program:
syz_mount_image$hfs(&(0x7f0000000180), &(0x7f0000000080)='./bus\x00', 0x3000002, &(0x7f00000003c0)=ANY=[@ANYBLOB="007a82172a555a40aab70dbafd964fb9397462479d049a7f42f01c6e0b9381e3d310cb4727681c641464ab77a498e6ec737f2789b012fceb4eaee0a34ca77a718c725e863b0b028b81cd8789124fb58818d4637c74f1d91a8e331bf8b3ee5bc3c233fcbbb79ed04c26b18a5787deff22c9631497662d"], 0x2, 0x2fc, &(0x7f0000000440)="$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")
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$tipc(&(0x7f00000002c0), 0xffffffffffffffff)
sendmsg$TIPC_CMD_SET_LINK_TOL(r1, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000300)={0x2c, r2, 0x1, 0x0, 0x0, {{}, {}, {0x10, 0x18, {0x0, @bearer=@l2={'eth', 0x3a, 'lo\x00'}}}}}, 0x2c}}, 0x0)
sendmsg$TIPC_CMD_GET_MAX_PORTS(r0, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x1c, r2, 0x400, 0x70bd2d, 0x25dfdbff, {}, ["", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x20000800}, 0x10080)

[   78.839326][ T4533] Bluetooth: hci0: command tx timeout
[   79.782445][ T5106] loop0: detected capacity change from 0 to 64
[   79.839409][ T5106] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000008: 0000 [#1] PREEMPT SMP KASAN NOPTI
[   79.844343][ T5106] KASAN: null-ptr-deref in range [0x0000000000000040-0x0000000000000047]
[   79.847670][ T5106] CPU: 0 UID: 0 PID: 5106 Comm: syz.0.0 Not tainted 6.11.0-rc7-syzkaller-00149-g0babf683783d #0
[   79.851701][ T5106] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   79.855964][ T5106] RIP: 0010:hfs_find_init+0x72/0x1f0
[   79.858110][ T5106] Code: d8 48 c1 e8 03 42 80 3c 28 00 74 08 48 89 df e8 34 8e 77 ff 48 c7 03 00 00 00 00 48 89 2c 24 4c 8d 75 40 4d 89 f7 49 c1 ef 03 <43> 0f b6 04 2f 84 c0 0f 85 10 01 00 00 41 8b 06 8d 7c 00 04 be c0
[   79.865756][ T5106] RSP: 0018:ffffc90002d5f2c0 EFLAGS: 00010202
[   79.868157][ T5106] RAX: 1ffff920005abe77 RBX: ffffc90002d5f3b8 RCX: 0000000000040000
[   79.871241][ T5106] RDX: ffffc9000b6c9000 RSI: 0000000000014226 RDI: ffffc90002d5f3b0
[   79.874256][ T5106] RBP: 0000000000000000 R08: ffffffff828480ff R09: 0000000000000000
[   79.877233][ T5106] R10: ffffc90002d5f3a0 R11: fffff520005abe7b R12: ffffc90002d5f3a0
[   79.880459][ T5106] R13: dffffc0000000000 R14: 0000000000000040 R15: 0000000000000008
[   79.883969][ T5106] FS:  00007fe0baabb6c0(0000) GS:ffff88801fe00000(0000) knlGS:0000000000000000
[   79.887695][ T5106] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   79.890266][ T5106] CR2: 00007ff1edb95ed8 CR3: 000000001ef8c000 CR4: 0000000000350ef0
[   79.893309][ T5106] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   79.896443][ T5106] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   79.899500][ T5106] Call Trace:
[   79.900843][ T5106]  <TASK>
[   79.901953][ T5106]  ? __die_body+0x88/0xe0
[   79.903616][ T5106]  ? die_addr+0x108/0x140
[   79.905334][ T5106]  ? exc_general_protection+0x3dd/0x5d0
[   79.907570][ T5106]  ? asm_exc_general_protection+0x26/0x30
[   79.909823][ T5106]  ? hfs_get_block+0x3bf/0xb60
[   79.911702][ T5106]  ? hfs_find_init+0x72/0x1f0
[   79.913574][ T5106]  hfs_get_block+0x4f4/0xb60
[   79.915403][ T5106]  ? __pfx_hfs_get_block+0x10/0x10
[   79.917486][ T5106]  ? _raw_spin_unlock+0x28/0x50
[   79.919442][ T5106]  ? create_empty_buffers+0x53e/0x740
[   79.921563][ T5106]  block_read_full_folio+0x418/0xcd0
[   79.923609][ T5106]  ? __pfx_hfs_get_block+0x10/0x10
[   79.925607][ T5106]  ? __pfx_block_read_full_folio+0x10/0x10
[   79.927819][ T5106]  ? __pfx_lru_add_fn+0x10/0x10
[   79.929730][ T5106]  ? folio_add_lru+0x357/0xd70
[   79.931618][ T5106]  ? folio_add_lru+0x58f/0xd70
[   79.933506][ T5106]  filemap_read_folio+0x1a0/0x790
[   79.935484][ T5106]  ? __pfx_hfs_read_folio+0x10/0x10
[   79.937545][ T5106]  ? __pfx_filemap_read_folio+0x10/0x10
[   79.939724][ T5106]  ? __filemap_get_folio+0x984/0xc10
