Warning: Permanently added '10.128.0.15' (ECDSA) to the list of known hosts. executing program syzkaller login: [ 70.567793][ T8418] ================================================================================ [ 70.577425][ T8418] UBSAN: shift-out-of-bounds in ./include/net/red.h:237:23 [ 70.585283][ T8418] shift exponent 32 is too large for 32-bit type 'unsigned int' [ 70.593018][ T8418] CPU: 1 PID: 8418 Comm: syz-executor170 Not tainted 5.12.0-rc4-next-20210324-syzkaller #0 [ 70.603017][ T8418] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 70.613086][ T8418] Call Trace: [ 70.616362][ T8418] dump_stack+0x141/0x1d7 [ 70.620704][ T8418] ubsan_epilogue+0xb/0x5a [ 70.625134][ T8418] __ubsan_handle_shift_out_of_bounds.cold+0xb1/0x181 [ 70.631901][ T8418] ? rwlock_bug.part.0+0x90/0x90 [ 70.636868][ T8418] choke_change.cold+0x3c/0xc8 [ 70.641653][ T8418] ? rcu_read_lock_sched_held+0x3a/0x70 [ 70.647207][ T8418] ? choke_enqueue+0x1b60/0x1b60 [ 70.652144][ T8418] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 70.658388][ T8418] ? choke_change+0x15d0/0x15d0 [ 70.663236][ T8418] qdisc_create+0x475/0x12f0 [ 70.667840][ T8418] ? tc_get_qdisc+0xb30/0xb30 [ 70.672531][ T8418] ? __nla_parse+0x3d/0x50 [ 70.676945][ T8418] tc_modify_qdisc+0x4c8/0x1a50 [ 70.681798][ T8418] ? rtnetlink_rcv_msg+0x3f9/0xad0 [ 70.686911][ T8418] ? qdisc_create+0x12f0/0x12f0 [ 70.691772][ T8418] ? qdisc_create+0x12f0/0x12f0 [ 70.696616][ T8418] rtnetlink_rcv_msg+0x44e/0xad0 [ 70.702002][ T8418] ? rtnetlink_put_metrics+0x510/0x510 [ 70.707468][ T8418] netlink_rcv_skb+0x153/0x420 [ 70.712225][ T8418] ? rtnetlink_put_metrics+0x510/0x510 [ 70.717698][ T8418] ? netlink_ack+0xaa0/0xaa0 [ 70.722292][ T8418] ? netlink_deliver_tap+0x227/0xb70 [ 70.727580][ T8418] netlink_unicast+0x533/0x7d0 [ 70.732337][ T8418] ? netlink_attachskb+0x870/0x870 [ 70.737440][ T8418] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 70.743678][ T8418] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 70.749918][ T8418] ? __phys_addr_symbol+0x2c/0x70 [ 70.754950][ T8418] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 70.760777][ T8418] ? __check_object_size+0x171/0x3f0 [ 70.766066][ T8418] netlink_sendmsg+0x856/0xd90 [ 70.770862][ T8418] ? netlink_unicast+0x7d0/0x7d0 [ 70.775802][ T8418] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 70.782043][ T8418] ? netlink_unicast+0x7d0/0x7d0 [ 70.786987][ T8418] sock_sendmsg+0xcf/0x120 [ 70.791427][ T8418] ____sys_sendmsg+0x6e8/0x810 [ 70.796202][ T8418] ? kernel_sendmsg+0x50/0x50 [ 70.800874][ T8418] ? do_recvmmsg+0x6d0/0x6d0 [ 70.805468][ T8418] ? fs_reclaim_release+0x9c/0xf0 [ 70.810495][ T8418] ? lock_chain_count+0x20/0x20 [ 70.815363][ T8418] ___sys_sendmsg+0xf3/0x170 [ 70.819952][ T8418] ? sendmsg_copy_msghdr+0x160/0x160 [ 70.825242][ T8418] ? __lock_acquire+0x16a7/0x5230 [ 70.830301][ T8418] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 70.836294][ T8418] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 70.842537][ T8418] ? __fget_light+0x215/0x280 [ 70.847229][ T8418] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 70.853470][ T8418] __sys_sendmsg+0xe5/0x1b0 [ 70.858020][ T8418] ? __sys_sendmsg_sock+0x30/0x30 [ 70.863055][ T8418] ? __context_tracking_enter+0xef/0x100 [ 70.868695][ T8418] ? syscall_enter_from_user_mode+0x27/0x70 [ 70.874593][ T8418] do_syscall_64+0x2d/0x70 [ 70.879007][ T8418] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 70.884896][ T8418] RIP: 0033:0x43f039 [ 70.888806][ T8418] Code: 28 c3 e8 2a 14 00 00 66 2e 0f 1f 84 00 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48 [ 70.908529][ T8418] RSP: 002b:00007ffdfa725168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 70.916958][ T8418] RAX: ffffffffffffffda RBX: 0000000000400488 RCX: 000000000043f039 [ 70.924926][ T8418] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000004 [ 70.932889][ T8418] RBP: 0000000000403020 R08: 0000000000400488 R09: 0000000000400488 [ 70.940866][ T8418] R10: 0000000000400488 R11: 0000000000000246 R12: 00000000004030b0 [ 70.948845][ T8418] R13: 0000000000000000 R14: 00000000004ac018 R15: 0000000000400488 [ 70.956947][ T8418] ================================================================================ [ 70.966329][ T8418] Kernel panic - not syncing: panic_on_warn set ... [ 70.972933][ T8418] CPU: 1 PID: 8418 Comm: syz-executor170 Not tainted 5.12.0-rc4-next-20210324-syzkaller #0 [ 70.982930][ T8418] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 70.993002][ T8418] Call Trace: [ 70.996297][ T8418] dump_stack+0x141/0x1d7 [ 71.000661][ T8418] panic+0x306/0x73d [ 71.004578][ T8418] ? __warn_printk+0xf3/0xf3 [ 71.009296][ T8418] ? dump_stack+0x1c1/0x1d7 [ 71.013830][ T8418] ? ubsan_epilogue+0x3e/0x5a [ 71.018532][ T8418] ubsan_epilogue+0x54/0x5a [ 71.023052][ T8418] __ubsan_handle_shift_out_of_bounds.cold+0xb1/0x181 [ 71.029850][ T8418] ? rwlock_bug.part.0+0x90/0x90 [ 71.034836][ T8418] choke_change.cold+0x3c/0xc8 [ 71.039658][ T8418] ? rcu_read_lock_sched_held+0x3a/0x70 [ 71.045238][ T8418] ? choke_enqueue+0x1b60/0x1b60 [ 71.050212][ T8418] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 71.056505][ T8418] ? choke_change+0x15d0/0x15d0 [ 71.061385][ T8418] qdisc_create+0x475/0x12f0 [ 71.066063][ T8418] ? tc_get_qdisc+0xb30/0xb30 [ 71.070771][ T8418] ? __nla_parse+0x3d/0x50 [ 71.075234][ T8418] tc_modify_qdisc+0x4c8/0x1a50 [ 71.080125][ T8418] ? rtnetlink_rcv_msg+0x3f9/0xad0 [ 71.085267][ T8418] ? qdisc_create+0x12f0/0x12f0 [ 71.090172][ T8418] ? qdisc_create+0x12f0/0x12f0 [ 71.095052][ T8418] rtnetlink_rcv_msg+0x44e/0xad0 [ 71.100021][ T8418] ? rtnetlink_put_metrics+0x510/0x510 [ 71.105544][ T8418] netlink_rcv_skb+0x153/0x420 [ 71.110328][ T8418] ? rtnetlink_put_metrics+0x510/0x510 [ 71.115807][ T8418] ? netlink_ack+0xaa0/0xaa0 [ 71.120414][ T8418] ? netlink_deliver_tap+0x227/0xb70 [ 71.125741][ T8418] netlink_unicast+0x533/0x7d0 [ 71.130531][ T8418] ? netlink_attachskb+0x870/0x870 [ 71.135654][ T8418] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 71.141918][ T8418] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 71.148183][ T8418] ? __phys_addr_symbol+0x2c/0x70 [ 71.153230][ T8418] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 71.158972][ T8418] ? __check_object_size+0x171/0x3f0 [ 71.164284][ T8418] netlink_sendmsg+0x856/0xd90 [ 71.169079][ T8418] ? netlink_unicast+0x7d0/0x7d0 [ 71.174049][ T8418] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 71.180505][ T8418] ? netlink_unicast+0x7d0/0x7d0 [ 71.185467][ T8418] sock_sendmsg+0xcf/0x120 [ 71.189930][ T8418] ____sys_sendmsg+0x6e8/0x810 [ 71.194723][ T8418] ? kernel_sendmsg+0x50/0x50 [ 71.199424][ T8418] ? do_recvmmsg+0x6d0/0x6d0 [ 71.204069][ T8418] ? fs_reclaim_release+0x9c/0xf0 [ 71.209119][ T8418] ? lock_chain_count+0x20/0x20 [ 71.214020][ T8418] ___sys_sendmsg+0xf3/0x170 [ 71.218736][ T8418] ? sendmsg_copy_msghdr+0x160/0x160 [ 71.224071][ T8418] ? __lock_acquire+0x16a7/0x5230 [ 71.229158][ T8418] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 71.235196][ T8418] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 71.241479][ T8418] ? __fget_light+0x215/0x280 [ 71.246193][ T8418] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 71.252470][ T8418] __sys_sendmsg+0xe5/0x1b0 [ 71.257056][ T8418] ? __sys_sendmsg_sock+0x30/0x30 [ 71.262285][ T8418] ? __context_tracking_enter+0xef/0x100 [ 71.267965][ T8418] ? syscall_enter_from_user_mode+0x27/0x70 [ 71.273903][ T8418] do_syscall_64+0x2d/0x70 [ 71.278363][ T8418] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 71.284285][ T8418] RIP: 0033:0x43f039 [ 71.288207][ T8418] Code: 28 c3 e8 2a 14 00 00 66 2e 0f 1f 84 00 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48 [ 71.307852][ T8418] RSP: 002b:00007ffdfa725168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 71.316352][ T8418] RAX: ffffffffffffffda RBX: 0000000000400488 RCX: 000000000043f039 [ 71.324344][ T8418] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000004 [ 71.332328][ T8418] RBP: 0000000000403020 R08: 0000000000400488 R09: 0000000000400488 [ 71.340332][ T8418] R10: 0000000000400488 R11: 0000000000000246 R12: 00000000004030b0 [ 71.348321][ T8418] R13: 0000000000000000 R14: 00000000004ac018 R15: 0000000000400488 [ 71.356996][ T8418] Kernel Offset: disabled [ 71.361929][ T8418] Rebooting in 86400 seconds..