program:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e22}, 0x1c)
listen(r0, 0xfff)
syz_emit_ethernet(0x4a, &(0x7f0000000240)={@local, @dev, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x2}}}}}}}, 0x0)
syz_emit_ethernet(0x4a, &(0x7f0000006340)={@local, @link_local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "8a35f2", 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x7}}}}}}}, 0x0)
close(0x3)
r1 = fsopen(&(0x7f0000000040)='afs\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r1, 0x1, &(0x7f0000000000)='source', &(0x7f00000000c0)='%\x00\x002', 0x0)
fcntl$setflags(r1, 0x2, 0x0)
getsockopt$IP6T_SO_GET_ENTRIES(r0, 0x29, 0x41, &(0x7f0000000140)={'nat\x00', 0x82, "7df690cba062fc11264e3fc6133b815e43075f665c4b9d328829928bea8aafd1e887ac1d375731f05da4dfc5a3d58558413537a0fdfbe46ad239a37f3c7c24f220a3e7e25c39ed400cfbf2d95494b276e192f837cceae3871746a3820fe907b66f09fada1dac57320d5d8930acd7dcf4bccfb8c32ffbb52fe5336792476727edebef"}, &(0x7f0000000200)=0xa6)
syz_emit_ethernet(0xae, &(0x7f0000000000)={@link_local, @broadcast, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "010120", 0x78, 0x3a, 0xff, @remote, @mcast2, {[], @ndisc_ra={0x86, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [{0x3, 0xa, "a78ce54006598080a8030037004023493b87aafaffffffffffffff23732472eefa45ad96489269748e254c1e4a8a8b3f0ab0c430d3be27df3e34066d42ca0a5c15b37adac15084dbaf736b41e5af1802"}, {0x0, 0x1, "000000000400260004000000"}, {0x1, 0x1, "fe906d17efe3"}]}}}}}}, 0x0)

[   75.240004][ T4671] Bluetooth: hci0: command tx timeout
[   75.305745][ T5318] kAFS: unparsable volume name
[   75.310839][ T5318] ------------[ cut here ]------------
[   75.313334][ T5318] memcpy: detected field-spanning write (size 20) of single field "pfx->in6_u.u6_addr8" at ./include/net/ipv6.h:614 (size 16)
[   75.319233][ T5318] WARNING: CPU: 0 PID: 5318 at ./include/net/ipv6.h:614 ipv6_addr_prefix+0x124/0x1d0
[   75.323329][ T5318] Modules linked in:
[   75.325068][ T5318] CPU: 0 UID: 0 PID: 5318 Comm: syz.0.0 Not tainted 6.15.0-syzkaller-09161-g0f70f5b08a47 #0 PREEMPT(full) 
[   75.329840][ T5318] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   75.334477][ T5318] RIP: 0010:ipv6_addr_prefix+0x124/0x1d0
[   75.336953][ T5318] Code: cc e8 10 c4 a6 f7 c6 05 36 2e 71 05 01 90 b9 10 00 00 00 48 c7 c7 e0 5c 9e 8c 4c 89 fe 48 c7 c2 00 64 9e 8c e8 8d 9d 6a f7 90 <0f> 0b 90 90 e9 33 ff ff ff e8 de c3 a6 f7 44 89 e6 48 c7 c7 40 78
[   75.345096][ T5318] RSP: 0018:ffffc9000d41eb30 EFLAGS: 00010246
[   75.347823][ T5318] RAX: c3a1a645c677ea00 RBX: ffff88804299b050 RCX: 0000000000100000
[   75.351351][ T5318] RDX: ffffc9000ddc2000 RSI: 00000000000012d5 RDI: 00000000000012d6
[   75.354748][ T5318] RBP: 0000000000000007 R08: 0000000000000003 R09: 0000000000000004
[   75.357996][ T5318] R10: dffffc0000000000 R11: fffffbfff1bfa66c R12: 0000000000000014
[   75.361414][ T5318] R13: 1ffff92001a83d89 R14: ffffc9000d41ec64 R15: 0000000000000014
