program:
r0 = syz_mount_image$hfsplus(&(0x7f0000000000), &(0x7f0000000400)='./file1\x00', 0xa08802, &(0x7f0000000140)=ANY=[], 0x1, 0x693, &(0x7f0000000ec0)="$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")
r1 = syz_open_procfs(0x0, &(0x7f0000000180)='oom_adj\x00')
writev(r1, &(0x7f0000000600)=[{&(0x7f00000000c0)='1', 0x1}, {&(0x7f00000001c0)="0bd2", 0x2}], 0x2) (async)
writev(r1, &(0x7f0000000600)=[{&(0x7f00000000c0)='1', 0x1}, {&(0x7f00000001c0)="0bd2", 0x2}], 0x2)
lsetxattr$trusted_overlay_upper(&(0x7f0000000100)='./file0\x00', &(0x7f0000000180), &(0x7f00000002c0)=ANY=[], 0xb2, 0x0)
lsetxattr$trusted_overlay_upper(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, 0x0, 0x0) (async)
lsetxattr$trusted_overlay_upper(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, 0x0, 0x0)
symlink(&(0x7f0000000000)='.\x00', &(0x7f0000000040)='./file0\x00') (async)
symlink(&(0x7f0000000000)='.\x00', &(0x7f0000000040)='./file0\x00')
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x101091, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f0000000000)='net/sctp\x00')
open_tree(r2, &(0x7f0000000640)='\x00', 0x89901) (async)
r3 = open_tree(r2, &(0x7f0000000640)='\x00', 0x89901)
r4 = open(&(0x7f0000000380)='./file0\x00', 0x0, 0x0)
move_mount(r3, &(0x7f0000000040)='.\x00', r4, &(0x7f0000000100)='./file0\x00', 0x273)
sendmsg$nl_generic(r2, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1100b0}, 0xc, &(0x7f0000000140)={&(0x7f0000000680)={0x228, 0x13, 0x800, 0x70bd2c, 0x25dfdbff, {0x1b}, [@nested={0x14e, 0xe1, 0x0, 0x1, [@typed={0x14, 0x82, 0x0, 0x0, @ipv6=@private2}, @nested={0x4, 0x55}, @generic="de16a02d04cfb721aff6f3a5adc515c92123095aa9f0cb75ceb10f0855ab50218953be77e38fb6c5ebcdb8cf503a45ca2b2b5d3404517f51bd5277219c09437afc6735bf47fc4e883968108d45360ac22c3b885a1ee7162953eabfe200436d587097903f7b8ae8ad45b50cf893fa5e27d8ffc9e030f4009538120392b80c9bcda427c987d8cb7505be3229cd37ca480fbf79fa05a3c339ac9a78d5b0", @typed={0x14, 0x9f, 0x0, 0x0, @ipv6=@private2}, @typed={0x8, 0x10, 0x0, 0x0, @fd=r0}, @generic="387c08fe3a9ea2471b67822379bc7092cf6deb2c5010e4a35195cdafc1287e6509503600c804c512", @generic="e548052f9828ad9b97abfb22e993592084c833d9fa9b59a1b3825e4da6045c090399fd4983142defbaa759128aa33e2b08c984e7261fe7c7a03cff99ac9af4a0e402c6f78aaf8b7a3c3839cebb17", @nested={0x4, 0x6}]}, @nested={0xc2, 0x12b, 0x0, 0x1, [@generic="e7a3ddb66c10af088a83fdfd4bc7a8c1f791f0318bf59bb91c2ac35cdce27988df152904e28231de6af596413f4a979e463367f8c5814174f57644c282dece56ff6c9019fd06a82e5c6d49c39a3fa7fcb6de4405354d0b24afa408d3515597b1935ea9930fe5b4fe5c22b14672667f676a0b2009fff663e50baabf0f1d5a15c279264ec6af70ac782167b139538b4c50052226549c3f833257c93c9f468f50b213f21bbc982e3c2d74433014e2c39938385d77e4c6bcd7d65be6", @nested={0x4, 0xb5}]}]}, 0x228}, 0x1, 0x0, 0x0, 0x1}, 0x84)

[   69.226371][ T4666] Bluetooth: hci0: command tx timeout
[   69.289814][ T5319] loop0: detected capacity change from 0 to 1024
[   69.339394][ T5320] syz.0.0 (5320): /proc/5318/oom_adj is deprecated, please use /proc/5318/oom_score_adj instead.
