[�[0;32m OK �[0m] Started Getty on tty1.
[�[0;32m OK �[0m] Started Getty on tty2.
[�[0;32m OK �[0m] Started Serial Getty on ttyS0.
[�[0;32m OK �[0m] Reached target Login Prompts.
[�[0;32m OK �[0m] Reached target Multi-User System.
[�[0;32m OK �[0m] Reached target Graphical Interface.
Starting Update UTMP about System Runlevel Changes...
[�[0;32m OK �[0m] Started Update UTMP about System Runlevel Changes.
Starting Load/Save RF Kill Switch Status...
[�[0;32m OK �[0m] Started Load/Save RF Kill Switch Status.
Debian GNU/Linux 9 syzkaller ttyS0
Warning: Permanently added '10.128.0.24' (ECDSA) to the list of known hosts.
syzkaller login: [ 40.094143] audit: type=1400 audit(1602968959.617:8): avc: denied { execmem } for pid=6502 comm="syz-executor641" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1
[ 40.113808] IPVS: ftp: loaded support on port[0] = 21
[ 40.191516] chnl_net:caif_netlink_parms(): no params data found
[ 40.332179] bridge0: port 1(bridge_slave_0) entered blocking state
[ 40.339006] bridge0: port 1(bridge_slave_0) entered disabled state
[ 40.347382] device bridge_slave_0 entered promiscuous mode
[ 40.354769] bridge0: port 2(bridge_slave_1) entered blocking state
[ 40.361538] bridge0: port 2(bridge_slave_1) entered disabled state
[ 40.369188] device bridge_slave_1 entered promiscuous mode
[ 40.391390] bond0: Enslaving bond_slave_0 as an active interface with an up link
[ 40.400341] bond0: Enslaving bond_slave_1 as an active interface with an up link
[ 40.419659] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[ 40.427879] team0: Port device team_slave_0 added
[ 40.433343] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[ 40.441039] team0: Port device team_slave_1 added
[ 40.457495] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 40.463739] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 40.489127] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 40.500767] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 40.507097] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 40.532381] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 40.543439] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[ 40.551192] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[ 40.571832] device hsr_slave_0 entered promiscuous mode
[ 40.577977] device hsr_slave_1 entered promiscuous mode
[ 40.584008] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready
[ 40.591507] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready
[ 40.662539] bridge0: port 2(bridge_slave_1) entered blocking state
[ 40.668998] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 40.676119] bridge0: port 1(bridge_slave_0) entered blocking state
[ 40.682507] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 40.719036] IPv6: ADDRCONF(NETDEV_UP): bond0: link is not ready
[ 40.725105] 8021q: adding VLAN 0 to HW filter on device bond0
[ 40.733830] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[ 40.743070] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 40.751566] bridge0: port 1(bridge_slave_0) entered disabled state
[ 40.758940] bridge0: port 2(bridge_slave_1) entered disabled state
[ 40.767657] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[ 40.778804] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready
[ 40.784908] 8021q: adding VLAN 0 to HW filter on device team0
[ 40.807683] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 40.816681] bridge0: port 1(bridge_slave_0) entered blocking state
[ 40.823069] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 40.830494] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 40.839001] bridge0: port 2(bridge_slave_1) entered blocking state
[ 40.845425] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 40.853101] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 40.861323] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 40.871409] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 40.878631] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 40.889874] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 40.899615] IPv6: ADDRCONF(NETDEV_UP): hsr0: link is not ready
[ 40.905944] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 40.922177] IPv6: ADDRCONF(NETDEV_UP): vxcan0: link is not ready
[ 40.929593] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 40.936700] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 40.948639] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 40.961495] IPv6: ADDRCONF(NETDEV_UP): veth0_virt_wifi: link is not ready
[ 40.972162] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 41.006255] IPv6: ADDRCONF(NETDEV_UP): veth0_vlan: link is not ready
[ 41.013244] IPv6: ADDRCONF(NETDEV_UP): vlan0: link is not ready
[ 41.021067] IPv6: ADDRCONF(NETDEV_UP): vlan1: link is not ready
[ 41.030775] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 41.038838] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 41.046109] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 41.055707] device veth0_vlan entered promiscuous mode
[ 41.064462] device veth1_vlan entered promiscuous mode
[ 41.071625] IPv6: ADDRCONF(NETDEV_UP): macvlan0: link is not ready
[ 41.081402] IPv6: ADDRCONF(NETDEV_UP): macvlan1: link is not ready
[ 41.093509] IPv6: ADDRCONF(NETDEV_UP): veth0_macvtap: link is not ready
[ 41.103801] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 41.111873] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 41.119826] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 41.130139] device veth0_macvtap entered promiscuous mode
[ 41.136871] IPv6: ADDRCONF(NETDEV_UP): macvtap0: link is not ready
[ 41.145150] device veth1_macvtap entered promiscuous mode
[ 41.153653] IPv6: ADDRCONF(NETDEV_UP): veth0_to_batadv: link is not ready
[ 41.165847] IPv6: ADDRCONF(NETDEV_UP): veth1_to_batadv: link is not ready
[ 41.176413] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 41.183148] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 41.192904] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 41.203366] IPv6: ADDRCONF(NETDEV_UP): batadv_slave_1: link is not ready
[ 41.210881] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 41.218452] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 41.226905] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
executing program
[ 41.321126] ================================================================================
