program:
syz_mount_image$hfsplus(&(0x7f0000000000), &(0x7f0000000400)='./file3\x00', 0xa08802, &(0x7f0000000040)=ANY=[@ANYRES32=0x0, @ANYRESDEC, @ANYRESDEC], 0x1, 0x693, &(0x7f0000000ec0)="$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")
setxattr$trusted_overlay_upper(&(0x7f0000000280)='./file1\x00', &(0x7f0000000240), &(0x7f0000001400)=ANY=[], 0x841, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x20, 0x3, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @netfilter=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r0, 0x0, 0x36, 0x0, &(0x7f00000006c0)="f6f4e9a1d78ad62ceef1884386dd78bb3fb7dbfc", 0x0, 0x0, 0x0, 0x2, 0x0, &(0x7f0000000700)="0102", 0x0}, 0x50)
keyctl$invalidate(0x15, 0x0)
keyctl$get_keyring_id(0x0, 0x0, 0xeea0)
lremovexattr(&(0x7f0000000240)='./file1\x00', &(0x7f00000000c0)=@known='trusted.overlay.upper\x00')
pipe2$watch_queue(&(0x7f0000000080), 0x80)
syz_mount_image$hfsplus(&(0x7f0000000000), &(0x7f0000000400)='./file3\x00', 0xa08802, &(0x7f0000000040)=ANY=[@ANYRES32=0x0, @ANYRESDEC, @ANYRESDEC], 0x1, 0x693, &(0x7f0000000ec0)="$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") (async)
setxattr$trusted_overlay_upper(&(0x7f0000000280)='./file1\x00', &(0x7f0000000240), &(0x7f0000001400)=ANY=[], 0x841, 0x0) (async)
bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x20, 0x3, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @netfilter=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) (async)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r0, 0x0, 0x36, 0x0, &(0x7f00000006c0)="f6f4e9a1d78ad62ceef1884386dd78bb3fb7dbfc", 0x0, 0x0, 0x0, 0x2, 0x0, &(0x7f0000000700)="0102", 0x0}, 0x50) (async)
keyctl$invalidate(0x15, 0x0) (async)
keyctl$get_keyring_id(0x0, 0x0, 0xeea0) (async)
lremovexattr(&(0x7f0000000240)='./file1\x00', &(0x7f00000000c0)=@known='trusted.overlay.upper\x00') (async)
pipe2$watch_queue(&(0x7f0000000080), 0x80) (async)

[   75.627123][ T4674] Bluetooth: hci0: command tx timeout
[   75.719390][ T5325] loop0: detected capacity change from 0 to 1024
[   75.796601][ T5325] hfsplus: request for non-existent node 211 in B*Tree
[   75.799916][ T5325] hfsplus: request for non-existent node 211 in B*Tree
[   75.822136][ T5326] ==================================================================
[   75.825822][ T5326] BUG: KASAN: slab-out-of-bounds in hfsplus_bnode_read+0xc0/0x2a0
[   75.829299][ T5326] Read of size 8 at addr ffff888030a841c8 by task syz.0.0/5326
[   75.832440][ T5326] 
[   75.833526][ T5326] CPU: 0 UID: 0 PID: 5326 Comm: syz.0.0 Not tainted 6.16.0-rc3-syzkaller-00121-gf02769e7f272 #0 PREEMPT(full) 
[   75.833540][ T5326] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   75.833554][ T5326] Call Trace:
[   75.833563][ T5326]  <TASK>
[   75.833571][ T5326]  dump_stack_lvl+0x189/0x250
[   75.833594][ T5326]  ? __kasan_check_byte+0x12/0x40
[   75.833607][ T5326]  ? __pfx_dump_stack_lvl+0x10/0x10
[   75.833623][ T5326]  ? lock_release+0x4b/0x3e0
[   75.833641][ T5326]  ? __virt_addr_valid+0x4a5/0x5c0
