================================================================================ UBSAN: Undefined behaviour in ./include/net/red.h:272:18 shift exponent 71 is too large for 64-bit type 'long unsigned int' CPU: 0 PID: 9150 Comm: systemd-udevd Not tainted 4.19.148-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Call Trace: __dump_stack lib/dump_stack.c:77 [inline] dump_stack+0x22c/0x33e lib/dump_stack.c:118 ubsan_epilogue+0xe/0x3a lib/ubsan.c:161 __ubsan_handle_shift_out_of_bounds.cold+0x1c4/0x250 lib/ubsan.c:422 red_calc_qavg_from_idle_time include/net/red.h:272 [inline] red_adaptative_algo include/net/red.h:404 [inline] red_adaptative_timer+0x7ed/0x870 net/sched/sch_red.c:266 call_timer_fn+0x177/0x760 kernel/time/timer.c:1338 expire_timers+0x243/0x500 kernel/time/timer.c:1375 __run_timers kernel/time/timer.c:1703 [inline] run_timer_softirq+0x259/0x730 kernel/time/timer.c:1716 __do_softirq+0x27d/0xad2 kernel/softirq.c:292 invoke_softirq kernel/softirq.c:372 [inline] irq_exit+0x22d/0x270 kernel/softirq.c:412 exiting_irq arch/x86/include/asm/apic.h:544 [inline] smp_apic_timer_interrupt+0x15f/0x5d0 arch/x86/kernel/apic/apic.c:1094 apic_timer_interrupt+0xf/0x20 arch/x86/entry/entry_64.S:894 RIP: 0010:mnt_drop_write+0x0/0xa0 fs/namespace.c:450 Code: 48 89 ef 48 8d 58 c8 e8 7e fc ff ff 48 83 fb c8 75 d0 5b 5d 41 5c e9 7f 06 b4 ff e8 0a 44 ed ff eb da 0f 1f 84 00 00 00 00 00 <55> 53 48 89 fb e8 66 06 b4 ff bf 01 00 00 00 e8 bc 39 8f ff 48 8d RSP: 0018:ffff888042687e10 EFLAGS: 00000293 ORIG_RAX: ffffffffffffff13 RAX: ffff8880a4f226c0 RBX: 00000000fffffffe RCX: 1ffffffff1a5c964 RDX: 0000000000000000 RSI: ffffffff81ba098c RDI: ffff88808ee39420 RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000001 R10: 0000000000000000 R11: 0000000000000003 R12: dffffc0000000000 R13: ffff8880a5ff6500 R14: 0000000000000000 R15: 0000000000000000 do_unlinkat+0x4c6/0x660 fs/namei.c:4078 do_syscall_64+0xf9/0x670 arch/x86/entry/common.c:293 entry_SYSCALL_64_after_hwframe+0x49/0xbe RIP: 0033:0x7fa8656450e7 Code: f0 ff ff 73 01 c3 48 8b 0d ae bd 2b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 b8 57 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 81 bd 2b 00 f7 d8 64 89 01 48 RSP: 002b:00007ffdcefbd5f8 EFLAGS: 00000246 ORIG_RAX: 0000000000000057 RAX: ffffffffffffffda RBX: 0000559d2a2a50b0 RCX: 00007fa8656450e7 RDX: 00007ffdcefbd4d0 RSI: 00007ffdcefbd4d0 RDI: 00007ffdcefbd600 RBP: 00000000000000b3 R08: 00000000000001c0 R09: 0000000000000013 R10: 00007ffdcefbd600 R11: 0000000000000246 R12: 00007ffdcefbd600 R13: 0000559d2a2a50b0 R14: 0000000000000003 R15: 000000000000000e ================================================================================ audit: type=1804 audit(1601270485.397:14): pid=9206 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir039957096/syzkaller.3BibXQ/44/file0/bus" dev="sda1" ino=15902 res=1 audit: type=1804 audit(1601270485.827:15): pid=9198 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir039957096/syzkaller.3BibXQ/44/file0/file0/bus" dev="sda1" ino=15903 res=1 audit: type=1804 audit(1601270486.117:16): pid=9257 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir037524337/syzkaller.N2RSh6/41/bus" dev="sda1" ino=15915 res=1 audit: type=1804 audit(1601270486.147:17): pid=9257 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=invalid_pcr cause=ToMToU comm="syz-executor.1" name="/root/syzkaller-testdir037524337/syzkaller.N2RSh6/41/bus" dev="sda1" ino=15915 res=1 audit: type=1804 audit(1601270486.277:18): pid=9254 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=invalid_pcr cause=ToMToU comm="syz-executor.1" name="/root/syzkaller-testdir037524337/syzkaller.N2RSh6/41/bus" dev="sda1" ino=15915 res=1 audit: type=1400 audit(1601270488.337:19): avc: denied { create } for pid=9262 comm="syz-executor.5" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=dccp_socket permissive=1 audit: type=1400 audit(1601270488.377:20): avc: denied { name_bind } for pid=9262 comm="syz-executor.5" src=20000 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:port_t:s0 tclass=dccp_socket permissive=1 audit: type=1400 audit(1601270488.377:21): avc: denied { node_bind } for pid=9262 comm="syz-executor.5" src=20000 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:node_t:s0 tclass=dccp_socket permissive=1 audit: type=1400 audit(1601270488.397:22): avc: denied { name_connect } for pid=9262 comm="syz-executor.5" dest=20000 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:port_t:s0 tclass=dccp_socket permissive=1 audit: type=1804 audit(1601270488.587:23): pid=9280 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir037524337/syzkaller.N2RSh6/42/bus" dev="sda1" ino=15933 res=1 SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=9349 comm=syz-executor.1 SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=9349 comm=syz-executor.1