------------[ cut here ]------------
WARNING: CPU: 0 PID: 5331 at net/mac80211/tx.c:5024 __ieee80211_beacon_update_cntdwn net/mac80211/tx.c:5024 [inline]
WARNING: CPU: 0 PID: 5331 at net/mac80211/tx.c:5024 __ieee80211_beacon_get+0x125d/0x1630 net/mac80211/tx.c:5453
Modules linked in:
CPU: 0 UID: 0 PID: 5331 Comm: syz.0.0 Not tainted 6.16.0-rc1-syzkaller-00239-g08215f5486ec #0 PREEMPT(full) 
Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
RIP: 0010:__ieee80211_beacon_update_cntdwn net/mac80211/tx.c:5024 [inline]
RIP: 0010:__ieee80211_beacon_get+0x125d/0x1630 net/mac80211/tx.c:5453
Code: e7 e8 67 92 32 f7 45 31 f6 4c 8b bc 24 a0 00 00 00 e9 78 fe ff ff e8 52 0c da f6 90 0f 0b 90 e9 e0 f7 ff ff e8 44 0c da f6 90 <0f> 0b 90 e9 38 fb ff ff e8 36 0c da f6 48 c7 c7 80 16 79 8f 4c 89
RSP: 0018:ffffc90000007a98 EFLAGS: 00010246
RAX: ffffffff8ae64ffc RBX: ffffffff8ae63dd6 RCX: ffff888032af2440
RDX: 0000000000000100 RSI: 0000000000000000 RDI: 0000000000000000
RBP: 0000000000000000 R08: ffff888032af2440 R09: 0000000000000003
R10: 0000000000000007 R11: 0000000000000100 R12: ffff888052e9a500
R13: dffffc0000000000 R14: ffff888052e9a9d0 R15: ffff88803fee0c24
FS:  00007f9857c0d6c0(0000) GS:ffff88808d251000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 0000000e00000010 CR3: 00000000305f6000 CR4: 0000000000352ef0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
Call Trace:
 <IRQ>
 ieee80211_beacon_get_tim+0xb4/0x2b0 net/mac80211/tx.c:5580
 ieee80211_beacon_get include/net/mac80211.h:5638 [inline]
 mac80211_hwsim_beacon_tx+0x3ce/0x860 drivers/net/wireless/virtual/mac80211_hwsim.c:2319
 __iterate_interfaces+0x2a8/0x590 net/mac80211/util.c:761
 ieee80211_iterate_active_interfaces_atomic+0xdb/0x180 net/mac80211/util.c:797
 mac80211_hwsim_beacon+0xbb/0x1c0 drivers/net/wireless/virtual/mac80211_hwsim.c:2353
 __run_hrtimer kernel/time/hrtimer.c:1761 [inline]
 __hrtimer_run_queues+0x52c/0xc60 kernel/time/hrtimer.c:1825
 hrtimer_run_softirq+0x187/0x2b0 kernel/time/hrtimer.c:1842
 handle_softirqs+0x286/0x870 kernel/softirq.c:579
 do_softirq+0xec/0x180 kernel/softirq.c:480
 </IRQ>
 <TASK>
 __local_bh_enable_ip+0x17d/0x1c0 kernel/softirq.c:407
 spin_unlock_bh include/linux/spinlock.h:396 [inline]
 crypto_acomp_unlock_stream_bh include/crypto/internal/acompress.h:203 [inline]
 scomp_acomp_comp_decomp+0x6ef/0x9e0 crypto/scompress.c:259
 crypto_acomp_compress+0x42f/0xb20 crypto/acompress.c:291
 zswap_compress mm/zswap.c:977 [inline]
 zswap_store_page mm/zswap.c:1495 [inline]
 zswap_store+0xe3c/0x1d10 mm/zswap.c:1604
 swap_writeout+0x6d9/0xce0 mm/page_io.c:277
 pageout mm/vmscan.c:720 [inline]
