program:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x60081, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100)=0x2) (async)
r1 = socket(0x2, 0x80805, 0x0) (async)
getsockopt$bt_hci(0xffffffffffffffff, 0x84, 0x0, &(0x7f0000003140)=""/4095, &(0x7f0000000000)=0xfff)
getsockopt$bt_hci(r1, 0x84, 0x82, &(0x7f0000000000)=""/4087, &(0x7f0000001080)=0xff7)
ioctl$TCSETS(r0, 0x40087101, &(0x7f0000000040)={0x1, 0x0, 0x0, 0x400000, 0x14, "3eccd8000000000000000010000000040100"}) (async)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800700, &(0x7f00000007c0)={[{@nodioread_nolock}, {@errors_remount}, {@min_batch_time={'min_batch_time', 0x3d, 0x4}}, {@nouid32}, {@resgid}, {@acl}, {@init_itable_val={'init_itable', 0x3d, 0x3}}]}, 0x1, 0x480, &(0x7f0000000200)="$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")

[   83.808434][ T5307] Bluetooth: hci0: command tx timeout
[   83.944332][ T5328] loop0: detected capacity change from 0 to 512
[   84.031013][ T5328] ------------[ cut here ]------------
[   84.034109][ T5328] EA inode 11 i_nlink=0
[   84.034122][ T5328] WARNING: fs/ext4/xattr.c:1059 at ext4_xattr_inode_update_ref+0x4c9/0x5a0, CPU#0: syz.0.0/5328
[   84.041516][ T5328] Modules linked in:
[   84.043338][ T5328] CPU: 0 UID: 0 PID: 5328 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) 
[   84.047775][ T5328] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[   84.052833][ T5328] RIP: 0010:ext4_xattr_inode_update_ref+0x511/0x5a0
[   84.055718][ T5328] Code: 74 08 4c 89 ef e8 9f 06 96 ff 4d 8b 6d 00 48 b8 00 00 00 00 00 fc ff df 41 0f b6 04 06 84 c0 75 77 41 8b 17 4c 89 e7 4c 89 ee <67> 48 0f b9 3a 4c 8b 6c 24 28 e9 59 fe ff ff e8 5b dc 14 09 44 89
[   84.065576][ T5328] RSP: 0018:ffffc9000e14f240 EFLAGS: 00010246
[   84.068656][ T5328] RAX: 0000000000000000 RBX: 00000000ffffffff RCX: dffffc0000000000
[   84.072247][ T5328] RDX: 0000000000000000 RSI: 000000000000000b RDI: ffffffff90187050
[   84.076007][ T5328] RBP: ffffc9000e14f330 R08: ffff8880479797bf R09: 1ffff11008f2f2f7
[   84.080015][ T5328] R10: dffffc0000000000 R11: ffffed1008f2f2f8 R12: ffffffff90187050
[   84.083480][ T5328] R13: 000000000000000b R14: 1ffff11008f2f2c2 R15: ffff888047979610
[   84.086822][ T5328] FS:  00007fec413e26c0(0000) GS:ffff88808ca55000(0000) knlGS:0000000000000000
[   84.092335][ T5328] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   84.095430][ T5328] CR2: 00007fd1ae281000 CR3: 000000001a948000 CR4: 0000000000352ef0
[   84.100002][ T5328] Call Trace:
[   84.101405][ T5328]  <TASK>
[   84.102846][ T5328]  ? __pfx_ext4_xattr_inode_update_ref+0x10/0x10
[   84.106199][ T5328]  ? __kmalloc_cache_noprof+0x31c/0x660
[   84.109096][ T5328]  ? ext4_xattr_inode_dec_ref_all+0x4d2/0xe40
[   84.112060][ T5328]  ? __ext4_journal_ensure_credits+0x30/0x450
[   84.114990][ T5328]  ext4_xattr_inode_dec_ref_all+0x8cb/0xe40
[   84.118120][ T5328]  ? __mark_inode_dirty+0xb66/0x1470
[   84.120916][ T5328]  ? __pfx_ext4_xattr_inode_dec_ref_all+0x10/0x10
