFS_GET_SPEED(r0, 0x551f) (async)
ioctl$USBDEVFS_GET_SPEED(r0, 0x551f)

[   74.923962][ T5321] Bluetooth: hci0: command tx timeout
[   74.987657][ T5341] loop0: detected capacity change from 0 to 1024
[   75.054273][ T5341] hfsplus: new node 0 already hashed?
[   75.063874][ T5341] ------------[ cut here ]------------
[   75.066431][ T5341] WARNING: CPU: 0 PID: 5341 at fs/hfsplus/bnode.c:579 hfsplus_bnode_create+0x461/0x4f0
[   75.070474][ T5341] Modules linked in:
[   75.072741][ T5341] CPU: 0 UID: 0 PID: 5341 Comm: syz.0.0 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) 
[   75.077125][ T5341] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   75.081676][ T5341] RIP: 0010:hfsplus_bnode_create+0x461/0x4f0
[   75.084925][ T5341] Code: a1 8b 89 ee e8 b0 aa 8f fe e9 cf fc ff ff e8 96 3e 28 ff 4c 89 ef e8 ce 22 da 08 48 c7 c7 e0 bf a1 8b 89 ee e8 90 aa 8f fe 90 <0f> 0b 90 eb b0 44 89 f1 80 e1 07 80 c1 03 38 c1 0f 8c d6 fb ff ff
[   75.093656][ T5341] RSP: 0018:ffffc9000d38f040 EFLAGS: 00010246
[   75.096272][ T5341] RAX: 0000000000000023 RBX: ffff8880333c0000 RCX: 751616cbaefcf500
[   75.099701][ T5341] RDX: 0000000000000000 RSI: 0000000080000000 RDI: 0000000000000000
[   75.103638][ T5341] RBP: 0000000000000000 R08: ffffc9000d38ed67 R09: 1ffff92001a71dac
[   75.107017][ T5341] R10: dffffc0000000000 R11: fffff52001a71dad R12: 0000000000000000
[   75.110302][ T5341] R13: ffff8880333c00e0 R14: ffff88803687f000 R15: dffffc0000000000
[   75.114300][ T5341] FS:  00007fd8649aa6c0(0000) GS:ffff88808d218000(0000) knlGS:0000000000000000
[   75.118168][ T5341] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   75.120940][ T5341] CR2: 00007fdc20f909c0 CR3: 0000000011d40000 CR4: 0000000000352ef0
[   75.124328][ T5341] Call Trace:
[   75.125760][ T5341]  <TASK>
[   75.127057][ T5341]  ? do_raw_spin_unlock+0x4d/0x240
[   75.129148][ T5341]  hfsplus_bmap_alloc+0x5af/0x640
[   75.131326][ T5341]  ? __pfx_hfsplus_bmap_alloc+0x10/0x10
[   75.134138][ T5341]  ? hfsplus_bnode_read+0x135/0x2a0
[   75.136631][ T5341]  ? hfsplus_bnode_read+0x135/0x2a0
[   75.138983][ T5341]  hfs_bnode_split+0xcc/0xef0
[   75.140883][ T5341]  ? hfsplus_bnode_read+0x255/0x2a0
[   75.143497][ T5341]  ? hfsplus_bnode_read+0x135/0x2a0
[   75.145878][ T5341]  ? __asan_memcpy+0x40/0x70
[   75.147863][ T5341]  ? hfsplus_bnode_read_u16+0x87/0xd0
[   75.150182][ T5341]  ? __pfx_hfs_bnode_split+0x10/0x10
[   75.152592][ T5341]  hfsplus_brec_insert+0x38f/0xcc0
[   75.154717][ T5341]  ? __pfx_hfsplus_brec_insert+0x10/0x10
[   75.157240][ T5341]  hfsplus_create_cat+0x3b6/0x1000
[   75.159403][ T5341]  ? __pfx_hfsplus_create_cat+0x10/0x10
[   75.161574][ T5341]  ? do_raw_spin_unlock+0x4d/0x240
[   75.164007][ T5341]  ? do_raw_spin_unlock+0x4d/0x240
[   75.166129][ T5341]  ? _raw_spin_unlock+0x28/0x50
[   75.168156][ T5341]  ? hfsplus_new_inode+0x643/0x820
[   75.170178][ T5341]  hfsplus_fill_super+0x1314/0x1b70
[   75.172412][ T5341]  ? __pfx_hfsplus_fill_super+0x10/0x10
[   75.174506][ T5341]  ? string+0x279/0x2b0
[   75.176448][ T5341]  ? snprintf+0xda/0x120
[   75.178371][ T5341]  ? sb_set_blocksize+0x104/0x180
[   75.180572][ T5341]  ? setup_bdev_super+0x4c1/0x5b0
[   75.182701][ T5341]  get_tree_bdev_flags+0x40e/0x4d0
