program:
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a00)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b100000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0xc94284a3061bb7fe, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x7}, 0x94)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0, 0x0, 0xffffffffffffffff}, 0x18)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x1a08700, &(0x7f0000000700)={[{@nodioread_nolock}, {@nouid32}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5c}}, {@nouid32}, {@resgid}, {@usrquota}, {@journal_dev={'journal_dev', 0x3d, 0x1}}]}, 0x0, 0x470, &(0x7f0000001040)="$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")
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = syz_open_dev$usbfs(&(0x7f0000000140), 0x77, 0x3501)
ioctl$USBDEVFS_SUBMITURB(r1, 0x8038550a, &(0x7f0000000000)=@urb_type_control={0x2, {}, 0x0, 0x0, &(0x7f00000004c0)={0x4b5a9da54893e123, 0x3, 0x17, 0x2}, 0x8, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0})
close_range(r1, 0xffffffffffffffff, 0x0)

[   75.023725][ T4667] Bluetooth: hci0: command tx timeout
[   75.089645][ T5318] loop0: detected capacity change from 0 to 512
[   75.144277][ T5318] ------------[ cut here ]------------
[   75.146871][ T5318] EA inode 11 i_nlink=2
[   75.147454][ T5318] WARNING: CPU: 0 PID: 5318 at fs/ext4/xattr.c:1058 ext4_xattr_inode_update_ref+0x51a/0x5b0
[   75.154054][ T5318] Modules linked in:
[   75.155974][ T5318] CPU: 0 UID: 0 PID: 5318 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) 
[   75.160226][ T5318] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   75.165365][ T5318] RIP: 0010:ext4_xattr_inode_update_ref+0x51a/0x5b0
[   75.168469][ T5318] Code: 48 b8 00 00 00 00 00 fc ff df 41 0f b6 04 06 84 c0 0f 85 80 00 00 00 41 8b 17 48 c7 c7 80 1f 80 8b 4c 89 e6 e8 d7 1d f8 fe 90 <0f> 0b 90 90 4c 8b 6c 24 28 e9 59 fe ff ff e8 23 fe bc 08 44 89 f9
[   75.177471][ T5318] RSP: 0018:ffffc9000fc5f100 EFLAGS: 00010246
[   75.180615][ T5318] RAX: d61056b3b5b93c00 RBX: 0000000000000001 RCX: 0000000000100000
[   75.184466][ T5318] RDX: ffffc9000dc32000 RSI: 0000000000007f91 RDI: 0000000000007f92
[   75.188095][ T5318] RBP: ffffc9000fc5f1f8 R08: ffff88801fe24293 R09: 1ffff11003fc4852
[   75.191629][ T5318] R10: dffffc0000000000 R11: ffffed1003fc4853 R12: 000000000000000b
[   75.195354][ T5318] R13: ffff88804326a9b0 R14: 1ffff1100864d524 R15: ffff88804326a920
[   75.198906][ T5318] FS:  00007fb8be7ef6c0(0000) GS:ffff88808d733000(0000) knlGS:0000000000000000
[   75.203086][ T5318] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   75.206477][ T5318] CR2: 00007f6df11909c0 CR3: 000000004275d000 CR4: 0000000000352ef0
[   75.210116][ T5318] Call Trace:
[   75.211709][ T5318]  <TASK>
[   75.213649][ T5318]  ? __pfx_inode_set_ctime_to_ts+0x10/0x10
[   75.216346][ T5318]  ? __pfx_ext4_xattr_inode_update_ref+0x10/0x10
[   75.219246][ T5318]  ? ext4_xattr_inode_iget+0x3d2/0x5f0
[   75.221792][ T5318]  ext4_xattr_set_entry+0xabb/0x1e20
[   75.224582][ T5318]  ext4_xattr_ibody_set+0x254/0x6a0
