program:
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10) (async)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10)
setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f0000000180)=@assoc_value={0x0, 0x800}, 0x8)
sendto$inet(r0, &(0x7f0000000300)="ab", 0x14078, 0x0, &(0x7f0000000380)={0x2, 0x4e22, @local}, 0x10) (async)
sendto$inet(r0, &(0x7f0000000300)="ab", 0x14078, 0x0, &(0x7f0000000380)={0x2, 0x4e22, @local}, 0x10)
socket$inet6_tcp(0xa, 0x1, 0x0) (async)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r1, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c)
sendto$inet6(r1, 0x0, 0x0, 0x240540c7, &(0x7f0000000200)={0xa, 0x4e22, 0x0, @loopback}, 0x1c)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$sock_int(r2, 0x1, 0x3c, &(0x7f0000000040)=0x1, 0xfff0)
setsockopt$inet_tcp_TCP_REPAIR(r2, 0x6, 0x13, &(0x7f00000000c0)=0x1, 0x4)
connect$inet(r2, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR(r2, 0x6, 0x13, &(0x7f00000001c0)=0xffffffffffffffff, 0x4)
write$binfmt_elf32(r2, &(0x7f00000014c0)=ANY=[], 0x46b) (async)
write$binfmt_elf32(r2, &(0x7f00000014c0)=ANY=[], 0x46b)
sendmmsg$inet(r2, &(0x7f0000000f40)=[{{0x0, 0x0, &(0x7f0000000500)=[{&(0x7f00000006c0)="ed", 0x1}, {&(0x7f0000000200)="b5", 0x1}, {&(0x7f0000000340)='.', 0xfffffd15}, {&(0x7f0000000140)='U', 0x1}, {&(0x7f0000001400)="f30ff090577787201f7ff3433615de15ea210348a23175f02e7bb429f1c4a8830600000000000000afa4271a04ad227ee5652df16ec5feb2f7be7296429e07f9c091c633cdc182b56301e486203b5518ecdeefc7c5d90fd8249f653c8d14fc876f62d233e58c16ce7bc055f277d01413702af8f1630d02d5a532e2d86c4ff2b81d7f939cb9c8943489e9becaf1905321c2ffc8fb763c21eac9c1172ddd1436c04efe592be17cfbe61e8ad779102afe1cc448222475a54e032aaa0cf73e36cc168ff3a5d722fa68f3475ddf5f1b6b7bba84e6753a", 0x1}], 0x5}}, {{0x0, 0x0, &(0x7f0000000900)=[{&(0x7f0000000580)="f1", 0x1}, {&(0x7f0000000c80)='a', 0xfffffffffffffdb8}, {&(0x7f0000000b40)='M', 0x1}, {&(0x7f0000000d80)='o', 0x1}, {&(0x7f0000000e80)='\b', 0x1}], 0x5}, 0x70040000}, {{0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000000380)="bb", 0x1}, {&(0x7f00000007c0)="a1", 0x1}, {&(0x7f0000000800)='s', 0x1}, {&(0x7f00000009c0)='\\', 0x1}], 0x4}}, {{0x0, 0x0, &(0x7f0000000dc0)=[{&(0x7f0000000240)="883c3f7cf91b8e37e3db11058dc78bd4a36ebc01236a95ffbc4d4bb29166725e1c7cd25b6b2121907060c4308fd8a7b7686b890abd80ad0e50d9107ba7d2f9c702b89f1fbf6a1b4aa6028da76ecceff396a2dfb278e781d68674e5e596582242033326a6967080342616628c35fb279c650e321c7106c7cd86121a", 0x1}, {&(0x7f0000000840)}, {&(0x7f0000001040)="96", 0x1}], 0x3}}], 0x4, 0x4048841)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), 0xffffffffffffffff)
sendto$inet6(r1, &(0x7f00000003c0)='\x00', 0x1, 0x20040005, 0x0, 0x0) (async)
sendto$inet6(r1, &(0x7f00000003c0)='\x00', 0x1, 0x20040005, 0x0, 0x0)
poll(&(0x7f0000000000)=[{r1}], 0x1, 0xef)
recvmsg(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000002600)=[{&(0x7f0000000400)=""/4096, 0xfffc}], 0x1}, 0x0) (async)
recvmsg(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000002600)=[{&(0x7f0000000400)=""/4096, 0xfffc}], 0x1}, 0x0)

[   73.324287][ T5307] Bluetooth: hci0: command tx timeout
[   73.530242][ T5326] TCP: out of memory -- consider tuning tcp_mem
[   73.538293][ T5326] ------------[ cut here ]------------
[   73.541222][ T5326] WARNING: CPU: 0 PID: 5326 at net/ipv4/af_inet.c:156 inet_sock_destruct+0x623/0x730
[   73.545751][ T5326] Modules linked in:
