Extracting prog: 3m51.436989215s
Minimizing prog: 58m45.17930969s
Simplifying prog options: 0s
Extracting C: 38.467333646s
Simplifying C: 16m3.731118244s


extracting reproducer from 1 programs
testing a last program of every proc
single: executing 1 programs separately with timeout 30s
testing program (duration=30s, {Threaded:true Repeat:true RepeatTimes:0 Procs:6 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$hfs-openat$cgroup_ro-write$binfmt_script-mmap-mkdirat
detailed listing:
executing program 0:
syz_mount_image$hfs(&(0x7f0000000180), &(0x7f0000000040)='./file0\x00', 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='codepage=koi8-r,part=0x0000000000000006,quiet,iocharset=cp857,uid=', @ANYRESHEX=0x0, @ANYBLOB="2c0038ff4ab22ac1126a3319aea6729c1fb77e250aa3f3f3a514013df539dfc3ec70b40bf2cd9342fd15771ee81882b03759a2444d8600"], 0x1, 0x2de, &(0x7f0000000900)="$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")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.time\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000200), 0x10f)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2000005, 0x10012, r0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)

program did not crash
single: failed to extract reproducer
single: executing 1 programs separately with timeout 6m0s
testing program (duration=6m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:6 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$hfs-openat$cgroup_ro-write$binfmt_script-mmap-mkdirat
detailed listing:
executing program 0:
syz_mount_image$hfs(&(0x7f0000000180), &(0x7f0000000040)='./file0\x00', 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='codepage=koi8-r,part=0x0000000000000006,quiet,iocharset=cp857,uid=', @ANYRESHEX=0x0, @ANYBLOB="2c0038ff4ab22ac1126a3319aea6729c1fb77e250aa3f3f3a514013df539dfc3ec70b40bf2cd9342fd15771ee81882b03759a2444d8600"], 0x1, 0x2de, &(0x7f0000000900)="$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")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.time\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000200), 0x10f)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2000005, 0x10012, r0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)

program crashed: WARNING in hfs_bnode_create
single: successfully extracted reproducer
found reproducer with 5 syscalls
minimizing guilty program
testing program (duration=6m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:6 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$hfs-openat$cgroup_ro-write$binfmt_script-mmap
detailed listing:
executing program 0:
syz_mount_image$hfs(&(0x7f0000000180), &(0x7f0000000040)='./file0\x00', 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='codepage=koi8-r,part=0x0000000000000006,quiet,iocharset=cp857,uid=', @ANYRESHEX=0x0, @ANYBLOB="2c0038ff4ab22ac1126a3319aea6729c1fb77e250aa3f3f3a514013df539dfc3ec70b40bf2cd9342fd15771ee81882b03759a2444d8600"], 0x1, 0x2de, &(0x7f0000000900)="$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")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.time\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000200), 0x10f)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2000005, 0x10012, r0, 0x0)

program did not crash
testing program (duration=6m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:6 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$hfs-openat$cgroup_ro-write$binfmt_script-mkdirat
detailed listing:
executing program 0:
syz_mount_image$hfs(&(0x7f0000000180), &(0x7f0000000040)='./file0\x00', 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='codepage=koi8-r,part=0x0000000000000006,quiet,iocharset=cp857,uid=', @ANYRESHEX=0x0, @ANYBLOB="2c0038ff4ab22ac1126a3319aea6729c1fb77e250aa3f3f3a514013df539dfc3ec70b40bf2cd9342fd15771ee81882b03759a2444d8600"], 0x1, 0x2de, &(0x7f0000000900)="$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")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.time\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000200), 0x10f)
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)

program did not crash
testing program (duration=6m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:6 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$hfs-openat$cgroup_ro-mmap-mkdirat
detailed listing:
executing program 0:
syz_mount_image$hfs(&(0x7f0000000180), &(0x7f0000000040)='./file0\x00', 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='codepage=koi8-r,part=0x0000000000000006,quiet,iocharset=cp857,uid=', @ANYRESHEX=0x0, @ANYBLOB="2c0038ff4ab22ac1126a3319aea6729c1fb77e250aa3f3f3a514013df539dfc3ec70b40bf2cd9342fd15771ee81882b03759a2444d8600"], 0x1, 0x2de, &(0x7f0000000900)="$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")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.time\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2000005, 0x10012, r0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)

