------------[ cut here ]------------
kernel BUG at include/linux/scatterlist.h:187!
Internal error: Oops - BUG: 0 [#1] PREEMPT SMP ARM
Modules linked in:
CPU: 1 PID: 9662 Comm: syz-executor.0 Not tainted 6.9.0-rc1-syzkaller #0
Hardware name: ARM-Versatile Express
PC is at sg_set_buf include/linux/scatterlist.h:187 [inline]
PC is at sg_init_one+0x9c/0xa8 lib/scatterlist.c:143
LR is at sg_init_table+0x2c/0x40 lib/scatterlist.c:128
pc : [<807e8650>]    lr : [<807e6a44>]    psr: 80000013
sp : dfa55c00  ip : dfa55c38  fp : dfa55c1c
r10: 00100cca  r9 : ffedc004  r8 : ff7fbf1c
r7 : 00000cde  r6 : dfa55c20  r5 : 83c5ea50  r4 : ffedc004
r3 : df000000  r2 : ffffffd8  r1 : 00000000  r0 : dfa55c20
Flags: Nzcv  IRQs on  FIQs on  Mode SVC_32  ISA ARM  Segment none
Control: 30c5387d  Table: 845b1180  DAC: 00000000
Register r0 information: 2-page vmalloc region starting at 0xdfa54000 allocated at kernel_clone+0xac/0x3cc kernel/fork.c:2796
Register r1 information: NULL pointer
Register r2 information: non-paged memory
Register r3 information: non-paged memory
Register r4 information: non-paged memory
Register r5 information: slab vmap_area start 83c5ea50 pointer offset 0 size 40
Register r6 information: 2-page vmalloc region starting at 0xdfa54000 allocated at kernel_clone+0xac/0x3cc kernel/fork.c:2796
Register r7 information: non-paged memory
Register r8 information: 0-page vmalloc region starting at 0xff7d8000 allocated at pcpu_get_vm_areas+0x0/0x12c8 mm/vmalloc.c:3064
Register r9 information: non-paged memory
Register r10 information: non-paged memory
Register r11 information: 2-page vmalloc region starting at 0xdfa54000 allocated at kernel_clone+0xac/0x3cc kernel/fork.c:2796
Register r12 information: 2-page vmalloc region starting at 0xdfa54000 allocated at kernel_clone+0xac/0x3cc kernel/fork.c:2796
Process syz-executor.0 (pid: 9662, stack limit = 0xdfa54000)
Stack: (0xdfa55c00 to 0xdfa56000)
5c00: ff7fbefc 83c5ea50 dee2aea4 83fa09c0 dfa55c7c dfa55c20 804c3ddc 807e85c0
5c20: 00000002 00000000 00000000 00000000 00000000 00000000 00000000 00000000
5c40: 00000000 00000000 00000000 00000000 00000003 05c40cec 83c5ea50 00000003
5c60: dee2aea4 8439e384 8439e380 8439e380 dfa55ca4 dfa55c80 804c6a20 804c3d2c
5c80: dee2aea4 00000000 dfa55d3c 00000000 84698000 8446e100 dfa55cf4 dfa55ca8
5ca0: 804bbbfc 804c68d0 804bd120 802e27a0 84698000 00000000 00100cca 00000000
5cc0: 00000000 05c40cec 81897c70 00000000 dee2aea4 dfa55d3c 20200000 84f04600
5ce0: ffedc000 00100cca dfa55d24 dfa55cf8 804bd450 804bbb60 dfa55d03 00000000
5d00: 01479a84 05c40cec 00000003 00000003 00000000 20000000 dfa55d74 dfa55d28
5d20: 804b8624 804bd3e0 dfa55d3c 00000000 00000001 84e34800 827e2640 00000000
5d40: defbefac 05c40cec dfa55e00 20200000 804b8560 84e34800 20600fff 20000000
5d60: 20000000 dfa55e08 dfa55ddc dfa55d78 804938c0 804b856c 8185be18 81856dbc
5d80: 8425b640 20600fff 81a1b6f0 ffe00000 20600fff 81a1b6f0 20601000 20601000
5da0: 20200000 845b1180 00000000 05c40cec 00000000 84f04f00 dfa55e08 20000000
5dc0: 20601000 81a1b6f0 8425b600 8425b600 dfa55e04 dfa55de0 80493b40 80493504
5de0: 84f04f00 20601000 20601000 20601000 81a1b6f0 8425b600 dfa55e54 dfa55e08
5e00: 80493d20 80493b08 81a1b6f0 8425b600 00000000 84f04600 00000000 00000000
5e20: 84f04600 05c40cec 00001255 84f04600 20000000 20601000 00000003 00000000
5e40: dfa55f10 8425b600 dfa55f04 dfa55e58 804b9ed8 80493b6c 84f04600 84698000
5e60: 76ad9fc8 00000000 00100077 00000000 dfa55f2c dfa55ec0 00000000 ffffffff
5e80: 804b95c4 00000003 20000000 000000dc dfa55ebc dfa55ea0 818637e8 81863454
5ea0: 00000000 05c40cec 84f04600 dfa55f10 dfa55f04 dfa55ec0 8048c0cc 818637a8
5ec0: 8425b640 1ffff000 1fffffff 8444ce0c 00000000 05c40cec 00000000 20601000
5ee0: 00000003 8425b600 804b95c4 00000000 20601000 000000dc dfa55f3c dfa55f08
