------------[ cut here ]------------
kernel BUG at include/linux/scatterlist.h:187!
Internal error: Oops - BUG: 0 [#1] PREEMPT SMP ARM
Modules linked in:
CPU: 1 PID: 21545 Comm: syz-executor.1 Not tainted 6.9.0-rc1-syzkaller #0
Hardware name: ARM-Versatile Express
PC is at sg_set_buf include/linux/scatterlist.h:187 [inline]
PC is at sg_init_one+0x9c/0xa8 lib/scatterlist.c:143
LR is at sg_init_table+0x2c/0x40 lib/scatterlist.c:128
pc : [<807e8650>]    lr : [<807e6a44>]    psr: 80000113
sp : dfb39b50  ip : dfb39b88  fp : dfb39b6c
r10: 00000000  r9 : ffedc004  r8 : ff7fbf1c
r7 : 00000050  r6 : dfb39b70  r5 : 84062f00  r4 : ffedc004
r3 : df000000  r2 : ffffffd8  r1 : 00000000  r0 : dfb39b70
Flags: Nzcv  IRQs on  FIQs on  Mode SVC_32  ISA ARM  Segment none
Control: 30c5387d  Table: 85022b80  DAC: 00000000
Register r0 information: 2-page vmalloc region starting at 0xdfb38000 allocated at kernel_clone+0xac/0x3cc kernel/fork.c:2796
Register r1 information: NULL pointer
Register r2 information: non-paged memory
Register r3 information: non-paged memory
Register r4 information: non-paged memory
Register r5 information: slab vmap_area start 84062f00 pointer offset 0 size 40
Register r6 information: 2-page vmalloc region starting at 0xdfb38000 allocated at kernel_clone+0xac/0x3cc kernel/fork.c:2796
Register r7 information: non-paged memory
Register r8 information: 0-page vmalloc region starting at 0xff7d8000 allocated at pcpu_get_vm_areas+0x0/0x12c8 mm/vmalloc.c:3064
Register r9 information: non-paged memory
Register r10 information: NULL pointer
Register r11 information: 2-page vmalloc region starting at 0xdfb38000 allocated at kernel_clone+0xac/0x3cc kernel/fork.c:2796
Register r12 information: 2-page vmalloc region starting at 0xdfb38000 allocated at kernel_clone+0xac/0x3cc kernel/fork.c:2796
Process syz-executor.1 (pid: 21545, stack limit = 0xdfb38000)
Stack: (0xdfb39b50 to 0xdfb3a000)
9b40:                                     ff7fbefc 84062f00 dee0feec 83edff00
9b60: dfb39bcc dfb39b70 804c3ddc 807e85c0 00000002 00000000 00000000 00000000
9b80: 00000000 00000000 00000000 00000000 00000000 00000000 00000000 00000000
9ba0: 000001bf e7690671 84062f00 000001bf dee0feec 8441a704 8441a700 8441a700
9bc0: dfb39bf4 dfb39bd0 804c6a20 804c3d2c dee0feec 00000001 dfb39c64 00000000
9be0: 84c68c00 83edc600 dfb39c44 dfb39bf8 804bbbfc 804c68d0 804bd120 802e27a0
9c00: 00000000 00000000 00100cca 00000000 00000000 e7690671 dfb39c63 000001bf
9c20: 00100cca 00000000 00000000 dfb39c63 000001bf 00000000 dfb39cbc dfb39c48
9c40: 804bd61c 804bbb60 dfb39c63 00000000 00000001 dee0feec 000001bf 000001bf
