------------[ cut here ]------------
sk->sk_forward_alloc
WARNING: net/ipv4/af_inet.c:162 at inet_sock_destruct+0x653/0x800 net/ipv4/af_inet.c:162, CPU#2: klogd/5133
Modules linked in:
CPU: 2 UID: 0 PID: 5133 Comm: klogd Not tainted syzkaller #0 PREEMPT(full) 
Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
RIP: 0010:inet_sock_destruct+0x653/0x800 net/ipv4/af_inet.c:162
Code: 2f 4d ff e9 06 fd ff ff e8 ea 7d fd f7 90 0f 0b 90 e9 35 fe ff ff e8 dc 7d fd f7 90 0f 0b 90 e9 c5 fe ff ff e8 ce 7d fd f7 90 <0f> 0b 90 e9 04 ff ff ff e8 c0 7d fd f7 90 0f 0b 90 e9 65 fe ff ff
RSP: 0018:ffffc90000648da8 EFLAGS: 00010246
RAX: 0000000000000000 RBX: ffff888023b0dd80 RCX: ffffffff8a0b31d7
RDX: ffff88802bae2500 RSI: ffffffff8a0b32d2 RDI: ffff88802bae2500
RBP: 0000000000000f70 R08: 0000000000000005 R09: 0000000000000000
R10: 0000000000000f70 R11: 0000000000000000 R12: ffff888023b0dd80
R13: ffff888023b0de10 R14: ffffffff81ee353d R15: 0000000000000002
FS:  00007f59fe23ac80(0000) GS:ffff8880d656d000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 0000200000010000 CR3: 000000002ed24000 CR4: 0000000000352ef0
Call Trace:
 <IRQ>
 __sk_destruct+0x85/0xab0 net/core/sock.c:2352
 rcu_do_batch kernel/rcu/tree.c:2617 [inline]
 rcu_core+0x5a2/0x10d0 kernel/rcu/tree.c:2869
 handle_softirqs+0x1ea/0xa00 kernel/softirq.c:622
 do_softirq kernel/softirq.c:523 [inline]
 do_softirq+0xac/0xe0 kernel/softirq.c:510
 </IRQ>
 <TASK>
 __local_bh_enable_ip+0xf8/0x120 kernel/softirq.c:450
 local_bh_enable include/linux/bottom_half.h:33 [inline]
 __alloc_skb+0x5db/0x710 net/core/skbuff.c:697
 alloc_skb include/linux/skbuff.h:1383 [inline]
 alloc_skb_with_frags+0xdd/0x760 net/core/skbuff.c:6734
 sock_alloc_send_pskb+0x801/0x980 net/core/sock.c:2998
 unix_dgram_sendmsg+0x3c7/0x1810 net/unix/af_unix.c:2141
 sock_sendmsg_nosec net/socket.c:787 [inline]
 __sock_sendmsg net/socket.c:802 [inline]
 __sys_sendto+0x468/0x4b0 net/socket.c:2265
 __do_sys_sendto net/socket.c:2272 [inline]
 __se_sys_sendto net/socket.c:2268 [inline]
 __x64_sys_sendto+0xe0/0x1c0 net/socket.c:2268
 do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]
 do_syscall_64+0x10b/0xf80 arch/x86/entry/syscall_64.c:94
 entry_SYSCALL_64_after_hwframe+0x77/0x7f
RIP: 0033:0x7f59fe38a407
Code: 48 89 fa 4c 89 df e8 38 aa 00 00 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 1a 5b c3 0f 1f 84 00 00 00 00 00 48 8b 44 24 10 0f 05 <5b> c3 0f 1f 80 00 00 00 00 83 e2 39 83 fa 08 75 de e8 23 ff ff ff
RSP: 002b:00007ffc8c7b4460 EFLAGS: 00000202 ORIG_RAX: 000000000000002c
RAX: ffffffffffffffda RBX: 00007f59fe23ac80 RCX: 00007f59fe38a407
RDX: 000000000000005f RSI: 00007ffc8c7b45a0 RDI: 0000000000000003
RBP: 00007ffc8c7b49d0 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000004000 R11: 0000000000000202 R12: 00007ffc8c7b49e8
R13: 00007ffc8c7b45a0 R14: 0000000000000044 R15: 00007ffc8c7b45a0
 </TASK>