program:
syz_mount_image$hfs(&(0x7f0000002c80), &(0x7f0000000080)='./file0\x00', 0x4490, &(0x7f0000002cc0)=ANY=[], 0xfd, 0x297, &(0x7f00000000c0)="$eJzs3U1rE0Ecx/HfbB5tS13biiCeqgVP0oeLeClI3oEXT6I2EYqhglZQT+pZfAHe+xZ8AR49iWfBW0++gF4kMrMTs0l2s2lpssn2+4GGJDv/edidzcw/UCIAF9b9xu+jnWP7Z6SSSpLuSYGkulSWdFXX6q8PDvcP263mqIpKLsL+GUWRZqjM3kErKdTGuQgvtK/KWoq/h8mo/9L7vPuA/Lm7P0Eg1fzd6Y7Xp96zybjok96c6ERvtJx3PwAA+fLrf+DX+SW/fw8CacMv+/3r/5wvoImbnQL5lnE8tv67LKtj7Cm57A718j2XwpVV8UFHO8dJdS1ktFVVNLP6zrnJyipdX4JLz/bbrTt7L9rNQB+161V6xdbcYzOaul3dnNY+/zBc9brPTcfML+O1nc6iG0PFjmE73v9YkdVzbNFn3KNvTfPd/DCPTKgvav7f/5U7xl4md6XCgSsV9X8zvUY3yqpcqZRRXnGNXPctjDPK0qibtOrr7LuAYVY/XdTKQFQ0uq3oxfBXFj5qNTFqO6OttcGo3mxOj5w089k8NOv6o69qxPb/gT3bGxrnzrRlXEk/M0aOp+xKhu7kdufnjcSS7gbmK58p+aSnuqvlV2/fPX/SbrdeFvaJvROHD9kVZFZ6OP0n3UkwK/0p7BN7knvv/O1MrfXu5+jZ60n/6OAzujh6F/2UgUyCorD7LhPlf7F8ZdNt1uxD2L9Pr8VjO1mVx2rcSskNVtzjQnoG18e4/GYxcas+2OLInOvmbenWOC1GQt/P2bN7liDT0E895vt/AAAAAAAAAAAAAAAAAACAeXN+/3JQV9qhvMcIAAAAAAAAAAAAAAAAAAAAAMC8S/j931quv//7QNErfv8XmLh/AQAA//9143I2")
openat(0xffffffffffffff9c, &(0x7f0000000400)='./file1\x00', 0x143142, 0x40)
truncate(&(0x7f0000000900)='./file1\x00', 0x4000)

[   90.015234][ T5289] Bluetooth: hci0: command tx timeout
[   90.180748][ T5326] loop0: detected capacity change from 0 to 64
[   90.493563][ T5326] hfs: new node 0 already hashed?
[   90.503718][ T5326] ------------[ cut here ]------------
[   90.506378][ T5326] 1
[   90.506394][ T5326] WARNING: fs/hfs/bnode.c:520 at hfs_bnode_create+0x461/0x4f0, CPU#0: syz.0.0/5326
[   90.512433][ T5326] Modules linked in:
[   90.516359][ T5326] CPU: 0 UID: 0 PID: 5326 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) 
[   90.521410][ T5326] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[   90.525978][ T5326] RIP: 0010:hfs_bnode_create+0x461/0x4f0
[   90.528500][ T5326] Code: e8 8b 89 ee e8 30 0d 76 fe e9 cf fc ff ff e8 96 33 14 ff 4c 89 ef e8 ce 2e fc 08 48 c7 c7 60 49 e8 8b 89 ee e8 10 0d 76 fe 90 <0f> 0b 90 eb b0 44 89 f1 80 e1 07 80 c1 03 38 c1 0f 8c d6 fb ff ff
[   90.537829][ T5326] RSP: 0018:ffffc9000387f320 EFLAGS: 00010246
[   90.540994][ T5326] RAX: 000000000000001f RBX: ffff888041e9e000 RCX: 559fe05d8e739700
[   90.544720][ T5326] RDX: ffffc90020802000 RSI: 0000000000000e75 RDI: 0000000000000e76
[   90.548265][ T5326] RBP: 0000000000000000 R08: ffffc9000387f0a7 R09: 1ffff9200070fe14
[   90.552161][ T5326] R10: dffffc0000000000 R11: fffff5200070fe15 R12: 0000000000000000
[   90.555934][ T5326] R13: ffff888041e9e0d8 R14: ffff8880001c8700 R15: dffffc0000000000
[   90.559349][ T5326] FS:  00007f779d1d16c0(0000) GS:ffff88808c87e000(0000) knlGS:0000000000000000
[   90.562924][ T5326] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   90.565779][ T5326] CR2: 0000563f0ec9ed90 CR3: 0000000042dda000 CR4: 0000000000352ef0
[   90.569317][ T5326] Call Trace:
[   90.571247][ T5326]  <TASK>
[   90.572826][ T5326]  ? do_raw_spin_unlock+0x4d/0x210
