------------[ cut here ]------------ kernel BUG at net/core/skbuff.c:2446! invalid opcode: 0000 [#1] PREEMPT SMP KASAN CPU: 1 PID: 21 Comm: ksoftirqd/1 Not tainted 6.2.0-rc3-syzkaller-00187-ga22b7388d658 #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 RIP: 0010:__pskb_pull_tail+0x1196/0x1740 net/core/skbuff.c:2446 Code: 98 c8 00 00 00 e9 c7 f6 ff ff e8 95 ec bd f9 48 8b 3c 24 be 02 00 00 00 e8 b7 0d ff ff 45 31 e4 e9 b4 f6 ff ff e8 7a ec bd f9 <0f> 0b e8 73 ec bd f9 4c 8b 7c 24 38 49 83 ef 01 e9 fb f4 ff ff 48 RSP: 0018:ffffc900001b6808 EFLAGS: 00010246 RAX: 0000000000000000 RBX: 00000000fffffff2 RCX: 0000000000000100 RDX: ffff888012639d40 RSI: ffffffff87c36616 RDI: 0000000000000005 RBP: ffffc900001b6890 R08: 0000000000000005 R09: 0000000000000000 R10: 00000000fffffff2 R11: 0000000000000000 R12: 00000000000002c0 R13: ffff88807db64000 R14: 0000000000000000 R15: 0000000000000000 FS: 0000000000000000(0000) GS:ffff8880b9900000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 0000000020002000 CR3: 000000004e0fc000 CR4: 00000000003506e0 DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 Call Trace: skb_condense+0x140/0x2d0 net/core/skbuff.c:6485 ___pskb_trim+0x979/0x11b0 net/core/skbuff.c:2381 __pskb_trim include/linux/skbuff.h:3016 [inline] pskb_trim include/linux/skbuff.h:3023 [inline] packet_rcv+0xd84/0x15c0 net/packet/af_packet.c:2200 dev_queue_xmit_nit+0x7fd/0xb10 net/core/dev.c:2290 xmit_one net/core/dev.c:3579 [inline] dev_hard_start_xmit+0xac/0x990 net/core/dev.c:3599 sch_direct_xmit+0x1a3/0xbe0 net/sched/sch_generic.c:342 qdisc_restart net/sched/sch_generic.c:407 [inline] __qdisc_run+0x4da/0x1750 net/sched/sch_generic.c:415 __dev_xmit_skb net/core/dev.c:3873 [inline] __dev_queue_xmit+0x230b/0x3ba0 net/core/dev.c:4215 dev_queue_xmit include/linux/netdevice.h:3035 [inline] neigh_hh_output include/net/neighbour.h:530 [inline] neigh_output include/net/neighbour.h:544 [inline] ip6_finish_output2+0xfa3/0x1530 net/ipv6/ip6_output.c:134 __ip6_finish_output net/ipv6/ip6_output.c:195 [inline] ip6_finish_output+0x694/0x1170 net/ipv6/ip6_output.c:206 NF_HOOK_COND include/linux/netfilter.h:291 [inline] ip6_output+0x1f1/0x540 net/ipv6/ip6_output.c:227 dst_output include/net/dst.h:444 [inline] NF_HOOK include/linux/netfilter.h:302 [inline] NF_HOOK include/linux/netfilter.h:296 [inline] ip6_xmit+0x11f7/0x1c60 net/ipv6/ip6_output.c:343 sctp_v6_xmit+0xccc/0x1110 net/sctp/ipv6.c:250 sctp_packet_transmit+0x22ea/0x30d0 net/sctp/output.c:653 sctp_packet_transmit_chunk+0x160/0x250 net/sctp/output.c:194 sctp_outq_flush_data+0xa15/0x26a0 net/sctp/outqueue.c:1111 sctp_outq_flush net/sctp/outqueue.c:1217 [inline] sctp_outq_uncork+0x17c/0x200 net/sctp/outqueue.c:764 sctp_cmd_interpreter net/sctp/sm_sideeffect.c:1785 [inline] sctp_side_effects net/sctp/sm_sideeffect.c:1199 [inline] sctp_do_sm+0x19d4/0x5290 net/sctp/sm_sideeffect.c:1170 sctp_assoc_bh_rcv+0x38a/0x6c0 net/sctp/associola.c:1051 sctp_inq_push+0x1d6/0x270 net/sctp/inqueue.c:80 sctp_rcv+0x282c/0x35f0 net/sctp/input.c:243 sctp6_rcv+0x3c/0x60 net/sctp/ipv6.c:1122 ip6_protocol_deliver_rcu+0x2dd/0x1280 net/ipv6/ip6_input.c:439 ip6_input_finish+0x150/0x2c0 net/ipv6/ip6_input.c:484 NF_HOOK include/linux/netfilter.h:302 [inline] NF_HOOK include/linux/netfilter.h:296 [inline] ip6_input+0xa0/0xd0 net/ipv6/ip6_input.c:493 dst_input include/net/dst.h:454 [inline] ip6_rcv_finish net/ipv6/ip6_input.c:79 [inline] NF_HOOK include/linux/netfilter.h:302 [inline] NF_HOOK include/linux/netfilter.h:296 [inline] ipv6_rcv+0x250/0x380 net/ipv6/ip6_input.c:309 __netif_receive_skb_one_core+0x114/0x180 net/core/dev.c:5482 __netif_receive_skb+0x1f/0x1c0 net/core/dev.c:5596 process_backlog+0x3e4/0x810 net/core/dev.c:5924 __napi_poll+0xb8/0x770 net/core/dev.c:6485 napi_poll net/core/dev.c:6552 [inline] net_rx_action+0xa00/0xde0 net/core/dev.c:6663 __do_softirq+0x1fb/0xadc kernel/softirq.c:571 run_ksoftirqd kernel/softirq.c:934 [inline] run_ksoftirqd+0x31/0x60 kernel/softirq.c:926 smpboot_thread_fn+0x659/0xa20 kernel/smpboot.c:164 kthread+0x2e8/0x3a0 kernel/kthread.c:376 ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:308 Modules linked in: ---[ end trace 0000000000000000 ]--- RIP: 0010:__pskb_pull_tail+0x1196/0x1740 net/core/skbuff.c:2446 Code: 98 c8 00 00 00 e9 c7 f6 ff ff e8 95 ec bd f9 48 8b 3c 24 be 02 00 00 00 e8 b7 0d ff ff 45 31 e4 e9 b4 f6 ff ff e8 7a ec bd f9 <0f> 0b e8 73 ec bd f9 4c 8b 7c 24 38 49 83 ef 01 e9 fb f4 ff ff 48 RSP: 0018:ffffc900001b6808 EFLAGS: 00010246 RAX: 0000000000000000 RBX: 00000000fffffff2 RCX: 0000000000000100 RDX: ffff888012639d40 RSI: ffffffff87c36616 RDI: 0000000000000005 RBP: ffffc900001b6890 R08: 0000000000000005 R09: 0000000000000000 R10: 00000000fffffff2 R11: 0000000000000000 R12: 00000000000002c0 R13: ffff88807db64000 R14: 0000000000000000 R15: 0000000000000000 FS: 0000000000000000(0000) GS:ffff8880b9900000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 0000000020002000 CR3: 000000000c48e000 CR4: 00000000003506e0 DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400