From ade05d63b727d5e8d0d833c1d974a9d50d4cb1bb Mon Sep 17 00:00:00 2001
From: Gleb Smirnoff <glebius@FreeBSD.org>
Date: Thu, 7 Dec 2023 14:41:36 -0800
Subject: [PATCH] tcp: stop stack timers in tcp_switch_back_to_default()

This funcion is an alternative code path that detaches an alternative
TCP stack, missed in d2ef52ef3dee38cccb7f54d33ecc2a4b944dad9d.

Reviewed by:		rrs, tuexen
Differential Revision:	https://reviews.freebsd.org/D42917
Reported-by:	syzbot+186130be9f0ca5557d4e@syzkaller.appspotmail.com
Fixes:		d2ef52ef3dee38cccb7f54d33ecc2a4b944dad9d
---
 sys/netinet/tcp_subr.c | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/sys/netinet/tcp_subr.c b/sys/netinet/tcp_subr.c
index d951b5df938..c79cadd0494 100644
--- a/sys/netinet/tcp_subr.c
+++ b/sys/netinet/tcp_subr.c
@@ -542,6 +542,9 @@ tcp_switch_back_to_default(struct tcpcb *tp)
 	KASSERT(tp->t_fb != &tcp_def_funcblk,
 	    ("%s: called by the built-in default stack", __func__));
 
+	if (tp->t_fb->tfb_tcp_timer_stop_all != NULL)
+		tp->t_fb->tfb_tcp_timer_stop_all(tp);
+
 	/*
 	 * Now, we'll find a new function block to use.
 	 * Start by trying the current user-selected