program:
r0 = socket$kcm(0x10, 0x2, 0x0)
recvmsg(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000006c0)=[{&(0x7f0000003540)=""/103, 0x67}, {&(0x7f00000024c0)=""/4065, 0xfe1}, {&(0x7f0000001040)=""/4082, 0xff2}, {&(0x7f0000000580)=""/243, 0xf3}, {&(0x7f0000000240)=""/185, 0xb9}], 0x5}, 0x60000120)
sendmsg$inet(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000fc0)="5c00000012006bab9a3fe3d86e17aa0a046b4877c4aaf68187bae53dca2ba35bda6a876c1d0048007ea608649e7524765f0ef82e3c0000a705259a3651f60a84c9f4d4938037e70e4509c5bb00000000e513aeac9bf2bee150d5fe86", 0x5c}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0)
syz_emit_ethernet(0xa6, &(0x7f0000000000)={@broadcast, @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "120008", 0x70, 0x3a, 0xff, @dev={0xfe, 0x80, '\x00', 0x21}, @mcast2, {[], @ndisc_ra={0x86, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, [{0x3, 0xa, "a78ce54006598080a8030037004023493b87aafaffffffffffffff23732472eefa45ad96579269748e254c1e4a8a8b3f0ab0c430d3be27df3e34066d42ca0a5c15b37adac15084dbaf736b41e5af1802"}, {0x0, 0x1, "ffffffffff60000000000000"}]}}}}}}, 0x0)
syz_emit_ethernet(0x5e, &(0x7f0000002e40)={@local, @dev, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "7428dd", 0x28, 0x3a, 0xff, @remote, @mcast2, {[], @ndisc_na={0x89, 0x0, 0x0, 0x0, '\x00', @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, [{0x0, 0x2, "122b472e41e24b11f34b608816e5"}]}}}}}}, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r3, 0xc008ae88, &(0x7f0000000540)={0x1, 0x0, [{0xc0010005, 0x0, 0x9}]})
syz_mount_image$nilfs2(&(0x7f0000000dc0), &(0x7f0000000e00)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="0093d84f10fc3e1ec648b776cb7f8081d09ad0cc63a23840b824f920b21981285520a35f491e6934193661e8f46d"], 0x1, 0xd99, &(0x7f0000000e80)="$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")
creat(&(0x7f0000000000)='./bus\x00', 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='memory.events\x00', 0x26e1, 0x0)
pipe(&(0x7f0000000000))
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700)
socket(0x200000000000011, 0x2, 0x0)
socket$inet6_sctp(0xa, 0x5, 0x84)
r4 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r4, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'sha256-generic\x00'}, 0x58)
accept$alg(r4, 0x0, 0x0)
socket$inet_sctp(0x2, 0x1, 0x84)
syz_open_procfs(0x0, &(0x7f0000000100)='stack\x00')
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x16, 0x0, 0x6, 0x4, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5c31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000007c0))
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000012c0))
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000400)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x1f, 0x10, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000005000000000000008000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b702000000000000850000008600000018010000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000050000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000200000085000000a600000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x11, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000500)={r6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48)
socket$nl_route(0x10, 0x3, 0x0)

[   74.631295][ T5305] Bluetooth: hci0: command tx timeout
[   74.726299][ T5320] netlink: 60 bytes leftover after parsing attributes in process `syz.0.0'.
[   74.730370][ T5319] netlink: 60 bytes leftover after parsing attributes in process `syz.0.0'.
