program:
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800700, &(0x7f00000007c0)={[{@nombcache}, {@errors_remount}, {@discard}, {@nouid32}, {@resgid}, {@acl}, {@init_itable_val={'init_itable', 0x3d, 0x3}}]}, 0x1, 0x46f, &(0x7f0000000bc0)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fchown(r0, 0x0, 0x0)
r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000540)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], &(0x7f0000000040)='GPL\x00'}, 0x94)
r2 = socket$netlink(0x10, 0x3, 0x0)
writev(r2, &(0x7f00000003c0)=[{&(0x7f0000000180)="390000001300034700bb65e1c3e4ffff01000000010000005600000025000000190004000400000007fd17e5ffff0800040000000000000000", 0x39}], 0x1)
r3 = socket$inet6(0x10, 0x3, 0x0)
sendmsg(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000001500)="5500000020007fafb72d13b2a4a271930a000000030b43036c26236925000d00fe7f0000bd2dca8a9848a3c728f1c46b7b31afdc1338d509000000000100005ae583de0dd7d8319f98af84fda542e718f94b929ade", 0x55}], 0x1}, 0x0)
r4 = socket$inet6(0xa, 0x3, 0xff)
r5 = dup2(r4, r4)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
madvise(&(0x7f0000000000/0x2000)=nil, 0x8000000, 0x19)
r7 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
ioctl$sock_ifreq(r7, 0x8910, &(0x7f0000000000)={'veth0_vlan\x00', @ifru_ivalue=0x7})
ioctl$sock_netdev_private(r7, 0x8948, &(0x7f0000000000))
sendmsg$IPSET_CMD_ADD(r6, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000080)=ANY=[], 0x8c}, 0x1, 0x0, 0x0, 0x10000182}, 0x0)
ioctl$FBIOPUT_VSCREENINFO(0xffffffffffffffff, 0x4601, 0x0)
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r8, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000500)=ANY=[@ANYBLOB="48000000020601080000000000000000000000000d0003006c6973743a736574000000000500050000000000050001000700000005000400000000000900020073797a32"], 0x48}}, 0x0)
sendmsg$IPSET_CMD_TEST(r8, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000080)=ANY=[@ANYBLOB="400000000b06030000000000000000000200000605000100070000000900020073797a3200000000180007800900120073797a3100000000080006"], 0x40}, 0x1, 0x0, 0x0, 0x44080}, 0x4000002)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
sendmsg$IPSET_CMD_ADD(r6, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x10000082}, 0x4000080)
sendmmsg$unix(r5, &(0x7f0000000000)=[{{&(0x7f00000002c0)=@abs, 0x6e, 0x0, 0x0, 0x0, 0x0, 0x2000040}}], 0x1, 0xbb5a2ddc1da91ab8)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r1, 0x5, 0x14, 0x0, &(0x7f0000000100)="259a53f271a76d2608fff74588a80a3888ca2f15", 0x0, 0xd11, 0x2a0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)

[   85.405435][ T5296] Bluetooth: hci0: command tx timeout
[   85.472533][ T5318] loop0: detected capacity change from 0 to 512
[   85.507407][ T5318] ------------[ cut here ]------------
[   85.509782][ T5318] EA inode 11 i_nlink=0
[   85.509794][ T5318] WARNING: fs/ext4/xattr.c:1059 at ext4_xattr_inode_update_ref+0x4c9/0x5a0, CPU#0: syz.0.0/5318
[   85.516517][ T5318] Modules linked in:
[   85.518361][ T5318] CPU: 0 UID: 0 PID: 5318 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) 
[   85.522193][ T5318] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[   85.526969][ T5318] RIP: 0010:ext4_xattr_inode_update_ref+0x511/0x5a0
[   85.530056][ T5318] Code: 74 08 4c 89 ef e8 7f 97 96 ff 4d 8b 6d 00 48 b8 00 00 00 00 00 fc ff df 41 0f b6 04 06 84 c0 75 77 41 8b 17 4c 89 e7 4c 89 ee <67> 48 0f b9 3a 4c 8b 6c 24 28 e9 59 fe ff ff e8 bb 6a 12 09 44 89
[   85.538711][ T5318] RSP: 0018:ffffc9000de77240 EFLAGS: 00010246
[   85.541437][ T5318] RAX: 0000000000000000 RBX: 00000000ffffffff RCX: dffffc0000000000
[   85.545033][ T5318] RDX: 0000000000000000 RSI: 000000000000000b RDI: ffffffff9017fcf0
[   85.548607][ T5318] RBP: ffffc9000de77330 R08: ffff8880472e77af R09: 1ffff11008e5cef5
[   85.551874][ T5318] R10: dffffc0000000000 R11: ffffed1008e5cef6 R12: ffffffff9017fcf0
