=====================================================
BUG: KMSAN: uninit-value in __flush_smp_call_function_queue+0x343/0x1810 kernel/smp.c:549
 __flush_smp_call_function_queue+0x343/0x1810 kernel/smp.c:549
 generic_smp_call_function_single_interrupt+0x1c/0x30 kernel/smp.c:477
 __sysvec_call_function_single+0x48/0x350 arch/x86/kernel/smp.c:272
 instr_sysvec_call_function_single arch/x86/kernel/smp.c:267 [inline]
 sysvec_call_function_single+0x7c/0x90 arch/x86/kernel/smp.c:267
 asm_sysvec_call_function_single+0x1f/0x30 arch/x86/include/asm/idtentry.h:704
 kmsan_metadata_is_contiguous+0x115/0x1e0 mm/kmsan/core.c:387
 kmsan_get_shadow_origin_ptr+0x27/0xb0 mm/kmsan/shadow.c:96
 get_shadow_origin_ptr mm/kmsan/instrumentation.c:38 [inline]
 __msan_metadata_ptr_for_load_8+0x24/0x40 mm/kmsan/instrumentation.c:94
 get_stack_info+0x8f/0x2c0 arch/x86/kernel/dumpstack_64.c:208
 __unwind_start+0x1df/0x530 arch/x86/kernel/unwind_frame.c:405
 unwind_start arch/x86/include/asm/unwind.h:64 [inline]
 arch_stack_walk+0xfc/0x280 arch/x86/kernel/stacktrace.c:24
 stack_trace_save+0xc2/0x100 kernel/stacktrace.c:122
 kmsan_save_stack_with_flags mm/kmsan/core.c:73 [inline]
 kmsan_internal_poison_memory+0x4a/0x90 mm/kmsan/core.c:57
 kmsan_slab_alloc+0xdc/0x160 mm/kmsan/hooks.c:66
 slab_post_alloc_hook mm/slub.c:4577 [inline]
 slab_alloc_node mm/slub.c:4899 [inline]
 kmem_cache_alloc_noprof+0x373/0x1250 mm/slub.c:4906
 mt_alloc_one lib/maple_tree.c:139 [inline]
 mas_alloc_nodes+0x4ef/0x5a0 lib/maple_tree.c:1089
 mas_preallocate+0x716/0xca0 lib/maple_tree.c:4961
 vma_iter_prealloc mm/vma.h:577 [inline]
 __split_vma+0x684/0x1330 mm/vma.c:529
 vms_gather_munmap_vmas+0x5db/0x1b70 mm/vma.c:1448
 __mmap_setup mm/vma.c:2439 [inline]
 __mmap_region mm/vma.c:2753 [inline]
 mmap_region+0xd1c/0x5f20 mm/vma.c:2857
 do_mmap+0x17aa/0x1d70 mm/mmap.c:560
 vm_mmap_pgoff+0x40c/0x760 mm/util.c:581
 ksys_mmap_pgoff+0x51d/0x7e0 mm/mmap.c:606
 __do_sys_mmap arch/x86/kernel/sys_x86_64.c:89 [inline]
 __se_sys_mmap arch/x86/kernel/sys_x86_64.c:82 [inline]
 __x64_sys_mmap+0x19c/0x260 arch/x86/kernel/sys_x86_64.c:82
 x64_sys_call+0x18cd/0x3ea0 arch/x86/include/generated/asm/syscalls_64.h:10
 do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]
 do_syscall_64+0x15d/0x3c0 arch/x86/entry/syscall_64.c:94
 entry_SYSCALL_64_after_hwframe+0x77/0x7f

Local variable pflags created at:
 try_charge_memcg+0x63/0x1c20 mm/memcontrol.c:2582
 charge_memcg+0x113/0x410 mm/memcontrol.c:5024

CPU: 1 UID: 0 PID: 9799 Comm: modprobe Not tainted syzkaller #0 PREEMPT(lazy) 
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
=====================================================