 shrink_folio_list+0x31ba/0x4e90 mm/vmscan.c:1452
 evict_folios+0x4447/0x5500 mm/vmscan.c:4731
 try_to_shrink_lruvec+0x705/0x990 mm/vmscan.c:4892
 shrink_one+0x21b/0x7c0 mm/vmscan.c:4937
 shrink_many mm/vmscan.c:5000 [inline]
 lru_gen_shrink_node mm/vmscan.c:5078 [inline]
 shrink_node+0x314e/0x3760 mm/vmscan.c:6060
 shrink_zones mm/vmscan.c:6318 [inline]
 do_try_to_free_pages+0x66b/0x1960 mm/vmscan.c:6380
 try_to_free_pages+0x8a2/0xdd0 mm/vmscan.c:6626
 __perform_reclaim mm/page_alloc.c:4121 [inline]
 __alloc_pages_direct_reclaim+0x144/0x300 mm/page_alloc.c:4143
 __alloc_pages_slowpath+0x5ff/0xce0 mm/page_alloc.c:4592
 __alloc_frozen_pages_noprof+0x319/0x370 mm/page_alloc.c:4972
 alloc_pages_mpol+0x232/0x4a0 mm/mempolicy.c:2419
 alloc_slab_page mm/slub.c:2451 [inline]
 allocate_slab+0xe2/0x3b0 mm/slub.c:2627
 new_slab mm/slub.c:2673 [inline]
 ___slab_alloc+0xbfc/0x1480 mm/slub.c:3859
 __slab_alloc mm/slub.c:3949 [inline]
 __slab_alloc_node mm/slub.c:4024 [inline]
 slab_alloc_node mm/slub.c:4185 [inline]
 __do_kmalloc_node mm/slub.c:4327 [inline]
 __kmalloc_node_track_caller_noprof+0x2f8/0x4e0 mm/slub.c:4347
 __do_krealloc mm/slub.c:4905 [inline]
 krealloc_noprof+0x124/0x340 mm/slub.c:4958
 copy_array+0x63/0xf0 kernel/bpf/verifier.c:1381
 copy_stack_state kernel/bpf/verifier.c:1441 [inline]
 copy_func_state kernel/bpf/verifier.c:1727 [inline]
 copy_verifier_state+0x848/0xed0 kernel/bpf/verifier.c:1768
 push_stack+0x197/0x3c0 kernel/bpf/verifier.c:2033
 check_cond_jmp_op+0x1069/0x2340 kernel/bpf/verifier.c:16539
 do_check+0x6d3a/0xd450 kernel/bpf/verifier.c:19701
 do_check_common+0x168d/0x20b0 kernel/bpf/verifier.c:22808
 do_check_main kernel/bpf/verifier.c:22899 [inline]
 bpf_check+0x13664/0x19c60 kernel/bpf/verifier.c:24065
 bpf_prog_load+0x1318/0x1930 kernel/bpf/syscall.c:2972
 __sys_bpf+0x5f1/0x860 kernel/bpf/syscall.c:5836
 __do_sys_bpf kernel/bpf/syscall.c:5943 [inline]
 __se_sys_bpf kernel/bpf/syscall.c:5941 [inline]
 __x64_sys_bpf+0x7c/0x90 kernel/bpf/syscall.c:5941
 do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]
 do_syscall_64+0xfa/0x3b0 arch/x86/entry/syscall_64.c:94
 entry_SYSCALL_64_after_hwframe+0x77/0x7f
RIP: 0033:0x7f9856d8e929
Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
RSP: 002b:00007f9857c0d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
RAX: ffffffffffffffda RBX: 00007f9856fb5fa0 RCX: 00007f9856d8e929
RDX: 0000000000000048 RSI: 0000200000000200 RDI: 0000000000000005
RBP: 00007f9856e10b39 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
R13: 0000000000000000 R14: 00007f9856fb5fa0 R15: 00007ffec8fb3018
 </TASK>