program:
syz_mount_image$hfsplus(&(0x7f0000000000), &(0x7f0000000140)='./file1\x00', 0x1008400, &(0x7f0000000080)=ANY=[@ANYRES16=0x0, @ANYRES64], 0x86, 0x680, &(0x7f0000000340)="$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")
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x2)
ioctl$KVM_RUN(r0, 0xae80, 0x0)
unlink(&(0x7f0000000040)='./file1\x00')
listxattr(&(0x7f0000000a00)='./file1\x00', 0x0, 0x0) (async)
listxattr(&(0x7f0000000a00)='./file1\x00', 0x0, 0x0)

[   72.000107][ T5303] Bluetooth: hci0: command tx timeout
[   72.080061][ T5318] loop0: detected capacity change from 0 to 1024
[   72.120904][ T5318] hfsplus: request for non-existent node 128 in B*Tree
[   72.123519][ T5318] hfsplus: request for non-existent node 128 in B*Tree
[   72.128151][ T5318] ==================================================================
[   72.131290][ T5318] BUG: KASAN: wild-memory-access in hfsplus_bnode_dump+0x403/0xbb0
[   72.134130][ T5318] Read of size 2 at addr 000508800000103e by task syz.0.0/5318
[   72.137004][ T5318] 
[   72.138137][ T5318] CPU: 0 UID: 0 PID: 5318 Comm: syz.0.0 Not tainted 6.13.0-rc2-syzkaller-00018-g7cb1b4663150 #0
[   72.142644][ T5318] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   72.146392][ T5318] Call Trace:
[   72.147555][ T5318]  <TASK>
[   72.148628][ T5318]  dump_stack_lvl+0x241/0x360
[   72.150440][ T5318]  ? __pfx_dump_stack_lvl+0x10/0x10
[   72.152328][ T5318]  ? __pfx__printk+0x10/0x10
[   72.153991][ T5318]  ? _printk+0xd5/0x120
[   72.155537][ T5318]  print_report+0xe8/0x550
[   72.157184][ T5318]  ? __virt_addr_valid+0x58/0x530
[   72.159008][ T5318]  ? hfsplus_bnode_dump+0x403/0xbb0
[   72.160874][ T5318]  kasan_report+0x143/0x180
[   72.162556][ T5318]  ? hfsplus_bnode_dump+0x403/0xbb0
[   72.164322][ T5318]  ? hfsplus_bnode_dump+0x403/0xbb0
[   72.166068][ T5318]  kasan_check_range+0x282/0x290
[   72.167996][ T5318]  ? hfsplus_bnode_dump+0x403/0xbb0
[   72.169969][ T5318]  __asan_memcpy+0x29/0x70
[   72.171646][ T5318]  hfsplus_bnode_dump+0x403/0xbb0
[   72.173483][ T5318]  ? __pfx_hfsplus_bnode_dump+0x10/0x10
[   72.175543][ T5318]  ? hfsplus_bnode_write_u16+0x9b/0xf0
[   72.177366][ T5318]  ? __pfx_hfsplus_bnode_write_u16+0x10/0x10
[   72.179451][ T5318]  ? rcu_is_watching+0x15/0xb0
[   72.181075][ T5318]  ? hfsplus_bnode_move+0x2da/0x910
[   72.182843][ T5318]  ? __mark_inode_dirty+0x3db/0xe90
[   72.184689][ T5318]  hfsplus_brec_remove+0x42c/0x4f0
[   72.186489][ T5318]  __hfsplus_delete_attr+0x275/0x450
[   72.188338][ T5318]  ? __pfx___hfsplus_delete_attr+0x10/0x10
[   72.190458][ T5318]  ? hfsplus_find_init+0x85/0x1c0
[   72.192561][ T5318]  hfsplus_delete_all_attrs+0x26b/0x3d0
[   72.194860][ T5318]  ? __pfx_hfsplus_delete_all_attrs+0x10/0x10
[   72.196959][ T5318]  ? do_raw_spin_unlock+0x58/0x8b0
[   72.198683][ T5318]  ? rcu_is_watching+0x15/0xb0
[   72.200585][ T5318]  ? __mark_inode_dirty+0x924/0xe90
[   72.202515][ T5318]  hfsplus_delete_cat+0xb33/0xf80
