ci2 starts bisection 2023-07-01 15:03:35.686128217 +0000 UTC m=+14966.652265711
bisecting fixing commit since d2869ace6eeb8ea8a6e70e6904524c5a6456d3fb
building syzkaller on babc43895723dd9cfadab49eeb039b9e06b89af7
ensuring issue is reproducible on original commit d2869ace6eeb8ea8a6e70e6904524c5a6456d3fb

testing commit d2869ace6eeb8ea8a6e70e6904524c5a6456d3fb gcc
compiler: Debian clang version 15.0.7, GNU ld (GNU Binutils for Debian) 2.35.2
kernel signature: 3e325be465a36b72d4568bcd58948275a2dd85f8586d79b58b742bffebe1beda
all runs: crashed: UBSAN: shift-out-of-bounds in ntfs_iget
testing current HEAD 0f4ac6b4c5f00f45b7a429c8a5b028a598c6400c
testing commit 0f4ac6b4c5f00f45b7a429c8a5b028a598c6400c gcc
compiler: Debian clang version 15.0.7, GNU ld (GNU Binutils for Debian) 2.35.2
kernel signature: 2465f0e3bbb15ceec063b200bac5dc15fc8e4710e70720a4937d19aa661d0b27
all runs: crashed: UBSAN: shift-out-of-bounds in ntfs_iget
crash still not fixed/happens on the oldest tested release
revisions tested: 2, total time: 1h24m38.473840986s (build: 1h16m32.371924106s, test: 6m46.122159385s)
crash still not fixed on HEAD or HEAD had kernel test errors
commit msg: Linux 6.1.37
crash: UBSAN: shift-out-of-bounds in ntfs_iget
ntfs: (device loop0): ntfs_read_locked_inode(): Failed with error code -5.  Marking corrupt inode 0x1 as bad.  Run chkdsk.
ntfs: (device loop0): load_system_files(): Failed to load $MFTMirr.  Mounting read-only.  Run ntfsfix and/or chkdsk.
================================================================================
UBSAN: shift-out-of-bounds in fs/ntfs/inode.c:1080:43
shift exponent 44 is too large for 32-bit type 'unsigned int'
CPU: 0 PID: 4689 Comm: syz-executor.0 Not tainted 6.1.37-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/27/2023
Call trace:
 dump_backtrace+0x100/0x150 arch/arm64/kernel/stacktrace.c:158
 show_stack+0x18/0x24 arch/arm64/kernel/stacktrace.c:165
 __dump_stack lib/dump_stack.c:88 [inline]
 dump_stack_lvl+0x90/0xc8 lib/dump_stack.c:106
 dump_stack+0x18/0x58 lib/dump_stack.c:113
 ubsan_epilogue lib/ubsan.c:151 [inline]
 __ubsan_handle_shift_out_of_bounds+0x26c/0x294 lib/ubsan.c:321
 ntfs_read_locked_inode+0x2ffc/0x331c fs/ntfs/inode.c:1080
 ntfs_iget+0xf8/0x168 fs/ntfs/inode.c:177
 load_and_init_upcase fs/ntfs/super.c:1655 [inline]
 load_system_files+0x1334/0x3c70 fs/ntfs/super.c:1810
 ntfs_fill_super+0xf94/0x1f70 fs/ntfs/super.c:2892
 mount_bdev+0x22c/0x2ec fs/super.c:1423
 ntfs_mount+0x18/0x24 fs/ntfs/super.c:3049
 legacy_get_tree+0xd0/0x158 fs/fs_context.c:610
 vfs_get_tree+0x88/0x224 fs/super.c:1553
 do_new_mount+0x1a4/0x6f8 fs/namespace.c:3040
 path_mount+0x4f8/0xa50 fs/namespace.c:3370
 do_mount fs/namespace.c:3383 [inline]
 __do_sys_mount fs/namespace.c:3591 [inline]
 __se_sys_mount fs/namespace.c:3568 [inline]
 __arm64_sys_mount+0x3a0/0x44c fs/namespace.c:3568
 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline]
 invoke_syscall+0x7c/0x258 arch/arm64/kernel/syscall.c:52
 el0_svc_common+0x160/0x1e4 arch/arm64/kernel/syscall.c:142