[ 41.329786] UBSAN: Undefined behaviour in ./include/net/red.h:214:22
[ 41.336366] shift exponent 75 is too large for 32-bit type 'int'
[ 41.342505] CPU: 1 PID: 6503 Comm: syz-executor641 Not tainted 4.19.152-syzkaller #0
[ 41.350385] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 41.359730] Call Trace:
[ 41.362318] dump_stack+0x22c/0x33e
[ 41.365946] ubsan_epilogue+0xe/0x3a
[ 41.369645] __ubsan_handle_shift_out_of_bounds.cold+0x1c4/0x250
[ 41.375789] ? red_change+0x378/0x10e0
[ 41.379675] red_change.cold+0x4d/0xd3
[ 41.383550] ? red_destroy+0x60/0x60
[ 41.388229] ? init_timer_key+0x88/0x370
[ 41.392273] ? hfsc_dump_class.cold+0x41/0x41
[ 41.396777] ? __lockdep_init_map+0x100/0x5c0
[ 41.401268] ? red_change+0x10e0/0x10e0
[ 41.405745] ? red_change+0x10e0/0x10e0
[ 41.409717] qdisc_create+0x534/0x1080
[ 41.413601] ? tc_get_qdisc+0xad0/0xad0
[ 41.417563] ? nla_parse+0x1b2/0x290
[ 41.421262] tc_modify_qdisc+0x4c0/0x195b
[ 41.425505] ? qdisc_create+0x1080/0x1080
[ 41.430419] ? rtnetlink_rcv_msg+0x443/0xc10
[ 41.434817] ? qdisc_create+0x1080/0x1080
[ 41.438960] rtnetlink_rcv_msg+0x498/0xc10
[ 41.443181] ? rtnl_get_link+0x270/0x270
[ 41.447229] ? memcpy+0x35/0x50
[ 41.450492] ? netdev_pick_tx+0x350/0x350
[ 41.454624] ? __copy_skb_header+0x414/0x500
[ 41.459031] ? kfree_skbmem+0x140/0x140
[ 41.463008] netlink_rcv_skb+0x160/0x440
[ 41.467056] ? rtnl_get_link+0x270/0x270
[ 41.471118] ? netlink_ack+0xae0/0xae0
[ 41.475709] netlink_unicast+0x4d5/0x690
[ 41.479779] ? netlink_sendskb+0x110/0x110
[ 41.484014] netlink_sendmsg+0x717/0xcc0
[ 41.488074] ? nlmsg_notify+0x1a0/0x1a0
[ 41.492033] ? __sock_recv_ts_and_drops+0x540/0x540
[ 41.497037] ? nlmsg_notify+0x1a0/0x1a0
[ 41.500995] sock_sendmsg+0xc7/0x130
[ 41.504715] ___sys_sendmsg+0x3b3/0x8f0
[ 41.508683] ? do_syscall_64+0xf9/0x670
[ 41.512656] ? copy_msghdr_from_user+0x440/0x440
[ 41.517408] ? find_held_lock+0x2d/0x110
[ 41.521452] ? fs_reclaim_release+0xd0/0x110
[ 41.525861] ? __lock_acquire+0x6ec/0x3ff0
[ 41.530083] ? selinux_file_alloc_security+0xe4/0x1c0
[ 41.535265] ? rcu_read_lock_sched_held+0x174/0x1e0
[ 41.540277] ? __fget_light+0x1a2/0x230
[ 41.544247] __sys_sendmmsg+0x195/0x470
[ 41.548219] ? __ia32_sys_sendmsg+0x220/0x220
[ 41.552804] ? find_held_lock+0x2d/0x110
[ 41.556868] ? check_preemption_disabled+0x41/0x2b0
[ 41.561882] ? __fd_install+0x261/0x6e0
[ 41.565852] ? __sys_socket+0x16d/0x200
[ 41.569823] ? move_addr_to_kernel+0x70/0x70
[ 41.574239] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[ 41.580542] __x64_sys_sendmmsg+0x99/0x100
[ 41.584762] ? lockdep_hardirqs_on+0x3c1/0x5e0
[ 41.589335] do_syscall_64+0xf9/0x670
[ 41.593139] entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 41.598315] RIP: 0033:0x443709
[ 41.601502] Code: 18 89 d0 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db 0d fc ff c3 66 2e 0f 1f 84 00 00 00 00
[ 41.620392] RSP: 002b:00007ffd3113db18 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 41.628099] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000443709
[ 41.635359] RDX: 0492492492492642 RSI: 0000000020000180 RDI: 0000000000000004
[ 41.642636] RBP: 00007ffd3113db20 R08: 0000000001bbbbbb R09: 0000000001bbbbbb
[ 41.649902] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffd3113db30
