==================================================================
BUG: KCSAN: data-race in io_req_task_complete / io_wq_free_work

write to 0xffff8881078cf144 of 4 bytes by task 4766 on cpu 1:
 io_req_complete_state fs/io_uring.c:2131 [inline]
 io_req_task_complete+0x9a/0x490 fs/io_uring.c:2996
 handle_tw_list fs/io_uring.c:2479 [inline]
 tctx_task_work+0x7d3/0xab0 fs/io_uring.c:2513
 task_work_run+0x8e/0x110 kernel/task_work.c:164
 get_signal+0x144f/0x15a0 kernel/signal.c:2681
 arch_do_signal_or_restart+0x87/0x2b0 arch/x86/kernel/signal.c:867
 exit_to_user_mode_loop kernel/entry/common.c:180 [inline]
 exit_to_user_mode_prepare+0xc1/0x140 kernel/entry/common.c:215
 __syscall_exit_to_user_mode_work kernel/entry/common.c:297 [inline]
 syscall_exit_to_user_mode+0x20/0x40 kernel/entry/common.c:308
 do_syscall_64+0x37/0x50 arch/x86/entry/common.c:86
 entry_SYSCALL_64_after_hwframe+0x44/0xae

read to 0xffff8881078cf144 of 4 bytes by task 4776 on cpu 0:
 req_ref_put_and_test fs/io_uring.c:1237 [inline]
 io_put_req_find_next fs/io_uring.c:2714 [inline]
 io_wq_free_work+0x22/0x240 fs/io_uring.c:7301
 io_worker_handle_work+0x565/0xc20 fs/io-wq.c:600
 io_wqe_worker+0x1e6/0x540 fs/io-wq.c:644
 ret_from_fork+0x1f/0x30

value changed: 0x00ac4100 -> 0x00ad0100

Reported by Kernel Concurrency Sanitizer on:
CPU: 0 PID: 4776 Comm: iou-wrk-4766 Not tainted 5.17.0-syzkaller-13034-gd888c83fcec7-dirty #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
==================================================================
==================================================================
BUG: KCSAN: data-race in io_req_task_complete / kiocb_done

write to 0xffff8881087fc444 of 4 bytes by task 4766 on cpu 1:
 io_req_complete_state fs/io_uring.c:2131 [inline]
 io_req_task_complete+0x9a/0x490 fs/io_uring.c:2996
 handle_tw_list fs/io_uring.c:2479 [inline]
 tctx_task_work+0x7d3/0xab0 fs/io_uring.c:2513
 task_work_run+0x8e/0x110 kernel/task_work.c:164
 get_signal+0x144f/0x15a0 kernel/signal.c:2681
 arch_do_signal_or_restart+0x87/0x2b0 arch/x86/kernel/signal.c:867
 exit_to_user_mode_loop kernel/entry/common.c:180 [inline]
 exit_to_user_mode_prepare+0xc1/0x140 kernel/entry/common.c:215
 __syscall_exit_to_user_mode_work kernel/entry/common.c:297 [inline]
 syscall_exit_to_user_mode+0x20/0x40 kernel/entry/common.c:308
 do_syscall_64+0x37/0x50 arch/x86/entry/common.c:86
 entry_SYSCALL_64_after_hwframe+0x44/0xae

read to 0xffff8881087fc444 of 4 bytes by task 4776 on cpu 0:
 kiocb_done+0x1f2/0x830 fs/io_uring.c:3269
 io_write+0x4fe/0x620 fs/io_uring.c:4032
 io_issue_sqe+0xabd/0x8200 fs/io_uring.c:7177
 io_wq_submit_work+0x1d5/0x380 fs/io_uring.c:7340
 io_worker_handle_work+0x528/0xc20 fs/io-wq.c:597
 io_wqe_worker+0x1e6/0x540 fs/io-wq.c:644
 ret_from_fork+0x1f/0x30

value changed: 0x00ac4100 -> 0x00ad0100

Reported by Kernel Concurrency Sanitizer on:
CPU: 0 PID: 4776 Comm: iou-wrk-4766 Not tainted 5.17.0-syzkaller-13034-gd888c83fcec7-dirty #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
==================================================================