fbnic-err: bad TWQ descriptor ordering, previous: 0 current 0
[ 631.402004][ T2888] ==================================================================
[ 631.402353][ T2888] BUG: KASAN: wild-memory-access in _copy_to_iter+0x1c7/0x1260
[ 631.402684][ T2888] Read of size 982 at addr 0005088000000000 by task ncdevmem/2888
[ 631.402980][ T2888]
[ 631.403082][ T2888] CPU: 2 UID: 0 PID: 2888 Comm: ncdevmem Not tainted 6.17.0-rc3-virtme #1 PREEMPT(full)
[ 631.403088][ T2888] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS rel-1.16.3-0-ga6ed6b701f0a-prebuilt.qemu.org 04/01/2014
[ 631.403091][ T2888] Call Trace:
[ 631.403093][ T2888]
[ 631.403095][ T2888] dump_stack_lvl+0x82/0xc0
[ 631.403105][ T2888] ? _copy_to_iter+0x1c7/0x1260
[ 631.403108][ T2888] kasan_report+0xca/0x100
[ 631.403117][ T2888] ? _copy_to_iter+0x1c7/0x1260
[ 631.403122][ T2888] kasan_check_range+0x39/0x1b0
[ 631.403127][ T2888] _copy_to_iter+0x1c7/0x1260
[ 631.403131][ T2888] ? rcu_is_watching+0x12/0xb0
[ 631.403137][ T2888] ? find_held_lock+0x2b/0x80
[ 631.403144][ T2888] ? _copy_from_iter_flushcache+0x1470/0x1470
[ 631.403147][ T2888] ? mark_held_locks+0x49/0x70
[ 631.403152][ T2888] ? _raw_spin_unlock_irqrestore+0x59/0x70
[ 631.403158][ T2888] ? lockdep_hardirqs_on+0x7c/0x110
[ 631.403163][ T2888] ? _raw_spin_unlock_irqrestore+0x46/0x70
[ 631.403166][ T2888] ? sk_wait_data+0x32e/0x520
[ 631.403173][ T2888] __skb_datagram_iter+0x439/0x770
[ 631.403178][ T2888] ? skb_free_datagram+0x20/0x20
[ 631.403185][ T2888] skb_copy_datagram_iter+0x40/0x50
[ 631.403189][ T2888] tcp_recvmsg_locked+0x1318/0x20d0
[ 631.403198][ T2888] ? do_raw_spin_lock+0x130/0x270
[ 631.403201][ T2888] ? tcp_update_recv_tstamps+0x1d0/0x1d0
[ 631.403206][ T2888] ? __local_bh_enable_ip+0xa9/0x120
[ 631.403212][ T2888] tcp_recvmsg+0xec/0x4f0
[ 631.403215][ T2888] ? filemap_map_pages+0x95d/0xf90
[ 631.403220][ T2888] ? tcp_recv_timestamp+0x5e0/0x5e0
[ 631.403225][ T2888] ? rcu_read_lock_any_held+0x3f/0xa0
[ 631.403231][ T2888] ? validate_chain+0x15e/0x4d0
[ 631.403237][ T2888] inet6_recvmsg+0xf7/0x4e0
[ 631.403241][ T2888] ? inet6_sk_rebuild_header+0x6f0/0x6f0
[ 631.403247][ T2888] ____sys_recvmsg+0x21c/0x650
[ 631.403252][ T2888] ? kernel_sendmsg+0x30/0x30
[ 631.403254][ T2888] ? _copy_from_user+0x53/0x90
[ 631.403260][ T2888] ? copy_msghdr_from_user+0xba/0x110
[ 631.403264][ T2888] ? __copy_msghdr+0x3c0/0x3c0
[ 631.403270][ T2888] ___sys_recvmsg+0xce/0x140
[ 631.403274][ T2888] ? ___sys_sendmsg+0x170/0x170
[ 631.403277][ T2888] ? __handle_mm_fault+0x3fc/0x5d0
[ 631.403283][ T2888] ? __pmd_alloc+0x7e0/0x7e0
[ 631.403290][ T2888] ? lock_vma_under_rcu+0x18a/0x3d0
[ 631.403297][ T2888] __sys_recvmsg+0x108/0x1a0
[ 631.403300][ T2888] ? __sys_recvmsg_sock+0x20/0x20
[ 631.403303][ T2888] ? exc_page_fault+0x5d/0xb0
[ 631.403309][ T2888] ? do_user_addr_fault+0x955/0xe00
