Warning: Permanently added '10.128.0.199' (ECDSA) to the list of known hosts.
executing program
executing program
executing program
executing program
executing program
executing program
syzkaller login: [  121.091679][ T9812] ==================================================================
[  121.099954][ T9812] BUG: KASAN: null-ptr-deref in tcf_generic_walker+0x73f/0xc00
[  121.107502][ T9812] Read of size 4 at addr 0000000000000010 by task syz-executor311/9812
[  121.115806][ T9812] 
[  121.118124][ T9812] CPU: 0 PID: 9812 Comm: syz-executor311 Not tainted 5.6.0-rc1-next-20200214-syzkaller #0
[  121.127991][ T9812] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  121.138037][ T9812] Call Trace:
[  121.141335][ T9812]  dump_stack+0x197/0x210
[  121.145663][ T9812]  ? tcf_generic_walker+0x73f/0xc00
[  121.150842][ T9812]  ? tcf_generic_walker+0x73f/0xc00
[  121.156031][ T9812]  __kasan_report.cold+0x5/0x32
[  121.160869][ T9812]  ? tcf_generic_walker+0x73f/0xc00
[  121.166064][ T9812]  kasan_report+0x12/0x20
[  121.170437][ T9812]  check_memory_region+0x134/0x1a0
[  121.175548][ T9812]  __kasan_check_read+0x11/0x20
[  121.180411][ T9812]  tcf_generic_walker+0x73f/0xc00
[  121.185420][ T9812]  ? find_held_lock+0x35/0x130
[  121.190196][ T9812]  ? tcf_action_dump_1+0x840/0x840
[  121.195424][ T9812]  ? rcu_read_lock_held+0x9c/0xb0
[  121.200452][ T9812]  ? __kasan_check_read+0x11/0x20
[  121.205532][ T9812]  tcf_ife_walker+0x1a0/0x2b0
[  121.210225][ T9812]  tca_action_gd+0xcec/0x1760
[  121.214941][ T9812]  ? tca_get_fill.constprop.0+0x4f0/0x4f0
[  121.220666][ T9812]  ? __kasan_check_read+0x11/0x20
[  121.225691][ T9812]  ? mark_lock+0xc2/0x1220
[  121.230103][ T9812]  ? __kasan_check_read+0x11/0x20
[  121.235139][ T9812]  ? __kasan_check_read+0x11/0x20
[  121.240165][ T9812]  ? mark_lock+0xc2/0x1220
[  121.244584][ T9812]  ? __kasan_check_read+0x11/0x20
[  121.249624][ T9812]  ? __kasan_check_read+0x11/0x20
[  121.254647][ T9812]  ? __lock_acquire+0x8a0/0x6320
[  121.259595][ T9812]  ? __kasan_check_read+0x11/0x20
[  121.264683][ T9812]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  121.270921][ T9812]  ? apparmor_capable+0x4df/0x910
[  121.275964][ T9812]  ? __nla_parse+0x43/0x60
[  121.280392][ T9812]  tc_ctl_action+0x3be/0x488
[  121.284984][ T9812]  ? tcf_action_add+0x3b0/0x3b0
[  121.289837][ T9812]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  121.296083][ T9812]  ? tcf_action_add+0x3b0/0x3b0
[  121.300987][ T9812]  rtnetlink_rcv_msg+0x45e/0xaf0
[  121.305920][ T9812]  ? rtnl_bridge_getlink+0x910/0x910
[  121.311206][ T9812]  ? lock_downgrade+0x920/0x920
[  121.316128][ T9812]  ? netlink_deliver_tap+0x226/0xbf0
[  121.321409][ T9812]  ? find_held_lock+0x35/0x130
[  121.326208][ T9812]  netlink_rcv_skb+0x177/0x450
[  121.330961][ T9812]  ? rtnl_bridge_getlink+0x910/0x910
[  121.336243][ T9812]  ? netlink_ack+0xb50/0xb50
[  121.340872][ T9812]  ? __kasan_check_read+0x11/0x20
[  121.345884][ T9812]  ? netlink_deliver_tap+0x248/0xbf0
