program:
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x140, 0x82)
r1 = fanotify_init(0x4, 0x101801)
fanotify_mark(r1, 0x105, 0x40001032, r0, 0x0)
openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x281c2, 0x0)
prlimit64(0x0, 0x7, &(0x7f0000000140)={0x80, 0x100}, 0x0)
read$FUSE(r1, &(0x7f00000057c0)={0x2020}, 0x2020)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x80078b, &(0x7f0000000680)={[{@nodioread_nolock}, {@journal_dev={'journal_dev', 0x3d, 0xff}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5c}}, {@nouid32}, {@resgid}, {@acl}, {@init_itable_val={'init_itable', 0x3d, 0x8d55}}]}, 0x0, 0x473, &(0x7f0000000bc0)="$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")

[   74.445758][ T5341] Bluetooth: hci0: command tx timeout
[   74.511962][ T5361] loop0: detected capacity change from 0 to 512
[   74.548785][ T5361] EXT4-fs (loop0): orphan cleanup on readonly fs
[   74.580266][ T5361] EXT4-fs warning (device loop0): ext4_xattr_inode_get:556: inode #11: comm syz.0.0: EA inode hash validation failed
[   74.597786][ T5361] EXT4-fs warning (device loop0): ext4_expand_extra_isize_ea:2848: Unable to expand inode 15. Delete some EAs or run e2fsck.
[   74.604026][ T5361] ------------[ cut here ]------------
[   74.606777][ T5361] EA inode 11 ref_count=-1
[   74.625348][ T5361] WARNING: CPU: 0 PID: 5361 at fs/ext4/xattr.c:1048 ext4_xattr_inode_update_ref+0x44b/0x5d0
[   74.632724][ T5361] Modules linked in:
[   74.634648][ T5361] CPU: 0 UID: 0 PID: 5361 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) 
[   74.639495][ T5361] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   74.644430][ T5361] RIP: 0010:ext4_xattr_inode_update_ref+0x44b/0x5d0
[   74.647936][ T5361] Code: 78 40 4c 89 f8 48 c1 e8 03 80 3c 18 00 74 08 4c 89 ff e8 e8 2c 9d ff 49 8b 37 48 c7 c7 e0 f7 bf 8b 4c 89 ea e8 f6 bd fb fe 90 <0f> 0b 90 90 48 bb 00 00 00 00 00 fc ff df 4c 8b 74 24 20 4c 8b 6c
[   74.658205][ T5361] RSP: 0018:ffffc9000d3b72e0 EFLAGS: 00010246
[   74.661169][ T5361] RAX: fc1eb33c79bf5600 RBX: dffffc0000000000 RCX: 0000000000100000
[   74.665452][ T5361] RDX: ffffc9000e492000 RSI: 0000000000008824 RDI: 0000000000008825
[   74.669452][ T5361] RBP: ffffc9000d3b73d0 R08: 0000000000000003 R09: 0000000000000004
[   74.673323][ T5361] R10: dffffc0000000000 R11: fffffbfff1c3a22c R12: ffffc9000d3b7340
[   74.677430][ T5361] R13: ffffffffffffffff R14: 00000000ffffffff R15: ffff888043359f88
[   74.681939][ T5361] FS:  00007f725fc586c0(0000) GS:ffff88808d00a000(0000) knlGS:0000000000000000
[   74.686587][ T5361] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   74.690863][ T5361] CR2: 00007f47ed699000 CR3: 0000000043954000 CR4: 0000000000352ef0
[   74.694584][ T5361] Call Trace:
[   74.696562][ T5361]  <TASK>
[   74.698310][ T5361]  ? __pfx_ext4_xattr_inode_update_ref+0x10/0x10
[   74.701781][ T5361]  ? __kasan_kmalloc+0x93/0xb0
[   74.704458][ T5361]  ? __ext4_journal_ensure_credits+0x30/0x450
[   74.708449][ T5361]  ext4_xattr_inode_dec_ref_all+0x867/0xda0
[   74.712183][ T5361]  ? __pfx___ext4_get_inode_loc+0x10/0x10
