WARNING: CPU: 1 PID: 31719 at net/mac80211/driver-ops.h:172 drv_bss_info_changed+0x4a8/0x5a0
Modules linked in:
CPU: 1 PID: 31719 Comm: syz-executor.3 Not tainted 5.18.0-rc1-next-20220404 #1
Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
RIP: 0010:drv_bss_info_changed+0x4a8/0x5a0
Code: a8 03 00 00 48 85 ed 0f 84 a1 00 00 00 e8 b0 35 66 fd e8 ab 35 66 fd 8b 54 24 04 48 89 ee 48 c7 c7 80 8a ba 84 e8 57 f4 25 00 <0f> 0b e9 10 fe ff ff e8 8c 35 66 fd e8 67 3e 35 00 31 ff 89 c3 89
RSP: 0018:ffff8880419df3e8 EFLAGS: 00010282
RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000
RDX: 0000000000040000 RSI: ffffffff812b3338 RDI: ffffed100833be6f
RBP: ffff88800fc6c000 R08: 0000000000000000 R09: 0000000000000000
R10: ffffffff812acfac R11: 0000000000000000 R12: ffff88800fc6cbc0
R13: 0000000000400000 R14: ffff88800fc6df88 R15: ffff88800fc6df80
FS:  00007f106d351700(0000) GS:ffff88806cf00000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007f106d350108 CR3: 0000000039a0c000 CR4: 0000000000350ee0
Call Trace:
 <TASK>
 ieee80211_bss_info_change_notify+0x9a/0xc0
 ieee80211_ocb_leave+0x1ed/0x340
 __cfg80211_leave_ocb+0x1d6/0x510
 cfg80211_leave_ocb+0x4e/0x70
 cfg80211_change_iface+0x7fd/0xea0
 nl80211_set_interface+0x65f/0x900
 genl_family_rcv_msg_doit+0x22d/0x330
 genl_rcv_msg+0x33c/0x5a0
 netlink_rcv_skb+0x14b/0x430
 genl_rcv+0x24/0x40
 netlink_unicast+0x54a/0x800
 netlink_sendmsg+0x904/0xe00
 sock_sendmsg+0x150/0x190
 ____sys_sendmsg+0x703/0x870
 ___sys_sendmsg+0xf3/0x170
 __sys_sendmsg+0xe5/0x1b0
 do_syscall_64+0x3b/0x90
 entry_SYSCALL_64_after_hwframe+0x44/0xae
RIP: 0033:0x7f106fddbb19
Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
RSP: 002b:00007f106d351188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
RAX: ffffffffffffffda RBX: 00007f106feeef60 RCX: 00007f106fddbb19
RDX: 0000000000000000 RSI: 0000000020000100 RDI: 0000000000000003
RBP: 00007f106fe35f6d R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
R13: 00007ffc6081f17f R14: 00007f106d351300 R15: 0000000000022000
 </TASK>
irq event stamp: 1713
hardirqs last  enabled at (1723): [<ffffffff812ac878>] __up_console_sem+0x78/0x80
hardirqs last disabled at (1732): [<ffffffff812ac85d>] __up_console_sem+0x5d/0x80
softirqs last  enabled at (1346): [<ffffffff81167c63>] __irq_exit_rcu+0x113/0x170
softirqs last disabled at (1325): [<ffffffff81167c63>] __irq_exit_rcu+0x113/0x170
---[ end trace 0000000000000000 ]---
mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
capability: warning: `syz-executor.6' uses deprecated v2 capabilities in a way that may be insecure
mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
loop3: detected capacity change from 0 to 36
loop3: detected capacity change from 0 to 36
loop7: detected capacity change from 0 to 36
loop3: detected capacity change from 0 to 36
loop7: detected capacity change from 0 to 36
loop3: detected capacity change from 0 to 36
loop7: detected capacity change from 0 to 36
loop2: detected capacity change from 0 to 352
loop5: detected capacity change from 0 to 140
loop5: detected capacity change from 0 to 222
nfs: Unknown parameter 'tmpfs'
loop5: detected capacity change from 0 to 140
loop5: detected capacity change from 0 to 222
nfs: Unknown parameter 'tmpfs'
Process accounting resumed
Process accounting resumed
Process accounting resumed
Process accounting resumed
Process accounting resumed
Process accounting resumed
Process accounting resumed
Process accounting resumed
Process accounting resumed
Process accounting resumed
Process accounting resumed
loop6: detected capacity change from 0 to 2048
Process accounting resumed
EXT4-fs error (device loop6): ext4_ext_check_inode:497: inode #2: comm syz-executor.6: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 4608(4608)
EXT4-fs (loop6): get root inode failed
EXT4-fs (loop6): mount failed
Process accounting resumed
loop6: detected capacity change from 0 to 2048
Process accounting resumed
EXT4-fs error (device loop6): ext4_ext_check_inode:497: inode #2: comm syz-executor.6: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 4608(4608)
Process accounting resumed
EXT4-fs (loop6): get root inode failed
EXT4-fs (loop6): mount failed
loop6: detected capacity change from 0 to 2048
EXT4-fs error (device loop6): ext4_ext_check_inode:497: inode #2: comm syz-executor.6: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 4608(4608)
EXT4-fs (loop6): get root inode failed
EXT4-fs (loop6): mount failed
loop6: detected capacity change from 0 to 2048
EXT4-fs error (device loop6): ext4_ext_check_inode:497: inode #2: comm syz-executor.6: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 4608(4608)
EXT4-fs (loop6): get root inode failed
EXT4-fs (loop6): mount failed
netlink: 'syz-executor.3': attribute type 1 has an invalid length.
__nla_validate_parse: 5 callbacks suppressed
netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'.
loop6: detected capacity change from 0 to 2048
EXT4-fs error (device loop6): ext4_ext_check_inode:497: inode #2: comm syz-executor.6: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 4608(4608)
EXT4-fs (loop6): get root inode failed
EXT4-fs (loop6): mount failed
netlink: 'syz-executor.3': attribute type 1 has an invalid length.
netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'.
netlink: 'syz-executor.3': attribute type 1 has an invalid length.
netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'.
9p: Unknown access argument 18446744073709551615: -34
9p: Unknown access argument 18446744073709551615: -34
netlink: 'syz-executor.3': attribute type 1 has an invalid length.
netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'.
9p: Unknown access argument 18446744073709551615: -34
9p: Unknown access argument 18446744073709551615: -34
9p: Unknown access argument 18446744073709551615: -34