[  121.351268][ T9812]  rtnetlink_rcv+0x1d/0x30
[  121.355709][ T9812]  netlink_unicast+0x59e/0x7e0
[  121.360493][ T9812]  ? netlink_attachskb+0x870/0x870
[  121.367419][ T9812]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[  121.373136][ T9812]  ? __check_object_size+0x3d/0x437
[  121.378345][ T9812]  netlink_sendmsg+0x91c/0xea0
[  121.383127][ T9812]  ? netlink_unicast+0x7e0/0x7e0
[  121.388052][ T9812]  ? aa_sock_msg_perm.isra.0+0xba/0x170
[  121.393586][ T9812]  ? apparmor_socket_sendmsg+0x2a/0x30
[  121.399054][ T9812]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  121.405279][ T9812]  ? security_socket_sendmsg+0x8d/0xc0
[  121.410726][ T9812]  ? netlink_unicast+0x7e0/0x7e0
[  121.415649][ T9812]  sock_sendmsg+0xd7/0x130
[  121.420052][ T9812]  ____sys_sendmsg+0x753/0x880
[  121.424820][ T9812]  ? kernel_sendmsg+0x50/0x50
[  121.429502][ T9812]  ? __fget_files+0x337/0x520
[  121.434163][ T9812]  ? find_held_lock+0x35/0x130
[  121.438924][ T9812]  ___sys_sendmsg+0x100/0x170
[  121.443592][ T9812]  ? sendmsg_copy_msghdr+0x70/0x70
[  121.448695][ T9812]  ? __kasan_check_read+0x11/0x20
[  121.454167][ T9812]  ? __fget_files+0x359/0x520
[  121.458836][ T9812]  ? do_dup2+0x4f0/0x4f0
[  121.463076][ T9812]  ? find_held_lock+0x35/0x130
[  121.467849][ T9812]  ? do_page_fault+0x579/0x12e1
[  121.472701][ T9812]  ? __fget_light+0x1ad/0x270
[  121.477373][ T9812]  ? __fdget+0x1b/0x20
[  121.481437][ T9812]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  121.487729][ T9812]  __sys_sendmsg+0x105/0x1d0
[  121.492308][ T9812]  ? __sys_sendmsg_sock+0xc0/0xc0
[  121.497335][ T9812]  ? rcu_read_lock_any_held.part.0+0x50/0x50
[  121.503326][ T9812]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  121.508789][ T9812]  ? do_syscall_64+0x26/0x790
[  121.513472][ T9812]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  121.519542][ T9812]  ? do_syscall_64+0x26/0x790
[  121.524230][ T9812]  __x64_sys_sendmsg+0x78/0xb0
[  121.528988][ T9812]  do_syscall_64+0xfa/0x790
[  121.533530][ T9812]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  121.539443][ T9812] RIP: 0033:0x446939
[  121.543337][ T9812] Code: e8 0c e8 ff ff 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 5b 07 fc ff c3 66 2e 0f 1f 84 00 00 00 00
[  121.562954][ T9812] RSP: 002b:00007f364bf22da8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  121.571352][ T9812] RAX: ffffffffffffffda RBX: 00000000006dbc28 RCX: 0000000000446939
[  121.579336][ T9812] RDX: 0000000000000000 RSI: 0000000020000300 RDI: 0000000000000003
[  121.587293][ T9812] RBP: 00000000006dbc20 R08: 0000000000000008 R09: 0000000000000000
[  121.595262][ T9812] R10: 000000000000000c R11: 0000000000000246 R12: 00000000006dbc2c
[  121.603219][ T9812] R13: 0000000020000400 R14: 00000000004ae7e8 R15: 000000000000002d
[  121.611291][ T9812] ==================================================================
[  121.619386][ T9812] Disabling lock debugging due to kernel taint
[  121.627211][ T9812] Kernel panic - not syncing: panic_on_warn set ...