[   69.349972][ T5320] hfsplus: request for non-existent node 211 in B*Tree
[   69.352564][ T5320] hfsplus: request for non-existent node 211 in B*Tree
[   69.357550][ T5319] ==================================================================
[   69.360611][ T5319] BUG: KASAN: wild-memory-access in hfsplus_bnode_dump+0x403/0xbb0
[   69.363701][ T5319] Read of size 2 at addr 000508800000103e by task syz.0.0/5319
[   69.366782][ T5319] 
[   69.367589][ T5319] CPU: 0 UID: 0 PID: 5319 Comm: syz.0.0 Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0
[   69.371503][ T5319] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   69.375504][ T5319] Call Trace:
[   69.376787][ T5319]  <TASK>
[   69.377894][ T5319]  dump_stack_lvl+0x241/0x360
[   69.379879][ T5319]  ? __pfx_dump_stack_lvl+0x10/0x10
[   69.381935][ T5319]  ? __pfx__printk+0x10/0x10
[   69.384122][ T5319]  ? _printk+0xd5/0x120
[   69.386006][ T5319]  print_report+0xe8/0x550
[   69.387683][ T5319]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[   69.389771][ T5319]  ? __virt_addr_valid+0x58/0x530
[   69.391547][ T5319]  ? hfsplus_bnode_dump+0x403/0xbb0
[   69.393482][ T5319]  kasan_report+0x143/0x180
[   69.395107][ T5319]  ? hfsplus_bnode_dump+0x403/0xbb0
[   69.396972][ T5319]  ? hfsplus_bnode_dump+0x403/0xbb0
[   69.398871][ T5319]  kasan_check_range+0x282/0x290
[   69.400566][ T5319]  ? hfsplus_bnode_dump+0x403/0xbb0
[   69.402855][ T5319]  __asan_memcpy+0x29/0x70
[   69.412570][ T5319]  hfsplus_bnode_dump+0x403/0xbb0
[   69.416084][ T5319]  ? __pfx_hfsplus_bnode_dump+0x10/0x10
[   69.418621][ T5319]  ? hfsplus_bnode_write_u16+0x9b/0xf0
[   69.420769][ T5319]  ? __pfx_hfsplus_bnode_write_u16+0x10/0x10
[   69.423032][ T5319]  ? rcu_is_watching+0x15/0xb0
[   69.424885][ T5319]  ? hfsplus_bnode_move+0x2da/0x910
[   69.426718][ T5319]  ? __mark_inode_dirty+0x3db/0xe90
[   69.428436][ T5319]  hfsplus_brec_remove+0x42c/0x4f0
[   69.430104][ T5319]  __hfsplus_delete_attr+0x275/0x450
[   69.432038][ T5319]  ? __pfx___hfsplus_delete_attr+0x10/0x10
[   69.434184][ T5319]  ? hfsplus_find_init+0x85/0x1c0
[   69.436065][ T5319]  hfsplus_delete_attr+0x353/0x4b0
[   69.437888][ T5319]  ? __pfx_hfsplus_delete_attr+0x10/0x10
[   69.440073][ T5319]  ? hfsplus_find_init+0x85/0x1c0
[   69.441828][ T5319]  ? hfsplus_find_init+0x14a/0x1c0
[   69.443705][ T5319]  __hfsplus_setxattr+0x4ad/0x22d0
[   69.445537][ T5319]  ? kernel_text_address+0xa7/0xe0
[   69.447458][ T5319]  ? arch_stack_walk+0xfd/0x150
[   69.449132][ T5319]  ? __pfx___hfsplus_setxattr+0x10/0x10
[   69.451153][ T5319]  ? stack_trace_save+0x118/0x1d0
[   69.453015][ T5319]  ? __pfx_stack_trace_save+0x10/0x10
[   69.454969][ T5319]  ? stack_depot_save_flags+0x37/0x940
[   69.457013][ T5319]  ? __kasan_kmalloc+0x98/0xb0
[   69.458837][ T5319]  ? __kmalloc_cache_noprof+0x243/0x390
[   69.460847][ T5319]  ? hfsplus_setxattr+0x68/0xe0
[   69.462543][ T5319]  hfsplus_setxattr+0xb0/0xe0
[   69.464163][ T5319]  hfsplus_trusted_setxattr+0x40/0x60
[   69.465764][ T5319]  ? __pfx_hfsplus_trusted_setxattr+0x10/0x10
[   69.467826][ T5319]  __vfs_setxattr+0x468/0x4a0
[   69.469378][ T5319]  __vfs_setxattr_noperm+0x12e/0x660