[   75.833655][ T5326]  print_report+0xd2/0x2b0
[   75.833670][ T5326]  ? hfsplus_bnode_read+0xc0/0x2a0
[   75.833683][ T5326]  kasan_report+0x118/0x150
[   75.833697][ T5326]  ? hfsplus_bnode_read+0xc0/0x2a0
[   75.833712][ T5326]  hfsplus_bnode_read+0xc0/0x2a0
[   75.833730][ T5326]  hfsplus_bnode_dump+0x300/0x450
[   75.833747][ T5326]  ? __pfx_hfsplus_bnode_dump+0x10/0x10
[   75.833762][ T5326]  ? hfsplus_bnode_write_u16+0x8b/0xd0
[   75.833776][ T5326]  ? hfsplus_bnode_move+0x393/0xb90
[   75.833793][ T5326]  ? __pfx___hfsplus_brec_find+0x10/0x10
[   75.833803][ T5326]  hfsplus_brec_remove+0x480/0x550
[   75.833823][ T5326]  __hfsplus_delete_attr+0x1d4/0x360
[   75.833835][ T5326]  ? __pfx___hfsplus_delete_attr+0x10/0x10
[   75.833848][ T5326]  ? hfsplus_attr_build_key+0xee/0x260
[   75.833860][ T5326]  hfsplus_delete_attr+0x231/0x2d0
[   75.833871][ T5326]  ? __pfx_hfsplus_delete_attr+0x10/0x10
[   75.833884][ T5326]  ? hfsplus_find_init+0x8c/0x1d0
[   75.833900][ T5326]  ? hfsplus_find_init+0x15a/0x1d0
[   75.833917][ T5326]  __hfsplus_setxattr+0x37a/0x1f40
[   75.833928][ T5326]  ? is_bpf_text_address+0x26/0x2b0
[   75.833944][ T5326]  ? kernel_text_address+0xa5/0xe0
[   75.833960][ T5326]  ? unwind_get_return_address+0x4d/0x90
[   75.833974][ T5326]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[   75.833989][ T5326]  ? arch_stack_walk+0xfc/0x150
[   75.833999][ T5326]  ? __pfx___hfsplus_setxattr+0x10/0x10
[   75.834012][ T5326]  ? stack_trace_save+0x9c/0xe0
[   75.834038][ T5326]  ? hfsplus_setxattr+0x68/0x180
[   75.834051][ T5326]  ? __kasan_kmalloc+0x93/0xb0
[   75.834059][ T5326]  ? hfsplus_setxattr+0x102/0x180
[   75.834071][ T5326]  hfsplus_setxattr+0x11e/0x180
[   75.834085][ T5326]  hfsplus_trusted_setxattr+0x40/0x60
[   75.834097][ T5326]  ? __pfx_hfsplus_trusted_setxattr+0x10/0x10
[   75.834111][ T5326]  __vfs_setxattr+0x43c/0x480
[   75.834125][ T5326]  __vfs_setxattr_noperm+0x12d/0x660
[   75.834137][ T5326]  vfs_setxattr+0x16b/0x2f0
[   75.834151][ T5326]  ? __pfx_vfs_setxattr+0x10/0x10
[   75.834162][ T5326]  ? mnt_get_write_access+0x223/0x2a0
[   75.834178][ T5326]  filename_setxattr+0x274/0x600
[   75.834192][ T5326]  ? __pfx_filename_setxattr+0x10/0x10
[   75.834204][ T5326]  ? getname_flags+0x1e5/0x540
[   75.834218][ T5326]  path_setxattrat+0x364/0x3a0
[   75.834234][ T5326]  ? __pfx_path_setxattrat+0x10/0x10
[   75.834255][ T5326]  ? exc_page_fault+0x76/0xf0
[   75.834309][ T5326]  ? do_user_addr_fault+0xc8a/0x1390
[   75.834324][ T5326]  __x64_sys_setxattr+0xbc/0xe0
[   75.834336][ T5326]  do_syscall_64+0xfa/0x3b0
[   75.834353][ T5326]  ? lockdep_hardirqs_on+0x9c/0x150
[   75.834367][ T5326]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   75.834380][ T5326]  ? clear_bhb_loop+0x60/0xb0
[   75.834392][ T5326]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   75.834402][ T5326] RIP: 0033:0x7ff49bd8e929