[  121.633800][ T9812] CPU: 0 PID: 9812 Comm: syz-executor311 Tainted: G    B             5.6.0-rc1-next-20200214-syzkaller #0
[  121.645059][ T9812] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  121.655113][ T9812] Call Trace:
[  121.658396][ T9812]  dump_stack+0x197/0x210
[  121.662712][ T9812]  panic+0x2e3/0x75c
[  121.666603][ T9812]  ? add_taint.cold+0x16/0x16
[  121.671278][ T9812]  ? tcf_generic_walker+0x73f/0xc00
[  121.676460][ T9812]  ? preempt_schedule+0x4b/0x60
[  121.681310][ T9812]  ? ___preempt_schedule+0x16/0x18
[  121.686402][ T9812]  ? trace_hardirqs_on+0x5e/0x240
[  121.691409][ T9812]  ? tcf_generic_walker+0x73f/0xc00
[  121.696601][ T9812]  end_report+0x47/0x4f
[  121.700755][ T9812]  ? tcf_generic_walker+0x73f/0xc00
[  121.705945][ T9812]  __kasan_report.cold+0xe/0x32
[  121.710810][ T9812]  ? tcf_generic_walker+0x73f/0xc00
[  121.716060][ T9812]  kasan_report+0x12/0x20
[  121.720406][ T9812]  check_memory_region+0x134/0x1a0
[  121.725516][ T9812]  __kasan_check_read+0x11/0x20
[  121.730411][ T9812]  tcf_generic_walker+0x73f/0xc00
[  121.735468][ T9812]  ? find_held_lock+0x35/0x130
[  121.740227][ T9812]  ? tcf_action_dump_1+0x840/0x840
[  121.745322][ T9812]  ? rcu_read_lock_held+0x9c/0xb0
[  121.750347][ T9812]  ? __kasan_check_read+0x11/0x20
[  121.755400][ T9812]  tcf_ife_walker+0x1a0/0x2b0
[  121.760113][ T9812]  tca_action_gd+0xcec/0x1760
[  121.764840][ T9812]  ? tca_get_fill.constprop.0+0x4f0/0x4f0
[  121.770553][ T9812]  ? __kasan_check_read+0x11/0x20
[  121.775561][ T9812]  ? mark_lock+0xc2/0x1220
[  121.779992][ T9812]  ? __kasan_check_read+0x11/0x20
[  121.785075][ T9812]  ? __kasan_check_read+0x11/0x20
[  121.790111][ T9812]  ? mark_lock+0xc2/0x1220
[  121.794643][ T9812]  ? __kasan_check_read+0x11/0x20
[  121.799715][ T9812]  ? __kasan_check_read+0x11/0x20
[  121.804780][ T9812]  ? __lock_acquire+0x8a0/0x6320
[  121.809712][ T9812]  ? __kasan_check_read+0x11/0x20
[  121.814791][ T9812]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  121.821077][ T9812]  ? apparmor_capable+0x4df/0x910
[  121.826102][ T9812]  ? __nla_parse+0x43/0x60
[  121.830519][ T9812]  tc_ctl_action+0x3be/0x488
[  121.835108][ T9812]  ? tcf_action_add+0x3b0/0x3b0
[  121.839962][ T9812]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  121.846214][ T9812]  ? tcf_action_add+0x3b0/0x3b0
[  121.851059][ T9812]  rtnetlink_rcv_msg+0x45e/0xaf0
[  121.856035][ T9812]  ? rtnl_bridge_getlink+0x910/0x910
[  121.861331][ T9812]  ? lock_downgrade+0x920/0x920
[  121.866335][ T9812]  ? netlink_deliver_tap+0x226/0xbf0
[  121.871626][ T9812]  ? find_held_lock+0x35/0x130
[  121.876379][ T9812]  netlink_rcv_skb+0x177/0x450
[  121.881185][ T9812]  ? rtnl_bridge_getlink+0x910/0x910
[  121.886479][ T9812]  ? netlink_ack+0xb50/0xb50
[  121.891118][ T9812]  ? __kasan_check_read+0x11/0x20
[  121.896182][ T9812]  ? netlink_deliver_tap+0x248/0xbf0
