==================================================================
BUG: KCSAN: data-race in __refill_stock / drain_all_stock

read-write to 0xffff888237c2a690 of 4 bytes by task 3097 on cpu 0:
 __refill_stock+0x7f/0xb0 mm/memcontrol.c:2384
 refill_stock mm/memcontrol.c:2395 [inline]
 obj_cgroup_uncharge_pages+0x134/0x200 mm/memcontrol.c:3275
 refill_obj_stock+0x15c/0x1d0 mm/memcontrol.c:3547
 obj_cgroup_uncharge+0xe/0x10 mm/memcontrol.c:3596
 __memcg_slab_free_hook+0xa9/0x120 mm/slub.c:2010
 memcg_slab_free_hook mm/slub.c:2030 [inline]
 slab_free mm/slub.c:4297 [inline]
 kmem_cache_free+0x184/0x250 mm/slub.c:4363
 sk_prot_free net/core/sock.c:2113 [inline]
 __sk_destruct+0x333/0x440 net/core/sock.c:2207
 sk_destruct net/core/sock.c:2222 [inline]
 __sk_free+0x284/0x2d0 net/core/sock.c:2233
 sk_free+0x39/0x70 net/core/sock.c:2244
 sock_put include/net/sock.h:1961 [inline]
 tcp_close+0x59/0x90 net/ipv4/tcp.c:2933
 inet_release+0xc9/0xf0 net/ipv4/af_inet.c:436
 __sock_release net/socket.c:659 [inline]
 sock_close+0x64/0x140 net/socket.c:1421
 __fput+0x299/0x630 fs/file_table.c:376
 __fput_sync+0x44/0x50 fs/file_table.c:461
 __do_sys_close fs/open.c:1554 [inline]
 __se_sys_close+0xfa/0x1a0 fs/open.c:1539
 __x64_sys_close+0x1f/0x30 fs/open.c:1539
 do_syscall_x64 arch/x86/entry/common.c:52 [inline]
 do_syscall_64+0xcd/0x1d0 arch/x86/entry/common.c:83
 entry_SYSCALL_64_after_hwframe+0x63/0x6b

read to 0xffff888237c2a690 of 4 bytes by task 27921 on cpu 1:
 drain_all_stock+0xd3/0x2e0 mm/memcontrol.c:2425
 try_charge_memcg+0x6c2/0xd20 mm/memcontrol.c:2785
 try_charge mm/memcontrol.c:2925 [inline]
 charge_memcg mm/memcontrol.c:7262 [inline]
 mem_cgroup_swapin_charge_folio+0x107/0x190 mm/memcontrol.c:7347
 __read_swap_cache_async+0x2b9/0x510 mm/swap_state.c:498
 swap_cluster_readahead+0x276/0x3f0 mm/swap_state.c:662
 swapin_readahead+0xe2/0x7a0 mm/swap_state.c:886
 do_swap_page+0x439/0x1530 mm/memory.c:3898
 handle_pte_fault mm/memory.c:5147 [inline]
 __handle_mm_fault mm/memory.c:5285 [inline]
 handle_mm_fault+0x7f6/0x27c0 mm/memory.c:5450
 do_user_addr_fault arch/x86/mm/fault.c:1415 [inline]
 handle_page_fault arch/x86/mm/fault.c:1507 [inline]
 exc_page_fault+0x2f9/0x6d0 arch/x86/mm/fault.c:1563
 asm_exc_page_fault+0x26/0x30 arch/x86/include/asm/idtentry.h:570
 __get_user_8+0x11/0x20 arch/x86/lib/getuser.S:85
 fetch_robust_entry kernel/futex/core.c:783 [inline]
 exit_robust_list+0x31/0x270 kernel/futex/core.c:811
 futex_cleanup kernel/futex/core.c:1043 [inline]
 futex_exit_release+0xdf/0x130 kernel/futex/core.c:1144
 exit_mm_release+0x1a/0x30 kernel/fork.c:1650
 exit_mm+0x37/0x180 kernel/exit.c:542
 do_exit+0x585/0x16d0 kernel/exit.c:858
 do_group_exit+0x101/0x150 kernel/exit.c:1020
 get_signal+0xf4e/0x10a0 kernel/signal.c:2893
 arch_do_signal_or_restart+0x95/0x4b0 arch/x86/kernel/signal.c:310
 exit_to_user_mode_loop kernel/entry/common.c:105 [inline]
 exit_to_user_mode_prepare include/linux/entry-common.h:328 [inline]
 __syscall_exit_to_user_mode_work kernel/entry/common.c:201 [inline]
 syscall_exit_to_user_mode+0x58/0x130 kernel/entry/common.c:212
 do_syscall_64+0xda/0x1d0 arch/x86/entry/common.c:89
 entry_SYSCALL_64_after_hwframe+0x63/0x6b

value changed: 0x0000003f -> 0x00000040

Reported by Kernel Concurrency Sanitizer on:
CPU: 1 PID: 27921 Comm: syz-executor.2 Not tainted 6.8.0-rc3-syzkaller-00047-g047371968ffc #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
==================================================================