------------[ cut here ]------------ kernel BUG at net/core/skbuff.c:3275! invalid opcode: 0000 [#1] PREEMPT SMP KASAN CPU: 1 PID: 21 Comm: ksoftirqd/1 Not tainted 6.2.0-rc6-next-20230203-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023 RIP: 0010:skb_copy_and_csum_bits+0x798/0x860 net/core/skbuff.c:3275 Code: f0 c1 c8 08 41 89 c6 e9 73 ff ff ff e8 91 24 c9 f9 e9 41 fd ff ff 48 8b 7c 24 48 e8 82 24 c9 f9 e9 c3 fc ff ff e8 68 21 7a f9 <0f> 0b 48 89 44 24 28 e8 6c 24 c9 f9 48 8b 44 24 28 e9 9d fb ff ff RSP: 0018:ffffc900001b6dc0 EFLAGS: 00010246 RAX: 0000000000000000 RBX: 00000000000001f0 RCX: 0000000000000100 RDX: ffff888017219d40 RSI: ffffffff880a4938 RDI: 0000000000000005 RBP: 0000000000000000 R08: 0000000000000005 R09: 0000000000000000 R10: 00000000000001f0 R11: 0000000000000001 R12: 0000000000000020 R13: 0000000000000000 R14: ffff888146def060 R15: 0000000000000000 FS: 0000000000000000(0000) GS:ffff8880b9900000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 00000000200ae030 CR3: 0000000030591000 CR4: 00000000003506e0 DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 Call Trace: icmp_glue_bits+0x7b/0x210 net/ipv4/icmp.c:353 __ip_append_data+0x1d1b/0x39f0 net/ipv4/ip_output.c:1161 ip_append_data net/ipv4/ip_output.c:1343 [inline] ip_append_data+0x115/0x1a0 net/ipv4/ip_output.c:1322 icmp_push_reply+0xa8/0x440 net/ipv4/icmp.c:370 __icmp_send+0xb80/0x1430 net/ipv4/icmp.c:765 icmp_send include/net/icmp.h:43 [inline] ip_protocol_deliver_rcu+0x3ea/0x480 net/ipv4/ip_input.c:216 ip_local_deliver_finish+0x2ec/0x520 net/ipv4/ip_input.c:233 NF_HOOK include/linux/netfilter.h:302 [inline] NF_HOOK include/linux/netfilter.h:296 [inline] ip_local_deliver+0x1ae/0x200 net/ipv4/ip_input.c:254 dst_input include/net/dst.h:454 [inline] ip_sublist_rcv_finish+0x9a/0x2c0 net/ipv4/ip_input.c:580 ip_list_rcv_finish.constprop.0+0x4f9/0x6c0 net/ipv4/ip_input.c:630 ip_sublist_rcv net/ipv4/ip_input.c:638 [inline] ip_list_rcv+0x347/0x4a0 net/ipv4/ip_input.c:673 __netif_receive_skb_list_ptype net/core/dev.c:5527 [inline] __netif_receive_skb_list_core+0x548/0x8f0 net/core/dev.c:5575 __netif_receive_skb_list net/core/dev.c:5627 [inline] netif_receive_skb_list_internal+0x75f/0xdc0 net/core/dev.c:5718 gro_normal_list include/net/gro.h:433 [inline] gro_normal_one include/net/gro.h:446 [inline] napi_gro_complete.constprop.0+0x5a7/0x700 net/core/gro.c:328 dev_gro_receive+0x1286/0x28d0 net/core/gro.c:552 napi_gro_receive+0x2b5/0xdb0 net/core/gro.c:657 receive_buf+0xeee/0x6180 drivers/net/virtio_net.c:1416 virtnet_receive drivers/net/virtio_net.c:1684 [inline] virtnet_poll+0x704/0x1300 drivers/net/virtio_net.c:1802 __napi_poll+0xb3/0x520 net/core/dev.c:6487 napi_poll net/core/dev.c:6554 [inline] net_rx_action+0x8d7/0xc50 net/core/dev.c:6664 __do_softirq+0x2e3/0xae3 kernel/softirq.c:571 run_ksoftirqd kernel/softirq.c:934 [inline] run_ksoftirqd+0x31/0x60 kernel/softirq.c:926 smpboot_thread_fn+0x659/0xa30 kernel/smpboot.c:164 kthread+0x2e8/0x3a0 kernel/kthread.c:376 ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:308 Modules linked in: ---[ end trace 0000000000000000 ]--- RIP: 0010:skb_copy_and_csum_bits+0x798/0x860 net/core/skbuff.c:3275 Code: f0 c1 c8 08 41 89 c6 e9 73 ff ff ff e8 91 24 c9 f9 e9 41 fd ff ff 48 8b 7c 24 48 e8 82 24 c9 f9 e9 c3 fc ff ff e8 68 21 7a f9 <0f> 0b 48 89 44 24 28 e8 6c 24 c9 f9 48 8b 44 24 28 e9 9d fb ff ff RSP: 0018:ffffc900001b6dc0 EFLAGS: 00010246 RAX: 0000000000000000 RBX: 00000000000001f0 RCX: 0000000000000100 RDX: ffff888017219d40 RSI: ffffffff880a4938 RDI: 0000000000000005 RBP: 0000000000000000 R08: 0000000000000005 R09: 0000000000000000 R10: 00000000000001f0 R11: 0000000000000001 R12: 0000000000000020 R13: 0000000000000000 R14: ffff888146def060 R15: 0000000000000000 FS: 0000000000000000(0000) GS:ffff8880b9900000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 00000000200ae030 CR3: 0000000030591000 CR4: 00000000003506e0 DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400