[....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[   30.176365] random: sshd: uninitialized urandom read (32 bytes read)
[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.

Debian GNU/Linux 7 syzkaller ttyS0

syzkaller login: [   31.584478] random: sshd: uninitialized urandom read (32 bytes read)
[   31.999476] random: sshd: uninitialized urandom read (32 bytes read)
[   33.100978] random: sshd: uninitialized urandom read (32 bytes read)
[   33.317376] random: sshd: uninitialized urandom read (32 bytes read)
Warning: Permanently added '10.128.10.37' (ECDSA) to the list of known hosts.
[   38.881479] random: sshd: uninitialized urandom read (32 bytes read)
executing program
[   38.999356] FAULT_INJECTION: forcing a failure.
[   38.999356] name fail_page_alloc, interval 1, probability 0, space 0, times 1
[   39.011248] CPU: 0 PID: 4461 Comm: syz-executor009 Not tainted 4.17.0+ #9
[   39.018172] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   39.027529] Call Trace:
[   39.030127]  dump_stack+0x185/0x1d0
[   39.033756]  should_fail+0x87b/0xab0
[   39.037498]  __alloc_pages_nodemask+0x600/0x5cc0
[   39.042275]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[   39.047650]  ? __wake_up_common+0x120/0xa50
[   39.051986]  ? _raw_spin_lock_irqsave+0x45/0xf0
[   39.056653]  ? __wake_up_common_lock+0x10c/0x370
[   39.061410]  ? __msan_metadata_ptr_for_store_1+0x13/0x20
[   39.066876]  ? __msan_metadata_ptr_for_load_4+0x10/0x20
[   39.072249]  ? __wake_up_common_lock+0x1f3/0x370
[   39.077022]  ? kmsan_set_origin_inline+0x6b/0x120
[   39.081880]  ? __msan_metadata_ptr_for_store_1+0x13/0x20
[   39.087349]  alloc_pages_current+0x6b1/0x970
[   39.091773]  skb_page_frag_refill+0x3ba/0x5e0
[   39.096270]  sk_alloc_sg+0x24a/0x13f0
[   39.100075]  ? __msan_poison_alloca+0x15c/0x1d0
[   39.104754]  ? __local_bh_enable_ip+0x3b/0x140
[   39.109345]  ? local_bh_enable+0x36/0x40
[   39.113430]  tls_sw_sendmsg+0xbc0/0x20e0
[   39.117505]  ? __msan_metadata_ptr_for_store_1+0x13/0x20
[   39.122968]  ? kstrtoull+0x757/0x7e0
[   39.126686]  ? kmsan_set_origin_inline+0x6b/0x120
[   39.131539]  ? tls_write_space+0x460/0x460
[   39.135794]  inet_sendmsg+0x3fc/0x760
[   39.139599]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[   39.144979]  ? inet_getname+0x4a0/0x4a0
[   39.148977]  __sys_sendto+0x6c4/0x7e0
[   39.152798]  ? prepare_exit_to_usermode+0x4a/0x3a0
[   39.157744]  ? syscall_return_slowpath+0xe9/0x710
[   39.162619]  __x64_sys_sendto+0x1a1/0x210
[   39.166769]  ? __sys_sendto+0x7e0/0x7e0
[   39.170737]  do_syscall_64+0x15b/0x230
[   39.174626]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[   39.179807] RIP: 0033:0x440979
[   39.182985] RSP: 002b:00007ffd2ad86d88 EFLAGS: 00000212 ORIG_RAX: 000000000000002c
[   39.190700] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000440979
[   39.197960] RDX: 00000000fffffdef RSI: 00000000200005c0 RDI: 0000000000000003
[   39.205225] RBP: 00000000006cc018 R08: 0000000020000000 R09: 000000000000001c
[   39.212594] R10: 0000000000000000 R11: 0000000000000212 R12: 0000000000000004
[   39.219855] R13: ffffffffffffffff R14: 0000000000000000 R15: 0000000000000000
[   42.271692] Not allocated shadow for addr ffff880195679005 (page ffffea0009806d60)
[   42.279434] Attempted to access 8 bytes
[   42.283413] ------------[ cut here ]------------
[   42.288162] kernel BUG at mm/kmsan/kmsan.c:1386!
