------------[ cut here ]------------
wlan1: Failed check-sdata-in-driver check, flags: 0x0
WARNING: CPU: 1 PID: 68897 at net/mac80211/main.c:236 ieee80211_bss_info_change_notify+0x305/0xab0
Modules linked in:
CPU: 1 PID: 68897 Comm: syz-executor.7 Not tainted 6.4.0-rc7-next-20230621 #1
Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
RIP: 0010:ieee80211_bss_info_change_notify+0x305/0xab0
Code: 88 06 00 00 4d 85 f6 0f 84 c0 06 00 00 e8 a3 83 2f fd e8 9e 83 2f fd 8b 54 24 0c 4c 89 f6 48 c7 c7 e0 27 e0 84 e8 9b 78 fa fc <0f> 0b 48 b8 00 00 00 00 00 fc ff df 48 8b 14 24 48 c1 ea 03 0f b6
RSP: 0018:ffff888016b07540 EFLAGS: 00010282
RAX: 0000000000000000 RBX: ffff88801a26cb80 RCX: ffffc9000951d000
RDX: 0000000000040000 RSI: ffffffff81171eb2 RDI: 0000000000000001
RBP: ffff8880388b8e20 R08: 0000000000000001 R09: 0000000000000000
R10: 0000000000000001 R11: 0000000000000001 R12: 0000000000400000
R13: ffff88801a26e4f0 R14: ffff88801a26c000 R15: 0000000000000000
FS:  00007efcc7543700(0000) GS:ffff88806cf00000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 0000000020000080 CR3: 000000003fe2e000 CR4: 0000000000350ee0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000600
Call Trace:
 <TASK>
 ieee80211_ocb_leave+0x1f1/0x350
 __cfg80211_leave_ocb+0x1d5/0x5a0
 cfg80211_leave_ocb+0x52/0x80
 cfg80211_change_iface+0x8cb/0x1080
 nl80211_set_interface+0x6b0/0x990
 genl_family_rcv_msg_doit.isra.0+0x1ee/0x2e0
 genl_rcv_msg+0x503/0x7e0
 netlink_rcv_skb+0x15d/0x450
 genl_rcv+0x28/0x40
 netlink_unicast+0x552/0x800
 netlink_sendmsg+0x923/0xe40
 sock_sendmsg+0x1b6/0x200
 __sys_sendto+0x254/0x360
 __x64_sys_sendto+0xe1/0x1c0
 do_syscall_64+0x3f/0x90
 entry_SYSCALL_64_after_hwframe+0x6e/0xd8
RIP: 0033:0x7efcc9f808ac
Code: fa fa ff ff 44 8b 4c 24 2c 4c 8b 44 24 20 89 c5 44 8b 54 24 28 48 8b 54 24 18 b8 2c 00 00 00 48 8b 74 24 10 8b 7c 24 08 0f 05 <48> 3d 00 f0 ff ff 77 34 89 ef 48 89 44 24 08 e8 20 fb ff ff 48 8b
RSP: 002b:00007efcc7541f80 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
RAX: ffffffffffffffda RBX: 00007efcc75420f0 RCX: 00007efcc9f808ac
RDX: 0000000000000024 RSI: 00007efcc7542140 RDI: 0000000000000005
RBP: 0000000000000000 R08: 00007efcc7541fd4 R09: 000000000000000c
R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
R13: 00007efcc7542140 R14: 0000000000000005 R15: 0000000000000000
 </TASK>
irq event stamp: 2717
hardirqs last  enabled at (2727): [<ffffffff812fe998>] __up_console_sem+0x78/0x80
hardirqs last disabled at (2738): [<ffffffff812fe97d>] __up_console_sem+0x5d/0x80
softirqs last  enabled at (2752): [<ffffffff8118ddc3>] irq_exit_rcu+0x93/0xc0
softirqs last disabled at (2747): [<ffffffff8118ddc3>] irq_exit_rcu+0x93/0xc0
---[ end trace 0000000000000000 ]---
wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
audit: type=1326 audit(2000000068.598:65): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=68914 comm="syz-executor.0" exe="/syz-executor.0" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f59d8f7fb19 code=0x0
EXT4-fs (sda): re-mounted 7b5d9a40-9011-49ec-8035-27953f97a4d8 r/w. Quota mode: none.
EXT4-fs (sda): re-mounted 7b5d9a40-9011-49ec-8035-27953f97a4d8 r/w. Quota mode: none.
wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
misc raw-gadget: fail, usb_gadget_register_driver returned -16
audit: type=1326 audit(2000000069.564:66): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=69120 comm="syz-executor.0" exe="/syz-executor.0" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f59d8f7fb19 code=0x0
EXT4-fs (sda): re-mounted 7b5d9a40-9011-49ec-8035-27953f97a4d8 r/w. Quota mode: none.
Option '                   ®bĘ' to dns_resolver key: bad/missing value
wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
misc raw-gadget: fail, usb_gadget_register_driver returned -16
Option '                   ®bĘ' to dns_resolver key: bad/missing value
EXT4-fs (sda): re-mounted 7b5d9a40-9011-49ec-8035-27953f97a4d8 r/w. Quota mode: none.
wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
Option '                   ®bĘ' to dns_resolver key: bad/missing value
Option '                   ®bĘ' to dns_resolver key: bad/missing value
random: crng reseeded on system resumption
Restarting kernel threads ... done.
Process accounting resumed
Process accounting resumed
Process accounting resumed
Process accounting resumed
Process accounting resumed
Process accounting resumed
Process accounting resumed
Process accounting resumed
Process accounting resumed
Process accounting resumed
audit: type=1326 audit(2000000075.897:67): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=70461 comm="syz-executor.0" exe="/syz-executor.0" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f59d8f7fb19 code=0x0
Process accounting resumed
audit: type=1326 audit(2000000076.724:68): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=70461 comm="syz-executor.0" exe="/syz-executor.0" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f59d8f7fb19 code=0x0
audit: type=1326 audit(2000000076.921:69): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=70515 comm="syz-executor.0" exe="/syz-executor.0" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f59d8f7fb19 code=0x0
audit: type=1326 audit(2000000077.853:70): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=70746 comm="syz-executor.0" exe="/syz-executor.0" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f59d8f7fb19 code=0x0