[   75.227009][ T5318]  ext4_expand_extra_isize_ea+0x13ad/0x1ea0
[   75.229534][ T5318]  __ext4_expand_extra_isize+0x30d/0x400
[   75.231840][ T5318]  __ext4_mark_inode_dirty+0x46c/0x700
[   75.234344][ T5318]  ext4_evict_inode+0x80d/0xee0
[   75.236590][ T5318]  ? __pfx_ext4_evict_inode+0x10/0x10
[   75.239001][ T5318]  ? do_raw_spin_unlock+0x4d/0x240
[   75.241284][ T5318]  ? __pfx_ext4_evict_inode+0x10/0x10
[   75.243903][ T5318]  evict+0x504/0x9c0
[   75.245694][ T5318]  ? __pfx_evict+0x10/0x10
[   75.247733][ T5318]  ? do_raw_spin_unlock+0x4d/0x240
[   75.250123][ T5318]  ? _raw_spin_unlock+0x28/0x50
[   75.252467][ T5318]  ? iput+0x946/0xc50
[   75.254554][ T5318]  ext4_orphan_cleanup+0xc20/0x1460
[   75.256933][ T5318]  ? __pfx_ext4_orphan_cleanup+0x10/0x10
[   75.259504][ T5318]  ? ext4_register_li_request+0x640/0x720
[   75.262097][ T5318]  ? errseq_check_and_advance+0x66/0x120
[   75.264813][ T5318]  ext4_fill_super+0x5920/0x61e0
[   75.267170][ T5318]  ? __pfx_ext4_fill_super+0x10/0x10
[   75.269609][ T5318]  ? snprintf+0xda/0x120
[   75.271606][ T5318]  ? __pfx_snprintf+0x10/0x10
[   75.273985][ T5318]  ? set_blocksize+0x21e/0x500
[   75.276238][ T5318]  ? sb_set_blocksize+0x104/0x180
[   75.278528][ T5318]  ? setup_bdev_super+0x4c1/0x5b0
[   75.280868][ T5318]  get_tree_bdev_flags+0x40e/0x4d0
[   75.283296][ T5318]  ? __pfx_ext4_fill_super+0x10/0x10
[   75.285449][ T5318]  ? __pfx_get_tree_bdev_flags+0x10/0x10
[   75.287730][ T5318]  vfs_get_tree+0x92/0x2b0
[   75.289546][ T5318]  do_new_mount+0x302/0xa10
[   75.291422][ T5318]  ? apparmor_capable+0x137/0x1b0
[   75.293828][ T5318]  ? __pfx_do_new_mount+0x10/0x10
[   75.296157][ T5318]  ? ns_capable+0x8a/0xf0
[   75.298149][ T5318]  ? kmem_cache_free+0x19b/0x690
[   75.300462][ T5318]  __se_sys_mount+0x313/0x410
[   75.302656][ T5318]  ? __pfx___se_sys_mount+0x10/0x10
[   75.305242][ T5318]  ? do_syscall_64+0xbe/0xfa0
[   75.307688][ T5318]  ? __x64_sys_mount+0x20/0xc0
[   75.309800][ T5318]  do_syscall_64+0xfa/0xfa0
[   75.311904][ T5318]  ? lockdep_hardirqs_on+0x9c/0x150
[   75.314608][ T5318]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   75.317265][ T5318]  ? clear_bhb_loop+0x60/0xb0
[   75.319184][ T5318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   75.321592][ T5318] RIP: 0033:0x7fb8bd99076a
[   75.323632][ T5318] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   75.331181][ T5318] RSP: 002b:00007fb8be7eee68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[   75.335034][ T5318] RAX: ffffffffffffffda RBX: 00007fb8be7eeef0 RCX: 00007fb8bd99076a
[   75.338496][ T5318] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007fb8be7eeeb0
[   75.342071][ T5318] RBP: 0000200000000180 R08: 00007fb8be7eeef0 R09: 0000000001a08700
[   75.345836][ T5318] R10: 0000000001a08700 R11: 0000000000000246 R12: 00002000000001c0
[   75.349549][ T5318] R13: 00007fb8be7eeeb0 R14: 0000000000000470 R15: 0000200000000700
[   75.353377][ T5318]  </TASK>
[   75.354745][ T5318] Kernel panic - not syncing: kernel: panic_on_warn set ...