[   73.547469][ T5326] CPU: 0 UID: 0 PID: 5326 Comm: syz.0.0 Not tainted 6.16.0-rc1-syzkaller-00239-g08215f5486ec #0 PREEMPT(full) 
[   73.553272][ T5326] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   73.558696][ T5326] RIP: 0010:inet_sock_destruct+0x623/0x730
[   73.562613][ T5326] Code: 0f 0b 90 e9 62 fe ff ff e8 ba a3 d1 f7 90 0f 0b 90 e9 95 fe ff ff e8 ac a3 d1 f7 90 0f 0b 90 e9 bb fe ff ff e8 9e a3 d1 f7 90 <0f> 0b 90 e9 e1 fe ff ff 89 f9 80 e1 07 80 c1 03 38 c1 0f 8c 9f fc
[   73.571549][ T5326] RSP: 0018:ffffc9000d37fab8 EFLAGS: 00010293
[   73.574511][ T5326] RAX: ffffffff89eeb8a2 RBX: dffffc0000000000 RCX: ffff888000dda440
[   73.578786][ T5326] RDX: 0000000000000000 RSI: 0000000080002000 RDI: 0000000000000000
[   73.582793][ T5326] RBP: 0000000080002000 R08: ffff888033741c1f R09: 1ffff110066e8383
[   73.586347][ T5326] R10: dffffc0000000000 R11: ffffed10066e8384 R12: ffff888033741980
[   73.589817][ T5326] R13: dffffc0000000000 R14: ffff888033741c04 R15: 1ffff110066e8332
[   73.593843][ T5326] FS:  0000000000000000(0000) GS:ffff88808d251000(0000) knlGS:0000000000000000
[   73.598353][ T5326] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   73.601219][ T5326] CR2: 0000000000000000 CR3: 0000000042b57000 CR4: 0000000000352ef0
[   73.604750][ T5326] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   73.608129][ T5326] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   73.611419][ T5326] Call Trace:
[   73.612848][ T5326]  <TASK>
[   73.614014][ T5326]  ? netlink_has_listeners+0x339/0x3f0
[   73.616273][ T5326]  ? __pfx_inet_sock_destruct+0x10/0x10
[   73.618564][ T5326]  __sk_destruct+0x86/0x660
[   73.620522][ T5326]  inet_release+0x184/0x210
[   73.622656][ T5326]  sock_close+0xc3/0x240
[   73.624536][ T5326]  ? __pfx_sock_close+0x10/0x10
[   73.626537][ T5326]  __fput+0x44c/0xa70
[   73.628160][ T5326]  task_work_run+0x1d1/0x260
[   73.630021][ T5326]  ? __pfx_task_work_run+0x10/0x10
[   73.632333][ T5326]  do_exit+0x6ad/0x22e0
[   73.636040][ T5326]  ? preempt_schedule_common+0x83/0xd0
[   73.639136][ T5326]  ? preempt_schedule+0xae/0xc0
[   73.642510][ T5326]  ? __pfx_do_exit+0x10/0x10
[   73.644603][ T5326]  ? preempt_schedule_thunk+0x16/0x30
[   73.646829][ T5326]  do_group_exit+0x21c/0x2d0
[   73.648762][ T5326]  __x64_sys_exit_group+0x3f/0x40
[   73.653554][ T5326]  x64_sys_call+0x21ba/0x21c0
[   73.656083][ T5326]  do_syscall_64+0xfa/0x3b0
[   73.658333][ T5326]  ? lockdep_hardirqs_on+0x9c/0x150
[   73.660647][ T5326]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   73.663382][ T5326]  ? clear_bhb_loop+0x60/0xb0
[   73.665456][ T5326]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   73.668160][ T5326] RIP: 0033:0x7f1bdb18e929
[   73.670518][ T5326] Code: Unable to access opcode bytes at 0x7f1bdb18e8ff.
[   73.674329][ T5326] RSP: 002b:00007ffc5bc034f8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[   73.677861][ T5326] RAX: ffffffffffffffda RBX: 000000000000000b RCX: 00007f1bdb18e929
[   73.681319][ T5326] RDX: 00007f1bdb145f37 RSI: 0000000000000000 RDI: 000000000000000b
[   73.685008][ T5326] RBP: 0000000000000003 R08: 00007ffc5bc040d7 R09: 000000000000000b
[   73.688842][ T5326] R10: 00007f1bdb3b5fa0 R11: 0000000000000246 R12: 00007f1bdb3b624c
[   73.692378][ T5326] R13: 00007f1bdb3b6240 R14: 0000000000001563 R15: 0000000000000003
[   73.695962][ T5326]  </TASK>
[   73.697536][ T5326] Kernel panic - not syncing: kernel: panic_on_warn set ...