[   90.575359][ T5326]  hfs_bmap_alloc+0x5c1/0x650
[   90.577607][ T5326]  ? __pfx_hfs_bmap_alloc+0x10/0x10
[   90.579970][ T5326]  ? hfsplus_listxattr+0x7d8/0xe80
[   90.582442][ T5326]  ? __asan_memcpy+0x40/0x70
[   90.584720][ T5326]  hfs_bnode_split+0xd4/0x1090
[   90.587492][ T5326]  ? hfs_bnode_read+0x22d/0x7f0
[   90.589917][ T5326]  ? __asan_memcpy+0x40/0x70
[   90.592319][ T5326]  ? hfs_bnode_read+0x391/0x7f0
[   90.594755][ T5326]  ? hfs_bnode_read_u16+0x8d/0xe0
[   90.597741][ T5326]  ? __pfx_hfs_bnode_split+0x10/0x10
[   90.600661][ T5326]  ? __hfs_brec_find+0x32f/0x510
[   90.603381][ T5326]  hfs_brec_insert+0x3a1/0xc90
[   90.605403][ T5326]  ? __pfx_hfs_brec_insert+0x10/0x10
[   90.607227][ T5326]  ? __asan_memset+0x22/0x50
[   90.608782][ T5326]  ? hfs_cat_build_record+0x237/0x9f0
[   90.611241][ T5326]  hfs_cat_create+0x518/0x800
[   90.613378][ T5326]  ? __pfx_hfs_cat_create+0x10/0x10
[   90.615554][ T5326]  ? preempt_schedule_common+0x82/0xd0
[   90.617960][ T5326]  ? _raw_spin_unlock+0x3f/0x50
[   90.620057][ T5326]  ? hfs_new_inode+0x92d/0xc70
[   90.622582][ T5326]  hfs_create+0x75/0xe0
[   90.624472][ T5326]  ? __pfx_hfs_create+0x10/0x10
[   90.626820][ T5326]  path_openat+0x1395/0x3860
[   90.629132][ T5326]  ? __pfx_path_openat+0x10/0x10
[   90.631695][ T5326]  ? __x64_sys_openat+0x138/0x170
[   90.634523][ T5326]  do_file_open+0x23e/0x4a0
[   90.636993][ T5326]  ? __pfx_do_file_open+0x10/0x10
[   90.639466][ T5326]  ? _raw_spin_unlock+0x28/0x50
[   90.641903][ T5326]  ? alloc_fd+0x64b/0x6c0
[   90.643891][ T5326]  do_sys_openat2+0x113/0x200
[   90.646119][ T5326]  ? __se_sys_futex+0x3a8/0x450
[   90.648467][ T5326]  ? __pfx_do_sys_openat2+0x10/0x10
[   90.651103][ T5326]  ? rcu_is_watching+0x15/0xb0
[   90.653367][ T5326]  __x64_sys_openat+0x138/0x170
[   90.655641][ T5326]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   90.658627][ T5326]  do_syscall_64+0x15f/0xf80
[   90.660597][ T5326]  ? trace_irq_disable+0x3b/0x140
[   90.662828][ T5326]  ? clear_bhb_loop+0x40/0x90
[   90.664747][ T5326]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   90.667105][ T5326] RIP: 0033:0x7f779c39ce59
[   90.668872][ T5326] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   90.676731][ T5326] RSP: 002b:00007f779d1d0fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[   90.680275][ T5326] RAX: ffffffffffffffda RBX: 00007f779c615fa0 RCX: 00007f779c39ce59
[   90.683915][ T5326] RDX: 0000000000143142 RSI: 0000200000000400 RDI: ffffffffffffff9c
[   90.687431][ T5326] RBP: 00007f779c432d6f R08: 0000000000000000 R09: 0000000000000000
[   90.691252][ T5326] R10: 0000000000000040 R11: 0000000000000246 R12: 0000000000000000
[   90.695102][ T5326] R13: 00007f779c616038 R14: 00007f779c615fa0 R15: 00007ffdf769ced8
[   90.698370][ T5326]  </TASK>
[   90.699762][ T5326] Kernel panic - not syncing: kernel: panic_on_warn set ...