[   42.292900] invalid opcode: 0000 [#1] SMP PTI
[   42.297368] Dumping ftrace buffer:
[   42.300880]    (ftrace buffer empty)
[   42.304564] Modules linked in:
[   42.307747] CPU: 1 PID: 4461 Comm: syz-executor009 Not tainted 4.17.0+ #9
[   42.314678] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   42.324046] RIP: 0010:kmsan_get_shadow_address+0x1ce/0x1f0
[   42.329644] RSP: 0018:ffff8801953af868 EFLAGS: 00010086
[   42.334980] RAX: 000000000000001b RBX: 0000000000000640 RCX: 0000000000000000
[   42.342225] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000000
[   42.349469] RBP: ffff8801953af880 R08: 0000000000000000 R09: 0000000000000001
[   42.356715] R10: 0000000000000000 R11: ffffffff86575950 R12: ffff8801cc105f74
[   42.363962] R13: ffff88019573d7c0 R14: 0000000000000001 R15: 0000000000000008
[   42.371210] FS:  0000000002480880(0000) GS:ffff88021fd00000(0000) knlGS:0000000000000000
[   42.379414] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   42.385279] CR2: 00007f50a0adf000 CR3: 0000000196892000 CR4: 00000000001406e0
[   42.392524] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   42.399772] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   42.407018] Call Trace:
[   42.409588]  __msan_memcpy+0xaf/0x160
[   42.413367]  tls_push_record+0x761/0x1f10
[   42.417497]  tls_sw_sendmsg+0x19d3/0x20e0
[   42.421636]  ? tls_write_space+0x460/0x460
[   42.425853]  inet_sendmsg+0x3fc/0x760
[   42.429631]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[   42.434969]  ? inet_getname+0x4a0/0x4a0
[   42.438923]  __sys_sendto+0x6c4/0x7e0
[   42.442716]  ? prepare_exit_to_usermode+0x4a/0x3a0
[   42.447627]  ? syscall_return_slowpath+0xe9/0x710
[   42.452452]  __x64_sys_sendto+0x1a1/0x210
[   42.456577]  ? __sys_sendto+0x7e0/0x7e0
[   42.460528]  do_syscall_64+0x15b/0x230
[   42.464396]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[   42.469570] RIP: 0033:0x440979
[   42.472733] RSP: 002b:00007ffd2ad86d88 EFLAGS: 00000212 ORIG_RAX: 000000000000002c
[   42.480418] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000440979
[   42.487677] RDX: 00000000fffffdef RSI: 00000000200005c0 RDI: 0000000000000003
[   42.494921] RBP: 00000000006cc018 R08: 0000000020000000 R09: 000000000000001c
[   42.502165] R10: 0000000000000000 R11: 0000000000000212 R12: 0000000000000004
[   42.509408] R13: ffffffffffffffff R14: 0000000000000000 R15: 0000000000000000
[   42.516655] Code: 75 29 48 c7 c7 1d 39 97 8a 31 c0 e8 2d 4c 80 ff 80 3c 25 f8 93 53 8b 00 75 11 48 c7 c7 4d 39 97 8a 31 c0 4c 89 fe e8 12 4c 80 ff <0f> 0b eb fe 48 3d ff ff ff 1f 0f 87 a2 fe ff ff 48 8b 1c 25 10 
[   42.535748] RIP: kmsan_get_shadow_address+0x1ce/0x1f0 RSP: ffff8801953af868
[   42.542856] ---[ end trace 782d2001cbd24a42 ]---
[   42.547585] Kernel panic - not syncing: Fatal exception
[   42.553520] Dumping ftrace buffer:
[   42.557045]    (ftrace buffer empty)
[   42.560730] Kernel Offset: disabled
[   42.564338] Rebooting in 86400 seconds..