program:
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) (async)
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
syz_mount_image$hfs(&(0x7f00000000c0), &(0x7f00000008c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x4088, &(0x7f0000000080)=ANY=[], 0x1, 0x2cf, &(0x7f0000000a00)="$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")
rename(&(0x7f00000003c0)='./file0\x00', &(0x7f0000000780)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000000)=[@in={0x2, 0x0, @remote}, @in6={0xa, 0x0, 0x0, @loopback}], 0x2c)
setsockopt$inet_sctp6_SCTP_AUTO_ASCONF(r1, 0x84, 0x1e, &(0x7f0000000040), 0x4) (async)
setsockopt$inet_sctp6_SCTP_AUTO_ASCONF(r1, 0x84, 0x1e, &(0x7f0000000040), 0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmmsg$unix(r2, &(0x7f0000005a40)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x98}}, {{&(0x7f0000005840)=@file={0x1, './file2\x00'}, 0x6e, 0x0, 0x0, 0x0, 0x0, 0x4004000}}], 0x2, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="1b00000000000000000000000000040000000000", @ANYRES32=0x0, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB='\x00'/28], 0x48) (async)
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="1b00000000000000000000000000040000000000", @ANYRES32=0x0, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB='\x00'/28], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x8, 0x1c, &(0x7f0000000d80)=@ringbuf={{0x18, 0x8}, {{0x18, 0x1, 0x1, 0x0, r3}, {}, {}, {0x85, 0x0, 0x0, 0x5}, {0x4, 0x1, 0xb, 0x9, 0xa}}, {{0x5, 0x0, 0x3}}, [@snprintf={{0x5, 0x0, 0x7, 0x9, 0x0, 0x2, 0x2}, {0x3, 0x3, 0x3, 0xa, 0x9, 0xfe00}, {0x5, 0x0, 0xb, 0x9}, {0x3, 0x0, 0x6, 0xa, 0x9, 0xfe04, 0x51}, {0x7, 0x1, 0xb, 0x7, 0x8}, {0x7, 0x0, 0x0, 0x8}, {}, {}, {}, {0x18, 0x9, 0x2, 0x0, r0}, {}, {0x46, 0x8, 0xfff0, 0x76}}], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x5, 0x8}, {0x85, 0x0, 0x0, 0x7}}}, &(0x7f0000000980)='GPL\x00', 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)

[   75.479001][ T5302] Bluetooth: hci0: command tx timeout
[   75.504501][ T5316] loop0: detected capacity change from 0 to 64
[   75.553462][ T5316] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000008: 0000 [#1] SMP KASAN NOPTI
[   75.558235][ T5316] KASAN: null-ptr-deref in range [0x0000000000000040-0x0000000000000047]
[   75.561697][ T5316] CPU: 0 UID: 0 PID: 5316 Comm: syz.0.0 Not tainted 6.15.0-rc4-syzkaller-00040-g8bac8898fe39 #0 PREEMPT(full) 
[   75.565670][ T5316] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   75.569888][ T5316] RIP: 0010:hfs_find_init+0x6a/0x1e0
[   75.571772][ T5316] Code: 7e 18 4c 89 f8 48 c1 e8 03 42 80 3c 28 00 74 08 4c 89 ff e8 18 65 8b ff 49 c7 07 00 00 00 00 48 8d 6b 40 49 89 ef 49 c1 ef 03 <43> 0f b6 04 2f 84 c0 0f 85 0c 01 00 00 8b 45 00 8d 3c 45 04 00 00
[   75.578392][ T5316] RSP: 0018:ffffc9000d31f5c8 EFLAGS: 00010202
[   75.580662][ T5316] RAX: 1ffff92001a63ed7 RBX: 0000000000000000 RCX: ffff88801e68a440
[   75.583804][ T5316] RDX: 0000000000000000 RSI: ffffc9000d31f6a0 RDI: ffffc9000d31f6b0
[   75.586924][ T5316] RBP: 0000000000000040 R08: ffffc9000d31f6d7 R09: 0000000000000000
[   75.590025][ T5316] R10: ffffc9000d31f6a0 R11: fffff52001a63edb R12: ffff88801d2e0638
[   75.592992][ T5316] R13: dffffc0000000000 R14: ffffc9000d31f6a0 R15: 0000000000000008
[   75.595987][ T5316] FS:  00007f7c7abe76c0(0000) GS:ffff88808d6cc000(0000) knlGS:0000000000000000
[   75.599254][ T5316] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   75.601758][ T5316] CR2: 00007fefa4795ed8 CR3: 0000000000f66000 CR4: 0000000000352ef0
[   75.604768][ T5316] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   75.607850][ T5316] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   75.610914][ T5316] Call Trace:
[   75.612247][ T5316]  <TASK>
[   75.613423][ T5316]  hfs_get_block+0x51b/0xbd0
