netlink: 24 bytes leftover after parsing attributes in process `syz-executor.2'.
================================================================================
UBSAN: Undefined behaviour in net/sched/sch_api.c:561:7
shift exponent 129 is too large for 32-bit type 'int'
CPU: 1 PID: 28471 Comm: syz-executor.2 Not tainted 4.19.152-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
Call Trace:
 <IRQ>
 __dump_stack lib/dump_stack.c:77 [inline]
 dump_stack+0x22c/0x33e lib/dump_stack.c:118
 ubsan_epilogue+0xe/0x3a lib/ubsan.c:161
 __ubsan_handle_shift_out_of_bounds.cold+0x1c4/0x250 lib/ubsan.c:422
 __qdisc_calculate_pkt_len+0x3bb/0x570 net/sched/sch_api.c:561
 qdisc_calculate_pkt_len include/net/sch_generic.h:697 [inline]
 __dev_xmit_skb net/core/dev.c:3443 [inline]
 __dev_queue_xmit+0x1372/0x2ec0 net/core/dev.c:3807
 neigh_resolve_output+0x55a/0x950 net/core/neighbour.c:1374
 neigh_output include/net/neighbour.h:501 [inline]
 ip6_finish_output2+0x1184/0x2370 net/ipv6/ip6_output.c:120
 ip6_finish_output+0x610/0xcc0 net/ipv6/ip6_output.c:154
 NF_HOOK_COND include/linux/netfilter.h:278 [inline]
 ip6_output+0x205/0x7c0 net/ipv6/ip6_output.c:171
 dst_output include/net/dst.h:455 [inline]
 ip6_local_out+0xaf/0x170 net/ipv6/output_core.c:178
 ip6_send_skb+0xb3/0x300 net/ipv6/ip6_output.c:1699
 ip6_push_pending_frames+0xdd/0x100 net/ipv6/ip6_output.c:1719
 icmpv6_push_pending_frames+0x294/0x470 net/ipv6/icmp.c:288
 icmp6_send+0x1c51/0x2310 net/ipv6/icmp.c:584
 icmpv6_send+0x11e/0x26d net/ipv6/ip6_icmp.c:43
 ip6_link_failure+0x26/0x560 net/ipv6/route.c:2297
 dst_link_failure include/net/dst.h:438 [inline]
 ndisc_error_report+0xc7/0x190 net/ipv6/ndisc.c:695
 neigh_invalidate+0x22c/0x540 net/core/neighbour.c:900
 neigh_timer_handler+0x9b0/0xc70 net/core/neighbour.c:986
 call_timer_fn+0x177/0x760 kernel/time/timer.c:1338
 expire_timers+0x243/0x500 kernel/time/timer.c:1375
 __run_timers kernel/time/timer.c:1703 [inline]
 run_timer_softirq+0x259/0x730 kernel/time/timer.c:1716
 __do_softirq+0x27d/0xad2 kernel/softirq.c:292
 invoke_softirq kernel/softirq.c:372 [inline]
 irq_exit+0x22d/0x270 kernel/softirq.c:412
 exiting_irq arch/x86/include/asm/apic.h:544 [inline]
 smp_apic_timer_interrupt+0x15f/0x5d0 arch/x86/kernel/apic/apic.c:1094
 apic_timer_interrupt+0xf/0x20 arch/x86/entry/entry_64.S:894
 </IRQ>
RIP: 0033:0x41291f
Code: 0f 1f 00 48 83 e8 08 48 8b 10 48 39 ca 77 f4 48 39 e8 76 18 48 89 57 f8 4c 89 00 48 8b 50 f8 49 8b 0c 24 4c 8b 07 48 83 c7 08 <eb> bf 4c 89 ea 48 89 ef e8 34 ff ff ff 48 89 e8 4c 29 e0 48 3d 87
RSP: 002b:00007fff7fa38800 EFLAGS: 00000202 ORIG_RAX: ffffffffffffff13
RAX: 00007fc6180899a0 RBX: 00007fc618087318 RCX: ffffffff8177516d
RDX: ffffffff8177516d RSI: 00007fc61808a428 RDI: 00007fc618087cf8
RBP: 00007fc618087ce8 R08: ffffffff8177516d R09: 0000000078ccd843
R10: 00007fff7fa389f0 R11: 0000000000000246 R12: 00007fc618087308
R13: 000000000000001b R14: 00007fc618087ce8 R15: 000000000002ad0b
================================================================================
netlink: 24 bytes leftover after parsing attributes in process `syz-executor.2'.
netlink: 24 bytes leftover after parsing attributes in process `syz-executor.5'.
do_dccp_getsockopt: sockopt(PACKET_SIZE) is deprecated: fix your app
netlink: 24 bytes leftover after parsing attributes in process `syz-executor.2'.
netlink: 24 bytes leftover after parsing attributes in process `syz-executor.5'.
netlink: 24 bytes leftover after parsing attributes in process `syz-executor.5'.
netlink: 24 bytes leftover after parsing attributes in process `syz-executor.3'.
netlink: 24 bytes leftover after parsing attributes in process `syz-executor.3'.
overlayfs: upperdir is in-use as upperdir/workdir of another mount, mount with '-o index=off' to override exclusive upperdir protection.
IPVS: ftp: loaded support on port[0] = 21
IPVS: ftp: loaded support on port[0] = 21
IPVS: ftp: loaded support on port[0] = 21
IPVS: ftp: loaded support on port[0] = 21
IPVS: ftp: loaded support on port[0] = 21