Warning: Permanently added '10.128.1.67' (ED25519) to the list of known hosts.
executing program
[   34.297676][ T6437] loop0: detected capacity change from 0 to 32768
[   34.330476][ T6437] XFS (loop0): Mounting V5 Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[   34.358589][ T6437] XFS (loop0): Ending clean mount
[   34.362584][ T6437] XFS (loop0): Quotacheck needed: Please wait.
[   34.375660][ T6437] XFS (loop0): Quotacheck: Done.
[   39.165460][ T6437] 
[   39.166159][ T6437] =====================================
[   39.167579][ T6437] WARNING: bad unlock balance detected!
[   39.169062][ T6437] 6.14.0-rc6-syzkaller-ga5618886fdab #0 Not tainted
[   39.170806][ T6437] -------------------------------------
[   39.172354][ T6437] syz-executor466/6437 is trying to release lock (&mm->mmap_lock) at:
[   39.174611][ T6437] [<ffff800080a66878>] __mm_populate+0x328/0x3d8
[   39.176363][ T6437] but there are no more locks to release!
[   39.177883][ T6437] 
[   39.177883][ T6437] other info that might help us debug this:
[   39.180007][ T6437] no locks held by syz-executor466/6437.
[   39.181545][ T6437] 
[   39.181545][ T6437] stack backtrace:
[   39.183123][ T6437] CPU: 1 UID: 0 PID: 6437 Comm: syz-executor466 Not tainted 6.14.0-rc6-syzkaller-ga5618886fdab #0
[   39.183136][ T6437] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   39.183143][ T6437] Call trace:
[   39.183147][ T6437]  show_stack+0x2c/0x3c (C)
[   39.183165][ T6437]  dump_stack_lvl+0xe4/0x150
[   39.183179][ T6437]  dump_stack+0x1c/0x28
[   39.183191][ T6437]  print_unlock_imbalance_bug+0x254/0x2ac
[   39.183203][ T6437]  lock_release+0x410/0x9e4
[   39.183214][ T6437]  up_read+0x24/0x3c
[   39.183222][ T6437]  __mm_populate+0x328/0x3d8
[   39.183233][ T6437]  vm_mmap_pgoff+0x304/0x3c4
[   39.183244][ T6437]  ksys_mmap_pgoff+0x3a4/0x5c8
[   39.183255][ T6437]  __arm64_sys_mmap+0xf8/0x110
[   39.183266][ T6437]  invoke_syscall+0x98/0x2b8
[   39.183278][ T6437]  el0_svc_common+0x130/0x23c
[   39.183290][ T6437]  do_el0_svc+0x48/0x58
[   39.183301][ T6437]  el0_svc+0x54/0x168
[   39.183312][ T6437]  el0t_64_sync_handler+0x84/0x108
[   39.183322][ T6437]  el0t_64_sync+0x198/0x19c
[   39.209037][ T6437] ------------[ cut here ]------------
[   39.210539][ T6437] DEBUG_RWSEMS_WARN_ON(tmp < 0): count = 0xffffffffffffff00, magic = 0xffff0000d6bcb460, owner = 0x1, curr 0xffff0000dbf5db80, list empty
[   39.214213][ T6437] WARNING: CPU: 1 PID: 6437 at kernel/locking/rwsem.c:1346 __up_read+0x3bc/0x5f8
[   39.216624][ T6437] Modules linked in:
[   39.217599][ T6437] CPU: 1 UID: 0 PID: 6437 Comm: syz-executor466 Not tainted 6.14.0-rc6-syzkaller-ga5618886fdab #0
[   39.220376][ T6437] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   39.223068][ T6437] pstate: 60400005 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)
[   39.225190][ T6437] pc : __up_read+0x3bc/0x5f8
[   39.226367][ T6437] lr : __up_read+0x3bc/0x5f8
[   39.227548][ T6437] sp : ffff80009fbf79e0
[   39.228638][ T6437] x29: ffff80009fbf7a60 x28: 1ffff00011f780cd x27: ffff80008fbc0000
[   39.230721][ T6437] x26: dfff800000000000 x25: ffffffffffffff00 x24: ffff0000d6bcb4b8
[   39.232834][ T6437] x23: ffff0000d6bcb460 x22: ffffffffffffff00 x21: 0000000000000001
[   39.235130][ T6437] x20: ffff0000dbf5db80 x19: ffff0000d6bcb460 x18: 0000000000000008
[   39.237284][ T6437] x17: 0000000000000000 x16: ffff8000832bd8fc x15: 0000000000000001
[   39.239536][ T6437] x14: 1ffff00013f7ee94 x13: 0000000000000000 x12: 0000000000000000
[   39.241706][ T6437] x11: 0000000000000003 x10: 0000000000ff0100 x9 : 9e1581d9d123c400
[   39.243838][ T6437] x8 : 9e1581d9d123c400 x7 : 0000000000000001 x6 : 0000000000000001
[   39.245945][ T6437] x5 : ffff80009fbf7198 x4 : ffff80008fcafb00 x3 : ffff80008324f914
[   39.248071][ T6437] x2 : 0000000000000001 x1 : 0000000100000001 x0 : 0000000000000000
[   39.250225][ T6437] Call trace:
[   39.251093][ T6437]  __up_read+0x3bc/0x5f8 (P)
[   39.252278][ T6437]  up_read+0x2c/0x3c
[   39.253325][ T6437]  __mm_populate+0x328/0x3d8
[   39.254522][ T6437]  vm_mmap_pgoff+0x304/0x3c4
[   39.255745][ T6437]  ksys_mmap_pgoff+0x3a4/0x5c8
[   39.256978][ T6437]  __arm64_sys_mmap+0xf8/0x110
[   39.258184][ T6437]  invoke_syscall+0x98/0x2b8
[   39.259383][ T6437]  el0_svc_common+0x130/0x23c
[   39.260621][ T6437]  do_el0_svc+0x48/0x58
[   39.261695][ T6437]  el0_svc+0x54/0x168
[   39.262727][ T6437]  el0t_64_sync_handler+0x84/0x108
[   39.264107][ T6437]  el0t_64_sync+0x198/0x19c
[   39.265274][ T6437] irq event stamp: 61009
[   39.266425][ T6437] hardirqs last  enabled at (61009): [<ffff80008b7f1a64>] _raw_spin_unlock_irqrestore+0x38/0x98
[   39.269128][ T6437] hardirqs last disabled at (61008): [<ffff80008b7f1894>] _raw_spin_lock_irqsave+0x2c/0x7c
[   39.271738][ T6437] softirqs last  enabled at (60416): [<ffff8000803128a4>] handle_softirqs+0xb44/0xd34
[   39.274262][ T6437] softirqs last disabled at (60369): [<ffff800080020dbc>] __do_softirq+0x14/0x20
[   39.276613][ T6437] ---[ end trace 0000000000000000 ]---