[   73.700991][ T5326] CPU: 0 UID: 0 PID: 5326 Comm: syz.0.0 Not tainted 6.16.0-rc1-syzkaller-00239-g08215f5486ec #0 PREEMPT(full) 
[   73.705997][ T5326] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   73.711030][ T5326] Call Trace:
[   73.712507][ T5326]  <TASK>
[   73.713838][ T5326]  dump_stack_lvl+0x99/0x250
[   73.715854][ T5326]  ? __asan_memcpy+0x40/0x70
[   73.717808][ T5326]  ? __pfx_dump_stack_lvl+0x10/0x10
[   73.720085][ T5326]  ? __pfx__printk+0x10/0x10
[   73.722196][ T5326]  panic+0x2db/0x790
[   73.724119][ T5326]  ? __pfx_panic+0x10/0x10
[   73.726528][ T5326]  __warn+0x31b/0x4b0
[   73.728466][ T5326]  ? inet_sock_destruct+0x623/0x730
[   73.730760][ T5326]  ? inet_sock_destruct+0x623/0x730
[   73.732985][ T5326]  report_bug+0x2be/0x4f0
[   73.734875][ T5326]  ? inet_sock_destruct+0x623/0x730
[   73.737089][ T5326]  ? inet_sock_destruct+0x623/0x730
[   73.739503][ T5326]  ? inet_sock_destruct+0x625/0x730
[   73.742149][ T5326]  handle_bug+0x84/0x160
[   73.744488][ T5326]  exc_invalid_op+0x1a/0x50
[   73.746912][ T5326]  asm_exc_invalid_op+0x1a/0x20
[   73.749012][ T5326] RIP: 0010:inet_sock_destruct+0x623/0x730
[   73.751469][ T5326] Code: 0f 0b 90 e9 62 fe ff ff e8 ba a3 d1 f7 90 0f 0b 90 e9 95 fe ff ff e8 ac a3 d1 f7 90 0f 0b 90 e9 bb fe ff ff e8 9e a3 d1 f7 90 <0f> 0b 90 e9 e1 fe ff ff 89 f9 80 e1 07 80 c1 03 38 c1 0f 8c 9f fc
[   73.759664][ T5326] RSP: 0018:ffffc9000d37fab8 EFLAGS: 00010293
[   73.762885][ T5326] RAX: ffffffff89eeb8a2 RBX: dffffc0000000000 RCX: ffff888000dda440
[   73.767464][ T5326] RDX: 0000000000000000 RSI: 0000000080002000 RDI: 0000000000000000
[   73.770615][ T5326] RBP: 0000000080002000 R08: ffff888033741c1f R09: 1ffff110066e8383
[   73.773786][ T5326] R10: dffffc0000000000 R11: ffffed10066e8384 R12: ffff888033741980
[   73.777120][ T5326] R13: dffffc0000000000 R14: ffff888033741c04 R15: 1ffff110066e8332
[   73.780578][ T5326]  ? inet_sock_destruct+0x622/0x730
[   73.783204][ T5326]  ? inet_sock_destruct+0x622/0x730
[   73.786072][ T5326]  ? netlink_has_listeners+0x339/0x3f0
[   73.788635][ T5326]  ? __pfx_inet_sock_destruct+0x10/0x10
[   73.791040][ T5326]  __sk_destruct+0x86/0x660
[   73.793065][ T5326]  inet_release+0x184/0x210
[   73.795064][ T5326]  sock_close+0xc3/0x240
[   73.796908][ T5326]  ? __pfx_sock_close+0x10/0x10
[   73.799304][ T5326]  __fput+0x44c/0xa70
[   73.801640][ T5326]  task_work_run+0x1d1/0x260
[   73.804385][ T5326]  ? __pfx_task_work_run+0x10/0x10
[   73.807006][ T5326]  do_exit+0x6ad/0x22e0
[   73.808620][ T5326]  ? preempt_schedule_common+0x83/0xd0
[   73.811003][ T5326]  ? preempt_schedule+0xae/0xc0
[   73.813262][ T5326]  ? __pfx_do_exit+0x10/0x10
[   73.815315][ T5326]  ? preempt_schedule_thunk+0x16/0x30
[   73.817613][ T5326]  do_group_exit+0x21c/0x2d0
[   73.819709][ T5326]  __x64_sys_exit_group+0x3f/0x40
[   73.821937][ T5326]  x64_sys_call+0x21ba/0x21c0
[   73.824277][ T5326]  do_syscall_64+0xfa/0x3b0
[   73.826764][ T5326]  ? lockdep_hardirqs_on+0x9c/0x150
[   73.829800][ T5326]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   73.832797][ T5326]  ? clear_bhb_loop+0x60/0xb0
[   73.834960][ T5326]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   73.837534][ T5326] RIP: 0033:0x7f1bdb18e929
[   73.839561][ T5326] Code: Unable to access opcode bytes at 0x7f1bdb18e8ff.
[   73.842739][ T5326] RSP: 002b:00007ffc5bc034f8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[   73.846496][ T5326] RAX: ffffffffffffffda RBX: 000000000000000b RCX: 00007f1bdb18e929
[   73.850368][ T5326] RDX: 00007f1bdb145f37 RSI: 0000000000000000 RDI: 000000000000000b
[   73.853882][ T5326] RBP: 0000000000000003 R08: 00007ffc5bc040d7 R09: 000000000000000b
[   73.857250][ T5326] R10: 00007f1bdb3b5fa0 R11: 0000000000000246 R12: 00007f1bdb3b624c
[   73.861040][ T5326] R13: 00007f1bdb3b6240 R14: 0000000000001563 R15: 0000000000000003
[   73.864408][ T5326]  </TASK>
[   73.866020][ T5326] Kernel Offset: disabled
[   73.867928][ T5326] Rebooting in 86400 seconds..