[....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[   33.495794] random: sshd: uninitialized urandom read (32 bytes read)
[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[   34.247588] random: sshd: uninitialized urandom read (32 bytes read)
[   34.590631] random: sshd: uninitialized urandom read (32 bytes read)

Debian GNU/Linux 7 syzkaller ttyS0

syzkaller login: [   35.979901] random: sshd: uninitialized urandom read (32 bytes read)
[   36.205743] random: sshd: uninitialized urandom read (32 bytes read)
Warning: Permanently added '10.128.10.28' (ECDSA) to the list of known hosts.
[   41.787758] random: sshd: uninitialized urandom read (32 bytes read)
executing program
executing program
[   41.919695] ==================================================================
[   41.927109] BUG: KMSAN: uninit-value in __nf_conntrack_find_get+0xc15/0x2190
[   41.934283] CPU: 0 PID: 4578 Comm: syz-executor219 Not tainted 4.18.0-rc4+ #27
[   41.941619] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   41.950961] Call Trace:
[   41.953537]  dump_stack+0x185/0x1e0
[   41.957149]  kmsan_report+0x195/0x2c0
[   41.960943]  __msan_warning+0x7d/0xe0
[   41.964728]  __nf_conntrack_find_get+0xc15/0x2190
[   41.969552]  ? __msan_poison_alloca+0x183/0x220
[   41.974207]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[   41.979549]  ? hash_conntrack_raw+0x5f7/0x8c0
[   41.984029]  nf_conntrack_in+0x1674/0x2070
[   41.988259]  ipv6_conntrack_local+0xc3/0xf0
[   41.992563]  ? ipv6_conntrack_in+0xf0/0xf0
[   41.996788]  nf_hook_slow+0x15d/0x3e0
[   42.000574]  __ip6_local_out+0x64c/0x770
[   42.004621]  ? __ip6_local_out+0x770/0x770
[   42.008836]  ip6_local_out+0xa4/0x1d0
[   42.012622]  ip6_push_pending_frames+0x218/0x4d0
[   42.017376]  rawv6_sendmsg+0x45f0/0x5410
[   42.021438]  ? kmsan_set_origin_inline+0x6b/0x120
[   42.026269]  ? __msan_poison_alloca+0x183/0x220
[   42.030927]  ? __fdget+0x4e/0x60
[   42.034282]  ? compat_rawv6_ioctl+0x100/0x100
[   42.038758]  inet_sendmsg+0x3fc/0x760
[   42.042635]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[   42.047982]  ? inet_getname+0x4a0/0x4a0
[   42.051941]  __sys_sendto+0x798/0x8e0
[   42.055731]  ? syscall_return_slowpath+0x108/0x800
[   42.060648]  __x64_sys_sendto+0x1a1/0x210
[   42.064868]  ? __sys_sendto+0x8e0/0x8e0
[   42.068819]  do_syscall_64+0x15b/0x230
[   42.072690]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[   42.077857] RIP: 0033:0x445659
[   42.081034] Code: e8 3c b6 02 00 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 2b 12 fc ff c3 66 2e 0f 1f 84 00 00 00 00 
[   42.100189] RSP: 002b:00007f7b0ec8fda8 EFLAGS: 00000216 ORIG_RAX: 000000000000002c
[   42.107876] RAX: ffffffffffffffda RBX: 00000000006dac24 RCX: 0000000000445659
[   42.115124] RDX: 000000000000fedf RSI: 0000000020000000 RDI: 0000000000000005
[   42.122375] RBP: 00000000006dac20 R08: 0000000020000180 R09: 000000000000001a
[   42.129625] R10: 0000000000000000 R11: 0000000000000216 R12: 0000000000000000
[   42.136877] R13: 00007fff76afec7f R14: 00007f7b0ec909c0 R15: 0000000000000003
[   42.144140] 
[   42.145752] Uninit was stored to memory at:
[   42.150064]  kmsan_internal_chain_origin+0x13c/0x240
[   42.155148]  __msan_chain_origin+0x76/0xd0
[   42.159363]  __nf_conntrack_confirm+0x2700/0x3f70
[   42.164186]  ipv6_confirm+0x573/0x740
[   42.167965]  nf_hook_slow+0x15d/0x3e0
[   42.171746]  ip6_output+0x37d/0x710
[   42.175353]  ip6_local_out+0x164/0x1d0
[   42.179219]  ip6_push_pending_frames+0x218/0x4d0
[   42.183962]  rawv6_sendmsg+0x45f0/0x5410
[   42.188012]  inet_sendmsg+0x3fc/0x760
[   42.191793]  __sys_sendto+0x798/0x8e0
[   42.195573]  __x64_sys_sendto+0x1a1/0x210
[   42.199701]  do_syscall_64+0x15b/0x230
[   42.203569]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[   42.208734] 
[   42.210338] Uninit was created at:
[   42.213857]  kmsan_internal_poison_shadow+0xc8/0x1d0
[   42.218936]  kmsan_kmalloc+0xa1/0x120
[   42.222716]  kmem_cache_alloc+0xad2/0xbb0
[   42.226843]  __nf_conntrack_alloc+0x166/0x670
[   42.231317]  init_conntrack+0x635/0x2840
[   42.235354]  nf_conntrack_in+0x1812/0x2070
[   42.239565]  ipv6_conntrack_local+0xc3/0xf0
[   42.243863]  nf_hook_slow+0x15d/0x3e0
[   42.247644]  __ip6_local_out+0x64c/0x770
[   42.251685]  ip6_local_out+0xa4/0x1d0
[   42.255463]  ip6_push_pending_frames+0x218/0x4d0
[   42.260205]  rawv6_sendmsg+0x45f0/0x5410
[   42.264248]  inet_sendmsg+0x3fc/0x760
[   42.268037]  __sys_sendto+0x798/0x8e0
[   42.271826]  __x64_sys_sendto+0x1a1/0x210
[   42.275967]  do_syscall_64+0x15b/0x230
[   42.279864]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[   42.285046] ==================================================================
[   42.292401] Disabling lock debugging due to kernel taint
[   42.297843] Kernel panic - not syncing: panic_on_warn set ...