[   85.555651][ T5318] R13: 000000000000000b R14: 1ffff11008e5cec0 R15: ffff8880472e7600
[   85.559095][ T5318] FS:  00007fe456b7d6c0(0000) GS:ffff88808ca67000(0000) knlGS:0000000000000000
[   85.562815][ T5318] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   85.566002][ T5318] CR2: 00007f1c92b909c0 CR3: 0000000044388000 CR4: 0000000000352ef0
[   85.569472][ T5318] Call Trace:
[   85.570917][ T5318]  <TASK>
[   85.572200][ T5318]  ? __pfx_ext4_xattr_inode_update_ref+0x10/0x10
[   85.575010][ T5318]  ? __kmalloc_cache_noprof+0x31c/0x660
[   85.577385][ T5318]  ? ext4_xattr_inode_dec_ref_all+0x4d2/0xe40
[   85.579895][ T5318]  ? __ext4_journal_ensure_credits+0x30/0x450
[   85.582617][ T5318]  ext4_xattr_inode_dec_ref_all+0x8cb/0xe40
[   85.585232][ T5318]  ? __mark_inode_dirty+0xb66/0x1470
[   85.587388][ T5318]  ? __pfx_ext4_xattr_inode_dec_ref_all+0x10/0x10
[   85.590438][ T5318]  ? __ext4_journal_get_write_access+0x27f/0x590
[   85.593183][ T5318]  ? __pfx___ext4_journal_get_write_access+0x10/0x10
[   85.596509][ T5318]  ext4_xattr_delete_inode+0xb45/0xd10
[   85.598868][ T5318]  ? __pfx_ext4_xattr_delete_inode+0x10/0x10
[   85.601423][ T5318]  ext4_evict_inode+0xa63/0xeb0
[   85.603575][ T5318]  ? __pfx_ext4_evict_inode+0x10/0x10
[   85.606245][ T5318]  ? do_raw_spin_unlock+0x4d/0x210
[   85.608730][ T5318]  ? __pfx_ext4_evict_inode+0x10/0x10
[   85.611220][ T5318]  evict+0x61e/0xb10
[   85.613110][ T5318]  ? __pfx_evict+0x10/0x10
[   85.615227][ T5318]  ? _raw_spin_unlock+0x28/0x50
[   85.617426][ T5318]  ? iput+0xb25/0xe80
[   85.618957][ T5318]  ext4_orphan_cleanup+0xc38/0x1470
[   85.620914][ T5318]  ? __pfx_ext4_orphan_cleanup+0x10/0x10
[   85.623261][ T5318]  ? ext4_register_li_request+0x640/0x720
[   85.625922][ T5318]  ? errseq_check_and_advance+0x66/0x120
[   85.628386][ T5318]  ext4_fill_super+0x59ff/0x6320
[   85.630478][ T5318]  ? __pfx_ext4_fill_super+0x10/0x10
[   85.632619][ T5318]  ? snprintf+0xe8/0x140
[   85.634583][ T5318]  ? __pfx_snprintf+0x10/0x10
[   85.636763][ T5318]  ? set_blocksize+0x1c9/0x440
[   85.638987][ T5318]  ? sb_set_blocksize+0x155/0x240
[   85.641308][ T5318]  ? setup_bdev_super+0x4c1/0x5b0
[   85.643760][ T5318]  get_tree_bdev_flags+0x431/0x4f0
[   85.646058][ T5318]  ? __pfx_ext4_fill_super+0x10/0x10
[   85.648525][ T5318]  ? __pfx_get_tree_bdev_flags+0x10/0x10
[   85.651053][ T5318]  vfs_get_tree+0x92/0x2a0
[   85.653041][ T5318]  do_new_mount+0x341/0xd30
[   85.655205][ T5318]  ? apparmor_capable+0x137/0x1a0
[   85.657510][ T5318]  ? __pfx_do_new_mount+0x10/0x10
[   85.659781][ T5318]  ? ns_capable+0x89/0xe0
[   85.661785][ T5318]  ? user_path_at+0xd4/0x160
[   85.664047][ T5318]  __se_sys_mount+0x31d/0x420
[   85.666128][ T5318]  ? __pfx___se_sys_mount+0x10/0x10
[   85.668489][ T5318]  ? __x64_sys_mount+0x20/0xc0
[   85.670697][ T5318]  do_syscall_64+0x14d/0xf80
[   85.672580][ T5318]  ? trace_irq_disable+0x3b/0x150
[   85.675014][ T5318]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   85.677775][ T5318]  ? clear_bhb_loop+0x40/0x90
[   85.679928][ T5318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   85.682664][ T5318] RIP: 0033:0x7fe455d9d20a
[   85.684769][ T5318] Code: 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   85.693839][ T5318] RSP: 002b:00007fe456b7ce58 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[   85.697583][ T5318] RAX: ffffffffffffffda RBX: 00007fe456b7cee0 RCX: 00007fe455d9d20a
[   85.701161][ T5318] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007fe456b7cea0
[   85.705260][ T5318] RBP: 0000200000000180 R08: 00007fe456b7cee0 R09: 0000000000800700
[   85.708732][ T5318] R10: 0000000000800700 R11: 0000000000000246 R12: 00002000000001c0
[   85.712248][ T5318] R13: 00007fe456b7cea0 R14: 000000000000046f R15: 000000000000002c
[   85.715796][ T5318]  </TASK>
[   85.717232][ T5318] Kernel panic - not syncing: kernel: panic_on_warn set ...