9c60: 01b39cd0 00000000 00000000 00000000 00000000 00000000 00000001 00000000
9c80: dfb39c80 dfb39c80 818753b0 e7690671 00000406 00000001 00000000 000001bf
9ca0: 84fdc780 00100cca 00000000 dfb39dd0 dfb39d34 dfb39cc0 804bd970 804bd464
9cc0: 00000000 e7690671 802db4f4 dfb39dd0 00000000 00000000 dfb39d0c dfb39ce8
9ce0: 8042e9b8 8042e80c dfb39dd0 8260cac8 84fdc780 20000000 83edc600 00000000
9d00: dfb39d34 e7690671 804bcdf0 dfb39dd0 00000000 000001bf 84fdc780 83edc600
9d20: 00000000 00000000 dfb39d94 dfb39d38 8047f370 804bd914 80494464 80479d24
9d40: dfb39e04 84c68c00 00000000 00000000 20000000 84767300 dfb39d94 dfb39d68
9d60: 83edc600 804943ec eb35f003 00000215 84c68c00 20000000 84fdc780 20000000
9d80: 84767300 00000000 dfb39e44 dfb39d98 80480c54 8047f17c 84767340 ffffffff
9da0: dfb39e08 20000000 81c66394 8661860c 84767340 20000000 20ffffff 8661860c
9dc0: 00000000 ffffffff dfb39dd0 dfb39ec8 84fdc780 00000cc0 00020000 20000000
9de0: 20000000 00000a15 86772800 85022b80 0001bf80 00000000 00000000 00000000
9e00: 00000000 ded0c970 00000000 00000000 dfb39e44 e7690671 80480310 dfb39ec8
9e20: 20000000 00000215 00000a07 20000000 84767300 00000002 dfb39e8c dfb39e48
9e40: 80215d94 80480888 ffffffef 00000001 00000000 e7690671 00000010 84c68c00
9e60: 82199dc0 8261d0e0 00000a07 20000000 dfb39ec8 80215c4c 84c68c00 85184900
9e80: dfb39ec4 dfb39e90 802161dc 80215c58 dfb39ee4 dfb39ea0 806d26e4 806d24dc
9ea0: 00000000 8184b328 80000013 ffffffff dfb39efc 00000003 dfb39fa4 dfb39ec8
9ec0: 80200ae4 802161b0 20000000 7effffff 00000000 00000000 0000541b 00000000
9ee0: 85184901 20000000 00000003 84c68c00 85184900 dfb39fa4 a1000003 dfb39f18
9f00: 8050fbec 8184b328 80000013 ffffffff 8050fa34 806c901c 84c68c00 00000001
9f20: ecac8b10 84c68c00 dfb39f44 dfb39f38 81897c90 81897b5c dfb39f5c dfb39f48
9f40: 8024c880 8027b094 40000000 dfb39fb0 dfb39f84 dfb39f60 8020316c 8024c83c
9f60: 8261ca0c dfb39fb0 0006b3f0 ecac8b10 80203054 e7690671 dfb39fac 00000000
9f80: 00000000 0014c2c8 00000036 80200288 84c68c00 00000036 00000000 dfb39fa8
9fa0: 80200060 8050f9f0 00000000 00000000 00000003 0000541b 20000000 00000000
9fc0: 00000000 00000000 0014c2c8 00000036 7eb0232e 7eb0232f 003d0f00 76b600fc
9fe0: 76b5ff08 76b5fef8 000167f8 00050bc0 60000010 00000003 00000000 00000000
Call trace: 
[<807e85b4>] (sg_init_one) from [<804c3ddc>] (zswap_decompress+0xbc/0x208 mm/zswap.c:1089)
 r7:83edff00 r6:dee0feec r5:84062f00 r4:ff7fbefc
[<804c3d20>] (zswap_decompress) from [<804c6a20>] (zswap_load+0x15c/0x198 mm/zswap.c:1637)
 r9:8441a700 r8:8441a700 r7:8441a704 r6:dee0feec r5:000001bf r4:84062f00
