program:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000d84000)={0xa, 0x2, 0x0, @rand_addr, 0x10000}, 0x1c)
setsockopt$sock_int(r0, 0x1, 0x4a, &(0x7f0000000040), 0x4)
sendto$inet6(r0, 0x0, 0x0, 0x20000004, &(0x7f0000b63fe4)={0xa, 0x2, 0x18115, @rand_addr, 0x983a}, 0x1c)
r1 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$TIOCL_BLANKSCREEN(r1, 0x5608, &(0x7f0000000000))
syz_mount_image$hfs(&(0x7f00000001c0), &(0x7f0000000040)='./file0\x00', 0x80, &(0x7f0000000000), 0x1, 0x2f9, &(0x7f0000000200)="$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")

[   84.763901][ T5315] Bluetooth: hci0: command tx timeout
[   84.821869][ T5337] loop0: detected capacity change from 0 to 64
[   84.852071][ T5337] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000008: 0000 [#1] SMP KASAN NOPTI
[   84.857066][ T5337] KASAN: null-ptr-deref in range [0x0000000000000040-0x0000000000000047]
[   84.860573][ T5337] CPU: 0 UID: 0 PID: 5337 Comm: syz.0.0 Not tainted 6.16.0-rc2-syzkaller-00269-g11313e2f7812 #0 PREEMPT(full) 
[   84.865451][ T5337] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   84.870013][ T5337] RIP: 0010:hfs_find_init+0x6a/0x1e0
[   84.872400][ T5337] Code: 7e 18 4c 89 f8 48 c1 e8 03 42 80 3c 28 00 74 08 4c 89 ff e8 a8 b6 8a ff 49 c7 07 00 00 00 00 48 8d 6b 40 49 89 ef 49 c1 ef 03 <43> 0f b6 04 2f 84 c0 0f 85 0c 01 00 00 8b 45 00 8d 3c 45 04 00 00
[   84.881657][ T5337] RSP: 0018:ffffc9000d1b7588 EFLAGS: 00010202
[   84.884441][ T5337] RAX: 1ffff92001a36ecf RBX: 0000000000000000 RCX: 0000000000100000
[   84.887829][ T5337] RDX: ffffc9000e32a000 RSI: 0000000000001d29 RDI: ffffc9000d1b7670
[   84.891406][ T5337] RBP: 0000000000000040 R08: ffffc9000d1b7697 R09: 0000000000000000
[   84.894996][ T5337] R10: ffffc9000d1b7660 R11: fffff52001a36ed3 R12: ffff8880345ec640
[   84.898519][ T5337] R13: dffffc0000000000 R14: ffffc9000d1b7660 R15: 0000000000000008
[   84.901840][ T5337] FS:  00007f9c14b936c0(0000) GS:ffff88808d251000(0000) knlGS:0000000000000000
[   84.905466][ T5337] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   84.908254][ T5337] CR2: 00007f9c13d726e0 CR3: 0000000043550000 CR4: 0000000000352ef0
[   84.911587][ T5337] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   84.915169][ T5337] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   84.918688][ T5337] Call Trace:
[   84.920256][ T5337]  <TASK>
[   84.921610][ T5337]  hfs_get_block+0x51b/0xbd0
[   84.923560][ T5337]  ? __pfx_hfs_get_block+0x10/0x10
[   84.925813][ T5337]  block_read_full_folio+0x29c/0x830
[   84.928090][ T5337]  ? __pfx_hfs_get_block+0x10/0x10
[   84.930319][ T5337]  filemap_read_folio+0x117/0x380
[   84.932524][ T5337]  ? __pfx_hfs_read_folio+0x10/0x10
[   84.934633][ T5337]  ? __pfx_filemap_read_folio+0x10/0x10
[   84.936850][ T5337]  ? filemap_add_folio+0x1af/0x270
[   84.938913][ T5337]  do_read_cache_folio+0x350/0x590
[   84.940950][ T5337]  ? __pfx_hfs_read_folio+0x10/0x10
[   84.943093][ T5337]  read_cache_page+0x5d/0x170
[   84.945090][ T5337]  hfs_btree_open+0x55f/0x14f0
[   84.947139][ T5337]  ? hfs_mdb_get+0x1293/0x2080
[   84.949214][ T5337]  hfs_mdb_get+0x1327/0x2080
[   84.951497][ T5337]  ? __pfx_hfs_mdb_get+0x10/0x10
