------------[ cut here ]------------
WARNING: CPU: 1 PID: 3239 at net/core/stream.c:205 sk_stream_kill_queues+0x2ee/0x3d0 net/core/stream.c:205
Modules linked in:
CPU: 1 PID: 3239 Comm: syz-executor.2 Not tainted 5.15.0-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
RIP: 0010:sk_stream_kill_queues+0x2ee/0x3d0 net/core/stream.c:205
Code: 5e 41 5f e9 c4 58 5c fa e8 bf 58 5c fa 89 ee 48 89 df e8 75 9a fb ff e9 64 ff ff ff e8 ab 58 5c fa 0f 0b eb 9b e8 a2 58 5c fa <0f> 0b eb c7 e8 99 58 5c fa 0f 0b e9 65 fe ff ff e8 cd c2 a2 fa e9
RSP: 0018:ffffc90000dc0c28 EFLAGS: 00010246
RAX: 0000000000000000 RBX: 00000000000004ff RCX: 0000000000000100
RDX: ffff888079de1d00 RSI: ffffffff871b19ee RDI: 0000000000000003
RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
R10: ffffffff871b19b5 R11: 0000000000000000 R12: ffff888079fe9a18
R13: ffff888079fe99a8 R14: ffff888079fe9828 R15: 0000000000000000
FS:  00007fe2aa047700(0000) GS:ffff8880b9d00000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 0000001b3044f000 CR3: 0000000025160000 CR4: 00000000003506e0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
Call Trace:
 <IRQ>
 inet_csk_destroy_sock+0x1a5/0x440 net/ipv4/inet_connection_sock.c:1012
 tcp_done+0x233/0x330 net/ipv4/tcp.c:4417
 tcp_write_err net/ipv4/tcp_timer.c:74 [inline]
 tcp_probe_timer net/ipv4/tcp_timer.c:395 [inline]
 tcp_write_timer_handler+0x447/0xbc0 net/ipv4/tcp_timer.c:626
 tcp_write_timer+0xa2/0x2b0 net/ipv4/tcp_timer.c:642
 call_timer_fn+0x1a5/0x6b0 kernel/time/timer.c:1421
 expire_timers kernel/time/timer.c:1466 [inline]
 __run_timers.part.0+0x675/0xa20 kernel/time/timer.c:1734
 __run_timers kernel/time/timer.c:1715 [inline]
 run_timer_softirq+0xb3/0x1d0 kernel/time/timer.c:1747
 __do_softirq+0x29b/0x9c2 kernel/softirq.c:558
 invoke_softirq kernel/softirq.c:432 [inline]
 __irq_exit_rcu+0x123/0x180 kernel/softirq.c:636
 irq_exit_rcu+0x5/0x20 kernel/softirq.c:648
 sysvec_apic_timer_interrupt+0x93/0xc0 arch/x86/kernel/apic/apic.c:1097
 </IRQ>
 <TASK>
 asm_sysvec_apic_timer_interrupt+0x12/0x20 arch/x86/include/asm/idtentry.h:638
RIP: 0010:ima_read_xattr+0x0/0x70 security/integrity/ima/ima_appraise.c:218
Code: ff ff e8 53 1f 8c 05 e8 5e 8e 12 fe e9 27 ff ff ff e8 54 8e 12 fe e9 38 fe ff ff e8 4a 8e 12 fe eb a5 0f 1f 84 00 00 00 00 00 <41> 54 49 89 f4 55 48 89 fd 53 e8 11 24 cc fd 45 31 c0 4c 89 e1 48
RSP: 0018:ffffc90004f6f750 EFLAGS: 00000212
RAX: 0000000000010369 RBX: ffff888085953400 RCX: ffffc9000d8e3000
RDX: 0000000000040000 RSI: ffffc90004f6f858 RDI: ffff88806cd625e0
RBP: 1ffff920009edef7 R08: 0000000000000000 R09: 000000008ccb3000
R10: ffffffff83a9f520 R11: 0000000000000000 R12: 0000000000000000
R13: ffff88806cd625e0 R14: 0000000000000000 R15: 0000000000000001
 process_measurement+0xcae/0x1920 security/integrity/ima/ima_main.c:319
 ima_file_check+0xb1/0x100 security/integrity/ima/ima_main.c:516
 do_open fs/namei.c:3428 [inline]
 path_openat+0x1643/0x2740 fs/namei.c:3559
 do_filp_open+0x1aa/0x400 fs/namei.c:3586
 do_sys_openat2+0x16d/0x4d0 fs/open.c:1200
 do_sys_open fs/open.c:1216 [inline]
 __do_sys_openat fs/open.c:1232 [inline]
 __se_sys_openat fs/open.c:1227 [inline]
 __x64_sys_openat+0x13f/0x1f0 fs/open.c:1227
 do_syscall_x64 arch/x86/entry/common.c:50 [inline]
 do_syscall_64+0x35/0xb0 arch/x86/entry/common.c:80
 entry_SYSCALL_64_after_hwframe+0x44/0xae
RIP: 0033:0x7fe2acad1ae9
Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
RSP: 002b:00007fe2aa047188 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
RAX: ffffffffffffffda RBX: 00007fe2acbe4f60 RCX: 00007fe2acad1ae9
RDX: 000000000000275a RSI: 0000000020000040 RDI: ffffffffffffff9c
RBP: 00007fe2acb2bf25 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
R13: 00007ffe94f89a2f R14: 00007fe2aa047300 R15: 0000000000022000
 </TASK>
----------------
Code disassembly (best guess), 2 bytes skipped:
   0:	e8 53 1f 8c 05       	callq  0x58c1f58
   5:	e8 5e 8e 12 fe       	callq  0xfe128e68
   a:	e9 27 ff ff ff       	jmpq   0xffffff36
   f:	e8 54 8e 12 fe       	callq  0xfe128e68
  14:	e9 38 fe ff ff       	jmpq   0xfffffe51
  19:	e8 4a 8e 12 fe       	callq  0xfe128e68
  1e:	eb a5                	jmp    0xffffffc5
  20:	0f 1f 84 00 00 00 00 	nopl   0x0(%rax,%rax,1)
  27:	00
* 28:	41 54                	push   %r12 <-- trapping instruction
  2a:	49 89 f4             	mov    %rsi,%r12
  2d:	55                   	push   %rbp
  2e:	48 89 fd             	mov    %rdi,%rbp
  31:	53                   	push   %rbx
  32:	e8 11 24 cc fd       	callq  0xfdcc2448
  37:	45 31 c0             	xor    %r8d,%r8d
  3a:	4c 89 e1             	mov    %r12,%rcx
  3d:	48                   	rex.W