[   75.364865][ T5318] FS:  00007f5aeade96c0(0000) GS:ffff88808d265000(0000) knlGS:0000000000000000
[   75.368644][ T5318] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   75.371567][ T5318] CR2: 00007f5aea183170 CR3: 000000003ec59000 CR4: 0000000000352ef0
[   75.375203][ T5318] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   75.378575][ T5318] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   75.382120][ T5318] Call Trace:
[   75.383621][ T5318]  <TASK>
[   75.384950][ T5318]  ip6_route_info_create+0x4af/0x860
[   75.387209][ T5318]  ip6_route_add+0x28/0x190
[   75.389134][ T5318]  addrconf_prefix_route+0x210/0x2c0
[   75.391365][ T5318]  ? __pfx_addrconf_prefix_route+0x10/0x10
[   75.393887][ T5318]  ? addrconf_get_prefix_route+0xf2/0x760
[   75.396300][ T5318]  ? __pfx_addrconf_get_prefix_route+0x10/0x10
[   75.398965][ T5318]  ? in6_dev_get+0x1a/0x290
[   75.400962][ T5318]  ? in6_dev_get+0x1a/0x290
[   75.403021][ T5318]  addrconf_prefix_rcv+0x60b/0x1610
[   75.405333][ T5318]  ? __pfx_addrconf_prefix_rcv+0x10/0x10
[   75.407723][ T5318]  ndisc_router_discovery+0x2015/0x35f0
[   75.410015][ T5318]  ? ndisc_router_discovery+0x660/0x35f0
[   75.412415][ T5318]  ? __pfx_ndisc_router_discovery+0x10/0x10
[   75.414909][ T5318]  ? skb_checksum+0x7c1/0x8c0
[   75.416943][ T5318]  ? ndisc_rcv+0x4aa/0x730
[   75.418839][ T5318]  icmpv6_rcv+0x139a/0x1c80
[   75.420814][ T5318]  ? ipv6_chk_mcast_addr+0x77f/0x860
[   75.423273][ T5318]  ? __pfx_icmpv6_rcv+0x10/0x10
[   75.425494][ T5318]  ip6_protocol_deliver_rcu+0xe08/0x15c0
[   75.427947][ T5318]  ip6_input_finish+0xde/0x190
[   75.430021][ T5318]  NF_HOOK+0x309/0x3a0
[   75.431903][ T5318]  ? __pfx_ip6_input_finish+0x10/0x10
[   75.434160][ T5318]  ? NF_HOOK+0x9a/0x3a0
[   75.435992][ T5318]  ? __pfx_NF_HOOK+0x10/0x10
[   75.437959][ T5318]  ? __pfx_ip6_input_finish+0x10/0x10
[   75.440334][ T5318]  ip6_input+0x16a/0x270
[   75.442204][ T5318]  ? ip6_input+0x23/0x270
[   75.444123][ T5318]  ip6_mc_input+0x79a/0xbe0
[   75.446233][ T5318]  ? __pfx_ip6_mc_input+0x10/0x10
[   75.448322][ T5318]  ? skb_dst+0x71/0xd0
[   75.449967][ T5318]  ? ip6_rcv_finish+0x29a/0x2d0
[   75.452163][ T5318]  NF_HOOK+0x309/0x3a0
[   75.453948][ T5318]  ? skb_orphan+0x4c/0xd0
[   75.456084][ T5318]  ? __pfx_ip6_rcv_finish+0x10/0x10
[   75.458251][ T5318]  ? NF_HOOK+0x9a/0x3a0
[   75.460022][ T5318]  ? __pfx_NF_HOOK+0x10/0x10
[   75.462099][ T5318]  ? __pfx_ip6_rcv_finish+0x10/0x10
[   75.464267][ T5318]  __netif_receive_skb+0xd3/0x380
[   75.466433][ T5318]  ? netif_receive_skb+0x115/0x790
[   75.468653][ T5318]  netif_receive_skb+0x1cb/0x790
[   75.470782][ T5318]  ? __pfx___local_bh_disable_ip+0x10/0x10
[   75.473596][ T5318]  ? __pfx_netif_receive_skb+0x10/0x10
[   75.476272][ T5318]  ? tun_rx_batched+0x160/0x730
[   75.478305][ T5318]  tun_rx_batched+0x1b9/0x730
[   75.480375][ T5318]  ? __lock_acquire+0xab9/0xd20
[   75.482984][ T5318]  ? __pfx_tun_rx_batched+0x10/0x10
[   75.485741][ T5318]  ? tun_get_user+0x2549/0x3ce0
