program:
syz_emit_vhci(&(0x7f00000006c0)=ANY=[@ANYBLOB="96ff0a028298544872ff3a9aca670cdaf6e89754551591f012b965658094ca25fae4b74c73277af94b3c1778d45875afa2d6105b558c552b38f41540c8a9f5b4835f8cc594a7be65dbdf190c5e8ae2f9535d369dfcc6fc531bbbf701cf09888c63ccb2ffab7f8878cf3e86c5b00cc5b1de97b18d7cca214cebbf345e6229bbee96e87d27dab2524e8861b8930e1b85f7e16b04c1e3c1c612ab6ca87a1af9fae61a66ff1a5730411aba967a2bef970e97a9bce3bf96f400000000000000336916d89fa81154004da7d94d194793"], 0xd)
r0 = creat(&(0x7f0000000000)='./bus\x00', 0x20)
syncfs(r0)
syz_mount_image$hfsplus(&(0x7f00000000c0), &(0x7f0000002900)='./bus\x00', 0x2000010, &(0x7f0000000100)=ANY=[], 0x1, 0x6d1, &(0x7f0000000c00)="$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")
r1 = socket$inet_udp(0x2, 0x2, 0x0)
r2 = socket$inet_mptcp(0x2, 0x1, 0x106)
getsockopt$inet_tcp_int(r2, 0x6, 0x17, 0x0, &(0x7f0000000340))
setsockopt$inet_group_source_req(r1, 0x0, 0x2e, &(0x7f0000000340)={0x23, {{0x2, 0x0, @multicast1}}, {{0x2, 0x0, @multicast1}}}, 0x108)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='cgroup.events\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000000), 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0xbcb07b29f486204c, 0x10012, r3, 0x0)
r4 = socket(0x80000000000000a, 0x2, 0x0)
setsockopt$inet6_group_source_req(r4, 0x29, 0x2a, &(0x7f0000000200)={0x0, {{0xa, 0xfffe, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x4e23, 0x6, @remote}}}, 0x104)
r5 = socket(0x80000000000000a, 0x2, 0x0)
setsockopt$inet6_group_source_req(r5, 0x29, 0x2a, &(0x7f0000000080)={0x20, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @remote}}}, 0x108)
setsockopt$inet6_group_source_req(r5, 0x29, 0x2e, &(0x7f0000000200)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x0, 0x0}}}}}, 0x108)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48)
syz_open_procfs(0x0, &(0x7f0000000080)='fdinfo/3\x00')
read$FUSE(r0, &(0x7f0000006300)={0x2020}, 0xfffffffffffffee2)
getsockopt$inet_buf(r1, 0x0, 0x30, &(0x7f0000000340)=""/225, &(0x7f0000000180)=0xe1)
r6 = syz_open_dev$dri(&(0x7f0000000540), 0x1, 0x200)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r6, 0xc04064a0, &(0x7f0000000300)={0x0, &(0x7f0000000240)=[<r7=>0x0], 0x0, 0x0, 0x0, 0x1})
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_TYPE(r8, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="340000000d06010200000000001e000003000004050005000700000005000100070000000d000300686173683a6d616300000000"], 0x34}, 0x1, 0x0, 0x0, 0x8c0}, 0x48000)
preadv(r8, &(0x7f0000000680)=[{&(0x7f0000000480)=""/178, 0xb2}, {&(0x7f0000000580)=""/242, 0xf2}], 0x2, 0x4, 0x0)
ioctl$DRM_IOCTL_MODE_GETCRTC(r3, 0xc06864a1, &(0x7f00000001c0)={0x0, 0x0, r7, <r9=>0x0})
ioctl$KVM_GET_LAPIC(r0, 0x8400ae8e, &(0x7f0000001300))
ioctl$DRM_IOCTL_MODE_DIRTYFB(r6, 0xc01864b1, &(0x7f0000000080)={r9, 0x9b5b711a9011ec76, 0x3ff, 0x0, 0x0})
r10 = mmap$IORING_OFF_SQ_RING(&(0x7f0000001000/0x2000)=nil, 0x2000, 0x0, 0x2010, r3, 0x0)
syz_memcpy_off$IO_URING_METADATA_FLAGS(r10, 0x114, &(0x7f0000000040)=0x1, 0x0, 0x4)

[   94.911562][    T9] cfg80211: failed to load regulatory.db
[   94.915368][ T5296] Bluetooth: hci0: command tx timeout
[   95.224800][ T5318] loop0: detected capacity change from 0 to 1024
[   95.288476][ T5318] 
