================================================================================
UBSAN: Undefined behaviour in ./include/net/sch_generic.h:1051:7
shift exponent 129 is too large for 32-bit type 'int'
CPU: 0 PID: 9 Comm: ksoftirqd/0 Not tainted 4.19.149-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
Call Trace:
 __dump_stack lib/dump_stack.c:77 [inline]
 dump_stack+0x22c/0x33e lib/dump_stack.c:118
 ubsan_epilogue+0xe/0x3a lib/ubsan.c:161
 __ubsan_handle_shift_out_of_bounds.cold+0x1c4/0x250 lib/ubsan.c:422
 qdisc_l2t include/net/sch_generic.h:1051 [inline]
 cbq_update net/sched/sch_cbq.c:567 [inline]
 cbq_dequeue.cold+0x189/0x18e net/sched/sch_cbq.c:814
 dequeue_skb net/sched/sch_generic.c:282 [inline]
 qdisc_restart net/sched/sch_generic.c:385 [inline]
 __qdisc_run+0x1b9/0x1680 net/sched/sch_generic.c:403
 qdisc_run include/net/pkt_sched.h:120 [inline]
 net_tx_action+0x520/0xce0 net/core/dev.c:4592
 __do_softirq+0x27d/0xad2 kernel/softirq.c:292
 run_ksoftirqd+0x57/0x130 kernel/softirq.c:653
 smpboot_thread_fn+0x66e/0xa30 kernel/smpboot.c:164
 kthread+0x33f/0x460 kernel/kthread.c:259
 ret_from_fork+0x24/0x30 arch/x86/entry/entry_64.S:415
================================================================================
IPVS: sync thread started: state = BACKUP, mcast_ifn = bridge0, syncid = 3, id = 0
x_tables: duplicate underflow at hook 1
netlink: 28 bytes leftover after parsing attributes in process `syz-executor.3'.
nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based  firewall rule not found. Use the iptables CT target to attach helpers instead.
IPVS: sync thread started: state = BACKUP, mcast_ifn = wlan1, syncid = 2, id = 0
x_tables: duplicate underflow at hook 1
netlink: 24 bytes leftover after parsing attributes in process `syz-executor.3'.
netlink: 24 bytes leftover after parsing attributes in process `syz-executor.3'.
Cannot find del_set index 0 as target
Cannot find del_set index 0 as target
xt_ecn: cannot match TCP bits for non-tcp packets
netlink: 24 bytes leftover after parsing attributes in process `syz-executor.0'.
netlink: 16 bytes leftover after parsing attributes in process `syz-executor.0'.
netlink: 24 bytes leftover after parsing attributes in process `syz-executor.0'.
netlink: 16 bytes leftover after parsing attributes in process `syz-executor.0'.
xt_ecn: cannot match TCP bits for non-tcp packets
xt_ecn: cannot match TCP bits for non-tcp packets
xt_ecn: cannot match TCP bits for non-tcp packets
overlayfs: failed to resolve './bus': -2
audit: type=1400 audit(1601966687.427:47): avc:  denied  { set_context_mgr } for  pid=17784 comm="syz-executor.3" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=binder permissive=1
xt_ecn: cannot match TCP bits for non-tcp packets
netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'.
netlink: 72 bytes leftover after parsing attributes in process `syz-executor.4'.
netlink: 72 bytes leftover after parsing attributes in process `syz-executor.4'.
netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'.
netlink: 72 bytes leftover after parsing attributes in process `syz-executor.4'.
SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=17865 comm=syz-executor.5
xt_ecn: cannot match TCP bits for non-tcp packets
nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based  firewall rule not found. Use the iptables CT target to attach helpers instead.
sctp: [Deprecated]: syz-executor.2 (pid 17869) Use of int in max_burst socket option deprecated.
Use struct sctp_assoc_value instead
netlink: 'syz-executor.5': attribute type 5 has an invalid length.
xt_ecn: cannot match TCP bits for non-tcp packets