program did not crash
testing program (duration=6m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:6 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$hfs-write$binfmt_script-mmap-mkdirat
detailed listing:
executing program 0:
syz_mount_image$hfs(&(0x7f0000000180), &(0x7f0000000040)='./file0\x00', 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='codepage=koi8-r,part=0x0000000000000006,quiet,iocharset=cp857,uid=', @ANYRESHEX=0x0, @ANYBLOB="2c0038ff4ab22ac1126a3319aea6729c1fb77e250aa3f3f3a514013df539dfc3ec70b40bf2cd9342fd15771ee81882b03759a2444d8600"], 0x1, 0x2de, &(0x7f0000000900)="$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")
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000200), 0x10f)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2000005, 0x10012, 0xffffffffffffffff, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)

program did not crash
testing program (duration=6m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:6 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): openat$cgroup_ro-write$binfmt_script-mmap-mkdirat
detailed listing:
executing program 0:
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.time\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000200), 0x10f)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2000005, 0x10012, r0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)

program did not crash
testing program (duration=6m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:6 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$hfs-openat$cgroup_ro-write$binfmt_script-mmap-mkdirat
detailed listing:
executing program 0:
syz_mount_image$hfs(&(0x7f0000000180), &(0x7f0000000040)='./file0\x00', 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='codepage=koi8-r,part=0x0000000000000006,quiet,iocharset=cp857,uid=', @ANYRESHEX=0x0, @ANYBLOB="2c0038ff4ab22ac1126a3319aea6729c1fb77e250aa3f3f3a514013df539dfc3ec70b40bf2cd9342fd15771ee81882b03759a2444d8600"], 0x1, 0x2de, &(0x7f0000000900)="$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")
r0 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000200), 0x10f)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2000005, 0x10012, r0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)

program did not crash
testing program (duration=6m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:6 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$hfs-openat$cgroup_ro-write$binfmt_script-mmap-mkdirat
detailed listing:
executing program 0:
syz_mount_image$hfs(&(0x7f0000000180), &(0x7f0000000040)='./file0\x00', 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='codepage=koi8-r,part=0x0000000000000006,quiet,iocharset=cp857,uid=', @ANYRESHEX=0x0, @ANYBLOB="2c0038ff4ab22ac1126a3319aea6729c1fb77e250aa3f3f3a514013df539dfc3ec70b40bf2cd9342fd15771ee81882b03759a2444d8600"], 0x1, 0x2de, &(0x7f0000000900)="$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")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.time\x00', 0x275a, 0x0)
write$binfmt_script(r0, 0x0, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2000005, 0x10012, r0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)

program did not crash
testing program (duration=6m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:6 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$hfs-openat$cgroup_ro-write$binfmt_script-mmap-mkdirat
detailed listing:
executing program 0:
syz_mount_image$hfs(&(0x7f0000000180), &(0x7f0000000040)='./file0\x00', 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='codepage=koi8-r,part=0x0000000000000006,quiet,iocharset=cp857,uid=', @ANYRESHEX=0x0, @ANYBLOB="2c0038ff4ab22ac1126a3319aea6729c1fb77e250aa3f3f3a514013df539dfc3ec70b40bf2cd9342fd15771ee81882b03759a2444d8600"], 0x1, 0x2de, &(0x7f0000000900)="$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")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.time\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000200), 0x10f)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2000005, 0x10012, r0, 0x0)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)