[   95.289498][ T5318] ============================================
[   95.291860][ T5318] WARNING: possible recursive locking detected
[   95.294376][ T5318] syzkaller #0 Not tainted
[   95.296332][ T5318] --------------------------------------------
[   95.298939][ T5318] syz.0.0/5318 is trying to acquire lock:
[   95.301368][ T5318] ffff88801fcf3708 (&HFSPLUS_I(inode)->extents_lock){+.+.}-{4:4}, at: hfsplus_get_block+0x39e/0x1670
[   95.306377][ T5318] 
[   95.306377][ T5318] but task is already holding lock:
[   95.309453][ T5318] ffff88801f1e87c8 (&HFSPLUS_I(inode)->extents_lock){+.+.}-{4:4}, at: hfsplus_file_extend+0x215/0x1d70
[   95.314031][ T5318] 
[   95.314031][ T5318] other info that might help us debug this:
[   95.317474][ T5318]  Possible unsafe locking scenario:
[   95.317474][ T5318] 
[   95.320555][ T5318]        CPU0
[   95.322107][ T5318]        ----
[   95.323608][ T5318]   lock(&HFSPLUS_I(inode)->extents_lock);
[   95.326131][ T5318]   lock(&HFSPLUS_I(inode)->extents_lock);
[   95.328645][ T5318] 
[   95.328645][ T5318]  *** DEADLOCK ***
[   95.328645][ T5318] 
[   95.331896][ T5318]  May be due to missing lock nesting notation
[   95.331896][ T5318] 
[   95.335474][ T5318] 5 locks held by syz.0.0/5318:
[   95.337584][ T5318]  #0: ffff88801fcee0e0 (&type->s_umount_key#52/1){+.+.}-{4:4}, at: alloc_super+0x28c/0xab0
[   95.341715][ T5318]  #1: ffff88801f1ef998 (&sbi->vh_mutex){+.+.}-{4:4}, at: hfsplus_fill_super+0x1246/0x1a00
[   95.345874][ T5318]  #2: ffff888042c020b0 (&tree->tree_lock){+.+.}-{4:4}, at: hfsplus_find_init+0x168/0x2d0
[   95.350086][ T5318]  #3: ffff88801f1e87c8 (&HFSPLUS_I(inode)->extents_lock){+.+.}-{4:4}, at: hfsplus_file_extend+0x215/0x1d70
[   95.354955][ T5318]  #4: ffff88801f1ef8f8 (&sbi->alloc_mutex){+.+.}-{4:4}, at: hfsplus_block_allocate+0xa7/0xce0
[   95.359477][ T5318] 
[   95.359477][ T5318] stack backtrace:
[   95.362021][ T5318] CPU: 0 UID: 0 PID: 5318 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) 
[   95.362037][ T5318] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[   95.362045][ T5318] Call Trace:
[   95.362057][ T5318]  <TASK>
[   95.362063][ T5318]  dump_stack_lvl+0xe8/0x150
[   95.362082][ T5318]  print_deadlock_bug+0x279/0x290
[   95.362104][ T5318]  __lock_acquire+0x253f/0x2cf0
[   95.362119][ T5318]  ? lock_release+0x4b/0x3d0
[   95.362132][ T5318]  ? lock_release+0x4b/0x3d0
[   95.362145][ T5318]  ? is_bpf_text_address+0x292/0x2b0
[   95.362155][ T5318]  ? is_bpf_text_address+0x26/0x2b0
[   95.362165][ T5318]  lock_acquire+0xf0/0x2e0
[   95.362177][ T5318]  ? hfsplus_get_block+0x39e/0x1670
[   95.362194][ T5318]  __mutex_lock+0x19f/0x1300
[   95.362289][ T5318]  ? hfsplus_get_block+0x39e/0x1670
[   95.362302][ T5318]  ? stack_trace_save+0xa9/0x100
[   95.362314][ T5318]  ? __pfx_stack_trace_save+0x10/0x10
[   95.362325][ T5318]  ? check_path+0x21/0x40
[   95.362339][ T5318]  ? check_noncircular+0xda/0x150
[   95.362352][ T5318]  ? hfsplus_get_block+0x39e/0x1670
[   95.362367][ T5318]  ? __pfx___mutex_lock+0x10/0x10
[   95.362383][ T5318]  ? __lock_acquire+0x146e/0x2cf0
[   95.362400][ T5318]  hfsplus_get_block+0x39e/0x1670
[   95.362418][ T5318]  ? __pfx_hfsplus_get_block+0x10/0x10
[   95.362429][ T5318]  ? block_read_full_folio+0x672/0x830
