program:
syz_mount_image$msdos(&(0x7f0000000000), &(0x7f0000000340)='./file0\x00', 0x28540c0, &(0x7f00000003c0)=ANY=[@ANYRESDEC=0x0, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="a96ce7b4865c4c2b00febfea064759633fc20ab7bc4a82351a1df593d3f1b218289fa47458a068663b3f725197d274ddcb2f630d9eb0d0b1d725de2f0c0da420c661eae2b5b9e43ef9a756e9eb6af231db887039a25b5590309f4115e6970c4bb9893747dc71a0019e4026176238fb17fe5b5e80fd78d8af2a8229e1609697708e397a81840f0a53bc71e8c08607ba041fddfa6a83f7d0aa95ab58d43c0c42dc51e3e25d3f52ed8ba80054ef707b10355a408beb62a656b67d8640677b558c4a047c2691"], 0xea, 0x1bf, &(0x7f0000000940)="$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")
syz_mount_image$hfs(&(0x7f0000000380), &(0x7f0000000300)='./file0\x00', 0x200040, &(0x7f00000000c0)={[{@umask={'umask', 0x3d, 0x40540fcc}}, {@iocharset={'iocharset', 0x3d, 'cp855'}}]}, 0x8, 0x337, &(0x7f00000004c0)="$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")
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
getdents64(r0, &(0x7f0000000f80)=""/4096, 0x1000)
getsockopt$nfc_llcp(0xffffffffffffffff, 0x118, 0x0, &(0x7f0000000040)=""/95, 0x5f)
r1 = syz_open_dev$vim2m(&(0x7f0000000000), 0x7, 0x2)
pipe(&(0x7f0000000840)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$SNDCTL_SYNTH_ID(r2, 0xc08c5114, &(0x7f0000000880)={"1d8d9ba09f3e4c982a80a7bb770f2753c4fe92f477e6aaacc331e4bd2b83", 0x40, 0x2, 0x1, 0xdfe, 0x9, 0xfffffffe, 0x10, 0x6, [0x100, 0xfff, 0x0, 0x7, 0xda, 0x7, 0xc, 0x3, 0xccd, 0x86bc, 0x3, 0x9, 0x2, 0x0, 0x8, 0x7, 0x7ff, 0x52, 0x3]})
ioctl$vim2m_VIDIOC_S_FMT(r1, 0xc0d05605, &(0x7f0000000b00)={0x1, @pix={0x9, 0x8, 0x47524247, 0x3, 0x106, 0x2, 0x6, 0xa6e, 0x1, 0x4, 0x1, 0x5}})
mkdir(&(0x7f0000000140)='./control\x00', 0x0)
rmdir(&(0x7f0000000100)='./control\x00')
r3 = openat$nvme_fabrics(0xffffffffffffff9c, &(0x7f0000000180), 0x40, 0x0)
ioctl$vim2m_VIDIOC_S_CTRL(r3, 0xc008561c, &(0x7f0000000800)={0x800, 0x9})
ioctl$INCFS_IOC_READ_FILE_SIGNATURE(r3, 0x8010671f, &(0x7f00000002c0)={&(0x7f00000001c0)=""/214, 0xd6})

[   76.630207][ T1309] ieee802154 phy0 wpan0: encryption failed: -22
[   76.632975][ T1309] ieee802154 phy1 wpan1: encryption failed: -22
[   76.636394][   T48] Bluetooth: hci0: command tx timeout
[   76.730340][ T5326] loop0: detected capacity change from 0 to 256
[   76.758124][ T5326] =======================================================
[   76.758124][ T5326] WARNING: The mand mount option has been deprecated and
[   76.758124][ T5326]          and is ignored by this kernel. Remove the mand
[   76.758124][ T5326]          option from the mount to silence this warning.