program did not crash
extracting C reproducer
testing compiled C program (duration=6m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:6 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$hfs-openat$cgroup_ro-write$binfmt_script-mmap-mkdirat
program crashed: WARNING in hfs_bnode_create
simplifying C reproducer
testing compiled C program (duration=6m0s, {Threaded:false Repeat:true RepeatTimes:0 Procs:6 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$hfs-openat$cgroup_ro-write$binfmt_script-mmap-mkdirat
program crashed: WARNING in hfs_bnode_create
testing compiled C program (duration=6m0s, {Threaded:false Repeat:true RepeatTimes:0 Procs:1 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$hfs-openat$cgroup_ro-write$binfmt_script-mmap-mkdirat
program crashed: WARNING in hfs_bnode_create
testing compiled C program (duration=6m0s, {Threaded:false Repeat:true RepeatTimes:0 Procs:1 Slowdown:1 Sandbox: SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:false KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:false Wifi:false IEEE802154:true Sysctl:true Swap:false UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$hfs-openat$cgroup_ro-write$binfmt_script-mmap-mkdirat
program crashed: WARNING in hfs_bnode_create
testing compiled C program (duration=6m0s, {Threaded:false Repeat:true RepeatTimes:0 Procs:1 Slowdown:1 Sandbox: SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:false KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:false UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$hfs-openat$cgroup_ro-write$binfmt_script-mmap-mkdirat
program crashed: WARNING in hfs_bnode_create
testing compiled C program (duration=6m0s, {Threaded:false Repeat:true RepeatTimes:0 Procs:1 Slowdown:1 Sandbox: SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:false KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:false UseTmpDir:false HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$hfs-openat$cgroup_ro-write$binfmt_script-mmap-mkdirat
program crashed: WARNING in hfs_bnode_create
testing compiled C program (duration=6m0s, {Threaded:false Repeat:true RepeatTimes:0 Procs:1 Slowdown:1 Sandbox: SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:false KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:false UseTmpDir:false HandleSegv:false Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$hfs-openat$cgroup_ro-write$binfmt_script-mmap-mkdirat
program crashed: no output from test machine
a never seen crash title: no output from test machine, ignore
testing compiled C program (duration=6m0s, {Threaded:false Repeat:true RepeatTimes:0 Procs:1 Slowdown:1 Sandbox: SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:false KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:false Wifi:false IEEE802154:false Sysctl:false Swap:false UseTmpDir:false HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$hfs-openat$cgroup_ro-write$binfmt_script-mmap-mkdirat
program crashed: WARNING in hfs_bnode_create
testing program (duration=6m0s, {Threaded:false Repeat:true RepeatTimes:0 Procs:1 Slowdown:1 Sandbox: SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:false KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:false Wifi:false IEEE802154:false Sysctl:false Swap:false UseTmpDir:false HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$hfs-openat$cgroup_ro-write$binfmt_script-mmap-mkdirat
detailed listing:
executing program 0:
syz_mount_image$hfs(&(0x7f0000000180), &(0x7f0000000040)='./file0\x00', 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='codepage=koi8-r,part=0x0000000000000006,quiet,iocharset=cp857,uid=', @ANYRESHEX=0x0, @ANYBLOB="2c0038ff4ab22ac1126a3319aea6729c1fb77e250aa3f3f3a514013df539dfc3ec70b40bf2cd9342fd15771ee81882b03759a2444d8600"], 0x1, 0x2de, &(0x7f0000000900)="$eJzs3T1vE0kcx/HfrO3EeVBuL8nppGsOBSJBExGgQDRGyC09FQJiR4qwgkiCBDQERIl4AfS8BV4EDYg3ABUVNUq3aGbHm117vY4DtuPk+5FsrWdndv7DzHhnViIWgDPrVv3r+6vf7ctIJZUk3ZACSVWpLOkf/Vt9sr23tddqNoouVHIl7MsoLmm68mxsN/OK2nKuhBfaT2XNp9MwHFEU3fw27iAwdm725wikaT8P3fnqiOMaln3p/3HHMGrpDjYHOtBTLYwxHADACeDv/4G/Tcy7JKMgkFb9bf+03P+79yWT71qrKykqLJC6/7vVXWRs//7lTh3u99w/lT0ftHeJRwmm0vF5SvHIyiwwTb9dpYslmNncKmtt46UagV6p5qWyLbv3Rjx02/pEuzLYGOh9tYpuz8atcSvKTu2QNrdazWl7UKvVflay8S8NVuPvMx/NZ3PXhHqnRrL+K0fGdpPrqbCjp4KKjf9y7yvOuVI2l/z0qtVqQSbL366S/3wNXp9WVvN3JOlrth8Q7CcRFMXp6l5U9rFC3Lr1PqWW8kqFyacepZYzpUp+JKxtPGoVPkoZjnYTzVtzx6zohz6onlr/Bza+VaVmZsdXfXrQyricfmTE7ZnKr7bscoZdd47D6XIuicCbPlb7zrzBnpa90QNd18Lus+cPS61Wc8ce3M85eDy/Y3xK5bWUm2f4ByUV5NH+YUpkvYiio1458gfLc0MI/tIfvaD9/khS7PTJy2xnWZISjLqbzspB/ZOKBuTkHESR1OPU0L6ncILsmnan+4SZMQeEUbPrLhPv/9xK3q/q3BbJvoUF6/TiTaYyV1xPdnDZpeCie58daAc313sHl6rxSo89o9tznb8oXUglGhXWGPo4TwlT1xfd4/k/AAAAAAAAAAAAAAAAAADApBnF/zQYdxsBAAAAAAAAAAAAAAAAAAAAAJh0x/r937y/Ee9+/zfk93+BCfIrAAD//2cud98=")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.time\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000200), 0x10f)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2000005, 0x10012, r0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)

