program:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$devlink(&(0x7f0000000600), 0xffffffffffffffff)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), r0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r2, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10)
connect$inet(r2, &(0x7f0000000480)={0x2, 0x0, @multicast1}, 0x10)
sendmmsg(r2, &(0x7f0000007fc0), 0x800001d, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000180)={'wg2\x00', <r4=>0x0})
sendmsg$nl_route(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000880)=@setlink={0x20, 0x13, 0xbaa23f3d13f2d1f5, 0x3, 0x0, {0x0, 0x0, 0x0, r4}}, 0x20}, 0x1, 0x0, 0x0, 0x40010}, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r5=>0x0})
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x2, 0x4, &(0x7f0000000540)=ANY=[@ANYBLOB="180000c7395f756966d1d7efc0a70000000000000000000000000061108500000000009500000000000000"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0xf00, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r6 = io_uring_setup(0x67bb, &(0x7f00000000c0)={0x0, 0x0, 0x3000})
io_uring_enter(r6, 0x0, 0x0, 0xf, &(0x7f0000000000), 0x18)
r7 = socket$nl_route(0x10, 0x3, 0x0)
r8 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r8, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB="38000000031401002abd7000fedbdf250900020073797a3000000000080041007278650014003300626f6e6430"], 0x38}, 0x1, 0x0, 0x0, 0x4000840}, 0x24004000)
r9 = socket$nl_rdma(0x10, 0x3, 0x14)
syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000180)=ANY=[@ANYBLOB="12013f00000000407f04ffff0000000000010902"], 0x0)
r10 = socket$nl_rdma(0x10, 0x3, 0x14)
unshare(0x62040200)
sendmsg$RDMA_NLDEV_CMD_DELLINK(r10, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000100)={0x18, 0x1404, 0x1, 0x70bd2d, 0x25dfdbfe, "", [@RDMA_NLDEV_ATTR_DEV_INDEX={0x8}]}, 0x18}, 0x1, 0x0, 0x0, 0x671ec167a4b72164}, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x18, 0xfa00, {0x2, 0x0, 0x111, 0x1}}, 0x20)
sendmsg$RDMA_NLDEV_CMD_PORT_GET(r9, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000140)=ANY=[@ANYBLOB="200000000414010026bd7000ffdbdf2508000100000000000800"], 0x20}, 0x1, 0x0, 0x0, 0x20048000}, 0x20000000)
r11 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x6, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="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"], &(0x7f00000000c0)='GPL\x00', 0x4, 0x1000, &(0x7f000062b000)=""/4096, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70)
sendmsg$nl_route(r7, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=@newlink={0x44, 0x10, 0x801, 0x0, 0x0, {}, [@IFLA_XDP={0x1c, 0x2b, 0x0, 0x1, [@IFLA_XDP_EXPECTED_FD={0x8, 0x8, r11}, @IFLA_XDP_FLAGS={0x8, 0x3, 0x19}, @IFLA_XDP_FD={0x8}]}, @IFLA_GROUP={0x8}]}, 0x44}}, 0x0)
sendmsg$NL80211_CMD_START_P2P_DEVICE(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000}, 0xfffffffffffffff9, &(0x7f0000000100)={&(0x7f00000000c0)={0x28, r1, 0x20, 0x70b929, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r5}, @val={0xc, 0x99, {0x9, 0x33}}}}, ["", "", "", "", "", ""]}, 0x28}, 0x1, 0x0, 0x0, 0x24000004}, 0x0)
getsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, &(0x7f00000004c0), 0x10)
[ 68.488267][ T5308] Bluetooth: hci0: command tx timeout
[ 68.749576][ T5323] infiniband syz0: set active
[ 68.751555][ T5323] infiniband syz0: added bond0
[ 68.784581][ T5323] RDS/IB: syz0: added
[ 68.786598][ T5323] smc: adding ib device syz0 with port count 1
[ 68.789347][ T5323] smc: ib device syz0 port 1 has pnetid
[ 69.118846][ T5320] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[ 69.272334][ T5320] usb 5-1: config index 0 descriptor too short (expected 16384, got 36)
[ 69.275684][ T5320] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 69.280127][ T5320] usb 5-1: config 0 has no interfaces?
[ 69.282344][ T5320] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[ 69.285972][ T5320] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 69.298290][ T5320] usb 5-1: config 0 descriptor??