[   74.736467][ T5320] ------------[ cut here ]------------
[   74.738974][ T5320] memcpy: detected field-spanning write (size 20) of single field "pfx->in6_u.u6_addr8" at ./include/net/ipv6.h:614 (size 16)
[   74.744955][ T5320] WARNING: CPU: 0 PID: 5320 at ./include/net/ipv6.h:614 ipv6_addr_prefix+0x124/0x1d0
[   74.749195][ T5320] Modules linked in:
[   74.750866][ T5320] CPU: 0 UID: 0 PID: 5320 Comm: syz.0.0 Not tainted 6.15.0-syzkaller-11173-g546b1c9e93c2 #0 PREEMPT(full) 
[   74.755799][ T5320] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   74.760398][ T5320] RIP: 0010:ipv6_addr_prefix+0x124/0x1d0
[   74.763116][ T5320] Code: cc e8 80 e9 a5 f7 c6 05 b1 70 70 05 01 90 b9 10 00 00 00 48 c7 c7 a0 70 9e 8c 4c 89 fe 48 c7 c2 c0 77 9e 8c e8 fd 95 69 f7 90 <0f> 0b 90 90 e9 33 ff ff ff e8 4e e9 a5 f7 44 89 e6 48 c7 c7 80 b1
[   74.771310][ T5320] RSP: 0018:ffffc9000d0deb30 EFLAGS: 00010246
[   74.774005][ T5320] RAX: 30e9341056a90a00 RBX: ffff888011fc1450 RCX: 0000000000100000
[   74.777403][ T5320] RDX: ffffc9000e653000 RSI: 0000000000001b86 RDI: 0000000000001b87
[   74.780760][ T5320] RBP: 0000000000000007 R08: 0000000000000003 R09: 0000000000000004
[   74.783998][ T5320] R10: dffffc0000000000 R11: fffffbfff1bfaa44 R12: 0000000000000014
[   74.787351][ T5320] R13: 1ffff92001a1bd89 R14: ffffc9000d0dec64 R15: 0000000000000014
[   74.790770][ T5320] FS:  00007ff5b47236c0(0000) GS:ffff88808d25f000(0000) knlGS:0000000000000000
[   74.794511][ T5320] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   74.797228][ T5320] CR2: 00007ff5b3b84538 CR3: 0000000042f43000 CR4: 0000000000352ef0
[   74.800751][ T5320] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   74.804693][ T5320] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   74.808262][ T5320] Call Trace:
[   74.809701][ T5320]  <TASK>
[   74.811048][ T5320]  ip6_route_info_create+0x4af/0x860
[   74.813543][ T5320]  ip6_route_add+0x28/0x190
[   74.815520][ T5320]  addrconf_prefix_route+0x210/0x2c0
[   74.817760][ T5320]  ? __pfx_addrconf_prefix_route+0x10/0x10
[   74.820236][ T5320]  ? addrconf_get_prefix_route+0xf2/0x760
[   74.822916][ T5320]  ? __pfx_addrconf_get_prefix_route+0x10/0x10
[   74.826120][ T5320]  ? in6_dev_get+0x1a/0x290
[   74.828419][ T5320]  ? in6_dev_get+0x1a/0x290
[   74.830451][ T5320]  addrconf_prefix_rcv+0x60b/0x1610
[   74.832803][ T5320]  ? __pfx_addrconf_prefix_rcv+0x10/0x10
[   74.835248][ T5320]  ndisc_router_discovery+0x2015/0x35f0
[   74.837528][ T5320]  ? ndisc_router_discovery+0x6a0/0x35f0
[   74.839916][ T5320]  ? __pfx_ndisc_router_discovery+0x10/0x10
[   74.842609][ T5320]  ? skb_checksum+0x7c1/0x8c0
[   74.844679][ T5320]  ? ndisc_rcv+0x4aa/0x730
[   74.846604][ T5320]  icmpv6_rcv+0x139a/0x1c80
[   74.848661][ T5320]  ? ipv6_chk_mcast_addr+0x77f/0x860
[   74.850959][ T5320]  ? __pfx_icmpv6_rcv+0x10/0x10
[   74.853258][ T5320]  ip6_protocol_deliver_rcu+0xe08/0x15c0
[   74.855650][ T5320]  ip6_input_finish+0xde/0x190
[   74.857851][ T5320]  NF_HOOK+0x309/0x3a0
[   74.859983][ T5320]  ? __pfx_ip6_input_finish+0x10/0x10
[   74.862410][ T5320]  ? NF_HOOK+0x9a/0x3a0
[   74.864212][ T5320]  ? __pfx_NF_HOOK+0x10/0x10
[   74.866218][ T5320]  ? __pfx_ip6_input_finish+0x10/0x10
