program:
writev(0xffffffffffffffff, &(0x7f00000000c0)=[{&(0x7f0000000080)}], 0x1)
syz_mount_image$hfs(&(0x7f0000000140), &(0x7f0000000040)='./bus\x00', 0x2a088cc, &(0x7f0000000300)=ANY=[], 0x8b, 0x2a5, &(0x7f0000000680)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000640)='.\x00', 0x0, 0x0)
socket$kcm(0x29, 0x2, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='memory.events\x00', 0x26e1, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
mbind(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0, &(0x7f0000000000)=0x3, 0x40, 0x3)
renameat2(r0, &(0x7f00000001c0)='./file0\x00', r0, &(0x7f0000000200)='./bus\x00', 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r2, &(0x7f0000000800)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x42}}, 0x10)
setsockopt$inet_udp_int(r2, 0x11, 0x67, &(0x7f0000000000)=0x507, 0x4)
sendmmsg$inet(r2, &(0x7f0000000600)=[{{&(0x7f0000000c00)={0x2, 0x4e20, @multicast2}, 0x10, 0x0}}], 0x1, 0x2000c044)
sendto$inet(r2, &(0x7f00000000c0)="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", 0xffe3, 0x0, 0x0, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="4400000010000104e200"/20, @ANYRES32=0x0, @ANYBLOB="0000000000000000240012800b000100626174616476000014000280100001004241544d414e5f56"], 0xfd12}}, 0x0)

[   81.789789][ T4538] Bluetooth: hci0: command tx timeout
[   83.014199][ T5114] loop0: detected capacity change from 0 to 64
[   83.031875][ T5114] =======================================================
[   83.031875][ T5114] WARNING: The mand mount option has been deprecated and
[   83.031875][ T5114]          and is ignored by this kernel. Remove the mand
[   83.031875][ T5114]          option from the mount to silence this warning.
[   83.031875][ T5114] =======================================================
[   83.129095][ T5114] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000008: 0000 [#1] PREEMPT SMP KASAN NOPTI
[   83.135276][ T5114] KASAN: null-ptr-deref in range [0x0000000000000040-0x0000000000000047]
[   83.138851][ T5114] CPU: 0 UID: 0 PID: 5114 Comm: syz.0.0 Not tainted 6.12.0-rc1-syzkaller-00046-g7ec462100ef9 #0
[   83.142968][ T5114] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   83.148209][ T5114] RIP: 0010:hfs_find_init+0x72/0x1f0
[   83.150499][ T5114] Code: d8 48 c1 e8 03 42 80 3c 28 00 74 08 48 89 df e8 54 75 76 ff 48 c7 03 00 00 00 00 48 89 2c 24 4c 8d 75 40 4d 89 f7 49 c1 ef 03 <43> 0f b6 04 2f 84 c0 0f 85 10 01 00 00 41 8b 06 8d 7c 00 04 be c0
[   83.158866][ T5114] RSP: 0000:ffffc9000b77f2c0 EFLAGS: 00010202
[   83.162520][ T5114] RAX: 1ffff920016efe77 RBX: ffffc9000b77f3b8 RCX: 0000000000040000
[   83.167458][ T5114] RDX: ffffc9000b2c9000 RSI: 000000000000202a RDI: ffffc9000b77f3b0
[   83.173085][ T5114] RBP: 0000000000000000 R08: ffffffff8289521f R09: 0000000000000000
[   83.176770][ T5114] R10: ffffc9000b77f3a0 R11: fffff520016efe7b R12: ffffc9000b77f3a0
[   83.181353][ T5114] R13: dffffc0000000000 R14: 0000000000000040 R15: 0000000000000008
[   83.186453][ T5114] FS:  00007f678709e6c0(0000) GS:ffff88801fc00000(0000) knlGS:0000000000000000
[   83.190333][ T5114] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   83.193711][ T5114] CR2: 000055ad463160e8 CR3: 000000003d8f6000 CR4: 0000000000352ef0
[   83.198384][ T5114] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   83.202721][ T5114] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   83.206831][ T5114] Call Trace:
[   83.208543][ T5114]  <TASK>
[   83.209939][ T5114]  ? __die_body+0x5f/0xb0
[   83.212267][ T5114]  ? die_addr+0xb0/0xe0
[   83.214534][ T5114]  ? exc_general_protection+0x3dd/0x5d0
[   83.217472][ T5114]  ? asm_exc_general_protection+0x26/0x30
[   83.220348][ T5114]  ? hfs_get_block+0x3bf/0xb60
[   83.222756][ T5114]  ? hfs_find_init+0x72/0x1f0
[   83.225425][ T5114]  hfs_get_block+0x4f4/0xb60
[   83.227932][ T5114]  ? __pfx_hfs_get_block+0x10/0x10
[   83.230319][ T5114]  ? _raw_spin_unlock+0x28/0x50
[   83.232951][ T5114]  ? create_empty_buffers+0x53e/0x740
[   83.235994][ T5114]  ? rcu_is_watching+0x15/0xb0
[   83.238445][ T5114]  block_read_full_folio+0x418/0xcd0
[   83.241098][ T5114]  ? __pfx_hfs_get_block+0x10/0x10
[   83.243427][ T5114]  ? __pfx_block_read_full_folio+0x10/0x10
[   83.246541][ T5114]  ? folio_add_lru+0x28f/0x870
