HighwaterMarkCheckpoint failure puting broker into a bad state

I'm encountering a case where broker get stuck due to HighwaterMarkCheckpoint failing to recover from reading what appear to be corrupted isr entries. Once in this state, leader election can never succeed and hence stalling the entire cluster.

Please see the detailed stack trace from the attached log. Perhaps failing fast when HighwaterMarkCheckpoint fails to read would force the broker to restart and recover.