[   74.868569][ T5320]  ip6_input+0x16a/0x270
[   74.870439][ T5320]  ? ip6_input+0x23/0x270
[   74.872506][ T5320]  ip6_mc_input+0x79a/0xbe0
[   74.874503][ T5320]  ? __pfx_ip6_mc_input+0x10/0x10
[   74.876565][ T5320]  ? skb_dst+0x71/0xd0
[   74.878248][ T5320]  ? ip6_rcv_finish+0x29a/0x2d0
[   74.880038][ T5320]  NF_HOOK+0x309/0x3a0
[   74.881640][ T5320]  ? skb_orphan+0x4c/0xd0
[   74.883255][ T5320]  ? __pfx_ip6_rcv_finish+0x10/0x10
[   74.885196][ T5320]  ? NF_HOOK+0x9a/0x3a0
[   74.886911][ T5320]  ? __pfx_NF_HOOK+0x10/0x10
[   74.888806][ T5320]  ? __pfx_ip6_rcv_finish+0x10/0x10
[   74.890752][ T5320]  __netif_receive_skb+0xd3/0x380
[   74.892998][ T5320]  ? netif_receive_skb+0x115/0x790
[   74.895170][ T5320]  netif_receive_skb+0x1cb/0x790
[   74.897108][ T5320]  ? __pfx___local_bh_disable_ip+0x10/0x10
[   74.899581][ T5320]  ? __pfx_netif_receive_skb+0x10/0x10
[   74.902051][ T5320]  ? tun_rx_batched+0x160/0x730
[   74.904089][ T5320]  tun_rx_batched+0x1b9/0x730
[   74.906016][ T5320]  ? __lock_acquire+0xab9/0xd20
[   74.908251][ T5320]  ? __pfx_tun_rx_batched+0x10/0x10
[   74.910469][ T5320]  ? tun_get_user+0x2549/0x3ce0
[   74.913021][ T5320]  tun_get_user+0x298e/0x3ce0
[   74.915177][ T5320]  ? tun_get_user+0x693/0x3ce0
[   74.917270][ T5320]  ? tun_get_user+0x2549/0x3ce0
[   74.919439][ T5320]  ? aa_file_perm+0x11f/0xed0
[   74.921668][ T5320]  ? __pfx_tun_get_user+0x10/0x10
[   74.923596][ T5320]  ? aa_file_perm+0x3e7/0xed0
[   74.925502][ T5320]  ? ref_tracker_alloc+0x318/0x460
[   74.927675][ T5320]  ? __lock_acquire+0xab9/0xd20
[   74.929785][ T5320]  ? __pfx_ref_tracker_alloc+0x10/0x10
[   74.932151][ T5320]  ? tun_get+0x1c/0x2f0
[   74.934006][ T5320]  ? tun_get+0x1c/0x2f0
[   74.935925][ T5320]  ? tun_get+0x1c/0x2f0
[   74.937815][ T5320]  tun_chr_write_iter+0x113/0x200
[   74.939984][ T5320]  vfs_write+0x548/0xa90
[   74.942175][ T5320]  ? __pfx_tun_chr_write_iter+0x10/0x10
[   74.944568][ T5320]  ? __pfx_vfs_write+0x10/0x10
[   74.946609][ T5320]  ? __fget_files+0x2a/0x420
[   74.948453][ T5320]  ksys_write+0x145/0x250
[   74.950224][ T5320]  ? __pfx_ksys_write+0x10/0x10
[   74.952301][ T5320]  ? do_syscall_64+0xbe/0x3b0
[   74.954481][ T5320]  do_syscall_64+0xfa/0x3b0
[   74.956573][ T5320]  ? lockdep_hardirqs_on+0x9c/0x150
[   74.958936][ T5320]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   74.961712][ T5320]  ? clear_bhb_loop+0x60/0xb0
[   74.963781][ T5320]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   74.966521][ T5320] RIP: 0033:0x7ff5b398d41f
[   74.968653][ T5320] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[   74.976707][ T5320] RSP: 002b:00007ff5b4723000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[   74.980163][ T5320] RAX: ffffffffffffffda RBX: 00007ff5b3bb6080 RCX: 00007ff5b398d41f
[   74.983435][ T5320] RDX: 00000000000000a6 RSI: 0000200000000000 RDI: 00000000000000c8
[   74.986677][ T5320] RBP: 00007ff5b3a10ab1 R08: 0000000000000000 R09: 0000000000000000
[   74.989985][ T5320] R10: 00000000000000a6 R11: 0000000000000293 R12: 0000000000000000
[   74.993337][ T5320] R13: 0000000000000000 R14: 00007ff5b3bb6080 R15: 00007ffe3fa6b958
[   74.996478][ T5320]  </TASK>
[   74.997617][ T5320] Kernel panic - not syncing: kernel: panic_on_warn set ...
