program:
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file2\x00', 0x143042, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='rdma.current\x00', 0x275a, 0x0)
mknodat(0xffffffffffffff9c, &(0x7f0000000140)='./file4\x00', 0x40, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file7\x00', 0x105042, 0x1ff)
linkat(0xffffffffffffff9c, &(0x7f0000000000)='./file4\x00', 0xffffffffffffff9c, &(0x7f00000006c0)='./file5\x00', 0x0)
openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x40, 0x0)
syz_mount_image$hfsplus(&(0x7f0000000600), &(0x7f0000000640)='./file1\x00', 0x1008810, &(0x7f0000002600)=ANY=[], 0x1, 0x5f4, &(0x7f000001f6c0)="$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")
chdir(&(0x7f0000000240)='./file0\x00')
llistxattr(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000006ac0)='cpuacct.stat\x00', 0x275a, 0x0)
openat$incfs(0xffffffffffffff9c, &(0x7f0000000640)='.log\x00', 0xa5d, 0x1)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x161442, 0xb6)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000340)='pids.current\x00', 0x275a, 0x0)
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
setsockopt$inet_sctp_SCTP_PARTIAL_DELIVERY_POINT(r0, 0x84, 0x13, &(0x7f0000002840)=0xfffffffc, 0x4)
open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0)

[   92.350016][ T5316] Bluetooth: hci0: command tx timeout
[   92.371951][   T10] cfg80211: failed to load regulatory.db
[   92.466892][ T5339] loop0: detected capacity change from 0 to 1024
[   92.585674][ T5339] hfsplus: new node 0 already hashed?
[   92.592206][ T5339] ------------[ cut here ]------------
[   92.594751][ T5339] 1
[   92.594761][ T5339] WARNING: fs/hfsplus/bnode.c:631 at hfsplus_bnode_create+0x461/0x4f0, CPU#0: syz.0.0/5339
[   92.601340][ T5339] Modules linked in:
[   92.603264][ T5339] CPU: 0 UID: 0 PID: 5339 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) 
[   92.607350][ T5339] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[   92.612021][ T5339] RIP: 0010:hfsplus_bnode_create+0x461/0x4f0
[   92.614304][ T5339] Code: a7 8b 89 ee e8 20 c4 82 fe e9 cf fc ff ff e8 06 c3 1d ff 4c 89 ef e8 ee 61 d8 08 48 c7 c7 00 6d a7 8b 89 ee e8 00 c4 82 fe 90 <0f> 0b 90 eb b0 44 89 f1 80 e1 07 80 c1 03 38 c1 0f 8c d6 fb ff ff
[   92.623072][ T5339] RSP: 0018:ffffc9000df470e0 EFLAGS: 00010246
[   92.626078][ T5339] RAX: 0000000000000023 RBX: ffff88801ef60000 RCX: 08c5976b731e4a00
[   92.629354][ T5339] RDX: ffffc90020802000 RSI: 0000000000000f8d RDI: 0000000000000f8e
[   92.632933][ T5339] RBP: 0000000000000000 R08: ffffc9000df46e67 R09: 1ffff92001be8dcc
[   92.636465][ T5339] R10: dffffc0000000000 R11: fffff52001be8dcd R12: 0000000000000000
[   92.640261][ T5339] R13: ffff88801ef600e0 R14: ffff88800036f100 R15: dffffc0000000000
[   92.644127][ T5339] FS:  00007f0eb0e7d6c0(0000) GS:ffff88808cf1d000(0000) knlGS:0000000000000000
[   92.648416][ T5339] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   92.651413][ T5339] CR2: 0000200000002840 CR3: 000000002304a000 CR4: 0000000000352ef0