[   42.297843] 
[   42.305188] CPU: 0 PID: 4578 Comm: syz-executor219 Tainted: G    B             4.18.0-rc4+ #27
[   42.313919] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   42.323252] Call Trace:
[   42.325825]  dump_stack+0x185/0x1e0
[   42.329435]  panic+0x3d0/0x9b0
[   42.332643]  kmsan_report+0x2bf/0x2c0
[   42.336429]  __msan_warning+0x7d/0xe0
[   42.340213]  __nf_conntrack_find_get+0xc15/0x2190
[   42.345049]  ? __msan_poison_alloca+0x183/0x220
[   42.349708]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[   42.355057]  ? hash_conntrack_raw+0x5f7/0x8c0
[   42.359542]  nf_conntrack_in+0x1674/0x2070
[   42.363775]  ipv6_conntrack_local+0xc3/0xf0
[   42.368084]  ? ipv6_conntrack_in+0xf0/0xf0
[   42.372301]  nf_hook_slow+0x15d/0x3e0
[   42.376093]  __ip6_local_out+0x64c/0x770
[   42.380152]  ? __ip6_local_out+0x770/0x770
[   42.384378]  ip6_local_out+0xa4/0x1d0
[   42.388164]  ip6_push_pending_frames+0x218/0x4d0
[   42.392904]  rawv6_sendmsg+0x45f0/0x5410
[   42.396963]  ? kmsan_set_origin_inline+0x6b/0x120
[   42.401800]  ? __msan_poison_alloca+0x183/0x220
[   42.406460]  ? __fdget+0x4e/0x60
[   42.409816]  ? compat_rawv6_ioctl+0x100/0x100
[   42.414436]  inet_sendmsg+0x3fc/0x760
[   42.418219]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[   42.423571]  ? inet_getname+0x4a0/0x4a0
[   42.427538]  __sys_sendto+0x798/0x8e0
[   42.431854]  ? syscall_return_slowpath+0x108/0x800
[   42.436864]  __x64_sys_sendto+0x1a1/0x210
[   42.441011]  ? __sys_sendto+0x8e0/0x8e0
[   42.444980]  do_syscall_64+0x15b/0x230
[   42.448854]  entry_SYSCALL_64_after_hwframe+0x63/0xe7
[   42.454034] RIP: 0033:0x445659
[   42.457206] Code: e8 3c b6 02 00 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 2b 12 fc ff c3 66 2e 0f 1f 84 00 00 00 00 
[   42.476365] RSP: 002b:00007f7b0ec8fda8 EFLAGS: 00000216 ORIG_RAX: 000000000000002c
[   42.484067] RAX: ffffffffffffffda RBX: 00000000006dac24 RCX: 0000000000445659
[   42.491331] RDX: 000000000000fedf RSI: 0000000020000000 RDI: 0000000000000005
[   42.498581] RBP: 00000000006dac20 R08: 0000000020000180 R09: 000000000000001a
[   42.505830] R10: 0000000000000000 R11: 0000000000000216 R12: 0000000000000000
[   42.513088] R13: 00007fff76afec7f R14: 00007f7b0ec909c0 R15: 0000000000000003
[   42.520890] Dumping ftrace buffer:
[   42.524424]    (ftrace buffer empty)
[   42.528111] Kernel Offset: disabled
[   42.531719] Rebooting in 86400 seconds..