------------[ cut here ]------------ kernel BUG at net/core/skbuff.c:3277! invalid opcode: 0000 [#1] PREEMPT SMP KASAN CPU: 1 PID: 21 Comm: ksoftirqd/1 Not tainted 6.2.0-rc7-next-20230208-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/21/2023 RIP: 0010:skb_copy_and_csum_bits+0x798/0x860 net/core/skbuff.c:3277 Code: f0 c1 c8 08 41 89 c6 e9 73 ff ff ff e8 11 3f c8 f9 e9 41 fd ff ff 48 8b 7c 24 48 e8 02 3f c8 f9 e9 c3 fc ff ff e8 e8 27 79 f9 <0f> 0b 48 89 44 24 28 e8 ec 3e c8 f9 48 8b 44 24 28 e9 9d fb ff ff RSP: 0018:ffffc900001b7078 EFLAGS: 00010246 RAX: 0000000000000000 RBX: 00000000000001f0 RCX: 0000000000000100 RDX: ffff8880172a9d40 RSI: ffffffff880b45f8 RDI: 0000000000000005 RBP: 0000000000000000 R08: 0000000000000005 R09: 0000000000000000 R10: 00000000000001f0 R11: 0000000000000001 R12: 0000000000000020 R13: 0000000000000000 R14: ffff888078d63060 R15: 0000000000000000 FS: 0000000000000000(0000) GS:ffff8880b9900000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 0000000020404030 CR3: 0000000079729000 CR4: 00000000003506e0 DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 Call Trace: icmp_glue_bits+0x7b/0x210 net/ipv4/icmp.c:353 __ip_append_data+0x1d1b/0x39f0 net/ipv4/ip_output.c:1161 ip_append_data net/ipv4/ip_output.c:1343 [inline] ip_append_data+0x115/0x1a0 net/ipv4/ip_output.c:1322 icmp_push_reply+0xa8/0x440 net/ipv4/icmp.c:370 __icmp_send+0xb80/0x1430 net/ipv4/icmp.c:765 icmp_send include/net/icmp.h:43 [inline] ip_protocol_deliver_rcu+0x3ea/0x480 net/ipv4/ip_input.c:216 ip_local_deliver_finish+0x2ec/0x520 net/ipv4/ip_input.c:233 NF_HOOK include/linux/netfilter.h:302 [inline] NF_HOOK include/linux/netfilter.h:296 [inline] ip_local_deliver+0x1ae/0x200 net/ipv4/ip_input.c:254 dst_input include/net/dst.h:454 [inline] ip_sublist_rcv_finish+0x9a/0x2c0 net/ipv4/ip_input.c:580 ip_list_rcv_finish.constprop.0+0x4f9/0x6c0 net/ipv4/ip_input.c:630 ip_sublist_rcv net/ipv4/ip_input.c:638 [inline] ip_list_rcv+0x347/0x4a0 net/ipv4/ip_input.c:673 __netif_receive_skb_list_ptype net/core/dev.c:5528 [inline] __netif_receive_skb_list_core+0x548/0x8f0 net/core/dev.c:5576 __netif_receive_skb_list net/core/dev.c:5628 [inline] netif_receive_skb_list_internal+0x75f/0xdc0 net/core/dev.c:5719 gro_normal_list include/net/gro.h:433 [inline] gro_normal_list include/net/gro.h:429 [inline] napi_complete_done+0x243/0x960 net/core/dev.c:6059 virtqueue_napi_complete drivers/net/virtio_net.c:405 [inline] virtnet_poll+0xcf8/0x1300 drivers/net/virtio_net.c:1809 __napi_poll+0xb3/0x520 net/core/dev.c:6488 napi_poll net/core/dev.c:6555 [inline] net_rx_action+0x8d7/0xc50 net/core/dev.c:6665 __do_softirq+0x2e3/0xae3 kernel/softirq.c:571 run_ksoftirqd kernel/softirq.c:934 [inline] run_ksoftirqd+0x31/0x60 kernel/softirq.c:926 smpboot_thread_fn+0x659/0xa30 kernel/smpboot.c:164 kthread+0x2e8/0x3a0 kernel/kthread.c:376 ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:308 Modules linked in: ---[ end trace 0000000000000000 ]--- RIP: 0010:skb_copy_and_csum_bits+0x798/0x860 net/core/skbuff.c:3277 Code: f0 c1 c8 08 41 89 c6 e9 73 ff ff ff e8 11 3f c8 f9 e9 41 fd ff ff 48 8b 7c 24 48 e8 02 3f c8 f9 e9 c3 fc ff ff e8 e8 27 79 f9 <0f> 0b 48 89 44 24 28 e8 ec 3e c8 f9 48 8b 44 24 28 e9 9d fb ff ff RSP: 0018:ffffc900001b7078 EFLAGS: 00010246 RAX: 0000000000000000 RBX: 00000000000001f0 RCX: 0000000000000100 RDX: ffff8880172a9d40 RSI: ffffffff880b45f8 RDI: 0000000000000005 RBP: 0000000000000000 R08: 0000000000000005 R09: 0000000000000000 R10: 00000000000001f0 R11: 0000000000000001 R12: 0000000000000020 R13: 0000000000000000 R14: ffff888078d63060 R15: 0000000000000000 FS: 0000000000000000(0000) GS:ffff8880b9900000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 0000000020404030 CR3: 0000000079729000 CR4: 00000000003506e0 DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400