------------[ cut here ]------------
sk->sk_forward_alloc
WARNING: net/ipv4/af_inet.c:162 at inet_sock_destruct+0x62d/0x740, CPU#0: syz.2.10110/28940
Modules linked in:
CPU: 0 UID: 0 PID: 28940 Comm: syz.2.10110 Not tainted syzkaller #0 PREEMPT(full) 
Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
RIP: 0010:inet_sock_destruct+0x62d/0x740
Code: 0f 0b 90 e9 58 fe ff ff e8 f0 9b 9e f7 90 0f 0b 90 e9 8b fe ff ff e8 e2 9b 9e f7 90 0f 0b 90 e9 b1 fe ff ff e8 d4 9b 9e f7 90 <0f> 0b 90 e9 d7 fe ff ff 89 f9 80 e1 07 80 c1 03 38 c1 0f 8c 95 fc
RSP: 0000:ffffc90000007d20 EFLAGS: 00010246
RAX: ffffffff8a27239c RBX: dffffc0000000000 RCX: ffff888172880000
RDX: 0000000000000100 RSI: 0000000000000090 RDI: 0000000000000000
RBP: 0000000000000090 R08: ffff8881105be8a7 R09: 1ffff110220b7d14
R10: dffffc0000000000 R11: ffffed10220b7d15 R12: ffff8881105be600
R13: ffff8881105beb08 R14: ffff8881105be88c R15: ffffffff8feaf180
FS:  0000000000000000(0000) GS:ffff88818dc87000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007f6944e10120 CR3: 000000000e74a000 CR4: 00000000000006f0
Call Trace:
 <IRQ>
 __sk_destruct+0x8d/0x9d0
 rcu_core+0x7cd/0x1070
 handle_softirqs+0x22a/0x840
 __irq_exit_rcu+0xca/0x220
 irq_exit_rcu+0x9/0x30
 sysvec_apic_timer_interrupt+0xa6/0xc0
 </IRQ>
 <TASK>
 asm_sysvec_apic_timer_interrupt+0x1a/0x20
RIP: 0010:kasan_check_range+0x97/0x2c0
Code: 00 fc ff df 4d 8d 34 19 4d 89 f4 4d 29 dc 49 83 fc 10 7f 29 4d 85 e4 0f 84 3d 01 00 00 4c 89 cb 48 f7 d3 4c 01 fb 41 80 3b 00 <0f> 85 9e 01 00 00 49 ff c3 48 ff c3 75 ee e9 1d 01 00 00 44 89 dd
RSP: 0000:ffffc90003e57318 EFLAGS: 00000246
RAX: 1ffffffff3498801 RBX: ffffffffffffffff RCX: ffffffff823c8d87
RDX: 0000000000000000 RSI: 0000000000000004 RDI: ffff888101226ae8
RBP: ffff888101226aa0 R08: ffff888101226aeb R09: 1ffff11020244d5d
R10: dffffc0000000000 R11: ffffed1020244d5d R12: 0000000000000001
R13: 0000000000000001 R14: ffffed1020244d5e R15: 1ffff11020244d5d
 page_table_check_clear+0x257/0x4f0
 __zap_vma_range+0x3641/0x4b40
 unmap_vmas+0x379/0x530
 exit_mmap+0x280/0x9e0
 __mmput+0x118/0x430
 exit_mm+0x18e/0x250
 do_exit+0x6a2/0x22c0
 do_group_exit+0x21b/0x2d0
 get_signal+0x1284/0x1330
 arch_do_signal_or_restart+0xbc/0x830
 exit_to_user_mode_loop+0x86/0x480
 do_syscall_64+0x33e/0xf80
 entry_SYSCALL_64_after_hwframe+0x77/0x7f
RIP: 0033:0x7faac3d9cdd9
Code: Unable to access opcode bytes at 0x7faac3d9cdaf.
RSP: 002b:00007faac4d050e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
RAX: fffffffffffffe00 RBX: 00007faac4015fa8 RCX: 00007faac3d9cdd9
RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007faac4015fa8
RBP: 00007faac4015fa0 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
R13: 00007faac4016038 R14: 00007ffca27cf410 R15: 00007ffca27cf4f8
 </TASK>
