------------[ cut here ]------------
kernel BUG at include/linux/scatterlist.h:187!
Internal error: Oops - BUG: 0 [#1] PREEMPT SMP ARM
Modules linked in:
CPU: 1 PID: 5170 Comm: syz-executor815 Not tainted 6.8.0-syzkaller #0
Hardware name: ARM-Versatile Express
PC is at sg_set_buf include/linux/scatterlist.h:187 [inline]
PC is at sg_init_one+0x9c/0xa8 lib/scatterlist.c:143
LR is at sg_init_table+0x2c/0x40 lib/scatterlist.c:128
pc : [<807e1748>]    lr : [<807dfb3c>]    psr: 80000013
sp : ee5c9988  ip : ee5c99c0  fp : ee5c99a4
r10: 00000000  r9 : ffeda004  r8 : ff7fbf14
r7 : 0000005d  r6 : ee5c99a8  r5 : 84646410  r4 : ffeda004
r3 : df000000  r2 : ffffffd8  r1 : 00000000  r0 : ee5c99a8
Flags: Nzcv  IRQs on  FIQs on  Mode SVC_32  ISA ARM  Segment none
Control: 30c5387d  Table: 8449e9c0  DAC: 00000000
Register r0 information: 2-page vmalloc region starting at 0xee5c8000 allocated at kernel_clone+0xac/0x3cc kernel/fork.c:2796
Register r1 information: NULL pointer
Register r2 information: non-paged memory
Register r3 information: non-paged memory
Register r4 information: non-paged memory
Register r5 information: slab vmap_area start 84646410 pointer offset 0 size 40
Register r6 information: 2-page vmalloc region starting at 0xee5c8000 allocated at kernel_clone+0xac/0x3cc kernel/fork.c:2796
Register r7 information: non-paged memory
Register r8 information: 0-page vmalloc region starting at 0xff7d8000 allocated at pcpu_get_vm_areas+0x0/0x12c8 mm/vmalloc.c:3064
Register r9 information: non-paged memory
Register r10 information: NULL pointer
Register r11 information: 2-page vmalloc region starting at 0xee5c8000 allocated at kernel_clone+0xac/0x3cc kernel/fork.c:2796
Register r12 information: 2-page vmalloc region starting at 0xee5c8000 allocated at kernel_clone+0xac/0x3cc kernel/fork.c:2796
Process syz-executor815 (pid: 5170, stack limit = 0xee5c8000)
Stack: (0xee5c9988 to 0xee5ca000)
9980:                   ff7fbef4 84646410 dee0f6a0 841a23c0 ee5c9a04 ee5c99a8
99a0: 804c1824 807e16b8 00000002 00000000 00000000 00000000 00000000 00000000
99c0: 00000000 00000000 00000000 00000000 00000000 00000000 0000016c edae0739
99e0: 84646410 0000016c dee0f6a0 84301684 84301680 84301680 ee5c9a2c ee5c9a08
9a00: 804c4468 804c1774 dee0f6a0 00000001 ee5c9a9c 00000000 836ee000 84445d00
9a20: ee5c9a7c ee5c9a30 804b9644 804c4318 804bab68 802e2238 80477e04 00000000
9a40: 00100cca 00000000 00000000 edae0739 ffeff000 0000016c 00100cca 00000000
9a60: 00000000 ee5c9a9b 0000016f 00000000 ee5c9af4 ee5c9a80 804bb064 804b95a8
9a80: ee5c9a9b 00000000 836ea400 dee0f6a0 0000016c 0000016c 015c9b08 00000000
9aa0: 00000000 00000000 00000000 00000000 00000001 00000000 ee5c9ab8 ee5c9ab8
9ac0: 8185c338 edae0739 00000406 00000001 00000000 0000016c 84415ba0 00100cca
9ae0: 00000000 ee5c9c08 ee5c9b6c ee5c9af8 804bb3b8 804baeac 00000000 edae0739
9b00: 802daf8c ee5c9c08 00000000 00000000 ee5c9b44 ee5c9b20 8042c648 8042c49c
9b20: ee5c9c08 8260cac8 84415ba0 20000000 84445d00 00000000 ee5c9b6c edae0739
9b40: 804ba838 ee5c9c08 00000000 0000016c 84415ba0 84445d00 00000000 00000000
9b60: ee5c9bcc ee5c9b70 8047cde0 804bb35c 80491ed4 80477794 ee5c9c3c 836ee000
9b80: 00000000 00000000 20000000 83ff9500 ee5c9bcc ee5c9ba0 84445d00 80491e5c
9ba0: fe723003 00000214 836ee000 20000000 84415ba0 20000000 83ff9500 00000000
