program:
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xe, 0x4, 0x8, 0xa, 0x0, 0xffffffffffffffff, 0x1}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002300000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800718, &(0x7f0000000200)={[{@nodioread_nolock}, {@journal_dev={'journal_dev', 0x3d, 0x40000ff}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5c}}, {@nouid32}, {@resgid}, {@acl}, {@init_itable_val={'init_itable', 0x3d, 0x8d55}}]}, 0x0, 0x46f, &(0x7f0000001040)="$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")

[   75.478476][ T4681] Bluetooth: hci0: command tx timeout
[   75.546434][ T5335] loop0: detected capacity change from 0 to 512
[   75.631285][ T5335] ------------[ cut here ]------------
[   75.634001][ T5335] EA inode 11 i_nlink=2
[   75.634017][ T5335] WARNING: fs/ext4/xattr.c:1058 at ext4_xattr_inode_update_ref+0x494/0x570, CPU#0: syz.0.0/5335
[   75.641358][ T5335] Modules linked in:
[   75.643316][ T5335] CPU: 0 UID: 0 PID: 5335 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) 
[   75.647485][ T5335] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   75.652246][ T5335] RIP: 0010:ext4_xattr_inode_update_ref+0x4dc/0x570
[   75.655211][ T5335] Code: 74 08 4c 89 ef e8 64 9d 9a ff 4d 8b 6d 00 48 b8 00 00 00 00 00 fc ff df 41 0f b6 04 06 84 c0 75 77 41 8b 17 4c 89 e7 4c 89 ee <67> 48 0f b9 3a 4c 8b 6c 24 28 e9 bd fe ff ff e8 d0 7c cd 08 44 89
[   75.663716][ T5335] RSP: 0018:ffffc9000e12f100 EFLAGS: 00010246
[   75.666483][ T5335] RAX: 0000000000000000 RBX: 1ffff110000a6561 RCX: dffffc0000000000
[   75.670153][ T5335] RDX: 0000000000000002 RSI: 000000000000000b RDI: ffffffff8f88c280
[   75.673675][ T5335] RBP: ffffc9000e12f1f8 R08: ffff888000532b0f R09: 1ffff110000a6561
[   75.677396][ T5335] R10: dffffc0000000000 R11: ffffed10000a6562 R12: ffffffff8f88c280
[   75.680910][ T5335] R13: 000000000000000b R14: 1ffff110000a652c R15: ffff888000532960
[   75.684143][ T5335] FS:  00007fdb438aa6c0(0000) GS:ffff88808d416000(0000) knlGS:0000000000000000
[   75.688030][ T5335] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   75.690746][ T5335] CR2: 00007ffda894dd08 CR3: 0000000041089000 CR4: 0000000000352ef0
[   75.693998][ T5335] Call Trace:
[   75.695449][ T5335]  <TASK>
[   75.696829][ T5335]  ? __pfx_inode_set_ctime_to_ts+0x10/0x10
[   75.699952][ T5335]  ? __pfx_ext4_xattr_inode_update_ref+0x10/0x10
[   75.702643][ T5335]  ? ext4_xattr_inode_iget+0x3d2/0x5f0
[   75.705387][ T5335]  ext4_xattr_set_entry+0xabb/0x1e20
[   75.707958][ T5335]  ext4_xattr_ibody_set+0x254/0x6a0
[   75.710396][ T5335]  ext4_expand_extra_isize_ea+0x13ad/0x1ea0
[   75.713065][ T5335]  __ext4_expand_extra_isize+0x30d/0x400
[   75.715703][ T5335]  __ext4_mark_inode_dirty+0x45c/0x6e0
[   75.718701][ T5335]  ext4_evict_inode+0x79c/0xe60
[   75.721093][ T5335]  ? __pfx_ext4_evict_inode+0x10/0x10
[   75.723472][ T5335]  ? do_raw_spin_unlock+0x4d/0x240
[   75.725729][ T5335]  ? __pfx_ext4_evict_inode+0x10/0x10
[   75.728249][ T5335]  evict+0x5f4/0xae0
[   75.730235][ T5335]  ? __pfx_evict+0x10/0x10
[   75.732145][ T5335]  ? _raw_spin_unlock+0x28/0x50
[   75.734263][ T5335]  ? iput+0xcc6/0x1030
[   75.735982][ T5335]  ext4_orphan_cleanup+0xc20/0x1460
[   75.738450][ T5335]  ? __pfx_ext4_orphan_cleanup+0x10/0x10
[   75.741100][ T5335]  ? ext4_register_li_request+0x640/0x720
[   75.743680][ T5335]  ? errseq_check_and_advance+0x66/0x120
[   75.745973][ T5335]  ext4_fill_super+0x58a1/0x6160
[   75.748209][ T5335]  ? __pfx_ext4_fill_super+0x10/0x10
[   75.750388][ T5335]  ? snprintf+0xda/0x120
[   75.752102][ T5335]  ? __pfx_snprintf+0x10/0x10