[   84.124144][ T5328]  ? __ext4_journal_get_write_access+0x27f/0x590
[   84.126967][ T5328]  ? __pfx___ext4_journal_get_write_access+0x10/0x10
[   84.130218][ T5328]  ext4_xattr_delete_inode+0xb45/0xd10
[   84.133228][ T5328]  ? __pfx_ext4_xattr_delete_inode+0x10/0x10
[   84.136228][ T5328]  ext4_evict_inode+0xa63/0xeb0
[   84.138613][ T5328]  ? __pfx_ext4_evict_inode+0x10/0x10
[   84.140919][ T5328]  ? do_raw_spin_unlock+0x4d/0x210
[   84.143375][ T5328]  ? __pfx_ext4_evict_inode+0x10/0x10
[   84.146139][ T5328]  evict+0x61e/0xb10
[   84.148189][ T5328]  ? __pfx_evict+0x10/0x10
[   84.150188][ T5328]  ? _raw_spin_unlock+0x28/0x50
[   84.152366][ T5328]  ? iput+0xb25/0xe80
[   84.154240][ T5328]  ext4_orphan_cleanup+0xc38/0x1470
[   84.156882][ T5328]  ? __pfx_ext4_orphan_cleanup+0x10/0x10
[   84.159636][ T5328]  ? ext4_register_li_request+0x640/0x720
[   84.162158][ T5328]  ? errseq_check_and_advance+0x66/0x120
[   84.164729][ T5328]  ext4_fill_super+0x59ff/0x6320
[   84.167284][ T5328]  ? __pfx_ext4_fill_super+0x10/0x10
[   84.169978][ T5328]  ? snprintf+0xe8/0x140
[   84.172222][ T5328]  ? __pfx_snprintf+0x10/0x10
[   84.174477][ T5328]  ? set_blocksize+0x1c9/0x440
[   84.176496][ T5328]  ? sb_set_blocksize+0x155/0x240
[   84.178950][ T5328]  ? setup_bdev_super+0x4c1/0x5b0
[   84.181118][ T5328]  get_tree_bdev_flags+0x431/0x4f0
[   84.184297][ T5328]  ? __pfx_ext4_fill_super+0x10/0x10
[   84.186945][ T5328]  ? __pfx_get_tree_bdev_flags+0x10/0x10
[   84.189613][ T5328]  vfs_get_tree+0x92/0x2a0
[   84.191682][ T5328]  do_new_mount+0x341/0xd30
[   84.194166][ T5328]  ? apparmor_capable+0x126/0x170
[   84.196512][ T5328]  ? __pfx_do_new_mount+0x10/0x10
[   84.199283][ T5328]  ? ns_capable+0x89/0xe0
[   84.201656][ T5328]  ? user_path_at+0xd4/0x160
[   84.204590][ T5328]  __se_sys_mount+0x31d/0x420
[   84.207268][ T5328]  ? __pfx___se_sys_mount+0x10/0x10
[   84.209635][ T5328]  ? __x64_sys_mount+0x20/0xc0
[   84.211872][ T5328]  do_syscall_64+0x14d/0xf80
[   84.214031][ T5328]  ? trace_irq_disable+0x3b/0x150
[   84.216466][ T5328]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   84.219564][ T5328]  ? clear_bhb_loop+0x40/0x90
[   84.222170][ T5328]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   84.225436][ T5328] RIP: 0033:0x7fec4059da0a
[   84.227880][ T5328] Code: 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   84.237457][ T5328] RSP: 002b:00007fec413e1e18 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[   84.241423][ T5328] RAX: ffffffffffffffda RBX: 00007fec413e1ea0 RCX: 00007fec4059da0a
[   84.244656][ T5328] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007fec413e1e60
[   84.248463][ T5328] RBP: 0000200000000180 R08: 00007fec413e1ea0 R09: 0000000000800700
[   84.253015][ T5328] R10: 0000000000800700 R11: 0000000000000246 R12: 00002000000001c0
[   84.260650][ T5328] R13: 00007fec413e1e60 R14: 0000000000000480 R15: 000000000000002c
[   84.264334][ T5328]  </TASK>
[   84.265900][ T5328] Kernel panic - not syncing: kernel: panic_on_warn set ...
