program:
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000080b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x10)
openat(0xffffffffffffff9c, &(0x7f0000000240)='./file2\x00', 0xe042, 0x68)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000380)={<r2=>0xffffffffffffffff})
r3 = fsopen(&(0x7f0000000100)='configfs\x00', 0x0)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x1a08700, &(0x7f0000000700)={[{@nodioread_nolock}, {@nouid32}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5c}}, {@nouid32}, {@resgid}, {@usrquota}, {@journal_dev={'journal_dev', 0x3d, 0x1}}]}, 0x0, 0x470, &(0x7f0000001040)="$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")
fsconfig$FSCONFIG_CMD_CREATE(r3, 0x6, 0x0, 0x0, 0x0)
r4 = fsmount(r3, 0x0, 0x0)
fchdir(r4)
open(&(0x7f00000003c0)='.\x00', 0x101080, 0x0)
close_range(r2, 0xffffffffffffffff, 0x0)

[   75.858646][ T5297] Bluetooth: hci0: command tx timeout
[   75.916269][ T5318] loop0: detected capacity change from 0 to 512
[   75.966483][ T5318] ------------[ cut here ]------------
[   75.969390][ T5318] EA inode 11 i_nlink=2
[   75.976290][ T5318] WARNING: CPU: 0 PID: 5318 at fs/ext4/xattr.c:1058 ext4_xattr_inode_update_ref+0x51a/0x5b0
[   75.983278][ T5318] Modules linked in:
[   75.985143][ T5318] CPU: 0 UID: 0 PID: 5318 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) 
[   75.989739][ T5318] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   75.994511][ T5318] RIP: 0010:ext4_xattr_inode_update_ref+0x51a/0x5b0
[   75.997483][ T5318] Code: 48 b8 00 00 00 00 00 fc ff df 41 0f b6 04 06 84 c0 0f 85 80 00 00 00 41 8b 17 48 c7 c7 00 21 80 8b 4c 89 e6 e8 97 19 f8 fe 90 <0f> 0b 90 90 4c 8b 6c 24 28 e9 59 fe ff ff e8 e3 29 bd 08 44 89 f9
[   76.006590][ T5318] RSP: 0018:ffffc9000d3df100 EFLAGS: 00010246
[   76.009517][ T5318] RAX: 546ea0f48ed33000 RBX: 0000000000000001 RCX: 0000000000100000
[   76.013165][ T5318] RDX: ffffc9000e2ea000 RSI: 000000000000a25f RDI: 000000000000a260
[   76.017147][ T5318] RBP: ffffc9000d3df1f8 R08: ffff88801fe24293 R09: 1ffff11003fc4852
[   76.021120][ T5318] R10: dffffc0000000000 R11: ffffed1003fc4853 R12: 000000000000000b
[   76.024708][ T5318] R13: ffff888042f5a020 R14: 1ffff110085eb3f2 R15: ffff888042f59f90
[   76.028111][ T5318] FS:  00007ff7667df6c0(0000) GS:ffff88808d733000(0000) knlGS:0000000000000000
[   76.031817][ T5318] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   76.034534][ T5318] CR2: 00007f8db65909c0 CR3: 0000000042037000 CR4: 0000000000352ef0
[   76.037744][ T5318] Call Trace:
[   76.039472][ T5318]  <TASK>
[   76.040842][ T5318]  ? __pfx_inode_set_ctime_to_ts+0x10/0x10
[   76.043489][ T5318]  ? __pfx_ext4_xattr_inode_update_ref+0x10/0x10
[   76.046275][ T5318]  ? ext4_xattr_inode_iget+0x3d2/0x5f0
[   76.048782][ T5318]  ext4_xattr_set_entry+0xabb/0x1e20
[   76.051126][ T5318]  ext4_xattr_ibody_set+0x254/0x6a0
[   76.053548][ T5318]  ext4_expand_extra_isize_ea+0x13ad/0x1ea0
