------------[ cut here ]------------
WARNING: CPU: 1 PID: 3781 at mm/vma.c:1240 vms_complete_munmap_vmas+0x544/0x7c0 mm/vma.c:1239
Modules linked in:
CPU: 1 UID: 0 PID: 3781 Comm: syz.0.102 Not tainted 6.15.0-rc7-syzkaller #0 PREEMPT 
Hardware name: linux,dummy-virt (DT)
pstate: 20000005 (nzCv daif -PAN -UAO -TCO -DIT -SSBS BTYPE=--)
pc : vms_complete_munmap_vmas+0x544/0x7c0 mm/vma.c:1240
lr : vms_complete_munmap_vmas+0x178/0x7c0 mm/vma.c:1233
sp : ffff8000a0e97650
x29: ffff8000a0e97650 x28: ffff000013b313c0 x27: 00000000000016d3
x26: 1fffe0000254f48e x25: 0000000000000004 x24: 1ffff000141d2f2f
x23: 0000000000000c00 x22: ffff8000a0e9797c x21: ffff8000a0e979b0
x20: ffff000012a7a200 x19: ffff8000a0e97930 x18: 1ffff000141d2ec0
x17: 1ffff000141d2f00 x16: 0000000000000000 x15: 0000000000000004
x14: 0000000000000007 x13: 0000000000000000 x12: ffff7000141d2ec2
x11: 1ffff000141d2ec1 x10: ffff7000141d2ec1 x9 : ffff000012a7a470
x8 : ffff8000a0e97998 x7 : ffff000012a7a478 x6 : ffff8000a0e979a0
x5 : 0000000000000040 x4 : fffffffffffffff0 x3 : 1ffff000141d2f33
x2 : 1fffe0000254f48f x1 : 1ffff000141d2f34 x0 : 0000000000000021
Call trace:
 vms_complete_munmap_vmas+0x544/0x7c0 mm/vma.c:1239 (P)
 __mmap_complete mm/vma.c:2469 [inline]
 __mmap_region+0x470/0x136c mm/vma.c:2535
 mmap_region+0x23c/0x328 mm/vma.c:2597
 do_mmap+0x758/0xc74 mm/mmap.c:561
 vm_mmap_pgoff+0x1ec/0x340 mm/util.c:579
 ksys_mmap_pgoff+0x120/0x634 mm/mmap.c:607
 __do_compat_sys_aarch32_mmap2 arch/arm64/kernel/sys32.c:59 [inline]
 __se_compat_sys_aarch32_mmap2 arch/arm64/kernel/sys32.c:50 [inline]
 __arm64_compat_sys_aarch32_mmap2+0xc0/0x130 arch/arm64/kernel/sys32.c:50
 __invoke_syscall arch/arm64/kernel/syscall.c:35 [inline]
 invoke_syscall+0x6c/0x258 arch/arm64/kernel/syscall.c:49
 el0_svc_common.constprop.0+0xac/0x230 arch/arm64/kernel/syscall.c:132
 do_el0_svc_compat+0x40/0x68 arch/arm64/kernel/syscall.c:157
 el0_svc_compat+0x4c/0x17c arch/arm64/kernel/entry-common.c:887
 el0t_32_sync_handler+0x98/0x13c arch/arm64/kernel/entry-common.c:897
 el0t_32_sync+0x19c/0x1a0 arch/arm64/kernel/entry.S:605
irq event stamp: 1018
hardirqs last  enabled at (1017): [<ffff800080906ce0>] ___slab_alloc+0x768/0x1540 mm/slub.c:3768
hardirqs last disabled at (1018): [<ffff80008545e780>] el1_dbg+0x24/0x9c arch/arm64/kernel/entry-common.c:488
softirqs last  enabled at (968): [<ffff80008001c2ac>] fpsimd_restore_current_state+0x44/0xe4 arch/arm64/kernel/fpsimd.c:1781
softirqs last disabled at (966): [<ffff80008001c27c>] alternative_has_cap_likely arch/arm64/include/asm/alternative-macros.h:232 [inline]
softirqs last disabled at (966): [<ffff80008001c27c>] system_supports_fpsimd arch/arm64/include/asm/cpufeature.h:720 [inline]
softirqs last disabled at (966): [<ffff80008001c27c>] fpsimd_restore_current_state+0x14/0xe4 arch/arm64/kernel/fpsimd.c:1774
---[ end trace 0000000000000000 ]---