[   83.248895][ T5114]  filemap_read_folio+0x14b/0x630
[   83.251074][ T5114]  ? __pfx_hfs_read_folio+0x10/0x10
[   83.253348][ T5114]  ? __pfx_filemap_read_folio+0x10/0x10
[   83.256283][ T5114]  ? __filemap_get_folio+0x949/0xbd0
[   83.259176][ T5114]  ? __pfx_lock_release+0x10/0x10
[   83.263640][ T5114]  do_read_cache_folio+0x3f5/0x850
[   83.268297][ T5114]  ? __pfx_hfs_read_folio+0x10/0x10
[   83.272206][ T5114]  do_read_cache_page+0x30/0x200
[   83.275742][ T5114]  hfs_btree_open+0x506/0xf40
[   83.277721][ T5114]  hfs_mdb_get+0x1443/0x21b0
[   83.280489][ T5114]  ? __pfx_hfs_mdb_get+0x10/0x10
[   83.285026][ T5114]  ? __pfx_lockdep_init_map_type+0x10/0x10
[   83.290289][ T5114]  ? __pfx_lockdep_init_map_type+0x10/0x10
[   83.295862][ T5114]  ? __raw_spin_lock_init+0x45/0x100
[   83.299375][ T5114]  hfs_fill_super+0x107e/0x1790
[   83.304230][ T5114]  ? __pfx_hfs_fill_super+0x10/0x10
[   83.308294][ T5114]  ? __pfx_vsnprintf+0x10/0x10
[   83.311166][ T5114]  ? do_raw_spin_lock+0x14f/0x370
[   83.314181][ T5114]  ? sb_set_blocksize+0x98/0xf0
[   83.316921][ T5114]  ? setup_bdev_super+0x4e6/0x5d0
[   83.319314][ T5114]  mount_bdev+0x20a/0x2d0
[   83.321348][ T5114]  ? __pfx_hfs_fill_super+0x10/0x10
[   83.324798][ T5114]  ? __pfx_mount_bdev+0x10/0x10
[   83.327894][ T5114]  ? vfs_parse_fs_string+0x190/0x230
[   83.331924][ T5114]  ? __pfx_vfs_parse_fs_string+0x10/0x10
[   83.335378][ T5114]  legacy_get_tree+0xee/0x190
[   83.338279][ T5114]  ? __pfx_hfs_mount+0x10/0x10
[   83.342078][ T5114]  vfs_get_tree+0x90/0x2b0
[   83.345562][ T5114]  do_new_mount+0x2be/0xb40
[   83.348391][ T5114]  ? __pfx_do_new_mount+0x10/0x10
[   83.351661][ T5114]  __se_sys_mount+0x2d6/0x3c0
[   83.354869][ T5114]  ? __pfx___se_sys_mount+0x10/0x10
[   83.358256][ T5114]  ? exc_page_fault+0x590/0x8c0
[   83.361505][ T5114]  ? __x64_sys_mount+0x20/0xc0
[   83.364889][ T5114]  do_syscall_64+0xf3/0x230
[   83.368106][ T5114]  ? clear_bhb_loop+0x35/0x90
[   83.371980][ T5114]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   83.376540][ T5114] RIP: 0033:0x7f678637f79a
[   83.378666][ T5114] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   83.393534][ T5114] RSP: 002b:00007f678709de68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[   83.400969][ T5114] RAX: ffffffffffffffda RBX: 00007f678709def0 RCX: 00007f678637f79a
[   83.407269][ T5114] RDX: 0000000020000140 RSI: 0000000020000040 RDI: 00007f678709deb0
[   83.410772][ T5114] RBP: 0000000020000140 R08: 00007f678709def0 R09: 0000000002a088cc
[   83.414192][ T5114] R10: 0000000002a088cc R11: 0000000000000246 R12: 0000000020000040
[   83.417381][ T5114] R13: 00007f678709deb0 R14: 00000000000002a5 R15: 0000000020000300
[   83.420753][ T5114]  </TASK>
[   83.422196][ T5114] Modules linked in:
[   83.425047][ T5114] ---[ end trace 0000000000000000 ]---
[   83.817870][ T5114] RIP: 0010:hfs_find_init+0x72/0x1f0
[   83.827420][ T5114] Code: d8 48 c1 e8 03 42 80 3c 28 00 74 08 48 89 df e8 54 75 76 ff 48 c7 03 00 00 00 00 48 89 2c 24 4c 8d 75 40 4d 89 f7 49 c1 ef 03 <43> 0f b6 04 2f 84 c0 0f 85 10 01 00 00 41 8b 06 8d 7c 00 04 be c0
[   83.850166][ T5114] RSP: 0000:ffffc9000b77f2c0 EFLAGS: 00010202
[   83.853180][ T5114] RAX: 1ffff920016efe77 RBX: ffffc9000b77f3b8 RCX: 0000000000040000
[   83.863708][ T4538] Bluetooth: hci0: command tx timeout
[   83.874529][ T5114] RDX: ffffc9000b2c9000 RSI: 000000000000202a RDI: ffffc9000b77f3b0
[   83.887667][ T5114] RBP: 0000000000000000 R08: ffffffff8289521f R09: 0000000000000000
[   83.890688][ T5114] R10: ffffc9000b77f3a0 R11: fffff520016efe7b R12: ffffc9000b77f3a0
[   83.906678][ T5114] R13: dffffc0000000000 R14: 0000000000000040 R15: 0000000000000008
[   83.909331][ T5114] FS:  00007f678709e6c0(0000) GS:ffff88801fc00000(0000) knlGS:0000000000000000
[   83.913206][ T5114] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   83.927657][ T5114] CR2: 00007f218324a429 CR3: 000000003d8f6000 CR4: 0000000000352ef0
[   83.931588][ T5114] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   83.933858][ T5114] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   83.936438][ T5114] Kernel panic - not syncing: Fatal exception
[   83.939505][ T5114] Kernel Offset: disabled
[   83.941302][ T5114] Rebooting in 86400 seconds..