[   76.056241][ T5318]  __ext4_expand_extra_isize+0x30d/0x400
[   76.058913][ T5318]  __ext4_mark_inode_dirty+0x46c/0x700
[   76.061350][ T5318]  ext4_evict_inode+0x80d/0xee0
[   76.063451][ T5318]  ? __pfx_ext4_evict_inode+0x10/0x10
[   76.065628][ T5318]  ? do_raw_spin_unlock+0x4d/0x240
[   76.067812][ T5318]  ? __pfx_ext4_evict_inode+0x10/0x10
[   76.070658][ T5318]  evict+0x504/0x9c0
[   76.072337][ T5318]  ? __pfx_evict+0x10/0x10
[   76.074267][ T5318]  ? do_raw_spin_unlock+0x4d/0x240
[   76.076504][ T5318]  ? _raw_spin_unlock+0x28/0x50
[   76.078966][ T5318]  ? iput+0x946/0xc50
[   76.080783][ T5318]  ext4_orphan_cleanup+0xc20/0x1460
[   76.083215][ T5318]  ? __pfx_ext4_orphan_cleanup+0x10/0x10
[   76.085682][ T5318]  ? ext4_register_li_request+0x640/0x720
[   76.088204][ T5318]  ? errseq_check_and_advance+0x66/0x120
[   76.090646][ T5318]  ext4_fill_super+0x5920/0x61e0
[   76.092808][ T5318]  ? __pfx_ext4_fill_super+0x10/0x10
[   76.095132][ T5318]  ? snprintf+0xda/0x120
[   76.097053][ T5318]  ? __pfx_snprintf+0x10/0x10
[   76.099403][ T5318]  ? set_blocksize+0x21e/0x500
[   76.101579][ T5318]  ? sb_set_blocksize+0x104/0x180
[   76.103756][ T5318]  ? setup_bdev_super+0x4c1/0x5b0
[   76.105824][ T5318]  get_tree_bdev_flags+0x40e/0x4d0
[   76.108108][ T5318]  ? __pfx_ext4_fill_super+0x10/0x10
[   76.110505][ T5318]  ? __pfx_get_tree_bdev_flags+0x10/0x10
[   76.112959][ T5318]  vfs_get_tree+0x92/0x2b0
[   76.114900][ T5318]  do_new_mount+0x302/0xa10
[   76.117029][ T5318]  ? apparmor_capable+0x137/0x1b0
[   76.119366][ T5318]  ? __pfx_do_new_mount+0x10/0x10
[   76.121405][ T5318]  ? ns_capable+0x8a/0xf0
[   76.123156][ T5318]  ? kmem_cache_free+0x19b/0x690
[   76.125284][ T5318]  __se_sys_mount+0x313/0x410
[   76.127397][ T5318]  ? __pfx___se_sys_mount+0x10/0x10
[   76.129839][ T5318]  ? do_syscall_64+0xbe/0xfa0
[   76.131934][ T5318]  ? __x64_sys_mount+0x20/0xc0
[   76.134036][ T5318]  do_syscall_64+0xfa/0xfa0
[   76.136050][ T5318]  ? lockdep_hardirqs_on+0x9c/0x150
[   76.138435][ T5318]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   76.141129][ T5318]  ? clear_bhb_loop+0x60/0xb0
[   76.143260][ T5318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   76.145902][ T5318] RIP: 0033:0x7ff76599076a
[   76.147823][ T5318] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   76.156723][ T5318] RSP: 002b:00007ff7667dee68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[   76.161277][ T5318] RAX: ffffffffffffffda RBX: 00007ff7667deef0 RCX: 00007ff76599076a
[   76.164949][ T5318] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007ff7667deeb0
[   76.168580][ T5318] RBP: 0000200000000180 R08: 00007ff7667deef0 R09: 0000000001a08700
[   76.172123][ T5318] R10: 0000000001a08700 R11: 0000000000000246 R12: 00002000000001c0
[   76.175654][ T5318] R13: 00007ff7667deeb0 R14: 0000000000000470 R15: 0000200000000700
[   76.179266][ T5318]  </TASK>
[   76.180599][ T5318] Kernel panic - not syncing: kernel: panic_on_warn set ...