[   74.715254][ T5361]  ? __pfx_ext4_xattr_inode_dec_ref_all+0x10/0x10
[   74.718085][ T5361]  ? __ext4_journal_get_write_access+0x272/0x570
[   74.720971][ T5361]  ? __pfx___ext4_journal_get_write_access+0x10/0x10
[   74.724117][ T5361]  ext4_xattr_delete_inode+0xa4c/0xc10
[   74.727360][ T5361]  ? ext4_truncate+0xc2d/0x1100
[   74.729806][ T5361]  ? __pfx_ext4_xattr_delete_inode+0x10/0x10
[   74.732433][ T5361]  ext4_evict_inode+0xac9/0xee0
[   74.734648][ T5361]  ? __pfx_ext4_evict_inode+0x10/0x10
[   74.737094][ T5361]  ? do_raw_spin_unlock+0x4d/0x240
[   74.739494][ T5361]  ? __pfx_ext4_evict_inode+0x10/0x10
[   74.742090][ T5361]  evict+0x504/0x9c0
[   74.743781][ T5361]  ? __pfx_evict+0x10/0x10
[   74.745799][ T5361]  ? do_raw_spin_unlock+0x4d/0x240
[   74.747829][ T5361]  ? _raw_spin_unlock+0x28/0x50
[   74.749896][ T5361]  ? iput+0x6d8/0x9d0
[   74.751674][ T5361]  ext4_orphan_cleanup+0xc20/0x1460
[   74.754052][ T5361]  ? __pfx_ext4_orphan_cleanup+0x10/0x10
[   74.757162][ T5361]  ? ext4_register_li_request+0x259/0x720
[   74.760038][ T5361]  ? errseq_check_and_advance+0x66/0x120
[   74.762546][ T5361]  ext4_fill_super+0x57df/0x6090
[   74.764851][ T5361]  ? __pfx_ext4_fill_super+0x10/0x10
[   74.767389][ T5361]  ? set_blocksize+0x21e/0x500
[   74.769797][ T5361]  ? sb_set_blocksize+0x104/0x180
[   74.772303][ T5361]  ? setup_bdev_super+0x4c1/0x5b0
[   74.774920][ T5361]  get_tree_bdev_flags+0x40e/0x4d0
[   74.777386][ T5361]  ? __pfx_ext4_fill_super+0x10/0x10
[   74.780264][ T5361]  ? __pfx_get_tree_bdev_flags+0x10/0x10
[   74.782868][ T5361]  vfs_get_tree+0x92/0x2b0
[   74.785774][ T5361]  do_new_mount+0x2a2/0x9e0
[   74.788185][ T5361]  ? ns_capable+0x8a/0xf0
[   74.790155][ T5361]  ? __pfx_do_new_mount+0x10/0x10
[   74.792446][ T5361]  ? path_mount+0x61c/0xfe0
[   74.794663][ T5361]  ? user_path_at+0x44/0x60
[   74.796856][ T5361]  __se_sys_mount+0x317/0x410
[   74.799174][ T5361]  ? __pfx___se_sys_mount+0x10/0x10
[   74.801931][ T5361]  ? do_syscall_64+0xbe/0x3b0
[   74.804459][ T5361]  ? __x64_sys_mount+0x20/0xc0
[   74.806942][ T5361]  do_syscall_64+0xfa/0x3b0
[   74.809024][ T5361]  ? lockdep_hardirqs_on+0x9c/0x150
[   74.811322][ T5361]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   74.814274][ T5361]  ? clear_bhb_loop+0x60/0xb0
[   74.816721][ T5361]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   74.819729][ T5361] RIP: 0033:0x7f725ed9034a
[   74.821758][ T5361] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   74.830573][ T5361] RSP: 002b:00007f725fc57e68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[   74.834428][ T5361] RAX: ffffffffffffffda RBX: 00007f725fc57ef0 RCX: 00007f725ed9034a
[   74.837839][ T5361] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007f725fc57eb0
[   74.841106][ T5361] RBP: 0000200000000180 R08: 00007f725fc57ef0 R09: 000000000080078b
[   74.845505][ T5361] R10: 000000000080078b R11: 0000000000000246 R12: 00002000000001c0
[   74.849668][ T5361] R13: 00007f725fc57eb0 R14: 0000000000000473 R15: 0000200000000680
[   74.853147][ T5361]  </TASK>
[   74.854498][ T5361] Kernel panic - not syncing: kernel: panic_on_warn set ...
