program:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=@newlink={0x30, 0x10, 0x801, 0x0, 0x0, {}, [@IFLA_MTU={0x8, 0x4, 0x44}, @IFLA_GROUP={0x8}]}, 0x30}}, 0x0)
r1 = socket$kcm(0x2, 0x200000000000001, 0x0)
sendmsg$inet(r1, &(0x7f0000000080)={&(0x7f0000000340)={0x2, 0x4001, @dev}, 0x10, 0x0}, 0x3000c085)
sendmsg$inet(r1, &(0x7f0000000040)={0x0, 0xeafbff3, &(0x7f0000000000)=[{&(0x7f0000000300)="b8", 0xfffffdef}], 0x1, 0x0, 0x0, 0x10000000}, 0x52cc)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000380)=ANY=[@ANYBLOB="300000001800dd8d00000000000000000200000000000006"], 0x30}}, 0x4090)
r3 = socket(0x10, 0x3, 0x0)
write(r3, &(0x7f0000000000)="240000001a005f0214f9f407000904001f00000000000000000000000800040001000000", 0x24)
recvmmsg(r3, &(0x7f0000001ac0)=[{{0x0, 0x0, 0x0}, 0x7}], 0x1, 0x10000, 0x0)
r4 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="380000000314230c2abd7000ff05df250900020073797a310000000008004100727865001400330073797a5f74756e"], 0x38}, 0x1, 0x0, 0x0, 0x48845}, 0x4010)
r5 = socket$nl_rdma(0x10, 0x3, 0x14)
syz_usb_connect$cdc_ncm(0x2, 0x6e, &(0x7f0000000040)={{0x12, 0x1, 0x50, 0x2, 0x0, 0x0, 0x40, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x5c, 0x2, 0x1, 0xfb, 0x20, 0x8, {{0x9, 0x4, 0x0, 0x0, 0x1, 0x2, 0xd, 0x0, 0x0, {{0x5}, {0x5, 0x24, 0x0, 0x800}, {0xd, 0x24, 0xf, 0x1, 0x37, 0x3d, 0x8001, 0xdc}, {0x6, 0x24, 0x1a, 0x1000, 0x12}}, {{0x9, 0x5, 0x81, 0x3, 0x400, 0xc2, 0x2, 0xf3}}}, {}, {0x9, 0x4, 0x1, 0x1, 0x2, 0x2, 0xd, 0x0, 0x0, "", {{{0x9, 0x5, 0x82, 0x2, 0x10, 0x8, 0xd, 0x7}}, {{0x9, 0x5, 0x3, 0x2, 0xbf3f1c936be019e5, 0x3, 0x0, 0x2}}}}}}}]}}, 0x0)
r6 = socket$vsock_stream(0x28, 0x1, 0x0)
getsockopt$sock_int(r6, 0x1, 0x13, 0x0, &(0x7f0000000000))
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
r7 = getpid()
sched_setscheduler(r7, 0x2, &(0x7f0000000200)=0x7)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r8 = syz_clone(0x0, 0x0, 0xfffffffffffffead, 0x0, 0x0, 0x0)
ptrace(0x10, r8)
ptrace(0x8, r8)
r9 = syz_pidfd_open(r8, 0x0)
process_mrelease(r9, 0x700000000000000)
process_vm_readv(r8, &(0x7f0000000840)=[{&(0x7f0000000240)=""/236, 0xec}], 0x1, &(0x7f0000000a40)=[{&(0x7f0000000540)=""/60, 0x3c}], 0x1, 0x0)
sendmsg$RDMA_NLDEV_CMD_DELLINK(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000100)={0x18, 0x1404, 0x1, 0x70bd2d, 0x25dfdbfe, "", [@RDMA_NLDEV_ATTR_DEV_INDEX={0x8}]}, 0x18}, 0x1, 0x0, 0x0, 0x671ec167a4b72164}, 0x0)

[   76.503742][ T5318] Bluetooth: hci0: command tx timeout
[   76.595614][ T5338] netlink: 20 bytes leftover after parsing attributes in process `syz.0.0'.
