program:
syz_mount_image$hfsplus(&(0x7f0000000000), &(0x7f0000000400)='./file3\x00', 0xa08802, &(0x7f0000000040)=ANY=[@ANYRES32=0x0, @ANYRESDEC, @ANYRESDEC], 0x1, 0x693, &(0x7f0000000ec0)="$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")
setxattr$trusted_overlay_upper(&(0x7f0000000280)='./file1\x00', &(0x7f0000000240), &(0x7f0000001400)=ANY=[], 0x841, 0x0)
lremovexattr(&(0x7f0000000240)='./file1\x00', &(0x7f00000000c0)=@known='trusted.overlay.upper\x00')
r0 = syz_open_dev$sg(&(0x7f0000001940), 0x0, 0x0)
ioctl$SG_IO(r0, 0x2285, &(0x7f0000000140)={0x53, 0xfffffffffffffffd, 0x109, 0x0, @scatter={0x0, 0xf5, 0x0}, &(0x7f00000001c0)="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", 0x0, 0x0, 0x0, 0x20000000, 0x0})
syz_mount_image$hfsplus(&(0x7f0000000000), &(0x7f0000000400)='./file3\x00', 0xa08802, &(0x7f0000000040)=ANY=[@ANYRES32=0x0, @ANYRESDEC, @ANYRESDEC], 0x1, 0x693, &(0x7f0000000ec0)="$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") (async)
setxattr$trusted_overlay_upper(&(0x7f0000000280)='./file1\x00', &(0x7f0000000240), &(0x7f0000001400)=ANY=[], 0x841, 0x0) (async)
lremovexattr(&(0x7f0000000240)='./file1\x00', &(0x7f00000000c0)=@known='trusted.overlay.upper\x00') (async)
syz_open_dev$sg(&(0x7f0000001940), 0x0, 0x0) (async)
ioctl$SG_IO(r0, 0x2285, &(0x7f0000000140)={0x53, 0xfffffffffffffffd, 0x109, 0x0, @scatter={0x0, 0xf5, 0x0}, &(0x7f00000001c0)="5538b9edff00000008ffffff01a26ccc143bc638b65f69d33b5ab57cf52671dc2d7b210c2520f4e08b80395e9ccde1178e751ed07500d83b77ea4beb9c4d4c362f69d05192fac58367ffe9779c6752fbdfc72b65c241364dee74e143fd791b70a2bbdbf4d0eb9b5ea7d2a2487b11a25a69d07e232a840bb5bacb14fd42890807199052c541e28eba71ee2994d17e53d06732a861fbe148757981fdb1a412d834198e1aa1f5333b10e87578fb4069800e64d8d46304771ab67e0325aa78c0b404aaa733e2eb7ec56870b6932912eb693d2a48fce52a88fa8f1250bda6fb2825d72773800f3ea37fbf9fd2038bd92db025776dbd835b638d3a3972f76886a46f1bbcbefeebbbbb1ccfa2", 0x0, 0x0, 0x0, 0x20000000, 0x0}) (async)

[   75.423669][ T4659] Bluetooth: hci0: command tx timeout
[   75.497230][ T5314] loop0: detected capacity change from 0 to 1024
[   75.549016][ T5314] hfsplus: request for non-existent node 211 in B*Tree
[   75.553256][ T5314] hfsplus: request for non-existent node 211 in B*Tree
[   75.567433][ T5315] ==================================================================
[   75.570858][ T5315] BUG: KASAN: slab-out-of-bounds in hfsplus_bnode_read+0xc2/0x1e0
[   75.574322][ T5315] Read of size 8 at addr ffff888035fd7ac8 by task syz.0.0/5315
[   75.577323][ T5315] 
[   75.578356][ T5315] CPU: 0 UID: 0 PID: 5315 Comm: syz.0.0 Not tainted 6.15.0-rc5-syzkaller-00123-g2c89c1b655c0 #0 PREEMPT(full) 
[   75.578367][ T5315] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   75.578373][ T5315] Call Trace:
[   75.578380][ T5315]  <TASK>
[   75.578384][ T5315]  dump_stack_lvl+0x189/0x250
[   75.578403][ T5315]  ? rcu_is_watching+0x15/0xb0
[   75.578417][ T5315]  ? __kasan_check_byte+0x12/0x40
[   75.578430][ T5315]  ? __pfx_dump_stack_lvl+0x10/0x10
