=====================================================
BUG: KMSAN: uninit-value in subshift lib/crypto/aes.c:149 [inline]
BUG: KMSAN: uninit-value in aes_encrypt+0x15ae/0x1d90 lib/crypto/aes.c:282
 subshift lib/crypto/aes.c:149 [inline]
 aes_encrypt+0x15ae/0x1d90 lib/crypto/aes.c:282
 aesti_encrypt+0x86/0x110 crypto/aes_ti.c:31
 cipher_crypt_one crypto/cipher.c:76 [inline]
 crypto_cipher_encrypt_one+0x125/0x290 crypto/cipher.c:83
 crypto_cbcmac_digest_update+0x2fd/0x4b0 crypto/ccm.c:817
 crypto_shash_update+0x2c7/0x460 crypto/shash.c:131
 shash_ahash_finup+0x1ad/0x900 crypto/shash.c:303
 shash_async_finup+0x7b/0xb0 crypto/shash.c:318
 crypto_ahash_op+0x447/0x9f0 crypto/ahash.c:337
 crypto_ahash_finup+0x5b/0x80 crypto/ahash.c:362
 crypto_ccm_auth+0x13f9/0x14f0 crypto/ccm.c:222
 crypto_ccm_encrypt+0x1c5/0x7a0 crypto/ccm.c:301
 crypto_aead_encrypt+0xd8/0x150 crypto/aead.c:94
 tls_do_encryption net/tls/tls_sw.c:529 [inline]
 tls_push_record+0x2ae0/0x3d00 net/tls/tls_sw.c:762
 bpf_exec_tx_verdict+0x4c0/0x2470 net/tls/tls_sw.c:802
 tls_sw_do_sendpage+0x1168/0x1ad0 net/tls/tls_sw.c:1214
 tls_sw_sendpage+0xdf/0x150 net/tls/tls_sw.c:1278
 inet_sendpage+0x134/0x210 net/ipv4/af_inet.c:833
 kernel_sendpage+0x33c/0x6c0 net/socket.c:3561
 sock_sendpage+0xaa/0xf0 net/socket.c:1054
 pipe_to_sendpage+0x309/0x410 fs/splice.c:361
 splice_from_pipe_feed fs/splice.c:415 [inline]
 __splice_from_pipe+0x434/0xbf0 fs/splice.c:559
 splice_from_pipe fs/splice.c:594 [inline]
 generic_splice_sendpage+0x10f/0x180 fs/splice.c:743
 do_splice_from fs/splice.c:764 [inline]
 do_splice+0x2165/0x2930 fs/splice.c:1074
 __do_splice fs/splice.c:1139 [inline]
 __do_sys_splice fs/splice.c:1346 [inline]
 __se_sys_splice+0x5d8/0x8f0 fs/splice.c:1328
 __x64_sys_splice+0x117/0x190 fs/splice.c:1328
 do_syscall_x64 arch/x86/entry/common.c:50 [inline]
 do_syscall_64+0x3d/0xb0 arch/x86/entry/common.c:80
 entry_SYSCALL_64_after_hwframe+0x63/0xcd