[   74.857840][ T5361] CPU: 0 UID: 0 PID: 5361 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) 
[   74.862431][ T5361] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   74.867844][ T5361] Call Trace:
[   74.869432][ T5361]  <TASK>
[   74.871071][ T5361]  dump_stack_lvl+0x99/0x250
[   74.873653][ T5361]  ? __asan_memcpy+0x40/0x70
[   74.876675][ T5361]  ? __pfx_dump_stack_lvl+0x10/0x10
[   74.879992][ T5361]  ? __pfx__printk+0x10/0x10
[   74.882804][ T5361]  vpanic+0x281/0x750
[   74.884946][ T5361]  ? __pfx__printk+0x10/0x10
[   74.887391][ T5361]  ? __pfx_vpanic+0x10/0x10
[   74.889733][ T5361]  ? is_bpf_text_address+0x26/0x2b0
[   74.892787][ T5361]  panic+0xb9/0xc0
[   74.894949][ T5361]  ? __pfx_panic+0x10/0x10
[   74.897192][ T5361]  __warn+0x31b/0x4b0
[   74.899065][ T5361]  ? ext4_xattr_inode_update_ref+0x44b/0x5d0
[   74.901828][ T5361]  ? ext4_xattr_inode_update_ref+0x44b/0x5d0
[   74.904570][ T5361]  report_bug+0x2be/0x4f0
[   74.906646][ T5361]  ? ext4_xattr_inode_update_ref+0x44b/0x5d0
[   74.909700][ T5361]  ? ext4_xattr_inode_update_ref+0x44b/0x5d0
[   74.913489][ T5361]  ? ext4_xattr_inode_update_ref+0x44d/0x5d0
[   74.916430][ T5361]  handle_bug+0x84/0x160
[   74.918489][ T5361]  exc_invalid_op+0x1a/0x50
[   74.920566][ T5361]  asm_exc_invalid_op+0x1a/0x20
[   74.922722][ T5361] RIP: 0010:ext4_xattr_inode_update_ref+0x44b/0x5d0
[   74.925955][ T5361] Code: 78 40 4c 89 f8 48 c1 e8 03 80 3c 18 00 74 08 4c 89 ff e8 e8 2c 9d ff 49 8b 37 48 c7 c7 e0 f7 bf 8b 4c 89 ea e8 f6 bd fb fe 90 <0f> 0b 90 90 48 bb 00 00 00 00 00 fc ff df 4c 8b 74 24 20 4c 8b 6c
[   74.935143][ T5361] RSP: 0018:ffffc9000d3b72e0 EFLAGS: 00010246
[   74.937624][ T5361] RAX: fc1eb33c79bf5600 RBX: dffffc0000000000 RCX: 0000000000100000
[   74.940955][ T5361] RDX: ffffc9000e492000 RSI: 0000000000008824 RDI: 0000000000008825
[   74.944891][ T5361] RBP: ffffc9000d3b73d0 R08: 0000000000000003 R09: 0000000000000004
[   74.948553][ T5361] R10: dffffc0000000000 R11: fffffbfff1c3a22c R12: ffffc9000d3b7340
[   74.952020][ T5361] R13: ffffffffffffffff R14: 00000000ffffffff R15: ffff888043359f88
[   74.955579][ T5361]  ? __pfx_ext4_xattr_inode_update_ref+0x10/0x10
[   74.958699][ T5361]  ? __kasan_kmalloc+0x93/0xb0
[   74.961208][ T5361]  ? __ext4_journal_ensure_credits+0x30/0x450
[   74.963893][ T5361]  ext4_xattr_inode_dec_ref_all+0x867/0xda0
[   74.966405][ T5361]  ? __pfx___ext4_get_inode_loc+0x10/0x10
[   74.968746][ T5361]  ? __pfx_ext4_xattr_inode_dec_ref_all+0x10/0x10
[   74.971582][ T5361]  ? __ext4_journal_get_write_access+0x272/0x570
[   74.974811][ T5361]  ? __pfx___ext4_journal_get_write_access+0x10/0x10
[   74.978563][ T5361]  ext4_xattr_delete_inode+0xa4c/0xc10
[   74.981027][ T5361]  ? ext4_truncate+0xc2d/0x1100
[   74.983177][ T5361]  ? __pfx_ext4_xattr_delete_inode+0x10/0x10