[   75.578442][ T5315]  ? rcu_is_watching+0x15/0xb0
[   75.578455][ T5315]  ? lock_release+0x4b/0x3e0
[   75.578467][ T5315]  ? _raw_spin_lock_irqsave+0xb3/0xf0
[   75.578519][ T5315]  ? __virt_addr_valid+0x18c/0x540
[   75.578533][ T5315]  ? __virt_addr_valid+0x469/0x540
[   75.578545][ T5315]  print_report+0xb4/0x290
[   75.578557][ T5315]  ? hfsplus_bnode_read+0xc2/0x1e0
[   75.578566][ T5315]  kasan_report+0x118/0x150
[   75.578578][ T5315]  ? hfsplus_bnode_read+0xc2/0x1e0
[   75.578587][ T5315]  hfsplus_bnode_read+0xc2/0x1e0
[   75.578596][ T5315]  hfsplus_bnode_dump+0x300/0x450
[   75.578606][ T5315]  ? __pfx_hfsplus_bnode_dump+0x10/0x10
[   75.578614][ T5315]  ? hfsplus_bnode_write_u16+0x8b/0xd0
[   75.578622][ T5315]  ? rcu_tasks_wait_gp+0x620/0xac0
[   75.578632][ T5315]  ? __pfx___hfsplus_brec_find+0x10/0x10
[   75.578648][ T5315]  hfsplus_brec_remove+0x480/0x550
[   75.578670][ T5315]  __hfsplus_delete_attr+0x1d4/0x360
[   75.578683][ T5315]  ? __pfx___hfsplus_delete_attr+0x10/0x10
[   75.578695][ T5315]  ? hfsplus_attr_build_key+0xee/0x260
[   75.578708][ T5315]  hfsplus_delete_attr+0x231/0x2d0
[   75.578725][ T5315]  ? __pfx_hfsplus_delete_attr+0x10/0x10
[   75.578736][ T5315]  ? hfsplus_find_init+0x8c/0x1d0
[   75.578746][ T5315]  ? hfsplus_find_init+0x15a/0x1d0
[   75.578755][ T5315]  __hfsplus_setxattr+0x487/0x1ec0
[   75.578766][ T5315]  ? is_bpf_text_address+0x26/0x2b0
[   75.578779][ T5315]  ? kernel_text_address+0xa5/0xe0
[   75.578792][ T5315]  ? __kernel_text_address+0xd/0x40
[   75.578804][ T5315]  ? unwind_get_return_address+0x4d/0x90
[   75.578815][ T5315]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[   75.578826][ T5315]  ? arch_stack_walk+0xfc/0x150
[   75.578836][ T5315]  ? __pfx___hfsplus_setxattr+0x10/0x10
[   75.578844][ T5315]  ? stack_trace_save+0x9c/0xe0
[   75.578850][ T5315]  ? stack_depot_save_flags+0x40/0x910
[   75.578865][ T5315]  ? __kasan_kmalloc+0x93/0xb0
[   75.578872][ T5315]  ? hfsplus_setxattr+0x102/0x180
[   75.578881][ T5315]  hfsplus_setxattr+0x11e/0x180
[   75.578892][ T5315]  hfsplus_trusted_setxattr+0x40/0x60
[   75.578904][ T5315]  ? __pfx_hfsplus_trusted_setxattr+0x10/0x10
[   75.578916][ T5315]  __vfs_setxattr+0x439/0x480
[   75.578930][ T5315]  __vfs_setxattr_noperm+0x12d/0x660
[   75.578943][ T5315]  vfs_setxattr+0x16b/0x2f0
[   75.578955][ T5315]  ? __pfx_vfs_setxattr+0x10/0x10
[   75.578966][ T5315]  ? mnt_get_write_access+0x223/0x2a0
[   75.578984][ T5315]  filename_setxattr+0x274/0x600
[   75.578997][ T5315]  ? __pfx_filename_setxattr+0x10/0x10
[   75.579008][ T5315]  ? getname_flags+0x1e5/0x540
[   75.579021][ T5315]  path_setxattrat+0x364/0x3a0
[   75.579032][ T5315]  ? __pfx_path_setxattrat+0x10/0x10
[   75.579041][ T5315]  ? count_memcg_event_mm+0x92/0x3b0
[   75.579059][ T5315]  __x64_sys_setxattr+0xbc/0xe0
[   75.579072][ T5315]  do_syscall_64+0xf6/0x210
[   75.579084][ T5315]  ? clear_bhb_loop+0x45/0xa0
[   75.579092][ T5315]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   75.579100][ T5315] RIP: 0033:0x7f5b3d78e969