[ 41.657159] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 41.664428] ================================================================================
[ 41.682527] ================================================================================
[ 41.691224] UBSAN: Undefined behaviour in ./include/net/red.h:269:27
[ 41.697799] shift exponent 75 is too large for 64-bit type 'long int'
[ 41.704389] CPU: 0 PID: 3417 Comm: kworker/0:2 Not tainted 4.19.152-syzkaller #0
[ 41.711916] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 41.721261] Workqueue: ipv6_addrconf addrconf_dad_work
[ 41.726518] Call Trace:
[ 41.729080]
[ 41.731280] dump_stack+0x22c/0x33e
[ 41.734937] ubsan_epilogue+0xe/0x3a
[ 41.738675] __ubsan_handle_shift_out_of_bounds.cold+0x1c4/0x250
[ 41.744817] ? kvm_clock_get_cycles+0x14/0x30
[ 41.749319] ? ktime_get+0x21b/0x320
[ 41.753020] red_enqueue+0x1ced/0x2200
[ 41.756904] ? red_graft+0x320/0x320
[ 41.760615] ? __dev_queue_xmit+0x1425/0x2ec0
[ 41.765110] __dev_queue_xmit+0x14e1/0x2ec0
[ 41.769432] ? br_handle_frame_finish+0xfcc/0x14d0
[ 41.774357] ? br_nf_hook_thresh+0x2d7/0x370
[ 41.778750] ? br_nf_pre_routing_finish_ipv6+0x701/0xd90
[ 41.784199] ? netdev_pick_tx+0x350/0x350
[ 41.788369] ? br_handle_frame+0xb24/0x151a
[ 41.792676] ? __netif_receive_skb_core+0x7d5/0x33c0
[ 41.797763] ? __netif_receive_skb_one_core+0xae/0x180
[ 41.803024] ? netif_receive_skb_core+0xd0/0x1a0
[ 41.807776] ? process_backlog+0x261/0x760
[ 41.811997] ? __do_softirq+0x27d/0xad2
[ 41.815967] ? do_softirq_own_stack+0x2a/0x40
[ 41.820461] ? do_softirq.part.0+0x168/0x200
[ 41.824870] ? ip6_finish_output2+0x120d/0x2370
[ 41.829519] ? ip6_finish_output+0x610/0xcc0
[ 41.833908] ? ip6_output+0x205/0x7c0
[ 41.837707] ? ndisc_send_skb+0xa6b/0x1860
[ 41.841936] ? ndisc_send_ns+0x51d/0x840
[ 41.846006] ? addrconf_dad_work+0xb78/0x1130
[ 41.850503] ? process_one_work+0x796/0x14e0
[ 41.854912] ? worker_thread+0x64c/0x1130
[ 41.859055] ? kthread+0x33f/0x460
[ 41.862578] ? ret_from_fork+0x24/0x30
[ 41.866462] br_dev_queue_push_xmit+0x25a/0x6c0
[ 41.871132] ? mark_held_locks+0xa6/0xf0
[ 41.875188] ? kfree+0x110/0x250
[ 41.878556] ? br_fdb_add.cold+0xd8/0xd8
[ 41.882612] ? lockdep_hardirqs_on+0x29f/0x5e0
[ 41.887182] br_nf_dev_queue_xmit+0x2c3/0x15d0
[ 41.891762] br_nf_post_routing+0xa7e/0x11f0
[ 41.896180] ? br_nf_dev_queue_xmit+0x15d0/0x15d0
[ 41.901006] ? __save_stack_trace+0x83/0x100
[ 41.905412] ? brnf_sysctl_call_tables+0xd0/0xd0
[ 41.910168] nf_hook_slow+0xc5/0x1e0
[ 41.913866] br_forward_finish+0x29a/0x430
[ 41.918084] ? br_dev_queue_push_xmit+0x6c0/0x6c0
[ 41.922926] ? __netif_receive_skb_one_core+0xae/0x180
[ 41.928535] ? __netif_receive_skb+0x27/0x1c0
[ 41.933014] ? process_backlog+0x261/0x760
[ 41.937249] ? br_fdb_add.cold+0xd8/0xd8
[ 41.941312] ? nf_hook_slow+0xf5/0x1e0
[ 41.945199] br_nf_hook_thresh+0x2d7/0x370
[ 41.949432] ? br_dev_queue_push_xmit+0x6c0/0x6c0
[ 41.954257] ? setup_pre_routing+0x460/0x460
[ 41.958670] ? br_dev_queue_push_xmit+0x6c0/0x6c0
[ 41.963519] br_nf_forward_finish+0x335/0x6d0
[ 41.967997] ? br_dev_queue_push_xmit+0x6c0/0x6c0
[ 41.972825] br_nf_forward_ip+0xad1/0x1620
[ 41.977044] ? br_nf_forward_finish+0x6d0/0x6d0
[ 41.981697] ? process_one_work+0x796/0x14e0
