------------[ cut here ]------------ WARNING: CPU: 0 PID: 8556 at net/wireless/scan.c:1193 cfg80211_scan_done+0x199/0x510 net/wireless/scan.c:1193 Modules linked in: CPU: 0 UID: 0 PID: 8556 Comm: syz.2.9057 Not tainted syzkaller #0 PREEMPT(full) Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 RIP: 0010:cfg80211_scan_done+0x199/0x510 net/wireless/scan.c:1193 Code: 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 0f 85 56 03 00 00 4c 39 bd 98 fa ff ff 74 09 e8 88 71 0c f7 90 <0f> 0b 90 e8 7f 71 0c f7 4c 89 fa 48 b8 00 00 00 00 00 fc ff df 48 RSP: 0018:ffffc900044beb30 EFLAGS: 00010287 RAX: 00000000000057a0 RBX: ffff888079cd4a18 RCX: ffffc9000efb1000 RDX: 0000000000080000 RSI: ffffffff8ab09a08 RDI: ffff8880491101b8 RBP: ffff888049110720 R08: 0000000000000001 R09: 0000000000000000 R10: 0000000000000001 R11: 0000000000000000 R12: 0000000000000001 R13: ffff888049112a40 R14: 1ffff92000897d68 R15: ffff888079cd4a00 FS: 00007fa1697d36c0(0000) GS:ffff888124a0a000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 00007f1ee556984a CR3: 000000007c929000 CR4: 00000000003526f0 DR0: ffffffffffffffff DR1: 00000000000001f8 DR2: 0000000000000083 DR3: ffffffffefffff15 DR6: 00000000ffff0ff0 DR7: 0000000000000400 Call Trace: __ieee80211_scan_completed+0x347/0xe40 net/mac80211/scan.c:501 ieee80211_scan_cancel+0x1cf/0x980 net/mac80211/scan.c:1319 ieee80211_do_stop+0x1b1b/0x2520 net/mac80211/iface.c:483 ieee80211_stop+0x169/0x320 net/mac80211/iface.c:819 __dev_close_many+0x29b/0x760 net/core/dev.c:1755 __dev_close net/core/dev.c:1767 [inline] __dev_change_flags+0x4d8/0x720 net/core/dev.c:9635 netif_change_flags+0x8d/0x160 net/core/dev.c:9700 do_setlink.constprop.0+0xb53/0x4380 net/core/rtnetlink.c:3151 rtnl_changelink net/core/rtnetlink.c:3769 [inline] __rtnl_newlink net/core/rtnetlink.c:3928 [inline] rtnl_newlink+0x1446/0x2000 net/core/rtnetlink.c:4065 rtnetlink_rcv_msg+0x95e/0xe90 net/core/rtnetlink.c:6951 netlink_rcv_skb+0x158/0x420 net/netlink/af_netlink.c:2552 netlink_unicast_kernel net/netlink/af_netlink.c:1320 [inline] netlink_unicast+0x5aa/0x870 net/netlink/af_netlink.c:1346 netlink_sendmsg+0x8c8/0xdd0 net/netlink/af_netlink.c:1896 sock_sendmsg_nosec net/socket.c:727 [inline] __sock_sendmsg net/socket.c:742 [inline] ____sys_sendmsg+0xa98/0xc70 net/socket.c:2630 ___sys_sendmsg+0x134/0x1d0 net/socket.c:2684 __sys_sendmsg+0x16d/0x220 net/socket.c:2716 do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline] do_syscall_64+0xcd/0xfa0 arch/x86/entry/syscall_64.c:94 entry_SYSCALL_64_after_hwframe+0x77/0x7f RIP: 0033:0x7fa16b98efc9 Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 RSP: 002b:00007fa1697d3038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e RAX: ffffffffffffffda RBX: 00007fa16bbe6270 RCX: 00007fa16b98efc9 RDX: 0000000000000000 RSI: 0000200000000600 RDI: 000000000000000a RBP: 00007fa16ba11f91 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 R13: 00007fa16bbe6308 R14: 00007fa16bbe6270 R15: 00007fff07a9ff88