[   90.702881][ T5326] CPU: 0 UID: 0 PID: 5326 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) 
[   90.706822][ T5326] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[   90.711107][ T5326] Call Trace:
[   90.712739][ T5326]  <TASK>
[   90.713988][ T5326]  vpanic+0x56c/0xa60
[   90.715651][ T5326]  ? __pfx__printk+0x10/0x10
[   90.717627][ T5326]  ? __pfx_vpanic+0x10/0x10
[   90.719577][ T5326]  ? is_bpf_text_address+0x292/0x2b0
[   90.721721][ T5326]  ? is_bpf_text_address+0x26/0x2b0
[   90.724102][ T5326]  panic+0xc5/0xd0
[   90.725763][ T5326]  ? __pfx_panic+0x10/0x10
[   90.727725][ T5326]  __warn+0x315/0x4c0
[   90.729525][ T5326]  ? hfs_bnode_create+0x461/0x4f0
[   90.731791][ T5326]  ? hfs_bnode_create+0x461/0x4f0
[   90.734014][ T5326]  __report_bug+0x29a/0x540
[   90.735955][ T5326]  ? preempt_schedule_thunk+0x16/0x30
[   90.738342][ T5326]  ? hfs_bnode_create+0x461/0x4f0
[   90.740558][ T5326]  ? __pfx___report_bug+0x10/0x10
[   90.742851][ T5326]  ? __wake_up_klogd+0xe6/0x120
[   90.744952][ T5326]  ? vprintk_emit+0x4eb/0x560
[   90.747024][ T5326]  ? __pfx_vprintk_emit+0x10/0x10
[   90.749143][ T5326]  ? __wake_up_common_lock+0x190/0x1f0
[   90.751412][ T5326]  ? hfs_bnode_create+0x461/0x4f0
[   90.753687][ T5326]  report_bug+0x16a/0x220
[   90.755667][ T5326]  ? hfs_bnode_create+0x461/0x4f0
[   90.758036][ T5326]  ? hfs_bnode_create+0x463/0x4f0
[   90.760193][ T5326]  handle_bug+0x9c/0x200
[   90.762060][ T5326]  exc_invalid_op+0x1a/0x50
[   90.763998][ T5326]  asm_exc_invalid_op+0x1a/0x20
[   90.766168][ T5326] RIP: 0010:hfs_bnode_create+0x461/0x4f0
[   90.768726][ T5326] Code: e8 8b 89 ee e8 30 0d 76 fe e9 cf fc ff ff e8 96 33 14 ff 4c 89 ef e8 ce 2e fc 08 48 c7 c7 60 49 e8 8b 89 ee e8 10 0d 76 fe 90 <0f> 0b 90 eb b0 44 89 f1 80 e1 07 80 c1 03 38 c1 0f 8c d6 fb ff ff
[   90.777261][ T5326] RSP: 0018:ffffc9000387f320 EFLAGS: 00010246
[   90.779871][ T5326] RAX: 000000000000001f RBX: ffff888041e9e000 RCX: 559fe05d8e739700
[   90.783475][ T5326] RDX: ffffc90020802000 RSI: 0000000000000e75 RDI: 0000000000000e76
[   90.787304][ T5326] RBP: 0000000000000000 R08: ffffc9000387f0a7 R09: 1ffff9200070fe14
[   90.791289][ T5326] R10: dffffc0000000000 R11: fffff5200070fe15 R12: 0000000000000000
[   90.795003][ T5326] R13: ffff888041e9e0d8 R14: ffff8880001c8700 R15: dffffc0000000000
[   90.798571][ T5326]  ? do_raw_spin_unlock+0x4d/0x210
[   90.800957][ T5326]  hfs_bmap_alloc+0x5c1/0x650
[   90.803162][ T5326]  ? __pfx_hfs_bmap_alloc+0x10/0x10
[   90.805565][ T5326]  ? hfsplus_listxattr+0x7d8/0xe80
[   90.808051][ T5326]  ? __asan_memcpy+0x40/0x70
[   90.810113][ T5326]  hfs_bnode_split+0xd4/0x1090