[   75.357914][ T5318] CPU: 0 UID: 0 PID: 5318 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) 
[   75.361609][ T5318] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   75.365945][ T5318] Call Trace:
[   75.367359][ T5318]  <TASK>
[   75.368583][ T5318]  dump_stack_lvl+0x99/0x250
[   75.370506][ T5318]  ? __asan_memcpy+0x40/0x70
[   75.372416][ T5318]  ? __pfx_dump_stack_lvl+0x10/0x10
[   75.374805][ T5318]  ? __pfx__printk+0x10/0x10
[   75.376783][ T5318]  vpanic+0x237/0x6d0
[   75.378435][ T5318]  ? __pfx_vpanic+0x10/0x10
[   75.380499][ T5318]  panic+0xb9/0xc0
[   75.382066][ T5318]  ? __pfx_panic+0x10/0x10
[   75.383965][ T5318]  __warn+0x31b/0x4b0
[   75.385781][ T5318]  ? ext4_xattr_inode_update_ref+0x51a/0x5b0
[   75.388284][ T5318]  ? ext4_xattr_inode_update_ref+0x51a/0x5b0
[   75.390991][ T5318]  report_bug+0x2be/0x4f0
[   75.392986][ T5318]  ? ext4_xattr_inode_update_ref+0x51a/0x5b0
[   75.395639][ T5318]  ? ext4_xattr_inode_update_ref+0x51a/0x5b0
[   75.398308][ T5318]  ? ext4_xattr_inode_update_ref+0x51c/0x5b0
[   75.401216][ T5318]  handle_bug+0x84/0x160
[   75.403202][ T5318]  exc_invalid_op+0x1a/0x50
[   75.405448][ T5318]  asm_exc_invalid_op+0x1a/0x20
[   75.407620][ T5318] RIP: 0010:ext4_xattr_inode_update_ref+0x51a/0x5b0
[   75.410816][ T5318] Code: 48 b8 00 00 00 00 00 fc ff df 41 0f b6 04 06 84 c0 0f 85 80 00 00 00 41 8b 17 48 c7 c7 80 1f 80 8b 4c 89 e6 e8 d7 1d f8 fe 90 <0f> 0b 90 90 4c 8b 6c 24 28 e9 59 fe ff ff e8 23 fe bc 08 44 89 f9
[   75.419243][ T5318] RSP: 0018:ffffc9000fc5f100 EFLAGS: 00010246
[   75.421790][ T5318] RAX: d61056b3b5b93c00 RBX: 0000000000000001 RCX: 0000000000100000
[   75.425041][ T5318] RDX: ffffc9000dc32000 RSI: 0000000000007f91 RDI: 0000000000007f92
[   75.428439][ T5318] RBP: ffffc9000fc5f1f8 R08: ffff88801fe24293 R09: 1ffff11003fc4852
[   75.432722][ T5318] R10: dffffc0000000000 R11: ffffed1003fc4853 R12: 000000000000000b
[   75.436214][ T5318] R13: ffff88804326a9b0 R14: 1ffff1100864d524 R15: ffff88804326a920
[   75.439748][ T5318]  ? __pfx_inode_set_ctime_to_ts+0x10/0x10
[   75.442243][ T5318]  ? __pfx_ext4_xattr_inode_update_ref+0x10/0x10
[   75.445061][ T5318]  ? ext4_xattr_inode_iget+0x3d2/0x5f0
[   75.447472][ T5318]  ext4_xattr_set_entry+0xabb/0x1e20
[   75.449890][ T5318]  ext4_xattr_ibody_set+0x254/0x6a0
[   75.452393][ T5318]  ext4_expand_extra_isize_ea+0x13ad/0x1ea0
[   75.454976][ T5318]  __ext4_expand_extra_isize+0x30d/0x400
[   75.457385][ T5318]  __ext4_mark_inode_dirty+0x46c/0x700
[   75.459783][ T5318]  ext4_evict_inode+0x80d/0xee0
[   75.461940][ T5318]  ? __pfx_ext4_evict_inode+0x10/0x10
[   75.464275][ T5318]  ? do_raw_spin_unlock+0x4d/0x240