[   75.488272][ T5318]  tun_get_user+0x298e/0x3ce0
[   75.490561][ T5318]  ? tun_get_user+0x693/0x3ce0
[   75.492680][ T5318]  ? tun_get_user+0x2549/0x3ce0
[   75.494608][ T5318]  ? aa_file_perm+0x11f/0xed0
[   75.496724][ T5318]  ? __pfx_tun_get_user+0x10/0x10
[   75.498884][ T5318]  ? aa_file_perm+0x3e7/0xed0
[   75.500924][ T5318]  ? __pfx_preempt_schedule+0x10/0x10
[   75.503371][ T5318]  ? ref_tracker_alloc+0x318/0x460
[   75.505643][ T5318]  ? __lock_acquire+0xab9/0xd20
[   75.507778][ T5318]  ? __pfx_ref_tracker_alloc+0x10/0x10
[   75.510043][ T5318]  ? tun_get+0x1c/0x2f0
[   75.511881][ T5318]  ? tun_get+0x1c/0x2f0
[   75.513676][ T5318]  ? tun_get+0x1c/0x2f0
[   75.515452][ T5318]  tun_chr_write_iter+0x113/0x200
[   75.517701][ T5318]  vfs_write+0x548/0xa90
[   75.519459][ T5318]  ? __pfx_tun_chr_write_iter+0x10/0x10
[   75.521886][ T5318]  ? __pfx_vfs_write+0x10/0x10
[   75.523966][ T5318]  ? __fget_files+0x2a/0x420
[   75.526005][ T5318]  ksys_write+0x145/0x250
[   75.527828][ T5318]  ? __pfx_ksys_write+0x10/0x10
[   75.529893][ T5318]  ? rcu_is_watching+0x15/0xb0
[   75.532113][ T5318]  ? do_syscall_64+0xbe/0x3b0
[   75.534150][ T5318]  do_syscall_64+0xfa/0x3b0
[   75.536184][ T5318]  ? lockdep_hardirqs_on+0x9c/0x150
[   75.538432][ T5318]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   75.541038][ T5318]  ? clear_bhb_loop+0x60/0xb0
[   75.543082][ T5318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   75.545680][ T5318] RIP: 0033:0x7f5ae9f8d41f
[   75.547610][ T5318] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[   75.555288][ T5318] RSP: 002b:00007f5aeade9000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[   75.558722][ T5318] RAX: ffffffffffffffda RBX: 00007f5aea1b5fa0 RCX: 00007f5ae9f8d41f
[   75.562130][ T5318] RDX: 00000000000000ae RSI: 0000200000000000 RDI: 00000000000000c8
[   75.565363][ T5318] RBP: 00007f5aea010ab1 R08: 0000000000000000 R09: 0000000000000000
[   75.568592][ T5318] R10: 00000000000000ae R11: 0000000000000293 R12: 0000000000000000
[   75.572037][ T5318] R13: 0000000000000000 R14: 00007f5aea1b5fa0 R15: 00007ffef09806d8
[   75.575459][ T5318]  </TASK>
[   75.576727][ T5318] Kernel panic - not syncing: kernel: panic_on_warn set ...
[   75.579855][ T5318] CPU: 0 UID: 0 PID: 5318 Comm: syz.0.0 Not tainted 6.15.0-syzkaller-09161-g0f70f5b08a47 #0 PREEMPT(full) 
[   75.584751][ T5318] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   75.589182][ T5318] Call Trace:
[   75.590652][ T5318]  <TASK>
[   75.591968][ T5318]  dump_stack_lvl+0x99/0x250
[   75.594005][ T5318]  ? __asan_memcpy+0x40/0x70
[   75.596018][ T5318]  ? __pfx_dump_stack_lvl+0x10/0x10
[   75.598542][ T5318]  ? __pfx__printk+0x10/0x10
[   75.600732][ T5318]  panic+0x2db/0x790
[   75.602802][ T5318]  ? __pfx_panic+0x10/0x10
[   75.605127][ T5318]  __warn+0x31b/0x4b0
[   75.607014][ T5318]  ? ipv6_addr_prefix+0x124/0x1d0
[   75.609404][ T5318]  ? ipv6_addr_prefix+0x124/0x1d0
