=====================================================
BUG: KMSAN: uninit-value in xfrm_state_find+0x2424/0xa940 net/xfrm/xfrm_state.c:1422
 xfrm_state_find+0x2424/0xa940 net/xfrm/xfrm_state.c:1422
 xfrm_tmpl_resolve_one net/xfrm/xfrm_policy.c:2522 [inline]
 xfrm_tmpl_resolve net/xfrm/xfrm_policy.c:2573 [inline]
 xfrm_resolve_and_create_bundle+0xabc/0x5850 net/xfrm/xfrm_policy.c:2871
 xfrm_bundle_lookup net/xfrm/xfrm_policy.c:3106 [inline]
 xfrm_lookup_with_ifid+0xaed/0x3ac0 net/xfrm/xfrm_policy.c:3237
 xfrm_lookup net/xfrm/xfrm_policy.c:3336 [inline]
 xfrm_lookup_route+0x63/0x2b0 net/xfrm/xfrm_policy.c:3347
 ip_route_output_flow+0x1ce/0x270 net/ipv4/route.c:2939
 ip_route_output_key include/net/route.h:179 [inline]
 tipc_udp_xmit+0x269/0xbc0 net/tipc/udp_media.c:189
 tipc_udp_send_msg+0x4d7/0x5c0 net/tipc/udp_media.c:258
 tipc_bearer_xmit_skb+0x39e/0x4b0 net/tipc/bearer.c:575
 tipc_disc_timeout+0x93c/0xa40 net/tipc/discover.c:338
 call_timer_fn+0x4c/0x4c0 kernel/time/timer.c:1748
 expire_timers kernel/time/timer.c:1799 [inline]
 __run_timers kernel/time/timer.c:2373 [inline]
 __run_timer_base+0x80f/0xd90 kernel/time/timer.c:2385
 run_timer_base kernel/time/timer.c:2394 [inline]
 run_timer_softirq+0x3a/0x80 kernel/time/timer.c:2404
 handle_softirqs+0x169/0x6e0 kernel/softirq.c:622
 __do_softirq kernel/softirq.c:656 [inline]
 invoke_softirq kernel/softirq.c:496 [inline]
 __irq_exit_rcu+0x66/0x180 kernel/softirq.c:723
 irq_exit_rcu+0x12/0x20 kernel/softirq.c:739
 instr_sysvec_apic_timer_interrupt arch/x86/kernel/apic/apic.c:1056 [inline]
 sysvec_apic_timer_interrupt+0x84/0x90 arch/x86/kernel/apic/apic.c:1056
 asm_sysvec_apic_timer_interrupt+0x1f/0x30 arch/x86/include/asm/idtentry.h:697
 console_srcu_read_flags include/linux/console.h:526 [inline]
 console_flush_all+0xe92/0x1240 kernel/printk/printk.c:3178
 __console_flush_and_unlock kernel/printk/printk.c:3258 [inline]
 console_unlock+0xeb/0x560 kernel/printk/printk.c:3298
 vprintk_emit+0x883/0xb60 kernel/printk/printk.c:2423
 dev_vprintk_emit+0x5ac/0x7a0 drivers/base/core.c:4914
 dev_printk_emit+0x180/0x1b0 drivers/base/core.c:4925
 __dev_printk+0x2a1/0x330 drivers/base/core.c:4937
 _dev_info+0x1b4/0x1d0 drivers/base/core.c:4983
 hub_port_init+0xa48/0x3f40 drivers/usb/core/hub.c:4995
 hub_port_connect drivers/usb/core/hub.c:5495 [inline]
 hub_port_connect_change drivers/usb/core/hub.c:5706 [inline]
 port_event drivers/usb/core/hub.c:5870 [inline]
 hub_event+0x4b7c/0x7620 drivers/usb/core/hub.c:5952
 process_one_work kernel/workqueue.c:3263 [inline]
 process_scheduled_works+0xb91/0x1d80 kernel/workqueue.c:3346
 worker_thread+0xedf/0x1590 kernel/workqueue.c:3427
 kthread+0xd5c/0xf00 kernel/kthread.c:463
 ret_from_fork+0x208/0x710 arch/x86/kernel/process.c:158
 ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:246

Local variable tmp.i.i created at:
 xfrm_tmpl_resolve_one net/xfrm/xfrm_policy.c:2494 [inline]
 xfrm_tmpl_resolve net/xfrm/xfrm_policy.c:2573 [inline]
 xfrm_resolve_and_create_bundle+0x3a7/0x5850 net/xfrm/xfrm_policy.c:2871
 xfrm_bundle_lookup net/xfrm/xfrm_policy.c:3106 [inline]
 xfrm_lookup_with_ifid+0xaed/0x3ac0 net/xfrm/xfrm_policy.c:3237

CPU: 1 UID: 0 PID: 1714 Comm: kworker/1:2 Tainted: G        W           syzkaller #0 PREEMPT(none) 
Tainted: [W]=WARN
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
Workqueue: usb_hub_wq hub_event
=====================================================