------------[ cut here ]------------
WARNING: CPU: 0 PID: 11703 at net/mptcp/subflow.c:1406 subflow_data_ready+0x370/0x618 net/mptcp/subflow.c:1405
Modules linked in:
CPU: 0 PID: 11703 Comm: syz-executor.0 Not tainted 6.7.0-rc6-syzkaller-gaafe7ad77b91 #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/10/2023
pstate: 00400005 (nzcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)
pc : subflow_data_ready+0x370/0x618 net/mptcp/subflow.c:1405
lr : subflow_data_ready+0x370/0x618 net/mptcp/subflow.c:1405
sp : ffff800080007030
x29: ffff800080007030 x28: ffff0000d55f48a8 x27: ffff700010000e38
x26: ffff0000d55f3d40 x25: 0000000000000800 x24: ffff0000c6421e00
x23: dfff800000000000 x22: ffff80008e4ed3a0 x21: 0000000000000000
x20: ffff0000cbbc0000 x19: ffff0000d55f3d40 x18: ffff8000800069a0
x17: 000000000003dc0c x16: ffff80008051bad0 x15: 0000000000000001
x14: 1fffe0001aabe7aa x13: 0000000000000000 x12: 0000000000000000
x11: ffff60001aabe7ab x10: 0000000000ff0100 x9 : 0000000000000000
x8 : ffff0000d8ee5a00 x7 : 0000000000000000 x6 : 0000000000000000
x5 : 0000000000000001 x4 : 0000000000000000 x3 : ffff80008a72b298
x2 : 0000000000000000 x1 : 0000000000000000 x0 : 0000000000000000
Call trace:
 subflow_data_ready+0x370/0x618 net/mptcp/subflow.c:1405
 tcp_data_ready+0x22c/0x44c net/ipv4/tcp_input.c:5150
 tcp_data_queue+0x1810/0x4db0 net/ipv4/tcp_input.c:5230
 tcp_rcv_state_process+0x20d8/0x3eec net/ipv4/tcp_input.c:6866
 tcp_v4_do_rcv+0x5f0/0xe08 net/ipv4/tcp_ipv4.c:1929
 tcp_v4_rcv+0x2274/0x2c28 net/ipv4/tcp_ipv4.c:2329
 ip_protocol_deliver_rcu+0x1f8/0x47c net/ipv4/ip_input.c:205
 ip_local_deliver_finish+0x23c/0x46c net/ipv4/ip_input.c:233
 NF_HOOK+0x328/0x3d4 include/linux/netfilter.h:314
 ip_local_deliver+0x120/0x194 net/ipv4/ip_input.c:254
 dst_input include/net/dst.h:461 [inline]
 ip_rcv_finish+0x224/0x250 net/ipv4/ip_input.c:449
 NF_HOOK+0x328/0x3d4 include/linux/netfilter.h:314
 ip_rcv+0x7c/0x9c net/ipv4/ip_input.c:569
 __netif_receive_skb_one_core net/core/dev.c:5529 [inline]
 __netif_receive_skb+0x18c/0x400 net/core/dev.c:5643
 process_backlog+0x3c0/0x70c net/core/dev.c:5971
 __napi_poll+0xb4/0x650 net/core/dev.c:6533
 napi_poll net/core/dev.c:6602 [inline]
 net_rx_action+0x5e4/0xdc4 net/core/dev.c:6735
 __do_softirq+0x2d8/0xce4 kernel/softirq.c:553
 ____do_softirq+0x14/0x20 arch/arm64/kernel/irq.c:81
 call_on_irq_stack+0x24/0x4c arch/arm64/kernel/entry.S:886
 do_softirq_own_stack+0x20/0x2c arch/arm64/kernel/irq.c:86
 do_softirq+0x90/0xf8 kernel/softirq.c:454
 __local_bh_enable_ip+0x288/0x44c kernel/softirq.c:381
 local_bh_enable+0x28/0x34 include/linux/bottom_half.h:33
 put_cpu_fpsimd_context arch/arm64/kernel/fpsimd.c:244 [inline]
 fpsimd_restore_current_state+0x64/0xec arch/arm64/kernel/fpsimd.c:1755
 do_notify_resume+0x1960/0x393c arch/arm64/kernel/signal.c:1308
 exit_to_user_mode_prepare arch/arm64/kernel/entry-common.c:137 [inline]
 exit_to_user_mode arch/arm64/kernel/entry-common.c:144 [inline]
 el0_svc+0x9c/0x158 arch/arm64/kernel/entry-common.c:679
 el0t_64_sync_handler+0x84/0xfc arch/arm64/kernel/entry-common.c:696
 el0t_64_sync+0x190/0x194 arch/arm64/kernel/entry.S:595
irq event stamp: 3583
hardirqs last  enabled at (3582): [<ffff80008a91868c>] __raw_spin_unlock_irqrestore include/linux/spinlock_api_smp.h:151 [inline]
hardirqs last  enabled at (3582): [<ffff80008a91868c>] _raw_spin_unlock_irqrestore+0x38/0x98 kernel/locking/spinlock.c:194
hardirqs last disabled at (3583): [<ffff80008a826c2c>] el1_dbg+0x24/0x80 arch/arm64/kernel/entry-common.c:436
softirqs last  enabled at (3526): [<ffff80008003144c>] local_bh_enable+0x10/0x34 include/linux/bottom_half.h:32
softirqs last disabled at (3527): [<ffff80008002aadc>] ____do_softirq+0x14/0x20 arch/arm64/kernel/irq.c:81
---[ end trace 0000000000000000 ]---