Re: [syzbot] [wireless?] general protection fault in cfg80211_mlme_deauth
From: Edward Adam Davis
Date: Wed Apr 09 2025 - 01:40:26 EST
#syz test
diff --git a/net/wireless/sme.c b/net/wireless/sme.c
index cf998500a965..39bc68b3428a 100644
--- a/net/wireless/sme.c
+++ b/net/wireless/sme.c
@@ -226,6 +226,9 @@ static int cfg80211_conn_do_work(struct wireless_dev *wdev,
*treason = NL80211_TIMEOUT_ASSOC;
fallthrough;
case CFG80211_CONN_ASSOC_FAILED:
+ BUG_ON(!wdev->conn->bssid);
+ BUG_ON(!wdev->conn->params.bssid);
+ BUG_ON(!wdev->disconnect_bssid);
cfg80211_mlme_deauth(rdev, wdev->netdev, params->bssid,
NULL, 0,
WLAN_REASON_DEAUTH_LEAVING, false);