program:
syz_mount_image$hfs(&(0x7f00000000c0), &(0x7f0000000080)='./file0\x00', 0x94, &(0x7f00000004c0)=ANY=[], 0x3, 0x2c8, &(0x7f0000000ac0)="$eJzs3T1PFEEcx/Hf7B1wCMHlwZBYoiRWRrExNhjCi7BQo3JnQrhgopioFbE2xk5jb2dtbCxtrIjWRisrXwDdmp2dPRbY3dtDlgnw/SR3WdiZ2f//9mnmkr0RgFNrafnXh2t/4peRGmpIuiEFklpSU9I5zbaerm+sbnQ77bKGGrZG/DJKapp9ZVbWO3lVW4Gr4YTxX02NZ/+HekRRFP3+0Sgvc/bIwoEn9uzPEUgj7uy061tHHlk9Nn0H4JnZ1raeacJ3HAAAv9z9P3D3+XHXfw8Cad7d9k/U/X/bdwCeZe7/dpQVmXj/2o6+2Rnv2SFcc1RSOkosabFwzbCSI2tXB9P0G1XaWILRh6vdzuWVR912oJdadDLFZux7Ozl0U32inSsJNkf/3IvYjIOhOIeFgvinD7LFt4OH0mO+mS1z14R6r3av/9eM7Cdi91Ro4w57FZL4rxS3OGabNbZUQZaTdiPn3Rb0+WOFLFv5I5JenJPa/QVBmMb5Zrik1tSeWkl2V4uzs7Wmc2st9Kk1k63lrpzuaC6ueXAFae9hXptbZk5/9UnLmf5/EH/a86pyZsZlbEl3ZJTm07QlwwqBBZXCR1VDpWtf6YGua+LJ8xdr97vdzuOqC19+DlD4sBca/1M9zbyGwKKRpOm6cm/W1nJ2IT1gPO3c07Sg4lWb1dppaERr6TWzjlCTlvM7SqOHcoGCf5nL4+xt38HAh/gaYpLxn+3JJ726m3ZdfPqHtp8+pLx+etSvcdviuztbyfAhMzbY6axO2fczA43gxopHcJkcSsdcFy5JF0u2+HV3s6GL84Qwy/que3z/DwAAAAAAAAAAAAAAAAAAcNxUex7APd5ywCdDPKcIAAAAAAAAAAAAAAAAAAAAAMCxVzb/r50js8/8v+mTAcXz/2Z+1bto/l/15v9dXEqL75//t3ySWgAD+xcAAP//AUt0qw==")
timer_create(0x3, &(0x7f0000000000)={0x0, 0x1d, 0x4, @thr={&(0x7f0000000100)="1dfa7b6bb7b42b8a8b7805149c089779c0bb6e569f442aaa18041f2ee47bd21ca3c538081646640d029e330a14a031fededceea2c553cf85a427d6f3851d8aa577fc25733fe91945ed532f096386e0d198c29a6918e62cf9b99aedda7913fc5b128542de5d61eed667b2b5d5505b823027508c1fc9291902ef7e2bee8622346beccf4096b6dda97a87", &(0x7f00000001c0)="811383b1daf49f3277f206c64ef1c1591f73cf96c81ab14908dc451db91740c385764e83167e73ef86ab7f015089ce83071b91c76e3d61133390983a3f558b5df10d6e9f3bf33a02b2f3d540886e46577bfab24d036a78dcb88a4c9c4d3ca586d413d7d4cde12e2770cbbaa63c5d1dce71cb5e9d88a2b8a4fcd98cb4469f5bfe792f894a9335e6cc8fb1141c296cb0e1a6d1b63eaee399723610ba68596c6d3dc0d40679bc86d04f5300dcb2a34ce52e0aa6970cc73752a48754c2210196612ef15e36a77c2cede4a635eb6a8cf0bb53969c51a3a4b576ec328c5c1b4470adef20e99343f859f05de8e24367942502b64f"}}, &(0x7f0000000040)=<r0=>0x0)
clock_gettime(0x0, &(0x7f00000002c0))
timer_settime(r0, 0x0, &(0x7f0000000300)={{0x77359400}, {0x77359400}}, &(0x7f0000000380))
open(&(0x7f00000004c0)='./bus\x00', 0x143042, 0x0)

[   68.257294][ T4685] Bluetooth: hci0: command tx timeout
[   68.270487][ T5338] loop0: detected capacity change from 0 to 64
[   68.343927][ T5338] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000008: 0000 [#1] SMP KASAN NOPTI
[   68.348799][ T5338] KASAN: null-ptr-deref in range [0x0000000000000040-0x0000000000000047]
[   68.352451][ T5338] CPU: 0 UID: 0 PID: 5338 Comm: syz.0.0 Not tainted 6.16.0-rc4-syzkaller-00286-gc435a4f487e8 #0 PREEMPT(full) 