[   85.720437][ T5318] CPU: 0 UID: 0 PID: 5318 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) 
[   85.724447][ T5318] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[   85.728364][ T5318] Call Trace:
[   85.729767][ T5318]  <TASK>
[   85.731010][ T5318]  vpanic+0x56c/0xa60
[   85.732520][ T5318]  ? __pfx__printk+0x10/0x10
[   85.734627][ T5318]  ? __pfx_vpanic+0x10/0x10
[   85.736678][ T5318]  ? is_bpf_text_address+0x292/0x2b0
[   85.739213][ T5318]  ? is_bpf_text_address+0x26/0x2b0
[   85.741545][ T5318]  panic+0xc5/0xd0
[   85.743245][ T5318]  ? __pfx_panic+0x10/0x10
[   85.745406][ T5318]  __warn+0x315/0x4f0
[   85.747069][ T5318]  ? ext4_xattr_inode_update_ref+0x4c9/0x5a0
[   85.749734][ T5318]  ? ext4_xattr_inode_update_ref+0x4c9/0x5a0
[   85.752393][ T5318]  __report_bug+0x29a/0x540
[   85.754509][ T5318]  ? ext4_get_group_desc+0x434/0x4e0
[   85.757019][ T5318]  ? ext4_xattr_inode_update_ref+0x4c9/0x5a0
[   85.759536][ T5318]  ? __pfx___report_bug+0x10/0x10
[   85.761629][ T5318]  ? set_normalized_timespec64+0xf0/0x1a0
[   85.764184][ T5318]  ? __ext4_journal_get_write_access+0x84/0x590
[   85.767016][ T5318]  report_bug_entry+0x19a/0x290
[   85.769141][ T5318]  ? ext4_xattr_inode_update_ref+0x511/0x5a0
[   85.771649][ T5318]  ? ext4_xattr_inode_update_ref+0x516/0x5a0
[   85.774197][ T5318]  handle_bug+0xca/0x200
[   85.776150][ T5318]  exc_invalid_op+0x1a/0x50
[   85.778206][ T5318]  asm_exc_invalid_op+0x1a/0x20
[   85.780219][ T5318] RIP: 0010:ext4_xattr_inode_update_ref+0x511/0x5a0
[   85.783047][ T5318] Code: 74 08 4c 89 ef e8 7f 97 96 ff 4d 8b 6d 00 48 b8 00 00 00 00 00 fc ff df 41 0f b6 04 06 84 c0 75 77 41 8b 17 4c 89 e7 4c 89 ee <67> 48 0f b9 3a 4c 8b 6c 24 28 e9 59 fe ff ff e8 bb 6a 12 09 44 89
[   85.790957][ T5318] RSP: 0018:ffffc9000de77240 EFLAGS: 00010246
[   85.793538][ T5318] RAX: 0000000000000000 RBX: 00000000ffffffff RCX: dffffc0000000000
[   85.796924][ T5318] RDX: 0000000000000000 RSI: 000000000000000b RDI: ffffffff9017fcf0
[   85.800412][ T5318] RBP: ffffc9000de77330 R08: ffff8880472e77af R09: 1ffff11008e5cef5
[   85.803849][ T5318] R10: dffffc0000000000 R11: ffffed1008e5cef6 R12: ffffffff9017fcf0
[   85.807262][ T5318] R13: 000000000000000b R14: 1ffff11008e5cec0 R15: ffff8880472e7600
[   85.810735][ T5318]  ? __pfx_ext4_xattr_inode_update_ref+0x10/0x10
[   85.813550][ T5318]  ? __kmalloc_cache_noprof+0x31c/0x660
[   85.816093][ T5318]  ? ext4_xattr_inode_dec_ref_all+0x4d2/0xe40
[   85.818838][ T5318]  ? __ext4_journal_ensure_credits+0x30/0x450
[   85.821538][ T5318]  ext4_xattr_inode_dec_ref_all+0x8cb/0xe40
[   85.824116][ T5318]  ? __mark_inode_dirty+0xb66/0x1470
[   85.826304][ T5318]  ? __pfx_ext4_xattr_inode_dec_ref_all+0x10/0x10
[   85.829007][ T5318]  ? __ext4_journal_get_write_access+0x27f/0x590
[   85.831773][ T5318]  ? __pfx___ext4_journal_get_write_access+0x10/0x10
