=====================================================
BUG: KMSAN: uninit-value in __flush_smp_call_function_queue+0x362/0x18e0 kernel/smp.c:535
 __flush_smp_call_function_queue+0x362/0x18e0 kernel/smp.c:535
 generic_smp_call_function_single_interrupt+0x1c/0x30 kernel/smp.c:463
 __sysvec_call_function_single+0x4b/0x3e0 arch/x86/kernel/smp.c:271
 instr_sysvec_call_function_single arch/x86/kernel/smp.c:266 [inline]
 sysvec_call_function_single+0x3d/0x90 arch/x86/kernel/smp.c:266
 asm_sysvec_call_function_single+0x1f/0x30 arch/x86/include/asm/idtentry.h:704
 virt_to_page_or_null+0x34/0x170 mm/kmsan/shadow.c:79
 kmsan_internal_set_shadow_origin+0x38/0x110 mm/kmsan/core.c:200
 kmsan_internal_unpoison_memory+0x14/0x20 mm/kmsan/core.c:63
 __msan_instrument_asm_store+0xa3/0xd0 mm/kmsan/instrumentation.c:127
 __preempt_count_dec_and_test arch/x86/include/asm/preempt.h:95 [inline]
 free_to_pcs mm/slub.c:5741 [inline]
 slab_free mm/slub.c:6129 [inline]
 kfree+0x793/0x1130 mm/slub.c:6442
 skb_kfree_head net/core/skbuff.c:1089 [inline]
 skb_free_head net/core/skbuff.c:1101 [inline]
 skb_release_data+0x1061/0x11b0 net/core/skbuff.c:1128
 skb_release_all net/core/skbuff.c:1203 [inline]
 __kfree_skb+0x6b/0x260 net/core/skbuff.c:1217
 sk_skb_reason_drop+0x126/0x500 net/core/skbuff.c:1255
 kfree_skb_reason include/linux/skbuff.h:1322 [inline]
 __netif_receive_skb_core+0x45fc/0x4dc0 net/core/dev.c:6123
 __netif_receive_skb_one_core net/core/dev.c:6147 [inline]
 __netif_receive_skb net/core/dev.c:6262 [inline]
 process_backlog+0x514/0x1500 net/core/dev.c:6614
 __napi_poll+0xdc/0x950 net/core/dev.c:7678
 napi_poll net/core/dev.c:7741 [inline]
 net_rx_action+0xa5b/0x1c70 net/core/dev.c:7893
 handle_softirqs+0x171/0x7e0 kernel/softirq.c:622
 __do_softirq+0x14/0x1b kernel/softirq.c:656
 do_softirq+0x58/0x90 kernel/softirq.c:523
 __local_bh_enable_ip+0xa1/0xb0 kernel/softirq.c:450
 local_bh_enable include/linux/bottom_half.h:33 [inline]
 rcu_read_unlock_bh include/linux/rcupdate.h:924 [inline]
 __dev_queue_xmit+0x38d2/0x5a50 net/core/dev.c:4856
 dev_queue_xmit include/linux/netdevice.h:3384 [inline]
 batadv_send_skb_packet+0x53e/0x840 net/batman-adv/send.c:100
 batadv_send_broadcast_skb+0x3d/0x50 net/batman-adv/send.c:121
 batadv_iv_ogm_send_to_if net/batman-adv/bat_iv_ogm.c:391 [inline]
 batadv_iv_ogm_emit net/batman-adv/bat_iv_ogm.c:419 [inline]
 batadv_iv_send_outstanding_bat_ogm_packet+0xb1b/0xde0 net/batman-adv/bat_iv_ogm.c:1697
 process_one_work kernel/workqueue.c:3275 [inline]
 process_scheduled_works+0xb21/0x1e30 kernel/workqueue.c:3358
 worker_thread+0xede/0x1580 kernel/workqueue.c:3439
 kthread+0x53f/0x600 kernel/kthread.c:467
 ret_from_fork+0x20f/0x910 arch/x86/kernel/process.c:158
 ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:245

Local variable tmp created at:
 number+0x83/0x2190 lib/vsprintf.c:470
 vsnprintf+0xd0d/0x1b00 lib/vsprintf.c:2912

CPU: 0 UID: 0 PID: 70 Comm: kworker/u8:5 Not tainted syzkaller #0 PREEMPT(full) 
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
Workqueue: bat_events batadv_iv_send_outstanding_bat_ogm_packet
=====================================================