------------[ cut here ]------------
WARNING: CPU: 0 PID: 3176 at net/ipv4/af_inet.c:156 inet_sock_destruct+0x508/0x63c net/ipv4/af_inet.c:155
Modules linked in:
CPU: 0 PID: 3176 Comm: sshd Not tainted 6.9.0-rc5-syzkaller #0
Hardware name: linux,dummy-virt (DT)
pstate: 10000005 (nzcV daif -PAN -UAO -TCO -DIT -SSBS BTYPE=--)
pc : inet_sock_destruct+0x508/0x63c net/ipv4/af_inet.c:156
lr : instrument_atomic_read include/linux/instrumented.h:68 [inline]
lr : atomic_read include/linux/atomic/atomic-instrumented.h:32 [inline]
lr : refcount_read include/linux/refcount.h:136 [inline]
lr : inet_sock_destruct+0x320/0x63c net/ipv4/af_inet.c:154
sp : ffff800080007c50
x29: ffff800080007c50 x28: ffff000015c98d90 x27: 1fffe00002b9323e
x26: ffff00000eed9e00 x25: ffff000015c991e8 x24: 1fffe00002b931b2
x23: ffff800084f2b380 x22: ffff000015c98d28 x21: 1fffe00002b931a5
x20: ffff000015c98d00 x19: ffff800087cdb320 x18: ffff00000eeda870
x17: ffff7fffe3fca000 x16: 0000000000000006 x15: 1fffe00001ddb50d
x14: 1fffe00001ddb512 x13: 1fffe00001ddb50a x12: ffff600002b931f4
x11: 1fffe00002b931f3 x10: ffff600002b931f3 x9 : dfff800000000000
x8 : ffff000015c98f9f x7 : 0000000000000001 x6 : ffff600002b931f3
x5 : ffff000015c98f9c x4 : ffff600002b931f4 x3 : 1fffe00002b931f0
x2 : 0000000000000000 x1 : 0000000000000007 x0 : 0000000000000400
Call trace:
 inet_sock_destruct+0x508/0x63c net/ipv4/af_inet.c:155
 inet6_sock_destruct+0x20/0x30 net/ipv6/af_inet6.c:116
 __sk_destruct+0x4c/0x548 net/core/sock.c:2175
 rcu_do_batch kernel/rcu/tree.c:2196 [inline]
 rcu_core+0x960/0x1bd0 kernel/rcu/tree.c:2471
 rcu_core_si+0x10/0x1c kernel/rcu/tree.c:2488
 __do_softirq+0x2e8/0xde8 kernel/softirq.c:554
 ____do_softirq+0x10/0x1c arch/arm64/kernel/irq.c:81
 call_on_irq_stack+0x24/0x4c arch/arm64/kernel/entry.S:889
 do_softirq_own_stack+0x1c/0x2c arch/arm64/kernel/irq.c:86
 do_softirq kernel/softirq.c:455 [inline]
 do_softirq+0x12c/0x150 kernel/softirq.c:442
 __local_bh_enable_ip+0x410/0x4a0 kernel/softirq.c:382
 __raw_spin_unlock_bh include/linux/spinlock_api_smp.h:167 [inline]
 _raw_spin_unlock_bh+0x44/0x54 kernel/locking/spinlock.c:210
 spin_unlock_bh include/linux/spinlock.h:396 [inline]
 release_sock+0x138/0x194 net/core/sock.c:3559
 tcp_sendmsg+0x48/0x60 net/ipv4/tcp.c:1343
 inet_sendmsg+0x90/0xd4 net/ipv4/af_inet.c:851
 sock_sendmsg_nosec net/socket.c:730 [inline]
 __sock_sendmsg+0xc8/0x168 net/socket.c:745
 sock_write_iter+0x1cc/0x300 net/socket.c:1160
 call_write_iter include/linux/fs.h:2110 [inline]
 new_sync_write fs/read_write.c:497 [inline]
 vfs_write+0x750/0xa98 fs/read_write.c:590
 ksys_write+0x190/0x1dc fs/read_write.c:643
 __do_sys_write fs/read_write.c:655 [inline]
 __se_sys_write fs/read_write.c:652 [inline]
 __arm64_sys_write+0x6c/0x9c fs/read_write.c:652
 __invoke_syscall arch/arm64/kernel/syscall.c:34 [inline]
 invoke_syscall+0x6c/0x25c arch/arm64/kernel/syscall.c:48
 el0_svc_common.constprop.0+0xac/0x230 arch/arm64/kernel/syscall.c:133
 do_el0_svc+0x40/0x58 arch/arm64/kernel/syscall.c:152
 el0_svc+0x50/0x180 arch/arm64/kernel/entry-common.c:712
 el0t_64_sync_handler+0x100/0x12c arch/arm64/kernel/entry-common.c:730
 el0t_64_sync+0x190/0x194 arch/arm64/kernel/entry.S:598
irq event stamp: 6962137
hardirqs last  enabled at (6962136): [<ffff800084e8e824>] __raw_spin_unlock_irqrestore include/linux/spinlock_api_smp.h:151 [inline]
hardirqs last  enabled at (6962136): [<ffff800084e8e824>] _raw_spin_unlock_irqrestore+0x80/0xac kernel/locking/spinlock.c:194
hardirqs last disabled at (6962137): [<ffff800084e64700>] el1_dbg+0x24/0x9c arch/arm64/kernel/entry-common.c:470
softirqs last  enabled at (6962102): [<ffff800083eeae08>] spin_unlock_bh include/linux/spinlock.h:396 [inline]
softirqs last  enabled at (6962102): [<ffff800083eeae08>] release_sock+0x138/0x194 net/core/sock.c:3559
softirqs last disabled at (6962103): [<ffff80008001972c>] ____do_softirq+0x10/0x1c arch/arm64/kernel/irq.c:81
---[ end trace 0000000000000000 ]---