[   72.204310][ T5318]  ? __pfx_hfsplus_delete_cat+0x10/0x10
[   72.206360][ T5318]  ? __pfx___mutex_lock+0x10/0x10
[   72.208185][ T5318]  ? __pfx_lock_acquire+0x10/0x10
[   72.210024][ T5318]  hfsplus_unlink+0x363/0x790
[   72.211795][ T5318]  ? __pfx_hfsplus_unlink+0x10/0x10
[   72.213696][ T5318]  ? down_write+0x18c/0x220
[   72.215416][ T5318]  ? bpf_lsm_inode_unlink+0x9/0x10
[   72.217357][ T5318]  ? security_inode_unlink+0xd9/0x340
[   72.219342][ T5318]  vfs_unlink+0x365/0x650
[   72.220831][ T5318]  do_unlinkat+0x4ae/0x830
[   72.222503][ T5318]  ? __pfx_do_unlinkat+0x10/0x10
[   72.224332][ T5318]  ? __check_object_size+0x47a/0x730
[   72.226347][ T5318]  ? __might_fault+0xc6/0x120
[   72.228011][ T5318]  ? strncpy_from_user+0x152/0x270
[   72.229901][ T5318]  ? getname_flags+0x1e3/0x540
[   72.231565][ T5318]  __x64_sys_unlink+0x47/0x50
[   72.233295][ T5318]  do_syscall_64+0xf3/0x230
[   72.235090][ T5318]  ? clear_bhb_loop+0x35/0x90
[   72.236788][ T5318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   72.238879][ T5318] RIP: 0033:0x7f119717ff19
[   72.240430][ T5318] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   72.247490][ T5318] RSP: 002b:00007f1197ef7058 EFLAGS: 00000246 ORIG_RAX: 0000000000000057
[   72.250526][ T5318] RAX: ffffffffffffffda RBX: 00007f1197345fa0 RCX: 00007f119717ff19
[   72.253482][ T5318] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000040
[   72.256547][ T5318] RBP: 00007f11971f3cc8 R08: 0000000000000000 R09: 0000000000000000
[   72.259612][ T5318] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   72.262591][ T5318] R13: 0000000000000000 R14: 00007f1197345fa0 R15: 00007fff8d219bc8
[   72.265700][ T5318]  </TASK>
[   72.266945][ T5318] ==================================================================
[   72.281610][ T5318] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[   72.284173][ T5318] CPU: 0 UID: 0 PID: 5318 Comm: syz.0.0 Not tainted 6.13.0-rc2-syzkaller-00018-g7cb1b4663150 #0
[   72.288042][ T5318] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   72.292114][ T5318] Call Trace:
[   72.293272][ T5318]  <TASK>
[   72.294338][ T5318]  dump_stack_lvl+0x241/0x360
[   72.296375][ T5318]  ? __pfx_dump_stack_lvl+0x10/0x10
[   72.298759][ T5318]  ? __pfx__printk+0x10/0x10
[   72.300804][ T5318]  ? preempt_schedule+0xe1/0xf0
[   72.302916][ T5318]  ? vscnprintf+0x5d/0x90
[   72.304627][ T5318]  panic+0x349/0x880
[   72.305979][ T5318]  ? check_panic_on_warn+0x21/0xb0
[   72.307931][ T5318]  ? __pfx_panic+0x10/0x10
[   72.309661][ T5318]  ? _raw_spin_unlock_irqrestore+0x130/0x140
[   72.311859][ T5318]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[   72.314241][ T5318]  ? print_report+0xe8/0x550
[   72.315906][ T5318]  check_panic_on_warn+0x86/0xb0
[   72.317480][ T5318]  ? hfsplus_bnode_dump+0x403/0xbb0
[   72.319185][ T5318]  end_report+0x77/0x160
[   72.320704][ T5318]  kasan_report+0x154/0x180
[   72.322393][ T5318]  ? hfsplus_bnode_dump+0x403/0xbb0