Uninit was stored to memory at:
 __crypto_xor+0x16d/0x1310 crypto/algapi.c:1028
 crypto_xor include/crypto/algapi.h:167 [inline]
 crypto_cbcmac_digest_update+0x204/0x4b0 crypto/ccm.c:811
 crypto_shash_update+0x2c7/0x460 crypto/shash.c:131
 shash_ahash_finup+0x1ad/0x900 crypto/shash.c:303
 shash_async_finup+0x7b/0xb0 crypto/shash.c:318
 crypto_ahash_op+0x447/0x9f0 crypto/ahash.c:337
 crypto_ahash_finup+0x5b/0x80 crypto/ahash.c:362
 crypto_ccm_auth+0x13f9/0x14f0 crypto/ccm.c:222
 crypto_ccm_encrypt+0x1c5/0x7a0 crypto/ccm.c:301
 crypto_aead_encrypt+0xd8/0x150 crypto/aead.c:94
 tls_do_encryption net/tls/tls_sw.c:529 [inline]
 tls_push_record+0x2ae0/0x3d00 net/tls/tls_sw.c:762
 bpf_exec_tx_verdict+0x4c0/0x2470 net/tls/tls_sw.c:802
 tls_sw_do_sendpage+0x1168/0x1ad0 net/tls/tls_sw.c:1214
 tls_sw_sendpage+0xdf/0x150 net/tls/tls_sw.c:1278
 inet_sendpage+0x134/0x210 net/ipv4/af_inet.c:833
 kernel_sendpage+0x33c/0x6c0 net/socket.c:3561
 sock_sendpage+0xaa/0xf0 net/socket.c:1054
 pipe_to_sendpage+0x309/0x410 fs/splice.c:361
 splice_from_pipe_feed fs/splice.c:415 [inline]
 __splice_from_pipe+0x434/0xbf0 fs/splice.c:559
 splice_from_pipe fs/splice.c:594 [inline]
 generic_splice_sendpage+0x10f/0x180 fs/splice.c:743
 do_splice_from fs/splice.c:764 [inline]
 do_splice+0x2165/0x2930 fs/splice.c:1074
 __do_splice fs/splice.c:1139 [inline]
 __do_sys_splice fs/splice.c:1346 [inline]
 __se_sys_splice+0x5d8/0x8f0 fs/splice.c:1328
 __x64_sys_splice+0x117/0x190 fs/splice.c:1328
 do_syscall_x64 arch/x86/entry/common.c:50 [inline]
 do_syscall_64+0x3d/0xb0 arch/x86/entry/common.c:80
 entry_SYSCALL_64_after_hwframe+0x63/0xcd

Uninit was created at:
 __alloc_pages+0x9f1/0xe80 mm/page_alloc.c:5556
 alloc_pages+0xaae/0xd80 mm/mempolicy.c:2270
 skb_page_frag_refill+0x128/0x7b0 net/core/sock.c:2789
 sk_page_frag_refill+0x55/0x130 net/core/sock.c:2809
 sk_msg_alloc+0x1b8/0x10f0 net/core/skmsg.c:39
 tls_alloc_encrypted_msg net/tls/tls_sw.c:283 [inline]
 tls_sw_do_sendpage+0x998/0x1ad0 net/tls/tls_sw.c:1192
 tls_sw_sendpage+0xdf/0x150 net/tls/tls_sw.c:1278
 inet_sendpage+0x134/0x210 net/ipv4/af_inet.c:833
 kernel_sendpage+0x33c/0x6c0 net/socket.c:3561
 sock_sendpage+0xaa/0xf0 net/socket.c:1054
 pipe_to_sendpage+0x309/0x410 fs/splice.c:361
 splice_from_pipe_feed fs/splice.c:415 [inline]
 __splice_from_pipe+0x434/0xbf0 fs/splice.c:559
 splice_from_pipe fs/splice.c:594 [inline]
 generic_splice_sendpage+0x10f/0x180 fs/splice.c:743
 do_splice_from fs/splice.c:764 [inline]
 do_splice+0x2165/0x2930 fs/splice.c:1074
 __do_splice fs/splice.c:1139 [inline]
 __do_sys_splice fs/splice.c:1346 [inline]
 __se_sys_splice+0x5d8/0x8f0 fs/splice.c:1328
 __x64_sys_splice+0x117/0x190 fs/splice.c:1328
 do_syscall_x64 arch/x86/entry/common.c:50 [inline]
 do_syscall_64+0x3d/0xb0 arch/x86/entry/common.c:80
 entry_SYSCALL_64_after_hwframe+0x63/0xcd

CPU: 0 PID: 3624 Comm: syz-executor.0 Not tainted 6.0.0-rc5-syzkaller-00051-g523d2ce66d07 #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/26/2022
=====================================================