[   76.758124][ T5326] =======================================================
[   76.807717][ T5326] loop0: detected capacity change from 0 to 64
[   76.821453][ T5326] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000008: 0000 [#1] PREEMPT SMP KASAN NOPTI
[   76.826246][ T5326] KASAN: null-ptr-deref in range [0x0000000000000040-0x0000000000000047]
[   76.829333][ T5326] CPU: 0 UID: 0 PID: 5326 Comm: syz.0.0 Not tainted 6.13.0-syzkaller-09760-g69e858e0b8b2 #0
[   76.832890][ T5326] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   76.836784][ T5326] RIP: 0010:hfs_find_init+0x72/0x1f0
[   76.839154][ T5326] Code: d8 48 c1 e8 03 42 80 3c 28 00 74 08 48 89 df e8 d4 3c 84 ff 48 c7 03 00 00 00 00 48 89 2c 24 4c 8d 75 40 4d 89 f7 49 c1 ef 03 <43> 0f b6 04 2f 84 c0 0f 85 10 01 00 00 41 8b 06 8d 7c 00 04 be c0
[   76.846102][ T5326] RSP: 0018:ffffc9000d47f400 EFLAGS: 00010202
[   76.848393][ T5326] RAX: 1ffff92001a8fe9f RBX: ffffc9000d47f4f8 RCX: 0000000000100000
[   76.851153][ T5326] RDX: ffffc9000e4da000 RSI: 0000000000001ba4 RDI: ffffc9000d47f4f0
[   76.853876][ T5326] RBP: 0000000000000000 R08: ffffffff82a2ff6f R09: 0000000000000000
[   76.856746][ T5326] R10: ffffc9000d47f4e0 R11: fffff52001a8fea3 R12: ffffc9000d47f4e0
[   76.859607][ T5326] R13: dffffc0000000000 R14: 0000000000000040 R15: 0000000000000008
[   76.862341][ T5326] FS:  00007f7eef1436c0(0000) GS:ffff88801fc00000(0000) knlGS:0000000000000000
[   76.865692][ T5326] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   76.868192][ T5326] CR2: 0000563be97a5408 CR3: 0000000042a36000 CR4: 0000000000352ef0
[   76.871173][ T5326] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   76.874243][ T5326] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   76.877195][ T5326] Call Trace:
[   76.878448][ T5326]  <TASK>
[   76.879592][ T5326]  ? __die_body+0x5f/0xb0
[   76.881260][ T5326]  ? die_addr+0xb0/0xe0
[   76.882832][ T5326]  ? exc_general_protection+0x3dd/0x5d0
[   76.885075][ T5326]  ? asm_exc_general_protection+0x26/0x30
[   76.887191][ T5326]  ? hfs_get_block+0x3bf/0xb60
[   76.889017][ T5326]  ? hfs_find_init+0x72/0x1f0
[   76.890720][ T5326]  hfs_get_block+0x4f4/0xb60
[   76.892482][ T5326]  ? __pfx_hfs_get_block+0x10/0x10
[   76.894401][ T5326]  ? _raw_spin_unlock+0x28/0x50
[   76.896325][ T5326]  ? create_empty_buffers+0x471/0x530
[   76.898148][ T5326]  block_read_full_folio+0x3ee/0xae0
[   76.900112][ T5326]  ? __pfx_hfs_get_block+0x10/0x10
[   76.901919][ T5326]  ? __pfx_block_read_full_folio+0x10/0x10
[   76.904103][ T5326]  filemap_read_folio+0x148/0x3b0
[   76.905891][ T5326]  ? __pfx_hfs_read_folio+0x10/0x10
[   76.907846][ T5326]  ? __pfx_filemap_read_folio+0x10/0x10
[   76.909895][ T5326]  ? __filemap_get_folio+0x9a8/0xae0
[   76.911908][ T5326]  do_read_cache_folio+0x373/0x5b0
[   76.913866][ T5326]  ? __pfx_hfs_read_folio+0x10/0x10
[   76.915908][ T5326]  ? do_raw_spin_unlock+0x58/0x8b0
[   76.917835][ T5326]  read_cache_page+0x5b/0x170
[   76.919668][ T5326]  hfs_btree_open+0x506/0xf40
[   76.921431][ T5326]  hfs_mdb_get+0x1443/0x21b0
[   76.923224][ T5326]  ? __pfx_hfs_mdb_get+0x10/0x10
[   76.925132][ T5326]  ? __pfx_lockdep_init_map_type+0x10/0x10
[   76.927316][ T5326]  ? __pfx_lockdep_init_map_type+0x10/0x10
