Warning: Permanently added '10.128.1.124' (ED25519) to the list of known hosts.
executing program
[   34.214555][ T6436] loop0: detected capacity change from 0 to 32768
[   34.257153][ T6436] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[   34.290985][ T6436] XFS (loop0): Ending clean mount
[   34.295014][ T6436] XFS (loop0): Quotacheck needed: Please wait.
[   34.309343][ T6436] XFS (loop0): Quotacheck: Done.
[   39.071094][ T6436] 
[   39.071783][ T6436] =====================================
[   39.073254][ T6436] WARNING: bad unlock balance detected!
[   39.074768][ T6436] 6.14.0-rc4-syzkaller-ge056da87c780 #0 Not tainted
[   39.076478][ T6436] -------------------------------------
[   39.077925][ T6436] syz-executor109/6436 is trying to release lock (&mm->mmap_lock) at:
[   39.080175][ T6436] [<ffff800080a63c54>] __mm_populate+0x328/0x3d8
[   39.081923][ T6436] but there are no more locks to release!
[   39.083525][ T6436] 
[   39.083525][ T6436] other info that might help us debug this:
[   39.085739][ T6436] no locks held by syz-executor109/6436.
[   39.087215][ T6436] 
[   39.087215][ T6436] stack backtrace:
[   39.088768][ T6436] CPU: 1 UID: 0 PID: 6436 Comm: syz-executor109 Not tainted 6.14.0-rc4-syzkaller-ge056da87c780 #0
[   39.088783][ T6436] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[   39.088790][ T6436] Call trace:
[   39.088793][ T6436]  show_stack+0x2c/0x3c (C)
[   39.088811][ T6436]  dump_stack_lvl+0xe4/0x150
[   39.088825][ T6436]  dump_stack+0x1c/0x28
[   39.088837][ T6436]  print_unlock_imbalance_bug+0x254/0x2ac
[   39.088850][ T6436]  lock_release+0x410/0x9e4
[   39.088860][ T6436]  up_read+0x24/0x3c
[   39.088870][ T6436]  __mm_populate+0x328/0x3d8
[   39.088881][ T6436]  vm_mmap_pgoff+0x304/0x3c4
[   39.088892][ T6436]  ksys_mmap_pgoff+0x3a4/0x5c8
[   39.088902][ T6436]  __arm64_sys_mmap+0xf8/0x110
[   39.088914][ T6436]  invoke_syscall+0x98/0x2b8
[   39.088927][ T6436]  el0_svc_common+0x130/0x23c
[   39.088939][ T6436]  do_el0_svc+0x48/0x58
[   39.088950][ T6436]  el0_svc+0x54/0x168
[   39.088960][ T6436]  el0t_64_sync_handler+0x84/0x108
[   39.088970][ T6436]  el0t_64_sync+0x198/0x19c
[   39.115726][ T6436] ------------[ cut here ]------------
[   39.117256][ T6436] DEBUG_RWSEMS_WARN_ON(tmp < 0): count = 0xffffffffffffff00, magic = 0xffff0000d86e4de0, owner = 0x1, curr 0xffff0000c69a0000, list empty
[   39.121239][ T6436] WARNING: CPU: 1 PID: 6436 at kernel/locking/rwsem.c:1346 __up_read+0x3bc/0x5f8
[   39.123650][ T6436] Modules linked in:
[   39.124738][ T6436] CPU: 1 UID: 0 PID: 6436 Comm: syz-executor109 Not tainted 6.14.0-rc4-syzkaller-ge056da87c780 #0
[   39.127552][ T6436] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[   39.130208][ T6436] pstate: 60400005 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)
[   39.132300][ T6436] pc : __up_read+0x3bc/0x5f8
[   39.133578][ T6436] lr : __up_read+0x3bc/0x5f8
[   39.134806][ T6436] sp : ffff80009cdd79e0
[   39.135956][ T6436] x29: ffff80009cdd7a60 x28: 1ffff00011f780cb x27: ffff80008fbc0000
[   39.138215][ T6436] x26: dfff800000000000 x25: ffffffffffffff00 x24: ffff0000d86e4e38
[   39.140469][ T6436] x23: ffff0000d86e4de0 x22: ffffffffffffff00 x21: 0000000000000001
[   39.142691][ T6436] x20: ffff0000c69a0000 x19: ffff0000d86e4de0 x18: 0000000000000008
[   39.144892][ T6436] x17: 0000000000000000 x16: ffff8000832b5180 x15: 0000000000000001
[   39.147067][ T6436] x14: 1ffff000139bae94 x13: 0000000000000000 x12: 0000000000000000
[   39.149283][ T6436] x11: 0000000000000003 x10: 0000000000ff0100 x9 : aaeea068a75a4000
[   39.151451][ T6436] x8 : aaeea068a75a4000 x7 : 0000000000000001 x6 : 0000000000000001
[   39.153678][ T6436] x5 : ffff80009cdd7198 x4 : ffff80008fcaf780 x3 : ffff800083247194
[   39.155837][ T6436] x2 : 0000000000000001 x1 : 0000000100000001 x0 : 0000000000000000
[   39.158111][ T6436] Call trace:
[   39.159063][ T6436]  __up_read+0x3bc/0x5f8 (P)
[   39.160395][ T6436]  up_read+0x2c/0x3c
[   39.161469][ T6436]  __mm_populate+0x328/0x3d8
[   39.162772][ T6436]  vm_mmap_pgoff+0x304/0x3c4
[   39.164007][ T6436]  ksys_mmap_pgoff+0x3a4/0x5c8
[   39.165376][ T6436]  __arm64_sys_mmap+0xf8/0x110
[   39.166718][ T6436]  invoke_syscall+0x98/0x2b8
[   39.167965][ T6436]  el0_svc_common+0x130/0x23c
[   39.169302][ T6436]  do_el0_svc+0x48/0x58
[   39.170500][ T6436]  el0_svc+0x54/0x168
[   39.171590][ T6436]  el0t_64_sync_handler+0x84/0x108
[   39.172995][ T6436]  el0t_64_sync+0x198/0x19c
[   39.174251][ T6436] irq event stamp: 64843
[   39.175423][ T6436] hardirqs last  enabled at (64843): [<ffff80008b7e75f8>] _raw_spin_unlock_irqrestore+0x38/0x98
[   39.178317][ T6436] hardirqs last disabled at (64842): [<ffff80008b7e7428>] _raw_spin_lock_irqsave+0x2c/0x7c
[   39.181006][ T6436] softirqs last  enabled at (64286): [<ffff8000801283e0>] local_bh_enable+0x10/0x34
[   39.183652][ T6436] softirqs last disabled at (64284): [<ffff8000801283ac>] local_bh_disable+0x10/0x34
[   39.186204][ T6436] ---[ end trace 0000000000000000 ]---