[   75.466483][ T5318]  ? __pfx_ext4_evict_inode+0x10/0x10
[   75.468919][ T5318]  evict+0x504/0x9c0
[   75.470665][ T5318]  ? __pfx_evict+0x10/0x10
[   75.472776][ T5318]  ? do_raw_spin_unlock+0x4d/0x240
[   75.475146][ T5318]  ? _raw_spin_unlock+0x28/0x50
[   75.477286][ T5318]  ? iput+0x946/0xc50
[   75.479002][ T5318]  ext4_orphan_cleanup+0xc20/0x1460
[   75.481214][ T5318]  ? __pfx_ext4_orphan_cleanup+0x10/0x10
[   75.483820][ T5318]  ? ext4_register_li_request+0x640/0x720
[   75.486388][ T5318]  ? errseq_check_and_advance+0x66/0x120
[   75.488927][ T5318]  ext4_fill_super+0x5920/0x61e0
[   75.491219][ T5318]  ? __pfx_ext4_fill_super+0x10/0x10
[   75.493710][ T5318]  ? snprintf+0xda/0x120
[   75.495706][ T5318]  ? __pfx_snprintf+0x10/0x10
[   75.497846][ T5318]  ? set_blocksize+0x21e/0x500
[   75.500018][ T5318]  ? sb_set_blocksize+0x104/0x180
[   75.502162][ T5318]  ? setup_bdev_super+0x4c1/0x5b0
[   75.504369][ T5318]  get_tree_bdev_flags+0x40e/0x4d0
[   75.506520][ T5318]  ? __pfx_ext4_fill_super+0x10/0x10
[   75.508646][ T5318]  ? __pfx_get_tree_bdev_flags+0x10/0x10
[   75.510924][ T5318]  vfs_get_tree+0x92/0x2b0
[   75.512736][ T5318]  do_new_mount+0x302/0xa10
[   75.514685][ T5318]  ? apparmor_capable+0x137/0x1b0
[   75.516856][ T5318]  ? __pfx_do_new_mount+0x10/0x10
[   75.519036][ T5318]  ? ns_capable+0x8a/0xf0
[   75.520897][ T5318]  ? kmem_cache_free+0x19b/0x690
[   75.523108][ T5318]  __se_sys_mount+0x313/0x410
[   75.525311][ T5318]  ? __pfx___se_sys_mount+0x10/0x10
[   75.527649][ T5318]  ? do_syscall_64+0xbe/0xfa0
[   75.529692][ T5318]  ? __x64_sys_mount+0x20/0xc0
[   75.531698][ T5318]  do_syscall_64+0xfa/0xfa0
[   75.533809][ T5318]  ? lockdep_hardirqs_on+0x9c/0x150
[   75.536086][ T5318]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   75.539412][ T5318]  ? clear_bhb_loop+0x60/0xb0
[   75.541465][ T5318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   75.544070][ T5318] RIP: 0033:0x7fb8bd99076a
[   75.545978][ T5318] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   75.553688][ T5318] RSP: 002b:00007fb8be7eee68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[   75.556925][ T5318] RAX: ffffffffffffffda RBX: 00007fb8be7eeef0 RCX: 00007fb8bd99076a
[   75.560090][ T5318] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007fb8be7eeeb0
[   75.563218][ T5318] RBP: 0000200000000180 R08: 00007fb8be7eeef0 R09: 0000000001a08700
[   75.566598][ T5318] R10: 0000000001a08700 R11: 0000000000000246 R12: 00002000000001c0
[   75.570114][ T5318] R13: 00007fb8be7eeeb0 R14: 0000000000000470 R15: 0000200000000700
[   75.573542][ T5318]  </TASK>
[   75.575200][ T5318] Kernel Offset: disabled
[   75.577074][ T5318] Rebooting in 86400 seconds..