[   76.750963][ T5338] infiniband syz1: set active
[   76.753374][ T5338] infiniband syz1: added syz_tun
[   76.808061][ T5338] RDS/IB: syz1: added
[   76.810568][ T5338] smc: adding ib device syz1 with port count 1
[   76.817739][ T5338] smc:    ib device syz1 port 1 has no pnetid
[   76.903134][  T785] usb 5-1: new full-speed USB device number 2 using dummy_hcd
[   77.065920][  T785] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 1024, setting to 64
[   77.071031][  T785] usb 5-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid maxpacket 6629, setting to 64
[   77.079329][  T785] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[   77.083916][  T785] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   77.087454][  T785] usb 5-1: Product: syz
[   77.089858][  T785] usb 5-1: Manufacturer: syz
[   77.091774][  T785] usb 5-1: SerialNumber: syz
[   77.104936][ T5339] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[   77.356834][ T5338] smc: removing ib device syz1
[   77.731380][ T5338] ------------[ cut here ]------------
[   77.734305][ T5338] WARNING: drivers/infiniband/sw/rxe/rxe_pool.c:116 at rxe_pool_cleanup+0x48/0x60, CPU#0: syz.0.0/5338
[   77.739542][ T5338] Modules linked in:
[   77.741360][ T5338] CPU: 0 UID: 0 PID: 5338 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) 
[   77.745007][ T5338] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   77.749223][ T5338] RIP: 0010:rxe_pool_cleanup+0x48/0x60
[   77.751730][ T5338] Code: 00 fc ff df 80 3c 08 00 74 08 48 89 df e8 80 bc a4 f9 48 83 3b 00 75 0c e8 95 11 3d f9 5b c3 cc cc cc cc cc e8 89 11 3d f9 90 <0f> 0b 90 5b e9 0f 7c da 02 cc 66 66 66 66 66 2e 0f 1f 84 00 00 00
[   77.760176][ T5338] RSP: 0018:ffffc9000d5a7038 EFLAGS: 00010246
[   77.762953][ T5338] RAX: ffffffff8883f3c7 RBX: ffff8880429c93d8 RCX: 0000000000100000
[   77.766667][ T5338] RDX: ffffc90020d42000 RSI: 00000000000fffff RDI: 0000000000100000
[   77.770382][ T5338] RBP: ffff8880429c90b8 R08: ffff8880429c87b3 R09: 1ffff110085390f6
[   77.774224][ T5338] R10: dffffc0000000000 R11: ffffffff88822f70 R12: dffffc0000000000
[   77.777572][ T5338] R13: dffffc0000000000 R14: ffffffff88822f70 R15: dffffc0000000000
[   77.781170][ T5338] FS:  00007f4096df56c0(0000) GS:ffff88808d416000(0000) knlGS:0000000000000000
[   77.785342][ T5338] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   77.788365][ T5338] CR2: 0000200000000840 CR3: 0000000043cef000 CR4: 0000000000352ef0
[   77.792119][ T5338] Call Trace:
[   77.794707][ T5338]  <TASK>
[   77.796106][ T5338]  rxe_dealloc+0x27/0xc0
[   77.798021][ T5338]  ? __pfx_rxe_dealloc+0x10/0x10
[   77.800222][ T5338]  ib_dealloc_device+0x54/0x200
[   77.802459][ T5338]  __ib_unregister_device+0x393/0x3f0
[   77.805162][ T5338]  ? __pfx_ib_device_get_by_index+0x10/0x10
[   77.807818][ T5338]  ib_unregister_device_and_put+0xb8/0xf0
[   77.810378][ T5338]  nldev_dellink+0x2d1/0x320
[   77.812580][ T5338]  ? __pfx_nldev_dellink+0x10/0x10
[   77.815600][ T5338]  ? apparmor_capable+0x137/0x1a0
[   77.818442][ T5338]  ? bpf_lsm_capable+0x9/0x20
[   77.820742][ T5338]  ? security_capable+0x7e/0x2e0
[   77.823194][ T5338]  ? __pfx_nldev_dellink+0x10/0x10
[   77.825586][ T5338]  rdma_nl_rcv+0x6ae/0x980
[   77.827612][ T5338]  ? __pfx_rdma_nl_rcv+0x10/0x10
[   77.829959][ T5338]  ? netlink_deliver_tap+0x2e/0x1b0
[   77.832305][ T5338]  netlink_unicast+0x82f/0x9e0
[   77.834651][ T5338]  ? __pfx_netlink_unicast+0x10/0x10
[   77.837131][ T5338]  ? __alloc_skb+0x198/0x3a0
[   77.839258][ T5338]  ? netlink_sendmsg+0x642/0xb30
[   77.841707][ T5338]  ? skb_put+0x11b/0x210
[   77.843818][ T5338]  netlink_sendmsg+0x805/0xb30
