IPv6: ADDRCONF(NETDEV_UP): bond1: link is not ready
8021q: adding VLAN 0 to HW filter on device bond1
------------[ cut here ]------------
kernel BUG at net/ipv6/route.c:1268!
invalid opcode: 0000 [#1] SMP KASAN
CPU: 1 PID: 19883 Comm: syz-executor5 Not tainted 4.18.0-rc6+ #165
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
netlink: 'syz-executor4': attribute type 1 has an invalid length.
RIP: 0010:rt6_make_pcpu_route net/ipv6/route.c:1268 [inline]
RIP: 0010:ip6_pol_route+0x9e3/0x1250 net/ipv6/route.c:1925
Code: 31 e4 e8 30 4b 02 fc 4c 89 e0 f0 4c 
netlink: 'syz-executor4': attribute type 1 has an invalid length.
0f b1 33 31 ff 49 89 c4 48 89 c6 e8 cb 34 c4 fb 4d 85 e4 0f 84 0d fa ff ff e8 8d 33 c4 fb <0f> 0b e8 86 33 c4 fb e8 31 a2 ae fb 31 ff 89 c6 88 85 e0 fd ff ff 
RSP: 0018:ffff880193996d48 EFLAGS: 00010216
RAX: 0000000000040000 RBX: ffffe8ffffd6e550 RCX: ffffc90004427000
RDX: 0000000000026b56 RSI: ffffffff85b7e1f3 RDI: 0000000000000007
RBP: ffff880193996f78 R08: ffff88019c0dc180 R09: fffff91ffffadcaa
R10: fffff91ffffadcaa R11: ffffe8ffffd6e557 R12: ffff8801af226d00
R13: 0000000000000001 R14: ffff8801d75c66c0 R15: 0000000000000001
FS:  00007f9fd28b5700(0000) GS:ffff8801db100000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007ffcd57ae988 CR3: 00000001d710c000 CR4: 00000000001406e0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
Call Trace:
netlink: 'syz-executor4': attribute type 1 has an invalid length.
 ip6_pol_route_output+0x54/0x70 net/ipv6/route.c:2098
 fib6_rule_lookup+0x26e/0x700 net/ipv6/fib6_rules.c:122
netlink: 'syz-executor4': attribute type 1 has an invalid length.
 ip6_route_output_flags+0x2c5/0x350 net/ipv6/route.c:2126
 ip6_dst_lookup_tail+0x1278/0x1da0 net/ipv6/ip6_output.c:978
 ip6_dst_lookup_flow+0xc8/0x270 net/ipv6/ip6_output.c:1079
 inet6_csk_route_socket+0x8cb/0x1030 net/ipv6/inet6_connection_sock.c:110
 inet6_csk_xmit+0x118/0x630 net/ipv6/inet6_connection_sock.c:125
 l2tp_xmit_core net/l2tp/l2tp_core.c:1030 [inline]
 l2tp_xmit_skb+0x1469/0x1830 net/l2tp/l2tp_core.c:1132
 pppol2tp_sendmsg+0x4ae/0x6c0 net/l2tp/l2tp_ppp.c:331
 sock_sendmsg_nosec net/socket.c:639 [inline]
 sock_sendmsg+0xd5/0x120 net/socket.c:649
 ___sys_sendmsg+0x51d/0x930 net/socket.c:2132
 __sys_sendmmsg+0x240/0x6f0 net/socket.c:2227
 __do_sys_sendmmsg net/socket.c:2256 [inline]
 __se_sys_sendmmsg net/socket.c:2253 [inline]
 __x64_sys_sendmmsg+0x9d/0x100 net/socket.c:2253
 do_syscall_64+0x1b9/0x820 arch/x86/entry/common.c:290
 entry_SYSCALL_64_after_hwframe+0x49/0xbe
RIP: 0033:0x456a09
Code: fd b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 
RSP: 002b:00007f9fd28b4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
RAX: ffffffffffffffda RBX: 00007f9fd28b56d4 RCX: 0000000000456a09
RDX: 00000000000003e8 RSI: 0000000020005fc0 RDI: 0000000000000015
RBP: 0000000000930140 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
IPVS: ftp: loaded support on port[0] = 21
R13: 00000000004d2c98 R14: 00000000004c7a00 R15: 0000000000000001
Modules linked in:
Dumping ftrace buffer:
   (ftrace buffer empty)
---[ end trace 0a190b7f19a92bc4 ]---
RIP: 0010:rt6_make_pcpu_route net/ipv6/route.c:1268 [inline]
RIP: 0010:ip6_pol_route+0x9e3/0x1250 net/ipv6/route.c:1925
Code: 31 e4 e8 30 4b 02 fc 4c 89 e0 f0 4c 0f b1 33 31 ff 49 89 c4 48 89 c6 e8 cb 34 c4 fb 4d 85 e4 0f 84 0d fa ff ff e8 8d 33 c4 fb <0f> 0b e8 86 33 c4 fb e8 31 a2 ae fb 31 ff 89 c6 88 85 e0 fd ff ff 
RSP: 0018:ffff880193996d48 EFLAGS: 00010216
RAX: 0000000000040000 RBX: ffffe8ffffd6e550 RCX: ffffc90004427000
RDX: 0000000000026b56 RSI: ffffffff85b7e1f3 RDI: 0000000000000007
RBP: ffff880193996f78 R08: ffff88019c0dc180 R09: fffff91ffffadcaa
R10: fffff91ffffadcaa R11: ffffe8ffffd6e557 R12: ffff8801af226d00
R13: 0000000000000001 R14: ffff8801d75c66c0 R15: 0000000000000001
FS:  00007f9fd28b5700(0000) GS:ffff8801db100000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007ffcd57ae988 CR3: 00000001d710c000 CR4: 00000000001406e0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400