------------[ cut here ]------------
kernel BUG at include/linux/scatterlist.h:187!
Internal error: Oops - BUG: 0 [#1] PREEMPT SMP ARM
Modules linked in:
CPU: 1 PID: 7725 Comm: syz-executor.0 Not tainted 6.9.0-rc1-syzkaller #0
Hardware name: ARM-Versatile Express
PC is at sg_set_buf include/linux/scatterlist.h:187 [inline]
PC is at sg_init_one+0x9c/0xa8 lib/scatterlist.c:143
LR is at sg_init_table+0x2c/0x40 lib/scatterlist.c:128
pc : [<807e8650>]    lr : [<807e6a44>]    psr: 80000013
sp : df9e9c00  ip : df9e9c38  fp : df9e9c1c
r10: 00100cca  r9 : ffedc004  r8 : ff7fbf1c
r7 : 00000cde  r6 : df9e9c20  r5 : 84ab0780  r4 : ffedc004
r3 : df000000  r2 : ffffffd8  r1 : 00000000  r0 : df9e9c20
Flags: Nzcv  IRQs on  FIQs on  Mode SVC_32  ISA ARM  Segment none
Control: 30c5387d  Table: 84bcca80  DAC: 00000000
Register r0 information: 2-page vmalloc region starting at 0xdf9e8000 allocated at kernel_clone+0xac/0x3cc kernel/fork.c:2796
Register r1 information: NULL pointer
Register r2 information: non-paged memory
Register r3 information: non-paged memory
Register r4 information: non-paged memory
Register r5 information: slab vmap_area start 84ab0780 pointer offset 0 size 40
Register r6 information: 2-page vmalloc region starting at 0xdf9e8000 allocated at kernel_clone+0xac/0x3cc kernel/fork.c:2796
Register r7 information: non-paged memory
Register r8 information: 0-page vmalloc region starting at 0xff7d8000 allocated at pcpu_get_vm_areas+0x0/0x12c8 mm/vmalloc.c:3064
Register r9 information: non-paged memory
Register r10 information: non-paged memory
Register r11 information: 2-page vmalloc region starting at 0xdf9e8000 allocated at kernel_clone+0xac/0x3cc kernel/fork.c:2796
Register r12 information: 2-page vmalloc region starting at 0xdf9e8000 allocated at kernel_clone+0xac/0x3cc kernel/fork.c:2796
Process syz-executor.0 (pid: 7725, stack limit = 0xdf9e8000)
Stack: (0xdf9e9c00 to 0xdf9ea000)
9c00: ff7fbefc 84ab0780 dedd5dac 83d50480 df9e9c7c df9e9c20 804c3ddc 807e85c0
9c20: 00000002 00000000 00000000 00000000 00000000 00000000 00000000 00000000
9c40: 00000000 00000000 00000000 00000000 00000001 dc246752 84ab0780 00000001
9c60: dedd5dac 83bc5cc4 83bc5cc0 83bc5cc0 df9e9ca4 df9e9c80 804c6a20 804c3d2c
9c80: dedd5dac 00000000 df9e9d3c 00000000 84a9bc00 849d4500 df9e9cf4 df9e9ca8
9ca0: 804bbbfc 804c68d0 804bd120 802e27a0 84a9bc00 00000000 00100cca 00000000
9cc0: 00000000 dc246752 81897c70 00000000 dedd5dac df9e9d3c 20001000 84248120
9ce0: ffefd000 00100cca df9e9d24 df9e9cf8 804bd450 804bbb60 df9e9d03 00000000
9d00: 01479a84 dc246752 00000001 00000001 00000000 20000000 df9e9d74 df9e9d28
9d20: 804b8624 804bd3e0 df9e9d3c 82c448fd 84260f00 85209800 df9e9d6c 00000000
9d40: defae1ac dc246752 dddd0280 20200000 804b8560 85209800 20000fff 20000000
9d60: 20000000 df9e9e08 df9e9ddc df9e9d78 804938c0 804b856c 8185be18 81856dbc
9d80: 84260f40 20000fff 81a1b6f0 ffe00000 20000fff 81a1b6f0 20001000 20001000
9da0: 20001000 84bcca80 00000000 dc246752 00000000 84248f00 df9e9e08 20000000
9dc0: 20001000 81a1b6f0 84260f00 84260f00 df9e9e04 df9e9de0 80493b40 80493504
9de0: 84248f00 20001000 20001000 20001000 81a1b6f0 84260f00 df9e9e54 df9e9e08
9e00: 80493d20 80493b08 81a1b6f0 84260f00 00000000 84248120 00000000 00000000
9e20: 84248120 dc246752 00000064 84248120 20000000 20001000 00000003 00000000
9e40: df9e9f10 84260f00 df9e9f04 df9e9e58 804b9ed8 80493b6c 84248120 00000298
9e60: 00000000 00000000 00100077 00000000 00000000 df9e9ec0 00000000 ffffffff
9e80: 804b95c4 00000003 20000000 000000dc df9e9ebc df9e9ea0 818637e8 81863454
9ea0: 00000000 dc246752 84248120 df9e9f10 df9e9f04 df9e9ec0 8048c0cc 818637a8
9ec0: 84260f40 1ffff000 1fffffff 82edf20c 00000000 dc246752 00000000 20601000
9ee0: 00000003 84260f00 804b95c4 00000000 20001000 000000dc df9e9f3c df9e9f08