[  121.901464][ T9812]  rtnetlink_rcv+0x1d/0x30
[  121.905995][ T9812]  netlink_unicast+0x59e/0x7e0
[  121.910809][ T9812]  ? netlink_attachskb+0x870/0x870
[  121.916018][ T9812]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[  121.921729][ T9812]  ? __check_object_size+0x3d/0x437
[  121.926935][ T9812]  netlink_sendmsg+0x91c/0xea0
[  121.931689][ T9812]  ? netlink_unicast+0x7e0/0x7e0
[  121.936622][ T9812]  ? aa_sock_msg_perm.isra.0+0xba/0x170
[  121.942163][ T9812]  ? apparmor_socket_sendmsg+0x2a/0x30
[  121.947619][ T9812]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  121.953895][ T9812]  ? security_socket_sendmsg+0x8d/0xc0
[  121.959491][ T9812]  ? netlink_unicast+0x7e0/0x7e0
[  121.964417][ T9812]  sock_sendmsg+0xd7/0x130
[  121.968818][ T9812]  ____sys_sendmsg+0x753/0x880
[  121.973567][ T9812]  ? kernel_sendmsg+0x50/0x50
[  121.978247][ T9812]  ? __fget_files+0x337/0x520
[  121.982966][ T9812]  ? find_held_lock+0x35/0x130
[  121.987721][ T9812]  ___sys_sendmsg+0x100/0x170
[  121.992438][ T9812]  ? sendmsg_copy_msghdr+0x70/0x70
[  121.997551][ T9812]  ? __kasan_check_read+0x11/0x20
[  122.002627][ T9812]  ? __fget_files+0x359/0x520
[  122.007307][ T9812]  ? do_dup2+0x4f0/0x4f0
[  122.011535][ T9812]  ? find_held_lock+0x35/0x130
[  122.016296][ T9812]  ? do_page_fault+0x579/0x12e1
[  122.021147][ T9812]  ? __fget_light+0x1ad/0x270
[  122.025875][ T9812]  ? __fdget+0x1b/0x20
[  122.029956][ T9812]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  122.036202][ T9812]  __sys_sendmsg+0x105/0x1d0
[  122.040784][ T9812]  ? __sys_sendmsg_sock+0xc0/0xc0
[  122.045807][ T9812]  ? rcu_read_lock_any_held.part.0+0x50/0x50
[  122.051834][ T9812]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  122.057308][ T9812]  ? do_syscall_64+0x26/0x790
[  122.062079][ T9812]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  122.068140][ T9812]  ? do_syscall_64+0x26/0x790
[  122.072811][ T9812]  __x64_sys_sendmsg+0x78/0xb0
[  122.077620][ T9812]  do_syscall_64+0xfa/0x790
[  122.082159][ T9812]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  122.088038][ T9812] RIP: 0033:0x446939
[  122.092031][ T9812] Code: e8 0c e8 ff ff 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 5b 07 fc ff c3 66 2e 0f 1f 84 00 00 00 00
[  122.111635][ T9812] RSP: 002b:00007f364bf22da8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  122.120035][ T9812] RAX: ffffffffffffffda RBX: 00000000006dbc28 RCX: 0000000000446939
[  122.128009][ T9812] RDX: 0000000000000000 RSI: 0000000020000300 RDI: 0000000000000003
[  122.135962][ T9812] RBP: 00000000006dbc20 R08: 0000000000000008 R09: 0000000000000000
[  122.143937][ T9812] R10: 000000000000000c R11: 0000000000000246 R12: 00000000006dbc2c
[  122.151896][ T9812] R13: 0000000020000400 R14: 00000000004ae7e8 R15: 000000000000002d
[  122.161044][ T9812] Kernel Offset: disabled
[  122.165374][ T9812] Rebooting in 86400 seconds..