[<804c68c4>] (zswap_load) from [<804bbbfc>] (swap_read_folio+0xa8/0x498 mm/page_io.c:518)
 r9:83edc600 r8:84c68c00 r7:00000000 r6:dfb39c64 r5:00000001 r4:dee0feec
[<804bbb54>] (swap_read_folio) from [<804bd61c>] (swap_cluster_readahead+0x1c4/0x34c mm/swap_state.c:684)
 r10:00000000 r9:000001bf r8:dfb39c63 r7:00000000 r6:00000000 r5:00100cca
 r4:000001bf
[<804bd458>] (swap_cluster_readahead) from [<804bd970>] (swapin_readahead+0x68/0x4a8 mm/swap_state.c:904)
 r10:dfb39dd0 r9:00000000 r8:00100cca r7:84fdc780 r6:000001bf r5:00000000
 r4:00000001
[<804bd908>] (swapin_readahead) from [<8047f370>] (do_swap_page+0x200/0xcc4 mm/memory.c:4046)
 r10:00000000 r9:00000000 r8:83edc600 r7:84fdc780 r6:000001bf r5:00000000
 r4:dfb39dd0
[<8047f170>] (do_swap_page) from [<80480c54>] (handle_pte_fault mm/memory.c:5301 [inline])
[<8047f170>] (do_swap_page) from [<80480c54>] (__handle_mm_fault mm/memory.c:5439 [inline])
[<8047f170>] (do_swap_page) from [<80480c54>] (handle_mm_fault+0x3d8/0x12b8 mm/memory.c:5604)
 r10:00000000 r9:84767300 r8:20000000 r7:84fdc780 r6:20000000 r5:84c68c00
 r4:00000215
[<8048087c>] (handle_mm_fault) from [<80215d94>] (do_page_fault+0x148/0x3a8 arch/arm/mm/fault.c:333)
 r10:00000002 r9:84767300 r8:20000000 r7:00000a07 r6:00000215 r5:20000000
 r4:dfb39ec8
[<80215c4c>] (do_page_fault) from [<802161dc>] (do_DataAbort+0x38/0xa8 arch/arm/mm/fault.c:565)
 r10:85184900 r9:84c68c00 r8:80215c4c r7:dfb39ec8 r6:20000000 r5:00000a07
 r4:8261d0e0
[<802161a4>] (do_DataAbort) from [<80200ae4>] (__dabt_svc+0x44/0x60 arch/arm/kernel/entry-armv.S:212)
Exception stack(0xdfb39ec8 to 0xdfb39f10)
9ec0:                   20000000 7effffff 00000000 00000000 0000541b 00000000
9ee0: 85184901 20000000 00000003 84c68c00 85184900 dfb39fa4 a1000003 dfb39f18
9f00: 8050fbec 8184b328 80000013 ffffffff
 r8:00000003 r7:dfb39efc r6:ffffffff r5:80000013 r4:8184b328
[<8050f9e4>] (sys_ioctl) from [<80200060>] (ret_fast_syscall+0x0/0x1c arch/arm/mm/proc-v7.S:66)
Exception stack(0xdfb39fa8 to 0xdfb39ff0)
9fa0:                   00000000 00000000 00000003 0000541b 20000000 00000000
9fc0: 00000000 00000000 0014c2c8 00000036 7eb0232e 7eb0232f 003d0f00 76b600fc
9fe0: 76b5ff08 76b5fef8 000167f8 00050bc0
 r10:00000036 r9:84c68c00 r8:80200288 r7:00000036 r6:0014c2c8 r5:00000000
 r4:00000000
Code: 1a000004 e1822003 e8860094 e89da8f0 (e7f001f2) 
---[ end trace 0000000000000000 ]---
----------------
Code disassembly (best guess):
   0:	1a000004 	bne	0x18
   4:	e1822003 	orr	r2, r2, r3
   8:	e8860094 	stm	r6, {r2, r4, r7}
   c:	e89da8f0 	ldm	sp, {r4, r5, r6, r7, fp, sp, pc}
* 10:	e7f001f2 	udf	#18 <-- trapping instruction