[   75.834418][ T5326] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   75.834427][ T5326] RSP: 002b:00007ff49cb0f038 EFLAGS: 00000246 ORIG_RAX: 00000000000000bc
[   75.834442][ T5326] RAX: ffffffffffffffda RBX: 00007ff49bfb6080 RCX: 00007ff49bd8e929
[   75.834451][ T5326] RDX: 0000200000001400 RSI: 0000200000000240 RDI: 0000200000000280
[   75.834457][ T5326] RBP: 00007ff49be10b39 R08: 0000000000000000 R09: 0000000000000000
[   75.834464][ T5326] R10: 0000000000000841 R11: 0000000000000246 R12: 0000000000000000
[   75.834470][ T5326] R13: 0000000000000001 R14: 00007ff49bfb6080 R15: 00007ffd258a8d48
[   75.834483][ T5326]  </TASK>
[   75.834487][ T5326] 
[   76.002936][ T5326] Allocated by task 5325:
[   76.004816][ T5326]  kasan_save_track+0x3e/0x80
[   76.006840][ T5326]  __kasan_kmalloc+0x93/0xb0
[   76.008916][ T5326]  __kmalloc_noprof+0x27a/0x4f0
[   76.011028][ T5326]  __hfs_bnode_create+0xf3/0x810
[   76.013196][ T5326]  hfsplus_bnode_find+0x224/0xd20
[   76.015498][ T5326]  hfsplus_brec_find+0x15c/0x500
[   76.017788][ T5326]  hfsplus_attr_exists+0x163/0x1d0
[   76.020134][ T5326]  __hfsplus_setxattr+0x33e/0x1f40
[   76.022477][ T5326]  hfsplus_setxattr+0x11e/0x180
[   76.024581][ T5326]  hfsplus_trusted_setxattr+0x40/0x60
[   76.026886][ T5326]  __vfs_setxattr+0x43c/0x480
[   76.029019][ T5326]  __vfs_setxattr_noperm+0x12d/0x660
[   76.031501][ T5326]  vfs_setxattr+0x16b/0x2f0
[   76.033471][ T5326]  filename_setxattr+0x274/0x600
[   76.035567][ T5326]  path_setxattrat+0x364/0x3a0
[   76.037702][ T5326]  __x64_sys_setxattr+0xbc/0xe0
[   76.039904][ T5326]  do_syscall_64+0xfa/0x3b0
[   76.041924][ T5326]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   76.044476][ T5326] 
[   76.045546][ T5326] The buggy address belongs to the object at ffff888030a84100
[   76.045546][ T5326]  which belongs to the cache kmalloc-192 of size 192
[   76.051698][ T5326] The buggy address is located 48 bytes to the right of
[   76.051698][ T5326]  allocated 152-byte region [ffff888030a84100, ffff888030a84198)
[   76.057578][ T5326] 
[   76.058614][ T5326] The buggy address belongs to the physical page:
[   76.061382][ T5326] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x30a84
[   76.064992][ T5326] ksm flags: 0x4fff00000000000(node=1|zone=1|lastcpupid=0x7ff)
[   76.068286][ T5326] page_type: f5(slab)
[   76.070011][ T5326] raw: 04fff00000000000 ffff88801a4413c0 ffffea0000c9c080 dead000000000003
[   76.073429][ T5326] raw: 0000000000000000 0000000000100010 00000000f5000000 0000000000000000
[   76.076498][ T5326] page dumped because: kasan: bad access detected
[   76.078886][ T5326] page_owner tracks the page as allocated
[   76.081290][ T5326] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x52cc0(GFP_KERNEL|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP), pid 1, tgid 1 (swapper/0), ts 2539763773, free_ts 0
[   76.088307][ T5326]  post_alloc_hook+0x240/0x2a0
[   76.090308][ T5326]  get_page_from_freelist+0x21e4/0x22c0
[   76.092608][ T5326]  __alloc_frozen_pages_noprof+0x181/0x370
[   76.095007][ T5326]  alloc_pages_mpol+0x232/0x4a0
