syzbot

 sign-in | mailing list | source | docs
🐞 Open [1499]
Subsystems
🐞 Fixed [6533]
🐞 Invalid [16701]
Missing Backports [202]
Crashes
Kernel Health Bugs/Month Bug Lifetimes Fuzzing
Total Repo Heatmap Subsystems Heatmap
💬 Send us feedback

WARNING in lookup_slow (4)

Status: moderation: reported on 2025/05/26 09:57
Subsystems: fs
[Documentation on labels]
Reported-by: syzbot+2b8d9d5c6bae92cffb1d@syzkaller.appspotmail.com
First crash: 102d, last: 22d
Similar bugs (7)
Kernel Title Rank 🛈 Repro Cause bisect Fix bisect Count Last Reported Patched Status
linux-5.15 WARNING in lookup_slow (2) -1 1 670d 670d 0/3 auto-obsoleted due to no activity on 2024/02/09 08:58
upstream WARNING in lookup_slow (2) fs -1 8 445d 476d 0/29 auto-obsoleted due to no activity on 2024/09/12 01:16
linux-6.1 WARNING in lookup_slow origin:upstream missing-backport -1 C inconclusive 9 19d 639d 0/3 upstream: reported C repro on 2023/12/02 22:03
upstream WARNING in lookup_slow (3) fs -1 1 252d 248d 0/29 auto-obsoleted due to no activity on 2025/02/21 12:31
linux-5.15 WARNING in lookup_slow (3) origin:lts-only -1 C error 7 40d 520d 0/3 upstream: reported C repro on 2024/03/30 12:27
upstream WARNING in lookup_slow ntfs3 -1 C error inconclusive 34 587d 987d 0/29 auto-obsoleted due to no activity on 2024/05/02 19:30
linux-5.15 WARNING in lookup_slow -1 1 830d 830d 0/3 auto-obsoleted due to no activity on 2023/09/02 18:27

Sample crash report:
------------[ cut here ]------------
DEBUG_RWSEMS_WARN_ON(!is_rwsem_reader_owned(sem)): count = 0x0, magic = 0xffff8880445e94e8, owner = 0x0, curr 0xffff88803615c880, list empty
WARNING: CPU: 0 PID: 5371 at kernel/locking/rwsem.c:1354 __up_read+0x5f5/0x680 kernel/locking/rwsem.c:1354
Modules linked in:
CPU: 0 UID: 0 PID: 5371 Comm: syz.0.0 Not tainted 6.16.0-syzkaller-12256-g561c80369df0 #0 PREEMPT(full) 
Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
RIP: 0010:__up_read+0x5f5/0x680 kernel/locking/rwsem.c:1354
Code: 44 d0 48 c7 c7 a0 ec 8a 8b 48 c7 c6 40 ed 8a 8b 4c 89 ea 48 8b 4c 24 08 4d 89 e0 4d 89 f1 41 52 e8 10 5b e6 ff 48 83 c4 08 90 <0f> 0b 90 90 e9 72 fb ff ff 48 c7 c1 74 cf a3 8f 80 e1 07 80 c1 03
RSP: 0018:ffffc9000d367940 EFLAGS: 00010292
RAX: 2086f08b2bda5600 RBX: ffff8880445e94e8 RCX: ffff88803615c880
RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000002
RBP: ffffc9000d3679f8 R08: 0000000000000003 R09: 0000000000000004
R10: dffffc0000000000 R11: fffffbfff1bfa1ec R12: 0000000000000000
R13: 0000000000000000 R14: ffff88803615c880 R15: ffff8880445e9540
FS:  00007f395141e6c0(0000) GS:ffff88808d211000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007ffee7925f00 CR3: 0000000043391000 CR4: 0000000000352ef0
Call Trace:
 <TASK>
 inode_unlock_shared include/linux/fs.h:894 [inline]
 lookup_slow+0x5e/0x70 fs/namei.c:1826
 walk_component fs/namei.c:2129 [inline]
 link_path_walk+0x935/0xea0 fs/namei.c:2497
 path_parentat fs/namei.c:2701 [inline]
 __filename_parentat+0x246/0x670 fs/namei.c:2725
 filename_parentat fs/namei.c:2743 [inline]
 filename_create+0xd2/0x3c0 fs/namei.c:4120
 do_mkdirat+0xa0/0x590 fs/namei.c:4391
 __do_sys_mkdirat fs/namei.c:4416 [inline]
 __se_sys_mkdirat fs/namei.c:4414 [inline]
 __x64_sys_mkdirat+0x87/0xa0 fs/namei.c:4414
 do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]
 do_syscall_64+0xfa/0x3b0 arch/x86/entry/syscall_64.c:94
 entry_SYSCALL_64_after_hwframe+0x77/0x7f
RIP: 0033:0x7f395058ebe9
Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
RSP: 002b:00007f395141e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000102
RAX: ffffffffffffffda RBX: 00007f39507b6180 RCX: 00007f395058ebe9
RDX: 0000000000000000 RSI: 0000200000000240 RDI: ffffffffffffff9c
RBP: 00007f3950611e19 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
R13: 00007f39507b6218 R14: 00007f39507b6180 R15: 00007ffee79268c8
 </TASK>

Crashes (7):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2025/08/10 12:23 upstream 561c80369df0 32a0e5ed .config console log report [disk image (non-bootable)] [vmlinux] [kernel image] ci-snapshot-upstream-root WARNING in lookup_slow
2025/07/22 23:02 upstream 89be9a83ccf1 af30dea9 .config console log report [disk image (non-bootable)] [vmlinux] [kernel image] ci-snapshot-upstream-root WARNING in lookup_slow
2025/07/11 14:08 upstream bc9ff192a6c9 3cda49cf .config console log report [disk image (non-bootable)] [vmlinux] [kernel image] ci-snapshot-upstream-root WARNING in lookup_slow
2025/06/25 14:44 upstream 7595b66ae9de 26d77996 .config console log report [disk image (non-bootable)] [vmlinux] [kernel image] ci-snapshot-upstream-root WARNING in lookup_slow
2025/06/19 09:02 upstream fb4d33ab452e ed3e87f7 .config console log report [disk image (non-bootable)] [vmlinux] [kernel image] ci-snapshot-upstream-root WARNING in lookup_slow
2025/05/30 12:38 upstream f66bc387efbe 3d2f584d .config console log report [disk image (non-bootable)] [vmlinux] [kernel image] ci-snapshot-upstream-root WARNING in lookup_slow
2025/05/22 09:52 upstream d608703fcdd9 0919b50b .config console log report [disk image (non-bootable)] [vmlinux] [kernel image] ci-snapshot-upstream-root WARNING in lookup_slow
* Struck through repros no longer work on HEAD.