[   76.183789][ T5318] CPU: 0 UID: 0 PID: 5318 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) 
[   76.187733][ T5318] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   76.192300][ T5318] Call Trace:
[   76.193769][ T5318]  <TASK>
[   76.195062][ T5318]  dump_stack_lvl+0x99/0x250
[   76.197092][ T5318]  ? __asan_memcpy+0x40/0x70
[   76.199054][ T5318]  ? __pfx_dump_stack_lvl+0x10/0x10
[   76.201356][ T5318]  ? __pfx__printk+0x10/0x10
[   76.203360][ T5318]  vpanic+0x237/0x6d0
[   76.205164][ T5318]  ? __pfx_vpanic+0x10/0x10
[   76.207207][ T5318]  panic+0xb9/0xc0
[   76.208962][ T5318]  ? __pfx_panic+0x10/0x10
[   76.210965][ T5318]  __warn+0x31b/0x4b0
[   76.212755][ T5318]  ? ext4_xattr_inode_update_ref+0x51a/0x5b0
[   76.215404][ T5318]  ? ext4_xattr_inode_update_ref+0x51a/0x5b0
[   76.217896][ T5318]  report_bug+0x2be/0x4f0
[   76.219899][ T5318]  ? ext4_xattr_inode_update_ref+0x51a/0x5b0
[   76.222525][ T5318]  ? ext4_xattr_inode_update_ref+0x51a/0x5b0
[   76.225148][ T5318]  ? ext4_xattr_inode_update_ref+0x51c/0x5b0
[   76.227793][ T5318]  handle_bug+0x84/0x160
[   76.229793][ T5318]  exc_invalid_op+0x1a/0x50
[   76.231862][ T5318]  asm_exc_invalid_op+0x1a/0x20
[   76.234088][ T5318] RIP: 0010:ext4_xattr_inode_update_ref+0x51a/0x5b0
[   76.236951][ T5318] Code: 48 b8 00 00 00 00 00 fc ff df 41 0f b6 04 06 84 c0 0f 85 80 00 00 00 41 8b 17 48 c7 c7 00 21 80 8b 4c 89 e6 e8 97 19 f8 fe 90 <0f> 0b 90 90 4c 8b 6c 24 28 e9 59 fe ff ff e8 e3 29 bd 08 44 89 f9
[   76.245554][ T5318] RSP: 0018:ffffc9000d3df100 EFLAGS: 00010246
[   76.248332][ T5318] RAX: 546ea0f48ed33000 RBX: 0000000000000001 RCX: 0000000000100000
[   76.251807][ T5318] RDX: ffffc9000e2ea000 RSI: 000000000000a25f RDI: 000000000000a260
[   76.255171][ T5318] RBP: ffffc9000d3df1f8 R08: ffff88801fe24293 R09: 1ffff11003fc4852
[   76.258656][ T5318] R10: dffffc0000000000 R11: ffffed1003fc4853 R12: 000000000000000b
[   76.262169][ T5318] R13: ffff888042f5a020 R14: 1ffff110085eb3f2 R15: ffff888042f59f90
[   76.265688][ T5318]  ? __pfx_inode_set_ctime_to_ts+0x10/0x10
[   76.268311][ T5318]  ? __pfx_ext4_xattr_inode_update_ref+0x10/0x10
[   76.271123][ T5318]  ? ext4_xattr_inode_iget+0x3d2/0x5f0
[   76.273792][ T5318]  ext4_xattr_set_entry+0xabb/0x1e20
[   76.276280][ T5318]  ext4_xattr_ibody_set+0x254/0x6a0
[   76.278720][ T5318]  ext4_expand_extra_isize_ea+0x13ad/0x1ea0
[   76.281546][ T5318]  __ext4_expand_extra_isize+0x30d/0x400
[   76.284210][ T5318]  __ext4_mark_inode_dirty+0x46c/0x700
[   76.286775][ T5318]  ext4_evict_inode+0x80d/0xee0
[   76.289083][ T5318]  ? __pfx_ext4_evict_inode+0x10/0x10
[   76.291461][ T5318]  ? do_raw_spin_unlock+0x4d/0x240