[ 69.613335][ T5323] smc: removing ib device syz0
[ 69.777738][ T5323] ------------[ cut here ]------------
[ 69.780017][ T5323] WARNING: CPU: 0 PID: 5323 at drivers/infiniband/sw/rxe/rxe_pool.c:116 rxe_pool_cleanup+0x47/0x50
[ 69.784182][ T5323] Modules linked in:
[ 69.785925][ T5323] CPU: 0 UID: 0 PID: 5323 Comm: syz.0.0 Not tainted 6.14.0-rc5-syzkaller-00234-gb7c90e3e717a #0
[ 69.790249][ T5323] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 69.794740][ T5323] RIP: 0010:rxe_pool_cleanup+0x47/0x50
[ 69.797009][ T5323] Code: 00 00 fc ff df 80 3c 08 00 74 08 48 89 df e8 a0 6b 11 f9 48 83 3b 00 75 0b e8 95 2f aa f8 5b c3 cc cc cc cc e8 8a 2f aa f8 90 <0f> 0b 90 5b c3 cc cc cc cc 90 90 90 90 90 90 90 90 90 90 90 90 90
[ 69.804767][ T5323] RSP: 0018:ffffc9000d34f0e8 EFLAGS: 00010283
[ 69.807373][ T5323] RAX: ffffffff8917af86 RBX: ffff8880405a9380 RCX: 0000000000100000
[ 69.810858][ T5323] RDX: ffffc9000e022000 RSI: 00000000000ef8a1 RDI: 00000000000ef8a2
[ 69.814218][ T5323] RBP: 0000000000000002 R08: ffffffff88f02e33 R09: 1ffff110080b50ee
[ 69.817335][ T5323] R10: dffffc0000000000 R11: ffffffff8915c1d0 R12: dffffc0000000000
[ 69.820552][ T5323] R13: dffffc0000000000 R14: ffff8880405a8658 R15: dffffc0000000000
[ 69.823618][ T5323] FS: 00007f357c62e6c0(0000) GS:ffff88801fc00000(0000) knlGS:0000000000000000
[ 69.826612][ T5323] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 69.829025][ T5323] CR2: 00005618f888b628 CR3: 0000000033e0e000 CR4: 0000000000352ef0
[ 69.832177][ T5323] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 69.835440][ T5323] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 69.839216][ T5323] Call Trace:
[ 69.840441][ T5323] <TASK>
[ 69.841638][ T5323] ? __warn+0x165/0x4d0
[ 69.843268][ T5323] ? rxe_pool_cleanup+0x47/0x50
[ 69.845314][ T5323] ? report_bug+0x2b3/0x500
[ 69.847200][ T5323] ? rxe_pool_cleanup+0x47/0x50
[ 69.849284][ T5323] ? handle_bug+0x60/0x90
[ 69.851111][ T5323] ? exc_invalid_op+0x1a/0x50
[ 69.852961][ T5323] ? asm_exc_invalid_op+0x1a/0x20
[ 69.855146][ T5323] ? __pfx_rxe_dealloc+0x10/0x10
[ 69.857162][ T5323] ? __ib_unregister_device+0x353/0x3d0
[ 69.859686][ T5323] ? rxe_pool_cleanup+0x46/0x50
[ 69.861806][ T5323] ? rxe_pool_cleanup+0x47/0x50
[ 69.864347][ T5323] ? rxe_pool_cleanup+0x46/0x50
[ 69.866511][ T5323] rxe_dealloc+0x33/0x100
[ 69.868458][ T5323] ? __pfx_rxe_dealloc+0x10/0x10
[ 69.870499][ T5323] ib_dealloc_device+0x50/0x200
[ 69.872499][ T5323] __ib_unregister_device+0x366/0x3d0
[ 69.874750][ T5323] ? __pfx_ib_device_get_by_index+0x10/0x10
[ 69.877092][ T5323] ib_unregister_device_and_put+0xb9/0xf0
[ 69.879429][ T5323] nldev_dellink+0x2c6/0x310
[ 69.881286][ T5323] ? __pfx_nldev_dellink+0x10/0x10
[ 69.883410][ T5323] ? rcu_is_watching+0x15/0xb0
[ 69.885375][ T5323] ? apparmor_capable+0x13b/0x1b0
[ 69.887942][ T5323] ? bpf_lsm_capable+0x9/0x10
[ 69.890329][ T5323] ? security_capable+0x7e/0x2d0
[ 69.892948][ T5323] ? __pfx_nldev_dellink+0x10/0x10
[ 69.895166][ T5323] rdma_nl_rcv+0x6dd/0x9e0
[ 69.897123][ T5323] ? __pfx_rdma_nl_rcv+0x10/0x10
[ 69.899425][ T5323] ? netlink_deliver_tap+0x2e/0x1b0
[ 69.901647][ T5323] netlink_unicast+0x7f6/0x990
[ 69.903680][ T5323] ? __pfx_netlink_unicast+0x10/0x10
[ 69.905846][ T5323] ? __virt_addr_valid+0x45f/0x530