[   95.362442][ T5318]  block_read_full_folio+0x29f/0x830
[   95.362456][ T5318]  ? __pfx_hfsplus_get_block+0x10/0x10
[   95.362468][ T5318]  filemap_read_folio+0x137/0x3b0
[   95.362484][ T5318]  ? __pfx_hfsplus_read_folio+0x10/0x10
[   95.362497][ T5318]  ? __pfx_filemap_read_folio+0x10/0x10
[   95.362513][ T5318]  ? filemap_add_folio+0x356/0x530
[   95.362528][ T5318]  do_read_cache_folio+0x358/0x590
[   95.362541][ T5318]  ? __pfx_hfsplus_read_folio+0x10/0x10
[   95.362552][ T5318]  read_cache_page+0x5d/0x170
[   95.362567][ T5318]  hfsplus_block_allocate+0xf3/0xce0
[   95.362582][ T5318]  hfsplus_file_extend+0xb2d/0x1d70
[   95.362599][ T5318]  ? __pfx_hfsplus_file_extend+0x10/0x10
[   95.362615][ T5318]  ? hfsplus_find_init+0x168/0x2d0
[   95.362626][ T5318]  ? __pfx___mutex_lock+0x10/0x10
[   95.362639][ T5318]  ? rcu_is_watching+0x15/0xb0
[   95.362649][ T5318]  hfsplus_bmap_reserve+0x125/0x510
[   95.362660][ T5318]  hfsplus_create_cat+0x1e2/0x11b0
[   95.362671][ T5318]  ? __pfx_hfsplus_create_cat+0x10/0x10
[   95.362693][ T5318]  ? do_raw_spin_unlock+0x4d/0x210
[   95.362703][ T5318]  ? _raw_spin_unlock+0x28/0x50
[   95.362714][ T5318]  ? hfsplus_new_inode+0x6c3/0x900
[   95.362728][ T5318]  hfsplus_fill_super+0x12bb/0x1a00
[   95.362742][ T5318]  ? __pfx_hfsplus_fill_super+0x10/0x10
[   95.362753][ T5318]  ? string+0x279/0x2b0
[   95.362773][ T5318]  ? snprintf+0xe8/0x140
[   95.362786][ T5318]  ? sb_set_blocksize+0x155/0x240
[   95.362840][ T5318]  ? setup_bdev_super+0x4c1/0x5b0
[   95.362858][ T5318]  get_tree_bdev_flags+0x431/0x4f0
[   95.362874][ T5318]  ? __pfx_hfsplus_fill_super+0x10/0x10
[   95.362887][ T5318]  ? __pfx_get_tree_bdev_flags+0x10/0x10
[   95.362905][ T5318]  vfs_get_tree+0x92/0x2a0
[   95.362916][ T5318]  do_new_mount+0x341/0xd30
[   95.362927][ T5318]  ? apparmor_capable+0x137/0x1a0
[   95.362938][ T5318]  ? __pfx_do_new_mount+0x10/0x10
[   95.362949][ T5318]  ? ns_capable+0x89/0xe0
[   95.362966][ T5318]  ? user_path_at+0xd4/0x160
[   95.362980][ T5318]  __se_sys_mount+0x31d/0x420
[   95.362994][ T5318]  ? __pfx___se_sys_mount+0x10/0x10
[   95.363006][ T5318]  ? __x64_sys_mount+0x20/0xc0
[   95.363016][ T5318]  do_syscall_64+0x14d/0xf80
[   95.363025][ T5318]  ? trace_irq_disable+0x3b/0x150
[   95.363035][ T5318]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   95.363042][ T5318]  ? clear_bhb_loop+0x40/0x90
[   95.363049][ T5318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   95.363057][ T5318] RIP: 0033:0x7f960719d3ca
[   95.363066][ T5318] Code: 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   95.363075][ T5318] RSP: 002b:00007f9607fa5e58 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[   95.363087][ T5318] RAX: ffffffffffffffda RBX: 00007f9607fa5ee0 RCX: 00007f960719d3ca
[   95.363102][ T5318] RDX: 00002000000000c0 RSI: 0000200000002900 RDI: 00007f9607fa5ea0
[   95.363111][ T5318] RBP: 00002000000000c0 R08: 00007f9607fa5ee0 R09: 0000000002000010
[   95.363117][ T5318] R10: 0000000002000010 R11: 0000000000000246 R12: 0000200000002900
[   95.363125][ T5318] R13: 00007f9607fa5ea0 R14: 00000000000006d1 R15: 0000200000000100
[   95.363137][ T5318]  </TASK>
[   95.604137][ T5318] Zero length message leads to an empty skb