[   75.611621][ T5318]  report_bug+0x2be/0x4f0
[   75.613600][ T5318]  ? ipv6_addr_prefix+0x124/0x1d0
[   75.615778][ T5318]  ? ipv6_addr_prefix+0x124/0x1d0
[   75.618045][ T5318]  ? ipv6_addr_prefix+0x126/0x1d0
[   75.620258][ T5318]  handle_bug+0x84/0x160
[   75.622167][ T5318]  exc_invalid_op+0x1a/0x50
[   75.624115][ T5318]  asm_exc_invalid_op+0x1a/0x20
[   75.626341][ T5318] RIP: 0010:ipv6_addr_prefix+0x124/0x1d0
[   75.628793][ T5318] Code: cc e8 10 c4 a6 f7 c6 05 36 2e 71 05 01 90 b9 10 00 00 00 48 c7 c7 e0 5c 9e 8c 4c 89 fe 48 c7 c2 00 64 9e 8c e8 8d 9d 6a f7 90 <0f> 0b 90 90 e9 33 ff ff ff e8 de c3 a6 f7 44 89 e6 48 c7 c7 40 78
[   75.637167][ T5318] RSP: 0018:ffffc9000d41eb30 EFLAGS: 00010246
[   75.639928][ T5318] RAX: c3a1a645c677ea00 RBX: ffff88804299b050 RCX: 0000000000100000
[   75.643153][ T5318] RDX: ffffc9000ddc2000 RSI: 00000000000012d5 RDI: 00000000000012d6
[   75.646293][ T5318] RBP: 0000000000000007 R08: 0000000000000003 R09: 0000000000000004
[   75.649449][ T5318] R10: dffffc0000000000 R11: fffffbfff1bfa66c R12: 0000000000000014
[   75.652763][ T5318] R13: 1ffff92001a83d89 R14: ffffc9000d41ec64 R15: 0000000000000014
[   75.656202][ T5318]  ip6_route_info_create+0x4af/0x860
[   75.658368][ T5318]  ip6_route_add+0x28/0x190
[   75.660352][ T5318]  addrconf_prefix_route+0x210/0x2c0
[   75.662678][ T5318]  ? __pfx_addrconf_prefix_route+0x10/0x10
[   75.665193][ T5318]  ? addrconf_get_prefix_route+0xf2/0x760
[   75.668101][ T5318]  ? __pfx_addrconf_get_prefix_route+0x10/0x10
[   75.671099][ T5318]  ? in6_dev_get+0x1a/0x290
[   75.673107][ T5318]  ? in6_dev_get+0x1a/0x290
[   75.675096][ T5318]  addrconf_prefix_rcv+0x60b/0x1610
[   75.677405][ T5318]  ? __pfx_addrconf_prefix_rcv+0x10/0x10
[   75.679816][ T5318]  ndisc_router_discovery+0x2015/0x35f0
[   75.682263][ T5318]  ? ndisc_router_discovery+0x660/0x35f0
[   75.684699][ T5318]  ? __pfx_ndisc_router_discovery+0x10/0x10
[   75.687325][ T5318]  ? skb_checksum+0x7c1/0x8c0
[   75.690571][ T5318]  ? ndisc_rcv+0x4aa/0x730
[   75.692679][ T5318]  icmpv6_rcv+0x139a/0x1c80
[   75.694633][ T5318]  ? ipv6_chk_mcast_addr+0x77f/0x860
[   75.696977][ T5318]  ? __pfx_icmpv6_rcv+0x10/0x10
[   75.699147][ T5318]  ip6_protocol_deliver_rcu+0xe08/0x15c0
[   75.701656][ T5318]  ip6_input_finish+0xde/0x190
[   75.703822][ T5318]  NF_HOOK+0x309/0x3a0
[   75.705629][ T5318]  ? __pfx_ip6_input_finish+0x10/0x10
[   75.707908][ T5318]  ? NF_HOOK+0x9a/0x3a0
[   75.709710][ T5318]  ? __pfx_NF_HOOK+0x10/0x10
[   75.711722][ T5318]  ? __pfx_ip6_input_finish+0x10/0x10
[   75.714041][ T5318]  ip6_input+0x16a/0x270
[   75.715991][ T5318]  ? ip6_input+0x23/0x270
[   75.718027][ T5318]  ip6_mc_input+0x79a/0xbe0
[   75.720096][ T5318]  ? __pfx_ip6_mc_input+0x10/0x10
[   75.722293][ T5318]  ? skb_dst+0x71/0xd0
[   75.724119][ T5318]  ? ip6_rcv_finish+0x29a/0x2d0
[   75.726295][ T5318]  NF_HOOK+0x309/0x3a0
[   75.728077][ T5318]  ? skb_orphan+0x4c/0xd0
[   75.729992][ T5318]  ? __pfx_ip6_rcv_finish+0x10/0x10