[ 69.908118][ T5323] ? __phys_addr_symbol+0x2f/0x70
[ 69.910226][ T5323] ? __check_object_size+0x47a/0x730
[ 69.912464][ T5323] netlink_sendmsg+0x8de/0xcb0
[ 69.914456][ T5323] ? __pfx_netlink_sendmsg+0x10/0x10
[ 69.916565][ T5323] ? aa_sock_msg_perm+0x91/0x160
[ 69.918574][ T5323] ? __pfx_netlink_sendmsg+0x10/0x10
[ 69.920634][ T5323] __sock_sendmsg+0x221/0x270
[ 69.922414][ T5323] ____sys_sendmsg+0x53a/0x860
[ 69.924301][ T5323] ? __pfx_____sys_sendmsg+0x10/0x10
[ 69.926272][ T5323] ? __fget_files+0x2a/0x410
[ 69.928063][ T5323] ? __fget_files+0x2a/0x410
[ 69.929777][ T5323] __sys_sendmsg+0x269/0x350
[ 69.931591][ T5323] ? __pfx___sys_sendmsg+0x10/0x10
[ 69.933511][ T5323] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 69.935923][ T5323] ? do_syscall_64+0x100/0x230
[ 69.937811][ T5323] ? do_syscall_64+0xb6/0x230
[ 69.939601][ T5323] do_syscall_64+0xf3/0x230
[ 69.941382][ T5323] ? clear_bhb_loop+0x35/0x90
[ 69.943439][ T5323] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 69.945790][ T5323] RIP: 0033:0x7f357b78d169
[ 69.947692][ T5323] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 69.956020][ T5323] RSP: 002b:00007f357c62e038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 69.959493][ T5323] RAX: ffffffffffffffda RBX: 00007f357b9a5fa0 RCX: 00007f357b78d169
[ 69.962990][ T5323] RDX: 0000000000000000 RSI: 00004000000002c0 RDI: 000000000000000b
[ 69.967091][ T5323] RBP: 00007f357b80e2a0 R08: 0000000000000000 R09: 0000000000000000
[ 69.970448][ T5323] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 69.973597][ T5323] R13: 0000000000000000 R14: 00007f357b9a5fa0 R15: 00007ffceb655a08
[ 69.976695][ T5323] </TASK>
[ 69.978093][ T5323] Kernel panic - not syncing: kernel: panic_on_warn set ...
[ 69.981104][ T5323] CPU: 0 UID: 0 PID: 5323 Comm: syz.0.0 Not tainted 6.14.0-rc5-syzkaller-00234-gb7c90e3e717a #0
[ 69.985293][ T5323] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 69.989724][ T5323] Call Trace:
[ 69.991176][ T5323] <TASK>
[ 69.992442][ T5323] dump_stack_lvl+0x241/0x360
[ 69.994281][ T5323] ? __pfx_dump_stack_lvl+0x10/0x10
[ 69.996237][ T5323] ? __pfx__printk+0x10/0x10
[ 69.998037][ T5323] ? _printk+0xd5/0x120
[ 69.999686][ T5323] ? __init_begin+0x41000/0x41000
[ 70.001691][ T5323] ? vscnprintf+0x5d/0x90
[ 70.003536][ T5323] panic+0x349/0x880
[ 70.005058][ T5323] ? __warn+0x174/0x4d0
[ 70.006721][ T5323] ? __pfx_panic+0x10/0x10
[ 70.008868][ T5323] __warn+0x344/0x4d0
[ 70.011069][ T5323] ? rxe_pool_cleanup+0x47/0x50
[ 70.013668][ T5323] report_bug+0x2b3/0x500
[ 70.015973][ T5323] ? rxe_pool_cleanup+0x47/0x50
[ 70.018714][ T5323] handle_bug+0x60/0x90
[ 70.020928][ T5323] exc_invalid_op+0x1a/0x50
[ 70.023196][ T5323] asm_exc_invalid_op+0x1a/0x20
[ 70.025633][ T5323] RIP: 0010:rxe_pool_cleanup+0x47/0x50
[ 70.028341][ T5323] Code: 00 00 fc ff df 80 3c 08 00 74 08 48 89 df e8 a0 6b 11 f9 48 83 3b 00 75 0b e8 95 2f aa f8 5b c3 cc cc cc cc e8 8a 2f aa f8 90 <0f> 0b 90 5b c3 cc cc cc cc 90 90 90 90 90 90 90 90 90 90 90 90 90
[ 70.038069][ T5323] RSP: 0018:ffffc9000d34f0e8 EFLAGS: 00010283
[ 70.040955][ T5323] RAX: ffffffff8917af86 RBX: ffff8880405a9380 RCX: 0000000000100000
[ 70.044201][ T5323] RDX: ffffc9000e022000 RSI: 00000000000ef8a1 RDI: 00000000000ef8a2
