------------[ cut here ]------------
WARNING: CPU: 0 PID: 22090 at arch/arm64/kvm/../../../virt/kvm/kvm_main.c:592 kvm_flush_remote_tlbs arch/arm64/kvm/../../../virt/kvm/kvm_main.c:364 [inline]
WARNING: CPU: 0 PID: 22090 at arch/arm64/kvm/../../../virt/kvm/kvm_main.c:592 __kvm_handle_hva_range arch/arm64/kvm/../../../virt/kvm/kvm_main.c:645 [inline]
WARNING: CPU: 0 PID: 22090 at arch/arm64/kvm/../../../virt/kvm/kvm_main.c:592 kvm_mmu_notifier_invalidate_range_start+0x264/0x27c arch/arm64/kvm/../../../virt/kvm/kvm_main.c:811
Modules linked in:
CPU: 0 PID: 22090 Comm: syz-executor.1 Not tainted 6.7.0-rc1-syzkaller-00304-g23dfa043f6d5 #0
Hardware name: linux,dummy-virt (DT)
pstate: 61400009 (nZCv daif +PAN -UAO -TCO +DIT -SSBS BTYPE=--)
pc : __kvm_handle_hva_range arch/arm64/kvm/../../../virt/kvm/kvm_main.c:592 [inline]
pc : kvm_mmu_notifier_invalidate_range_start+0x264/0x27c arch/arm64/kvm/../../../virt/kvm/kvm_main.c:811
lr : spin_unlock include/linux/spinlock.h:391 [inline]
lr : kvm_mmu_notifier_invalidate_range_start+0x70/0x27c arch/arm64/kvm/../../../virt/kvm/kvm_main.c:796
sp : ffff800088b7bb20
x29: ffff800088b7bb20 x28: faff800088b71000 x27: ffff80008190bf78
x26: ffff8000820992c8 x25: ffff800082225a50 x24: ffff800082099000
x23: faff800088b718d4 x22: 0000000000000001 x21: faff800088b71e20
x20: 0000000020ff9000 x19: 0000000020ff9000 x18: ffffffffffffffff
x17: 0000000000000000 x16: 0000000000000000 x15: 00000000200000c0
x14: 0000000000000000 x13: 0000000000000000 x12: 0000000000000000
x11: 0000000000000000 x10: 0000000020ff9000 x9 : 0000000020ff9000
x8 : ffff800088b7bc08 x7 : 0000000000000000 x6 : 0000000000000001
x5 : 0000000000000000 x4 : 0000000000000000 x3 : 0000000000000030
x2 : 0000000000000001 x1 : f6ff000019b4cec0 x0 : 0000000100000000
Call trace:
 kvm_flush_remote_tlbs arch/arm64/kvm/../../../virt/kvm/kvm_main.c:364 [inline]
 __kvm_handle_hva_range arch/arm64/kvm/../../../virt/kvm/kvm_main.c:645 [inline]
 kvm_mmu_notifier_invalidate_range_start+0x264/0x27c arch/arm64/kvm/../../../virt/kvm/kvm_main.c:811
 mn_hlist_invalidate_range_start mm/mmu_notifier.c:493 [inline]
 __mmu_notifier_invalidate_range_start+0xa4/0x23c mm/mmu_notifier.c:548
 mmu_notifier_invalidate_range_start include/linux/mmu_notifier.h:457 [inline]
 mmu_notifier_invalidate_range_start include/linux/mmu_notifier.h:450 [inline]
 do_pagemap_scan+0x460/0x598 fs/proc/task_mmu.c:2422
 do_pagemap_cmd+0x28/0x3c fs/proc/task_mmu.c:2478
 vfs_ioctl fs/ioctl.c:51 [inline]
 __do_sys_ioctl fs/ioctl.c:871 [inline]
 __se_sys_ioctl fs/ioctl.c:857 [inline]
 __arm64_sys_ioctl+0xac/0xf0 fs/ioctl.c:857
 __invoke_syscall arch/arm64/kernel/syscall.c:37 [inline]
 invoke_syscall+0x48/0x114 arch/arm64/kernel/syscall.c:51
 el0_svc_common.constprop.0+0x40/0xe0 arch/arm64/kernel/syscall.c:136
