[   37.327057][   T26] audit: type=1800 audit(1551230671.947:27): pid=7605 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="restorecond" dev="sda1" ino=2436 res=0
[   37.355735][   T26] audit: type=1800 audit(1551230671.947:28): pid=7605 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="ssh" dev="sda1" ino=2417 res=0
[....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[   38.435912][   T26] audit: type=1800 audit(1551230673.107:29): pid=7605 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="rc.local" dev="sda1" ino=2432 res=0
[....] startpar: service(s) returned failure: ssh ...[?25l[?1c7[1G[[31mFAIL[39;49m8[?25h[?0c [31mfailed![39;49m

Debian GNU/Linux 7 syzkaller ttyS0

Warning: Permanently added '10.128.0.60' (ECDSA) to the list of known hosts.
executing program
syzkaller login: [   45.352401][ T7779] page:ffffea00025c3ac0 count:0 mapcount:0 mapping:0000000000000000 index:0x0
[   45.361537][ T7779] flags: 0x1fffc0000000000()
[   45.366393][ T7779] raw: 01fffc0000000000 ffffea00024bf988 ffffea00021dd448 0000000000000000
[   45.375072][ T7779] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[   45.384118][ T7779] page dumped because: VM_BUG_ON_PAGE(page_ref_count(page) == 0)
[   45.392624][ T7779] ------------[ cut here ]------------
[   45.398069][ T7779] kernel BUG at include/linux/mm.h:579!
[   45.403685][ T7779] invalid opcode: 0000 [#1] PREEMPT SMP KASAN
[   45.409762][ T7779] CPU: 0 PID: 7779 Comm: syz-executor379 Not tainted 5.0.0-rc8-next-20190226 #43
[   45.418837][ T7779] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   45.428882][ T7779] RIP: 0010:generic_pipe_buf_release+0x120/0x160
[   45.435181][ T7779] Code: bd ff 4c 89 e7 e8 90 43 db ff e8 bb 29 bd ff 5b 41 5c 41 5d 5d c3 e8 af 29 bd ff 48 c7 c6 20 98 75 87 4c 89 e7 e8 c0 db e4 ff <0f> 0b e8 99 29 bd ff 4d 8d 65 ff e9 3d ff ff ff 48 89 df e8 e8 f8
[   45.454763][ T7779] RSP: 0018:ffff8880a503f920 EFLAGS: 00010293
[   45.460805][ T7779] RAX: ffff88808d2ec6c0 RBX: ffffea00025c3af4 RCX: 0000000000000000
[   45.468751][ T7779] RDX: 0000000000000000 RSI: ffffffff81982852 RDI: ffffea00025c3af8
[   45.476699][ T7779] RBP: ffff8880a503f938 R08: 000000000000003e R09: ffffed1015d05011
[   45.484643][ T7779] R10: ffffed1015d05010 R11: ffff8880ae828087 R12: ffffea00025c3ac0
[   45.492589][ T7779] R13: 0000000000000000 R14: ffff88809b6e8a40 R15: ffff8880952c4000
[   45.500544][ T7779] FS:  00000000016a0880(0000) GS:ffff8880ae800000(0000) knlGS:0000000000000000
[   45.509448][ T7779] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   45.516004][ T7779] CR2: 0000000020f50f90 CR3: 0000000097b89000 CR4: 00000000001406f0
[   45.523965][ T7779] Call Trace:
[   45.527238][ T7779]  iter_file_splice_write+0x7d1/0xbe0
[   45.532585][ T7779]  ? atime_needs_update+0x5f0/0x5f0
[   45.537763][ T7779]  ? page_cache_pipe_buf_confirm+0x2b0/0x2b0
[   45.543722][ T7779]  ? rw_verify_area+0x118/0x360
[   45.548548][ T7779]  ? page_cache_pipe_buf_confirm+0x2b0/0x2b0
[   45.554500][ T7779]  direct_splice_actor+0x126/0x1a0
