syzbot

==================================================================
BUG: KCSAN: data-race in mas_state_walk / mas_wmb_replace

write to 0xffff888104cb8b00 of 8 bytes by task 6573 on cpu 0:
 mte_set_node_dead lib/maple_tree.c:334 [inline]
 mas_put_in_tree lib/maple_tree.c:1565 [inline]
 mas_topiary_replace lib/maple_tree.c:2341 [inline]
 mas_wmb_replace+0x20d/0x1610 lib/maple_tree.c:2433
 mas_split lib/maple_tree.c:3052 [inline]
 mas_commit_b_node lib/maple_tree.c:3072 [inline]
 mas_wr_bnode lib/maple_tree.c:3739 [inline]
 mas_wr_store_entry+0x16b6/0x2e70 lib/maple_tree.c:3771
 mas_store_prealloc+0x72e/0xa60 lib/maple_tree.c:5169
 vma_iter_store_overwrite mm/vma.h:544 [inline]
 vma_iter_store_new mm/vma.h:551 [inline]
 vma_complete+0x3f7/0x820 mm/vma.c:353
 __split_vma+0x5e3/0x660 mm/vma.c:566
 split_vma mm/vma.c:596 [inline]
 vma_modify+0xbcb/0xd30 mm/vma.c:1674
 vma_modify_flags+0x182/0x210 mm/vma.c:1694
 mprotect_fixup+0x30e/0x5e0 mm/mprotect.c:756
 do_mprotect_pkey+0x67b/0x920 mm/mprotect.c:930
 __do_sys_mprotect mm/mprotect.c:951 [inline]
 __se_sys_mprotect mm/mprotect.c:948 [inline]
 __x64_sys_mprotect+0x48/0x60 mm/mprotect.c:948
 x64_sys_call+0x2c3b/0x3000 arch/x86/include/generated/asm/syscalls_64.h:11
 do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]
 do_syscall_64+0xc0/0x2a0 arch/x86/entry/syscall_64.c:94
 entry_SYSCALL_64_after_hwframe+0x77/0x7f

read to 0xffff888104cb8b00 of 8 bytes by task 6576 on cpu 1:
 ma_dead_node lib/maple_tree.c:572 [inline]
 mte_dead_node lib/maple_tree.c:587 [inline]
 mas_start lib/maple_tree.c:1207 [inline]
 mas_state_walk+0x119/0x650 lib/maple_tree.c:3291
 mas_walk+0x60/0x150 lib/maple_tree.c:4599
 lock_vma_under_rcu+0xc9/0x210 mm/mmap_lock.c:253
 do_user_addr_fault+0x232/0x1050 arch/x86/mm/fault.c:1325
 handle_page_fault arch/x86/mm/fault.c:1474 [inline]
 exc_page_fault+0x62/0xa0 arch/x86/mm/fault.c:1527
 asm_exc_page_fault+0x26/0x30 arch/x86/include/asm/idtentry.h:618

value changed: 0xffff88810a729b41 -> 0xffff888104cb8b00

Reported by Kernel Concurrency Sanitizer on:
CPU: 1 UID: 0 PID: 6576 Comm: syz.6.968 Not tainted syzkaller #0 PREEMPT(voluntary) 
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
==================================================================