[   77.846337][ T5338]  ? __pfx_netlink_sendmsg+0x10/0x10
[   77.848824][ T5338]  ? aa_sock_msg_perm+0xf1/0x1b0
[   77.851150][ T5338]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[   77.853907][ T5338]  ? __pfx_netlink_sendmsg+0x10/0x10
[   77.856415][ T5338]  __sock_sendmsg+0x21c/0x270
[   77.858714][ T5338]  ____sys_sendmsg+0x505/0x820
[   77.860691][ T5338]  ? __pfx_____sys_sendmsg+0x10/0x10
[   77.862534][ T5338]  ? import_iovec+0x74/0xa0
[   77.864205][ T5338]  ___sys_sendmsg+0x21f/0x2a0
[   77.866421][ T5338]  ? __pfx____sys_sendmsg+0x10/0x10
[   77.868655][ T5338]  ? futex_wake+0x4b2/0x560
[   77.870467][ T5338]  ? __fget_files+0x2a/0x420
[   77.872296][ T5338]  ? __fget_files+0x3a0/0x420
[   77.876933][ T5338]  __x64_sys_sendmsg+0x19b/0x260
[   77.879942][ T5338]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[   77.882430][ T5338]  ? rcu_is_watching+0x15/0xb0
[   77.884545][ T5338]  do_syscall_64+0xec/0xf80
[   77.886818][ T5338]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   77.889705][ T5338]  ? trace_irq_disable+0x37/0x100
[   77.892015][ T5338]  ? clear_bhb_loop+0x60/0xb0
[   77.894157][ T5338]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   77.897041][ T5338] RIP: 0033:0x7f409a98f7c9
[   77.899370][ T5338] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   77.909901][ T5338] RSP: 002b:00007f4096df5038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   77.914726][ T5338] RAX: ffffffffffffffda RBX: 00007f409abe5fa0 RCX: 00007f409a98f7c9
[   77.919157][ T5338] RDX: 0000000000000000 RSI: 00002000000002c0 RDI: 0000000000000008
[   77.922696][ T5338] RBP: 00007f409aa13f91 R08: 0000000000000000 R09: 0000000000000000
[   77.925683][ T5338] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   77.928908][ T5338] R13: 00007f409abe6038 R14: 00007f409abe5fa0 R15: 00007ffcd25df758
[   77.932394][ T5338]  </TASK>
[   77.934115][ T5338] Kernel panic - not syncing: kernel: panic_on_warn set ...
[   77.937784][ T5338] CPU: 0 UID: 0 PID: 5338 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) 
[   77.942413][ T5338] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   77.947091][ T5338] Call Trace:
[   77.948630][ T5338]  <TASK>
[   77.949977][ T5338]  vpanic+0x1e0/0x670
[   77.951690][ T5338]  panic+0xb9/0xc0
[   77.953348][ T5338]  ? __pfx_panic+0x10/0x10
[   77.955357][ T5338]  __warn+0x317/0x4b0
[   77.957197][ T5338]  ? rxe_pool_cleanup+0x48/0x60
[   77.959319][ T5338]  ? rxe_pool_cleanup+0x48/0x60
[   77.961568][ T5338]  __report_bug+0x288/0x500
[   77.963572][ T5338]  ? rxe_pool_cleanup+0x48/0x60
[   77.965617][ T5338]  ? __pfx___report_bug+0x10/0x10
[   77.967786][ T5338]  ? irqentry_exit+0x5dd/0x660
[   77.969910][ T5338]  ? rxe_pool_cleanup+0x4a/0x60
[   77.971979][ T5338]  ? rxe_pool_cleanup+0x48/0x60
[   77.974217][ T5338]  ? rxe_pool_cleanup+0x48/0x60
[   77.976393][ T5338]  report_bug+0x16a/0x220
[   77.978362][ T5338]  ? rxe_pool_cleanup+0x48/0x60
[   77.980633][ T5338]  ? rxe_pool_cleanup+0x4a/0x60
[   77.982986][ T5338]  handle_bug+0x98/0x200
[   77.984893][ T5338]  exc_invalid_op+0x1a/0x50
[   77.986771][ T5338]  asm_exc_invalid_op+0x1a/0x20
[   77.988743][ T5338] RIP: 0010:rxe_pool_cleanup+0x48/0x60
[   77.991158][ T5338] Code: 00 fc ff df 80 3c 08 00 74 08 48 89 df e8 80 bc a4 f9 48 83 3b 00 75 0c e8 95 11 3d f9 5b c3 cc cc cc cc cc e8 89 11 3d f9 90 <0f> 0b 90 5b e9 0f 7c da 02 cc 66 66 66 66 66 2e 0f 1f 84 00 00 00
[   77.999633][ T5338] RSP: 0018:ffffc9000d5a7038 EFLAGS: 00010246
[   78.002337][ T5338] RAX: ffffffff8883f3c7 RBX: ffff8880429c93d8 RCX: 0000000000100000