[   85.834595][ T5318]  ext4_xattr_delete_inode+0xb45/0xd10
[   85.836983][ T5318]  ? __pfx_ext4_xattr_delete_inode+0x10/0x10
[   85.839655][ T5318]  ext4_evict_inode+0xa63/0xeb0
[   85.841848][ T5318]  ? __pfx_ext4_evict_inode+0x10/0x10
[   85.844160][ T5318]  ? do_raw_spin_unlock+0x4d/0x210
[   85.846352][ T5318]  ? __pfx_ext4_evict_inode+0x10/0x10
[   85.848593][ T5318]  evict+0x61e/0xb10
[   85.850331][ T5318]  ? __pfx_evict+0x10/0x10
[   85.852211][ T5318]  ? _raw_spin_unlock+0x28/0x50
[   85.854645][ T5318]  ? iput+0xb25/0xe80
[   85.856788][ T5318]  ext4_orphan_cleanup+0xc38/0x1470
[   85.859156][ T5318]  ? __pfx_ext4_orphan_cleanup+0x10/0x10
[   85.861694][ T5318]  ? ext4_register_li_request+0x640/0x720
[   85.864067][ T5318]  ? errseq_check_and_advance+0x66/0x120
[   85.866538][ T5318]  ext4_fill_super+0x59ff/0x6320
[   85.868678][ T5318]  ? __pfx_ext4_fill_super+0x10/0x10
[   85.871035][ T5318]  ? snprintf+0xe8/0x140
[   85.872858][ T5318]  ? __pfx_snprintf+0x10/0x10
[   85.874985][ T5318]  ? set_blocksize+0x1c9/0x440
[   85.877010][ T5318]  ? sb_set_blocksize+0x155/0x240
[   85.879192][ T5318]  ? setup_bdev_super+0x4c1/0x5b0
[   85.881389][ T5318]  get_tree_bdev_flags+0x431/0x4f0
[   85.883558][ T5318]  ? __pfx_ext4_fill_super+0x10/0x10
[   85.885872][ T5318]  ? __pfx_get_tree_bdev_flags+0x10/0x10
[   85.888317][ T5318]  vfs_get_tree+0x92/0x2a0
[   85.890275][ T5318]  do_new_mount+0x341/0xd30
[   85.892259][ T5318]  ? apparmor_capable+0x137/0x1a0
[   85.894457][ T5318]  ? __pfx_do_new_mount+0x10/0x10
[   85.896596][ T5318]  ? ns_capable+0x89/0xe0
[   85.898443][ T5318]  ? user_path_at+0xd4/0x160
[   85.900429][ T5318]  __se_sys_mount+0x31d/0x420
[   85.902498][ T5318]  ? __pfx___se_sys_mount+0x10/0x10
[   85.904704][ T5318]  ? __x64_sys_mount+0x20/0xc0
[   85.906387][ T5318]  do_syscall_64+0x14d/0xf80
[   85.908175][ T5318]  ? trace_irq_disable+0x3b/0x150
[   85.910212][ T5318]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   85.912606][ T5318]  ? clear_bhb_loop+0x40/0x90
[   85.914606][ T5318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   85.916909][ T5318] RIP: 0033:0x7fe455d9d20a
[   85.918643][ T5318] Code: 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   85.926955][ T5318] RSP: 002b:00007fe456b7ce58 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[   85.930666][ T5318] RAX: ffffffffffffffda RBX: 00007fe456b7cee0 RCX: 00007fe455d9d20a
[   85.934188][ T5318] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007fe456b7cea0
[   85.937647][ T5318] RBP: 0000200000000180 R08: 00007fe456b7cee0 R09: 0000000000800700
[   85.941059][ T5318] R10: 0000000000800700 R11: 0000000000000246 R12: 00002000000001c0
[   85.944592][ T5318] R13: 00007fe456b7cea0 R14: 000000000000046f R15: 000000000000002c
[   85.948074][ T5318]  </TASK>
[   85.949938][ T5318] Kernel Offset: disabled
[   85.951889][ T5318] Rebooting in 86400 seconds..