fbnic-err: bad TWQ descriptor ordering, previous: 0 current 0
[  505.570694][ T3632] ==================================================================
[  505.570968][ T3632] BUG: KASAN: wild-memory-access in _copy_to_iter+0x1c7/0x1260
[  505.571216][ T3632] Read of size 982 at addr 0005088000000000 by task ncdevmem/3632
[  505.571453][ T3632] 
[  505.571544][ T3632] CPU: 4 UID: 0 PID: 3632 Comm: ncdevmem Not tainted 6.17.0-rc4-virtme #1 PREEMPT(full) 
[  505.571548][ T3632] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS rel-1.16.3-0-ga6ed6b701f0a-prebuilt.qemu.org 04/01/2014
[  505.571554][ T3632] Call Trace:
[  505.571556][ T3632]  <TASK>
[  505.571558][ T3632]  dump_stack_lvl+0x82/0xc0
[  505.571565][ T3632]  ? _copy_to_iter+0x1c7/0x1260
[  505.571568][ T3632]  kasan_report+0xca/0x100
[  505.571574][ T3632]  ? _copy_to_iter+0x1c7/0x1260
[  505.571579][ T3632]  kasan_check_range+0x39/0x1b0
[  505.571584][ T3632]  _copy_to_iter+0x1c7/0x1260
[  505.571587][ T3632]  ? find_held_lock+0x2b/0x80
[  505.571594][ T3632]  ? _copy_from_iter_flushcache+0x1470/0x1470
[  505.571598][ T3632]  ? mark_held_locks+0x49/0x70
[  505.571602][ T3632]  ? finish_task_switch.isra.0+0x245/0x960
[  505.571607][ T3632]  ? finish_task_switch.isra.0+0x2a3/0x960
[  505.571612][ T3632]  __skb_datagram_iter+0x439/0x770
[  505.571617][ T3632]  ? skb_free_datagram+0x20/0x20
[  505.571622][ T3632]  ? validate_chain+0x15e/0x4d0
[  505.571627][ T3632]  skb_copy_datagram_iter+0x40/0x50
[  505.571631][ T3632]  tcp_recvmsg_locked+0x1318/0x20d0
[  505.571639][ T3632]  ? do_raw_spin_lock+0x130/0x270
[  505.571642][ T3632]  ? tcp_update_recv_tstamps+0x1d0/0x1d0
[  505.571646][ T3632]  ? __local_bh_enable_ip+0xa9/0x120
[  505.571651][ T3632]  tcp_recvmsg+0xec/0x4f0
[  505.571654][ T3632]  ? filemap_map_pages+0x95d/0xf90
[  505.571658][ T3632]  ? tcp_recv_timestamp+0x5e0/0x5e0
[  505.571662][ T3632]  ? rcu_read_lock_any_held+0x3f/0xa0
[  505.571668][ T3632]  ? validate_chain+0x15e/0x4d0
[  505.571673][ T3632]  inet6_recvmsg+0xf7/0x4e0
[  505.571677][ T3632]  ? inet6_sk_rebuild_header+0x6f0/0x6f0
[  505.571682][ T3632]  ____sys_recvmsg+0x21c/0x650
[  505.571687][ T3632]  ? kernel_sendmsg+0x30/0x30
[  505.571690][ T3632]  ? _copy_from_user+0x53/0x90
[  505.571695][ T3632]  ? copy_msghdr_from_user+0xba/0x110
[  505.571699][ T3632]  ? __copy_msghdr+0x3c0/0x3c0
[  505.571706][ T3632]  ___sys_recvmsg+0xce/0x140
[  505.571709][ T3632]  ? ___sys_sendmsg+0x170/0x170
[  505.571712][ T3632]  ? __handle_mm_fault+0x3fc/0x5d0
[  505.571716][ T3632]  ? __pmd_alloc+0x7e0/0x7e0
[  505.571723][ T3632]  ? lock_vma_under_rcu+0x18a/0x3d0
[  505.571729][ T3632]  __sys_recvmsg+0x108/0x1a0
[  505.571733][ T3632]  ? __sys_recvmsg_sock+0x20/0x20
[  505.571736][ T3632]  ? exc_page_fault+0x5d/0xb0
[  505.571744][ T3632]  ? do_user_addr_fault+0x955/0xe00
[  505.571750][ T3632]  ? rcu_is_watching+0x12/0xb0
[  505.571755][ T3632]  do_syscall_64+0xc1/0x370
[  505.571759][ T3632]  entry_SYSCALL_64_after_hwframe+0x4b/0x53
[  505.571763][ T3632] RIP: 0033:0x7f6c246e507d
[  505.571767][ T3632] Code: eb b7 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa 41 54 48 83 ec 10 64 8b 04 25 18 00 00 00 85 c0 75 22 b8 2f 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 5b 4c 63 e0 48 83 c4 10 4c 89 e0 41 5c c3 66
[  505.571769][ T3632] RSP: 002b:00007fffc212ad10 EFLAGS: 00000246 ORIG_RAX: 000000000000002f
[  505.571773][ T3632] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 00007f6c246e507d
[  505.571776][ T3632] RDX: 0000000002000000 RSI: 00007fffc212ad40 RDI: 0000000000000008
[  505.571777][ T3632] RBP: 00007fffc22067f0 R08: 0000000000000000 R09: 00007fffc2128aa3
[  505.571779][ T3632] R10: 00007f6c245e51c8 R11: 0000000000000246 R12: 00007fffc2206958
[  505.571781][ T3632] R13: 0000000000405740 R14: 000000000042bdf0 R15: 00007f6c24822000
[  505.571787][ T3632]  </TASK>
[  505.571788][ T3632] ==================================================================
[  505.581791][ T3632] Disabling lock debugging due to kernel taint