bond69: making interface bridge249 the new active one
F2FS-fs (loop1): Unable to read 2th superblock
bond69: Enslaving bridge249 as an active interface with an up link
bond191 (unregistering): Releasing active interface bridge822
================================================================================
UBSAN: Undefined behaviour in fs/f2fs/super.c:2227:16
shift exponent 62 is too large for 32-bit type 'int'
CPU: 1 PID: 6837 Comm: syz-executor.1 Not tainted 4.19.150-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
Call Trace:
 __dump_stack lib/dump_stack.c:77 [inline]
 dump_stack+0x22c/0x33e lib/dump_stack.c:118
 ubsan_epilogue+0xe/0x3a lib/ubsan.c:161
 __ubsan_handle_shift_out_of_bounds.cold+0x1c4/0x250 lib/ubsan.c:422
 sanity_check_raw_super fs/f2fs/super.c:2227 [inline]
 read_raw_super_block fs/f2fs/super.c:2631 [inline]
 f2fs_fill_super.cold+0x1f9/0x5fb fs/f2fs/super.c:2842
 mount_bdev+0x2fc/0x3b0 fs/super.c:1158
 mount_fs+0xa3/0x318 fs/super.c:1261
 vfs_kern_mount.part.0+0x68/0x470 fs/namespace.c:961
 vfs_kern_mount fs/namespace.c:951 [inline]
 do_new_mount fs/namespace.c:2469 [inline]
 do_mount+0x51c/0x2f10 fs/namespace.c:2799
 ksys_mount+0xcf/0x130 fs/namespace.c:3015
 __do_sys_mount fs/namespace.c:3029 [inline]
 __se_sys_mount fs/namespace.c:3026 [inline]
 __x64_sys_mount+0xba/0x150 fs/namespace.c:3026
 do_syscall_64+0xf9/0x670 arch/x86/entry/common.c:293
 entry_SYSCALL_64_after_hwframe+0x49/0xbe
RIP: 0033:0x4608aa
Code: b8 a6 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 ad 89 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 8a 89 fb ff c3 66 0f 1f 84 00 00 00 00 00
RSP: 002b:00007fa2209cea88 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5
RAX: ffffffffffffffda RBX: 00007fa2209ceb20 RCX: 00000000004608aa
RDX: 0000000020000000 RSI: 0000000020000080 RDI: 00007fa2209ceae0
RBP: 00007fa2209ceae0 R08: 00007fa2209ceb20 R09: 0000000020000000
R10: 0000000000000000 R11: 0000000000000202 R12: 0000000020000000
R13: 0000000020000080 R14: 0000000020000200 R15: 0000000020000040
================================================================================
bond191 (unregistering): Released all slaves
bond69 (unregistering): Releasing backup interface bridge267
bond69 (unregistering): Released all slaves
bond69 (unregistering): Releasing active interface bridge249
bond69 (unregistering): Released all slaves
netlink: 'syz-executor.5': attribute type 1 has an invalid length.
netlink: 'syz-executor.2': attribute type 1 has an invalid length.
netlink: 'syz-executor.5': attribute type 1 has an invalid length.
bond191: making interface bridge824 the new active one
bond191: Enslaving bridge824 as an active interface with an up link
bond69: Enslaving bridge269 as an active interface with an up link
netlink: 'syz-executor.2': attribute type 1 has an invalid length.
bond191 (unregistering): Releasing active interface bridge824
bond191 (unregistering): Released all slaves
bond69 (unregistering): Releasing backup interface bridge269
bond69 (unregistering): Released all slaves
bond69: making interface bridge250 the new active one
bond69: Enslaving bridge250 as an active interface with an up link
bond69 (unregistering): Releasing active interface bridge250
bond69 (unregistering): Released all slaves
netlink: 'syz-executor.5': attribute type 1 has an invalid length.
netlink: 'syz-executor.2': attribute type 1 has an invalid length.
bond69: Enslaving bridge270 as an active interface with an up link
bond69 (unregistering): Releasing backup interface bridge270
bond69 (unregistering): Released all slaves
bond191: making interface bridge825 the new active one
bond191: Enslaving bridge825 as an active interface with an up link
bond69: making interface bridge251 the new active one
bond69: Enslaving bridge251 as an active interface with an up link
bond191 (unregistering): Releasing active interface bridge825
bond191 (unregistering): Released all slaves
bond69 (unregistering): Releasing active interface bridge251
bond69 (unregistering): Released all slaves
IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
nla_parse: 25 callbacks suppressed
netlink: 4 bytes leftover after parsing attributes in process `syz-executor.5'.
bond191: making interface bridge826 the new active one
bond191: Enslaving bridge826 as an active interface with an up link
bond191 (unregistering): Releasing active interface bridge826
bond191 (unregistering): Released all slaves
netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'.
bond69: Enslaving bridge271 as an active interface with an up link
netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'.
bond69: making interface bridge252 the new active one
bond69: Enslaving bridge252 as an active interface with an up link
bond69 (unregistering): Releasing backup interface bridge271
bond69 (unregistering): Released all slaves
bond69 (unregistering): Releasing active interface bridge252
bond69 (unregistering): Released all slaves
netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'.
netlink: 4 bytes leftover after parsing attributes in process `syz-executor.5'.
validate_nla: 7 callbacks suppressed
netlink: 'syz-executor.2': attribute type 1 has an invalid length.
netlink: 12 bytes leftover after parsing attributes in process `syz-executor.0'.
netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'.
netlink: 'syz-executor.2': attribute type 1 has an invalid length.
netlink: 'syz-executor.5': attribute type 1 has an invalid length.
netlink: 12 bytes leftover after parsing attributes in process `syz-executor.0'.
netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'.
bond69: making interface bridge253 the new active one
bond69: Enslaving bridge253 as an active interface with an up link
netlink: 4 bytes leftover after parsing attributes in process `syz-executor.5'.
bond191: making interface bridge827 the new active one
bond191: Enslaving bridge827 as an active interface with an up link
bond69 (unregistering): Releasing active interface bridge253
bond69 (unregistering): Released all slaves
bond69: Enslaving bridge272 as an active interface with an up link
bond191 (unregistering): Releasing active interface bridge827
bond191 (unregistering): Released all slaves
bond69 (unregistering): Releasing backup interface bridge272
bond69 (unregistering): Released all slaves
netlink: 'syz-executor.5': attribute type 1 has an invalid length.
netlink: 'syz-executor.2': attribute type 1 has an invalid length.
bond69: making interface bridge254 the new active one
bond69: Enslaving bridge254 as an active interface with an up link
bond69 (unregistering): Releasing active interface bridge254
bond69 (unregistering): Released all slaves
netlink: 'syz-executor.5': attribute type 1 has an invalid length.
f2fs_msg: 91 callbacks suppressed
F2FS-fs (loop1): Unable to read 1th superblock
F2FS-fs (loop1): Unable to read 2th superblock
F2FS-fs (loop1): Invalid log sectors per block(4980739) log sectorsize(9)
F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
bond192: making interface bridge829 the new active one
F2FS-fs (loop1): Unable to read 2th superblock
bond192: Enslaving bridge829 as an active interface with an up link
netlink: 'syz-executor.2': attribute type 1 has an invalid length.
F2FS-fs (loop1): Unable to read 1th superblock
F2FS-fs (loop1): Unable to read 2th superblock
F2FS-fs (loop1): Invalid log sectors per block(4980739) log sectorsize(9)
F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
F2FS-fs (loop1): Unable to read 2th superblock
bond69: Enslaving bridge273 as an active interface with an up link
bond192 (unregistering): Releasing active interface bridge829
bond192 (unregistering): Released all slaves
bond69: making interface bridge255 the new active one
bond69: Enslaving bridge255 as an active interface with an up link
bond69 (unregistering): Releasing backup interface bridge273
bond69 (unregistering): Released all slaves
bond69 (unregistering): Releasing active interface bridge255
bond69 (unregistering): Released all slaves
netlink: 'syz-executor.5': attribute type 1 has an invalid length.
netlink: 'syz-executor.2': attribute type 1 has an invalid length.
bond69: making interface bridge256 the new active one
bond69: Enslaving bridge256 as an active interface with an up link
bond69 (unregistering): Releasing active interface bridge256
bond69 (unregistering): Released all slaves
netlink: 'syz-executor.5': attribute type 1 has an invalid length.
bond192: making interface bridge831 the new active one
bond192: Enslaving bridge831 as an active interface with an up link
bond69: Enslaving bridge274 as an active interface with an up link
bond192 (unregistering): Releasing active interface bridge831
bond192 (unregistering): Released all slaves
bond69 (unregistering): Releasing backup interface bridge274
bond69 (unregistering): Released all slaves
bond192: making interface bridge832 the new active one
bond192: Enslaving bridge832 as an active interface with an up link
bond192 (unregistering): Releasing active interface bridge832
bond192 (unregistering): Released all slaves
bond69: making interface bridge257 the new active one
bond69: Enslaving bridge257 as an active interface with an up link
bond69 (unregistering): Releasing active interface bridge257
bond69 (unregistering): Released all slaves
bond69: Enslaving bridge275 as an active interface with an up link
bond69 (unregistering): Releasing backup interface bridge275
ISOFS: Unable to identify CD-ROM format.
bond69 (unregistering): Released all slaves
ISOFS: Unable to identify CD-ROM format.
nla_parse: 23 callbacks suppressed
netlink: 4 bytes leftover after parsing attributes in process `syz-executor.5'.
bond192: making interface bridge833 the new active one
bond192: Enslaving bridge833 as an active interface with an up link
netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'.
bond70: making interface bridge259 the new active one
bond70: Enslaving bridge259 as an active interface with an up link
bond192 (unregistering): Releasing active interface bridge833
bond192 (unregistering): Released all slaves
bond70 (unregistering): Releasing active interface bridge259
bond70 (unregistering): Released all slaves
netlink: 12 bytes leftover after parsing attributes in process `syz-executor.0'.
netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'.
netlink: 4 bytes leftover after parsing attributes in process `syz-executor.5'.
netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'.
netlink: 12 bytes leftover after parsing attributes in process `syz-executor.0'.
netlink: 4 bytes leftover after parsing attributes in process `syz-executor.5'.
bond193: making interface bridge835 the new active one
audit: type=1107 audit(1602597678.029:76): pid=9334 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 msg='E'
bond193: Enslaving bridge835 as an active interface with an up link
netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'.
bond69: Enslaving bridge276 as an active interface with an up link
bond193 (unregistering): Releasing active interface bridge835
bond193 (unregistering): Released all slaves
validate_nla: 8 callbacks suppressed
netlink: 'syz-executor.2': attribute type 1 has an invalid length.
bond69 (unregistering): Releasing backup interface bridge276
bond69 (unregistering): Released all slaves
netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'.
bond70: making interface bridge260 the new active one
bond70: Enslaving bridge260 as an active interface with an up link
bond70 (unregistering): Releasing active interface bridge260
bond70 (unregistering): Released all slaves
netlink: 'syz-executor.5': attribute type 1 has an invalid length.
netlink: 'syz-executor.2': attribute type 1 has an invalid length.
bond70: making interface bridge261 the new active one