[   92.654969][ T5339] Call Trace:
[   92.656517][ T5339]  <TASK>
[   92.657946][ T5339]  ? do_raw_spin_unlock+0x4d/0x210
[   92.660933][ T5339]  hfsplus_bmap_alloc+0x747/0xb00
[   92.663717][ T5339]  ? __pfx_hfsplus_bmap_alloc+0x10/0x10
[   92.666245][ T5339]  ? hfsplus_bnode_read+0x1e5/0x7a0
[   92.668394][ T5339]  ? hfsplus_bnode_read+0x1e5/0x7a0
[   92.670600][ T5339]  hfs_bnode_split+0xd4/0x1090
[   92.672866][ T5339]  ? hfsplus_bnode_read+0x2f0/0x7a0
[   92.675124][ T5339]  ? hfsplus_bnode_read+0x1e5/0x7a0
[   92.677269][ T5339]  ? __asan_memcpy+0x40/0x70
[   92.679285][ T5339]  ? hfsplus_bnode_read+0x2f0/0x7a0
[   92.681637][ T5339]  ? hfsplus_bnode_read_u16+0x8d/0xe0
[   92.683962][ T5339]  ? __pfx_hfs_bnode_split+0x10/0x10
[   92.686344][ T5339]  hfsplus_brec_insert+0x3bc/0xd70
[   92.688801][ T5339]  ? do_raw_spin_unlock+0x4d/0x210
[   92.691054][ T5339]  ? __pfx_hfsplus_brec_insert+0x10/0x10
[   92.693676][ T5339]  ? hfsplus_cat_set_perms+0x277/0x5a0
[   92.696170][ T5339]  hfsplus_create_cat+0xa65/0x11b0
[   92.698535][ T5339]  ? __pfx_hfsplus_create_cat+0x10/0x10
[   92.701050][ T5339]  ? do_raw_spin_unlock+0x4d/0x210
[   92.703529][ T5339]  ? _raw_spin_unlock+0x28/0x50
[   92.706025][ T5339]  ? hfsplus_new_inode+0x643/0x820
[   92.708299][ T5339]  hfsplus_mknod+0x16a/0x290
[   92.710456][ T5339]  ? __pfx_hfsplus_create+0x10/0x10
[   92.712945][ T5339]  path_openat+0x18dd/0x3e20
[   92.715029][ T5339]  ? __pfx_path_openat+0x10/0x10
[   92.717108][ T5339]  do_filp_open+0x22d/0x490
[   92.718803][ T5339]  ? __pfx_do_filp_open+0x10/0x10
[   92.720928][ T5339]  ? _raw_spin_unlock+0x28/0x50
[   92.722897][ T5339]  ? alloc_fd+0x64b/0x6c0
[   92.724711][ T5339]  do_sys_openat2+0x12f/0x220
[   92.726645][ T5339]  ? __se_sys_futex+0x3a8/0x450
[   92.728540][ T5339]  ? __pfx_do_sys_openat2+0x10/0x10
[   92.730597][ T5339]  ? rcu_is_watching+0x15/0xb0
[   92.732563][ T5339]  __x64_sys_open+0x11e/0x150
[   92.734401][ T5339]  do_syscall_64+0xe2/0xf80
[   92.736242][ T5339]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   92.738570][ T5339]  ? trace_irq_disable+0x37/0x100
[   92.740924][ T5339]  ? clear_bhb_loop+0x60/0xb0
[   92.742812][ T5339]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   92.744700][ T5339] RIP: 0033:0x7f0eaff9acb9
[   92.746138][ T5339] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   92.753106][ T5339] RSP: 002b:00007f0eb0e7d028 EFLAGS: 00000246 ORIG_RAX: 0000000000000002
[   92.756376][ T5339] RAX: ffffffffffffffda RBX: 00007f0eb0215fa0 RCX: 00007f0eaff9acb9
[   92.759824][ T5339] RDX: 0000000000000000 RSI: 0000000000141042 RDI: 0000200000000000
[   92.763172][ T5339] RBP: 00007f0eb0008bf7 R08: 0000000000000000 R09: 0000000000000000
[   92.766903][ T5339] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   92.770346][ T5339] R13: 00007f0eb0216038 R14: 00007f0eb0215fa0 R15: 00007ffe3e403608
[   92.773830][ T5339]  </TASK>
[   92.775322][ T5339] Kernel panic - not syncing: kernel: panic_on_warn set ...