[   68.357395][ T5338] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   68.362059][ T5338] RIP: 0010:hfs_find_init+0x6a/0x1e0
[   68.364450][ T5338] Code: 7e 18 4c 89 f8 48 c1 e8 03 42 80 3c 28 00 74 08 4c 89 ff e8 48 bc 8a ff 49 c7 07 00 00 00 00 48 8d 6b 40 49 89 ef 49 c1 ef 03 <43> 0f b6 04 2f 84 c0 0f 85 0c 01 00 00 8b 45 00 8d 3c 45 04 00 00
[   68.373103][ T5338] RSP: 0018:ffffc9000d5cf588 EFLAGS: 00010202
[   68.375860][ T5338] RAX: 1ffff92001ab9ecf RBX: 0000000000000000 RCX: 0000000000100000
[   68.379428][ T5338] RDX: ffffc9000e182000 RSI: 000000000000200f RDI: ffffc9000d5cf670
[   68.383113][ T5338] RBP: 0000000000000040 R08: ffffc9000d5cf697 R09: 0000000000000000
[   68.386741][ T5338] R10: ffffc9000d5cf660 R11: fffff52001ab9ed3 R12: ffff8880363b6640
[   68.390327][ T5338] R13: dffffc0000000000 R14: ffffc9000d5cf660 R15: 0000000000000008
[   68.393885][ T5338] FS:  00007fee724076c0(0000) GS:ffff88808d21c000(0000) knlGS:0000000000000000
[   68.397386][ T5338] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   68.400135][ T5338] CR2: 00007fe391d909c0 CR3: 0000000043122000 CR4: 0000000000352ef0
[   68.403109][ T5338] Call Trace:
[   68.404522][ T5338]  <TASK>
[   68.405852][ T5338]  hfs_get_block+0x51b/0xbd0
[   68.407765][ T5338]  ? __pfx_hfs_get_block+0x10/0x10
[   68.410031][ T5338]  block_read_full_folio+0x29c/0x830
[   68.412322][ T5338]  ? __pfx_hfs_get_block+0x10/0x10
[   68.414585][ T5338]  filemap_read_folio+0x117/0x380
[   68.416574][ T5338]  ? __pfx_hfs_read_folio+0x10/0x10
[   68.418694][ T5338]  ? __pfx_filemap_read_folio+0x10/0x10
[   68.421118][ T5338]  ? filemap_add_folio+0x1af/0x270
[   68.423309][ T5338]  do_read_cache_folio+0x350/0x590
[   68.425637][ T5338]  ? __pfx_hfs_read_folio+0x10/0x10
[   68.428237][ T5338]  read_cache_page+0x5d/0x170
[   68.430497][ T5338]  hfs_btree_open+0x55f/0x14f0
[   68.432735][ T5338]  ? hfs_mdb_get+0x1293/0x2080
[   68.434960][ T5338]  hfs_mdb_get+0x1327/0x2080
[   68.436927][ T5338]  ? __pfx_hfs_mdb_get+0x10/0x10
[   68.439011][ T5338]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[   68.441554][ T5338]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[   68.444147][ T5338]  hfs_fill_super+0x37b/0x640
[   68.446166][ T5338]  ? __pfx_hfs_fill_super+0x10/0x10
[   68.448489][ T5338]  ? sb_set_blocksize+0x104/0x180
[   68.450737][ T5338]  ? setup_bdev_super+0x4c1/0x5b0
[   68.452912][ T5338]  get_tree_bdev_flags+0x40b/0x4d0
[   68.455197][ T5338]  ? __pfx_hfs_fill_super+0x10/0x10
[   68.457613][ T5338]  ? __pfx_get_tree_bdev_flags+0x10/0x10
[   68.460324][ T5338]  vfs_get_tree+0x92/0x2b0