 do_el0_svc+0x1c/0x28 arch/arm64/kernel/syscall.c:155
 el0_svc+0x34/0xd8 arch/arm64/kernel/entry-common.c:678
 el0t_64_sync_handler+0x100/0x12c arch/arm64/kernel/entry-common.c:696
 el0t_64_sync+0x19c/0x1a0 arch/arm64/kernel/entry.S:595
---[ end trace 0000000000000000 ]---
------------[ cut here ]------------
WARNING: CPU: 0 PID: 22090 at arch/arm64/kvm/../../../virt/kvm/kvm_main.c:592 kvm_mmu_notifier_invalidate_range_end+0x108/0x11c arch/arm64/kvm/../../../virt/kvm/kvm_main.c:863
Modules linked in:
CPU: 0 PID: 22090 Comm: syz-executor.1 Tainted: G        W          6.7.0-rc1-syzkaller-00304-g23dfa043f6d5 #0
Hardware name: linux,dummy-virt (DT)
pstate: 61400009 (nZCv daif +PAN -UAO -TCO +DIT -SSBS BTYPE=--)
pc : __kvm_handle_hva_range arch/arm64/kvm/../../../virt/kvm/kvm_main.c:592 [inline]
pc : kvm_mmu_notifier_invalidate_range_end+0x108/0x11c arch/arm64/kvm/../../../virt/kvm/kvm_main.c:849
lr : mn_hlist_invalidate_end mm/mmu_notifier.c:565 [inline]
lr : __mmu_notifier_invalidate_range_end+0x68/0xac mm/mmu_notifier.c:584
sp : ffff800088b7bbe0
x29: ffff800088b7bbe0 x28: f6ff000019b4cec0 x27: 0000000000000000
x26: 0000000000000000 x25: 00000000200000e0 x24: 0000000000000000
x23: 0000000020ff9000 x22: 0000000020ff9000 x21: ffff8000825c67f0
x20: faff800088b71e20 x19: faff800088b71e20 x18: ffffffffffffffff
x17: 0000000000000000 x16: 0000000000000000 x15: ffff800088b7bd40
x14: 0000000000000000 x13: 0000000000000000 x12: 0000000000000000
x11: 0000000000000000 x10: 0000000020ff9000 x9 : 0000000020ff9000
x8 : ffff800088b7bc08 x7 : 0000000000000000 x6 : 00000000200000e8
x5 : 00000000200000e8 x4 : f6ff000019b4cec0 x3 : 0000000000000001
x2 : ffff800080040fdc x1 : ffff800088b7bcf8 x0 : faff800088b71e20
Call trace:
 kvm_mmu_notifier_invalidate_range_end+0x108/0x11c arch/arm64/kvm/../../../virt/kvm/kvm_main.c:863
 mn_hlist_invalidate_end mm/mmu_notifier.c:565 [inline]
 __mmu_notifier_invalidate_range_end+0x68/0xac mm/mmu_notifier.c:584
 mmu_notifier_invalidate_range_end include/linux/mmu_notifier.h:490 [inline]
 do_pagemap_scan+0x4e8/0x598 fs/proc/task_mmu.c:2465
 do_pagemap_cmd+0x28/0x3c fs/proc/task_mmu.c:2478
 vfs_ioctl fs/ioctl.c:51 [inline]
 __do_sys_ioctl fs/ioctl.c:871 [inline]
 __se_sys_ioctl fs/ioctl.c:857 [inline]
 __arm64_sys_ioctl+0xac/0xf0 fs/ioctl.c:857
 __invoke_syscall arch/arm64/kernel/syscall.c:37 [inline]
 invoke_syscall+0x48/0x114 arch/arm64/kernel/syscall.c:51
 el0_svc_common.constprop.0+0x40/0xe0 arch/arm64/kernel/syscall.c:136
 do_el0_svc+0x1c/0x28 arch/arm64/kernel/syscall.c:155
 el0_svc+0x34/0xd8 arch/arm64/kernel/entry-common.c:678
 el0t_64_sync_handler+0x100/0x12c arch/arm64/kernel/entry-common.c:696
 el0t_64_sync+0x19c/0x1a0 arch/arm64/kernel/entry.S:595
---[ end trace 0000000000000000 ]---