[   76.293789][ T5318]  ? __pfx_ext4_evict_inode+0x10/0x10
[   76.296187][ T5318]  evict+0x504/0x9c0
[   76.297889][ T5318]  ? __pfx_evict+0x10/0x10
[   76.299911][ T5318]  ? do_raw_spin_unlock+0x4d/0x240
[   76.302231][ T5318]  ? _raw_spin_unlock+0x28/0x50
[   76.304423][ T5318]  ? iput+0x946/0xc50
[   76.306351][ T5318]  ext4_orphan_cleanup+0xc20/0x1460
[   76.308661][ T5318]  ? __pfx_ext4_orphan_cleanup+0x10/0x10
[   76.311179][ T5318]  ? ext4_register_li_request+0x640/0x720
[   76.313875][ T5318]  ? errseq_check_and_advance+0x66/0x120
[   76.316457][ T5318]  ext4_fill_super+0x5920/0x61e0
[   76.318699][ T5318]  ? __pfx_ext4_fill_super+0x10/0x10
[   76.321136][ T5318]  ? snprintf+0xda/0x120
[   76.323102][ T5318]  ? __pfx_snprintf+0x10/0x10
[   76.325421][ T5318]  ? set_blocksize+0x21e/0x500
[   76.327526][ T5318]  ? sb_set_blocksize+0x104/0x180
[   76.329804][ T5318]  ? setup_bdev_super+0x4c1/0x5b0
[   76.332079][ T5318]  get_tree_bdev_flags+0x40e/0x4d0
[   76.334397][ T5318]  ? __pfx_ext4_fill_super+0x10/0x10
[   76.336827][ T5318]  ? __pfx_get_tree_bdev_flags+0x10/0x10
[   76.339356][ T5318]  vfs_get_tree+0x92/0x2b0
[   76.341465][ T5318]  do_new_mount+0x302/0xa10
[   76.343499][ T5318]  ? apparmor_capable+0x137/0x1b0
[   76.345801][ T5318]  ? __pfx_do_new_mount+0x10/0x10
[   76.348017][ T5318]  ? ns_capable+0x8a/0xf0
[   76.350002][ T5318]  ? kmem_cache_free+0x19b/0x690
[   76.351993][ T5318]  __se_sys_mount+0x313/0x410
[   76.354113][ T5318]  ? __pfx___se_sys_mount+0x10/0x10
[   76.356547][ T5318]  ? do_syscall_64+0xbe/0xfa0
[   76.358675][ T5318]  ? __x64_sys_mount+0x20/0xc0
[   76.361018][ T5318]  do_syscall_64+0xfa/0xfa0
[   76.363218][ T5318]  ? lockdep_hardirqs_on+0x9c/0x150
[   76.365443][ T5318]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   76.367987][ T5318]  ? clear_bhb_loop+0x60/0xb0
[   76.370053][ T5318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   76.372494][ T5318] RIP: 0033:0x7ff76599076a
[   76.374240][ T5318] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   76.382358][ T5318] RSP: 002b:00007ff7667dee68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[   76.386152][ T5318] RAX: ffffffffffffffda RBX: 00007ff7667deef0 RCX: 00007ff76599076a
[   76.389817][ T5318] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007ff7667deeb0
[   76.393299][ T5318] RBP: 0000200000000180 R08: 00007ff7667deef0 R09: 0000000001a08700
[   76.396939][ T5318] R10: 0000000001a08700 R11: 0000000000000246 R12: 00002000000001c0
[   76.400638][ T5318] R13: 00007ff7667deeb0 R14: 0000000000000470 R15: 0000200000000700
[   76.404114][ T5318]  </TASK>
[   76.405870][ T5318] Kernel Offset: disabled
[   76.407817][ T5318] Rebooting in 86400 seconds..