program: r0 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000580), 0x40200, 0x0) mmap$xdp(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x3000000, 0x30, r0, 0x100000000) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) syz_mount_image$hfsplus(&(0x7f0000000000), &(0x7f0000000400)='./file1\x00', 0xa08006, &(0x7f0000000100)=ANY=[@ANYRES32=0x0], 0x1, 0x687, &(0x7f0000000fc0)="$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") (async) syz_mount_image$hfsplus(&(0x7f0000000000), &(0x7f0000000400)='./file1\x00', 0xa08006, &(0x7f0000000100)=ANY=[@ANYRES32=0x0], 0x1, 0x687, &(0x7f0000000fc0)="$eJzs3c1vHGcdB/DvrNeOHaTUfUlaUCWsRioIi8QvcsFcGjggHypUhUOFxMVKnMbKxq1sF7kVAvN+5dA/oBx8QOICEvdIReKAgFvFzeKAKiFx6cm3oJmdtdfxS9Ybv8Tw+Viz+8w8r/PbmWd3dmVNgP9bc+NpPkiRufE31sr1zY3p1ubG9IU6u5WkTDeSZvspxVJSfJzcSHvJ58uNdfnioH4+XJy9+clnm5+215r1UpVvHFavN+v1krEkA/XzXoN9tXfrwPYON7+dKrb3sAzY1U7g4Kw93GP9KNWf8LwFngZF+31zj9HkYpLh+nNA6tmhcbqjO35HmuUAAADgnHpmK1tZy6WzHgcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACcJ/X9/4t6aXTSYyk69/8fqrelTt9snPGYn8SDsx4AAAAAAAAAAByDL25lK2u5lPrH/YftX/ZfqR5fqB4/l/eykoUs51rWMp/VrGY5k0lGuxoaWptfXV2e7KHm1L41p/ob/+/7qwYAAAAAAAAA/2t+mrn27/8AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPC0KJKB9lO1vNBJj6bRTDKcZKgst578vZM+J4r9Nj44/XEAAADAExnuo84zW9nKWi511h8W1TX/lep6eTjvZSmrWcxqWlnI7foaurzqb2xuTLc2N6bvb25MVx1//2Fbu51v/udIw6haTPu7h/17fqkqMZI7Way2XMutajC306hqll6qx7O97O7kJ+WYRl6v9Tiy2/Vz2dmvD/oW4Tg0jlphtKo0uB2RiXpsZUPPHh6Jx746zUN7mkxj+5ufFw7pqbNLxRFjfrFTL8kvH4n56//67fd6bOYEbEeikSoSU11H35XDY5586Y+/e+tua+ne3Tsr4yd2GJ2WR4+J6a5IvHiuI9E8YvmJKhKXt9fn8u18N+MZy5tZzmJ+kPmsZiH1zJj5+nguH0e7opTsidSNXWtvPm4kQ/Xr0p5FexnTWC5Uqfm8UtW9lMUUeSe3s5DXqr+pTOZrmclMZrte4csHvsLVvlUzbeNoZ/3VL2fnVP9VOVP3Vi/5c68Fj679llrG9dmuuHbPuaNVXveWnSg918P70RHnxuYX6kTZx8/6eds4MY9GYrIrEs8fHonfVOfGSmvp3vLd+XcPaH/9kfVXB3fSv+jrnfmkpp7yeHkuw/VMsvvoKPOe355ldsdrqP7FpZ3X2JN3ucoris6Z+p19ztQy4rNV6Sv7tjRV5b24N2+gHvk//tmVt+vzVt756wkFDIDjdfErF4dG/j3yt5GPRn4+cnfkjeFvXfj6hZeHMvinwW80JwZebbxc/CEf5Uc71/8AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAED/Vt7/4N58q7WwvH+icXDW8SaK+rY8B5VpZiSnMIzTTBTJ+rG3nLPfrx4SnZsIPmk7b914KnbnXCcGktRbfpzsHD/1S9TPzUWBc+H66v13r6+8/8FXF+/Pv73w9sLS4MzM7MTszGvT1+8sthYm2o9nPUrgJOx8HuixwuAJDwgAAAAAAAAAAAB4rP3+MeAvx/yfBl3djZ3hrgIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADn1Nx4moMpMjlxbaJc39yYbpVLJ71Tspmk0UiKHybFx8mNtJeMdjVXHNTPh4uzNz/5bPPTnbaanfKNw+r1Zr1eMpZkoH7eY6i/9m4d1F7Piu09LAN2tRM4OGv/DQAA//+iHAcm") r2 = socket$inet6(0xa, 0x5, 0x0) bind$inet6(r2, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c) (async) bind$inet6(r2, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c) setsockopt$SO_BINDTODEVICE(r2, 0x1, 0x19, &(0x7f0000000080)='veth1_to_bond\x00', 