9bc0: ee5c9c7c ee5c9bd0 8047e6c4 8047cbec 83ff9540 ffffffff ee5c9c40 20000720
9be0: 81c64fd4 8448830c 83ff9540 20000000 20ffffff 8448830c 00000000 ffffffff
9c00: ee5c9c08 ee5c9d00 84415ba0 00000cc0 00020000 20000000 20000000 00000a14
9c20: 8464e800 8449e9c0 00016c80 00000000 00000000 00000000 00000000 defc1100
9c40: 00000000 00000000 ee5c9c7c edae0739 8047dd80 ee5c9d00 20000720 00000214
9c60: 00000207 20000000 83ff9500 00000007 ee5c9cc4 ee5c9c80 80215d28 8047e2f8
9c80: 00000186 20200000 20201000 84653f00 ee5c9cac 836ee000 80217ed4 8261d0e0
9ca0: 00000207 20000720 ee5c9d00 80215be0 836ee000 ffedc1c0 ee5c9cfc ee5c9cc8
9cc0: 80216170 80215bec 00000000 00200000 00040000 836ee000 8415a400 8182fd3c
9ce0: 80000013 ffffffff ee5c9d34 00000d5f ee5c9dbc ee5c9d00 80200ae4 80216144
9d00: ffedc1c0 20000720 00000d5b 00000000 00000e40 000002a1 00000000 20000480
9d20: 00000d5f ee5c9edc ffedc1c0 ee5c9dbc 00000001 ee5c9d4c 807e43dc 8182fd3c
9d40: 80000013 ffffffff 80895268 ffedc1c0 00000d5f 00000000 00000e40 807e43dc
9d60: 828574e8 00200000 ee5c9dac ee5c9eb8 80477720 8027ad20 f2dc071f 00c00000
9d80: 00000001 edae0739 00000001 edae0739 000001c0 00200000 000001c0 00000e40
9da0: dee1ff00 00000000 828574e8 ffedc000 ee5c9df4 ee5c9dc0 807e4930 807e4284
9dc0: ee5c9df4 ee5c9eb8 000001c0 00200000 00000201 ee5c9eb8 840d1004 00000001
9de0: 00000e40 00200000 ee5c9ea4 ee5c9df8 8049f320 807e4834 840d1000 ee5c9e30
9e00: 000013d6 fffff000 00000005 ee5c9f40 00000006 84168c00 00000201 00200000
9e20: 00201000 20000000 840d1000 8415a400 00000001 00000000 00000000 00000000
9e40: 00000000 00000000 00000000 00000000 00000000 00000000 00000000 00000000
9e60: 00000000 00000000 00000000 00000000 00000000 edae0739 807e6040 000013d6
9e80: ee5c9f14 200003c0 00000865 ee5c9f14 00000000 ee5c9ed4 ee5c9f84 ee5c9ea8
9ea0: 8049f6a8 8049f110 00000001 ee5c9eb8 83ff9500 00000000 00010001 000002a1
9ec0: ee5c9edc 000010aa 00000007 00000000 8464e800 20004800 0000008b 20000480
9ee0: 00001000 20001480 00000078 20001540 0000008b 20001600 000000e3 20001700
9f00: 000000fb 200001c0 00000013 20001800 00000057 20000200 000000c5 20001a00
9f20: 0000003f 20001a80 000000e2 20001b80 000000f3 20001c80 00000053 200001c0
9f40: 00200000 00000000 00000000 00000000 00000000 edae0739 ee5c9fb0 00000006
9f60: 00000000 00000000 00000179 80200288 836ee000 00000179 ee5c9fa4 ee5c9f88
9f80: 8049f72c 8049f588 00000006 00000000 00000001 ffffffff 00000000 ee5c9fa8
9fa0: 80200060 8049f70c 00000006 00000000 00000865 20001880 00000008 200003c0
9fc0: 00000006 00000000 00000000 00000179 00000013 7eb7d97f 003d0f00 76f2f29c
9fe0: 76f2f138 76f2f128 000116a4 00035cb0 60000010 00000865 00000000 00000000
Backtrace: 
[<807e16ac>] (sg_init_one) from [<804c1824>] (zswap_decompress+0xbc/0x208 mm/zswap.c:1089)
 r7:841a23c0 r6:dee0f6a0 r5:84646410 r4:ff7fbef4
[<804c1768>] (zswap_decompress) from [<804c4468>] (zswap_load+0x15c/0x198 mm/zswap.c:1637)
 r9:84301680 r8:84301680 r7:84301684 r6:dee0f6a0 r5:0000016c r4:84646410
[<804c430c>] (zswap_load) from [<804b9644>] (swap_read_folio+0xa8/0x498 mm/page_io.c:518)
 r9:84445d00 r8:836ee000 r7:00000000 r6:ee5c9a9c r5:00000001 r4:dee0f6a0
[<804b959c>] (swap_read_folio) from [<804bb064>] (swap_cluster_readahead+0x1c4/0x34c mm/swap_state.c:684)
 r10:00000000 r9:0000016f r8:ee5c9a9b r7:00000000 r6:00000000 r5:00100cca
 r4:0000016c
[<804baea0>] (swap_cluster_readahead) from [<804bb3b8>] (swapin_readahead+0x68/0x4a8 mm/swap_state.c:904)
