==================================================================
BUG: KCSAN: data-race in __bpf_get_stackid / bcmp

write to 0xffff888149e10010 of 152 bytes by interrupt on cpu 1:
 __bpf_get_stackid+0x737/0x7d0 kernel/bpf/stackmap.c:311
 ____bpf_get_stackid kernel/bpf/stackmap.c:344 [inline]
 bpf_get_stackid+0xf3/0x130 kernel/bpf/stackmap.c:323
 ____bpf_get_stackid_raw_tp kernel/trace/bpf_trace.c:1628 [inline]
 bpf_get_stackid_raw_tp+0xf6/0x120 kernel/trace/bpf_trace.c:1617
 bpf_prog_53f0063d4d7f65ce+0x2a/0x32
 bpf_dispatcher_nop_func include/linux/bpf.h:1378 [inline]
 __bpf_prog_run include/linux/filter.h:723 [inline]
 bpf_prog_run include/linux/filter.h:730 [inline]
 __bpf_trace_run kernel/trace/bpf_trace.c:2075 [inline]
 bpf_trace_run3+0x10f/0x1e0 kernel/trace/bpf_trace.c:2117
 __do_trace_kmem_cache_free include/trace/events/kmem.h:117 [inline]
 trace_kmem_cache_free include/trace/events/kmem.h:117 [inline]
 kmem_cache_free+0x327/0x3a0 mm/slub.c:6780
 skb_kfree_head net/core/skbuff.c:1066 [inline]
 skb_free_head+0x87/0x150 net/core/skbuff.c:1080
 skb_release_data+0x33b/0x370 net/core/skbuff.c:1107
 skb_release_all net/core/skbuff.c:1182 [inline]
 __kfree_skb+0x44/0x150 net/core/skbuff.c:1196
 sk_skb_reason_drop+0xbd/0x270 net/core/skbuff.c:1234
 kfree_skb_reason include/linux/skbuff.h:1322 [inline]
 __skb_queue_purge_reason include/linux/skbuff.h:3425 [inline]
 __skb_queue_purge include/linux/skbuff.h:3430 [inline]
 inet_sock_destruct+0x18d/0x440 net/ipv4/af_inet.c:140
 inet6_sock_destruct+0x1d/0x30 net/ipv6/af_inet6.c:116
 udpv6_destruct_sock+0x1d/0x30 net/ipv6/udp.c:65
 __sk_destruct+0x58/0x500 net/core/sock.c:2350
 rcu_do_batch kernel/rcu/tree.c:2605 [inline]
 rcu_core+0x544/0xc40 kernel/rcu/tree.c:2857
 rcu_core_si+0xd/0x20 kernel/rcu/tree.c:2874
 handle_softirqs+0xba/0x290 kernel/softirq.c:622
 run_ksoftirqd+0x1c/0x30 kernel/softirq.c:1063
 smpboot_thread_fn+0x32b/0x530 kernel/smpboot.c:160
 kthread+0x489/0x510 kernel/kthread.c:463
 ret_from_fork+0x149/0x290 arch/x86/kernel/process.c:158
 ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:246

read to 0xffff888149e10028 of 8 bytes by task 7456 on cpu 0:
 memcmp lib/string.c:683 [inline]
 bcmp+0x23/0x90 lib/string.c:715
 memcmp include/linux/fortify-string.h:727 [inline]
 __bpf_get_stackid+0x382/0x7d0 kernel/bpf/stackmap.c:302
 ____bpf_get_stackid kernel/bpf/stackmap.c:344 [inline]
 bpf_get_stackid+0xf3/0x130 kernel/bpf/stackmap.c:323
 ____bpf_get_stackid_raw_tp kernel/trace/bpf_trace.c:1628 [inline]
 bpf_get_stackid_raw_tp+0xf6/0x120 kernel/trace/bpf_trace.c:1617
 bpf_prog_53f0063d4d7f65ce+0x2a/0x32
 bpf_dispatcher_nop_func include/linux/bpf.h:1378 [inline]
 __bpf_prog_run include/linux/filter.h:723 [inline]
 bpf_prog_run include/linux/filter.h:730 [inline]
 __bpf_trace_run kernel/trace/bpf_trace.c:2075 [inline]
 bpf_trace_run3+0x10f/0x1e0 kernel/trace/bpf_trace.c:2117
 __do_trace_kmem_cache_free include/trace/events/kmem.h:117 [inline]
 trace_kmem_cache_free include/trace/events/kmem.h:117 [inline]
 kmem_cache_free+0x327/0x3a0 mm/slub.c:6780
 __io_req_caches_free+0xfe/0x210 io_uring/io_uring.c:2826
 io_req_caches_free+0x1f/0x60 io_uring/io_uring.c:2838
 io_ring_exit_work+0x23b/0x520 io_uring/io_uring.c:3024
 process_one_work kernel/workqueue.c:3257 [inline]
 process_scheduled_works+0x4ce/0x9d0 kernel/workqueue.c:3340
 worker_thread+0x582/0x770 kernel/workqueue.c:3421
 kthread+0x489/0x510 kernel/kthread.c:463
 ret_from_fork+0x149/0x290 arch/x86/kernel/process.c:158
 ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:246

value changed: 0xffffffff81224fbe -> 0xffffffff84554e47

Reported by Kernel Concurrency Sanitizer on:
CPU: 0 UID: 0 PID: 7456 Comm: kworker/u8:12 Not tainted syzkaller #0 PREEMPT(voluntary) 
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
Workqueue: iou_exit io_ring_exit_work
==================================================================