9f00: 804b83c8 804b95d0 00000003 84260f7c 84248120 dc246752 00000000 20601000
9f20: 20000000 84260f00 00000003 84260f7c df9e9f94 df9e9f40 804ba548 804b830c
9f40: 804b95c4 8027b094 00000000 00000000 00000000 00000000 00000001 00000000
9f60: df9e9f60 df9e9f60 0006b3f0 dc246752 00000000 00000000 0014c2c8 000000dc
9f80: 80200288 84a9bc00 df9e9fa4 df9e9f98 804ba61c 804ba3a4 00000000 df9e9fa8
9fa0: 80200060 804ba600 00000000 00000000 20000000 00600003 00000003 00000000
9fc0: 00000000 00000000 0014c2c8 000000dc 7ef8332e 7ef8332f 003d0f00 76be50fc
9fe0: 76be4f08 76be4ef8 000167f8 00050bc0 60000010 20000000 00000000 00000000
Call trace: 
[<807e85b4>] (sg_init_one) from [<804c3ddc>] (zswap_decompress+0xbc/0x208 mm/zswap.c:1089)
 r7:83d50480 r6:dedd5dac r5:84ab0780 r4:ff7fbefc
[<804c3d20>] (zswap_decompress) from [<804c6a20>] (zswap_load+0x15c/0x198 mm/zswap.c:1637)
 r9:83bc5cc0 r8:83bc5cc0 r7:83bc5cc4 r6:dedd5dac r5:00000001 r4:84ab0780
[<804c68c4>] (zswap_load) from [<804bbbfc>] (swap_read_folio+0xa8/0x498 mm/page_io.c:518)
 r9:849d4500 r8:84a9bc00 r7:00000000 r6:df9e9d3c r5:00000000 r4:dedd5dac
[<804bbb54>] (swap_read_folio) from [<804bd450>] (read_swap_cache_async+0x7c/0x84 mm/swap_state.c:567)
 r10:00100cca r9:ffefd000 r8:84248120 r7:20001000 r6:df9e9d3c r5:dedd5dac
 r4:00000000
[<804bd3d4>] (read_swap_cache_async) from [<804b8624>] (swapin_walk_pmd_entry+0xc4/0x1b0 mm/madvise.c:201)
 r6:20000000 r5:00000000 r4:00000001
[<804b8560>] (swapin_walk_pmd_entry) from [<804938c0>] (walk_pmd_range mm/pagewalk.c:143 [inline])
[<804b8560>] (swapin_walk_pmd_entry) from [<804938c0>] (walk_pud_range mm/pagewalk.c:221 [inline])
[<804b8560>] (swapin_walk_pmd_entry) from [<804938c0>] (walk_p4d_range mm/pagewalk.c:256 [inline])
[<804b8560>] (swapin_walk_pmd_entry) from [<804938c0>] (walk_pgd_range+0x3c8/0x604 mm/pagewalk.c:293)
 r10:df9e9e08 r9:20000000 r8:20000000 r7:20000fff r6:85209800 r5:804b8560
 r4:20200000
[<804934f8>] (walk_pgd_range) from [<80493b40>] (__walk_page_range+0x44/0x64 mm/pagewalk.c:395)
 r10:84260f00 r9:84260f00 r8:81a1b6f0 r7:20001000 r6:20000000 r5:df9e9e08
 r4:84248f00
[<80493afc>] (__walk_page_range) from [<80493d20>] (walk_page_range+0x1c0/0x234 mm/pagewalk.c:521)
 r9:84260f00 r8:81a1b6f0 r7:20001000 r6:20001000 r5:20001000 r4:84248f00
[<80493b60>] (walk_page_range) from [<804b9ed8>] (madvise_willneed mm/madvise.c:272 [inline])
[<80493b60>] (walk_page_range) from [<804b9ed8>] (madvise_vma_behavior+0x914/0xd10 mm/madvise.c:1028)
 r10:84260f00 r9:df9e9f10 r8:00000000 r7:00000003 r6:20001000 r5:20000000
 r4:84248120
[<804b95c4>] (madvise_vma_behavior) from [<804b83c8>] (madvise_walk_vmas+0xc8/0x128 mm/madvise.c:1261)
 r10:000000dc r9:20001000 r8:00000000 r7:804b95c4 r6:84260f00 r5:00000003
 r4:20601000
[<804b8300>] (madvise_walk_vmas) from [<804ba548>] (do_madvise+0x1b0/0x25c mm/madvise.c:1441)
 r9:84260f7c r8:00000003 r7:84260f00 r6:20000000 r5:20601000 r4:00000000
[<804ba398>] (do_madvise) from [<804ba61c>] (__do_sys_madvise mm/madvise.c:1454 [inline])
[<804ba398>] (do_madvise) from [<804ba61c>] (sys_madvise+0x28/0x2c mm/madvise.c:1452)
 r9:84a9bc00 r8:80200288 r7:000000dc r6:0014c2c8 r5:00000000 r4:00000000
[<804ba5f4>] (sys_madvise) from [<80200060>] (ret_fast_syscall+0x0/0x1c arch/arm/mm/proc-v7.S:66)
Exception stack(0xdf9e9fa8 to 0xdf9e9ff0)
9fa0:                   00000000 00000000 20000000 00600003 00000003 00000000
9fc0: 00000000 00000000 0014c2c8 000000dc 7ef8332e 7ef8332f 003d0f00 76be50fc
9fe0: 76be4f08 76be4ef8 000167f8 00050bc0
Code: 1a000004 e1822003 e8860094 e89da8f0 (e7f001f2) 
---[ end trace 0000000000000000 ]---
----------------
Code disassembly (best guess):
   0:	1a000004 	bne	0x18
   4:	e1822003 	orr	r2, r2, r3
   8:	e8860094 	stm	r6, {r2, r4, r7}
   c:	e89da8f0 	ldm	sp, {r4, r5, r6, r7, fp, sp, pc}
* 10:	e7f001f2 	udf	#18 <-- trapping instruction