[ 631.403316][ T2888] ? rcu_is_watching+0x12/0xb0
[ 631.403320][ T2888] do_syscall_64+0xc1/0x370
[ 631.403327][ T2888] entry_SYSCALL_64_after_hwframe+0x4b/0x53
[ 631.403331][ T2888] RIP: 0033:0x7f4b6446d07d
[ 631.403334][ T2888] Code: eb b7 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa 41 54 48 83 ec 10 64 8b 04 25 18 00 00 00 85 c0 75 22 b8 2f 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 5b 4c 63 e0 48 83 c4 10 4c 89 e0 41 5c c3 66
[ 631.403337][ T2888] RSP: 002b:00007ffd10ef9540 EFLAGS: 00000246 ORIG_RAX: 000000000000002f
[ 631.403341][ T2888] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 00007f4b6446d07d
[ 631.403344][ T2888] RDX: 0000000002000000 RSI: 00007ffd10ef9570 RDI: 0000000000000008
[ 631.403345][ T2888] RBP: 00007ffd10fd5020 R08: 0000000000000000 R09: 00007ffd10ef72d3
[ 631.403347][ T2888] R10: 00007f4b6436d1c8 R11: 0000000000000246 R12: 00007ffd10fd5188
[ 631.403349][ T2888] R13: 000000000040571b R14: 000000000042bdf0 R15: 00007f4b645aa000
[ 631.403356][ T2888]
[ 631.403357][ T2888] ==================================================================
[ 631.416220][ T2888] Disabling lock debugging due to kernel taint
fbnic-err: bad TWQ descriptor ordering, previous: 0 current 0
fbnic-err: bad TWQ descriptor ordering, previous: 0 current 0
[ 730.393001][ T2888] ncdevmem invoked oom-killer: gfp_mask=0x500cc2(GFP_HIGHUSER|__GFP_ACCOUNT), order=0, oom_score_adj=0
[ 730.393419][ T2888] CPU: 3 UID: 0 PID: 2888 Comm: ncdevmem Tainted: G B 6.17.0-rc3-virtme #1 PREEMPT(full)
[ 730.393426][ T2888] Tainted: [B]=BAD_PAGE
[ 730.393428][ T2888] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS rel-1.16.3-0-ga6ed6b701f0a-prebuilt.qemu.org 04/01/2014
[ 730.393430][ T2888] Call Trace:
[ 730.393432][ T2888]
[ 730.393435][ T2888] dump_stack_lvl+0xac/0xc0
[ 730.393448][ T2888] dump_header+0x101/0x7d0
[ 730.393457][ T2888] oom_kill_process+0x8b/0x180
[ 730.393461][ T2888] out_of_memory+0x227/0x750
[ 730.393465][ T2888] ? oom_killer_disable+0x220/0x220
[ 730.393471][ T2888] __alloc_pages_may_oom+0x22e/0x3c0
[ 730.393479][ T2888] ? __alloc_pages_direct_compact+0x590/0x590
[ 730.393484][ T2888] ? rcu_is_watching+0x12/0xb0
[ 730.393491][ T2888] __alloc_pages_slowpath.constprop.0+0x9fa/0x1420
[ 730.393498][ T2888] ? warn_alloc+0x360/0x360
[ 730.393504][ T2888] ? __mutex_trylock_common+0xf9/0x260
[ 730.393512][ T2888] __alloc_frozen_pages_noprof+0x2e6/0x340
[ 730.393515][ T2888] ? __alloc_pages_slowpath.constprop.0+0x1420/0x1420
[ 730.393519][ T2888] ? rcu_is_watching+0x12/0xb0
[ 730.393522][ T2888] ? trace_contention_end+0xd8/0x140
[ 730.393526][ T2888] ? inet6_recvmsg+0xf7/0x4e0
[ 730.393530][ T2888] ? anon_pipe_write+0x123/0x1420
[ 730.393534][ T2888] ? rcu_is_watching+0x12/0xb0
[ 730.393538][ T2888] alloc_pages_mpol+0xbb/0x3b0
[ 730.393542][ T2888] ? spin_bug+0x1d0/0x1d0