[   75.184768][ T5341]  ? __pfx_hfsplus_fill_super+0x10/0x10
[   75.187178][ T5341]  ? __pfx_get_tree_bdev_flags+0x10/0x10
[   75.189485][ T5341]  vfs_get_tree+0x92/0x2b0
[   75.191069][ T5341]  do_new_mount+0x24a/0xa40
[   75.193054][ T5341]  __se_sys_mount+0x317/0x410
[   75.194871][ T5341]  ? __pfx___se_sys_mount+0x10/0x10
[   75.196933][ T5341]  ? do_syscall_64+0xbe/0x3b0
[   75.198925][ T5341]  ? __x64_sys_mount+0x20/0xc0
[   75.201086][ T5341]  do_syscall_64+0xfa/0x3b0
[   75.203061][ T5341]  ? lockdep_hardirqs_on+0x9c/0x150
[   75.205268][ T5341]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   75.208148][ T5341]  ? clear_bhb_loop+0x60/0xb0
[   75.210215][ T5341]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   75.212836][ T5341] RIP: 0033:0x7fd863b9014a
[   75.214953][ T5341] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   75.222813][ T5341] RSP: 002b:00007fd8649a9e68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[   75.226504][ T5341] RAX: ffffffffffffffda RBX: 00007fd8649a9ef0 RCX: 00007fd863b9014a
[   75.229933][ T5341] RDX: 0000200000000100 RSI: 0000200000002900 RDI: 00007fd8649a9eb0
[   75.233448][ T5341] RBP: 0000200000000100 R08: 00007fd8649a9ef0 R09: 0000000002000010
[   75.236926][ T5341] R10: 0000000002000010 R11: 0000000000000246 R12: 0000200000002900
[   75.240307][ T5341] R13: 00007fd8649a9eb0 R14: 00000000000006d0 R15: 00002000000022c0
[   75.244025][ T5341]  </TASK>
[   75.245528][ T5341] Kernel panic - not syncing: kernel: panic_on_warn set ...
[   75.248877][ T5341] CPU: 0 UID: 0 PID: 5341 Comm: syz.0.0 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) 
[   75.252922][ T5341] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   75.257496][ T5341] Call Trace:
[   75.258990][ T5341]  <TASK>
[   75.260241][ T5341]  dump_stack_lvl+0x99/0x250
[   75.262067][ T5341]  ? __asan_memcpy+0x40/0x70
[   75.263876][ T5341]  ? __pfx_dump_stack_lvl+0x10/0x10
[   75.265739][ T5341]  ? __pfx__printk+0x10/0x10
[   75.267627][ T5341]  panic+0x2db/0x790
[   75.269297][ T5341]  ? __pfx_panic+0x10/0x10
[   75.271023][ T5341]  ? show_trace_log_lvl+0x4fb/0x550
[   75.273279][ T5341]  __warn+0x31b/0x4b0
[   75.275127][ T5341]  ? hfsplus_bnode_create+0x461/0x4f0
[   75.277623][ T5341]  ? hfsplus_bnode_create+0x461/0x4f0
[   75.279923][ T5341]  report_bug+0x2be/0x4f0
[   75.281904][ T5341]  ? hfsplus_bnode_create+0x461/0x4f0
[   75.284158][ T5341]  ? hfsplus_bnode_create+0x461/0x4f0
[   75.286702][ T5341]  ? hfsplus_bnode_create+0x463/0x4f0
[   75.289174][ T5341]  handle_bug+0x84/0x160
[   75.290865][ T5341]  exc_invalid_op+0x1a/0x50
[   75.292762][ T5341]  asm_exc_invalid_op+0x1a/0x20
[   75.294989][ T5341] RIP: 0010:hfsplus_bnode_create+0x461/0x4f0
[   75.297581][ T5341] Code: a1 8b 89 ee e8 b0 aa 8f fe e9 cf fc ff ff e8 96 3e 28 ff 4c 89 ef e8 ce 22 da 08 48 c7 c7 e0 bf a1 8b 89 ee e8 90 aa 8f fe 90 <0f> 0b 90 eb b0 44 89 f1 80 e1 07 80 c1 03 38 c1 0f 8c d6 fb ff ff
[   75.306050][ T5341] RSP: 0018:ffffc9000d38f040 EFLAGS: 00010246
[   75.308774][ T5341] RAX: 0000000000000023 RBX: ffff8880333c0000 RCX: 751616cbaefcf500
[   75.311678][ T5341] RDX: 0000000000000000 RSI: 0000000080000000 RDI: 0000000000000000