program crashed: WARNING in hfs_bnode_create
validation run: crashed=true
testing program (duration=6m0s, {Threaded:false Repeat:true RepeatTimes:0 Procs:1 Slowdown:1 Sandbox: SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:false KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:false Wifi:false IEEE802154:false Sysctl:false Swap:false UseTmpDir:false HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$hfs-openat$cgroup_ro-write$binfmt_script-mmap-mkdirat
detailed listing:
executing program 0:
syz_mount_image$hfs(&(0x7f0000000180), &(0x7f0000000040)='./file0\x00', 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='codepage=koi8-r,part=0x0000000000000006,quiet,iocharset=cp857,uid=', @ANYRESHEX=0x0, @ANYBLOB="2c0038ff4ab22ac1126a3319aea6729c1fb77e250aa3f3f3a514013df539dfc3ec70b40bf2cd9342fd15771ee81882b03759a2444d8600"], 0x1, 0x2de, &(0x7f0000000900)="$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")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.time\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000200), 0x10f)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2000005, 0x10012, r0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)

program crashed: WARNING in hfs_bnode_create
validation run: crashed=true
testing program (duration=6m0s, {Threaded:false Repeat:true RepeatTimes:0 Procs:1 Slowdown:1 Sandbox: SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:false KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:false Wifi:false IEEE802154:false Sysctl:false Swap:false UseTmpDir:false HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$hfs-openat$cgroup_ro-write$binfmt_script-mmap-mkdirat
detailed listing:
executing program 0:
syz_mount_image$hfs(&(0x7f0000000180), &(0x7f0000000040)='./file0\x00', 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='codepage=koi8-r,part=0x0000000000000006,quiet,iocharset=cp857,uid=', @ANYRESHEX=0x0, @ANYBLOB="2c0038ff4ab22ac1126a3319aea6729c1fb77e250aa3f3f3a514013df539dfc3ec70b40bf2cd9342fd15771ee81882b03759a2444d8600"], 0x1, 0x2de, &(0x7f0000000900)="$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")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.time\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000200), 0x10f)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2000005, 0x10012, r0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)

program crashed: WARNING in hfs_bnode_create
validation run: crashed=true
reproducing took 1h29m10.448096775s
repro crashed as (corrupted=false):
loop0: detected capacity change from 0 to 64
hfs: new node 0 already hashed?
------------[ cut here ]------------
1
WARNING: fs/hfs/bnode.c:520 at hfs_bnode_create.cold+0x41/0x49 fs/hfs/bnode.c:520, CPU#1: syz.0.17/6006
Modules linked in:
CPU: 1 UID: 0 PID: 6006 Comm: syz.0.17 Not tainted syzkaller #0 PREEMPT(full) 
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
RIP: 0010:hfs_bnode_create.cold+0x41/0x49 fs/hfs/bnode.c:520
Code: b5 d3 50 0a e9 d7 4e ca 01 e8 7b 79 df 00 4c 89 f7 e8 a3 d3 50 0a e8 6e 79 df 00 89 ee 48 c7 c7 a0 11 b1 8b e8 80 e1 fa ff 90 <0f> 0b 90 e9 d9 51 ca 01 e8 52 79 df 00 e8 4d 98 4d 00 e9 35 54 ca
RSP: 0018:ffffc90003d2f838 EFLAGS: 00010282
RAX: 000000000000001f RBX: ffff888030269100 RCX: 0000000000000000
RDX: 000000000000001f RSI: ffffffff81e5b709 RDI: fffff520007a5ef8
RBP: 0000000000000000 R08: 0000000000000005 R09: 0000000000000000
R10: 0000000080000000 R11: 0000000000000000 R12: dffffc0000000000
R13: ffff888031ba2000 R14: ffff888031ba20e0 R15: 0000000000000000
FS:  0000555588982500(0000) GS:ffff8881246dc000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 0000200000000000 CR3: 000000007922d000 CR4: 0000000000350ef0
Call Trace:
 <TASK>
 hfs_bmap_alloc+0x5a7/0x6b0 fs/hfs/btree.c:326
 hfs_bnode_split+0xda/0xf30 fs/hfsplus/brec.c:245
 hfs_brec_insert+0x2da/0xc20 fs/hfs/brec.c:102
 hfs_cat_create+0x477/0x980 fs/hfs/catalog.c:118
 hfs_mkdir+0x6f/0xe0 fs/hfs/dir.c:232
 vfs_mkdir+0x729/0xb50 fs/namei.c:5139
 do_mkdirat+0x435/0x590 fs/namei.c:5173
 __do_sys_mkdirat fs/namei.c:5195 [inline]
 __se_sys_mkdirat fs/namei.c:5193 [inline]
 __x64_sys_mkdirat+0x112/0x170 fs/namei.c:5193
 do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]
 do_syscall_64+0xc9/0xf80 arch/x86/entry/syscall_64.c:94
 entry_SYSCALL_64_after_hwframe+0x77/0x7f
RIP: 0033:0x7ff1b819aeb9
Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
RSP: 002b:00007fffe8a11c28 EFLAGS: 00000246 ORIG_RAX: 0000000000000102
RAX: ffffffffffffffda RBX: 00007ff1b8415fa0 RCX: 00007ff1b819aeb9
RDX: 0000000000000000 RSI: 0000200000000000 RDI: ffffffffffffff9c
RBP: 00007ff1b8208c1f R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
R13: 00007ff1b8415fac R14: 00007ff1b8415fa0 R15: 00007ff1b8415fa0
 </TASK>