[ 70.047394][ T5323] RBP: 0000000000000002 R08: ffffffff88f02e33 R09: 1ffff110080b50ee
[ 70.050744][ T5323] R10: dffffc0000000000 R11: ffffffff8915c1d0 R12: dffffc0000000000
[ 70.053888][ T5323] R13: dffffc0000000000 R14: ffff8880405a8658 R15: dffffc0000000000
[ 70.057053][ T5323] ? __pfx_rxe_dealloc+0x10/0x10
[ 70.059056][ T5323] ? __ib_unregister_device+0x353/0x3d0
[ 70.061296][ T5323] ? rxe_pool_cleanup+0x46/0x50
[ 70.063401][ T5323] ? rxe_pool_cleanup+0x46/0x50
[ 70.065430][ T5323] rxe_dealloc+0x33/0x100
[ 70.067161][ T5323] ? __pfx_rxe_dealloc+0x10/0x10
[ 70.069214][ T5323] ib_dealloc_device+0x50/0x200
[ 70.071292][ T5323] __ib_unregister_device+0x366/0x3d0
[ 70.073542][ T5323] ? __pfx_ib_device_get_by_index+0x10/0x10
[ 70.075957][ T5323] ib_unregister_device_and_put+0xb9/0xf0
[ 70.078338][ T5323] nldev_dellink+0x2c6/0x310
[ 70.080313][ T5323] ? __pfx_nldev_dellink+0x10/0x10
[ 70.082569][ T5323] ? rcu_is_watching+0x15/0xb0
[ 70.084693][ T5323] ? apparmor_capable+0x13b/0x1b0
[ 70.086883][ T5323] ? bpf_lsm_capable+0x9/0x10
[ 70.088906][ T5323] ? security_capable+0x7e/0x2d0
[ 70.090916][ T5323] ? __pfx_nldev_dellink+0x10/0x10
[ 70.093120][ T5323] rdma_nl_rcv+0x6dd/0x9e0
[ 70.094986][ T5323] ? __pfx_rdma_nl_rcv+0x10/0x10
[ 70.096835][ T5323] ? netlink_deliver_tap+0x2e/0x1b0
[ 70.099202][ T5323] netlink_unicast+0x7f6/0x990
[ 70.101244][ T5323] ? __pfx_netlink_unicast+0x10/0x10
[ 70.103447][ T5323] ? __virt_addr_valid+0x45f/0x530
[ 70.105600][ T5323] ? __phys_addr_symbol+0x2f/0x70
[ 70.107820][ T5323] ? __check_object_size+0x47a/0x730
[ 70.109977][ T5323] netlink_sendmsg+0x8de/0xcb0
[ 70.112041][ T5323] ? __pfx_netlink_sendmsg+0x10/0x10
[ 70.114041][ T5323] ? aa_sock_msg_perm+0x91/0x160
[ 70.116030][ T5323] ? __pfx_netlink_sendmsg+0x10/0x10
[ 70.118269][ T5323] __sock_sendmsg+0x221/0x270
[ 70.120993][ T5323] ____sys_sendmsg+0x53a/0x860
[ 70.123041][ T5323] ? __pfx_____sys_sendmsg+0x10/0x10
[ 70.125125][ T5323] ? __fget_files+0x2a/0x410
[ 70.126943][ T5323] ? __fget_files+0x2a/0x410
[ 70.128813][ T5323] __sys_sendmsg+0x269/0x350
[ 70.130822][ T5323] ? __pfx___sys_sendmsg+0x10/0x10
[ 70.132970][ T5323] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 70.135624][ T5323] ? do_syscall_64+0x100/0x230
[ 70.137643][ T5323] ? do_syscall_64+0xb6/0x230
[ 70.139639][ T5323] do_syscall_64+0xf3/0x230
[ 70.141742][ T5323] ? clear_bhb_loop+0x35/0x90
[ 70.143790][ T5323] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 70.146425][ T5323] RIP: 0033:0x7f357b78d169
[ 70.148262][ T5323] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 70.155810][ T5323] RSP: 002b:00007f357c62e038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 70.159495][ T5323] RAX: ffffffffffffffda RBX: 00007f357b9a5fa0 RCX: 00007f357b78d169
[ 70.162746][ T5323] RDX: 0000000000000000 RSI: 00004000000002c0 RDI: 000000000000000b
[ 70.165947][ T5323] RBP: 00007f357b80e2a0 R08: 0000000000000000 R09: 0000000000000000
[ 70.169199][ T5323] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 70.172455][ T5323] R13: 0000000000000000 R14: 00007f357b9a5fa0 R15: 00007ffceb655a08
[ 70.175690][ T5323] </TASK>
[ 70.177240][ T5323] Kernel Offset: disabled
[ 70.179203][ T5323] Rebooting in 86400 seconds..