[   75.000589][ T5320] CPU: 0 UID: 0 PID: 5320 Comm: syz.0.0 Not tainted 6.15.0-syzkaller-11173-g546b1c9e93c2 #0 PREEMPT(full) 
[   75.005214][ T5320] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   75.009640][ T5320] Call Trace:
[   75.011096][ T5320]  <TASK>
[   75.012474][ T5320]  dump_stack_lvl+0x99/0x250
[   75.014608][ T5320]  ? __asan_memcpy+0x40/0x70
[   75.016661][ T5320]  ? __pfx_dump_stack_lvl+0x10/0x10
[   75.018910][ T5320]  ? __pfx__printk+0x10/0x10
[   75.020849][ T5320]  panic+0x2db/0x790
[   75.022583][ T5320]  ? __pfx_panic+0x10/0x10
[   75.024521][ T5320]  __warn+0x31b/0x4b0
[   75.026187][ T5320]  ? ipv6_addr_prefix+0x124/0x1d0
[   75.028336][ T5320]  ? ipv6_addr_prefix+0x124/0x1d0
[   75.030539][ T5320]  report_bug+0x2be/0x4f0
[   75.032462][ T5320]  ? ipv6_addr_prefix+0x124/0x1d0
[   75.034603][ T5320]  ? ipv6_addr_prefix+0x124/0x1d0
[   75.036627][ T5320]  ? ipv6_addr_prefix+0x126/0x1d0
[   75.038792][ T5320]  handle_bug+0x84/0x160
[   75.040680][ T5320]  exc_invalid_op+0x1a/0x50
[   75.042745][ T5320]  asm_exc_invalid_op+0x1a/0x20
[   75.044855][ T5320] RIP: 0010:ipv6_addr_prefix+0x124/0x1d0
[   75.047377][ T5320] Code: cc e8 80 e9 a5 f7 c6 05 b1 70 70 05 01 90 b9 10 00 00 00 48 c7 c7 a0 70 9e 8c 4c 89 fe 48 c7 c2 c0 77 9e 8c e8 fd 95 69 f7 90 <0f> 0b 90 90 e9 33 ff ff ff e8 4e e9 a5 f7 44 89 e6 48 c7 c7 80 b1
[   75.056051][ T5320] RSP: 0018:ffffc9000d0deb30 EFLAGS: 00010246
[   75.058693][ T5320] RAX: 30e9341056a90a00 RBX: ffff888011fc1450 RCX: 0000000000100000
[   75.061771][ T5320] RDX: ffffc9000e653000 RSI: 0000000000001b86 RDI: 0000000000001b87
[   75.065135][ T5320] RBP: 0000000000000007 R08: 0000000000000003 R09: 0000000000000004
[   75.068129][ T5320] R10: dffffc0000000000 R11: fffffbfff1bfaa44 R12: 0000000000000014
[   75.071565][ T5320] R13: 1ffff92001a1bd89 R14: ffffc9000d0dec64 R15: 0000000000000014
[   75.075083][ T5320]  ip6_route_info_create+0x4af/0x860
[   75.077649][ T5320]  ip6_route_add+0x28/0x190
[   75.079802][ T5320]  addrconf_prefix_route+0x210/0x2c0
[   75.082297][ T5320]  ? __pfx_addrconf_prefix_route+0x10/0x10
[   75.084936][ T5320]  ? addrconf_get_prefix_route+0xf2/0x760
[   75.087497][ T5320]  ? __pfx_addrconf_get_prefix_route+0x10/0x10
[   75.090280][ T5320]  ? in6_dev_get+0x1a/0x290
[   75.092215][ T5320]  ? in6_dev_get+0x1a/0x290
[   75.094213][ T5320]  addrconf_prefix_rcv+0x60b/0x1610
[   75.096582][ T5320]  ? __pfx_addrconf_prefix_rcv+0x10/0x10
[   75.099440][ T5320]  ndisc_router_discovery+0x2015/0x35f0
[   75.102491][ T5320]  ? ndisc_router_discovery+0x6a0/0x35f0
[   75.104931][ T5320]  ? __pfx_ndisc_router_discovery+0x10/0x10
[   75.106919][ T5320]  ? skb_checksum+0x7c1/0x8c0
[   75.108495][ T5320]  ? ndisc_rcv+0x4aa/0x730
[   75.109951][ T5320]  icmpv6_rcv+0x139a/0x1c80
[   75.111462][ T5320]  ? ipv6_chk_mcast_addr+0x77f/0x860
[   75.113222][ T5320]  ? __pfx_icmpv6_rcv+0x10/0x10
[   75.114874][ T5320]  ip6_protocol_deliver_rcu+0xe08/0x15c0
[   75.116689][ T5320]  ip6_input_finish+0xde/0x190
[   75.118244][ T5320]  NF_HOOK+0x309/0x3a0
[   75.119848][ T5320]  ? __pfx_ip6_input_finish+0x10/0x10
[   75.122353][ T5320]  ? NF_HOOK+0x9a/0x3a0
[   75.124235][ T5320]  ? __pfx_NF_HOOK+0x10/0x10
[   75.126357][ T5320]  ? __pfx_ip6_input_finish+0x10/0x10