[   92.779011][ T5339] CPU: 0 UID: 0 PID: 5339 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) 
[   92.782911][ T5339] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[   92.787360][ T5339] Call Trace:
[   92.788926][ T5339]  <TASK>
[   92.790262][ T5339]  vpanic+0x1e0/0x670
[   92.792062][ T5339]  panic+0xc5/0xd0
[   92.793785][ T5339]  ? __pfx_panic+0x10/0x10
[   92.795696][ T5339]  __warn+0x315/0x4a0
[   92.797469][ T5339]  ? hfsplus_bnode_create+0x461/0x4f0
[   92.799868][ T5339]  ? hfsplus_bnode_create+0x461/0x4f0
[   92.802230][ T5339]  __report_bug+0x29a/0x540
[   92.804155][ T5339]  ? preempt_schedule_thunk+0x16/0x30
[   92.806418][ T5339]  ? hfsplus_bnode_create+0x461/0x4f0
[   92.808816][ T5339]  ? __pfx___report_bug+0x10/0x10
[   92.810919][ T5339]  ? __wake_up_klogd+0xe6/0x120
[   92.812957][ T5339]  ? vprintk_emit+0x4eb/0x560
[   92.814807][ T5339]  ? __pfx_vprintk_emit+0x10/0x10
[   92.817054][ T5339]  ? hfsplus_bnode_create+0x461/0x4f0
[   92.819210][ T5339]  report_bug+0x16a/0x220
[   92.821009][ T5339]  ? hfsplus_bnode_create+0x461/0x4f0
[   92.823206][ T5339]  ? hfsplus_bnode_create+0x463/0x4f0
[   92.825568][ T5339]  handle_bug+0x98/0x200
[   92.827407][ T5339]  exc_invalid_op+0x1a/0x50
[   92.829225][ T5339]  asm_exc_invalid_op+0x1a/0x20
[   92.831107][ T5339] RIP: 0010:hfsplus_bnode_create+0x461/0x4f0
[   92.833454][ T5339] Code: a7 8b 89 ee e8 20 c4 82 fe e9 cf fc ff ff e8 06 c3 1d ff 4c 89 ef e8 ee 61 d8 08 48 c7 c7 00 6d a7 8b 89 ee e8 00 c4 82 fe 90 <0f> 0b 90 eb b0 44 89 f1 80 e1 07 80 c1 03 38 c1 0f 8c d6 fb ff ff
[   92.840967][ T5339] RSP: 0018:ffffc9000df470e0 EFLAGS: 00010246
[   92.843466][ T5339] RAX: 0000000000000023 RBX: ffff88801ef60000 RCX: 08c5976b731e4a00
[   92.846743][ T5339] RDX: ffffc90020802000 RSI: 0000000000000f8d RDI: 0000000000000f8e
[   92.850138][ T5339] RBP: 0000000000000000 R08: ffffc9000df46e67 R09: 1ffff92001be8dcc
[   92.853683][ T5339] R10: dffffc0000000000 R11: fffff52001be8dcd R12: 0000000000000000
[   92.857148][ T5339] R13: ffff88801ef600e0 R14: ffff88800036f100 R15: dffffc0000000000
[   92.860454][ T5339]  ? do_raw_spin_unlock+0x4d/0x210
[   92.862482][ T5339]  hfsplus_bmap_alloc+0x747/0xb00
[   92.864955][ T5339]  ? __pfx_hfsplus_bmap_alloc+0x10/0x10
[   92.867457][ T5339]  ? hfsplus_bnode_read+0x1e5/0x7a0
[   92.869855][ T5339]  ? hfsplus_bnode_read+0x1e5/0x7a0
[   92.872327][ T5339]  hfs_bnode_split+0xd4/0x1090
[   92.874603][ T5339]  ? hfsplus_bnode_read+0x2f0/0x7a0
[   92.877042][ T5339]  ? hfsplus_bnode_read+0x1e5/0x7a0