[   69.471039][ T5319]  vfs_setxattr+0x221/0x430
[   69.472392][ T5319]  ? __pfx_vfs_setxattr+0x10/0x10
[   69.473899][ T5319]  filename_setxattr+0x2af/0x430
[   69.475431][ T5319]  ? __phys_addr_symbol+0x2f/0x70
[   69.476936][ T5319]  ? __pfx_filename_setxattr+0x10/0x10
[   69.478581][ T5319]  ? getname_flags+0x1e3/0x540
[   69.480241][ T5319]  path_setxattrat+0x440/0x510
[   69.481915][ T5319]  ? __pfx_path_setxattrat+0x10/0x10
[   69.483899][ T5319]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[   69.486306][ T5319]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[   69.488642][ T5319]  __x64_sys_lsetxattr+0xbf/0xe0
[   69.490497][ T5319]  do_syscall_64+0xf3/0x230
[   69.492313][ T5319]  ? clear_bhb_loop+0x35/0x90
[   69.494084][ T5319]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   69.496111][ T5319] RIP: 0033:0x7f18eef85d19
[   69.498572][ T5319] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   69.505868][ T5319] RSP: 002b:00007f18efdc3038 EFLAGS: 00000246 ORIG_RAX: 00000000000000bd
[   69.508972][ T5319] RAX: ffffffffffffffda RBX: 00007f18ef175fa0 RCX: 00007f18eef85d19
[   69.511854][ T5319] RDX: 0000000000000000 RSI: 0000000020000080 RDI: 0000000020000040
[   69.514713][ T5319] RBP: 00007f18ef001a20 R08: 0000000000000000 R09: 0000000000000000
[   69.517559][ T5319] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   69.520540][ T5319] R13: 0000000000000000 R14: 00007f18ef175fa0 R15: 00007fffec2a9d88
[   69.523519][ T5319]  </TASK>
[   69.524710][ T5319] ==================================================================
[   69.568990][ T5319] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[   69.571403][ T5319] CPU: 0 UID: 0 PID: 5319 Comm: syz.0.0 Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0
[   69.575137][ T5319] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   69.578502][ T5319] Call Trace:
[   69.579650][ T5319]  <TASK>
[   69.580775][ T5319]  dump_stack_lvl+0x241/0x360
[   69.582580][ T5319]  ? __pfx_dump_stack_lvl+0x10/0x10
[   69.584612][ T5319]  ? __pfx__printk+0x10/0x10
[   69.586325][ T5319]  ? preempt_schedule+0xe1/0xf0
[   69.588271][ T5319]  ? vscnprintf+0x5d/0x90
[   69.590074][ T5319]  panic+0x349/0x880
[   69.591598][ T5319]  ? check_panic_on_warn+0x21/0xb0
[   69.593245][ T5319]  ? __pfx_panic+0x10/0x10
[   69.594936][ T5319]  ? _raw_spin_unlock_irqrestore+0x130/0x140
[   69.597296][ T5319]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[   69.599757][ T5319]  ? print_report+0xe8/0x550
[   69.601663][ T5319]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[   69.604120][ T5319]  check_panic_on_warn+0x86/0xb0
[   69.606134][ T5319]  ? hfsplus_bnode_dump+0x403/0xbb0
[   69.608194][ T5319]  end_report+0x77/0x160
[   69.609795][ T5319]  kasan_report+0x154/0x180
[   69.611530][ T5319]  ? hfsplus_bnode_dump+0x403/0xbb0
[   69.613537][ T5319]  ? hfsplus_bnode_dump+0x403/0xbb0
[   69.615567][ T5319]  kasan_check_range+0x282/0x290
[   69.617635][ T5319]  ? hfsplus_bnode_dump+0x403/0xbb0
[   69.619663][ T5319]  __asan_memcpy+0x29/0x70
[   69.621381][ T5319]  hfsplus_bnode_dump+0x403/0xbb0
[   69.623246][ T5319]  ? __pfx_hfsplus_bnode_dump+0x10/0x10