[ 41.986086] ? worker_thread+0x64c/0x1130
[ 41.990219] ? kthread+0x33f/0x460
[ 41.993755] ? br_nf_hook_thresh+0x370/0x370
[ 41.998151] nf_hook_slow+0xc5/0x1e0
[ 42.001866] __br_forward+0x3c8/0xbb0
[ 42.005652] ? br_forward_finish+0x430/0x430
[ 42.010046] ? br_dev_queue_push_xmit+0x6c0/0x6c0
[ 42.014891] br_flood+0x3ee/0x4f0
[ 42.018334] br_handle_frame_finish+0xfcc/0x14d0
[ 42.023090] ? __lock_acquire+0x6d0/0x3ff0
[ 42.027308] ? br_handle_local_finish+0x20/0x20
[ 42.031989] ? nf_hook_slow+0xf5/0x1e0
[ 42.035863] br_nf_hook_thresh+0x2d7/0x370
[ 42.040080] ? br_handle_local_finish+0x20/0x20
[ 42.044737] ? setup_pre_routing+0x460/0x460
[ 42.049137] ? init_conntrack+0x11f0/0x11f0
[ 42.054314] ? sock_def_write_space+0x176/0x6c0
[ 42.058972] ? br_handle_local_finish+0x20/0x20
[ 42.063654] br_nf_pre_routing_finish_ipv6+0x701/0xd90
[ 42.068918] ? br_handle_local_finish+0x20/0x20
[ 42.073589] br_nf_pre_routing_ipv6+0x3f4/0x8ca
[ 42.078244] ? br_validate_ipv6+0xb90/0xb90
[ 42.084459] ? lockdep_hardirqs_on+0x29f/0x5e0
[ 42.089033] ? br_nf_pre_routing.cold+0xa0/0xa0
[ 42.093704] br_nf_pre_routing+0x9c7/0x152c
[ 42.098036] ? br_nf_pre_routing_finish+0x1830/0x1830
[ 42.103401] ? ebt_broute+0x30/0x190
[ 42.107109] nf_hook_slow+0xc5/0x1e0
[ 42.110820] br_handle_frame+0xb24/0x151a
[ 42.114956] ? kmem_cache_free+0x284/0x2b0
[ 42.119184] ? br_handle_frame_finish+0x14d0/0x14d0
[ 42.124182] ? kfree_skbmem+0xc1/0x140
[ 42.128052] ? br_handle_local_finish+0x20/0x20
[ 42.132731] ? br_handle_frame_finish+0x14d0/0x14d0
[ 42.137742] __netif_receive_skb_core+0x7d5/0x33c0
[ 42.142665] ? do_xdp_generic.part.0+0x1a0/0x1a0
[ 42.147424] ? mark_held_locks+0xf0/0xf0
[ 42.151480] ? ip6_sublist_rcv+0xc40/0xc40
[ 42.155712] ? mark_held_locks+0xf0/0xf0
[ 42.159776] __netif_receive_skb_one_core+0xae/0x180
[ 42.166176] ? __netif_receive_skb_core+0x33c0/0x33c0
[ 42.171353] ? lock_acquire+0x170/0x3f0
[ 42.175316] ? process_backlog+0x1d0/0x760
[ 42.179885] __netif_receive_skb+0x27/0x1c0
[ 42.184304] process_backlog+0x261/0x760
[ 42.188356] net_rx_action+0x4e5/0x10d0
[ 42.192319] ? napi_complete_done+0x5a0/0x5a0
[ 42.197245] ? kvm_sched_clock_read+0x14/0x40
[ 42.201741] __do_softirq+0x27d/0xad2
[ 42.205533] do_softirq_own_stack+0x2a/0x40
[ 42.210366]
[ 42.212585] do_softirq.part.0+0x168/0x200
[ 42.216803] ? ip6_finish_output2+0x11da/0x2370
[ 42.221468] __local_bh_enable_ip+0x22d/0x2a0
[ 42.225945] ip6_finish_output2+0x120d/0x2370
[ 42.230439] ? ip6_append_data+0x300/0x300
[ 42.234655] ? lock_downgrade+0x750/0x750
[ 42.238803] ? check_preemption_disabled+0x41/0x2b0
[ 42.243892] ip6_finish_output+0x610/0xcc0
[ 42.248124] ip6_output+0x205/0x7c0
[ 42.251750] ? ip6_finish_output+0xcc0/0xcc0
[ 42.256159] ? ip6_fragment+0x3390/0x3390
[ 42.260288] ? check_preemption_disabled+0x41/0x2b0
[ 42.265336] ndisc_send_skb+0xa6b/0x1860
[ 42.269398] ? pndisc_constructor+0x250/0x250
[ 42.273888] ? __kmalloc_node_track_caller+0x38/0x70
[ 42.278974] ? do_ipv6_setsockopt.constprop.0.cold+0x8c/0x8c
[ 42.284775] ? __alloc_skb+0x36d/0x580
[ 42.288648] ? skb_set_owner_w+0x21f/0x370
[ 42.292880] ndisc_send_ns+0x51d/0x840
[ 42.296766] ? addrconf_dad_work+0xab2/0x1130
[ 42.301310] ? pndisc_redo+0x20/0x20
