------------[ cut here ]------------
kernel BUG at net/core/skbuff.c:2274!
Oops: invalid opcode: 0000 [#1] SMP KASAN NOPTI
CPU: 0 UID: 0 PID: 43 Comm: kworker/u4:3 Not tainted syzkaller #0 PREEMPT(full) 
Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
Workqueue: bond1 bond_resend_igmp_join_requests_delayed
RIP: 0010:pskb_expand_head+0x12ba/0x1300 net/core/skbuff.c:2274
Code: 7d f3 ff ff 48 8b 0c 24 80 e1 07 80 c1 03 38 c1 0f 8c d8 f3 ff ff 48 8b 3c 24 e8 a1 75 ca f8 e9 ca f3 ff ff e8 27 99 60 f8 90 <0f> 0b e8 1f 99 60 f8 90 0f 0b 48 8b 0c 24 80 e1 07 80 c1 03 38 c1
RSP: 0018:ffffc90000a073b8 EFLAGS: 00010293
RAX: ffffffff8963edc9 RBX: ffff888011b87a00 RCX: ffff88801f5d0000
RDX: 0000000000000000 RSI: 0000000093a24430 RDI: 0000000000000000
RBP: 0000000093a24af0 R08: 0000000000000000 R09: 000000000000004c
R10: dffffc0000000000 R11: ffffffff8a21cb70 R12: 0000000093a24430
R13: ffff888011b87a00 R14: 0000000000000820 R15: dffffc0000000000
FS:  0000000000000000(0000) GS:ffff88808ccea000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 0000200000040000 CR3: 0000000011d32000 CR4: 0000000000352ef0
Call Trace:
 <TASK>
 ipgre_header+0xd5/0x350 net/ipv4/ip_gre.c:900
 dev_hard_header include/linux/netdevice.h:3436 [inline]
 neigh_connected_output+0x286/0x460 net/core/neighbour.c:1618
 __ip6_finish_output net/ipv6/ip6_output.c:-1 [inline]
 ip6_finish_output+0x558/0xd20 net/ipv6/ip6_output.c:220
 NF_HOOK_COND include/linux/netfilter.h:307 [inline]
 ip6_output+0x340/0x550 net/ipv6/ip6_output.c:247
 NF_HOOK+0xa2/0x3a0 include/linux/netfilter.h:318
 mld_sendpack+0x8b4/0xe40 net/ipv6/mcast.c:1855
 ipv6_mc_rejoin_groups net/ipv6/mcast.c:2868 [inline]
 ipv6_mc_netdev_event+0x1b7/0x5a0 net/ipv6/mcast.c:2883
 notifier_call_chain+0x19d/0x3a0 kernel/notifier.c:85
 call_netdevice_notifiers_extack net/core/dev.c:2281 [inline]
 call_netdevice_notifiers+0x90/0xd0 net/core/dev.c:2295
 bond_resend_igmp_join_requests_delayed+0x61/0x170 drivers/net/bonding/bond_main.c:893
 process_one_work kernel/workqueue.c:3257 [inline]
 process_scheduled_works+0xaec/0x17a0 kernel/workqueue.c:3340
 worker_thread+0xda6/0x1360 kernel/workqueue.c:3421
 kthread+0x726/0x8b0 kernel/kthread.c:463
 ret_from_fork+0x51b/0xa40 arch/x86/kernel/process.c:158
 ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:246
 </TASK>
Modules linked in:
---[ end trace 0000000000000000 ]---
RIP: 0010:pskb_expand_head+0x12ba/0x1300 net/core/skbuff.c:2274
Code: 7d f3 ff ff 48 8b 0c 24 80 e1 07 80 c1 03 38 c1 0f 8c d8 f3 ff ff 48 8b 3c 24 e8 a1 75 ca f8 e9 ca f3 ff ff e8 27 99 60 f8 90 <0f> 0b e8 1f 99 60 f8 90 0f 0b 48 8b 0c 24 80 e1 07 80 c1 03 38 c1
RSP: 0018:ffffc90000a073b8 EFLAGS: 00010293
RAX: ffffffff8963edc9 RBX: ffff888011b87a00 RCX: ffff88801f5d0000
RDX: 0000000000000000 RSI: 0000000093a24430 RDI: 0000000000000000
RBP: 0000000093a24af0 R08: 0000000000000000 R09: 000000000000004c
R10: dffffc0000000000 R11: ffffffff8a21cb70 R12: 0000000093a24430
R13: ffff888011b87a00 R14: 0000000000000820 R15: dffffc0000000000
FS:  0000000000000000(0000) GS:ffff88808ccea000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007f84f761f720 CR3: 0000000011bf9000 CR4: 0000000000352ef0