===================================== WARNING: bad unlock balance detected! 6.19.0-rc5-next-20260115 #1 Not tainted ------------------------------------- syz-executor.0/275 is trying to release lock (rcu_read_lock) at: [] __wait_on_freeing_inode+0x105/0x350 but there are no more locks to release! other info that might help us debug this: 4 locks held by syz-executor.0/275: #0: ffff88800f8903f8 (sb_writers#3){.+.+}-{0:0}, at: filename_create+0xf7/0x400 #1: ffff88801bd7b388 (&type->i_mutex_dir_key#3/1){+.+.}-{4:4}, at: filename_create+0x1b1/0x400 #2: ffff88800f894950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0xe32/0x12d0 #3: ffffffff85c16898 (inode_hash_lock){+.+.}-{3:3}, at: insert_inode_locked+0xf9/0x890 stack backtrace: CPU: 1 UID: 0 PID: 275 Comm: syz-executor.0 Not tainted 6.19.0-rc5-next-20260115 #1 PREEMPT(lazy) Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 Call Trace: dump_stack_lvl+0xca/0x120 print_unlock_imbalance_bug+0x118/0x130 lock_release+0x1ee/0x270 __wait_on_freeing_inode+0x10a/0x350 insert_inode_locked+0x25f/0x890 __ext4_new_inode+0x223d/0x4cd0 ext4_mkdir+0x331/0xb30 vfs_mkdir+0x6d8/0xc00 filename_mkdirat+0x118/0x430 __x64_sys_mkdir+0x6e/0xd0 do_syscall_64+0xbf/0x420 entry_SYSCALL_64_after_hwframe+0x77/0x7f RIP: 0033:0x7f15e19c4c27 Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 RSP: 002b:00007fffb9fe3848 EFLAGS: 00000206 ORIG_RAX: 0000000000000053 RAX: ffffffffffffffda RBX: 00007fffb9fe38d0 RCX: 00007f15e19c4c27 RDX: 0000000000000000 RSI: 00000000000001ff RDI: 00007fffb9fe38d0 RBP: 00007fffb9fe38ac R08: 0000000000000000 R09: 0000000000000004 R10: 00007fffb9fe35e6 R11: 0000000000000206 R12: 0000000000000032 R13: 000000000001d893 R14: 0000000000000003 R15: 00007fffb9fe3910 ------------[ cut here ]------------ WARNING: kernel/rcu/tree_plugin.h:443 at __rcu_read_unlock+0x25f/0x5c0, CPU#1: syz-executor.0/275 Modules linked in: CPU: 1 UID: 0 PID: 275 Comm: syz-executor.0 Not tainted 6.19.0-rc5-next-20260115 #1 PREEMPT(lazy) Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 RIP: 0010:__rcu_read_unlock+0x25f/0x5c0 Code: f2 02 00 00 c7 43 58 01 00 00 00 bf 09 00 00 00 e8 d6 b7 de ff 4d 85 f6 0f 84 73 fe ff ff e8 38 8a 20 00 fb e9 68 fe ff ff 90 <0f> 0b 90 5b 5d 41 5c 41 5d 41 5e e9 81 4d 74 03 e8 2c 5d 56 00 e9 RSP: 0018:ffff88801ae479e0 EFLAGS: 00010286 RAX: 00000000ffffffff RBX: ffff88801b541b80 RCX: ffffffff815660f7 RDX: 0000000000000000 RSI: ffffffff81566100 RDI: ffff88801b541f7c RBP: ffff88801b541b80 R08: 0000000000000000 R09: fffffbfff0ba7040 R10: 0000000000000000 R11: 0000000000000001 R12: ffff88801b541b80 R13: 0000000000000001 R14: ffffffff85c10c60 R15: ffff88801fe332c0 FS: 0000555584dd2400(0000) GS:ffff8880e5442000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 00005555634e4c58 CR3: 000000000cfad000 CR4: 0000000000350ef0 Call Trace: __wait_on_freeing_inode+0x10f/0x350 insert_inode_locked+0x25f/0x890 __ext4_new_inode+0x223d/0x4cd0 ext4_mkdir+0x331/0xb30 vfs_mkdir+0x6d8/0xc00 filename_mkdirat+0x118/0x430 __x64_sys_mkdir+0x6e/0xd0 do_syscall_64+0xbf/0x420 entry_SYSCALL_64_after_hwframe+0x77/0x7f RIP: 0033:0x7f15e19c4c27 Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 RSP: 002b:00007fffb9fe3848 EFLAGS: 00000206 ORIG_RAX: 0000000000000053 RAX: ffffffffffffffda RBX: 00007fffb9fe38d0 RCX: 00007f15e19c4c27 RDX: 0000000000000000 RSI: 00000000000001ff RDI: 00007fffb9fe38d0 RBP: 00007fffb9fe38ac R08: 0000000000000000 R09: 0000000000000004 R10: 00007fffb9fe35e6 R11: 0000000000000206 R12: 0000000000000032 R13: 000000000001d893 R14: 0000000000000003 R15: 00007fffb9fe3910 irq event stamp: 286529 hardirqs last enabled at (286529): [] _raw_spin_unlock_irqrestore+0x2c/0x50 hardirqs last disabled at (286528): [] _raw_spin_lock_irqsave+0x53/0x60 softirqs last enabled at (286524): [] kernel_fpu_end+0x59/0x70 softirqs last disabled at (286522): [] kernel_fpu_begin_mask+0x1bb/0x300 ---[ end trace 0000000000000000 ]--- UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list Process accounting resumed Process accounting resumed Process accounting resumed Process accounting resumed Process accounting resumed Process accounting resumed Process accounting resumed Process accounting resumed set_capacity_and_notify: 6 callbacks suppressed loop1: detected capacity change from 0 to 128 isofs_fill_super: bread failed, dev=loop1, iso_blknum=32, block=64 loop1: detected capacity change from 0 to 128 isofs_fill_super: bread failed, dev=loop1, iso_blknum=32, block=64 loop1: detected capacity change from 0 to 128 isofs_fill_super: bread failed, dev=loop1, iso_blknum=32, block=64 loop1: detected capacity change from 0 to 128 isofs_fill_super: bread failed, dev=loop1, iso_blknum=32, block=64 random: crng reseeded on system resumption No source specified No source specified random: crng reseeded on system resumption No source specified random: crng reseeded on system resumption No source specified No source specified random: crng reseeded on system resumption random: crng reseeded on system resumption random: crng reseeded on system resumption random: crng reseeded on system resumption random: crng reseeded on system resumption random: crng reseeded on system resumption random: crng reseeded on system resumption random: crng reseeded on system resumption random: crng reseeded on system resumption random: crng reseeded on system resumption random: crng reseeded on system resumption random: crng reseeded on system resumption program syz-executor.7 is using a deprecated SCSI ioctl, please convert it to SG_IO program syz-executor.7 is using a deprecated SCSI ioctl, please convert it to SG_IO program syz-executor.7 is using a deprecated SCSI ioctl, please convert it to SG_IO program syz-executor.7 is using a deprecated SCSI ioctl, please convert it to SG_IO