[ 42.305015] ? mark_held_locks+0xa6/0xf0
[ 42.309106] ? addrconf_dad_work+0x677/0x1130
[ 42.313590] ? __local_bh_enable_ip+0x159/0x2a0
[ 42.318349] addrconf_dad_work+0xb78/0x1130
[ 42.322661] ? addrconf_dad_completed+0xb60/0xb60
[ 42.327503] process_one_work+0x796/0x14e0
[ 42.331746] ? init_worker_pool+0x5c0/0x5c0
[ 42.336058] worker_thread+0x64c/0x1130
[ 42.340044] ? __kthread_parkme+0x133/0x1e0
[ 42.344360] ? rescuer_thread+0xce0/0xce0
[ 42.348681] kthread+0x33f/0x460
[ 42.352029] ? kthread_park+0x180/0x180
[ 42.356003] ret_from_fork+0x24/0x30
[ 42.359702] ================================================================================
[ 42.375396] ================================================================================
[ 42.384090] UBSAN: Undefined behaviour in ./include/net/red.h:272:18
[ 42.390590] shift exponent 163 is too large for 64-bit type 'long unsigned int'
[ 42.398035] CPU: 1 PID: 0 Comm: swapper/1 Not tainted 4.19.152-syzkaller #0
[ 42.405115] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 42.414447] Call Trace:
[ 42.417023]
[ 42.419161] dump_stack+0x22c/0x33e
[ 42.422778] ubsan_epilogue+0xe/0x3a
[ 42.426480] __ubsan_handle_shift_out_of_bounds.cold+0x1c4/0x250
[ 42.432607] ? mark_held_locks+0xa6/0xf0
[ 42.436655] ? kvm_clock_get_cycles+0x14/0x30
[ 42.441133] ? ktime_get+0x21b/0x320
[ 42.444833] red_adaptative_timer+0x7ed/0x870
[ 42.449313] call_timer_fn+0x177/0x760
[ 42.453307] ? hfsc_dump_class.cold+0x41/0x41
[ 42.457809] ? init_timer_key+0x370/0x370
[ 42.461969] ? _raw_spin_unlock_irq+0x24/0x90
[ 42.466467] ? hfsc_dump_class.cold+0x41/0x41
[ 42.470969] expire_timers+0x243/0x500
[ 42.474844] run_timer_softirq+0x259/0x730
[ 42.479061] ? expire_timers+0x500/0x500
[ 42.483120] ? kvm_sched_clock_read+0x14/0x40
[ 42.487599] ? sched_clock+0x2a/0x50
[ 42.491311] ? sched_clock_cpu+0x18/0x260
[ 42.495460] ? check_preemption_disabled+0x41/0x2b0
[ 42.500498] __do_softirq+0x27d/0xad2
[ 42.504310] irq_exit+0x22d/0x270
[ 42.507748] smp_apic_timer_interrupt+0x15f/0x5d0
[ 42.512589] apic_timer_interrupt+0xf/0x20
[ 42.516803]
[ 42.519387] RIP: 0010:native_safe_halt+0xe/0x10
[ 42.524040] Code: e9 73 fd ff ff 48 89 df e8 2f 06 fa f9 e9 59 ff ff ff 90 90 90 90 90 90 90 90 90 90 e9 07 00 00 00 0f 00 2d 74 3b 57 00 fb f4 90 e9 07 00 00 00 0f 00 2d 64 3b 57 00 f4 c3 90 90 41 56 41 55
[ 42.542939] RSP: 0018:ffff8880a9a6fd58 EFLAGS: 00000286 ORIG_RAX: ffffffffffffff13
[ 42.550650] RAX: 1ffffffff12c7140 RBX: dffffc0000000000 RCX: 0000000000000000
[ 42.557902] RDX: dffffc0000000000 RSI: 0000000000000001 RDI: ffff8880a9a60c44
[ 42.565171] RBP: 0000000000000001 R08: 0000000000000001 R09: 0000000000000000
[ 42.572421] R10: 0000000000000000 R11: 0000000000000000 R12: ffffffff896389f0
[ 42.579672] R13: 1ffff1101534dfb5 R14: 0000000000000000 R15: 0000000000000000
[ 42.586952] default_idle+0x49/0x320
[ 42.590667] do_idle+0x2f8/0x500
[ 42.594017] ? arch_cpu_idle_exit+0x80/0x80
[ 42.598329] ? lockdep_hardirqs_on+0x3c1/0x5e0
[ 42.602897] cpu_startup_entry+0xc5/0xd6
[ 42.606968] ? cpu_in_idle+0x20/0x20
[ 42.610668] ? lockdep_hardirqs_on+0x3c1/0x5e0
[ 42.615240] start_secondary+0x44d/0x610
[ 42.619285] ? set_cpu_sibling_map+0x27b0/0x27b0
[ 42.624036] secondary_startup