[   84.269384][ T5328] CPU: 0 UID: 0 PID: 5328 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) 
[   84.274158][ T5328] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[   84.278778][ T5328] Call Trace:
[   84.280317][ T5328]  <TASK>
[   84.281651][ T5328]  vpanic+0x56c/0xa60
[   84.283648][ T5328]  ? __pfx__printk+0x10/0x10
[   84.286451][ T5328]  ? __pfx_vpanic+0x10/0x10
[   84.289094][ T5328]  ? is_bpf_text_address+0x292/0x2b0
[   84.291687][ T5328]  ? is_bpf_text_address+0x26/0x2b0
[   84.293936][ T5328]  panic+0xc5/0xd0
[   84.295626][ T5328]  ? __pfx_panic+0x10/0x10
[   84.297650][ T5328]  __warn+0x315/0x4f0
[   84.299462][ T5328]  ? ext4_xattr_inode_update_ref+0x4c9/0x5a0
[   84.302005][ T5328]  ? ext4_xattr_inode_update_ref+0x4c9/0x5a0
[   84.304701][ T5328]  __report_bug+0x29a/0x540
[   84.307077][ T5328]  ? ext4_get_group_desc+0x434/0x4e0
[   84.310253][ T5328]  ? ext4_xattr_inode_update_ref+0x4c9/0x5a0
[   84.313563][ T5328]  ? __pfx___report_bug+0x10/0x10
[   84.315880][ T5328]  ? set_normalized_timespec64+0xf0/0x1a0
[   84.318565][ T5328]  ? __ext4_journal_get_write_access+0x84/0x590
[   84.321425][ T5328]  report_bug_entry+0x19a/0x290
[   84.323836][ T5328]  ? ext4_xattr_inode_update_ref+0x511/0x5a0
[   84.327255][ T5328]  ? ext4_xattr_inode_update_ref+0x516/0x5a0
[   84.330149][ T5328]  handle_bug+0xce/0x200
[   84.331938][ T5328]  exc_invalid_op+0x1a/0x50
[   84.333925][ T5328]  asm_exc_invalid_op+0x1a/0x20
[   84.335928][ T5328] RIP: 0010:ext4_xattr_inode_update_ref+0x511/0x5a0
[   84.339214][ T5328] Code: 74 08 4c 89 ef e8 9f 06 96 ff 4d 8b 6d 00 48 b8 00 00 00 00 00 fc ff df 41 0f b6 04 06 84 c0 75 77 41 8b 17 4c 89 e7 4c 89 ee <67> 48 0f b9 3a 4c 8b 6c 24 28 e9 59 fe ff ff e8 5b dc 14 09 44 89
[   84.348652][ T5328] RSP: 0018:ffffc9000e14f240 EFLAGS: 00010246
[   84.351286][ T5328] RAX: 0000000000000000 RBX: 00000000ffffffff RCX: dffffc0000000000
[   84.354725][ T5328] RDX: 0000000000000000 RSI: 000000000000000b RDI: ffffffff90187050
[   84.357992][ T5328] RBP: ffffc9000e14f330 R08: ffff8880479797bf R09: 1ffff11008f2f2f7
[   84.362274][ T5328] R10: dffffc0000000000 R11: ffffed1008f2f2f8 R12: ffffffff90187050
[   84.366557][ T5328] R13: 000000000000000b R14: 1ffff11008f2f2c2 R15: ffff888047979610
[   84.369980][ T5328]  ? __pfx_ext4_xattr_inode_update_ref+0x10/0x10
[   84.372532][ T5328]  ? __kmalloc_cache_noprof+0x31c/0x660
[   84.375204][ T5328]  ? ext4_xattr_inode_dec_ref_all+0x4d2/0xe40
[   84.377866][ T5328]  ? __ext4_journal_ensure_credits+0x30/0x450
[   84.381258][ T5328]  ext4_xattr_inode_dec_ref_all+0x8cb/0xe40
[   84.384602][ T5328]  ? __mark_inode_dirty+0xb66/0x1470
[   84.387265][ T5328]  ? __pfx_ext4_xattr_inode_dec_ref_all+0x10/0x10
[   84.390325][ T5328]  ? __ext4_journal_get_write_access+0x27f/0x590
[   84.393396][ T5328]  ? __pfx___ext4_journal_get_write_access+0x10/0x10