[   76.097082][ T5326]  allocate_slab+0x8a/0x3b0
[   76.099297][ T5326]  ___slab_alloc+0xbfc/0x1480
[   76.101547][ T5326]  __kmalloc_cache_noprof+0x296/0x3d0
[   76.104078][ T5326]  kset_create_and_add+0x5a/0x170
[   76.106077][ T5326]  bus_register+0x225/0x450
[   76.108042][ T5326]  auxiliary_bus_init+0x16/0x50
[   76.110077][ T5326]  driver_init+0x42/0x60
[   76.111869][ T5326]  do_basic_setup+0x14/0x90
[   76.113908][ T5326]  kernel_init_freeable+0x3d9/0x570
[   76.116069][ T5326]  kernel_init+0x1d/0x1d0
[   76.117955][ T5326]  ret_from_fork+0x3fc/0x770
[   76.119846][ T5326]  ret_from_fork_asm+0x1a/0x30
[   76.121776][ T5326] page_owner free stack trace missing
[   76.124024][ T5326] 
[   76.125100][ T5326] Memory state around the buggy address:
[   76.127583][ T5326]  ffff888030a84080: 00 00 00 fc fc fc fc fc fc fc fc fc fc fc fc fc
[   76.131023][ T5326]  ffff888030a84100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   76.134414][ T5326] >ffff888030a84180: 00 00 00 fc fc fc fc fc fc fc fc fc fc fc fc fc
[   76.138166][ T5326]                                               ^
[   76.141044][ T5326]  ffff888030a84200: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   76.144635][ T5326]  ffff888030a84280: 00 00 00 fc fc fc fc fc fc fc fc fc fc fc fc fc
[   76.148250][ T5326] ==================================================================
[   76.224385][ T5326] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[   76.227443][ T5326] CPU: 0 UID: 0 PID: 5326 Comm: syz.0.0 Not tainted 6.16.0-rc3-syzkaller-00121-gf02769e7f272 #0 PREEMPT(full) 
[   76.232841][ T5326] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   76.237564][ T5326] Call Trace:
[   76.238948][ T5326]  <TASK>
[   76.240257][ T5326]  dump_stack_lvl+0x99/0x250
[   76.242256][ T5326]  ? __asan_memcpy+0x40/0x70
[   76.244225][ T5326]  ? __pfx_dump_stack_lvl+0x10/0x10
[   76.246774][ T5326]  ? __pfx__printk+0x10/0x10
[   76.249013][ T5326]  panic+0x2db/0x790
[   76.250736][ T5326]  ? __pfx_preempt_schedule+0x10/0x10
[   76.253081][ T5326]  ? __pfx_panic+0x10/0x10
[   76.255193][ T5326]  ? _raw_spin_unlock_irqrestore+0xfd/0x110
[   76.257985][ T5326]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[   76.260726][ T5326]  ? hfsplus_bnode_read+0xc0/0x2a0
[   76.262915][ T5326]  check_panic_on_warn+0x89/0xb0
[   76.264997][ T5326]  ? hfsplus_bnode_read+0xc0/0x2a0
[   76.267185][ T5326]  end_report+0x78/0x160
[   76.269052][ T5326]  kasan_report+0x129/0x150
[   76.271002][ T5326]  ? hfsplus_bnode_read+0xc0/0x2a0
[   76.273169][ T5326]  hfsplus_bnode_read+0xc0/0x2a0
[   76.275333][ T5326]  hfsplus_bnode_dump+0x300/0x450
[   76.277565][ T5326]  ? __pfx_hfsplus_bnode_dump+0x10/0x10
[   76.279943][ T5326]  ? hfsplus_bnode_write_u16+0x8b/0xd0
[   76.282253][ T5326]  ? hfsplus_bnode_move+0x393/0xb90
[   76.284459][ T5326]  ? __pfx___hfsplus_brec_find+0x10/0x10
[   76.286794][ T5326]  hfsplus_brec_remove+0x480/0x550
[   76.288958][ T5326]  __hfsplus_delete_attr+0x1d4/0x360