[   84.953857][ T5337]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[   84.956899][ T5337]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[   84.960095][ T5337]  hfs_fill_super+0x37b/0x640
[   84.962206][ T5337]  ? __pfx_hfs_fill_super+0x10/0x10
[   84.964471][ T5337]  ? sb_set_blocksize+0x104/0x180
[   84.966675][ T5337]  ? setup_bdev_super+0x4c1/0x5b0
[   84.968905][ T5337]  get_tree_bdev_flags+0x40b/0x4d0
[   84.971149][ T5337]  ? __pfx_hfs_fill_super+0x10/0x10
[   84.973402][ T5337]  ? __pfx_get_tree_bdev_flags+0x10/0x10
[   84.975892][ T5337]  vfs_get_tree+0x8f/0x2b0
[   84.977866][ T5337]  do_new_mount+0x24a/0xa40
[   84.979805][ T5337]  __se_sys_mount+0x317/0x410
[   84.981826][ T5337]  ? __pfx___se_sys_mount+0x10/0x10
[   84.983972][ T5337]  ? do_syscall_64+0xbe/0x3b0
[   84.985848][ T5337]  ? __x64_sys_mount+0x20/0xc0
[   84.987807][ T5337]  do_syscall_64+0xfa/0x3b0
[   84.989639][ T5337]  ? lockdep_hardirqs_on+0x9c/0x150
[   84.991794][ T5337]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   84.994194][ T5337]  ? clear_bhb_loop+0x60/0xb0
[   84.996145][ T5337]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   84.998970][ T5337] RIP: 0033:0x7f9c13d900ca
[   85.000986][ T5337] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   85.009202][ T5337] RSP: 002b:00007f9c14b92e68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[   85.012533][ T5337] RAX: ffffffffffffffda RBX: 00007f9c14b92ef0 RCX: 00007f9c13d900ca
[   85.015776][ T5337] RDX: 00002000000001c0 RSI: 0000200000000040 RDI: 00007f9c14b92eb0
[   85.018832][ T5337] RBP: 00002000000001c0 R08: 00007f9c14b92ef0 R09: 0000000000000080
[   85.021926][ T5337] R10: 0000000000000080 R11: 0000000000000246 R12: 0000200000000040
[   85.024935][ T5337] R13: 00007f9c14b92eb0 R14: 00000000000002f9 R15: 0000200000000000
[   85.028359][ T5337]  </TASK>
[   85.029671][ T5337] Modules linked in:
[   85.031749][ T5337] ---[ end trace 0000000000000000 ]---
[   85.057063][ T5337] RIP: 0010:hfs_find_init+0x6a/0x1e0
[   85.059754][ T5337] Code: 7e 18 4c 89 f8 48 c1 e8 03 42 80 3c 28 00 74 08 4c 89 ff e8 a8 b6 8a ff 49 c7 07 00 00 00 00 48 8d 6b 40 49 89 ef 49 c1 ef 03 <43> 0f b6 04 2f 84 c0 0f 85 0c 01 00 00 8b 45 00 8d 3c 45 04 00 00
[   85.069782][ T5337] RSP: 0018:ffffc9000d1b7588 EFLAGS: 00010202
[   85.073681][ T5337] RAX: 1ffff92001a36ecf RBX: 0000000000000000 RCX: 0000000000100000
[   85.077145][ T5337] RDX: ffffc9000e32a000 RSI: 0000000000001d29 RDI: ffffc9000d1b7670
[   85.080322][ T5337] RBP: 0000000000000040 R08: ffffc9000d1b7697 R09: 0000000000000000
[   85.084224][ T5337] R10: ffffc9000d1b7660 R11: fffff52001a36ed3 R12: ffff8880345ec640
[   85.087395][ T5337] R13: dffffc0000000000 R14: ffffc9000d1b7660 R15: 0000000000000008
[   85.090976][ T5337] FS:  00007f9c14b936c0(0000) GS:ffff88808d251000(0000) knlGS:0000000000000000
[   85.095260][ T5337] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   85.098155][ T5337] CR2: 00007f1c37d3f000 CR3: 0000000043550000 CR4: 0000000000352ef0
[   85.101660][ T5337] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   85.105754][ T5337] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   85.109230][ T5337] Kernel panic - not syncing: Fatal exception
[   85.112171][ T5337] Kernel Offset: disabled
[   85.114100][ T5337] Rebooting in 86400 seconds..