program: syz_mount_image$hfs(&(0x7f0000000240), &(0x7f0000000280)='./file0\x00', 0x0, &(0x7f0000000380)=ANY=[], 0x1, 0x27d, &(0x7f0000000440)="$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") syz_mount_image$fuse(0x0, &(0x7f0000000080)='./file7\x00', 0x405, 0x0, 0x1, 0x0, 0x0) syz_mount_image$hfs(&(0x7f0000000240), &(0x7f0000000280)='./file0\x00', 0x0, &(0x7f0000000380)=ANY=[], 0x1, 0x27d, &(0x7f0000000440)="$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") (async) syz_mount_image$fuse(0x0, &(0x7f0000000080)='./file7\x00', 0x405, 0x0, 0x1, 0x0, 0x0) (async) [ 73.925972][ T4534] Bluetooth: hci0: command tx timeout [ 74.121978][ T5109] loop0: detected capacity change from 0 to 64 [ 74.170695][ T5109] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000008: 0000 [#1] PREEMPT SMP KASAN NOPTI [ 74.175721][ T5109] KASAN: null-ptr-deref in range [0x0000000000000040-0x0000000000000047] [ 74.179113][ T5109] CPU: 0 UID: 0 PID: 5109 Comm: syz.0.0 Not tainted 6.12.0-rc3-syzkaller-00217-g4d939780b705 #0 [ 74.183546][ T5109] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 74.188742][ T5109] RIP: 0010:hfs_find_init+0x72/0x1f0 [ 74.190950][ T5109] Code: d8 48 c1 e8 03 42 80 3c 28 00 74 08 48 89 df e8 a4 82 76 ff 48 c7 03 00 00 00 00 48 89 2c 24 4c 8d 75 40 4d 89 f7 49 c1 ef 03 <43> 0f b6 04 2f 84 c0 0f 85 10 01 00 00 41 8b 06 8d 7c 00 04 be c0 [ 74.198560][ T5109] RSP: 0018:ffffc9000b0572c0 EFLAGS: 00010202 [ 74.201369][ T5109] RAX: 1ffff9200160ae77 RBX: ffffc9000b0573b8 RCX: ffff888000230000 [ 74.204911][ T5109] RDX: 0000000000000000 RSI: ffffc9000b0573a0 RDI: ffffc9000b0573b0 [ 74.208009][ T5109] RBP: 0000000000000000 R08: ffffffff8289555f R09: 0000000000000000 [ 74.211194][ T5109] R10: ffffc9000b0573a0 R11: fffff5200160ae7b R12: ffffc9000b0573a0 [ 74.214926][ T5109] R13: dffffc0000000000 R14: 0000000000000040 R15: 0000000000000008 [ 74.218525][ T5109] FS: 00007fa8b0f2f6c0(0000) GS:ffff88801fc00000(0000) knlGS:0000000000000000 [ 74.221860][ T5109] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 74.224480][ T5109] CR2: 00007fa8b0161ae0 CR3: 0000000040cf4000 CR4: 0000000000352ef0 [ 74.228219][ T5109] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 74.232020][ T5109] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 74.235227][ T5109] Call Trace: [ 74.236565][ T5109] [ 74.237696][ T5109] ? __die_body+0x5f/0xb0 [ 74.239469][ T5109] ? die_addr+0xb0/0xe0 [ 74.241136][ T5109] ? exc_general_protection+0x3dd/0x5d0 [ 74.243448][ T5109] ? asm_exc_general_protection+0x26/0x30 [ 74.246269][ T5109] ? hfs_get_block+0x3bf/0xb60 [ 74.248566][ T5109] ? hfs_find_init+0x72/0x1f0 [ 74.250728][ T5109] hfs_get_block+0x4f4/0xb60 [ 74.252568][ T5109] ? __pfx_hfs_get_block+0x10/0x10 [ 74.254625][ T5109] ? _raw_spin_unlock+0x28/0x50 [ 74.256605][ T5109] ? create_empty_buffers+0x53e/0x740 [ 74.258752][ T5109] ? rcu_is_watching+0x15/0xb0 [ 74.260679][ T5109] block_read_full_folio+0x418/0xcd0 [ 74.263126][ T5109] ? __pfx_hfs_get_block+0x10/0x10 [ 74.265762][ T5109] ? __pfx_block_read_full_folio+0x10/0x10 [ 74.268457][ T5109] ? folio_add_lru+0x28f/0x870 [ 74.270563][ T5109] filemap_read_folio+0x14b/0x630 [ 74.272529][ T5109] ? __pfx_hfs_read_folio+0x10/0x10 [ 74.274540][ T5109] ? __pfx_filemap_read_folio+0x10/0x10 [ 74.276641][ T5109] ? __filemap_get_folio+0x949/0xbd0 [ 74.278678][ T5109] ? __pfx_lock_release+0x10/0x10 [ 74.280786][ T5109] do_read_cache_folio+0x3f5/0x850 [ 74.284445][ T5109] ? __pfx_hfs_read_folio+0x10/0x10 [ 74.287257][ T5109] do_read_cache_page+0x30/0x200 [ 74.289415][ T5109] hfs_btree_open+0x506/0xf40 [ 74.291261][ T5109] hfs_mdb_get+0x1443/0x21b0 [ 74.293041][ T5109] ? __pfx_hfs_mdb_get+0x10/0x10 [ 74.294981][ T5109] ? __pfx_lockdep_init_map_type+0x10/0x10 [ 74.297213][ T5109] ? __pfx_lockdep_init_map_type+0x10/0x10 [ 74.299518][ T5109] ? __raw_spin_lock_init+0x45/0x100 [ 74.301552][ T5109] hfs_fill_super+0x107e/0x1790 [ 74.303717][ T5109] ? __pfx_hfs_fill_super+0x10/0x10 [ 74.306047][ T5109] ? __pfx_vsnprintf+0x10/0x10 [ 74.308371][ T5109] ? do_raw_spin_lock+0x14f/0x370 [ 74.310640][ T5109] ? sb_set_blocksize+0x98/0xf0 [ 74.312646][ T5109] ? setup_bdev_super+0x4e6/0x5d0 [ 74.314567][ T5109] mount_bdev+0x20a/0x2d0 [ 74.316208][ T5109] ? __pfx_hfs_fill_super+0x10/0x10 [ 74.318302][ T5109] ? __pfx_mount_bdev+0x10/0x10 [ 74.320353][ T5109] ? vfs_parse_fs_string+0x190/0x230 [ 74.322906][ T5109] ? __pfx_vfs_parse_fs_string+0x10/0x10 [ 74.325544][ T5109] legacy_get_tree+0xee/0x190 [ 74.327655][ T5109] ? __pfx_hfs_mount+0x10/0x10 [ 74.329630][ T5109] vfs_get_tree+0x90/0x2b0 [ 74.331365][ T5109] do_new_mount+0x2be/0xb40 [ 74.333091][ T5109] ? __pfx_do_new_mount+0x10/0x10 [ 74.335095][ T5109] __se_sys_mount+0x2d6/0x3c0 [ 74.337094][ T5109] ? __pfx___se_sys_mount+0x10/0x10 [ 74.339726][ T5109] ? exc_page_fault+0x590/0x8c0 [ 74.342214][ T5109] ? __x64_sys_mount+0x20/0xc0 [ 74.344064][ T5109] do_syscall_64+0xf3/0x230 [ 74.345723][ T5109] ? clear_bhb_loop+0x35/0x90 [ 74.347342][ T5109] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 74.349457][ T5109] RIP: 0033:0x7fa8b017f79a [ 74.351177][ T5109] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 74.359420][ T5109] RSP: 002b:00007fa8b0f2ee68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 74.363388][ T5109] RAX: ffffffffffffffda RBX: 00007fa8b0f2eef0 RCX: 00007fa8b017f79a [ 74.366601][ T5109] RDX: 0000000020000240 RSI: 0000000020000280 RDI: 00007fa8b0f2eeb0 [ 74.369602][ T5109] RBP: 0000000020000240 R08: 00007fa8b0f2eef0 R09: 0000000000000000 [ 74.372902][ T5109] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000020000280 [ 74.376377][ T5109] R13: 00007fa8b0f2eeb0 R14: 000000000000027d R15: 0000000020000380 [ 74.379690][ T5109] [ 74.380907][ T5109] Modules linked in: [ 74.382930][ T5109] ---[ end trace 0000000000000000 ]--- [ 74.396669][ T5109] RIP: 0010:hfs_find_init+0x72/0x1f0 [ 74.398875][ T5109] Code: d8 48 c1 e8 03 42 80 3c 28 00 74 08 48 89 df e8 a4 82 76 ff 48 c7 03 00 00 00 00 48 89 2c 24 4c 8d 75 40 4d 89 f7 49 c1 ef 03 <43> 0f b6 04 2f 84 c0 0f 85 10 01 00 00 41 8b 06 8d 7c 00 04 be c0 [ 74.407756][ T5109] RSP: 0018:ffffc9000b0572c0 EFLAGS: 00010202 [ 74.411523][ T5109] RAX: 1ffff9200160ae77 RBX: ffffc9000b0573b8 RCX: ffff888000230000 [ 74.414749][ T5109] RDX: 0000000000000000 RSI: ffffc9000b0573a0 RDI: ffffc9000b0573b0 [ 74.417971][ T5109] RBP: 0000000000000000 R08: ffffffff8289555f R09: 0000000000000000 [ 74.422008][ T5109] R10: ffffc9000b0573a0 R11: fffff5200160ae7b R12: ffffc9000b0573a0 [ 74.425212][ T5109] R13: dffffc0000000000 R14: 0000000000000040 R15: 0000000000000008 [ 74.429422][ T5109] FS: 00007fa8b0f2f6c0(0000) GS:ffff88801fc00000(0000) knlGS:0000000000000000 [ 74.434291][ T5109] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 74.436900][ T5109] CR2: 000056086471caa0 CR3: 0000000040cf4000 CR4: 0000000000352ef0 [ 74.451990][ T5109] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 74.455106][ T5109] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 74.457923][ T5109] Kernel panic - not syncing: Fatal exception [ 74.460470][ T5109] Kernel Offset: disabled [ 74.462300][ T5109] Rebooting in 86400 seconds..