[ 35.239209][ T26] audit: type=1800 audit(1551348508.667:28): pid=7485 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="ssh" dev="sda1" ino=2417 res=0 [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. [ 36.147634][ T26] audit: type=1800 audit(1551348509.637:29): pid=7485 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="rc.local" dev="sda1" ino=2432 res=0 [ 36.169207][ T26] audit: type=1800 audit(1551348509.637:30): pid=7485 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="rmnologin" dev="sda1" ino=2423 res=0 [....] startpar: service(s) returned failure: ssh ...[?25l[?1c7[FAIL8[?25h[?0c failed! Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.15.195' (ECDSA) to the list of known hosts. executing program syzkaller login: [ 44.612097][ T7659] BUG: Bad page state in process syz-executor193 pfn:9225a [ 44.619525][ T7659] page:ffffea0002489680 count:0 mapcount:0 mapping:ffff88808652fd80 index:0x81 [ 44.628514][ T7659] shmem_aops [ 44.628520][ T7659] name:"memfd:cgroup2" [ 44.631828][ T7659] flags: 0x1fffc000008000e(referenced|uptodate|dirty|swapbacked) [ 44.643714][ T7659] raw: 01fffc000008000e ffff88809277fac0 ffff88809277fac0 ffff88808652fd80 [ 44.652326][ T7659] raw: 0000000000000081 0000000000000000 00000000ffffffff 0000000000000000 [ 44.660955][ T7659] page dumped because: non-NULL mapping [ 44.666551][ T7659] Modules linked in: [ 44.670463][ T7659] CPU: 0 PID: 7659 Comm: syz-executor193 Not tainted 5.0.0-rc8-next-20190228 #45 [ 44.679577][ T7659] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 44.689636][ T7659] Call Trace: [ 44.692961][ T7659] dump_stack+0x172/0x1f0 [ 44.697278][ T7659] bad_page.cold+0xda/0xff [ 44.701675][ T7659] ? si_mem_available+0x320/0x320 [ 44.706685][ T7659] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 44.712904][ T7659] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 44.719131][ T7659] free_pages_check_bad+0x142/0x1a0 [ 44.724342][ T7659] free_unref_page_list+0x31d/0xc40 [ 44.729528][ T7659] release_pages+0x60d/0x1940 [ 44.734209][ T7659] ? put_pages_list+0x2e0/0x2e0 [ 44.739044][ T7659] ? trace_hardirqs_on+0x67/0x230 [ 44.744064][ T7659] ? kasan_check_read+0x11/0x20 [ 44.748930][ T7659] pagevec_lru_move_fn+0x218/0x2a0 [ 44.754053][ T7659] ? lru_deactivate_file_fn+0x1a30/0x1a30 [ 44.759783][ T7659] lru_add_drain_cpu+0x3b1/0x520 [ 44.764736][ T7659] lru_add_drain+0x20/0x60 [ 44.769208][ T7659] exit_mmap+0x290/0x530 [ 44.773449][ T7659] ? __ia32_sys_munmap+0x80/0x80 [ 44.778379][ T7659] ? lock_downgrade+0x880/0x880 [ 44.783226][ T7659] ? up_write+0x1c/0x150 [ 44.787464][ T7659] ? __khugepaged_exit+0xcf/0x400 [ 44.792477][ T7659] mmput+0x15f/0x4c0 [ 44.796359][ T7659] do_exit+0x816/0x2fa0 [ 44.800508][ T7659] ? do_compat_pwritev64+0xe1/0x1c0 [ 44.805694][ T7659] ? mm_update_next_owner+0x640/0x640 [ 44.811072][ T7659] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 44.816534][ T7659] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 44.822021][ T7659] do_group_exit+0x135/0x370 [ 44.826626][ T7659] __x64_sys_exit_group+0x44/0x50 [ 44.831667][ T7659] do_syscall_64+0x103/0x610 [ 44.836264][ T7659] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 44.842142][ T7659] RIP: 0033:0x442a58 [ 44.846026][ T7659] Code: 00 00 be 3c 00 00 00 eb 19 66 0f 1f 84 00 00 00 00 00 48 89 d7 89 f0 0f 05 48 3d 00 f0 ff ff 77 21 f4 48 89 d7 44 89 c0 0f 05 <48> 3d 00 f0 ff ff 76 e0 f7 d8 64 41 89 01 eb d8 0f 1f 84 00 00 00 [ 44.865614][ T7659] RSP: 002b:00007ffe99e2faf8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7 [ 44.874011][ T7659] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000442a58 [ 44.881970][ T7659] RDX: 0000000000000000 RSI: 000000000000003c RDI: 0000000000000000 [ 44.890042][ T7659] RBP: 00000000004c2468 R08: 00000000000000e7 R09: ffffffffffffffd0 [ 44.898014][ T7659] R10: 0000000002000005 R11: 0000000000000246 R12: 0000000000000001 [ 44.905972][ T7659] R13: 00000000006d4180 R14: 0000000000000000 R15: 0000000000000000