[   75.128658][ T5320]  ip6_input+0x16a/0x270
[   75.130457][ T5320]  ? ip6_input+0x23/0x270
[   75.132378][ T5320]  ip6_mc_input+0x79a/0xbe0
[   75.134331][ T5320]  ? __pfx_ip6_mc_input+0x10/0x10
[   75.136300][ T5320]  ? skb_dst+0x71/0xd0
[   75.138004][ T5320]  ? ip6_rcv_finish+0x29a/0x2d0
[   75.140041][ T5320]  NF_HOOK+0x309/0x3a0
[   75.141885][ T5320]  ? skb_orphan+0x4c/0xd0
[   75.143776][ T5320]  ? __pfx_ip6_rcv_finish+0x10/0x10
[   75.146059][ T5320]  ? NF_HOOK+0x9a/0x3a0
[   75.147899][ T5320]  ? __pfx_NF_HOOK+0x10/0x10
[   75.149935][ T5320]  ? __pfx_ip6_rcv_finish+0x10/0x10
[   75.152277][ T5320]  __netif_receive_skb+0xd3/0x380
[   75.154537][ T5320]  ? netif_receive_skb+0x115/0x790
[   75.157055][ T5320]  netif_receive_skb+0x1cb/0x790
[   75.159324][ T5320]  ? __pfx___local_bh_disable_ip+0x10/0x10
[   75.162081][ T5320]  ? __pfx_netif_receive_skb+0x10/0x10
[   75.164479][ T5320]  ? tun_rx_batched+0x160/0x730
[   75.166636][ T5320]  tun_rx_batched+0x1b9/0x730
[   75.168734][ T5320]  ? __lock_acquire+0xab9/0xd20
[   75.170887][ T5320]  ? __pfx_tun_rx_batched+0x10/0x10
[   75.173240][ T5320]  ? tun_get_user+0x2549/0x3ce0
[   75.175332][ T5320]  tun_get_user+0x298e/0x3ce0
[   75.177687][ T5320]  ? tun_get_user+0x693/0x3ce0
[   75.179844][ T5320]  ? tun_get_user+0x2549/0x3ce0
[   75.182033][ T5320]  ? aa_file_perm+0x11f/0xed0
[   75.184158][ T5320]  ? __pfx_tun_get_user+0x10/0x10
[   75.186297][ T5320]  ? aa_file_perm+0x3e7/0xed0
[   75.188177][ T5320]  ? ref_tracker_alloc+0x318/0x460
[   75.190343][ T5320]  ? __lock_acquire+0xab9/0xd20
[   75.192462][ T5320]  ? __pfx_ref_tracker_alloc+0x10/0x10
[   75.194849][ T5320]  ? tun_get+0x1c/0x2f0
[   75.196538][ T5320]  ? tun_get+0x1c/0x2f0
[   75.198117][ T5320]  ? tun_get+0x1c/0x2f0
[   75.199893][ T5320]  tun_chr_write_iter+0x113/0x200
[   75.202104][ T5320]  vfs_write+0x548/0xa90
[   75.203946][ T5320]  ? __pfx_tun_chr_write_iter+0x10/0x10
[   75.206297][ T5320]  ? __pfx_vfs_write+0x10/0x10
[   75.208205][ T5320]  ? __fget_files+0x2a/0x420
[   75.210201][ T5320]  ksys_write+0x145/0x250
[   75.212113][ T5320]  ? __pfx_ksys_write+0x10/0x10
[   75.214309][ T5320]  ? do_syscall_64+0xbe/0x3b0
[   75.216554][ T5320]  do_syscall_64+0xfa/0x3b0
[   75.218715][ T5320]  ? lockdep_hardirqs_on+0x9c/0x150
[   75.221159][ T5320]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   75.224052][ T5320]  ? clear_bhb_loop+0x60/0xb0
[   75.226273][ T5320]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   75.229182][ T5320] RIP: 0033:0x7ff5b398d41f
[   75.231269][ T5320] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[   75.239827][ T5320] RSP: 002b:00007ff5b4723000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[   75.243781][ T5320] RAX: ffffffffffffffda RBX: 00007ff5b3bb6080 RCX: 00007ff5b398d41f
[   75.246986][ T5320] RDX: 00000000000000a6 RSI: 0000200000000000 RDI: 00000000000000c8
[   75.250126][ T5320] RBP: 00007ff5b3a10ab1 R08: 0000000000000000 R09: 0000000000000000
[   75.253689][ T5320] R10: 00000000000000a6 R11: 0000000000000293 R12: 0000000000000000
[   75.257284][ T5320] R13: 0000000000000000 R14: 00007ff5b3bb6080 R15: 00007ffe3fa6b958
[   75.260733][ T5320]  </TASK>
[   75.262537][ T5320] Kernel Offset: disabled
[   75.264520][ T5320] Rebooting in 86400 seconds..