===================================================== BUG: KMSAN: uninit-value in ieee80211_ac_from_tid net/mac80211/ieee80211_i.h:2057 [inline] BUG: KMSAN: uninit-value in ieee80211_sta_tx_wmm_ac_notify net/mac80211/mlme.c:2501 [inline] BUG: KMSAN: uninit-value in ieee80211_sta_tx_notify+0x3b1/0x920 net/mac80211/mlme.c:2533 CPU: 0 PID: 226 Comm: kworker/u4:6 Not tainted 5.10.0-rc4-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Workqueue: phy14 ieee80211_beacon_connection_loss_work Call Trace: __dump_stack lib/dump_stack.c:77 [inline] dump_stack+0x21c/0x280 lib/dump_stack.c:118 kmsan_report+0xfb/0x1e0 mm/kmsan/kmsan_report.c:118 __msan_warning+0x5f/0xa0 mm/kmsan/kmsan_instr.c:197 ieee80211_ac_from_tid net/mac80211/ieee80211_i.h:2057 [inline] ieee80211_sta_tx_wmm_ac_notify net/mac80211/mlme.c:2501 [inline] ieee80211_sta_tx_notify+0x3b1/0x920 net/mac80211/mlme.c:2533 ieee80211_tx_status_ext+0x12a9/0x5060 net/mac80211/status.c:1128 ieee80211_tx_status+0x221/0x270 net/mac80211/status.c:1071 ieee80211_tasklet_handler+0x34e/0x3c0 net/mac80211/main.c:239 tasklet_action_common+0x431/0x640 kernel/softirq.c:560 tasklet_action+0x30/0x40 kernel/softirq.c:578 __do_softirq+0x1a9/0x6fa kernel/softirq.c:298 asm_call_irq_on_stack+0xf/0x20 __run_on_irqstack arch/x86/include/asm/irq_stack.h:26 [inline] run_on_irqstack_cond arch/x86/include/asm/irq_stack.h:77 [inline] do_softirq_own_stack+0x6e/0x90 arch/x86/kernel/irq_64.c:77 do_softirq kernel/softirq.c:343 [inline] __local_bh_enable_ip+0x184/0x1d0 kernel/softirq.c:195 local_bh_enable+0x36/0x40 include/linux/bottom_half.h:32 __ieee80211_tx_skb_tid_band+0x28f/0x390 net/mac80211/tx.c:5427 ieee80211_tx_skb_tid net/mac80211/ieee80211_i.h:2026 [inline] ieee80211_tx_skb net/mac80211/ieee80211_i.h:2035 [inline] ieee80211_send_nullfunc+0x59a/0x6e0 net/mac80211/mlme.c:1120 ieee80211_mgd_probe_ap_send+0x88d/0xb30 net/mac80211/mlme.c:2598 ieee80211_mgd_probe_ap+0x52c/0x6e0 net/mac80211/mlme.c:2674 ieee80211_beacon_connection_loss_work+0x152/0x270 net/mac80211/mlme.c:2793 process_one_work+0x1219/0x1fe0 kernel/workqueue.c:2272 worker_thread+0x123c/0x2730 kernel/workqueue.c:2418 kthread+0x51c/0x560 kernel/kthread.c:292 ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:296 Uninit was created at: kmsan_save_stack_with_flags+0x3c/0x90 mm/kmsan/kmsan.c:121 kmsan_alloc_page+0xd3/0x1f0 mm/kmsan/kmsan_shadow.c:274 __alloc_pages_nodemask+0x827/0xf90 mm/page_alloc.c:4989 __alloc_pages include/linux/gfp.h:511 [inline] __alloc_pages_node include/linux/gfp.h:524 [inline] alloc_pages_node include/linux/gfp.h:538 [inline] __page_frag_cache_refill mm/page_alloc.c:5065 [inline] page_frag_alloc+0x357/0x890 mm/page_alloc.c:5095 __netdev_alloc_skb+0xbe2/0xc40 net/core/skbuff.c:456 netdev_alloc_skb include/linux/skbuff.h:2826 [inline] dev_alloc_skb include/linux/skbuff.h:2839 [inline] __ieee80211_beacon_get+0x1202/0x3430 net/mac80211/tx.c:4837 ieee80211_beacon_get_tim+0x114/0x830 net/mac80211/tx.c:4951 ieee80211_beacon_get include/net/mac80211.h:4912 [inline] mac80211_hwsim_beacon_tx+0x1ce/0xd30 drivers/net/wireless/mac80211_hwsim.c:1729 __iterate_interfaces+0x4ed/0x7a0 net/mac80211/util.c:792 ieee80211_iterate_active_interfaces_atomic+0xbb/0xd0 net/mac80211/util.c:828 mac80211_hwsim_beacon+0x11a/0x2e0 drivers/net/wireless/mac80211_hwsim.c:1782 __run_hrtimer+0x48b/0xd20 kernel/time/hrtimer.c:1519 __hrtimer_run_queues kernel/time/hrtimer.c:1583 [inline] hrtimer_run_softirq+0x3bf/0x690 kernel/time/hrtimer.c:1600 __do_softirq+0x1a9/0x6fa kernel/softirq.c:298 =====================================================