=====================================
WARNING: bad unlock balance detected!
syzkaller #0 Not tainted
-------------------------------------
jbd2/sda1-8/2819 is trying to release lock (rcu_read_lock) at:
[<ffffffff821abb37>] rcu_lock_release include/linux/rcupdate.h:310 [inline]
[<ffffffff821abb37>] rcu_read_unlock+0x17/0x60 include/linux/rcupdate.h:869
but there are no more locks to release!

other info that might help us debug this:
1 lock held by jbd2/sda1-8/2819:
 #0: ffff8881104a2b58 (&xa->xa_lock#9){..-.}-{3:3}, at: spin_lock_irq include/linux/spinlock.h:372 [inline]
 #0: ffff8881104a2b58 (&xa->xa_lock#9){..-.}-{3:3}, at: __filemap_add_folio+0x9a2/0x1330 mm/filemap.c:876

stack backtrace:
CPU: 0 UID: 0 PID: 2819 Comm: jbd2/sda1-8 Not tainted syzkaller #0 PREEMPT(full) 
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
Call Trace:
 <TASK>
 __dump_stack lib/dump_stack.c:94 [inline]
 dump_stack_lvl+0x100/0x190 lib/dump_stack.c:120
 print_unlock_imbalance_bug.part.0+0xfb/0x106 kernel/locking/lockdep.c:5298
 print_unlock_imbalance_bug kernel/locking/lockdep.c:5278 [inline]
 __lock_release kernel/locking/lockdep.c:5537 [inline]
 lock_release kernel/locking/lockdep.c:5889 [inline]
 lock_release+0x28d/0x310 kernel/locking/lockdep.c:5875
 rcu_lock_release include/linux/rcupdate.h:310 [inline]
 rcu_read_unlock+0x1c/0x60 include/linux/rcupdate.h:869
 __filemap_add_folio+0xb51/0x1330 mm/filemap.c:924
 filemap_add_folio+0x1d8/0x740 mm/filemap.c:967
 __filemap_get_folio_mpol+0x534/0xd10 mm/filemap.c:2022
 __filemap_get_folio include/linux/pagemap.h:763 [inline]
 grow_dev_folio fs/buffer.c:954 [inline]
 grow_buffers fs/buffer.c:1020 [inline]
 __getblk_slow fs/buffer.c:1038 [inline]
 bdev_getblk+0x246/0x6a0 fs/buffer.c:1358
 __getblk include/linux/buffer_head.h:380 [inline]
 jbd2_journal_get_descriptor_buffer+0x176/0x4c0 fs/jbd2/journal.c:976
 journal_submit_commit_record+0x123/0x8c0 fs/jbd2/commit.c:129
 jbd2_journal_commit_transaction+0x3bec/0x6870 fs/jbd2/commit.c:904
 kjournald2+0x200/0x760 fs/jbd2/journal.c:201
 kthread+0x370/0x450 kernel/kthread.c:436
 ret_from_fork+0x69a/0xc80 arch/x86/kernel/process.c:158
 ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:245
 </TASK>
------------[ cut here ]------------
rrln < 0 || rrln > RCU_NEST_PMAX
WARNING: kernel/rcu/tree_plugin.h:443 at __rcu_read_unlock kernel/rcu/tree_plugin.h:443 [inline], CPU#0: jbd2/sda1-8/2819
WARNING: kernel/rcu/tree_plugin.h:443 at __rcu_read_unlock+0x235/0x5e0 kernel/rcu/tree_plugin.h:430, CPU#0: jbd2/sda1-8/2819
Modules linked in:
CPU: 0 UID: 0 PID: 2819 Comm: jbd2/sda1-8 Not tainted syzkaller #0 PREEMPT(full) 
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
RIP: 0010:__rcu_read_unlock kernel/rcu/tree_plugin.h:443 [inline]
RIP: 0010:__rcu_read_unlock+0x235/0x5e0 kernel/rcu/tree_plugin.h:430
Code: 74 11 c7 45 58 01 00 00 00 bf 09 00 00 00 e8 32 67 de ff e8 1d 69 22 00 9c 58 f6 c4 02 0f 85 dd 02 00 00 fb e9 57 fe ff ff 90 <0f> 0b 90 5b 5d 41 5c 41 5d 41 5e 41 5f c3 cc cc cc cc e8 c4 db 7f
RSP: 0018:ffffc90004f7f540 EFLAGS: 00010086
RAX: 00000000ffffffff RBX: ffff888115400000 RCX: ffffffff8192765e
RDX: 0000000000000000 RSI: ffffffff890a58f7 RDI: ffff88811540047c
RBP: ffff88811b364dc0 R08: 0000000000000005 R09: 0000000000000000
R10: 0000000080000001 R11: 0000000000000001 R12: 0000000000000000
R13: ffff8881104a2b38 R14: 0000000000000000 R15: 00000000000000ff
FS:  0000000000000000(0000) GS:ffff8882686a8000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007fad9b546e9c CR3: 00000001155f6000 CR4: 00000000003506f0
Call Trace:
 <TASK>
 __filemap_add_folio+0xb51/0x1330 mm/filemap.c:924
 filemap_add_folio+0x1d8/0x740 mm/filemap.c:967
 __filemap_get_folio_mpol+0x534/0xd10 mm/filemap.c:2022
 __filemap_get_folio include/linux/pagemap.h:763 [inline]
 grow_dev_folio fs/buffer.c:954 [inline]
 grow_buffers fs/buffer.c:1020 [inline]
 __getblk_slow fs/buffer.c:1038 [inline]
 bdev_getblk+0x246/0x6a0 fs/buffer.c:1358
 __getblk include/linux/buffer_head.h:380 [inline]
 jbd2_journal_get_descriptor_buffer+0x176/0x4c0 fs/jbd2/journal.c:976
 journal_submit_commit_record+0x123/0x8c0 fs/jbd2/commit.c:129
 jbd2_journal_commit_transaction+0x3bec/0x6870 fs/jbd2/commit.c:904
 kjournald2+0x200/0x760 fs/jbd2/journal.c:201
 kthread+0x370/0x450 kernel/kthread.c:436
 ret_from_fork+0x69a/0xc80 arch/x86/kernel/process.c:158
 ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:245
 </TASK>