syzbot

 sign-in | mailing list | source | docs | 🏰
🐞 Open [1344]
Subsystems
🐞 Fixed [7090]
🐞 Invalid [18686]
Missing Backports [221]
Crashes
Kernel Health Bugs/Month Bug Lifetimes Fuzzing
Total Repo Heatmap Subsystems Heatmap
✨ AI
💬 Send us feedback

KCSAN: data-race in ktime_get_with_offset / timekeeping_update_from_shadow

Status: moderation: reported on 2026/05/10 01:50
Subsystems: kernel
[Documentation on labels]
Reported-by: syzbot+f7dcf4d975188a9ddca4@syzkaller.appspotmail.com
First crash: 2d19h, last: 2d09h
✨ AI Jobs (1)
ID Workflow Result Correct Bug Created Started Finished Revision Error
9325fa29-9ab9-48fd-ad41-5b9b20a0e913 assessment-kcsan Benign: ✅ KCSAN: data-race in ktime_get_with_offset / timekeeping_update_from_shadow 2026/05/10 03:27 2026/05/10 03:27 2026/05/10 03:58 29233ece713919081e9069c2a18be92526041f39

Sample crash report:
==================================================================
BUG: KCSAN: data-race in ktime_get_with_offset / timekeeping_update_from_shadow

write to 0xffffffff893a7488 of 304 bytes by interrupt on cpu 1:
 timekeeping_update_from_shadow+0x40d/0x440 kernel/time/timekeeping.c:829
 __timekeeping_advance+0xa5d/0xc10 kernel/time/timekeeping.c:2532
 timekeeping_advance kernel/time/timekeeping.c:2540 [inline]
 update_wall_time+0x21/0x50 kernel/time/timekeeping.c:2550
 tick_do_update_jiffies64+0x169/0x1c0 kernel/time/tick-sched.c:149
 tick_sched_do_timer kernel/time/tick-sched.c:253 [inline]
 tick_nohz_handler+0x8d/0x3d0 kernel/time/tick-sched.c:312
 __run_hrtimer kernel/time/hrtimer.c:1930 [inline]
 __hrtimer_run_queues+0x276/0x4f0 kernel/time/hrtimer.c:1994
 hrtimer_interrupt+0x261/0x850 kernel/time/hrtimer.c:2113
 local_apic_timer_interrupt arch/x86/kernel/apic/apic.c:1050 [inline]
 __sysvec_apic_timer_interrupt+0x5f/0x1c0 arch/x86/kernel/apic/apic.c:1067
 instr_sysvec_apic_timer_interrupt arch/x86/kernel/apic/apic.c:1061 [inline]
 sysvec_apic_timer_interrupt+0x6f/0x80 arch/x86/kernel/apic/apic.c:1061
 asm_sysvec_apic_timer_interrupt+0x1a/0x20 arch/x86/include/asm/idtentry.h:697
 __preempt_count_dec_and_test arch/x86/include/asm/preempt.h:95 [inline]
 __raw_spin_unlock_irqrestore include/linux/spinlock_api_smp.h:179 [inline]
 _raw_spin_unlock_irqrestore+0x1a/0x30 kernel/locking/spinlock.c:198
 __unix_dgram_recvmsg+0x3a7/0x870 net/unix/af_unix.c:2612
 unix_dgram_recvmsg+0x7e/0x90 net/unix/af_unix.c:2686
 sock_recvmsg_nosec+0xc2/0xf0 net/socket.c:1137
 ____sys_recvmsg+0x26f/0x280 net/socket.c:2916
 ___sys_recvmsg+0x11f/0x3b0 net/socket.c:2960
 do_recvmmsg+0x1ef/0x560 net/socket.c:3055
 __sys_recvmmsg net/socket.c:3129 [inline]
 __do_sys_recvmmsg net/socket.c:3152 [inline]
 __se_sys_recvmmsg net/socket.c:3145 [inline]
 __x64_sys_recvmmsg+0xe5/0x170 net/socket.c:3145
 x64_sys_call+0x80f/0x3020 arch/x86/include/generated/asm/syscalls_64.h:300
 do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]
 do_syscall_64+0x12c/0x3b0 arch/x86/entry/syscall_64.c:94
 entry_SYSCALL_64_after_hwframe+0x77/0x7f

read to 0xffffffff893a7498 of 8 bytes by task 12417 on cpu 0:
 timekeeping_cycles_to_ns kernel/time/timekeeping.c:426 [inline]
 timekeeping_get_ns kernel/time/timekeeping.c:449 [inline]
 ktime_get_with_offset+0xed/0x260 kernel/time/timekeeping.c:1011
 ktime_get_boottime include/linux/timekeeping.h:106 [inline]
 ktime_get_boottime_ns include/linux/timekeeping.h:195 [inline]
 copy_process+0x193b/0x2370 kernel/fork.c:2405
 kernel_clone+0x1a5/0x5e0 kernel/fork.c:2721
 __do_sys_clone3 kernel/fork.c:3025 [inline]
 __se_sys_clone3+0x1f5/0x230 kernel/fork.c:3004
 __x64_sys_clone3+0x31/0x40 kernel/fork.c:3004
 x64_sys_call+0x580/0x3020 arch/x86/include/generated/asm/syscalls_64.h:436
 do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]
 do_syscall_64+0x12c/0x3b0 arch/x86/entry/syscall_64.c:94
 entry_SYSCALL_64_after_hwframe+0x77/0x7f

value changed: 0x0000038d205c8b7e -> 0x0000038d21ac3ceb

Reported by Kernel Concurrency Sanitizer on:
CPU: 0 UID: 0 PID: 12417 Comm: syz.9.10528 Tainted: G        W           syzkaller #0 PREEMPT(full) 
Tainted: [W]=WARN
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
==================================================================

Crashes (2):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2026/05/10 11:49 upstream 1bfaee9d3351 29233ece .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in ktime_get_with_offset / timekeeping_update_from_shadow
2026/05/10 01:49 upstream e92b2872d0b1 29233ece .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-kcsan-gce KCSAN: data-race in ktime_get_with_offset / timekeeping_update_from_shadow
* Struck through repros no longer work on HEAD.