final repro crashed as (corrupted=false):
loop0: detected capacity change from 0 to 64
hfs: new node 0 already hashed?
------------[ cut here ]------------
1
WARNING: fs/hfs/bnode.c:520 at hfs_bnode_create.cold+0x41/0x49 fs/hfs/bnode.c:520, CPU#1: syz.0.17/6006
Modules linked in:
CPU: 1 UID: 0 PID: 6006 Comm: syz.0.17 Not tainted syzkaller #0 PREEMPT(full) 
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
RIP: 0010:hfs_bnode_create.cold+0x41/0x49 fs/hfs/bnode.c:520
Code: b5 d3 50 0a e9 d7 4e ca 01 e8 7b 79 df 00 4c 89 f7 e8 a3 d3 50 0a e8 6e 79 df 00 89 ee 48 c7 c7 a0 11 b1 8b e8 80 e1 fa ff 90 <0f> 0b 90 e9 d9 51 ca 01 e8 52 79 df 00 e8 4d 98 4d 00 e9 35 54 ca
RSP: 0018:ffffc90003d2f838 EFLAGS: 00010282
RAX: 000000000000001f RBX: ffff888030269100 RCX: 0000000000000000
RDX: 000000000000001f RSI: ffffffff81e5b709 RDI: fffff520007a5ef8
RBP: 0000000000000000 R08: 0000000000000005 R09: 0000000000000000
R10: 0000000080000000 R11: 0000000000000000 R12: dffffc0000000000
R13: ffff888031ba2000 R14: ffff888031ba20e0 R15: 0000000000000000
FS:  0000555588982500(0000) GS:ffff8881246dc000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 0000200000000000 CR3: 000000007922d000 CR4: 0000000000350ef0
Call Trace:
 <TASK>
 hfs_bmap_alloc+0x5a7/0x6b0 fs/hfs/btree.c:326
 hfs_bnode_split+0xda/0xf30 fs/hfsplus/brec.c:245
 hfs_brec_insert+0x2da/0xc20 fs/hfs/brec.c:102
 hfs_cat_create+0x477/0x980 fs/hfs/catalog.c:118
 hfs_mkdir+0x6f/0xe0 fs/hfs/dir.c:232
 vfs_mkdir+0x729/0xb50 fs/namei.c:5139
 do_mkdirat+0x435/0x590 fs/namei.c:5173
 __do_sys_mkdirat fs/namei.c:5195 [inline]
 __se_sys_mkdirat fs/namei.c:5193 [inline]
 __x64_sys_mkdirat+0x112/0x170 fs/namei.c:5193
 do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]
 do_syscall_64+0xc9/0xf80 arch/x86/entry/syscall_64.c:94
 entry_SYSCALL_64_after_hwframe+0x77/0x7f
RIP: 0033:0x7ff1b819aeb9
Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
RSP: 002b:00007fffe8a11c28 EFLAGS: 00000246 ORIG_RAX: 0000000000000102
RAX: ffffffffffffffda RBX: 00007ff1b8415fa0 RCX: 00007ff1b819aeb9
RDX: 0000000000000000 RSI: 0000200000000000 RDI: ffffffffffffff9c
RBP: 00007ff1b8208c1f R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
R13: 00007ff1b8415fac R14: 00007ff1b8415fa0 R15: 00007ff1b8415fa0
 </TASK>