[   75.754074][ T5335]  ? set_blocksize+0x21e/0x500
[   75.756014][ T5335]  ? sb_set_blocksize+0x155/0x240
[   75.758135][ T5335]  ? setup_bdev_super+0x4c1/0x5b0
[   75.760388][ T5335]  get_tree_bdev_flags+0x40e/0x4d0
[   75.762656][ T5335]  ? __pfx_ext4_fill_super+0x10/0x10
[   75.764972][ T5335]  ? __pfx_get_tree_bdev_flags+0x10/0x10
[   75.767646][ T5335]  vfs_get_tree+0x92/0x2a0
[   75.769726][ T5335]  do_new_mount+0x302/0xa10
[   75.771786][ T5335]  ? apparmor_capable+0x137/0x1a0
[   75.774094][ T5335]  ? __pfx_do_new_mount+0x10/0x10
[   75.776386][ T5335]  ? ns_capable+0x8a/0xf0
[   75.778436][ T5335]  ? kmem_cache_free+0x197/0x620
[   75.780836][ T5335]  __se_sys_mount+0x313/0x410
[   75.783061][ T5335]  ? __pfx___se_sys_mount+0x10/0x10
[   75.785381][ T5335]  ? __x64_sys_mount+0x20/0xc0
[   75.787806][ T5335]  do_syscall_64+0xec/0xf80
[   75.789896][ T5335]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   75.792648][ T5335]  ? trace_irq_disable+0x37/0x100
[   75.794879][ T5335]  ? clear_bhb_loop+0x60/0xb0
[   75.797095][ T5335]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   75.799857][ T5335] RIP: 0033:0x7fdb42990f6a
[   75.802342][ T5335] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   75.811522][ T5335] RSP: 002b:00007fdb438a9e68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[   75.815770][ T5335] RAX: ffffffffffffffda RBX: 00007fdb438a9ef0 RCX: 00007fdb42990f6a
[   75.819668][ T5335] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007fdb438a9eb0
[   75.823374][ T5335] RBP: 0000200000000180 R08: 00007fdb438a9ef0 R09: 0000000000800718
[   75.826867][ T5335] R10: 0000000000800718 R11: 0000000000000246 R12: 00002000000001c0
[   75.830923][ T5335] R13: 00007fdb438a9eb0 R14: 000000000000046f R15: 0000200000000200
[   75.835005][ T5335]  </TASK>
[   75.836550][ T5335] Kernel panic - not syncing: kernel: panic_on_warn set ...
[   75.839900][ T5335] CPU: 0 UID: 0 PID: 5335 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) 
[   75.843962][ T5335] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   75.849321][ T5335] Call Trace:
[   75.851034][ T5335]  <TASK>
[   75.852486][ T5335]  vpanic+0x1e0/0x670
[   75.854385][ T5335]  panic+0xb9/0xc0
[   75.856101][ T5335]  ? __pfx_panic+0x10/0x10
[   75.858187][ T5335]  __warn+0x317/0x4b0
[   75.860054][ T5335]  ? ext4_xattr_inode_update_ref+0x494/0x570
[   75.862720][ T5335]  ? ext4_xattr_inode_update_ref+0x494/0x570
[   75.865449][ T5335]  __report_bug+0x288/0x500
[   75.867799][ T5335]  ? ext4_xattr_inode_update_ref+0x494/0x570
[   75.870610][ T5335]  ? __pfx___report_bug+0x10/0x10
[   75.872783][ T5335]  ? __ext4_get_inode_loc+0x69a/0x1040
[   75.875227][ T5335]  ? ext4_fc_track_inode+0x133/0xb20
[   75.877549][ T5335]  ? set_normalized_timespec64+0xf0/0x1a0
[   75.880126][ T5335]  ? __ext4_journal_get_write_access+0x84/0x570
[   75.882929][ T5335]  report_bug_entry+0x19a/0x290
[   75.884997][ T5335]  ? ext4_xattr_inode_update_ref+0x4dc/0x570
[   75.887708][ T5335]  ? ext4_xattr_inode_update_ref+0x4e1/0x570
[   75.890399][ T5335]  handle_bug+0xca/0x200
[   75.892303][ T5335]  exc_invalid_op+0x1a/0x50
[   75.894416][ T5335]  asm_exc_invalid_op+0x1a/0x20
[   75.896640][ T5335] RIP: 0010:ext4_xattr_inode_update_ref+0x4dc/0x570
[   75.899671][ T5335] Code: 74 08 4c 89 ef e8 64 9d 9a ff 4d 8b 6d 00 48 b8 00 00 00 00 00 fc ff df 41 0f b6 04 06 84 c0 75 77 41 8b 17 4c 89 e7 4c 89 ee <67> 48 0f b9 3a 4c 8b 6c 24 28 e9 bd fe ff ff e8 d0 7c cd 08 44 89
[   75.908306][ T5335] RSP: 0018:ffffc9000e12f100 EFLAGS: 00010246
[   75.911344][ T5335] RAX: 0000000000000000 RBX: 1ffff110000a6561 RCX: dffffc0000000000