[   76.291206][ T5326]  ? __pfx___hfsplus_delete_attr+0x10/0x10
[   76.293647][ T5326]  ? hfsplus_attr_build_key+0xee/0x260
[   76.295995][ T5326]  hfsplus_delete_attr+0x231/0x2d0
[   76.298241][ T5326]  ? __pfx_hfsplus_delete_attr+0x10/0x10
[   76.300617][ T5326]  ? hfsplus_find_init+0x8c/0x1d0
[   76.302723][ T5326]  ? hfsplus_find_init+0x15a/0x1d0
[   76.304886][ T5326]  __hfsplus_setxattr+0x37a/0x1f40
[   76.307047][ T5326]  ? is_bpf_text_address+0x26/0x2b0
[   76.309295][ T5326]  ? kernel_text_address+0xa5/0xe0
[   76.311582][ T5326]  ? unwind_get_return_address+0x4d/0x90
[   76.313994][ T5326]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[   76.316801][ T5326]  ? arch_stack_walk+0xfc/0x150
[   76.319088][ T5326]  ? __pfx___hfsplus_setxattr+0x10/0x10
[   76.321487][ T5326]  ? stack_trace_save+0x9c/0xe0
[   76.323590][ T5326]  ? hfsplus_setxattr+0x68/0x180
[   76.325726][ T5326]  ? __kasan_kmalloc+0x93/0xb0
[   76.327825][ T5326]  ? hfsplus_setxattr+0x102/0x180
[   76.330100][ T5326]  hfsplus_setxattr+0x11e/0x180
[   76.332227][ T5326]  hfsplus_trusted_setxattr+0x40/0x60
[   76.334594][ T5326]  ? __pfx_hfsplus_trusted_setxattr+0x10/0x10
[   76.337353][ T5326]  __vfs_setxattr+0x43c/0x480
[   76.339467][ T5326]  __vfs_setxattr_noperm+0x12d/0x660
[   76.341841][ T5326]  vfs_setxattr+0x16b/0x2f0
[   76.344056][ T5326]  ? __pfx_vfs_setxattr+0x10/0x10
[   76.346305][ T5326]  ? mnt_get_write_access+0x223/0x2a0
[   76.348607][ T5326]  filename_setxattr+0x274/0x600
[   76.350809][ T5326]  ? __pfx_filename_setxattr+0x10/0x10
[   76.353158][ T5326]  ? getname_flags+0x1e5/0x540
[   76.355313][ T5326]  path_setxattrat+0x364/0x3a0
[   76.357410][ T5326]  ? __pfx_path_setxattrat+0x10/0x10
[   76.359807][ T5326]  ? exc_page_fault+0x76/0xf0
[   76.362022][ T5326]  ? do_user_addr_fault+0xc8a/0x1390
[   76.364382][ T5326]  __x64_sys_setxattr+0xbc/0xe0
[   76.366505][ T5326]  do_syscall_64+0xfa/0x3b0
[   76.368574][ T5326]  ? lockdep_hardirqs_on+0x9c/0x150
[   76.370917][ T5326]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   76.373559][ T5326]  ? clear_bhb_loop+0x60/0xb0
[   76.375642][ T5326]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   76.378307][ T5326] RIP: 0033:0x7ff49bd8e929
[   76.380332][ T5326] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   76.389090][ T5326] RSP: 002b:00007ff49cb0f038 EFLAGS: 00000246 ORIG_RAX: 00000000000000bc
[   76.392764][ T5326] RAX: ffffffffffffffda RBX: 00007ff49bfb6080 RCX: 00007ff49bd8e929
[   76.396189][ T5326] RDX: 0000200000001400 RSI: 0000200000000240 RDI: 0000200000000280
[   76.399613][ T5326] RBP: 00007ff49be10b39 R08: 0000000000000000 R09: 0000000000000000
[   76.403426][ T5326] R10: 0000000000000841 R11: 0000000000000246 R12: 0000000000000000
[   76.407238][ T5326] R13: 0000000000000001 R14: 00007ff49bfb6080 R15: 00007ffd258a8d48
[   76.410761][ T5326]  </TASK>
[   76.412474][ T5326] Kernel Offset: disabled
[   76.414172][ T5326] Rebooting in 86400 seconds..