program:
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
r1 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
setsockopt$WPAN_WANTLQI(r1, 0x0, 0x3, &(0x7f0000000040), 0x4)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000200)={0x4c, 0x2, 0x6, 0x801, 0x0, 0x0, {}, [@IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_TYPENAME={0x14, 0x3, 'hash:ip,port,ip\x00'}]}, 0x4c}}, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_TEST(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000500)={0x34, 0xb, 0x6, 0x301, 0x0, 0x0, {0x5, 0x0, 0x802}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}]}, 0x34}, 0x1, 0x0, 0x0, 0x48}, 0x4800)
sendto$inet(r0, &(0x7f0000000300)="ab", 0x14078, 0x0, &(0x7f0000000380)={0x2, 0x4e22, @local}, 0x10)
getsockopt$inet_sctp_SCTP_STATUS(r0, 0x84, 0x85, &(0x7f00000015c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, @in={{0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}}}}, &(0x7f0000001680)=0xb0)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x0, &(0x7f00000001c0), 0x1, 0x476, &(0x7f00000006c0)="$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")
r4 = creat(&(0x7f00000002c0)='./file0\x00', 0x0)
write$FUSE_NOTIFY_INVAL_ENTRY(r4, &(0x7f0000000200)=ANY=[], 0x22)
getsockopt$inet_sctp_SCTP_NODELAY(r4, 0x84, 0x3, &(0x7f0000000080), &(0x7f00000000c0)=0x4)
accept$inet(r4, &(0x7f0000000100)={0x2, 0x0, @remote}, &(0x7f0000000140)=0x10)
[ 112.867692][ T4651] Bluetooth: hci0: command tx timeout
[ 112.991188][ T5334] loop0: detected capacity change from 0 to 512
[ 113.069948][ T5334] ------------[ cut here ]------------
[ 113.073226][ T5334] EA inode 11 i_nlink=0
[ 113.073263][ T5334] WARNING: fs/ext4/xattr.c:1059 at ext4_xattr_inode_update_ref+0x4c9/0x5a0, CPU#0: syz.0.0/5334
[ 113.079393][ T5334] Modules linked in:
[ 113.080880][ T5334] CPU: 0 UID: 0 PID: 5334 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full)
[ 113.084093][ T5334] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 113.087963][ T5334] RIP: 0010:ext4_xattr_inode_update_ref+0x511/0x5a0
[ 113.090409][ T5334] Code: 74 08 4c 89 ef e8 af 5c 96 ff 4d 8b 6d 00 48 b8 00 00 00 00 00 fc ff df 41 0f b6 04 06 84 c0 75 77 41 8b 17 4c 89 e7 4c 89 ee <67> 48 0f b9 3a 4c 8b 6c 24 28 e9 59 fe ff ff e8 4b 0c 0e 09 44 89
[ 113.098072][ T5334] RSP: 0018:ffffc9000369f240 EFLAGS: 00010246
[ 113.100572][ T5334] RAX: 0000000000000000 RBX: 00000000ffffffff RCX: dffffc0000000000
[ 113.103949][ T5334] RDX: 0000000000000000 RSI: 000000000000000b RDI: ffffffff90378a30
[ 113.107079][ T5334] RBP: ffffc9000369f330 R08: ffff8880462deb47 R09: 1ffff11008c5bd68
[ 113.110288][ T5334] R10: dffffc0000000000 R11: ffffed1008c5bd69 R12: ffffffff90378a30
[ 113.113542][ T5334] R13: 000000000000000b R14: 1ffff11008c5bd34 R15: ffff8880462de9a0
[ 113.117088][ T5334] FS: 00007f8ee12a66c0(0000) GS:ffff88808c885000(0000) knlGS:0000000000000000
[ 113.121247][ T5334] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 113.123920][ T5334] CR2: 00007fd96b259000 CR3: 0000000041f99000 CR4: 0000000000352ef0
[ 113.126826][ T5334] Call Trace:
[ 113.128246][ T5334]
[ 113.129517][ T5334] ? __pfx_ext4_xattr_inode_update_ref+0x10/0x10
[ 113.132196][ T5334] ? __kmalloc_cache_noprof+0x31c/0x660
