program:
r0 = syz_mount_image$hfs(&(0x7f0000000180), &(0x7f0000000080)='./bus\x00', 0x3000002, &(0x7f00000001c0)=ANY=[], 0x0, 0x2fe, &(0x7f0000000740)="$eJzs3ctu00ocx/HfOEmbXtTjXo6OdDbnqFAJNlW5CCE2qVC27FkhoEmliqiItkjAhoBYIh6APa8A78AGxAvAihUP0J3RjMe5OmmaJnFbvh8p7mQ8Y/9d2/H8XTUWgD/W7fL3D9d+2peRcspJuiUFkopSXtLf+qf4dPdg56BWrfRbUM71sC+juKfparO1W03rWpzyPZy8QjvJa75Zh3GJomjzx8Ctb4w1FmTHnf0pAmnan4dufnHCcY1LXfov6xgmrXUHm0Md6pkWMgwHAHAK+Ot/4C8T867KKKhLa/6yf66u/4dZBzBa12tdVVHfDi3Xfze6i4zdv3+5Wc18z6Vwdn6QZImDBFPoeG/TO3tktQ0wzVFZpYslmNneyWt965UqgV6r5LU0W3HTSnzoJjqiLXUsejX+MT3IxnQvrUVBd2bjrXEjyk5JSNs7tapbWUr8y8db48mZz+aruWdCvVelMf7LR8buJrenwo49FRRs/Bu9lzjnetlW8ml/qVQK2posupX869fgHbGVxfSMRMkRtdi8aVBvRBDH+al3ryW131aIt+5K761zvZbTeoWNdz16rbT1yvkjYX3rca3vrZTxMu/MXbOqX/qocsv4P7DxrWmQM9O2cS39kRFvz1R6y7xrGXZdOZqny/+NCLxBz0ucwFs91E0t7D9/8ShXq1X3bOFBSuHJ/J7xNYU3UmqbIQrTI1qOLaieU1ITWS+jaNDu0ejC6C5cHukC7edHo8aePmmN7VnWqAmOt4qFsfwShi0UdSrCSC2Uv0inIIyTF6JI6jEr6w8oTMK+SXa6r5jJOCBMmh13mcjYK8dckpnUqhsu97OTsM84vX+SmeQGfozdyODah4JLbjqbnsFt9lps918Xu9d4tUfO6HKuC5ekiy2VRn2zkdDHeU6Ysr7pPvf/AQAAAAAAAAAAAAAAAAAAzppJ/KdB1tsIAAAAAAAAAAAAAAAAAAAAAMBZN9Tzf9O+I949/zcc7vm/UtuDcuLn//JF9MC4/Q4AAP//bod48g==")
ioctl$EXT4_IOC_CHECKPOINT(r0, 0x4004662b, &(0x7f0000000000)=0x1)

[  140.491852][ T5322] Bluetooth: hci0: command tx timeout
[  140.531177][ T5339] loop0: detected capacity change from 0 to 64
[  140.590835][ T5339] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000008: 0000 [#1] SMP KASAN NOPTI
[  140.596097][ T5339] KASAN: null-ptr-deref in range [0x0000000000000040-0x0000000000000047]
[  140.599719][ T5339] CPU: 0 UID: 0 PID: 5339 Comm: syz.0.0 Not tainted 6.15.0-rc7-syzkaller-00082-g5cdb2c77c4c3 #0 PREEMPT(full) 
[  140.604222][ T5339] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  140.608915][ T5339] RIP: 0010:hfs_find_init+0x6a/0x1e0
[  140.612237][ T5339] Code: 7e 18 4c 89 f8 48 c1 e8 03 42 80 3c 28 00 74 08 4c 89 ff e8 38 5f 8b ff 49 c7 07 00 00 00 00 48 8d 6b 40 49 89 ef 49 c1 ef 03 <43> 0f b6 04 2f 84 c0 0f 85 0c 01 00 00 8b 45 00 8d 3c 45 04 00 00
[  140.621619][ T5339] RSP: 0018:ffffc900031af5c8 EFLAGS: 00010202
[  140.624302][ T5339] RAX: 1ffff92000635ed7 RBX: 0000000000000000 RCX: 0000000000100000
[  140.627826][ T5339] RDX: ffffc9000f249000 RSI: 0000000000001e40 RDI: ffffc900031af6b0
[  140.631360][ T5339] RBP: 0000000000000040 R08: ffffc900031af6d7 R09: 0000000000000000
[  140.634686][ T5339] R10: ffffc900031af6a0 R11: fffff52000635edb R12: ffff88803eb48638
[  140.638295][ T5339] R13: dffffc0000000000 R14: ffffc900031af6a0 R15: 0000000000000008
[  140.641726][ T5339] FS:  00007f019972a6c0(0000) GS:ffff88808d6c2000(0000) knlGS:0000000000000000
[  140.645624][ T5339] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  140.648520][ T5339] CR2: 00007f0198972720 CR3: 0000000040384000 CR4: 0000000000352ef0
[  140.652021][ T5339] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  140.655454][ T5339] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  140.658580][ T5339] Call Trace:
[  140.659938][ T5339]  <TASK>
[  140.661024][ T5339]  hfs_get_block+0x51b/0xbd0
[  140.662809][ T5339]  ? __pfx_hfs_get_block+0x10/0x10
[  140.664658][ T5339]  block_read_full_folio+0x29f/0x830
[  140.666594][ T5339]  ? __pfx_hfs_get_block+0x10/0x10
[  140.668599][ T5339]  filemap_read_folio+0x117/0x380
[  140.670714][ T5339]  ? __pfx_hfs_read_folio+0x10/0x10
[  140.672940][ T5339]  ? __pfx_filemap_read_folio+0x10/0x10
[  140.675301][ T5339]  do_read_cache_folio+0x354/0x590