[ 730.393546][ T2888] ? policy_nodemask+0x3c0/0x3c0
[ 730.393549][ T2888] ? lock_acquire+0x104/0x160
[ 730.393553][ T2888] ? __wake_up_sync_key+0x22/0x50
[ 730.393559][ T2888] alloc_pages_noprof+0xf6/0x2d0
[ 730.393563][ T2888] anon_pipe_write+0x90d/0x1420
[ 730.393567][ T2888] ? kfree+0x2d/0x320
[ 730.393573][ T2888] ? anon_pipe_put_page+0x3b0/0x3b0
[ 730.393576][ T2888] ? ___sys_recvmsg+0xdb/0x140
[ 730.393581][ T2888] ? ___sys_sendmsg+0x170/0x170
[ 730.393586][ T2888] vfs_write+0xbff/0x12c0
[ 730.393592][ T2888] ? __run_hrtimer+0x2d2/0x370
[ 730.393596][ T2888] ? kernel_write+0x6b0/0x6b0
[ 730.393603][ T2888] ? __sys_recvmsg_sock+0x20/0x20
[ 730.393606][ T2888] ? clockevents_program_event+0x1e4/0x2f0
[ 730.393612][ T2888] ksys_write+0x17f/0x1d0
[ 730.393615][ T2888] ? __ia32_sys_read+0xb0/0xb0
[ 730.393621][ T2888] do_syscall_64+0xc1/0x370
[ 730.393627][ T2888] entry_SYSCALL_64_after_hwframe+0x4b/0x53
[ 730.393631][ T2888] RIP: 0033:0x7f4b6445b337
[ 730.393635][ T2888] Code: 0f 00 f7 d8 64 89 02 48 c7 c0 ff ff ff ff eb b7 0f 1f 00 f3 0f 1e fa 64 8b 04 25 18 00 00 00 85 c0 75 10 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 51 c3 48 83 ec 28 48 89 54 24 18 48 89 74 24
[ 730.393637][ T2888] RSP: 002b:00007ffd10ef6d98 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 730.393642][ T2888] RAX: ffffffffffffffda RBX: 00007f4b645576a0 RCX: 00007f4b6445b337
[ 730.393644][ T2888] RDX: 0000000000000015 RSI: 00007ffd10ef6f70 RDI: 0000000000000002
[ 730.393646][ T2888] RBP: 0000000000000015 R08: 0000000000000000 R09: 00007f4b6450dd40
[ 730.393647][ T2888] R10: 00007f4b6450dc40 R11: 0000000000000246 R12: 0000000000000015
[ 730.393649][ T2888] R13: 00007ffd10ef6f70 R14: 0000000000000015 R15: 00007f4b645529c0
[ 730.393655][ T2888]
[ 730.403619][ T2888] Mem-Info:
[ 730.403740][ T2888] active_anon:47 inactive_anon:325575 isolated_anon:0
[ 730.403740][ T2888] active_file:73 inactive_file:246 isolated_file:0
[ 730.403740][ T2888] unevictable:0 dirty:0 writeback:0
[ 730.403740][ T2888] slab_reclaimable:4382 slab_unreclaimable:41301
[ 730.403740][ T2888] mapped:290 shmem:16121 pagetables:1107
[ 730.403740][ T2888] sec_pagetables:0 bounce:0
[ 730.403740][ T2888] kernel_misc_reclaimable:0
[ 730.403740][ T2888] free:3542 free_pcp:272 free_cma:0
[ 730.404939][ T2888] Node 0 active_anon:188kB inactive_anon:1302300kB active_file:292kB inactive_file:984kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:1160kB dirty:0kB writeback:0kB shmem:64484kB kernel_stack:4416kB pagetables:4428kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[ 730.405701][ T2888] Node 0 DMA free:6564kB boost:0kB min:44kB low:56kB high:68kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:8772kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 730.406491][ T2888] lowmem_reserve[]: 0 1623 1623 1623 1623
