------------[ cut here ]------------
WARNING: CPU: 0 PID: 311 at net/mac80211/ibss.c:501 ieee80211_ibss_csa_beacon+0x6c8/0x820
Modules linked in:
CPU: 0 PID: 311 Comm: kworker/u4:6 Not tainted 6.4.0-next-20230705 #1
Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
Workqueue: phy21 ieee80211_csa_finalize_work
RIP: 0010:ieee80211_ibss_csa_beacon+0x6c8/0x820
Code: fd 48 c7 c2 c0 90 e0 84 be ee 02 00 00 48 c7 c7 20 91 e0 84 c6 05 92 0b ae 01 01 e8 a2 22 09 fd e9 1b fb ff ff e8 b8 c4 28 fd <0f> 0b 41 bc ea ff ff ff e9 50 fd ff ff e8 a6 2b 5d fd e9 0c fa ff
RSP: 0018:ffff88800a0bfb60 EFLAGS: 00010293
RAX: 0000000000000000 RBX: ffff88803ae10b80 RCX: 0000000000000000
RDX: ffff8880178fd1c0 RSI: ffffffff84237a28 RDI: ffffffff8118d921
RBP: 0000000000000002 R08: 0000000000000001 R09: fffffbfff0ef9565
R10: ffffffff877cab2f R11: 0000000000000001 R12: 0000000000000000
R13: ffff88800a0bfc68 R14: ffff88803ae11210 R15: ffff88803ae11710
FS:  0000000000000000(0000) GS:ffff88806ce00000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 0000001b2c727000 CR3: 0000000048900000 CR4: 0000000000350ef0
DR0: ffffffffffff01dd DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000600
Call Trace:
 <TASK>
 ieee80211_ibss_finish_csa+0x230/0x560
 __ieee80211_csa_finalize+0xb7d/0xfd0
 ieee80211_csa_finalize_work+0x145/0x210
 process_one_work+0xabf/0x1770
 worker_thread+0x64f/0x12a0
 kthread+0x33f/0x440
 ret_from_fork+0x2c/0x50
 </TASK>
irq event stamp: 599003
hardirqs last  enabled at (599013): [<ffffffff812ffe18>] __up_console_sem+0x78/0x80
hardirqs last disabled at (599024): [<ffffffff812ffdfd>] __up_console_sem+0x5d/0x80
softirqs last  enabled at (598964): [<ffffffff8118db33>] irq_exit_rcu+0x93/0xc0
softirqs last disabled at (598959): [<ffffffff8118db33>] irq_exit_rcu+0x93/0xc0
---[ end trace 0000000000000000 ]---
wlan1: failed to finalize CSA, disconnecting
netlink: 4 bytes leftover after parsing attributes in process `syz-executor.6'.
netlink: 280 bytes leftover after parsing attributes in process `syz-executor.0'.
mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
audit: type=1326 audit(2000000066.174:72): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=54622 comm="syz-executor.0" exe="/syz-executor.0" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f078543bb19 code=0x0
audit: type=1326 audit(2000000066.174:73): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=54622 comm="syz-executor.0" exe="/syz-executor.0" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f078543bb19 code=0x0
mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
EXT4-fs (sda): re-mounted 7b5d9a40-9011-49ec-8035-27953f97a4d8 r/w. Quota mode: none.
mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
syz_tun: entered promiscuous mode
syz_tun: left promiscuous mode
netlink: 1 bytes leftover after parsing attributes in process `syz-executor.2'.
netlink: 248 bytes leftover after parsing attributes in process `syz-executor.5'.
SELinux:  Context 3 is not valid (left unmapped).