[   75.579110][ T5315] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   75.579118][ T5315] RSP: 002b:00007f5b3e600038 EFLAGS: 00000246 ORIG_RAX: 00000000000000bc
[   75.579130][ T5315] RAX: ffffffffffffffda RBX: 00007f5b3d9b6080 RCX: 00007f5b3d78e969
[   75.579137][ T5315] RDX: 0000200000001400 RSI: 0000200000000240 RDI: 0000200000000280
[   75.579143][ T5315] RBP: 00007f5b3d810ab1 R08: 0000000000000000 R09: 0000000000000000
[   75.579149][ T5315] R10: 0000000000000841 R11: 0000000000000246 R12: 0000000000000000
[   75.579155][ T5315] R13: 0000000000000001 R14: 00007f5b3d9b6080 R15: 00007ffc614c3838
[   75.579165][ T5315]  </TASK>
[   75.579168][ T5315] 
[   75.745533][ T5315] Allocated by task 5314:
[   75.747341][ T5315]  kasan_save_track+0x3e/0x80
[   75.749087][ T5315]  __kasan_kmalloc+0x93/0xb0
[   75.750996][ T5315]  __kmalloc_noprof+0x27a/0x4f0
[   75.753135][ T5315]  __hfs_bnode_create+0xf3/0x810
[   75.755100][ T5315]  hfsplus_bnode_find+0x224/0xce0
[   75.757245][ T5315]  hfsplus_brec_find+0x15c/0x500
[   75.759268][ T5315]  hfsplus_attr_exists+0x163/0x1d0
[   75.761321][ T5315]  __hfsplus_setxattr+0x44b/0x1ec0
[   75.763357][ T5315]  hfsplus_setxattr+0x11e/0x180
[   75.765186][ T5315]  hfsplus_trusted_setxattr+0x40/0x60
[   75.767083][ T5315]  __vfs_setxattr+0x439/0x480
[   75.769000][ T5315]  __vfs_setxattr_noperm+0x12d/0x660
[   75.771148][ T5315]  vfs_setxattr+0x16b/0x2f0
[   75.773105][ T5315]  filename_setxattr+0x274/0x600
[   75.775070][ T5315]  path_setxattrat+0x364/0x3a0
[   75.777001][ T5315]  __x64_sys_setxattr+0xbc/0xe0
[   75.779020][ T5315]  do_syscall_64+0xf6/0x210
[   75.780996][ T5315]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   75.783458][ T5315] 
[   75.784332][ T5315] The buggy address belongs to the object at ffff888035fd7a00
[   75.784332][ T5315]  which belongs to the cache kmalloc-192 of size 192
[   75.789492][ T5315] The buggy address is located 48 bytes to the right of
[   75.789492][ T5315]  allocated 152-byte region [ffff888035fd7a00, ffff888035fd7a98)
[   75.794705][ T5315] 
[   75.795721][ T5315] The buggy address belongs to the physical page:
[   75.798281][ T5315] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x35fd7
[   75.801809][ T5315] flags: 0x4fff00000000000(node=1|zone=1|lastcpupid=0x7ff)
[   75.804659][ T5315] page_type: f5(slab)
[   75.806342][ T5315] raw: 04fff00000000000 ffff88801a0413c0 dead000000000100 dead000000000122
[   75.809754][ T5315] raw: 0000000000000000 0000000080100010 00000000f5000000 0000000000000000
[   75.813244][ T5315] page dumped because: kasan: bad access detected
[   75.815880][ T5315] page_owner tracks the page as allocated
[   75.818290][ T5315] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x52cc0(GFP_KERNEL|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP), pid 1, tgid 1 (swapper/0), ts 17008840429, free_ts 0
[   75.825623][ T5315]  post_alloc_hook+0x1d8/0x230
[   75.827696][ T5315]  get_page_from_freelist+0x21ce/0x22b0