[   75.615235][ T5316]  ? __pfx_hfs_get_block+0x10/0x10
[   75.617235][ T5316]  block_read_full_folio+0x29c/0x830
[   75.619306][ T5316]  ? __pfx_hfs_get_block+0x10/0x10
[   75.621283][ T5316]  filemap_read_folio+0x114/0x380
[   75.623273][ T5316]  ? __pfx_hfs_read_folio+0x10/0x10
[   75.625248][ T5316]  ? __pfx_filemap_read_folio+0x10/0x10
[   75.627312][ T5316]  do_read_cache_folio+0x354/0x590
[   75.629308][ T5316]  ? __pfx_hfs_read_folio+0x10/0x10
[   75.631147][ T5316]  read_cache_page+0x5d/0x170
[   75.632902][ T5316]  hfs_btree_open+0x562/0x1070
[   75.634635][ T5316]  hfs_mdb_get+0x1327/0x2080
[   75.636421][ T5316]  ? __pfx_hfs_mdb_get+0x10/0x10
[   75.638315][ T5316]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[   75.640566][ T5316]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[   75.642964][ T5316]  hfs_fill_super+0x37b/0x640
[   75.644858][ T5316]  ? __pfx_hfs_fill_super+0x10/0x10
[   75.646914][ T5316]  ? sb_set_blocksize+0x104/0x180
[   75.648913][ T5316]  ? setup_bdev_super+0x4c1/0x5b0
[   75.650931][ T5316]  get_tree_bdev_flags+0x40b/0x4d0
[   75.652836][ T5316]  ? __pfx_hfs_fill_super+0x10/0x10
[   75.654864][ T5316]  ? __pfx_get_tree_bdev_flags+0x10/0x10
[   75.657002][ T5316]  vfs_get_tree+0x8f/0x2b0
[   75.658664][ T5316]  do_new_mount+0x24a/0xa40
[   75.660262][ T5316]  __se_sys_mount+0x317/0x410
[   75.662175][ T5316]  ? __pfx___se_sys_mount+0x10/0x10
[   75.664165][ T5316]  ? do_syscall_64+0xba/0x210
[   75.666051][ T5316]  ? __x64_sys_mount+0x20/0xc0
[   75.667895][ T5316]  do_syscall_64+0xf6/0x210
[   75.669735][ T5316]  ? clear_bhb_loop+0x45/0xa0
[   75.671593][ T5316]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   75.673828][ T5316] RIP: 0033:0x7f7c79d9010a
[   75.675584][ T5316] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   75.682591][ T5316] RSP: 002b:00007f7c7abe6e68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[   75.685762][ T5316] RAX: ffffffffffffffda RBX: 00007f7c7abe6ef0 RCX: 00007f7c79d9010a
[   75.688758][ T5316] RDX: 00002000000000c0 RSI: 00002000000008c0 RDI: 00007f7c7abe6eb0
[   75.691717][ T5316] RBP: 00002000000000c0 R08: 00007f7c7abe6ef0 R09: 0000000000004088
[   75.694632][ T5316] R10: 0000000000004088 R11: 0000000000000246 R12: 00002000000008c0
[   75.697630][ T5316] R13: 00007f7c7abe6eb0 R14: 00000000000002cf R15: 0000200000000080
[   75.700620][ T5316]  </TASK>
[   75.701908][ T5316] Modules linked in:
[   75.703830][ T5316] ---[ end trace 0000000000000000 ]---
[   75.720828][ T5316] RIP: 0010:hfs_find_init+0x6a/0x1e0
[   75.722838][ T5316] Code: 7e 18 4c 89 f8 48 c1 e8 03 42 80 3c 28 00 74 08 4c 89 ff e8 18 65 8b ff 49 c7 07 00 00 00 00 48 8d 6b 40 49 89 ef 49 c1 ef 03 <43> 0f b6 04 2f 84 c0 0f 85 0c 01 00 00 8b 45 00 8d 3c 45 04 00 00
[   75.731602][ T5316] RSP: 0018:ffffc9000d31f5c8 EFLAGS: 00010202
[   75.733842][ T5316] RAX: 1ffff92001a63ed7 RBX: 0000000000000000 RCX: ffff88801e68a440
[   75.736677][ T5316] RDX: 0000000000000000 RSI: ffffc9000d31f6a0 RDI: ffffc9000d31f6b0
[   75.740233][ T5316] RBP: 0000000000000040 R08: ffffc9000d31f6d7 R09: 0000000000000000
[   75.743284][ T5316] R10: ffffc9000d31f6a0 R11: fffff52001a63edb R12: ffff88801d2e0638
[   75.746478][ T5316] R13: dffffc0000000000 R14: ffffc9000d31f6a0 R15: 0000000000000008
[   75.749876][ T5316] FS:  00007f7c7abe76c0(0000) GS:ffff88808d6cc000(0000) knlGS:0000000000000000
[   75.753201][ T5316] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   75.755730][ T5316] CR2: 00007fefa4795ed8 CR3: 0000000000f66000 CR4: 0000000000352ef0
[   75.759244][ T5316] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   75.762241][ T5316] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   75.765211][ T5316] Kernel panic - not syncing: Fatal exception
[   75.767812][ T5316] Kernel Offset: disabled
[   75.769464][ T5316] Rebooting in 86400 seconds..