[   79.941807][ T5106]  ? __pfx_lock_release+0x10/0x10
[   79.943795][ T5106]  do_read_cache_folio+0x134/0x820
[   79.945798][ T5106]  ? __pfx_hfs_read_folio+0x10/0x10
[   79.947833][ T5106]  do_read_cache_page+0x30/0x200
[   79.949818][ T5106]  hfs_btree_open+0x50b/0xf20
[   79.951654][ T5106]  hfs_mdb_get+0x1443/0x21b0
[   79.953422][ T5106]  ? __pfx_hfs_mdb_get+0x10/0x10
[   79.955358][ T5106]  ? __pfx_lockdep_init_map_type+0x10/0x10
[   79.957674][ T5106]  ? __pfx_lockdep_init_map_type+0x10/0x10
[   79.959958][ T5106]  ? __raw_spin_lock_init+0x45/0x100
[   79.962029][ T5106]  hfs_fill_super+0x107e/0x1790
[   79.963932][ T5106]  ? __pfx_hfs_fill_super+0x10/0x10
[   79.966042][ T5106]  ? __pfx_vsnprintf+0x10/0x10
[   79.967909][ T5106]  ? do_raw_spin_lock+0x14f/0x370
[   79.969900][ T5106]  ? sb_set_blocksize+0x98/0xf0
[   79.971839][ T5106]  ? setup_bdev_super+0x4e6/0x5d0
[   79.973839][ T5106]  mount_bdev+0x20a/0x2d0
[   79.975531][ T5106]  ? __pfx_hfs_fill_super+0x10/0x10
[   79.977602][ T5106]  ? __pfx_mount_bdev+0x10/0x10
[   79.979525][ T5106]  ? vfs_parse_fs_string+0x190/0x230
[   79.981604][ T5106]  legacy_get_tree+0xee/0x190
[   79.983400][ T5106]  ? __pfx_hfs_mount+0x10/0x10
[   79.985219][ T5106]  vfs_get_tree+0x90/0x2b0
[   79.986907][ T5106]  do_new_mount+0x2be/0xb40
[   79.988699][ T5106]  ? __pfx_do_new_mount+0x10/0x10
[   79.990596][ T5106]  __se_sys_mount+0x2d6/0x3c0
[   79.992431][ T5106]  ? __pfx___se_sys_mount+0x10/0x10
[   79.994393][ T5106]  ? exc_page_fault+0x590/0x8c0
[   79.996319][ T5106]  ? __x64_sys_mount+0x20/0xc0
[   79.998210][ T5106]  do_syscall_64+0xf3/0x230
[   80.000007][ T5106]  ? clear_bhb_loop+0x35/0x90
[   80.001866][ T5106]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   80.004218][ T5106] RIP: 0033:0x7fe0b9d7f69a
[   80.005983][ T5106] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   80.013657][ T5106] RSP: 002b:00007fe0baabae68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[   80.017014][ T5106] RAX: ffffffffffffffda RBX: 00007fe0baabaef0 RCX: 00007fe0b9d7f69a
[   80.020103][ T5106] RDX: 0000000020000180 RSI: 0000000020000080 RDI: 00007fe0baabaeb0
[   80.023206][ T5106] RBP: 0000000020000180 R08: 00007fe0baabaef0 R09: 0000000003000002
[   80.026191][ T5106] R10: 0000000003000002 R11: 0000000000000246 R12: 0000000020000080
[   80.029308][ T5106] R13: 00007fe0baabaeb0 R14: 00000000000002fc R15: 00000000200003c0
[   80.032464][ T5106]  </TASK>
[   80.033690][ T5106] Modules linked in:
[   80.257772][ T5106] ---[ end trace 0000000000000000 ]---
[   80.260639][ T5106] RIP: 0010:hfs_find_init+0x72/0x1f0
[   80.262703][ T5106] Code: d8 48 c1 e8 03 42 80 3c 28 00 74 08 48 89 df e8 34 8e 77 ff 48 c7 03 00 00 00 00 48 89 2c 24 4c 8d 75 40 4d 89 f7 49 c1 ef 03 <43> 0f b6 04 2f 84 c0 0f 85 10 01 00 00 41 8b 06 8d 7c 00 04 be c0
[   80.280938][ T5106] RSP: 0018:ffffc90002d5f2c0 EFLAGS: 00010202
[   80.283398][ T5106] RAX: 1ffff920005abe77 RBX: ffffc90002d5f3b8 RCX: 0000000000040000
[   80.286531][ T5106] RDX: ffffc9000b6c9000 RSI: 0000000000014226 RDI: ffffc90002d5f3b0
[   80.301374][ T5106] RBP: 0000000000000000 R08: ffffffff828480ff R09: 0000000000000000
[   80.304565][ T5106] R10: ffffc90002d5f3a0 R11: fffff520005abe7b R12: ffffc90002d5f3a0
[   80.311500][ T5106] R13: dffffc0000000000 R14: 0000000000000040 R15: 0000000000000008
[   80.314445][ T5106] FS:  00007fe0baabb6c0(0000) GS:ffff88801fe00000(0000) knlGS:0000000000000000
[   80.327455][ T5106] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   80.330105][ T5106] CR2: 00007ff1edb95ed8 CR3: 000000001ef8c000 CR4: 0000000000350ef0
[   80.337900][ T5106] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   80.341028][ T5106] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   80.352305][ T5106] Kernel panic - not syncing: Fatal exception
[   80.354977][ T5106] Kernel Offset: disabled
[   80.356759][ T5106] Rebooting in 86400 seconds..