[   75.830085][ T5315]  __alloc_frozen_pages_noprof+0x181/0x370
[   75.832681][ T5315]  alloc_pages_mpol+0x232/0x4a0
[   75.834801][ T5315]  allocate_slab+0x8a/0x3b0
[   75.836861][ T5315]  ___slab_alloc+0xbfc/0x1480
[   75.838900][ T5315]  __kmalloc_cache_noprof+0x296/0x3d0
[   75.841163][ T5315]  call_usermodehelper_setup+0x8e/0x270
[   75.843444][ T5315]  kobject_uevent_env+0x65c/0x8c0
[   75.845405][ T5315]  driver_register+0x2d4/0x320
[   75.847352][ T5315]  do_one_initcall+0x233/0x820
[   75.849434][ T5315]  do_initcall_level+0x137/0x1f0
[   75.851759][ T5315]  do_initcalls+0x69/0xd0
[   75.853636][ T5315]  kernel_init_freeable+0x3d9/0x570
[   75.855721][ T5315]  kernel_init+0x1d/0x1d0
[   75.857536][ T5315]  ret_from_fork+0x4b/0x80
[   75.859379][ T5315] page_owner free stack trace missing
[   75.861640][ T5315] 
[   75.862638][ T5315] Memory state around the buggy address:
[   75.865140][ T5315]  ffff888035fd7980: 00 fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[   75.868238][ T5315]  ffff888035fd7a00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   75.871887][ T5315] >ffff888035fd7a80: 00 00 00 fc fc fc fc fc fc fc fc fc fc fc fc fc
[   75.876233][ T5315]                                               ^
[   75.879297][ T5315]  ffff888035fd7b00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   75.882628][ T5315]  ffff888035fd7b80: 00 00 fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[   75.885945][ T5315] ==================================================================
[   75.916057][ T5315] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[   75.919047][ T5315] CPU: 0 UID: 0 PID: 5315 Comm: syz.0.0 Not tainted 6.15.0-rc5-syzkaller-00123-g2c89c1b655c0 #0 PREEMPT(full) 
[   75.923704][ T5315] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   75.928041][ T5315] Call Trace:
[   75.929435][ T5315]  <TASK>
[   75.930669][ T5315]  dump_stack_lvl+0x99/0x250
[   75.932672][ T5315]  ? __asan_memcpy+0x40/0x70
[   75.934617][ T5315]  ? __pfx_dump_stack_lvl+0x10/0x10
[   75.936805][ T5315]  ? __pfx__printk+0x10/0x10
[   75.938746][ T5315]  panic+0x2db/0x790
[   75.940390][ T5315]  ? __pfx_preempt_schedule+0x10/0x10
[   75.942635][ T5315]  ? __pfx_panic+0x10/0x10
[   75.944537][ T5315]  ? _raw_spin_unlock_irqrestore+0xfd/0x110
[   75.946982][ T5315]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[   75.949607][ T5315]  ? hfsplus_bnode_read+0xc2/0x1e0
[   75.951735][ T5315]  check_panic_on_warn+0x89/0xb0
[   75.953847][ T5315]  ? hfsplus_bnode_read+0xc2/0x1e0
[   75.956003][ T5315]  end_report+0x78/0x160
[   75.957818][ T5315]  kasan_report+0x129/0x150
[   75.959704][ T5315]  ? hfsplus_bnode_read+0xc2/0x1e0
[   75.961840][ T5315]  hfsplus_bnode_read+0xc2/0x1e0
[   75.963883][ T5315]  hfsplus_bnode_dump+0x300/0x450
[   75.966056][ T5315]  ? __pfx_hfsplus_bnode_dump+0x10/0x10
[   75.968296][ T5315]  ? hfsplus_bnode_write_u16+0x8b/0xd0
[   75.970616][ T5315]  ? rcu_tasks_wait_gp+0x620/0xac0
