================================================================== BUG: KCSAN: data-race in mas_wr_store_entry / mtree_range_walk write to 0xffff888105b91000 of 8 bytes by task 15395 on cpu 1: mte_set_node_dead lib/maple_tree.c:299 [inline] mas_put_in_tree lib/maple_tree.c:1579 [inline] mas_replace_node lib/maple_tree.c:1594 [inline] mas_wr_node_store lib/maple_tree.c:3201 [inline] mas_wr_store_entry+0x3be9/0x5ad0 lib/maple_tree.c:3531 mas_store_prealloc+0x43e/0x690 lib/maple_tree.c:4936 vma_iter_store_overwrite mm/vma.h:616 [inline] vma_iter_store_new mm/vma.h:623 [inline] vma_complete+0x3c7/0x850 mm/vma.c:359 __split_vma+0x593/0x640 mm/vma.c:569 vms_gather_munmap_vmas+0x184/0x850 mm/vma.c:1427 do_vmi_align_munmap+0x1e1/0x400 mm/vma.c:1595 do_vmi_munmap+0x1da/0x220 mm/vma.c:1652 __vm_munmap+0x1a8/0x290 mm/vma.c:3285 __do_sys_munmap mm/mmap.c:1079 [inline] __se_sys_munmap mm/mmap.c:1076 [inline] __x64_sys_munmap+0x36/0x50 mm/mmap.c:1076 x64_sys_call+0x9c0/0x3020 arch/x86/include/generated/asm/syscalls_64.h:12 do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline] do_syscall_64+0x12c/0x3b0 arch/x86/entry/syscall_64.c:94 entry_SYSCALL_64_after_hwframe+0x77/0x7f read to 0xffff888105b91000 of 8 bytes by task 15391 on cpu 0: ma_dead_node lib/maple_tree.c:544 [inline] mtree_range_walk+0x350/0x490 lib/maple_tree.c:2051 mas_state_walk lib/maple_tree.c:2952 [inline] mas_walk+0x1cc/0x370 lib/maple_tree.c:4366 lock_vma_under_rcu+0xc9/0x210 mm/mmap_lock.c:304 do_user_addr_fault+0x232/0x1050 arch/x86/mm/fault.c:1325 handle_page_fault arch/x86/mm/fault.c:1474 [inline] exc_page_fault+0x62/0xa0 arch/x86/mm/fault.c:1527 asm_exc_page_fault+0x26/0x30 arch/x86/include/asm/idtentry.h:618 value changed: 0xffff8881427acc06 -> 0xffff888105b91000 Reported by Kernel Concurrency Sanitizer on: CPU: 0 UID: 0 PID: 15391 Comm: syz.4.3494 Tainted: G W syzkaller #0 PREEMPT(lazy) Tainted: [W]=WARN Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026 ==================================================================