[ 113.134258][ T5334] ? ext4_xattr_inode_dec_ref_all+0x4d0/0xe40
[ 113.136883][ T5334] ? __ext4_journal_ensure_credits+0x30/0x450
[ 113.139607][ T5334] ext4_xattr_inode_dec_ref_all+0x8c9/0xe40
[ 113.142201][ T5334] ? __mark_inode_dirty+0xb66/0x13b0
[ 113.144522][ T5334] ? __pfx_ext4_xattr_inode_dec_ref_all+0x10/0x10
[ 113.147336][ T5334] ? __ext4_journal_get_write_access+0x27f/0x590
[ 113.149936][ T5334] ? __pfx___ext4_journal_get_write_access+0x10/0x10
[ 113.152635][ T5334] ext4_xattr_delete_inode+0xb45/0xd10
[ 113.155149][ T5334] ? __pfx_ext4_xattr_delete_inode+0x10/0x10
[ 113.157426][ T5334] ext4_evict_inode+0xc4e/0x10e0
[ 113.159422][ T5334] ? __pfx_ext4_evict_inode+0x10/0x10
[ 113.162078][ T5334] ? do_raw_spin_unlock+0x4d/0x210
[ 113.163999][ T5334] ? __pfx_ext4_evict_inode+0x10/0x10
[ 113.166306][ T5334] evict+0x61e/0xb10
[ 113.168067][ T5334] ? __pfx_evict+0x10/0x10
[ 113.169923][ T5334] ? _raw_spin_unlock+0x28/0x50
[ 113.172053][ T5334] ? iput+0xb25/0xe80
[ 113.173600][ T5334] ext4_orphan_cleanup+0xc38/0x1470
[ 113.175884][ T5334] ? __pfx_ext4_orphan_cleanup+0x10/0x10
[ 113.178070][ T5334] ? ext4_register_li_request+0x640/0x720
[ 113.180330][ T5334] ? errseq_check_and_advance+0x66/0x120
[ 113.182993][ T5334] ext4_fill_super+0x5a19/0x6330
[ 113.185086][ T5334] ? __pfx_ext4_fill_super+0x10/0x10
[ 113.186893][ T5334] ? snprintf+0xe8/0x140
[ 113.188773][ T5334] ? __pfx_snprintf+0x10/0x10
[ 113.190427][ T5334] ? set_blocksize+0x1c9/0x440
[ 113.192776][ T5334] ? sb_set_blocksize+0x155/0x240
[ 113.194855][ T5334] ? setup_bdev_super+0x4c1/0x5b0
[ 113.196910][ T5334] get_tree_bdev_flags+0x431/0x4f0
[ 113.198964][ T5334] ? __pfx_ext4_fill_super+0x10/0x10
[ 113.201135][ T5334] ? __pfx_get_tree_bdev_flags+0x10/0x10
[ 113.204565][ T5334] vfs_get_tree+0x92/0x2a0
[ 113.206332][ T5334] do_new_mount+0x341/0xd30
[ 113.208182][ T5334] ? apparmor_capable+0x126/0x170
[ 113.210220][ T5334] ? __pfx_do_new_mount+0x10/0x10
[ 113.212354][ T5334] ? ns_capable+0x89/0xe0
[ 113.214061][ T5334] ? user_path_at+0xd4/0x160
[ 113.215987][ T5334] __se_sys_mount+0x31d/0x420
[ 113.217891][ T5334] ? __pfx___se_sys_mount+0x10/0x10
[ 113.220314][ T5334] ? __x64_sys_mount+0x20/0xc0
[ 113.223032][ T5334] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 113.225379][ T5334] do_syscall_64+0x15f/0xf80
[ 113.227255][ T5334] ? trace_irq_disable+0x3b/0x140
[ 113.229353][ T5334] ? clear_bhb_loop+0x40/0x90
[ 113.231093][ T5334] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 113.233436][ T5334] RIP: 0033:0x7f8ee039e04a
[ 113.235232][ T5334] Code: 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 113.242544][ T5334] RSP: 002b:00007f8ee12a5e18 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 113.245595][ T5334] RAX: ffffffffffffffda RBX: 00007f8ee12a5ea0 RCX: 00007f8ee039e04a
[ 113.248800][ T5334] RDX: 0000200000000180 RSI: 0000200000000000 RDI: 00007f8ee12a5e60
[ 113.251957][ T5334] RBP: 0000200000000180 R08: 00007f8ee12a5ea0 R09: 0000000000000000
[ 113.255074][ T5334] R10: 0000000000000000 R11: 0000000000000246 R12: 0000200000000000
[ 113.258174][ T5334] R13: 00007f8ee12a5e60 R14: 0000000000000476 R15: 00002000000001c0
[ 113.261216][ T5334]
[ 113.262580][ T5334] Kernel panic - not syncing: kernel: panic_on_warn set ...