[   90.812366][ T5326]  ? hfs_bnode_read+0x22d/0x7f0
[   90.814666][ T5326]  ? __asan_memcpy+0x40/0x70
[   90.816788][ T5326]  ? hfs_bnode_read+0x391/0x7f0
[   90.818987][ T5326]  ? hfs_bnode_read_u16+0x8d/0xe0
[   90.821318][ T5326]  ? __pfx_hfs_bnode_split+0x10/0x10
[   90.823713][ T5326]  ? __hfs_brec_find+0x32f/0x510
[   90.825879][ T5326]  hfs_brec_insert+0x3a1/0xc90
[   90.827964][ T5326]  ? __pfx_hfs_brec_insert+0x10/0x10
[   90.830304][ T5326]  ? __asan_memset+0x22/0x50
[   90.832435][ T5326]  ? hfs_cat_build_record+0x237/0x9f0
[   90.834870][ T5326]  hfs_cat_create+0x518/0x800
[   90.837019][ T5326]  ? __pfx_hfs_cat_create+0x10/0x10
[   90.839388][ T5326]  ? preempt_schedule_common+0x82/0xd0
[   90.841511][ T5326]  ? _raw_spin_unlock+0x3f/0x50
[   90.843768][ T5326]  ? hfs_new_inode+0x92d/0xc70
[   90.846028][ T5326]  hfs_create+0x75/0xe0
[   90.847939][ T5326]  ? __pfx_hfs_create+0x10/0x10
[   90.850196][ T5326]  path_openat+0x1395/0x3860
[   90.852395][ T5326]  ? __pfx_path_openat+0x10/0x10
[   90.854693][ T5326]  ? __x64_sys_openat+0x138/0x170
[   90.857037][ T5326]  do_file_open+0x23e/0x4a0
[   90.859160][ T5326]  ? __pfx_do_file_open+0x10/0x10
[   90.861605][ T5326]  ? _raw_spin_unlock+0x28/0x50
[   90.863727][ T5326]  ? alloc_fd+0x64b/0x6c0
[   90.865631][ T5326]  do_sys_openat2+0x113/0x200
[   90.867687][ T5326]  ? __se_sys_futex+0x3a8/0x450
[   90.869787][ T5326]  ? __pfx_do_sys_openat2+0x10/0x10
[   90.872056][ T5326]  ? rcu_is_watching+0x15/0xb0
[   90.874381][ T5326]  __x64_sys_openat+0x138/0x170
[   90.876577][ T5326]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   90.879325][ T5326]  do_syscall_64+0x15f/0xf80
[   90.881438][ T5326]  ? trace_irq_disable+0x3b/0x140
[   90.883624][ T5326]  ? clear_bhb_loop+0x40/0x90
[   90.885522][ T5326]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   90.888263][ T5326] RIP: 0033:0x7f779c39ce59
[   90.890333][ T5326] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   90.899020][ T5326] RSP: 002b:00007f779d1d0fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[   90.902616][ T5326] RAX: ffffffffffffffda RBX: 00007f779c615fa0 RCX: 00007f779c39ce59
[   90.906167][ T5326] RDX: 0000000000143142 RSI: 0000200000000400 RDI: ffffffffffffff9c
[   90.909699][ T5326] RBP: 00007f779c432d6f R08: 0000000000000000 R09: 0000000000000000
[   90.913192][ T5326] R10: 0000000000000040 R11: 0000000000000246 R12: 0000000000000000
[   90.916610][ T5326] R13: 00007f779c616038 R14: 00007f779c615fa0 R15: 00007ffdf769ced8
[   90.920123][ T5326]  </TASK>
[   90.921912][ T5326] Kernel Offset: disabled
[   90.924008][ T5326] Rebooting in 86400 seconds..