[   75.972822][ T5315]  ? __pfx___hfsplus_brec_find+0x10/0x10
[   75.975228][ T5315]  hfsplus_brec_remove+0x480/0x550
[   75.977429][ T5315]  __hfsplus_delete_attr+0x1d4/0x360
[   75.979653][ T5315]  ? __pfx___hfsplus_delete_attr+0x10/0x10
[   75.982169][ T5315]  ? hfsplus_attr_build_key+0xee/0x260
[   75.984478][ T5315]  hfsplus_delete_attr+0x231/0x2d0
[   75.986630][ T5315]  ? __pfx_hfsplus_delete_attr+0x10/0x10
[   75.989023][ T5315]  ? hfsplus_find_init+0x8c/0x1d0
[   75.991248][ T5315]  ? hfsplus_find_init+0x15a/0x1d0
[   75.993441][ T5315]  __hfsplus_setxattr+0x487/0x1ec0
[   75.995653][ T5315]  ? is_bpf_text_address+0x26/0x2b0
[   75.998001][ T5315]  ? kernel_text_address+0xa5/0xe0
[   76.000194][ T5315]  ? __kernel_text_address+0xd/0x40
[   76.002489][ T5315]  ? unwind_get_return_address+0x4d/0x90
[   76.005021][ T5315]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[   76.007649][ T5315]  ? arch_stack_walk+0xfc/0x150
[   76.009520][ T5315]  ? __pfx___hfsplus_setxattr+0x10/0x10
[   76.011806][ T5315]  ? stack_trace_save+0x9c/0xe0
[   76.013846][ T5315]  ? stack_depot_save_flags+0x40/0x910
[   76.015850][ T5315]  ? __kasan_kmalloc+0x93/0xb0
[   76.017809][ T5315]  ? hfsplus_setxattr+0x102/0x180
[   76.020167][ T5315]  hfsplus_setxattr+0x11e/0x180
[   76.022807][ T5315]  hfsplus_trusted_setxattr+0x40/0x60
[   76.025641][ T5315]  ? __pfx_hfsplus_trusted_setxattr+0x10/0x10
[   76.028437][ T5315]  __vfs_setxattr+0x439/0x480
[   76.030354][ T5315]  __vfs_setxattr_noperm+0x12d/0x660
[   76.032739][ T5315]  vfs_setxattr+0x16b/0x2f0
[   76.034429][ T5315]  ? __pfx_vfs_setxattr+0x10/0x10
[   76.036586][ T5315]  ? mnt_get_write_access+0x223/0x2a0
[   76.038828][ T5315]  filename_setxattr+0x274/0x600
[   76.040866][ T5315]  ? __pfx_filename_setxattr+0x10/0x10
[   76.042908][ T5315]  ? getname_flags+0x1e5/0x540
[   76.045107][ T5315]  path_setxattrat+0x364/0x3a0
[   76.047232][ T5315]  ? __pfx_path_setxattrat+0x10/0x10
[   76.049715][ T5315]  ? count_memcg_event_mm+0x92/0x3b0
[   76.052773][ T5315]  __x64_sys_setxattr+0xbc/0xe0
[   76.054874][ T5315]  do_syscall_64+0xf6/0x210
[   76.057530][ T5315]  ? clear_bhb_loop+0x45/0xa0
[   76.059652][ T5315]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   76.062109][ T5315] RIP: 0033:0x7f5b3d78e969
[   76.064004][ T5315] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   76.071628][ T5315] RSP: 002b:00007f5b3e600038 EFLAGS: 00000246 ORIG_RAX: 00000000000000bc
[   76.075097][ T5315] RAX: ffffffffffffffda RBX: 00007f5b3d9b6080 RCX: 00007f5b3d78e969
[   76.078314][ T5315] RDX: 0000200000001400 RSI: 0000200000000240 RDI: 0000200000000280
[   76.081537][ T5315] RBP: 00007f5b3d810ab1 R08: 0000000000000000 R09: 0000000000000000
[   76.084767][ T5315] R10: 0000000000000841 R11: 0000000000000246 R12: 0000000000000000
[   76.087992][ T5315] R13: 0000000000000001 R14: 00007f5b3d9b6080 R15: 00007ffc614c3838
[   76.090940][ T5315]  </TASK>
[   76.092524][ T5315] Kernel Offset: disabled
[   76.094371][ T5315] Rebooting in 86400 seconds..