=====================================================
BUG: KMSAN: uninit-value in __flush_smp_call_function_queue+0x362/0x18e0 kernel/smp.c:535
 __flush_smp_call_function_queue+0x362/0x18e0 kernel/smp.c:535
 generic_smp_call_function_single_interrupt+0x1c/0x30 kernel/smp.c:463
 __sysvec_call_function_single+0x4b/0x3e0 arch/x86/kernel/smp.c:271
 instr_sysvec_call_function_single arch/x86/kernel/smp.c:266 [inline]
 sysvec_call_function_single+0x7c/0x90 arch/x86/kernel/smp.c:266
 asm_sysvec_call_function_single+0x1f/0x30 arch/x86/include/asm/idtentry.h:704
 native_irq_enable arch/x86/include/asm/irqflags.h:42 [inline]
 arch_local_irq_enable arch/x86/include/asm/irqflags.h:119 [inline]
 raw_spin_rq_unlock_irq kernel/sched/sched.h:1632 [inline]
 sched_core_balance+0x87/0x2010 kernel/sched/core.c:6328
 do_balance_callbacks kernel/sched/core.c:4929 [inline]
 __balance_callbacks kernel/sched/core.c:4985 [inline]
 finish_lock_switch kernel/sched/core.c:5034 [inline]
 finish_task_switch+0x3e4/0x8b0 kernel/sched/core.c:5153
 context_switch kernel/sched/core.c:5301 [inline]
 __schedule+0x2607/0x8640 kernel/sched/core.c:6911
 schedule_idle+0x5a/0x90 kernel/sched/core.c:7034
 do_idle+0x9fa/0xa10 kernel/sched/idle.c:381
 cpu_startup_entry+0x5f/0x80 kernel/sched/idle.c:451
 start_secondary+0xcc/0xd0 arch/x86/kernel/smpboot.c:312
 common_startup_64+0x13e/0x147

Uninit was stored to memory at:
 mas_topiary_replace lib/maple_tree.c:2411 [inline]
 mas_wmb_replace+0x369d/0x4260 lib/maple_tree.c:2433
 mas_split lib/maple_tree.c:3052 [inline]
 mas_commit_b_node lib/maple_tree.c:3072 [inline]
 mas_wr_bnode lib/maple_tree.c:3739 [inline]
 mas_wr_store_entry+0x30fe/0x96d0 lib/maple_tree.c:3771
 mas_store_prealloc+0x1834/0x1e60 lib/maple_tree.c:5169
 vma_iter_store_overwrite mm/vma.h:607 [inline]
 vma_iter_store_new mm/vma.h:614 [inline]
 __mmap_new_vma mm/vma.c:2553 [inline]
 __mmap_region mm/vma.c:2759 [inline]
 mmap_region+0x4ab9/0x62b0 mm/vma.c:2844
 do_mmap+0x17aa/0x1d70 mm/mmap.c:559
 vm_mmap_pgoff+0x40c/0x760 mm/util.c:581
 vm_mmap+0xdb/0x120 mm/util.c:617
 __x86_set_memory_region+0x52c/0x830 arch/x86/kvm/x86.c:13335
 kvm_alloc_apic_access_page+0xc0/0x1c0 arch/x86/kvm/lapic.c:2861
 vmx_vcpu_create+0x5ef/0x1470 arch/x86/kvm/vmx/vmx.c:7830
 kvm_arch_vcpu_create+0x9d1/0xc60 arch/x86/kvm/x86.c:12803
 kvm_vm_ioctl_create_vcpu+0x525/0xdf0 virt/kvm/kvm_main.c:4207
 kvm_vm_ioctl+0xaa4/0x1680 virt/kvm/kvm_main.c:5165
 kvm_vm_compat_ioctl+0x347/0x630 virt/kvm/kvm_main.c:5467
 __do_compat_sys_ioctl fs/ioctl.c:695 [inline]
 __se_compat_sys_ioctl fs/ioctl.c:638 [inline]
 __ia32_compat_sys_ioctl+0x7f9/0x1270 fs/ioctl.c:638
 ia32_sys_call+0x2854/0x4360 arch/x86/include/generated/asm/syscalls_32.h:55
 do_syscall_32_irqs_on arch/x86/entry/syscall_32.c:83 [inline]
 __do_fast_syscall_32+0x17f/0x3f0 arch/x86/entry/syscall_32.c:307
 do_fast_syscall_32+0x37/0x80 arch/x86/entry/syscall_32.c:332
 do_SYSENTER_32+0x1f/0x30 arch/x86/entry/syscall_32.c:370
 entry_SYSENTER_compat_after_hwframe+0x84/0x8e

Local variable tmp_next.i created at:
 mas_topiary_replace lib/maple_tree.c:2335 [inline]
 mas_wmb_replace+0x66/0x4260 lib/maple_tree.c:2433
 mas_split lib/maple_tree.c:3052 [inline]
 mas_commit_b_node lib/maple_tree.c:3072 [inline]
 mas_wr_bnode lib/maple_tree.c:3739 [inline]
 mas_wr_store_entry+0x30fe/0x96d0 lib/maple_tree.c:3771

CPU: 1 UID: 0 PID: 0 Comm: swapper/1 Not tainted syzkaller #0 PREEMPT(full) 
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
=====================================================