[   72.324516][ T5318]  ? hfsplus_bnode_dump+0x403/0xbb0
[   72.326574][ T5318]  kasan_check_range+0x282/0x290
[   72.328418][ T5318]  ? hfsplus_bnode_dump+0x403/0xbb0
[   72.330263][ T5318]  __asan_memcpy+0x29/0x70
[   72.331974][ T5318]  hfsplus_bnode_dump+0x403/0xbb0
[   72.333828][ T5318]  ? __pfx_hfsplus_bnode_dump+0x10/0x10
[   72.335846][ T5318]  ? hfsplus_bnode_write_u16+0x9b/0xf0
[   72.337672][ T5318]  ? __pfx_hfsplus_bnode_write_u16+0x10/0x10
[   72.340086][ T5318]  ? rcu_is_watching+0x15/0xb0
[   72.342195][ T5318]  ? hfsplus_bnode_move+0x2da/0x910
[   72.344704][ T5318]  ? __mark_inode_dirty+0x3db/0xe90
[   72.347311][ T5318]  hfsplus_brec_remove+0x42c/0x4f0
[   72.349312][ T5318]  __hfsplus_delete_attr+0x275/0x450
[   72.351419][ T5318]  ? __pfx___hfsplus_delete_attr+0x10/0x10
[   72.353679][ T5318]  ? hfsplus_find_init+0x85/0x1c0
[   72.355631][ T5318]  hfsplus_delete_all_attrs+0x26b/0x3d0
[   72.357732][ T5318]  ? __pfx_hfsplus_delete_all_attrs+0x10/0x10
[   72.360228][ T5318]  ? do_raw_spin_unlock+0x58/0x8b0
[   72.362242][ T5318]  ? rcu_is_watching+0x15/0xb0
[   72.364090][ T5318]  ? __mark_inode_dirty+0x924/0xe90
[   72.366102][ T5318]  hfsplus_delete_cat+0xb33/0xf80
[   72.367761][ T5318]  ? __pfx_hfsplus_delete_cat+0x10/0x10
[   72.369521][ T5318]  ? __pfx___mutex_lock+0x10/0x10
[   72.371292][ T5318]  ? __pfx_lock_acquire+0x10/0x10
[   72.373035][ T5318]  hfsplus_unlink+0x363/0x790
[   72.374824][ T5318]  ? __pfx_hfsplus_unlink+0x10/0x10
[   72.376786][ T5318]  ? down_write+0x18c/0x220
[   72.378534][ T5318]  ? bpf_lsm_inode_unlink+0x9/0x10
[   72.380453][ T5318]  ? security_inode_unlink+0xd9/0x340
[   72.382498][ T5318]  vfs_unlink+0x365/0x650
[   72.384088][ T5318]  do_unlinkat+0x4ae/0x830
[   72.385651][ T5318]  ? __pfx_do_unlinkat+0x10/0x10
[   72.387362][ T5318]  ? __check_object_size+0x47a/0x730
[   72.389235][ T5318]  ? __might_fault+0xc6/0x120
[   72.390963][ T5318]  ? strncpy_from_user+0x152/0x270
[   72.392800][ T5318]  ? getname_flags+0x1e3/0x540
[   72.394452][ T5318]  __x64_sys_unlink+0x47/0x50
[   72.396071][ T5318]  do_syscall_64+0xf3/0x230
[   72.397592][ T5318]  ? clear_bhb_loop+0x35/0x90
[   72.399229][ T5318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   72.401387][ T5318] RIP: 0033:0x7f119717ff19
[   72.403116][ T5318] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   72.409878][ T5318] RSP: 002b:00007f1197ef7058 EFLAGS: 00000246 ORIG_RAX: 0000000000000057
[   72.412865][ T5318] RAX: ffffffffffffffda RBX: 00007f1197345fa0 RCX: 00007f119717ff19
[   72.415736][ T5318] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000040
[   72.418683][ T5318] RBP: 00007f11971f3cc8 R08: 0000000000000000 R09: 0000000000000000
[   72.421629][ T5318] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   72.424257][ T5318] R13: 0000000000000000 R14: 00007f1197345fa0 R15: 00007fff8d219bc8
[   72.427045][ T5318]  </TASK>
[   72.428381][ T5318] Kernel Offset: disabled
[   72.429952][ T5318] Rebooting in 86400 seconds..