[   75.315037][ T5341] RBP: 0000000000000000 R08: ffffc9000d38ed67 R09: 1ffff92001a71dac
[   75.318472][ T5341] R10: dffffc0000000000 R11: fffff52001a71dad R12: 0000000000000000
[   75.321874][ T5341] R13: ffff8880333c00e0 R14: ffff88803687f000 R15: dffffc0000000000
[   75.325105][ T5341]  ? do_raw_spin_unlock+0x4d/0x240
[   75.327361][ T5341]  hfsplus_bmap_alloc+0x5af/0x640
[   75.329487][ T5341]  ? __pfx_hfsplus_bmap_alloc+0x10/0x10
[   75.331783][ T5341]  ? hfsplus_bnode_read+0x135/0x2a0
[   75.334049][ T5341]  ? hfsplus_bnode_read+0x135/0x2a0
[   75.336283][ T5341]  hfs_bnode_split+0xcc/0xef0
[   75.338277][ T5341]  ? hfsplus_bnode_read+0x255/0x2a0
[   75.340458][ T5341]  ? hfsplus_bnode_read+0x135/0x2a0
[   75.342619][ T5341]  ? __asan_memcpy+0x40/0x70
[   75.344592][ T5341]  ? hfsplus_bnode_read_u16+0x87/0xd0
[   75.346895][ T5341]  ? __pfx_hfs_bnode_split+0x10/0x10
[   75.349179][ T5341]  hfsplus_brec_insert+0x38f/0xcc0
[   75.351421][ T5341]  ? __pfx_hfsplus_brec_insert+0x10/0x10
[   75.353802][ T5341]  hfsplus_create_cat+0x3b6/0x1000
[   75.356085][ T5341]  ? __pfx_hfsplus_create_cat+0x10/0x10
[   75.358469][ T5341]  ? do_raw_spin_unlock+0x4d/0x240
[   75.360704][ T5341]  ? do_raw_spin_unlock+0x4d/0x240
[   75.362890][ T5341]  ? _raw_spin_unlock+0x28/0x50
[   75.365012][ T5341]  ? hfsplus_new_inode+0x643/0x820
[   75.367256][ T5341]  hfsplus_fill_super+0x1314/0x1b70
[   75.369525][ T5341]  ? __pfx_hfsplus_fill_super+0x10/0x10
[   75.371960][ T5341]  ? string+0x279/0x2b0
[   75.373851][ T5341]  ? snprintf+0xda/0x120
[   75.375672][ T5341]  ? sb_set_blocksize+0x104/0x180
[   75.377822][ T5341]  ? setup_bdev_super+0x4c1/0x5b0
[   75.379979][ T5341]  get_tree_bdev_flags+0x40e/0x4d0
[   75.382198][ T5341]  ? __pfx_hfsplus_fill_super+0x10/0x10
[   75.384529][ T5341]  ? __pfx_get_tree_bdev_flags+0x10/0x10
[   75.386992][ T5341]  vfs_get_tree+0x92/0x2b0
[   75.388917][ T5341]  do_new_mount+0x24a/0xa40
[   75.390891][ T5341]  __se_sys_mount+0x317/0x410
[   75.392978][ T5341]  ? __pfx___se_sys_mount+0x10/0x10
[   75.395283][ T5341]  ? do_syscall_64+0xbe/0x3b0
[   75.397431][ T5341]  ? __x64_sys_mount+0x20/0xc0
[   75.399575][ T5341]  do_syscall_64+0xfa/0x3b0
[   75.401680][ T5341]  ? lockdep_hardirqs_on+0x9c/0x150
[   75.403954][ T5341]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   75.406531][ T5341]  ? clear_bhb_loop+0x60/0xb0
[   75.408633][ T5341]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   75.411164][ T5341] RIP: 0033:0x7fd863b9014a
[   75.413174][ T5341] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   75.421462][ T5341] RSP: 002b:00007fd8649a9e68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[   75.424957][ T5341] RAX: ffffffffffffffda RBX: 00007fd8649a9ef0 RCX: 00007fd863b9014a
[   75.428484][ T5341] RDX: 0000200000000100 RSI: 0000200000002900 RDI: 00007fd8649a9eb0
[   75.431856][ T5341] RBP: 0000200000000100 R08: 00007fd8649a9ef0 R09: 0000000002000010
[   75.435369][ T5341] R10: 0000000002000010 R11: 0000000000000246 R12: 0000200000002900
[   75.438787][ T5341] R13: 00007fd8649a9eb0 R14: 00000000000006d0 R15: 00002000000022c0
[   75.442154][ T5341]  </TASK>
[   75.443850][ T5341] Kernel Offset: disabled
[   75.445675][ T5341] Rebooting in 86400 seconds..