[   75.732303][ T5318]  ? NF_HOOK+0x9a/0x3a0
[   75.734129][ T5318]  ? __pfx_NF_HOOK+0x10/0x10
[   75.736247][ T5318]  ? __pfx_ip6_rcv_finish+0x10/0x10
[   75.738506][ T5318]  __netif_receive_skb+0xd3/0x380
[   75.740798][ T5318]  ? netif_receive_skb+0x115/0x790
[   75.743143][ T5318]  netif_receive_skb+0x1cb/0x790
[   75.745398][ T5318]  ? __pfx___local_bh_disable_ip+0x10/0x10
[   75.748164][ T5318]  ? __pfx_netif_receive_skb+0x10/0x10
[   75.750588][ T5318]  ? tun_rx_batched+0x160/0x730
[   75.752815][ T5318]  tun_rx_batched+0x1b9/0x730
[   75.754908][ T5318]  ? __lock_acquire+0xab9/0xd20
[   75.757139][ T5318]  ? __pfx_tun_rx_batched+0x10/0x10
[   75.759447][ T5318]  ? tun_get_user+0x2549/0x3ce0
[   75.761583][ T5318]  tun_get_user+0x298e/0x3ce0
[   75.763669][ T5318]  ? tun_get_user+0x693/0x3ce0
[   75.765872][ T5318]  ? tun_get_user+0x2549/0x3ce0
[   75.768068][ T5318]  ? aa_file_perm+0x11f/0xed0
[   75.770279][ T5318]  ? __pfx_tun_get_user+0x10/0x10
[   75.772456][ T5318]  ? aa_file_perm+0x3e7/0xed0
[   75.774532][ T5318]  ? __pfx_preempt_schedule+0x10/0x10
[   75.777039][ T5318]  ? ref_tracker_alloc+0x318/0x460
[   75.779283][ T5318]  ? __lock_acquire+0xab9/0xd20
[   75.781479][ T5318]  ? __pfx_ref_tracker_alloc+0x10/0x10
[   75.783887][ T5318]  ? tun_get+0x1c/0x2f0
[   75.785665][ T5318]  ? tun_get+0x1c/0x2f0
[   75.787006][ T5318]  ? tun_get+0x1c/0x2f0
[   75.788414][ T5318]  tun_chr_write_iter+0x113/0x200
[   75.790050][ T5318]  vfs_write+0x548/0xa90
[   75.791714][ T5318]  ? __pfx_tun_chr_write_iter+0x10/0x10
[   75.793733][ T5318]  ? __pfx_vfs_write+0x10/0x10
[   75.795653][ T5318]  ? __fget_files+0x2a/0x420
[   75.797299][ T5318]  ksys_write+0x145/0x250
[   75.798933][ T5318]  ? __pfx_ksys_write+0x10/0x10
[   75.800871][ T5318]  ? rcu_is_watching+0x15/0xb0
[   75.802990][ T5318]  ? do_syscall_64+0xbe/0x3b0
[   75.805084][ T5318]  do_syscall_64+0xfa/0x3b0
[   75.807281][ T5318]  ? lockdep_hardirqs_on+0x9c/0x150
[   75.809679][ T5318]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   75.812350][ T5318]  ? clear_bhb_loop+0x60/0xb0
[   75.814485][ T5318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   75.817071][ T5318] RIP: 0033:0x7f5ae9f8d41f
[   75.819044][ T5318] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[   75.827163][ T5318] RSP: 002b:00007f5aeade9000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[   75.830906][ T5318] RAX: ffffffffffffffda RBX: 00007f5aea1b5fa0 RCX: 00007f5ae9f8d41f
[   75.834436][ T5318] RDX: 00000000000000ae RSI: 0000200000000000 RDI: 00000000000000c8
[   75.837964][ T5318] RBP: 00007f5aea010ab1 R08: 0000000000000000 R09: 0000000000000000
[   75.841557][ T5318] R10: 00000000000000ae R11: 0000000000000293 R12: 0000000000000000
[   75.844906][ T5318] R13: 0000000000000000 R14: 00007f5aea1b5fa0 R15: 00007ffef09806d8
[   75.848596][ T5318]  </TASK>
[   75.850384][ T5318] Kernel Offset: disabled
[   75.852295][ T5318] Rebooting in 86400 seconds..