[   69.625349][ T5319]  ? hfsplus_bnode_write_u16+0x9b/0xf0
[   69.627498][ T5319]  ? __pfx_hfsplus_bnode_write_u16+0x10/0x10
[   69.629771][ T5319]  ? rcu_is_watching+0x15/0xb0
[   69.631652][ T5319]  ? hfsplus_bnode_move+0x2da/0x910
[   69.633696][ T5319]  ? __mark_inode_dirty+0x3db/0xe90
[   69.635762][ T5319]  hfsplus_brec_remove+0x42c/0x4f0
[   69.637772][ T5319]  __hfsplus_delete_attr+0x275/0x450
[   69.639743][ T5319]  ? __pfx___hfsplus_delete_attr+0x10/0x10
[   69.642133][ T5319]  ? hfsplus_find_init+0x85/0x1c0
[   69.644169][ T5319]  hfsplus_delete_attr+0x353/0x4b0
[   69.646277][ T5319]  ? __pfx_hfsplus_delete_attr+0x10/0x10
[   69.648189][ T5319]  ? hfsplus_find_init+0x85/0x1c0
[   69.649976][ T5319]  ? hfsplus_find_init+0x14a/0x1c0
[   69.652090][ T5319]  __hfsplus_setxattr+0x4ad/0x22d0
[   69.654011][ T5319]  ? kernel_text_address+0xa7/0xe0
[   69.655987][ T5319]  ? arch_stack_walk+0xfd/0x150
[   69.657875][ T5319]  ? __pfx___hfsplus_setxattr+0x10/0x10
[   69.659989][ T5319]  ? stack_trace_save+0x118/0x1d0
[   69.661933][ T5319]  ? __pfx_stack_trace_save+0x10/0x10
[   69.664030][ T5319]  ? stack_depot_save_flags+0x37/0x940
[   69.666180][ T5319]  ? __kasan_kmalloc+0x98/0xb0
[   69.668050][ T5319]  ? __kmalloc_cache_noprof+0x243/0x390
[   69.670148][ T5319]  ? hfsplus_setxattr+0x68/0xe0
[   69.672023][ T5319]  hfsplus_setxattr+0xb0/0xe0
[   69.673870][ T5319]  hfsplus_trusted_setxattr+0x40/0x60
[   69.676017][ T5319]  ? __pfx_hfsplus_trusted_setxattr+0x10/0x10
[   69.678414][ T5319]  __vfs_setxattr+0x468/0x4a0
[   69.680256][ T5319]  __vfs_setxattr_noperm+0x12e/0x660
[   69.682499][ T5319]  vfs_setxattr+0x221/0x430
[   69.684163][ T5319]  ? __pfx_vfs_setxattr+0x10/0x10
[   69.686141][ T5319]  filename_setxattr+0x2af/0x430
[   69.688021][ T5319]  ? __phys_addr_symbol+0x2f/0x70
[   69.689936][ T5319]  ? __pfx_filename_setxattr+0x10/0x10
[   69.691859][ T5319]  ? getname_flags+0x1e3/0x540
[   69.693536][ T5319]  path_setxattrat+0x440/0x510
[   69.695216][ T5319]  ? __pfx_path_setxattrat+0x10/0x10
[   69.697055][ T5319]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[   69.699109][ T5319]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[   69.701304][ T5319]  __x64_sys_lsetxattr+0xbf/0xe0
[   69.703061][ T5319]  do_syscall_64+0xf3/0x230
[   69.704721][ T5319]  ? clear_bhb_loop+0x35/0x90
[   69.706501][ T5319]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   69.708817][ T5319] RIP: 0033:0x7f18eef85d19
[   69.710567][ T5319] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   69.717996][ T5319] RSP: 002b:00007f18efdc3038 EFLAGS: 00000246 ORIG_RAX: 00000000000000bd
[   69.721523][ T5319] RAX: ffffffffffffffda RBX: 00007f18ef175fa0 RCX: 00007f18eef85d19
[   69.724530][ T5319] RDX: 0000000000000000 RSI: 0000000020000080 RDI: 0000000020000040
[   69.727476][ T5319] RBP: 00007f18ef001a20 R08: 0000000000000000 R09: 0000000000000000
[   69.730657][ T5319] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   69.733878][ T5319] R13: 0000000000000000 R14: 00007f18ef175fa0 R15: 00007fffec2a9d88
[   69.737081][ T5319]  </TASK>
[   69.738467][ T5319] Kernel Offset: disabled
[   69.740094][ T5319] Rebooting in 86400 seconds..