[   75.914808][ T5335] RDX: 0000000000000002 RSI: 000000000000000b RDI: ffffffff8f88c280
[   75.917982][ T5335] RBP: ffffc9000e12f1f8 R08: ffff888000532b0f R09: 1ffff110000a6561
[   75.921246][ T5335] R10: dffffc0000000000 R11: ffffed10000a6562 R12: ffffffff8f88c280
[   75.924562][ T5335] R13: 000000000000000b R14: 1ffff110000a652c R15: ffff888000532960
[   75.927938][ T5335]  ? __pfx_inode_set_ctime_to_ts+0x10/0x10
[   75.930473][ T5335]  ? __pfx_ext4_xattr_inode_update_ref+0x10/0x10
[   75.933316][ T5335]  ? ext4_xattr_inode_iget+0x3d2/0x5f0
[   75.935816][ T5335]  ext4_xattr_set_entry+0xabb/0x1e20
[   75.938431][ T5335]  ext4_xattr_ibody_set+0x254/0x6a0
[   75.940742][ T5335]  ext4_expand_extra_isize_ea+0x13ad/0x1ea0
[   75.943389][ T5335]  __ext4_expand_extra_isize+0x30d/0x400
[   75.945962][ T5335]  __ext4_mark_inode_dirty+0x45c/0x6e0
[   75.948507][ T5335]  ext4_evict_inode+0x79c/0xe60
[   75.950850][ T5335]  ? __pfx_ext4_evict_inode+0x10/0x10
[   75.953211][ T5335]  ? do_raw_spin_unlock+0x4d/0x240
[   75.955418][ T5335]  ? __pfx_ext4_evict_inode+0x10/0x10
[   75.957822][ T5335]  evict+0x5f4/0xae0
[   75.959569][ T5335]  ? __pfx_evict+0x10/0x10
[   75.961569][ T5335]  ? _raw_spin_unlock+0x28/0x50
[   75.963740][ T5335]  ? iput+0xcc6/0x1030
[   75.965575][ T5335]  ext4_orphan_cleanup+0xc20/0x1460
[   75.967855][ T5335]  ? __pfx_ext4_orphan_cleanup+0x10/0x10
[   75.970358][ T5335]  ? ext4_register_li_request+0x640/0x720
[   75.972826][ T5335]  ? errseq_check_and_advance+0x66/0x120
[   75.975345][ T5335]  ext4_fill_super+0x58a1/0x6160
[   75.977569][ T5335]  ? __pfx_ext4_fill_super+0x10/0x10
[   75.980000][ T5335]  ? snprintf+0xda/0x120
[   75.981982][ T5335]  ? __pfx_snprintf+0x10/0x10
[   75.984017][ T5335]  ? set_blocksize+0x21e/0x500
[   75.986210][ T5335]  ? sb_set_blocksize+0x155/0x240
[   75.988455][ T5335]  ? setup_bdev_super+0x4c1/0x5b0
[   75.990656][ T5335]  get_tree_bdev_flags+0x40e/0x4d0
[   75.992826][ T5335]  ? __pfx_ext4_fill_super+0x10/0x10
[   75.994763][ T5335]  ? __pfx_get_tree_bdev_flags+0x10/0x10
[   75.997048][ T5335]  vfs_get_tree+0x92/0x2a0
[   75.998880][ T5335]  do_new_mount+0x302/0xa10
[   76.000824][ T5335]  ? apparmor_capable+0x137/0x1a0
[   76.003048][ T5335]  ? __pfx_do_new_mount+0x10/0x10
[   76.005292][ T5335]  ? ns_capable+0x8a/0xf0
[   76.007269][ T5335]  ? kmem_cache_free+0x197/0x620
[   76.009472][ T5335]  __se_sys_mount+0x313/0x410
[   76.011581][ T5335]  ? __pfx___se_sys_mount+0x10/0x10
[   76.013997][ T5335]  ? __x64_sys_mount+0x20/0xc0
[   76.016026][ T5335]  do_syscall_64+0xec/0xf80
[   76.018054][ T5335]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   76.020679][ T5335]  ? trace_irq_disable+0x37/0x100
[   76.022932][ T5335]  ? clear_bhb_loop+0x60/0xb0
[   76.024961][ T5335]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   76.027561][ T5335] RIP: 0033:0x7fdb42990f6a
[   76.029683][ T5335] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   76.038607][ T5335] RSP: 002b:00007fdb438a9e68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[   76.042232][ T5335] RAX: ffffffffffffffda RBX: 00007fdb438a9ef0 RCX: 00007fdb42990f6a
[   76.045717][ T5335] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007fdb438a9eb0
[   76.049431][ T5335] RBP: 0000200000000180 R08: 00007fdb438a9ef0 R09: 0000000000800718
[   76.053208][ T5335] R10: 0000000000800718 R11: 0000000000000246 R12: 00002000000001c0
[   76.056838][ T5335] R13: 00007fdb438a9eb0 R14: 000000000000046f R15: 0000200000000200
[   76.060403][ T5335]  </TASK>
[   76.062178][ T5335] Kernel Offset: disabled
[   76.064099][ T5335] Rebooting in 86400 seconds..