[   74.985899][ T5361]  ext4_evict_inode+0xac9/0xee0
[   74.987918][ T5361]  ? __pfx_ext4_evict_inode+0x10/0x10
[   74.990219][ T5361]  ? do_raw_spin_unlock+0x4d/0x240
[   74.992437][ T5361]  ? __pfx_ext4_evict_inode+0x10/0x10
[   74.994882][ T5361]  evict+0x504/0x9c0
[   74.997093][ T5361]  ? __pfx_evict+0x10/0x10
[   74.999299][ T5361]  ? do_raw_spin_unlock+0x4d/0x240
[   75.001753][ T5361]  ? _raw_spin_unlock+0x28/0x50
[   75.003796][ T5361]  ? iput+0x6d8/0x9d0
[   75.005724][ T5361]  ext4_orphan_cleanup+0xc20/0x1460
[   75.008114][ T5361]  ? __pfx_ext4_orphan_cleanup+0x10/0x10
[   75.010681][ T5361]  ? ext4_register_li_request+0x259/0x720
[   75.013441][ T5361]  ? errseq_check_and_advance+0x66/0x120
[   75.017062][ T5361]  ext4_fill_super+0x57df/0x6090
[   75.020147][ T5361]  ? __pfx_ext4_fill_super+0x10/0x10
[   75.022459][ T5361]  ? set_blocksize+0x21e/0x500
[   75.024601][ T5361]  ? sb_set_blocksize+0x104/0x180
[   75.026907][ T5361]  ? setup_bdev_super+0x4c1/0x5b0
[   75.029197][ T5361]  get_tree_bdev_flags+0x40e/0x4d0
[   75.031520][ T5361]  ? __pfx_ext4_fill_super+0x10/0x10
[   75.033929][ T5361]  ? __pfx_get_tree_bdev_flags+0x10/0x10
[   75.036632][ T5361]  vfs_get_tree+0x92/0x2b0
[   75.039317][ T5361]  do_new_mount+0x2a2/0x9e0
[   75.042013][ T5361]  ? ns_capable+0x8a/0xf0
[   75.043977][ T5361]  ? __pfx_do_new_mount+0x10/0x10
[   75.046028][ T5361]  ? path_mount+0x61c/0xfe0
[   75.047859][ T5361]  ? user_path_at+0x44/0x60
[   75.049750][ T5361]  __se_sys_mount+0x317/0x410
[   75.051651][ T5361]  ? __pfx___se_sys_mount+0x10/0x10
[   75.053739][ T5361]  ? do_syscall_64+0xbe/0x3b0
[   75.055610][ T5361]  ? __x64_sys_mount+0x20/0xc0
[   75.057606][ T5361]  do_syscall_64+0xfa/0x3b0
[   75.060366][ T5361]  ? lockdep_hardirqs_on+0x9c/0x150
[   75.063756][ T5361]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   75.066896][ T5361]  ? clear_bhb_loop+0x60/0xb0
[   75.069086][ T5361]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   75.071966][ T5361] RIP: 0033:0x7f725ed9034a
[   75.073982][ T5361] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   75.082813][ T5361] RSP: 002b:00007f725fc57e68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[   75.087684][ T5361] RAX: ffffffffffffffda RBX: 00007f725fc57ef0 RCX: 00007f725ed9034a
[   75.091621][ T5361] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007f725fc57eb0
[   75.095512][ T5361] RBP: 0000200000000180 R08: 00007f725fc57ef0 R09: 000000000080078b
[   75.099813][ T5361] R10: 000000000080078b R11: 0000000000000246 R12: 00002000000001c0
[   75.103360][ T5361] R13: 00007f725fc57eb0 R14: 0000000000000473 R15: 0000200000000680
[   75.106928][ T5361]  </TASK>
[   75.108735][ T5361] Kernel Offset: disabled
[   75.110636][ T5361] Rebooting in 86400 seconds..