[   45.559588][ T7779]  splice_direct_to_actor+0x369/0x970
[   45.564934][ T7779]  ? generic_pipe_buf_nosteal+0x10/0x10
[   45.570455][ T7779]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   45.576672][ T7779]  ? do_splice_to+0x190/0x190
[   45.581323][ T7779]  ? rw_verify_area+0x118/0x360
[   45.586153][ T7779]  do_splice_direct+0x1da/0x2a0
[   45.590991][ T7779]  ? splice_direct_to_actor+0x970/0x970
[   45.596519][ T7779]  ? rw_verify_area+0x118/0x360
[   45.601342][ T7779]  do_sendfile+0x597/0xd00
[   45.605736][ T7779]  ? do_compat_pwritev64+0x1c0/0x1c0
[   45.611008][ T7779]  ? __fget_light+0x1a9/0x230
[   45.615664][ T7779]  __x64_sys_sendfile64+0x1dd/0x220
[   45.620843][ T7779]  ? __ia32_sys_sendfile+0x230/0x230
[   45.626145][ T7779]  ? do_syscall_64+0x26/0x610
[   45.630800][ T7779]  ? lockdep_hardirqs_on+0x418/0x5d0
[   45.636093][ T7779]  ? trace_hardirqs_on+0x67/0x230
[   45.641097][ T7779]  do_syscall_64+0x103/0x610
[   45.645665][ T7779]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   45.651533][ T7779] RIP: 0033:0x443d29
[   45.655403][ T7779] Code: 18 89 d0 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b d8 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[   45.674982][ T7779] RSP: 002b:00007fffc1e47c88 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[   45.683365][ T7779] RAX: ffffffffffffffda RBX: 00000000004002e0 RCX: 0000000000443d29
[   45.691311][ T7779] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000003
[   45.699270][ T7779] RBP: 00000000006ce018 R08: 00000000004002e0 R09: 00000000004002e0
[   45.707220][ T7779] R10: 0000000102000300 R11: 0000000000000246 R12: 0000000000401a30
[   45.715168][ T7779] R13: 0000000000401ac0 R14: 0000000000000000 R15: 0000000000000000
[   45.723131][ T7779] Modules linked in:
[   45.727454][ T7779] ---[ end trace 9daff95e0e1a45ff ]---
[   45.732922][ T7779] RIP: 0010:generic_pipe_buf_release+0x120/0x160
[   45.739261][ T7779] Code: bd ff 4c 89 e7 e8 90 43 db ff e8 bb 29 bd ff 5b 41 5c 41 5d 5d c3 e8 af 29 bd ff 48 c7 c6 20 98 75 87 4c 89 e7 e8 c0 db e4 ff <0f> 0b e8 99 29 bd ff 4d 8d 65 ff e9 3d ff ff ff 48 89 df e8 e8 f8
[   45.758878][ T7779] RSP: 0018:ffff8880a503f920 EFLAGS: 00010293
[   45.764922][ T7779] RAX: ffff88808d2ec6c0 RBX: ffffea00025c3af4 RCX: 0000000000000000
[   45.772898][ T7779] RDX: 0000000000000000 RSI: ffffffff81982852 RDI: ffffea00025c3af8
[   45.780900][ T7779] RBP: ffff8880a503f938 R08: 000000000000003e R09: ffffed1015d05011
[   45.788882][ T7779] R10: ffffed1015d05010 R11: ffff8880ae828087 R12: ffffea00025c3ac0
[   45.796863][ T7779] R13: 0000000000000000 R14: ffff88809b6e8a40 R15: ffff8880952c4000
[   45.804811][ T7779] FS:  00000000016a0880(0000) GS:ffff8880ae800000(0000) knlGS:0000000000000000
[   45.813742][ T7779] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   45.820335][ T7779] CR2: 0000000020f50f90 CR3: 0000000097b89000 CR4: 00000000001406f0
[   45.828326][ T7779] Kernel panic - not syncing: Fatal exception
[   45.835291][ T7779] Kernel Offset: disabled
[   45.839609][ T7779] Rebooting in 86400 seconds..