 r10:ee5c9c08 r9:00000000 r8:00100cca r7:84415ba0 r6:0000016c r5:00000000
 r4:00000001
[<804bb350>] (swapin_readahead) from [<8047cde0>] (do_swap_page+0x200/0xcc4 mm/memory.c:4046)
 r10:00000000 r9:00000000 r8:84445d00 r7:84415ba0 r6:0000016c r5:00000000
 r4:ee5c9c08
[<8047cbe0>] (do_swap_page) from [<8047e6c4>] (handle_pte_fault mm/memory.c:5301 [inline])
[<8047cbe0>] (do_swap_page) from [<8047e6c4>] (__handle_mm_fault mm/memory.c:5439 [inline])
[<8047cbe0>] (do_swap_page) from [<8047e6c4>] (handle_mm_fault+0x3d8/0x12b8 mm/memory.c:5604)
 r10:00000000 r9:83ff9500 r8:20000000 r7:84415ba0 r6:20000000 r5:836ee000
 r4:00000214
[<8047e2ec>] (handle_mm_fault) from [<80215d28>] (do_page_fault+0x148/0x3a8 arch/arm/mm/fault.c:326)
 r10:00000007 r9:83ff9500 r8:20000000 r7:00000207 r6:00000214 r5:20000720
 r4:ee5c9d00
[<80215be0>] (do_page_fault) from [<80216170>] (do_DataAbort+0x38/0xa8 arch/arm/mm/fault.c:558)
 r10:ffedc1c0 r9:836ee000 r8:80215be0 r7:ee5c9d00 r6:20000720 r5:00000207
 r4:8261d0e0
[<80216138>] (do_DataAbort) from [<80200ae4>] (__dabt_svc+0x44/0x60 arch/arm/kernel/entry-armv.S:212)
Exception stack(0xee5c9d00 to 0xee5c9d48)
9d00: ffedc1c0 20000720 00000d5b 00000000 00000e40 000002a1 00000000 20000480
9d20: 00000d5f ee5c9edc ffedc1c0 ee5c9dbc 00000001 ee5c9d4c 807e43dc 8182fd3c
9d40: 80000013 ffffffff
 r8:00000d5f r7:ee5c9d34 r6:ffffffff r5:80000013 r4:8182fd3c
[<807e4278>] (_copy_from_iter) from [<807e4930>] (copy_page_from_iter lib/iov_iter.c:422 [inline])
[<807e4278>] (_copy_from_iter) from [<807e4930>] (copy_page_from_iter+0x108/0x144 lib/iov_iter.c:411)
 r10:ffedc000 r9:828574e8 r8:00000000 r7:dee1ff00 r6:00000e40 r5:000001c0
 r4:00200000
[<807e4828>] (copy_page_from_iter) from [<8049f320>] (process_vm_rw_pages mm/process_vm_access.c:43 [inline])
[<807e4828>] (copy_page_from_iter) from [<8049f320>] (process_vm_rw_single_vec mm/process_vm_access.c:118 [inline])
[<807e4828>] (copy_page_from_iter) from [<8049f320>] (process_vm_rw_core.constprop.0+0x21c/0x478 mm/process_vm_access.c:216)
 r10:00200000 r9:00000e40 r8:00000001 r7:840d1004 r6:ee5c9eb8 r5:00000201
 r4:00200000
[<8049f104>] (process_vm_rw_core.constprop.0) from [<8049f6a8>] (process_vm_rw+0x12c/0x150 mm/process_vm_access.c:284)
 r10:ee5c9ed4 r9:00000000 r8:ee5c9f14 r7:00000865 r6:200003c0 r5:ee5c9f14
 r4:000013d6
[<8049f57c>] (process_vm_rw) from [<8049f72c>] (__do_sys_process_vm_writev mm/process_vm_access.c:304 [inline])
[<8049f57c>] (process_vm_rw) from [<8049f72c>] (sys_process_vm_writev+0x2c/0x34 mm/process_vm_access.c:299)
 r10:00000179 r9:836ee000 r8:80200288 r7:00000179 r6:00000000 r5:00000000
 r4:00000006
[<8049f700>] (sys_process_vm_writev) from [<80200060>] (ret_fast_syscall+0x0/0x1c arch/arm/mm/proc-v7.S:66)
Exception stack(0xee5c9fa8 to 0xee5c9ff0)
9fa0:                   00000006 00000000 00000865 20001880 00000008 200003c0
9fc0: 00000006 00000000 00000000 00000179 00000013 7eb7d97f 003d0f00 76f2f29c
9fe0: 76f2f138 76f2f128 000116a4 00035cb0
Code: 1a000004 e1822003 e8860094 e89da8f0 (e7f001f2) 
---[ end trace 0000000000000000 ]---
----------------
Code disassembly (best guess):
   0:	1a000004 	bne	0x18
   4:	e1822003 	orr	r2, r2, r3
   8:	e8860094 	stm	r6, {r2, r4, r7}
   c:	e89da8f0 	ldm	sp, {r4, r5, r6, r7, fp, sp, pc}
* 10:	e7f001f2 	udf	#18 <-- trapping instruction