0x10) socket$inet6(0xa, 0x5, 0x0) (async) r3 = socket$inet6(0xa, 0x5, 0x0) setsockopt$sock_int(r3, 0x1, 0x3e, &(0x7f0000fee000)=0x3fa, 0x4) bind$inet6(r3, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c) (async) bind$inet6(r3, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c) inotify_init1(0x0) (async) r4 = inotify_init1(0x0) r5 = openat$vimc0(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) ioctl$VIDIOC_ENUM_FRAMESIZES(r5, 0xc02c564a, &(0x7f0000000040)={0x0, 0x33424752}) inotify_add_watch(r4, &(0x7f0000000080)='.\x00', 0x40000582) (async) r6 = inotify_add_watch(r4, &(0x7f0000000080)='.\x00', 0x40000582) setxattr$incfs_metadata(&(0x7f0000000340)='./file0\x00', &(0x7f0000000380), 0x0, 0x0, 0x0) (async) setxattr$incfs_metadata(&(0x7f0000000340)='./file0\x00', &(0x7f0000000380), 0x0, 0x0, 0x0) removexattr(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)=@known='user.incfs.metadata\x00') openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0) r7 = socket$nl_route(0x10, 0x3, 0x0) socket$kcm(0x29, 0x3, 0x0) r8 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000380)={&(0x7f0000000080)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c00000003000000010000000000000e0200000000000000000000000000000504000000002e"], 0x0, 0x37, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x20) bpf$MAP_CREATE(0x0, &(0x7f0000000780)=ANY=[@ANYRES32=r1, @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32=r8, @ANYRESDEC=r6], 0x48) (async) bpf$MAP_CREATE(0x0, &(0x7f0000000780)=ANY=[@ANYRES32=r1, @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32=r8, @ANYRESDEC=r6], 0x48) sendmsg$nl_route_sched(r7, &(0x7f00000037c0)={0x0, 0x0, &(0x7f0000003780)={&(0x7f0000000cc0)=@newtaction={0x84, 0x30, 0x12f, 0x0, 0x0, {0x0, 0x0, 0x1be}, [{0x70, 0x1, [@m_police={0x6c, 0x1, 0x0, 0x0, {{0xb}, {0x5c, 0x2, 0x0, 0x1, [[@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x4}}]]}, {0x4}, {0xc, 0xb}, {0xc, 0xa}}}]}]}, 0x84}}, 0x0) r9 = syz_open_dev$vim2m(&(0x7f00000002c0), 0x2000000f5, 0x2) ioctl$vim2m_VIDIOC_S_CTRL(r9, 0xc008561c, &(0x7f0000000400)={0xf0f003}) syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x4) (async) syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x4) socket$inet6_sctp(0xa, 0x1, 0x84) r10 = syz_open_dev$swradio(&(0x7f00000003c0), 0x1, 0x2) ioctl$VIDIOC_S_FREQUENCY(r10, 0x402c5639, &(0x7f0000000440)={0x9, 0x4, 0x9}) (async) ioctl$VIDIOC_S_FREQUENCY(r10, 0x402c5639, &(0x7f0000000440)={0x9, 0x4, 0x9}) r11 = syz_usb_connect(0x1, 0xaf5, &(0x7f0000002b80)=ANY=[@ANYBLOB="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"], &(0x7f0000000600)={0xa, &(0x7f0000000000)={0xa, 0x6, 0x110, 0x0, 0xd, 0x44, 0x8, 