================================================================================ UBSAN: shift-out-of-bounds in fs/jfs/jfs_imap.c:1357:9 shift exponent -1 is negative CPU: 1 PID: 7168 Comm: syz-executor.1 Not tainted 6.1.0-rc1-next-20221021-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022 Call Trace: __dump_stack lib/dump_stack.c:88 [inline] dump_stack_lvl+0xcd/0x134 lib/dump_stack.c:106 ubsan_epilogue+0xb/0x50 lib/ubsan.c:151 __ubsan_handle_shift_out_of_bounds.cold+0xb1/0x187 lib/ubsan.c:322 diAlloc.cold+0x3d/0x10b fs/jfs/jfs_imap.c:1357 ialloc+0x89/0xaa0 fs/jfs/jfs_inode.c:56 jfs_create+0x1ea/0xac0 fs/jfs/namei.c:92 lookup_open.isra.0+0xf05/0x12a0 fs/namei.c:3413 open_last_lookups fs/namei.c:3481 [inline] path_openat+0x990/0x2850 fs/namei.c:3710 do_filp_open+0x1b6/0x400 fs/namei.c:3740 file_open_name+0x2a8/0x420 fs/open.c:1255 filp_open+0x47/0x70 fs/open.c:1275 do_coredump+0x17d3/0x3c10 fs/coredump.c:701 get_signal+0x1be1/0x2430 kernel/signal.c:2844 arch_do_signal_or_restart+0x75/0x5b0 arch/x86/kernel/signal.c:306 exit_to_user_mode_loop kernel/entry/common.c:168 [inline] exit_to_user_mode_prepare+0x15f/0x250 kernel/entry/common.c:203 __syscall_exit_to_user_mode_work kernel/entry/common.c:285 [inline] syscall_exit_to_user_mode+0x19/0x50 kernel/entry/common.c:296 do_syscall_64+0x42/0xb0 arch/x86/entry/common.c:86 entry_SYSCALL_64_after_hwframe+0x63/0xcd RIP: 0033:0x7f166543d757 Code: 08 89 3c 24 48 89 4c 24 18 e8 e5 f8 ff ff 4c 8b 54 24 18 48 8b 54 24 10 41 89 c0 48 8b 74 24 08 8b 3c 24 b8 12 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 04 24 e8 15 f9 ff ff 48 8b RSP: 002b:00007f1666606f00 EFLAGS: 00000293 ORIG_RAX: 0000000000000012 RAX: ffffffffffffffe5 RBX: 0000000000000320 RCX: 00007f166543d757 RDX: 0000000000000080 RSI: 0000000020010aa0 RDI: 000000000000000a RBP: 000000000000000a R08: 0000000000000000 R09: ffffffff00000000 R10: 0030656c69662f2e R11: 0000000000000293 R12: 000000000000000a R13: 00000000200003b0 R14: 0000000000000012 R15: 00007f16654d5a20 ================================================================================