syzbot

 sign-in | mailing list | source | docs
🐞 Open [1574]
Subsystems
🐞 Fixed [6415]
🐞 Invalid [16293]
Missing Backports [199]
Crashes
Kernel Health Bugs/Month Bug Lifetimes Fuzzing
Total Repo Heatmap Subsystems Heatmap
💬 Send us feedback

WARNING in lookup_slow (4)

Status: moderation: reported on 2025/05/26 09:57
Subsystems: fs
[Documentation on labels]
Reported-by: syzbot+2b8d9d5c6bae92cffb1d@syzkaller.appspotmail.com
First crash: 57d, last: 7d02h
Similar bugs (7)
Kernel Title Rank 🛈 Repro Cause bisect Fix bisect Count Last Reported Patched Status
linux-5.15 WARNING in lookup_slow (2) -1 1 625d 625d 0/3 auto-obsoleted due to no activity on 2024/02/09 08:58
upstream WARNING in lookup_slow (2) fs -1 8 399d 431d 0/29 auto-obsoleted due to no activity on 2024/09/12 01:16
linux-6.1 WARNING in lookup_slow origin:upstream missing-backport -1 C inconclusive 8 142d 593d 0/3 upstream: reported C repro on 2023/12/02 22:03
upstream WARNING in lookup_slow (3) fs -1 1 207d 203d 0/29 auto-obsoleted due to no activity on 2025/02/21 12:31
linux-5.15 WARNING in lookup_slow (3) origin:lts-only -1 C error 7 65d 475d 0/3 upstream: reported C repro on 2024/03/30 12:27
upstream WARNING in lookup_slow ntfs3 -1 C error inconclusive 34 541d 942d 0/29 auto-obsoleted due to no activity on 2024/05/02 19:30
linux-5.15 WARNING in lookup_slow -1 1 784d 784d 0/3 auto-obsoleted due to no activity on 2023/09/02 18:27

Sample crash report:
------------[ cut here ]------------
DEBUG_RWSEMS_WARN_ON(tmp < 0): count = 0xffffffffffffff00, magic = 0xffff888052cdd4e8, owner = 0x0, curr 0xffff88801f2b2440, list empty
WARNING: CPU: 0 PID: 5356 at kernel/locking/rwsem.c:1346 __up_read+0x3ea/0x680 kernel/locking/rwsem.c:1346
Modules linked in:
CPU: 0 UID: 0 PID: 5356 Comm: syz.0.0 Not tainted 6.16.0-rc5-syzkaller-00121-gbc9ff192a6c9 #0 PREEMPT(full) 
Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
RIP: 0010:__up_read+0x3ea/0x680 kernel/locking/rwsem.c:1346
Code: d0 48 c7 c7 80 f9 8a 8b 48 c7 c6 80 fb 8a 8b 48 8b 54 24 08 48 8b 0c 24 4d 89 f8 4d 89 f1 41 52 e8 9b 44 e6 ff 48 83 c4 08 90 <0f> 0b 90 90 e9 71 fe ff ff c6 05 a8 05 ee 0d 01 90 48 89 df be 08
RSP: 0018:ffffc9000d597940 EFLAGS: 00010292
RAX: 373c8bb66fdb6f00 RBX: ffff888052cdd4e8 RCX: ffff88801f2b2440
RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000002
RBP: ffffc9000d5979f8 R08: 0000000000000003 R09: 0000000000000004
R10: dffffc0000000000 R11: fffffbfff1bfaa64 R12: ffffffffffffff00
R13: ffff888052cdd540 R14: ffff88801f2b2440 R15: 0000000000000000
FS:  00007f5dcc5ee6c0(0000) GS:ffff88808d21b000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007f5dcc5edfc8 CR3: 0000000043ac2000 CR4: 0000000000352ef0
Call Trace:
 <TASK>
 inode_unlock_shared include/linux/fs.h:894 [inline]
 lookup_slow+0x5e/0x70 fs/namei.c:1835
 walk_component fs/namei.c:2138 [inline]
 link_path_walk+0x935/0xea0 fs/namei.c:2506
 path_parentat fs/namei.c:2710 [inline]
 __filename_parentat+0x246/0x670 fs/namei.c:2734
 filename_parentat fs/namei.c:2752 [inline]
 filename_create+0xcf/0x470 fs/namei.c:4129
 do_mkdirat+0xa0/0x590 fs/namei.c:4400
 __do_sys_mkdirat fs/namei.c:4425 [inline]
 __se_sys_mkdirat fs/namei.c:4423 [inline]
 __x64_sys_mkdirat+0x87/0xa0 fs/namei.c:4423
 do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]
 do_syscall_64+0xfa/0x3b0 arch/x86/entry/syscall_64.c:94
 entry_SYSCALL_64_after_hwframe+0x77/0x7f
RIP: 0033:0x7f5dcb78e929
Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
RSP: 002b:00007f5dcc5ee038 EFLAGS: 00000246 ORIG_RAX: 0000000000000102
RAX: ffffffffffffffda RBX: 00007f5dcb9b6160 RCX: 00007f5dcb78e929
RDX: 0000000000000000 RSI: 0000200000000280 RDI: ffffffffffffff9c
RBP: 00007f5dcb810b39 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
R13: 0000000000000001 R14: 00007f5dcb9b6160 R15: 00007ffef622f718
 </TASK>

Crashes (5):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2025/07/11 14:08 upstream bc9ff192a6c9 3cda49cf .config console log report [disk image (non-bootable)] [vmlinux] [kernel image] ci-snapshot-upstream-root WARNING in lookup_slow
2025/06/25 14:44 upstream 7595b66ae9de 26d77996 .config console log report [disk image (non-bootable)] [vmlinux] [kernel image] ci-snapshot-upstream-root WARNING in lookup_slow
2025/06/19 09:02 upstream fb4d33ab452e ed3e87f7 .config console log report [disk image (non-bootable)] [vmlinux] [kernel image] ci-snapshot-upstream-root WARNING in lookup_slow
2025/05/30 12:38 upstream f66bc387efbe 3d2f584d .config console log report [disk image (non-bootable)] [vmlinux] [kernel image] ci-snapshot-upstream-root WARNING in lookup_slow
2025/05/22 09:52 upstream d608703fcdd9 0919b50b .config console log report [disk image (non-bootable)] [vmlinux] [kernel image] ci-snapshot-upstream-root WARNING in lookup_slow
* Struck through repros no longer work on HEAD.