5f00: 804b83c8 804b95d0 00000003 8425b67c 84f04600 05c40cec 00000000 20601000
5f20: 20000000 8425b600 00000003 8425b67c dfa55f94 dfa55f40 804ba548 804b830c
5f40: 804b95c4 00000000 00000000 00000000 00000000 00000000 00000001 00000000
5f60: dfa55f60 dfa55f60 0006b3f0 05c40cec 00000000 00000000 0014c3e8 000000dc
5f80: 80200288 84698000 dfa55fa4 dfa55f98 804ba61c 804ba3a4 00000000 dfa55fa8
5fa0: 80200060 804ba600 00000000 00000000 20000000 00600003 00000003 00000000
5fc0: 00000000 00000000 0014c3e8 000000dc 7ed5732e 7ed5732f 003d0f00 76ada0fc
5fe0: 76ad9f08 76ad9ef8 000167f8 00050bc0 60000010 20000000 00000000 00000000
Call trace: 
[<807e85b4>] (sg_init_one) from [<804c3ddc>] (zswap_decompress+0xbc/0x208 mm/zswap.c:1089)
 r7:83fa09c0 r6:dee2aea4 r5:83c5ea50 r4:ff7fbefc
[<804c3d20>] (zswap_decompress) from [<804c6a20>] (zswap_load+0x15c/0x198 mm/zswap.c:1637)
 r9:8439e380 r8:8439e380 r7:8439e384 r6:dee2aea4 r5:00000003 r4:83c5ea50
[<804c68c4>] (zswap_load) from [<804bbbfc>] (swap_read_folio+0xa8/0x498 mm/page_io.c:518)
 r9:8446e100 r8:84698000 r7:00000000 r6:dfa55d3c r5:00000000 r4:dee2aea4
[<804bbb54>] (swap_read_folio) from [<804bd450>] (read_swap_cache_async+0x7c/0x84 mm/swap_state.c:567)
 r10:00100cca r9:ffedc000 r8:84f04600 r7:20200000 r6:dfa55d3c r5:dee2aea4
 r4:00000000
[<804bd3d4>] (read_swap_cache_async) from [<804b8624>] (swapin_walk_pmd_entry+0xc4/0x1b0 mm/madvise.c:201)
 r6:20000000 r5:00000000 r4:00000003
[<804b8560>] (swapin_walk_pmd_entry) from [<804938c0>] (walk_pmd_range mm/pagewalk.c:143 [inline])
[<804b8560>] (swapin_walk_pmd_entry) from [<804938c0>] (walk_pud_range mm/pagewalk.c:221 [inline])
[<804b8560>] (swapin_walk_pmd_entry) from [<804938c0>] (walk_p4d_range mm/pagewalk.c:256 [inline])
[<804b8560>] (swapin_walk_pmd_entry) from [<804938c0>] (walk_pgd_range+0x3c8/0x604 mm/pagewalk.c:293)
 r10:dfa55e08 r9:20000000 r8:20000000 r7:20600fff r6:84e34800 r5:804b8560
 r4:20200000
[<804934f8>] (walk_pgd_range) from [<80493b40>] (__walk_page_range+0x44/0x64 mm/pagewalk.c:395)
 r10:8425b600 r9:8425b600 r8:81a1b6f0 r7:20601000 r6:20000000 r5:dfa55e08
 r4:84f04f00
[<80493afc>] (__walk_page_range) from [<80493d20>] (walk_page_range+0x1c0/0x234 mm/pagewalk.c:521)
 r9:8425b600 r8:81a1b6f0 r7:20601000 r6:20601000 r5:20601000 r4:84f04f00
[<80493b60>] (walk_page_range) from [<804b9ed8>] (madvise_willneed mm/madvise.c:272 [inline])
[<80493b60>] (walk_page_range) from [<804b9ed8>] (madvise_vma_behavior+0x914/0xd10 mm/madvise.c:1028)
 r10:8425b600 r9:dfa55f10 r8:00000000 r7:00000003 r6:20601000 r5:20000000
 r4:84f04600
[<804b95c4>] (madvise_vma_behavior) from [<804b83c8>] (madvise_walk_vmas+0xc8/0x128 mm/madvise.c:1261)
 r10:000000dc r9:20601000 r8:00000000 r7:804b95c4 r6:8425b600 r5:00000003
 r4:20601000
[<804b8300>] (madvise_walk_vmas) from [<804ba548>] (do_madvise+0x1b0/0x25c mm/madvise.c:1441)
 r9:8425b67c r8:00000003 r7:8425b600 r6:20000000 r5:20601000 r4:00000000
[<804ba398>] (do_madvise) from [<804ba61c>] (__do_sys_madvise mm/madvise.c:1454 [inline])
[<804ba398>] (do_madvise) from [<804ba61c>] (sys_madvise+0x28/0x2c mm/madvise.c:1452)
 r9:84698000 r8:80200288 r7:000000dc r6:0014c3e8 r5:00000000 r4:00000000
[<804ba5f4>] (sys_madvise) from [<80200060>] (ret_fast_syscall+0x0/0x1c arch/arm/mm/proc-v7.S:66)
Exception stack(0xdfa55fa8 to 0xdfa55ff0)
5fa0:                   00000000 00000000 20000000 00600003 00000003 00000000
5fc0: 00000000 00000000 0014c3e8 000000dc 7ed5732e 7ed5732f 003d0f00 76ada0fc
5fe0: 76ad9f08 76ad9ef8 000167f8 00050bc0
Code: 1a000004 e1822003 e8860094 e89da8f0 (e7f001f2) 
---[ end trace 0000000000000000 ]---
----------------
Code disassembly (best guess):
   0:	1a000004 	bne	0x18
   4:	e1822003 	orr	r2, r2, r3
   8:	e8860094 	stm	r6, {r2, r4, r7}
   c:	e89da8f0 	ldm	sp, {r4, r5, r6, r7, fp, sp, pc}
* 10:	e7f001f2 	udf	#18 <-- trapping instruction