=====================================================
BUG: KMSAN: uninit-value in __flush_smp_call_function_queue+0x343/0x1810 kernel/smp.c:549
 __flush_smp_call_function_queue+0x343/0x1810 kernel/smp.c:549
 generic_smp_call_function_single_interrupt+0x1c/0x30 kernel/smp.c:477
 __sysvec_call_function_single+0x48/0x350 arch/x86/kernel/smp.c:272
 instr_sysvec_call_function_single arch/x86/kernel/smp.c:267 [inline]
 sysvec_call_function_single+0x7c/0x90 arch/x86/kernel/smp.c:267
 asm_sysvec_call_function_single+0x1f/0x30 arch/x86/include/asm/idtentry.h:704
 native_irq_enable arch/x86/include/asm/irqflags.h:42 [inline]
 arch_local_irq_enable arch/x86/include/asm/irqflags.h:119 [inline]
 raw_spin_rq_unlock_irq kernel/sched/sched.h:1644 [inline]
 finish_lock_switch kernel/sched/core.c:5125 [inline]
 finish_task_switch+0x37e/0xbc0 kernel/sched/core.c:5243
 context_switch kernel/sched/core.c:5391 [inline]
 __schedule+0x2939/0x8760 kernel/sched/core.c:7189
 preempt_schedule_irq+0x50/0xa0 kernel/sched/core.c:7513
 raw_irqentry_exit_cond_resched+0x5d/0x80 kernel/entry/common.c:142
 irqentry_exit_to_kernel_mode_preempt+0x8b/0xc0 include/linux/irq-entry-common.h:476
 irqentry_exit_to_kernel_mode include/linux/irq-entry-common.h:547 [inline]
 irqentry_exit+0x7b/0x820 kernel/entry/common.c:164
 sysvec_apic_timer_interrupt+0x52/0x90 arch/x86/kernel/apic/apic.c:1061
 asm_sysvec_apic_timer_interrupt+0x1f/0x30 arch/x86/include/asm/idtentry.h:697
 smap_restore arch/x86/include/asm/smap.h:90 [inline]
 get_shadow_origin_ptr mm/kmsan/instrumentation.c:39 [inline]
 __msan_metadata_ptr_for_load_8+0x28/0x40 mm/kmsan/instrumentation.c:94
 kernfs_link_sibling+0x3eb/0xab0 fs/kernfs/dir.c:391
 kernfs_add_one+0x4ca/0x800 fs/kernfs/dir.c:845
 __kernfs_create_file+0x361/0x520 fs/kernfs/file.c:1086
 sysfs_add_file_mode_ns+0x3a3/0x4d0 fs/sysfs/file.c:313
 create_files fs/sysfs/group.c:82 [inline]
 internal_create_group+0xb2d/0x1fd0 fs/sysfs/group.c:189
 internal_create_groups fs/sysfs/group.c:229 [inline]
 sysfs_create_groups+0x8c/0x210 fs/sysfs/group.c:255
 device_add_groups drivers/base/core.c:2837 [inline]
 device_add_attrs+0xcb/0x9b0 drivers/base/core.c:2901
 device_add+0xd4c/0x1c90 drivers/base/core.c:3645
 netdev_register_kobject+0x1c3/0x540 net/core/net-sysfs.c:2343
 register_netdevice+0x1f45/0x2c50 net/core/dev.c:11420
 veth_newlink+0x88f/0x1630 drivers/net/veth.c:1861
 rtnl_newlink_create+0x41c/0x1250 net/core/rtnetlink.c:3864
 __rtnl_newlink net/core/rtnetlink.c:3995 [inline]
 rtnl_newlink+0x307c/0x3cc0 net/core/rtnetlink.c:4110
 rtnetlink_rcv_msg+0x106f/0x14b0 net/core/rtnetlink.c:6996
 netlink_rcv_skb+0x54d/0x680 net/netlink/af_netlink.c:2550
 rtnetlink_rcv+0x35/0x40 net/core/rtnetlink.c:7023
 netlink_unicast_kernel net/netlink/af_netlink.c:1318 [inline]
 netlink_unicast+0xee2/0x1290 net/netlink/af_netlink.c:1344
 netlink_sendmsg+0x10b2/0x1250 net/netlink/af_netlink.c:1894
 sock_sendmsg_nosec net/socket.c:787 [inline]
 __sock_sendmsg net/socket.c:802 [inline]
 __sys_sendto+0xa08/0xae0 net/socket.c:2265
 __do_sys_sendto net/socket.c:2272 [inline]
 __se_sys_sendto net/socket.c:2268 [inline]
 __x64_sys_sendto+0x130/0x200 net/socket.c:2268
 x64_sys_call+0x39a0/0x3ea0 arch/x86/include/generated/asm/syscalls_64.h:45
 do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]
 do_syscall_64+0x134/0xf80 arch/x86/entry/syscall_64.c:94
 entry_SYSCALL_64_after_hwframe+0x77/0x7f

Local variable iter created at:
 tdp_mmu_zap_leafs+0x52/0x6e0 arch/x86/kvm/mmu/tdp_mmu.c:983
 kvm_tdp_mmu_unmap_gfn_range+0x910/0xb50 arch/x86/kvm/mmu/tdp_mmu.c:1362

CPU: 0 UID: 0 PID: 9032 Comm: syz-executor Tainted: G        W           syzkaller #0 PREEMPT(full) 
Tainted: [W]=WARN
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
=====================================================