0xf7}, 0x4d, &(0x7f0000000040)={0x5, 0xf, 0x4d, 0x5, [@wireless={0xb, 0x10, 0x1, 0xc, 0x80, 0x8, 0x0, 0x7, 0x9}, @ext_cap={0x7, 0x10, 0x2, 0x2, 0x9, 0xc, 0x6}, @ssp_cap={0x18, 0x10, 0xa, 0x6, 0x3, 0x40, 0x0, 0x7, [0xc03f, 0x0, 0xc030]}, @ss_cap={0xa, 0x10, 0x3, 0x0, 0x9, 0x9, 0x7, 0x101}, @ssp_cap={0x14, 0x10, 0xa, 0x81, 0x2, 0x2, 0xff0f, 0x81d, [0xff0000, 0xff3f00]}]}, 0x9, [{0x4, &(0x7f00000000c0)=@lang_id={0x4, 0x3, 0x410}}, {0x4, &(0x7f0000000100)=@lang_id={0x4, 0x3, 0xc6e}}, {0x4, &(0x7f0000000480)=@lang_id={0x4, 0x3, 0x3409}}, {0xaa, &(0x7f0000000180)=@string={0xaa, 0x3, "c66bc64b2618fa050fad61c47fe1d9c375c16f8acb38a134b70c651d50b0f0c2c1349307fac6728b5d55ea1ed5ab0485ab6783a871011934057700ce48dd4343a4626f3164e6af1c6dd82670fcb2dee5010bd1a9e28c76a89a64bbcf46e70a0cf3563589569283f767e5e95b35225a1473b429c594c8c33bedf102af6d8923897c757083e0176aea78897774da54a5395b22324fc66657aded6da3958e994093e9f7feda8a827853"}}, {0x42, &(0x7f0000000240)=@string={0x42, 0x3, "976981ae3368815d78b9f309a77156b0fb97305cad2c8a1a77b9b6d176ccb3d18a1de62507449272ef6fed62e36c39015858a08189a8cef69d24756dae184429"}}, {0x4, &(0x7f0000000300)=@lang_id={0x4, 0x3, 0x400a}}, {0xbe, &(0x7f00000004c0)=@string={0xbe, 0x3, "1b5a77e9bf2a1f96316090b44b6e2fff514372722640de88f0ca58e28fb3e506c5c9e61b935052cdb69789be26f622023ac45de3591c0d54c0d3782d4e33eacfd2653899c221535f0c78bbfc9b1f496d4531be1276f232c7429aeb723e89a6e666c5fa46cf78a9a5011d434d405ea6b087be06f4f4a259a2fd53462576a98da787c9148f2346c1937e0232b9fd5ca990bb4ed0f7e7846232b06c70be37a8a19f13b66c3f34c0abbfcf22983e6572e3c3118451016a01dff0daefea84"}}, {0x4, &(0x7f0000000340)=@lang_id={0x4, 0x3, 0x35}}, {0x43, &(0x7f00000006c0)=ANY=[]}]}) syz_usb_disconnect(r11) [ 79.409919][ T48] Bluetooth: hci0: command tx timeout [ 79.413824][ T1309] ieee802154 phy0 wpan0: encryption failed: -22 [ 79.426246][ T1309] ieee802154 phy1 wpan1: encryption failed: -22 [ 79.534951][ T5316] loop0: detected capacity change from 0 to 1024 [ 79.597077][ T5315] hfsplus: request for non-existent node 134217728 in B*Tree [ 79.599745][ T5315] hfsplus: request for non-existent node 134217728 in B*Tree [ 79.603259][ T5316] ================================================================== [ 79.605988][ T5316] BUG: KASAN: wild-memory-access in hfsplus_bnode_dump+0x403/0xbb0 [ 79.609371][ T5316] Read of size 2 at addr 000508800000103e by task syz.0.0/5316 [ 79.612980][ T5316] [ 79.614148][ T5316] CPU: 0 UID: 0 PID: 5316 Comm: syz.0.0 Not tainted 6.13.0-syzkaller-08291-g805ba04cb7cc #0 [ 79.614163][ T5316] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 79.614170][ T5316] Call Trace: [ 79.614178][ T5316] [ 79.614183][ T5316] dump_stack_lvl+0x241/0x360 [ 79.614202][ T5316] ? __pfx_dump_stack_lvl+0x10/0x10 [ 79.614213][ T5316] ? __pfx__printk+0x10/0x10 [ 79.614229][ T5316] ? _printk+0xd5/0x120 [ 79.614245][ T5316] print_report+0xe8/0x550 [ 79.614263][ T5316] ? __virt_addr_valid+0x58/0x530 [ 79.614280][ T5316] ? hfsplus_bnode_dump+0x403/0xbb0 [ 79.614297][ T5316] kasan_report+0x143/0x180 [ 79.614313][ T5316] ? hfsplus_bnode_dump+0x403/0xbb0 [ 79.614330][ T5316] ? hfsplus_bnode_dump+0x403/0xbb0 [ 79.614345][ T5316] kasan_check_range+0x282/0x290 [ 79.614355][ T5316] ? hfsplus_bnode_dump+0x403/0xbb0 [ 79.614370][ T5316] __asan_memcpy+0x29/0x70 [ 79.614384][ T5316] hfsplus_bnode_dump+0x403/0xbb0 [ 79.614402][ T5316] ? __pfx_hfsplus_bnode_dump+0x10/0x10 [ 79.614417][ T5316] ? hfsplus_bnode_write_u16+0x9b/0xf0 [ 79.614433][ T5316] ? __pfx_hfsplus_bnode_write_u16+0x10/0x10 [ 79.614448][ T5316] ? rcu_is_watching+0x15/0xb0 [ 79.614459][ T5316] ? hfsplus_bnode_move+0x2da/0x910 [ 79.614474][ T5316] ? __mark_inode_dirty+0x3db/0xe90 [ 79.614489][ T5316] hfsplus_brec_remove+0x42c/0x4f0 [ 79.614503][ T5316] __hfsplus_delete_attr+0x275/0x450 [ 79.614517][ T5316] ? __pfx___hfsplus_delete_attr+0x10/0x10 [ 79.614528][ T5316] ? hfsplus_find_init+0x85/0x1c0 [ 79.614540][ T5316] hfsplus_delete_attr+0x353/0x4b0 [ 79.614553][ T5316] ? __pfx_hfsplus_delete_attr+0x10/0x10 [ 79.614565][ T5316] ? hfsplus_find_init+0x85/0x1c0 [ 79.614576][ T5316] ? hfsplus_find_init+0x14a/0x1c0 [ 79.614586][ T5316] __hfsplus_setxattr+0x801/0x22d0 [ 79.614599][ T5316] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 79.614615][ T5316] ? _raw_spin_unlock_irqrestore+0x8f/0x140 [ 79.614684][ T5316] ? lockdep_hardirqs_on+0x99/0x150 [ 79.614698][ T5316] ? __pfx___hfsplus_setxattr+0x10/0x10 [ 79.614709][ T5316] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 79.614723][ T5316] ? stack_depot_save_flags+0x7b4/0x940 [ 79.614747][ T5316] ? __kasan_kmalloc+0x98/0xb0 [ 79.614764][ T5316] ? __kmalloc_cache_noprof+0x243/0x390 [ 79.614776][ T5316] ? hfsplus_setxattr+0x68/0xe0 [ 79.614788][ T5316] hfsplus_setxattr+0xb0/0xe0 [ 79.614801][ T5316] hfsplus_user_setxattr+0x40/0x60 [ 79.614814][ T5316] ? __pfx_hfsplus_user_setxattr+0x10/0x10 [ 79.614827][ T5316] __vfs_removexattr+0x42a/0x460 [ 79.614848][ T5316] __vfs_removexattr_locked+0x206/0x450 [ 79.614860][ T5316] vfs_removexattr+0x103/0x2b0 [ 79.614870][ T5316] ? __pfx_rcu_read_lock_any_held+0x10/0x10 [ 79.614883][ T5316] ? __pfx_vfs_removexattr+0x10/0x10 [ 79.614895][ T5316] path_removexattrat+0x32e/0x670 [ 79.614911][ T5316] ? __pfx_path_removexattrat+0x10/0x10 [ 79.614924][ T5316] ? do_futex+0x33b/0x560 [ 79.614942][ T5316] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 79.614956][ T5316] ? do_syscall_64+0x100/0x230 [ 79.614972][ T5316] __x64_sys_removexattr+0x62/0x70 [ 79.614985][ T5316] do_syscall_64+0xf3/0x230 [ 79.614999][ T5316] ? clear_bhb_loop+0x35/0x90 [ 79.615017][ T5316] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 79.615032][ T5316] RIP: 0033:0x7fbb2a78cda9 [ 79.615043][ T5316] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 79.615052][ T5316] RSP: 002b:00007fbb2b645038 EFLAGS: 00000246 ORIG_RAX: 00000000000000c5 [ 79.615065][ T5316] RAX: ffffffffffffffda RBX: 00007fbb2a9a6080 RCX: 00007fbb2a78cda9 [ 79.615073][ T5316] RDX: 0000000000000000 RSI: 0000000020000080 RDI: 0000000020000040 [ 79.615080][ T5316] RBP: 00007fbb2a80e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 79.615085][ T5316] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 79.615092][ T5316] R13: 0000000000000000 R14: 00007fbb2a9a6080 R15: 00007ffcf72e0ad8 [ 79.615102][ T5316] [ 79.615106][ T5316] ================================================================== [ 79.787797][ T5316] Kernel panic - not syncing: KASAN: panic_on_warn set ... [ 79.790977][ T5316] CPU: 0 UID: 0 PID: 5316 Comm: syz.0.0 Not tainted 6.13.0-syzkaller-08291-g805ba04cb7cc #0 [ 79.795346][ T5316] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 79.799839][ T5316] Call Trace: [ 79.801448][ T5316] [ 79.803042][ T5316] dump_stack_lvl+0x241/0x360 [ 79.805460][ T5316] ? __pfx_dump_stack_lvl+0x10/0x10 [ 79.807908][ T5316] ? __pfx__printk+0x10/0x10 [ 79.809779][ T5316] ? preempt_schedule+0xe1/0xf0 [ 79.811542][ T5316] ? vscnprintf+0x5d/0x90 [ 79.813124][ T5316] panic+0x349/0x880 [ 79.814672][ T5316] ? check_panic_on_warn+0x21/0xb0 [ 79.816672][ T5316] ? __pfx_panic+0x10/0x10 [ 79.818416][ T5316] ? _raw_spin_unlock_irqrestore+0x130/0x140 [ 79.820655][ T5316] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10 [ 79.823003][ T5316] ? print_report+0xe8/0x550 [ 79.824728][ T5316] check_panic_on_warn+0x86/0xb0 [ 79.826598][ T5316] ? hfsplus_bnode_dump+0x403/0xbb0 [ 79.828482][ T5316] end_report+0x77/0x160 [ 79.830035][ T5316] kasan_report+0x154/0x180 [ 79.831713][ T5316] ? hfsplus_bnode_dump+0x403/0xbb0 [ 79.833650][ T5316] ? hfsplus_bnode_dump+0x403/0xbb0 [ 79.835556][ T5316] kasan_check_range+0x282/0x290 [ 79.837426][ T5316] ? hfsplus_bnode_dump+0x403/0xbb0 [ 79.839416][ T5316] __asan_memcpy+0x29/0x70 [ 79.841073][ T5316] hfsplus_bnode_dump+0x403/0xbb0 [ 79.842841][ T5316] ? __pfx_hfsplus_bnode_dump+0x10/0x10 [ 79.844976][ T5316] ? hfsplus_bnode_write_u16+0x9b/0xf0 [ 79.846983][ T5316] ? __pfx_hfsplus_bnode_write_u16+0x10/0x10 [ 79.849348][ T5316] ? rcu_is_watching+0x15/0xb0 [ 79.851206][ T5316] ? hfsplus_bnode_move+0x2da/0x910 [ 79.853223][ T5316] ? __mark_inode_dirty+0x3db/0xe90 [ 79.855195][ T5316] hfsplus_brec_remove+0x42c/0x4f0 [ 79.857129][ T5316] __hfsplus_delete_attr+0x275/0x450 [ 79.859184][ T5316] ? __pfx___hfsplus_delete_attr+0x10/0x10 [ 79.861346][ T5316] ? hfsplus_find_init+0x85/0x1c0 [ 79.863252][ T5316] hfsplus_delete_attr+0x353/0x4b0 [ 79.865195][ T5316] ? __pfx_hfsplus_delete_attr+0x10/0x10 [ 79.867239][ T5316] ? hfsplus_find_init+0x85/0x1c0 [ 79.869119][ T5316] ? hfsplus_find_init+0x14a/0x1c0 [ 79.871097][ T5316] __hfsplus_setxattr+0x801/0x22d0 [ 79.873247][ T5316] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 79.875686][ T5316] ? _raw_spin_unlock_irqrestore+0x8f/0x140 [ 79.878078][ T5316] ? lockdep_hardirqs_on+0x99/0x150 [ 79.880154][ T5316] ? __pfx___hfsplus_setxattr+0x10/0x10 [ 79.882240][ T5316] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 79.884403][ T5316] ? stack_depot_save_flags+0x7b4/0x940 [ 79.886474][ T5316] ? __kasan_kmalloc+0x98/0xb0 [ 79.888337][ T5316] ? __kmalloc_cache_noprof+0x243/0x390 [ 79.890535][ T5316] ? hfsplus_setxattr+0x68/0xe0 [ 79.892555][ T5316] hfsplus_setxattr+0xb0/0xe0 [ 79.894473][ T5316] hfsplus_user_setxattr+0x40/0x60 [ 79.896474][ T5316] ? __pfx_hfsplus_user_setxattr+0x10/0x10 [ 79.898948][ T5316] __vfs_removexattr+0x42a/0x460 [ 79.901308][ T5316] __vfs_removexattr_locked+0x206/0x450 [ 79.903424][ T5316] vfs_removexattr+0x103/0x2b0 [ 79.905200][ T5316] ? __pfx_rcu_read_lock_any_held+0x10/0x10 [ 79.907337][ T5316] ? __pfx_vfs_removexattr+0x10/0x10 [ 79.909398][ T5316] path_removexattrat+0x32e/0x670 [ 79.911258][ T5316] ? __pfx_path_removexattrat+0x10/0x10 [ 79.913329][ T5316] ? do_futex+0x33b/0x560 [ 79.914995][ T5316] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 79.917355][ T5316] ? do_syscall_64+0x100/0x230 [ 79.919142][ T5316] __x64_sys_removexattr+0x62/0x70 [ 79.921054][ T5316] do_syscall_64+0xf3/0x230 [ 79.922709][ T5316] ? clear_bhb_loop+0x35/0x90 [ 79.924420][ T5316] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 79.926563][ T5316] RIP: 0033:0x7fbb2a78cda9 [ 79.928230][ T5316] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 79.935557][ T5316] RSP: 002b:00007fbb2b645038 EFLAGS: 00000246 ORIG_RAX: 00000000000000c5 [ 79.938590][ T5316] RAX: ffffffffffffffda RBX: 00007fbb2a9a6080 RCX: 00007fbb2a78cda9 [ 79.941419][ T5316] RDX: 0000000000000000 RSI: 0000000020000080 RDI: 0000000020000040 [ 79.944346][ T5316] RBP: 00007fbb2a80e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 79.947287][ T5316] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 79.950193][ T5316] R13: 0000000000000000 R14: 00007fbb2a9a6080 R15: 00007ffcf72e0ad8 [ 79.953041][ T5316] [ 79.954457][ T5316] Kernel Offset: disabled [ 79.956051][ T5316] Rebooting in 86400 seconds..