 do_el0_svc+0x54/0x178 arch/arm64/kernel/syscall.c:206
 el0_svc+0x58/0x168 arch/arm64/kernel/entry-common.c:637
 el0t_64_sync_handler+0x84/0xf0 arch/arm64/kernel/entry-common.c:655
 el0t_64_sync+0x18c/0x190 arch/arm64/kernel/entry.S:581
================================================================================
================================================================================
UBSAN: shift-out-of-bounds in fs/ntfs/inode.c:1089:11
shift exponent 32 is too large for 32-bit type 'unsigned int'
CPU: 0 PID: 4689 Comm: syz-executor.0 Not tainted 6.1.37-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/27/2023
Call trace:
 dump_backtrace+0x100/0x150 arch/arm64/kernel/stacktrace.c:158
 show_stack+0x18/0x24 arch/arm64/kernel/stacktrace.c:165
 __dump_stack lib/dump_stack.c:88 [inline]
 dump_stack_lvl+0x90/0xc8 lib/dump_stack.c:106
 dump_stack+0x18/0x58 lib/dump_stack.c:113
 ubsan_epilogue lib/ubsan.c:151 [inline]
 __ubsan_handle_shift_out_of_bounds+0x26c/0x294 lib/ubsan.c:321
 ntfs_read_locked_inode+0x3014/0x331c fs/ntfs/inode.c:1089
 ntfs_iget+0xf8/0x168 fs/ntfs/inode.c:177
 load_and_init_upcase fs/ntfs/super.c:1655 [inline]
 load_system_files+0x1334/0x3c70 fs/ntfs/super.c:1810
 ntfs_fill_super+0xf94/0x1f70 fs/ntfs/super.c:2892
 mount_bdev+0x22c/0x2ec fs/super.c:1423
 ntfs_mount+0x18/0x24 fs/ntfs/super.c:3049
 legacy_get_tree+0xd0/0x158 fs/fs_context.c:610
 vfs_get_tree+0x88/0x224 fs/super.c:1553
 do_new_mount+0x1a4/0x6f8 fs/namespace.c:3040
 path_mount+0x4f8/0xa50 fs/namespace.c:3370
 do_mount fs/namespace.c:3383 [inline]
 __do_sys_mount fs/namespace.c:3591 [inline]
 __se_sys_mount fs/namespace.c:3568 [inline]
 __arm64_sys_mount+0x3a0/0x44c fs/namespace.c:3568
 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline]
 invoke_syscall+0x7c/0x258 arch/arm64/kernel/syscall.c:52
 el0_svc_common+0x160/0x1e4 arch/arm64/kernel/syscall.c:142
 do_el0_svc+0x54/0x178 arch/arm64/kernel/syscall.c:206
 el0_svc+0x58/0x168 arch/arm64/kernel/entry-common.c:637
 el0t_64_sync_handler+0x84/0xf0 arch/arm64/kernel/entry-common.c:655
 el0t_64_sync+0x18c/0x190 arch/arm64/kernel/entry.S:581
================================================================================
ntfs: (device loop0): ntfs_mapping_pairs_decompress(): Missing length entry in mapping pairs array.
ntfs: (device loop0): ntfs_mapping_pairs_decompress(): Invalid length in mapping pairs array.
ntfs: (device loop0): ntfs_read_block(): Failed to read from inode 0xa, attribute type 0x80, vcn 0x0, offset 0x0 because its location on disk could not be determined even after retrying (error code -5).
ntfs: (device loop0): ntfs_mapping_pairs_decompress(): Missing length entry in mapping pairs array.
ntfs: (device loop0): ntfs_mapping_pairs_decompress(): Invalid length in mapping pairs array.
ntfs: (device loop0): ntfs_read_block(): Failed to read from inode 0xa, attribute type 0x80, vcn 0x0, offset 0x800 because its location on disk could not be determined even after retrying (error code -5).
ntfs: volume version 3.1.