syzbot

==================================================================
BUG: KCSAN: data-race in xfrm_lookup_with_ifid / xfrm_lookup_with_ifid

write to 0xffff8881047bc108 of 8 bytes by interrupt on cpu 1:
 xfrm_lookup_with_ifid+0x10ca/0x1880 net/xfrm/xfrm_policy.c:3139
 xfrm_lookup+0x33/0x40 net/xfrm/xfrm_policy.c:3191
 icmp6_dst_alloc+0x31d/0x360 net/ipv6/route.c:3281
 ndisc_send_skb+0x160/0x640 net/ipv6/ndisc.c:487
 ndisc_send_rs+0x3c0/0x3f0 net/ipv6/ndisc.c:717
 addrconf_rs_timer+0x1de/0x320 net/ipv6/addrconf.c:3931
 call_timer_fn+0x2e/0x240 kernel/time/timer.c:1474
 expire_timers+0x116/0x240 kernel/time/timer.c:1519
 __run_timers+0x350/0x400 kernel/time/timer.c:1790
 run_timer_softirq+0x2e/0x60 kernel/time/timer.c:1803
 __do_softirq+0x158/0x2e3 kernel/softirq.c:571
 __irq_exit_rcu kernel/softirq.c:650 [inline]
 irq_exit_rcu+0x41/0x70 kernel/softirq.c:662
 sysvec_apic_timer_interrupt+0x8d/0xb0 arch/x86/kernel/apic/apic.c:1106
 asm_sysvec_apic_timer_interrupt+0x1b/0x20
 mem_cgroup_lruvec include/linux/memcontrol.h:752 [inline]
 __mod_lruvec_page_state+0xe4/0x1c0 mm/memcontrol.c:773
 page_add_anon_rmap+0x16d/0x3d0 mm/rmap.c:1230
 remove_migration_pte+0x4e4/0x7a0 mm/migrate.c:248
 rmap_walk_anon+0x55c/0x670 mm/rmap.c:2419
 rmap_walk+0x57/0x60 mm/rmap.c:2495
 remove_migration_ptes mm/migrate.c:281 [inline]
 __unmap_and_move+0x470/0xbd0 mm/migrate.c:1053
 unmap_and_move+0x150/0x970 mm/migrate.c:1110
 migrate_pages+0x29e/0x7b0 mm/migrate.c:1389
 do_mbind+0x79b/0x8b0 mm/mempolicy.c:1323
 kernel_mbind mm/mempolicy.c:1470 [inline]
 __do_sys_mbind mm/mempolicy.c:1548 [inline]
 __se_sys_mbind+0x13b/0x3f0 mm/mempolicy.c:1544
 __x64_sys_mbind+0x74/0x80 mm/mempolicy.c:1544
 do_syscall_x64 arch/x86/entry/common.c:50 [inline]
 do_syscall_64+0x2b/0x70 arch/x86/entry/common.c:80
 entry_SYSCALL_64_after_hwframe+0x46/0xb0

write to 0xffff8881047bc108 of 8 bytes by task 6 on cpu 0:
 xfrm_lookup_with_ifid+0x10ca/0x1880 net/xfrm/xfrm_policy.c:3139
 xfrm_lookup+0x33/0x40 net/xfrm/xfrm_policy.c:3191
 icmp6_dst_alloc+0x31d/0x360 net/ipv6/route.c:3281
 mld_sendpack+0x2b9/0x580 net/ipv6/mcast.c:1807
 mld_send_initial_cr net/ipv6/mcast.c:2237 [inline]
 mld_dad_work+0x186/0x420 net/ipv6/mcast.c:2260
 process_one_work+0x3d3/0x720 kernel/workqueue.c:2289
 worker_thread+0x618/0xa70 kernel/workqueue.c:2436
 kthread+0x1a9/0x1e0 kernel/kthread.c:376
 ret_from_fork+0x1f/0x30

value changed: 0x0000000000001248 -> 0x0000000000001249

Reported by Kernel Concurrency Sanitizer on:
CPU: 0 PID: 6 Comm: kworker/0:0 Tainted: G        W         5.19.0-rc3-syzkaller-00390-g82708bb1eb9e-dirty #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
Workqueue: mld mld_dad_work
==================================================================