EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue ================================================================================ UBSAN: Undefined behaviour in ./include/net/red.h:272:18 shift exponent 234 is too large for 64-bit type 'long unsigned int' CPU: 1 PID: 6532 Comm: syz-executor.5 Not tainted 4.19.149-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Call Trace: __dump_stack lib/dump_stack.c:77 [inline] dump_stack+0x22c/0x33e lib/dump_stack.c:118 ubsan_epilogue+0xe/0x3a lib/ubsan.c:161 __ubsan_handle_shift_out_of_bounds.cold+0x1c4/0x250 lib/ubsan.c:422 red_calc_qavg_from_idle_time include/net/red.h:272 [inline] red_adaptative_algo include/net/red.h:404 [inline] red_adaptative_timer+0x7ed/0x870 net/sched/sch_red.c:266 call_timer_fn+0x177/0x760 kernel/time/timer.c:1338 expire_timers+0x243/0x500 kernel/time/timer.c:1375 __run_timers kernel/time/timer.c:1703 [inline] run_timer_softirq+0x259/0x730 kernel/time/timer.c:1716 __do_softirq+0x27d/0xad2 kernel/softirq.c:292 invoke_softirq kernel/softirq.c:372 [inline] irq_exit+0x22d/0x270 kernel/softirq.c:412 exiting_irq arch/x86/include/asm/apic.h:544 [inline] smp_apic_timer_interrupt+0x15f/0x5d0 arch/x86/kernel/apic/apic.c:1094 apic_timer_interrupt+0xf/0x20 arch/x86/entry/entry_64.S:894 RIP: 0010:do_raw_read_unlock+0x0/0x70 kernel/locking/spinlock_debug.c:172 Code: 31 c0 5b 44 89 c0 c3 be 04 00 00 00 48 89 df e8 c6 41 52 00 f0 81 2b 00 02 00 00 45 31 c0 eb da 48 89 df e8 52 56 52 00 eb a4 <48> b8 00 00 00 00 00 fc ff df 53 48 89 fb 48 83 c7 08 48 89 fa 48 RSP: 0018:ffff888050817bf8 EFLAGS: 00000282 ORIG_RAX: ffffffffffffff13 RAX: 0000000000000000 RBX: 0000000000000000 RCX: 1ffff1100a101181 RDX: dffffc0000000000 RSI: 0000000000000001 RDI: ffffffff89409080 RBP: ffffffff89409080 R08: 0000000000000001 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000000 R12: ffff888050817d00 R13: ffff888050808380 R14: 0000000000000000 R15: ffff888050808898 __raw_read_unlock include/linux/rwlock_api_smp.h:226 [inline] _raw_read_unlock+0x1f/0x40 kernel/locking/spinlock.c:248 do_wait+0x5e8/0xad0 kernel/exit.c:1547 kernel_wait4+0x14c/0x260 kernel/exit.c:1678 __do_sys_wait4 kernel/exit.c:1690 [inline] __se_sys_wait4+0x149/0x160 kernel/exit.c:1686 do_syscall_64+0xf9/0x670 arch/x86/entry/common.c:293 entry_SYSCALL_64_after_hwframe+0x49/0xbe RIP: 0033:0x417a1b Code: 54 55 41 89 d4 53 48 89 f5 89 fb 48 83 ec 10 e8 7b f9 ff ff 45 31 d2 41 89 c0 49 63 d4 48 89 ee 48 63 fb b8 3d 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 19 44 89 c7 89 44 24 0c e8 b1 f9 ff ff 8b 44 RSP: 002b:00007fff9b7d27c0 EFLAGS: 00000246 ORIG_RAX: 000000000000003d RAX: ffffffffffffffda RBX: 00000000ffffffff RCX: 0000000000417a1b RDX: 0000000040000001 RSI: 00007fff9b7d2820 RDI: ffffffffffffffff RBP: 00007fff9b7d2820 R08: 0000000000000000 R09: 0000000002138940 R10: 0000000000000000 R11: 0000000000000246 R12: 0000000040000001 R13: 00007fff9b7d2820 R14: 0000000000050cf9 R15: 00007fff9b7d2830 ================================================================================ bridge0: port 2(bridge_slave_1) entered disabled state bridge0: port 1(bridge_slave_0) entered disabled state batman_adv: batadv0: Interface deactivated: batadv_slave_0 batman_adv: batadv0: Interface deactivated: batadv_slave_1