------------[ cut here ]------------
WARNING: CPU: 1 PID: 8913 at mm/memory.c:1520 zap_pmd_range mm/memory.c:1578 [inline]
WARNING: CPU: 1 PID: 8913 at mm/memory.c:1520 zap_pud_range mm/memory.c:1611 [inline]
WARNING: CPU: 1 PID: 8913 at mm/memory.c:1520 zap_p4d_range mm/memory.c:1632 [inline]
WARNING: CPU: 1 PID: 8913 at mm/memory.c:1520 unmap_page_range+0xfb4/0x1a7c mm/memory.c:1653
Modules linked in:
CPU: 1 PID: 8913 Comm: syz-executor.1 Not tainted 6.7.0-rc4-syzkaller #0
Hardware name: linux,dummy-virt (DT)
pstate: 20000005 (nzCv daif -PAN -UAO -TCO -DIT -SSBS BTYPE=--)
pc : zap_pte_range mm/memory.c:1520 [inline]
pc : zap_pmd_range mm/memory.c:1582 [inline]
pc : zap_pud_range mm/memory.c:1611 [inline]
pc : zap_p4d_range mm/memory.c:1632 [inline]
pc : unmap_page_range+0xfb4/0x1a7c mm/memory.c:1653
lr : __tlb_remove_page include/asm-generic/tlb.h:471 [inline]
lr : zap_pte_range mm/memory.c:1469 [inline]
lr : zap_pmd_range mm/memory.c:1582 [inline]
lr : zap_pud_range mm/memory.c:1611 [inline]
lr : zap_p4d_range mm/memory.c:1632 [inline]
lr : unmap_page_range+0x998/0x1a7c mm/memory.c:1653
sp : ffff80008c5876d0
x29: ffff80008c5876d0 x28: 00000000200ab000 x27: ffff80008c5879b0
x26: 0000000000000004 x25: ffff80008c587b30 x24: 00000000200aa000
x23: ffff00000d63c550 x22: dfff800000000000 x21: 0000000000000000
x20: 1fffe00001ac78aa x19: 0000000020200000 x18: ffff00000b3dc1d8
x17: 0000000000000000 x16: 0000000000000002 x15: 1fffe0000167b83a
x14: 1fffe0000167b84e x13: 1fffe0000167b837 x12: ffff7f80000bc147
x11: 1fffff80000bc146 x10: ffff7f80000bc146 x9 : dfff800000000000
x8 : 1fffff80000bc141 x7 : 0000000000000000 x6 : 0000000000000001
x5 : fffffc00005e0a30 x4 : ffff7f80000bc147 x3 : 00000000000001f8
x2 : 7c00000000000001 x1 : 0000000000000007 x0 : 000000000000001f
Call trace:
 zap_pmd_range mm/memory.c:1578 [inline]
 zap_pud_range mm/memory.c:1611 [inline]
 zap_p4d_range mm/memory.c:1632 [inline]
 unmap_page_range+0xfb4/0x1a7c mm/memory.c:1653
 unmap_single_vma.constprop.0+0xb4/0x188 mm/memory.c:1699
 unmap_vmas+0x194/0x308 mm/memory.c:1743
 exit_mmap+0x12c/0x91c mm/mmap.c:3308
 __mmput+0xa8/0x3a0 kernel/fork.c:1349
 mmput+0x88/0x98 kernel/fork.c:1371
 exit_mm kernel/exit.c:567 [inline]
 do_exit+0x6ac/0x1f64 kernel/exit.c:858
 do_group_exit+0xa4/0x208 kernel/exit.c:1021
 __do_sys_exit_group kernel/exit.c:1032 [inline]
 __se_sys_exit_group kernel/exit.c:1030 [inline]
 __arm64_sys_exit_group+0x3c/0x44 kernel/exit.c:1030
 __invoke_syscall arch/arm64/kernel/syscall.c:37 [inline]
 invoke_syscall+0x6c/0x258 arch/arm64/kernel/syscall.c:51
 el0_svc_common.constprop.0+0xac/0x230 arch/arm64/kernel/syscall.c:136
 do_el0_svc+0x40/0x58 arch/arm64/kernel/syscall.c:155
 el0_svc+0x58/0x140 arch/arm64/kernel/entry-common.c:678
 el0t_64_sync_handler+0x100/0x12c arch/arm64/kernel/entry-common.c:696
 el0t_64_sync+0x190/0x194 arch/arm64/kernel/entry.S:595
irq event stamp: 3994
hardirqs last  enabled at (3993): [<ffff800084d51fcc>] __raw_spin_unlock_irqrestore include/linux/spinlock_api_smp.h:151 [inline]
hardirqs last  enabled at (3993): [<ffff800084d51fcc>] _raw_spin_unlock_irqrestore+0x80/0xac kernel/locking/spinlock.c:194
hardirqs last disabled at (3994): [<ffff800084d29ef0>] el1_dbg+0x24/0x9c arch/arm64/kernel/entry-common.c:436
softirqs last  enabled at (3948): [<ffff80008001d258>] fpsimd_restore_current_state+0x38/0xdc arch/arm64/kernel/fpsimd.c:1741
softirqs last disabled at (3946): [<ffff80008001a9ac>] get_cpu_fpsimd_context+0x0/0xa0 arch/arm64/kernel/fpsimd.c:1889
---[ end trace 0000000000000000 ]---