[ 113.265485][ T5334] CPU: 0 UID: 0 PID: 5334 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full)
[ 113.268984][ T5334] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 113.273088][ T5334] Call Trace:
[ 113.274465][ T5334]
[ 113.275744][ T5334] vpanic+0x56c/0xa60
[ 113.277451][ T5334] ? __pfx__printk+0x10/0x10
[ 113.279359][ T5334] ? __pfx_vpanic+0x10/0x10
[ 113.281276][ T5334] ? is_bpf_text_address+0x292/0x2b0
[ 113.283383][ T5334] ? is_bpf_text_address+0x26/0x2b0
[ 113.285500][ T5334] panic+0xc5/0xd0
[ 113.287023][ T5334] ? __pfx_panic+0x10/0x10
[ 113.288895][ T5334] __warn+0x315/0x4c0
[ 113.290531][ T5334] ? ext4_xattr_inode_update_ref+0x4c9/0x5a0
[ 113.292854][ T5334] ? ext4_xattr_inode_update_ref+0x4c9/0x5a0
[ 113.295197][ T5334] __report_bug+0x29a/0x540
[ 113.297004][ T5334] ? ext4_get_group_desc+0x434/0x4e0
[ 113.299042][ T5334] ? ext4_xattr_inode_update_ref+0x4c9/0x5a0
[ 113.301428][ T5334] ? __pfx___report_bug+0x10/0x10
[ 113.303441][ T5334] ? set_normalized_timespec64+0xf0/0x1a0
[ 113.305799][ T5334] report_bug_entry+0x19a/0x290
[ 113.307742][ T5334] ? ext4_xattr_inode_update_ref+0x511/0x5a0
[ 113.310077][ T5334] ? ext4_xattr_inode_update_ref+0x516/0x5a0
[ 113.312361][ T5334] handle_bug+0xce/0x200
[ 113.313929][ T5334] exc_invalid_op+0x1a/0x50
[ 113.315587][ T5334] asm_exc_invalid_op+0x1a/0x20
[ 113.317171][ T5334] RIP: 0010:ext4_xattr_inode_update_ref+0x511/0x5a0
[ 113.319562][ T5334] Code: 74 08 4c 89 ef e8 af 5c 96 ff 4d 8b 6d 00 48 b8 00 00 00 00 00 fc ff df 41 0f b6 04 06 84 c0 75 77 41 8b 17 4c 89 e7 4c 89 ee <67> 48 0f b9 3a 4c 8b 6c 24 28 e9 59 fe ff ff e8 4b 0c 0e 09 44 89
[ 113.326656][ T5334] RSP: 0018:ffffc9000369f240 EFLAGS: 00010246
[ 113.328962][ T5334] RAX: 0000000000000000 RBX: 00000000ffffffff RCX: dffffc0000000000
[ 113.331843][ T5334] RDX: 0000000000000000 RSI: 000000000000000b RDI: ffffffff90378a30
[ 113.334896][ T5334] RBP: ffffc9000369f330 R08: ffff8880462deb47 R09: 1ffff11008c5bd68
[ 113.337841][ T5334] R10: dffffc0000000000 R11: ffffed1008c5bd69 R12: ffffffff90378a30
[ 113.340786][ T5334] R13: 000000000000000b R14: 1ffff11008c5bd34 R15: ffff8880462de9a0
[ 113.343925][ T5334] ? __pfx_ext4_xattr_inode_update_ref+0x10/0x10
[ 113.346541][ T5334] ? __kmalloc_cache_noprof+0x31c/0x660
[ 113.348481][ T5334] ? ext4_xattr_inode_dec_ref_all+0x4d0/0xe40
[ 113.350895][ T5334] ? __ext4_journal_ensure_credits+0x30/0x450
[ 113.353360][ T5334] ext4_xattr_inode_dec_ref_all+0x8c9/0xe40
[ 113.355744][ T5334] ? __mark_inode_dirty+0xb66/0x13b0
[ 113.357741][ T5334] ? __pfx_ext4_xattr_inode_dec_ref_all+0x10/0x10
[ 113.360170][ T5334] ? __ext4_journal_get_write_access+0x27f/0x590
[ 113.362796][ T5334] ? __pfx___ext4_journal_get_write_access+0x10/0x10
[ 113.365408][ T5334] ext4_xattr_delete_inode+0xb45/0xd10