[   78.005614][ T5338] RDX: ffffc90020d42000 RSI: 00000000000fffff RDI: 0000000000100000
[   78.009416][ T5338] RBP: ffff8880429c90b8 R08: ffff8880429c87b3 R09: 1ffff110085390f6
[   78.013098][ T5338] R10: dffffc0000000000 R11: ffffffff88822f70 R12: dffffc0000000000
[   78.016594][ T5338] R13: dffffc0000000000 R14: ffffffff88822f70 R15: dffffc0000000000
[   78.020078][ T5338]  ? __pfx_rxe_dealloc+0x10/0x10
[   78.022129][ T5338]  ? __pfx_rxe_dealloc+0x10/0x10
[   78.024005][ T5338]  ? rxe_pool_cleanup+0x47/0x60
[   78.026019][ T5338]  ? rxe_pool_cleanup+0x47/0x60
[   78.027787][ T5338]  rxe_dealloc+0x27/0xc0
[   78.029609][ T5338]  ? __pfx_rxe_dealloc+0x10/0x10
[   78.031666][ T5338]  ib_dealloc_device+0x54/0x200
[   78.033810][ T5338]  __ib_unregister_device+0x393/0x3f0
[   78.036567][ T5338]  ? __pfx_ib_device_get_by_index+0x10/0x10
[   78.039457][ T5338]  ib_unregister_device_and_put+0xb8/0xf0
[   78.041834][ T5338]  nldev_dellink+0x2d1/0x320
[   78.043785][ T5338]  ? __pfx_nldev_dellink+0x10/0x10
[   78.046117][ T5338]  ? apparmor_capable+0x137/0x1a0
[   78.048543][ T5338]  ? bpf_lsm_capable+0x9/0x20
[   78.051111][ T5338]  ? security_capable+0x7e/0x2e0
[   78.053795][ T5338]  ? __pfx_nldev_dellink+0x10/0x10
[   78.056165][ T5338]  rdma_nl_rcv+0x6ae/0x980
[   78.058268][ T5338]  ? __pfx_rdma_nl_rcv+0x10/0x10
[   78.060483][ T5338]  ? netlink_deliver_tap+0x2e/0x1b0
[   78.062589][ T5338]  netlink_unicast+0x82f/0x9e0
[   78.064413][ T5338]  ? __pfx_netlink_unicast+0x10/0x10
[   78.066182][ T5338]  ? __alloc_skb+0x198/0x3a0
[   78.067910][ T5338]  ? netlink_sendmsg+0x642/0xb30
[   78.069828][ T5338]  ? skb_put+0x11b/0x210
[   78.071404][ T5338]  netlink_sendmsg+0x805/0xb30
[   78.073625][ T5338]  ? __pfx_netlink_sendmsg+0x10/0x10
[   78.075959][ T5338]  ? aa_sock_msg_perm+0xf1/0x1b0
[   78.078228][ T5338]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[   78.080378][ T5338]  ? __pfx_netlink_sendmsg+0x10/0x10
[   78.082723][ T5338]  __sock_sendmsg+0x21c/0x270
[   78.085143][ T5338]  ____sys_sendmsg+0x505/0x820
[   78.087438][ T5338]  ? __pfx_____sys_sendmsg+0x10/0x10
[   78.089970][ T5338]  ? import_iovec+0x74/0xa0
[   78.092141][ T5338]  ___sys_sendmsg+0x21f/0x2a0
[   78.094320][ T5338]  ? __pfx____sys_sendmsg+0x10/0x10
[   78.096801][ T5338]  ? futex_wake+0x4b2/0x560
[   78.099355][ T5338]  ? __fget_files+0x2a/0x420
[   78.102015][ T5338]  ? __fget_files+0x3a0/0x420
[   78.104697][ T5338]  __x64_sys_sendmsg+0x19b/0x260
[   78.107737][ T5338]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[   78.110678][ T5338]  ? rcu_is_watching+0x15/0xb0
[   78.113458][ T5338]  do_syscall_64+0xec/0xf80
[   78.116096][ T5338]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   78.119338][ T5338]  ? trace_irq_disable+0x37/0x100
[   78.121696][ T5338]  ? clear_bhb_loop+0x60/0xb0
[   78.123847][ T5338]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   78.126578][ T5338] RIP: 0033:0x7f409a98f7c9
[   78.128615][ T5338] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   78.136831][ T5338] RSP: 002b:00007f4096df5038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   78.140436][ T5338] RAX: ffffffffffffffda RBX: 00007f409abe5fa0 RCX: 00007f409a98f7c9
[   78.144646][ T5338] RDX: 0000000000000000 RSI: 00002000000002c0 RDI: 0000000000000008
[   78.148802][ T5338] RBP: 00007f409aa13f91 R08: 0000000000000000 R09: 0000000000000000
[   78.152345][ T5338] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   78.156278][ T5338] R13: 00007f409abe6038 R14: 00007f409abe5fa0 R15: 00007ffcd25df758
[   78.159954][ T5338]  </TASK>
[   78.161779][ T5338] Kernel Offset: disabled
[   78.163872][ T5338] Rebooting in 86400 seconds..