[  140.677672][ T5339]  ? __pfx_hfs_read_folio+0x10/0x10
[  140.679833][ T5339]  read_cache_page+0x5d/0x170
[  140.681993][ T5339]  hfs_btree_open+0x562/0x1070
[  140.684151][ T5339]  hfs_mdb_get+0x1327/0x2080
[  140.686213][ T5339]  ? __pfx_hfs_mdb_get+0x10/0x10
[  140.688432][ T5339]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  140.691074][ T5339]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  140.693901][ T5339]  hfs_fill_super+0x37b/0x640
[  140.696029][ T5339]  ? __pfx_hfs_fill_super+0x10/0x10
[  140.698372][ T5339]  ? sb_set_blocksize+0x104/0x180
[  140.700696][ T5339]  ? setup_bdev_super+0x4c1/0x5b0
[  140.703055][ T5339]  get_tree_bdev_flags+0x40e/0x4d0
[  140.705394][ T5339]  ? __pfx_hfs_fill_super+0x10/0x10
[  140.707771][ T5339]  ? __pfx_get_tree_bdev_flags+0x10/0x10
[  140.710181][ T5339]  vfs_get_tree+0x8f/0x2b0
[  140.712156][ T5339]  do_new_mount+0x24a/0xa40
[  140.714022][ T5339]  __se_sys_mount+0x317/0x410
[  140.716106][ T5339]  ? __pfx___se_sys_mount+0x10/0x10
[  140.718568][ T5339]  ? do_syscall_64+0xba/0x210
[  140.720737][ T5339]  ? __x64_sys_mount+0x20/0xc0
[  140.722950][ T5339]  do_syscall_64+0xf6/0x210
[  140.725010][ T5339]  ? clear_bhb_loop+0x60/0xb0
[  140.726929][ T5339]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  140.729477][ T5339] RIP: 0033:0x7f019899010a
[  140.731541][ T5339] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  140.739883][ T5339] RSP: 002b:00007f0199729e68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  140.743417][ T5339] RAX: ffffffffffffffda RBX: 00007f0199729ef0 RCX: 00007f019899010a
[  140.746857][ T5339] RDX: 0000200000000180 RSI: 0000200000000080 RDI: 00007f0199729eb0
[  140.750456][ T5339] RBP: 0000200000000180 R08: 00007f0199729ef0 R09: 0000000003000002
[  140.753899][ T5339] R10: 0000000003000002 R11: 0000000000000246 R12: 0000200000000080
[  140.756967][ T5339] R13: 00007f0199729eb0 R14: 00000000000002fe R15: 00002000000001c0
[  140.760261][ T5339]  </TASK>
[  140.761669][ T5339] Modules linked in:
[  140.765350][ T5339] ---[ end trace 0000000000000000 ]---
[  140.787846][ T5339] RIP: 0010:hfs_find_init+0x6a/0x1e0
[  140.790174][ T5339] Code: 7e 18 4c 89 f8 48 c1 e8 03 42 80 3c 28 00 74 08 4c 89 ff e8 38 5f 8b ff 49 c7 07 00 00 00 00 48 8d 6b 40 49 89 ef 49 c1 ef 03 <43> 0f b6 04 2f 84 c0 0f 85 0c 01 00 00 8b 45 00 8d 3c 45 04 00 00
[  140.798709][ T5339] RSP: 0018:ffffc900031af5c8 EFLAGS: 00010202
[  140.801422][ T5339] RAX: 1ffff92000635ed7 RBX: 0000000000000000 RCX: 0000000000100000
[  140.806195][ T5339] RDX: ffffc9000f249000 RSI: 0000000000001e40 RDI: ffffc900031af6b0
[  140.809744][ T5339] RBP: 0000000000000040 R08: ffffc900031af6d7 R09: 0000000000000000
[  140.813666][ T5339] R10: ffffc900031af6a0 R11: fffff52000635edb R12: ffff88803eb48638
[  140.816683][ T5339] R13: dffffc0000000000 R14: ffffc900031af6a0 R15: 0000000000000008
[  140.820110][ T5339] FS:  00007f019972a6c0(0000) GS:ffff88808d6c2000(0000) knlGS:0000000000000000
[  140.824326][ T5339] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  140.827060][ T5339] CR2: 00007f98f0f40000 CR3: 0000000040384000 CR4: 0000000000352ef0
[  140.830550][ T5339] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  140.834431][ T5339] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  140.837731][ T5339] Kernel panic - not syncing: Fatal exception
[  140.840675][ T5339] Kernel Offset: disabled
[  140.842704][ T5339] Rebooting in 86400 seconds..