[   76.929526][ T5326]  ? __raw_spin_lock_init+0x45/0x100
[   76.931754][ T5326]  hfs_fill_super+0x38f/0x710
[   76.933539][ T5326]  ? __pfx_hfs_fill_super+0x10/0x10
[   76.935489][ T5326]  ? do_raw_spin_lock+0x14f/0x370
[   76.937354][ T5326]  ? sb_set_blocksize+0x98/0xf0
[   76.939148][ T5326]  ? setup_bdev_super+0x4e6/0x5d0
[   76.941007][ T5326]  get_tree_bdev_flags+0x48c/0x5c0
[   76.942892][ T5326]  ? __pfx_hfs_fill_super+0x10/0x10
[   76.944913][ T5326]  ? __pfx_get_tree_bdev_flags+0x10/0x10
[   76.946724][ T5326]  ? apparmor_capable+0x13b/0x1b0
[   76.948477][ T5326]  vfs_get_tree+0x90/0x2b0
[   76.950186][ T5326]  do_new_mount+0x2be/0xb40
[   76.951960][ T5326]  ? __pfx_do_new_mount+0x10/0x10
[   76.953753][ T5326]  __se_sys_mount+0x2d6/0x3c0
[   76.955357][ T5326]  ? __pfx___se_sys_mount+0x10/0x10
[   76.957122][ T5326]  ? do_syscall_64+0x100/0x230
[   76.958838][ T5326]  ? __x64_sys_mount+0x20/0xc0
[   76.960401][ T5326]  do_syscall_64+0xf3/0x230
[   76.961882][ T5326]  ? clear_bhb_loop+0x35/0x90
[   76.963641][ T5326]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   76.965932][ T5326] RIP: 0033:0x7f7eee38e54a
[   76.967559][ T5326] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   76.974702][ T5326] RSP: 002b:00007f7eef142e68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[   76.977703][ T5326] RAX: ffffffffffffffda RBX: 00007f7eef142ef0 RCX: 00007f7eee38e54a
[   76.980492][ T5326] RDX: 0000000020000380 RSI: 0000000020000300 RDI: 00007f7eef142eb0
[   76.983354][ T5326] RBP: 0000000020000380 R08: 00007f7eef142ef0 R09: 0000000000200040
[   76.986231][ T5326] R10: 0000000000200040 R11: 0000000000000246 R12: 0000000020000300
[   76.989085][ T5326] R13: 00007f7eef142eb0 R14: 0000000000000337 R15: 00000000200000c0
[   76.991879][ T5326]  </TASK>
[   76.993020][ T5326] Modules linked in:
[   76.994842][ T5326] ---[ end trace 0000000000000000 ]---
[   77.009595][ T5326] RIP: 0010:hfs_find_init+0x72/0x1f0
[   77.011618][ T5326] Code: d8 48 c1 e8 03 42 80 3c 28 00 74 08 48 89 df e8 d4 3c 84 ff 48 c7 03 00 00 00 00 48 89 2c 24 4c 8d 75 40 4d 89 f7 49 c1 ef 03 <43> 0f b6 04 2f 84 c0 0f 85 10 01 00 00 41 8b 06 8d 7c 00 04 be c0
[   77.019931][ T5326] RSP: 0018:ffffc9000d47f400 EFLAGS: 00010202
[   77.022298][ T5326] RAX: 1ffff92001a8fe9f RBX: ffffc9000d47f4f8 RCX: 0000000000100000
[   77.025303][ T5326] RDX: ffffc9000e4da000 RSI: 0000000000001ba4 RDI: ffffc9000d47f4f0
[   77.029033][ T5326] RBP: 0000000000000000 R08: ffffffff82a2ff6f R09: 0000000000000000
[   77.032056][ T5326] R10: ffffc9000d47f4e0 R11: fffff52001a8fea3 R12: ffffc9000d47f4e0
[   77.034984][ T5326] R13: dffffc0000000000 R14: 0000000000000040 R15: 0000000000000008
[   77.039135][ T5326] FS:  00007f7eef1436c0(0000) GS:ffff88801fc00000(0000) knlGS:0000000000000000
[   77.042470][ T5326] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   77.044948][ T5326] CR2: 0000563be97f8328 CR3: 0000000042a36000 CR4: 0000000000352ef0
[   77.048227][ T5326] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   77.051072][ T5326] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   77.054083][ T5326] Kernel panic - not syncing: Fatal exception
[   77.056624][ T5326] Kernel Offset: disabled
[   77.058278][ T5326] Rebooting in 86400 seconds..