------------[ cut here ]------------
WARNING: CPU: 1 PID: 0 at net/ipv4/af_inet.c:157 inet_sock_destruct+0x681/0x790 net/ipv4/af_inet.c:157
Modules linked in:
CPU: 1 UID: 0 PID: 0 Comm: swapper/1 Not tainted 6.12.30-syzkaller-ge2bf362ee23b #0 e1c904518e9113895a28c59b25a6002cdacb68bf
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
RIP: 0010:inet_sock_destruct+0x681/0x790 net/ipv4/af_inet.c:157
Code: a3 e8 d3 e6 c8 fc 0f 0b e9 53 fe ff ff e8 c7 e6 c8 fc 0f 0b e9 92 fe ff ff e8 bb e6 c8 fc 0f 0b e9 c4 fe ff ff e8 af e6 c8 fc <0f> 0b e9 f6 fe ff ff 89 f9 80 e1 07 80 c1 03 38 c1 0f 8c 65 fc ff
RSP: 0018:ffffc90000230620 EFLAGS: 00010246
RAX: ffffffff84bcbc81 RBX: 0000000080000000 RCX: ffff88810366cc00
RDX: 0000000000000100 RSI: 0000000080000000 RDI: 0000000000000000
RBP: ffffc90000230668 R08: ffff888132ad8b7f R09: 1ffff1102655b16f
R10: dffffc0000000000 R11: ffffed102655b170 R12: ffff888132ad8a00
R13: ffff888132ad8a00 R14: ffff888132ad8b64 R15: 1ffff1102655b142
FS:  0000000000000000(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 000020000000000c CR3: 00000001160f8000 CR4: 00000000003526b0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
Call Trace:
 <IRQ>
 __sk_destruct+0x68/0x6a0 net/core/sock.c:2277
 sk_destruct net/core/sock.c:2325 [inline]
 __sk_free+0x313/0x410 net/core/sock.c:2336
 sk_free+0x58/0xb0 net/core/sock.c:2347
 sock_put include/net/sock.h:1942 [inline]
 tcp_v4_rcv+0x2996/0x3370 net/ipv4/tcp_ipv4.c:2363
 ip_protocol_deliver_rcu+0x1ca/0x390 net/ipv4/ip_input.c:205
 ip_local_deliver_finish+0x28a/0x480 net/ipv4/ip_input.c:233
 NF_HOOK include/linux/netfilter.h:317 [inline]
 ip_local_deliver+0x1dc/0x330 net/ipv4/ip_input.c:254
 dst_input include/net/dst.h:469 [inline]
 ip_rcv_finish net/ipv4/ip_input.c:449 [inline]
 NF_HOOK include/linux/netfilter.h:317 [inline]
 ip_rcv+0x1c3/0x2d0 net/ipv4/ip_input.c:569
 __netif_receive_skb_one_core net/core/dev.c:5757 [inline]
 __netif_receive_skb net/core/dev.c:5870 [inline]
 process_backlog+0x507/0xae0 net/core/dev.c:6202
 __napi_poll+0xd3/0x610 net/core/dev.c:6853
 napi_poll net/core/dev.c:6922 [inline]
 net_rx_action+0x584/0xce0 net/core/dev.c:7044
 handle_softirqs+0x1ae/0x630 kernel/softirq.c:603
 __do_softirq kernel/softirq.c:641 [inline]
 invoke_softirq kernel/softirq.c:458 [inline]
 __irq_exit_rcu+0x48/0xc0 kernel/softirq.c:690
 irq_exit_rcu+0xd/0x30 kernel/softirq.c:702
 instr_sysvec_apic_timer_interrupt arch/x86/kernel/apic/apic.c:1049 [inline]
 sysvec_apic_timer_interrupt+0x82/0x90 arch/x86/kernel/apic/apic.c:1049
 </IRQ>
 <TASK>
 asm_sysvec_apic_timer_interrupt+0x1f/0x30 arch/x86/include/asm/idtentry.h:702
RIP: 0010:pv_native_safe_halt+0x17/0x20 arch/x86/kernel/paravirt.c:106
Code: cc cc cc b8 53 ae 7a ec 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 66 90 0f 00 2d 73 bc 41 00 f3 0f 1e fa 55 48 89 e5 fb f4 <5d> e9 c3 59 02 00 cc cc cc b8 00 00 00 00 90 90 90 90 90 90 90 90
RSP: 0018:ffffc900001a7e00 EFLAGS: 000002c6
RAX: ffff8881f6f00000 RBX: ffff88810366cc00 RCX: ffffffff8585900e
RDX: 0000000000000001 RSI: 0000000000000004 RDI: 00000000000d58a4
RBP: ffffc900001a7e00 R08: ffff8881f6f39733 R09: 1ffff1103ede72e6
R10: dffffc0000000000 R11: ffffed103ede72e7 R12: 1ffff110206cd980
R13: 0000000000000001 R14: 0000000000000000 R15: ffffffff87ca73a8
 arch_safe_halt arch/x86/include/asm/paravirt.h:112 [inline]
 default_idle+0x17/0x30 arch/x86/kernel/process.c:748
 arch_cpu_idle+0xd/0x20 arch/x86/kernel/process.c:785
 default_idle_call+0x3f/0x80 kernel/sched/idle.c:117
 cpuidle_idle_call kernel/sched/idle.c:185 [inline]
 do_idle+0x1a0/0x470 kernel/sched/idle.c:326
 cpu_startup_entry+0x48/0x70 kernel/sched/idle.c:424
 start_secondary+0x12e/0x140 arch/x86/kernel/smpboot.c:314
 common_startup_64+0x13b/0x157
 </TASK>
---[ end trace 0000000000000000 ]---
----------------
Code disassembly (best guess):
   0:	cc                   	int3
   1:	cc                   	int3
   2:	cc                   	int3
   3:	b8 53 ae 7a ec       	mov    $0xec7aae53,%eax
   8:	90                   	nop
   9:	90                   	nop
   a:	90                   	nop
   b:	90                   	nop
   c:	90                   	nop
   d:	90                   	nop
   e:	90                   	nop
   f:	90                   	nop
  10:	90                   	nop
  11:	90                   	nop
  12:	90                   	nop
  13:	f3 0f 1e fa          	endbr64
  17:	66 90                	xchg   %ax,%ax
  19:	0f 00 2d 73 bc 41 00 	verw   0x41bc73(%rip)        # 0x41bc93
  20:	f3 0f 1e fa          	endbr64
  24:	55                   	push   %rbp
  25:	48 89 e5             	mov    %rsp,%rbp
  28:	fb                   	sti
  29:	f4                   	hlt
* 2a:	5d                   	pop    %rbp <-- trapping instruction
  2b:	e9 c3 59 02 00       	jmp    0x259f3
  30:	cc                   	int3
  31:	cc                   	int3
  32:	cc                   	int3
  33:	b8 00 00 00 00       	mov    $0x0,%eax
  38:	90                   	nop
  39:	90                   	nop
  3a:	90                   	nop
  3b:	90                   	nop
  3c:	90                   	nop
  3d:	90                   	nop
  3e:	90                   	nop
  3f:	90                   	nop