[   84.396957][ T5328]  ext4_xattr_delete_inode+0xb45/0xd10
[   84.399911][ T5328]  ? __pfx_ext4_xattr_delete_inode+0x10/0x10
[   84.402698][ T5328]  ext4_evict_inode+0xa63/0xeb0
[   84.404983][ T5328]  ? __pfx_ext4_evict_inode+0x10/0x10
[   84.407288][ T5328]  ? do_raw_spin_unlock+0x4d/0x210
[   84.409664][ T5328]  ? __pfx_ext4_evict_inode+0x10/0x10
[   84.412426][ T5328]  evict+0x61e/0xb10
[   84.414709][ T5328]  ? __pfx_evict+0x10/0x10
[   84.417077][ T5328]  ? _raw_spin_unlock+0x28/0x50
[   84.419387][ T5328]  ? iput+0xb25/0xe80
[   84.421177][ T5328]  ext4_orphan_cleanup+0xc38/0x1470
[   84.423466][ T5328]  ? __pfx_ext4_orphan_cleanup+0x10/0x10
[   84.426605][ T5328]  ? ext4_register_li_request+0x640/0x720
[   84.430155][ T5328]  ? errseq_check_and_advance+0x66/0x120
[   84.433424][ T5328]  ext4_fill_super+0x59ff/0x6320
[   84.435992][ T5328]  ? __pfx_ext4_fill_super+0x10/0x10
[   84.438448][ T5328]  ? snprintf+0xe8/0x140
[   84.440298][ T5328]  ? __pfx_snprintf+0x10/0x10
[   84.442505][ T5328]  ? set_blocksize+0x1c9/0x440
[   84.444779][ T5328]  ? sb_set_blocksize+0x155/0x240
[   84.447090][ T5328]  ? setup_bdev_super+0x4c1/0x5b0
[   84.449341][ T5328]  get_tree_bdev_flags+0x431/0x4f0
[   84.451784][ T5328]  ? __pfx_ext4_fill_super+0x10/0x10
[   84.454595][ T5328]  ? __pfx_get_tree_bdev_flags+0x10/0x10
[   84.457534][ T5328]  vfs_get_tree+0x92/0x2a0
[   84.459791][ T5328]  do_new_mount+0x341/0xd30
[   84.462133][ T5328]  ? apparmor_capable+0x126/0x170
[   84.464678][ T5328]  ? __pfx_do_new_mount+0x10/0x10
[   84.467419][ T5328]  ? ns_capable+0x89/0xe0
[   84.469702][ T5328]  ? user_path_at+0xd4/0x160
[   84.471733][ T5328]  __se_sys_mount+0x31d/0x420
[   84.473893][ T5328]  ? __pfx___se_sys_mount+0x10/0x10
[   84.476546][ T5328]  ? __x64_sys_mount+0x20/0xc0
[   84.479131][ T5328]  do_syscall_64+0x14d/0xf80
[   84.481508][ T5328]  ? trace_irq_disable+0x3b/0x150
[   84.484028][ T5328]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   84.486872][ T5328]  ? clear_bhb_loop+0x40/0x90
[   84.489283][ T5328]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   84.492156][ T5328] RIP: 0033:0x7fec4059da0a
[   84.494213][ T5328] Code: 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   84.503973][ T5328] RSP: 002b:00007fec413e1e18 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[   84.508089][ T5328] RAX: ffffffffffffffda RBX: 00007fec413e1ea0 RCX: 00007fec4059da0a
[   84.512349][ T5328] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007fec413e1e60
[   84.516576][ T5328] RBP: 0000200000000180 R08: 00007fec413e1ea0 R09: 0000000000800700
[   84.520177][ T5328] R10: 0000000000800700 R11: 0000000000000246 R12: 00002000000001c0
[   84.523733][ T5328] R13: 00007fec413e1e60 R14: 0000000000000480 R15: 000000000000002c
[   84.527621][ T5328]  </TASK>
[   84.529620][ T5328] Kernel Offset: disabled
[   84.531760][ T5328] Rebooting in 86400 seconds..