------------[ cut here ]------------
WARNING: CPU: 1 PID: 148 at net/ipv4/af_inet.c:156 inet_sock_destruct+0x623/0x730 net/ipv4/af_inet.c:156
Modules linked in:
CPU: 1 UID: 0 PID: 148 Comm: kworker/u8:5 Not tainted 6.16.0-rc6-syzkaller-01646-g56613001dfc9 #0 PREEMPT(full)
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
Workqueue: wg-kex-wg2 wg_packet_handshake_send_worker
RIP: 0010:inet_sock_destruct+0x623/0x730 net/ipv4/af_inet.c:156
Code: 0f 0b 90 e9 62 fe ff ff e8 ca 3b c9 f7 90 0f 0b 90 e9 95 fe ff ff e8 bc 3b c9 f7 90 0f 0b 90 e9 bb fe ff ff e8 ae 3b c9 f7 90 <0f> 0b 90 e9 e1 fe ff ff 89 f9 80 e1 07 80 c1 03 38 c1 0f 8c 9f fc
RSP: 0018:ffffc90000a08b48 EFLAGS: 00010246
RAX: ffffffff89f6eea2 RBX: dffffc0000000000 RCX: ffff888020f81e00
RDX: 0000000000000100 RSI: 0000000000000ffe RDI: 0000000000000000
RBP: 0000000000000ffe R08: ffff88807eefc61f R09: 1ffff1100fddf8c3
R10: dffffc0000000000 R11: ffffed100fddf8c4 R12: ffff88807eefc380
R13: dffffc0000000000 R14: ffff88807eefc604 R15: 1ffff1100fddf872
FS: 0000000000000000(0000) GS:ffff888125d15000(0000) knlGS:0000000000000000
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00002000000f6030 CR3: 00000000440c2000 CR4: 00000000003526f0
Call Trace:
__sk_destruct+0x89/0x660 net/core/sock.c:2339
rcu_do_batch kernel/rcu/tree.c:2576 [inline]
rcu_core+0xca8/0x1710 kernel/rcu/tree.c:2832
handle_softirqs+0x286/0x870 kernel/softirq.c:579
__do_softirq kernel/softirq.c:613 [inline]
invoke_softirq kernel/softirq.c:453 [inline]
__irq_exit_rcu+0xca/0x1f0 kernel/softirq.c:680
irq_exit_rcu+0x9/0x30 kernel/softirq.c:696
instr_sysvec_apic_timer_interrupt arch/x86/kernel/apic/apic.c:1050 [inline]
sysvec_apic_timer_interrupt+0xa6/0xc0 arch/x86/kernel/apic/apic.c:1050
asm_sysvec_apic_timer_interrupt+0x1a/0x20 arch/x86/include/asm/idtentry.h:702
RIP: 0010:memset_orig+0x75/0xb0 arch/x86/lib/memset_64.S:92
Code: 89 47 30 48 89 47 38 48 8d 7f 40 75 d8 0f 1f 84 00 00 00 00 00 89 d1 83 e1 38 74 14 c1 e9 03 66 0f 1f 44 00 00 ff c9 48 89 07 <48> 8d 7f 08 75 f5 83 e2 07 74 0a ff ca 88 07 48 8d 7f 01 75 f6 4c
RSP: 0018:ffffc90002f072b8 EFLAGS: 00000202
RAX: 0000000000000000 RBX: ffffc90002f07340 RCX: 0000000000000002
RDX: 0000000000000038 RSI: 0000000000000000 RDI: ffffc90002f07398
RBP: 0000000000000001 R08: 0000000000000007 R09: 0000000000000001
R10: ffffc90002f07371 R11: fffff520005e0e76 R12: 0000000000000001
R13: ffffc90002f07370 R14: ffffc90002f073b0 R15: 1ffff920005e0e76
blake2s_final+0xec/0x260 lib/crypto/blake2s.c:52
hmac+0x1c6/0x330 drivers/net/wireguard/noise.c:325
kdf+0x105/0x270 drivers/net/wireguard/noise.c:367
mix_precomputed_dh drivers/net/wireguard/noise.c:426 [inline]
wg_noise_handshake_create_initiation+0x462/0x7e0 drivers/net/wireguard/noise.c:560
wg_packet_send_handshake_initiation drivers/net/wireguard/send.c:34 [inline]
wg_packet_handshake_send_worker+0x163/0x320 drivers/net/wireguard/send.c:51
process_one_work kernel/workqueue.c:3238 [inline]
process_scheduled_works+0xae1/0x17b0 kernel/workqueue.c:3321
worker_thread+0x8a0/0xda0 kernel/workqueue.c:3402
kthread+0x70e/0x8a0 kernel/kthread.c:464
ret_from_fork+0x3fc/0x770 arch/x86/kernel/process.c:148
ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:245
----------------
Code disassembly (best guess):
0: 89 47 30 mov %eax,0x30(%rdi)
3: 48 89 47 38 mov %rax,0x38(%rdi)
7: 48 8d 7f 40 lea 0x40(%rdi),%rdi
b: 75 d8 jne 0xffffffe5
d: 0f 1f 84 00 00 00 00 nopl 0x0(%rax,%rax,1)
14: 00
15: 89 d1 mov %edx,%ecx
17: 83 e1 38 and $0x38,%ecx
1a: 74 14 je 0x30
1c: c1 e9 03 shr $0x3,%ecx
1f: 66 0f 1f 44 00 00 nopw 0x0(%rax,%rax,1)
25: ff c9 dec %ecx
27: 48 89 07 mov %rax,(%rdi)
* 2a: 48 8d 7f 08 lea 0x8(%rdi),%rdi <-- trapping instruction
2e: 75 f5 jne 0x25
30: 83 e2 07 and $0x7,%edx
33: 74 0a je 0x3f
35: ff ca dec %edx
37: 88 07 mov %al,(%rdi)
39: 48 8d 7f 01 lea 0x1(%rdi),%rdi
3d: 75 f6 jne 0x35
3f: 4c rex.WR