[ 113.367614][ T5334] ? __pfx_ext4_xattr_delete_inode+0x10/0x10
[ 113.370094][ T5334] ext4_evict_inode+0xc4e/0x10e0
[ 113.372143][ T5334] ? __pfx_ext4_evict_inode+0x10/0x10
[ 113.374346][ T5334] ? do_raw_spin_unlock+0x4d/0x210
[ 113.376430][ T5334] ? __pfx_ext4_evict_inode+0x10/0x10
[ 113.378575][ T5334] evict+0x61e/0xb10
[ 113.380157][ T5334] ? __pfx_evict+0x10/0x10
[ 113.382015][ T5334] ? _raw_spin_unlock+0x28/0x50
[ 113.383961][ T5334] ? iput+0xb25/0xe80
[ 113.385664][ T5334] ext4_orphan_cleanup+0xc38/0x1470
[ 113.387758][ T5334] ? __pfx_ext4_orphan_cleanup+0x10/0x10
[ 113.389841][ T5334] ? ext4_register_li_request+0x640/0x720
[ 113.391945][ T5334] ? errseq_check_and_advance+0x66/0x120
[ 113.394101][ T5334] ext4_fill_super+0x5a19/0x6330
[ 113.396161][ T5334] ? __pfx_ext4_fill_super+0x10/0x10
[ 113.398290][ T5334] ? snprintf+0xe8/0x140
[ 113.400013][ T5334] ? __pfx_snprintf+0x10/0x10
[ 113.402121][ T5334] ? set_blocksize+0x1c9/0x440
[ 113.403919][ T5334] ? sb_set_blocksize+0x155/0x240
[ 113.405965][ T5334] ? setup_bdev_super+0x4c1/0x5b0
[ 113.407695][ T5334] get_tree_bdev_flags+0x431/0x4f0
[ 113.409616][ T5334] ? __pfx_ext4_fill_super+0x10/0x10
[ 113.411638][ T5334] ? __pfx_get_tree_bdev_flags+0x10/0x10
[ 113.413834][ T5334] vfs_get_tree+0x92/0x2a0
[ 113.415626][ T5334] do_new_mount+0x341/0xd30
[ 113.417754][ T5334] ? apparmor_capable+0x126/0x170
[ 113.419728][ T5334] ? __pfx_do_new_mount+0x10/0x10
[ 113.421763][ T5334] ? ns_capable+0x89/0xe0
[ 113.423534][ T5334] ? user_path_at+0xd4/0x160
[ 113.425413][ T5334] __se_sys_mount+0x31d/0x420
[ 113.427223][ T5334] ? __pfx___se_sys_mount+0x10/0x10
[ 113.429272][ T5334] ? __x64_sys_mount+0x20/0xc0
[ 113.431117][ T5334] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 113.433543][ T5334] do_syscall_64+0x15f/0xf80
[ 113.435410][ T5334] ? trace_irq_disable+0x3b/0x140
[ 113.437468][ T5334] ? clear_bhb_loop+0x40/0x90
[ 113.439396][ T5334] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 113.441655][ T5334] RIP: 0033:0x7f8ee039e04a
[ 113.443335][ T5334] Code: 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 113.450531][ T5334] RSP: 002b:00007f8ee12a5e18 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 113.453654][ T5334] RAX: ffffffffffffffda RBX: 00007f8ee12a5ea0 RCX: 00007f8ee039e04a
[ 113.456839][ T5334] RDX: 0000200000000180 RSI: 0000200000000000 RDI: 00007f8ee12a5e60
[ 113.459870][ T5334] RBP: 0000200000000180 R08: 00007f8ee12a5ea0 R09: 0000000000000000
[ 113.463076][ T5334] R10: 0000000000000000 R11: 0000000000000246 R12: 0000200000000000
[ 113.466207][ T5334] R13: 00007f8ee12a5e60 R14: 0000000000000476 R15: 00002000000001c0
[ 113.469367][ T5334]
[ 113.470997][ T5334] Kernel Offset: disabled
[ 113.472648][ T5334] Rebooting in 86400 seconds..