[ 730.406670][ T2888] Node 0 DMA32 free:7604kB boost:0kB min:5124kB low:6780kB high:8436kB reserved_highatomic:0KB free_highatomic:0KB active_anon:188kB inactive_anon:1293528kB active_file:372kB inactive_file:980kB unevictable:0kB writepending:0kB present:2080636kB managed:1662276kB mlocked:0kB bounce:0kB free_pcp:1088kB local_pcp:472kB free_cma:0kB
[ 730.407564][ T2888] lowmem_reserve[]: 0 0 0 0 0
[ 730.407722][ T2888] Node 0 DMA: 6*4kB (UM) 5*8kB (U) 4*16kB (UM) 3*32kB (UM) 3*64kB (U) 4*128kB (UM) 2*256kB (UM) 0*512kB 1*1024kB (M) 0*2048kB 1*4096kB (M) = 6560kB
[ 730.408160][ T2888] Node 0 DMA32: 2*4kB (UM) 27*8kB (UM) 13*16kB (ME) 39*32kB (UM) 7*64kB (UM) 0*128kB 21*256kB (U) 0*512kB 0*1024kB 0*2048kB 0*4096kB = 7504kB
[ 730.408606][ T2888] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 730.408877][ T2888] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 730.409144][ T2888] 16552 total pagecache pages
[ 730.409298][ T2888] 0 pages in swap cache
[ 730.409416][ T2888] Free swap = 0kB
[ 730.409543][ T2888] Total swap = 0kB
[ 730.409662][ T2888] 524157 pages RAM
[ 730.409777][ T2888] 0 pages HighMem/MovableOnly
[ 730.409938][ T2888] 104748 pages reserved
[ 730.410054][ T2888] Tasks state (memory values in pages):
[ 730.410206][ T2888] [ pid ] uid tgid total_vm rss rss_anon rss_file rss_shmem pgtables_bytes swapents oom_score_adj name
[ 730.410556][ T2888] [ 160] 0 160 7362 441 367 74 0 77824 0 0 systemd-udevd
[ 730.410903][ T2888] [ 231] 0 231 3401 128 128 0 0 53248 0 0 bash
[ 730.411237][ T2888] [ 2825] 0 2825 2620 168 96 72 0 57344 0 0 make
[ 730.411578][ T2888] [ 2841] 0 2841 3335 79 64 15 0 61440 0 0 sh
[ 730.411874][ T2888] [ 2842] 0 2842 2653 185 128 57 0 65536 0 0 make
[ 730.412210][ T2888] [ 2847] 0 2847 3368 240 96 144 0 53248 0 0 sh
[ 730.412510][ T2888] [ 2868] 0 2868 3368 108 105 3 0 45056 0 0 sh
[ 730.412809][ T2888] [ 2869] 0 2869 3368 105 105 0 0 45056 0 0 sh
[ 730.413102][ T2888] [ 2870] 0 2870 3368 108 105 3 0 45056 0 0 sh
[ 730.413399][ T2888] [ 2871] 0 2871 3368 117 105 12 0 45056 0 0 sh
[ 730.413700][ T2888] [ 2872] 0 2872 3368 134 105 29 0 45056 0 0 sh
[ 730.413997][ T2888] [ 2873] 0 2873 3368 120 105 15 0 45056 0 0 sh
[ 730.414298][ T2888] [ 2874] 0 2874 666 0 0 0 0 49152 0 0 timeout
[ 730.414640][ T2888] [ 2875] 0 2875 2275 512 448 64 0 57344 0 0 perl
[ 730.414970][ T2888] [ 2876] 0 2876 666 5 0 5 0 40960 0 0 timeout
[ 730.415302][ T2888] [ 2877] 0 2877 367044 307952 307616 336 0 2543616 0 0 python3
[ 730.415638][ T2888] [ 2888] 0 2888 33026 53 0 53 0 53248 0 0 ncdevmem
[ 730.415966][ T2888] oom-kill:constraint=CONSTRAINT_NONE,nodemask=(null),cpuset=/,mems_allowed=0,task=python3,pid=2877,uid=0
[ 730.416278][ T2888] Out of memory: Killed process 2877 (python3) total-vm:1468176kB, anon-rss:1230464kB, file-rss:1344kB, shmem-rss:0kB, UID:0 pgtables:2484kB oom_score_adj:0