[   92.879379][ T5339]  ? __asan_memcpy+0x40/0x70
[   92.881452][ T5339]  ? hfsplus_bnode_read+0x2f0/0x7a0
[   92.883738][ T5339]  ? hfsplus_bnode_read_u16+0x8d/0xe0
[   92.886173][ T5339]  ? __pfx_hfs_bnode_split+0x10/0x10
[   92.888590][ T5339]  hfsplus_brec_insert+0x3bc/0xd70
[   92.890981][ T5339]  ? do_raw_spin_unlock+0x4d/0x210
[   92.893385][ T5339]  ? __pfx_hfsplus_brec_insert+0x10/0x10
[   92.895967][ T5339]  ? hfsplus_cat_set_perms+0x277/0x5a0
[   92.898380][ T5339]  hfsplus_create_cat+0xa65/0x11b0
[   92.900690][ T5339]  ? __pfx_hfsplus_create_cat+0x10/0x10
[   92.903605][ T5339]  ? do_raw_spin_unlock+0x4d/0x210
[   92.905906][ T5339]  ? _raw_spin_unlock+0x28/0x50
[   92.908105][ T5339]  ? hfsplus_new_inode+0x643/0x820
[   92.910442][ T5339]  hfsplus_mknod+0x16a/0x290
[   92.912409][ T5339]  ? __pfx_hfsplus_create+0x10/0x10
[   92.914537][ T5339]  path_openat+0x18dd/0x3e20
[   92.916632][ T5339]  ? __pfx_path_openat+0x10/0x10
[   92.918721][ T5339]  do_filp_open+0x22d/0x490
[   92.920638][ T5339]  ? __pfx_do_filp_open+0x10/0x10
[   92.922731][ T5339]  ? _raw_spin_unlock+0x28/0x50
[   92.924761][ T5339]  ? alloc_fd+0x64b/0x6c0
[   92.926508][ T5339]  do_sys_openat2+0x12f/0x220
[   92.928454][ T5339]  ? __se_sys_futex+0x3a8/0x450
[   92.930440][ T5339]  ? __pfx_do_sys_openat2+0x10/0x10
[   92.932663][ T5339]  ? rcu_is_watching+0x15/0xb0
[   92.934767][ T5339]  __x64_sys_open+0x11e/0x150
[   92.936977][ T5339]  do_syscall_64+0xe2/0xf80
[   92.939085][ T5339]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   92.941760][ T5339]  ? trace_irq_disable+0x37/0x100
[   92.943925][ T5339]  ? clear_bhb_loop+0x60/0xb0
[   92.945952][ T5339]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   92.948525][ T5339] RIP: 0033:0x7f0eaff9acb9
[   92.950483][ T5339] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   92.958618][ T5339] RSP: 002b:00007f0eb0e7d028 EFLAGS: 00000246 ORIG_RAX: 0000000000000002
[   92.962285][ T5339] RAX: ffffffffffffffda RBX: 00007f0eb0215fa0 RCX: 00007f0eaff9acb9
[   92.965788][ T5339] RDX: 0000000000000000 RSI: 0000000000141042 RDI: 0000200000000000
[   92.969178][ T5339] RBP: 00007f0eb0008bf7 R08: 0000000000000000 R09: 0000000000000000
[   92.972634][ T5339] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   92.976229][ T5339] R13: 00007f0eb0216038 R14: 00007f0eb0215fa0 R15: 00007ffe3e403608
[   92.979687][ T5339]  </TASK>
[   92.981468][ T5339] Kernel Offset: disabled
[   92.983451][ T5339] Rebooting in 86400 seconds..