[   68.462408][ T5338]  do_new_mount+0x24a/0xa40
[   68.464291][ T5338]  __se_sys_mount+0x317/0x410
[   68.466399][ T5338]  ? __pfx___se_sys_mount+0x10/0x10
[   68.468667][ T5338]  ? do_syscall_64+0xbe/0x3b0
[   68.470863][ T5338]  ? __x64_sys_mount+0x20/0xc0
[   68.472714][ T5338]  do_syscall_64+0xfa/0x3b0
[   68.474557][ T5338]  ? lockdep_hardirqs_on+0x9c/0x150
[   68.476691][ T5338]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   68.479067][ T5338]  ? clear_bhb_loop+0x60/0xb0
[   68.481161][ T5338]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   68.483742][ T5338] RIP: 0033:0x7fee715900ca
[   68.485691][ T5338] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   68.493308][ T5338] RSP: 002b:00007fee72406e68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[   68.496592][ T5338] RAX: ffffffffffffffda RBX: 00007fee72406ef0 RCX: 00007fee715900ca
[   68.499348][ T5338] RDX: 00002000000000c0 RSI: 0000200000000080 RDI: 00007fee72406eb0
[   68.502641][ T5338] RBP: 00002000000000c0 R08: 00007fee72406ef0 R09: 0000000000000094
[   68.505858][ T5338] R10: 0000000000000094 R11: 0000000000000246 R12: 0000200000000080
[   68.509218][ T5338] R13: 00007fee72406eb0 R14: 00000000000002c8 R15: 00002000000004c0
[   68.512299][ T5338]  </TASK>
[   68.513489][ T5338] Modules linked in:
[   68.515511][ T5338] ---[ end trace 0000000000000000 ]---
[   68.528332][ T5338] RIP: 0010:hfs_find_init+0x6a/0x1e0
[   68.530342][ T5338] Code: 7e 18 4c 89 f8 48 c1 e8 03 42 80 3c 28 00 74 08 4c 89 ff e8 48 bc 8a ff 49 c7 07 00 00 00 00 48 8d 6b 40 49 89 ef 49 c1 ef 03 <43> 0f b6 04 2f 84 c0 0f 85 0c 01 00 00 8b 45 00 8d 3c 45 04 00 00
[   68.539196][ T5338] RSP: 0018:ffffc9000d5cf588 EFLAGS: 00010202
[   68.541762][ T5338] RAX: 1ffff92001ab9ecf RBX: 0000000000000000 RCX: 0000000000100000
[   68.545391][ T5338] RDX: ffffc9000e182000 RSI: 000000000000200f RDI: ffffc9000d5cf670
[   68.550308][ T5338] RBP: 0000000000000040 R08: ffffc9000d5cf697 R09: 0000000000000000
[   68.553988][ T5338] R10: ffffc9000d5cf660 R11: fffff52001ab9ed3 R12: ffff8880363b6640
[   68.557609][ T5338] R13: dffffc0000000000 R14: ffffc9000d5cf660 R15: 0000000000000008
[   68.561203][ T5338] FS:  00007fee724076c0(0000) GS:ffff88808d21c000(0000) knlGS:0000000000000000
[   68.565034][ T5338] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   68.568358][ T5338] CR2: 00007fe392383000 CR3: 0000000043122000 CR4: 0000000000352ef0
[   68.572336][ T5338] Kernel panic - not syncing: Fatal exception
[   68.575829][ T5338] Kernel Offset: disabled
[   68.577866][ T5338] Rebooting in 86400 seconds..